23.109.113.236 Threat Intelligence and Host Information

Share on:
May 16, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 23.109.113.236 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

  • View other sources: Spamhaus VirusTotal

  • Country: Netherlands
  • Network: AS7979 servers.com inc.
  • Noticed: 1 times
  • Protcols Attacked: Anonymous Proxy
  • Passive DNS Results: nl1.node.soax.com

Open Ports Detected

10001 10134 10443 10554 11000 11112 11211 11300 11371 12000 12345 13579 14147 14265 16010 16992 16993 18081 18245 19000 19071 20000 20256 21025 22222 23023 23424 25001 25565 27015 27017 28015 28017 31337 32764 33060 37215 41800 44158 49152 49153 5000 9000 9002 9004 9005 9008 9009 9013 9016 9017 9018 9019 9020 9021 9022 9023 9026 9027 9028 9029 9037 9040 9042 9043 9050 9070 9080 9090 9091 9092 9093 9094 9096 9097 9098 9099 9100 9102 9106 9107 9108 9109 9110 9111 9151 9160 9191 9200 9201 9202 9205 9207 9208 9209 9214 9215 9216 9217 9218 9219 9221 9251 9300 9301 9306 9307 9310 9311 9389 9443 9444 9445 9500 9530 9550 9600 9606 9633 9663 9682 9690 9761 9800 9861 9869 9876 9898 9943 9944 9955 9981 9988 9991 9994 9998 9999

Map

Whois Information

  • NetRange: 23.109.0.0 - 23.109.255.255
  • CIDR: 23.109.0.0/16
  • NetName: RIPE
  • NetHandle: NET-23-109-0-0-1
  • Parent: NET23 (NET-23-0-0-0-0)
  • NetType: Early Registrations, Transferred to RIPE NCC
  • OriginAS:
  • Organization: RIPE Network Coordination Centre (RIPE)
  • RegDate: 2017-04-25
  • Updated: 2017-04-25
  • Ref: https://rdap.arin.net/registry/ip/23.109.0.0
  • OrgName: RIPE Network Coordination Centre
  • OrgId: RIPE
  • Address: P.O. Box 10096
  • City: Amsterdam
  • StateProv:
  • PostalCode: 1001EB
  • Country: NL
  • RegDate:
  • Updated: 2013-07-29
  • Ref: https://rdap.arin.net/registry/entity/RIPE
  • OrgTechHandle: RNO29-ARIN
  • OrgTechName: RIPE NCC Operations
  • OrgTechPhone: +31 20 535 4444
  • OrgTechEmail: [email protected]
  • OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
  • OrgAbuseHandle: ABUSE3850-ARIN
  • OrgAbuseName: Abuse Contact
  • OrgAbusePhone: +31205354444
  • OrgAbuseEmail: [email protected]
  • OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
  • inetnum: 23.109.112.0 - 23.109.115.255
  • netname: SERVERS-COM-AMS3
  • country: NL
  • admin-c: SC16774-RIPE
  • tech-c: SC16774-RIPE
  • status: ASSIGNED PA
  • mnt-by: SERVERS-MNT
  • created: 2021-02-12T18:17:53Z
  • last-modified: 2021-02-12T18:17:53Z
  • person: Servers Guy
  • address: Keienbergweg 22, 1101 GB Amsterdam, The Netherlands
  • phone: +31203698990
  • nic-hdl: SC16774-RIPE
  • mnt-by: SERVERS-MNT
  • created: 2014-12-31T09:54:21Z
  • last-modified: 2022-04-15T21:20:02Z

Links to attack logs

roxy-ip-list-2023-05-03