JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.11.187

220.250.11.187 was found in our database!

This IP was reported 150 times. Confidence of Abuse is 29%: ?

29%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Xiamen, Fujian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.11.187

Whois 220.250.11.187

IP Abuse Reports for 220.250.11.187:

This IP address has been reported a total of 150 times from 42 distinct sources. 220.250.11.187 was first reported on September 14th 2021, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-19 01:40:05 (4 days ago)	Honeypot detection: Privilege escalation / elevation attempt on port 50000. Severity: CRITICAL. Aara ... show more Honeypot detection: Privilege escalation / elevation attempt on port 50000. Severity: CRITICAL. Aaran.cloud show less	Hacking
🇵🇱 Kitki30.com	2026-06-12 01:57:34 (1 week ago)	Entered SSH Tarpit (endlessh). Log: 2026-06-12T01:57:33.992Z ACCEPT host=::ffff:220.250.11.187 port= ... show more Entered SSH Tarpit (endlessh). Log: 2026-06-12T01:57:33.992Z ACCEPT host=::ffff:220.250.11.187 port=24713 fd=5 n=5/4096 show less	Brute-Force SSH Port Scan
🇬🇧 PeravixGroup	2026-05-30 16:51:44 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 07:22:45 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇧🇾 StatsMe	2026-05-25 21:40:30 (4 weeks ago)	2026-05-25T06:10:06.222138+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇦🇺 trentwiles.com	2026-05-19 22:53:13 (1 month ago)	Unauthorized connection attempt detected from IP address 220.250.11.187 to port 20152 [SYD]	Port Scan
🇬🇧 PeravixGroup	2026-05-17 13:12:19 (1 month ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-12 20:30:07 (1 month ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-09 05:31:43 (1 month ago)	Honeypot detection: OS command injection in HTTP parameters on port 2376. Severity: MEDIUM. Aaran.cl ... show more Honeypot detection: OS command injection in HTTP parameters on port 2376. Severity: MEDIUM. Aaran.cloud show less	Hacking Web App Attack
🇺🇸 xmission.com	2026-05-07 09:24:51 (1 month ago)	Blocked by UFW (TCP on 6667) Source port: 65515 TTL: 237 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 6667) Source port: 65515 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.250.11.187) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Fraud VoIP
🇬🇧 PeravixGroup	2026-05-01 02:41:12 (1 month ago)	Honeypot detection: Port scanning / service fingerprinting attempt on port 6000. Severity: LOW. Aara ... show more Honeypot detection: Port scanning / service fingerprinting attempt on port 6000. Severity: LOW. Aaran.cloud show less	Port Scan
🇮🇩 David Koswari	2026-04-30 06:13:00 (1 month ago)	REQ_BLOCKED_ACL	DDoS Attack FTP Brute-Force Ping of Death Port Scan Hacking SQL Injection Spoofing Brute-Force Bad Web Bot Exploited Host Web App Attack SSH IoT Targeted
🇩🇪 yangfan	2026-04-24 03:10:00 (1 month ago)	UFW Blocked [18091/TCP] Source: 220.250.11.187:51501 TTL: 237 Lenth: 44 TOS: 0x00	Port Scan
🇨🇳 ThreatBook.io	2026-04-20 22:21:02 (2 months ago)	ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/220.250.11.18 ... show more ThreatBook Intelligence: vpn_proxy,Dynamic IP more details on https://threatbook.io/ip/220.250.11.187 2026-04-20 11:31:28 http://www.wujieliulan.com/ show less	Web App Attack
🇲🇳 Public CSIRT/CC of Mongolia	2026-04-16 03:22:16 (2 months ago)	Honeypot hit: HTTP/1.1 request on 10015 GET / Accept: /; 10015 [1] TCP	Web App Attack

Showing 1 to 15 of 150 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.229

🇨🇳 111.26.6.111

🇯🇵 103.163.220.251

🇧🇷 38.190.77.179

🇺🇸 20.9.81.190

🇯🇵 194.5.48.215

🇺🇸 172.212.224.40

🇩🇪 69.5.169.164

🇬🇦 41.158.155.57

🇨🇳 14.103.63.16

🇩🇪 213.209.159.235

🇳🇱 185.165.242.225

🇭🇰 101.36.108.175

🇳🇱 91.92.40.36

🇺🇸 52.206.93.154

🇩🇪 46.101.156.158

🇮🇩 36.95.127.51

🇪🇨 190.130.132.35

🇳🇱 176.65.139.92

🇩🇪 172.253.1.222