IOC Radar
IPMediumSignal 70/100

178.128.170.44

Location
United KingdomUnited Kingdom
Slough, ENG
ASN
AS14061
Digitalocean
First Seen
Aug 16, 2023
Last Seen
Apr 23, 2026
Aug 16
First Seen
1035d ago
Apr 23
Last Seen
54d ago
11
Reports
source reports
70%
Confidence
medium
1/91
VirusTotal
detections
Found in 11 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
70%
Signal Score
70 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryGBUnited Kingdom
RegionSlough, ENG
ASNAS14061
OrganizationDigitalocean

Feed Intelligence Summary

11 reports70% confidence
11
Source reports
70%
Confidence score
Category tags
active scanbrute forcebrute force attackereuropeindicatornetworkportscanresearchedscannersservice scanunited kingdomvultr

Activity Timeline

1 total obs
Apr 23Apr 23

Threat Activity Heatmap

· Peak: 2026-04-23
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
70
SIGNAL
Signal Score
70%
Confidence
11
Reports
First seenAug 16, 2023
Last seenApr 23, 2026
GeolocationGB
CountryUnited Kingdom
LocationSlough, ENG
ASNAS14061
OrgDigitalocean
Coords51.5177, -0.6215

VirusTotal

1/ 91vendors flagged
1% detection rateJun 5, 2026

WHOIS

description
IPv4 hosts detected port scanning Vultr Tokyo (Japan) honeypot
raw
inetnum: 178.128.160.0 - 178.128.175.255 netname: DIGITALOCEAN country: GB admin-c: PT7353-RIPE tech-c: PT7353-RIPE status: ASSIGNED PA mnt-by: digitalocean created: 2019-04-17T13:55:49Z last-modified: 2019-04-17T13:55:49Z source: RIPE person: DigitalOcean Network Operations address: 105 Edgeview Drive, Suite 425 address: Broomfield, Colorado 80021 address: United States of America phone: +16468274366 nic-hdl: PT7353-RIPE mnt-by: digitalocean created: 2015-03-11T16:37:07Z last-modified: 2025-04-11T19:39:01Z source: RIPE # Filtered org: ORG-DOI2-RIPE
references
https://jamesbrine.com.au/vultrtokyo-portscan-bruteforce-ip-list-2026-04-15/, https://jamesbrine.com.au

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 years ago · Last seen 1 month ago
Appeared in 11 threat reports