IPMediumSignal 74/100

`91.92.21.134`

Location

Cyprus

Klírou, Nicosia

ASN

AS210006

Unique IP Solutions private Limited

First Seen

Mar 20, 2026

Last Seen

May 16, 2026

Mar 20

First Seen

85d ago

May 16

Last Seen

27d ago

Reports

source reports

74%

Confidence

medium

Found in 10 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.

IPv4 Address

Network layer indicator observed in threat reports.

MISP Category

Network Activity

Confidence

74%

Signal Score

74 / 100

IDS Rule

Threat Context

MITRE ATT&CK TTPs

3 techniques

Network Information

Country

Cyprus

RegionKlírou, Nicosia

ASNAS210006

OrganizationUnique IP Solutions private Limited

Feed Intelligence Summary

10 reports74% confidence

Source reports

74%

Confidence score

Category tags

abuseactive scanactive scanningaptbad reputationbad web botbotnetbotnet activitybrute forcebrute force attackerbrute-forcebulgariacowrieddosddos attackdigital oceandionaeaeuropeexploitexploitation activityfattfifinlandhackingindicatoriot securityiot targetedmalicious ipmirainetworkp0fportscanreconnaissanceresearchedscanscannerscannerssensor-taggedservice scanssht1595.001t1595.002t1595.003tannertcpthreat actortor nodetpotvulnerability scanvulnerability-exploitationvultrweb app attack

Activity Timeline

1 total obs

May 16May 16

Threat Activity Heatmap

· Peak: 2026-05-16

Less

Mon

Wed

Fri

Jun

Jul

Aug

Sep

Oct

Nov

Dec

Jan

Feb

Mar

Apr

May

Jun

24h

Dormant

30d

Minimal

3mo

Minimal

Threat ScoreHigh Risk

SIGNAL

Signal Score

74%

Confidence

Reports

First seenMar 20, 2026

Last seenMay 16, 2026

GeolocationCY

CountryCyprus

LocationKlírou, Nicosia

ASNAS210006

OrgUnique IP Solutions private Limited

Coords42.6960, 23.3320

VirusTotal

Not checked

WHOIS

description: IPv4 hosts detected port scanning Vultr Melbourne (Australia) honeypot
raw: inetnum: 91.92.21.0 - 91.92.21.255 netname: BG-NETERRAIP-20060815 country: DE org: ORG-NL38-RIPE admin-c: AA45055-RIPE abuse-c: AA45056-RIPE tech-c: AA45055-RIPE mnt-lower: Sher-MNT mnt-domains: Sher-MNT mnt-routes: Sher-MNT status: ALLOCATED PA mnt-by: RIPE-NCC-HM-MNT mnt-by: MNT-NETERRA created: 2021-04-07T08:04:01Z last-modified: 2026-04-05T06:42:57Z source: RIPE organisation: ORG-NL38-RIPE org-name: Neterra Ltd. country: BG org-type: LIR address: 9 Vitoshki Kambani Street, Kambanite Green Offices, Fl. 3 address: 1756 address: Sofia address: BULGARIA phone: +359 2 974 3311 fax-no: +359 2 975 3436 admin-c: DB2806-RIPE admin-c: TM6693-RIPE admin-c: PM12656-RIPE admin-c: YK188-RIPE admin-c: JG4195-RIPE admin-c: AN4419-RIPE admin-c: II919-RIPE admin-c: MA17342-RIPE admin-c: ZY97-RIPE admin-c: KI720-RIPE admin-c: JK4334-RIPE abuse-c: Nc2110-RIPE mnt-ref: RIPE-NCC-HM-MNT mnt-ref: MNT-NETERRA mnt-by: RIPE-NCC-HM-MNT mnt-by: MNT-NETERRA created: 2004-11-18T06:11:25Z last-modified: 2023-12-07T11:33:45Z source: RIPE # Filtered role: admin-c address: Kazakhstan, 150800, Bulaevo st.Budennogo h.139 (PKA020134563335465) nic-hdl: AA45055-RIPE mnt-by: Sher-MNT created: 2025-05-08T18:54:29Z last-modified: 2025-05-10T13:54:37Z source: RIPE # Filtered route: 91.92.21.0/24 origin: AS210006 created: 2026-02-18T14:15:16Z last-modified: 2026-02-18T14:15:16Z source: RIPE mnt-by: Sher-MNT
references: https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-04-17/, https://jamesbrine.com.au, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-04-17/, https://jamesbrine.com.au/digitaloceanlondon-portscan-bruteforce-ip-list-2026-04-16/, https://jamesbrine.com.au/vultrmelbournetest-portscan-bruteforce-ip-list-2026-04-16/

`91.92.21.134`

MITRE ATT&CK TTPs

Network Information

Feed Intelligence Summary

Activity Timeline

Threat Activity Heatmap

VirusTotal

WHOIS

Export & API

IOC Journey

We value your privacy