← Back to Dashboard

178.220.234.5 Threat Intelligence Report

Risk Level: CRITICAL — 211 abuse reports from 5 sources

Threat Intelligence Summary

IP address 178.220.234.5 has been flagged in 211 abuse reports across 5 independent threat intelligence sources, resulting in a threat score of 100.0/100 (critical risk). The primary activity associated with this IP is aggregated threat, along with botnet c2, malware c2, suspicious activity, telnet bruteforce.

This IP is geolocated in Serbia (Belgrade) and belongs to the network TELEKOM SRBIJA a.d. (AS8400). Reports span from 2025-10-03 to 2026-02-05.

Assessment: With 211 abuse reports, 178.220.234.5 shows persistent malicious activity that has been flagged by multiple threat intelligence feeds. This IP has been identified as a command-and-control server for botnet infrastructure, meaning it coordinates malicious activity across networks of compromised machines.

Data aggregated from 5 independent threat intelligence sources.

Geolocation

Country Serbia
City Belgrade
Region Belgrade
ISP/ASN TELEKOM SRBIJA a.d.
Timezone Europe/Belgrade

Threat Status

Overall Status Critical
Threat Score 100.0%
Report Count 211
Sources 5
First Seen 2025-10-03
Last Seen 2026-02-05

Check IPs automatically with the WAYSCloud API

Free tier: 1,000 lookups/day. Get threat scores, geolocation, and abuse reports via REST API.

Explore the API →

See how we classify and verify threats →

Related Intelligence

Serbia Threat Intelligence → AS8400 Network Intelligence → See all top malicious IPs → View latest attacks →
Learn about these threats: