必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Ludwig-Maximilians-Universitaet Muenchen

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:
类型 评论内容 时间
attackspam
From CCTV User Interface Log
...::ffff:138.246.253.5 - - [20/Mar/2020:09:06:43 +0000] "-" 400 179
...
2020-03-21 04:04:27
attack
138.246.253.5 - - [23/Feb/2020:12:13:07 -0500] "HEAD / HTTP/1.1" 500 - "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.85 Safari/537.36"
2020-02-24 05:41:47
attackspambots
The IP has triggered Cloudflare WAF. CF-Ray: 54172b9bff56c29f | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: DE | CF_IPClass: unknown | Protocol: HTTP/1.1 | Method: HEAD | Host: d.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.85 Safari/537.36 | CF_DC: FRA. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2019-12-08 03:48:13
attackspam
Open Proxy "PROMETHEUS" Node.
2019-11-04 18:34:33
attack
UTC: 2019-10-21 port: 443/tcp
2019-10-22 13:54:40
attack
firewall-block_invalid_GET_Request
2019-08-07 10:37:17
attack
scans system
2019-07-19 20:01:02
attack
firewall-block_invalid_GET_Request
2019-06-27 08:30:19
相同子网IP讨论:
IP 类型 评论内容 时间
138.246.253.15 attackspam
8 web app probes over 24 hour period.
2020-09-25 10:34:17
138.246.253.15 attackbots
CF RAY ID: 5ccfd7a5f8c6eda7 IP Class: unknown URI: /
2020-09-04 04:21:27
138.246.253.15 attack
Unauthorized connection attempt detected from IP address 138.246.253.15 to port 443 [T]
2020-09-03 20:03:51
138.246.253.7 attackbotsspam
 TCP (SYN) 138.246.253.7:49295 -> port 53, len 40
2020-08-13 01:56:06
138.246.253.15 attackbotsspam
CF RAY ID: 5be922ac2e11d44f IP Class: unknown URI: /
2020-08-06 23:50:03
138.246.253.15 attackspambots
Unauthorized connection attempt detected from IP address 138.246.253.15 to port 443
2020-06-24 00:44:02
138.246.253.15 attackspambots
138.246.253.15 - - [14/Apr/2020:15:20:12 +0200] "HEAD / HTTP/1.1" 400 3592 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.85 Safari/537.36"
2020-04-14 23:19:21
138.246.253.21 attackspambots
Port scan on 1 port(s): 53
2020-04-08 05:41:02
138.246.253.21 attack
Port scan on 1 port(s): 53
2020-03-31 23:58:37
138.246.253.15 attackbotsspam
port scan and connect, tcp 443 (https)
2020-03-05 15:32:29
138.246.253.10 attackspambots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-19 22:38:30
138.246.253.21 attack
Port scan on 1 port(s): 53
2020-02-13 23:20:48
138.246.253.21 attack
Port scan on 1 port(s): 53
2020-01-20 15:52:05
138.246.253.21 attack
*Port Scan* detected from 138.246.253.21 (DE/Germany/planetlab21.net.in.tum.de). 5 hits in the last 270 seconds
2019-10-16 05:00:35
138.246.253.21 attackbotsspam
Port scan on 1 port(s): 53
2019-09-07 16:08:43
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.246.253.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28729
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.246.253.5.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed May 22 13:46:29 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:
5.253.246.138.in-addr.arpa domain name pointer planetlab5.net.in.tum.de.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
5.253.246.138.in-addr.arpa	name = planetlab5.net.in.tum.de.

Authoritative answers can be found from:

相关IP信息:
最新评论:
IP 类型 评论内容 时间
45.227.255.204 attack
 TCP (SYN) 45.227.255.204:31724 -> port 1080, len 60
2020-06-06 09:18:33
59.53.144.58 attack
failed_logins
2020-06-06 09:36:01
45.55.38.39 attack
 TCP (SYN) 45.55.38.39:52533 -> port 26927, len 44
2020-06-06 09:20:30
54.38.185.131 attackbots
Jun  6 03:25:20 ns382633 sshd\[16452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.131  user=root
Jun  6 03:25:23 ns382633 sshd\[16452\]: Failed password for root from 54.38.185.131 port 33624 ssh2
Jun  6 03:33:31 ns382633 sshd\[17561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.131  user=root
Jun  6 03:33:33 ns382633 sshd\[17561\]: Failed password for root from 54.38.185.131 port 48566 ssh2
Jun  6 03:35:40 ns382633 sshd\[18164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.131  user=root
2020-06-06 09:44:04
220.133.44.165 attack
Honeypot attack, port: 81, PTR: 220-133-44-165.HINET-IP.hinet.net.
2020-06-06 09:23:26
119.45.0.9 attackspambots
2020-06-06T01:13:38.601529abusebot.cloudsearch.cf sshd[27282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.0.9  user=root
2020-06-06T01:13:40.211310abusebot.cloudsearch.cf sshd[27282]: Failed password for root from 119.45.0.9 port 33180 ssh2
2020-06-06T01:16:07.183696abusebot.cloudsearch.cf sshd[27442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.0.9  user=root
2020-06-06T01:16:09.250012abusebot.cloudsearch.cf sshd[27442]: Failed password for root from 119.45.0.9 port 53350 ssh2
2020-06-06T01:16:57.712784abusebot.cloudsearch.cf sshd[27502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.0.9  user=root
2020-06-06T01:16:59.643587abusebot.cloudsearch.cf sshd[27502]: Failed password for root from 119.45.0.9 port 33600 ssh2
2020-06-06T01:17:50.976800abusebot.cloudsearch.cf sshd[27565]: pam_unix(sshd:auth): authentication failure; logname= uid=
...
2020-06-06 09:50:54
144.76.14.153 attack
20 attempts against mh-misbehave-ban on wood
2020-06-06 09:46:00
165.56.182.108 attack
Automatic report - XMLRPC Attack
2020-06-06 09:22:42
144.217.19.8 attackbotsspam
*Port Scan* detected from 144.217.19.8 (PE/Peru/Callao/Callao/ip8.ip-144-217-19.net). 4 hits in the last 270 seconds
2020-06-06 09:50:24
175.124.43.162 attack
Jun  6 01:25:52 ns382633 sshd\[27723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162  user=root
Jun  6 01:25:54 ns382633 sshd\[27723\]: Failed password for root from 175.124.43.162 port 52036 ssh2
Jun  6 01:42:35 ns382633 sshd\[30477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162  user=root
Jun  6 01:42:37 ns382633 sshd\[30477\]: Failed password for root from 175.124.43.162 port 48878 ssh2
Jun  6 01:46:17 ns382633 sshd\[31268\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.162  user=root
2020-06-06 09:30:14
201.182.212.115 attackspam
Brute forcing RDP port 3389
2020-06-06 09:49:10
79.124.62.82 attackspambots
slow and persistent scanner
2020-06-06 09:12:35
92.53.65.40 attackbots
06/05/2020-18:49:57.178707 92.53.65.40 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-06-06 09:07:56
117.50.109.24 attackspambots
Scanned 3 times in the last 24 hours on port 22
2020-06-06 09:27:40
92.62.131.106 attackspam
2020-06-01T08:03:49.399248static.108.197.76.144.clients.your-server.de sshd[4757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.62.131.106  user=r.r
2020-06-01T08:03:51.160080static.108.197.76.144.clients.your-server.de sshd[4757]: Failed password for r.r from 92.62.131.106 port 54244 ssh2
2020-06-01T08:07:46.311149static.108.197.76.144.clients.your-server.de sshd[5255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.62.131.106  user=r.r
2020-06-01T08:07:48.272993static.108.197.76.144.clients.your-server.de sshd[5255]: Failed password for r.r from 92.62.131.106 port 60020 ssh2
2020-06-01T08:11:42.003673static.108.197.76.144.clients.your-server.de sshd[5762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.62.131.106  user=r.r

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=92.62.131.106
2020-06-06 09:34:32

最近上报的IP列表

40.85.62.218 195.158.22.4 68.146.197.220 55.64.24.114
244.215.219.226 180.243.240.38 77.182.209.116 186.120.97.26
94.227.225.64 35.107.228.216 235.41.1.196 176.8.212.182
160.44.108.35 230.149.232.36 188.161.79.156 193.32.163.97
220.130.134.190 202.175.187.74 197.248.30.25 195.158.31.181