167.94.138.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37821
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.13.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 03:58:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

13.138.94.167.in-addr.arpa domain name pointer scanner-17.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.138.94.167.in-addr.arpa	name = scanner-17.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.156.105.251	attack	(sshd) Failed SSH login from 124.156.105.251 (HK/Hong Kong/-): 5 in the last 3600 secs	2020-06-10 01:43:13
106.54.233.175	attack	Jun 9 13:06:21 jumpserver sshd[2301]: Failed password for invalid user lbrown from 106.54.233.175 port 39704 ssh2 Jun 9 13:11:12 jumpserver sshd[2366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.233.175 user=root Jun 9 13:11:15 jumpserver sshd[2366]: Failed password for root from 106.54.233.175 port 37358 ssh2 ...	2020-06-10 01:45:52
178.62.104.58	attack	Jun 9 16:27:27 abendstille sshd\[29486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.104.58 user=root Jun 9 16:27:29 abendstille sshd\[29486\]: Failed password for root from 178.62.104.58 port 36404 ssh2 Jun 9 16:30:41 abendstille sshd\[32622\]: Invalid user deploy from 178.62.104.58 Jun 9 16:30:41 abendstille sshd\[32622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.104.58 Jun 9 16:30:43 abendstille sshd\[32622\]: Failed password for invalid user deploy from 178.62.104.58 port 60914 ssh2 ...	2020-06-10 01:44:10
89.248.160.150	attack	Jun 9 19:30:51 debian-2gb-nbg1-2 kernel: \[13982585.136454\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.160.150 DST=195.201.40.59 LEN=57 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=UDP SPT=42305 DPT=10016 LEN=37	2020-06-10 01:54:24
222.186.180.142	attackspambots	Jun 9 19:34:59 piServer sshd[27333]: Failed password for root from 222.186.180.142 port 41342 ssh2 Jun 9 19:35:02 piServer sshd[27333]: Failed password for root from 222.186.180.142 port 41342 ssh2 Jun 9 19:35:05 piServer sshd[27333]: Failed password for root from 222.186.180.142 port 41342 ssh2 ...	2020-06-10 01:36:28
104.37.189.85	attack	Lines containing failures of 104.37.189.85 Jun 9 06:55:14 shared12 sshd[16571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.189.85 user=r.r Jun 9 06:55:16 shared12 sshd[16571]: Failed password for r.r from 104.37.189.85 port 43770 ssh2 Jun 9 06:55:16 shared12 sshd[16571]: Received disconnect from 104.37.189.85 port 43770:11: Bye Bye [preauth] Jun 9 06:55:16 shared12 sshd[16571]: Disconnected from authenticating user r.r 104.37.189.85 port 43770 [preauth] Jun 9 09:11:47 shared12 sshd[1549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.189.85 user=r.r Jun 9 09:11:48 shared12 sshd[1549]: Failed password for r.r from 104.37.189.85 port 44054 ssh2 Jun 9 09:11:48 shared12 sshd[1549]: Received disconnect from 104.37.189.85 port 44054:11: Bye Bye [preauth] Jun 9 09:11:48 shared12 sshd[1549]: Disconnected from authenticating user r.r 104.37.189.85 port 44054 [preauth] Ju........ ------------------------------	2020-06-10 01:54:03
75.130.124.90	attackbotsspam	Fail2Ban Ban Triggered	2020-06-10 01:46:21
189.209.7.168	attackspam	Failed password for invalid user fcg from 189.209.7.168 port 48920 ssh2	2020-06-10 02:02:55
76.214.112.45	attackspambots	Jun 9 16:57:51 sshd\[16923\]: Invalid user llll from 76.214.112.45Jun 9 16:57:53 sshd\[16923\]: Failed password for invalid user llll from 76.214.112.45 port 29950 ssh2 ...	2020-06-10 01:43:47
222.255.114.251	attackbots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-10 01:55:38
111.229.254.17	attack	Jun 9 17:31:53 ip-172-31-61-156 sshd[29348]: Invalid user ziyang from 111.229.254.17 Jun 9 17:31:53 ip-172-31-61-156 sshd[29348]: Invalid user ziyang from 111.229.254.17 Jun 9 17:31:53 ip-172-31-61-156 sshd[29348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.254.17 Jun 9 17:31:53 ip-172-31-61-156 sshd[29348]: Invalid user ziyang from 111.229.254.17 Jun 9 17:31:55 ip-172-31-61-156 sshd[29348]: Failed password for invalid user ziyang from 111.229.254.17 port 53068 ssh2 ...	2020-06-10 01:56:56
111.67.201.163	attackbotsspam	Jun 9 13:57:30 prod4 sshd\[11669\]: Invalid user dubang from 111.67.201.163 Jun 9 13:57:32 prod4 sshd\[11669\]: Failed password for invalid user dubang from 111.67.201.163 port 38586 ssh2 Jun 9 14:03:18 prod4 sshd\[14964\]: Invalid user test2 from 111.67.201.163 ...	2020-06-10 02:05:46
180.124.78.75	attackspambots	spam	2020-06-10 02:09:59
121.29.76.204	attackspam	Unauthorized connection attempt detected from IP address 121.29.76.204 to port 23	2020-06-10 01:40:38
77.55.192.80	attackspam	77.55.192.80 - - [09/Jun/2020:14:03:38 +0200] "GET /wp-login.php HTTP/1.1" 200 6433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 77.55.192.80 - - [09/Jun/2020:14:03:39 +0200] "POST /wp-login.php HTTP/1.1" 200 6684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 77.55.192.80 - - [09/Jun/2020:14:03:40 +0200] "GET /wp-login.php HTTP/1.1" 200 6433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-10 01:47:14

Recently Reported IPs

193.163.125.178	109.61.128.197	190.186.5.22	112.30.110.38
175.100.20.229	103.22.201.79	117.90.205.247	84.228.50.118
31.173.185.69	195.87.51.90	210.209.130.41	39.181.177.234
200.126.72.98	111.240.42.95	201.166.154.221	185.151.108.232
146.158.44.5	82.103.114.98	182.138.137.230	118.178.180.4