JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.11.201

220.250.11.201 was found in our database!

This IP was reported 167 times. Confidence of Abuse is 43%: ?

43%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.11.201

Whois 220.250.11.201

IP Abuse Reports for 220.250.11.201:

This IP address has been reported a total of 167 times from 44 distinct sources. 220.250.11.201 was first reported on January 16th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 BIV	2026-06-12 08:19:25 (1 day ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 3390. Automated tiered ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 3390. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇸🇪 donarev419	2026-06-12 04:45:24 (1 day ago)	Connection to port 4000 with data transfer. Data preview: NXSH-5.6.7	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-01 13:29:43 (1 week ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 00:00:09 (1 week ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇳🇱 ByeByte API	2026-05-31 13:38:48 (1 week ago)	Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 7788. Single burst at 202 ... show more Port scan from this IP. Firewall dropped every packet. Targeted TCP ports: 7788. Single burst at 2026-05-31 13:38 UTC. show less	Port Scan
🇩🇪 AS213449.net	2026-05-28 11:48:08 (2 weeks ago)	05/28/2026-13:48:08.174791 src=220.250.11.201 dst=5.175.170.167:3306 proto=6 msg=ET SCAN Suspicious ... show more 05/28/2026-13:48:08.174791 src=220.250.11.201 dst=5.175.170.167:3306 proto=6 msg=ET SCAN Suspicious inbound to mySQL port 3306 show less	SQL Injection
🇺🇸 MPL	2026-05-23 01:49:04 (3 weeks ago)	tcp/2323	Port Scan
🇺🇸 MPL	2026-05-18 12:55:08 (3 weeks ago)	tcp/10054	Port Scan
🇺🇸 xmission.com	2026-05-09 22:43:00 (1 month ago)	Blocked by UFW (TCP on 1187) Source port: 39629 TTL: 237 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1187) Source port: 39629 TTL: 237 Packet length: 44 TOS: 0x08 This report (for 220.250.11.201) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 LiftUp Hosting	2026-05-09 14:57:58 (1 month ago)	Honeypot hit: Unauthorized traffic (243 bytes of payload); 12257 [1] TCP	Port Scan
🇦🇺 trentwiles.com	2026-04-29 18:57:09 (1 month ago)	Unauthorized connection attempt detected from IP address 220.250.11.201 to port 8983 [SYD]	Port Scan
🇬🇧 PeravixGroup	2026-04-28 17:52:08 (1 month ago)	Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran. ... show more Honeypot detection: rsync unauthorized access / data sync attempt on port 873. Severity: LOW. Aaran.cloud show less	Port Scan
🇧🇾 StatsMe	2026-04-24 21:56:11 (1 month ago)	2026-04-24T06:58:37.494420+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇬🇧 PeravixGroup	2026-04-23 08:54:02 (1 month ago)	HoneyPot hit - Aaran.cloud \| Php Fpm Probe \| web exploitation \| USER anonymous	Web App Attack
🇩🇪 Roper123	2026-04-13 22:21:53 (1 month ago)	Unauthorized DNS request	Brute-Force

Showing 1 to 15 of 167 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 188.114.97.3

🇳🇱 141.11.62.23

🇩🇪 213.209.159.56

🇧🇷 205.210.31.140

🇵🇭 203.177.28.190

🇨🇳 171.37.92.197

🇺🇸 162.216.149.38

🇭🇰 118.26.36.248

🇧🇩 103.191.178.42

🇻🇳 103.176.20.115

🇭🇰 103.146.159.173

🇳🇱 45.148.10.152

🇰🇷 43.164.190.238

🇺🇸 2602:80d:1007::2d

🇩🇪 192.109.200.78

🇨🇭 179.43.146.227

🇧🇷 177.18.8.135

🇺🇸 109.105.209.13

🇫🇷 88.188.230.13

🇮🇳 61.3.84.90