Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
167.94.138.155 botsattack
KnownAttacker - BadReputation
2025-07-07 12:50:52
167.94.138.63 botsattackproxy
SSH dictionary attack
2025-06-19 12:58:59
167.94.138.41 attackproxy
VoIP blacklist IP
2025-06-16 12:53:41
167.94.138.120 botsattackproxy
SSH bot
2025-06-03 12:57:02
167.94.138.163 botsattack
Fraud scan
2025-02-07 17:59:37
167.94.138.167 attack
Fraud connect
2025-01-22 13:53:35
167.94.138.147 proxy
VPN fraud
2023-06-07 12:46:29
167.94.138.33 proxy
VPN fraud.
2023-06-07 12:43:58
167.94.138.136 proxy
VPN fraud
2023-06-05 12:53:02
167.94.138.131 proxy
VPN fraud
2023-05-29 13:10:03
167.94.138.124 proxy
VPN fraud
2023-05-29 13:06:05
167.94.138.127 proxy
VPN fraud
2023-05-25 12:38:28
167.94.138.52 proxy
VPN fraud
2023-05-16 12:51:16
167.94.138.152 proxy
Scanner VPN
2023-03-21 13:50:31
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64353
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.140.			IN	A

;; AUTHORITY SECTION:
.			123	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 21:48:14 CST 2022
;; MSG SIZE  rcvd: 107
Host info
140.138.94.167.in-addr.arpa domain name pointer scanner-11.ch1.censys-scanner.com.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.138.94.167.in-addr.arpa	name = scanner-11.ch1.censys-scanner.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
177.103.229.135 attack
1596807258 - 08/07/2020 15:34:18 Host: 177.103.229.135/177.103.229.135 Port: 445 TCP Blocked
2020-08-08 04:04:15
52.166.4.83 attack
52.166.4.83 - - [07/Aug/2020:20:59:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
52.166.4.83 - - [07/Aug/2020:20:59:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1768 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
52.166.4.83 - - [07/Aug/2020:20:59:25 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-08 04:28:54
51.38.48.127 attack
sshd jail - ssh hack attempt
2020-08-08 04:06:03
167.71.209.2 attackbots
Aug  7 20:01:27 sso sshd[16634]: Failed password for root from 167.71.209.2 port 33248 ssh2
...
2020-08-08 04:31:36
103.60.175.65 attackbots
Unauthorized connection attempt from IP address 103.60.175.65 on Port 445(SMB)
2020-08-08 04:08:37
140.206.168.198 attack
Aug  7 22:08:48 venus kernel: [18432.984949] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:66:8f:ed:d2:74:7f:6e:37:e3:08:00 SRC=140.206.168.198 DST=78.47.70.226 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=12614 PROTO=TCP SPT=50916 DPT=8022 WINDOW=1024 RES=0x00 SYN URGP=0
2020-08-08 04:15:30
148.72.210.140 attack
148.72.210.140 - - [07/Aug/2020:18:46:54 +0200] "POST /wp-login.php HTTP/1.1" 200 5482 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
148.72.210.140 - - [07/Aug/2020:18:46:57 +0200] "POST /wp-login.php HTTP/1.1" 200 5455 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
148.72.210.140 - - [07/Aug/2020:19:07:54 +0200] "POST /wp-login.php HTTP/1.1" 200 5373 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
148.72.210.140 - - [07/Aug/2020:19:07:57 +0200] "POST /wp-login.php HTTP/1.1" 200 5350 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
148.72.210.140 - - [07/Aug/2020:19:08:00 +0200] "POST /wp-login.php HTTP/1.1" 200 5354 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-08 04:29:32
173.236.168.101 attack
173.236.168.101 - - [07/Aug/2020:13:33:33 +0200] "POST /wp-login.php HTTP/1.1" 200 5467 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
173.236.168.101 - - [07/Aug/2020:13:33:37 +0200] "POST /wp-login.php HTTP/1.1" 200 5442 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
173.236.168.101 - - [07/Aug/2020:14:00:01 +0200] "POST /wp-login.php HTTP/1.1" 200 5259 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
173.236.168.101 - - [07/Aug/2020:14:00:05 +0200] "POST /wp-login.php HTTP/1.1" 200 5233 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
173.236.168.101 - - [07/Aug/2020:14:00:08 +0200] "POST /wp-login.php HTTP/1.1" 200 5235 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-08 04:05:40
64.227.62.250 attack
Aug  7 19:01:23 sshgateway sshd\[6212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.62.250  user=root
Aug  7 19:01:25 sshgateway sshd\[6212\]: Failed password for root from 64.227.62.250 port 40940 ssh2
Aug  7 19:08:05 sshgateway sshd\[6260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.62.250  user=root
2020-08-08 04:29:53
124.123.181.203 attack
Unauthorized connection attempt from IP address 124.123.181.203 on Port 445(SMB)
2020-08-08 04:17:38
125.214.52.229 attack
Aug  7 13:29:40 master sshd[29085]: Did not receive identification string from 125.214.52.229
Aug  7 13:30:10 master sshd[29086]: Failed password for invalid user supervisor from 125.214.52.229 port 38123 ssh2
2020-08-08 04:21:54
177.78.206.58 attackbotsspam
Aug  7 14:31:04 master sshd[29176]: Failed password for root from 177.78.206.58 port 10631 ssh2
Aug  7 14:31:11 master sshd[29179]: Failed password for root from 177.78.206.58 port 10632 ssh2
Aug  7 14:31:17 master sshd[29185]: Failed password for invalid user ubnt from 177.78.206.58 port 10633 ssh2
Aug  7 14:31:24 master sshd[29187]: Failed password for root from 177.78.206.58 port 10634 ssh2
Aug  7 14:31:31 master sshd[29189]: Failed password for root from 177.78.206.58 port 10635 ssh2
Aug  7 14:31:37 master sshd[29191]: Failed password for root from 177.78.206.58 port 10636 ssh2
Aug  7 14:31:43 master sshd[29193]: Failed password for root from 177.78.206.58 port 10637 ssh2
Aug  7 14:31:50 master sshd[29195]: Failed password for root from 177.78.206.58 port 10638 ssh2
Aug  7 14:31:57 master sshd[29197]: Failed password for root from 177.78.206.58 port 10639 ssh2
Aug  7 14:32:03 master sshd[29199]: Failed password for root from 177.78.206.58 port 10640 ssh2
2020-08-08 04:14:40
92.118.160.49 attackspambots
ET CINS Active Threat Intelligence Poor Reputation IP group 89 - port: 943 proto: tcp cat: Misc Attackbytes: 60
2020-08-08 04:36:10
198.143.155.138 attack
Attempted to establish connection to non opened port 19
2020-08-08 04:22:07
120.52.120.5 attackspambots
Aug  7 15:08:21 master sshd[800]: Failed password for root from 120.52.120.5 port 42575 ssh2
Aug  7 15:28:53 master sshd[1332]: Failed password for root from 120.52.120.5 port 54399 ssh2
Aug  7 15:36:22 master sshd[1845]: Failed password for root from 120.52.120.5 port 50087 ssh2
Aug  7 15:43:56 master sshd[2615]: Failed password for root from 120.52.120.5 port 45776 ssh2
2020-08-08 04:22:33

Recently Reported IPs

223.149.7.192 218.212.208.33 218.252.7.220 113.128.31.39
104.129.53.162 186.121.251.66 203.153.125.250 212.200.127.112
160.238.75.195 45.190.170.0 200.77.198.195 177.185.157.47
45.66.209.44 199.250.204.134 185.181.51.103 183.112.132.12
118.140.49.26 190.133.43.249 111.126.58.20 183.102.96.12