85.30.241.55 - IPInfo

Basic Info

City: Moscow

Region: Moscow

Country: Russia

Internet Service Provider: Rostelecom

Hostname: unknown

Organization: Rostelecom

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.30.241.124	attack	Unauthorized connection attempt from IP address 85.30.241.124 on Port 445(SMB)	2020-01-22 06:08:57
85.30.241.124	attackspam	Unauthorized connection attempt detected from IP address 85.30.241.124 to port 445	2020-01-02 04:44:58

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.30.241.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13854
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.30.241.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 06 07:41:40 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 55.241.30.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 55.241.30.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.61.132	attackspambots	Jul 12 15:54:26 lnxded63 sshd[32148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.61.132 Jul 12 15:54:26 lnxded63 sshd[32148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.61.132	2020-07-13 00:22:18
119.184.114.147	attackspam	Jul 12 14:33:57 [host] kernel: [224732.570885] [UF Jul 12 14:33:57 [host] kernel: [224732.570928] [UF Jul 12 14:33:57 [host] kernel: [224732.571032] [UF Jul 12 14:33:57 [host] kernel: [224732.571155] [UF Jul 12 14:33:57 [host] kernel: [224732.571187] [UF Jul 12 14:33:57 [host] kernel: [224732.571260] [UF Jul 12 14:33:57 [host] kernel: [224732.571559] [UF Jul 12 14:33:57 [host] kernel: [224732.571565] [UF Jul 12 14:33:57 [host] kernel: [224732.571769] [UF Jul 12 14:33:57 [host] kernel: [224732.571772] [UF	2020-07-13 00:56:37
138.197.25.187	attackbots	Jul 12 10:22:08 NPSTNNYC01T sshd[2624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.25.187 Jul 12 10:22:10 NPSTNNYC01T sshd[2624]: Failed password for invalid user liguanjin from 138.197.25.187 port 53400 ssh2 Jul 12 10:25:17 NPSTNNYC01T sshd[2849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.25.187 ...	2020-07-13 00:44:44
1.36.166.126	attackspambots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-13 00:20:45
118.24.114.88	attack	Jul 12 13:51:37 buvik sshd[11505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.88 Jul 12 13:51:39 buvik sshd[11505]: Failed password for invalid user caleigh from 118.24.114.88 port 37654 ssh2 Jul 12 13:56:18 buvik sshd[12214]: Invalid user alias from 118.24.114.88 ...	2020-07-13 00:31:08
185.143.72.16	attack	2020-07-12 18:25:50 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data 2020-07-12 18:30:56 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) 2020-07-12 18:31:13 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) 2020-07-12 18:31:17 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) 2020-07-12 18:31:32 dovecot_login authenticator failed for \(User\) \[185.143.72.16\]: 535 Incorrect authentication data \(set_id=hawaii50@hosting1.no-server.de\) ...	2020-07-13 00:44:20
154.126.32.58	attackbotsspam	Jul 12 12:50:47 firewall sshd[13561]: Invalid user mhallman from 154.126.32.58 Jul 12 12:50:49 firewall sshd[13561]: Failed password for invalid user mhallman from 154.126.32.58 port 38966 ssh2 Jul 12 12:53:45 firewall sshd[13618]: Invalid user test from 154.126.32.58 ...	2020-07-13 00:27:03
46.38.145.247	attackspambots	2020-07-12 16:29:31 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=mue@csmailer.org) 2020-07-12 16:30:36 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=niceguy@csmailer.org) 2020-07-12 16:31:36 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=mikhaela@csmailer.org) 2020-07-12 16:32:46 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=MSBuild@csmailer.org) 2020-07-12 16:33:50 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=mromer@csmailer.org) ...	2020-07-13 00:32:33
103.141.46.154	attackspam	(sshd) Failed SSH login from 103.141.46.154 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 12 16:26:40 srv sshd[5749]: Invalid user warrior from 103.141.46.154 port 54618 Jul 12 16:26:42 srv sshd[5749]: Failed password for invalid user warrior from 103.141.46.154 port 54618 ssh2 Jul 12 16:35:47 srv sshd[5908]: Invalid user vw from 103.141.46.154 port 41760 Jul 12 16:35:49 srv sshd[5908]: Failed password for invalid user vw from 103.141.46.154 port 41760 ssh2 Jul 12 16:38:10 srv sshd[5984]: Invalid user yhkang from 103.141.46.154 port 59722	2020-07-13 00:47:51
42.118.242.189	attack	Jul 12 14:51:41 jane sshd[31678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.118.242.189 Jul 12 14:51:42 jane sshd[31678]: Failed password for invalid user tianhj from 42.118.242.189 port 52834 ssh2 ...	2020-07-13 00:23:40
157.119.248.35	attackbotsspam	web-1 [ssh] SSH Attack	2020-07-13 00:41:20
1.54.133.10	attackbotsspam	Jul 12 18:25:49 haigwepa sshd[7292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.54.133.10 Jul 12 18:25:51 haigwepa sshd[7292]: Failed password for invalid user info from 1.54.133.10 port 54572 ssh2 ...	2020-07-13 00:34:06
49.234.131.75	attack	Jul 12 07:22:19 server1 sshd\[14906\]: Failed password for invalid user gam from 49.234.131.75 port 35278 ssh2 Jul 12 07:24:53 server1 sshd\[15818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 user=mail Jul 12 07:24:54 server1 sshd\[15818\]: Failed password for mail from 49.234.131.75 port 33808 ssh2 Jul 12 07:27:16 server1 sshd\[16567\]: Invalid user anvisma from 49.234.131.75 Jul 12 07:27:16 server1 sshd\[16567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.131.75 ...	2020-07-13 01:01:02
106.12.47.108	attack	Jul 13 02:15:14 NG-HHDC-SVS-001 sshd[5064]: Invalid user es_user from 106.12.47.108 ...	2020-07-13 00:40:04
112.161.78.70	attackbots	Fail2Ban	2020-07-13 00:39:36

Recently Reported IPs

59.36.75.227	154.8.147.203	124.192.224.230	123.30.237.63
89.179.243.180	83.233.69.7	85.105.194.228	68.183.224.247
51.77.74.174	129.28.20.143	27.150.169.223	125.47.157.100
193.106.30.154	185.143.221.198	197.33.134.23	210.242.244.114
158.69.14.155	111.231.75.83	106.12.199.132	185.149.233.117