City: Changsha
Region: Hunan
Country: China
Internet Service Provider: China Mobile
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '120.192.0.0 - 120.255.255.255'
% Abuse contact for '120.192.0.0 - 120.255.255.255' is 'abuse@chinamobile.com'
inetnum: 120.192.0.0 - 120.255.255.255
netname: CMNET
descr: China Mobile Communications Corporation
descr: Mobile Communications Network Operator in China
descr: Internet Service Provider in China
country: CN
org: ORG-CM1-AP
admin-c: ct74-AP
tech-c: HL1318-AP
abuse-c: AC2006-AP
status: ALLOCATED PORTABLE
remarks: service provider
remarks: --------------------------------------------------------
remarks: To report network abuse, please contact mnt-irt
remarks: For troubleshooting, please contact tech-c and admin-c
remarks: Report invalid contact via www.apnic.net/invalidcontact
remarks: --------------------------------------------------------
mnt-by: APNIC-HM
mnt-lower: MAINT-CN-CMCC
mnt-routes: MAINT-CN-CMCC
mnt-irt: IRT-CHINAMOBILE-CN
last-modified: 2020-07-15T13:10:01Z
source: APNIC
irt: IRT-CHINAMOBILE-CN
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail: abuse@chinamobile.com
abuse-mailbox: abuse@chinamobile.com
admin-c: CT74-AP
tech-c: CT74-AP
auth: # Filtered
remarks: abuse@chinamobile.com was validated on 2026-03-23
mnt-by: MAINT-CN-CMCC
last-modified: 2026-03-23T00:47:53Z
source: APNIC
organisation: ORG-CM1-AP
org-name: China Mobile
org-type: LIR
country: CN
address: 29, Jinrong Ave.
phone: +86-10-5268-6688
fax-no: +86-10-5261-6187
e-mail: hostmaster@chinamobile.com
mnt-ref: APNIC-HM
mnt-by: APNIC-HM
last-modified: 2023-09-05T02:14:48Z
source: APNIC
role: ABUSE CHINAMOBILECN
country: ZZ
address: China Mobile Communications Corporation
address: 29, Jinrong Ave., Xicheng District, Beijing, 100032
phone: +000000000
e-mail: abuse@chinamobile.com
admin-c: CT74-AP
tech-c: CT74-AP
nic-hdl: AC2006-AP
remarks: Generated from irt object IRT-CHINAMOBILE-CN
remarks: abuse@chinamobile.com was validated on 2026-03-23
abuse-mailbox: abuse@chinamobile.com
mnt-by: APNIC-ABUSE
last-modified: 2026-03-23T00:48:02Z
source: APNIC
role: chinamobile tech
address: 29, Jinrong Ave.,Xicheng district
address: Beijing
country: CN
phone: +86 5268 6688
fax-no: +86 5261 6187
e-mail: hostmaster@chinamobile.com
admin-c: HL1318-AP
tech-c: HL1318-AP
nic-hdl: ct74-AP
notify: hostmaster@chinamobile.com
mnt-by: MAINT-cn-cmcc
abuse-mailbox: abuse@chinamobile.com
last-modified: 2016-11-29T09:37:27Z
source: APNIC
person: haijun li
nic-hdl: HL1318-AP
e-mail: hostmaster@chinamobile.com
address: 29,Jinrong Ave, Xicheng district,beijing,100032
phone: +86 1052686688
fax-no: +86 10 52616187
country: CN
mnt-by: MAINT-CN-CMCC
abuse-mailbox: abuse@chinamobile.com
last-modified: 2016-11-29T09:38:38Z
source: APNIC
% Information related to '120.224.0.0/12AS9808'
route: 120.224.0.0/12
descr: China Mobile communications corporation
origin: AS9808
mnt-by: MAINT-CN-CMCC
last-modified: 2008-11-05T07:40:19Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.227.117.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54894
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;120.227.117.140. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070500 1800 900 604800 86400
;; Query time: 5 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 16:38:43 CST 2026
;; MSG SIZE rcvd: 108
Host 140.117.227.120.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 140.117.227.120.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 88.204.242.54 | attackspam | IP 88.204.242.54 attacked honeypot on port: 1433 at 7/19/2020 9:01:57 AM |
2020-07-20 05:58:50 |
| 142.93.126.181 | attack | Automatic report - Banned IP Access |
2020-07-20 06:31:47 |
| 37.49.224.224 | attackbots | 60001/tcp 22/tcp... [2020-06-30/07-19]9pkt,2pt.(tcp) |
2020-07-20 06:05:04 |
| 110.164.129.40 | attack |
|
2020-07-20 06:02:44 |
| 104.214.79.129 | attackbots | Jul 20 06:23:55 itachi1706steam sshd[84487]: Invalid user bart from 104.214.79.129 port 22832 Jul 20 06:23:55 itachi1706steam sshd[84487]: Disconnected from invalid user bart 104.214.79.129 port 22832 [preauth] ... |
2020-07-20 06:35:28 |
| 196.1.97.216 | attackbotsspam | Jul 19 15:58:11 plex-server sshd[3848660]: Invalid user zhangkun from 196.1.97.216 port 48120 Jul 19 15:58:11 plex-server sshd[3848660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.97.216 Jul 19 15:58:11 plex-server sshd[3848660]: Invalid user zhangkun from 196.1.97.216 port 48120 Jul 19 15:58:13 plex-server sshd[3848660]: Failed password for invalid user zhangkun from 196.1.97.216 port 48120 ssh2 Jul 19 16:01:52 plex-server sshd[3849855]: Invalid user jmd from 196.1.97.216 port 47490 ... |
2020-07-20 06:31:23 |
| 163.172.133.23 | attackbotsspam | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-19T21:01:01Z and 2020-07-19T21:08:59Z |
2020-07-20 06:16:29 |
| 45.67.15.102 | attack | Unauthorized connection attempt detected from IP address 45.67.15.102 to port 2375 |
2020-07-20 06:24:50 |
| 163.172.212.138 | attackspam | Jul 19 23:06:24 debian-2gb-nbg1-2 kernel: \[17451327.813725\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=163.172.212.138 DST=195.201.40.59 LEN=49 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=UDP SPT=52238 DPT=11211 LEN=29 |
2020-07-20 06:21:17 |
| 107.132.88.42 | attackspam | Jul 20 00:15:40 webhost01 sshd[20010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.132.88.42 Jul 20 00:15:42 webhost01 sshd[20010]: Failed password for invalid user kv from 107.132.88.42 port 40724 ssh2 ... |
2020-07-20 06:24:32 |
| 139.99.156.158 | attackspambots | php WP PHPmyadamin ABUSE blocked for 12h |
2020-07-20 06:15:24 |
| 94.102.50.144 | attackspambots | Multiport scan : 210 ports scanned 2211 2216 2218 2221 2228 2230 2231 2233 2235 2237 2240 2241 2242 2247 2252 2255 2256 2258 2260 2262 2265 2266 2267 2270 2271 2272 2275 2277 2280 2281 2282 2284 2290 2291 2292 2296 2299 2300 2302 2310 2312 2317 2325 2327 2329 2330 2335 2339 2344 2347 2349 2354 2357 2364 2374 2377 2378 2379 2384 2388 2392 2395 2402 2404 2407 2409 2410 2414 2416 2421 2422 2426 2429 2432 2434 2436 2439 2447 2452 2461 ..... |
2020-07-20 06:30:44 |
| 113.193.243.35 | attackspam | Jul 19 23:59:01 havingfunrightnow sshd[21708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 Jul 19 23:59:04 havingfunrightnow sshd[21708]: Failed password for invalid user test1 from 113.193.243.35 port 58930 ssh2 Jul 20 00:07:24 havingfunrightnow sshd[21973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.193.243.35 ... |
2020-07-20 06:21:40 |
| 60.170.189.7 | attackbotsspam | 2323/tcp 23/tcp... [2020-06-01/07-19]18pkt,2pt.(tcp) |
2020-07-20 06:11:13 |
| 178.128.59.146 | attackbots | Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-07-20 06:34:38 |