167.94.145.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.94.145.64	botsattack	Apache attacker IP	2025-07-04 12:34:41
167.94.145.107	botsattackproxy	SSH bot	2025-07-02 13:03:32
167.94.145.103	spamattackproxy	Postfix attacker IP	2025-07-01 12:41:43
167.94.145.102	botsattackproxy	SSH bot	2025-06-10 14:47:50
167.94.145.99	botsattackproxy	SSH bot	2025-03-19 20:57:58
167.94.145.104	botsattackproxy	BOOT SSH	2025-03-13 13:54:18
167.94.145.97	spambotsattackproxy	SSH bot	2025-02-10 14:24:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.145.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64437
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.145.29.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:26:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 29.145.94.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 29.145.94.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
146.88.78.130	attackbots	Port Scan/VNC login attempt ...	2020-08-08 16:39:57
85.85.71.168	attack	Automatically reported by fail2ban report script (powermetal_old)	2020-08-08 17:06:43
148.163.82.221	attackbots	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-08 17:04:24
111.229.147.229	attack	SSH brute-force attempt	2020-08-08 16:58:46
106.13.40.23	attackspambots	Aug 8 05:50:48 myvps sshd[3024]: Failed password for root from 106.13.40.23 port 39870 ssh2 Aug 8 05:52:54 myvps sshd[4338]: Failed password for root from 106.13.40.23 port 32946 ssh2 ...	2020-08-08 16:49:17
93.146.237.163	attack	SSH Brute Force	2020-08-08 16:45:31
103.8.119.166	attack	$f2bV_matches	2020-08-08 17:03:32
167.114.98.233	attackbots	Aug 8 12:12:01 journals sshd\[23437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.98.233 user=root Aug 8 12:12:03 journals sshd\[23437\]: Failed password for root from 167.114.98.233 port 40828 ssh2 Aug 8 12:15:54 journals sshd\[23946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.98.233 user=root Aug 8 12:15:56 journals sshd\[23946\]: Failed password for root from 167.114.98.233 port 52916 ssh2 Aug 8 12:19:49 journals sshd\[24327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.98.233 user=root ...	2020-08-08 17:23:41
47.244.166.23	attackbots	47.244.166.23 - - [08/Aug/2020:06:13:23 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.244.166.23 - - [08/Aug/2020:06:13:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1761 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.244.166.23 - - [08/Aug/2020:06:13:27 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-08 17:25:27
203.110.89.220	attack	Unauthorized IMAP connection attempt	2020-08-08 16:58:08
128.199.244.150	attackbotsspam	128.199.244.150 - - [08/Aug/2020:08:32:16 +0100] "POST /wp-login.php HTTP/1.1" 200 2261 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.244.150 - - [08/Aug/2020:08:32:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.244.150 - - [08/Aug/2020:08:32:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-08 17:21:54
61.72.255.26	attackspam	Aug 8 08:25:11 fhem-rasp sshd[12681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.72.255.26 user=root Aug 8 08:25:13 fhem-rasp sshd[12681]: Failed password for root from 61.72.255.26 port 54996 ssh2 ...	2020-08-08 16:42:02
83.38.120.177	attack	Unauthorized IMAP connection attempt	2020-08-08 16:37:48
104.197.12.57	attack	(mod_security) mod_security (id:920350) triggered by 104.197.12.57 (US/-/57.12.197.104.bc.googleusercontent.com): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/08 04:21:24 [error] 84060#0: 137266 [client 104.197.12.57] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159686048493.022923"] [ref "o0,17v21,17"], client: 104.197.12.57, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-08 16:42:42
138.197.189.136	attackbots	Aug 8 09:07:02 v22019038103785759 sshd\[22732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.189.136 user=root Aug 8 09:07:04 v22019038103785759 sshd\[22732\]: Failed password for root from 138.197.189.136 port 34692 ssh2 Aug 8 09:10:43 v22019038103785759 sshd\[22875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.189.136 user=root Aug 8 09:10:46 v22019038103785759 sshd\[22875\]: Failed password for root from 138.197.189.136 port 45512 ssh2 Aug 8 09:14:09 v22019038103785759 sshd\[23016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.189.136 user=root ...	2020-08-08 16:41:21

Recently Reported IPs

120.238.95.114	125.27.181.30	107.152.140.10	166.143.106.77
51.68.206.187	45.129.18.233	178.159.242.97	1.2.129.69
1.6.189.29	43.134.171.86	104.11.51.211	192.169.66.69
211.1.1.179	119.161.98.178	178.72.75.84	64.62.197.209
37.99.38.251	178.89.6.106	167.94.145.31	115.214.162.91