167.94.138.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26220
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.45.			IN	A

;; AUTHORITY SECTION:
.			346	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 22:22:33 CST 2022
;; MSG SIZE  rcvd: 106

Host info

45.138.94.167.in-addr.arpa domain name pointer scanner-06.ch1.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.138.94.167.in-addr.arpa	name = scanner-06.ch1.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.199.49.7	attackspam	Mar 7 05:49:59 debian-2gb-nbg1-2 kernel: \[5815761.559753\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=113.199.49.7 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=46 ID=45094 PROTO=TCP SPT=34853 DPT=26 WINDOW=33069 RES=0x00 SYN URGP=0	2020-03-07 20:23:15
176.31.252.148	attackspam	Mar 7 11:55:41 host sshd[57425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=infra01.linalis.com user=root Mar 7 11:55:43 host sshd[57425]: Failed password for root from 176.31.252.148 port 34822 ssh2 ...	2020-03-07 20:11:46
146.185.142.200	attack	WordPress login Brute force / Web App Attack on client site.	2020-03-07 20:17:14
31.211.86.7	attack	Email rejected due to spam filtering	2020-03-07 19:56:04
192.232.209.31	attackspambots	" "	2020-03-07 20:35:14
62.210.70.138	attack	[2020-03-07 07:13:20] NOTICE[1148][C-0000f4a4] chan_sip.c: Call from '' (62.210.70.138:59266) to extension '400011972592277524' rejected because extension not found in context 'public'. [2020-03-07 07:13:20] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-07T07:13:20.210-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="400011972592277524",SessionID="0x7fd82ca712e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.70.138/59266",ACLName="no_extension_match" [2020-03-07 07:18:30] NOTICE[1148][C-0000f4af] chan_sip.c: Call from '' (62.210.70.138:53181) to extension '500011972592277524' rejected because extension not found in context 'public'. [2020-03-07 07:18:30] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-07T07:18:30.172-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="500011972592277524",SessionID="0x7fd82c40d3d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddres ...	2020-03-07 20:23:31
80.76.42.51	attack	unauthorized connection attempt	2020-03-07 20:22:26
138.197.164.222	attackspambots	Port Scan detected from 138.197.164.222 (CA/Canada/-). 4 hits in the last 35 seconds	2020-03-07 19:58:23
101.89.115.211	attackbots	Mar 7 05:49:50 sshd\[23650\]: User root from 101.89.115.211 not allowed because not listed in AllowUsersMar 7 05:49:52 sshd\[23650\]: Failed password for invalid user root from 101.89.115.211 port 49526 ssh2 ...	2020-03-07 20:31:47
71.6.233.230	attack	firewall-block, port(s): 4433/tcp	2020-03-07 20:15:56
51.89.166.45	attack	Mar 7 09:09:20 host sshd[28101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-89-166.eu user=root Mar 7 09:09:22 host sshd[28101]: Failed password for root from 51.89.166.45 port 44450 ssh2 ...	2020-03-07 19:58:46
122.116.232.61	attack	firewall-block, port(s): 4567/tcp	2020-03-07 20:12:24
196.44.191.3	attackspam	Mar 7 11:46:17 ip-172-31-62-245 sshd\[21092\]: Invalid user p\; from 196.44.191.3\ Mar 7 11:46:19 ip-172-31-62-245 sshd\[21092\]: Failed password for invalid user p\; from 196.44.191.3 port 50906 ssh2\ Mar 7 11:48:25 ip-172-31-62-245 sshd\[21102\]: Invalid user P@\$\$word321 from 196.44.191.3\ Mar 7 11:48:27 ip-172-31-62-245 sshd\[21102\]: Failed password for invalid user P@\$\$word321 from 196.44.191.3 port 47611 ssh2\ Mar 7 11:52:51 ip-172-31-62-245 sshd\[21132\]: Invalid user sysadm from 196.44.191.3\	2020-03-07 20:35:45
188.177.57.214	attackspam	Honeypot attack, port: 445, PTR: 188-177-57-214-static.dk.customer.tdc.net.	2020-03-07 20:25:36
92.118.37.88	attackbotsspam	03/07/2020-06:34:15.863753 92.118.37.88 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-07 20:15:03

Recently Reported IPs

186.78.142.236	185.220.103.113	112.133.252.15	43.132.102.207
211.154.194.139	121.152.154.204	27.43.204.106	189.212.116.212
201.150.36.98	103.179.56.23	47.88.15.217	85.25.4.28
190.13.218.3	103.78.97.38	103.102.141.39	117.136.41.48
86.196.25.37	121.42.224.42	140.213.211.223	175.107.7.90