167.94.138.204

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.204.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025040402 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 05 05:30:05 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 204.138.94.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.138.94.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.242.171.253	attackbots	unauthorized connection attempt	2020-01-08 20:58:50
37.49.231.101	attack	Jan 6 20:02:52 josie sshd[9257]: Did not receive identification string from 37.49.231.101 Jan 6 20:02:52 josie sshd[9258]: Did not receive identification string from 37.49.231.101 Jan 6 20:02:52 josie sshd[9259]: Did not receive identification string from 37.49.231.101 Jan 6 20:02:52 josie sshd[9260]: Did not receive identification string from 37.49.231.101 Jan 6 20:06:30 josie sshd[12233]: Invalid user 121.229.23.121 from 37.49.231.101 Jan 6 20:06:30 josie sshd[12233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.49.231.101 Jan 6 20:06:31 josie sshd[12233]: Failed password for invalid user 121.229.23.121 from 37.49.231.101 port 42946 ssh2 Jan 6 20:06:31 josie sshd[12234]: Received disconnect from 37.49.231.101: 11: Normal Shutdown, Thank you for playing Jan 6 20:07:07 josie sshd[12639]: Invalid user 121.229.23.121 from 37.49.231.101 Jan 6 20:07:07 josie sshd[12639]: pam_unix(sshd:auth): authentication failure; lo........ -------------------------------	2020-01-08 21:07:55
37.192.11.23	attackspambots	Fail2Ban Ban Triggered	2020-01-08 20:53:21
197.155.115.52	attackbots	Jan 8 05:44:41 ns382633 sshd\[12617\]: Invalid user pi from 197.155.115.52 port 44806 Jan 8 05:44:41 ns382633 sshd\[12617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.155.115.52 Jan 8 05:44:41 ns382633 sshd\[12619\]: Invalid user pi from 197.155.115.52 port 44810 Jan 8 05:44:41 ns382633 sshd\[12619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.155.115.52 Jan 8 05:44:43 ns382633 sshd\[12617\]: Failed password for invalid user pi from 197.155.115.52 port 44806 ssh2 Jan 8 05:44:43 ns382633 sshd\[12619\]: Failed password for invalid user pi from 197.155.115.52 port 44810 ssh2	2020-01-08 21:01:48
59.25.151.105	attack	MVPower DVR TV Shell Unauthenticated Command Execution Vulnerability	2020-01-08 20:41:10
209.17.96.170	attackspam	port scan and connect, tcp 22 (ssh)	2020-01-08 21:16:50
185.57.30.138	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-01-2020 04:45:09.	2020-01-08 20:46:28
141.226.29.141	attack	Lines containing failures of 141.226.29.141 Jan 7 05:52:02 shared04 sshd[5980]: Invalid user user from 141.226.29.141 port 48142 Jan 7 05:52:02 shared04 sshd[5980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.226.29.141 Jan 7 05:52:04 shared04 sshd[5980]: Failed password for invalid user user from 141.226.29.141 port 48142 ssh2 Jan 7 05:52:04 shared04 sshd[5980]: Received disconnect from 141.226.29.141 port 48142:11: Bye Bye [preauth] Jan 7 05:52:04 shared04 sshd[5980]: Disconnected from invalid user user 141.226.29.141 port 48142 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=141.226.29.141	2020-01-08 21:16:15
177.73.148.71	attackspambots	Jan 6 23:06:55 penfold sshd[13035]: Invalid user weblogic from 177.73.148.71 port 38230 Jan 6 23:06:55 penfold sshd[13035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.73.148.71 Jan 6 23:06:57 penfold sshd[13035]: Failed password for invalid user weblogic from 177.73.148.71 port 38230 ssh2 Jan 6 23:06:58 penfold sshd[13035]: Received disconnect from 177.73.148.71 port 38230:11: Bye Bye [preauth] Jan 6 23:06:58 penfold sshd[13035]: Disconnected from 177.73.148.71 port 38230 [preauth] Jan 6 23:18:43 penfold sshd[13603]: Invalid user us from 177.73.148.71 port 47744 Jan 6 23:18:43 penfold sshd[13603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.73.148.71 Jan 6 23:18:44 penfold sshd[13603]: Failed password for invalid user us from 177.73.148.71 port 47744 ssh2 Jan 6 23:18:45 penfold sshd[13603]: Received disconnect from 177.73.148.71 port 47744:11: Bye Bye [preauth] Ja........ -------------------------------	2020-01-08 20:50:23
62.234.124.196	attack	Unauthorized connection attempt detected from IP address 62.234.124.196 to port 2220 [J]	2020-01-08 20:52:58
5.188.62.25	attack	WordPress XMLRPC scan :: 5.188.62.25 0.164 BYPASS [08/Jan/2020:10:50:39 0000] www.[censored_4] "POST /xmlrpc.php HTTP/1.1" 200 217 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36"	2020-01-08 20:48:52
112.85.42.188	attackbots	01/08/2020-08:13:26.076250 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-08 21:14:29
198.50.159.33	attackspambots	Jan 8 16:05:36 server sshd\[9240\]: Invalid user ftpuser from 198.50.159.33 Jan 8 16:05:36 server sshd\[9240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip33.ip-198-50-159.net Jan 8 16:05:38 server sshd\[9240\]: Failed password for invalid user ftpuser from 198.50.159.33 port 33034 ssh2 Jan 8 16:07:22 server sshd\[9530\]: Invalid user scaner from 198.50.159.33 Jan 8 16:07:22 server sshd\[9530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip33.ip-198-50-159.net ...	2020-01-08 21:11:58
171.253.58.199	attackspambots	Telnet Server BruteForce Attack	2020-01-08 20:50:43
222.170.168.74	attackspam	Automatic report - Banned IP Access	2020-01-08 20:40:05

Recently Reported IPs

190.115.143.145	20.150.206.76	195.3.223.20	129.159.80.32
101.252.218.104	28.201.220.118	38.164.252.91	69.114.4.3
209.141.59.146	103.248.203.167	8.142.165.189	59.82.21.214
20.98.140.180	20.150.202.46	89.59.70.182	82.59.70.182
130.61.114.51	62.85.203.0	11.83.15.20	111.226.211.76