AbuseIPDB » 167.94.138.143

167.94.138.143 was found in our database!

This IP was reported 55,815 times. Confidence of Abuse is 0%: ?

ISP	Censys, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS398324
Hostname(s)	scanner-11.ch1.censys-scanner.com
Domain Name	censys.com
Country	United States of America
City	Chicago, Illinois

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 167.94.138.143 is an IP address from within our whitelist belonging to the subnet 167.94.138.0/24, which we identify as: "Censys (https://about.censys.io/)".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 167.94.138.143

Whois 167.94.138.143

IP Abuse Reports for 167.94.138.143:

This IP address has been reported a total of 55,815 times from 276 distinct sources. 167.94.138.143 was first reported on March 20th 2023, and the most recent report was 5 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
bakunin1848	2025-03-24 19:43:04 (26 minutes ago)	Firewall IPS Detection on 24-03-2025 at 20:43:04	Port Scan Exploited Host
Fusty	2025-03-24 19:27:52 (41 minutes ago)	Unauthorized attempt on (TCP on port 6005). Source port: 17686 TTL: 54 Packet leng ... show moreUnauthorized attempt on (TCP on port 6005). Source port: 17686 TTL: 54 Packet length: 60 Timestamp: 2025-03-24 20:27:52 show less	Port Scan
Study Bitcoin 🤗	2025-03-24 19:26:47 (42 minutes ago)	Port probe to tcp/7443 [srv134]	Port Scan
MPL	2025-03-24 19:24:36 (45 minutes ago)	tcp ports: 9599,10259 (4 or more attempts)	Port Scan
diego	2025-03-24 19:09:08 (1 hour ago)	[rede-176-124] 03/24/2025-16:09:08.558250, 167.94.138.143, Protocol: 6, ET DROP Dshield Block Listed ... show more[rede-176-124] 03/24/2025-16:09:08.558250, 167.94.138.143, Protocol: 6, ET DROP Dshield Block Listed Source group 1 show less	Hacking
Study Bitcoin 🤗	2025-03-24 18:58:59 (1 hour ago)	Port probe to tcp/250 [srv136]	Port Scan
Study Bitcoin 🤗	2025-03-24 18:36:21 (1 hour ago)	3 port probes: tcp/20547, tcp/2087, tcp/4433 [srv124,srv134,srv127]	Port Scan
diego	2025-03-24 18:07:58 (2 hours ago)	[rede-168-134] 03/24/2025-15:07:58.207331, 167.94.138.143, Protocol: 6, ET DROP Dshield Block Listed ... show more[rede-168-134] 03/24/2025-15:07:58.207331, 167.94.138.143, Protocol: 6, ET DROP Dshield Block Listed Source group 1 show less	Hacking
MPL	2025-03-24 17:38:49 (2 hours ago)	tcp port scan (10 or more attempts)	Port Scan
Admins@FBN	2025-03-24 17:23:22 (2 hours ago)	FW-PortScan: Traffic Blocked srcport=24350 dstport=58000	Port Scan
schneevex	2025-03-24 17:16:48 (2 hours ago)	Unauthorized connection attempt to port 1911 from 167.94.138.143	Port Scan
rtbh.com.tr	2025-03-24 16:48:37 (3 hours ago)	list.rtbh.com.tr report: tcp/11211, tcp/1194, tcp/1521, tcp/3389, tcp/389, tcp/5060, tcp/8010, tcp/8 ... show morelist.rtbh.com.tr report: tcp/11211, tcp/1194, tcp/1521, tcp/3389, tcp/389, tcp/5060, tcp/8010, tcp/8088, tcp/8090, tcp/81, udp/1194, udp/123, udp/161, udp/4500, udp/5060 show less	Brute-Force
MPL	2025-03-24 16:45:19 (3 hours ago)	tcp port scan (20 or more attempts)	Port Scan
David Ferneding	2025-03-24 16:30:43 (3 hours ago)	Blocked by UFW (TCP on 990) Source port: 63383 TTL: 57 Packet length: 60 TOS ... show moreBlocked by UFW (TCP on 990) Source port: 63383 TTL: 57 Packet length: 60 TOS: 0x00 This report (for 167.94.138.143) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
QUADEMU Abuse Dpt	2025-03-24 16:23:27 (3 hours ago)	[New] Noxious/Nuisible/вредоносный Host.	Port Scan Exploited Host