JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.11.87

220.250.11.87 was found in our database!

This IP was reported 181 times. Confidence of Abuse is 50%: ?

50%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Xiamen, Fujian

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.11.87

Whois 220.250.11.87

IP Abuse Reports for 220.250.11.87:

This IP address has been reported a total of 181 times from 53 distinct sources. 220.250.11.87 was first reported on January 17th 2022, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-23 00:55:55 (1 day ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇵🇱 sefinek.net	2026-06-20 15:50:37 (3 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 12366 [1] TCP Reported by: https://github. ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 12366 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇺🇸 MPL	2026-06-19 19:23:36 (4 days ago)	tcp/7999 (2 or more attempts)	Port Scan
Anonymous	2026-06-18 22:12:32 (5 days ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 2223 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (16 bytes of payload); 2223 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇳🇱 StopAbuse	2026-06-15 03:28:31 (1 week ago)	tcp/8112	Port Scan
🇺🇸 donarev419	2026-06-14 04:49:05 (1 week ago)	Connection to port 9108 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:9108 ... show more Connection to port 9108 with data transfer. Data preview: GET / HTTP/1.1 Host: 67.215.244.172:9108 Accept: / show less	Port Scan Hacking
🇬🇧 PeravixGroup	2026-06-03 03:34:05 (3 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 11:00:31 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-02 02:24:49 (3 weeks ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 15:25:19 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-31 21:55:01 (3 weeks ago)	Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. ... show more Honeypot detection: Remote Desktop Protocol (RDP) brute-force attempt on port 3389. Severity: HIGH. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-26 06:12:54 (4 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
🇬🇧 PeravixGroup	2026-05-23 09:26:35 (1 month ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇩🇪 ValtonTahiri	2026-05-17 22:44:13 (1 month ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=220.250.11.87; proto=TCP; source_port=46643; target_port=9444; flags=SYN show less	Port Scan
🇩🇪 femboy.cat	2026-05-16 01:30:21 (1 month ago)	Port scan to tcp/61616 from 220.250.11.87	Brute-Force

Showing 1 to 15 of 181 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.94.31.103

🇩🇪 217.144.132.157

🇩🇪 216.132.188.101

🇦🇷 201.220.22.250

🇹🇼 101.13.4.124

🇫🇷 85.217.140.45

🇫🇷 85.217.140.10

🇧🇬 78.128.112.30

🇺🇸 68.225.62.19

🇺🇸 52.40.87.102

🇷🇺 188.170.192.135

🇩🇪 167.233.68.137

🇷🇺 154.83.196.237

🇷🇴 141.98.83.240

🇹🇼 128.14.236.128

🇺🇸 104.198.16.212

🇳🇱 86.54.31.34

🇸🇪 81.237.155.113

🇺🇸 64.62.156.63

🇩🇪 34.40.77.38