104.21.86.42 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.86.42 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: fensakinternal.work ksly8.com mariambu.live static-media.cleveradssolutions.com ereker.xyz profilo.com.cn evalorant.fun bartowairductcleaning.us pisdf.info partakafad.com slotbahistv.com roofingrenew.com prbaiknkndalaaccount.horney.my.id eventoimperiodabeleza.com shio168promo8.com pssstore.shop 69ft8l.buzz hrn-good.com mountainbreezehousekeeping.com www.bidanarofah.info mega-invest.pro tryregis.site villagesefd.today alternatif-iklan4d.shop www.alternatif-iklan4d.shop tako365.com subwaysurfers-online.com suara805.live rs43.bet receivetruesms.online mposlot-alt.xyz waste-management-101.today xn–04s765d.site bossbitching.com future358.com abc.abduljabbar33.workers.dev mlmrzx.com pradaukshop.com anziodennis.com xiaocuiyouxi.com fluoro-chem.com go5cim5ago.shop 1wwoa.top diorslot88.store jihoawen.com labanbayllc.com searchinfo.fyi rtpnation4d-v2.xyz luxury-watches-02.today mgo.dance qualarch.com marfim777.online hearingtest-ca-01.today yojanes.com sibo7ur.buzz portorchardupholsterycleaning.us soullatinopodcast.com buum11.xyz solabin.net totofaa.xyz shuttle174.ru mayasanas.com voenebulosa.digital auverifiedpaym.info spydershopping.com shoobi.be acrotracking.com raunchyt.com mealsensei.app mmajp19hmf.monster whcm16.com ebikefr-info-ca-kwu1.today cloud-center.website www.sewapetirx500.online sewapetirx500.online mswr0gw0rmbrb.cc caldwellvacations.com secure.tinywebsite-xyz.workers.dev www.transfastlogistic.com transfastlogistic.com ultrapremiacoes.com.br vocsteer.top fairgamez.site diundang.net wenlambo.cloud mattxmcghee.com hairlosstreatmentcenters.today house2loans.com canicrossnews.com www.techfoe.com odayakalife.dev arena328.lol kysaan.com 36557s.com nghfmz.com furniture116344.life espadamestre.com powerstripsshop.com buytechstore.org bidanarofah.info anubisx.sbs softandgrey.com slot259b.com ibrahimsstore.com startpoint-corp.com freddynewcomb.com yourbillingsrvc24.com id195725.com icy-smoke-23d2.renik96575.workers.dev taib52club.net neumarriru.tk riesndan.pro adshore.sbs verify-thx-id-client-3ds.shop rajaking77.com 9xsport.bet twms.com.tw sfstafewttw.sbs tele-canal-informacion.buzz madfhjgugjdfll.com mi2.4bprsuy5.workers.dev geopieces.top naturnektar.com hello-world-round-shape-2890.pubg-us-2018.workers.dev hollyrollers.ru gclicksafesearchzjwkcabwqzslweiwafozudntip-fqzxwwtta7yjwsx81.click cobx.erciyesde.com kengchou.com mssbahcard.com erciyesde.com elearningbengali.in tricromedia.com top-it.site abounding-circle.shop ifejmz.sbs 123b.house rfvg.top megistrigulrimo.tk keonhacaistar.com lichbongdahomnay.co mehmetyilmaz.online porendtali.tk meriproperty.org geratmoon.online nasiliem.site metoatesogluemektarrr.net duglobalstore.com huellaconstrucciones.com machine.wiseo.ml jedemkolem.cz hma.vaslak.cc local-laser-fat-removal.today canine.gg whiskeqggg.site geniusus.us check.wiseo.ml ucukgirisler.shop alanstables.com bclub9.com regions-support.us tele-canal-consulta.buzz motilesson.online getefrreemode.hosseinsharifi1999.workers.dev 1958133.com white-star-ae8f.renik96575.workers.dev broad-firefly-66ca.renik96575.workers.dev historicebenezer.org promohomegoods.com fermebesnier.com robedeceremonie.com 53nmwyeoxnvqe.top searchforhottubs.today dehostvanrekilba.tk fizioeduca.hr txbox.my.id www.securityalarmsinclermontfl.com qq3889link.site avionrealitnakancelaria.sk ai.simonsen666.top turn.simonsen666.top www.hydroserum.website openapi.simonsen666.top uryakun.shop massage-lanzarote.com simonsen666.top ye65.shop ujtcljoawcwxfoyz.com rara666.com stylecatalogs.com crocoslots-casino.com rssams.co.id activate-health-abundant.com somo.wtf foatcoulpied.site angelgeratesprada.com diorubzfqnl.pw colt789.com hum.fr here-behave.club mmunchetwoodgla.tk ugghxwz.cyou riastocodupken.ga cxdproject.online zrsc.net mlhkasersxrgfv.net th2023-13.fun localweblist.com madongxu.com crm.levanda.com.cy www.crm.levanda.com.cy brandhuhf.site ambtopup.com tm-layer.com yogway.in freelyfeminine.com congiabrumanan.gq topcasino-germany.site gamblingplanet.dk chemicalplantmachinery.co.in juliovelez.co pdyzt.site sportworld.site musicsvamp.com www.musicsvamp.com room.wiseo.ml dl.pwk-network.workers.dev ketogonyj.cloud m.78zwz.com mohijahomestay.com ebaymall.co anerstifexyb.tk vir-nature.fr frescheinc.com indiepearls.com www.hx688.vip office.errac.cat raspy-sunset-239e.dvyatncijm794.workers.dev safe-ledger.com playpixworld.space posovetam.quest trktrk.top e8net.com ylxbdsy.com www.nadrovahdon.ru nadrovahdon.ru nhanvanauto.icu young-snow-d0a4.renik96575.workers.dev bitter-fire-4c94.renik96575.workers.dev aged-violet-966e.renik96575.workers.dev round-fire-b1ea.renik96575.workers.dev yellow-bonus-1e95.renik96575.workers.dev cool-wave-2901.renik96575.workers.dev dry-tooth-7af3.renik96575.workers.dev polished-lake-6594.renik96575.workers.dev dawn-sound-43a7.renik96575.workers.dev blue-disk-f2bd.renik96575.workers.dev orange-math-f0a4.renik96575.workers.dev throbbing-bush-d936.renik96575.workers.dev bitter-heart-89d5.renik96575.workers.dev noisy-water-50c4.renik96575.workers.dev square-cell-2f14.renik96575.workers.dev fancy-boat-c816.renik96575.workers.dev sweet-wave-b90c.renik96575.workers.dev small-snowflake-cb66.renik96575.workers.dev www.ajaysabs.com www.oliogoccedoro.it betwinner-entry.ru ajaysabs.com dental-antiaging.com host.wiseo.ml kmipqi.xyz cdn36.fairinternet605463.workers.dev yellow-shadow-81b6.fairinternet605463.workers.dev plain-surf-4b0e.fairinternet605463.workers.dev cdn6.fairinternet605463.workers.dev gramsurge.cloud knryb-lkjhgfdsaqw.fun bonus-casino-name.ru e.wiseo.ml cdn.wiseo.ml odak.co chinaxngl.cn fromthegroundupthebook.com www.stopadblocker.pro pierr1.com steep-pine-325c.renik96575.workers.dev young-darkness-edc7.renik96575.workers.dev tight-band-fd68.renik96575.workers.dev freenode.pwk-network.workers.dev bc5103.com ekransa.tamirtakip.com lucky-jobs.site openai.codery.cn bestmicrowavee.com www.bestmicrowavee.com smtp.sh.wiseo.ml www.sh.wiseo.ml sh.wiseo.ml pop.sh.wiseo.ml ftp.sh.wiseo.ml divine-voice-c23a.metti-vahdani.workers.dev hidden-firefly-de75.metti-vahdani.workers.dev officialsites.one shibazilla.finance workfrfh.site arashbraveman.ml esgeniletisim.tamirtakip.com www.slotonline28.com smtp.nath.wiseo.ml pop.nath.wiseo.ml www.nath.wiseo.ml ftp.nath.wiseo.ml nath.wiseo.ml yonsei.wiseo.ml www.yonsei.wiseo.ml bonn-familyfirst.de pop.bot.wiseo.ml www.bot.wiseo.ml ftp.bot.wiseo.ml bot.wiseo.ml smtp.bot.wiseo.ml pop.ai.wiseo.ml www.ai.wiseo.ml ai.wiseo.ml ftp.ai.wiseo.ml smtp.ai.wiseo.ml smtp.hr.wiseo.ml ftp.hr.wiseo.ml www.hr.wiseo.ml hr.wiseo.ml pop.hr.wiseo.ml www.bio.wiseo.ml ftp.bio.wiseo.ml pop.bio.wiseo.ml bio.wiseo.ml smtp.bio.wiseo.ml ftp.order.wiseo.ml www.order.wiseo.ml pop.order.wiseo.ml order.wiseo.ml smtp.order.wiseo.ml www.qr.wiseo.ml smtp.qr.wiseo.ml pop.qr.wiseo.ml qr.wiseo.ml ftp.qr.wiseo.ml ftp.info.wiseo.ml pop.info.wiseo.ml www.info.wiseo.ml info.wiseo.ml smtp.info.wiseo.ml ekayazilim.com www.ekayazilim.com hydroserum.website broad-water-894f.rahman-nasi.workers.dev xhlgbcbgrylxp.cc ketonudutivyqeh.fun fjokkings.store yellow-frost-e465.renik96575.workers.dev withered-feather-0a8b.renik96575.workers.dev billowing-moon-a6fd.renik96575.workers.dev orange-brook-d186.renik96575.workers.dev floral-sun-7eb9.renik96575.workers.dev dawn-paper-e85f.renik96575.workers.dev holy-moon-784a.renik96575.workers.dev billowing-rain-9e2d.renik96575.workers.dev fragrant-sound-b8f2.renik96575.workers.dev lively-mode-1b3b.renik96575.workers.dev muddy-mud-2fe2.renik96575.workers.dev calm-truth-6289.renik96575.workers.dev flat-scene-8649.renik96575.workers.dev blue-term-dcbc.renik96575.workers.dev lively-dust-903e.renik96575.workers.dev hidden-wood-27d7.renik96575.workers.dev aged-wood-adb9.renik96575.workers.dev wild-salad-5c76.renik96575.workers.dev flat-mountain-8bc1.renik96575.workers.dev steep-frog-398a.renik96575.workers.dev odd-voice-27a0.renik96575.workers.dev gentle-disk-9372.renik96575.workers.dev holy-brook-a77e.renik96575.workers.dev dry-field-d2a9.renik96575.workers.dev withered-water-9fd0.renik96575.workers.dev crimson-forest-016d.renik96575.workers.dev spring-queen-ba53.renik96575.workers.dev red-hill-e953.renik96575.workers.dev autumn-fog-dac6.renik96575.workers.dev blue-snow-f91c.renik96575.workers.dev broad-river-a038.renik96575.workers.dev divine-bar-0294.renik96575.workers.dev shrill-scene-1af2.renik96575.workers.dev purple-hill-87a5.renik96575.workers.dev divine-wildflower-a85b.renik96575.workers.dev rough-haze-9b6f.renik96575.workers.dev withered-resonance-2d2f.renik96575.workers.dev fragrant-sound-e58f.renik96575.workers.dev white-sun-60c0.renik96575.workers.dev broken-frost-038d.renik96575.workers.dev weathered-snow-da8f.renik96575.workers.dev square-voice-d8da.renik96575.workers.dev super-flower-7478.renik96575.workers.dev blue-limit-20a5.renik96575.workers.dev aged-river-7df6.renik96575.workers.dev falling-frog-845c.renik96575.workers.dev jolly-lake-40e3.renik96575.workers.dev ancient-sea-1c1a.renik96575.workers.dev small-sea-338a.renik96575.workers.dev bitter-smoke-83b9.renik96575.workers.dev orange-unit-9f38.renik96575.workers.dev jolly-cake-8028.renik96575.workers.dev shy-fire-bae9.renik96575.workers.dev wild-art-3857.renik96575.workers.dev tickets.touchdesigns.net taavangible.hair slotonline28.com www.pictstories.com chatsworthgaterepair.us pictstories.com ftp.member.wiseo.ml www.member.wiseo.ml smtp.member.wiseo.ml pop.member.wiseo.ml member.wiseo.ml mitfiminscarli.gq www.ak-sagida.com help.ycxydr.club www.cleaners-shop.com selesaimasalah.com dissolution.tax yuanshiyixiang.com yandbstore.com www.yandbstore.com shop-color.com dobbies-garden-centres.com www.worldcup777.com money-easilyfqh.buzz koenigaalen.info 1wsqc.me cheapplanner1.rahman-nasi.workers.dev www.bringakereso.hu bringakereso.hu persawr.com nightmovie.arashbraveman.ml craftystoreonline.com uarhks.xyz smtp.d.wiseo.ml www.d.wiseo.ml ftp.d.wiseo.ml pop.d.wiseo.ml d.wiseo.ml www.primaryhealthplus.com primaryhealthplus.com bjnlyuxky.com cdn-6.jobdiali.com cdn-3.jobdiali.com cdn-4.jobdiali.com lhzz000.com gsmbilisim.tamirtakip.com tufanteknik.tamirtakip.com tamirane.tamirtakip.com aytekbilgisayar.tamirtakip.com doganbilgisayar.tamirtakip.com phoneservice.tamirtakip.com euroqsl.com www.akabou-nishijin.com akabou-nishijin.com yorpim.cyou atchdmac.cyou 1wyes.top keeponul.com investition-focus.de dev.civitai.com yposv.org onbet113.com www.odittogallery.com trus.space uptime.ellasayin.com lhxsolucoescontabeis.com.br www.lhxsolucoescontabeis.com.br 78zwz.com roverification.com cirurgia4em1.com.br fns.site jdt-a-venezia.com kita01.live vemaloternoles.shop shiberia.shop loongwaswimwear.com uspostsdiscount.shop semmelweismozgalom.info daygrador.ml getinthefight.club cristao7.com maintenance.dormy.workers.dev afgecouncil252.com www.afgecouncil252.com immobiliarelisbona.com iuty.ip8d.in coinvipss.com b2b.diprovet.com

Malware Detected on Host

Count: 8 be87e71a25840f146c1ff8a69dd449f6c9977aff09ef0b4650c69ff577115093 22893082be4652c53bdc65b431b1932933602c29e7c5afcaaf1e6785fb1d2d65 6a6b6baec3244af7eac2cb5ab3c701bdf1a992b510a9f665aeadfa2e61dee218 7fae27f6841fcb0c0a6b5f6eca2cfd413e8cb556f661b1aea21fdb640e7ea4d8 27aa9ce88cff72abef8c47ed9e65e8e38ba7b05395cae0f898c6b6f0608912cf 07e25e794e6c52485e65ec401d7c3b2935e675058bb03e19a6bbe99fd65571f5 df33cb79f6bd11a345024fed48b5b0cc1e44e4a9de865127461676807fe0d8b9 66b9ced9d7e9add1807cef49d612f18507dceca9ec34fb2e3e82e9aabc380780

Open Ports Detected

2082 2083 2086 2087 443 80 8080 8443 8880

CVEs Detected

CVE-2011-4718 CVE-2013-6501 CVE-2013-7327 CVE-2014-0236 CVE-2014-2020 CVE-2014-4670 CVE-2014-5459 CVE-2014-9425 CVE-2014-9426 CVE-2014-9767 CVE-2015-1351 CVE-2015-4116 CVE-2015-4601 CVE-2015-7803 CVE-2015-7804 CVE-2015-8865 CVE-2015-8874 CVE-2015-8877 CVE-2015-8879 CVE-2015-8994 CVE-2015-9253 CVE-2016-10158 CVE-2016-10159 CVE-2016-10161 CVE-2016-10397 CVE-2016-10712 CVE-2016-1903 CVE-2016-2554 CVE-2016-3141 CVE-2016-3142 CVE-2016-4070 CVE-2016-4342 CVE-2016-4343 CVE-2016-4537 CVE-2016-4538 CVE-2016-4539 CVE-2016-4540 CVE-2016-4541 CVE-2016-4542 CVE-2016-4543 CVE-2016-5093 CVE-2016-5094 CVE-2016-5095 CVE-2016-5096 CVE-2016-5114 CVE-2016-5399 CVE-2016-5768 CVE-2016-5769 CVE-2016-5770 CVE-2016-5771 CVE-2016-5772 CVE-2016-5773 CVE-2016-6288 CVE-2016-6289 CVE-2016-6290 CVE-2016-6291 CVE-2016-6292 CVE-2016-6294 CVE-2016-6295 CVE-2016-6296 CVE-2016-6297 CVE-2016-7124 CVE-2016-7125 CVE-2016-7126 CVE-2016-7127 CVE-2016-7128 CVE-2016-7129 CVE-2016-7130 CVE-2016-7131 CVE-2016-7132 CVE-2016-7411 CVE-2016-7412 CVE-2016-7413 CVE-2016-7414 CVE-2016-7416 CVE-2016-7417 CVE-2016-7418 CVE-2016-7478 CVE-2016-9137 CVE-2016-9138 CVE-2016-9934 CVE-2016-9935 CVE-2017-11142 CVE-2017-11143 CVE-2017-11144 CVE-2017-11145 CVE-2017-11628 CVE-2017-12933 CVE-2017-16642 CVE-2017-7272 CVE-2017-7890 CVE-2017-7963 CVE-2017-9224 CVE-2017-9226 CVE-2018-10545 CVE-2018-10546 CVE-2018-10547 CVE-2018-10548 CVE-2018-10549 CVE-2018-14851 CVE-2018-14883 CVE-2018-15132 CVE-2018-17082 CVE-2018-19395 CVE-2018-19396 CVE-2018-19520 CVE-2018-20783 CVE-2018-7584 CVE-2019-9020 CVE-2019-9021 CVE-2019-9023 CVE-2019-9024 CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9641 CVE-2022-31628 CVE-2022-31629

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

****** ****** ******