167.94.138.104

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37345
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.104.			IN	A

;; AUTHORITY SECTION:
.			197	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:40:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

104.138.94.167.in-addr.arpa domain name pointer scanner-02.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.138.94.167.in-addr.arpa	name = scanner-02.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.170.197.89	attack	Sep 3 09:11:47 friendsofhawaii sshd\[30863\]: Invalid user utilisateur from 217.170.197.89 Sep 3 09:11:47 friendsofhawaii sshd\[30863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=nortor3.nortor.no Sep 3 09:11:49 friendsofhawaii sshd\[30863\]: Failed password for invalid user utilisateur from 217.170.197.89 port 44755 ssh2 Sep 3 09:11:52 friendsofhawaii sshd\[30863\]: Failed password for invalid user utilisateur from 217.170.197.89 port 44755 ssh2 Sep 3 09:11:54 friendsofhawaii sshd\[30863\]: Failed password for invalid user utilisateur from 217.170.197.89 port 44755 ssh2	2019-09-04 03:14:01
187.58.227.48	attackspambots	Aug 19 01:39:38 Server10 sshd[6687]: Invalid user qhsupport from 187.58.227.48 port 59834 Aug 19 01:39:38 Server10 sshd[6687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.227.48 Aug 19 01:39:40 Server10 sshd[6687]: Failed password for invalid user qhsupport from 187.58.227.48 port 59834 ssh2	2019-09-04 02:57:23
34.67.85.179	attackbots	Sep 3 18:51:27 ip-172-31-1-72 sshd\[24159\]: Invalid user joey from 34.67.85.179 Sep 3 18:51:27 ip-172-31-1-72 sshd\[24159\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.67.85.179 Sep 3 18:51:29 ip-172-31-1-72 sshd\[24159\]: Failed password for invalid user joey from 34.67.85.179 port 44480 ssh2 Sep 3 18:55:10 ip-172-31-1-72 sshd\[24232\]: Invalid user alfredo from 34.67.85.179 Sep 3 18:55:10 ip-172-31-1-72 sshd\[24232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.67.85.179	2019-09-04 03:18:20
185.246.128.26	attackspam	Sep 3 20:40:36 herz-der-gamer sshd[11195]: Invalid user 0 from 185.246.128.26 port 17478 ...	2019-09-04 03:21:24
85.214.64.12	attack	Sep 3 20:34:34 mail sshd[393]: Invalid user tester from 85.214.64.12 Sep 3 20:34:34 mail sshd[393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.214.64.12 Sep 3 20:34:34 mail sshd[393]: Invalid user tester from 85.214.64.12 Sep 3 20:34:37 mail sshd[393]: Failed password for invalid user tester from 85.214.64.12 port 40328 ssh2 Sep 3 20:41:09 mail sshd[1375]: Invalid user django from 85.214.64.12 ...	2019-09-04 02:53:46
54.38.241.171	attack	Sep 3 14:53:36 vps200512 sshd\[1431\]: Invalid user quin from 54.38.241.171 Sep 3 14:53:36 vps200512 sshd\[1431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.241.171 Sep 3 14:53:37 vps200512 sshd\[1431\]: Failed password for invalid user quin from 54.38.241.171 port 37528 ssh2 Sep 3 14:57:53 vps200512 sshd\[1526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.241.171 user=root Sep 3 14:57:55 vps200512 sshd\[1526\]: Failed password for root from 54.38.241.171 port 54950 ssh2	2019-09-04 03:09:07
222.186.30.111	attackbots	Sep 3 15:09:57 plusreed sshd[4328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.111 user=root Sep 3 15:10:00 plusreed sshd[4328]: Failed password for root from 222.186.30.111 port 27262 ssh2 ...	2019-09-04 03:12:11
211.220.27.191	attackspam	"Fail2Ban detected SSH brute force attempt"	2019-09-04 02:35:51
222.186.42.241	attackbots	Sep 3 15:13:44 plusreed sshd[5353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.241 user=root Sep 3 15:13:46 plusreed sshd[5353]: Failed password for root from 222.186.42.241 port 51212 ssh2 ...	2019-09-04 03:17:08
94.176.76.230	attack	(Sep 3) LEN=40 TTL=245 ID=56969 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=31074 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=4484 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=25598 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=28192 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=59969 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=32876 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=34036 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=54117 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=49738 DF TCP DPT=23 WINDOW=14600 SYN (Sep 3) LEN=40 TTL=245 ID=43738 DF TCP DPT=23 WINDOW=14600 SYN (Sep 2) LEN=40 TTL=245 ID=42029 DF TCP DPT=23 WINDOW=14600 SYN (Sep 2) LEN=40 TTL=245 ID=48653 DF TCP DPT=23 WINDOW=14600 SYN (Sep 2) LEN=40 TTL=245 ID=13177 DF TCP DPT=23 WINDOW=14600 SYN (Sep 2) LEN=40 TTL=245 ID=32055 DF TCP DPT=23 WINDOW=14600 S...	2019-09-04 03:12:36
125.64.94.212	attackspambots	" "	2019-09-04 02:50:41
138.68.212.210	attackbotsspam	Honeypot hit, critical abuseConfidenceScore, incoming Traffic from this IP	2019-09-04 02:34:53
80.211.171.195	attackspambots	Sep 3 14:58:54 plusreed sshd[1118]: Invalid user 123456 from 80.211.171.195 ...	2019-09-04 03:10:26
115.209.193.182	attackbotsspam	Sep 3 03:38:44 lcprod sshd\[2599\]: Invalid user usuario from 115.209.193.182 Sep 3 03:38:44 lcprod sshd\[2599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.209.193.182 Sep 3 03:38:46 lcprod sshd\[2599\]: Failed password for invalid user usuario from 115.209.193.182 port 39523 ssh2 Sep 3 03:38:53 lcprod sshd\[2599\]: Failed password for invalid user usuario from 115.209.193.182 port 39523 ssh2 Sep 3 03:38:56 lcprod sshd\[2599\]: Failed password for invalid user usuario from 115.209.193.182 port 39523 ssh2	2019-09-04 02:38:59
5.3.6.82	attack	2019-09-03T19:47:13.691847 sshd[27886]: Invalid user toto from 5.3.6.82 port 43918 2019-09-03T19:47:13.706500 sshd[27886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.3.6.82 2019-09-03T19:47:13.691847 sshd[27886]: Invalid user toto from 5.3.6.82 port 43918 2019-09-03T19:47:15.807905 sshd[27886]: Failed password for invalid user toto from 5.3.6.82 port 43918 ssh2 2019-09-03T19:51:27.652551 sshd[27947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.3.6.82 user=root 2019-09-03T19:51:29.624132 sshd[27947]: Failed password for root from 5.3.6.82 port 41538 ssh2 ...	2019-09-04 02:34:09

Recently Reported IPs

49.205.233.132	172.70.142.234	2.56.59.35	177.23.118.48
59.33.213.13	146.251.133.220	116.8.61.26	42.116.167.202
59.97.141.4	79.105.96.118	223.149.163.135	151.106.168.1
40.107.223.53	178.164.202.192	139.0.4.34	213.204.76.88
154.160.24.9	113.161.77.11	101.43.138.242	49.228.225.108