100.2.41.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Verizon Communications Inc.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jan 26 05:16:21 php1 sshd\[3339\]: Invalid user odoo from 100.2.41.85 Jan 26 05:16:21 php1 sshd\[3339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-100-2-41-85.nycmny.fios.verizon.net Jan 26 05:16:23 php1 sshd\[3339\]: Failed password for invalid user odoo from 100.2.41.85 port 58012 ssh2 Jan 26 05:23:47 php1 sshd\[4264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-100-2-41-85.nycmny.fios.verizon.net user=root Jan 26 05:23:49 php1 sshd\[4264\]: Failed password for root from 100.2.41.85 port 51296 ssh2	2020-01-26 23:28:59

Type

Details

Datetime

attackspam

Jan 26 05:16:21 php1 sshd\[3339\]: Invalid user odoo from 100.2.41.85
Jan 26 05:16:21 php1 sshd\[3339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-100-2-41-85.nycmny.fios.verizon.net
Jan 26 05:16:23 php1 sshd\[3339\]: Failed password for invalid user odoo from 100.2.41.85 port 58012 ssh2
Jan 26 05:23:47 php1 sshd\[4264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static-100-2-41-85.nycmny.fios.verizon.net  user=root
Jan 26 05:23:49 php1 sshd\[4264\]: Failed password for root from 100.2.41.85 port 51296 ssh2

2020-01-26 23:28:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 100.2.41.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20686
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;100.2.41.85.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012600 1800 900 604800 86400

;; Query time: 128 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 23:28:54 CST 2020
;; MSG SIZE  rcvd: 115

Host info

85.41.2.100.in-addr.arpa domain name pointer static-100-2-41-85.nycmny.fios.verizon.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.41.2.100.in-addr.arpa	name = static-100-2-41-85.nycmny.fios.verizon.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.0.191.193	attackspam	20/3/3@23:55:55: FAIL: Alarm-Network address from=106.0.191.193 20/3/3@23:55:55: FAIL: Alarm-Network address from=106.0.191.193 ...	2020-03-04 16:59:14
162.243.59.16	attackbotsspam	SSH Brute-Forcing (server2)	2020-03-04 17:00:30
111.229.118.227	attackspam	Mar 4 04:03:11 plusreed sshd[18831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.118.227 user=root Mar 4 04:03:12 plusreed sshd[18831]: Failed password for root from 111.229.118.227 port 46830 ssh2 ...	2020-03-04 17:04:33
192.241.214.158	attackspambots	8081/tcp 465/tcp 34880/tcp... [2020-02-14/03-03]20pkt,15pt.(tcp)	2020-03-04 17:38:32
192.241.225.25	attack	Port 9443 scan denied	2020-03-04 17:42:28
125.165.230.167	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 04-03-2020 04:55:09.	2020-03-04 17:35:16
83.233.111.207	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 17:39:31
201.208.153.47	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 04-03-2020 04:55:10.	2020-03-04 17:33:38
198.46.131.130	attackspam	03/04/2020-01:26:23.306877 198.46.131.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-04 17:10:46
71.6.233.32	attack	Mar 4 05:55:16 debian-2gb-nbg1-2 kernel: \[5556891.811983\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=71.6.233.32 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=TCP SPT=10001 DPT=10001 WINDOW=65535 RES=0x00 SYN URGP=0	2020-03-04 17:26:42
123.20.60.213	attackbots	Brute force attempt	2020-03-04 17:13:50
79.236.253.76	attack	spam	2020-03-04 17:25:08
122.51.89.18	attack	Mar 4 07:30:40 sd-53420 sshd\[29926\]: Invalid user smart from 122.51.89.18 Mar 4 07:30:40 sd-53420 sshd\[29926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.89.18 Mar 4 07:30:42 sd-53420 sshd\[29926\]: Failed password for invalid user smart from 122.51.89.18 port 60466 ssh2 Mar 4 07:32:20 sd-53420 sshd\[30095\]: User root from 122.51.89.18 not allowed because none of user's groups are listed in AllowGroups Mar 4 07:32:20 sd-53420 sshd\[30095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.89.18 user=root ...	2020-03-04 17:01:00
185.175.93.78	attack	Automatic report - Port Scan	2020-03-04 17:34:08
84.205.235.9	attack	spam	2020-03-04 17:06:00

Recently Reported IPs

117.7.76.45	79.141.154.61	175.112.151.20	185.244.234.58
122.54.157.1	41.82.0.199	51.39.204.227	220.88.113.136
113.23.16.235	116.24.64.92	41.105.12.237	103.18.166.42
37.252.68.153	85.209.0.208	59.127.234.96	212.64.60.187
154.165.90.66	123.108.187.142	23.28.114.171	220.93.199.150