JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.231.242.49

5.231.242.49 was found in our database!

This IP was reported 224 times. Confidence of Abuse is 30%: ?

30%

ISP	GHOSTNET GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS49581
Hostname(s)	49.0-255.242.231.5.in-addr.arpa
Domain Name	ghostnet.de
Country	🇩🇪 Germany
City	Aachen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.231.242.49

Whois 5.231.242.49

IP Abuse Reports for 5.231.242.49:

This IP address has been reported a total of 224 times from 4 distinct sources. 5.231.242.49 was first reported on November 19th 2025, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-02-05 18:24:49 (3 months ago)	Blocked by UFW (TCP on 48822) Source port: 45127 TTL: 242 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 48822) Source port: 45127 TTL: 242 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-02-04 01:49:40 (4 months ago)	Blocked by UFW (TCP on 57422) Source port: 35091 TTL: 239 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 57422) Source port: 35091 TTL: 239 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-02-03 05:45:03 (4 months ago)	Blocked by UFW (TCP on 9322) Source port: 59564 TTL: 241 Packet length: 40 TOS: 0x14 This report (f ... show more Blocked by UFW (TCP on 9322) Source port: 59564 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-02-02 10:31:19 (4 months ago)	Blocked by UFW (TCP on 60122) Source port: 48953 TTL: 240 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 60122) Source port: 48953 TTL: 240 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-02-01 22:36:29 (4 months ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-02-01 23: ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-02-01 23:42:02 ["uname -s -v -n -r -m"] 2026-02-01 23:41:56 ["uname -s -v -n -r -m"] 2026-02-01 23:41:57 ["uname -s -v -n -r -m"] 2026-02-01 23:41:57 ["uname -s -v -n -r -m"] 2026-02-01 23:41:57 ["uname -s -v -n -r -m"] show less	Brute-Force
🇨🇳 Sakura Miko	2026-02-01 21:43:47 (4 months ago)	2026-02-02T05:43:44.251555+08:00 sakura-gateway sshd[25249]: Invalid user user from 5.231.242.49 por ... show more 2026-02-02T05:43:44.251555+08:00 sakura-gateway sshd[25249]: Invalid user user from 5.231.242.49 port 14184 2026-02-02T05:43:41.338935+08:00 sakura-gateway sshd[25235]: Connection from 5.231.242.49 port 6390 on 192.168.12.24 port 41022 rdomain "" 2026-02-02T05:43:44.334461+08:00 sakura-gateway sshd[25235]: Invalid user support from 5.231.242.49 port 6390 ... show less	Brute-Force SSH
Anonymous	2026-02-01 20:23:00 (4 months ago)	Blocked by UFW (TCP on 40122) Source port: 54930 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 40122) Source port: 54930 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-02-01 01:17:20 (4 months ago)	Blocked by UFW (TCP on 27022) Source port: 57454 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 27022) Source port: 57454 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-01-30 22:30:05 (4 months ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-01-30 19: ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-01-30 19:26:39 ["uname -s -v -n -r -m"] 2026-01-30 19:26:55 ["uname -s -v -n -r -m"] 2026-01-30 19:26:42 ["uname -s -v -n -r -m"] 2026-01-30 19:26:38 ["uname -s -v -n -r -m"] show less	Brute-Force
Anonymous	2026-01-30 13:05:41 (4 months ago)	Blocked by UFW (TCP on 22722) Source port: 35586 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 22722) Source port: 35586 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 Sakura Miko	2026-01-30 00:46:08 (4 months ago)	2026-01-30T08:46:06.017147+08:00 sakura-gateway sshd[3977497]: Invalid user telecomadmin from 5.231. ... show more 2026-01-30T08:46:06.017147+08:00 sakura-gateway sshd[3977497]: Invalid user telecomadmin from 5.231.242.49 port 48368 2026-01-30T08:46:04.204861+08:00 sakura-gateway sshd[3977503]: Connection from 5.231.242.49 port 56194 on 192.168.12.24 port 41022 rdomain "" 2026-01-30T08:46:06.068182+08:00 sakura-gateway sshd[3977503]: Invalid user admin from 5.231.242.49 port 56194 ... show less	Brute-Force SSH
Anonymous	2026-01-29 22:28:21 (4 months ago)	Blocked by UFW (TCP on 46722) Source port: 59118 TTL: 242 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 46722) Source port: 59118 TTL: 242 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-01-29 01:45:26 (4 months ago)	Blocked by UFW (TCP on 32322) Source port: 49055 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 32322) Source port: 49055 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇨🇳 ThreatBook.io	2026-01-28 22:32:13 (4 months ago)	ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-01-28 11: ... show more ThreatBook Intelligence: Scanner more details on http://threatbook.io/ip/5.231.242.49 2026-01-28 11:30:12 ["uname -s -v -n -r -m"] 2026-01-28 11:30:10 ["uname -s -v -n -r -m"] 2026-01-28 11:30:11 ["uname -s -v -n -r -m"] show less	Brute-Force
Anonymous	2026-01-28 11:35:20 (4 months ago)	Blocked by UFW (TCP on 5722) Source port: 59212 TTL: 241 Packet length: 40 TOS: 0x14 This report (f ... show more Blocked by UFW (TCP on 5722) Source port: 59212 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 5.231.242.49) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan

Showing 121 to 135 of 224 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 162.216.149.32

🇯🇵 156.227.235.173

🇸🇬 101.47.156.170

🇺🇸 47.251.88.213

🇮🇩 27.111.32.174

🇻🇳 14.191.37.89

🇮🇩 2001:448a:204d:1189:912a:fed6:b84d:8081

🇺🇸 165.154.172.190

🇨🇦 137.184.172.112

🇺🇸 66.132.172.197

🇺🇸 64.236.140.160

🇦🇺 13.75.196.91

🇨🇳 8.140.225.151

🇧🇬 5.188.206.34

🇮🇩 202.51.214.99

🇬🇧 185.216.145.186

🇧🇷 170.245.99.27

🇺🇸 147.185.132.32

🇰🇷 58.224.62.29

🇺🇸 46.16.34.179