JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.11.158

220.250.11.158 was found in our database!

This IP was reported 137 times. Confidence of Abuse is 34%: ?

34%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Xiamen, Fujian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.11.158

Whois 220.250.11.158

IP Abuse Reports for 220.250.11.158:

This IP address has been reported a total of 137 times from 38 distinct sources. 220.250.11.158 was first reported on February 4th 2022, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-27 23:28:28 (10 hours ago)	Blocked by UFW (TCP on 9200) Source port: 27350 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 9200) Source port: 27350 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.250.11.158) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-06-20 01:01:46 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-06-19 21:49:48 (1 week ago)	Blocked by UFW (TCP on 6668) Source port: 28276 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 6668) Source port: 28276 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.250.11.158) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Fraud VoIP
Anonymous	2026-06-10 15:18:23 (2 weeks ago)	Honeypot hit: HTTP/1.1 request on 2329 GET / Accept: /; 2329 [1] TCP Reported by: https://github. ... show more Honeypot hit: HTTP/1.1 request on 2329 GET / Accept: /; 2329 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇺🇸 xmission.com	2026-06-10 12:11:57 (2 weeks ago)	Blocked by UFW (TCP on 10445) Source port: 55313 TTL: 237 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 10445) Source port: 55313 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.250.11.158) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 PeravixGroup	2026-05-30 02:39:02 (4 weeks ago)	Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. A ... show more Honeypot detection: IRC botnet command-and-control channel attempt on port 6667. Severity: MEDIUM. Aaran.cloud show less	DDoS Attack Hacking
🇺🇸 donarev419	2026-05-30 01:33:26 (4 weeks ago)	Connection to port 2334 with data transfer. Data preview: �	Port Scan Hacking
🇩🇪 Axel	2026-05-30 00:38:06 (4 weeks ago)	[2026-05-30 00:38:06 UTC] Honeypot Hadoop NameNode connection attempt \| AXFRA HONEYPOT	Hacking
🇬🇧 PeravixGroup	2026-05-29 13:47:56 (4 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-28 06:32:15 (1 month ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8443. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇬🇧 PeravixGroup	2026-05-14 17:53:49 (1 month ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-13 01:34:04 (1 month ago)	Honeypot hit: HTTP/1.1 request on 2118 GET / Accept: /; 2118 [1] TCP	Web App Attack
🇬🇧 PeravixGroup	2026-05-12 23:29:30 (1 month ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 xmission.com	2026-05-07 02:27:55 (1 month ago)	Blocked by UFW (TCP on 16993) Source port: 42595 TTL: 237 Packet length: 44 TOS: 0x00 This report ( ... show more Blocked by UFW (TCP on 16993) Source port: 42595 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.250.11.158) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-01 11:17:16 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 137 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 175.45.204.121

🇺🇸 162.216.149.136

🇸🇬 43.134.27.142

🇬🇧 35.203.210.23

🇨🇦 20.63.8.12

🇫🇷 5.135.48.82

🇷🇴 193.32.162.84

🇺🇸 173.255.223.124

🇮🇳 103.149.165.27

🇪🇸 83.49.210.134

🇺🇸 66.132.195.25

🇺🇸 66.132.172.144

🇳🇱 45.148.10.152

🇬🇧 35.203.210.200

🇺🇸 23.95.0.162

🇺🇸 216.180.246.7

🇻🇳 171.231.183.138

🇳🇱 158.115.252.21

🇫🇷 154.49.204.168

🇨🇳 152.136.236.190