167.94.138.138

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.138.			IN	A

;; AUTHORITY SECTION:
.			234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:55:09 CST 2022
;; MSG SIZE  rcvd: 107

Host info

138.138.94.167.in-addr.arpa domain name pointer scanner-11.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.138.94.167.in-addr.arpa	name = scanner-11.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.156.109	attack	Invalid user gpadmin from 68.183.156.109 port 39210	2020-09-27 01:08:34
27.192.15.124	attackbots	Found on CINS badguys / proto=6 . srcport=44143 . dstport=23 . (3535)	2020-09-27 00:57:44
129.204.46.170	attackbotsspam	Sep 26 18:42:20 ncomp sshd[28177]: Invalid user teamspeak3 from 129.204.46.170 port 58040 Sep 26 18:42:20 ncomp sshd[28177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 Sep 26 18:42:20 ncomp sshd[28177]: Invalid user teamspeak3 from 129.204.46.170 port 58040 Sep 26 18:42:22 ncomp sshd[28177]: Failed password for invalid user teamspeak3 from 129.204.46.170 port 58040 ssh2	2020-09-27 00:46:38
61.181.80.253	attackbotsspam	"Unauthorized connection attempt on SSHD detected"	2020-09-27 00:43:47
179.24.223.167	attackbotsspam	179.24.223.167 - - [25/Sep/2020:22:42:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 179.24.223.167 - - [25/Sep/2020:22:42:43 +0100] "POST /wp-login.php HTTP/1.1" 200 8955 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 179.24.223.167 - - [25/Sep/2020:22:43:41 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-09-27 00:48:48
46.183.223.106	attackbots	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=58875 . dstport=443 . (3531)	2020-09-27 01:18:00
192.99.149.195	attack	192.99.149.195 - - [26/Sep/2020:13:02:34 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.149.195 - - [26/Sep/2020:13:02:34 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.149.195 - - [26/Sep/2020:13:02:35 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.149.195 - - [26/Sep/2020:13:02:35 +0200] "POST /wp-login.php HTTP/1.1" 200 2672 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.149.195 - - [26/Sep/2020:13:02:35 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.149.195 - - [26/Sep/2020:13:02:36 +0200] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-09-27 01:21:50
222.186.173.226	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-09-27 01:05:10
162.243.128.97	attack	TCP (SYN) 162.243.128.97:53036 -> port 60837, len 44	2020-09-27 01:07:14
185.147.215.8	attack	[2020-09-26 12:36:21] NOTICE[1159] chan_sip.c: Registration from '' failed for '185.147.215.8:54834' - Wrong password [2020-09-26 12:36:21] SECURITY[1198] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-26T12:36:21.378-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1845",SessionID="0x7fcaa02d7a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8/54834",Challenge="1a0714ec",ReceivedChallenge="1a0714ec",ReceivedHash="1d30015aaeea2ceacfdf24fdab7d6911" [2020-09-26 12:36:47] NOTICE[1159] chan_sip.c: Registration from '' failed for '185.147.215.8:65443' - Wrong password [2020-09-26 12:36:47] SECURITY[1198] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-26T12:36:47.253-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1910",SessionID="0x7fcaa0194a08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8 ...	2020-09-27 00:43:14
114.33.46.170	attackbots	SSH login attempts.	2020-09-27 01:00:14
175.138.108.78	attackbotsspam	Sep 26 14:37:50 haigwepa sshd[32030]: Failed password for root from 175.138.108.78 port 35202 ssh2 Sep 26 14:39:21 haigwepa sshd[32160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.138.108.78 ...	2020-09-27 00:57:18
40.89.155.138	attack	invalid user	2020-09-27 01:22:54
103.107.17.205	attackspambots	Sep 26 17:29:42 pve1 sshd[5302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.17.205 Sep 26 17:29:44 pve1 sshd[5302]: Failed password for invalid user user002 from 103.107.17.205 port 55686 ssh2 ...	2020-09-27 01:12:15
112.16.211.200	attackbots	Sep 26 18:34:30 raspberrypi sshd[32354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.16.211.200 Sep 26 18:34:32 raspberrypi sshd[32354]: Failed password for invalid user lankacom from 112.16.211.200 port 10130 ssh2 ...	2020-09-27 01:16:54

Recently Reported IPs

176.46.139.75	172.69.255.71	109.191.8.181	211.230.145.236
102.222.184.215	27.76.64.97	77.136.147.149	201.38.133.131
183.195.1.119	119.123.218.177	174.21.29.152	31.210.20.41
77.83.85.218	177.130.141.129	2.191.150.203	89.214.113.59
45.225.60.145	84.54.58.139	103.144.178.29	181.193.220.214