JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.11.91

220.250.11.91 was found in our database!

This IP was reported 148 times. Confidence of Abuse is 34%: ?

34%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.11.91

Whois 220.250.11.91

IP Abuse Reports for 220.250.11.91:

This IP address has been reported a total of 148 times from 45 distinct sources. 220.250.11.91 was first reported on September 10th 2022, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-06-13 23:37:08 (9 hours ago)	Honeypot hit: Empty payload (likely service probe); 9000 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 9000 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇩🇪 dispaisyenterprises	2026-06-12 22:40:53 (1 day ago)	Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 12261 [1] TCP Reported by DisPaisy Enterpris ... show more Honeypot [fra-de-honeypot]: Large payload (1457 bytes); 12261 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
Anonymous	2026-06-02 14:09:35 (1 week ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇬🇧 PeravixGroup	2026-06-01 01:24:32 (1 week ago)	Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDI ... show more Honeypot detection: MongoDB unauthorized access / exploitation attempt on port 27017. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
Anonymous	2026-05-25 14:30:50 (2 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-22 09:36:07 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-21 05:37:48 (3 weeks ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 8857 [1] TCP	Port Scan
🇬🇧 PeravixGroup	2026-05-20 23:00:36 (3 weeks ago)	Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran. ... show more Honeypot detection: FTP brute-force or anonymous access attempt on port 21. Severity: MEDIUM. Aaran.cloud show less	FTP Brute-Force Brute-Force
Anonymous	2026-03-21 00:53:00 (2 months ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇧🇾 StatsMe	2025-11-02 22:30:47 (7 months ago)	2025-11-02T12:56:27.362725+0300 ET SCAN NMAP -sS window 1024	Port Scan
🇳🇱 VMHeaven.io	2025-11-02 11:37:38 (7 months ago)	Blocked by UFW [554/tcp] Source port: 13778 TTL: 234 Packet length: 44	Port Scan
🇺🇸 MPL	2025-11-02 02:40:23 (7 months ago)	tcp/502 (2 or more attempts)	Port Scan
🇺🇸 MPL	2025-11-02 02:40:23 (7 months ago)	tcp/502	Port Scan
🇹🇼 kk_it_man	2025-11-01 16:30:12 (7 months ago)	honey catch	Port Scan
🇺🇸 SiliSoftware	2025-10-31 21:47:12 (7 months ago)	/v1/file/icon/seo/cdc3fff6-6034-46fb-8ef3-1746e374d4fc.png	Web App Attack

Showing 1 to 15 of 148 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 209.90.232.26

🇨🇭 194.230.5.163

🇳🇱 81.19.216.108

🇩🇪 185.242.3.195

🇲🇾 180.72.197.153

🇺🇸 173.244.60.241

🇬🇧 118.26.104.19

🇨🇳 106.12.127.112

🇮🇩 103.118.82.254

🇺🇸 71.6.199.87

🇮🇳 64.227.160.35

🇺🇸 52.173.162.99

🇺🇸 2604:a880:400:d1:0:4:9634:d001

🇬🇪 178.134.39.10

🇨🇳 101.126.22.12

🇺🇸 72.10.32.138

🇺🇸 71.6.235.160

🇨🇳 61.162.234.23

🇰🇷 61.76.112.4

🇺🇸 50.6.228.32