81.219.94.126 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: OstMedia Sp. z o.o.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126] Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126] Sep 11 18:16:04 mail.srvfarm.net postfix/smtpd[3889545]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed:	2020-09-13 01:43:53
attackbots	Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126] Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126] Sep 11 18:16:04 mail.srvfarm.net postfix/smtpd[3889545]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed:	2020-09-12 17:43:54
attackspam	$f2bV_matches	2020-08-20 16:11:44

Type

Details

Datetime

attackspambots

Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: 
Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126]
Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: 
Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126]
Sep 11 18:16:04 mail.srvfarm.net postfix/smtpd[3889545]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed:

2020-09-13 01:43:53

attackbots

Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: 
Sep 11 18:09:08 mail.srvfarm.net postfix/smtpd[3874760]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126]
Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed: 
Sep 11 18:13:20 mail.srvfarm.net postfix/smtpd[3890715]: lost connection after AUTH from 81-219-94-126.ostmedia.pl[81.219.94.126]
Sep 11 18:16:04 mail.srvfarm.net postfix/smtpd[3889545]: warning: 81-219-94-126.ostmedia.pl[81.219.94.126]: SASL PLAIN authentication failed:

2020-09-12 17:43:54

attackspam

$f2bV_matches

2020-08-20 16:11:44

Comments on same subnet:

IP	Type	Details	Datetime
81.219.94.38	attackspambots	Sep 12 18:21:11 mail.srvfarm.net postfix/smtps/smtpd[547064]: warning: 81-219-94-38.ostmedia.pl[81.219.94.38]: SASL PLAIN authentication failed: Sep 12 18:21:11 mail.srvfarm.net postfix/smtps/smtpd[547064]: lost connection after AUTH from 81-219-94-38.ostmedia.pl[81.219.94.38] Sep 12 18:25:32 mail.srvfarm.net postfix/smtpd[534020]: warning: 81-219-94-38.ostmedia.pl[81.219.94.38]: SASL PLAIN authentication failed: Sep 12 18:25:32 mail.srvfarm.net postfix/smtpd[534020]: lost connection after AUTH from 81-219-94-38.ostmedia.pl[81.219.94.38] Sep 12 18:28:59 mail.srvfarm.net postfix/smtps/smtpd[548128]: warning: 81-219-94-38.ostmedia.pl[81.219.94.38]: SASL PLAIN authentication failed:	2020-09-14 01:45:51
81.219.94.38	attackbotsspam	Sep 12 18:21:11 mail.srvfarm.net postfix/smtps/smtpd[547064]: warning: 81-219-94-38.ostmedia.pl[81.219.94.38]: SASL PLAIN authentication failed: Sep 12 18:21:11 mail.srvfarm.net postfix/smtps/smtpd[547064]: lost connection after AUTH from 81-219-94-38.ostmedia.pl[81.219.94.38] Sep 12 18:25:32 mail.srvfarm.net postfix/smtpd[534020]: warning: 81-219-94-38.ostmedia.pl[81.219.94.38]: SASL PLAIN authentication failed: Sep 12 18:25:32 mail.srvfarm.net postfix/smtpd[534020]: lost connection after AUTH from 81-219-94-38.ostmedia.pl[81.219.94.38] Sep 12 18:28:59 mail.srvfarm.net postfix/smtps/smtpd[548128]: warning: 81-219-94-38.ostmedia.pl[81.219.94.38]: SASL PLAIN authentication failed:	2020-09-13 17:41:55
81.219.94.6	attackspambots	Unauthorized connection attempt from IP address 81.219.94.6 on Port 465(SMTPS)	2020-08-31 22:51:31
81.219.94.6	attack	Brute force attempt	2020-08-30 08:05:24
81.219.94.162	attackspambots	Aug 27 22:52:00 mailman postfix/smtpd[32685]: warning: 81-219-94-162.ostmedia.pl[81.219.94.162]: SASL PLAIN authentication failed: authentication failure	2020-08-28 15:43:27
81.219.94.125	attack	Aug 27 04:22:08 mail.srvfarm.net postfix/smtpd[1314737]: warning: 81-219-94-125.ostmedia.pl[81.219.94.125]: SASL PLAIN authentication failed: Aug 27 04:22:08 mail.srvfarm.net postfix/smtpd[1314737]: lost connection after AUTH from 81-219-94-125.ostmedia.pl[81.219.94.125] Aug 27 04:26:23 mail.srvfarm.net postfix/smtpd[1328470]: warning: 81-219-94-125.ostmedia.pl[81.219.94.125]: SASL PLAIN authentication failed: Aug 27 04:26:23 mail.srvfarm.net postfix/smtpd[1328470]: lost connection after AUTH from 81-219-94-125.ostmedia.pl[81.219.94.125] Aug 27 04:29:24 mail.srvfarm.net postfix/smtpd[1328471]: warning: 81-219-94-125.ostmedia.pl[81.219.94.125]: SASL PLAIN authentication failed:	2020-08-28 09:35:11
81.219.94.200	attackbotsspam	Aug 27 04:54:38 mail.srvfarm.net postfix/smtpd[1334717]: warning: 81-219-94-200.ostmedia.pl[81.219.94.200]: SASL PLAIN authentication failed: Aug 27 04:54:38 mail.srvfarm.net postfix/smtpd[1334717]: lost connection after AUTH from 81-219-94-200.ostmedia.pl[81.219.94.200] Aug 27 04:58:35 mail.srvfarm.net postfix/smtps/smtpd[1340640]: warning: 81-219-94-200.ostmedia.pl[81.219.94.200]: SASL PLAIN authentication failed: Aug 27 04:58:35 mail.srvfarm.net postfix/smtps/smtpd[1340640]: lost connection after AUTH from 81-219-94-200.ostmedia.pl[81.219.94.200] Aug 27 05:01:31 mail.srvfarm.net postfix/smtpd[1334718]: warning: 81-219-94-200.ostmedia.pl[81.219.94.200]: SASL PLAIN authentication failed:	2020-08-28 08:38:39
81.219.94.4	attack	Unauthorized connection attempt from IP address 81.219.94.4 on Port 25(SMTP)	2020-08-23 07:07:46
81.219.94.200	attack	"SMTP brute force auth login attempt."	2020-08-19 13:26:50
81.219.94.93	attackspam	Aug 14 23:42:31 mail.srvfarm.net postfix/smtpd[734604]: warning: 81-219-94-93.ostmedia.pl[81.219.94.93]: SASL PLAIN authentication failed: Aug 14 23:42:31 mail.srvfarm.net postfix/smtpd[734604]: lost connection after AUTH from 81-219-94-93.ostmedia.pl[81.219.94.93] Aug 14 23:49:29 mail.srvfarm.net postfix/smtpd[738023]: warning: 81-219-94-93.ostmedia.pl[81.219.94.93]: SASL PLAIN authentication failed: Aug 14 23:49:29 mail.srvfarm.net postfix/smtpd[738023]: lost connection after AUTH from 81-219-94-93.ostmedia.pl[81.219.94.93] Aug 14 23:50:25 mail.srvfarm.net postfix/smtps/smtpd[736704]: warning: 81-219-94-93.ostmedia.pl[81.219.94.93]: SASL PLAIN authentication failed:	2020-08-15 17:23:21
81.219.94.141	attackbots	Aug 10 05:06:47 mail.srvfarm.net postfix/smtps/smtpd[1310042]: warning: 81-219-94-141.ostmedia.pl[81.219.94.141]: SASL PLAIN authentication failed: Aug 10 05:06:47 mail.srvfarm.net postfix/smtps/smtpd[1310042]: lost connection after AUTH from 81-219-94-141.ostmedia.pl[81.219.94.141] Aug 10 05:10:16 mail.srvfarm.net postfix/smtps/smtpd[1295936]: warning: 81-219-94-141.ostmedia.pl[81.219.94.141]: SASL PLAIN authentication failed: Aug 10 05:10:16 mail.srvfarm.net postfix/smtps/smtpd[1295936]: lost connection after AUTH from 81-219-94-141.ostmedia.pl[81.219.94.141] Aug 10 05:12:20 mail.srvfarm.net postfix/smtpd[1310341]: warning: 81-219-94-141.ostmedia.pl[81.219.94.141]: SASL PLAIN authentication failed:	2020-08-10 15:52:01
81.219.94.116	attackbots	(smtpauth) Failed SMTP AUTH login from 81.219.94.116 (PL/Poland/81-219-94-116.ostmedia.pl): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-06 09:49:21 plain authenticator failed for 81-219-94-116.ostmedia.pl [81.219.94.116]: 535 Incorrect authentication data (set_id=info@partsafhe.com)	2020-08-06 19:16:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.219.94.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45152
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.219.94.126.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082000 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 20 16:11:40 CST 2020
;; MSG SIZE  rcvd: 117

Host info

126.94.219.81.in-addr.arpa domain name pointer 81-219-94-126.ostmedia.pl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
126.94.219.81.in-addr.arpa	name = 81-219-94-126.ostmedia.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.38.109	attack	ssh failed login	2019-11-25 08:00:43
94.177.250.221	attackbots	Nov 25 01:34:15 sauna sshd[215997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.250.221 Nov 25 01:34:16 sauna sshd[215997]: Failed password for invalid user atanu from 94.177.250.221 port 60980 ssh2 ...	2019-11-25 07:46:48
42.232.65.2	attackbots	" "	2019-11-25 07:57:07
60.249.188.118	attackbots	Nov 25 05:58:23 itv-usvr-01 sshd[11275]: Invalid user sutherland from 60.249.188.118 Nov 25 05:58:23 itv-usvr-01 sshd[11275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.249.188.118 Nov 25 05:58:23 itv-usvr-01 sshd[11275]: Invalid user sutherland from 60.249.188.118 Nov 25 05:58:25 itv-usvr-01 sshd[11275]: Failed password for invalid user sutherland from 60.249.188.118 port 54974 ssh2	2019-11-25 07:49:08
200.111.137.132	attackbotsspam	Nov 24 13:10:37 hpm sshd\[29628\]: Invalid user test1235 from 200.111.137.132 Nov 24 13:10:37 hpm sshd\[29628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132 Nov 24 13:10:39 hpm sshd\[29628\]: Failed password for invalid user test1235 from 200.111.137.132 port 37718 ssh2 Nov 24 13:17:05 hpm sshd\[30192\]: Invalid user !@\#\$%\^ from 200.111.137.132 Nov 24 13:17:05 hpm sshd\[30192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132	2019-11-25 07:52:02
201.114.252.23	attackspambots	Nov 24 13:30:43 eddieflores sshd\[13766\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.252.23 user=root Nov 24 13:30:46 eddieflores sshd\[13766\]: Failed password for root from 201.114.252.23 port 41352 ssh2 Nov 24 13:37:22 eddieflores sshd\[14262\]: Invalid user info from 201.114.252.23 Nov 24 13:37:22 eddieflores sshd\[14262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.252.23 Nov 24 13:37:24 eddieflores sshd\[14262\]: Failed password for invalid user info from 201.114.252.23 port 48744 ssh2	2019-11-25 07:50:42
111.231.71.157	attackbotsspam	2019-11-24T23:30:03.527907abusebot-7.cloudsearch.cf sshd\[13786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 user=root	2019-11-25 07:58:23
84.194.203.119	attack	Syn flood / slowloris	2019-11-25 07:33:15
106.13.146.93	attackspambots	Nov 25 00:27:34 vps666546 sshd\[31124\]: Invalid user akune from 106.13.146.93 port 48460 Nov 25 00:27:34 vps666546 sshd\[31124\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.146.93 Nov 25 00:27:36 vps666546 sshd\[31124\]: Failed password for invalid user akune from 106.13.146.93 port 48460 ssh2 Nov 25 00:34:52 vps666546 sshd\[31366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.146.93 user=root Nov 25 00:34:54 vps666546 sshd\[31366\]: Failed password for root from 106.13.146.93 port 54018 ssh2 ...	2019-11-25 07:47:05
142.93.39.29	attack	Nov 24 14:15:36 XXX sshd[49266]: Invalid user ftp_test from 142.93.39.29 port 53598	2019-11-25 07:59:49
54.39.21.54	attackbotsspam	Invalid user zabbix from 54.39.21.54 port 46054	2019-11-25 07:39:56
80.82.77.139	attackbotsspam	11/24/2019-17:58:45.290038 80.82.77.139 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-25 07:39:28
222.186.180.17	attackspambots	Nov 25 00:42:51 srv206 sshd[4786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root Nov 25 00:42:54 srv206 sshd[4786]: Failed password for root from 222.186.180.17 port 1030 ssh2 ...	2019-11-25 07:45:14
81.4.125.197	attackbotsspam	Nov 24 23:58:42 vmanager6029 sshd\[1128\]: Invalid user pustoaica from 81.4.125.197 port 34972 Nov 24 23:58:43 vmanager6029 sshd\[1128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.4.125.197 Nov 24 23:58:45 vmanager6029 sshd\[1128\]: Failed password for invalid user pustoaica from 81.4.125.197 port 34972 ssh2	2019-11-25 07:38:55
222.186.175.150	attackbotsspam	2019-11-25T00:50:02.615090struts4.enskede.local sshd\[15946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root 2019-11-25T00:50:06.493537struts4.enskede.local sshd\[15946\]: Failed password for root from 222.186.175.150 port 13064 ssh2 2019-11-25T00:50:10.673093struts4.enskede.local sshd\[15946\]: Failed password for root from 222.186.175.150 port 13064 ssh2 2019-11-25T00:50:15.179059struts4.enskede.local sshd\[15946\]: Failed password for root from 222.186.175.150 port 13064 ssh2 2019-11-25T00:50:18.712029struts4.enskede.local sshd\[15946\]: Failed password for root from 222.186.175.150 port 13064 ssh2 ...	2019-11-25 07:51:50

Recently Reported IPs

178.128.20.153	106.51.114.109	37.173.133.70	186.21.29.203
200.40.42.54	182.6.164.42	241.0.41.51	240.118.207.247
158.227.104.197	233.71.118.71	129.79.165.161	19.156.7.180
120.252.179.200	254.137.53.32	238.218.54.119	197.146.93.86
24.100.47.114	185.148.78.31	11.243.100.100	151.14.3.10