111.70.20.166 Threat Intelligence and Host Information

Mar 26, 2026 ipinfopage

General

IP Address

111.70.20.166

IPv4 Address

Location

🇹🇼 Beishan, Taiwan

Network

AS17421

Mobile Business Group

Threat Score

65/100

High Risk

2026-02auto-generatedsecurityAutomatedbruteforcecowriecybersecurity

Attack Intelligence

MITRE ATT&CK Techniques

T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force, T1498 - Network Denial of Service

Open Ports Detected

161

Geographic Location

Country

Taiwan

City

Beishan

Region

Kinmen County

Coordinates

24.4780, 118.3097

Network Information

ASN

AS17421

Organization

Mobile Business Group

Network

AS17421 Mobile Business Group

WHOIS Information

inetnum

111.70.0.0 - 111.70.255.255

netname

EMOME-NET

descr

Taipei Taiwan

country

admin-c

CFK7-TW

tech-c

CFK7-TW

abuse-c

AT939-AP

status

ASSIGNED NON-PORTABLE

mnt-by

MAINT-TW-TWNIC

mnt-irt

IRT-HINET-AP

last-modified

2009-10-09T04:30:10Z

irt

IRT-HINET-AP

address

Taipei, Taiwan, 106

phone

+886-2-2344-2803

e-mail

chinhu@cht.com.tw

abuse-mailbox

hostmaster@twnic.tw

role

CHT-Mobile Business Group

nic-hdl

CBG5-AP

fax-no

+886-2-2394-0814

notify

hostmaster@twnic.net.tw

changed

network-adm@hinet.net 20100527

Attack Logs

Date	Target Location	Protocol	Link
2026-03-24	Vultrtokyo	SSH	View Log

Country: Taiwan
Network:
Noticed: 50 times
Protocols Attacked: portscan ssh
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 1 c5d64f012903754e0db3f8b63bef9c290542e8323602ed5c5a4c2c0cdcd30463

CVEs Detected

CVE-2013-4508 CVE-2013-4559 CVE-2013-4560 CVE-2014-2323 CVE-2014-2324 CVE-2015-3200 CVE-2018-19052 CVE-2019-11072 CVE-2019-11358 CVE-2020-11022 CVE-2020-11023

Disclaimer

This page contains threat intelligence information for the IPv4 address 111.70.20.166 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.