JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 220.250.11.98

220.250.11.98 was found in our database!

This IP was reported 176 times. Confidence of Abuse is 37%: ?

37%

ISP	Fuzhou city, fujian provincial network of CNCGROUP
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	wo.com.cn
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 220.250.11.98

Whois 220.250.11.98

IP Abuse Reports for 220.250.11.98:

This IP address has been reported a total of 176 times from 51 distinct sources. 220.250.11.98 was first reported on March 2nd 2022, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇵🇱 sefinek.net	2026-06-22 10:30:44 (1 hour ago)	Honeypot hit: Empty payload (likely service probe); 4155 [1] TCP Reported by: https://github.com/sef ... show more Honeypot hit: Empty payload (likely service probe); 4155 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇬🇧 PeravixGroup	2026-06-22 04:28:28 (7 hours ago)	Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) o ... show more Honeypot detection: Jenkins CI unauthorized access / script console abuse attempt (CVE-2024-23897) on port 50000. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇫🇷 TheHoneyPotter	2026-06-17 08:06:01 (5 days ago)	Honeypot [fc-honeypot]: Large payload (1457 bytes); 12211 [1] TCP Reported by: https://github.com/se ... show more Honeypot [fc-honeypot]: Large payload (1457 bytes); 12211 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 MPL	2026-06-10 02:39:33 (1 week ago)	tcp/8010 (2 or more attempts)	Port Scan
🇩🇰 SaltySoftworks	2026-05-31 15:00:07 (3 weeks ago)	User agent spoofing Connecting to IP instead of domain name	Spoofing Hacking Web App Attack
🇬🇧 PeravixGroup	2026-05-30 14:32:52 (3 weeks ago)	Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity ... show more Honeypot detection: Apache CouchDB unauthorized access / exploitation attempt on port 5984. Severity: CRITICAL. Aaran.cloud show less	Hacking Exploited Host
🇺🇸 MPL	2026-05-29 04:48:31 (3 weeks ago)	tcp/2048	Port Scan
🇬🇧 PeravixGroup	2026-05-27 12:20:57 (3 weeks ago)	Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: M ... show more Honeypot detection: Memcached unauthorized access / amplification attempt on port 11211. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-27 04:59:59 (3 weeks ago)	Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: ME ... show more Honeypot detection: Elasticsearch unauthorized access / data leak attempt on port 9200. Severity: MEDIUM. Aaran.cloud show less	Hacking Exploited Host
🇬🇧 PeravixGroup	2026-05-26 15:23:08 (3 weeks ago)	Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MED ... show more Honeypot detection: TR-069 CWMP router management protocol abuse attempt on port 7547. Severity: MEDIUM. Aaran.cloud show less	IoT Targeted Hacking
🇬🇧 PeravixGroup	2026-05-23 20:00:17 (4 weeks ago)	Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Seve ... show more Honeypot detection: Windows Remote Management (WinRM) unauthorized access attempt on port 5986. Severity: MEDIUM. Aaran.cloud show less	Brute-Force Hacking
🇬🇧 PeravixGroup	2026-05-19 10:14:00 (1 month ago)	Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aar ... show more Honeypot detection: IMAP email brute-force authentication attempt on port 143. Severity: MEDIUM. Aaran.cloud show less	Brute-Force
🇺🇸 MPL	2026-05-15 17:52:48 (1 month ago)	tcp/5672	Port Scan
🇬🇧 PeravixGroup	2026-05-12 06:59:59 (1 month ago)	Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. A ... show more Honeypot detection: Web application scanning / reconnaissance attempt on port 8080. Severity: LOW. Aaran.cloud show less	Port Scan Bad Web Bot
🇺🇸 xmission.com	2026-05-05 02:36:06 (1 month ago)	Blocked by UFW (TCP on 999) Source port: 12520 TTL: 237 Packet length: 44 TOS: 0x00 This report (fo ... show more Blocked by UFW (TCP on 999) Source port: 12520 TTL: 237 Packet length: 44 TOS: 0x00 This report (for 220.250.11.98) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 1 to 15 of 176 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 177.200.37.230

🇩🇿 154.242.79.252

🇨🇳 117.50.157.229

🇨🇳 111.26.106.119

🇳🇱 91.92.40.11

🇮🇶 62.201.202.140

🇳🇱 45.148.10.151

🇸🇬 43.159.51.254

🇰🇿 37.151.58.74

🇧🇷 189.51.43.54

🇳🇱 176.65.139.253

🇬🇧 57.129.137.171

🇩🇪 45.89.125.251

🇸🇬 43.128.113.103

🇩🇪 8.209.106.188

🇸🇪 2a0d:bbc7::f816:3eff:fe77:3729

🇿🇲 2605:59c8:6ce7:ae08:9151:72d3:f676:c6bf

🇬🇧 213.166.84.40

🇺🇸 206.189.205.85

🇹🇳 196.203.21.2