Oktober 2019 - TOPF - ZaPF-Lists

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Thu Oct 31 04:42:03 2019 Date Range Processed: yesterday ( 2019-Oct-30 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [169:169] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 4 sites probed the server 125.64.94.212 198.108.67.80 45.79.206.197 61.219.11.153 Requests with error response codes 400 Bad Request mstshash=Administr: 9 Time(s) null: 4 Time(s) /setup.cgi?next_file=netgear.cfg&todo=sysc ... ntsetting.htm=1: 1 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) 7: 1 Time(s) 404 Not Found /robots.txt: 26 Time(s) /berlin/apple-touch-icon.png: 6 Time(s) /sites/all/libraries/elfinder/src/connecto ... p/connector.php: 2 Time(s) /sites/all/libraries/plupload/examples/upload.php: 2 Time(s) /wp-login.php: 2 Time(s) /.well-known/openpgpkey/hu/je4ounu3zbywpo8 ... glieder-request: 1 Time(s) /neuigkeiten/einladung-mgv-ss2011: 1 Time(s) /reader/2016_sose_konstanz_lang.pdf: 1 Time(s) /reader/SoSe14_AK_Kommentierte_Studienordnungen.pdf: 1 Time(s) /resolutionen/sose17/gesellschaftlich_vera ... wantwortung.pdf: 1 Time(s) /sites/default/files/1982_WiSe_Stuttgart.pdf: 1 Time(s) /zapf/berichte/ausgestaltung-studiengaenge ... _zapf-sose-2010: 1 Time(s) 500 Internal Server Error /: 58 Time(s) /HNAP1/: 1 Time(s) /favicon.ico: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (197.225.166.204): 47 Time(s) unknown (221.123.191.27): 47 Time(s) unknown (104.236.124.45): 42 Time(s) unknown (130.61.51.92): 41 Time(s) root (ip80.ip-198-50-200.net): 36 Time(s) root (114.67.70.94): 34 Time(s) root (116.90.165.26): 34 Time(s) root (45.55.235.208): 33 Time(s) unknown (106.13.23.35): 33 Time(s) unknown (129.204.46.170): 33 Time(s) root (40.73.76.102): 32 Time(s) root (139.59.37.209): 31 Time(s) root (194.228.3.191): 31 Time(s) root (202.90.198.213): 31 Time(s) unknown (132.232.113.102): 31 Time(s) unknown (154.ip-193-70-114.eu): 31 Time(s) root (118.25.27.67): 30 Time(s) root (140.210.9.80): 30 Time(s) root (183.134.199.68): 30 Time(s) root (ec2-54-242-227-67.compute-1.amazonaws.com): 30 Time(s) root (id.cast-soft.com): 30 Time(s) unknown (139.155.44.100): 30 Time(s) unknown (51.15.212.48): 30 Time(s) unknown (cloud.powertel.co.id): 30 Time(s) root (106.12.215.116): 29 Time(s) root (193.112.74.3): 29 Time(s) unknown (182.61.46.62): 29 Time(s) root (104.236.72.187): 28 Time(s) root (118.25.103.132): 28 Time(s) root (198.199.122.234): 28 Time(s) root (65.151.157.14): 28 Time(s) root (mail.hcj1952.com): 28 Time(s) unknown (123.206.95.229): 28 Time(s) unknown (36.72.124.250): 28 Time(s) unknown (91.134.227.180): 28 Time(s) unknown (ns314782.ip-37-187-26.eu): 28 Time(s) root (ns341101.ip-94-23-0.eu): 27 Time(s) unknown (216.ip-51-77-210.eu): 27 Time(s) unknown (51.158.104.101): 27 Time(s) root (141.ip-217-182-206.eu): 26 Time(s) root (159.203.32.174): 26 Time(s) root (159.89.155.148): 26 Time(s) root (167.71.3.163): 26 Time(s) root (182.151.42.174): 26 Time(s) root (195-154-108-203.rev.poneytelecom.eu): 26 Time(s) root (38.ip-51-75-25.eu): 26 Time(s) root (68.183.86.76): 26 Time(s) unknown (106.12.204.44): 26 Time(s) unknown (118-163-149-163.hinet-ip.hinet.net): 26 Time(s) root (106.12.204.44): 25 Time(s) root (114.67.74.139): 25 Time(s) root (132.232.56.95): 25 Time(s) root (182.61.37.199): 25 Time(s) unknown (132.232.56.95): 25 Time(s) root (1.201.140.126): 24 Time(s) root (106.54.219.94): 24 Time(s) root (124.158.9.169): 24 Time(s) root (157.245.107.153): 24 Time(s) root (223.202.201.210): 24 Time(s) root (245.ip-51-255-173.eu): 24 Time(s) root (83-103-98-211.ip.fastwebnet.it): 24 Time(s) unknown (14.18.189.68): 24 Time(s) unknown (36.74.75.31): 24 Time(s) unknown (68.183.86.76): 24 Time(s) unknown (83-103-98-211.ip.fastwebnet.it): 24 Time(s) root (159.89.111.136): 23 Time(s) unknown (1.201.140.126): 23 Time(s) unknown (132.145.170.174): 23 Time(s) unknown (182.151.42.174): 23 Time(s) unknown (245.ip-51-255-173.eu): 23 Time(s) unknown (ip221.ip-198-50-197.net): 23 Time(s) root (123.206.95.229): 22 Time(s) root (178.128.202.35): 22 Time(s) unknown (106.54.219.94): 22 Time(s) unknown (157.245.107.153): 22 Time(s) unknown (198.199.122.234): 22 Time(s) unknown (65.151.157.14): 22 Time(s) unknown (ns341101.ip-94-23-0.eu): 22 Time(s) root (114-32-153-15.hinet-ip.hinet.net): 21 Time(s) root (187-178-173-161.dynamic.axtel.net): 21 Time(s) root (58.213.198.77): 21 Time(s) unknown (114-32-153-15.hinet-ip.hinet.net): 21 Time(s) unknown (114.67.74.139): 21 Time(s) unknown (178.128.202.35): 21 Time(s) unknown (180.169.136.138): 21 Time(s) unknown (182.61.37.199): 21 Time(s) unknown (195-154-108-203.rev.poneytelecom.eu): 21 Time(s) unknown (223.202.201.210): 21 Time(s) unknown (38.ip-51-75-25.eu): 21 Time(s) unknown (58.213.198.77): 21 Time(s) root (180.169.136.138): 20 Time(s) unknown (159.89.155.148): 20 Time(s) unknown (167.71.3.163): 20 Time(s) unknown (193.112.74.3): 20 Time(s) unknown (202.90.198.213): 20 Time(s) unknown (ec2-54-242-227-67.compute-1.amazonaws.com): 20 Time(s) unknown (id.cast-soft.com): 20 Time(s) unknown (mail.hcj1952.com): 20 Time(s) root (132.232.113.102): 19 Time(s) root (91.134.227.180): 19 Time(s) root (ip221.ip-198-50-197.net): 19 Time(s) unknown (104.236.72.187): 19 Time(s) unknown (106.12.215.116): 19 Time(s) unknown (118.25.27.67): 19 Time(s) unknown (141.ip-217-182-206.eu): 19 Time(s) unknown (159.203.32.174): 19 Time(s) unknown (194.228.3.191): 19 Time(s) root (14.18.189.68): 18 Time(s) root (188.254.0.224): 18 Time(s) root (51.158.104.101): 18 Time(s) unknown (118.25.103.132): 18 Time(s) unknown (140.210.9.80): 18 Time(s) unknown (187-178-173-161.dynamic.axtel.net): 18 Time(s) unknown (139.59.37.209): 17 Time(s) unknown (181.48.29.35): 17 Time(s) unknown (40.73.76.102): 17 Time(s) unknown (46.218.7.227): 17 Time(s) root (152.136.141.227): 16 Time(s) root (159.255.43.31): 16 Time(s) unknown (159.89.111.136): 16 Time(s) unknown (45.55.235.208): 16 Time(s) root (132.145.170.174): 15 Time(s) root (139.155.44.100): 15 Time(s) root (182.61.46.62): 15 Time(s) root (36.74.75.31): 15 Time(s) unknown (114.67.70.94): 15 Time(s) unknown (116.90.165.26): 15 Time(s) unknown (183.134.199.68): 15 Time(s) root (129.204.46.170): 14 Time(s) root (46.218.7.227): 14 Time(s) unknown (186.136.199.40): 14 Time(s) root (175.140.23.248): 13 Time(s) root (mail.thanmiennam.com): 13 Time(s) unknown (ip80.ip-198-50-200.net): 13 Time(s) root (106.13.23.35): 12 Time(s) root (118-163-149-163.hinet-ip.hinet.net): 12 Time(s) root (ns314782.ip-37-187-26.eu): 12 Time(s) unknown (152.136.141.227): 12 Time(s) unknown (159.255.43.31): 12 Time(s) unknown (187.216.127.147): 12 Time(s) root (175.140.23.240): 11 Time(s) root (36.72.124.250): 11 Time(s) root (181.48.29.35): 10 Time(s) root (216.ip-51-77-210.eu): 10 Time(s) root (mail.sataco.com): 10 Time(s) root (104.236.124.45): 9 Time(s) root (130.61.51.92): 9 Time(s) unknown (174.138.26.48): 8 Time(s) unknown (95.180.254.194): 8 Time(s) root (211.25.119.131): 7 Time(s) root (51.15.212.48): 7 Time(s) root (cloud.powertel.co.id): 7 Time(s) root (r190-0-159-86.ir-static.adinet.com.uy): 7 Time(s) unknown (175.140.23.240): 7 Time(s) unknown (211.25.119.131): 7 Time(s) unknown (r190-0-159-86.ir-static.adinet.com.uy): 7 Time(s) root (154.ip-193-70-114.eu): 6 Time(s) root (186.136.199.40): 6 Time(s) root (5.139.2.73): 6 Time(s) root (broadband-77-37-145-41.ip.moscow.rt.ru): 6 Time(s) root (sd.two-notes.net): 6 Time(s) unknown (188.254.0.224): 6 Time(s) root (178.128.89.233): 5 Time(s) unknown (175.140.23.248): 5 Time(s) unknown (178.128.89.233): 5 Time(s) root (110.49.70.249): 4 Time(s) root (110.49.71.246): 4 Time(s) unknown (193.32.163.182): 4 Time(s) unknown (27.red-2-137-102.dynamicip.rima-tde.net): 4 Time(s) root (110.49.70.244): 3 Time(s) root (110.49.70.245): 3 Time(s) root (110.49.70.247): 3 Time(s) root (110.49.71.241): 3 Time(s) root (110.49.71.243): 3 Time(s) root (110.49.71.248): 3 Time(s) unknown (14.63.223.226): 3 Time(s) unknown (195.29.105.125): 3 Time(s) unknown (sd.two-notes.net): 3 Time(s) root (110.49.70.240): 2 Time(s) root (110.49.71.242): 2 Time(s) root (110.49.71.244): 2 Time(s) root (174.138.26.48): 2 Time(s) root (195.29.105.125): 2 Time(s) root (197.225.166.204): 2 Time(s) root (ool-2f168746.static.optonline.net): 2 Time(s) unknown (110.49.70.240): 2 Time(s) unknown (110.49.70.247): 2 Time(s) unknown (110.49.71.242): 2 Time(s) unknown (110.49.71.249): 2 Time(s) unknown (192-92-20-31.ftth.glasoperator.nl): 2 Time(s) backup (1.201.140.126): 1 Time(s) bin (65.151.157.14): 1 Time(s) bin (95.180.254.194): 1 Time(s) games (116.90.165.26): 1 Time(s) irc (195-154-108-203.rev.poneytelecom.eu): 1 Time(s) jan (ip221.ip-198-50-197.net): 1 Time(s) mailman (130.61.51.92): 1 Time(s) mysql (139.59.37.209): 1 Time(s) mysql (38.ip-51-75-25.eu): 1 Time(s) nobody (46.218.7.227): 1 Time(s) openproject (223.202.201.210): 1 Time(s) postgres (104.236.124.45): 1 Time(s) postgres (104.236.72.187): 1 Time(s) postgres (106.54.219.94): 1 Time(s) postgres (118.25.103.132): 1 Time(s) postgres (140.210.9.80): 1 Time(s) postgres (141.ip-217-182-206.eu): 1 Time(s) postgres (175.140.23.240): 1 Time(s) postgres (195-154-108-203.rev.poneytelecom.eu): 1 Time(s) postgres (51.158.104.101): 1 Time(s) proxy (139.59.37.209): 1 Time(s) root (110.49.70.241): 1 Time(s) root (110.49.70.246): 1 Time(s) root (110.49.71.240): 1 Time(s) root (110.49.71.245): 1 Time(s) root (110.49.71.249): 1 Time(s) root (112.6.231.114): 1 Time(s) root (124.243.198.190): 1 Time(s) root (137.ip-54-37-232.eu): 1 Time(s) root (175.6.5.233): 1 Time(s) root (176.187.77.51): 1 Time(s) root (182.73.222.70): 1 Time(s) root (187.216.127.147): 1 Time(s) root (219.223.234.8): 1 Time(s) root (221.123.191.27): 1 Time(s) root (27.red-2-137-102.dynamicip.rima-tde.net): 1 Time(s) root (49.204.80.198): 1 Time(s) root (52.116.42.247): 1 Time(s) root (58.20.114.252): 1 Time(s) root (72.142.126.27): 1 Time(s) root (95.180.254.194): 1 Time(s) root (mail.phanminhtravel.vn): 1 Time(s) sshd (114.67.74.139): 1 Time(s) sshd (223.202.201.210): 1 Time(s) sync (118.25.103.132): 1 Time(s) temp (104.236.72.187): 1 Time(s) temp (114.67.74.139): 1 Time(s) temp (118.25.27.67): 1 Time(s) temp (152.136.141.227): 1 Time(s) temp (167.71.3.163): 1 Time(s) temp (245.ip-51-255-173.eu): 1 Time(s) unknown (103.141.138.131): 1 Time(s) unknown (103.36.84.100): 1 Time(s) unknown (106.12.222.40): 1 Time(s) unknown (110.49.70.241): 1 Time(s) unknown (110.49.70.243): 1 Time(s) unknown (110.49.70.245): 1 Time(s) unknown (110.49.71.243): 1 Time(s) unknown (110.49.71.246): 1 Time(s) unknown (114.216.201.119): 1 Time(s) unknown (117.121.38.113): 1 Time(s) unknown (119.196.83.6): 1 Time(s) unknown (122.194.42.177): 1 Time(s) unknown (130.61.122.5): 1 Time(s) unknown (138.68.20.158): 1 Time(s) unknown (145.249.105.204): 1 Time(s) unknown (187.16.39.210): 1 Time(s) unknown (197.45.241.171): 1 Time(s) unknown (222.128.11.26): 1 Time(s) unknown (37.139.9.23): 1 Time(s) unknown (40.73.7.218): 1 Time(s) unknown (41.210.10.45): 1 Time(s) unknown (69.171.79.217.16clouds.com): 1 Time(s) unknown (72.93.243.210): 1 Time(s) unknown (92.63.194.26): 1 Time(s) unknown (95.180.254.199): 1 Time(s) unknown (95.180.254.206): 1 Time(s) unknown (host81-133-12-221.in-addr.btopenworld.com): 1 Time(s) www-data (114-32-153-15.hinet-ip.hinet.net): 1 Time(s) www-data (ip80.ip-198-50-200.net): 1 Time(s) Invalid Users: Unknown Account: 1800 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 3 Miscellaneous warnings 22.746K Bytes accepted 23,292 22.746K Bytes sent via SMTP 23,292 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 3 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 3 Total 4xx Rejects 100.00% ======== ================================================== 88 Connections 60 Connections lost (inbound) 88 Disconnections 1 Removed from queue 1 Sent via SMTP ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 2 Time(s) Failed logins from: 1.201.140.126: 25 times 2.137.102.27 (27.red-2-137-102.dynamicip.rima-tde.net): 1 time 5.139.2.73 (dsl-5-139-2-73.avtlg.ru): 6 times 14.18.189.68: 18 times 36.72.124.250: 11 times 36.74.75.31: 15 times 37.187.26.207 (ns314782.ip-37-187-26.eu): 12 times 40.73.76.102: 32 times 45.55.235.208: 33 times 46.218.7.227: 15 times 47.22.135.70 (ool-2f168746.static.optonline.net): 2 times 49.204.80.198 (broadband.actcorp.in): 1 time 51.15.212.48 (48-212-15-51.rev.cloud.scaleway.com): 7 times 51.75.25.38 (38.ip-51-75-25.eu): 27 times 51.77.210.216 (216.ip-51-77-210.eu): 10 times 51.158.104.101 (101-104-158-51.rev.cloud.scaleway.com): 19 times 51.255.173.245 (245.ip-51-255-173.eu): 25 times 52.116.42.247: 1 time 54.37.232.137 (137.ip-54-37-232.eu): 1 time 54.242.227.67 (ec2-54-242-227-67.compute-1.amazonaws.com): 30 times 58.20.114.252: 1 time 58.213.198.77: 21 times 65.151.157.14: 29 times 68.183.86.76: 26 times 72.142.126.27 (unallocated-static.rogers.com): 1 time 77.37.145.41 (broadband-77-37-145-41.ip.moscow.rt.ru): 6 times 83.103.98.211 (83-103-98-211.ip.fastwebnet.it): 24 times 91.134.227.180: 19 times 94.23.0.64 (ns341101.ip-94-23-0.eu): 27 times 95.180.254.194: 2 times 104.236.72.187: 30 times 104.236.124.45: 10 times 106.12.204.44: 25 times 106.12.215.116: 29 times 106.13.23.35: 12 times 106.54.219.94: 25 times 110.49.70.240: 2 times 110.49.70.241: 1 time 110.49.70.244: 3 times 110.49.70.245: 3 times 110.49.70.246: 1 time 110.49.70.247: 3 times 110.49.70.249: 4 times 110.49.71.240: 1 time 110.49.71.241: 3 times 110.49.71.242: 2 times 110.49.71.243: 3 times 110.49.71.244: 2 times 110.49.71.245: 1 time 110.49.71.246: 4 times 110.49.71.248: 3 times 110.49.71.249: 1 time 112.6.231.114: 1 time 114.32.153.15 (114-32-153-15.HINET-IP.hinet.net): 22 times 114.67.70.94: 34 times 114.67.74.139: 27 times 116.90.165.26 (IP-90-165-26.dtp.net.id): 35 times 118.25.27.67: 31 times 118.25.103.132: 30 times 118.163.149.163 (118-163-149-163.HINET-IP.hinet.net): 12 times 123.206.95.229: 22 times 124.158.9.169 (mail.sataco.com): 53 times 124.243.198.190: 1 time 129.204.46.170: 14 times 130.61.51.92: 10 times 132.145.170.174: 15 times 132.232.56.95: 25 times 132.232.113.102: 19 times 139.59.37.209: 33 times 139.155.44.100: 15 times 140.210.9.80: 31 times 152.136.141.227: 17 times 157.245.107.153: 24 times 159.89.111.136 (alpha.civilmrcc): 23 times 159.89.155.148: 26 times 159.203.32.174: 26 times 159.255.43.31: 16 times 163.172.93.131 (sd.two-notes.net): 6 times 165.227.46.221 (id.cast-soft.com): 30 times 167.71.3.163: 27 times 174.138.26.48: 2 times 175.6.5.233: 1 time 175.140.23.240: 12 times 175.140.23.248: 13 times 176.187.77.51: 1 time 178.128.89.233: 5 times 178.128.202.35: 22 times 180.169.136.138: 20 times 181.48.29.35: 10 times 182.61.37.199: 25 times 182.61.46.62: 15 times 182.73.222.70: 1 time 182.151.42.174: 26 times 183.134.199.68: 30 times 186.136.199.40 (40-199-136-186.fibertel.com.ar): 6 times 187.178.173.161 (187-178-173-161.dynamic.axtel.net): 21 times 187.216.127.147 (customer-187-216-127-147.uninet-ide.com.mx): 1 time 188.254.0.224: 18 times 190.0.159.86 (r190-0-159-86.ir-static.adinet.com.uy): 7 times 193.70.114.154 (154.ip-193-70-114.eu): 6 times 193.112.74.3: 29 times 194.228.3.191 (renuska.nuabi.com): 31 times 195.29.105.125: 2 times 195.154.108.203 (195-154-108-203.rev.poneytelecom.eu): 28 times 197.225.166.204: 2 times 198.50.197.221 (ip221.ip-198-50-197.net): 20 times 198.50.200.80 (ip80.ip-198-50-200.net): 37 times 198.199.122.234 (226363.cloudwaysapps.com): 28 times 202.90.198.213: 31 times 203.190.55.213 (cloud.powertel.co.id): 7 times 211.25.119.131: 7 times 217.182.206.141 (141.ip-217-182-206.eu): 27 times 219.223.234.8: 1 time 220.191.160.42 (Mail.hcj1952.com): 28 times 221.123.191.27: 1 time 223.202.201.210: 26 times Illegal users from: undef: 1379 times 1.201.140.126: 23 times 2.137.102.27 (27.red-2-137-102.dynamicip.rima-tde.net): 4 times 14.18.189.68: 24 times 14.63.223.226: 3 times 31.20.92.192 (192-92-20-31.ftth.glasoperator.nl): 2 times 36.72.124.250: 28 times 36.74.75.31: 24 times 37.139.9.23: 1 time 37.187.26.207 (ns314782.ip-37-187-26.eu): 28 times 40.73.7.218: 1 time 40.73.76.102: 17 times 41.210.10.45 (41-210-10-45-adsl-dyn.4u.com.gh): 1 time 45.55.235.208: 16 times 46.218.7.227: 17 times 51.15.212.48 (48-212-15-51.rev.cloud.scaleway.com): 30 times 51.75.25.38 (38.ip-51-75-25.eu): 21 times 51.77.210.216 (216.ip-51-77-210.eu): 27 times 51.158.104.101 (101-104-158-51.rev.cloud.scaleway.com): 27 times 51.255.173.245 (245.ip-51-255-173.eu): 23 times 54.242.227.67 (ec2-54-242-227-67.compute-1.amazonaws.com): 20 times 58.213.198.77: 21 times 65.151.157.14: 22 times 68.183.86.76: 24 times 69.171.79.217 (69.171.79.217.16clouds.com): 1 time 72.93.243.210 (mail1.3a-ns.net): 1 time 81.133.12.221 (host81-133-12-221.in-addr.btopenworld.com): 1 time 83.103.98.211 (83-103-98-211.ip.fastwebnet.it): 24 times 91.134.227.180: 28 times 92.63.194.26: 1 time 94.23.0.64 (ns341101.ip-94-23-0.eu): 22 times 95.180.254.194: 8 times 95.180.254.199: 1 time 95.180.254.206: 1 time 103.36.84.100: 1 time 103.141.138.131: 1 time 104.236.72.187: 19 times 104.236.124.45: 42 times 106.12.204.44: 26 times 106.12.215.116: 19 times 106.12.222.40: 1 time 106.13.23.35: 33 times 106.54.219.94: 22 times 110.49.70.240: 2 times 110.49.70.241: 1 time 110.49.70.243: 1 time 110.49.70.245: 1 time 110.49.70.247: 2 times 110.49.71.242: 2 times 110.49.71.243: 1 time 110.49.71.246: 1 time 110.49.71.249: 2 times 114.32.153.15 (114-32-153-15.HINET-IP.hinet.net): 21 times 114.67.70.94: 15 times 114.67.74.139: 21 times 114.216.201.119: 1 time 116.90.165.26 (IP-90-165-26.dtp.net.id): 15 times 117.121.38.113: 1 time 118.25.27.67: 19 times 118.25.103.132: 18 times 118.163.149.163 (118-163-149-163.HINET-IP.hinet.net): 26 times 119.196.83.6: 1 time 122.194.42.177: 1 time 123.206.95.229: 28 times 129.204.46.170: 33 times 130.61.51.92: 41 times 130.61.122.5: 1 time 132.145.170.174: 23 times 132.232.56.95: 25 times 132.232.113.102: 31 times 138.68.20.158: 1 time 139.59.37.209: 17 times 139.155.44.100: 30 times 140.210.9.80: 18 times 145.249.105.204: 1 time 152.136.141.227: 12 times 157.245.107.153: 22 times 159.89.111.136 (alpha.civilmrcc): 16 times 159.89.155.148: 20 times 159.203.32.174: 19 times 159.255.43.31: 12 times 163.172.93.131 (sd.two-notes.net): 3 times 165.227.46.221 (id.cast-soft.com): 20 times 167.71.3.163: 20 times 174.138.26.48: 8 times 175.140.23.240: 7 times 175.140.23.248: 5 times 178.128.89.233: 5 times 178.128.202.35: 21 times 180.169.136.138: 21 times 181.48.29.35: 17 times 182.61.37.199: 21 times 182.61.46.62: 29 times 182.151.42.174: 23 times 183.134.199.68: 15 times 186.136.199.40 (40-199-136-186.fibertel.com.ar): 14 times 187.16.39.210: 1 time 187.178.173.161 (187-178-173-161.dynamic.axtel.net): 18 times 187.216.127.147 (customer-187-216-127-147.uninet-ide.com.mx): 12 times 188.254.0.224: 6 times 190.0.159.86 (r190-0-159-86.ir-static.adinet.com.uy): 7 times 193.32.163.182 (hosting-by.cloud-home.me): 4 times 193.70.114.154 (154.ip-193-70-114.eu): 31 times 193.112.74.3: 20 times 194.228.3.191 (renuska.nuabi.com): 19 times 195.29.105.125: 3 times 195.154.108.203 (195-154-108-203.rev.poneytelecom.eu): 21 times 197.45.241.171 (host-197.45.241.171.tedata.net): 1 time 197.225.166.204: 47 times 198.50.197.221 (ip221.ip-198-50-197.net): 23 times 198.50.200.80 (ip80.ip-198-50-200.net): 13 times 198.199.122.234 (226363.cloudwaysapps.com): 22 times 202.90.198.213: 20 times 203.190.55.213 (cloud.powertel.co.id): 30 times 211.25.119.131: 7 times 217.182.206.141 (141.ip-217-182-206.eu): 19 times 220.191.160.42 (Mail.hcj1952.com): 20 times 221.123.191.27: 47 times 222.128.11.26: 1 time 223.202.201.210: 21 times **Unmatched Entries** error: Received disconnect from 95.180.254.199: 3: com.jcraft.jsch.JSchException: Auth fail [preauth] : 1 time(s) error: Received disconnect from 95.180.254.206: 3: com.jcraft.jsch.JSchException: Auth fail [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (user,ssh-connection) [preauth] : 4 time(s) error: Received disconnect from 95.180.254.194: 3: com.jcraft.jsch.JSchException: Auth fail [preauth] : 8 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ftp,ssh-connection) [preauth] : 1 time(s) fatal: no matching cipher found: client aes256-cbc,rijndael-cbc(a)lysator.liu.se,aes192-cbc,aes128-cbc,arcfour128,arcfour,3des-cbc,none server aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com [preauth] : 2 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

5 Jahre, 11 Monate

1
0
0 / 0

winter19-teilnehmika@zapf.in post from peter.steinmueller@posteo.de requires approval

by winter19-teilnehmika-owner＠zapf.in

As list administrator, your authorization is requested for the following mailing list posting: List: winter19-teilnehmika(a)zapf.in From: peter.steinmueller(a)posteo.de Subject: Datenschutzerkl?rung ZaPF in Freiburg The message is being held because: The message is larger than the 40 KB maximum size At your convenience, visit your dashboard to approve or deny the request.

5 Jahre, 11 Monate

1
0
0 / 0

winter19-teilnehmika@zapf.in post from peter.steinmueller@posteo.de requires approval

by winter19-teilnehmika-owner＠zapf.in

As list administrator, your authorization is requested for the following mailing list posting: List: winter19-teilnehmika(a)zapf.in From: peter.steinmueller(a)posteo.de Subject: Datenschutzerkl?rung ZaPF in Freiburg The message is being held because: The message is larger than the 40 KB maximum size At your convenience, visit your dashboard to approve or deny the request.

5 Jahre, 11 Monate

1
0
0 / 0

Änderung der Mailadresse

by Christoph Blattgerste

Hey zusammen, könnt ihr vielleicht die Mailadresse fachschaft(a)mathphys.stura.uni-heidelberg.de <mailto:fachschaft@mathphys.stura.uni-heidelberg.de> auf dem Zapf eV Verteiler in die der FSPhysik (im CC) ändern? Dann werden die Fachschaften Mathe und Informatik nicht damit behelligt. Schöne Grüße Chrisπ --------------------------------------------------------------- Ständiger Ausschuss aller Physik-Fachschaften Als ständige Vertretung des Zusammenschlusses aller Physik-Fachschaften Website: https://zapfev.de

5 Jahre, 11 Monate

1
0
0 / 0

High level of danger. Your account was under attack.

by topf＠zapf.in

Hi, dear user of zapf.in We have installed one RAT software into you device For this moment your email account is hacked too. I know your password. I logged in to your account and wrote this letter to you from there. Changed your password? You're doing great! But my software recognizes every such action. I'm updating passwords! I'm always one step ahead.... So... I have downloaded all confidential information from your system and I got some more evidence. The most interesting moment that I have discovered are videos records where you masturbating. I posted Spelevo Exploit modification on porn site, and then you installed my malicious code (trojan) on your operation system. When you clicked the button Play on porn video, at that moment my trojan was downloaded to your device. After installation, your front camera shoots video every time you masturbate, in addition, the software is synchronized with the video you choose. For the moment, the software has harvrested all your contact information from social networks and email addresses. If you need to erase all of your collected data and videos, send me $718 in BTC (crypto currency). This is my Bitcoin wallet: 13yAsTuS6MyjNUYde4EBabTZJFfZBRTZu1 You have 48 hours after reading this letter. After your transaction I will erase all your data. Otherwise, I will send a video with your sweepstakes to all your colleagues, friends and relatives!!! P.S. I ask you not to reply to this email, this is impossible (the sender's address is your own address). And henceforth be more careful! Please visit only secure sites! Bye,Bye...

5 Jahre, 11 Monate

1
0
0 / 0

List Admin Zapfev

by f.kubandt＠posteo.de

5 Jahre, 11 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Wed Oct 30 04:42:03 2019 Date Range Processed: yesterday ( 2019-Oct-29 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [334:333] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 2 sites probed the server 172.104.242.173 61.219.11.153 Requests with error response codes 400 Bad Request /socket.io/?noteId=m1HgJzB0S7m7iPrsdj4_5Q& ... hiZam1sNc5jAA0J: 3 Time(s) null: 2 Time(s) /robots.txt: 1 Time(s) 404 Not Found /robots.txt: 41 Time(s) /berlin/apple-touch-icon.png: 6 Time(s) /sites/all/libraries/elfinder/connectors/php/connector.php: 2 Time(s) /sites/all/libraries/elfinder/elfinder.html: 2 Time(s) /-%20Zusammenkunft%20aller%20Physik-Fachschaften: 1 Time(s) //wp-login.php: 1 Time(s) /ads.txt: 1 Time(s) /datenschutz/: 1 Time(s) /protokolle/ergebnisprotokoll_mv_09.06.2017.pdf: 1 Time(s) /reader/1989-wi-berlin.pdf: 1 Time(s) /reader/1994-wi-reader_hb94.pdf: 1 Time(s) /reader/2016_sose_konstanz_lang.pdf: 1 Time(s) /resolutionen/wise15/che/positionspapier_wise15_che.pdf: 1 Time(s) /sites/default/files/1980_WiSe_Aachen.pdf: 1 Time(s) /sites/default/files/2010_WiSe_Berlin.pdf: 1 Time(s) /sites/default/files/2012_WiSe_Karlsruhe.pdf: 1 Time(s) /zapf/geschaeftsordnung: 1 Time(s) /zapf/reader/%7CTagungsreader: 1 Time(s) 500 Internal Server Error /: 90 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (124.158.9.169): 248 Time(s) root (mail.phanminhtravel.vn): 171 Time(s) root (mail.thanmiennam.com): 168 Time(s) root (mail.sataco.com): 139 Time(s) unknown (45.6.93.222): 46 Time(s) unknown (120.92.138.124): 37 Time(s) root (80.211.43.205): 36 Time(s) unknown (106.12.131.135): 36 Time(s) unknown (109.87.115.220): 36 Time(s) unknown (104.42.30.9): 34 Time(s) unknown (41.204.191.53): 31 Time(s) unknown (58.215.121.36): 31 Time(s) root (118.24.82.164): 30 Time(s) root (139.155.1.18): 30 Time(s) root (148.70.223.29): 30 Time(s) root (182.18.188.132): 30 Time(s) root (49.234.24.108): 30 Time(s) unknown (30.ip-51-75-70.eu): 30 Time(s) unknown (80.211.153.198): 30 Time(s) root (118.25.18.30): 29 Time(s) root (119.84.146.239): 29 Time(s) root (150.223.28.250): 29 Time(s) root (2.ip-54-39-147.net): 29 Time(s) root (59.56.74.165): 29 Time(s) unknown (202.152.15.12): 29 Time(s) unknown (45.80.64.127): 29 Time(s) root (132.145.170.174): 28 Time(s) root (138.197.175.236): 28 Time(s) root (69.171.79.217.16clouds.com): 28 Time(s) root (guard.webcare360.net): 28 Time(s) unknown (139.59.238.14): 28 Time(s) unknown (211.103.31.226): 28 Time(s) unknown (c-68-48-240-245.hsd1.mi.comcast.net): 28 Time(s) root (ip104.ip-217-182-158.eu): 27 Time(s) unknown (1.ip-51-77-195.eu): 27 Time(s) unknown (120.ip-51-75-202.eu): 27 Time(s) unknown (208.58.129.131): 27 Time(s) unknown (27.71.224.2): 27 Time(s) unknown (mining.unicentr.dp.ua): 27 Time(s) root (124.156.139.104): 26 Time(s) root (137.ip-54-37-232.eu): 26 Time(s) root (178.128.59.109): 26 Time(s) root (68.183.147.14): 26 Time(s) unknown (101.78.209.39): 26 Time(s) unknown (106.13.135.156): 26 Time(s) unknown (106.13.37.221): 26 Time(s) unknown (114.67.90.149): 26 Time(s) unknown (134.209.16.36): 26 Time(s) unknown (222.127.86.135): 26 Time(s) unknown (66-178-89-200.fibertel.com.ar): 26 Time(s) root (106.54.113.118): 25 Time(s) root (161.ip-193-70-36.eu): 25 Time(s) root (182.61.185.144): 25 Time(s) root (27.71.224.2): 25 Time(s) unknown (106.54.113.118): 25 Time(s) unknown (132.145.16.205): 25 Time(s) unknown (68.183.48.172): 25 Time(s) unknown (simplexhimes.com): 25 Time(s) root (106.13.49.20): 24 Time(s) unknown (106.12.215.116): 24 Time(s) root (122.144.143.213): 23 Time(s) root (180.150.189.206): 23 Time(s) unknown (104.171.164.197): 23 Time(s) unknown (134.209.17.42): 23 Time(s) unknown (161.ip-193-70-36.eu): 23 Time(s) unknown (190.64.68.178): 23 Time(s) unknown (213.ip-51-77-193.eu): 23 Time(s) root (106.12.215.116): 22 Time(s) root (114.67.90.149): 22 Time(s) root (14.63.223.226): 22 Time(s) root (213.ip-51-77-193.eu): 22 Time(s) root (r190-0-159-86.ir-static.adinet.com.uy): 22 Time(s) root (sd.two-notes.net): 22 Time(s) unknown (106.13.49.20): 22 Time(s) unknown (138.197.143.221): 22 Time(s) unknown (182.61.185.144): 22 Time(s) unknown (187.216.127.147): 22 Time(s) unknown (190.64.68.181): 22 Time(s) unknown (69.171.79.217.16clouds.com): 22 Time(s) unknown (guard.webcare360.net): 22 Time(s) unknown (118.25.18.30): 21 Time(s) unknown (137.ip-54-37-232.eu): 21 Time(s) unknown (2.ip-54-39-147.net): 21 Time(s) unknown (ip104.ip-217-182-158.eu): 21 Time(s) root (132.145.16.205): 20 Time(s) unknown (118.24.82.164): 20 Time(s) unknown (139.155.1.18): 20 Time(s) unknown (14.63.223.226): 20 Time(s) unknown (68.183.147.14): 20 Time(s) root (104.243.41.97): 19 Time(s) root (106.13.135.156): 19 Time(s) unknown (132.145.170.174): 19 Time(s) unknown (138.197.175.236): 19 Time(s) unknown (148.70.223.29): 19 Time(s) unknown (59.56.74.165): 19 Time(s) unknown (sd.two-notes.net): 19 Time(s) root (104.171.164.197): 18 Time(s) root (134.209.17.42): 18 Time(s) unknown (104.243.41.97): 18 Time(s) unknown (150.223.28.250): 18 Time(s) unknown (178.128.59.109): 18 Time(s) unknown (182.18.188.132): 18 Time(s) unknown (49.234.24.108): 18 Time(s) root (1.ip-51-77-195.eu): 17 Time(s) root (66-178-89-200.fibertel.com.ar): 17 Time(s) root (service.kicked-by-konsole.de): 17 Time(s) unknown (119.84.146.239): 17 Time(s) unknown (124.156.139.104): 17 Time(s) unknown (180.150.189.206): 17 Time(s) root (120.ip-51-75-202.eu): 16 Time(s) root (124.156.171.226): 16 Time(s) root (45.80.64.127): 16 Time(s) root (101.78.209.39): 15 Time(s) unknown (122.144.143.213): 15 Time(s) root (159.255.43.31): 14 Time(s) root (202.152.15.12): 14 Time(s) root (211.103.31.226): 14 Time(s) unknown (80.211.43.205): 14 Time(s) unknown (r190-0-159-86.ir-static.adinet.com.uy): 14 Time(s) unknown (service.kicked-by-konsole.de): 14 Time(s) unknown (187.131.211.5): 13 Time(s) root (106.13.37.221): 11 Time(s) unknown (182.148.114.139): 11 Time(s) root (106.12.131.135): 10 Time(s) root (139.59.238.14): 10 Time(s) root (208.58.129.131): 10 Time(s) root (222.127.86.135): 10 Time(s) root (mining.unicentr.dp.ua): 10 Time(s) root (109.87.115.220): 9 Time(s) root (62.234.55.241): 9 Time(s) unknown (180.76.237.125): 9 Time(s) root (134.209.16.36): 8 Time(s) root (c-68-48-240-245.hsd1.mi.comcast.net): 8 Time(s) root (159.89.111.136): 7 Time(s) root (187.216.127.147): 7 Time(s) root (46.218.7.227): 7 Time(s) root (68.183.48.172): 7 Time(s) root (simplexhimes.com): 7 Time(s) unknown (124.156.171.226): 7 Time(s) unknown (46.218.7.227): 7 Time(s) unknown (62.234.55.241): 7 Time(s) root (102.152.22.46): 6 Time(s) root (111.59.93.76): 6 Time(s) root (139.59.37.209): 6 Time(s) root (222.99.10.125): 6 Time(s) root (41.204.191.53): 6 Time(s) root (80.211.153.198): 6 Time(s) unknown (159.255.43.31): 6 Time(s) root (138.197.143.221): 5 Time(s) root (45.6.93.222): 5 Time(s) root (58.215.121.36): 5 Time(s) root (187.131.211.5): 3 Time(s) root (190.64.68.178): 3 Time(s) root (30.ip-51-75-70.eu): 3 Time(s) unknown (159.89.111.136): 3 Time(s) unknown (193.32.163.182): 3 Time(s) unknown (p5b01dda0.dip0.t-ipconnect.de): 3 Time(s) root (104.42.30.9): 2 Time(s) root (112.186.77.118): 2 Time(s) root (180.76.237.125): 2 Time(s) root (182.148.114.139): 2 Time(s) temp (180.150.189.206): 2 Time(s) unknown (112.186.77.118): 2 Time(s) unknown (119.196.83.6): 2 Time(s) unknown (182.23.104.231): 2 Time(s) unknown (94.191.31.53): 2 Time(s) games (106.12.215.116): 1 Time(s) lp (106.13.49.20): 1 Time(s) mysql (128.246.211.130.bc.googleusercontent.com): 1 Time(s) mysql (134.209.16.36): 1 Time(s) mysql (137.ip-54-37-232.eu): 1 Time(s) mysql (148.70.223.29): 1 Time(s) mysql (180.150.189.206): 1 Time(s) nobody (68.183.48.172): 1 Time(s) postfix (134.209.16.36): 1 Time(s) postgres (114.67.90.149): 1 Time(s) postgres (150.223.28.250): 1 Time(s) postgres (49.234.24.108): 1 Time(s) root (103.81.87.204): 1 Time(s) root (119.196.83.6): 1 Time(s) root (120.92.138.124): 1 Time(s) root (190.40.243.58): 1 Time(s) root (190.64.68.181): 1 Time(s) root (195.29.105.125): 1 Time(s) root (195.56.253.49): 1 Time(s) root (196.27.127.61): 1 Time(s) root (203.160.174.214): 1 Time(s) root (206.189.132.204): 1 Time(s) root (94.191.31.53): 1 Time(s) sync (134.209.16.36): 1 Time(s) sys (120.ip-51-75-202.eu): 1 Time(s) sys (132.145.170.174): 1 Time(s) temp (106.12.215.116): 1 Time(s) temp (118.25.18.30): 1 Time(s) temp (138.197.175.236): 1 Time(s) temp (213.ip-51-77-193.eu): 1 Time(s) temp (59.56.74.165): 1 Time(s) unknown (103.141.138.131): 1 Time(s) unknown (106.12.114.173): 1 Time(s) unknown (106.13.37.61): 1 Time(s) unknown (115.97.50.167): 1 Time(s) unknown (119.196.83.18): 1 Time(s) unknown (121.157.82.170): 1 Time(s) unknown (139.155.34.87): 1 Time(s) unknown (139.59.37.209): 1 Time(s) unknown (145.249.105.204): 1 Time(s) unknown (150.242.213.189): 1 Time(s) unknown (178.128.158.113): 1 Time(s) unknown (181.48.231.117): 1 Time(s) unknown (190.40.243.58): 1 Time(s) unknown (196.32.194.90): 1 Time(s) unknown (198.199.122.234): 1 Time(s) unknown (202.63.194.34): 1 Time(s) unknown (203.189.206.109): 1 Time(s) unknown (203.229.246.118): 1 Time(s) unknown (229.red-83-52-70.dynamicip.rima-tde.net): 1 Time(s) unknown (46-127-9-168.dynamic.hispeed.ch): 1 Time(s) unknown (59.94.145.83): 1 Time(s) unknown (92.63.194.26): 1 Time(s) unknown (crushdigital.co.uk): 1 Time(s) unknown (ns4.portugalinteractivo.pt): 1 Time(s) unknown (ool-addccea2.static.optonline.net): 1 Time(s) uucp (120.92.138.124): 1 Time(s) uucp (178.128.59.109): 1 Time(s) uucp (211.103.31.226): 1 Time(s) www-data (138.197.175.236): 1 Time(s) www-data (178.128.59.109): 1 Time(s) Invalid Users: Unknown Account: 1722 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 11 Miscellaneous warnings 26.431K Bytes accepted 27,065 26.431K Bytes sent via SMTP 27,065 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 4 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 4 Total 4xx Rejects 100.00% ======== ================================================== 245 Connections 220 Connections lost (inbound) 245 Disconnections 1 Removed from queue 1 Sent via SMTP ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 2 Time(s) Failed logins from: 5.135.108.140 (service.kicked-by-konsole.de): 17 times 14.63.223.226: 22 times 27.71.224.2: 25 times 41.204.191.53: 6 times 45.6.93.222: 5 times 45.80.64.127: 16 times 46.218.7.227: 7 times 49.234.24.108: 31 times 51.75.70.30 (30.ip-51-75-70.eu): 3 times 51.75.202.120 (120.ip-51-75-202.eu): 17 times 51.77.193.213 (213.ip-51-77-193.eu): 23 times 51.77.195.1 (1.ip-51-77-195.eu): 17 times 54.37.232.137 (137.ip-54-37-232.eu): 27 times 54.39.147.2 (2.ip-54-39-147.net): 29 times 58.215.121.36: 5 times 59.56.74.165: 30 times 62.234.55.241: 9 times 68.48.240.245 (c-68-48-240-245.hsd1.mi.comcast.net): 8 times 68.183.48.172: 8 times 68.183.147.14: 26 times 69.171.79.217 (69.171.79.217.16clouds.com): 28 times 80.211.43.205 (host205-43-211-80.serverdedicati.aruba.it): 36 times 80.211.153.198 (host198-153-211-80.serverdedicati.aruba.it): 6 times 87.120.36.238 (guard.webcare360.net): 28 times 94.191.31.53: 1 time 101.78.209.39: 15 times 102.152.22.46: 6 times 103.81.87.204: 1 time 104.42.30.9: 2 times 104.171.164.197: 18 times 104.243.41.97: 19 times 106.12.131.135: 10 times 106.12.215.116: 24 times 106.13.37.221: 11 times 106.13.49.20: 25 times 106.13.135.156: 19 times 106.54.113.118: 25 times 109.87.115.220 (220.115.87.109.triolan.net): 9 times 111.59.93.76: 6 times 112.186.77.118: 2 times 114.67.90.149: 23 times 118.24.82.164: 30 times 118.25.18.30: 30 times 119.84.146.239: 29 times 119.196.83.6: 1 time 120.92.138.124: 2 times 122.144.143.213: 23 times 124.156.139.104: 26 times 124.156.171.226: 16 times 124.158.9.169 (mail.sataco.com): 823 times 130.211.246.128 (128.246.211.130.bc.googleusercontent.com): 1 time 132.145.16.205: 20 times 132.145.170.174: 29 times 134.209.16.36: 11 times 134.209.17.42 (321715.cloudwaysapps.com): 18 times 138.197.143.221: 5 times 138.197.175.236: 30 times 139.59.37.209: 6 times 139.59.238.14: 10 times 139.155.1.18: 30 times 148.70.223.29: 31 times 150.223.28.250: 30 times 159.89.111.136 (alpha.civilmrcc): 7 times 159.255.43.31: 14 times 163.172.93.131 (sd.two-notes.net): 22 times 165.22.16.90 (simplexhimes.com): 7 times 178.128.59.109: 28 times 180.76.237.125: 2 times 180.150.189.206: 26 times 182.18.188.132 (static-182.18.188-132.ctrls.in): 30 times 182.61.185.144: 25 times 182.148.114.139: 2 times 187.131.211.5 (dsl-187-131-211-5-dyn.prod-infinitum.com.mx): 3 times 187.216.127.147 (customer-187-216-127-147.uninet-ide.com.mx): 7 times 190.0.159.86 (r190-0-159-86.ir-static.adinet.com.uy): 22 times 190.40.243.58: 1 time 190.64.68.178 (r190-64-68-178.su-static.adinet.com.uy): 3 times 190.64.68.181 (r190-64-68-181.su-static.adinet.com.uy): 1 time 193.70.36.161 (161.ip-193-70-36.eu): 25 times 195.29.105.125: 1 time 195.56.253.49: 1 time 196.27.127.61 (300080-host.customer.zol.co.zw): 1 time 200.89.178.66 (66-178-89-200.fibertel.com.ar): 17 times 202.152.15.12: 14 times 203.160.174.214: 1 time 206.189.132.204: 1 time 208.58.129.131: 10 times 211.103.31.226: 15 times 212.3.101.99 (mining.unicentr.dp.ua): 10 times 217.182.158.104 (ip104.ip-217-182-158.eu): 27 times 222.99.10.125: 6 times 222.127.86.135: 10 times Illegal users from: undef: 1377 times 5.135.108.140 (service.kicked-by-konsole.de): 14 times 14.63.223.226: 20 times 27.71.224.2: 27 times 41.204.191.53: 31 times 45.6.93.222: 46 times 45.80.64.127: 29 times 46.101.88.10 (crushdigital.co.uk): 1 time 46.127.9.168 (46-127-9-168.dynamic.hispeed.ch): 1 time 46.218.7.227: 7 times 49.234.24.108: 18 times 51.75.70.30 (30.ip-51-75-70.eu): 30 times 51.75.202.120 (120.ip-51-75-202.eu): 27 times 51.77.193.213 (213.ip-51-77-193.eu): 23 times 51.77.195.1 (1.ip-51-77-195.eu): 27 times 54.37.232.137 (137.ip-54-37-232.eu): 21 times 54.39.147.2 (2.ip-54-39-147.net): 21 times 58.215.121.36: 31 times 59.56.74.165: 19 times 59.94.145.83: 1 time 62.234.55.241: 7 times 68.48.240.245 (c-68-48-240-245.hsd1.mi.comcast.net): 28 times 68.183.48.172: 25 times 68.183.147.14: 20 times 69.171.79.217 (69.171.79.217.16clouds.com): 22 times 80.211.43.205 (host205-43-211-80.serverdedicati.aruba.it): 14 times 80.211.153.198 (host198-153-211-80.serverdedicati.aruba.it): 30 times 81.84.235.209 (ns4.portugalinteractivo.pt): 1 time 83.52.70.229 (229.red-83-52-70.dynamicip.rima-tde.net): 1 time 87.120.36.238 (guard.webcare360.net): 22 times 91.1.221.160 (p5B01DDA0.dip0.t-ipconnect.de): 3 times 92.63.194.26: 1 time 94.191.31.53: 2 times 101.78.209.39: 26 times 103.141.138.131: 1 time 104.42.30.9: 34 times 104.171.164.197: 23 times 104.243.41.97: 18 times 106.12.114.173: 1 time 106.12.131.135: 36 times 106.12.215.116: 24 times 106.13.37.61: 1 time 106.13.37.221: 26 times 106.13.49.20: 22 times 106.13.135.156: 26 times 106.54.113.118: 25 times 109.87.115.220 (220.115.87.109.triolan.net): 36 times 112.186.77.118: 2 times 114.67.90.149: 26 times 115.97.50.167: 1 time 118.24.82.164: 20 times 118.25.18.30: 21 times 119.84.146.239: 17 times 119.196.83.6: 2 times 119.196.83.18: 1 time 120.92.138.124: 37 times 121.157.82.170: 1 time 122.144.143.213: 15 times 124.156.139.104: 17 times 124.156.171.226: 7 times 132.145.16.205: 25 times 132.145.170.174: 19 times 134.209.16.36: 26 times 134.209.17.42 (321715.cloudwaysapps.com): 23 times 138.197.143.221: 22 times 138.197.175.236: 19 times 139.59.37.209: 1 time 139.59.238.14: 28 times 139.155.1.18: 20 times 139.155.34.87: 1 time 145.249.105.204: 1 time 148.70.223.29: 19 times 150.223.28.250: 18 times 150.242.213.189: 1 time 159.89.111.136 (alpha.civilmrcc): 3 times 159.255.43.31: 6 times 163.172.93.131 (sd.two-notes.net): 19 times 165.22.16.90 (simplexhimes.com): 25 times 173.220.206.162 (ool-addccea2.static.optonline.net): 1 time 178.128.59.109: 18 times 178.128.158.113: 1 time 180.76.237.125: 9 times 180.150.189.206: 17 times 181.48.231.117: 1 time 182.18.188.132 (static-182.18.188-132.ctrls.in): 18 times 182.23.104.231: 2 times 182.61.185.144: 22 times 182.148.114.139: 11 times 187.131.211.5 (dsl-187-131-211-5-dyn.prod-infinitum.com.mx): 13 times 187.216.127.147 (customer-187-216-127-147.uninet-ide.com.mx): 22 times 190.0.159.86 (r190-0-159-86.ir-static.adinet.com.uy): 14 times 190.40.243.58: 1 time 190.64.68.178 (r190-64-68-178.su-static.adinet.com.uy): 23 times 190.64.68.181 (r190-64-68-181.su-static.adinet.com.uy): 22 times 193.32.163.182 (hosting-by.cloud-home.me): 3 times 193.70.36.161 (161.ip-193-70-36.eu): 23 times 196.32.194.90: 1 time 198.199.122.234 (226363.cloudwaysapps.com): 1 time 200.89.178.66 (66-178-89-200.fibertel.com.ar): 26 times 202.63.194.34: 1 time 202.152.15.12: 29 times 203.189.206.109: 1 time 203.229.246.118: 1 time 208.58.129.131: 27 times 211.103.31.226: 28 times 212.3.101.99 (mining.unicentr.dp.ua): 27 times 217.182.158.104 (ip104.ip-217-182-158.eu): 21 times 222.127.86.135: 26 times **Unmatched Entries** fatal: no matching cipher found: client aes256-cbc,rijndael-cbc(a)lysator.liu.se,aes192-cbc,aes128-cbc,arcfour128,arcfour,3des-cbc,none server aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com [preauth] : 6 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (user,ssh-connection) [preauth] : 3 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ftp,ssh-connection) [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

5 Jahre, 11 Monate

1
0
0 / 0

Be sure to read this message! Your personal data is threatened!

by topf＠zapf.in

Hi, dear user of zapf.in We have installed one RAT software into you device For this moment your email account is hacked too. I know your password. I logged in to your account and wrote this letter to you from there. Changed your password? You're doing great! But my software recognizes every such action. I'm updating passwords! I'm always one step ahead.... So... I have downloaded all confidential information from your system and I got some more evidence. The most interesting moment that I have discovered are videos records where you masturbating. I posted Spelevo Exploit modification on porn site, and then you installed my malicious code (trojan) on your operation system. When you clicked the button Play on porn video, at that moment my trojan was downloaded to your device. After installation, your front camera shoots video every time you masturbate, in addition, the software is synchronized with the video you choose. For the moment, the software has harvrested all your contact information from social networks and email addresses. If you need to erase all of your collected data and videos, send me $708 in BTC (crypto currency). This is my Bitcoin wallet: 13yAsTuS6MyjNUYde4EBabTZJFfZBRTZu1 You have 48 hours after reading this letter. After your transaction I will erase all your data. Otherwise, I will send a video with your sweepstakes to all your colleagues, friends and relatives!!! P.S. I ask you not to reply to this email, this is impossible (the sender's address is your own address). And henceforth be more careful! Please visit only secure sites! Bye,Bye...

5 Jahre, 11 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Tue Oct 29 04:42:04 2019 Date Range Processed: yesterday ( 2019-Oct-28 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [273:273] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 3 sites probed the server 45.79.206.197 61.219.11.153 66.240.205.34 Requests with error response codes 400 Bad Request null: 5 Time(s) mstshash=Administr: 2 Time(s) /monitor/op5/nacoma/command_test.php?cmd_str=cd: 1 Time(s) 404 Not Found /robots.txt: 33 Time(s) /berlin/apple-touch-icon.png: 8 Time(s) /neuigkeiten/einladung-zapf-wise2011: 1 Time(s) /protokolle/ergebnisprotokoll_mv_09.06.2017.pdf: 1 Time(s) /reader/2017_SoSe_Berlin_vorlaeufig.pdf: 1 Time(s) /sites/default/files/1983_SoSe_Clausthal-Zellerfeld.pdf: 1 Time(s) /sites/default/files/2003_WiSe_Bochum.pdf: 1 Time(s) /sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s) /wp-login.php: 1 Time(s) 500 Internal Server Error /: 15 Time(s) /index_style.css: 1 Time(s) /login.asp: 1 Time(s) /scgi-bin/platform.cgi: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (2hi5.s.time4vps.cloud): 47 Time(s) root (8d.3e.7534.ip4.static.sl-reverse.com): 37 Time(s) unknown (122.166.159.56): 37 Time(s) root (122.150.84.34.bc.googleusercontent.com): 36 Time(s) root (157.230.251.115): 35 Time(s) root (165.22.91.225): 35 Time(s) root (ns3052098.ip-46-105-112.eu): 34 Time(s) root (static.43.30.216.95.clients.your-server.de): 33 Time(s) unknown (206.189.41.48): 33 Time(s) root (13.75.69.108): 32 Time(s) root (232.ip-51-77-194.eu): 32 Time(s) root (45.80.65.76): 32 Time(s) root (94.191.89.180): 32 Time(s) unknown (195.ip-51-75-123.eu): 32 Time(s) root (140.143.249.234): 31 Time(s) root (171.244.0.81): 31 Time(s) root (45.55.224.209): 31 Time(s) root (49.234.42.79): 31 Time(s) root (49.234.79.176): 31 Time(s) unknown (129.28.31.102): 31 Time(s) unknown (182.151.175.177): 31 Time(s) unknown (214.ip-142-44-160.net): 31 Time(s) unknown (67.ip-37-187-54.eu): 31 Time(s) root (165.227.53.241): 30 Time(s) root (58.254.132.239): 30 Time(s) unknown (159.203.189.152): 30 Time(s) unknown (65.229.24.170): 30 Time(s) root (114-32-153-15.hinet-ip.hinet.net): 29 Time(s) root (119.75.24.68): 29 Time(s) root (154.8.217.73): 29 Time(s) root (200.165.167.10): 29 Time(s) root (220.ip-149-56-46.net): 29 Time(s) root (36.89.163.178): 29 Time(s) unknown (103.40.28.111): 29 Time(s) unknown (167.71.6.160): 29 Time(s) unknown (187.0.211.99): 29 Time(s) unknown (h-191-133.a400.corp.bahnhof.se): 29 Time(s) unknown (voip.bks-tv.ru): 29 Time(s) root (159.203.40.89): 28 Time(s) root (49.232.92.95): 28 Time(s) root (51.15.84.255): 28 Time(s) root (59.9.31.195): 28 Time(s) root (68.183.171.232): 28 Time(s) unknown (104.36.71.146): 28 Time(s) unknown (122.5.46.22): 28 Time(s) unknown (14.37.38.213): 28 Time(s) unknown (162.243.50.8): 28 Time(s) unknown (49.234.206.45): 28 Time(s) root (216.ip-51-68-122.eu): 27 Time(s) root (69.87.221.97): 27 Time(s) unknown (106.54.113.118): 27 Time(s) unknown (128.ip-51-254-129.eu): 27 Time(s) unknown (139.199.84.234): 27 Time(s) unknown (broadband-95-84-134-5.ip.moscow.rt.ru): 27 Time(s) unknown (c-73-187-89-63.hsd1.pa.comcast.net): 27 Time(s) root (209.97.169.136): 26 Time(s) root (47.23.87.34.bc.googleusercontent.com): 26 Time(s) root (selvamotor.emcali.net.co): 26 Time(s) unknown (106.51.33.29): 26 Time(s) unknown (159.203.139.128): 26 Time(s) unknown (180.250.248.170): 26 Time(s) unknown (ip-88-152-231-197.hsi03.unitymediagroup.de): 26 Time(s) root (104.200.110.210): 25 Time(s) root (117.71.53.105): 25 Time(s) root (58.240.52.75): 25 Time(s) unknown (134.175.152.157): 25 Time(s) unknown (14.142.57.66): 25 Time(s) unknown (168.126.85.225): 25 Time(s) root (139.59.37.209): 24 Time(s) root (40.73.25.111): 24 Time(s) root (ks359158.kimsufi.com): 24 Time(s) unknown (237.ip-167-114-185.net): 24 Time(s) unknown (58.240.52.75): 24 Time(s) unknown (tasked.me): 24 Time(s) root (134.175.152.157): 23 Time(s) unknown (193.112.219.228): 23 Time(s) unknown (server.chennaiexpress.com): 23 Time(s) root (182.139.134.107): 22 Time(s) root (237.ip-167-114-185.net): 22 Time(s) root (91.209.54.54): 22 Time(s) root (server.chennaiexpress.com): 22 Time(s) root (tasked.me): 22 Time(s) unknown (117.71.53.105): 22 Time(s) unknown (138.197.98.251): 22 Time(s) unknown (209.97.169.136): 22 Time(s) unknown (36.89.163.178): 22 Time(s) unknown (47.23.87.34.bc.googleusercontent.com): 22 Time(s) unknown (91.209.54.54): 22 Time(s) unknown (doctural.com): 22 Time(s) root (168.126.85.225): 21 Time(s) root (180.76.237.125): 21 Time(s) root (193.112.219.228): 21 Time(s) root (58.246.138.30): 21 Time(s) unknown (119.75.24.68): 21 Time(s) unknown (182.139.134.107): 21 Time(s) unknown (49.232.92.95): 21 Time(s) unknown (58.246.138.30): 21 Time(s) unknown (69.87.221.97): 21 Time(s) unknown (ks359158.kimsufi.com): 21 Time(s) unknown (104.200.110.210): 20 Time(s) unknown (114-32-153-15.hinet-ip.hinet.net): 20 Time(s) unknown (154.8.217.73): 20 Time(s) unknown (40.73.25.111): 20 Time(s) unknown (59.9.31.195): 20 Time(s) unknown (selvamotor.emcali.net.co): 20 Time(s) root (138.197.98.251): 19 Time(s) root (broadband-95-84-134-5.ip.moscow.rt.ru): 19 Time(s) root (doctural.com): 19 Time(s) unknown (182.148.114.139): 19 Time(s) unknown (216.ip-51-68-122.eu): 19 Time(s) unknown (49.234.79.176): 19 Time(s) unknown (68.183.171.232): 19 Time(s) unknown (94.191.89.180): 19 Time(s) unknown (139.59.37.209): 18 Time(s) unknown (159.203.40.89): 18 Time(s) unknown (49.234.42.79): 18 Time(s) root (104.36.71.146): 17 Time(s) unknown (140.143.249.234): 17 Time(s) unknown (165.227.53.241): 17 Time(s) unknown (171.244.0.81): 17 Time(s) unknown (51.15.84.255): 17 Time(s) unknown (58.254.132.239): 17 Time(s) root (14.142.57.66): 16 Time(s) unknown (200.165.167.10): 16 Time(s) unknown (220.ip-149-56-46.net): 16 Time(s) unknown (232.ip-51-77-194.eu): 16 Time(s) unknown (45.55.224.209): 16 Time(s) unknown (45.80.65.76): 16 Time(s) unknown (static.43.30.216.95.clients.your-server.de): 16 Time(s) root (58.214.0.70): 15 Time(s) unknown (13.75.69.108): 15 Time(s) unknown (157.230.251.115): 15 Time(s) unknown (165.22.91.225): 15 Time(s) unknown (180.76.237.125): 15 Time(s) unknown (ns3052098.ip-46-105-112.eu): 15 Time(s) root (106.54.113.118): 14 Time(s) root (139.199.84.234): 14 Time(s) root (49.234.206.45): 14 Time(s) root (service.kicked-by-konsole.de): 14 Time(s) unknown (122.150.84.34.bc.googleusercontent.com): 14 Time(s) unknown (177.128.70.240): 14 Time(s) unknown (182.254.184.247): 14 Time(s) unknown (187.131.211.5): 14 Time(s) unknown (58.214.0.70): 14 Time(s) unknown (8d.3e.7534.ip4.static.sl-reverse.com): 14 Time(s) root (122.166.159.56): 13 Time(s) root (128.ip-51-254-129.eu): 13 Time(s) root (ip-88-152-231-197.hsi03.unitymediagroup.de): 13 Time(s) unknown (189.109.247.149): 12 Time(s) root (103.40.28.111): 11 Time(s) root (129.28.31.102): 11 Time(s) root (162.243.50.8): 11 Time(s) root (182.151.175.177): 11 Time(s) root (voip.bks-tv.ru): 11 Time(s) unknown (27.17.36.254): 11 Time(s) root (14.37.38.213): 10 Time(s) root (180.250.248.170): 10 Time(s) root (187.131.211.5): 10 Time(s) unknown (46-253-191-210.dynamic.monzoon.net): 10 Time(s) root (c-73-187-89-63.hsd1.pa.comcast.net): 9 Time(s) root (167.71.6.160): 8 Time(s) root (65.229.24.170): 7 Time(s) unknown (118.184.216.161): 7 Time(s) unknown (138.197.143.221): 7 Time(s) root (106.51.33.29): 6 Time(s) root (182.148.114.139): 6 Time(s) root (203-66-168-81.hinet-ip.hinet.net): 6 Time(s) root (broadband-188-32-46-91.ip.moscow.rt.ru): 6 Time(s) root (h-191-133.a400.corp.bahnhof.se): 6 Time(s) unknown (service.kicked-by-konsole.de): 6 Time(s) root (187.0.211.99): 5 Time(s) root (2hi5.s.time4vps.cloud): 5 Time(s) root (68.183.48.172): 5 Time(s) unknown (140.249.196.49): 5 Time(s) root (138.197.143.221): 4 Time(s) unknown (193.32.163.182): 4 Time(s) unknown (203-66-168-81.hinet-ip.hinet.net): 4 Time(s) root (140.249.196.49): 3 Time(s) root (159.203.189.152): 3 Time(s) root (214.ip-142-44-160.net): 3 Time(s) root (27.17.36.254): 3 Time(s) unknown (103.141.138.131): 3 Time(s) postgres (159.203.40.89): 2 Time(s) root (122.5.46.22): 2 Time(s) root (195.ip-51-75-123.eu): 2 Time(s) unknown (119.196.83.18): 2 Time(s) unknown (121.157.82.170): 2 Time(s) unknown (ool-addccea2.static.optonline.net): 2 Time(s) backup (114-32-153-15.hinet-ip.hinet.net): 1 Time(s) backup (195.ip-51-75-123.eu): 1 Time(s) backup (58.254.132.239): 1 Time(s) irc (40.73.25.111): 1 Time(s) mail (165.227.53.241): 1 Time(s) mail (40.73.25.111): 1 Time(s) mail (58.246.138.30): 1 Time(s) mail (c-73-187-89-63.hsd1.pa.comcast.net): 1 Time(s) mysql (67.ip-37-187-54.eu): 1 Time(s) openproject (68.183.171.232): 1 Time(s) postfix (49.232.92.95): 1 Time(s) postgres (13.75.69.108): 1 Time(s) postgres (139.59.78.236): 1 Time(s) postgres (170.231.81.165): 1 Time(s) postgres (200.165.167.10): 1 Time(s) postgres (51.15.84.255): 1 Time(s) postgres (59.9.31.195): 1 Time(s) postgres (69.87.221.97): 1 Time(s) proxy (69.87.221.97): 1 Time(s) proxy (static.43.30.216.95.clients.your-server.de): 1 Time(s) root (119.196.83.26): 1 Time(s) root (13.75.69.78): 1 Time(s) root (130.ip-142-4-203.net): 1 Time(s) root (159.203.139.128): 1 Time(s) root (177.128.70.240): 1 Time(s) root (188.166.68.8): 1 Time(s) root (206.189.41.48): 1 Time(s) root (37.17.65.154): 1 Time(s) root (41.224.59.78): 1 Time(s) root (66-178-89-200.fibertel.com.ar): 1 Time(s) root (67.ip-37-187-54.eu): 1 Time(s) sshd (216.ip-51-68-122.eu): 1 Time(s) sshd (58.246.138.30): 1 Time(s) temp (119.75.24.68): 1 Time(s) temp (122.166.159.56): 1 Time(s) temp (180.250.248.170): 1 Time(s) temp (193.112.219.228): 1 Time(s) temp (220.ip-149-56-46.net): 1 Time(s) temp (47.23.87.34.bc.googleusercontent.com): 1 Time(s) temp (58.246.138.30): 1 Time(s) temp (ns3052098.ip-46-105-112.eu): 1 Time(s) unknown (103.84.131.58): 1 Time(s) unknown (104.236.246.16): 1 Time(s) unknown (106.3.135.27): 1 Time(s) unknown (112.173.70.199): 1 Time(s) unknown (118-163-178-146.hinet-ip.hinet.net): 1 Time(s) unknown (119.42.175.200): 1 Time(s) unknown (121.141.5.199): 1 Time(s) unknown (138.197.105.79): 1 Time(s) unknown (139.59.180.53): 1 Time(s) unknown (14.142.149.50): 1 Time(s) unknown (14.29.207.59): 1 Time(s) unknown (145.249.105.204): 1 Time(s) unknown (159.65.81.187): 1 Time(s) unknown (163.172.204.185): 1 Time(s) unknown (188.166.68.8): 1 Time(s) unknown (197.156.67.251): 1 Time(s) unknown (202.169.56.98): 1 Time(s) unknown (206.189.137.113): 1 Time(s) unknown (211.110.140.200): 1 Time(s) unknown (229.219.189.35.bc.googleusercontent.com): 1 Time(s) unknown (36.66.149.211): 1 Time(s) unknown (41.202.168.81): 1 Time(s) unknown (42.116.255.216): 1 Time(s) unknown (45.55.12.248): 1 Time(s) unknown (45.55.42.17): 1 Time(s) unknown (61.130.28.153): 1 Time(s) unknown (68.183.48.172): 1 Time(s) unknown (78-21-91-38.access.telenet.be): 1 Time(s) unknown (80.17.244.2): 1 Time(s) unknown (92.63.194.26): 1 Time(s) unknown (cpe-74-141-132-233.kya.res.rr.com): 1 Time(s) unknown (ec2-13-232-10-186.ap-south-1.compute.amazonaws.com): 1 Time(s) uucp (58.254.132.239): 1 Time(s) www-data (216.ip-51-68-122.eu): 1 Time(s) Invalid Users: Unknown Account: 2046 Time(s) Bad User: +: 1 Time(s) Bad User: -: 1 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 190 Miscellaneous warnings 34.146K Bytes accepted 34,966 34.146K Bytes sent via SMTP 34,966 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 1 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 1 Total 4xx Rejects 100.00% ======== ================================================== 249 Connections 229 Connections lost (inbound) 249 Disconnections 1 Removed from queue 1 Sent via SMTP 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 1 Time(s) Failed logins from: 5.135.108.140 (service.kicked-by-konsole.de): 14 times 13.75.69.78: 1 time 13.75.69.108: 33 times 14.37.38.213: 10 times 14.142.57.66 (jaipuria.ac.in): 16 times 27.17.36.254: 3 times 34.84.150.122 (122.150.84.34.bc.googleusercontent.com): 36 times 34.87.23.47 (47.23.87.34.bc.googleusercontent.com): 27 times 36.89.163.178: 29 times 37.17.65.154: 1 time 37.187.54.67 (67.ip-37-187-54.eu): 2 times 40.73.25.111: 26 times 41.224.59.78: 1 time 45.55.224.209: 31 times 45.80.65.76: 32 times 46.105.112.107 (ns3052098.ip-46-105-112.eu): 35 times 49.232.92.95: 29 times 49.234.42.79: 31 times 49.234.79.176: 31 times 49.234.206.45: 14 times 51.15.84.255 (255-84-15-51.rev.cloud.scaleway.com): 29 times 51.68.122.216 (216.ip-51-68-122.eu): 29 times 51.75.123.195 (195.ip-51-75-123.eu): 3 times 51.77.194.232 (232.ip-51-77-194.eu): 32 times 51.254.129.128 (128.ip-51-254-129.eu): 13 times 52.117.62.141 (8d.3e.7534.ip4.static.sl-reverse.com): 37 times 58.214.0.70: 15 times 58.240.52.75: 25 times 58.246.138.30: 24 times 58.254.132.239: 32 times 59.9.31.195: 29 times 65.229.24.170: 7 times 68.183.48.172: 5 times 68.183.171.232: 29 times 69.87.221.97: 29 times 73.187.89.63 (c-73-187-89-63.hsd1.pa.comcast.net): 10 times 77.232.128.87 (voip.bks-tv.ru): 11 times 88.152.231.197 (ip-88-152-231-197.hsi03.unitymediagroup.de): 13 times 91.121.155.226 (ks359158.kimsufi.com): 24 times 91.209.54.54 (host-54.briz.net.ru): 22 times 94.191.89.180: 32 times 95.84.134.5 (broadband-95-84-134-5.ip.moscow.rt.ru): 19 times 95.216.30.43 (static.43.30.216.95.clients.your-server.de): 34 times 103.40.28.111: 11 times 104.36.71.146 (localhost.localdomain): 17 times 104.200.110.210: 25 times 106.51.33.29 (broadband.actcorp.in): 6 times 106.54.113.118: 14 times 108.179.210.185 (server.chennaiexpress.com): 22 times 109.228.191.133 (h-191-133.A400.corp.bahnhof.se): 6 times 114.32.153.15 (114-32-153-15.HINET-IP.hinet.net): 30 times 117.71.53.105: 25 times 119.75.24.68: 30 times 119.196.83.26: 1 time 122.5.46.22 (22.46.5.122.broad.yt.sd.dynamic.163data.com.cn): 2 times 122.166.159.56 (abts-kk-static-56.159.166.122.airtelbroadband.in): 14 times 129.28.31.102: 11 times 134.175.152.157: 23 times 138.197.98.251: 19 times 138.197.143.221: 4 times 139.59.37.209: 24 times 139.59.78.236: 1 time 139.199.84.234: 14 times 140.143.249.234: 31 times 140.249.196.49: 3 times 142.4.203.130 (130.ip-142-4-203.net): 1 time 142.44.160.214 (214.ip-142-44-160.net): 3 times 149.56.46.220 (220.ip-149-56-46.net): 30 times 154.8.217.73: 29 times 157.230.251.115: 35 times 159.203.40.89: 30 times 159.203.139.128: 1 time 159.203.189.152: 3 times 162.243.50.8 (dev.rcms.io): 11 times 162.248.54.39 (doctural.com): 19 times 165.22.91.225: 35 times 165.227.53.241 (268019.cloudwaysapps.com): 31 times 167.71.6.160: 8 times 167.114.185.237 (237.ip-167-114-185.net): 22 times 168.126.85.225: 21 times 170.231.81.165: 1 time 171.244.0.81: 31 times 177.128.70.240 (177.128.70.240.wbmx.com.br): 1 time 180.76.237.125: 21 times 180.250.248.170 (idmail.id): 11 times 182.139.134.107: 22 times 182.148.114.139: 6 times 182.151.175.177: 11 times 187.0.211.99: 5 times 187.131.211.5 (dsl-187-131-211-5-dyn.prod-infinitum.com.mx): 10 times 188.32.46.91 (broadband-188-32-46-91.ip.moscow.rt.ru): 6 times 188.166.68.8: 1 time 193.112.219.228: 22 times 195.181.242.183 (2hi5.s.time4vps.cloud): 5 times 200.29.108.214 (selvamotor.emcali.net.co): 26 times 200.89.178.66 (66-178-89-200.fibertel.com.ar): 1 time 200.165.167.10: 30 times 203.66.168.81 (203-66-168-81.HINET-IP.hinet.net): 6 times 206.189.41.48: 1 time 206.189.72.217 (tasked.me): 22 times 209.97.169.136: 26 times Illegal users from: undef: 1690 times 5.135.108.140 (service.kicked-by-konsole.de): 6 times 13.75.69.108: 15 times 13.232.10.186 (ec2-13-232-10-186.ap-south-1.compute.amazonaws.com): 1 time 14.29.207.59: 1 time 14.37.38.213: 28 times 14.142.57.66 (jaipuria.ac.in): 25 times 14.142.149.50 (14.142.149.50.static-Bangalore.vsnl.net.in): 1 time 27.17.36.254: 11 times 34.84.150.122 (122.150.84.34.bc.googleusercontent.com): 14 times 34.87.23.47 (47.23.87.34.bc.googleusercontent.com): 22 times 35.189.219.229 (229.219.189.35.bc.googleusercontent.com): 1 time 36.66.149.211: 1 time 36.89.163.178: 22 times 37.187.54.67 (67.ip-37-187-54.eu): 31 times 40.73.25.111: 20 times 41.202.168.81: 1 time 42.116.255.216: 1 time 45.55.12.248 (hostmaster.vitalconnectionuniversity.com): 1 time 45.55.42.17: 1 time 45.55.224.209: 16 times 45.80.65.76: 16 times 46.105.112.107 (ns3052098.ip-46-105-112.eu): 15 times 46.253.191.210 (46-253-191-210.dynamic.monzoon.net): 10 times 49.232.92.95: 21 times 49.234.42.79: 18 times 49.234.79.176: 19 times 49.234.206.45: 28 times 51.15.84.255 (255-84-15-51.rev.cloud.scaleway.com): 17 times 51.68.122.216 (216.ip-51-68-122.eu): 19 times 51.75.123.195 (195.ip-51-75-123.eu): 32 times 51.77.194.232 (232.ip-51-77-194.eu): 16 times 51.254.129.128 (128.ip-51-254-129.eu): 27 times 52.117.62.141 (8d.3e.7534.ip4.static.sl-reverse.com): 14 times 58.214.0.70: 14 times 58.240.52.75: 24 times 58.246.138.30: 21 times 58.254.132.239: 17 times 59.9.31.195: 20 times 61.130.28.153 (153.28.130.61.dial.wz.zj.dynamic.163data.com.cn): 1 time 65.229.24.170: 30 times 68.183.48.172: 1 time 68.183.171.232: 19 times 69.87.221.97: 22 times 73.187.89.63 (c-73-187-89-63.hsd1.pa.comcast.net): 27 times 74.141.132.233 (cpe-74-141-132-233.kya.res.rr.com): 1 time 77.232.128.87 (voip.bks-tv.ru): 29 times 78.21.91.38 (78-21-91-38.access.telenet.be): 1 time 80.17.244.2: 1 time 88.152.231.197 (ip-88-152-231-197.hsi03.unitymediagroup.de): 26 times 91.121.155.226 (ks359158.kimsufi.com): 21 times 91.209.54.54 (host-54.briz.net.ru): 22 times 92.63.194.26: 1 time 94.191.89.180: 19 times 95.84.134.5 (broadband-95-84-134-5.ip.moscow.rt.ru): 27 times 95.216.30.43 (static.43.30.216.95.clients.your-server.de): 16 times 103.40.28.111: 29 times 103.84.131.58: 1 time 103.141.138.131: 3 times 104.36.71.146 (localhost.localdomain): 28 times 104.200.110.210: 20 times 104.236.246.16: 1 time 106.3.135.27: 1 time 106.51.33.29 (broadband.actcorp.in): 26 times 106.54.113.118: 27 times 108.179.210.185 (server.chennaiexpress.com): 23 times 109.228.191.133 (h-191-133.A400.corp.bahnhof.se): 29 times 112.173.70.199: 1 time 114.32.153.15 (114-32-153-15.HINET-IP.hinet.net): 20 times 117.71.53.105: 22 times 118.163.178.146 (118-163-178-146.HINET-IP.hinet.net): 1 time 118.184.216.161 (h118-184-216-161.pubyun.com): 7 times 119.42.175.200: 1 time 119.75.24.68: 21 times 119.196.83.18: 2 times 121.141.5.199: 1 time 121.157.82.170: 2 times 122.5.46.22 (22.46.5.122.broad.yt.sd.dynamic.163data.com.cn): 28 times 122.166.159.56 (abts-kk-static-56.159.166.122.airtelbroadband.in): 37 times 129.28.31.102: 31 times 134.175.152.157: 25 times 138.197.98.251: 22 times 138.197.105.79: 1 time 138.197.143.221: 7 times 139.59.37.209: 18 times 139.59.180.53: 1 time 139.199.84.234: 27 times 140.143.249.234: 17 times 140.249.196.49: 5 times 142.44.160.214 (214.ip-142-44-160.net): 31 times 145.249.105.204: 1 time 149.56.46.220 (220.ip-149-56-46.net): 16 times 154.8.217.73: 20 times 157.230.251.115: 15 times 159.65.81.187: 1 time 159.203.40.89: 18 times 159.203.139.128: 26 times 159.203.189.152: 30 times 162.243.50.8 (dev.rcms.io): 29 times 162.248.54.39 (doctural.com): 22 times 163.172.204.185 (163-172-204-185.rev.poneytelecom.eu): 1 time 165.22.91.225: 15 times 165.227.53.241 (268019.cloudwaysapps.com): 17 times 167.71.6.160: 29 times 167.114.185.237 (237.ip-167-114-185.net): 24 times 168.126.85.225: 25 times 171.244.0.81: 17 times 173.220.206.162 (ool-addccea2.static.optonline.net): 2 times 177.128.70.240 (177.128.70.240.wbmx.com.br): 14 times 180.76.237.125: 15 times 180.250.248.170 (idmail.id): 26 times 182.139.134.107: 21 times 182.148.114.139: 19 times 182.151.175.177: 31 times 182.254.184.247: 14 times 187.0.211.99: 29 times 187.131.211.5 (dsl-187-131-211-5-dyn.prod-infinitum.com.mx): 14 times 188.166.68.8: 1 time 189.109.247.149 (189-109-247-149.customer.tdatabrasil.net.br): 12 times 193.32.163.182 (hosting-by.cloud-home.me): 4 times 193.112.219.228: 23 times 195.181.242.183 (2hi5.s.time4vps.cloud): 47 times 197.156.67.251: 1 time 200.29.108.214 (selvamotor.emcali.net.co): 20 times 200.165.167.10: 16 times 202.169.56.98: 1 time 203.66.168.81 (203-66-168-81.HINET-IP.hinet.net): 4 times 206.189.41.48: 33 times 206.189.72.217 (tasked.me): 24 times 206.189.137.113: 1 time 209.97.169.136: 22 times 211.110.140.200: 1 time **Unmatched Entries** Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ftp,ssh-connection) [preauth] : 3 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (user,ssh-connection) [preauth] : 3 time(s) fatal: no matching cipher found: client aes256-cbc,rijndael-cbc(a)lysator.liu.se,aes192-cbc,aes128-cbc,arcfour128,arcfour,3des-cbc,none server aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com [preauth] : 2 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

5 Jahre, 11 Monate

1
0
0 / 0

[ZaPF] Vorbereitung Freiburg | Bitte Texte anschauen

by Daniela Kern-Michler

Hallo zusammen, am 29.10. um 18 Uhr mumbelt der ZaPFe.V. Vereinsvorstand über die (last-minute^^) ZaPF Vorbereitung. Ein Thema an dem seit der letzten ZaPF gearbeitet wurde, ist die Überarbeitung der Datenschutz Erklärungen. Dazu gab es auch ein sehr produktives eV+TOPF Treffen in Berlin auf dem unter anderem die beiden Erklärungen weiter unten bearbeitet wurden. Meine Bitte an Euch ist nun folgende: Schaut vor dem Mumbel bitte kritisch über die Erklärungen, damit beim der Mumbelsitzung entschieden werden kann, ob das Ganze noch vor der Tagung "veröffentlicht" werden soll oder ob es noch zu viel Arbeit braucht und wir deshalb lieber noch warten. Ich habe zwei Links in die Wolke gemacht, damit auch die Freiburger Orga (Hallo Ihr Lieben, nicht erschrecken, falls ihr nicht dazu kommt, ist es einfach so und auch gut, aber falls jemand etwas Zeit findet um zu schauen, dass keine Lügen über Eure Anmeldung drinnen stehen, wäre schön^^) die Texte anschauen kann. Ich hoffe mal, dass das so gedacht ist. Die Links halten bis zum 30.10. Dann ist ja eh ZaPF. Ich versuche die Tage (vielleicht Sonntagabend) noch einen Entwurf für Folien fürs Anfangsplenum zu machen und diese dann rumzuschicken. Wobei mir auch die Rechenschaftsberichte wieder einfallen. Liebe Grüße, Daniela Allgemein: https://wolke.zapf.in/s/d7ynHfdPTEREeZF Anmeldung Freiburg: https://wolke.zapf.in/s/xZwdRTojG9WZFSC

5 Jahre, 11 Monate

4
4
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

TOPF Oktober 2019