89.254.148.26 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Latvia

Internet Service Provider: Ostkom SIA

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 23 04:06:40 firewall sshd[5416]: Invalid user ftpuser from 89.254.148.26 Oct 23 04:06:42 firewall sshd[5416]: Failed password for invalid user ftpuser from 89.254.148.26 port 38410 ssh2 Oct 23 04:12:22 firewall sshd[5486]: Invalid user tandi from 89.254.148.26 ...	2019-10-23 15:57:25
attack	Sep 29 18:25:55 hpm sshd\[1896\]: Invalid user training from 89.254.148.26 Sep 29 18:25:55 hpm sshd\[1896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 18:25:57 hpm sshd\[1896\]: Failed password for invalid user training from 89.254.148.26 port 40644 ssh2 Sep 29 18:29:58 hpm sshd\[2267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=nobody Sep 29 18:30:00 hpm sshd\[2267\]: Failed password for nobody from 89.254.148.26 port 52662 ssh2	2019-09-30 12:43:23
attackspambots	Sep 29 17:56:38 MK-Soft-VM3 sshd[21888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 17:56:40 MK-Soft-VM3 sshd[21888]: Failed password for invalid user raspberry from 89.254.148.26 port 52630 ssh2 ...	2019-09-30 00:52:05
attackspam	Sep 29 07:46:28 web8 sshd\[5365\]: Invalid user train123 from 89.254.148.26 Sep 29 07:46:28 web8 sshd\[5365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 07:46:31 web8 sshd\[5365\]: Failed password for invalid user train123 from 89.254.148.26 port 53086 ssh2 Sep 29 07:50:42 web8 sshd\[7441\]: Invalid user bread@123 from 89.254.148.26 Sep 29 07:50:42 web8 sshd\[7441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-09-29 16:01:09
attackbots	Sep 28 18:41:24 ArkNodeAT sshd\[15340\]: Invalid user user from 89.254.148.26 Sep 28 18:41:24 ArkNodeAT sshd\[15340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 28 18:41:26 ArkNodeAT sshd\[15340\]: Failed password for invalid user user from 89.254.148.26 port 59274 ssh2	2019-09-29 01:36:37
attackbotsspam	Sep 16 12:25:35 icinga sshd[16027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 16 12:25:36 icinga sshd[16027]: Failed password for invalid user hts123 from 89.254.148.26 port 42830 ssh2 ...	2019-09-16 23:41:42
attack	Sep 6 04:23:48 tdfoods sshd\[15920\]: Invalid user admin1 from 89.254.148.26 Sep 6 04:23:48 tdfoods sshd\[15920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 6 04:23:50 tdfoods sshd\[15920\]: Failed password for invalid user admin1 from 89.254.148.26 port 34254 ssh2 Sep 6 04:28:02 tdfoods sshd\[16280\]: Invalid user demo from 89.254.148.26 Sep 6 04:28:02 tdfoods sshd\[16280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-09-06 22:39:32
attack	Sep 2 02:36:29 itv-usvr-01 sshd[25391]: Invalid user mai from 89.254.148.26 Sep 2 02:36:29 itv-usvr-01 sshd[25391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 02:36:29 itv-usvr-01 sshd[25391]: Invalid user mai from 89.254.148.26 Sep 2 02:36:31 itv-usvr-01 sshd[25391]: Failed password for invalid user mai from 89.254.148.26 port 52532 ssh2 Sep 2 02:45:51 itv-usvr-01 sshd[25828]: Invalid user ksb from 89.254.148.26	2019-09-05 00:51:43
attack	Sep 2 22:22:40 aiointranet sshd\[17893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Sep 2 22:22:42 aiointranet sshd\[17893\]: Failed password for root from 89.254.148.26 port 42614 ssh2 Sep 2 22:26:37 aiointranet sshd\[18189\]: Invalid user hyperic from 89.254.148.26 Sep 2 22:26:37 aiointranet sshd\[18189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 22:26:39 aiointranet sshd\[18189\]: Failed password for invalid user hyperic from 89.254.148.26 port 58074 ssh2	2019-09-03 16:38:23
attackbotsspam	Aug 27 01:38:59 microserver sshd[51711]: Invalid user gadmin from 89.254.148.26 port 38784 Aug 27 01:38:59 microserver sshd[51711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:39:02 microserver sshd[51711]: Failed password for invalid user gadmin from 89.254.148.26 port 38784 ssh2 Aug 27 01:42:58 microserver sshd[52290]: Invalid user char from 89.254.148.26 port 55518 Aug 27 01:42:58 microserver sshd[52290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:54:55 microserver sshd[53672]: Invalid user audrey from 89.254.148.26 port 53314 Aug 27 01:54:55 microserver sshd[53672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:54:56 microserver sshd[53672]: Failed password for invalid user audrey from 89.254.148.26 port 53314 ssh2 Aug 27 01:59:02 microserver sshd[54257]: Invalid user temp from 89.254.148.26 port 41826 Aug	2019-08-27 11:10:54
attackbotsspam	Aug 23 07:28:05 web9 sshd\[1074\]: Invalid user folder from 89.254.148.26 Aug 23 07:28:05 web9 sshd\[1074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 23 07:28:07 web9 sshd\[1074\]: Failed password for invalid user folder from 89.254.148.26 port 35686 ssh2 Aug 23 07:32:34 web9 sshd\[2116\]: Invalid user clock from 89.254.148.26 Aug 23 07:32:34 web9 sshd\[2116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-08-24 01:43:51
attack	Aug 17 22:12:54 tdfoods sshd\[27973\]: Invalid user awsbilling from 89.254.148.26 Aug 17 22:12:54 tdfoods sshd\[27973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 17 22:12:57 tdfoods sshd\[27973\]: Failed password for invalid user awsbilling from 89.254.148.26 port 57642 ssh2 Aug 17 22:17:28 tdfoods sshd\[28399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Aug 17 22:17:29 tdfoods sshd\[28399\]: Failed password for root from 89.254.148.26 port 48612 ssh2	2019-08-18 16:21:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.254.148.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17246
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.254.148.26.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081800 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 16:21:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

26.148.254.89.in-addr.arpa domain name pointer host.ostkom.lv.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
26.148.254.89.in-addr.arpa	name = host.ostkom.lv.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.55.39.122	attack	Automatic report - Banned IP Access	2019-07-29 04:27:39
134.209.145.110	attackbotsspam	Jul 28 10:06:34 km20725 sshd[11472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.145.110 user=r.r Jul 28 10:06:36 km20725 sshd[11472]: Failed password for r.r from 134.209.145.110 port 53240 ssh2 Jul 28 10:06:36 km20725 sshd[11472]: Received disconnect from 134.209.145.110: 11: Bye Bye [preauth] Jul 28 10:07:28 km20725 sshd[11586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.145.110 user=r.r Jul 28 10:07:30 km20725 sshd[11586]: Failed password for r.r from 134.209.145.110 port 51700 ssh2 Jul 28 10:07:30 km20725 sshd[11586]: Received disconnect from 134.209.145.110: 11: Bye Bye [preauth] Jul 28 10:19:58 km20725 sshd[12307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.145.110 user=r.r Jul 28 10:20:00 km20725 sshd[12307]: Failed password for r.r from 134.209.145.110 port 45472 ssh2 Jul 28 10:20:01 km20725 sshd[12307]........ -------------------------------	2019-07-29 04:23:17
106.39.44.11	attackbotsspam	Jul 28 22:51:10 * sshd[23891]: Failed password for invalid user zabbix from 106.39.44.11 port 61731 ssh2 Jul 28 22:51:12 * sshd[23893]: Failed password for invalid user zabbix from 106.39.44.11 port 61900 ssh2	2019-07-29 04:12:34
54.88.164.214	attackspam	Fail2Ban Ban Triggered	2019-07-29 04:12:09
222.165.182.130	attack	/wp-login.php	2019-07-29 03:46:06
88.89.54.108	attack	Jul 28 22:23:34 server01 sshd\[21315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.89.54.108 user=root Jul 28 22:23:36 server01 sshd\[21315\]: Failed password for root from 88.89.54.108 port 50126 ssh2 Jul 28 22:32:04 server01 sshd\[21401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.89.54.108 user=root ...	2019-07-29 04:27:57
178.128.21.32	attackbotsspam	Jul 28 17:39:12 nextcloud sshd\[17105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.32 user=root Jul 28 17:39:14 nextcloud sshd\[17105\]: Failed password for root from 178.128.21.32 port 42272 ssh2 Jul 28 17:44:06 nextcloud sshd\[28787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.21.32 user=root ...	2019-07-29 04:18:05
176.31.100.19	attackspam	Jul 28 19:16:02 localhost sshd\[29272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.100.19 user=root Jul 28 19:16:05 localhost sshd\[29272\]: Failed password for root from 176.31.100.19 port 36858 ssh2 ...	2019-07-29 04:35:53
93.125.93.218	attackbots	Automatic report - Port Scan Attack	2019-07-29 04:33:32
138.118.214.12	attackbotsspam	19/7/28@07:16:00: FAIL: Alarm-Intrusion address from=138.118.214.12 ...	2019-07-29 04:32:48
86.101.56.141	attackbotsspam	Jul 28 21:40:18 eventyay sshd[29274]: Failed password for root from 86.101.56.141 port 60694 ssh2 Jul 28 21:44:50 eventyay sshd[30230]: Failed password for root from 86.101.56.141 port 54410 ssh2 ...	2019-07-29 03:59:51
221.124.40.112	attackbotsspam	http	2019-07-29 03:51:47
27.254.206.238	attackspambots	Jul 28 19:55:21 vps691689 sshd[11477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.206.238 Jul 28 19:55:23 vps691689 sshd[11477]: Failed password for invalid user !7350r13r0 from 27.254.206.238 port 45366 ssh2 Jul 28 20:00:52 vps691689 sshd[11509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.206.238 ...	2019-07-29 04:18:29
201.182.223.59	attackbots	Jul 28 13:14:09 xeon sshd[26355]: Failed password for root from 201.182.223.59 port 48850 ssh2	2019-07-29 04:31:38
172.217.8.14	attack	monitor activities of rr.com/moderation and review of laws and IT/ISP service provider liable for tax /rr.com current hacking ISP /LIKELY reversed timezone /applying that for yrs/likely googlesyndication.com/etc hacking yrs to come/online digital print/ID -traceroute checks -dodging tax etc albeit a Service Provider/all other service providers pay tax famous GSTATIC MAC .COM repetitive ssl.gstatic.com pic requests/traffic lights/motorcycles usually parked opposite/bus drivers opposite/akamai online stalking reviews	2019-07-29 04:37:05

Recently Reported IPs

138.70.163.248	209.209.233.175	18.70.234.176	191.176.200.76
87.25.4.108	206.47.214.127	229.213.66.88	186.76.221.126
18.148.44.93	197.183.60.211	71.181.240.188	20.116.249.122
18.33.24.36	110.33.39.11	244.216.67.244	199.124.216.19
252.15.121.28	224.188.254.91	186.227.165.250	123.207.120.158