JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 58.212.237.249

58.212.237.249 was found in our database!

This IP was reported 235 times. Confidence of Abuse is 80%: ?

80%

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 58.212.237.249

Whois 58.212.237.249

IP Abuse Reports for 58.212.237.249:

This IP address has been reported a total of 235 times from 70 distinct sources. 58.212.237.249 was first reported on January 12th 2024, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Axel	2026-06-11 20:08:51 (15 hours ago)	Blocked by UFW on LAXHH [12392/tcp] \| SPT: 53440 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: git ... show more Blocked by UFW on LAXHH [12392/tcp] \| SPT: 53440 \| TTL: 235 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-11 08:51:57 (1 day ago)	Honeypot hit: Unauthorized traffic on 27017/mongod Reported by: https://github.com/sefinek/T-Pot-To- ... show more Honeypot hit: Unauthorized traffic on 27017/mongod Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇷🇸 Scan	2026-06-11 00:28:47 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 dispaisyenterprises	2026-06-10 23:03:53 (1 day ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 18005 GET / Accept: /; 18005 [1] TCP Reported by ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 18005 GET / Accept: /; 18005 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-10 01:05:02 (2 days ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-06-09 06:18:14 (3 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 18013 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 18013 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇵🇱 sefinek.net	2026-06-07 04:27:32 (5 days ago)	Honeypot hit: HTTP/1.1 request on 9010 GET / Accept: /; 9010 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 9010 GET / Accept: /; 9010 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇬🇧 PeravixGroup	2026-06-06 21:57:55 (5 days ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 dispaisyenterprises	2026-06-03 01:36:47 (1 week ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 2698 GET / Accept: /; 2698 [1] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 2698 GET / Accept: /; 2698 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 sumnone	2026-06-02 19:02:44 (1 week ago)	Port probing on unauthorized port 12300	Port Scan Hacking Exploited Host
🇳🇱 donarev419	2026-06-02 06:53:23 (1 week ago)	Connection to port 12323 with data transfer. Data preview: �	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-02 04:53:09 (1 week ago)	Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aara ... show more Honeypot detection: SMTP abuse / unauthorized email relay attempt on port 25. Severity: MEDIUM. Aaran.cloud show less	Email Spam
🇬🇧 PeravixGroup	2026-05-29 12:53:49 (1 week ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇩🇪 AS213449.net	2026-05-28 12:43:09 (2 weeks ago)	05/28/2026-14:43:09.098758 src=58.212.237.249 dst=5.175.170.182:1521 proto=6 msg=ET SCAN Suspicious ... show more 05/28/2026-14:43:09.098758 src=58.212.237.249 dst=5.175.170.182:1521 proto=6 msg=ET SCAN Suspicious inbound to Oracle SQL port 1521 show less	SQL Injection
🇩🇪 Admins@FBN	2026-05-28 07:57:58 (2 weeks ago)	Threat Host blocked...	Hacking Exploited Host

Showing 1 to 15 of 235 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.67.34.175

🇨🇳 119.118.11.167

🇺🇸 74.235.140.14

🇺🇸 64.62.156.192

🇮🇪 63.34.144.72

🇷🇺 62.16.41.154

🇧🇷 45.229.91.34

🇨🇳 39.104.94.99

🇷🇴 2.57.121.25

🇨🇳 113.57.5.139

🇬🇧 88.208.252.223

🇷🇺 87.250.224.103

🇺🇸 66.228.41.127

🇺🇸 66.132.186.223

🇬🇧 62.56.246.76

🇮🇪 54.217.120.107

🇺🇸 52.230.163.217

🇳🇱 45.8.17.242

🇵🇸 1.178.141.160

🇩🇪 185.132.34.195