AbuseIPDB » 167.94.138.153

Check an IP Address, Domain Name, or Subnet

e.g. 3.239.8.7, microsoft.com, or 5.188.10.0/24

167.94.138.153 was found in our database!

This IP was reported 3,663 times. Confidence of Abuse is 0%: ?

ISP	Censys Inc.
Usage Type	Search Engine Spider
Hostname(s)	scanner-14.ch1.censys-scanner.com
Domain Name	censys.io
Country	United States of America
City	Ann Arbor, Michigan

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Important Note: 167.94.138.153 is an IP address from within our whitelist. Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

According to our records, this IP belongs to the subnet 167.94.138.0/24, identified as: "Censys (https://about.censys.io/)"

Report 167.94.138.153

Whois 167.94.138.153

IP Abuse Reports for 167.94.138.153:

This IP address has been reported a total of 3,663 times from 48 distinct sources. 167.94.138.153 was first reported on March 20th 2023, and the most recent report was 29 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
MPL	29 minutes ago	tcp port scan (20 or more attempts)	Port Scan
Anonymous	29 minutes ago	May 28 13:37:44 kernel: DROP IN=eth0 OUT= MAC=REDACTEDMYDEVICEMAC SRC=167.94.138.153 DST=REDACEDMYPU ... show moreMay 28 13:37:44 kernel: DROP IN=eth0 OUT= MAC=REDACTEDMYDEVICEMAC SRC=167.94.138.153 DST=REDACEDMYPUBLICIP LEN=44 TOS=0x00 PREC=0x00 TTL=42 ID=56829 PROTO=TCP SPT=1584 DPT=12386 SEQ=1000752010 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (020405B4) MARK=0x8000000 show less	DDoS Attack Port Scan Hacking
bnt	35 minutes ago	[Masscan] 167.94.138.153 - Port: 40001 - Seq: 3846930767	Port Scan
EticCybersecurity	57 minutes ago	Port Scan 2023-05-28T12:53:02.552Z -> 167.94.138.153 scanned port 9243 on one of our servers	Hacking
en0	1 hour ago	167.94.138.153 was recorded 5 times by 5 hosts attempting to connect to 5 unique ports. Incident cou ... show more167.94.138.153 was recorded 5 times by 5 hosts attempting to connect to 5 unique ports. Incident counter (4h, 24h, all-time): 5, 20, 6797 show less	Port Scan
StatsMe	1 hour ago	2023-05-28T01:05:23.020837+0300 ET DROP Dshield Block Listed Source group 1	Port Scan Hacking Spoofing Brute-Force
MPL	1 hour ago	tcp port scan (5 or more attempts)	Port Scan
abuse_IP_reporter	1 hour ago		Port Scan
IP Analyzer	2 hours ago	Unauthorized connection attempt from IP address 167.94.138.153 on Port 49767	Port Scan
MPL	2 hours ago	tcp port scan (14 or more attempts)	Port Scan
MPL	3 hours ago	tcp port scan (10 or more attempts)	Port Scan
MPL	4 hours ago	tcp port scan (7 or more attempts)	Port Scan
Abuse Buster	5 hours ago	Too many connection attempt to closed ports in a various time frequence	Port Scan
MPL	5 hours ago	tcp port scan (9 or more attempts)	Port Scan
en0	6 hours ago	167.94.138.153 was recorded 3 times by 3 hosts attempting to connect to 3 unique ports. Incident cou ... show more167.94.138.153 was recorded 3 times by 3 hosts attempting to connect to 3 unique ports. Incident counter (4h, 24h, all-time): 3, 16, 6790 show less	Port Scan