104.21.85.52 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.85.52 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: ice-legend.ru noinps77.com nsps.shop orionto7.com doxamin.co.za mountainusclothes.com downloadget.space best-dental-implants-in-2024.today departamentosenventausa.today vpn.460721344.workers.dev xn–80aaafmdc3ak3dl1dwa1i.xn–mk1bu44c premiertechtalent.com pdhiks.com caheo-tv-bdtt.art backyardfence452.today owmmoffe.buzz lovebeachtoo.com shandianmiaojiasuqi.cc 6aleqqifio.biz newtonollie.com trylisters.xyz hassociates.top plinys.org discount-topshop.com zmjd2006.com eltransml.ivanjakub.pl stylowadobra.ivanjakub.pl mariola009.ivanjakub.pl nicobiuro.ivanjakub.pl lbsis.org omemv.com vnewsmoi.xyz galmyway.xyz gstatic-fo.com clathroseuvatebaptizing.com sunwin.fund 2lcu7f.top theroyalprivatetravel.com rakatotooke.com adirnet.com rockledgealcoholtreatmentcenters.com ihtiyackredin.com arjuna96f.xyz shenghekeji.top kiagoergia.net mysunprint.com sewartalset-sa.com hwbet99vip.com arabfive.click gadgetsvibes.com feitunav21.store whartonmoldremediation.us 102590.com www.battinghelmets-sale.com maincuy-web.online supplychainpro.life beststeamcleanerx.com wonderfultiger.com limitably.sbs darlla.com discovbvfw.site jagho.info costumeboxsus.shop mxmertepe.live hayatomc.com hy7529.com ecotoursmw.com mostbetcasino-hu.org rtpvespa188.xyz blue-hall-5da7.ali-delfi-ad7343.workers.dev gaucokhuan.com kalndarappgpt300.com nvthfxqb.shop edr.vextr.net resbamilti.tk minatslot88.site hlhhjjc.cn cryptolife.website wvobembfovf.xyz naforsaublogfu.tk i.my-str.my.id top-mec.com teatroporno.com swillmagazine.com intcsc.com limslimdiscovermaybeybozynza.store kliksoftsol.com cleanersanchorage.com graphic-design-course-ww-2.today pinup93.com vayyrqt.top www.projetobambu.com.cdn.cloudflare.net rtpharumslot.club 2xufitnesswear.com wakanda123official.com toto188-pgsoft.com bjp14.xyz ppcbjsd.today seniorhousingsolutions.today hotshottruckingjobsfinders.today dmrhn.net 475859.com byxoqyy.click takoroblox.com websubeargentina.com niasdewa.com fiuxy2.co vomitsserums.click futscope.com denizlisitesi.xyz zhenyoudousui.com emoticongames.com olivierprive.com fresh-kasino-rf2.top szdebt.com whitfordvillagehall.org gokayozdemir.net hwllucas.click flexafen-us.org ogilvyfit.com zezweb.com seeybx1qm.buzz securenetguard.com 123ub.shop italyna.net nexvby.homes rollbit.space vanitytable.shop livingroomhouse.com zenandspicenutrition.com www.openode.ru originaltellw.site jensenlunano.buzz solanacoinflip.com dakiglobal.com iscta.org mrbijoux.top evlegf.com escortuslugirussia.online dawnvioletearle.fun usdtlb.com 789v37top1dna.site imzyz.vip www.summitwise.com fatihunlu.net tron-trade.com admin.reddy444.com api.reddy444.com bogdankecman.com online-idpruefung.com xcviptv.com unforgettablemitzvahs.com lesgetz.com polished-hill-b490.1536600659750.workers.dev dovlh.club wibucave.com peter-england.com keprbsbi.monster www.salybia.org salybia.org dinue.top bitung4d.org soutien-gorgemagasin.com cs8r76.cyou novacybertechno.com lenteraaonline.online kdv.com.tr acquireilph.click powerful-mailbox.shop kebmtgwy.sbs apisfull.com 888-tao.com enanswer.com flashjatek.org cuscotouragency.com www.xmlsport.com xmlsport.com reddy444.com m.opticaldeducible.top kalgaoap.us apkd.net grainburningstoves.ca sadeqporki.sadeqpc.workers.dev www.progps.co.uk jiuse1132.xyz battinghelmets-sale.com kittrhdev.uk elyumesports.com apanbazarbd.com ondiversity.es xfsp8x.cc transcriptyoutube.com tinsale.xyz mapofrome.com 166nmsp.com 1717se170.cc sonatenpacompne.tk autochavej.com flokiclaim.top ringginkpostparlens.gq getit280136.com play.ht olb88.top tabloidimaji.com www.tabloidimaji.com tritonremoval.com isphoti.gq bearsmulch.com spring-sun-eb83.29522773468646.workers.dev flat-hill-4dec.29522773468646.workers.dev donhwa.com niierozerwalne.site mychat.1536600659750.workers.dev test.1536600659750.workers.dev dpkserver.com create-customer.fame.workers.dev huonekalujen-myynti.com www.taylorflorida.com gurgaon-realestate.co.in www.gurgaon-realestate.co.in nshwk1.nahidshalani7355.workers.dev topskinlab.com freenode2.eng-meisam8051.workers.dev groovegrill.work uedon.store fitnesssecretes.com minikpanda.com.tr df-sefazgov.online jerk2day.com steelvintagebicyclestore.com congratlmwz.click web3eb.cf www.delicatesportitem.com southwestopp.com yuriz.altervista.org 2309599.com brendapignaton.site mytnhb.com delicatesportitem.com desk-app.shop yellow-fun.homes trainingequipment-shop.com broad-mountain-9558.ali-delfi-ad7343.workers.dev late-king-869b.abdol6502k.workers.dev www.ere.fi kokosh69.ru.com nsh.nahidshalani7355.workers.dev lively-math-13ea.nahidshalani7355.workers.dev broad-base-605e.nahidshalani7355.workers.dev www.gamespuzzlesshop.com gamespuzzlesshop.com tzigania.com derschwarzequirl.de 4hu343.xyz viewshq.com georgiaowncu.info diet-online-best30.site acandwosdiala.tk ph-501.com www.ndap-ancon2023.online busbangi.sbs m.huolifuhua.com cae-groupe.net mindrawan.me www.tigerbet888slots.com sweetcard.store newfreenodes.hossein3334.workers.dev neginaesthetics.com wjgk6i.sa.com storm-kw.store fijun.com.br purehealthynow.com cardsaga.io qs9k.uk dametilbehorbutik.com 91x610.xyz registratsiya-v-kazino.pro staging.southwestopp.com wehsrechohap.tk telcidange.tk 3cradar.com odeme.tourbulance.com.tr www.odeme.tourbulance.com.tr breakuntabdyli.tk tiny-violet-4323.digikalacomaparat.workers.dev home-roofing-pros.life farther.absencenot.online earlie.absencenot.online drought.absencenot.online dolphin.absencenot.online closed.absencenot.online classical.absencenot.online napolyonbutik.xyz syvoqpj.flydetailing.it tnmlwc.store 9conjure.com sharedplus.org goinverde.org lawmapa.com zoloft.africa trunbl.store flydetailing.it astint.co jenyatank.ru kasir.app www.kasir.app watchpointtrust.com market-csgo-new.com irancellnewvoker.pooryaghavami76.workers.dev irancell.pooryaghavami76.workers.dev lingering-boat-ae4b.plinyvol7670.workers.dev fancy-block-5662.plinyvol7670.workers.dev 1666444.com ggdrops.monster www.southwestopp.com esoaclis.xyz vleyqutgbuzt.cc m.vleyqutgbuzt.cc npztradingcourse.com pear-ver.cf drvisualdesigner.it 581229.vip plagiismremover.net menifeedryerventcleaning.us wacofoodoursllc.com fawenyo.pp.ua 38u38o.cyou hair-transplant-guide.life miladshahi.xyz arsystem.ru aa173.top seocriseedhuslidi.tk zfeg.info tll8o3.buzz cerahmousekuning.xyz qsnxch.com lykoiterrificshine.com live.progps.co.uk whm.sayhitoastranger.com index.realmdb.workers.dev kv-read-data.realmdb.workers.dev soldasset.realmdb.workers.dev white-rice-6778.digikalacomaparat.workers.dev spawanie.info.pl www.spawanie.info.pl super-dream-8935.abdol6502k.workers.dev productrecourse.com freenodeworker1.eng-meisam8051.workers.dev randomcloth.com haji.digikalacomaparat.workers.dev yellowatgre.shop www.sellingsclothes.com korlordz526.com was-frau-braucht.de sellingsclothes.com pg.vextr.net bestnewbag.shop awesome-mta.pl www.bestnewbag.shop eth-usd.realmdb.workers.dev n49-beratung.de www.lcloud-ukr.com dev.tedescoautobody.com www.dev.tedescoautobody.com bokangda.com ywpb.info dawn-disk-f077.abdol6502k.workers.dev quiet-frog-8d76.abdol6502k.workers.dev calm-mud-9138.abdol6502k.workers.dev nurmadinah.ac.id io-app.cam advincedfulfillment.com summitwise.com www.tzigania.com stunfresh.com theomeledcha.tk small-river-5531.digikalacomaparat.workers.dev wnvsln.top freenode.digikalacomaparat.workers.dev passtravelagencyus.com colapacys.tk avis-cars.com.tr ndap-ancon2023.online lnxz.info pooryavpn.pooryaghavami76.workers.dev exguess.click ancient-hall-6f42.plinyvol7670.workers.dev quanlandstactoho.gq progps.co.uk rusvesurtite.tk bereadyim.cummingforyou.workers.dev biqonetexi.tk itahpolanhe.ml rvgrs.cf ahg-garantie.de lythamartificialgrass.co.uk yhuipjs.xyz bckhvthn.tk dainaeads.com www.npztradingcourse.com 7zzip.com kpindustry.pl xsye.edu.vn 591592.xyz yuhsaawesn.co.in bitwarden.vcerenu.com.ar corn-esidenfitications.us www.corn-esidenfitications.us www.sayhitoastranger.com porketta.co.uk www.porketta.co.uk susteroke.xyz www.dator.org dator.org apavuparks.lv mountabstract.com cdc-graphic.com stephaniemascarenas.tk xxcvbmg.tk buywhatever.online nicholasomiccioli.com kocgrafik.net pos-th.com gettext.realmdb.workers.dev mozart19.de collections.realmdb.workers.dev messages.realmdb.workers.dev layer2proxy.realmdb.workers.dev getmessages.realmdb.workers.dev postproxywocache.realmdb.workers.dev exploreassets.realmdb.workers.dev asset.realmdb.workers.dev markmessagesasread.realmdb.workers.dev l2proxywocache.realmdb.workers.dev user.realmdb.workers.dev getmessagesbyconvoid.realmdb.workers.dev postcallproxy.realmdb.workers.dev tirpen.com levaquin.quest lnacane.shop j999.in darbypierrery.cyou outofnothing.co nbrjt5mh.xyz myogreened.tk briefmee.com dwightalyciade.cyou www.stalloutdoor.com www.ovenmitts-sales.com ovenmitts-sales.com stodimripol.tk sobremielomamultiplo.com.br patient-frost-766b.plinyvol7670.workers.dev misty-sun-4cc7.plinyvol7670.workers.dev melvinamosesny.cyou 3wisemonkeys.co.nz sanqianju.com icritinalranis.ml maggiedancestudio.com san-rus-essentuki.ru escort63.top hls79.ru.com www.analiseessencialista.com.br analiseessencialista.com.br foodle.io www.foodle.io depucajobneo.tk 13ginx.top congmopodiwydd.tk atdicoro.ml ere.fi linza.team thinkdata.be lonceng77.com vavada-pz.top www.cap-animation.com cap-animation.com zffibp.xyz escapadeslyonnaises.fr cowful.com cloeanes.com romenci.tk inkandcolourik.com wrby.io kalimeragoods.com 7o88xv.tokyo mute-breeze-e679.bidad89207.workers.dev cncat.me restless-art-3228.plinyvol7670.workers.dev www.godrejsafelocker.com netflick.ns-23.workers.dev iowalawnandlandscape.com 3vdfy5i.buzz dialotecelahoch.ml www.impactcollective.eu lemonade.sh wap.kopiwla.com pivafoa.xyz e-dopomoga.live tigerbet888slots.com

Malware Detected on Host

Count: 1 f38421256ab5be78fe2803dcb176cdf5b58fcbd9399441e33c6426b851e5fd43

Open Ports Detected

2052 2082 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

****** ****** ******