107.170.254.15 Threat Intelligence and Host Information

Aug 13, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 107.170.254.15 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 50/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing, Port Scan

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: ciarmy, hphosts_emd

  • Country: United States
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Spain, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: tollmanz.com

Open Ports Detected

1002 102 1022 1023 1024 1025 104 106 110 111 1110 1111 1119 113 119 1200 121 122 1234 1235 1311 1337 135 1400 1414 1433 1443 1515 1521 1604 1723 1741 1800 1801 1830 1901 1911 1925 1926 1935 2000 2001 2002 2003 2008 2016 2018 2100 2101 2121 2122 22 2202 2209 221 2210 2221 2222 2223 2225 2232 2233 23 2320 2332 2404 25 2525 26 2628 2806 3001 3002 3008 3010 3015 3022 3030 3042 3102 3104 3105 3108 311 3113 3114 3117 3118 3119 3122 3127 3128 3129 3132 3133 3134 3135 3138 3142 3221 3301 3307 3310 3333 3337 3342 3400 3403 3405 3408 3410 3523 3524 3530 3531 3541 3542 3841 4000 4022 4023 4040 4100 4103 4104 4120 4200 4242 427 4321 4333 4400 441 443 4431 4433 4434 4439 4440 45000 45006 4505 4506 4510 4523 4602 4700 4840 4911 4933 5000 5001 5004 5005 5006 5007 5009 5010 5022 5025 503 513 5135 515 5201 5222 5225 5226 5228 5231 5236 5238 541 5432 5435 5439 5542 5601 5602 5605 5607 5608 5614 5630 5701 5800 5801 5901 5904 5916 5917 5918 5938 6000 6001 6002 6003 6022 631 632 636 6400 6433 6500 6503 6510 6511 6513 6600 6633 6700 7001 7002 7004 7006 7010 7012 7016 7021 7102 7325 7401 7403 7415 7433 7434 7441 7500 7535 7537 7603 7634 80 800 8000 8001 8006 8008 8009 801 8010 8011 8012 8016 8017 8018 8023 8028 8035 8040 8042 8080 8108 811 8110 8111 8112 8113 8116 8121 8123 8126 8128 8130 8132 8138 8139 8140 8141 8142 8203 8236 8239 8316 8333 8334 8340 8405 8407 8410 8412 8414 8418 8423 8426 8428 8429 8431 8433 8441 8504 8513 8521 8528 8531 8532 8606 8621 8630 8637 8700 8708 8724 8728 88 8800 8801 8805 8807 8808 8811 8812 8815 8821 8822 8824 8829 8830 8831 8834 8839 8841 888 8900 8902 8905 8911 8913 9000 9002 9009 9012 9014 9018 9021 9025 9027 9030 9033 9035 9040 9042 9100 9103 9104 9106 9111 9119 9120 9125 9130 9131 9137 9139 9140 9200 9206 9214 9218 9221 9226 9301 9303 9304 9306 9310 9333 9410 9418 9527 9530 9600 9633 9700 9800 9802 9803 9804 9900 9901 9909 9916 9918 9926 9928

CVEs Detected

CVE-2007-4559 CVE-2009-2940 CVE-2009-3720 CVE-2013-0340 CVE-2015-20107 CVE-2016-3189 CVE-2018-25032 CVE-2019-12900 CVE-2020-10735 CVE-2020-29396 CVE-2021-28861 CVE-2022-26488 CVE-2022-37454 CVE-2022-42919 CVE-2022-45061 CVE-2023-24329 CVE-2023-27043 CVE-2023-30861 CVE-2023-36632 CVE-2023-40217 CVE-2024-6232 CVE-2024-7592 CVE-2024-9287

Map

Whois Information

Links to attack logs

nmap-scanning-list-2023-06-17 ****** ****** ******

Share on: