IOC Radar
IPMediumSignal 70/100

45.194.67.147

Location
BrazilBrazil
São Paulo, São Paulo
ASN
AS17561
Cloud Innovation Ltd
First Seen
Jun 14, 2026
Last Seen
Jun 23, 2026
Jun 14
First Seen
9d ago
Jun 23
Last Seen
today
7
Reports
source reports
70%
Confidence
medium
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
70%
Signal Score
70 / 100
IDS Rule
No
Threat Context
Tags

Network Information

CountryBRBrazil
RegionSão Paulo, São Paulo
ASNAS17561
OrganizationCloud Innovation Ltd

Feed Intelligence Summary

7 reports70% confidence
7
Source reports
70%
Confidence score
Category tags
abuseactive scanasiabad reputationblocklistbrbrazilbrute forcebrute-forcebruteforcecowriedigital oceandionaeaexploitation activityfatthackinghong kongindicatormalicious-ipnetworknorth americap0fphishingportscanresearchresearchedscannerscannerssensor-taggedservice scanseychellessouth americaspamsshssh-brutetannerthreat actorthreat-inteltpotunited statesusvultrweb app attackweb spam

Activity Timeline

1 total obs
Jun 23Jun 23

Threat Activity Heatmap

Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
1
Minimal
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated

The IP address 45.194.67.147 represents a significant and active threat, identified as a source of widespread malicious activity including port scanning and bruteforce attempts. With a high score of 69.9 and no whitelist status, this Indicator of Compromise (IOC) carries substantial risk to organizational security. Its presence in our environment indicates a high probability of reconnaissance or direct attack attempts, potentially leading to unauthorized access, data compromise, or disruption of…

Threat ScoreMedium Risk
70
SIGNAL
Signal Score
70%
Confidence
7
Reports
First seenJun 14, 2026
Last seenJun 23, 2026
GeolocationBR
CountryBrazil
LocationSão Paulo, São Paulo
ASNAS17561
OrgCloud Innovation Ltd
Coords22.2578, 114.1657

VirusTotal

Not checked

WHOIS

description
Observed on T-Pot within last 24h; sensors=p0f, suricata; threshold?1; private IPs excluded. geo=US; ports=443 Location=Sydney, Australia.
raw
Socket not responding: [Errno 111] Connection refused
references
https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-06-18/, https://jamesbrine.com.au, https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-06-17/, https://jamesbrine.com.au/digitaloceantoronto-portscan-bruteforce-ip-list-2026-06-17/, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-06-17/, https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-06-16/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 9 days ago · Last seen today
Appeared in 7 threat reports