JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 200.107.20.10

200.107.20.10 was found in our database!

This IP was reported 2 times. Confidence of Abuse is 0%: ?

ISP	CORPORACION NACIONAL DE TELECOMUNICACIONES - CNT EP
Usage Type	Fixed Line ISP
ASN	AS28006
Hostname(s)	10.20.107.200.static.anycast.cnt-grms.ec
Domain Name	cnt.gob.ec
Country	🇪🇨 Ecuador
City	Quito, Pichincha

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 200.107.20.10

Whois 200.107.20.10

IP Abuse Reports for 200.107.20.10:

This IP address has been reported a total of 2 times from 2 distinct sources. 200.107.20.10 was first reported on December 29th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇯🇵 huihui	2026-06-03 11:09:47 (1 week ago)	2026-06-03T15:05:53.694742+08:00 [Host] sshd[131577]: banner exchange: Connection from 200.107.20.10 ... show more 2026-06-03T15:05:53.694742+08:00 [Host] sshd[131577]: banner exchange: Connection from 200.107.20.10 port 26248: invalid format 2026-06-03T15:06:12.389990+08:00 [Host] sshd[131702]: banner exchange: Connection from 200.107.20.10 port 28125: invalid format 2026-06-03T15:06:36.939971+08:00 [Host] sshd[131797]: banner exchange: Connection from 200.107.20.10 port 28488: invalid format ... show less	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-12-29 00:42:23 (5 months ago)	(mod_security) mod_security (id:210730) triggered by 200.107.20.10 (10.20.107.200.static.anycast.cnt ... show more (mod_security) mod_security (id:210730) triggered by 200.107.20.10 (10.20.107.200.static.anycast.cnt-grms.ec): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 19:42:15.303916 2025] [security2:error] [pid 18821:tid 18821] [client 200.107.20.10:7106] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|specialtywebservice.com\|F\|2"] [data ".com"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "specialtywebservice.com"] [uri "/cashmyboat.com"] [unique_id "aVHOZ26sHEoK3vLfBvbgxQAAACs"], referer: http://specialtywebservice.com/ show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 2 of 2 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.176.29.30

🇩🇪 176.65.132.119

🇺🇸 162.216.150.35

🇩🇪 151.243.11.35

🇫🇮 147.185.133.242

🇮🇳 139.59.30.229

🇷🇴 92.118.39.62

🇹🇷 88.250.11.141

🇨🇳 27.157.176.35

🇰🇷 211.62.96.42

🇭🇰 199.45.154.177

🇨🇱 181.160.230.59

🇧🇷 177.136.179.117

🇰🇷 175.118.127.138

🇺🇸 148.153.121.223

🇫🇮 81.27.98.217

🇧🇬 79.124.62.126

🇺🇸 74.7.227.170

🇫🇮 65.109.109.137

🇺🇸 65.55.210.69