120.229.109.71

基本信息:

城市(city): Shenzhen

省份(region): Guangdong

国家(country): China

运营商(isp): China Mobile

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '120.192.0.0 - 120.255.255.255'

% Abuse contact for '120.192.0.0 - 120.255.255.255' is 'abuse@chinamobile.com'

inetnum:        120.192.0.0 - 120.255.255.255
netname:        CMNET
descr:          China Mobile Communications Corporation
descr:          Mobile Communications Network Operator in China
descr:          Internet Service Provider in China
country:        CN
org:            ORG-CM1-AP
admin-c:        ct74-AP
tech-c:         HL1318-AP
abuse-c:        AC2006-AP
status:         ALLOCATED PORTABLE
remarks:        service provider
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CN-CMCC
mnt-routes:     MAINT-CN-CMCC
mnt-irt:        IRT-CHINAMOBILE-CN
last-modified:  2020-07-15T13:10:01Z
source:         APNIC

irt:            IRT-CHINAMOBILE-CN
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
e-mail:         abuse@chinamobile.com
abuse-mailbox:  abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
auth:           # Filtered
remarks:        abuse@chinamobile.com was validated on 2026-03-23
mnt-by:         MAINT-CN-CMCC
last-modified:  2026-03-23T00:47:53Z
source:         APNIC

organisation:   ORG-CM1-AP
org-name:       China Mobile
org-type:       LIR
country:        CN
address:        29, Jinrong Ave.
phone:          +86-10-5268-6688
fax-no:         +86-10-5261-6187
e-mail:         hostmaster@chinamobile.com
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2023-09-05T02:14:48Z
source:         APNIC

role:           ABUSE CHINAMOBILECN
country:        ZZ
address:        China Mobile Communications Corporation
address:        29, Jinrong Ave., Xicheng District, Beijing, 100032
phone:          +000000000
e-mail:         abuse@chinamobile.com
admin-c:        CT74-AP
tech-c:         CT74-AP
nic-hdl:        AC2006-AP
remarks:        Generated from irt object IRT-CHINAMOBILE-CN
remarks:        abuse@chinamobile.com was validated on 2026-03-23
abuse-mailbox:  abuse@chinamobile.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-23T00:48:02Z
source:         APNIC

role:           chinamobile tech
address:        29, Jinrong Ave.,Xicheng district
address:        Beijing
country:        CN
phone:          +86 5268 6688
fax-no:         +86 5261 6187
e-mail:         hostmaster@chinamobile.com
admin-c:        HL1318-AP
tech-c:         HL1318-AP
nic-hdl:        ct74-AP
notify:         hostmaster@chinamobile.com
mnt-by:         MAINT-cn-cmcc
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:37:27Z
source:         APNIC

person:         haijun li
nic-hdl:        HL1318-AP
e-mail:         hostmaster@chinamobile.com
address:        29,Jinrong Ave, Xicheng district,beijing,100032
phone:          +86 1052686688
fax-no:         +86 10 52616187
country:        CN
mnt-by:         MAINT-CN-CMCC
abuse-mailbox:  abuse@chinamobile.com
last-modified:  2016-11-29T09:38:38Z
source:         APNIC

% Information related to '120.224.0.0/12AS9808'

route:          120.224.0.0/12
descr:          China Mobile communications corporation
origin:         AS9808
mnt-by:         MAINT-CN-CMCC
last-modified:  2008-11-05T07:40:19Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.229.109.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64473
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.229.109.71.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026042802 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 29 13:37:26 CST 2026
;; MSG SIZE  rcvd: 107

HOST信息:

Host 71.109.229.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 71.109.229.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.37.239.147	attack	Sep 4 18:46:32 mellenthin postfix/smtpd[32306]: NOQUEUE: reject: RCPT from unknown[177.37.239.147]: 554 5.7.1 Service unavailable; Client host [177.37.239.147] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/177.37.239.147; from= to= proto=ESMTP helo=<[177.37.239.147]>	2020-09-05 18:10:45
91.134.248.249	attack	91.134.248.249 - - \[05/Sep/2020:05:03:32 +0200\] "POST /wp-login.php HTTP/1.0" 200 14402 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 91.134.248.249 - - \[05/Sep/2020:05:03:32 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 91.134.248.249 - - \[05/Sep/2020:05:03:51 +0200\] "POST /wp-login.php HTTP/1.0" 200 8397 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-05 17:46:56
42.111.14.177	attackbots	Unauthorized connection attempt from IP address 42.111.14.177 on Port 445(SMB)	2020-09-05 18:17:55
116.129.254.132	attack	Sep 2 22:27:09 josie sshd[18558]: Invalid user support from 116.129.254.132 Sep 2 22:27:09 josie sshd[18559]: Invalid user support from 116.129.254.132 Sep 2 22:27:09 josie sshd[18562]: Invalid user support from 116.129.254.132 Sep 2 22:27:09 josie sshd[18554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.129.254.132 user=r.r Sep 2 22:27:09 josie sshd[18555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.129.254.132 user=r.r Sep 2 22:27:09 josie sshd[18558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.129.254.132 Sep 2 22:27:09 josie sshd[18559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.129.254.132 Sep 2 22:27:09 josie sshd[18562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.129.254.132 Sep 2 22:27:11 josie sshd[18554]: ........ -------------------------------	2020-09-05 18:16:10
95.216.12.234	attackbots	SP-Scan 80:3786 detected 2020.09.04 18:57:22 blocked until 2020.10.24 12:00:09	2020-09-05 18:29:03
221.179.103.2	attackspambots	Sep 5 02:48:29 gospond sshd[7959]: Invalid user sasha from 221.179.103.2 port 48062 ...	2020-09-05 17:54:29
72.223.168.76	attackbots	(imapd) Failed IMAP login from 72.223.168.76 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 5 08:00:15 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 10 secs): user=, method=PLAIN, rip=72.223.168.76, lip=5.63.12.44, TLS, session=	2020-09-05 17:48:38
185.239.242.195	attackbots	Sep 2 09:02:29 XXX sshd[2976]: Did not receive identification string from 185.239.242.195 Sep 2 09:03:33 XXX sshd[2977]: reveeclipse mapping checking getaddrinfo for scl-00196.mails--servers.org [185.239.242.195] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 2 09:03:33 XXX sshd[2977]: User r.r from 185.239.242.195 not allowed because none of user's groups are listed in AllowGroups Sep 2 09:03:33 XXX sshd[2977]: Received disconnect from 185.239.242.195: 11: Normal Shutdown, Thank you for playing [preauth] Sep 2 09:04:32 XXX sshd[3305]: reveeclipse mapping checking getaddrinfo for scl-00196.mails--servers.org [185.239.242.195] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 2 09:04:32 XXX sshd[3305]: User r.r from 185.239.242.195 not allowed because none of user's groups are listed in AllowGroups Sep 2 09:04:32 XXX sshd[3305]: Received disconnect from 185.239.242.195: 11: Normal Shutdown, Thank you for playing [preauth] Sep 2 09:05:32 XXX sshd[3492]: reveeclipse mapping checkin........ -------------------------------	2020-09-05 17:48:19
180.164.58.165	attackspambots	Unauthorized SSH login attempts	2020-09-05 18:22:42
182.61.40.227	attackspam	2020-09-05T14:54:43.398772billing sshd[19597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.227 2020-09-05T14:54:43.395487billing sshd[19597]: Invalid user wyse from 182.61.40.227 port 38766 2020-09-05T14:54:45.295973billing sshd[19597]: Failed password for invalid user wyse from 182.61.40.227 port 38766 ssh2 ...	2020-09-05 18:02:31
106.52.20.112	attackspambots	Sep 5 08:47:43 prod4 sshd\[21656\]: Invalid user test5 from 106.52.20.112 Sep 5 08:47:45 prod4 sshd\[21656\]: Failed password for invalid user test5 from 106.52.20.112 port 49334 ssh2 Sep 5 08:52:12 prod4 sshd\[23516\]: Failed password for root from 106.52.20.112 port 49044 ssh2 ...	2020-09-05 18:25:01
188.219.117.26	attackspambots	Invalid user tt from 188.219.117.26 port 57865	2020-09-05 18:28:29
91.72.171.138	attackbots	Sep 5 17:08:29 webhost01 sshd[21387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.72.171.138 Sep 5 17:08:30 webhost01 sshd[21387]: Failed password for invalid user 2 from 91.72.171.138 port 56236 ssh2 ...	2020-09-05 18:14:10
59.90.200.187	attack	Sep 4 23:07:45 myvps sshd[23610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.90.200.187 Sep 4 23:07:46 myvps sshd[23610]: Failed password for invalid user raspberry from 59.90.200.187 port 40572 ssh2 Sep 4 23:54:54 myvps sshd[21281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.90.200.187 ...	2020-09-05 18:10:07
131.147.249.143	attackbots	Unauthorised access (Sep 4) SRC=131.147.249.143 LEN=52 TTL=119 ID=28306 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-05 17:50:03

最近上报的IP列表

51.70.254.132	55.55.234.192	82.38.204.2	142.248.80.30
109.186.243.200	87.71.124.147	2606:4700:10::ac43:2816	2606:4700:10::6814:9616
2606:4700:10::6816:3506	2606:4700:10::6814:7277	2606:4700:10::ac43:2261	52.37.127.67
174.204.206.15	86.54.25.199	2606:4700:10::ac43:2836	2606:4700:10::6816:3616
172.245.154.19	223.104.123.228	36.103.200.210	45.197.12.121