IP Address

36.255.98.3

IPv4 Public
SG SG
Cyber-Security
567 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
64% Confidence
567 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
SG
SG Location
Cyber-Security ISP
567 Reports
Honeypot Data Source

Critical Threat

IP 36.255.98.3 is a high-risk address with a maximum threat level of 10 out of 10, linked to active hacking intrusion attempts detected by automated honeypot sensors in Singapore. This IP has accumulated 567 total abuse reports, indicating sustained malicious activity that warrants immediate blocking by network defenders.

The IP is registered to Cyber-Security in Singapore and was first and most recently reported in October 2025, placing all observed activity within a single detection window. All 567 reports originate from automated honeypot sensors, lending consistency to the detection methodology, though the 64% confidence score reflects some uncertainty in threat attribution. The reported activity falls exclusively into the Hacking category, with 20 recent reports documenting specific intrusion attempts. Despite the high report volume, the activity frequency score of 0 out of 10 suggests the IP was detected during honeypot interactions rather than through continuous aggressive scanning observed against external targets.

The Hacking classification encompasses a broad range of unauthorized access attempts, vulnerability exploitation and intrusion activity targeting exposed services. When an IP generates this volume of reports from honeypot infrastructure, it indicates deliberate scanning and exploit attempts against internet-facing systems rather than incidental traffic. The concrete risk to exposed services includes credential brute-forcing, exploitation of unpatched software, and probing for misconfigurations that could grant persistent access. Even at moderate activity frequency, the report density signals persistent interest in compromising systems.

Defenders should implement immediate blocking of this IP at the firewall or network edge layer given its maximum threat rating. Deploying automated abuse-management tools such as fail2ban can dynamically ban IPs generating repeated intrusion signatures. Organizations should ensure all internet-facing services run current patches, enforce strong authentication policies, and monitor logs for the patterns associated with the reported hacking activity. Regular review of honeypot and community-based threat feeds will help maintain updated blocklists against confirmed malicious sources.

More threatening than 91% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Reputable Network

This IP is hosted on a network (ASN 0) with generally good reputation. The ISP Cyber-Security maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 59% High Confidence

Confidence History

14. Oct 2025 - 16. Oct 2025
64% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
10 of 567 shown

Technical Details

Basic Information

IP Address
36.255.98.3
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class A

Geolocation

Country
SG SG
ASN
Unknown
ISP
Cyber-Security

DNS Information

Reverse DNS
wisdomdawntree.asmservices.net
PTR Record
Yes
Connection Type
Static

Statistics

Total Reports
567
First Reported
9 Oct 2025
Last Reported
16 Oct 2025, 05:41

Comparative Analysis

How this IP compares to others in our threat intelligence database

91 %

Global Threat Ranking

This IP is more threatening than 91% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,712 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 567 avg: 23 ++

Geographic Comparison

Compared against 6,476 IPs in SG

Threat Level 10/10 country avg: 5.7 ++
Total Reports 567 country avg: 12 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,375 threat incidents tracked globally • Last 24h: 18,936 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,468 20.5%
  2. 02
    IN
    India IN
    29,136 15.5%
  3. 03
    CN
    China CN
    26,029 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,144 3.8%
  6. 06
    SG
    Singapore SG THIS IP
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,551 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,677 2.5%
  10. 10
    NL
    Netherlands NL
    4,358 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same subnet range, likely same network segment.

2 Related IPs
8.5/10 Avg Threat
51% Avg Confidence
2 High Threat
High-risk network: Majority of related IPs are flagged
36.255.98.221 10/10
Confidence 76%
Reports 139
Location SG SG
5 Dec 2025
36.255.98.251 7/10
Confidence 26%
Reports 2
Location SG SG
13 Nov 2025

IPs from the same country with similar threat profiles.

15 Related IPs
8.3/10 Avg Threat
100% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
74.91.224.220 8/10
Confidence 100%
Reports 490
ISP Oracle Corporation
4 Jun 2026
20.153.140.50 8/10
Confidence 100%
Reports 49
ISP Microsoft Corpo...
9 Jun 2026
15.235.211.211 8/10
Confidence 100%
Reports 42
ISP OVH SAS
7 May 2026
45.78.201.248 8/10
Confidence 100%
Reports 42
ISP Byteplus Pte. Ltd.
30 Mar 2026
161.118.210.105 8/10
Confidence 100%
Reports 32
ISP Oracle Corporation
8 Jun 2026
161.118.200.79 8/10
Confidence 100%
Reports 29
ISP Oracle Corporation
9 Jun 2026
134.185.83.159 8/10
Confidence 100%
Reports 26
ISP Oracle Corporation
25 May 2026
213.35.123.95 8/10
Confidence 100%
Reports 25
ISP Oracle Corporation
7 Jun 2026
20.24.137.18 8/10
Confidence 100%
Reports 20
ISP Microsoft Corpo...
29 Apr 2026
161.118.203.255 8/10
Confidence 100%
Reports 19
ISP Oracle Corporation
8 Jun 2026
213.35.122.50 8/10
Confidence 100%
Reports 18
ISP Oracle Corporation
9 Jun 2026
51.79.254.190 8/10
Confidence 100%
Reports 17
ISP OVH SAS
8 Jun 2026
140.245.46.165 10/10
Confidence 100%
Reports 17
ISP Oracle Corporation
1 Jun 2026
128.1.38.169 8/10
Confidence 99%
Reports 102
ISP UCLOUD INFORMAT...
25 Apr 2026
43.160.200.19 10/10
Confidence 99%
Reports 79
ISP Tencent Buildin...
26 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.5/10 Avg Threat
64% Avg Confidence
14 High Threat
High-risk network: Majority of related IPs are flagged
3.143.33.63 8/10
Confidence 64%
Reports 3,636
Location US US
4 Feb 2026
218.78.24.117 10/10
Confidence 64%
Reports 2,055
Location CN CN
27 Apr 2026
93.152.230.150 10/10
Confidence 64%
Reports 1,761
Location BG BG
13 Jan 2026
185.192.96.169 10/10
Confidence 64%
Reports 884
Location DE DE
13 Oct 2025
3.137.151.234 10/10
Confidence 64%
Reports 816
Location US US
11 Oct 2025
91.224.92.28 10/10
Confidence 64%
Reports 631
Location GB GB
29 Nov 2025
79.124.8.120 10/10
Confidence 64%
Reports 620
Location NL NL
28 Oct 2025
45.173.176.254 10/10
Confidence 64%
Reports 572
Location BR BR
19 Feb 2026
58.9.10.203 10/10
Confidence 64%
Reports 497
Location TH TH
8 Nov 2025
103.119.3.109 5/10
Confidence 64%
Reports 486
Location HK HK
10 Nov 2025
195.178.110.15 10/10
Confidence 64%
Reports 485
Location BG BG
23 Apr 2026
172.110.223.5 10/10
Confidence 64%
Reports 457
Location CZ CZ
13 Feb 2026
103.207.3.28 10/10
Confidence 64%
Reports 427
Location IN IN
8 Oct 2025
198.199.86.189 10/10
Confidence 64%
Reports 419
Location US US
6 Oct 2025
85.11.167.3 10/10
Confidence 64%
Reports 415
Location BG BG
16 Feb 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "36.255.98.3",
    "threat_level": 10,
    "confidence_score": 64,
    "total_reports": 567,
    "country_code": "SG",
    "isp_name": "Cyber-Security",
    "asn": "0",
    "first_reported": "2025-10-09 13:51:42",
    "last_reported": "2025-10-16 05:41:54",
    "exported_at": "2026-06-09T10:43:16+02:00",
    "source": "https://reportedip.de/ip/36.255.98.3/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses