198.245.55.242

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
198.245.55.59	spambotsattackproxy	Fake sites	2020-10-20 19:08:42
198.245.55.145	attackbots	198.245.55.145 - - \[25/May/2020:06:18:30 +0200\] "POST /wp-login.php HTTP/1.0" 200 5674 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.55.145 - - \[25/May/2020:06:18:31 +0200\] "POST /wp-login.php HTTP/1.0" 200 5474 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.55.145 - - \[25/May/2020:06:18:33 +0200\] "POST /wp-login.php HTTP/1.0" 200 5490 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-25 14:21:58
198.245.55.145	attackbots	198.245.55.145 - - [25/Mar/2020:13:46:58 +0100] "GET /wp-login.php HTTP/1.1" 200 5688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.55.145 - - [25/Mar/2020:13:47:00 +0100] "POST /wp-login.php HTTP/1.1" 200 6587 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.55.145 - - [25/Mar/2020:13:47:01 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-26 01:59:28
198.245.55.145	attackbotsspam	xmlrpc attack	2020-03-24 10:08:28
198.245.55.145	attackbotsspam	198.245.55.145 - - [18/Mar/2020:19:02:53 +0100] "GET /wp-login.php HTTP/1.1" 200 6582 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.55.145 - - [18/Mar/2020:19:02:54 +0100] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.245.55.145 - - [18/Mar/2020:19:02:55 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-19 04:57:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.245.55.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50937
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;198.245.55.242.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 22:52:44 CST 2022
;; MSG SIZE  rcvd: 107

Host info

242.55.245.198.in-addr.arpa domain name pointer 242.ip-198-245-55.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.55.245.198.in-addr.arpa	name = 242.ip-198-245-55.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.236.190.34	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 29-09-2019 04:50:16.	2019-09-29 16:43:49
112.85.42.72	attackspambots	Sep 29 10:15:43 MK-Soft-Root1 sshd[22546]: Failed password for root from 112.85.42.72 port 15469 ssh2 Sep 29 10:15:46 MK-Soft-Root1 sshd[22546]: Failed password for root from 112.85.42.72 port 15469 ssh2 ...	2019-09-29 16:33:06
183.81.100.152	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 29-09-2019 04:50:15.	2019-09-29 16:47:15
180.167.233.252	attack	Sep 28 21:54:30 php1 sshd\[17032\]: Invalid user ubuntu from 180.167.233.252 Sep 28 21:54:30 php1 sshd\[17032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.233.252 Sep 28 21:54:31 php1 sshd\[17032\]: Failed password for invalid user ubuntu from 180.167.233.252 port 51776 ssh2 Sep 28 22:03:51 php1 sshd\[18110\]: Invalid user adm from 180.167.233.252 Sep 28 22:03:51 php1 sshd\[18110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.233.252	2019-09-29 16:18:18
103.254.120.222	attack	Sep 28 21:57:36 friendsofhawaii sshd\[11483\]: Invalid user dw from 103.254.120.222 Sep 28 21:57:36 friendsofhawaii sshd\[11483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.120.222 Sep 28 21:57:38 friendsofhawaii sshd\[11483\]: Failed password for invalid user dw from 103.254.120.222 port 44934 ssh2 Sep 28 22:02:20 friendsofhawaii sshd\[11896\]: Invalid user odbc from 103.254.120.222 Sep 28 22:02:20 friendsofhawaii sshd\[11896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.254.120.222	2019-09-29 16:50:58
103.54.219.107	attackspambots	SSH/22 MH Probe, BF, Hack -	2019-09-29 16:07:42
177.69.213.236	attackbotsspam	Sep 28 22:17:28 aiointranet sshd\[22590\]: Invalid user lb from 177.69.213.236 Sep 28 22:17:28 aiointranet sshd\[22590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.69.213.236 Sep 28 22:17:31 aiointranet sshd\[22590\]: Failed password for invalid user lb from 177.69.213.236 port 45684 ssh2 Sep 28 22:22:17 aiointranet sshd\[22967\]: Invalid user operator from 177.69.213.236 Sep 28 22:22:17 aiointranet sshd\[22967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.69.213.236	2019-09-29 16:30:14
119.61.26.165	attackbotsspam	Sep 29 05:44:44 dev0-dcde-rnet sshd[28419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.61.26.165 Sep 29 05:44:46 dev0-dcde-rnet sshd[28419]: Failed password for invalid user dana from 119.61.26.165 port 49261 ssh2 Sep 29 05:50:43 dev0-dcde-rnet sshd[28441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.61.26.165	2019-09-29 16:23:47
61.45.37.148	attack	09/29/2019-06:56:31.133296 61.45.37.148 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 64	2019-09-29 16:39:31
106.53.11.43	attackbots	Invalid user ts6 from 106.53.11.43 port 42582	2019-09-29 16:39:44
91.121.157.15	attackspambots	[Aegis] @ 2019-09-29 09:01:05 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-29 16:34:57
5.189.158.7	attack	$f2bV_matches	2019-09-29 16:28:04
188.131.170.119	attack	frenzy	2019-09-29 16:17:36
159.224.223.246	attackspambots	port scan and connect, tcp 80 (http)	2019-09-29 16:27:36
103.54.219.106	attackspam	Sep 29 10:01:31 meumeu sshd[20040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 Sep 29 10:01:34 meumeu sshd[20040]: Failed password for invalid user test from 103.54.219.106 port 48347 ssh2 Sep 29 10:06:05 meumeu sshd[20643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.54.219.106 ...	2019-09-29 16:08:07

Recently Reported IPs

198.245.60.194	198.245.50.87	198.245.53.17	198.245.82.46
198.245.60.25	198.245.62.180	198.245.66.130	198.246.102.49
198.246.135.18	198.246.102.81	198.246.152.253	198.245.93.21
198.246.251.183	198.248.132.31	198.245.92.123	198.246.106.49
198.246.207.65	198.246.200.81	198.251.206.242	198.251.114.210