120.198.138.185 Threat Intelligence and Host Information

Mar 26, 2026 ipinfopage

General

IP Address
120.198.138.185
IPv4 Address
Location
🇨🇳 Maoming, China
CN
Network
AS9808
China Mobile Communications Group Co., L...
Threat Score
60/100
High Risk
01.10.202520252026-012026-02adresseipatiffeed
Attack Intelligence
MITRE ATT&CK Techniques
T1110.001 - Password Guessing, T1110.002 - Password Cracking, T1110.003 - Password Spraying, T1110 - Brute Force
Open Ports Detected
18181
Geographic Location
Country
China
City
Maoming
Region
Guangdong
Coordinates
21.6663, 110.9136
Network Information
ASN
AS9808
Organization
China Mobile Communications Group Co., Ltd.
Network
AS9808 China Mobile Communications Group Co., Ltd.
WHOIS Information
inetnum
120.192.0.0 - 120.255.255.255
netname
CMNET
descr
China Mobile communications corporation
country
CN
org
ORG-CM1-AP
admin-c
HL1318-AP
tech-c
HL1318-AP
abuse-c
AC2006-AP
status
ALLOCATED PORTABLE
mnt-by
MAINT-CN-CMCC
mnt-lower
MAINT-CN-CMCC
mnt-routes
MAINT-CN-CMCC
mnt-irt
IRT-CHINAMOBILE-CN
last-modified
2008-11-05T07:31:17Z
irt
IRT-CHINAMOBILE-CN
address
29,Jinrong Ave, Xicheng district,beijing,100032
e-mail
hostmaster@chinamobile.com
abuse-mailbox
abuse@chinamobile.com
organisation
ORG-CM1-AP
org-name
China Mobile
org-type
LIR
phone
+86 1052686688
fax-no
+86 10 52616187
mnt-ref
APNIC-HM
Attack Logs
Date Target Location Protocol Link
2026-03-17 Vultrtokyo SSH View Log

  • Country: China
  • Network:
  • Noticed: 37 times
  • Protocols Attacked: portscan ssh
  • Countries Attacked: Australia, Belgium, Finland, France, Germany, Malaysia, Poland, United States of America

CVEs Detected

CVE-2007-2768 CVE-2007-3205 CVE-2008-3844 CVE-2013-2220 CVE-2015-8866 CVE-2015-9253 CVE-2016-1283 CVE-2016-20012 CVE-2017-12932 CVE-2017-15906 CVE-2017-16642 CVE-2017-8923 CVE-2018-10545 CVE-2018-10546 CVE-2018-10547 CVE-2018-10548 CVE-2018-10549 CVE-2018-14851 CVE-2018-14883 CVE-2018-14884 CVE-2018-15132 CVE-2018-15473 CVE-2018-15919 CVE-2018-17082 CVE-2018-19052 CVE-2018-19395 CVE-2018-19396 CVE-2018-19518 CVE-2018-19935 CVE-2018-20685 CVE-2018-20783 CVE-2018-5711 CVE-2018-5712 CVE-2018-7584 CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 CVE-2019-11038 CVE-2019-11039 CVE-2019-11040 CVE-2019-11041 CVE-2019-11042 CVE-2019-11043 CVE-2019-11072 CVE-2019-13224 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2019-6977 CVE-2019-9020 CVE-2019-9021 CVE-2019-9022 CVE-2019-9023 CVE-2019-9024 CVE-2019-9637 CVE-2019-9638 CVE-2019-9639 CVE-2019-9640 CVE-2019-9641 CVE-2019-9675 CVE-2020-11579 CVE-2020-14145 CVE-2020-15778 CVE-2021-36368 CVE-2021-41617 CVE-2022-31628 CVE-2022-31629 CVE-2022-4900 CVE-2023-38408 CVE-2023-48795 CVE-2023-51385 CVE-2023-51767 CVE-2024-25117 CVE-2024-3566 CVE-2025-26465 CVE-2025-32728

Disclaimer
This page contains threat intelligence information for the IPv4 address 120.198.138.185 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.