City: unknown
Region: unknown
Country: unknown
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
bb'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 2001:67c:240c:214::58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 9143
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;2001:67c:240c:214::58. IN A
;; Query time: 0 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Fri Feb 18 23:46:13 CST 2022
;; MSG SIZE rcvd: 50
'b'8.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.1.2.0.c.0.4.2.c.7.6.0.1.0.0.2.ip6.arpa domain name pointer jordbruksverket.se.
'Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
8.5.0.0.0.0.0.0.0.0.0.0.0.0.0.0.4.1.2.0.c.0.4.2.c.7.6.0.1.0.0.2.ip6.arpa name = jordbruksverket.se.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 212.129.6.47 | attack | 212.129.6.47 - - [03/Aug/2020:05:55:11 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.129.6.47 - - [03/Aug/2020:05:55:13 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.129.6.47 - - [03/Aug/2020:05:55:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-08-03 14:32:23 |
| 152.136.183.151 | attack | 2020-08-03T04:58:15.831865abusebot-4.cloudsearch.cf sshd[5781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.183.151 user=root 2020-08-03T04:58:18.080401abusebot-4.cloudsearch.cf sshd[5781]: Failed password for root from 152.136.183.151 port 36376 ssh2 2020-08-03T05:01:22.236150abusebot-4.cloudsearch.cf sshd[5803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.183.151 user=root 2020-08-03T05:01:23.822532abusebot-4.cloudsearch.cf sshd[5803]: Failed password for root from 152.136.183.151 port 48450 ssh2 2020-08-03T05:04:38.292965abusebot-4.cloudsearch.cf sshd[5814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.183.151 user=root 2020-08-03T05:04:40.787474abusebot-4.cloudsearch.cf sshd[5814]: Failed password for root from 152.136.183.151 port 33706 ssh2 2020-08-03T05:07:55.575630abusebot-4.cloudsearch.cf sshd[5822]: pam_unix(sshd:auth): ... |
2020-08-03 14:29:50 |
| 45.125.245.137 | attackbots | Unauthorized access detected from black listed ip! |
2020-08-03 14:51:32 |
| 49.232.28.199 | attackspam | Aug 3 03:52:20 ip-172-31-61-156 sshd[9705]: Failed password for root from 49.232.28.199 port 39882 ssh2 Aug 3 03:53:10 ip-172-31-61-156 sshd[9752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.28.199 user=root Aug 3 03:53:11 ip-172-31-61-156 sshd[9752]: Failed password for root from 49.232.28.199 port 48466 ssh2 Aug 3 03:55:03 ip-172-31-61-156 sshd[9837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.28.199 user=root Aug 3 03:55:05 ip-172-31-61-156 sshd[9837]: Failed password for root from 49.232.28.199 port 37404 ssh2 ... |
2020-08-03 14:43:25 |
| 216.218.206.88 | attackspambots | Port scanning [2 denied] |
2020-08-03 14:45:10 |
| 110.78.114.236 | attackbots | Aug 3 04:02:06 django-0 sshd[11114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.78.114.236 user=root Aug 3 04:02:09 django-0 sshd[11114]: Failed password for root from 110.78.114.236 port 53516 ssh2 ... |
2020-08-03 14:54:12 |
| 120.36.189.191 | attackspambots | 08/02/2020-23:54:58.852831 120.36.189.191 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2020-08-03 14:52:45 |
| 129.213.107.56 | attackspambots | $f2bV_matches |
2020-08-03 14:59:57 |
| 182.253.117.99 | attack | Aug 3 05:22:59 *** sshd[7458]: User root from 182.253.117.99 not allowed because not listed in AllowUsers |
2020-08-03 14:29:26 |
| 123.13.203.67 | attackbotsspam | Aug 3 04:47:04 sigma sshd\[19215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.203.67 user=rootAug 3 04:55:00 sigma sshd\[19385\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.203.67 user=root ... |
2020-08-03 14:50:37 |
| 221.229.218.50 | attack | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T03:53:03Z and 2020-08-03T03:58:08Z |
2020-08-03 14:30:53 |
| 185.156.73.60 | attackbotsspam | [MK-VM4] Blocked by UFW |
2020-08-03 14:34:45 |
| 110.170.180.66 | attackspam | Port scanning [2 denied] |
2020-08-03 15:02:17 |
| 109.168.18.114 | attack | sshd jail - ssh hack attempt |
2020-08-03 15:08:49 |
| 130.180.66.97 | attackspambots | Aug 2 20:05:17 sachi sshd\[8204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.180.66.97 user=root Aug 2 20:05:19 sachi sshd\[8204\]: Failed password for root from 130.180.66.97 port 44852 ssh2 Aug 2 20:09:56 sachi sshd\[8622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.180.66.97 user=root Aug 2 20:09:58 sachi sshd\[8622\]: Failed password for root from 130.180.66.97 port 46732 ssh2 Aug 2 20:14:32 sachi sshd\[8967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.180.66.97 user=root |
2020-08-03 14:31:31 |