163.172.80.56 Threat Intelligence and Host Information

Dec 16, 2024 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 163.172.80.56 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 50/100

Host and Network Information

  • Tags: Bruteforce, Brute Force, Brute-Force, cyber security, ioc, malicious, Nextray, phishing, SSH, SSL VPN, VPN

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: b3b0, blocklist_net_ua, haley_ssh

  • Country: France
  • Network:
  • Noticed: 50 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Spain, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: j.top4top.io cdn.top4top.io f.top4top.io j.top4top.net d.top4top.net analytics.perfony.com www.perfony.com perfony.com

Malware Detected on Host

Count: 91 0cc9dcfae8a0c7ebae5941091c8c988c7f196b3fc42c8f96feeb3c8dc7eaee29 53be62c7584d596997361a428c22c63ce600852be683b229194ff8f0b2bc2d7b 6153882bdafd6719ed0c6c7f525e95aa5588d482b01cce7d02a728f2e4f255a1 abe325713bbae9457e2f4fe01c032b79c3715d889ef6410257361e99a1df4ef7 7491ea889c5f0d3f7e86eb838a5f6b06ec02a0aee5d3c1cedfe36909b6db0e59 8b79a161be945502fd0458537cef6fce3ffc9db901c134ef201fac0353444fcc 0c093a4667c6bf1786e2ad31a128298b0ec5eef595ab4e6ade190b7059822f0a 2d62befa8813ec89138c7b9e578680b85381e715254fe4e399b69e40cfd32c5b 32189d149f6b6b941e94c818c44bdf4c0eb359f7040b19adb8912673c0cc6cad e695a7dc8dd11ddedbc1ba4b140decce3b997bd9e885a3eb59c5c91498e27ed5

Map

Links to attack logs

bruteforce-ip-list-2021-10-05 ****** bruteforce-ip-list-2021-09-29 ****** ******

Share on: