109.189.199.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.189.199.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62410
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.189.199.1.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022052000 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 20 14:34:05 CST 2022
;; MSG SIZE  rcvd: 106

Host info

1.199.189.109.in-addr.arpa domain name pointer ti0016q160-gw.ti.telenor.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.199.189.109.in-addr.arpa	name = ti0016q160-gw.ti.telenor.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
163.172.206.78	attack	2019-10-22T07:48:27.656924-07:00 suse-nuc sshd[31670]: Invalid user erick from 163.172.206.78 port 52666 ...	2019-10-22 22:58:53
63.80.184.91	attackbotsspam	Oct 22 13:49:20 smtp postfix/smtpd[83293]: NOQUEUE: reject: RCPT from seed.sapuxfiori.com[63.80.184.91]: 554 5.7.1 Service unavailable; Client host [63.80.184.91] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= ...	2019-10-22 23:11:05
222.186.175.148	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-10-22 23:22:09
189.69.127.108	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.69.127.108/ BR - 1H : (274) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 189.69.127.108 CIDR : 189.69.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 5 3H - 10 6H - 30 12H - 60 24H - 109 DateTime : 2019-10-22 13:49:14 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-22 23:12:39
193.32.160.150	attackspambots	2019-10-22 09:24:50 H=([193.32.160.150]) [193.32.160.150]:9206 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.2) (https://www.spamhaus.org/sbl/query/SBL462197) 2019-10-22 09:24:50 H=([193.32.160.150]) [193.32.160.150]:9206 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.2) (https://www.spamhaus.org/sbl/query/SBL462197) 2019-10-22 09:24:50 H=([193.32.160.150]) [193.32.160.150]:9206 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.2) (https://www.spamhaus.org/sbl/query/SBL462197) 2019-10-22 09:24:50 H=([193.32.160.150]) [193.32.160.150]:9206 I=[192.147.25.65]:25 F= rejected RCPT	2019-10-22 23:39:20
212.237.22.95	attackspambots	Oct 22 16:29:23 lnxweb62 sshd[16655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.22.95	2019-10-22 23:02:08
106.13.142.115	attackspambots	Oct 22 14:38:02 eventyay sshd[9333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.115 Oct 22 14:38:04 eventyay sshd[9333]: Failed password for invalid user wayside from 106.13.142.115 port 41570 ssh2 Oct 22 14:43:45 eventyay sshd[9427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.142.115 ...	2019-10-22 22:57:27
163.172.42.123	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-22 23:18:29
185.4.132.177	attackspambots	Email spam message	2019-10-22 23:23:51
118.24.193.176	attackspambots	Oct 22 17:10:58 localhost sshd\[802\]: Invalid user trinette from 118.24.193.176 port 58586 Oct 22 17:10:58 localhost sshd\[802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.193.176 Oct 22 17:10:59 localhost sshd\[802\]: Failed password for invalid user trinette from 118.24.193.176 port 58586 ssh2	2019-10-22 23:13:38
36.67.182.64	attack	SSH invalid-user multiple login attempts	2019-10-22 23:39:48
190.54.22.66	attackspam	Automatic report - Port Scan Attack	2019-10-22 22:57:58
221.228.111.131	attackbotsspam	2019-10-22T15:02:44.822183abusebot-5.cloudsearch.cf sshd\[21718\]: Invalid user test from 221.228.111.131 port 36464	2019-10-22 23:41:33
173.212.216.165	attackbots	Automatic report - XMLRPC Attack	2019-10-22 23:44:05
49.83.219.27	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/49.83.219.27/ CN - 1H : (413) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 49.83.219.27 CIDR : 49.80.0.0/14 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 6 3H - 21 6H - 41 12H - 79 24H - 159 DateTime : 2019-10-22 13:48:57 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-22 23:27:19

Recently Reported IPs

66.196.251.234	109.189.208.1	109.189.209.1	109.189.210.1
109.189.212.1	109.189.213.1	85.67.59.245	109.199.244.62
109.199.80.82	109.200.130.166	109.200.133.25	109.200.133.50
109.200.136.1	109.200.136.5	109.200.137.80	158.86.164.129
109.200.140.89	109.200.171.17	109.201.134.5	109.202.72.19