2.56.56.94 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 2.56.56.94 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: Netherlands
• Network:
• Noticed: times
• Protocols Attacked: ssh
• Passive DNS Results: t.nutos.top nutos.top u-suck-my-dick.xyz www.2-56-56-94.cprapid.com 2-56-56-94.cprapid.com w1wf2.com www.w1wf2.com aftbreed.com www.aftbreed.com www.c8ch3.com

Malware Detected on Host

Count: 8 d60a8c8eb792e635d66557ca3cd3cedd202a881c434f7b278cf057e2cedf6777 842fca677c9822385706a3165be77fcb4ef2b097d71e7abd00cfbf8afbe3e51d f954231b8e661e740dfa852940191194c8ec24d2df6f05f9d313e84d7aad2314 7d80c6052b354f5fa7ae9342fef5bb4e571f34e824fc28c39c1473e8f02209b3 21cf875028ad72c6679d53e90aa88604027783c8312cc182c33520e55d430dd9 1e72a3b6f4510bcceb2f5670e6ea328d9501fe6f0d0b85376194028df7bdfb35 bff76b71d5773ad15f5bdfefb44e5732126ad1bce515a39373d5854fbed7db45 227cb27ee17483f13136599c641f9cf686b69536123f1a4bdc5ef1c25353e3c8

Map

Whois Information

• inetnum: 2.56.56.0 - 2.56.57.255
• netname: SINGNET-2-56-56-0
• country: SG
• org: ORG-SPL46-RIPE
• admin-c: SPLA2-RIPE
• tech-c: SPLA2-RIPE
• status: ASSIGNED PA
• mnt-by: PREFIXBROKER-MNT
• created: 2024-05-21T04:25:54Z
• last-modified: 2024-05-21T04:25:54Z
• organisation: ORG-SPL46-RIPE
• org-name: SingNet Pte Ltd
• org-type: OTHER
• address: c/o Singapore Telecommunications
• address: 31 Exeter Road
• address: Comcentre Podium Block, 05-04
• abuse-c: SPLA2-RIPE
• mnt-ref: PREFIXBROKER-MNT
• mnt-by: PREFIXBROKER-MNT
• created: 2024-05-21T04:25:54Z
• last-modified: 2024-05-21T04:25:54Z
• role: SingNet Pte Ltd abuse handling
• address: c/o Singapore Telecommunications
• address: 31 Exeter Road
• address: Comcentre Podium Block, 05-04
• nic-hdl: SPLA2-RIPE
• mnt-by: PREFIXBROKER-MNT
• created: 2024-05-21T04:25:53Z
• last-modified: 2024-05-21T04:25:53Z
• abuse-mailbox: hostmaster@singnet.com.sg
• route: 2.56.56.0/22
• origin: AS3758
• mnt-by: PREFIXBROKER-MNT
• created: 2024-05-27T05:39:07Z
• last-modified: 2024-05-27T05:39:07Z

Links to attack logs

****** awsau-ssh-bruteforce-ip-list-2022-05-15 ****** ******