111.115.201.19

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '111.114.0.0 - 111.115.255.255'

% Abuse contact for '111.114.0.0 - 111.115.255.255' is 'abuse@cernet.edu.cn'

inetnum:        111.114.0.0 - 111.115.255.255
netname:        XAR-CERNET
descr:          China Education and Research Network
descr:          Xi'an Regional Network
country:        CN
admin-c:        CER-AP
tech-c:         CER-AP
abuse-c:        AC1685-AP
status:         ALLOCATED PORTABLE
remarks:        NS2.NET.EDU.CN
remarks:        DNS.EDU.CN
remarks:        DNS2.EDU.CN
remarks:        origin AS4538
remarks:        confederation
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CERNET-AP
mnt-routes:     MAINT-CERNET-AP
mnt-irt:        IRT-CERNET-AP
last-modified:  2020-09-03T09:16:20Z
source:         APNIC

irt:            IRT-CERNET-AP
address:        Network Research Center,
address:        Main Bldg, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
fax-no:         +86-10-62785933
e-mail:         abuse@cernet.edu.cn
abuse-mailbox:  abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
auth:           # Filtered
remarks:        timezone GMT+8
remarks:        http://www.ccert.edu.cn
remarks:        abuse@cernet.edu.cn was validated on 2025-08-15
mnt-by:         MAINT-CERNET-AP
last-modified:  2025-09-04T00:59:41Z
source:         APNIC

role:           ABUSE CERNETAP
country:        ZZ
address:        Network Research Center,
address:        Main Bldg, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
e-mail:         abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
nic-hdl:        AC1685-AP
remarks:        Generated from irt object IRT-CERNET-AP
remarks:        abuse@cernet.edu.cn was validated on 2025-08-15
abuse-mailbox:  abuse@cernet.edu.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-08-15T09:38:28Z
source:         APNIC

role:           CERNET Helpdesk
address:        CERNET Center
address:        Beijing 100084, China
country:        CN
phone:          +86-10-6278-4049
fax-no:         +86-10-6278-5933
e-mail:         helpdesk@cernet.edu.cn
remarks:        abuse@cernet.edu.cn
admin-c:        XL1-CN
tech-c:         SZ2-AP
nic-hdl:        CER-AP
mnt-by:         MAINT-CERNET-AP
last-modified:  2020-09-03T09:14:12Z
source:         APNIC

% Information related to '111.115.0.0/16AS4538'

route:          111.115.0.0/16
descr:          CERNET
origin:         AS4538
mnt-by:         MAINT-CERNET-AP
last-modified:  2009-06-29T03:51:16Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.115.201.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;111.115.201.19.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025101500 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 15 17:19:49 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 19.201.115.111.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.201.115.111.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.183.237.122	attackbotsspam	Aug 10 14:58:36 ghostname-secure sshd[28469]: Failed password for invalid user dspace from 68.183.237.122 port 52010 ssh2 Aug 10 14:58:36 ghostname-secure sshd[28469]: Received disconnect from 68.183.237.122: 11: Bye Bye [preauth] Aug 10 15:09:54 ghostname-secure sshd[28684]: Failed password for invalid user pascal from 68.183.237.122 port 58298 ssh2 Aug 10 15:09:54 ghostname-secure sshd[28684]: Received disconnect from 68.183.237.122: 11: Bye Bye [preauth] Aug 10 15:14:58 ghostname-secure sshd[28743]: Failed password for invalid user sk from 68.183.237.122 port 53460 ssh2 Aug 10 15:14:58 ghostname-secure sshd[28743]: Received disconnect from 68.183.237.122: 11: Bye Bye [preauth] Aug 10 15:19:48 ghostname-secure sshd[28822]: Failed password for invalid user matheus from 68.183.237.122 port 48304 ssh2 Aug 10 15:19:48 ghostname-secure sshd[28822]: Received disconnect from 68.183.237.122: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=68.	2019-08-11 12:18:47
212.113.132.65	attackspambots	11.08.2019 00:25:52 - Wordpress fail Detected by ELinOX-ALM	2019-08-11 11:58:47
221.122.102.168	attack	Dec 20 18:32:41 motanud sshd\[16492\]: Invalid user ftpuser from 221.122.102.168 port 34764 Dec 20 18:32:41 motanud sshd\[16492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.122.102.168 Dec 20 18:32:42 motanud sshd\[16492\]: Failed password for invalid user ftpuser from 221.122.102.168 port 34764 ssh2	2019-08-11 11:48:12
194.165.133.26	attackspambots	Aug 11 00:11:18 xxx sshd[13231]: Did not receive identification string from 194.165.133.26 Aug 11 00:11:18 xxx sshd[13232]: Did not receive identification string from 194.165.133.26 Aug 11 00:11:18 xxx sshd[13234]: Did not receive identification string from 194.165.133.26 Aug 11 00:11:18 xxx sshd[13236]: Did not receive identification string from 194.165.133.26 Aug 11 00:11:18 xxx sshd[13233]: Did not receive identification string from 194.165.133.26 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=194.165.133.26	2019-08-11 12:03:22
58.87.88.98	attackbots	Unauthorized SSH login attempts	2019-08-11 11:55:20
221.160.100.14	attack	Mar 5 04:17:41 motanud sshd\[6646\]: Invalid user postgres from 221.160.100.14 port 53510 Mar 5 04:17:41 motanud sshd\[6646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.160.100.14 Mar 5 04:17:44 motanud sshd\[6646\]: Failed password for invalid user postgres from 221.160.100.14 port 53510 ssh2	2019-08-11 11:38:09
92.97.75.77	attackbotsspam	Automatic report - Port Scan Attack	2019-08-11 12:13:07
94.102.50.96	attack	Portscan or hack attempt detected by psad/fwsnort	2019-08-11 11:52:20
213.146.203.200	attackbots	Aug 11 03:55:34 areeb-Workstation sshd\[11939\]: Invalid user info from 213.146.203.200 Aug 11 03:55:34 areeb-Workstation sshd\[11939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.146.203.200 Aug 11 03:55:36 areeb-Workstation sshd\[11939\]: Failed password for invalid user info from 213.146.203.200 port 44252 ssh2 ...	2019-08-11 12:02:55
182.85.58.178	attackspam	Aug 10 18:11:19 eola postfix/smtpd[2930]: connect from unknown[182.85.58.178] Aug 10 18:11:20 eola postfix/smtpd[2930]: lost connection after AUTH from unknown[182.85.58.178] Aug 10 18:11:20 eola postfix/smtpd[2930]: disconnect from unknown[182.85.58.178] ehlo=1 auth=0/1 commands=1/2 Aug 10 18:11:20 eola postfix/smtpd[2991]: connect from unknown[182.85.58.178] Aug 10 18:11:21 eola postfix/smtpd[2991]: lost connection after AUTH from unknown[182.85.58.178] Aug 10 18:11:21 eola postfix/smtpd[2991]: disconnect from unknown[182.85.58.178] ehlo=1 auth=0/1 commands=1/2 Aug 10 18:11:21 eola postfix/smtpd[2930]: connect from unknown[182.85.58.178] Aug 10 18:11:22 eola postfix/smtpd[2930]: lost connection after AUTH from unknown[182.85.58.178] Aug 10 18:11:22 eola postfix/smtpd[2930]: disconnect from unknown[182.85.58.178] ehlo=1 auth=0/1 commands=1/2 Aug 10 18:11:22 eola postfix/smtpd[2991]: connect from unknown[182.85.58.178] Aug 10 18:11:23 eola postfix/smtpd[2991]: lost conn........ -------------------------------	2019-08-11 11:51:11
2.4.23.82	attackspambots	Aug 11 02:04:48 eventyay sshd[6234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.4.23.82 Aug 11 02:04:49 eventyay sshd[6234]: Failed password for invalid user jetaero from 2.4.23.82 port 40060 ssh2 Aug 11 02:11:05 eventyay sshd[7751]: Failed password for root from 2.4.23.82 port 33984 ssh2 ...	2019-08-11 12:02:00
82.199.118.92	attackspam	[UnAuth Telnet (port 23) login attempt	2019-08-11 11:54:44
147.135.186.76	attackbots	Port scan on 2 port(s): 139 445	2019-08-11 12:02:25
185.81.152.48	attackbots	Aug 10 22:49:26 debian sshd\[9228\]: Invalid user opscode from 185.81.152.48 port 41720 Aug 10 22:49:26 debian sshd\[9228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.81.152.48 Aug 10 22:49:28 debian sshd\[9228\]: Failed password for invalid user opscode from 185.81.152.48 port 41720 ssh2 ...	2019-08-11 11:45:29
185.137.233.133	attack	Aug 11 00:32:24 TCP Attack: SRC=185.137.233.133 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=241 PROTO=TCP SPT=42059 DPT=3878 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-11 11:38:40

最近上报的IP列表

47.236.250.215	8.222.156.59	47.237.6.18	47.237.12.16
47.236.250.127	47.236.24.120	47.236.234.136	47.236.17.22
78.157.207.142	8.219.164.206	47.237.3.91	47.237.22.229
47.237.17.209	47.236.244.113	8.219.87.135	8.219.241.157
47.237.77.176	47.237.31.156	47.237.28.154	47.236.248.45