IOC Radar
IPMediumSignal 44/100

217.61.143.66

Location
SpainSpain
Seville, Andalusia
ASN
AS39020
Comvive Servidores S.L
First Seen
Feb 21, 2026
Last Seen
May 30, 2026
Feb 21
First Seen
120d ago
May 30
Last Seen
22d ago
12
Reports
source reports
44%
Confidence
medium
Found in 12 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
44%
Signal Score
44 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

13 techniques

Network Information

CountryESSpain
RegionSeville, Andalusia
ASNAS39020
OrganizationComvive Servidores S.L

IP Category

Proxy
Proxy server
VPN
VPN exit node

Feed Intelligence Summary

12 reports44% confidence
12
Source reports
44%
Confidence score
Category tags
active scanactive scanningapacheapache attackerbad web botblocklist_allblog spambotnet activitybrute forcebrute force attackbrute-forcecredential accesscredential stuffingdata exfiltrationdata store exposuredatabase securityddosdenial of serviceeseuropeexploitation activityexploited hostftp brute-forcehackingidentity & access exploitationinjection activityinjection attacksmalwarenetworkopen proxypassword attacksproxyreconnaissanceresearchedscannerspainspamssht1059.003t1110.001t1110.002t1110.003t1110.004t1190t1203t1486t1499.001t1499.002t1595.001t1595.002t1595.003vpnvpn ipweb app attackweb application attackweb exploitationweb spam

Activity Timeline

1 total obs
May 30May 30

Threat Activity Heatmap

· Peak: 2026-05-30
Less
More
Mon
Wed
Fri
Jun
·
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreMedium Risk
44
SIGNAL
Signal Score
44%
Confidence
12
Reports
First seenFeb 21, 2026
Last seenMay 30, 2026
GeolocationES
CountrySpain
LocationSeville, Andalusia
ASNAS39020
OrgComvive Servidores S.L
Coords37.5063, -5.9251
ProxyVPN

VirusTotal

Not checked

WHOIS

raw
inetnum: 217.61.143.0 - 217.61.143.255 netname: COMVIVE descr: Comvive Servidores S.L. org: ORG-CSS4-RIPE country: ES geofeed: https://descargas.comvive.es/geoip/feed.csv admin-c: DS3842-RIPE tech-c: DS3842-RIPE status: ASSIGNED PA mnt-by: COMVIVE-MNT created: 2019-01-03T12:45:48Z last-modified: 2024-08-16T14:49:28Z source: RIPE organisation: ORG-CSS4-RIPE org-name: Comvive Servidores S.L. country: ES org-type: LIR address: Nicolas Copernico, 18 address: 41300 address: San Jose de la Rinconada address: SPAIN phone: +34954797264 fax-no: +34954797264 abuse-c: AC24673-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: COMVIVE-MNT mnt-by: RIPE-NCC-HM-MNT mnt-by: COMVIVE-MNT created: 2008-01-24T11:54:46Z last-modified: 2020-12-16T13:27:46Z source: RIPE # Filtered person: Daniel Salamanca address: COMVIVE SERVIDORES S.L. address: Nicolas Copernico, 18 address: 41300 address: San Jose de la Rinconada address: Sevilla phone: +34 954.797.264 fax-no: +34 954.797.264 nic-hdl: DS3842-RIPE mnt-by: COMVIVE-MNT created: 2005-05-27T09:09:02Z last-modified: 2023-01-03T09:44:19Z source: RIPE # Filtered route: 217.61.143.0/24 origin: AS39020 mnt-by: COMVIVE-MNT created: 2019-01-03T12:56:20Z last-modified: 2019-01-03T12:56:20Z source: RIPE

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

medium
First detected 4 months ago · Last seen 22 days ago
Appeared in 12 threat reports