IOC Radar
IPMediumSignal 69/100

146.19.215.136

Location
GermanyGermany
Nuremberg, Bavaria
ASN
AS206216
Advin Services LLC
First Seen
Apr 15, 2026
Last Seen
May 21, 2026
Apr 15
First Seen
65d ago
May 21
Last Seen
30d ago
10
Reports
source reports
69%
Confidence
medium
Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
69%
Signal Score
69 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

3 techniques

Network Information

CountryDEGermany
RegionNuremberg, Bavaria
ASNAS206216
OrganizationAdvin Services LLC

Feed Intelligence Summary

10 reports69% confidence
10
Source reports
69%
Confidence score
Category tags
abuseactive scanactive scanningbad reputationbrute forcebrute force attackerbrute-forcebruteforcecowrieddosddos attackdedigital oceandionaeaeuropeexploitexploitation activityexploited hostfattfraud voipgermanyhackingnetworkp0fping of deathportscanproxyreconnaissanceresearchedscams & fraudscannerscannerssensor-taggedservice scansipssht1595.001t1595.002t1595.003tannertpotvulnerability scanvulnerability-exploitationvultrweb app attack

Activity Timeline

1 total obs
May 21May 21

Threat Activity Heatmap

· Peak: 2026-05-21
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Threat ScoreMedium Risk
69
SIGNAL
Signal Score
69%
Confidence
10
Reports
First seenApr 15, 2026
Last seenMay 21, 2026
GeolocationDE
CountryGermany
LocationNuremberg, Bavaria
ASNAS206216
OrgAdvin Services LLC
Coords0.0000, 0.0000

VirusTotal

Not checked

WHOIS

description
IPv4 hosts detected port scanning Vultr Melbourne (Australia) honeypot
raw
inetnum: 146.19.215.0 - 146.19.215.255 netname: IPXO country: DE admin-c: AATT1-RIPE tech-c: AATT1-RIPE abuse-c: AR834 org: ORG-AA2812-RIPE status: SUB-ALLOCATED PA mnt-by: netutils-mnt mnt-by: lir-lt-mblirutis-1-MNT created: 2023-12-06T05:38:43Z last-modified: 2025-02-12T15:13:30Z source: RIPE organisation: ORG-AA2812-RIPE org-name: Advin Services LLC org-type: OTHER address: 651 Valley Rd Suite 691 abuse-c: ACRO50115-RIPE mnt-ref: interlir-mnt mnt-ref: IPXO-MNT mnt-by: AdvinServices-01-MNT created: 2022-10-10T21:25:01Z last-modified: 2023-04-24T05:49:58Z source: RIPE # Filtered role: Admin and Technical Team address: 651 Valley Rd Suite 691, Hockessin, DE 19707-9998 nic-hdl: AATT1-RIPE mnt-by: AdvinServices-01-MNT created: 2022-10-10T21:27:01Z last-modified: 2022-10-10T21:27:01Z source: RIPE # Filtered route: 146.19.215.0/24 origin: AS206216 mnt-by: netutils-mnt created: 2022-12-01T08:41:34Z last-modified: 2025-02-12T14:01:36Z source: RIPE route: 146.19.215.0/24 origin: AS42831 mnt-by: netutils-mnt created: 2023-02-06T20:18:13Z last-modified: 2025-02-12T14:01:36Z source: RIPE
references
https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-04-22/, https://jamesbrine.com.au, https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-04-21/, https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-04-19/, https://jamesbrine.com.au/vultrtokyo-portscan-bruteforce-ip-list-2026-04-18/, https://jamesbrine.com.au/vultrparis-portscan-bruteforce-ip-list-2026-04-18/, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-04-16/

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 2 months ago · Last seen 1 month ago
Appeared in 10 threat reports