AbuseIPDB » 167.94.138.115
167.94.138.115 was found in our database!
This IP was reported 5,371 times. Confidence of Abuse is 0%: ?
ISP | Censys, Inc. |
---|---|
Usage Type | Commercial |
ASN | AS398324 |
Hostname(s) |
scanner-27.ch1.censys-scanner.com |
Domain Name | censys.com |
Country |
![]() |
City | Chicago, Illinois |
IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.
Important Note: 167.94.138.115 is an IP address from within our whitelist belonging to the subnet 167.94.138.0/24, which we identify as: "Censys (https://about.censys.io/)".
Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.
IP Abuse Reports for 167.94.138.115:
This IP address has been reported a total of 5,371 times from 613 distinct sources. 167.94.138.115 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
Reporter | IoA Timestamp in UTC | Comment | Categories | |
---|---|---|---|---|
![]() |
1753026614 # Service_probe # SIGNATURE_SEND # source_ip:167.94.138.115 # dst_port:44818
... |
Port Scan | ||
![]() |
Connection attempt blocked by IDS/IPS from IP 167.94.138.115/32
|
Hacking | ||
![]() |
|
Web App Attack | ||
![]() |
tcp/26 (12 or more attempts)
|
Port Scan | ||
![]() |
Honeypot hit: Empty payload (likely service probe); 20245 [3] TCP
|
Port Scan | ||
![]() |
|
Port Scan | ||
![]() |
07/20/2025-05:38:54.414256 167.94.138.115 Protocol: 6 ET DROP Dshield Block Listed Source group 1
|
Hacking | ||
![]() |
|
Brute-Force SSH | ||
![]() |
Honeypot hit: Empty payload (likely service probe); 18439 [1] TCP
|
Port Scan | ||
![]() |
list.rtbh.com.tr report: tcp/22
|
Brute-Force | ||
![]() |
|
Port Scan | ||
![]() |
Honeypot hit: Empty payload (likely service probe); 25757 [1] TCP
|
Port Scan | ||
![]() |
port=15002, indicator_type=info-leak
|
Hacking | ||
![]() |
Unknown SMTP Client 167.94.138.115
|
Email Spam Brute-Force | ||
![]() |
[MK-Root1] Blocked by UFW
|
Port Scan Brute-Force |
Showing 1 to 15 of 5371 reports
Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩