JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 120.239.57.239

120.239.57.239 was found in our database!

This IP was reported 24 times. Confidence of Abuse is 100%: ?

100%

ISP	China Mobile Communications Corporation
Usage Type	Fixed Line ISP
ASN	AS9808
Domain Name	chinamobile.com
Country	🇨🇳 China
City	Shanghai, Shanghai

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 120.239.57.239

Whois 120.239.57.239

IP Abuse Reports for 120.239.57.239:

This IP address has been reported a total of 24 times from 19 distinct sources. 120.239.57.239 was first reported on June 14th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2026-06-18 11:04:55 (2 hours ago)	120.239.57.239 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 120.239.57.239 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 18 06:04:36 15887 sshd[13777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.239.57.239 user=root Jun 18 06:04:38 15887 sshd[13777]: Failed password for root from 120.239.57.239 port 10048 ssh2 Jun 18 05:46:12 15887 sshd[3627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.6.228.32 user=root Jun 18 05:42:04 15887 sshd[1402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.239.57.239 user=root Jun 18 05:42:06 15887 sshd[1402]: Failed password for root from 120.239.57.239 port 10217 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇩🇪 Justin F. \| AS204464	2026-06-18 00:51:51 (12 hours ago)	Honeypot [nx-infrastructure]: Brute-force attack detected on 22/SSH • Credential used: root:1314520a ... show more Honeypot [nx-infrastructure]: Brute-force attack detected on 22/SSH • Credential used: root:1314520asd • Number of login attempts: 1 • Client: SSH-2.0-libssh_0.12.0 Reported by: Justin F. show less	SSH
🇫🇮 GamesGames	2026-06-17 16:18:45 (21 hours ago)	SSH login attempts	Brute-Force SSH
🇨🇦 Autobusero	2026-06-17 12:05:36 (1 day ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force SSH
🇳🇱 jonathanselea.se	2026-06-17 09:44:34 (1 day ago)	"Exessive login attempts"	Brute-Force
🇮🇹 alph44	2026-06-17 07:40:31 (1 day ago)	SSH brute force attack detected: 6 failed attempts	Brute-Force
Anonymous	2026-06-17 05:23:50 (1 day ago)	SSH BruteForce attack 2	SSH
🇺🇸 bigscoots.com	2026-06-17 01:41:27 (1 day ago)	(sshd) Failed SSH login from 120.239.57.239 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 120.239.57.239 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 16 20:03:41 13548 sshd[8291]: Invalid user zz from 120.239.57.239 port 2792 Jun 16 20:03:43 13548 sshd[8291]: Failed password for invalid user zz from 120.239.57.239 port 2792 ssh2 Jun 16 20:33:14 13548 sshd[27676]: Invalid user david from 120.239.57.239 port 10145 Jun 16 20:33:16 13548 sshd[27676]: Failed password for invalid user david from 120.239.57.239 port 10145 ssh2 Jun 16 20:41:06 13548 sshd[530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.239.57.239 user=root show less	Brute-Force SSH
🇨🇭 master.arknet.ch	2026-06-17 00:37:52 (1 day ago)	2026-06-17T02:17:36.219879+02:00 cliff sshd-session[2294867]: Invalid user test from 120.239.57.239 ... show more 2026-06-17T02:17:36.219879+02:00 cliff sshd-session[2294867]: Invalid user test from 120.239.57.239 port 10773 2026-06-17T02:17:36.525261+02:00 cliff sshd-session[2294867]: Disconnected from invalid user test 120.239.57.239 port 10773 [preauth] 2026-06-17T02:37:51.973503+02:00 cliff sshd[1270690]: Timeout before authentication for connection from 120.239.57.239 to 185.101.159.42, pid = 2315909 ... show less	Brute-Force SSH
Anonymous	2026-06-17 00:24:36 (1 day ago)	Jun 17 02:24:34 myserver sshd[3888613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Jun 17 02:24:34 myserver sshd[3888613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.239.57.239 Jun 17 02:24:36 myserver sshd[3888613]: Failed password for invalid user test from 120.239.57.239 port 10847 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-17 00:01:26 (1 day ago)	(sshd) Failed SSH login from 120.239.57.239 (CN/China/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 120.239.57.239 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 16 18:41:54 12525 sshd[23920]: Invalid user admin from 120.239.57.239 port 11227 Jun 16 18:41:56 12525 sshd[23920]: Failed password for invalid user admin from 120.239.57.239 port 11227 ssh2 Jun 16 18:58:49 12525 sshd[32558]: Invalid user ubuntu from 120.239.57.239 port 6845 Jun 16 18:58:51 12525 sshd[32558]: Failed password for invalid user ubuntu from 120.239.57.239 port 6845 ssh2 Jun 16 19:01:13 12525 sshd[1455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.239.57.239 user=root show less	Brute-Force SSH
🇨🇦 dpinse	2026-06-16 22:13:41 (1 day ago)	Honeypot [honeypot-ca-sensor1]: Unauthorized connection attempt detected on 22/SSH	SSH Port Scan
🇺🇸 bigscoots.com	2026-06-16 17:34:53 (1 day ago)	120.239.57.239 (CN/China/-), 5 distributed sshd attacks on account [music] in the last 3600 secs; Po ... show more 120.239.57.239 (CN/China/-), 5 distributed sshd attacks on account [music] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 16 11:36:19 14048 sshd[16500]: Invalid user music from 103.217.145.41 port 34098 Jun 16 11:36:21 14048 sshd[16500]: Failed password for invalid user music from 103.217.145.41 port 34098 ssh2 Jun 16 12:34:37 14048 sshd[14980]: Invalid user music from 120.239.57.239 port 2624 Jun 16 12:34:38 14048 sshd[14980]: Failed password for invalid user music from 120.239.57.239 port 2624 ssh2 Jun 16 12:08:57 14048 sshd[445]: Invalid user music from 165.22.45.133 port 35574 IP Addresses Blocked: 103.217.145.41 (ID/Indonesia/ip103-217-145-41.cloudhost.web.id) show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-16 08:49:30 (2 days ago)	120.239.57.239 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 120.239.57.239 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 16 03:45:55 14839 sshd[17936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.68.24 user=root Jun 16 03:45:57 14839 sshd[17936]: Failed password for root from 104.236.68.24 port 33206 ssh2 Jun 16 03:49:17 14839 sshd[19737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.239.57.239 user=root Jun 16 03:49:19 14839 sshd[19737]: Failed password for root from 120.239.57.239 port 9970 ssh2 Jun 16 03:49:22 14839 sshd[19739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.212.68 user=root IP Addresses Blocked: 104.236.68.24 (US/United States/-) show less	Brute-Force SSH
Anonymous	2026-06-16 04:19:15 (2 days ago)	Honeypot hit: Unauthorized connection attempt detected on 22/SSH Reported by: https://github.com/sef ... show more Honeypot hit: Unauthorized connection attempt detected on 22/SSH Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	SSH Port Scan

Showing 1 to 15 of 24 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 165.154.120.30

🇱🇹 81.30.98.62

🇺🇸 209.97.149.35

🇺🇸 204.93.116.102

🇺🇸 107.150.105.116

🇨🇦 72.251.8.119

🇺🇸 70.59.194.138

🇺🇸 69.118.80.116

🇮🇳 49.43.35.73

🇨🇳 47.109.203.22

🇬🇧 35.203.210.184

🇬🇧 35.203.210.157

🇺🇸 23.95.137.106

🇫🇷 13.140.183.247

🇦🇪 2a00:f29:110a:a18b:f551:e202:d9f0:babb

🇵🇰 223.123.125.178

🇨🇦 217.181.83.8

🇺🇸 216.180.246.163

🇺🇸 195.63.12.56

🇺🇸 184.174.30.186