45.195.201.111

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Gigabit Solution Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 10 17:48:40 fhem-rasp sshd[26318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=root Aug 10 17:48:42 fhem-rasp sshd[26318]: Failed password for root from 45.195.201.111 port 44357 ssh2 ...	2020-08-10 23:49:49
attackbots	Aug 9 14:02:45 cosmoit sshd[20237]: Failed password for root from 45.195.201.111 port 60489 ssh2	2020-08-09 20:13:03
attackspam	Aug 8 15:19:57 dignus sshd[3018]: Failed password for root from 45.195.201.111 port 55864 ssh2 Aug 8 15:22:13 dignus sshd[3441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=root Aug 8 15:22:15 dignus sshd[3441]: Failed password for root from 45.195.201.111 port 42811 ssh2 Aug 8 15:24:28 dignus sshd[3902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=root Aug 8 15:24:31 dignus sshd[3902]: Failed password for root from 45.195.201.111 port 57992 ssh2 ...	2020-08-09 08:36:39
attackbotsspam	Lines containing failures of 45.195.201.111 Aug 6 02:05:33 shared06 sshd[7129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=r.r Aug 6 02:05:35 shared06 sshd[7129]: Failed password for r.r from 45.195.201.111 port 36110 ssh2 Aug 6 02:05:35 shared06 sshd[7129]: Received disconnect from 45.195.201.111 port 36110:11: Bye Bye [preauth] Aug 6 02:05:35 shared06 sshd[7129]: Disconnected from authenticating user r.r 45.195.201.111 port 36110 [preauth] Aug 6 02:15:45 shared06 sshd[10478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=r.r Aug 6 02:15:46 shared06 sshd[10478]: Failed password for r.r from 45.195.201.111 port 42830 ssh2 Aug 6 02:15:47 shared06 sshd[10478]: Received disconnect from 45.195.201.111 port 42830:11: Bye Bye [preauth] Aug 6 02:15:47 shared06 sshd[10478]: Disconnected from authenticating user r.r 45.195.201.111 port 42830 [pr........ ------------------------------	2020-08-06 16:12:27

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.195.201.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2109
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.195.201.111.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080602 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 06 16:12:20 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 111.201.195.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.201.195.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.98.10.197	attack	Jul 6 07:07:23 ws12vmsma01 sshd[47164]: Failed password for invalid user admin from 141.98.10.197 port 44395 ssh2 Jul 6 07:09:00 ws12vmsma01 sshd[47432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.197 user=root Jul 6 07:09:02 ws12vmsma01 sshd[47432]: Failed password for root from 141.98.10.197 port 46239 ssh2 ...	2020-07-06 20:25:01
79.42.138.252	attackbotsspam	Unauthorized connection attempt detected from IP address 79.42.138.252 to port 5555	2020-07-06 20:26:04
171.224.181.224	attack	Unauthorized connection attempt from IP address 171.224.181.224 on Port 445(SMB)	2020-07-06 20:47:29
122.51.179.190	attackspam	20 attempts against mh-ssh on grass	2020-07-06 20:23:03
211.193.60.137	attackbots	Jul 6 05:53:54 dignus sshd[25432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.60.137 Jul 6 05:53:56 dignus sshd[25432]: Failed password for invalid user juris from 211.193.60.137 port 36126 ssh2 Jul 6 05:57:22 dignus sshd[25858]: Invalid user menu from 211.193.60.137 port 32990 Jul 6 05:57:22 dignus sshd[25858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.60.137 Jul 6 05:57:23 dignus sshd[25858]: Failed password for invalid user menu from 211.193.60.137 port 32990 ssh2 ...	2020-07-06 21:08:05
193.112.126.64	attackspambots	Jul 6 19:48:12 itv-usvr-02 sshd[10305]: Invalid user webmail from 193.112.126.64 port 53062 Jul 6 19:48:12 itv-usvr-02 sshd[10305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.126.64 Jul 6 19:48:12 itv-usvr-02 sshd[10305]: Invalid user webmail from 193.112.126.64 port 53062 Jul 6 19:48:15 itv-usvr-02 sshd[10305]: Failed password for invalid user webmail from 193.112.126.64 port 53062 ssh2 Jul 6 19:57:06 itv-usvr-02 sshd[10638]: Invalid user garibaldi from 193.112.126.64 port 53244	2020-07-06 21:27:13
164.132.46.197	attackbotsspam	Jul 6 14:19:30 pve1 sshd[13596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.46.197 Jul 6 14:19:32 pve1 sshd[13596]: Failed password for invalid user scpuser from 164.132.46.197 port 54624 ssh2 ...	2020-07-06 20:34:24
220.134.75.23	attackbots	port scan and connect, tcp 80 (http)	2020-07-06 20:37:10
117.211.192.70	attackbotsspam	2020-07-06T16:45:49.470644hostname sshd[108847]: Invalid user future from 117.211.192.70 port 49010 ...	2020-07-06 20:53:53
45.64.126.103	attackspam	2020-07-06T09:15:23.957674dmca.cloudsearch.cf sshd[1805]: Invalid user xuh from 45.64.126.103 port 49584 2020-07-06T09:15:23.963118dmca.cloudsearch.cf sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.126.103 2020-07-06T09:15:23.957674dmca.cloudsearch.cf sshd[1805]: Invalid user xuh from 45.64.126.103 port 49584 2020-07-06T09:15:26.525033dmca.cloudsearch.cf sshd[1805]: Failed password for invalid user xuh from 45.64.126.103 port 49584 ssh2 2020-07-06T09:19:41.695190dmca.cloudsearch.cf sshd[1983]: Invalid user dstserver from 45.64.126.103 port 41558 2020-07-06T09:19:41.700613dmca.cloudsearch.cf sshd[1983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.126.103 2020-07-06T09:19:41.695190dmca.cloudsearch.cf sshd[1983]: Invalid user dstserver from 45.64.126.103 port 41558 2020-07-06T09:19:44.338993dmca.cloudsearch.cf sshd[1983]: Failed password for invalid user dstserver from 45.64.126.10 ...	2020-07-06 20:39:00
103.68.164.140	attackbotsspam	Script injection, SQL injection attempts	2020-07-06 21:06:46
125.224.60.67	attack	Unauthorized connection attempt from IP address 125.224.60.67 on Port 445(SMB)	2020-07-06 20:44:03
120.131.11.49	attackbots	2020-07-06T12:00:53.9885941240 sshd\[3372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.11.49 user=root 2020-07-06T12:00:55.9876801240 sshd\[3372\]: Failed password for root from 120.131.11.49 port 46024 ssh2 2020-07-06T12:02:43.2933001240 sshd\[3459\]: Invalid user ra from 120.131.11.49 port 1750 2020-07-06T12:02:43.2977491240 sshd\[3459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.11.49 ...	2020-07-06 20:22:24
218.161.85.97	attackbotsspam	Telnet Server BruteForce Attack	2020-07-06 21:11:12
202.104.122.147	attackspam	frenzy	2020-07-06 20:16:15

Recently Reported IPs

34.79.95.24	65.57.56.1	73.189.78.118	33.233.91.48
22.169.48.111	143.52.32.217	133.149.113.185	116.128.158.179
36.136.208.221	186.16.161.112	158.173.107.124	103.192.253.218
94.74.188.45	182.253.233.182	230.137.117.54	45.232.65.81
125.224.214.90	123.14.75.188	179.171.110.243	171.6.26.112