104.21.85.96 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.85.96 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: dkijakarta.my.id 3isquh.shop stantonupholsterycleaning.us fwng.us synthia.work liverpoolelectrician.net.au huntingtonstationwaterdamagerestoration.us cudq.foodiefranchise.com teratai777vvip.online neohostels.ru dicrnq.com bydleni-provas.cz cqbz.net ab386.xyz daoship.site situsaw99.cc apartmentsforrent-info-be.today bjkqwer.makeup sbermegamarket.site advisorhub.org.in brlocal-opt.com 325169.art nurecomand.com junkremovaljob.today vpn2.ahmadjafary220066.workers.dev ambitcap.com rtplastkeren.com berlenmusic.com ahmad.ahmadjafary220066.workers.dev drugrehab666.today king31.ahmadjafary220066.workers.dev xn–130betne-ykb.com peplexart.com sm5zymr.gm-ceramic-consulting.de new-user.blintl.com xoso-1.com rivertime-tw.cloud 0fx1.com thegoat168.net itp.lat digid.cfd portal.hit32club.com pic.momodoll.com samsungmobilemasters.com pinnzone-uz.click suppostt.website www.cookevilleeye.com tmxaap.world txzryeaxl01.top dresydnew.com dialskhh.xyz bbpmqhcdjdgoh.shop moroniairductcleaning.us techpulseio.site www.techpulseio.site www87179b.com elderrowing.com homewareprous.com welamekavewanch.top momogatsu.com redwoodcitymoversservices.com dzfam.net betbayar4d.com archeryez.com reexamine.de toxictitss.love xnrb.foodiefranchise.com xnkh.foodiefranchise.com worldfree4u.media usejgaltapp.com return-request-headers.yachie77.workers.dev sweatereonsalestore.com startcoines.com www.tailgatingsalesonsale.com vrfest.us gacorslt.art bintang678.biz knickers-officialshop.com lasantapesca.com.mx dgub78.top bearmakstw.site rawayie-manzili.com mainlogo303.site gojotewas.space beltedtrenchcoat-shop.com movehost.site ypdl11w2sc.top amlbot.team girlfans.fun japrislot.vip bilhetesonline.digital braxde.com bloodpressurereducer.shop iamkrafshan.online moons-a.com thekrtsystem.com tht123.com skt123slot.com ifx-party.com alisonkennedytherapy.com holbenhomes.com animalandlove.com 0q564x2b.com azino777-453.buzz royalgardenmanagement.com twat.city trulybeautifuldurablekitchenappliances.com amazingslot.online nocosthearingaids.today jetinnomachines.com 1094bestl0.net promptbuilder.dev xnehtzsvyl.com shangxunyoupind68.com permanent-tsb-setups.com treballadors.org jfjjg.lat mesinatm2.online one5bet.live hello-world-bitter-breeze-7766.bdching.workers.dev hungzee.com honey-999.com ayookay.com himchistka-biysk.ru tratamientos-para-el-cancer-devejiga.today prokonpack-webshop.nl kexjryp.sbs spooky.cab gologictechnologies.com uap.directory twitchcdnfor.com hxvk.foodiefranchise.com pheobeeastin.sbs holidayresort.ae avidemux.cf carendocien.com kefgqrgp.sbs saudifanclub.com handtoolfiles.com fy0ic3.cyou blintl.com opene.org supergreeksmarketplace.com yurlink.com intim-sexdosug.online gadzhits.com sundaymood.co keumoxajus.sbs iyn2.buzz billowing-hall-ffa7.34479955984369.workers.dev patient-heart-3333.34479955984369.workers.dev gary.foodiefranchise.com www.logic-oil.com chlorom.com lendingracer.com filmserierverkauf.com kangtingpet.com newpoker.cc www.newpoker.cc tailgatingsalesonsale.com restaurangsamsara.com rtpslotroyalgacor.com www.storagebuildingswhiteville.com www.monochromet-shirt.com isaimini.vet monochromet-shirt.com forward-kaden.dhufford.workers.dev vegetablevoucher.top chinaxikou.net forward-kaleb.dhufford.workers.dev sophiawomen.com aarsis.com animallearnings.com www.animallearnings.com ageema.com gamejet.pro 5win5.com relmady.tk creazionibp.it witevertaavawil.ga goldwin88.xyz pokerdom-cuf6.top www.builderschicago.com fufuslot.monster loisevalynra.best soul-mate.net lesko.hu 911meritking.com cinema-premiere.com bigdataeurope.eu 8utv.com djapyw.shop hj7q9.shop pbdpconsulting.com modalhoki4d.com ihlalweb-sorgu.online wp-create-set-repeater.bbolleman.workers.dev hbm-ab.se rizun.in.ua jamesliojohnson.shop devcheater.com ledumggysz.site apiclip.com ratemgir.pw playcrot.cfd 4992q.com freshcasino-pfhp.buzz eelbtdqt.ml jprd3q.cfd www.lyrictheatrerochester.org roservicecenter.live www.roservicecenter.live lyrictheatrerochester.org jenniferocartwright.icu 3v5oj.com aderdilinbei.ga sanatsalhediyeler.com polapetir.store ebaiqu.buzz larisjo.tk shanyoudao.com vutmykag.com axgbeufi.space wkom.foodiefranchise.com vlfu.foodiefranchise.com gxri.foodiefranchise.com lxhq.foodiefranchise.com ifpn.foodiefranchise.com jsig.foodiefranchise.com spml.foodiefranchise.com duzf.foodiefranchise.com adci.foodiefranchise.com ymxq.foodiefranchise.com ljmc.foodiefranchise.com tcnd.foodiefranchise.com qkgm.foodiefranchise.com gtwq.foodiefranchise.com jogm.foodiefranchise.com atzr.foodiefranchise.com vkjc.foodiefranchise.com sykf.foodiefranchise.com rxqz.foodiefranchise.com mzyf.foodiefranchise.com rfxb.foodiefranchise.com fvhg.foodiefranchise.com losi.foodiefranchise.com edsq.foodiefranchise.com xbnz.foodiefranchise.com evif.foodiefranchise.com bordomaviradyo.com xdhv.foodiefranchise.com stax.foodiefranchise.com wytb.foodiefranchise.com uldn.foodiefranchise.com goem.foodiefranchise.com bgey.foodiefranchise.com mrjo.foodiefranchise.com kcab.foodiefranchise.com bitter-grass-b806.34479955984369.workers.dev kavbet351.co jsstyj.com 9668327.com gotify.aererus.nl ftid.foodiefranchise.com ylae.foodiefranchise.com qrou.foodiefranchise.com nfsb.foodiefranchise.com nofg.foodiefranchise.com aorg.foodiefranchise.com fxgt.foodiefranchise.com sqiy.foodiefranchise.com avum.foodiefranchise.com zitv.foodiefranchise.com yghk.foodiefranchise.com urda.foodiefranchise.com nckt.foodiefranchise.com xeod.foodiefranchise.com patient-union-568b.34696891.workers.dev nexa.lc.finance plex.aererus.nl cloudfoodies.com oldcoinsellerpvt.info generalcontractorsokc.com organikmark.com mysteryviu.com dfamexico.com testing.yachie77.workers.dev ekwf.info www.win79app.click win79app.click wbnephonecard.mom oneself-power.com yyyav430.cfd gzsxdm.xyz lili-loreen.de picshotmod.com casinogama-iqn.top a-trade36.site www.biaya.uk xxxwizard.com biaya.uk finskiyzaliv.pics fewacajacount.tk titleworks.info www.bestwebteacher.com emta.ee-logi-sisse.net gzshly.com bongdalu.wiki www.harellemagalhaes.com www.religious-places.com 18be.com abc-drama.com www.saintemarie-events.ca fancy-cake-0403.zhetdyfrf9431.workers.dev empty-feather-87aa.mehmet-akif.workers.dev fanaticsshop.online urbanglobaltaste.com www.urbanglobaltaste.com kupit-prodat.site changningpm.com jill.ph ssrou.twingswbi.top talentedhands.org dscoverdupage.com ssotelus.com zerodowntime.life southernarizonabank.com bartkeassociates.com www.okapilabu.click okapilabu.click pref.space www.villageimoveiscb.com.br plain-smoke-da63.bbolleman.workers.dev carrieaugustale.shop pldnew100.site livermoredryerventcleaning.us nfgoidibox-moxw.sbs lunar-garden.com bettingaffiliate.com merkezhaberler.net.tr whm.swisshosting.io rsdznjj.cn rapid-dew-9e04.hkri.workers.dev robeonline.shop ameliearnete.buzz ah-translation.com uliger-ecohotel.com www.qewcomm.com marvalov.site www.betmobile89.com systemexpert.quest bgbtaq.xyz helloworld.jamel3oy.workers.dev gameboost.online panzeriptv6.xyz artmeetscamera.com www.sporthitech.com villageimoveiscb.com.br nekolady.com.mx chatiptv.com prohockeyreference.com penzhaus.com netricomte.gq e-mail-service.joao-ferreira102097.workers.dev suprtntfix-uspa.cfd barbecuegames.com iaq7kq.buzz purple-fire-2d22.ahmaddailytech.workers.dev welcome-here.site wogavel.com popza24.biz vaploto.com www.bikegearbrand.com bikegearbrand.com volvoadventure.org www.volvoadventure.org uk2.jahesh.xyz dacy.shop ads-trendz.com figureitout.info creditrepairservice.today dosrechtfirmillga.tk www.eennieuwavontuur.com getafreenode.arsalankolahchifar.workers.dev mtpgad.com centuryuniverse.org www.centuryuniverse.org ugu.rs lxjinfuren.com richeckco.tk alluuneed.autos eennieuwavontuur.com km0mc0c.bar searchinc.de 9se260.xyz ali1.ali-137980-ali.workers.dev ali.ali-137980-ali.workers.dev start.aimstudios.io cabacee2.site arabcrown.com www.cryptocasinoslist.io 26531.at uniipay.io tvaztec.store speedtest.dubkow.workers.dev weathered-cake-8428.dfvdfvdvdvdv.workers.dev dark-thunder-a80d.dfvdfvdvdvdv.workers.dev kakekgahar.life sharpbrillance.store ppp.jucuhiu9.cyou ooo.jucuhiu9.cyou yyy.jucuhiu9.cyou iii.jucuhiu9.cyou uuu.jucuhiu9.cyou eee.jucuhiu9.cyou www.jucuhiu9.cyou insidetelco.com hdmatch.fun checkoutpayd.store www.blog.thekayelist.com www.thekayelist.com blog.thekayelist.com asechamdepodor.ml harellemagalhaes.com directory4web.net 6hwwzw.com researchpapereditingservice.com www.researchpapereditingservice.com gostata.tk venderenlaces.eu socledoa63.store staging2.loveyourhood.com www.staging2.loveyourhood.com emoqainsurance.com planmulnebar.tk 2226app3333.com fashiondiva.tk jrlinewood.com www.pakweekly.com jarindykstra.com www.equitygainers.com flowerseedco.com kripbedihdia.ga lowellanastasiaco.cyou owncast.aererus.nl bumg.info www.dichvusieunhanh.com de.dichvusieunhanh.com vhnanniversary.shop zz.lightolive.shop www.player1688.net wf-staging.gov-cr-canada.ca cmiavmwqxfkwk.cc claimawarded.com odichi.com peckcorrode.top lightolive.shop carstendressler.com besottumog.buzz www.saip.co.kr subysi0.site www.cryptominers.tk raftimkeraftim.cf qewcomm.com t-invest.site arcadiantales.io tvoju.website ketosoytedeactive.buzz condiotidotruo.gq www.bushnan.com reillyvellati.cyou blog.didge.site www.loveyourhood.com email-service-gateway.joao-ferreira102097.workers.dev tcr-international.org zjegzye.me malpforsithete.gq gendnanpala.ml mail-sandbox.joao-ferreira102097.workers.dev curryon.no m0stbet-f7o.click wadiew.shop www.itsjasim.com geospirsaddbur.tk 33mades.site charlieauroreji.cyou tokibbsunbiaqui.ml osuntruc.tk haydecyripihu.ml bethalev.org teian-akita.com ok-pressa.ru roidpercamufzeihenc.tk nowimildu.tk holliemaziexa.cyou 887708.net montegreen.ae datingsystems.com vpn.dichvusieunhanh.com system-success.live

Malware Detected on Host

Count: 6 13b02908ac93323a9aecc97b691ea832f4021895ba0c89fcd32aa577efc225cf 2987a359013ee1d7c9afee2fdd1d278f348270d8cdc22f27c17c9c196d78fd96 f3513be9dbcf5541e427f849e6aedb0e6f9fb565f46189829396efd9a2196d69 0f7df4bc68761986a7f5273f73d87c3c5709c12d146db0ce8bc3e43a58a21f59 9c556f989b7b93811ee6e74448e81dc14418cb6e5e5ddc7640fc8f3556959f18 2a06abafd017d1212230537633b17f3347565b7eb8b5a9918e1aff151b29a7b9

Open Ports Detected

2052 2082 2086 2087 443 80 8080 8443 8880

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

****** ****** ******