109.106.252.166

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.106.252.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.106.252.166.		IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031701 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 18 08:06:17 CST 2022
;; MSG SIZE  rcvd: 108

Host info

166.252.106.109.in-addr.arpa domain name pointer srv129.niagahoster.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.252.106.109.in-addr.arpa	name = srv129.niagahoster.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.24.158.42	attack	2020-01-19T14:06:25.078030shield sshd\[16495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 user=root 2020-01-19T14:06:27.490265shield sshd\[16495\]: Failed password for root from 118.24.158.42 port 59854 ssh2 2020-01-19T14:08:58.772066shield sshd\[17376\]: Invalid user homepage from 118.24.158.42 port 50128 2020-01-19T14:08:58.779658shield sshd\[17376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 2020-01-19T14:09:00.529886shield sshd\[17376\]: Failed password for invalid user homepage from 118.24.158.42 port 50128 ssh2	2020-01-19 22:18:45
222.186.30.209	attackbotsspam	01/19/2020-09:00:05.591377 222.186.30.209 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-19 22:04:13
79.106.1.104	attackbots	Jan 19 13:58:16 debian-2gb-nbg1-2 kernel: \[1697984.466024\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=79.106.1.104 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=5749 PROTO=TCP SPT=8491 DPT=8000 WINDOW=1825 RES=0x00 SYN URGP=0	2020-01-19 22:28:16
154.93.5.53	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-19 22:36:24
120.78.88.169	attackbotsspam	Port scan on 3 port(s): 2375 2376 4244	2020-01-19 22:16:06
61.177.172.128	attackspam	Jan 19 14:54:00 ns3042688 sshd\[19963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root Jan 19 14:54:02 ns3042688 sshd\[19963\]: Failed password for root from 61.177.172.128 port 6753 ssh2 Jan 19 14:54:22 ns3042688 sshd\[20078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.128 user=root Jan 19 14:54:23 ns3042688 sshd\[20078\]: Failed password for root from 61.177.172.128 port 46751 ssh2 Jan 19 14:54:29 ns3042688 sshd\[20078\]: Failed password for root from 61.177.172.128 port 46751 ssh2 ...	2020-01-19 22:34:49
222.186.30.57	attackspam	SSH brutforce	2020-01-19 22:02:55
92.118.37.53	attackbots	Jan 19 15:02:00 h2177944 kernel: \[2640875.987014\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.53 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=3111 PROTO=TCP SPT=41131 DPT=6106 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 19 15:02:00 h2177944 kernel: \[2640875.987029\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.53 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=3111 PROTO=TCP SPT=41131 DPT=6106 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 19 15:02:23 h2177944 kernel: \[2640899.330634\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.53 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=21027 PROTO=TCP SPT=41131 DPT=6335 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 19 15:02:23 h2177944 kernel: \[2640899.330647\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.53 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=21027 PROTO=TCP SPT=41131 DPT=6335 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 19 15:02:31 h2177944 kernel: \[2640907.551029\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.53 DST=85.214.117.9 LEN=40	2020-01-19 22:09:45
1.215.251.44	attack	$f2bV_matches	2020-01-19 22:03:45
41.41.115.82	attack	Brute force attempt	2020-01-19 22:13:41
110.137.125.67	attackbots	Unauthorized connection attempt from IP address 110.137.125.67 on Port 445(SMB)	2020-01-19 22:01:48
185.176.27.166	attackbots	Jan 19 14:52:28 debian-2gb-nbg1-2 kernel: \[1701236.806731\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=34342 PROTO=TCP SPT=43223 DPT=11303 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-19 22:10:15
185.111.183.40	attackbots	Jan 19 13:58:36 grey postfix/smtpd\[21538\]: NOQUEUE: reject: RCPT from srv40.ypclistmanager.com\[185.111.183.40\]: 554 5.7.1 Service unavailable\; Client host \[185.111.183.40\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?185.111.183.40\; from=\<16e7c7cf3832b23a5d7b401ed64000df@ypclistmanager.com\> to=\ proto=ESMTP helo=\ ...	2020-01-19 22:11:48
138.197.162.164	attackspambots	Hadoop Web app exploit. Request : [07:12:39] => POST /ws/v1/cluster/apps/new-application HTTP/1.1	2020-01-19 22:29:30
5.135.165.51	attackspam	Unauthorized connection attempt detected from IP address 5.135.165.51 to port 2220 [J]	2020-01-19 22:07:21

Recently Reported IPs

196.165.9.51	109.106.252.62	109.106.253.203	109.106.253.92
109.106.254.104	109.106.254.114	109.106.254.129	109.106.254.160
55.247.209.76	109.106.254.162	109.106.254.175	109.106.254.184
109.106.254.206	109.106.254.214	109.106.254.75	109.106.254.78
109.106.254.95	109.106.255.171	109.107.35.193	109.107.36.63