167.94.145.97 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
spambotsattackproxy	SSH bot	2025-02-10 14:24:23

Comments on same subnet:

IP	Type	Details	Datetime
167.94.145.64	botsattack	Apache attacker IP	2025-07-04 12:34:41
167.94.145.107	botsattackproxy	SSH bot	2025-07-02 13:03:32
167.94.145.103	spamattackproxy	Postfix attacker IP	2025-07-01 12:41:43
167.94.145.102	botsattackproxy	SSH bot	2025-06-10 14:47:50
167.94.145.99	botsattackproxy	SSH bot	2025-03-19 20:57:58
167.94.145.104	botsattackproxy	BOOT SSH	2025-03-13 13:54:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.145.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44896
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.145.97.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091600 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 19:30:02 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 97.145.94.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.145.94.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.232.152.82	attackspam	2019-11-14T17:22:29.697432shield sshd\[6290\]: Invalid user postgres from 77.232.152.82 port 32894 2019-11-14T17:22:29.701853shield sshd\[6290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.152.82 2019-11-14T17:22:30.901199shield sshd\[6290\]: Failed password for invalid user postgres from 77.232.152.82 port 32894 ssh2 2019-11-14T17:22:32.036356shield sshd\[6300\]: Invalid user postgres from 77.232.152.82 port 33314 2019-11-14T17:22:32.042070shield sshd\[6300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.152.82	2019-11-15 03:26:18
85.96.58.212	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/85.96.58.212/ TR - 1H : (76) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TR NAME ASN : ASN9121 IP : 85.96.58.212 CIDR : 85.96.0.0/18 PREFIX COUNT : 4577 UNIQUE IP COUNT : 6868736 ATTACKS DETECTED ASN9121 : 1H - 2 3H - 4 6H - 13 12H - 26 24H - 60 DateTime : 2019-11-14 15:34:12 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-15 03:41:06
79.107.209.197	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-11-15 03:22:19
51.68.44.13	attackspam	Nov 14 08:54:15 auw2 sshd\[6800\]: Invalid user ddddd from 51.68.44.13 Nov 14 08:54:15 auw2 sshd\[6800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-68-44.eu Nov 14 08:54:17 auw2 sshd\[6800\]: Failed password for invalid user ddddd from 51.68.44.13 port 47260 ssh2 Nov 14 08:57:52 auw2 sshd\[7080\]: Invalid user amo from 51.68.44.13 Nov 14 08:57:52 auw2 sshd\[7080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-68-44.eu	2019-11-15 03:34:39
186.10.64.2	attackbots	Nov 14 15:28:58 MK-Soft-Root2 sshd[9066]: Failed password for root from 186.10.64.2 port 56420 ssh2 ...	2019-11-15 03:56:36
89.100.106.42	attackbotsspam	Automatic report - Banned IP Access	2019-11-15 03:45:40
5.196.73.76	attackbots	Nov 14 18:24:49 venus sshd\[27676\]: Invalid user tehiro from 5.196.73.76 port 55240 Nov 14 18:24:49 venus sshd\[27676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.73.76 Nov 14 18:24:51 venus sshd\[27676\]: Failed password for invalid user tehiro from 5.196.73.76 port 55240 ssh2 ...	2019-11-15 03:19:10
185.43.209.24	attackbotsspam	BASTARKDE ! ELENDE HACKER DRECKS RATTEN! Nov 14 19:35:28 server plesk_saslauthd[9738]: No such user 'info@x' in mail authorization database Nov 14 19:35:28 server plesk_saslauthd[9738]: failed mail authentication attempt for user 'info@x' (password len=12) Nov 14 19:35:28 server postfix/smtpd[9737]: warning: unknown[185.43.209.24]: SASL LOGIN authentication failed: authentication failure Nov 14 19:35:28 server plesk_saslauthd[9738]: No such user 'info@x' in mail authorization database Nov 14 19:35:28 server plesk_saslauthd[9738]: failed mail authentication attempt for user 'info@x' (password len=12) Nov 14 19:35:28 server postfix/smtpd[9737]: warning: unknown[185.43.209.24]: SASL LOGIN authentication failed: authentication failure Nov 14 19:35:28 server plesk_saslauthd[9738]: No such user 'info@x' in mail authorization database Nov 14 19:35:28 server plesk_saslauthd[9738]: failed mail authentication attempt for user 'info@x' (password len=12)	2019-11-15 03:40:19
222.142.147.98	attack	Telnet/23 MH Probe, BF, Hack -	2019-11-15 03:49:59
175.172.206.125	attackspam	Nov 14 17:57:08 sauna sshd[221762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.172.206.125 ...	2019-11-15 03:28:34
106.12.137.46	attack	Nov 14 19:57:20 nextcloud sshd\[18786\]: Invalid user lauchlan from 106.12.137.46 Nov 14 19:57:20 nextcloud sshd\[18786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.137.46 Nov 14 19:57:22 nextcloud sshd\[18786\]: Failed password for invalid user lauchlan from 106.12.137.46 port 47938 ssh2 ...	2019-11-15 03:51:06
45.136.109.102	attackbotsspam	11/14/2019-13:48:34.298750 45.136.109.102 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-15 03:19:27
193.32.160.146	attackspambots	2019-11-14 13:07:21 H=([193.32.160.151]) [193.32.160.146]:40020 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.2, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBL462197) 2019-11-14 13:07:21 H=([193.32.160.151]) [193.32.160.146]:40020 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.2, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBL462197) 2019-11-14 13:07:21 H=([193.32.160.151]) [193.32.160.146]:40020 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.2, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBL462197) 2019-11-14 13:07:21 H=([193.32.160.151]) [193.32.160.146]:40020 I=[192.147.25.65]:25 F= rejected RCPT	2019-11-15 03:24:52
200.60.91.42	attackbots	Nov 14 20:20:53 icinga sshd[29028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.60.91.42 Nov 14 20:20:55 icinga sshd[29028]: Failed password for invalid user xxxxx from 200.60.91.42 port 61286 ssh2 ...	2019-11-15 03:55:44
149.200.160.185	attackspam	Unauthorised access (Nov 14) SRC=149.200.160.185 LEN=40 PREC=0x20 TTL=52 ID=40683 TCP DPT=8080 WINDOW=30261 SYN	2019-11-15 03:16:13

Recently Reported IPs

93.174.89.126	167.94.145.102	193.56.75.253	93.174.93.51
185.143.221.99	185.10.68.74	185.143.221.4	185.10.68.230
185.10.68.238	176.123.9.55	185.143.221.29	181.174.165.254
185.11.146.172	185.11.146.188	185.11.146.178	185.11.146.217
185.11.146.219	176.121.14.130	185.11.146.251	176.121.14.143