104.21.94.2 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 104.21.94.2 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 11/100

Host and Network Information

• View other sources: Spamhaus VirusTotal
• Contained within other IP sets: coinbl_hosts

• Country:
• Network: AS13335 cloudflare
• Noticed: 1 times
• Protcols Attacked: SSH
• Passive DNS Results: www.lumierevergreen.com app-gala-games-world-2jzh6.com hosytmail6.com boredhappy.com dota2store.shop alliedlandowners.com imicuxa.za.com advokatminsk.com mermerrnd.sbs dark-sim.xyz slimpy.info onlinetoysshop.com moremall88.vip yjmianfeiw.top passuk-applyonline.com kawiberbagi21.click laelqp.shop hncoodde.shop animaleme.store 218winph.vip tryklnigpt20.com xoilaca.online majesticnet.xyz plasticfreelawrence.org ed-tech.sg lumierevergreen.com plisbet3.biz 98zjw.com incelly.8f1iyv7m.workers.dev temizlikteknolojisi.com psychotherapyclinic.org ecommercetoolkit.life lexging.com www.jokercostumesstore.com stonetowerminiatures.com motifguide.com partyclick-shop.com medlec.online ippsubtv.com alighanim.com sabbirsenglishworld.com regalglobalmarkets.com 4ampmegasensa.xyz enfibnp.store 1e0.shop okez.site squidgamethechallenge.online neuropsychologicalrosebud.life filesharedrive.com digitizer.dev cubicmacau.com planetrtphoki.online beyondwellnessfitnesssolutions.com k-pur.com provincetownrealestatecapecod.com seaotter.games opahokirtp.store lux12-mum88.space lucky-bums.info ho0fe4mw.top vsdkyu.store bonzamob.click fortunede.fr eyedrops129.today yyybet1.online mxafefana.shop cukongplay77.autos modal138gcr.asia velobonplan.com digitaladvertizer.com indysullivan.com visyra.com www.cupainting.co cupainting.co wiki.cubettech.com thelotto-vip-th.net teamtapiceria.com santanber.de autaxservices.online mrotech.aero sonrasindabikadinlatanistim.net innovation-scaletechbleed.com quantumsua.site sarephine.com telf-info-inmediato.buzz betfast.one bornroyalty.shop wasaky.com kuqig.com video.oznoz.com moge777.vin onliner-kamen.info harmfulundeservedly.click 202407.xyz thorntondisplays.com game-trade.site rnokjmq.com comedy-failit.cfd youmoer.com sabatoluca.com digitalpioneer.shop pain-treatment-220.today crestebzvr.com cose-cosi.com gb-inform.com spinheyopuzzle.com servicio-numero-express.buzz jirakana.com directoryorg.com mengnanhome2.top dingdong77vip.com hardbitumn.click kandy.vn pornosolgun.click www.pornosolgun.click hello-world-late-field-5504.larkinbriton.workers.dev marcolab.eu service24pay.com multipersadasb.com t.youmiaoqu.net caramelchildren.com www.utopiatech.cfd myeshopgen.com stella-luce.link mauri.lol bouteillesisothermes.com muatanrakyat2.click halte99.club 9918jh.co servermonas77.xyz acvketolife.com mobile-ndj.pro life2beneca.life solarpanelgrant.today play-go88r.site d88444.com rebeccalynnhuddleston.com vehiclecarezone.online tayniiii.buzz basic-bundle-super-waterfall-a98a.744355500.workers.dev stealbirthsimpurpmade.tk thegust.fr jwq9r6k4.top afmtwaverley.com medication-delivery-jobs-209-us-b.today thenerdfu.com lineprime.online dcpvy.link cms.seabiza.com seabiza.com jokercostumesstore.com rbcguide.com futureappreviews.com llhwiki.me sukienkikoronkowe.eu racecerbec.com www.kacamatakita.shop kacamatakita.shop banatdaognisuner.tk ynorziox.gq utopiatech.cfd alliancebankassociation.com tzfbnh.com zerreumurmda.net www.jamesthomas.online smarttransitwest.com pinup-apparelcart.click bizay.com.my gdk4xfu.cc receive-ag.buzz www.onewaywork.info www.euroairportbaselmulhousefreiburg.com www.fortunede.fr pttopcasinos.com sewsublay.com rifasonline.agr.br fhcbh.link ketoxofulomarl.cloud xkta.in sdzxb.es lanway.space tractortechhq.online nvehy.link www.pauljoda.com 69xx0123.xyz curly-mountain-592d.wejskdvfba5554.workers.dev derekshiraz.yoorkny1434.workers.dev purple-salad-47d2.yoorkny1434.workers.dev lucky88.coupons www.lucky88.coupons tiny-term-2807.yoorkny1434.workers.dev shrill-king-3bba.yoorkny1434.workers.dev www.floresdebush.com floresdebush.com ox0p.me jyhlvmxln.fun mykingdomspouse.com bdxx.uk wwwlazyacres.com gulfreinsuranceltd.com chloesclosete.shop www.chanlayapura.com nibonhale.tk tructiepbongdavietnamhomnay.com pennryx.systems konflix21.xyz vms-rada.pp.ua www.vms-rada.pp.ua lmjfu-lkjhgff.fun rotulos-madrid.com.es financialdvisorpp.bond elmolahti.com law.info.pl backup.sukiennhanqua.com cchhealth.com sgd9.live 2ket-rapid23.ru.com samueljeyaratnamjoshua.biz.my gaarnet.ir bagwaan.com afindjob.com www.mogrinding.com mogrinding.com skeyym.xyz www.olimpyspro.store olimpyspro.store m.cheapcoat.online www.cheapcoat.online pospisildentistry.com jonuzispizza.com xiaobumi.cn mkrjm.com x.ocis.ga www.caminandoconbendicon.com caminandoconbendicon.com nolo.reviews lavagame88.net vasiletraders.co.uk shiphaven-logistics.com gmbmallapi.vip dav.wdwc.ga plainfielddryerventcleaning.us tnscuczx.xyz myspendwlel.com busybeecheeping.com 60701x.com www.headphonewealth.online gpt.alyak.live tmstorei7767.com headphonewealth.online dulwichdrains.co.uk mxzjbzjwjb.com ygios.com melle.bs-aydinkara.de www.bs-aydinkara.de www.melle.bs-aydinkara.de ciscsystem-pc.site deusmearrawaperma.tk pangea.rentals bookclubing.com bs-aydinkara.de www.gigiborges.com internetservicespro.life dotmovids.xyz installga.me trtuuii.com ketoolyvekejiki.fun www.thermalright.com.tr murrillsclassicdreams.com thermalright.com.tr contractingsolutions.ca www.contractingsolutions.ca uploadexcel.com timlogistics.com.sg fall.herrrt.workers.dev to-in-luxury-apartments-mumbais-ok.live itemsshare.net ldpropertybuyers.com workvisaattorney.website twinklestarspabusinessbaydubai.com bets5.io o.0k0.workers.dev ondernemingdiensten.com byglfss.store damp-sun-2e44.rezazared06.workers.dev maskcarateam.com mosdhes.shop 4s.prov.site www.4s.prov.site 6s.prov.site www.6s.prov.site thefoxcutlery.com elite360recruiting.com bwg.alyak.live ezenbhutawnocast.tk patient-salad-bef2.ratade5342.workers.dev dq7.net www.farahatcreations.in farahatcreations.in roerontatevit.tk vp-460.com omhaprochebe.tk yournsdsdfia.cf o7fpool.best poboxnnlzs.site edificios-arena-azul.com www.edificios-arena-azul.com stream.ariomex.com mudd.herrrt.workers.dev 2s.prov.site 88bed.herrrt.workers.dev rollingshop.net ecowarmhi.beauty www.b4l-new.com liatydonde.tk choigaigoi.co panel.hiseotools.com hyphencs.com flagunlaw.com chanlayapura.com comites19.com www.vitaledental.com vitaledental.com dupshop.com long-rice-1a5b.helpmetoconnect.workers.dev nima091.zuukap.workers.dev sina222.zuukap.workers.dev aksuhaber.xyz xn—-ptbaarbb0a8k.xn–p1ai renderbet.online askingforafriendseries.org www.maxbetslots-zerkalo7.top maxbetslots-zerkalo7.top podtricssupport.com jpawsone.store bound4the.icu brinepzhitade.tk urbansoliter.com www.urbansoliter.com alternatifdewatogel.pw eogkky.fit skulltrident.pro www.msp-latam.com traspade-trg.com heerlyck.nl spring-king-5076.jdwlrpbsua.workers.dev flat-hall-0b3b.ybrkdmwsjt.workers.dev alpenkamm-traunstein.de kootenaybotanicals.email packerinfojob.online wiki.ucsccssa.org portainer.adityaa.in www.agendamentofrancodarocha.org agendamentofrancodarocha.org www.thereviewnote.com www.topicsreader.com bayeux1.com omxp.me luckypennyclothingandco.com oznoz.com solo4d.com kegatt.lol www.belloperte.com.au gksmlednik.si zeegame222.com ferryu.com consultexlab.co.nz depuysynthesios.com admin-test.indianul.com www.queeragenda.org fashionbitsandbobs.com mhuwwpxx.ga 2fat2flywings.com www.osakahakokikou.com mangazuki.co clintabcages.tk tranacencouncio.tk eurosib-development.ru 20230105.com penthouseteam.de yungeyu.com www.yungeyu.com imvrisinkepasly.tk www.noglam.com.tw www.trimurticonventschool.com keymoworratici.gq obatraramic.tk jablex.com forum.textpattern.io tivsynchpabe.tk 94ilife.eu.org tangotaxidancers.com chiasilcegearlongfris.gq gd.wdwc.ga lohelybaropi.tk suportepontos2022.online tzkxxk.com haber-idil.com.tr niveditham.com forlinkza.tk prov.site www.project.freshhkuu8.tk project.freshhkuu8.tk ketoqivyr.cyou worker.indianul.com elisakoponen.fi fue-rn.cloud evicted.xyz managaja.beauty 1vhxw.bar smroxi.us freshhkuu8.tk gussetssnc.ru.com bar1mfg.com buymybud.co gigiborges.com xhnwxqe.za.com blacskprut.com terpringtimatenlo.ga icy-grass-38cb.mojefof104.workers.dev www.hawaiiapartment.us portugaluntel.biz vippark226.com b4l-new.com rbergeschgoo.ml azino777-fb.ru unaqmanimbsingri.ml nkeepsemi.tk www.21l.ink paradiseketo.life google.21l.ink kr5pj5.shop oldmill.shop www.oldmill.shop qkhh.cf askship.com kv.dns-chrome-1dot1dot1dot1-cloudflare-dns.workers.dev midasbuy-treasure.my.id cvsemangatjayamakmur.com www.cvsemangatjayamakmur.com mangahigh.dev vamistore.buzz ldihu1b6.shop nicerhelp.xyz nataldawillonline.com algorithm-altering.click 9gsme.shop x.gdgyzwh.com phocudig.gq whatsdegrupo.com chrissieswanfat.buzz kirmiziyuz.com.tr docker.adityaa.in xmaseventroblo.xyz techiclock.com pauljoda.com nomios.co drstephenpincus.net kia024.xyz hugegamer.space glamoulidt.space manorestsicotif.cf glne.bar www.24sevenprayer.com 24sevenprayer.com blacenon.tk www.cereal.com biggoldone.com terezacristinacorretora.com.br hawacanada.ca xdub.ru metalfinishing.co usps-postal.gq jamesthomas.online cheapcoat.online paktalegal.com www.primaryair.com primaryair.com covirefri.tk anturbate.com www.amazingvarietyzipbuy.com amazingvarietyzipbuy.com solbarcvacakege.tk intravsaccmulphiwhi.gq nbacanelcipkio.gq papajohnsx.shop arlangievil.ml osakahakokikou.com coursebig.net sp.wdwc.ga onewaywork.info 68xs65b97r1f.com selmipe.ml midgexova.ml mikewood.xyz jauprogetru.tk www.sinhnhat.sukiennhanqua.com sinhnhat.sukiennhanqua.com lienquan.sukiennhanqua.com www.sukiennhanqua.com

Malware Detected on Host

Count: 1 f28c542f59c664701502f55f8cced8d6b1a5cc3ed847345942c375d4b6cd3147

Open Ports Detected

2052 2082 2083 2086 2087 443 80 8080 8880

CVEs Detected

CVE-2022-3590 CVE-2023-22622 CVE-2023-2745

Map

Whois Information

• NetRange: 104.16.0.0 - 104.31.255.255
• CIDR: 104.16.0.0/12
• NetName: CLOUDFLARENET
• NetHandle: NET-104-16-0-0-1
• Parent: NET104 (NET-104-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS13335
• Organization: Cloudflare, Inc. (CLOUD14)
• RegDate: 2014-03-28
• Updated: 2021-05-26
• Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
• Ref: https://rdap.arin.net/registry/ip/104.16.0.0
• OrgName: Cloudflare, Inc.
• OrgId: CLOUD14
• Address: 101 Townsend Street
• City: San Francisco
• StateProv: CA
• PostalCode: 94107
• Country: US
• RegDate: 2010-07-09
• Updated: 2021-07-01
• Ref: https://rdap.arin.net/registry/entity/CLOUD14
• OrgAbuseHandle: ABUSE2916-ARIN
• OrgAbuseName: Abuse
• OrgAbusePhone: +1-650-319-8930
• OrgAbuseEmail: abuse@cloudflare.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• OrgTechHandle: ADMIN2521-ARIN
• OrgTechName: Admin
• OrgTechPhone: +1-650-319-8930
• OrgTechEmail: rir@cloudflare.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN
• OrgNOCHandle: CLOUD146-ARIN
• OrgNOCName: Cloudflare-NOC
• OrgNOCPhone: +1-650-319-8930
• OrgNOCEmail: noc@cloudflare.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• OrgRoutingHandle: CLOUD146-ARIN
• OrgRoutingName: Cloudflare-NOC
• OrgRoutingPhone: +1-650-319-8930
• OrgRoutingEmail: noc@cloudflare.com
• OrgRoutingRef: https://rdap.arin.net/registry/entity/CLOUD146-ARIN
• RAbuseHandle: ABUSE2916-ARIN
• RAbuseName: Abuse
• RAbusePhone: +1-650-319-8930
• RAbuseEmail: abuse@cloudflare.com
• RAbuseRef: https://rdap.arin.net/registry/entity/ABUSE2916-ARIN
• RNOCHandle: NOC11962-ARIN
• RNOCName: NOC
• RNOCPhone: +1-650-319-8930
• RNOCEmail: noc@cloudflare.com
• RNOCRef: https://rdap.arin.net/registry/entity/NOC11962-ARIN
• RTechHandle: ADMIN2521-ARIN
• RTechName: Admin
• RTechPhone: +1-650-319-8930
• RTechEmail: rir@cloudflare.com
• RTechRef: https://rdap.arin.net/registry/entity/ADMIN2521-ARIN

Links to attack logs

****** ****** ******