59.54.54.226 Threat Intelligence and Host Information

Sep 09, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 59.54.54.226 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 45/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, msiexec, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Country: China
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

10000 10007 10008 10012 10013 10015 10019 10020 10022 10025 10029 10030 10031 10033 10038 10042 10043 10049 10050 10052 10071 10100 10200 10205 1023 1024 10250 10256 1027 10283 10348 10398 10443 10477 1080 10911 10935 1099 11000 11075 111 11112 11210 11211 11300 11371 11434 1153 1181 1193 12000 12082 12084 12088 12101 12108 12115 12116 12118 12131 12135 12138 12147 12159 12169 12176 12179 12181 12182 12190 12197 12206 12209 12221 12228 12233 12240 12241 12242 12250 12265 12266 12272 12276 12282 12283 12286 12309 12311 12321 12322 12327 12330 12331 12332 12335 12341 12347 12355 12358 12361 12368 12376 12379 12392 12401 12403 12404 12407 12420 12431 12432 12436 12438 12440 12443 12444 12447 12448 12455 12466 12468 12470 12477 12487 12490 12496 12504 12508 12515 12517 12520 12521 12523 12525 12533 12537 12552 12556 12567 12571 12580 12581 12582 12590 12980 1311 13128 1337 13579 1365 1400 14082 14084 14101 1414 14147 1433 1443 14443 1451 1471 14880 14894 15038 15044 15082 1521 15588 15831 1599 16006 16010 16013 16018 16019 16023 16037 16038 1604 16041 16052 16057 16077 16080 16083 16085 16088 16089 16100 16101 16401 16601 16992 16993 1701 17082 17184 1723 1741 17443 17774 17779 18009 1801 18013 18015 18017 18020 18024 18026 18027 18041 18046 18056 18070 18071 18073 18074 18081 18085 18088 18089 18092 18093 18095 18102 18103 18107 18108 18182 18239 18245 18368 1883 19000 19071 19080 19091 1911 19222 1925 1926 1935 1951 1953 1962 1965 1974 1975 1976 19776 1982 1987 1988 19902 20000 2002 2003 2012 2018 2049 2064 2069 2072 2082 2083 2086 2087 2090 2121 2154 2156 22 2209 2221 2222 2224 2225 2226 2250 2323 2345 2352 2376 2379 2404 2433 2435 2453 2480 2550 2554 2563 2650 2761 2762 2806 3000 3001 3004 3009 3022 3050 3053 3054 3057 3058 3060 3071 3072 3073 3074 3079 3080 3083 3084 3092 3095 3116 3117 3129 3135 3140 3154 3156 3159 3161 3163 3170 3175 3177 3186 3191 3199 3211 3260 3268 3269 3270 3299 3301 3306 3310 3333 3389 3408 3510 3540 3541 3542 3551 3555 3567 3570 3590 3689 3749 3780 3790 3793 3794 3910 3922 3953 4000 4002 4010 4040 4064 4072 4095 4101 4103 4120 4150 4160 4165 4190 4242 4321 4369 4430 4433 4434 4443 4444 4457 4477 4482 4500 4506 4510 4524 4528 4543 4567 4664 4747 4782 4786 4840 4848 4911 4949 5000 5005 5007 5009 5010 5025 5080 5090 5093 5120 5160 5209 5224 5225 5234 5236 5238 5247 5249 5251 5252 5254 5255 5264 5268 5357 5432 5433 5443 5500 5523 5555 5560 5567 5592 5609 5640 5660 5672 5673 5696 5801 5858 5901 5902 5914 5917 5918 5938 5984 5985 5986 5994 5995 5996 6000 6001 6002 6003 6352 6379 6400 6443 6560 6590 6633 6664 6668 6686 6688 6697 6775 6799 7000 7001 7002 7011 7014 7022 7071 7084 7088 7090 7171 7218 7434 7443 7473 7474 7535 7547 7548 7634 7657 7777 7779 7788 7799 7980 7989 7998 8000 8001 8002 8004 8006 8008 8009 8010 8018 8019 8028 8029 8050 8053 8054 8060 8063 8068 8069 8074 8078 8081 8083 8085 8086 8087 8089 8090 8092 8094 8096 8098 8099 8103 8107 8108 8112 8123 8132 8134 8135 8138 8139 8140 8148 8154 8163 8167 8168 8175 8177 8181 8185 8188 8189 8193 8197 8200 8237 8249 8280 8291 8315 8316 8317 8333 8340 8343 8383 8384 8388 8405 8412 8414 8415 8441 8442 8448 8449 8466 8472 8488 8505 8513 8521 8528 8529 8544 8549 8550 8557 8561 8570 8575 8579 8580 8581 8589 8591 8592 8596 8602 8637 8643 8649 8686 8705 8728 8765 8800 8801 8804 8811 8816 8819 8821 8824 8827 8830 8834 8835 8836 8838 8839 8844 8846 8862 8863 8870 8871 8872 8877 8879 8880 8882 8888 8889 8891 8906 8910 8943 8989 8993 9000 9002 9009 9034 9040 9042 9044 9046 9059 9060 9063 9067 9071 9080 9090 9091 9092 9095 9099 9100 9101 9102 9121 9128 9132 9136 9144 9153 9154 9159 9162 9163 9166 9169 9171 9178 9181 9191 9195 9200 9201 9203 9206 9208 9218 9220 9243 9257 9295 9303 9305 9306 9308 9311 9313 9351 9376 9398 9399 9443 9455 9458 9513 9529 9530 9595 9600 9611 9743 9761 9800 9861 9898 9900 9922 9923 9943 9944 9977 9981 9994 9997 9999

CVEs Detected

CVE-2007-2768 CVE-2008-3844 CVE-2016-20012 CVE-2017-15906 CVE-2018-15473 CVE-2018-15919 CVE-2018-20685 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2025-26465 CVE-2025-32728

Map

Whois Information

  • inetnum: 59.52.0.0 - 59.55.255.255
  • netname: CHINANET-JX
  • descr: CHINANET Jiangxi province network
  • descr: China Telecom
  • descr: No.31,jingrong street
  • descr: Beijing 100032
  • country: CN
  • admin-c: CH93-AP
  • tech-c: JN113-AP
  • abuse-c: AC1573-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: APNIC-HM
  • mnt-lower: MAINT-IP-WWF
  • mnt-irt: IRT-CHINANET-CN
  • last-modified: 2021-06-15T08:06:39Z
  • irt: IRT-CHINANET-CN
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • e-mail: anti-spam@chinatelecom.cn
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • mnt-by: MAINT-CHINANET
  • last-modified: 2025-09-04T00:59:42Z
  • role: ABUSE CHINANETCN
  • country: ZZ
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +000000000
  • e-mail: anti-spam@chinatelecom.cn
  • admin-c: CH93-AP
  • tech-c: CH93-AP
  • nic-hdl: AC1573-AP
  • abuse-mailbox: anti-spam@chinatelecom.cn
  • mnt-by: APNIC-ABUSE
  • last-modified: 2025-04-24T03:21:54Z
  • role: JXDCB NET
  • address: Jiangxi telecom network operation support department
  • address: No.2009, Beijing East Road , nanchang,jiangxi province
  • country: CN
  • phone: +86 79186600000
  • e-mail: 56561125@qq.com
  • admin-c: XY1-AP
  • tech-c: WZ1-CN
  • tech-c: WW49-AP
  • nic-hdl: JN113-AP
  • notify: 56561125@qq.com
  • mnt-by: MAINT-IP-WWF
  • last-modified: 2020-04-02T08:23:08Z
  • person: Chinanet Hostmaster
  • nic-hdl: CH93-AP
  • e-mail: anti-spam@chinatelecom.cn
  • address: No.31 ,jingrong street,beijing
  • address: 100032
  • phone: +86-10-58501724
  • fax-no: +86-10-58501724
  • country: CN
  • mnt-by: MAINT-CHINANET
  • last-modified: 2022-02-28T06:53:44Z

Links to attack logs

mssql-bruteforce-ip-list-2020-11-05 ****** ****** ******

Share on: