109.172.117.158 Threat Intelligence and Host Information

Sep 10, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 109.172.117.158 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 15/100

Host and Network Information

  • Country: Turkey
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: Anonymous Proxy

Open Ports Detected

110 123 143 1500 21 22 25 25782 27015 27017 28015 28017 28080 28443 28818 29799 30001 30009 30010 30015 30017 30019 30021 30029 30050 30110 30121 30452 30700 31001 31337 32400 32764 32800 33060 34225 35000 35002 35531 36501 36982 37215 37777 40000 40070 40099 41800 42235 42424 42901 43200 43221 44158 44300 44302 44303 44304 44320 44333 44336 44337 44340 44341 44345 44350 44420 44818 45000 45002 45005 45006 45444 45555 45666 45821 45888 465 47984 47990 48002 48013 48100 49121 49152 49153 49200 49443 49684 49688 50000 50006 50007 50009 50014 50042 50050 50070 50073 50102 50103 50104 50105 50112 50122 50160 50500 50580 50998 50999 51002 51003 51106 53 587 80 993 995

CVEs Detected

CVE-2021-38371 CVE-2022-3559 CVE-2022-37451 CVE-2022-37452 CVE-2023-42114 CVE-2023-42115 CVE-2023-42116 CVE-2023-42117 CVE-2023-42119 CVE-2023-51766 CVE-2024-39929

Map

Whois Information

  • inetnum: 109.172.108.0 - 109.172.117.255
  • netname: RU-JSCIOT-20091118
  • country: RU
  • org: ORG-JI50-RIPE
  • admin-c: INO22-RIPE
  • tech-c: INO22-RIPE
  • status: ALLOCATED PA
  • mnt-by: mnt-ru-jsciot-1
  • mnt-by: RIPE-NCC-HM-MNT
  • created: 2025-04-01T12:08:07Z
  • last-modified: 2025-04-01T12:08:07Z
  • organisation: ORG-JI50-RIPE
  • org-name: JSC IOT
  • country: RU
  • org-type: LIR
  • address: ter. Skolkovo Innovation Center, Bolshoy Blvd, d. 42 pp 1 fl
  • address: 121205
  • address: Moscow
  • address: RUSSIAN FEDERATION
  • phone: +7 (495) 133-04-86
  • tech-c: INO22-RIPE
  • admin-c: INO22-RIPE
  • abuse-c: INO22-RIPE
  • mnt-ref: mnt-ru-jsciot-1
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: mnt-ru-jsciot-1
  • created: 2018-10-03T08:17:05Z
  • last-modified: 2024-08-15T07:17:32Z
  • role: IOT Network Operations
  • address: JSC IOT
  • address: 121205, Russia, Moscow
  • address: ter. Skolkovo Innovation Center, Bolshoy Blvd, d. 42 pp 1 fl
  • phone: +7 (495) 133-04-86
  • admin-c: PS24704-RIPE
  • tech-c: PS24704-RIPE
  • nic-hdl: INO22-RIPE
  • mnt-by: mnt-ru-jsciot-1
  • created: 2019-02-04T03:26:46Z
  • last-modified: 2024-08-15T07:18:23Z
  • abuse-mailbox: abuse@aoiot.ru
  • route: 109.172.116.0/23
  • origin: AS29182
  • mnt-by: mnt-ru-jsciot-1
  • created: 2025-04-03T05:30:20Z
  • last-modified: 2025-04-03T05:30:20Z

Links to attack logs

anonymous-proxy-ip-list-2025-09-09

Share on: