120.230.111.63

Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: China Mobile

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '120.192.0.0 - 120.255.255.255'

% Abuse contact for '120.192.0.0 - 120.255.255.255' is 'abuse@chinamobile.com'

inetnum:        120.192.0.0 - 120.255.255.255
netname:        CMNET
descr:          China Mobile Communications Corporation
descr:          Mobile Communications Network Operator in China
descr:          Internet Service Provider in China
country:        CN
org:            ORG-CM1-AP
admin-c:        ct74-AP
tech-c:         HL1318-AP
abuse-c:        AC2006-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CN-CMCC
mnt-routes:     MAINT-CN-CMCC
mnt-irt:        IRT-CHINAMOBILE-CN
last-modified:  2020-07-15T13:10:01Z
source:         APNIC

irt:            IRT-CHINAMOBILE-CN
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail:         abuse@chinamobile.com
abuse-mailbox:  abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
auth:           # Filtered
remarks:        abuse@chinamobile.com was validated on 2026-03-23
mnt-by:         MAINT-CN-CMCC
last-modified:  2026-03-23T00:47:53Z
source:         APNIC

organisation:   ORG-CM1-AP
org-name:       China Mobile
org-type:       LIR
country:        CN
address:        29, Jinrong Ave.
phone:          +86-10-5268-6688
fax-no:         +86-10-5261-6187
e-mail:         hostmaster@chinamobile.com
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2023-09-05T02:14:48Z
source:         APNIC

role:           ABUSE CHINAMOBILECN
country:        ZZ
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
phone:          +000000000
e-mail:         abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
nic-hdl:        AC2006-AP
remarks:        Generated from irt object IRT-CHINAMOBILE-CN
remarks:        abuse@chinamobile.com was validated on 2026-03-23
abuse-mailbox:  abuse@chinamobile.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-23T00:48:02Z
source:         APNIC

role:           chinamobile tech
address:        29, Jinrong Ave.,Xicheng district
address:        Beijing
country:        CN
phone:          +86 5268 6688
fax-no:         +86 5261 6187
e-mail:         hostmaster@chinamobile.com
admin-c:        HL1318-AP
tech-c:         HL1318-AP
nic-hdl:        ct74-AP
notify:         hostmaster@chinamobile.com
mnt-by:         MAINT-cn-cmcc
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:37:27Z
source:         APNIC

person:         haijun li
nic-hdl:        HL1318-AP
e-mail:         hostmaster@chinamobile.com
address:        29,Jinrong Ave, Xicheng district,beijing,100032
phone:          +86 1052686688
fax-no:         +86 10 52616187
country:        CN
mnt-by:         MAINT-CN-CMCC
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:38:38Z
source:         APNIC

% Information related to '120.224.0.0/12AS9808'

route:          120.224.0.0/12
descr:          China Mobile communications corporation
origin:         AS9808
mnt-by:         MAINT-CN-CMCC
last-modified:  2008-11-05T07:40:19Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.230.111.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.230.111.63.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026051400 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 15 01:30:32 CST 2026
;; MSG SIZE  rcvd: 107

Host info

Host 63.111.230.120.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.111.230.120.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
144.217.183.134	attack	144.217.183.134 - - [09/Aug/2020:07:18:36 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 144.217.183.134 - - [09/Aug/2020:07:18:38 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 144.217.183.134 - - [09/Aug/2020:07:18:39 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-09 13:43:27
87.190.16.229	attack	Aug 9 05:46:24 eventyay sshd[16526]: Failed password for root from 87.190.16.229 port 42188 ssh2 Aug 9 05:50:26 eventyay sshd[16651]: Failed password for root from 87.190.16.229 port 51920 ssh2 ...	2020-08-09 13:45:48
122.162.206.109	attackbots	Aug 9 05:20:55 sip sshd[5657]: Failed password for root from 122.162.206.109 port 57802 ssh2 Aug 9 06:01:28 sip sshd[16591]: Failed password for root from 122.162.206.109 port 42260 ssh2	2020-08-09 13:26:05
58.87.76.77	attack	Aug 9 07:20:03 cosmoit sshd[26071]: Failed password for root from 58.87.76.77 port 38552 ssh2	2020-08-09 13:32:43
187.16.255.102	attack	Aug 9 04:24:23 *** sshd[16292]: Did not receive identification string from 187.16.255.102	2020-08-09 13:14:24
81.12.155.170	attack	20/8/8@23:54:42: FAIL: Alarm-Intrusion address from=81.12.155.170 ...	2020-08-09 13:28:38
146.88.240.4	attack	Aug 9 08:07:47 venus kernel: [140772.186592] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:66:8f:ed:d2:74:7f:6e:37:e3:08:00 SRC=146.88.240.4 DST=78.47.70.226 LEN=127 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=UDP SPT=1901 DPT=1900 LEN=107	2020-08-09 13:21:38
35.234.152.200	attackspambots	" "	2020-08-09 13:42:17
94.25.181.46	attack	failed_logins	2020-08-09 13:35:52
212.70.149.51	attackspambots	2020-08-09 05:29:05 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Incorrect authentication data \(set_id=marissa@no-server.de\) 2020-08-09 05:29:05 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Incorrect authentication data \(set_id=marissa@no-server.de\) 2020-08-09 05:29:25 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Incorrect authentication data \(set_id=mark@no-server.de\) 2020-08-09 05:29:34 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Incorrect authentication data \(set_id=mark@no-server.de\) 2020-08-09 05:29:36 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Incorrect authentication data \(set_id=mark@no-server.de\) 2020-08-09 05:29:39 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Incorrect authentication data \(set_id=mark@no-server.de\) 2020-08-09 05:29:53 dovecot_login authenticator failed for \(User\) \[212.70.149.51\]: 535 Inc ...	2020-08-09 13:20:18
212.64.8.10	attack	Aug 9 05:59:16 gospond sshd[5753]: Failed password for root from 212.64.8.10 port 48596 ssh2 Aug 9 05:59:14 gospond sshd[5753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.8.10 user=root Aug 9 05:59:16 gospond sshd[5753]: Failed password for root from 212.64.8.10 port 48596 ssh2 ...	2020-08-09 13:36:27
139.155.39.62	attackbotsspam	Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:28 scw-6657dc sshd[23415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.39.62 user=root Aug 9 05:01:30 scw-6657dc sshd[23415]: Failed password for root from 139.155.39.62 port 38330 ssh2 ...	2020-08-09 13:30:51
111.229.43.27	attackspambots	Aug 9 05:42:23 ovpn sshd\[5484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.43.27 user=root Aug 9 05:42:25 ovpn sshd\[5484\]: Failed password for root from 111.229.43.27 port 59722 ssh2 Aug 9 05:48:32 ovpn sshd\[6998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.43.27 user=root Aug 9 05:48:34 ovpn sshd\[6998\]: Failed password for root from 111.229.43.27 port 34454 ssh2 Aug 9 05:54:24 ovpn sshd\[8499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.43.27 user=root	2020-08-09 13:36:59
35.202.81.44	attackspam	Aug 9 06:55:12 jane sshd[26066]: Failed password for root from 35.202.81.44 port 53330 ssh2 ...	2020-08-09 13:44:57
45.55.57.6	attackspambots	Port Scan detected from 45.55.57.6 (US/United States/New Jersey/Clifton/-). 4 hits in the last 265 seconds	2020-08-09 13:05:36

Recently Reported IPs

66.249.69.13	34.162.207.34	31.70.83.43	211.101.234.56
39.154.17.31	39.154.15.214	39.149.214.96	39.148.59.115
120.231.24.146	117.172.67.228	112.3.219.190	112.20.150.41
43.134.98.88	35.247.221.226	2606:4700:10::6814:9622	176.65.139.173
64.89.161.54	27.0.232.243	23.111.14.184	2606:4700:10::6814:4768