104.21.85.67 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.85.67 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 9 times
• Protcols Attacked: SSH
• Passive DNS Results: ae0325.izumd.workers.dev functionalformulas.com bolention.sa.com chronicleoftoday.com code.kahatie.ovh netdata.kahatie.ovh rex11.3452742107.workers.dev sanbrunogaterepair.us www662artemisbet.com satusatunya.live nabialrahma.com www.nabialrahma.com sibleyairductcleaning.us vip-orangex.top mainrtpmaha.xyz www.mainrtpmaha.xyz kangaroosportugal.com laj948.com o2h7s.xyz onlinealisverisnoktasi.com playportal.xyz wiedergoods.com plgbhfhf.shop grieveorthodox.top fitbaile.com midlandparkslidingdoorrepair.us indobetgaming.xyz snowy-disk-b80e.manoko35403350.workers.dev jichang.jackye1616.workers.dev cariva.co.id yydssl.jackye1616.workers.dev www.hzfl.xyz documentopdfdigital.com justintvizle59.pro ellitoralconcordia.com bscp288.com mainpkv.social com-kitchen-special.online heytr.live cutexasbnk1.info nobis-amet.site adiaran.com customerpreemp.store wawa-x.com www.robscanlon.com rellplay611.com catchup3.pressply.com downloadgbwhatsapp.net.pk fortunates.top post-rs.top wayang88saya.website buggies-prices.online vipdafatoto.com login-cuan777.pro luckybonusshop.com bbtv51.com isimesim.com www.atmsecurityassociation.com famsungroup.co ktvtogel.download 781d7.xyz slotakuratbaru.com gray-grapefruits-story.site matrix.nygaardboysen.dk www.hydwlkjs.com hydwlkjs.com creativetop.click adultsite.xyz tiresprices.vin www.hauke-social-media.de isaaclwhite.icu svtn.net st-kitts-passport-review.com inat-tvbox.com revivedma.com tienda-de-muebles-de-segunda-mano.today gardenvalleyfarmstead.com rubyfitnesscenter.com rtplive-hariini.pro detox-centers-us.online 1xslot.art quickcswap.net hotelsinmilancitycentre361847.life energyfbfpine.com k8dqhzvbb.cfd dewislotobebas.lol find-cabin-rentals.today xaldins.com liqiiatt.sbs getfairwinds.com tennisdrillshq.com eu.strong-men.org strong-men.org healthygoliath.com rodhoshfex.site 9ua8a.com waistspricey.click holiday-chalets.it bestoffer24.top very2.one hello-world-super-night-c2a0.bluecrsky.workers.dev vilute.com prometheananalytics-wildflowrer-eb7d9.gvillamil.workers.dev bodyspacartagena.com openapi.huadouai.com tahoesapphire.co haojinli.eu.org sigariiiti86.buzz portugal-icecasino.com xingqu01.icu escenteo.com 951261.com destravaanalista.com.br jazz4d.gay redstonedesigner.com cliantahugo.co.id trouver-moniphone.info blackedgewix.com adipoplus.net www.adipoplus.net juleoba.com www.aeroprobing.com qn008.xyz rdm.mtsmu.my.id milwaukoutils.com successful-brush.shop answersfr.com qyule35.xyz georggelsers.info sbypwu.com tracker.strong-men.org r2.prophetsix.com espaciodefe.com dk19ukk6.xyz dogsphafidaterli.tk xovonyty.online o.stroi-udo.com lunabet667.com pulsahavana.click pizzaletter.com topchauakm789.one mixww.com siglaseabreviaturas.com ilab.pressply.com lmsv1.pressply.com subsieure.lol collabora.tty03.org turkhavuz.com hinhanh.cloud 2wesom.cfd wrlanddevelopmentfl.net ketoedanyf157.cloud yowes39723.com emmalwells.bio millaryubes.xyz pabmedtobbetu.com 58793152.xyz www.techies-hive.com gp21.o2h7s.xyz www.gp21.o2h7s.xyz www.gp10.o2h7s.xyz gp10.o2h7s.xyz cyndaquil.ml formula-str.online tty03.org www.grahamlicon.my.id static-assets.natsumih.moe investmentinassociate.com inves-vangward.com zd2wsx.cfd volnacasino-gsgn.buzz tricorcon.tk rhinestoneproperty.co.uk economica-systema.online congratxpvr.click fun88inthailand.com oneball219.com zsercemwrelacje.pl www.serudsindia.org gwctpui.xyz lakesidemarinainc.com cardosocitytour.com.br fr4nki.me ygcsc04.co nevadediyor.com purple-sun-5759.manoko35403350.workers.dev wild-dawn-62c4.tkjpflqvah3582.workers.dev salsfamilyrestaurant.com economic-hydrant.org.uk cvhsonline.org 3dwallets.com hrwj259.com kmxo.info aimeermorgan.icu x88av037.xyz nulldock.com trunasmic.tk binbages.shop 7t8mg.com spring-frog-cb12.jipopem702.workers.dev ancient-hall-e033.mohamednimkafe910.workers.dev lahbul.online pokerdom-com.top tasamall.com tubesmaza.site plataformacristiana2020.com.ar makingtaxdigitalsolutions.co.uk www.legaltoro.com www.licentiesoft.nl heesportableoxygencontuseok.live www.frankieslandscapingdesigns.com frankieslandscapingdesigns.com freenode.m7il30o2.workers.dev square-breeze-1d06.gjendd45.workers.dev jitsi.nygaardboysen.dk dimension.nygaardboysen.dk 6vj.site playroulettegambling.com homeloanswithamy.com element.nygaardboysen.dk nygaardboysen.dk ahxfz.com licentiesoft.nl milkeninstitutecenter.org www.rtpgoku.com rtpgoku.com 1xmrdevrsnbzle.net withered-union-8c83.jipopem702.workers.dev image-lin.com solenibhuc.site bikefahrradneue.com www.conscioushabits.nl www.new-emak-version.com gspraha.com tacomalawnmowing.com xn–80ai2adfh.com ptcofilter.cloud techies-hive.com infoboletos.online dreambudge.com.tr serudsindia.org mumbromom.com lqgleoea.ml whoisthegirl.info www.excavatorr.com excavatorr.com new-emak-version.com www.ashtavinayak.info zsdprj.com butter-vintage.com nicfisc.it comunica.voto dev-1.underdogmarkets.com hide.palosaccounting.info wystoreh3169.com cdn-3.mathsux.org cdn-6.mathsux.org cdn-4.mathsux.org cdn.mathsux.org cdn-1.mathsux.org cdn-2.mathsux.org cdn-0.mathsux.org cdn-7.mathsux.org db.cloudprice.workers.dev juluwm.com prolike.shop gamingtech.pp.ua 295t5k.top grahamlicon.my.id xch.frenchfarmers.eu api.cloudprice.workers.dev needcarinspection.com gin123.com drive.pressply.com ausias.eu kuragani.in thediemer.com bawofui.xyz izvx2m4znbf.com famelord.com awssw.boats onemoreloans.com dirkbusch.com yeah.i18.workers.dev hello-world.i18.workers.dev pakiscience.pk www.pakiscience.pk aflac-mall.com gcpscraper.cloudprice.workers.dev cf-test.rf5k19r53a.workers.dev kz1.icu kzkkslots3.fun gala-y-games.com tide.palosaccounting.info toda.palosaccounting.info ohzaigju.com theslandedlens.com visa.palosaccounting.info espesn.com orange-bird-5aaa.akrhn837ksnuyrka7328.workers.dev floral-unit-8cf4.akrhn837ksnuyrka7328.workers.dev nozysosoftlo.gq inspirativex.com cittacampane.org xiaoqian8ye.xyz aspectgoe.buzz magnesiumalloydiecasting.xyz vibrantoperation.com solitary-dew-22e9.akrhn837ksnuyrka7328.workers.dev zxcakcon.com steamcomnnunlty.pw www.premdham.in premdham.in a.dzeessh.com casino-casinos.org hxianggx11.vip fqm4.com ucprimebd.com porderwriresde.tk neuleatesmasrtetor.gq www.takeofftechno.com takeofftechno.com company-shirts.net www.federal-textbook.ru canto.social www.motorcyclekech.com freenodeworker.latixe5764.workers.dev freenideworker.latixe5764.workers.dev throbbing-bush-1ba9.latixe5764.workers.dev tianmst2117.com inattv28.pro qbstructures.com kevincheats.ml hksdagohkwryo.net battlesteed.ai www.smoothie.work smoothie.work faicogmabundkari.tk hb8871.com www.hb8871.com slhaier.com torfinancecity.com 833690.vip ttwhire.com lovelydress.store cloud-api-network.com kagu.palosaccounting.info myvitta.com refutojuwu.xyz cxakxeds.tk k71hh7q.buzz fulleren.ru refpafkfdi.top nertahureci.tk manager.skerdykla.online imperialservices.in casinox-reg2.buzz doci.palosaccounting.info benddao-ai.com dispensador.net kinesingel.be haho.palosaccounting.info iprogrammer.me damrasourtaevisfull.tk r2.natsumih.moe quihitpoi.tk rumaal.pk checkrobicnkoh.ga aldiscoca.cf farjan1122334455-22.ml www05762.com nangobbtitichar.cf bodybymassage.com imevoraggre.top hokidikebaya4d.com www.tipsntric.com hzfuchuntyre.com hzdecor.com sunglassesgifts.com cepaksan.site funk.hauke-social-media.de timestoday.co vip.dzeessh.com globelxisnyatsensand.ga www.riseonlinecash.com xn–deltaslot88-gh4jo136b8rtb.com lusttabcebebi.tk vnjcxnjds.shop foningpentstorhap.tk portnormoham.buzz ntedafinatcotzei.ga blue-water-da0c.akrhn837ksnuyrka7328.workers.dev bold-surf-8c34.akrhn837ksnuyrka7328.workers.dev edu-purmo.com ablesech.cyou blogarahobel.gq www.cbnmnmhh.cf svetemchenal.ga serwindmemol.tk littlerealise.top ahooyiee-daram-khoshgele-4037.tk industrialucrativa.com.br fastfoodeasily.store www.skerdykla.online skerdykla.online gmcompare.net wohnungentrier.com truthnewsfour.xyz ers7tec.ml hellenicoutdoorwellness.com riseonlinecash.com projectwednesday.xyz cold-cake-164e.akrhn837ksnuyrka7328.workers.dev royal-resonance-bda8.akrhn837ksnuyrka7328.workers.dev calm-boat-7798.akrhn837ksnuyrka7328.workers.dev meowring.com ketoiruvi.cyou zierarecsi.tk 13813992.xyz mb.lennt.name.vn rattgensylo.tk tineauvmxd.shop pimusolistore.buzz mathdil.com nrvzcqm.za.com motorcyclekech.com login-games-ic.com r8yiosf.buzz qqshaonvzhuandaoa1.top 9media.ng ashishseekerdiary.site g60c.com mistuvib.gq sidarifmeboven.tk helix-worker.ak01.workers.dev nursingjobsinflorida.com stockengl.top wisehowronspa.info archiphoto.co ozny3od8.shop sq7eas.shop kardipopon8.ru www.thepetstaff.com liodittalan.tk www.mhpnw.com.au threestabfai.tk static-os.natsumih.moe draincleaningweb.life lvjfuketodkr.click nusi.palosaccounting.info laularesbeauprivex.tk billowing-boat-993d.vrege.workers.dev brea0t.shop rodeotech.biz www.traveljust4you.com.au dftkdapl.ml unitedauto.biz r62f.live gridglass47.co www.lcdscreenforlaptops.com aligntoday.co.za pflege-landing.hauke-social-media.de bpbirm.com nicewin88s3.win rcoolsunglasshut.shop cosyhousecollecticn.com suplestonode.net poueteur.fr extothealth.ga madrynahora.com thedocshoppe.club gefspida.quest federal-textbook.ru super-hall-5a5f.jigr8367743gr.workers.dev mydonuterie.hu damp-cell-7a76.waytoglobal.workers.dev izuchtmmwk.click qjwughsj.buzz valorbat.com yv3ptr.tk lingebbf.jigr8367743gr.workers.dev yp1.sa.com cairanthilljubest.cf subbeancclinab.tk thamproudasocutin.ml pdd28.tk govi.palosaccounting.info www.xoslot.me xoslot.me abtr4.site mc05i3.shop rewardshein.site pics.sexix.mobi keystore.shy.zone geyousai65.com cesasbot.com aflobour.tk www.mp3indiren.mobi mp3indiren.mobi tioflexotyz.cf

Malware Detected on Host

Count: 3 c3b2f4b2b6e23610923038798c9842f32b5d20a8dc9e2aa7283c918873f1c5d5 1b51e668a547e6a40217c1b133e9baf8f71309638900455b8bd5716c7d6bdbae e6c11fe35ed648b579337e08ef1a48c1fac446ebe2e88f71d2d7960fcac191bd

Open Ports Detected

2052 2053 2082 2083 2086 2087 443 80 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN

Links to attack logs

****** ****** ******