AbuseIPDB » 167.94.138.50
167.94.138.50 was found in our database!
This IP was reported 18,202 times. Confidence of Abuse is 0%: ?
| ISP | Censys, Inc. |
|---|---|
| Usage Type | Commercial |
| ASN | AS398324 |
| Hostname(s) |
scanner-07.ch1.censys-scanner.com |
| Domain Name | censys.com |
| Country |
United States of America
|
| City | Chicago, Illinois |
IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.
Important Note: 167.94.138.50 is an IP address from within our whitelist belonging to the subnet 167.94.138.0/24, which we identify as: "Censys (https://about.censys.io/)".
Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.
IP Abuse Reports for 167.94.138.50:
This IP address has been reported a total of 18,202 times from 826 distinct sources. 167.94.138.50 was first reported on , and the most recent report was .
Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.
| Reporter | IoA Timestamp in UTC | Comment | Categories | |
|---|---|---|---|---|
|
QUADEMU Abuse Dpt
|
Noxious/Nuisible/вредоносный Host.
|
Port Scan Exploited Host | ||
|
MPL
|
tcp ports: 51443,5533 (24 or more attempts)
|
Port Scan | ||
|
sefinek.net
|
Honeypot hit: Empty payload (likely service probe); 9201 [3] TCP
|
Port Scan | ||
|
MazenHost
|
1750742859 - 06/24/2025 08:27:39 Host: 167.94.138.50/167.94.138.50 Port: 111 TCP Blocked
... |
Port Scan | ||
|
MazenHost
|
1750741239 - 06/24/2025 08:00:39 Host: 167.94.138.50/167.94.138.50 Port: 111 TCP Blocked
... |
Port Scan | ||
|
invalidLuca
|
[UFW2] Unauthorized connection attempt from 167.94.138.50
|
Port Scan | ||
|
mkaraki
|
1750735359 # Service_probe # SIGNATURE_SEND # source_ip:167.94.138.50 # dst_port:2053
... |
Port Scan | ||
|
DXC-0
|
Multiple attacks on Honeypot servers
|
Web Spam Hacking Brute-Force Web App Attack | ||
|
yangfan
|
UFW Blocked [21/TCP]
Source: 167.94.138.50:50960 TTL: 46 Lenth: 60 TOS: 0x00 |
FTP Brute-Force Port Scan Brute-Force | ||
|
ThreatBook.io
|
|
Web App Attack | ||
|
public csirt
|
Honeypot hit: Empty payload (likely service probe); 56961 [3] TCP
|
Port Scan | ||
|
Study Bitcoin 🤗
|
Port probe to tcp/22 (ssh)
[srv130] |
Port Scan Brute-Force SSH | ||
|
StopAbuse
|
tcp/65007
|
Port Scan | ||
|
pshost.pl
|
|
Port Scan Brute-Force SSH | ||
|
SuperCores Hosting
|
[2025-06-23 20:12:26.315778] TELNET/8080 Unautorized connection, Suspicious Mirai Botnet.
|
DDoS Attack Port Scan Hacking Brute-Force IoT Targeted |
Showing 1 to 15 of 18202 reports
Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩