3.21.30.220 - IPInfo

Basic Info

City: Columbus

Region: Ohio

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
3.21.30.58	attackbotsspam	May 4 02:19:34 mail sshd[8605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.21.30.58 user=r.r May 4 02:19:35 mail sshd[8605]: Failed password for r.r from 3.21.30.58 port 33846 ssh2 May 4 02:19:35 mail sshd[8605]: Received disconnect from 3.21.30.58 port 33846:11: Bye Bye [preauth] May 4 02:19:35 mail sshd[8605]: Disconnected from 3.21.30.58 port 33846 [preauth] May 4 02:30:43 mail sshd[8700]: Connection closed by 3.21.30.58 port 46450 [preauth] May 4 02:38:57 mail sshd[8757]: Connection closed by 3.21.30.58 port 40776 [preauth] May 4 02:45:15 mail sshd[8871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.21.30.58 user=r.r May 4 02:45:18 mail sshd[8871]: Failed password for r.r from 3.21.30.58 port 35090 ssh2 May 4 02:45:18 mail sshd[8871]: Received disconnect from 3.21.30.58 port 35090:11: Bye Bye [preauth] May 4 02:45:18 mail sshd[8871]: Disconnected from 3.21.30.58 p........ -------------------------------	2020-05-05 05:08:27

Type

Details

Datetime

3.21.30.58

attackbotsspam

May  4 02:19:34 mail sshd[8605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.21.30.58  user=r.r
May  4 02:19:35 mail sshd[8605]: Failed password for r.r from 3.21.30.58 port 33846 ssh2
May  4 02:19:35 mail sshd[8605]: Received disconnect from 3.21.30.58 port 33846:11: Bye Bye [preauth]
May  4 02:19:35 mail sshd[8605]: Disconnected from 3.21.30.58 port 33846 [preauth]
May  4 02:30:43 mail sshd[8700]: Connection closed by 3.21.30.58 port 46450 [preauth]
May  4 02:38:57 mail sshd[8757]: Connection closed by 3.21.30.58 port 40776 [preauth]
May  4 02:45:15 mail sshd[8871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.21.30.58  user=r.r
May  4 02:45:18 mail sshd[8871]: Failed password for r.r from 3.21.30.58 port 35090 ssh2
May  4 02:45:18 mail sshd[8871]: Received disconnect from 3.21.30.58 port 35090:11: Bye Bye [preauth]
May  4 02:45:18 mail sshd[8871]: Disconnected from 3.21.30.58 p........
-------------------------------

2020-05-05 05:08:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.21.30.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19459
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;3.21.30.220.			IN	A

;; AUTHORITY SECTION:
.			559	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022012200 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 22 17:44:02 CST 2022
;; MSG SIZE  rcvd: 104

Host info

220.30.21.3.in-addr.arpa domain name pointer ec2-3-21-30-220.us-east-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
220.30.21.3.in-addr.arpa	name = ec2-3-21-30-220.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.103.227.84	attack	$f2bV_matches	2020-03-09 23:59:23
188.166.42.50	attackbotsspam	Mar 9 17:05:58 relay postfix/smtpd\[22218\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 9 17:06:13 relay postfix/smtpd\[28128\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 9 17:06:44 relay postfix/smtpd\[22218\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 9 17:07:25 relay postfix/smtpd\[28129\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 9 17:08:25 relay postfix/smtpd\[20095\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-10 00:14:41
47.93.3.8	attackbotsspam	/1/license.txt	2020-03-09 23:48:42
41.37.3.39	attackbots	1583756950 - 03/09/2020 13:29:10 Host: 41.37.3.39/41.37.3.39 Port: 445 TCP Blocked	2020-03-09 23:42:29
178.171.91.254	attackspambots	Chat Spam	2020-03-09 23:52:36
198.89.92.162	attack	Lines containing failures of 198.89.92.162 Mar 9 00:20:08 shared09 sshd[9134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.89.92.162 user=r.r Mar 9 00:20:10 shared09 sshd[9134]: Failed password for r.r from 198.89.92.162 port 37334 ssh2 Mar 9 00:20:10 shared09 sshd[9134]: Received disconnect from 198.89.92.162 port 37334:11: Bye Bye [preauth] Mar 9 00:20:10 shared09 sshd[9134]: Disconnected from authenticating user r.r 198.89.92.162 port 37334 [preauth] Mar 9 00:33:33 shared09 sshd[13003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.89.92.162 user=r.r Mar 9 00:33:36 shared09 sshd[13003]: Failed password for r.r from 198.89.92.162 port 42402 ssh2 Mar 9 00:33:36 shared09 sshd[13003]: Received disconnect from 198.89.92.162 port 42402:11: Bye Bye [preauth] Mar 9 00:33:36 shared09 sshd[13003]: Disconnected from authenticating user r.r 198.89.92.162 port 42402 [preauth] Ma........ ------------------------------	2020-03-10 00:05:01
113.172.3.35	attack	Mar 9 13:28:53 lnxweb62 sshd[25991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.3.35 Mar 9 13:28:54 lnxweb62 sshd[25991]: Failed password for invalid user admin from 113.172.3.35 port 50748 ssh2 Mar 9 13:28:59 lnxweb62 sshd[26030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.3.35	2020-03-09 23:50:18
212.92.111.192	attack	RDPBruteCAu	2020-03-09 23:58:51
5.209.29.39	attack	Email rejected due to spam filtering	2020-03-09 23:46:58
138.197.146.132	attackspambots	[munged]::443 138.197.146.132 - - [09/Mar/2020:13:27:45 +0100] "POST /[munged]: HTTP/1.1" 200 9130 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 138.197.146.132 - - [09/Mar/2020:13:27:47 +0100] "POST /[munged]: HTTP/1.1" 200 9130 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 138.197.146.132 - - [09/Mar/2020:13:27:55 +0100] "POST /[munged]: HTTP/1.1" 200 9130 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 138.197.146.132 - - [09/Mar/2020:13:28:03 +0100] "POST /[munged]: HTTP/1.1" 200 9130 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 138.197.146.132 - - [09/Mar/2020:13:28:16 +0100] "POST /[munged]: HTTP/1.1" 200 9130 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 138.197.146.132 - - [09/Mar/2020:13:28:25 +0100] "POST /[munged]: HTTP/1.1" 200 9130 "-" "Mozilla/5.	2020-03-10 00:00:48
104.248.168.1	attackbotsspam	caw-Joomla User : try to access forms...	2020-03-09 23:54:50
223.9.42.133	attackbotsspam	Honeypot Attack, Port 23	2020-03-09 23:45:42
41.139.185.154	attackbotsspam	Email rejected due to spam filtering	2020-03-10 00:12:47
134.73.51.95	attack	Mar 9 14:24:11 mail.srvfarm.net postfix/smtpd[4070437]: NOQUEUE: reject: RCPT from puppy.superacrepair.com[134.73.51.95]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 14:25:11 mail.srvfarm.net postfix/smtpd[4062714]: NOQUEUE: reject: RCPT from puppy.superacrepair.com[134.73.51.95]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 14:25:14 mail.srvfarm.net postfix/smtpd[4073576]: NOQUEUE: reject: RCPT from puppy.superacrepair.com[134.73.51.95]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 14:26:14 mail.srvfarm.net postfix/smtpd[4074755]: NOQUEUE: reject: RCPT from puppy.supera	2020-03-10 00:16:03
63.82.48.248	attackspam	Mar 9 14:31:14 mail.srvfarm.net postfix/smtpd[4074822]: NOQUEUE: reject: RCPT from unknown[63.82.48.248]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 14:31:15 mail.srvfarm.net postfix/smtpd[4074825]: NOQUEUE: reject: RCPT from unknown[63.82.48.248]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 14:31:15 mail.srvfarm.net postfix/smtpd[4074818]: NOQUEUE: reject: RCPT from unknown[63.82.48.248]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 14:31:45 mail.srvfarm.net postfix/smtpd[4073575]: NOQUEUE: reject: RCPT from unknown[63.82.48.248]: 450 4.1.8	2020-03-10 00:20:32

Recently Reported IPs

240.64.184.70	138.76.59.171	44.156.206.15	27.42.87.208
206.24.67.179	212.12.123.80	238.81.64.46	93.80.7.139
43.246.108.216	50.235.27.3	33.111.7.10	24.56.45.199
1.158.45.65	210.139.99.93	104.249.249.209	33.87.36.100
16.65.133.15	102.162.136.23	76.20.47.231	6.10.212.128