Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: China Mobile

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '120.192.0.0 - 120.255.255.255'

% Abuse contact for '120.192.0.0 - 120.255.255.255' is 'abuse@chinamobile.com'

inetnum:        120.192.0.0 - 120.255.255.255
netname:        CMNET
descr:          China Mobile Communications Corporation
descr:          Mobile Communications Network Operator in China
descr:          Internet Service Provider in China
country:        CN
org:            ORG-CM1-AP
admin-c:        ct74-AP
tech-c:         HL1318-AP
abuse-c:        AC2006-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CN-CMCC
mnt-routes:     MAINT-CN-CMCC
mnt-irt:        IRT-CHINAMOBILE-CN
last-modified:  2020-07-15T13:10:01Z
source:         APNIC

irt:            IRT-CHINAMOBILE-CN
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail:         abuse@chinamobile.com
abuse-mailbox:  abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
auth:           # Filtered
remarks:        abuse@chinamobile.com was validated on 2026-03-23
mnt-by:         MAINT-CN-CMCC
last-modified:  2026-03-23T00:47:53Z
source:         APNIC

organisation:   ORG-CM1-AP
org-name:       China Mobile
org-type:       LIR
country:        CN
address:        29, Jinrong Ave.
phone:          +86-10-5268-6688
fax-no:         +86-10-5261-6187
e-mail:         hostmaster@chinamobile.com
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2023-09-05T02:14:48Z
source:         APNIC

role:           ABUSE CHINAMOBILECN
country:        ZZ
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
phone:          +000000000
e-mail:         abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
nic-hdl:        AC2006-AP
remarks:        Generated from irt object IRT-CHINAMOBILE-CN
remarks:        abuse@chinamobile.com was validated on 2026-03-23
abuse-mailbox:  abuse@chinamobile.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-23T00:48:02Z
source:         APNIC

role:           chinamobile tech
address:        29, Jinrong Ave.,Xicheng district
address:        Beijing
country:        CN
phone:          +86 5268 6688
fax-no:         +86 5261 6187
e-mail:         hostmaster@chinamobile.com
admin-c:        HL1318-AP
tech-c:         HL1318-AP
nic-hdl:        ct74-AP
notify:         hostmaster@chinamobile.com
mnt-by:         MAINT-cn-cmcc
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:37:27Z
source:         APNIC

person:         haijun li
nic-hdl:        HL1318-AP
e-mail:         hostmaster@chinamobile.com
address:        29,Jinrong Ave, Xicheng district,beijing,100032
phone:          +86 1052686688
fax-no:         +86 10 52616187
country:        CN
mnt-by:         MAINT-CN-CMCC
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:38:38Z
source:         APNIC

% Information related to '120.224.0.0/12AS9808'

route:          120.224.0.0/12
descr:          China Mobile communications corporation
origin:         AS9808
mnt-by:         MAINT-CN-CMCC
last-modified:  2008-11-05T07:40:19Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.231.133.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57574
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.231.133.69.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026070500 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 16:55:20 CST 2026
;; MSG SIZE  rcvd: 107
Host info
Host 69.133.231.120.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 69.133.231.120.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
183.238.53.242 attackbots
Nov 16 21:18:16 andromeda postfix/smtpd\[49123\]: warning: unknown\[183.238.53.242\]: SASL LOGIN authentication failed: authentication failure
Nov 16 21:18:18 andromeda postfix/smtpd\[42601\]: warning: unknown\[183.238.53.242\]: SASL LOGIN authentication failed: authentication failure
Nov 16 21:18:25 andromeda postfix/smtpd\[55771\]: warning: unknown\[183.238.53.242\]: SASL LOGIN authentication failed: authentication failure
Nov 16 21:18:30 andromeda postfix/smtpd\[47093\]: warning: unknown\[183.238.53.242\]: SASL LOGIN authentication failed: authentication failure
Nov 16 21:18:35 andromeda postfix/smtpd\[49123\]: warning: unknown\[183.238.53.242\]: SASL LOGIN authentication failed: authentication failure
2019-11-17 06:13:53
149.56.141.193 attack
Nov 16 10:05:34 hpm sshd\[5704\]: Invalid user stamos from 149.56.141.193
Nov 16 10:05:34 hpm sshd\[5704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.ip-149-56-141.net
Nov 16 10:05:36 hpm sshd\[5704\]: Failed password for invalid user stamos from 149.56.141.193 port 46544 ssh2
Nov 16 10:09:12 hpm sshd\[6085\]: Invalid user ts from 149.56.141.193
Nov 16 10:09:12 hpm sshd\[6085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.ip-149-56-141.net
2019-11-17 06:27:10
150.223.12.208 attackspam
Nov 16 19:18:54 amit sshd\[14502\]: Invalid user admin from 150.223.12.208
Nov 16 19:18:54 amit sshd\[14502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.12.208
Nov 16 19:18:56 amit sshd\[14502\]: Failed password for invalid user admin from 150.223.12.208 port 57168 ssh2
...
2019-11-17 06:08:50
162.241.239.57 attackspambots
Invalid user guest from 162.241.239.57 port 40806
2019-11-17 06:05:51
194.246.121.10 attack
" "
2019-11-17 06:02:56
223.145.127.194 attackspam
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/223.145.127.194/ 
 
 CN - 1H : (652)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : CN 
 NAME ASN : ASN4134 
 
 IP : 223.145.127.194 
 
 CIDR : 223.144.0.0/12 
 
 PREFIX COUNT : 5430 
 
 UNIQUE IP COUNT : 106919680 
 
 
 ATTACKS DETECTED ASN4134 :  
  1H - 12 
  3H - 25 
  6H - 61 
 12H - 140 
 24H - 284 
 
 DateTime : 2019-11-16 15:44:08 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-11-17 06:23:17
106.13.35.212 attack
Nov 16 17:22:03 server sshd\[10087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.35.212  user=root
Nov 16 17:22:05 server sshd\[10087\]: Failed password for root from 106.13.35.212 port 48722 ssh2
Nov 16 17:38:37 server sshd\[14128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.35.212  user=root
Nov 16 17:38:39 server sshd\[14128\]: Failed password for root from 106.13.35.212 port 47772 ssh2
Nov 16 17:44:04 server sshd\[15714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.35.212  user=root
...
2019-11-17 06:25:04
117.4.201.77 attackspam
Brute forcing RDP port 3389
2019-11-17 06:22:02
46.55.161.219 attackbotsspam
A spam email was sent from this SMTP server. This kind of spam emails had the following features.:
- They attempted to camouflage the SMTP server with a KDDI's legitimate server. 
- The domain of URLs in the messages was best-self.info (103.212.223.59).
2019-11-17 06:10:06
221.216.212.35 attackspam
Nov 16 21:08:33 server sshd\[5223\]: Invalid user ubuntu from 221.216.212.35
Nov 16 21:08:33 server sshd\[5223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.216.212.35 
Nov 16 21:08:35 server sshd\[5223\]: Failed password for invalid user ubuntu from 221.216.212.35 port 8835 ssh2
Nov 16 21:15:41 server sshd\[7927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.216.212.35  user=root
Nov 16 21:15:43 server sshd\[7927\]: Failed password for root from 221.216.212.35 port 36306 ssh2
...
2019-11-17 06:12:45
1.203.115.64 attackbotsspam
SSH bruteforce (Triggered fail2ban)
2019-11-17 05:59:29
45.40.244.197 attack
Invalid user alexa from 45.40.244.197 port 57456
2019-11-17 06:24:38
114.25.171.68 attack
" "
2019-11-17 06:31:38
217.195.71.230 attackspambots
Port 1433 Scan
2019-11-17 06:04:21
70.65.174.69 attack
SSH bruteforce
2019-11-17 06:30:20

Recently Reported IPs

120.227.139.154 129.28.68.229 2606:4700:10::6814:8155 2606:4700:10::ac43:2770
2606:4700:10::6816:721 36.148.52.23 223.73.71.178 20.100.175.1
2606:4700:10::6814:6227 43.134.93.164 60.25.70.11 218.66.32.204
123.178.210.186 120.227.117.140 109.162.246.19 109.162.246.107
111.16.107.65 138.197.41.176 120.228.165.50 2606:4700:10::6814:7675