JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 58.19.143.199

58.19.143.199 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 52%: ?

52%

ISP	wuhan niantong16
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	cnc.cn
Country	🇨🇳 China
City	Wuhan, Hubei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 58.19.143.199

Whois 58.19.143.199

IP Abuse Reports for 58.19.143.199:

This IP address has been reported a total of 19 times from 8 distinct sources. 58.19.143.199 was first reported on February 7th 2026, and the most recent report was 27 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-11 00:45:53 (27 minutes ago)	Honeypot detection: LDAP injection / directory service abuse attempt on port 6000. Severity: MEDIUM. ... show more Honeypot detection: LDAP injection / directory service abuse attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Web App Attack
🇵🇱 sefinek.net	2026-06-10 19:39:42 (5 hours ago)	Honeypot hit: HTTP/1.1 request on 9295 GET / Accept: /; 9295 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 9295 GET / Accept: /; 9295 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 MPL	2026-06-10 03:33:43 (21 hours ago)	tcp/8688	Port Scan
🇬🇧 PeravixGroup	2026-06-09 10:18:23 (1 day ago)	Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: ME ... show more Honeypot detection: VNC remote desktop brute-force authentication attempt on port 5900. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇺🇸 MPL	2026-06-08 23:54:22 (2 days ago)	tcp/11210	Port Scan
🇬🇧 PeravixGroup	2026-06-08 23:40:22 (2 days ago)	Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: ... show more Honeypot detection: X11 display server unauthorized access / probing attempt on port 6000. Severity: MEDIUM. Aaran.cloud show less	Port Scan Brute-Force
🇷🇸 Scan	2026-06-07 01:17:14 (3 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-06 12:46:36 (4 days ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-06-06 07:48:01 (4 days ago)	Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: ME ... show more Honeypot detection: Telnet / IoT device brute-force or exploitation attempt on port 23. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Brute-Force
🇷🇸 Scan	2026-06-05 02:44:03 (5 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-05 00:57:42 (6 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-04 13:12:09 (6 days ago)	Honeypot hit: Empty payload (likely service probe); 11211 [1] TCP Reported by: https://github.com/se ... show more Honeypot hit: Empty payload (likely service probe); 11211 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
Anonymous	2026-06-03 02:21:45 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 _ArminS_	2026-06-02 21:15:23 (1 week ago)	SP-Scan 44616:18005 detected 2026.06.02 23:15:23 blocked until 2026.07.22 16:18:10	Port Scan
🇬🇧 PeravixGroup	2026-06-02 19:11:59 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 218.1.216.52

🇰🇷 203.142.160.143

🇳🇱 81.19.216.110

🇹🇼 61.58.190.58

🇺🇸 2001:470:1:fb5::126

🇮🇶 212.237.121.132

🇩🇪 207.154.205.57

🇬🇧 193.32.209.242

🇬🇧 185.247.137.225

🇺🇸 157.245.14.160

🇷🇺 94.180.250.11

🇷🇴 92.118.39.236

🇺🇸 91.230.168.138

🇳🇱 86.54.31.40

🇱🇹 45.227.254.170

🇳🇱 45.148.10.152

🇫🇷 38.242.228.184

🇭🇰 8.218.208.11

🇺🇸 198.211.104.227

🇳🇱 188.166.38.86