IPMediumSignal 74/100
183.133.97.43
Location
ChinaNingbo, ZJ
ASN
AS4134
Chinanet
First Seen
Apr 16, 2026
Last Seen
May 6, 2026
Found in 7 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
IPv4 Address
Network layer indicator observed in threat reports.
MISP Category
Network Activity
Confidence
74%
Signal Score
74 / 100
IDS Rule
No
Threat Context
Tags
Network Information
CountryChina
ChinaRegionNingbo, ZJ
ASNAS4134
OrganizationChinanet
Feed Intelligence Summary
7 reports74% confidence
7
Source reports
74%
Confidence score
Category tags
abuseactive scanasiabad reputationbrute forcebrute force attackerbrute-forcechinacnhackingindicatornetworkportscanresearchedscannerscannersservice scansshvultr
Activity Timeline
May 6May 6
Threat Activity Heatmap
· Peak: 2026-05-06LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC), an IPv4 address, signals a significant and immediate threat to organizational security. Its high-risk score of 73.77, coupled with its appearance across multiple reputable threat intelligence feeds, indicates its active involvement in malicious activities. Specifically, this IP address has been associated with port scanning and brute force attacks originating from Chinese network infrastructure. Left unaddressed, connections or communications with this IOC cou…
Threat ScoreHigh Risk
74
SIGNAL
Signal Score
74%
Confidence
7
Reports
First seenApr 16, 2026
Last seenMay 6, 2026
GeolocationCN
CountryChina
LocationNingbo, ZJ
ASNAS4134
OrgChinanet
Coords29.8782, 121.5495
VirusTotal
Not checked
WHOIS
- description
- IPv4 hosts detected port scanning Vultr Tokyo (Japan) honeypot
- raw
- inetnum: 183.133.0.0 - 183.133.255.255 netname: CHINANET-ZJ-NB descr: CHINANET-ZJ Ningbo node network descr: Zhejiang Telecom country: cn admin-c: CZ4-AP tech-c: CN13-AP abuse-c: AC1602-AP status: ALLOCATED NON-PORTABLE mnt-by: MAINT-CHINANET-ZJ mnt-lower: MAINT-CN-CHINANET-ZJ-NB mnt-irt: IRT-CHINANET-ZJ last-modified: 2021-06-24T07:33:38Z source: APNIC irt: IRT-CHINANET-ZJ address: Hangzhou, 288 fucun Road, China e-mail: [email protected] abuse-mailbox: [email protected] admin-c: CZ61-AP tech-c: CZ61-AP auth: # Filtered remarks: [email protected] was validated on 2025-11-25 mnt-by: MAINT-CHINANET-ZJ last-modified: 2026-03-13T07:12:20Z source: APNIC role: ABUSE CHINANETZJ country: ZZ address: Hangzhou, 288 fucun Road, China phone: +000000000 e-mail: [email protected] admin-c: CZ61-AP tech-c: CZ61-AP nic-hdl: AC1602-AP remarks: Generated from irt object IRT-CHINANET-ZJ remarks: [email protected] was validated on 2025-11-25 abuse-mailbox: [email protected] mnt-by: APNIC-ABUSE last-modified: 2025-11-25T01:16:42Z source: APNIC role: CHINANET-ZJ Ningbo address: No.180 Jiefang Road(North),Ningbo,Zhejiang.315010 country: CN phone: +86-574-87278134 fax-no: +86-574-87362712 e-mail: [email protected] remarks: send spam reports to [email protected] remarks: and abuse reports to [email protected] remarks: Please include detailed information and times in UTC admin-c: CH105-AP tech-c: CH105-AP nic-hdl: CN13-AP mnt-by: MAINT-CHINANET-ZJ last-modified: 2021-05-20T02:50:38Z source: APNIC role: CHINANET ZHEJIANG address: No. 257 Qingjiang Road, Hangzhou, Zhejiang.310066 country: CN phone: +86-571-86821752 fax-no: +86-571-86988329 e-mail: [email protected] remarks: send spam reports to [email protected] remarks: and abuse reports to [email protected] remarks: Please include detailed information and times in UTC admin-c: CZ61-AP tech-c: CZ61-AP nic-hdl: CZ4-AP mnt-by: MAINT-CHINANET-ZJ last-modified: 2023-08-11T08:33:28Z source: APNIC
- references
- https://jamesbrine.com.au/vultrtokyo-portscan-bruteforce-ip-list-2026-04-15/, https://jamesbrine.com.au
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 1 month ago · Last seen 1 month ago
Appeared in 7 threat reports