AbuseIPDB » 167.94.138.115

167.94.138.115 was found in our database!

This IP was reported 5,371 times. Confidence of Abuse is 0%: ?

0%
ISP Censys, Inc.
Usage Type Commercial
ASN AS398324
Hostname(s) scanner-27.ch1.censys-scanner.com
Domain Name censys.com
Country United States of America
City Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.


Important Note: 167.94.138.115 is an IP address from within our whitelist belonging to the subnet 167.94.138.0/24, which we identify as: "Censys (https://about.censys.io/)".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

IP Abuse Reports for 167.94.138.115:

This IP address has been reported a total of 5,371 times from 613 distinct sources. 167.94.138.115 was first reported on , and the most recent report was .

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter IoA Timestamp in UTC Comment Categories
mkaraki
1753026614 # Service_probe # SIGNATURE_SEND # source_ip:167.94.138.115 # dst_port:44818
...
Port Scan
nNordic
Connection attempt blocked by IDS/IPS from IP 167.94.138.115/32
Hacking
diego
Web App Attack
MPL
tcp/26 (12 or more attempts)
Port Scan
forgeban
Honeypot hit: Empty payload (likely service probe); 20245 [3] TCP
Port Scan
Fusty
Port Scan
el-brujo
07/20/2025-05:38:54.414256 167.94.138.115 Protocol: 6 ET DROP Dshield Block Listed Source group 1
Hacking
arteagasoft
Brute-Force SSH
sefinek.net
Honeypot hit: Empty payload (likely service probe); 18439 [1] TCP
Port Scan
rtbh.com.tr
list.rtbh.com.tr report: tcp/22
Brute-Force
Joe-Mark
Port Scan
forgeban
Honeypot hit: Empty payload (likely service probe); 25757 [1] TCP
Port Scan
VXG-NET
port=15002, indicator_type=info-leak
Hacking
jkhorvath.com
Unknown SMTP Client 167.94.138.115
Email Spam Brute-Force
marcel-knorr.de
[MK-Root1] Blocked by UFW
Port Scan Brute-Force

Showing 1 to 15 of 5371 reports


Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs: