The host at this IP address is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
IcedID botnet controller located at 164.92.104.194 on port 80 (using HTTP GET):
hXXp://ertimadifa.com/
$ dig +short ertimadifa.com
164.92.104.194
Referencing malware binaries (MD5 hash):
89a0e6601d22c145a7dd5f5dd65b1f04 — AV detection: 3 / 68 (4.41)
ffb7508a9fa7ea9c3adbaa1ee14e1cab — AV detection: 9 / 69 (13.04)
Other malicious domain names hosted on this IP address:
ertimadifa.com 164.92.104.194
fikasterwer.top 164.92.104.194