City: unknown
Region: unknown
Country: None
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 167.94.138.155 | botsattack | KnownAttacker - BadReputation |
2025-07-07 12:50:52 |
| 167.94.138.63 | botsattackproxy | SSH dictionary attack |
2025-06-19 12:58:59 |
| 167.94.138.41 | attackproxy | VoIP blacklist IP |
2025-06-16 12:53:41 |
| 167.94.138.120 | botsattackproxy | SSH bot |
2025-06-03 12:57:02 |
| 167.94.138.163 | botsattack | Fraud scan |
2025-02-07 17:59:37 |
| 167.94.138.167 | attack | Fraud connect |
2025-01-22 13:53:35 |
| 167.94.138.147 | proxy | VPN fraud |
2023-06-07 12:46:29 |
| 167.94.138.33 | proxy | VPN fraud. |
2023-06-07 12:43:58 |
| 167.94.138.136 | proxy | VPN fraud |
2023-06-05 12:53:02 |
| 167.94.138.131 | proxy | VPN fraud |
2023-05-29 13:10:03 |
| 167.94.138.124 | proxy | VPN fraud |
2023-05-29 13:06:05 |
| 167.94.138.127 | proxy | VPN fraud |
2023-05-25 12:38:28 |
| 167.94.138.52 | proxy | VPN fraud |
2023-05-16 12:51:16 |
| 167.94.138.152 | proxy | Scanner VPN |
2023-03-21 13:50:31 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46005
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;167.94.138.49. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400
;; Query time: 415 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 15:00:31 CST 2022
;; MSG SIZE rcvd: 106
49.138.94.167.in-addr.arpa domain name pointer scanner-07.ch1.censys-scanner.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
49.138.94.167.in-addr.arpa name = scanner-07.ch1.censys-scanner.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 223.202.201.220 | attackbotsspam | Aug 30 12:08:57 ArkNodeAT sshd\[8562\]: Invalid user dc from 223.202.201.220 Aug 30 12:08:57 ArkNodeAT sshd\[8562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.202.201.220 Aug 30 12:08:59 ArkNodeAT sshd\[8562\]: Failed password for invalid user dc from 223.202.201.220 port 54141 ssh2 |
2019-08-30 20:19:17 |
| 104.199.198.7 | attack | Invalid user ubuntu from 104.199.198.7 port 41784 |
2019-08-30 20:05:42 |
| 104.42.30.9 | attackspam | Invalid user admin from 104.42.30.9 port 23232 |
2019-08-30 20:07:04 |
| 43.242.241.151 | attack | Unauthorized connection attempt from IP address 43.242.241.151 on Port 445(SMB) |
2019-08-30 20:02:33 |
| 89.189.190.163 | attack | Aug 29 06:31:13 itv-usvr-01 sshd[1883]: Invalid user temp from 89.189.190.163 Aug 29 06:31:13 itv-usvr-01 sshd[1883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.190.163 Aug 29 06:31:13 itv-usvr-01 sshd[1883]: Invalid user temp from 89.189.190.163 Aug 29 06:31:16 itv-usvr-01 sshd[1883]: Failed password for invalid user temp from 89.189.190.163 port 51782 ssh2 Aug 29 06:35:28 itv-usvr-01 sshd[2061]: Invalid user angga from 89.189.190.163 |
2019-08-30 19:53:07 |
| 51.15.46.184 | attackspam | Aug 30 06:28:41 aat-srv002 sshd[10646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.46.184 Aug 30 06:28:43 aat-srv002 sshd[10646]: Failed password for invalid user uftp from 51.15.46.184 port 41472 ssh2 Aug 30 06:32:34 aat-srv002 sshd[10765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.46.184 Aug 30 06:32:36 aat-srv002 sshd[10765]: Failed password for invalid user theobold from 51.15.46.184 port 58052 ssh2 ... |
2019-08-30 19:52:13 |
| 124.42.239.214 | attack | Aug 30 12:42:37 nextcloud sshd\[27469\]: Invalid user debian from 124.42.239.214 Aug 30 12:42:37 nextcloud sshd\[27469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.42.239.214 Aug 30 12:42:39 nextcloud sshd\[27469\]: Failed password for invalid user debian from 124.42.239.214 port 48634 ssh2 ... |
2019-08-30 19:43:37 |
| 61.19.242.233 | attack | SMB Server BruteForce Attack |
2019-08-30 19:55:05 |
| 157.230.186.166 | attackbotsspam | Aug 29 21:33:35 lcprod sshd\[30429\]: Invalid user af from 157.230.186.166 Aug 29 21:33:35 lcprod sshd\[30429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.186.166 Aug 29 21:33:37 lcprod sshd\[30429\]: Failed password for invalid user af from 157.230.186.166 port 41702 ssh2 Aug 29 21:37:43 lcprod sshd\[30804\]: Invalid user listen from 157.230.186.166 Aug 29 21:37:43 lcprod sshd\[30804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.186.166 |
2019-08-30 19:45:14 |
| 92.220.29.21 | attackbots | 20 attempts against mh-misbehave-ban on pluto.magehost.pro |
2019-08-30 20:24:11 |
| 92.118.160.29 | attack | firewall-block, port(s): 4786/tcp, 5916/tcp |
2019-08-30 20:20:20 |
| 39.90.6.89 | attackbotsspam | Honeypot attack, port: 23, PTR: PTR record not found |
2019-08-30 20:01:09 |
| 190.4.63.80 | attackbotsspam | SMB Server BruteForce Attack |
2019-08-30 19:59:58 |
| 23.88.30.18 | attack | SMB Server BruteForce Attack |
2019-08-30 20:27:47 |
| 164.132.104.58 | attackspam | Aug 30 01:56:49 sachi sshd\[5459\]: Invalid user hlds from 164.132.104.58 Aug 30 01:56:49 sachi sshd\[5459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu Aug 30 01:56:52 sachi sshd\[5459\]: Failed password for invalid user hlds from 164.132.104.58 port 52198 ssh2 Aug 30 02:00:44 sachi sshd\[5750\]: Invalid user carlin from 164.132.104.58 Aug 30 02:00:44 sachi sshd\[5750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu |
2019-08-30 20:25:08 |