JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 58.212.237.217

58.212.237.217 was found in our database!

This IP was reported 198 times. Confidence of Abuse is 38%: ?

38%

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 58.212.237.217

Whois 58.212.237.217

IP Abuse Reports for 58.212.237.217:

This IP address has been reported a total of 198 times from 71 distinct sources. 58.212.237.217 was first reported on January 23rd 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-05-28 20:24:29 (1 week ago)	ICS Labs identified 58.212.237.217 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Exploited Host
🇺🇸 MPL	2026-05-01 21:28:30 (1 month ago)	tcp/10195	Port Scan
🇺🇸 xmission.com	2026-04-29 22:41:31 (1 month ago)	Blocked by UFW (TCP on 5984) Source port: 24702 TTL: 239 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 5984) Source port: 24702 TTL: 239 Packet length: 44 TOS: 0x00 This report (for 58.212.237.217) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇯🇵 mkaraki	2026-04-29 10:07:58 (1 month ago)	1777457274 # Service_probe # SIGNATURE_SEND # source_ip:58.212.237.217 # dst_port:20 ...	Port Scan
🇩🇪 femboy.cat	2026-04-28 23:09:03 (1 month ago)	Port scan to tcp/8075 from 58.212.237.217	Brute-Force
🇺🇸 MPL	2026-04-25 16:52:55 (1 month ago)	tcp/34	Port Scan
🇦🇩 bakunin1848	2026-04-24 13:28:05 (1 month ago)	Firewall IPS Detection on 24-04-2026 at 15:28:04	Port Scan Exploited Host
🇬🇧 PeravixGroup	2026-04-24 10:14:33 (1 month ago)	HoneyPot hit - Aaran.cloud \| Jenkins Jnlp Exploit \| web exploitation \| USER anonymous	Hacking
🇬🇧 PeravixGroup	2026-04-23 10:01:37 (1 month ago)	HoneyPot hit - Aaran.cloud \| Php Fpm Probe \| web exploitation \| {13911111112{	Web App Attack
🇦🇺 trentwiles.com	2026-04-23 08:24:57 (1 month ago)	Unauthorized connection attempt detected from IP address 58.212.237.217 to port 4222 [SYD]	Port Scan
🇬🇧 PeravixGroup	2026-04-23 03:20:59 (1 month ago)	HoneyPot hit - Aaran.cloud \| Php Fpm Probe \| web exploitation \| ~2~	Web App Attack
🇬🇧 gbzret4d	2026-04-21 14:28:05 (1 month ago)	Honeypot [uk-production01]: Empty payload (likely service probe); 3524 [1] TCP	Port Scan
🇺🇸 drewf.ink	2026-04-20 10:53:08 (1 month ago)	[10:53] Port scanning. Port(s) scanned: TCP/990	Port Scan
🇺🇸 MPL	2026-04-19 20:00:10 (1 month ago)	tcp/7798	Port Scan
🇺🇸 sumnone	2026-04-19 11:01:27 (1 month ago)	Port probing on unauthorized port 389	Port Scan Hacking Exploited Host

Showing 1 to 15 of 198 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.217

🇻🇪 190.205.82.233

🇻🇪 190.89.29.12

🇲🇽 189.203.193.37

🇩🇪 167.94.146.61

🇳🇱 155.117.6.32

🇺🇸 71.6.233.191

🇳🇱 45.148.10.157

🇮🇩 41.216.177.55

🇺🇸 20.29.23.198

🇫🇷 2001:41d0:203:ddd1::

🇹🇭 223.204.123.132

🇨🇳 220.205.123.57

🇵🇷 206.248.71.149

🇮🇹 172.253.13.145

🇺🇸 162.216.149.169

🇭🇰 118.193.38.183

🇩🇪 109.250.3.136

🇻🇳 103.200.25.79

🇺🇸 86.111.187.163