167.94.138.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.138.155	botsattack	KnownAttacker - BadReputation	2025-07-07 12:50:52
167.94.138.63	botsattackproxy	SSH dictionary attack	2025-06-19 12:58:59
167.94.138.41	attackproxy	VoIP blacklist IP	2025-06-16 12:53:41
167.94.138.120	botsattackproxy	SSH bot	2025-06-03 12:57:02
167.94.138.163	botsattack	Fraud scan	2025-02-07 17:59:37
167.94.138.167	attack	Fraud connect	2025-01-22 13:53:35
167.94.138.147	proxy	VPN fraud	2023-06-07 12:46:29
167.94.138.33	proxy	VPN fraud.	2023-06-07 12:43:58
167.94.138.136	proxy	VPN fraud	2023-06-05 12:53:02
167.94.138.131	proxy	VPN fraud	2023-05-29 13:10:03
167.94.138.124	proxy	VPN fraud	2023-05-29 13:06:05
167.94.138.127	proxy	VPN fraud	2023-05-25 12:38:28
167.94.138.52	proxy	VPN fraud	2023-05-16 12:51:16
167.94.138.152	proxy	Scanner VPN	2023-03-21 13:50:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55629
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.85.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:11:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 85.138.94.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.138.94.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.234.62.230	attack	[portscan] tcp/21 [FTP] *(RWIN=1024)(04301449)	2020-05-01 01:18:47
162.243.137.10	attackbotsspam	Multiport scan 2 ports : 995(x4) 7777	2020-05-01 01:31:44
204.74.208.130	attackspambots	[portscan] tcp/1433 [MsSQL] [scan/connect: 2 time(s)] *(RWIN=8192)(04301449)	2020-05-01 01:24:07
45.125.218.10	attackspambots	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(04301449)	2020-05-01 01:21:06
83.97.20.31	attackspam	Port scan(s) denied	2020-05-01 01:15:52
147.203.238.18	attackspambots	[portscan] udp/1900 [ssdp] *(RWIN=-)(04301449)	2020-05-01 01:07:40
176.58.146.241	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=14776)(04301449)	2020-05-01 01:04:17
59.0.22.131	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=48074)(04301449)	2020-05-01 00:53:28
175.9.252.46	attack	[portscan] tcp/23 [TELNET] *(RWIN=37912)(04301449)	2020-05-01 01:04:53
176.58.132.197	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=28002)(04301449)	2020-05-01 01:26:56
168.0.68.230	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=3898)(04301449)	2020-05-01 01:29:01
47.241.6.46	attackspam	[portscan] tcp/22 [SSH] [scan/connect: 2 time(s)] in blocklist.de:'listed [ssh]' *(RWIN=1024)(04301449)	2020-05-01 01:19:30
85.186.84.245	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=28149)(04301449)	2020-05-01 01:15:35
49.85.233.96	attackbots	Apr 29 01:52:00 server770 sshd[11919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.85.233.96 user=backup Apr 29 01:52:02 server770 sshd[11919]: Failed password for backup from 49.85.233.96 port 44902 ssh2 Apr 29 01:52:03 server770 sshd[11919]: Received disconnect from 49.85.233.96 port 44902:11: Bye Bye [preauth] Apr 29 01:52:03 server770 sshd[11919]: Disconnected from 49.85.233.96 port 44902 [preauth] Apr 29 02:16:40 server770 sshd[12348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.85.233.96 user=r.r Apr 29 02:16:42 server770 sshd[12348]: Failed password for r.r from 49.85.233.96 port 38008 ssh2 Apr 29 02:16:42 server770 sshd[12348]: Received disconnect from 49.85.233.96 port 38008:11: Bye Bye [preauth] Apr 29 02:16:42 server770 sshd[12348]: Disconnected from 49.85.233.96 port 38008 [preauth] Apr 29 02:19:36 server770 sshd[12368]: Invalid user sm from 49.85.233.96 port 3447........ -------------------------------	2020-05-01 00:54:40
158.140.138.160	attack	[portscan] tcp/23 [TELNET] in sorbs:'listed [spam]' *(RWIN=39772)(04301449)	2020-05-01 01:32:57

Recently Reported IPs

212.47.143.62	37.48.117.204	172.107.223.226	178.208.15.249
85.104.2.6	119.118.28.213	35.241.199.123	185.140.161.77
5.2.72.168	192.241.211.199	103.140.126.189	149.72.166.85
115.54.243.18	185.154.211.132	89.174.32.224	113.241.136.83
205.214.74.6	192.241.204.91	177.79.109.133	196.0.3.7