222.245.49.242

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Hunan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 222.245.49.242 to port 5555	2020-05-31 21:58:54

Comments on same subnet:

IP	Type	Details	Datetime
222.245.49.251	botsattackproxynormal	log	2020-10-10 16:04:10
222.245.49.251	botsattackproxynormal	log	2020-10-10 16:04:07
222.245.49.251	attack	Automatic report - Port Scan Attack	2020-02-01 16:40:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.245.49.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27853
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.245.49.242.			IN	A

;; AUTHORITY SECTION:
.			389	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020053100 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 31 21:58:46 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 242.49.245.222.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.49.245.222.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
71.41.78.186	attackbots	firewall-block, port(s): 445/tcp	2019-07-14 17:10:28
193.169.39.254	attackbotsspam	Jul 14 04:37:08 MK-Soft-VM3 sshd\[30696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.169.39.254 user=root Jul 14 04:37:10 MK-Soft-VM3 sshd\[30696\]: Failed password for root from 193.169.39.254 port 56776 ssh2 Jul 14 04:42:54 MK-Soft-VM3 sshd\[30927\]: Invalid user ftp from 193.169.39.254 port 56600 Jul 14 04:42:54 MK-Soft-VM3 sshd\[30927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.169.39.254 ...	2019-07-14 17:39:48
106.13.52.247	attackbots	$f2bV_matches	2019-07-14 17:54:17
23.227.199.42	attackspambots	PHISHING SPAM !	2019-07-14 17:54:46
82.117.247.27	attackspambots	Automatic report - Port Scan Attack	2019-07-14 18:06:29
101.25.190.227	attackbotsspam	Unauthorised access (Jul 14) SRC=101.25.190.227 LEN=40 TTL=48 ID=56364 TCP DPT=23 WINDOW=58779 SYN	2019-07-14 17:48:24
218.92.0.193	attackbots	Jul 14 07:42:07 s64-1 sshd[9913]: Failed password for root from 218.92.0.193 port 41194 ssh2 Jul 14 07:42:15 s64-1 sshd[9913]: Failed password for root from 218.92.0.193 port 41194 ssh2 Jul 14 07:42:20 s64-1 sshd[9913]: error: maximum authentication attempts exceeded for root from 218.92.0.193 port 41194 ssh2 [preauth] ...	2019-07-14 17:31:50
24.7.159.76	attack	Jul 14 05:42:03 vps200512 sshd\[13795\]: Invalid user chris from 24.7.159.76 Jul 14 05:42:03 vps200512 sshd\[13795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.7.159.76 Jul 14 05:42:05 vps200512 sshd\[13795\]: Failed password for invalid user chris from 24.7.159.76 port 48534 ssh2 Jul 14 05:47:09 vps200512 sshd\[13857\]: Invalid user courier from 24.7.159.76 Jul 14 05:47:09 vps200512 sshd\[13857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.7.159.76	2019-07-14 18:08:07
139.199.159.77	attackspambots	Jul 14 05:27:56 debian sshd\[2108\]: Invalid user hp from 139.199.159.77 port 38706 Jul 14 05:27:56 debian sshd\[2108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.159.77 Jul 14 05:27:58 debian sshd\[2108\]: Failed password for invalid user hp from 139.199.159.77 port 38706 ssh2 ...	2019-07-14 17:34:44
210.21.200.162	attackbots	Jul 14 10:54:19 rpi sshd[20759]: Failed password for root from 210.21.200.162 port 1162 ssh2	2019-07-14 17:18:06
114.207.154.2	attackspambots	ports scanning	2019-07-14 17:19:50
116.48.37.91	attackspam	Honeypot attack, port: 5555, PTR: n1164837091.netvigator.com.	2019-07-14 18:03:21
103.77.126.133	attackbotsspam	2019-07-14T16:43:25.246996enmeeting.mahidol.ac.th sshd\[29097\]: Invalid user user from 103.77.126.133 port 42778 2019-07-14T16:43:25.264513enmeeting.mahidol.ac.th sshd\[29097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.77.126.133 2019-07-14T16:43:27.353193enmeeting.mahidol.ac.th sshd\[29097\]: Failed password for invalid user user from 103.77.126.133 port 42778 ssh2 ...	2019-07-14 17:57:45
103.237.145.177	attackspambots	Automatic report - Banned IP Access	2019-07-14 17:37:31
51.255.174.164	attackbots	Jul 14 08:13:20 srv206 sshd[17383]: Invalid user cunningham from 51.255.174.164 Jul 14 08:13:20 srv206 sshd[17383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.ip-51-255-174.eu Jul 14 08:13:20 srv206 sshd[17383]: Invalid user cunningham from 51.255.174.164 Jul 14 08:13:22 srv206 sshd[17383]: Failed password for invalid user cunningham from 51.255.174.164 port 44142 ssh2 ...	2019-07-14 17:33:42

Recently Reported IPs

187.136.196.35	186.48.95.22	172.230.221.54	180.192.215.146
186.16.32.146	183.15.179.36	182.142.101.191	181.231.188.227
171.110.88.7	171.95.86.91	125.146.12.177	170.80.104.43
227.182.199.95	156.202.38.224	141.98.80.153	233.181.252.248
124.93.51.13	122.128.215.94	11.138.66.194	65.123.229.28