AbuseIPDB » 167.94.138.112

167.94.138.112 was found in our database!

This IP was reported 4,698 times. Confidence of Abuse is 0%: ?

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398324
Hostname(s)	scanner-27.ch1.censys-scanner.com
Domain Name	censys.com
Country	United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 167.94.138.112 is an IP address from within our whitelist belonging to the subnet 167.94.138.0/24, which we identify as: "Censys (https://about.censys.io/)".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 167.94.138.112

Whois 167.94.138.112

IP Abuse Reports for 167.94.138.112:

This IP address has been reported a total of 4,698 times from 551 distinct sources. 167.94.138.112 was first reported on March 20th 2023, and the most recent report was 3 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Study Bitcoin 🤗	2025-06-26 05:18:34 (1 week ago)	Port probe to tcp/3128 (squid http proxy) [srv131]	Port Scan
kreativstrecke	2025-06-26 04:43:04 (1 week ago)	2025-06-26T06:42:51.343657+02:00 srv02 postfix/smtps/smtpd[2695118]: lost connection after EHLO from ... show more2025-06-26T06:42:51.343657+02:00 srv02 postfix/smtps/smtpd[2695118]: lost connection after EHLO from unknown[167.94.138.112] 2025-06-26T06:42:57.830854+02:00 srv02 postfix/smtps/smtpd[2695118]: lost connection after CONNECT from unknown[167.94.138.112] 2025-06-26T06:43:03.412685+02:00 srv02 postfix/smtps/smtpd[2695118]: lost connection after CONNECT from unknown[167.94.138.112] ... show less	Brute-Force
Sawasdee	2025-06-26 04:26:11 (1 week ago)	Port Scan ...	Port Scan
public csirt	2025-06-26 03:14:26 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 18082 [4] TCP	Port Scan
sefinek.net	2025-06-26 03:03:32 (1 week ago)	Blocked by UFW on PL03 [3000/tcp] Source port: 45436 TTL: 43 Packet length: 60<br ... show moreBlocked by UFW on PL03 [3000/tcp] Source port: 45436 TTL: 43 Packet length: 60 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
ThreatBook.io	2025-06-25 22:35:21 (1 week ago)	ThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/167.94.138.112<br / ... show moreThreatBook Intelligence: Zombie,Scanner more details on https://threatbook.io/ip/167.94.138.112 2025-06-25 01:01:53 /apple-touch-icon.png 2025-06-25 01:01:47 / 2025-06-25 01:02:55 /apple-touch-icon.png 2025-06-25 01:03:01 /favicon.ico 2025-06-25 01:03:04 * 2025-06-25 01:02:32 * show less	Web App Attack
killmself	2025-06-25 16:33:07 (1 week ago)	Caught by Fail2Ban	Brute-Force SSH
ManagedStack	2025-06-25 16:00:01 (1 week ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
sefinek.net	2025-06-25 14:03:35 (1 week ago)	Honeypot hit: Empty payload (likely service probe); 6699 [1] TCP	Port Scan
Anonymous	2025-06-25 10:02:21 (1 week ago)	Honeypot hit.	Port Scan Hacking Exploited Host
Ar1s	2025-06-25 09:46:37 (1 week ago)	[1:2402000] ET DROP Dshield Block Listed Source group 1 ::: Port: 80/TCP	Exploited Host
Study Bitcoin 🤗	2025-06-25 09:32:33 (1 week ago)	Port probe to tcp/1969 [srv131]	Port Scan
gu-alvareza	2025-06-25 07:05:09 (1 week ago)	Censys.io.Scanner	Port Scan
Anonymous	2025-06-25 07:00:05 (1 week ago)		Port Scan Hacking
public csirt	2025-06-25 05:35:54 (2 weeks ago)	Honeypot hit: Empty payload (likely service probe); 3361 [1] TCP	Port Scan

Showing 136 to 150 of 4698 reports

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

213.209.143.30

165.227.28.83

185.103.103.83

65.20.184.80

45.183.247.34

83.222.191.186

2600:1f18:5b75:b805:8f72:b204:e78c:e495

50.6.111.24

60.21.134.178

90.230.168.26

92.118.39.36

31.129.22.162

180.101.81.151

78.186.54.65

190.12.109.162

185.191.171.10

123.4.141.40

65.20.206.19

206.189.180.100

180.101.81.25