111.115.201.19

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '111.114.0.0 - 111.115.255.255'

% Abuse contact for '111.114.0.0 - 111.115.255.255' is 'abuse@cernet.edu.cn'

inetnum:        111.114.0.0 - 111.115.255.255
netname:        XAR-CERNET
descr:          China Education and Research Network
descr:          Xi'an Regional Network
country:        CN
admin-c:        CER-AP
tech-c:         CER-AP
abuse-c:        AC1685-AP
status:         ALLOCATED PORTABLE
remarks:        NS2.NET.EDU.CN
remarks:        DNS.EDU.CN
remarks:        DNS2.EDU.CN
remarks:        origin AS4538
remarks:        confederation
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CERNET-AP
mnt-routes:     MAINT-CERNET-AP
mnt-irt:        IRT-CERNET-AP
last-modified:  2020-09-03T09:16:20Z
source:         APNIC

irt:            IRT-CERNET-AP
address:        Network Research Center,
address:        Main Bldg, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
fax-no:         +86-10-62785933
e-mail:         abuse@cernet.edu.cn
abuse-mailbox:  abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
auth:           # Filtered
remarks:        timezone GMT+8
remarks:        http://www.ccert.edu.cn
remarks:        abuse@cernet.edu.cn was validated on 2025-08-15
mnt-by:         MAINT-CERNET-AP
last-modified:  2025-09-04T00:59:41Z
source:         APNIC

role:           ABUSE CERNETAP
country:        ZZ
address:        Network Research Center,
address:        Main Bldg, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
e-mail:         abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
nic-hdl:        AC1685-AP
remarks:        Generated from irt object IRT-CERNET-AP
remarks:        abuse@cernet.edu.cn was validated on 2025-08-15
abuse-mailbox:  abuse@cernet.edu.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-08-15T09:38:28Z
source:         APNIC

role:           CERNET Helpdesk
address:        CERNET Center
address:        Beijing 100084, China
country:        CN
phone:          +86-10-6278-4049
fax-no:         +86-10-6278-5933
e-mail:         helpdesk@cernet.edu.cn
remarks:        abuse@cernet.edu.cn
admin-c:        XL1-CN
tech-c:         SZ2-AP
nic-hdl:        CER-AP
mnt-by:         MAINT-CERNET-AP
last-modified:  2020-09-03T09:14:12Z
source:         APNIC

% Information related to '111.115.0.0/16AS4538'

route:          111.115.0.0/16
descr:          CERNET
origin:         AS4538
mnt-by:         MAINT-CERNET-AP
last-modified:  2009-06-29T03:51:16Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.115.201.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.115.201.19.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025101500 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 15 17:19:49 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 19.201.115.111.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.201.115.111.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.207.29.72	attackbots	$f2bV_matches	2020-03-29 01:14:52
210.99.216.205	attackbots	Mar 28 17:48:49 tuxlinux sshd[47302]: Invalid user ftp from 210.99.216.205 port 45310 Mar 28 17:48:49 tuxlinux sshd[47302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.99.216.205 Mar 28 17:48:49 tuxlinux sshd[47302]: Invalid user ftp from 210.99.216.205 port 45310 Mar 28 17:48:49 tuxlinux sshd[47302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.99.216.205 Mar 28 17:48:49 tuxlinux sshd[47302]: Invalid user ftp from 210.99.216.205 port 45310 Mar 28 17:48:49 tuxlinux sshd[47302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.99.216.205 Mar 28 17:48:51 tuxlinux sshd[47302]: Failed password for invalid user ftp from 210.99.216.205 port 45310 ssh2 ...	2020-03-29 01:35:55
51.161.8.70	attackspam	Port Scan detected from 51.161.8.70 (CA/Canada/Quebec/Montreal (Ville-Marie)/70.ip-51-161-8.net). 4 hits in the last 100 seconds	2020-03-29 01:40:49
222.129.134.225	attackspam	Invalid user fom from 222.129.134.225 port 40993	2020-03-29 01:43:24
210.74.11.97	attack	Mar 28 16:15:04 * sshd[29313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.74.11.97 Mar 28 16:15:06 * sshd[29313]: Failed password for invalid user oiw from 210.74.11.97 port 58062 ssh2	2020-03-29 01:30:47
14.139.244.248	attack	F2B blocked SSH BF	2020-03-29 01:09:30
45.148.10.141	attackbotsspam	Unauthorized connection attempt detected from IP address 45.148.10.141 to port 8089	2020-03-29 01:53:47
46.101.73.64	attack	Mar 28 17:56:02 srv-ubuntu-dev3 sshd[104124]: Invalid user vyh from 46.101.73.64 Mar 28 17:56:02 srv-ubuntu-dev3 sshd[104124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.73.64 Mar 28 17:56:02 srv-ubuntu-dev3 sshd[104124]: Invalid user vyh from 46.101.73.64 Mar 28 17:56:04 srv-ubuntu-dev3 sshd[104124]: Failed password for invalid user vyh from 46.101.73.64 port 37586 ssh2 Mar 28 17:59:56 srv-ubuntu-dev3 sshd[104714]: Invalid user wjw from 46.101.73.64 Mar 28 17:59:56 srv-ubuntu-dev3 sshd[104714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.73.64 Mar 28 17:59:56 srv-ubuntu-dev3 sshd[104714]: Invalid user wjw from 46.101.73.64 Mar 28 17:59:59 srv-ubuntu-dev3 sshd[104714]: Failed password for invalid user wjw from 46.101.73.64 port 50098 ssh2 Mar 28 18:03:47 srv-ubuntu-dev3 sshd[105345]: Invalid user kfe from 46.101.73.64 ...	2020-03-29 01:51:28
110.185.104.186	attack	Mar 28 14:09:38 ns382633 sshd\[3440\]: Invalid user wv from 110.185.104.186 port 33454 Mar 28 14:09:38 ns382633 sshd\[3440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.104.186 Mar 28 14:09:40 ns382633 sshd\[3440\]: Failed password for invalid user wv from 110.185.104.186 port 33454 ssh2 Mar 28 14:21:48 ns382633 sshd\[5883\]: Invalid user nzv from 110.185.104.186 port 38840 Mar 28 14:21:48 ns382633 sshd\[5883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.104.186	2020-03-29 01:55:14
152.169.213.126	attackspam	Mar 28 08:23:16 mockhub sshd[21603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Mar 28 08:23:18 mockhub sshd[21603]: Failed password for invalid user htj from 152.169.213.126 port 38532 ssh2 ...	2020-03-29 02:00:48
106.13.145.89	attack	SSH Bruteforce attack	2020-03-29 01:29:45
68.183.22.85	attack	Mar 28 15:56:42 ns392434 sshd[8224]: Invalid user g from 68.183.22.85 port 38040 Mar 28 15:56:42 ns392434 sshd[8224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.85 Mar 28 15:56:42 ns392434 sshd[8224]: Invalid user g from 68.183.22.85 port 38040 Mar 28 15:56:44 ns392434 sshd[8224]: Failed password for invalid user g from 68.183.22.85 port 38040 ssh2 Mar 28 17:37:03 ns392434 sshd[21415]: Invalid user jenkins from 68.183.22.85 port 36800 Mar 28 17:37:03 ns392434 sshd[21415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.22.85 Mar 28 17:37:03 ns392434 sshd[21415]: Invalid user jenkins from 68.183.22.85 port 36800 Mar 28 17:37:05 ns392434 sshd[21415]: Failed password for invalid user jenkins from 68.183.22.85 port 36800 ssh2 Mar 28 17:40:47 ns392434 sshd[21955]: Invalid user ylt from 68.183.22.85 port 49446	2020-03-29 01:37:17
49.247.207.56	attackspambots	Mar 28 17:21:23 game-panel sshd[20907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.207.56 Mar 28 17:21:24 game-panel sshd[20907]: Failed password for invalid user sgf from 49.247.207.56 port 53922 ssh2 Mar 28 17:29:39 game-panel sshd[21245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.207.56	2020-03-29 01:30:19
106.13.39.127	attackspambots	2020-03-28T12:53:18.069424ionos.janbro.de sshd[5893]: Failed password for lp from 106.13.39.127 port 53908 ssh2 2020-03-28T12:56:11.556830ionos.janbro.de sshd[5922]: Invalid user wsi from 106.13.39.127 port 34820 2020-03-28T12:56:11.802574ionos.janbro.de sshd[5922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.127 2020-03-28T12:56:11.556830ionos.janbro.de sshd[5922]: Invalid user wsi from 106.13.39.127 port 34820 2020-03-28T12:56:13.910891ionos.janbro.de sshd[5922]: Failed password for invalid user wsi from 106.13.39.127 port 34820 ssh2 2020-03-28T12:59:11.752076ionos.janbro.de sshd[5940]: Invalid user bml from 106.13.39.127 port 43976 2020-03-28T12:59:11.962129ionos.janbro.de sshd[5940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.39.127 2020-03-28T12:59:11.752076ionos.janbro.de sshd[5940]: Invalid user bml from 106.13.39.127 port 43976 2020-03-28T12:59:13.447534ionos.janbro.de sshd ...	2020-03-29 01:15:26
124.152.39.251	attack	Unauthorised access (Mar 28) SRC=124.152.39.251 LEN=40 TTL=48 ID=36135 TCP DPT=8080 WINDOW=44289 SYN Unauthorised access (Mar 28) SRC=124.152.39.251 LEN=40 TTL=48 ID=46995 TCP DPT=8080 WINDOW=44289 SYN Unauthorised access (Mar 27) SRC=124.152.39.251 LEN=40 TTL=48 ID=40990 TCP DPT=8080 WINDOW=43164 SYN Unauthorised access (Mar 27) SRC=124.152.39.251 LEN=40 TTL=48 ID=52043 TCP DPT=8080 WINDOW=43252 SYN Unauthorised access (Mar 23) SRC=124.152.39.251 LEN=40 TTL=48 ID=61268 TCP DPT=8080 WINDOW=44289 SYN Unauthorised access (Mar 22) SRC=124.152.39.251 LEN=40 TTL=48 ID=51079 TCP DPT=8080 WINDOW=34168 SYN	2020-03-29 01:52:41

Recently Reported IPs

47.236.250.215	8.222.156.59	47.237.6.18	47.237.12.16
47.236.250.127	47.236.24.120	47.236.234.136	47.236.17.22
78.157.207.142	8.219.164.206	47.237.3.91	47.237.22.229
47.237.17.209	47.236.244.113	8.219.87.135	8.219.241.157
47.237.77.176	47.237.31.156	47.237.28.154	47.236.248.45