119.96.7.59 Threat Intelligence and Host Information

Oct 04, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 119.96.7.59 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

Tags: cyber security, ioc, malicious, Nextray, phishing
View other sources: Spamhaus VirusTotal

Country: China
Network:
Noticed: 30 times
Protocols Attacked: telnet
Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Malware Detected on Host

Count: 1 7ae0afd83a47743e3e123f2e821daeae9c0483fdd0a8e1626bb9000fb8057362

Open Ports Detected

1000 10000 10001 10006 10007 10083 10087 10443 10444 1080 1099 11000 1103 11180 11443 12168 12288 12501 12504 12508 13443 1443 14443 17000 18072 18080 18081 18082 18083 18089 18090 18110 18111 18113 1935 2003 20050 20100 20200 2443 28080 3000 3793 443 4430 4432 4433 4443 5000 5001 50080 5222 5225 5443 5600 6080 63443 6443 6688 7001 7002 7021 7070 7082 7272 7443 80 8000 8001 8004 8006 8007 8008 8016 8017 8060 8063 8065 8071 8073 8079 8081 8082 8083 8085 8086 8087 8089 809 8090 8091 8095 8096 8097 8098 8099 81 8156 8167 8181 8185 8188 8189 82 8200 83 8407 8443 8445 88 8800 8836 8847 8856 8867 8880 8884 8888 8889 8891 89 90 9002 9003 9020 9029 9031 9072 9081 9091 9096 9200 9443 9444 98 99 9994 9999

Map

Whois Information

inetnum: 119.96.0.0 - 119.103.255.255
netname: CHINANET-HB
descr: CHINANET Hubei province network
descr: Data Communication Division
descr: China Telecom
country: CN
admin-c: CH93-AP
tech-c: CHA1-AP
abuse-c: AC1573-AP
status: ALLOCATED PORTABLE
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET
mnt-routes: MAINT-CHINANET-HB
mnt-irt: IRT-CHINANET-CN
last-modified: 2021-06-15T08:06:36Z
irt: IRT-CHINANET-CN
address: No.31 ,jingrong street,beijing
address: 100032
e-mail: anti-spam@chinatelecom.cn
abuse-mailbox: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
mnt-by: MAINT-CHINANET
last-modified: 2025-09-04T00:59:42Z
role: ABUSE CHINANETCN
country: ZZ
address: No.31 ,jingrong street,beijing
address: 100032
phone: +000000000
e-mail: anti-spam@chinatelecom.cn
admin-c: CH93-AP
tech-c: CH93-AP
nic-hdl: AC1573-AP
abuse-mailbox: anti-spam@chinatelecom.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-04-24T03:21:54Z
role: CHINANET HB ADMIN
address: 8th floor of JinGuang Building
address: HanKou Wuhan Hubei Province
address: P.R.China
country: CN
phone: +86 27 82862199
fax-no: +86 27 82861499
e-mail: hbadd@189.cn
admin-c: YZ83-AP
admin-c: ZC77-AP
tech-c: YZ83-AP
tech-c: ZC77-AP
nic-hdl: CHA1-AP
notify: hbadd@189.cn
mnt-by: MAINT-CN-CHINANET-HB
last-modified: 2013-08-06T11:09:18Z
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@chinatelecom.cn
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
mnt-by: MAINT-CHINANET
last-modified: 2022-02-28T06:53:44Z

Links to attack logs

****** dotoronto-telnet-bruteforce-ip-list-2021-03-15 ****** ******

Share on: