JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.231.242.49

5.231.242.49 was found in our database!

This IP was reported 224 times. Confidence of Abuse is 30%: ?

30%

ISP	GHOSTNET GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS49581
Hostname(s)	49.0-255.242.231.5.in-addr.arpa
Domain Name	ghostnet.de
Country	🇩🇪 Germany
City	Aachen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.231.242.49

Whois 5.231.242.49

IP Abuse Reports for 5.231.242.49:

This IP address has been reported a total of 224 times from 4 distinct sources. 5.231.242.49 was first reported on November 19th 2025, and the most recent report was 4 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 Sakura Miko	2026-05-21 10:02:07 (1 week ago)	2026-05-21T18:02:05.975666+08:00 nekoaru-shanghai-1 sshd-session[75808]: Invalid user 1 from 5.231.2 ... show more 2026-05-21T18:02:05.975666+08:00 nekoaru-shanghai-1 sshd-session[75808]: Invalid user 1 from 5.231.242.49 port 20198 2026-05-21T18:02:04.477779+08:00 nekoaru-shanghai-1 sshd-session[75811]: Connection from 5.231.242.49 port 23078 on 192.168.12.24 port 41022 rdomain "" 2026-05-21T18:02:06.071627+08:00 nekoaru-shanghai-1 sshd-session[75811]: Invalid user hyq from 5.231.242.49 port 23078 ... show less	Brute-Force SSH
🇨🇳 pengpeng	2026-05-21 02:00:48 (1 week ago)	monitor: on VM-0-7-ubuntu \| port: 21322 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 21322 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-20 22:40:37 (2 weeks ago)	Blocked by UFW (TCP on 23922) Source port: 50454 TTL: 242 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 23922) Source port: 50454 TTL: 242 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-20 06:19:55 (2 weeks ago)	Blocked by UFW (TCP on 30422) Source port: 52003 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 30422) Source port: 52003 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-18 08:18:56 (2 weeks ago)	Blocked by UFW (TCP on 62122) Source port: 33780 TTL: 239 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 62122) Source port: 33780 TTL: 239 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 Sakura Miko	2026-05-17 07:16:20 (2 weeks ago)	2026-05-17T15:16:17.911033+08:00 nekoaru-shanghai-1 sshd-session[3909851]: Invalid user user from 5. ... show more 2026-05-17T15:16:17.911033+08:00 nekoaru-shanghai-1 sshd-session[3909851]: Invalid user user from 5.231.242.49 port 59832 2026-05-17T15:16:17.520155+08:00 nekoaru-shanghai-1 sshd-session[3909863]: Connection from 5.231.242.49 port 51710 on 192.168.12.24 port 41022 rdomain "" 2026-05-17T15:16:18.519877+08:00 nekoaru-shanghai-1 sshd-session[3909863]: Invalid user user from 5.231.242.49 port 51710 ... show less	Brute-Force SSH
Anonymous	2026-05-16 21:30:37 (2 weeks ago)	Blocked by UFW (TCP on 21622) Source port: 42826 TTL: 242 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 21622) Source port: 42826 TTL: 242 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-15 12:22:43 (2 weeks ago)	Blocked by UFW (TCP on 36422) Source port: 60713 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 36422) Source port: 60713 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-14 04:22:02 (2 weeks ago)	Blocked by UFW (TCP on 13722) Source port: 42779 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 13722) Source port: 42779 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-13 22:23:50 (3 weeks ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-05-13 12: ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-05-13 12:22:40 ["uname -s -v -n -r -m"] 2026-05-13 12:22:41 ["uname -s -v -n -r -m"] 2026-05-13 12:22:42 ["uname -s -v -n -r -m"] 2026-05-13 12:22:41 ["uname -s -v -n -r -m"] show less	Brute-Force
Anonymous	2026-05-11 12:34:00 (3 weeks ago)	Blocked by UFW (TCP on 11222) Source port: 40413 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 11222) Source port: 40413 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-05-09 15:44:16 (3 weeks ago)	Blocked by UFW (TCP on 17822) Source port: 44257 TTL: 239 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 17822) Source port: 44257 TTL: 239 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 pengpeng	2026-05-09 09:25:15 (3 weeks ago)	monitor: on VM-0-7-ubuntu \| port: 27022 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 27022 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-05-05 22:33:32 (4 weeks ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-05-05 02: ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-05-05 02:39:51 ["uname -s -v -n -r -m"] 2026-05-05 02:39:51 ["uname -s -v -n -r -m"] 2026-05-05 02:39:51 ["uname -s -v -n -r -m"] 2026-05-05 02:39:51 ["uname -s -v -n -r -m"] show less	Brute-Force
🇨🇳 Sakura Miko	2026-05-05 21:04:06 (4 weeks ago)	2026-05-06T05:04:05.068770+08:00 nekoaru-shanghai-1 sshd-session[2980450]: Invalid user prueba from ... show more 2026-05-06T05:04:05.068770+08:00 nekoaru-shanghai-1 sshd-session[2980450]: Invalid user prueba from 5.231.242.49 port 39376 2026-05-06T05:04:04.151274+08:00 nekoaru-shanghai-1 sshd-session[2980459]: Connection from 5.231.242.49 port 56166 on 192.168.12.24 port 41022 rdomain "" 2026-05-06T05:04:05.161054+08:00 nekoaru-shanghai-1 sshd-session[2980459]: Invalid user oracle from 5.231.242.49 port 56166 ... show less	Brute-Force SSH

Showing 16 to 30 of 224 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.106

🇳🇱 192.142.24.43

🇩🇪 172.71.172.30

🇺🇸 47.251.168.209

🇨🇳 42.180.4.166

🇺🇸 23.153.72.82

🇳🇱 191.101.113.198

🇦🇪 107.155.60.67

🇧🇾 95.46.24.101

🇳🇱 89.233.107.97

🇺🇸 54.172.102.189

🇳🇱 45.148.10.147

🇺🇸 208.84.100.50

🇳🇱 185.93.89.110

🇮🇳 125.21.53.232

🇰🇷 106.246.89.69

🇺🇸 76.74.150.109

🇺🇸 20.163.32.224

🇵🇱 194.180.49.217

🇪🇸 188.164.195.116