89.254.148.26 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Latvia

Internet Service Provider: Ostkom SIA

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 23 04:06:40 firewall sshd[5416]: Invalid user ftpuser from 89.254.148.26 Oct 23 04:06:42 firewall sshd[5416]: Failed password for invalid user ftpuser from 89.254.148.26 port 38410 ssh2 Oct 23 04:12:22 firewall sshd[5486]: Invalid user tandi from 89.254.148.26 ...	2019-10-23 15:57:25
attack	Sep 29 18:25:55 hpm sshd\[1896\]: Invalid user training from 89.254.148.26 Sep 29 18:25:55 hpm sshd\[1896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 18:25:57 hpm sshd\[1896\]: Failed password for invalid user training from 89.254.148.26 port 40644 ssh2 Sep 29 18:29:58 hpm sshd\[2267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=nobody Sep 29 18:30:00 hpm sshd\[2267\]: Failed password for nobody from 89.254.148.26 port 52662 ssh2	2019-09-30 12:43:23
attackspambots	Sep 29 17:56:38 MK-Soft-VM3 sshd[21888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 17:56:40 MK-Soft-VM3 sshd[21888]: Failed password for invalid user raspberry from 89.254.148.26 port 52630 ssh2 ...	2019-09-30 00:52:05
attackspam	Sep 29 07:46:28 web8 sshd\[5365\]: Invalid user train123 from 89.254.148.26 Sep 29 07:46:28 web8 sshd\[5365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 29 07:46:31 web8 sshd\[5365\]: Failed password for invalid user train123 from 89.254.148.26 port 53086 ssh2 Sep 29 07:50:42 web8 sshd\[7441\]: Invalid user bread@123 from 89.254.148.26 Sep 29 07:50:42 web8 sshd\[7441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-09-29 16:01:09
attackbots	Sep 28 18:41:24 ArkNodeAT sshd\[15340\]: Invalid user user from 89.254.148.26 Sep 28 18:41:24 ArkNodeAT sshd\[15340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 28 18:41:26 ArkNodeAT sshd\[15340\]: Failed password for invalid user user from 89.254.148.26 port 59274 ssh2	2019-09-29 01:36:37
attackbotsspam	Sep 16 12:25:35 icinga sshd[16027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 16 12:25:36 icinga sshd[16027]: Failed password for invalid user hts123 from 89.254.148.26 port 42830 ssh2 ...	2019-09-16 23:41:42
attack	Sep 6 04:23:48 tdfoods sshd\[15920\]: Invalid user admin1 from 89.254.148.26 Sep 6 04:23:48 tdfoods sshd\[15920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 6 04:23:50 tdfoods sshd\[15920\]: Failed password for invalid user admin1 from 89.254.148.26 port 34254 ssh2 Sep 6 04:28:02 tdfoods sshd\[16280\]: Invalid user demo from 89.254.148.26 Sep 6 04:28:02 tdfoods sshd\[16280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-09-06 22:39:32
attack	Sep 2 02:36:29 itv-usvr-01 sshd[25391]: Invalid user mai from 89.254.148.26 Sep 2 02:36:29 itv-usvr-01 sshd[25391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 02:36:29 itv-usvr-01 sshd[25391]: Invalid user mai from 89.254.148.26 Sep 2 02:36:31 itv-usvr-01 sshd[25391]: Failed password for invalid user mai from 89.254.148.26 port 52532 ssh2 Sep 2 02:45:51 itv-usvr-01 sshd[25828]: Invalid user ksb from 89.254.148.26	2019-09-05 00:51:43
attack	Sep 2 22:22:40 aiointranet sshd\[17893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Sep 2 22:22:42 aiointranet sshd\[17893\]: Failed password for root from 89.254.148.26 port 42614 ssh2 Sep 2 22:26:37 aiointranet sshd\[18189\]: Invalid user hyperic from 89.254.148.26 Sep 2 22:26:37 aiointranet sshd\[18189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Sep 2 22:26:39 aiointranet sshd\[18189\]: Failed password for invalid user hyperic from 89.254.148.26 port 58074 ssh2	2019-09-03 16:38:23
attackbotsspam	Aug 27 01:38:59 microserver sshd[51711]: Invalid user gadmin from 89.254.148.26 port 38784 Aug 27 01:38:59 microserver sshd[51711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:39:02 microserver sshd[51711]: Failed password for invalid user gadmin from 89.254.148.26 port 38784 ssh2 Aug 27 01:42:58 microserver sshd[52290]: Invalid user char from 89.254.148.26 port 55518 Aug 27 01:42:58 microserver sshd[52290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:54:55 microserver sshd[53672]: Invalid user audrey from 89.254.148.26 port 53314 Aug 27 01:54:55 microserver sshd[53672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 27 01:54:56 microserver sshd[53672]: Failed password for invalid user audrey from 89.254.148.26 port 53314 ssh2 Aug 27 01:59:02 microserver sshd[54257]: Invalid user temp from 89.254.148.26 port 41826 Aug	2019-08-27 11:10:54
attackbotsspam	Aug 23 07:28:05 web9 sshd\[1074\]: Invalid user folder from 89.254.148.26 Aug 23 07:28:05 web9 sshd\[1074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 23 07:28:07 web9 sshd\[1074\]: Failed password for invalid user folder from 89.254.148.26 port 35686 ssh2 Aug 23 07:32:34 web9 sshd\[2116\]: Invalid user clock from 89.254.148.26 Aug 23 07:32:34 web9 sshd\[2116\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26	2019-08-24 01:43:51
attack	Aug 17 22:12:54 tdfoods sshd\[27973\]: Invalid user awsbilling from 89.254.148.26 Aug 17 22:12:54 tdfoods sshd\[27973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 Aug 17 22:12:57 tdfoods sshd\[27973\]: Failed password for invalid user awsbilling from 89.254.148.26 port 57642 ssh2 Aug 17 22:17:28 tdfoods sshd\[28399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.254.148.26 user=root Aug 17 22:17:29 tdfoods sshd\[28399\]: Failed password for root from 89.254.148.26 port 48612 ssh2	2019-08-18 16:21:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.254.148.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17246
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.254.148.26.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081800 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 16:21:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

26.148.254.89.in-addr.arpa domain name pointer host.ostkom.lv.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
26.148.254.89.in-addr.arpa	name = host.ostkom.lv.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.202.206.206	attackbotsspam	Feb 2 06:58:22 [host] sshd[6318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.206.206 user=root Feb 2 06:58:23 [host] sshd[6318]: Failed password for root from 149.202.206.206 port 45015 ssh2 Feb 2 07:02:20 [host] sshd[6447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.206.206 user=root	2020-02-02 14:02:27
137.117.182.16	attackspam	Brute forcing email accounts	2020-02-02 14:20:50
182.184.44.6	attackspam	Feb 2 05:56:57 lnxmysql61 sshd[9205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.184.44.6	2020-02-02 14:22:47
185.184.138.195	attackbotsspam	3389BruteforceFW23	2020-02-02 14:08:34
91.99.29.206	attackbotsspam	3389BruteforceFW23	2020-02-02 13:59:31
42.231.162.14	attackspambots	Feb 2 05:56:58 grey postfix/smtpd\[22281\]: NOQUEUE: reject: RCPT from unknown\[42.231.162.14\]: 554 5.7.1 Service unavailable\; Client host \[42.231.162.14\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[42.231.162.14\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-02 14:23:22
80.24.111.17	attackspambots	Unauthorized connection attempt detected from IP address 80.24.111.17 to port 2220 [J]	2020-02-02 13:44:49
111.90.150.204	spamattacknormal	Give me diamond mobile lagends	2020-02-02 13:47:15
159.203.251.90	attackbotsspam	Feb 2 05:53:35 XXX sshd[32729]: Invalid user billy from 159.203.251.90 port 59802	2020-02-02 14:03:19
165.22.97.137	attack	Invalid user bhagat from 165.22.97.137 port 50448	2020-02-02 14:07:58
69.229.6.45	attack	Invalid user shambhu from 69.229.6.45 port 52518	2020-02-02 14:15:56
121.136.140.186	attack	Feb 2 06:41:32 legacy sshd[22324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.136.140.186 Feb 2 06:41:34 legacy sshd[22324]: Failed password for invalid user user from 121.136.140.186 port 48490 ssh2 Feb 2 06:45:06 legacy sshd[22440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.136.140.186 ...	2020-02-02 13:49:20
106.13.136.73	attack	Unauthorized connection attempt detected from IP address 106.13.136.73 to port 2220 [J]	2020-02-02 14:12:21
188.118.18.16	attackspambots	Feb 2 06:47:39 vps647732 sshd[16394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.118.18.16 Feb 2 06:47:41 vps647732 sshd[16394]: Failed password for invalid user jenkins from 188.118.18.16 port 43474 ssh2 ...	2020-02-02 14:04:16
104.245.144.41	attackspambots	(From micki.liardet@hotmail.com) Would you like to submit your advertisement on 1000's of Advertising sites monthly? One tiny investment every month will get you virtually endless traffic to your site forever!To find out more check out our site here: http://www.submitmyadnow.tech	2020-02-02 14:12:53

Recently Reported IPs

138.70.163.248	209.209.233.175	18.70.234.176	191.176.200.76
87.25.4.108	206.47.214.127	229.213.66.88	186.76.221.126
18.148.44.93	197.183.60.211	71.181.240.188	20.116.249.122
18.33.24.36	110.33.39.11	244.216.67.244	199.124.216.19
252.15.121.28	224.188.254.91	186.227.165.250	123.207.120.158