178.20.55.16 Threat Intelligence and Host Information

Share on:

Apr 16, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Likely Malicious Host 🟠 70/100

Host and Network Information

Mitre ATT&CK IDs: T1110 - Brute Force
Tags: Brute-Force, Bruteforce, Nextray, SSH, Telnet, attack, aws, badrequest, bruteforce, cyber security, digital ocean, ioc, kfsensor, login, malicious, phishing, probing, rdp, scanner, scanners, scanning, ssh, vultr, webscan, webscanner, webscanner bruteforce web app attack
Known tor exit node
View other sources: Spamhaus VirusTotal
Contained within other IP sets: blocklist_net_ua, botscout_30d, botscout_7d, dm_tor, et_tor, greensnow, haley_ssh, sblam, stopforumspam, stopforumspam_180d, stopforumspam_1d, stopforumspam_30d, stopforumspam_365d, stopforumspam_7d, stopforumspam_90d, tor_exits, tor_exits_1d, tor_exits_30d, tor_exits_7d
Known TOR node
Country: France
Network: AS29075 ielo-liazo services sas
Noticed: 50 times
Protcols Attacked: ssh
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Singapore, Spain, Turkey, Ukraine, United Kingdom, United Kingdom of Great Britain and Northern Ireland, United States of America
Passive DNS Results: marcuse.nos-oignons.net 3.datadog.pool.ntp.org 1.datadog.pool.ntp.org marcuse-1.nos-oignons.net 178.20.55.16

Malware Detected on Host

Count: 40 80c02637310117942643ccc7e45125f695602e051211153c26569126e0b95790 d9eb6f401544377511ca03f19442a4680feed39c971b6bcbec2ab341b4fb4645 5d261ffbf7069c51f1a9d8081d6d10a9745c8420627c364ad6ad06b450c7fcc1 ba5797e6b6f5c60fb8c0397797672071cd3d971eb6477a0560bb678b1ba65202 50124a9bf4fad5e256ebfe9b407a93ad29a05218f952a8c9b53b0cb33f3251ea a896be5e1f5b7d498d6556c9d64fe6407b70360e36dd3f47ee46da9367748ff6 7548589cca05a011b563d58e795233faf2310975659bbc8b4d1db7ae6d805280 d643588fd00e7cbb933a634a3a1636e4b789dd7bc22ecf4a83c80f133ab1a849 caa1241730c0dd6844a54bd4ef74d7238c83180e01266ba4f65e5d2cc2855f2f e7711425a3037a9b4a805b185c9096b2db65a523f07c8f908ab89d1da37370b7

Open Ports Detected

443 4443 80 9001 9080

Map

Whois Information

inetnum: 178.20.55.16 - 178.20.55.19
netname: FR-LIAZO-20100216
descr: NOS-OIGNONS IPTRANSIT CUSTOMER
country: fr
admin-c: NOAC1-RIPE
tech-c: NOTC1-RIPE
org: ORG-NO16-RIPE
status: ASSIGNED PA
mnt-by: MNT-LIAZO
created: 2010-05-28T18:34:37Z
last-modified: 2013-11-03T18:18:07Z
organisation: ORG-NO16-RIPE
org-name: NOS-OIGNONS
country: FR
org-type: OTHER
address: 105 route des Pommiers
address: 74370 Saint Martin Bellevue
address: France
phone: +33972429604
fax-no: +33972429606
mnt-ref: MNT-LIAZO
mnt-by: MNT-LIAZO
abuse-c: NOAC1-RIPE
created: 2013-11-03T18:08:35Z
last-modified: 2022-12-01T17:03:34Z
role: NOS OIGNONS administrative contact
abuse-mailbox: [email protected]
address: Centre UBIDOCA, 7585
address: 105 route des Pommiers
address: 74370 Saint Martin Bellevue
address: France
fax-no: +33972429606
phone: +33972429604
admin-c: NC3619-RIPE
admin-c: CR6366-RIPE
nic-hdl: NOAC1-RIPE
mnt-by: MNT-LIAZO
created: 2013-10-13T12:16:58Z
last-modified: 2013-11-03T19:27:06Z
role: NOS OIGNONS technical contact
abuse-mailbox: [email protected]
address: Centre UBIDOCA, 7585
address: 4 rue du Bulloz
address: 74940 Annecy
address: France
fax-no: +33972429606
phone: +33972429604
admin-c: NC3619-RIPE
admin-c: CR6366-RIPE
nic-hdl: NOTC1-RIPE
mnt-by: IELO-LIAZO-MNT
created: 2013-11-03T18:16:34Z
last-modified: 2019-09-25T15:19:56Z
route: 178.20.48.0/21
origin: AS29075
mnt-by: IELO-LIAZO-MNT
created: 2019-12-11T17:21:10Z
last-modified: 2019-12-11T17:21:10Z

Links to attack logs