143.95.253.18 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 143.95.253.18 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 20/100

Host and Network Information

• JARM: 29d29d00029d29d00042d42d0000000a5f02847ec7d262f8dcbfaa6508ecf9

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: www.christian-e-books.com christian-e-books.com ministryfundraiser.com studio.fotokaos.com classic-quotes.com www.fundraisingforbibles.com fundraisingforbibles.com aneverendingcontroversy.com www.makunudu.com thebiblemarathon.com www.thebiblemarathon.com www.thebiblicalillustrator.com thebiblicalillustrator.com www.helpthepersecutedchurch.com helpthepersecutedchurch.com happybirthdayjesuschrist.com www.happybirthdayjesuschrist.com 10000bibles.com your-free-gift.com marcelleaster.com soutienscolaire-evo.com sanuteam.com silvijevidovic.com guadcc.com demo.fotokaos.com paellasouthflorida.com ajmillers.com shadowoodpetresort.com www.wsv.global gamefacelfm.com www.store.christ-centered-books.com christ-centered-books.com www.christ-centered-books.com joycytryn.com 460drag.com playroomclips.com www.lejardindelaforet.fr artelise.co.uk www.fotokaos.com shelter6.net gaptadistrict10.com an-important-question.com the-harvest-is-plentiful.com my-cyber-lemonade-stand.com unite4christ.com store.christ-centered-books.com creaprints3d.com lejardindelaforet.fr myprivatebackup.site lopezbarr.com performancecw.com www.3dvincicreations.com 3dvincicreations.com kipsi.club maxsize.info crm-performancecw.com missmelissa.me fotokaos.com mazendata.com artbydow.com hotgirlindubai.com vvviardo.com wsv.global therealdj2much.com themovement.info nimmayash.in lhcfacts.org newnhamcollegeboatclub.com makunudu.com karlovacpianofestival.com thetechknowledge.com breakfreeyouthministry.com titosnews.com 14carrothealthyliving.com hotelzain.com 55888.eu freepornxnx.info oursmallblog.com

Malware Detected on Host

Count: 48 a388613a49a35dcf197dcaddc1a5d09094627f4680b7d95c8582018c0fdfe0d3 780c9d43784e61a6ea7f5aa46089ee58cea19da02f66488f2dddf2b3ae6cc1c0 834af41a33bda77b931877c2329b78525e97be456e0a22dfb886eb137228c56e 11bf5d948447d45e6f4b30c8a2a86f8bec16aeedfb245173d48d0075e957cf71 bd8e60acbf935fd14cf87cf6df417db1687b9d6f83afe01ba0d2020e5a3dab5c eeb04b038c5dc11986af84c5ded61f16d5923d46e5b15ef043ef21fb905f512e 36aa03d73f91294486e2c9291e1b88e63225186a478d6d36712a5dfd5a3f6183 a9fea19996b99722c00fd311452d1be063cb94e9688c86f150924988e6875071 118bfd3ec4576e04ff48a0c2fe29fa664371787461c1ca031c94ddd12ceeae12 70dd1876b89d41ba88bb5f95be3d8287a8e9bc8b8eede51852fe8fde32235d5d

Open Ports Detected

110 143 2077 2082 2083 2086 2087 2095 2096 21 22 2222 26 3306 443 465 53 587 80 993 995

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-30232 CVE-2025-32728

Map

Whois Information

• NetRange: 143.95.0.0 - 143.95.255.255
• CIDR: 143.95.0.0/16
• NetName: ATHENIX
• NetHandle: NET-143-95-0-0-1
• Parent: NET143 (NET-143-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: Newfold Digital, Inc. (EIG-12-Z)
• RegDate: 1990-09-07
• Updated: 2024-03-07
• Ref: https://rdap.arin.net/registry/ip/143.95.0.0
• OrgName: Newfold Digital, Inc.
• OrgId: EIG-12-Z
• Address: 5535 Gate Parkway
• City: Jacksonville
• StateProv: FL
• PostalCode: 32256
• Country: US
• RegDate: 2024-02-28
• Updated: 2025-07-24
• Ref: https://rdap.arin.net/registry/entity/EIG-12-Z
• OrgAbuseHandle: NEWFO-ARIN
• OrgAbuseName: Newfold-Abuse
• OrgAbusePhone: +1-904-680-6600
• OrgAbuseEmail: IARPOC@Newfold.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/NEWFO-ARIN
• OrgTechHandle: ENO74-ARIN
• OrgTechName: EIG Network Operations
• OrgTechPhone: +1-781-852-3200
• OrgTechEmail: eig-net-team@endurance.com
• OrgTechRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
• OrgNOCHandle: ENO74-ARIN
• OrgNOCName: EIG Network Operations
• OrgNOCPhone: +1-781-852-3200
• OrgNOCEmail: eig-net-team@endurance.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/ENO74-ARIN
• OrgAbuseHandle: ENO74-ARIN
• OrgAbuseName: EIG Network Operations
• OrgAbusePhone: +1-781-852-3200
• OrgAbuseEmail: eig-net-team@endurance.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ENO74-ARIN

Links to attack logs

****** ****** ******