JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.232.251.12

120.232.251.12 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 16%: ?

16%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS56040
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Shenzhen, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.232.251.12

Whois 120.232.251.12

IP Abuse Reports for 120.232.251.12:

This IP address has been reported a total of 20 times from 8 distinct sources. 120.232.251.12 was first reported on December 29th 2022, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 www.winos.me	2026-06-12 03:42:48 (6 days ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇺🇸 cwytech	2026-05-25 08:59:28 (3 weeks ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/tpot-web-high.	Bad Web Bot Web App Attack
🇺🇸 www.winos.me	2026-04-24 04:06:03 (1 month ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇯🇵 pixelboost.kr	2026-04-24 03:28:59 (1 month ago)	120.232.251.12 - - [24/Apr/2026:12:28:58 +0900] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; ... show more 120.232.251.12 - - [24/Apr/2026:12:28:58 +0900] "GET / HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" ... show less	Bad Web Bot Web App Attack
🇨🇳 ThreatBook.io	2026-04-18 00:11:05 (2 months ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 202 ... show more ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 2026-04-17 12:53:50 /favicon.ico 2026-04-17 12:53:50 /data:;base64,= 2026-04-17 12:53:50 / show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-09 23:48:12 (2 months ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 202 ... show more ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 2026-04-09 09:11:33 /favicon.ico 2026-04-09 09:11:33 / show less	Web App Attack
🇨🇳 ThreatBook.io	2026-04-02 00:19:13 (2 months ago)	ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.232.251.12 2026-04-01 1 ... show more ThreatBook Intelligence: Gateway more details on http://threatbook.io/ip/120.232.251.12 2026-04-01 11:33:10 /favicon.ico 2026-04-01 11:33:10 /data:image/ico;base64,aWNv show less	Web App Attack
🇩🇪 Mykola Spesivtsev	2026-03-31 03:28:39 (2 months ago)	HTTP Tarpit detected bot activity:TargetPort:443, Path:/, Method:GET, UA:Mozilla/5.0 (Macintosh; Int ... show more HTTP Tarpit detected bot activity:TargetPort:443, Path:/, Method:GET, UA:Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0. show less	Port Scan Web App Attack Bad Web Bot
🇺🇸 ne1for23	2026-03-30 10:46:53 (2 months ago)	Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" ... show more Attempt to access invalid virtual host name (###.###.###.###). Typically used to access "internal" resources improperly exposed externally and "protected" only by a lack of external DNS resolution. 120.232.251.12 - - [30/Mar/2026:10:46:52 +0000] "GET / HTTP/1.1" 403 555 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/142.0.0.0 Safari/537.36" "-" show less	Hacking
🇩🇪 centurion	2026-03-24 09:23:17 (2 months ago)	Blocked by UFW on ns02 [443/tcp] Source port: 50740 TTL: 47 Packet length: 60 TOS: 0x00 This report ... show more Blocked by UFW on ns02 [443/tcp] Source port: 50740 TTL: 47 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Web App Attack
🇺🇸 www.winos.me	2026-03-20 03:06:13 (2 months ago)	stream fail	Web App Attack
🇫🇷 Security_Whaller	2026-03-17 10:54:28 (3 months ago)	Malicious activity detected on Honeypot.	Brute-Force Hacking Web App Attack
🇨🇳 ThreatBook.io	2025-09-10 23:56:39 (9 months ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 202 ... show more ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 2025-09-10 00:00:48 /report/sys/ng-alain/getDictItemsByTable/'%20from%20sys_user/,%20'/x.js 2025-09-10 00:00:48 /jeecg-boot/sys/ng-alain/getDictItemsByTable/'%20from%20sys_user/,%20'/x.js 2025-09-10 00:00:48 /jeecg-boot/sys/ng-alain/getDictItemsByTable/'%20from%20sys_user/,%20'/x.js 2025-09-10 00:00:48 /jeecgboot/getDictItemsByTable/'%20from%20sys_user/,%20'/x.js 2025-09-10 00:00:48 /report/sys/ng-alain/getDictItemsByTable/'%20from%20sys_user/*,%20'/x.js show less	Web App Attack
🇨🇳 ThreatBook.io	2025-05-05 00:24:12 (1 year ago)	ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 202 ... show more ThreatBook Intelligence: Scanner,Gateway more details on https://threatbook.io/ip/120.232.251.12 2025-05-04 04:09:38 / 2025-05-04 04:09:42 /tomcat.css 2025-05-04 04:09:43 /bg-middle.png 2025-05-04 04:09:42 /tomcat.svg 2025-05-04 04:09:40 / 2025-05-04 04:09:42 / show less	Web App Attack
🇨🇳 ThreatBook.io	2023-01-09 23:18:06 (3 years ago)	ThreatBook Intelligence: Exploit,Gateway more details on https://threatbook.io/ip/120.232.251.12 202 ... show more ThreatBook Intelligence: Exploit,Gateway more details on https://threatbook.io/ip/120.232.251.12 2023-01-09 01:46:10 /phpMyAdmin/index.php 2023-01-09 01:46:06 //pma/ 2023-01-09 01:46:03 //phpmyadmin/index.php 2023-01-09 01:46:05 //phpMyAdmin/index.php 2023-01-09 01:46:02 // 2023-01-09 01:46:07 / 2023-01-09 01:46:08 /phpmyadmin/index.php 2023-01-09 01:46:04 //phpMyadmin/index.php 2023-01-09 01:46:09 /phpMyadmin/index.php show less	Web App Attack

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 222.98.122.37

🇬🇧 87.106.35.227

🇺🇸 216.73.160.14

🇸🇪 185.213.24.249

🇸🇬 152.32.217.179

🇭🇰 118.193.40.131

🇫🇷 85.217.140.13

🇺🇸 165.154.202.95

🇸🇬 152.32.218.30

🇩🇪 151.243.11.35

🇿🇲 102.23.122.235

🇻🇳 45.117.177.47

🇮🇩 43.133.148.170

🇰🇷 34.158.223.73

🇭🇰 8.217.193.233

🇵🇱 193.106.208.40

🇫🇮 147.185.133.226

🇫🇮 147.185.133.4

🇮🇷 93.110.65.93

🇮🇳 74.125.16.178