208.113.200.55

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): New Dream Network LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	$f2bV_matches	2020-02-27 03:48:28
attackbotsspam	Jan 12 20:44:49 vzhost sshd[13540]: Invalid user zdp from 208.113.200.55 Jan 12 20:44:49 vzhost sshd[13540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-208-113-200-55.dreamhost.com Jan 12 20:44:51 vzhost sshd[13540]: Failed password for invalid user zdp from 208.113.200.55 port 48556 ssh2 Jan 12 20:52:28 vzhost sshd[14916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-208-113-200-55.dreamhost.com user=r.r Jan 12 20:52:30 vzhost sshd[14916]: Failed password for r.r from 208.113.200.55 port 47898 ssh2 Jan 12 20:55:18 vzhost sshd[15333]: Invalid user localhost from 208.113.200.55 Jan 12 20:55:18 vzhost sshd[15333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-208-113-200-55.dreamhost.com Jan 12 20:55:20 vzhost sshd[15333]: Failed password for invalid user localhost from 208.113.200.55 port 50768 ssh2 Jan 12 20:58:02 vzhost sshd[1575........ -------------------------------	2020-01-13 08:07:12

类型

评论内容

时间

attackspambots

$f2bV_matches

2020-02-27 03:48:28

attackbotsspam

Jan 12 20:44:49 vzhost sshd[13540]: Invalid user zdp from 208.113.200.55
Jan 12 20:44:49 vzhost sshd[13540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-208-113-200-55.dreamhost.com 
Jan 12 20:44:51 vzhost sshd[13540]: Failed password for invalid user zdp from 208.113.200.55 port 48556 ssh2
Jan 12 20:52:28 vzhost sshd[14916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-208-113-200-55.dreamhost.com  user=r.r
Jan 12 20:52:30 vzhost sshd[14916]: Failed password for r.r from 208.113.200.55 port 47898 ssh2
Jan 12 20:55:18 vzhost sshd[15333]: Invalid user localhost from 208.113.200.55
Jan 12 20:55:18 vzhost sshd[15333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-208-113-200-55.dreamhost.com 
Jan 12 20:55:20 vzhost sshd[15333]: Failed password for invalid user localhost from 208.113.200.55 port 50768 ssh2
Jan 12 20:58:02 vzhost sshd[1575........
-------------------------------

2020-01-13 08:07:12

相同子网IP讨论:

IP	类型	评论内容	时间
208.113.200.5	attackbotsspam	Blocked until: 2020.07.21 16:35:55 TCPMSS DPT=22 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=54321 PROTO=TCP WINDOW=65535 RES=0x00 SYN URGP=0	2020-06-03 02:44:02
208.113.200.123	attackspambots	srv02 SSH BruteForce Attacks 22 ..	2020-04-30 23:02:55
208.113.200.123	attack	2020-04-29T20:32:47.781304vpc sshd[22663]: Disconnected from 208.113.200.123 port 47580 [preauth] 2020-04-29T20:32:47.927942vpc sshd[22665]: Invalid user admin from 208.113.200.123 port 48578 2020-04-29T20:32:47.949161vpc sshd[22665]: Disconnected from 208.113.200.123 port 48578 [preauth] 2020-04-29T20:32:48.177947vpc sshd[22667]: Invalid user admin from 208.113.200.123 port 49344 2020-04-29T20:32:48.197607vpc sshd[22667]: Disconnected from 208.113.200.123 port 49344 [preauth] ...	2020-04-30 07:30:34
208.113.200.123	attackspambots	22/tcp [2020-04-29]1pkt	2020-04-29 14:58:37
208.113.200.80	attack	21 attempts against mh-ssh on cloud	2020-03-31 12:12:40
208.113.200.5	attack	Nov 24 15:50:06 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\<1PwnwxiY6dvQccgF\> Nov 24 15:50:12 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\ Nov 24 15:50:22 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\<1BqowxiYqd/QccgF\> Nov 24 15:50:24 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=176.9.177.164, session=\ Nov 24 15:50:32 relay dovecot: pop3-login: Aborted login \(auth failed, 1 attempts in 10 secs\): user=\, method=PLAIN, rip=208.113.200.5, lip=1 ...	2019-11-25 02:33:11
208.113.200.127	attackspambots	208.113.200.127 has been banned for [spam] ...	2019-11-23 03:57:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 208.113.200.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 368
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;208.113.200.55.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011201 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 13 08:07:09 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

55.200.113.208.in-addr.arpa domain name pointer ip-208-113-200-55.dreamhost.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.200.113.208.in-addr.arpa	name = ip-208-113-200-55.dreamhost.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.219.112.31	attackspam	Port scan: Attack repeated for 24 hours	2020-09-20 07:05:34
167.114.98.96	attackbots	Invalid user test from 167.114.98.96 port 50476	2020-09-20 07:10:07
202.103.202.80	attackspam	Icarus honeypot on github	2020-09-20 07:02:18
118.70.129.102	attack	Unauthorized connection attempt from IP address 118.70.129.102 on Port 445(SMB)	2020-09-20 06:51:05
223.17.86.235	attack	Sep 19 19:00:58 sip sshd[17219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.17.86.235 Sep 19 19:00:59 sip sshd[17221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.17.86.235 Sep 19 19:01:01 sip sshd[17219]: Failed password for invalid user netman from 223.17.86.235 port 41258 ssh2	2020-09-20 06:55:46
112.118.10.155	attackspambots	Brute-force attempt banned	2020-09-20 07:02:58
85.116.124.27	attackbotsspam	Unauthorized connection attempt from IP address 85.116.124.27 on Port 445(SMB)	2020-09-20 06:43:52
124.244.82.52	attack	Brute-force attempt banned	2020-09-20 07:00:14
5.88.132.235	attackbotsspam	Invalid user hadoop from 5.88.132.235 port 24860	2020-09-20 07:09:15
23.106.159.187	attackbotsspam	2020-09-19T23:22:40.894810centos sshd[30284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.106.159.187 2020-09-19T23:22:40.888825centos sshd[30284]: Invalid user toor from 23.106.159.187 port 51938 2020-09-19T23:22:42.855503centos sshd[30284]: Failed password for invalid user toor from 23.106.159.187 port 51938 ssh2 ...	2020-09-20 07:19:58
222.186.175.182	attackspam	Sep 20 00:50:32 PorscheCustomer sshd[9084]: Failed password for root from 222.186.175.182 port 59286 ssh2 Sep 20 00:50:41 PorscheCustomer sshd[9084]: Failed password for root from 222.186.175.182 port 59286 ssh2 Sep 20 00:50:45 PorscheCustomer sshd[9084]: Failed password for root from 222.186.175.182 port 59286 ssh2 Sep 20 00:50:45 PorscheCustomer sshd[9084]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 59286 ssh2 [preauth] ...	2020-09-20 06:56:18
95.10.36.27	attackbotsspam	Automatic report - Port Scan Attack	2020-09-20 07:11:11
51.255.173.70	attackbots	SSH Invalid Login	2020-09-20 06:45:12
74.120.14.30	attack	ET DROP Dshield Block Listed Source group 1 - port: 1883 proto: tcp cat: Misc Attackbytes: 60	2020-09-20 07:14:47
5.166.211.12	attack	Sep 19 11:01:08 sip sshd[18967]: Failed password for root from 5.166.211.12 port 53476 ssh2 Sep 19 11:01:09 sip sshd[18969]: Failed password for root from 5.166.211.12 port 54502 ssh2	2020-09-20 07:01:55

最近上报的IP列表

81.43.25.85	163.172.185.190	101.51.13.87	118.24.76.176
103.110.90.218	95.220.199.110	123.113.191.117	18.6.234.98
77.43.245.71	211.105.187.219	91.185.193.58	128.199.156.55
123.253.8.66	202.5.156.200	59.36.168.35	142.93.40.250
216.126.239.124	188.131.254.158	35.247.126.13	87.184.156.37