117.148.115.104
IP Intelligence Briefing: 117.148.115.104
Date: 2026-06-11
---
**1. Core Profile**
- Risk Score: Low Risk (0/100)
- Ownership:
- AS: AS56041 (China Mobile Communications Corporation)
- Network: CMNET (China Mobile)
- Geolocation: Jiangxi Province, China (Longjin), 28.8305°N, 115.5364°E
- Threat Indicators: None detected (no malware, spam, or known attacker activity).
- Network Role: Mobile carrier infrastructure (not residential, cloud, or CDN).
---
**2. Observation History**
- Recent Activity (Last 30 Days):
- 13 observations recorded, with 8% confidence in geolocation and 15% in threat signals.
- No persistent malicious behavior; no blacklist entries.
- Geolocation consistency: 2 sources confirmed CN, Jiangxi.
---
**3. Network Relationships**
- Linked Entities:
- Same Network: CMNET (China Mobile)
- Subnet: 117.144.0.0/12 (shared with other China Mobile IPs).
- Control Plane:
- BGP prefix: 117.148.112.0/20
- DNSSEC validated; no CAAs or DNSBL listings.
---
**4. Subnet Analysis**
- Subnet: 117.148.115.0/24
- Neighbor Risk:
- Total Neighbors: 5
- Risk Distribution: 1 medium-risk IP (25/100), 4 low-risk IPs (0โ25/100).
- Abuse Density: 0% (low risk of subnet-wide compromise).
---
**5. Actionable Insights**
- No Immediate Threat: The IP is tied to a legitimate mobile carrier with no malicious indicators.
- Monitor Neighbors: The one medium-risk neighbor (117.148.115.194) may require closer scrutiny.
- Geolocation Verification: Confirm the IPโs location via additional probes if anomalies arise.
- Firewall Rules: No blocking required for this IP, but consider rate-limiting or monitoring for unexpected traffic patterns.
---
Conclusion: 117.148.115.104 is a low-risk, legitimate mobile carrier IP with no malicious activity detected. Focus on monitoring its subnet for potential lateral movement or compromised neighbors.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
๐ข Ownership & Registration
| Organization | IRT-CHINAMOBILE-CN |
| ASN | AS56041 |
| Network Name | CMNET |
| CIDR Block | 117.144.0.0/12 |
| RIR | APNIC |
| Country | CN |
| Abuse Contact | Available via RDAP |
๐ DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No โ PTR hostname does not resolve back to this IP (weak signal) |
๐ DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
โ๏ธ Network Classification
| Infrastructure | Mobile |
| Service Purpose | Firewalled / No Services |
| Network Tier | Unknown โ Insufficient routing data to classify |
๐ Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| No open ports detected | |||
| Server | โ |
| HTTP Title | โ |
๐ TLS Certificate
| SANs | None |
| Valid From | โ |
| Valid Until | โ |
๐ฏ Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 13% | 1 | 1 |
| routing | 13% | 1 | 1 |
| services | 13% | 1 | 1 |
| ownership | 27% | 2 | 3 |
| reputation | 0% | 0 | 0 |
| geolocation | 13% | 1 | 1 |
| Overall | 13% | 6 | 7 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
๐ Observation Timeline ๐ Live
| First Seen | 2026-05-27 07:16:28 UTC |
| Last Seen | 2026-06-11 08:31:47 UTC |
| Profile Built | 2026-06-11 08:40:55 UTC |
| Data Freshness | Live |
| Signal Types | 15 |
| Total Observations | 16 |
Full dossier details are available via our API.