104.21.9.139 Threat Intelligence and Host Information

Jan 11, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 104.21.9.139 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

View other sources: Spamhaus VirusTotal

Country:
Network: AS13335 cloudflare
Noticed: 1 times
Protcols Attacked: SSH
Passive DNS Results: merchmaniahub.com riter-induction.com www.riter-induction.com vavada-qxj6.xyz bellflowertvmountingservice.us cnn24.healthzon24.com dersqacernecheesid.gq milpitasgaterepair.us mf.jennythong3e352014.workers.dev kabbadi.online www.bucbergtitmangdestti.tk rtp88automaxwin.info aneiegina.top travelhotelihg-xyz.com veneguia.net studiotributariorosa.com zoyamh.busybird.top dnxpih.busybird.top restless-water-69ac.jenisha-aspire56.workers.dev burststars.com devtortect.com www.holisticconstruction.linearwebsolutions.com.au ohnoyes.com buzzupgram.com carolinaframingnc.com sancarlosrecreationandwildlife.com rtp-air168.click tala345.com eventmanagerjob.com 224744.com xxlnutrition.de walberries.ru www.amylove.top aja-static-resources.autojobapply.com rolarbet.com pureaironline.com access-htmlchace.tools pzcstore.shop goonanoutingwith.shop coworking-au.today properties-gurgaon.site rvparkisp.com crockpics.com link-mgs88.store pinpoint-sa.com apps-microssoft.tech amundipro.com resmi303slot.life ourworthyjourney.com manoeuvrebleach.top capitallabs.shop swoopsavings.com uaofn.com olxdostavkaa.sbs hancho02.net elazigcevrelab.com mexaa22.com candyassociates.com bangie.online 7451514.com beginperplex.top rajatoto4gg.com filmymeet.mom rl-trades.space highqualitypotentialsdiscounts.com for4d.vip gballygordon.com eventuxawlly-cxawrve.shop rumahglory303.net usaaasec.com whatss.store skjortebutikk.store slots-for-real-money.com xtwlax.store lordfilm2.biz newsedgy.com pokerdom-amx.site furnitureoutletdeals.com barfnbrush.com get98994.site belle-choco.com akjhar.best cheatjuragan.pro bs.autojobapply.com restaurant-managementplatforms-uae-01.today chillychilessus.shop trendyfashion4u.store pot.healthzon24.com ipv6nodes.pansir0295252.workers.dev ashleynmcc.com singha878.bet luvivpharma.al romanpicisan.store chog3.ru.com kiguciywey.live sos1big7kphltz.xyz jackdatang.com rayclex.com eliteedge-br.com floosi.app updown71.com hnni.asia meja138slotgacor.lol readcomiconline.li aeonpion.site consuladosespana.com liga2000baik.com kk222k.top certificateglobes.click bosvip999.pro 00192d.com nagatoto88.info itvsy.busybird.top zerowaitwebsites.com jewelrygetwomen.com fentonchimneysweeping.us nbet91.pics izshadowmuse.com alpineunlock.online yogapetrz.net muyrder.shop xpressdservices.site hukoomi-gov.top diamondbarslidingdoorrepair.us arenabot.vip part-time-job-in-australia.today wa-slot.click ofertasdodia.site tasmanarns.com flatlace-upshoes.com nebulasculpt.yachts 7xm33.app trackshoessetsales.com hydraold.top animetama.com h6w.xyz awnsgj.com electro-light-store.com project-base-4b4d.tierfaitneuro.workers.dev slotasia365168.com niwaled.com thesource2beta.com hgmh.cfd kristrades.pro tagafterschool.club xn–tmrtrtbzslcs-b5b.net followers.expert phuongthuyazi.com healthzon24.com 0725185-de.18532229202.workers.dev 0725139-hk.18532229202.workers.dev arunabett.us spotlessdreamllc.com bettimepromo.info zz.listieup.workers.dev aliensmaster.com dijanacakic.com ajconsultantsinc.com www.ajconsultantsinc.com monolirmmo.shop telf-num-inmediato.buzz codm-newss.sahaalizadeh.workers.dev portable-ac-fr.today sanyibus08.top plain-unit-a108.mhmd62mhmd629183.workers.dev archivedvortex.com inacta.de kosnahse.xyz gy87v.top corvink.com agesek.lol pppg268.com pooloo.online gz64psf.homes golubovskiart.com admin.abilitycare.linearwebsolutions.com.au www.abilitycare.linearwebsolutions.com.au abilitycare.linearwebsolutions.com.au admin.studiolight.linearwebsolutions.com.au www.studiolight.linearwebsolutions.com.au studiolight.linearwebsolutions.com.au pinkbucks.net rimsmgir.pw hello-world-gentle-river-c556.turnmed009.workers.dev village-gaming.com www.dreamit.linearwebsolutions.com.au admin.dreamit.linearwebsolutions.com.au dreamit.linearwebsolutions.com.au debbank.top www.debbank.top finansa666.com high-pitched-tub.shop fanhaoben.online www.johnnyroadhouse.co.uk tight-sound-08a0.nrqfnhfrd2.workers.dev summer-brook-b6e6.nrqfnhfrd2.workers.dev wenan.work admin.pitchperfect.linearwebsolutions.com.au www.pitchperfect.linearwebsolutions.com.au pitchperfect.linearwebsolutions.com.au gplorbis.com caasiconsultants.com bradyjersey.store money-transfers.life www.music-convention.com kuyhaame.cyou guquantou.com lt3.getketobalance.site neelpatel.eu.org demo.refeyes.com binomor.com staging2.pbaker.com api.langlish.pro www.dbouk.linearwebsolutions.com.au admin.dbouk.linearwebsolutions.com.au dbouk.linearwebsolutions.com.au admin.sydneyimperial.linearwebsolutions.com.au www.sydneyimperial.linearwebsolutions.com.au sydneyimperial.linearwebsolutions.com.au hgpetckl.shop hello-world-plain-bonus-571a.vinilac394.workers.dev varduma.es www.gooddelivery.linearwebsolutions.com.au admin.gooddelivery.linearwebsolutions.com.au gooddelivery.linearwebsolutions.com.au web-hsting.com hpsupporthelp247.com www.nstk.rip nstk.rip healthblog1.space openperfectmarket.click wwwdeutscheaccedi.online githubproxy.eu.org 0739flw.com mymonthlyapp.kumarinikki.com omegaremont.com iamm.mhmd62mhmd629183.workers.dev wwwselectmedia.asia garlingmehighde.tk fastlati.ga sb1.ethor.tk enolotlenligh.tk 24-schluesseldienst-paderborn.de www.24-schluesseldienst-paderborn.de johnnyroadhouse.co.uk chimneysglenrock.vip citysexwebcams.com theatres-billets.online directed.space admin.91ai.me ziaterslonecvedawd.tk affiliatesolutionprovider.com www.vuaonline.com dark-dream-ceb0.kenleung05hk4956.workers.dev openaiproxy.kenleung05hk4956.workers.dev climateandwe.com override-hosturl.jenisha-aspire56.workers.dev devworks.firm.in music-convention.com chrishpainter.xyz rneckoszalin.pl www.ilectragroup.com orptsuxgih.com phoenixinvestmentsllc.co tapisserbga.com www.tapisserbga.com gdesazchatmi.gq kumarinikki.com web3apirl.cf www.alteregosdigitais.com.br icy-lab-57bd.49570vonna4823.workers.dev alteregosdigitais.com.br listxxxinterracial.com www.jobsbh.net odiasongsmp3.in autojobapply.com lively-darkness-74d1.18532229202.workers.dev artgenuine.ru w0pspwqrvjfzkkv.link green-limit-15ce.hdqsiwjgtz7188.workers.dev www.hotsoxus.shop hotsoxus.shop seedbox.ethor.tk dreams.sale webtv.ethor.tk tv.ethor.tk stb.ethor.tk panel.ethor.tk zen.crt.red sol.crt.red radiostudiosound.crt.red radiosibilla.crt.red q.crt.red iw6atq.crt.red ed.crt.red discovery2radio.crt.red d2r-play.crt.red d2r-redirect.crt.red 6.crt.red 3.crt.red 5.crt.red 4.crt.red ouruidi88.com bnbglblttr.net www.thetradeogre.org thetradeogre.org ostebenadling.site hidden-sun-852c.nrqfnhfrd2.workers.dev mute-heart-ce2c.nrqfnhfrd2.workers.dev broad-wildflower-78f3.nrqfnhfrd2.workers.dev patient-wood-0735.nrqfnhfrd2.workers.dev bitter-moon-0c2c.nrqfnhfrd2.workers.dev holy-poetry-e396.nrqfnhfrd2.workers.dev fancy-sound-accf.nrqfnhfrd2.workers.dev aged-dawn-ea77.nrqfnhfrd2.workers.dev r1827.xyz bold-glade-c66e.meysam-bahramiii723890.workers.dev tiny-mountain-f2de.meysam-bahramiii723890.workers.dev personalizarregalo.es workoutmealplans.com pen-iwamxf9oysapf3ck82ip.college auxceosv.fun www.noisieryiq.buzz noisieryiq.buzz gfzgnnd.info usp-so.biz www.voguemarks.com lusciousphonesex.com gwyvqeqls.fun valueautosales.biz www.openallhourspharmacy.co.uk offeraz.club abasun.dibamehr.workers.dev twilight-king-7fdd.rabebe5855.workers.dev patient-rice-505d.rabebe5855.workers.dev montesabryantphotography.com katherinehuang.co lp.josieteoliveira.com sosuke.org www.sosuke.org leclockhrigev.tk webn-chu.com gptpremium.live cdpire.com curve-offers.com ancient-base-647f.18532229202.workers.dev devil666.emadkhamseh1997.workers.dev mostbettebsom7.xyz ouethe.xyz agthdj.com quarantainenet.nl d3tt3.com royal-morning-e7b6.rabebe5855.workers.dev plain-waterfall-9f21.rabebe5855.workers.dev misty-field-0ce5.rabebe5855.workers.dev hazbetgiris.xyz wandering-snowflake-486b.hossein-mohebi2013.workers.dev www.coloradoskyway.com tujin.work desimedmarket.com super-rain-850d.18532229202.workers.dev ai.984236095.workers.dev lively-cherry-bb1d.984236095.workers.dev calm-sound-d74b.984236095.workers.dev atcamed.com richardscholten.com bettbooom.site twilight-lab-afdb.18532229202.workers.dev vovan8.buzz tight-term-ff14.nrqfnhfrd2.workers.dev orange-wind-cbf6.nrqfnhfrd2.workers.dev noisy-violet-21a9.nrqfnhfrd2.workers.dev throbbing-shadow-15ed.nrqfnhfrd2.workers.dev icy-shadow-e6cd.nrqfnhfrd2.workers.dev cold-dream-b062.nrqfnhfrd2.workers.dev bitter-hall-a6c9.nrqfnhfrd2.workers.dev mute-dew-be7f.nrqfnhfrd2.workers.dev lucky-wave-b720.nrqfnhfrd2.workers.dev weathered-surf-0779.nrqfnhfrd2.workers.dev super-hill-b89a.nrqfnhfrd2.workers.dev late-scene-9bee.nrqfnhfrd2.workers.dev weathered-rice-f2ce.nrqfnhfrd2.workers.dev divine-queen-e4e7.nrqfnhfrd2.workers.dev purple-shape-5aa1.nrqfnhfrd2.workers.dev rapid-sun-7332.nrqfnhfrd2.workers.dev delicate-cloud-5b05.nrqfnhfrd2.workers.dev misty-waterfall-6c0e.nrqfnhfrd2.workers.dev silent-band-ed1b.nrqfnhfrd2.workers.dev flaginvipufmai.tk g-trade19.site www.g-trade19.site shop.kopkarjim.com kk37.cc aff.60pcapp02.com u8f9g2mgia2q.xyz coloradoskyway.com bljlqc.buzz harborcitylocksmith.us lp.estourefugiado.org.br bimizewe.online wen-arbltrum.com dcx47.com songbopeng.com ukqqwfqm.buzz ciginroydeo.ml www.ywiretech.com 988507.xyz mtjrelectrosell.com special4d.net zysicyo.com swifthitechrvinspections.com vuaonline.com www.nofeark9.co.uk casino-maxbet.buzz onlinectit.com soma.pp.ua www.d168sa.com vpn.kamalm.workers.dev blue-bonus-5d03.18532229202.workers.dev ilectragroup.com www.thesynergyplanlv.com fakkora.com runjustforfun.com jointheglobalfund.org madecafe.co.uk semanadaoferta.com fastsutouchforsre.ga dsadsads00001155.xyz yourbestcreditunion.com aidatarobot.org nixustours.com lavitaaromas.com.br bashlineshop.com bloomheaven.de tz1skc.vip realtyacno.com www.korat.news korat.news piattifoodmenu.com voguemarks.com biaslurvafe.tk www.moorejoel.com app.kopkarjim.com broad-tooth-b65e.haha213.workers.dev fumkyjuvvv.cyou appstore-findmy.info ecceugctop.top insitedigestibe.com renewexpiss.com k7a.online chandrajmorgan.icu alpgiraykocal.com bins.errorsandanswers.com sayarmalsteels.com kewlrabbit.com app.recuperavendas.com mute-cake-uffizzi.18532229202.workers.dev uaral666.emadkhamseh1997.workers.dev pekinarchers.net www.dfip.io dfip.io stalk.gg u666.emadkhamseh1997.workers.dev chatwoot.recuperavendas.com lt2.getketobalance.site lt1.getketobalance.site getketobalance.site ecocoolinc.com gdjiefu.cn syrynxwp.ga caliuis.xyz luedmnqzgc.cyou proven.amongthem.sa.com goduvyr.cyou recuperavendas.com memoryc.pro jillswilcox.space cod75.ru www.pizzeriadoncamillo.fr green-recipe-28d7.18532229202.workers.dev dark-waterfall-d6aa.18532229202.workers.dev kmuahm.com weathered-tree-1466.18532229202.workers.dev broad-hat-d2ce.18532229202.workers.dev still-cloud-bee1.18532229202.workers.dev mute-river-14b8.18532229202.workers.dev ikaloberpati.tk hgscocodemes.net inscape.agency www.hentairelease.info hentairelease.info www.eavescommunications.com dawn-cake-86af.18532229202.workers.dev eavescommunications.com pzyi.info clubaladretonfu.tk biografiya-spb.ru orionx-acess.shop diontraceysy.cyou open650.ru

Malware Detected on Host

Count: 39 88f1aae6358d83019dfc4d68ca9062eba8c01ad0afb44a58ada79dea26470c70 c8d68c59e8f4cf194e50766e00d0fa72bba828a43ce4405fc195e3d27d9e4b6f 32635c5f985aa62687009145f91b4523b781bea2faa94f7864d2ff16ab0a14ef 04e942767c6c9744ef7eb6d3cc342239b8feaacd4df3c5e542b85177c0fbd97f 9e4b6c3beacf15788e4ab0c3dc67962de4e1181854ea65124ba7231ff88730dc 379362027442526fd4d4be9a6fd95b5cc1e6af9387cd508be24c6d5a6bdcba15 809fcaf1f16a3eccae900b2c572f0c87692efc5b5171d37eed32b40148383ec7 af2851998004247ac6d8057a1effbe01ddc1afd2ea7d0567e784cff13f3fe092 455517009fdfd87789fdfec23ccb1b00ac85f5b3bcc47430f4709ddab4073fba df5cb73f87df8a636ba68d6891263971d8a60775c76173f5599d15e10e18a091

Open Ports Detected

2052 2082 2083 2086 2087 443 80 8080 8443 8880

Map

Whois Information

NetRange: 104.16.0.0 - 104.31.255.255
CIDR: 104.16.0.0/12
NetName: CLOUDFLARENET
NetHandle: NET-104-16-0-0-1
Parent: NET104 (NET-104-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS13335
Organization: Cloudflare, Inc. (CLOUD14)
RegDate: 2014-03-28
Updated: 2021-05-26
Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
Ref: https://rdap.arin.net/registry/ip/104.16.0.0
OrgName: Cloudflare, Inc.
OrgId: CLOUD14
Address: 101 Townsend Street
City: San Francisco
StateProv: CA
PostalCode: 94107
Country: US
RegDate: 2010-07-09
Updated: 2021-07-01
Ref: https://rdap.arin.net/registry/entity/CLOUD14
OrgRoutingHandle: CLOUD146-ARIN
OrgRoutingName: Cloudflare-NOC
OrgRoutingPhone: +1-650-319-8930
OrgRoutingEmail: noc@cloudflare.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
OrgTechHandle: ADMIN2521-ARIN
OrgTechName: Admin
OrgTechPhone: +1-650-319-8930
OrgTechEmail: rir@cloudflare.com
OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
OrgNOCHandle: CLOUD146-ARIN
OrgNOCName: Cloudflare-NOC
OrgNOCPhone: +1-650-319-8930
OrgNOCEmail: noc@cloudflare.com
OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
OrgAbuseHandle: ABUSE2916-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-650-319-8930
OrgAbuseEmail: abuse@cloudflare.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
RNOCHandle: NOC11962-ARIN
RNOCName: NOC
RNOCPhone: +1-650-319-8930
RNOCEmail: noc@cloudflare.com
RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
RAbuseHandle: ABUSE2916-ARIN
RAbuseName: Abuse
RAbusePhone: +1-650-319-8930
RAbuseEmail: abuse@cloudflare.com
RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
RTechHandle: ADMIN2521-ARIN
RTechName: Admin
RTechPhone: +1-650-319-8930
RTechEmail: rir@cloudflare.com
RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

****** ****** ******

Share on: