JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.193.249.150

120.193.249.150 was found in our database!

This IP was reported 298 times. Confidence of Abuse is 59%: ?

59%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.193.249.150

Whois 120.193.249.150

IP Abuse Reports for 120.193.249.150:

This IP address has been reported a total of 298 times from 50 distinct sources. 120.193.249.150 was first reported on November 3rd 2023, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Luhte	2026-06-26 02:36:11 (19 hours ago)	Unsolicited TCP connection from 120.193.249.150 to port 0 at 2026-06-26T02:36:10Z. Source IP complet ... show more Unsolicited TCP connection from 120.193.249.150 to port 0 at 2026-06-26T02:36:10Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇫🇷 sthoyer.de	2026-06-23 20:12:32 (3 days ago)	Jun 23 22:12:31 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 23 22:12:31 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=120.193.249.150 DST=173.212.223.67 LEN=52 TOS=0x04 PREC=0x00 TTL=112 ID=4270 DF PROTO=TCP SPT=65055 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇮🇩 hermawan	2026-06-18 20:36:51 (1 week ago)	1781815004.630265 120.193.249.150 103.166.156.58 8192_2-1-3-1-1-4_1460_8 2026-06-19 03:36:44 WIB ...	Email Spam Hacking
🇫🇷 sthoyer.de	2026-06-12 07:43:24 (2 weeks ago)	Jun 12 09:43:23 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 12 09:43:23 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=120.193.249.150 DST=173.212.223.67 LEN=52 TOS=0x00 PREC=0x00 TTL=112 ID=25660 DF PROTO=TCP SPT=54564 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-12 07:42:09 (2 weeks ago)	trying to access non-authorized port	Port Scan
🇫🇷 sthoyer.de	2026-06-12 02:14:32 (2 weeks ago)	Jun 12 04:14:31 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Jun 12 04:14:31 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=120.193.249.150 DST=173.212.223.67 LEN=52 TOS=0x04 PREC=0x00 TTL=112 ID=18150 DF PROTO=TCP SPT=61520 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇦🇺 dyln	2026-06-10 00:28:30 (2 weeks ago)	Dyls honeypot brute-force: SMB (4 total hits)	Brute-Force
🇬🇧 Birdo	2026-06-09 04:44:05 (2 weeks ago)	[Birdo SMB Honeypot] SMB unauthorized attempt	Exploited Host Brute-Force Port Scan Hacking
Anonymous	2026-06-08 20:35:21 (2 weeks ago)	Unauthorized access (tcp/445/smb)	Port Scan
🇺🇸 sumnone	2026-06-08 11:08:45 (2 weeks ago)	Port probing on unauthorized port 445	Port Scan Hacking Exploited Host
🇫🇷 zulzeen	2026-06-07 04:08:15 (2 weeks ago)	[incypit-web] Blocked by SysWarden Firewall [GEO] (SMB/Possible Ransomware Attack)	Hacking Brute-Force
🇫🇷 geeek	2026-06-06 19:00:10 (2 weeks ago)	Port scanning: 445 TCP Blocked	Port Scan
🇩🇪 phil2k	2026-06-06 03:31:16 (2 weeks ago)	fail2ban:firewall:2026-06-06T05:31:13.777600+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> ... show more fail2ban:firewall:2026-06-06T05:31:13.777600+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=120.193.249.150 DST=<PRIVATE_IPv4> LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=28497 DF PROTO=TCP SPT=49786 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 2026-06-06T05:31:14.612307+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=120.193.249.150 DST=<PRIVATE_IPv4> LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=29472 DF PROTO=TCP SPT=49786 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 show less	DDoS Attack Port Scan Brute-Force
🇬🇧 PeravixGroup	2026-06-02 15:42:12 (3 weeks ago)	Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aar ... show more Honeypot detection: SMB / Windows file sharing exploitation attempt on port 445. Severity: HIGH. Aaran.cloud show less	Hacking Exploited Host
🇱🇹 NotACaptcha	2026-05-27 23:43:12 (4 weeks ago)	Unauthorised access (May 28 02:43) SRC=120.193.249.150 LEN=52 TTL=107 ID=24322 DF TCP DPT=445 WINDOW ... show more Unauthorised access (May 28 02:43) SRC=120.193.249.150 LEN=52 TTL=107 ID=24322 DF TCP DPT=445 WINDOW=8192 SYN show less	Port Scan

Showing 1 to 15 of 298 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 178.16.52.239

🇺🇸 162.216.150.22

🇧🇷 205.210.31.237

🇹🇼 198.235.24.119

🇺🇸 173.255.237.153

🇸🇬 43.156.61.33

🇺🇸 23.113.20.45

🇸🇬 15.235.204.120

🇺🇸 2620:171:f1:f0::6

🇩🇪 217.160.134.38

🇺🇸 216.25.89.74

🇺🇦 194.44.47.44

🇲🇽 189.219.16.249

🇺🇸 185.180.142.129

🇺🇸 104.248.51.221

🇭🇰 103.52.153.215

🇰🇪 102.204.198.38

🇪🇸 95.18.64.159

🇳🇱 91.92.40.45

🇫🇷 85.217.140.45