5.253.86.18 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 5.253.86.18 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

• Tags: cyber security, ioc, malicious, Nextray, phishing

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network: AS208046 maximilian kutzner
• Noticed: 29 times
• Protocols Attacked: SSH
• Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
• Passive DNS Results: savvywomensalliance.org ipcheck.icu www.ipcheck.icu pop.itsreality3d.com ftp.itsreality3d.com smtp.itsreality3d.com carinsuranceforusa.com smtp.30kph.com www.30kph.com ftp.30kph.com pop.30kph.com www.wordcamp-polska.pl wordcamp-polska.pl 30kph.com tansbynat.com www.webmfiles.org dl10.webmfiles.org av1.webmfiles.org webmfiles.org pop.sitesecurehost.com pagalworld.imranwebmasters.guru ftp.imranwebmasters.guru pop.imranwebmasters.guru www.imranwebmasters.guru www.pagalworld.imranwebmasters.guru smtp.imranwebmasters.guru www.hashimsskillsinstitute.com hashimsskillsinstitute.com www.mail.altagco.xyz www.altagco.xyz ftp.altagco.xyz pop.altagco.xyz smtp.altagco.xyz oddfamily.co.uk ronnyelliott.com smtp.lyf-pay.net ftp.lyf-pay.net lyf-pay.net pop.lyf-pay.net www.lyf-pay.net todo-anime.net www.todo-anime.net manhwa-18.com pop.manhwa-18.com www.manhwa-18.com smtp.manhwa-18.com mysmmpanel.online www.mysmmpanel.online imranwebmasters.guru grey-wanderer.org fillfap.com hehe.eu.org www.flavioe.one smtp.flavioe.one ftp.flavioe.one pop.flavioe.one www.tornbe.com tornbe.com itsreality3d.com www.itsreality3d.com da.servzen.host altagco.xyz cybersol.pk www.citravisi.com ftp.citravisi.com citravisi.com hl.atriumhosting.com pop.harisnf.com www.harisnf.com harisnf.com smtp.harisnf.com ftp.harisnf.com ftp.myninja.store smtp.myninja.store pop.myninja.store www.myninja.store wp.batteriestation.de www.sparklog.net nl.batteriestation.de flavioe.one www.qreate.io smtp.qreate.io pop.qreate.io ftp.qreate.io smtp.artworkhaus.eu ftp.artworkhaus.eu artworkhaus.eu pop.artworkhaus.eu www.artworkhaus.eu koonang.com yasser.cc streamixtv.com smtp.yasser.cc pop.yasser.cc www.yasser.cc ftp.yasser.cc www.mail.altaqadumdxb.ae nfstore.eu www.streamix.uk ftp.streamix.uk pop.streamix.uk smtp.streamix.uk streamix.uk www.eurohandballpoland2013.pl eurohandballpoland2013.pl fitjoy.pl www.fitjoy.pl theknowledgefacts.com www.theknowledgefacts.com ftp.matking.org www.linux.family ftp.linux.family pop.linux.family smtp.linux.family linux.family pop.matking.org matking.org smtp.matking.org www.matking.org youhosting.site pop.youhosting.site ftp.youhosting.site www.youhosting.site smtp.youhosting.site www.motorsportmobile.nl vemprosucesso.com myninja.store citybeautifulsellers.com www.citybeautifulsellers.com ale-mama.pl smtp.ale-mama.pl ftp.ale-mama.pl pop.ale-mama.pl www.ale-mama.pl smtp.sarnox.pl www.sarnox.pl pop.sarnox.pl ftp.sarnox.pl sarnox.pl sparklog.net www.adwokatbrwinow.pl pop.sparklog.net ftp.sparklog.net smtp.sparklog.net adwokatbrwinow.pl www.beautiesecret.com pop.harishayat.nl www.harishayat.nl ftp.harishayat.nl harishayat.nl smtp.harishayat.nl stronywwwlodz.pl ftp.harishayat.tech smtp.harishayat.tech pop.harishayat.tech harishayat.tech www.harishayat.tech servzen.host ftp.hdrhost.com pop.hdrhost.com www.hdrhost.com smtp.hdrhost.com hdrhost.com smtp.stronywwwlodz.pl pop.stronywwwlodz.pl ftp.stronywwwlodz.pl www.stronywwwlodz.pl motorsportmobile.nl smtp.motorsportmobile.nl pop.motorsportmobile.nl ftp.motorsportmobile.nl shared1.servzen.com ogp1.servzen.com www.ogp1.servzen.com beautiesecret.com awami.servzen.com www.awami.servzen.com www.carfoxbox.com freedom.nl-eubox.nl www.nf.servzen.com nf.servzen.com ftp.jenjendsigns.nl smtp.jenjendsigns.nl pop.jenjendsigns.nl mazorenarthotel.com purplecat.fr www.purplecat.fr carfoxbox.com nl-eubox.hostlease.com smtp.kalakoritsia.com www.kalakoritsia.com pop.kalakoritsia.com ftp.kalakoritsia.com kalakoritsia.com algonet.telepassport.host www.telepassport.host telepassport.host pop.telepassport.host smtp.telepassport.host www.algonet.telepassport.host ftp.telepassport.host pop.petalouditses.gr petalouditses.gr ftp.petalouditses.gr smtp.petalouditses.gr www.petalouditses.gr telepassport.gr ftp.telepassport.gr pop.telepassport.gr www.telepassport.gr smtp.telepassport.gr algonet.gr algonet.telepassport.nl pop.telepassport.nl smtp.telepassport.nl www.telepassport.nl www.algonet.telepassport.nl telepassport.nl ftp.telepassport.nl www.facepaysdeladour.org ftp.facepaysdeladour.org facepaysdeladour.org pop.facepaysdeladour.org smtp.facepaysdeladour.org www.my.servzen.com my.servzen.com ftp.i-startmediacloud.com m3ii.ae www.anonlive11.xyz smtp.anonlive11.xyz pop.anonlive11.xyz ftp.anonlive11.xyz cours-danse-et-salsa-toulouse.com www.cours-danse-et-salsa-toulouse.com kiwiiscrap.fr www.cp.servzen.com cp.servzen.com hp.servzen.com ftp.servzen.com pop.servzen.com www.servzen.com smtp.servzen.com servzen.com www.hp.servzen.com anonlive11.xyz pop.wmclhleu.waw.pl ftp.wmclhleu.waw.pl www.wmclhleu.waw.pl smtp.wmclhleu.waw.pl wmclhleu.waw.pl artagameing.ir www.dergartencenter.com dergartencenter.com www.coyandom.com coyandom.com airano.art www.jenjendsigns.nl jenjendsigns.nl www.darkleaks.to darkleaks.to smtp.clienthl.eu ftp.clienthl.eu pop.clienthl.eu www.clienthl.eu clienthl.eu www.wplntestweb.tk wplntestweb.tk musicl0vers.com vpn-adviser.com qudadesign.com www.qudadesign.com smtp.qudadesign.com ftp.qudadesign.com pop.qudadesign.com ftp.hostlease.com hostlease.com smtp.hostlease.com www.hostlease.com pop.hostlease.com www.i-startmediacloud.com i-startmediacloud.com voxcive.com www.voxcive.com pop.nl-eubox.nl www.nl-eubox.nl smtp.nl-eubox.nl nl-eubox.nl ftp.nl-eubox.nl

Open Ports Detected

110 143 21 2222 25 443 465 53 587 80 993 995

Map

Whois Information

• inetnum: 5.253.86.0 - 5.253.86.255
• netname: ColocationX-IP-Range
• descr: ColocationX Datacenter
• country: NL
• admin-c: CLN38-RIPE
• tech-c: CLN38-RIPE
• org: ORG-CL709-RIPE
• status: ASSIGNED PA
• mnt-by: ADAMBB-MNT
• mnt-by: COLOX-MNT
• created: 2024-01-10T20:11:19Z
• last-modified: 2024-01-10T20:11:35Z
• organisation: ORG-CL709-RIPE
• org-name: ColocationX Ltd.
• country: GB
• org-type: OTHER
• address: Kingsfordweg 151, 1043GR Amsterdam
• abuse-c: CLN38-RIPE
• mnt-ref: dagroup
• mnt-ref: AZERONLINE-MNT
• mnt-ref: ADAMBB-MNT
• mnt-ref: RELCOMGROUP-EXT-MNT
• mnt-ref: PINGIPMAINTAINER
• mnt-ref: COLOX-MNT
• mnt-by: COLOX-MNT
• created: 2022-11-09T11:43:31Z
• last-modified: 2022-12-01T17:09:22Z
• role: ColocationX Ltd. 24x7 NOC
• address: Kingsfordweg 151, 1043 GR Amsterdam, Netherlands
• abuse-mailbox: abuse@colocationx.com
• nic-hdl: CLN38-RIPE
• mnt-by: COLOX-MNT
• created: 2022-11-09T11:39:38Z
• last-modified: 2022-11-09T11:43:26Z
• route: 5.253.86.0/24
• origin: AS208046
• mnt-by: COLOX-MNT
• created: 2020-02-14T21:50:02Z
• last-modified: 2022-11-09T11:58:37Z

Links to attack logs

****** ****** ******