IPMediumSignal 82/100
111.170.35.22
Location
ChinaShizishan, Hubei
ASN
AS151185
Chinanet HB
First Seen
Apr 10, 2026
Last Seen
May 24, 2026
Found in 19 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
82%
Signal Score
82 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Network Information
CountryChina
ChinaRegionShizishan, Hubei
ASNAS151185
OrganizationChinanet HB
Feed Intelligence Summary
19 reports82% confidence
19
Source reports
82%
Confidence score
Category tags
abuseactive scanactive scanningapacheapache attackeraptasiaattackbad reputationbad web botblocklistbotnet activitybrute forcebrute force attackbrute-forcebruteforcechinacncredential accesscredential stuffingddosddos attackdenial of servicedigital oceanexploitation activityexploited hosthackingidentity & access exploitationindicatorinjection activityiot securityiot targetedkill-chain exploitationkill-chain reconnaissancelow-risknetworkosintpassword attacksping of deathportscanransomwarereconnaissanceresearchedscannerscannersservice scansocradar honeypotsql injectionsshssh attackt1110.001t1110.002t1110.003t1110.004t1190t1203t1499.001t1595.001t1595.002t1595.003targeting databasethreat actortor nodevultrweb app attackweb application attackweb exploitation
Activity Timeline
May 24May 24
Threat Activity Heatmap
· Peak: 2026-05-24LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Threat ScoreHigh Risk
82
SIGNAL
Signal Score
82%
Confidence
19
Reports
First seenApr 10, 2026
Last seenMay 24, 2026
GeolocationCN
CountryChina
LocationShizishan, Hubei
ASNAS151185
OrgChinanet HB
Coords30.5454, 114.3420
VirusTotal
Not checked
WHOIS
- description
- IPv4 hosts detected port scanning Vultr Paris (France) honeypot
- raw
- inetnum: 111.170.0.0 - 111.170.255.255 netname: CHINANET-HB descr: CHINANET HUBEI PROVINCE NETWORK descr: China Telecom descr: No.31,jingrong street descr: Beijing 100032 country: CN admin-c: CHA1-AP tech-c: CHA1-AP abuse-c: AC1573-AP status: ALLOCATED PORTABLE remarks: service provider remarks: -------------------------------------------------------- remarks: To report network abuse, please contact mnt-irt remarks: For troubleshooting, please contact tech-c and admin-c remarks: Report invalid contact via www.apnic.net/invalidcontact remarks: -------------------------------------------------------- mnt-by: APNIC-HM mnt-lower: MAINT-CHINANET-HB mnt-irt: IRT-CHINANET-CN last-modified: 2021-06-15T08:05:56Z source: APNIC irt: IRT-CHINANET-CN address: No.31 ,jingrong street,beijing address: 100032 e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CH93-AP tech-c: CH93-AP auth: # Filtered remarks: [email protected] was validated on 2025-11-13 mnt-by: MAINT-CHINANET last-modified: 2026-03-13T07:12:20Z source: APNIC role: ABUSE CHINANETCN country: ZZ address: No.31 ,jingrong street,beijing address: 100032 phone: +000000000 e-mail: [email protected] admin-c: CH93-AP tech-c: CH93-AP nic-hdl: AC1573-AP remarks: Generated from irt object IRT-CHINANET-CN remarks: [email protected] was validated on 2025-11-13 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-11-13T14:15:15Z source: APNIC role: CHINANET HB ADMIN address: 8th floor of JinGuang Building address: #232 of Macao Road address: HanKou Wuhan Hubei Province address: P.R.China country: CN phone: +86 27 82862199 fax-no: +86 27 82861499 e-mail: [email protected] remarks: send spam reports to [email protected] remarks: and abuse reports to [email protected] remarks: Please include detailed information and remarks: times in GMT+8 admin-c: YZ83-AP admin-c: ZC77-AP tech-c: YZ83-AP tech-c: ZC77-AP nic-hdl: CHA1-AP notify: [email protected] mnt-by: MAINT-CN-CHINANET-HB last-modified: 2013-08-06T11:09:18Z source: APNIC
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 2 months ago · Last seen 20 days ago
Appeared in 19 threat reports