85.30.241.55 - IPInfo

Basic Info

City: Moscow

Region: Moscow

Country: Russia

Internet Service Provider: Rostelecom

Hostname: unknown

Organization: Rostelecom

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.30.241.124	attack	Unauthorized connection attempt from IP address 85.30.241.124 on Port 445(SMB)	2020-01-22 06:08:57
85.30.241.124	attackspam	Unauthorized connection attempt detected from IP address 85.30.241.124 to port 445	2020-01-02 04:44:58

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.30.241.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13854
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.30.241.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 07:41:40 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 55.241.30.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 55.241.30.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.174	attackbotsspam	Dec 15 08:57:27 dedicated sshd[26185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Dec 15 08:57:29 dedicated sshd[26185]: Failed password for root from 112.85.42.174 port 30530 ssh2	2019-12-15 16:09:37
157.230.133.15	attackbots	Invalid user caspar from 157.230.133.15 port 59940 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.133.15 Failed password for invalid user caspar from 157.230.133.15 port 59940 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.133.15 user=mail Failed password for mail from 157.230.133.15 port 40128 ssh2	2019-12-15 16:16:44
5.135.152.97	attackspambots	(sshd) Failed SSH login from 5.135.152.97 (ns3010600.ip-5-135-152.eu): 5 in the last 3600 secs	2019-12-15 16:03:29
104.131.96.177	attack	Dec 15 13:21:54 areeb-Workstation sshd[30161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.96.177 Dec 15 13:21:56 areeb-Workstation sshd[30161]: Failed password for invalid user lichi from 104.131.96.177 port 49810 ssh2 ...	2019-12-15 16:03:10
51.158.120.115	attackbotsspam	--- report --- Dec 15 04:01:39 sshd: Connection from 51.158.120.115 port 36576 Dec 15 04:01:40 sshd: Invalid user web from 51.158.120.115 Dec 15 04:01:40 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.120.115 Dec 15 04:01:40 sshd: reverse mapping checking getaddrinfo for 115-120-158-51.rev.cloud.scaleway.com [51.158.120.115] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 15 04:01:42 sshd: Failed password for invalid user web from 51.158.120.115 port 36576 ssh2 Dec 15 04:01:42 sshd: Received disconnect from 51.158.120.115: 11: Bye Bye [preauth]	2019-12-15 16:25:19
13.80.112.16	attackbots	Dec 15 08:46:13 OPSO sshd\[1784\]: Invalid user pugliese from 13.80.112.16 port 48392 Dec 15 08:46:13 OPSO sshd\[1784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.80.112.16 Dec 15 08:46:15 OPSO sshd\[1784\]: Failed password for invalid user pugliese from 13.80.112.16 port 48392 ssh2 Dec 15 08:52:00 OPSO sshd\[3164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.80.112.16 user=root Dec 15 08:52:02 OPSO sshd\[3164\]: Failed password for root from 13.80.112.16 port 58368 ssh2	2019-12-15 15:57:22
51.83.2.148	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-15 16:08:22
51.79.70.223	attack	Invalid user nkgw from 51.79.70.223 port 43288 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.70.223 Failed password for invalid user nkgw from 51.79.70.223 port 43288 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.70.223 user=root Failed password for root from 51.79.70.223 port 49452 ssh2	2019-12-15 16:08:59
219.141.190.195	attackbots	Dec 15 07:45:49 sso sshd[17058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.141.190.195 Dec 15 07:45:52 sso sshd[17058]: Failed password for invalid user anna from 219.141.190.195 port 2683 ssh2 ...	2019-12-15 16:00:41
5.39.74.233	attackbots	5.39.74.233 - - [15/Dec/2019:07:38:32 +0000] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.39.74.233 - - [15/Dec/2019:07:38:33 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-15 16:22:37
89.46.196.10	attackspambots	$f2bV_matches	2019-12-15 16:18:10
123.207.108.51	attackspam	Dec 15 07:29:02 jane sshd[22498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.108.51 Dec 15 07:29:03 jane sshd[22498]: Failed password for invalid user simins from 123.207.108.51 port 43080 ssh2 ...	2019-12-15 16:21:12
194.99.104.30	attackbots	webserver:443 [15/Dec/2019] "GET /admin/ HTTP/1.1" 404 3909 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-15 16:23:32
81.28.100.94	attackbotsspam	2019-12-15T07:29:10.267610stark.klein-stark.info postfix/smtpd\[18235\]: NOQUEUE: reject: RCPT from jewel.shrewdmhealth.com\[81.28.100.94\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-15 16:04:04
85.95.191.56	attackspam	Dec 15 15:24:09 webhost01 sshd[24206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.95.191.56 Dec 15 15:24:11 webhost01 sshd[24206]: Failed password for invalid user yvonna from 85.95.191.56 port 33460 ssh2 ...	2019-12-15 16:34:36

Recently Reported IPs

59.36.75.227	154.8.147.203	124.192.224.230	123.30.237.63
89.179.243.180	83.233.69.7	85.105.194.228	68.183.224.247
51.77.74.174	129.28.20.143	27.150.169.223	125.47.157.100
193.106.30.154	185.143.221.198	197.33.134.23	210.242.244.114
158.69.14.155	111.231.75.83	106.12.199.132	185.149.233.117