Check an IP Address, Domain Name, Subnet, or ASN

178.128.191.134 was found in our database!

$ whois 178.128.191.134

country·🇺🇸 United States

city·Santa Clara

isp·DigitalOcean, LLC

asn·AS14061

network·Standard

$ sikker risk 178.128.191.134scoring →

confidence

74%High

first_seen·Feb 27, 2026

last_seen·1h ago

sessions·36

events·36

$ sikker protocols 178.128.191.134

FTP

11 / 11

HTTPS

11 / 11

HTTP

6 / 6

SIP

4 / 4

MONGODB

2 / 2

ELASTICSEARCH

2 / 2

$ sikker summary 178.128.191.134

178.128.191.134 has a threat confidence score of 74%. This IP address from United States (AS14061, DigitalOcean, LLC) has been observed in 36 honeypot sessions targeting FTP, HTTPS, HTTP, SIP, MONGODB and 1 other protocols. Detected attack patterns include http git repository config exposure probe. First observed on February 27, 2026, most recently active March 25, 2026.

$ sikker behaviors 178.128.191.134catalog →

highHttp Git Repository Config Exposure Probe1x

Identifies HTTP GET requests targeting /.git/config, indicating attempts to access exposed Git repository configuration files. Successful access may enable repository reconstruction, credential harvesting, or source code disclosure.

infoHttp Root Path Request1x

Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.

infoHttps Root Path Request1x

Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration

$ sikker primitives 178.128.191.134

elastic_http_get_request18 elastic_http_bad_request_path_probe12 http_method_get5 elastic_root_path_probe3 https_path_root1 ftp_help_request1 mongodb_ismaster1 http_path_dotgit_config1 elastic_nodes_enumeration1

$ sikker related 178.128.191.134

🇺🇸·More threats fromUnited States→AS·More threats fromDigitalOcean, LLC→FTP·More threats targetingFTP→HTTP·More threats targetingHTTPS→HTTP·More threats targetingHTTP→SIP·More threats targetingSIP→MONG·More threats targetingMONGODB→ELAS·More threats targetingELASTICSEARCH→{ }·Browse allAttack Patterns→

Report IP WHOIS Lookup →

IP Address	Confidence	Events
157.230.44.79	80%	164
147.182.154.58	40%	21
147.182.253.159	28%	1
46.101.82.104	81%	198
152.42.197.20	35%	3

IP Address	Confidence	Events
45.61.184.223	99%	8,678
3.130.168.2	100%	27,326
18.116.101.220	100%	34,164
92.118.39.56	100%	117,587
45.205.1.8	97%	9,242