IOC Radar
IPMediumSignal 0/100

162.216.149.3

Location
United StatesUnited States
North Charleston, SC
ASN
AS396982
Google Cloud (us-east1)
First Seen
Mar 4, 2025
Last Seen
Jun 16, 2026
Mar 4
First Seen
474d ago
Jun 16
Last Seen
5d ago
13
Reports
source reports
0%
Confidence
medium
Found in 13 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
0%
Signal Score
0 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryUSUnited States
RegionNorth Charleston, SC
ASNAS396982
OrganizationGoogle Cloud (us-east1)

Feed Intelligence Summary

13 reports0% confidence
13
Source reports
0%
Confidence score
Category tags
indicatornetworkresearched

Activity Timeline

1 total obs
Jun 16Jun 16

Threat Activity Heatmap

· Peak: 2026-06-16
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

This IP address (162.216.149.3) is currently whitelisted across multiple threat intelligence feeds and has a threat score of 0.0, indicating it poses a very low or no security risk to the organization. Its presence in various threat intelligence feeds is primarily due to historical listings, but its subsequent and widespread whitelisting by the Appealer Whitelist Service nullifies any previously associated malicious context. Organizations should view this IOC as benign, and its detection does no…

Threat ScoreLow Risk
0
SIGNAL
Signal Score
0%
Confidence
13
Reports
First seenMar 4, 2025
Last seenJun 16, 2026
GeolocationUS
CountryUnited States
LocationNorth Charleston, SC
ASNAS396982
OrgGoogle Cloud (us-east1)
Coords32.8608, -79.9746

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning DigitalOcean London (UK) honeypot
raw
NetRange: 162.216.148.0 - 162.216.151.255 CIDR: 162.216.148.0/22 NetName: GOOGLE-CLOUD NetHandle: NET-162-216-148-0-1 Parent: NET162 (NET-162-0-0-0-0) NetType: Direct Allocation OriginAS: AS15169 Organization: Google LLC (GOOGL-2) RegDate: 2013-07-02 Updated: 2015-09-21 Comment: ** The IP addresses under this netblock are in use by Google Cloud customers ** Comment: Comment: Direct all copyright and legal complaints to Comment: https://support.google.com/legal/go/report Comment: Comment: Direct all spam and abuse complaints to Comment: https://support.google.com/code/go/gce_abuse_report Comment: Comment: For fastest response, use the relevant forms above. Comment: Comment: Complaints can also be sent to the GC Abuse desk Comment: ([email protected]) Comment: but may have longer turnaround times. Comment: Comment: Complaints sent to any other POC will be ignored. Ref: https://rdap.arin.net/registry/ip/162.216.148.0 OrgName: Google LLC OrgId: GOOGL-2 Address: 1600 Amphitheatre Parkway City: Mountain View StateProv: CA PostalCode: 94043 Country: US RegDate: 2006-09-29 Updated: 2019-11-01 Comment: *** The IP addresses under this Org-ID are in use by Google Cloud customers *** Comment: Comment: Direct all copyright and legal complaints to Comment: https://support.google.com/legal/go/report Comment: Comment: Direct all spam and abuse complaints to Comment: https://support.google.com/code/go/gce_abuse_report Comment: Comment: For fastest response, use the relevant forms above. Comment: Comment: Complaints can also be sent to the GC Abuse desk Comment: ([email protected]) Comment: but may have longer turnaround times. Comment: Comment: Complaints sent to any other POC will be ignored. Ref: https://rdap.arin.net/registry/entity/GOOGL-2 OrgNOCHandle: GCABU-ARIN OrgNOCName: GC Abuse OrgNOCPhone: +1-650-253-0000 OrgNOCEmail: [email protected] OrgNOCRef: https://rdap.arin.net/registry/entity/GCABU-ARIN OrgAbuseHandle: GCABU-ARIN OrgAbuseName: GC Abuse OrgAbusePhone: +1-650-253-0000 OrgAbuseEmail: [email protected] OrgAbuseRef: https://rdap.arin.net/registry/entity/GCABU-ARIN OrgTechHandle: ZG39-ARIN OrgTechName: Google LLC OrgTechPhone: +1-650-253-0000 OrgTechEmail: [email protected] OrgTechRef: https://rdap.arin.net/registry/entity/ZG39-ARIN
references
https://github.com/telekom-security/tpotce, https://github.com/search?q=honeytrap+honeypot, https://list.rtbh.com.tr/output.txt, https://raw.githubusercontent.com/ahamed-rizvan/IOCs/refs/heads/main/Malicous%20IP%20Address.txt, http://cinsscore.com/list/ci-badguys.txt

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 1 year ago · Last seen 5 days ago
Appeared in 13 threat reports