JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.10.105

220.250.10.105 was found in our database!

This IP was reported 163 times. Confidence of Abuse is 35%: ?

35%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.10.105

Whois 220.250.10.105

IP Abuse Reports for 220.250.10.105:

This IP address has been reported a total of 163 times from 52 distinct sources. 220.250.10.105 was first reported on February 21st 2022, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-20 07:26:33 (17 hours ago)	2026-06-20T08:26:31.890565+01:00 vps kernel: [43680542.886484] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-06-20T08:26:31.890565+01:00 vps kernel: [43680542.886484] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=220.250.10.105 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=231 ID=13645 PROTO=TCP SPT=49847 DPT=10266 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
Anonymous	2026-06-16 05:55:30 (4 days ago)	Honeypot hit: HTTP/1.1 request on 12152 GET / Accept: /; 12152 [1] TCP Reported by: https://githu ... show more Honeypot hit: HTTP/1.1 request on 12152 GET / Accept: /; 12152 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
Anonymous	2026-06-13 09:53:27 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 23:59:26 (2 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-29 20:59:53 (3 weeks ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 18:25:09 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇮🇳 Mr.Singh	2026-05-24 12:30:15 (3 weeks ago)	NFT blocked 220.250.10.105 on 24-May-2026..	Port Scan Brute-Force
🇬🇧 PeravixGroup	2026-05-15 10:21:25 (1 month ago)	Honeypot detection: RTSP streaming server scanning / unauthorized access attempt on port 554. Severi ... show more Honeypot detection: RTSP streaming server scanning / unauthorized access attempt on port 554. Severity: LOW. Aaran.cloud show less	Port Scan
🇬🇧 PeravixGroup	2026-05-12 22:52:37 (1 month ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-11 21:41:17 (1 month ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-10 02:07:53 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇮🇩 David Koswari	2026-04-29 05:21:00 (1 month ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇫🇮 ngonghillsbikers	2026-04-27 19:00:04 (1 month ago)	Date: 27/Apr/2026:21:00:01.543705 +0300 \| Reported IP: 220.250.10.105 mod_security \| id: 950130 9591 ... show more Date: 27/Apr/2026:21:00:01.543705 +0300 \| Reported IP: 220.250.10.105 mod_security \| id: 950130 959100 980170 \| CN/group.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; ; ; ; Warning. Pattern match; Warning. Unconditional match in SecAction. [file; Access denied with code 403 (phase 4). Operator GE matched 4 at TX:blocking_outbound_anomaly_score. [file show less	SQL Injection Brute-Force Bad Web Bot
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-17 05:36:59 (2 months ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 10611 [1] TCP	Port Scan
🇺🇸 xmission.com	2026-04-07 07:48:17 (2 months ago)	Blocked by UFW (TCP on 1521) Source port: 63482 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1521) Source port: 63482 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.250.10.105) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 163 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 103.181.111.139

🇬🇧 85.121.48.179

🇨🇳 218.5.58.24

🇬🇧 193.163.125.250

🇵🇭 180.232.31.158

🇳🇱 176.65.139.140

🇫🇷 85.217.140.10

🇫🇷 85.217.140.3

🇲🇦 81.192.46.45

🇩🇪 69.5.169.90

🇳🇱 45.148.10.141

🇮🇪 37.228.244.171

🇺🇸 35.223.20.126

🇮🇹 2.195.135.175

🇨🇳 218.56.205.79

🇧🇷 187.103.218.198

🇬🇧 185.247.137.194

🇹🇭 152.32.247.54

🇺🇸 147.185.132.240

🇫🇷 144.91.109.75