Help RSS API Feed Maltego Contact                        

IP > 104.20.5.21

More information on this IP is in AlienVault OTX

Is this malicious?

Malware
MD5A/V
12a71889ac90e710d9b5d4f6ae996005[Win32.Mimail.L@mm] [Worm/W32.Mimail.11296] [W32.Mimail.L] [Artemis!12A71889AC90] [Trojan.Win32.Mimail.ends] [W32/Mimail.L@mm] [W32.Mimail.L@mm] [Win32/Mimail.L] [Worm.Mimail.L] [Email-Worm.Win32.Mimail.l] [Win32.Mimail.L@mm] [I-Worm.Mimail.L] [I-Worm.Win32.Mimail.11296[h]] [W32.W.Mimail.l!c] [Win32.Mimail.L@mm] [W32/Mimail-L] [Worm.Win32.Mimail.L] [Win32.Mimail.L@mm] [Win32.HLLM.Foo] [Worm.Mimail.Win32.24] [BehavesLike.Win32.VTFlooder.lc] [W32/Mimail.RPUG-0477] [I-Worm/Mimail.l] [WORM/Mimail.L.2] [Worm[Email]/Win32.Mimail] [Worm:Win32/Mimail.I@mm] [Trojan/Win32.HDC] [Win32.Mimail.L@mm] [Win32/Mimail.L] [Worm.Mimail] [Worm.Win32.Mimail.aRtB] [I-Worm.Mimail.L] [Win32.Worm-email.Mimail.Dxnb] [Email-Worm.Win32.Mimail.U] [W32/Mimail.fam@mm] [I-Worm/Mimail.L] [W32/Mimail.L.worm]
70027cc7feaf6667a0ed96c1323665bf[Worm/W32.Mimail.23072.B] [W32.Mimail.B] [Worm.Mimail.Win32.9] [W32/Mimail.H@MM] [Trojan.Win32.Mimail.endo] [W32/Heuristic-257!Eldorado] [Email-Worm.Win32.Mimail.h] [I-Worm.Mimail.H] [Win32.Worm-email.Mimail.Acqk] [Worm.Win32.Email-Worm.Mimail.h] [Win32.HLLM.Foo] [BehavesLike.Win32.StartPage.mm] [W32/Mimail-H] [W32/Heuristic-257!Eldorado] [I-Worm/Mimail.h] [WORM/Mimail.H1] [Worm[Email]/Win32.Mimail] [Worm:Win32/Mimail.H@mm] [Win32/Mimail.worm.22560] [W32/Mimail.h@MM] [Worm.Mimail] [Worm.Win32.Mimail.h] [I-Worm.Mimail.H] [Email-Worm.Win32.Mimail.U] [I-Worm/Mimail.H] [W32/Mimail.H.worm]
99a0890b87a501e33cb4a26a3d0c2e08[Win32.Mimail.TXU] [Worm/W32.Mimail.10784] [W32.Mimail.D] [Win32.Mimail.TXU] [Win32.Mimail.TXU] [I-Worm.Mimail!Ubvyra2vcrc] [W32/Mimail.E@mm] [W32.Mimail.F@mm] [Win32/Mimail.E] [Worm.Mimail.E] [Email-Worm.Win32.Mimail.e] [Trojan.Win32.Mimail.endl] [I-Worm.Win32.Mimail.10784[h]] [W32.W.Mimail.e!c] [Win32.Mimail.TXU] [W32/Mimail-E] [Worm.Win32.Mimail.E] [Win32.Mimail.TXU] [Win32.HLLM.Foo] [Worm.Mimail.Win32.17] [BehavesLike.Win32.Dropper.lc] [W32/Mimail.HYUF-5134] [I-Worm/Mimail.i] [Worm[Email]/Win32.Mimail] [Worm:Win32/Mimail.E@mm] [Win32.Mimail.TXU] [Trojan/Win32.HDC] [Win32.Mimail.TXU] [Win32/Mimail.E] [Artemis!99A0890B87A5] [Worm.Mimail] [W32/Mimail.E.worm] [I-Worm.Mimail.E] [Win32.Worm-email.Mimail.Hvsq] [Email-Worm.Win32.Mimail.U] [W32/Mimail.E@mm] [I-Worm/Mimail.E]
be8fcbe796af1267a45b9cba4ed08335[Trojan.Vimditator.g3] [BackDoor-FCJQ!BE8FCBE796AF] [Ransom.Win32.Critroni] [Troj.W32.Vimditator.gmq!c] [trojan.win32.dacic.a!rfn] [Win32.Trojan.WisdomEyes.151026.9950.9999] [Ransom.CTBLocker] [Win32/Zbot.NDYJJGC] [TROJ_CRYPCTB.YNX] [Trojan.Win32.Vimditator.dniwkn] [Troj/MSIL-BMW] [TrojWare.Win32.UMal.~A] [Trojan.Encoder.872] [Trojan.Vimditator.Win32.51] [TROJ_CRYPCTB.YNX] [BackDoor-FCJQ!BE8FCBE796AF] [Trojan/Vimditator.u] [TR/Critroni.A.10] [MSIL/Injector.HJK!tr] [Trojan/Win32.Vimditator] [Ransom:Win32/Critroni] [Trojan/Win32.Cryptolocker.N1410186910] [Ransom.Win32.Critroni] [Trojan.Vimditator] [Trojan.Vimditator!] [Trojan.MSIL.Injector] [MSIL6.BMGF] [Trj/CI.A] [Win32/Trojan.BO.8b1]
dccaefb12a4848e6309aec68b5658835[PWSZbot-FAKV!DCCAEFB12A48] [Trojan.Dropper.DLD] [Trojan.Cryptolocker.E] [Trojan-Ransom.Win32.Onion.vqm] [Troj/Ransom-AZM] [BehavesLike.Win32.Downloader.bc] [Trojan[Ransom]/Win32.Onion] [Ransom:Win32/Critroni] [Trojan/Win32.Miuref] [Trojan.Win32.Ransom.vqm] [Win32.Trojan.Inject.Auto] [Trojan.Win32.Crypt] [W32/Kryptik.DQNQ!tr] [Crypt4.BMSP]

IP Whois
PropertyValue
Location San Francisco, United States
Country United States

Reverse DNS
DomainDate
www.vpnunlimitedapp.com2025-10-30
vpnunlimitedapp.com2025-10-29
api.vpnunlimitedapp.com2025-09-28
affordablehealthcare123.com2021-09-30
california.affordablehealthcare123.com2021-09-30
los-angeles.affordablehealthcare123.com2021-09-30
m.affordablehealthcare123.com2021-09-30
mm.affordablehealthcare123.com2021-09-30
texas.affordablehealthcare123.com2021-09-30
www.affordablehealthcare123.com2021-09-30
z.affordablehealthcare123.com2021-09-30
bcbs.affordablehealthcare123.com2021-09-25
uhc.affordablehealthcare123.com2021-09-25
amp.affordablehealthcare123.com2021-09-19
cpanel.worldwidepetroleumcontractors.com2020-08-09
tmdhosting.com2019-12-08
www.tmdhosting.com2019-12-08
cigarandpipes.com2019-06-14
hashflare.io2019-06-14
www.cigarandpipes.com2019-02-20
www.spamhaus.org2019-02-08
www.spamhaus.org.cdn.cloudflare.net2018-12-25
www.spamhaus.org.2018-04-16
cryptocoinsnews.com2014-09-30
www.cryptocoinsnews.com2014-09-24

IP Classes
104.20.5..x=Browse , 104.20.5..x.x=Browse | View on ThreatMiner








Data with thanks to AlienVault OTX, VirusTotal, Malwr and others. [Sitemap]



� Copyright 2019 AlienVault, Inc. | Legal| Status| Do Not Sell My Personal Information