104.21.92.69 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.92.69 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 40/100

Host and Network Information

• Tags: japanese-phishing-site, phishing, phishing-site, scam, tsec

• View other sources: Spamhaus VirusTotal

• Country:
• Network: AS13335 cloudflare
• Noticed: 5 times
• Protcols Attacked: SSH
• Passive DNS Results: fordfarm.org bkar77c.online tranzify.cfd enhanco.space berklink.jdm.red silatokavl.ru amplitudevip.world bestroblox.space worker-fancy-sunset-f31d.1051953562.workers.dev promedigio.com yankeguo.com xn–12c3bn1nma.net brzozowski-autokomis.pl diaperresource.today igsxte.com m4lukuj0zz.website shfangze.com 433bola.com pasiondeanillos.com situsjp138.xyz vespera.space preparetolosegaming.com rotabettv246.com idealprimeproducts.com zhongproper.site ujablissful.fun www.enterprisesadblockeredition.net hello-world-tiny-band-cd31.r7r38g67ku.workers.dev worker-raspy-mode-8553.r7r38g67ku.workers.dev hello-world-white-math-0722.r7r38g67ku.workers.dev hello-world-falling-salad-e725.r7r38g67ku.workers.dev hello-world-twilight-darkness-4160.r7r38g67ku.workers.dev hello-world-shrill-rice-a63f.r7r38g67ku.workers.dev hello-world-broad-hat-80f3.r7r38g67ku.workers.dev hello-world-calm-poetry-8c2b.r7r38g67ku.workers.dev hello-world-square-poetry-669b.r7r38g67ku.workers.dev hello-world-cold-sound-702c.r7r38g67ku.workers.dev hello-world-proud-hat-eca2.r7r38g67ku.workers.dev hello-world-mute-river-e560.r7r38g67ku.workers.dev hello-world-calm-shadow-9b21.r7r38g67ku.workers.dev hello-world-lingering-grass-e674.r7r38g67ku.workers.dev hello-world-mute-grass-36a7.r7r38g67ku.workers.dev jordanwebmall.com j200m-slot.pro promo.tapsells.life videohot845.click shiotogelhariini.com mobiblog.lol vipdivisi303.info thewavecorp.com hsingh.site grewjewelry.com llpclear.com sxrhl.com mianbarber.icu 132455.xyz tt777.online m-1126bets10.com moldblue.xyz kzdirectpinap.click npfroev.cn outlander.ai allegrolokalnie.pl-sklep.pl pl-sklep.pl isabellevoyage.travel melbet-seb.top onexmen.website htht1004.com bdsmbroken.com www.danddcollectibles.shop danddcollectibles.shop jewelrybygg.store primesocialzone.org bildfox.com premiumluxurygames.com superliveproducers.com jcegjpgcdddek.shop onlinepp.click javaresmi.com straysubsidy.top kalender6444.com sseven-sss.com glin.asia mainsoul.quest dizipal600.com bingoleml.com directreach.site magiwell.site alcoveacademy.com traligasi.shop moressing.pics wdklt.site notpbb.com tejiraat-hamraah.xyz rhinoplastyusa.today astjsj.540088.eu.org stanoveland.com hairbeautyes.com pawpawspals.store dominiquetodaro.com lunewdea.xyz celestialpc.net 5000loantopayoffdebt741295.life vw.brzht.space primeshoesgroup.com gammaslot2.com 783b0.xyz resi.cl webshowbiz.com qsdxwj.com kinmintpostifu.tk cryt-ivo.com zds998.vip pornfree.best gala-games-global-homepage-co10.com ketogopro.com cloudscasts.com ineptsmirk.com sofas-info-no-kwc.today muhdjihad.com llfilmproductions.com kinox.autos yoda4d777.vip seniors-living-searches-au.today nhmusp.fun courses-digital-marketing-za.today salem4dslot.com padepokans.sbs danabet99.quest 2183333.com dcuevp.cfd hj8491de.top carrentalmilanairport828928.life brushsalon.top houstonfirstfunding.com slow-winsdow.com homeschoolrutherford.com makeorbreak.top polynedra.network kingdom69.life zeusbolagacor.com mascarfilo.net clearthinkingchristian.com kelmlsc.sbs yvtconors.sbs mehmetalikayavakfi.net mnrjdev.buzz funng.com mif-eu.org vyrgc.xyz pioneerchina.org bracespanama.today persontime.info links.wla.world konkursgolosovanie-deti.online fttrdr.net mijuegosvideo.com kaitlynmariafilippini.com dircdethetovibud.tk wichat.link sanfranciscocountyjail.org tpl.job.kh.ua www.goal6688.net goal6688.net xtbarry.bio u007.top erjerg.buzz ukrainevpn.net 83993k.com ihegah.cfd mesforbuildingmaterials.com cdn.gametrust.gg ku6012.net blair-martin.you-yupp.pics home.londonappworks.co.uk hwmjvd.sbs v2econsultinggroup.com hoschenprada.com jdm.red tavenortrends.com kekicabk.sbs sayang4d.bio www.vitalis.network d01ole41i43qck.godothan.com 8swilouw0cmdj.godothan.com biquge700.com lemy.nl www.acarlargruptekstil.com ftp.acarlargruptekstil.com acarlargruptekstil.com abovvebrrokeer.shop godothan.com mst-vorker-hiddify-fixgsmtop.gfix4600.workers.dev montbunweifragwer.ml luckykisaran4d.org vahid.gfix4600.workers.dev b.jdm.red grandecolline.fr blissfulnest.shop videosformativos.online shimanorods-official.com e-bldortakyetkiis.net skisuitverkoop.com tendon.pastactual.site ikcih.life enterprisesadblockeredition.net geoloc-un-mobile.com www.spremtopp.com go.lzc256.com lmn5360.sbs belianimaison.com gametrust.gg 70t80zb.top kerstin-markus.you-yupp.pics chierancontters.ml vipslotjago.com accident.pastactual.site wildweb.link junkjunklosangeles.com syno.ink vitalis.network nkrpokpld.cyou may88.ws timviecnhanh.com orange-mouse-43b3.gqxberrb.workers.dev yourownpetsupplies.com owenahughes.icu patoderolu.ml balticscope.com biz.londonappworks.co.uk mcofxua.top orekuwait.org jonsohorssonpvilvia.ga app-xray.shop proveedoraelectricajar.com hidify-worker.gfix4600.workers.dev hello-world-sweet-rice-b84d.gfix4600.workers.dev louisedwaters.xyz rmn-small-business-loans-ca.today godnephew.fun 99qlm.live bowfhkids.shop animals-travel.id6432.ru wildberries.id6432.ru avito.id6432.ru abcv59.com gqmsdev.com gta5app.website exlabhe.tk www.lstsv.fit letgo-0404.com leadsight.io aodengbao.com witabok.ru.com usually.pastactual.site kufunvn4.online nectarine.pastactual.site activelifey.com www.wtibeam.com.au wtibeam.com.au privacynoob.com www.privacynoob.com www.xmsp26.top www.yorkshirepianologistics.co.uk prmdb.com 2forumiddaa.com brines-combining.click londonappworks.co.uk 2j7v.site idontgiveafuck.jdm.red unsold-car-suv-deals-za.life tumansar.ru mckas.info rdn717.rdn717.workers.dev kybet.club segaro-4.gfix4600.workers.dev replit2.gfix4600.workers.dev myaccount.dtwncollision.com sp.authpoint.usa.cloud.dtwncollision.com usa.authpoint.dtwncollision.com account.dtwncollision.com dfi.dtwncollision.com o.dtwncollision.com vn3hg.dtwncollision.com cas-aws.dtwncollision.com auth.dtwncollision.com ulgroup.dtwncollision.com login.dtwncollision.com secure.dtwncollision.com id.dtwncollision.com dotfoods.dtwncollision.com msfed.dtwncollision.com accounts.dtwncollision.com msft.dtwncollision.com www.dtwncollision.com outlook.dtwncollision.com aadcdn.dtwncollision.com advath.dtwncollision.com sci.dtwncollision.com selfserviceportal.authpoint.usa.cloud.dtwncollision.com smusxath.dtwncollision.com github.dtwncollision.com dtwncollision.com cloud.dtwncollision.com ywnjb.dtwncollision.com certauth.dtwncollision.com dev.sp.authpoint.usa.cloud.dtwncollision.com fwd-api-gateway-dev.rapid-moon-e1ca.workers.dev fwd-api-gateway-prod.rapid-moon-e1ca.workers.dev yenilendi7girisler59.com 6wy01u.cyou panel.picka.ir api-gateway-fwd.rapid-moon-e1ca.workers.dev nameless-moon-8ff4.rapid-moon-e1ca.workers.dev info.bubzycouriers9207.workers.dev searay.no mcitx.picka.ir www.turponshos.com bde5.com shrill-sun-8a54.hxgq2c1x7617.workers.dev www.therugscurtains.com fc-27.com yorkshirepianologistics.co.uk outwardswrestle.cn spring-queen-4c89.gqxberrb.workers.dev twilight-frost-9a37.gqxberrb.workers.dev protein.pastactual.site committee.pastactual.site flow.pastactual.site deliver.pastactual.site fool.pastactual.site decisive.pastactual.site ditskive.dk warm-upslive.com spinnycrush.com silent-frost-4b1f.gqxberrb.workers.dev wandering-snow-3eb5.gqxberrb.workers.dev fragrant-tree-2fba.gqxberrb.workers.dev rapid-sun-7efa.gqxberrb.workers.dev sparkling-butterfly-1038.gqxberrb.workers.dev ancient-cherry-0d3c.gqxberrb.workers.dev aged-wood-8828.gqxberrb.workers.dev royal-sound-97f5.gqxberrb.workers.dev wandering-paper-e3b0.gqxberrb.workers.dev super-cake-9fe0.gqxberrb.workers.dev square-dawn-8e8b.gqxberrb.workers.dev wispy-mud-f99e.gqxberrb.workers.dev blue-boat-7e8b.gqxberrb.workers.dev fancy-sound-661e.gqxberrb.workers.dev tdnedbaasg.com craftyclique.in doprox-cloud-dab7.gfix4600.workers.dev doprox-bar-9c48.gfix4600.workers.dev huangmi.online f1ojm.com s49s.com heovtn.xyz withered-smoke-9937.gfix4600.workers.dev m4ghwf6jjyrm.shop mjer.ru aatp.cfd kelly-5.com nnnyyy.shop 3385566.xyz bbwgranny.cc node.xosoday.net demo.xosoday.net iblackbet.com royalsensa13.org trezzorr-wallett.com ciscpcsystems.site crimson-poetry-0113.gqxberrb.workers.dev totobet25.com 540088.eu.org presiedntesupermarkets.com revesdevees.com skinsaron.shop vadaverdiegy.buzz tmtplay.net honda.jdm.red fastwithdrawalbettingid.com mh5sze.cyou jormalampela.com releasebearing.space yulb0.xyz locksmithspaisley.co.uk www.scodepro.net antalyagazete.com.tr www.myhsb.com schrodertire.com india-farma.com blue-breeze-a59b.gqxberrb.workers.dev summer-dew-df0a.gqxberrb.workers.dev cold-heart-b298.gqxberrb.workers.dev misty-pond-32ae.gqxberrb.workers.dev quiet-fog-0b2c.gqxberrb.workers.dev silent-term-2e34.gqxberrb.workers.dev aged-surf-baf4.gqxberrb.workers.dev oceaniot.net royaljobsalerts.com xmsp26.top www.santehnika100.ru santehnika100.ru imwjgyeg.gay glimmerglassfestival.org holwerdtaxi.nl alogroup.top chestermag.info tikpostcore.com www.tikpostcore.com liebhermining.com ovasko.ru tanga-mallapi.com therestbook.com free-node.gfix4600.workers.dev gudangtutorial.biz.id electricistadigital.cl vsefakty.com truth.pastactual.site inch.pastactual.site him.pastactual.site yunod.za.com m77v.cc terrorist.pastactual.site sweater.pastactual.site symptom.pastactual.site sprout.pastactual.site start.pastactual.site sell.pastactual.site rrestorel.shop getvarietyproductssolutions.com www.suncoastfresh.com.au suncoastfresh.com.au summer-meadow-01dc.shalgham.workers.dev reopizza.fr largetrend.online auditorsearch.co jerseynewt.com ancient-cherry-b09f.gfix4600.workers.dev qarazo.icu gocbongro.net tapsells.life segaro-5.gfix4600.workers.dev member-sub.gfix4600.workers.dev lingering-pond-d474.gfix4600.workers.dev my-sub-1.gfix4600.workers.dev altoconsefu.tk xindemao.com arkwww.com replit.gfix4600.workers.dev xtlspanelgfix4600workersdev.gfix4600.workers.dev segaro-3.gfix4600.workers.dev topol.shalgham.workers.dev clgstocks.net persistence-project.tk soicauhomnay247.com tp561.cc odalands.ru xtlspanel.gfix4600.workers.dev ketoihazuri.cyou ammarelhaj.site www.ammarelhaj.site lenuage.world cryptosellnew.lol advancedpmr.com back.crypto-exchangetop.com crypto-exchangetop.com garusss.info pecylearn.com doprox2.gfix4600.workers.dev freenode-subscription.gfix4600.workers.dev xosoday.net vidlak.nserver.org a1medica.com www.a1medica.com dovmed.com chealgoagemerby.ml yo-im.sa.com xn–vusaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.net jenniferjoyrivoire.com tiocessbo.tk hizlipostaci.com diorvetby.site codigofm.es betgar109.com www.pariskuafor.com.tr pariskuafor.com.tr vt57o8.xyz tiudiochalkrana.tk api.lacuponeria.club consheadperome.tk lacuponeria.club northgatechamber.com bold-recipe-04a5.gfix4600.workers.dev lingering-flower-9d67.gfix4600.workers.dev shiny-lab-cbd7.gfix4600.workers.dev blue-base-8b6f.gfix4600.workers.dev ton14.site dpniskhv.ml 78mq.top

Open Ports Detected

2082 2083 2086 2087 443 80 8080 8443

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN

Links to attack logs

****** ****** ******