JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 58.19.140.95

58.19.140.95 was found in our database!

This IP was reported 17 times. Confidence of Abuse is 18%: ?

18%

ISP	wuhan niantong13
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	cnc.cn
Country	🇨🇳 China
City	Wuhan, Hubei

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 58.19.140.95

Whois 58.19.140.95

IP Abuse Reports for 58.19.140.95:

This IP address has been reported a total of 17 times from 9 distinct sources. 58.19.140.95 was first reported on February 1st 2026, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-05 01:36:20 (2 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇸🇪 donarev419	2026-06-05 00:56:02 (2 weeks ago)	Connection to port 10065 with data transfer. Data preview: �	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-04 19:17:55 (3 weeks ago)	Honeypot detection: OS command injection in HTTP parameters on port 5984. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: OS command injection in HTTP parameters on port 5984. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-11 02:08:46 (1 month ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-05-10 10:43:49 (1 month ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-10 04:32:36 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 VMHeaven.io	2026-05-10 02:02:11 (1 month ago)	Blocked by UFW [8983/tcp] Source port: 54414 TTL: 232 Packet length: 44	Port Scan
🇬🇧 PeravixGroup	2026-05-09 20:55:22 (1 month ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇩🇪 Justin F. \| AS204464	2026-05-09 18:23:07 (1 month ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 2087 GET / Accept: /; 2087 [1] TCP Reported by: ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 2087 GET / Accept: /; 2087 [1] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
Anonymous	2026-04-05 17:16:46 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-04-05 01:30:15 (2 months ago)	tcp/10010	Port Scan
Anonymous	2026-03-26 02:58:36 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 micropedro	2026-03-19 06:14:17 (3 months ago)	4 incidents: port scanning. First: 2026-03-19 02:14, Last: 2026-03-19 02:14 UTC. Triggers: firewall- ... show more 4 incidents: port scanning. First: 2026-03-19 02:14, Last: 2026-03-19 02:14 UTC. Triggers: firewall-tcp,non-public-port. show less	Port Scan
🇺🇸 micropedro	2026-03-19 06:14:17 (3 months ago)	3 incidents: port scanning. First: 2026-03-19 02:14, Last: 2026-03-19 02:14 UTC. Triggers: non-publi ... show more 3 incidents: port scanning. First: 2026-03-19 02:14, Last: 2026-03-19 02:14 UTC. Triggers: non-public-port,firewall-tcp,non-public-port. show less	Port Scan
🇺🇸 xmission.com	2026-03-19 05:13:24 (3 months ago)	Blocked by UFW (TCP on 50111) Source port: 37911 TTL: 237 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 50111) Source port: 37911 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 58.19.140.95) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 17 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇯🇴 213.139.49.235

🇬🇧 193.176.29.6

🇧🇷 179.184.218.49

🇷🇺 91.213.23.170

🇳🇱 45.156.87.177

🇹🇭 223.204.217.191

🇬🇧 213.166.84.59

🇷🇺 178.157.175.73

🇨🇳 123.191.141.66

🇨🇳 121.29.149.66

🇷🇺 109.173.38.135

🇳🇱 91.92.40.233

🇫🇷 84.17.43.213

🇺🇸 71.91.181.47

🇷🇺 46.42.151.168

🇬🇧 45.82.76.134

🇺🇸 35.236.240.95

🇧🇪 34.140.17.222

🇪🇸 212.227.235.203

🇧🇩 203.83.187.82