167.94.138.204

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.204.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025040402 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 05 05:30:05 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 204.138.94.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.138.94.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.40.123.115	attack	Invalid user adu from 77.40.123.115 port 40662	2020-05-22 16:49:29
95.110.201.243	attackspambots	Invalid user ubnt from 95.110.201.243 port 45525	2020-05-22 17:16:07
104.248.137.95	attackspambots	Invalid user cfo from 104.248.137.95 port 47608	2020-05-22 16:44:59
190.0.159.74	attackbots	2020-05-22T06:47:10.761072dmca.cloudsearch.cf sshd[23725]: Invalid user gbq from 190.0.159.74 port 40161 2020-05-22T06:47:10.766941dmca.cloudsearch.cf sshd[23725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-0-159-74.ir-static.adinet.com.uy 2020-05-22T06:47:10.761072dmca.cloudsearch.cf sshd[23725]: Invalid user gbq from 190.0.159.74 port 40161 2020-05-22T06:47:13.589515dmca.cloudsearch.cf sshd[23725]: Failed password for invalid user gbq from 190.0.159.74 port 40161 ssh2 2020-05-22T06:54:34.595608dmca.cloudsearch.cf sshd[24175]: Invalid user yfq from 190.0.159.74 port 43301 2020-05-22T06:54:34.602059dmca.cloudsearch.cf sshd[24175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-0-159-74.ir-static.adinet.com.uy 2020-05-22T06:54:34.595608dmca.cloudsearch.cf sshd[24175]: Invalid user yfq from 190.0.159.74 port 43301 2020-05-22T06:54:36.464774dmca.cloudsearch.cf sshd[24175]: Failed password for i ...	2020-05-22 16:48:10
218.56.11.236	attack	May 22 08:06:57 vps687878 sshd\[25976\]: Failed password for invalid user hechenghu from 218.56.11.236 port 48814 ssh2 May 22 08:10:14 vps687878 sshd\[26410\]: Invalid user nku from 218.56.11.236 port 44076 May 22 08:10:14 vps687878 sshd\[26410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.11.236 May 22 08:10:17 vps687878 sshd\[26410\]: Failed password for invalid user nku from 218.56.11.236 port 44076 ssh2 May 22 08:13:37 vps687878 sshd\[26731\]: Invalid user wmq from 218.56.11.236 port 39341 May 22 08:13:37 vps687878 sshd\[26731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.11.236 ...	2020-05-22 16:38:16
111.231.139.30	attack	May 22 07:57:06 nextcloud sshd\[22005\]: Invalid user ecz from 111.231.139.30 May 22 07:57:06 nextcloud sshd\[22005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.139.30 May 22 07:57:07 nextcloud sshd\[22005\]: Failed password for invalid user ecz from 111.231.139.30 port 39437 ssh2	2020-05-22 17:02:44
106.13.106.27	attackspambots	May 22 06:52:58 srv-ubuntu-dev3 sshd[118326]: Invalid user xsh from 106.13.106.27 May 22 06:52:58 srv-ubuntu-dev3 sshd[118326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.106.27 May 22 06:52:58 srv-ubuntu-dev3 sshd[118326]: Invalid user xsh from 106.13.106.27 May 22 06:52:59 srv-ubuntu-dev3 sshd[118326]: Failed password for invalid user xsh from 106.13.106.27 port 52630 ssh2 May 22 06:55:37 srv-ubuntu-dev3 sshd[118837]: Invalid user ekp from 106.13.106.27 May 22 06:55:37 srv-ubuntu-dev3 sshd[118837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.106.27 May 22 06:55:37 srv-ubuntu-dev3 sshd[118837]: Invalid user ekp from 106.13.106.27 May 22 06:55:39 srv-ubuntu-dev3 sshd[118837]: Failed password for invalid user ekp from 106.13.106.27 port 58824 ssh2 May 22 06:58:20 srv-ubuntu-dev3 sshd[119331]: Invalid user frz from 106.13.106.27 ...	2020-05-22 16:59:45
116.196.82.80	attackbots	May 22 04:20:30 firewall sshd[9125]: Invalid user hxe from 116.196.82.80 May 22 04:20:32 firewall sshd[9125]: Failed password for invalid user hxe from 116.196.82.80 port 33944 ssh2 May 22 04:23:52 firewall sshd[9301]: Invalid user mmu from 116.196.82.80 ...	2020-05-22 16:50:12
46.229.168.147	attackspambots	(mod_security) mod_security (id:210730) triggered by 46.229.168.147 (US/United States/crawl19.bl.semrush.com): 5 in the last 3600 secs	2020-05-22 16:58:35
186.64.120.89	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-22 17:01:49
142.93.68.181	attackspam	Port scanning [2 denied]	2020-05-22 16:43:13
62.173.147.229	attack	[2020-05-22 04:12:50] NOTICE[1157][C-000081f1] chan_sip.c: Call from '' (62.173.147.229:51477) to extension '916614627706' rejected because extension not found in context 'public'. [2020-05-22 04:12:50] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-22T04:12:50.727-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="916614627706",SessionID="0x7f5f10787a08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.147.229/51477",ACLName="no_extension_match" [2020-05-22 04:18:45] NOTICE[1157][C-000081f6] chan_sip.c: Call from '' (62.173.147.229:50355) to extension '91116614627706' rejected because extension not found in context 'public'. [2020-05-22 04:18:45] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-22T04:18:45.438-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="91116614627706",SessionID="0x7f5f10787a08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-05-22 17:02:25
162.243.139.115	attackspambots	Unauthorized connection attempt from IP address 162.243.139.115	2020-05-22 17:16:31
185.166.131.146	attack	185.166.131.146 - - [22/May/2020:09:46:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6042 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.166.131.146 - - [22/May/2020:09:46:15 +0200] "POST /wp-login.php HTTP/1.1" 200 6293 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.166.131.146 - - [22/May/2020:09:46:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-22 16:57:49
111.68.98.152	attackspambots	SSH brutforce	2020-05-22 16:55:07

Recently Reported IPs

190.115.143.145	20.150.206.76	195.3.223.20	129.159.80.32
101.252.218.104	28.201.220.118	38.164.252.91	69.114.4.3
209.141.59.146	103.248.203.167	8.142.165.189	59.82.21.214
20.98.140.180	20.150.202.46	89.59.70.182	82.59.70.182
130.61.114.51	62.85.203.0	11.83.15.20	111.226.211.76