89.254.148.26 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Latvia

Internet Service Provider: Ostkom SIA

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 23 04:06:40 firewall sshd[5416]: Invalid user ftpuser from 89.254.148.26 Oct 23 04:06:42 firewall sshd[5416]: Failed password for invalid user ftpuser from 89.254.148.26 port 38410 ssh2 Oct 23 04:12:22 firewall sshd[5486]: Invalid user tandi from 89.254.148.26 ...	2019-10-23 15:57:25
attack	Sep 29 18:25:55 hpm sshd\[1896\]: Invalid user training from 89.254.148.26 Sep 29 18:25:55 hpm sshd\[1896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 18:25:57 hpm sshd\[1896\]: Failed password for invalid user training from 89.254.148.26 port 40644 ssh2 Sep 29 18:29:58 hpm sshd\[2267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=nobody Sep 29 18:30:00 hpm sshd\[2267\]: Failed password for nobody from 89.254.148.26 port 52662 ssh2	2019-09-30 12:43:23
attackspambots	Sep 29 17:56:38 MK-Soft-VM3 sshd[21888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 17:56:40 MK-Soft-VM3 sshd[21888]: Failed password for invalid user raspberry from 89.254.148.26 port 52630 ssh2 ...	2019-09-30 00:52:05
attackspam	Sep 29 07:46:28 web8 sshd\[5365\]: Invalid user train123 from 89.254.148.26 Sep 29 07:46:28 web8 sshd\[5365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 07:46:31 web8 sshd\[5365\]: Failed password for invalid user train123 from 89.254.148.26 port 53086 ssh2 Sep 29 07:50:42 web8 sshd\[7441\]: Invalid user bread@123 from 89.254.148.26 Sep 29 07:50:42 web8 sshd\[7441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-09-29 16:01:09
attackbots	Sep 28 18:41:24 ArkNodeAT sshd\[15340\]: Invalid user user from 89.254.148.26 Sep 28 18:41:24 ArkNodeAT sshd\[15340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 28 18:41:26 ArkNodeAT sshd\[15340\]: Failed password for invalid user user from 89.254.148.26 port 59274 ssh2	2019-09-29 01:36:37
attackbotsspam	Sep 16 12:25:35 icinga sshd[16027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 16 12:25:36 icinga sshd[16027]: Failed password for invalid user hts123 from 89.254.148.26 port 42830 ssh2 ...	2019-09-16 23:41:42
attack	Sep 6 04:23:48 tdfoods sshd\[15920\]: Invalid user admin1 from 89.254.148.26 Sep 6 04:23:48 tdfoods sshd\[15920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 6 04:23:50 tdfoods sshd\[15920\]: Failed password for invalid user admin1 from 89.254.148.26 port 34254 ssh2 Sep 6 04:28:02 tdfoods sshd\[16280\]: Invalid user demo from 89.254.148.26 Sep 6 04:28:02 tdfoods sshd\[16280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-09-06 22:39:32
attack	Sep 2 02:36:29 itv-usvr-01 sshd[25391]: Invalid user mai from 89.254.148.26 Sep 2 02:36:29 itv-usvr-01 sshd[25391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 02:36:29 itv-usvr-01 sshd[25391]: Invalid user mai from 89.254.148.26 Sep 2 02:36:31 itv-usvr-01 sshd[25391]: Failed password for invalid user mai from 89.254.148.26 port 52532 ssh2 Sep 2 02:45:51 itv-usvr-01 sshd[25828]: Invalid user ksb from 89.254.148.26	2019-09-05 00:51:43
attack	Sep 2 22:22:40 aiointranet sshd\[17893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Sep 2 22:22:42 aiointranet sshd\[17893\]: Failed password for root from 89.254.148.26 port 42614 ssh2 Sep 2 22:26:37 aiointranet sshd\[18189\]: Invalid user hyperic from 89.254.148.26 Sep 2 22:26:37 aiointranet sshd\[18189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 22:26:39 aiointranet sshd\[18189\]: Failed password for invalid user hyperic from 89.254.148.26 port 58074 ssh2	2019-09-03 16:38:23
attackbotsspam	Aug 27 01:38:59 microserver sshd[51711]: Invalid user gadmin from 89.254.148.26 port 38784 Aug 27 01:38:59 microserver sshd[51711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:39:02 microserver sshd[51711]: Failed password for invalid user gadmin from 89.254.148.26 port 38784 ssh2 Aug 27 01:42:58 microserver sshd[52290]: Invalid user char from 89.254.148.26 port 55518 Aug 27 01:42:58 microserver sshd[52290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:54:55 microserver sshd[53672]: Invalid user audrey from 89.254.148.26 port 53314 Aug 27 01:54:55 microserver sshd[53672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:54:56 microserver sshd[53672]: Failed password for invalid user audrey from 89.254.148.26 port 53314 ssh2 Aug 27 01:59:02 microserver sshd[54257]: Invalid user temp from 89.254.148.26 port 41826 Aug	2019-08-27 11:10:54
attackbotsspam	Aug 23 07:28:05 web9 sshd\[1074\]: Invalid user folder from 89.254.148.26 Aug 23 07:28:05 web9 sshd\[1074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 23 07:28:07 web9 sshd\[1074\]: Failed password for invalid user folder from 89.254.148.26 port 35686 ssh2 Aug 23 07:32:34 web9 sshd\[2116\]: Invalid user clock from 89.254.148.26 Aug 23 07:32:34 web9 sshd\[2116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-08-24 01:43:51
attack	Aug 17 22:12:54 tdfoods sshd\[27973\]: Invalid user awsbilling from 89.254.148.26 Aug 17 22:12:54 tdfoods sshd\[27973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 17 22:12:57 tdfoods sshd\[27973\]: Failed password for invalid user awsbilling from 89.254.148.26 port 57642 ssh2 Aug 17 22:17:28 tdfoods sshd\[28399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Aug 17 22:17:29 tdfoods sshd\[28399\]: Failed password for root from 89.254.148.26 port 48612 ssh2	2019-08-18 16:21:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.254.148.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17246
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.254.148.26.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081800 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 16:21:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

26.148.254.89.in-addr.arpa domain name pointer host.ostkom.lv.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
26.148.254.89.in-addr.arpa	name = host.ostkom.lv.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
23.254.228.163	attackbots	Jan 24 20:09:22 php1 sshd\[602\]: Invalid user centos from 23.254.228.163 Jan 24 20:09:22 php1 sshd\[602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.254.228.163 Jan 24 20:09:24 php1 sshd\[602\]: Failed password for invalid user centos from 23.254.228.163 port 37492 ssh2 Jan 24 20:11:34 php1 sshd\[871\]: Invalid user seed from 23.254.228.163 Jan 24 20:11:34 php1 sshd\[871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.254.228.163	2020-01-25 14:38:44
129.211.82.237	attack	Jan 25 07:19:11 localhost sshd\[11614\]: Invalid user do from 129.211.82.237 port 58292 Jan 25 07:19:11 localhost sshd\[11614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.82.237 Jan 25 07:19:13 localhost sshd\[11614\]: Failed password for invalid user do from 129.211.82.237 port 58292 ssh2	2020-01-25 14:39:38
106.12.148.201	attackbotsspam	Jan 25 07:12:55 pkdns2 sshd\[46681\]: Invalid user alfred from 106.12.148.201Jan 25 07:12:56 pkdns2 sshd\[46681\]: Failed password for invalid user alfred from 106.12.148.201 port 38680 ssh2Jan 25 07:15:19 pkdns2 sshd\[46852\]: Invalid user jagan from 106.12.148.201Jan 25 07:15:21 pkdns2 sshd\[46852\]: Failed password for invalid user jagan from 106.12.148.201 port 54090 ssh2Jan 25 07:17:28 pkdns2 sshd\[46984\]: Invalid user zebra from 106.12.148.201Jan 25 07:17:31 pkdns2 sshd\[46984\]: Failed password for invalid user zebra from 106.12.148.201 port 41268 ssh2 ...	2020-01-25 15:10:42
182.61.37.144	attackbots	Jan 25 06:56:48 nextcloud sshd\[12518\]: Invalid user stef from 182.61.37.144 Jan 25 06:56:48 nextcloud sshd\[12518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.37.144 Jan 25 06:56:50 nextcloud sshd\[12518\]: Failed password for invalid user stef from 182.61.37.144 port 46932 ssh2	2020-01-25 14:43:38
118.96.250.165	attack	just attempted a log in on devices. Being tracked now by officials	2020-01-25 15:13:26
51.68.127.137	attackspambots	Jan 22 16:51:14 admin sshd[3937]: Invalid user mongkol from 51.68.127.137 port 36684 Jan 22 16:51:14 admin sshd[3937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.127.137 Jan 22 16:51:16 admin sshd[3937]: Failed password for invalid user mongkol from 51.68.127.137 port 36684 ssh2 Jan 22 16:51:16 admin sshd[3937]: Received disconnect from 51.68.127.137 port 36684:11: Bye Bye [preauth] Jan 22 16:51:16 admin sshd[3937]: Disconnected from 51.68.127.137 port 36684 [preauth] Jan 22 17:10:52 admin sshd[5100]: Invalid user dylan from 51.68.127.137 port 36616 Jan 22 17:10:52 admin sshd[5100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.127.137 Jan 22 17:10:53 admin sshd[5100]: Failed password for invalid user dylan from 51.68.127.137 port 36616 ssh2 Jan 22 17:10:53 admin sshd[5100]: Received disconnect from 51.68.127.137 port 36616:11: Bye Bye [preauth] Jan 22 17:10:53 admin sshd[........ -------------------------------	2020-01-25 15:00:01
36.90.44.124	attackbots	20/1/24@23:54:54: FAIL: Alarm-Network address from=36.90.44.124 ...	2020-01-25 14:52:29
165.227.41.202	attack	Unauthorized connection attempt detected from IP address 165.227.41.202 to port 2220 [J]	2020-01-25 15:01:41
217.92.32.237	attackspam	Unauthorized connection attempt detected from IP address 217.92.32.237 to port 2220 [J]	2020-01-25 15:05:18
54.39.50.204	attackbots	Unauthorized connection attempt detected from IP address 54.39.50.204 to port 2220 [J]	2020-01-25 15:02:37
145.239.83.89	attackbotsspam	Jan 25 07:18:16 meumeu sshd[25231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.83.89 Jan 25 07:18:17 meumeu sshd[25231]: Failed password for invalid user ubuntu from 145.239.83.89 port 58924 ssh2 Jan 25 07:20:44 meumeu sshd[25551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.83.89 ...	2020-01-25 14:49:40
188.166.246.46	attack	Jan 25 08:02:41 [host] sshd[25367]: Invalid user a0 from 188.166.246.46 Jan 25 08:02:41 [host] sshd[25367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.246.46 Jan 25 08:02:42 [host] sshd[25367]: Failed password for invalid user a0 from 188.166.246.46 port 32994 ssh2	2020-01-25 15:13:17
41.231.8.214	attackbotsspam	Jan 25 06:15:32 minden010 sshd[6615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.231.8.214 Jan 25 06:15:34 minden010 sshd[6615]: Failed password for invalid user master from 41.231.8.214 port 50530 ssh2 Jan 25 06:18:26 minden010 sshd[10379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.231.8.214 ...	2020-01-25 14:36:59
149.90.109.127	attackspam	Jan 25 09:01:35 pkdns2 sshd\[53599\]: Failed password for root from 149.90.109.127 port 41530 ssh2Jan 25 09:04:39 pkdns2 sshd\[53782\]: Failed password for root from 149.90.109.127 port 40828 ssh2Jan 25 09:07:46 pkdns2 sshd\[53991\]: Invalid user herry from 149.90.109.127Jan 25 09:07:49 pkdns2 sshd\[53991\]: Failed password for invalid user herry from 149.90.109.127 port 40126 ssh2Jan 25 09:10:49 pkdns2 sshd\[54203\]: Invalid user alex from 149.90.109.127Jan 25 09:10:51 pkdns2 sshd\[54203\]: Failed password for invalid user alex from 149.90.109.127 port 39424 ssh2 ...	2020-01-25 15:18:32
167.71.77.6	attack	Unauthorized connection attempt detected from IP address 167.71.77.6 to port 3389 [J]	2020-01-25 15:15:29

Recently Reported IPs

138.70.163.248	209.209.233.175	18.70.234.176	191.176.200.76
87.25.4.108	206.47.214.127	229.213.66.88	186.76.221.126
18.148.44.93	197.183.60.211	71.181.240.188	20.116.249.122
18.33.24.36	110.33.39.11	244.216.67.244	199.124.216.19
252.15.121.28	224.188.254.91	186.227.165.250	123.207.120.158