Report for IP: 103.13.206.152

Threat LevelCRITICAL72/1002 rule types across 2 attack categories
2 incidents on record · 2 rule types · active attack detected · last seen 8d ago
PTR ip103-13-206-152.cloudhost.web.id
Org / ASN CLOUDHOST
Country 🇸🇬 Singapore
City Singapore, Central Singapore
Timezone Asia/Singapore

Attack Analysis

🇸🇬 Singapore · Singapore · 138608 · Cloud Host Pte LTD
Suricata IDS Alert
Suricata intrusion detection flagged this IP for malicious network behaviour — including port scanning, exploit attempts, botnet activity, or known attack signatures. The specific signature is shown in the report list below.
IDS: SSH Port Scan
Suricata detected automated SSH port scanning from this IP. SSH scanners map targets before launching credential brute-force attacks. This is the reconnaissance phase of a larger attack campaign.

Reports (2)

Date Severity Description
14 Jun 2026 - 02:51 high IDS: SSH port scan — ET SCAN Potential SSH Scan
14 Jun 2026 - 02:51 medium IDS: Suricata alert — Honeypot: probe to closed SSH port 22

Related IPs — Same /24 Block (103.13.206.0/24)

103.13.206.100ELEVATED1 report
Part of EagleEye Intelligence