JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 59.74.227.233

59.74.227.233 was found in our database!

This IP was reported 32 times. Confidence of Abuse is 100%: ?

100%

ISP	China Education and Research Network
Usage Type	University/College/School
ASN	AS4538
Domain Name	cernet.edu.cn
Country	🇨🇳 China
City	Beijing, Beijing

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 59.74.227.233

Whois 59.74.227.233

IP Abuse Reports for 59.74.227.233:

This IP address has been reported a total of 32 times from 28 distinct sources. 59.74.227.233 was first reported on June 12th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 JPPO	2026-06-15 13:52:32 (2 days ago)	Multiport scan 19 ports : 5906 5908 5921 5929 5930 5931 5934 5941 5944 5947 5951 5959 5961 5963 5975 ... show more Multiport scan 19 ports : 5906 5908 5921 5929 5930 5931 5934 5941 5944 5947 5951 5959 5961 5963 5975 5980 5983 5984 5993 show less	Port Scan
🇫🇷 security.rdmc.fr	2026-06-15 03:08:24 (3 days ago)	Port Scan Attack proto:TCP src:61234 dst:5900	Port Scan
🇳🇱 SysAdmin Dylan	2026-06-15 03:07:55 (3 days ago)	Port Scan detected from 59.74.227.233 (CN/China/-). 11 hits in the last 101 seconds	Brute-Force
🇲🇹 neilcaruana	2026-06-14 20:52:41 (3 days ago)	Sentinel detected an attack on port [5954]	Hacking
🇩🇪 Darki1962	2026-06-14 19:30:01 (3 days ago)	5 hits, proto=tcp, ports=5933,5957,5967,5996,5998	Port Scan Hacking Brute-Force SSH
🇬🇧 WebServ	2026-06-14 15:45:59 (3 days ago)	Blocked by ufw after 5 attempts in last 300s.	Brute-Force
🇩🇪 Justin F. \| AS204464	2026-06-14 15:35:05 (3 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 5960 [1] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 5960 [1] TCP Reported by: Justin F. show less	Port Scan
🇮🇹 Fusty	2026-06-14 15:22:36 (3 days ago)	Unauthorized attempt on (TCP on port 5978). Source port: 61234 TTL: 230 Packet length: 44 Timestamp: ... show more Unauthorized attempt on (TCP on port 5978). Source port: 61234 TTL: 230 Packet length: 44 Timestamp: 2026-06-14 17:22:36 show less	Port Scan
🇳🇱 StopAbuse	2026-06-14 14:18:33 (3 days ago)	tcp/5913 tcp/5930 tcp/5976 tcp/5988	Port Scan
🇫🇷 JPPO	2026-06-14 13:52:32 (3 days ago)	Multiport scan 7 ports : 5931 5941 5944 5947 5959 5963 5983	Port Scan
🇺🇸 MPL	2026-06-14 07:54:35 (4 days ago)	tcp port scan (9 or more attempts)	Port Scan
🇺🇸 MPL	2026-06-14 07:51:20 (4 days ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 LotPhantom	2026-06-14 04:43:06 (4 days ago)	2026-06-14T04:40:52.841258+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-06-14T04:40:52.841258+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=59.74.227.233 DST=157.230.217.55 LEN=44 TOS=0x00 PREC=0x00 TTL=227 ID=33003 PROTO=TCP SPT=61234 DPT=5912 WINDOW=1025 RES=0x00 SYN URGP=0 2026-06-14T04:43:06.116563+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=59.74.227.233 DST=157.230.217.55 LEN=44 TOS=0x00 PREC=0x00 TTL=228 ID=18428 PROTO=TCP SPT=61234 DPT=5904 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan Hacking
🇫🇮 6kilowatti	2026-06-14 04:26:30 (4 days ago)	2026-06-14T07:26:29.073276+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-14T07:26:29.073276+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=59.74.227.233 DST=5.61.88.83 LEN=44 TOS=0x00 PREC=0x00 TTL=227 ID=37092 PROTO=TCP SPT=61234 DPT=5924 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇸🇪 NordhTech	2026-06-13 10:45:23 (4 days ago)	More than 3 malicious connection attempts, trying port(s) 5949/tcp, then blocked from services ...	Port Scan Hacking

Showing 1 to 15 of 32 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 217.160.182.203

🇩🇪 213.209.159.226

🇰🇷 175.118.127.138

🇺🇸 143.42.1.44

🇨🇳 120.48.122.158

🇮🇩 103.174.62.20

🇳🇱 91.92.40.13

🇵🇱 87.251.64.144

🇨🇦 85.217.149.8

🇷🇺 45.90.218.192

🇫🇷 37.58.136.133

🇩🇪 213.209.159.225

🇺🇬 196.0.120.6

🇷🇺 188.17.148.221

🇩🇪 178.27.61.137

🇺🇸 166.1.60.230

🇭🇰 165.154.6.75

🇮🇩 160.187.174.22

🇫🇷 158.220.125.127

🇭🇰 150.5.131.119