80.89.154.2 - IPInfo

Basic Info

City: Novosibirsk

Region: Novosibirsk Oblast

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.89.154.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51687
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.89.154.2.			IN	A

;; AUTHORITY SECTION:
.			262	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021202 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 13 06:10:47 CST 2020
;; MSG SIZE  rcvd: 115

Host info

2.154.89.80.in-addr.arpa domain name pointer ns3.omskair.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.154.89.80.in-addr.arpa	name = ns3.omskair.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.201.226.18	attack	Honeypot attack, port: 445, PTR: 18-226-201-123.static.youbroadband.in.	2020-03-01 23:45:51
185.153.196.80	attackspam	Mar 1 16:51:09 debian-2gb-nbg1-2 kernel: \[5337055.465757\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.153.196.80 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=19314 PROTO=TCP SPT=43833 DPT=6001 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-01 23:51:16
218.92.0.201	attack	Mar 1 15:27:27 server sshd[3827693]: Failed password for root from 218.92.0.201 port 48425 ssh2 Mar 1 16:27:30 server sshd[3923838]: Failed password for root from 218.92.0.201 port 25848 ssh2 Mar 1 16:27:35 server sshd[3923838]: Failed password for root from 218.92.0.201 port 25848 ssh2	2020-03-01 23:40:01
185.175.208.73	attack	Mar 1 05:10:03 wbs sshd\[19908\]: Invalid user tanxjian from 185.175.208.73 Mar 1 05:10:03 wbs sshd\[19908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.175.208.73 Mar 1 05:10:05 wbs sshd\[19908\]: Failed password for invalid user tanxjian from 185.175.208.73 port 50130 ssh2 Mar 1 05:18:40 wbs sshd\[20660\]: Invalid user rahul from 185.175.208.73 Mar 1 05:18:40 wbs sshd\[20660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.175.208.73	2020-03-01 23:37:09
181.29.4.76	attack	"SSH brute force auth login attempt."	2020-03-01 23:51:44
222.186.175.212	attackbotsspam	Mar 1 15:56:30 hcbbdb sshd\[8572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Mar 1 15:56:31 hcbbdb sshd\[8572\]: Failed password for root from 222.186.175.212 port 18844 ssh2 Mar 1 15:56:43 hcbbdb sshd\[8572\]: Failed password for root from 222.186.175.212 port 18844 ssh2 Mar 1 16:00:22 hcbbdb sshd\[9029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Mar 1 16:00:25 hcbbdb sshd\[9029\]: Failed password for root from 222.186.175.212 port 58936 ssh2	2020-03-02 00:02:23
51.254.123.127	attackspam	2020-03-01T15:18:29.976582shield sshd\[3139\]: Invalid user cpanelphppgadmin from 51.254.123.127 port 45905 2020-03-01T15:18:29.980855shield sshd\[3139\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=127.ip-51-254-123.eu 2020-03-01T15:18:31.718736shield sshd\[3139\]: Failed password for invalid user cpanelphppgadmin from 51.254.123.127 port 45905 ssh2 2020-03-01T15:24:20.105436shield sshd\[4084\]: Invalid user cpanelphpmyadmin from 51.254.123.127 port 39690 2020-03-01T15:24:20.110434shield sshd\[4084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=127.ip-51-254-123.eu	2020-03-01 23:31:16
162.238.213.216	attackbots	Mar 1 15:24:48 hcbbdb sshd\[4879\]: Invalid user andoria from 162.238.213.216 Mar 1 15:24:48 hcbbdb sshd\[4879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162-238-213-216.lightspeed.rlghnc.sbcglobal.net Mar 1 15:24:49 hcbbdb sshd\[4879\]: Failed password for invalid user andoria from 162.238.213.216 port 50388 ssh2 Mar 1 15:27:51 hcbbdb sshd\[5257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162-238-213-216.lightspeed.rlghnc.sbcglobal.net user=root Mar 1 15:27:53 hcbbdb sshd\[5257\]: Failed password for root from 162.238.213.216 port 46664 ssh2	2020-03-01 23:38:50
222.186.52.139	attackbots	Mar 1 15:51:00 sigma sshd\[20566\]: Failed password for root from 222.186.52.139 port 33290 ssh2Mar 1 15:51:02 sigma sshd\[20566\]: Failed password for root from 222.186.52.139 port 33290 ssh2 ...	2020-03-01 23:52:45
210.91.42.70	attackbots	Unauthorized connection attempt detected from IP address 210.91.42.70 to port 5555 [J]	2020-03-02 00:11:00
117.6.149.162	attackbots	Unauthorised access (Mar 1) SRC=117.6.149.162 LEN=52 TTL=110 ID=12755 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-02 00:07:30
62.234.124.196	attackbotsspam	Mar 1 14:16:14 vps691689 sshd[29129]: Failed password for root from 62.234.124.196 port 40603 ssh2 Mar 1 14:24:11 vps691689 sshd[29306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.124.196 ...	2020-03-01 23:58:27
45.125.65.42	attackbotsspam	2020-03-01 16:50:24 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=147852369\) 2020-03-01 16:50:34 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=contact@no-server.de\) 2020-03-01 16:51:44 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=contact@no-server.de\) 2020-03-01 16:51:59 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=147852369\) 2020-03-01 16:52:03 dovecot_login authenticator failed for \(User\) \[45.125.65.42\]: 535 Incorrect authentication data \(set_id=147852369\) ...	2020-03-01 23:57:18
132.232.150.20	attackbotsspam	DATE:2020-03-01 16:29:28, IP:132.232.150.20, PORT:ssh SSH brute force auth (docker-dc)	2020-03-01 23:56:29
79.59.247.163	attackspam	detected by Fail2Ban	2020-03-02 00:01:43

Recently Reported IPs

46.188.16.239	118.220.34.171	97.200.179.106	188.166.82.252
202.87.13.128	148.238.12.158	83.153.148.3	99.51.148.117
219.232.228.237	189.160.71.25	80.249.161.47	112.163.205.71
79.166.3.79	79.200.232.96	79.16.15.184	182.210.186.166
211.48.34.123	32.93.193.88	178.216.78.13	160.182.101.193