JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.2.70.58

138.2.70.58 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 100%: ?

100%

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇸🇬 Singapore
City	Kampong Loyang

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.2.70.58

Whois 138.2.70.58

IP Abuse Reports for 138.2.70.58:

This IP address has been reported a total of 25 times from 22 distinct sources. 138.2.70.58 was first reported on June 16th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 security.rdmc.fr	2026-06-17 16:58:40 (2 hours ago)	Port Scan Attack proto:TCP src:40904 dst:23	Port Scan
🇬🇧 OptimusGO	2026-06-17 14:31:43 (5 hours ago)	Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Time ... show more Malicious activity detected: web_attack Server: commstackbc (185.127.18.66) Attack: web_attack Timestamp: 2026-06-17 15:31:43 UTC Log evidence: 06/17/2026-15:31:42.240354 [wDrop] [] [1:7001101:1] FINSERV CRITICAL: Telnet Access Blocked [] [Classification: Potential Corporate Privacy Violation] [Priority: 1] {TCP} 138.2.70.58:40904 -> 185.127.18.66:23 06/17/2026-15:31:42.240354 [] [1:1000103:1] SECURITY Management Port Probe - CRITICAL [] [Classification: Attempted Administrator Privilege Gain] [Priority: 1] {TCP} 138.2.70.58:40904 -> 185.127.18.66:23 show less	Port Scan Brute-Force
🇺🇸 RAP	2026-06-17 14:21:18 (5 hours ago)	2026-06-17 14:21:18 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇳🇱 ByeByte API	2026-06-17 14:18:23 (5 hours ago)	byebyte.space auth: TCP packet to port 52869 (high-risk service) at 2026-06-17T14:18:23Z. Source por ... show more byebyte.space auth: TCP packet to port 52869 (high-risk service) at 2026-06-17T14:18:23Z. Source port 57715. TCP flags: SYN. Packet: 40B, TTL 52, window 56739, IP id 17928. Single packet, dropped at firewall. p0f: 12 hops. show less	Port Scan
🇺🇸 Xarcotic	2026-06-17 13:30:09 (6 hours ago)	SSH login on honeypot.	Brute-Force SSH
Anonymous	2026-06-17 05:12:16 (14 hours ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇺🇸 MPL	2026-06-17 04:22:55 (15 hours ago)	tcp/23	Port Scan
🇩🇪 andorin	2026-06-17 04:09:42 (15 hours ago)	SSH/Telnet honeypot (endlessh) on habith.eu: 1 connection attempts trapped, total tarpit time 20s. A ... show more SSH/Telnet honeypot (endlessh) on habith.eu: 1 connection attempts trapped, total tarpit time 20s. Automated report. show less	Port Scan Brute-Force SSH
Anonymous	2026-06-17 03:08:41 (16 hours ago)	Repeated unauthorized connection attempts to restricted service observed.	Port Scan Hacking Brute-Force Bad Web Bot Web App Attack
🇺🇸 knock	2026-06-17 02:21:04 (17 hours ago)	Knock-Knock honeypot brute-force: Telnet (25 total hits)	Brute-Force
🇦🇺 PetePK	2026-06-17 01:29:02 (18 hours ago)	Probed 1 time(s): TCP/23	Port Scan
🇬🇧 skocherhan	2026-06-17 00:59:25 (18 hours ago)	Honeypot: Aggressive scanning detected on port 23. Threshold met.	Port Scan Brute-Force
🇳🇵 radheykrishna.com.np	2026-06-17 00:54:58 (18 hours ago)	Jun 17 06:39:57 kernel: [5147534.959877] [UFW BLOCK] IN=ens160 OUT= SRC=138.2.70.58 LEN=40 TOS=0x00 ... show more Jun 17 06:39:57 kernel: [5147534.959877] [UFW BLOCK] IN=ens160 OUT= SRC=138.2.70.58 LEN=40 TOS=0x00 PREC=0x00 TTL=58 ID=7788 PROTO=TCP SPT=39474 DPT=23 WINDOW=34073 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 RAP	2026-06-17 00:36:56 (19 hours ago)	2026-06-17 00:36:56 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇨🇦 alexbfr	2026-06-17 00:15:15 (19 hours ago)	Fail2Ban Report, custom-honeypot jail: Automated honeypot detection.	Port Scan

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 192.119.111.44

🇳🇱 176.65.139.254

🇨🇳 122.97.137.102

🇨🇳 120.82.82.250

🇺🇿 109.94.174.203

🇯🇵 103.232.213.51

🇫🇷 91.196.152.232

🇺🇸 66.132.224.86

🇺🇸 23.94.112.3

🇷🇺 5.79.172.113

🇨🇳 222.186.68.154

🇺🇸 216.73.160.25

🇩🇪 213.209.159.175

🇧🇷 205.210.31.228

🇹🇼 198.235.24.122

🇳🇱 195.123.219.34

🇷🇺 178.71.132.4

🇳🇱 176.65.149.111

🇨🇳 139.170.73.172

🇨🇳 123.245.84.165