AbuseIPDB » 167.94.145.107

167.94.145.107 was found in our database!

This IP was reported 18,134 times. Confidence of Abuse is 0%: ?

ISP	Censys, Inc.
Usage Type	Commercial
ASN	AS398705
Domain Name	censys.com
Country	Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Important Note: 167.94.145.107 is an IP address from within our whitelist belonging to the subnet 167.94.145.0/24, which we identify as: "Censys (https://about.censys.io/)".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 167.94.145.107

Whois 167.94.145.107

IP Abuse Reports for 167.94.145.107:

This IP address has been reported a total of 18,134 times from 775 distinct sources. 167.94.145.107 was first reported on April 22nd 2024, and the most recent report was 21 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
Wepted	2025-07-18 17:31:41 (21 minutes ago)	Port scan detected by honeypot	Port Scan Hacking
SilverZippo	2025-07-18 17:22:05 (30 minutes ago)	Web App Attack	Web App Attack
miquelruiz.net	2025-07-18 16:31:57 (1 hour ago)	2025-07-18T16:31:13.230619+00:00 ns375825 sshd[1994588]: Connection reset by 167.94.145.107 port 380 ... show more2025-07-18T16:31:13.230619+00:00 ns375825 sshd[1994588]: Connection reset by 167.94.145.107 port 38072 2025-07-18T16:31:35.660799+00:00 ns375825 sshd[1994593]: Connection closed by 167.94.145.107 port 36880 [preauth] ... show less	Brute-Force SSH
rtbh.com.tr	2025-07-18 16:07:44 (1 hour ago)	list.rtbh.com.tr report: tcp/5989, tcp/8083	Brute-Force
Study Bitcoin 🤗	2025-07-18 15:58:16 (1 hour ago)	6 port probes: 6x tcp/4447 (n1-rmgmt) [srv62]	Port Scan
el-brujo	2025-07-18 15:56:04 (1 hour ago)	07/18/2025-17:56:04.532570 167.94.145.107 Protocol: 6 ET DROP Dshield Block Listed Source group 1	Hacking
mkaraki	2025-07-18 14:34:00 (3 hours ago)	1752849237 # Service_probe # SIGNATURE_SEND # source_ip:167.94.145.107 # dst_port:832 ...	Port Scan
SiyCah	2025-07-18 14:00:02 (3 hours ago)	IP banned by fail2ban; banned in jail postfix. Report generated by fail2abuseipdb.	Hacking Brute-Force
forgeban	2025-07-18 13:55:58 (3 hours ago)	Honeypot hit: Unauthorized traffic (16 bytes of payload); 1194 [3] TCP	Port Scan
swrlly	2025-07-18 12:27:42 (5 hours ago)	attempted directly connecting to webserver using origin ip	Web App Attack
yangfan	2025-07-18 12:25:04 (5 hours ago)	UFW Blocked [8123/TCP] Source: 167.94.145.107:59242 TTL: 49 Lenth: 60 TOS: 0 ... show moreUFW Blocked [8123/TCP] Source: 167.94.145.107:59242 TTL: 49 Lenth: 60 TOS: 0x00 show less	Port Scan
Anonymous	2025-07-18 10:35:57 (7 hours ago)	Trying ports that it shouldn't be.	Port Scan Hacking Exploited Host
SiyCah	2025-07-18 10:00:03 (7 hours ago)	IP banned by fail2ban; banned in jail postfix. Report generated by fail2abuseipdb.	Hacking Brute-Force
sefinek.net	2025-07-18 09:27:39 (8 hours ago)	Honeypot hit: Empty payload (likely service probe); 7443 [1] TCP	Port Scan
rtbh.com.tr	2025-07-18 08:07:45 (9 hours ago)	list.rtbh.com.tr report: tcp/139, tcp/3000	Brute-Force

Showing 1 to 15 of 18134 reports

1
2
3
4
5
6
7
8
9
10
...
1208
1209
›

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩

Recently Reported IPs:

151.2.195.208

14.103.115.159

195.178.110.108

103.237.144.204

35.203.210.49

147.185.133.223

61.36.200.131

150.9.40.208

196.251.87.42

35.239.170.179

66.96.239.187

191.37.192.103

103.67.78.49

199.45.154.143

65.49.1.11

149.28.209.169

107.175.70.80

157.10.252.119

20.168.124.152

147.182.206.75