November 2021 - TOPF

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Mon Nov 8 04:42:04 2021 Date Range Processed: yesterday ( 2021-Nov-07 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 72:71 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 5 sites probed the server 161.35.238.241 167.71.102.95 172.105.77.209 212.192.241.51 68.183.35.135 Requests with error response codes 400 Bad Request null: 9 Time(s) /: 4 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 3 Time(s) /socket.io/?noteId=vtiGK5IARbm3GZ2zBzrhRg& ... 4ekcoPs_Pv2AAFr: 3 Time(s) /ab2g: 2 Time(s) /ab2h: 2 Time(s) !\xF7:\xBD\x93\xA6f\xDC\xE8\xEC\xC2\x18\xB ... (\xC0#\xC0'\xC0: 1 Time(s) /favicon.ico: 1 Time(s) /index.php?s=/index/\x09hink\x07pp/invokef ... exec&vars[1][]=: 1 Time(s) /manager/text/list: 1 Time(s) /recordings: 1 Time(s) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... UKkQlzr9OMwAAFc: 1 Time(s) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... XpwWX7MXZNQAAFb: 1 Time(s) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... wSkK4vaP9OmAAFa: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... 4vuAxk2iQrIAAFW: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... L9bA8Z_Ab6PAAFX: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... VJDprX6b5-AAAFV: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) 404 Not Found //2018/wp-includes/wlwmanifest.xml: 1 Time(s) //2019/wp-includes/wlwmanifest.xml: 1 Time(s) //blog/wp-includes/wlwmanifest.xml: 1 Time(s) //cms/wp-includes/wlwmanifest.xml: 1 Time(s) //media/wp-includes/wlwmanifest.xml: 1 Time(s) //news/wp-includes/wlwmanifest.xml: 1 Time(s) //shop/wp-includes/wlwmanifest.xml: 1 Time(s) //site/wp-includes/wlwmanifest.xml: 1 Time(s) //sito/wp-includes/wlwmanifest.xml: 1 Time(s) //test/wp-includes/wlwmanifest.xml: 1 Time(s) //web/wp-includes/wlwmanifest.xml: 1 Time(s) //website/wp-includes/wlwmanifest.xml: 1 Time(s) //wordpress/wp-includes/wlwmanifest.xml: 1 Time(s) //wp-includes/wlwmanifest.xml: 1 Time(s) //wp/wp-includes/wlwmanifest.xml: 1 Time(s) //wp1/wp-includes/wlwmanifest.xml: 1 Time(s) //wp2/wp-includes/wlwmanifest.xml: 1 Time(s) //xmlrpc.php?rsd: 1 Time(s) /berlin/unterstuetzer/apple-touch-icon.png: 1 Time(s) 499 (undefined) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... Skl5pSdw46RAAFd: 1 Time(s) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... UKkQlzr9OMwAAFc: 1 Time(s) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... XpwWX7MXZNQAAFb: 1 Time(s) /socket.io/?noteId=9Y_7R8SqQoatEKlnbsw7Kw& ... wSkK4vaP9OmAAFa: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... 4vuAxk2iQrIAAFW: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... KnMlUxzR_MdAAFY: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... L9bA8Z_Ab6PAAFX: 1 Time(s) /socket.io/?noteId=w1op49QpSGyk43xo0up_Aw& ... VJDprX6b5-AAAFV: 1 Time(s) 500 Internal Server Error /: 45 Time(s) /.env: 4 Time(s) /robots.txt: 4 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 4 Time(s) /?XDEBUG_SESSION_START=phpstorm: 2 Time(s) /Autodiscover/Autodiscover.xml: 2 Time(s) /_ignition/execute-solution: 2 Time(s) /api/jsonws/invoke: 2 Time(s) /autodiscover/autodiscover.json?(a)evil.corp ... on%3F(a)evil.corp: 2 Time(s) /console/: 2 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 2 Time(s) /index.php?s=/Index/\x5Cthink\x5Capp/invok ... HelloThinkPHP21: 2 Time(s) /mifs/.;/services/LogService: 2 Time(s) /wp-content/plugins/wp-file-manager/readme.txt: 2 Time(s) ///libs/js/iframe.js: 1 Time(s) //a2billing/customer/templates/default/footer.tpl: 1 Time(s) /actuator/health: 1 Time(s) /bag2: 1 Time(s) /owa/: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f: 1 Time(s) /owa/auth/x.js: 1 Time(s) /recordings: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (152.136.198.176): 38 Time(s) root (106.55.146.67): 37 Time(s) root (42.193.19.16): 36 Time(s) root (218.69.91.226): 35 Time(s) root (123.207.167.21): 34 Time(s) root (159.89.152.89): 34 Time(s) root (178.62.123.167): 33 Time(s) root (81.30.176.30): 32 Time(s) root (188.131.146.4): 31 Time(s) root (172-220-118-030.res.spectrum.com): 29 Time(s) root (119.45.41.248): 27 Time(s) root (139.186.200.77): 26 Time(s) root (210.101.91.154): 25 Time(s) root (5.141.85.82): 25 Time(s) root (49.234.105.203): 24 Time(s) root (42.194.164.108): 23 Time(s) root (106.13.140.138): 22 Time(s) unknown (5.141.85.82): 22 Time(s) unknown (172-220-118-030.res.spectrum.com): 21 Time(s) unknown (188.131.146.4): 19 Time(s) root (139.198.123.106): 18 Time(s) root (202.153.134.34.bc.googleusercontent.com): 18 Time(s) root (167.172.230.14): 17 Time(s) root (89-97-218-142.ip19.fastwebnet.it): 17 Time(s) unknown (178.62.123.167): 17 Time(s) root (1.202.77.126): 16 Time(s) unknown (159.89.152.89): 16 Time(s) root (188.166.240.30): 15 Time(s) unknown (123.207.167.21): 15 Time(s) unknown (218.69.91.226): 15 Time(s) root (148.251.157.30): 14 Time(s) root (167.71.210.244): 14 Time(s) unknown (111.198.33.54): 13 Time(s) unknown (42.193.19.16): 13 Time(s) unknown (106.13.140.138): 11 Time(s) unknown (106.55.146.67): 11 Time(s) unknown (167.71.210.244): 11 Time(s) unknown (81.30.176.30): 11 Time(s) unknown (152.136.198.176): 10 Time(s) unknown (188.166.240.30): 10 Time(s) root (180.250.115.121): 9 Time(s) unknown (119.45.41.248): 8 Time(s) unknown (139.186.200.77): 8 Time(s) unknown (210.101.91.154): 8 Time(s) unknown (42.194.164.108): 8 Time(s) unknown (89-97-218-142.ip19.fastwebnet.it): 8 Time(s) root (h83-174-237-211.static.bashtel.ru): 7 Time(s) root (smtp4.achtungumbedingt.de): 7 Time(s) unknown (202.153.134.34.bc.googleusercontent.com): 7 Time(s) unknown (1.202.77.126): 6 Time(s) unknown (139.198.123.106): 6 Time(s) unknown (148.251.157.30): 6 Time(s) unknown (167.172.230.14): 6 Time(s) unknown (176.111.173.237): 6 Time(s) unknown (195.133.18.210): 6 Time(s) root (111.198.33.54): 5 Time(s) unknown (180.250.115.121): 5 Time(s) root (202.3.183.188): 4 Time(s) unknown (116.110.64.186): 4 Time(s) unknown (117.7.122.163): 4 Time(s) unknown (136.144.41.253): 4 Time(s) unknown (141.98.10.82): 4 Time(s) unknown (171.252.208.77): 4 Time(s) unknown (202.3.183.188): 4 Time(s) unknown (116.105.77.250): 3 Time(s) unknown (116.110.99.56): 3 Time(s) unknown (167.172.145.53): 3 Time(s) unknown (2.56.59.39): 3 Time(s) unknown (49.234.105.203): 3 Time(s) unknown (94.232.46.202): 3 Time(s) unknown (smtp4.achtungumbedingt.de): 3 Time(s) postgres (51.15.197.4): 2 Time(s) root (176.111.173.237): 2 Time(s) unknown (116.102.106.92.dynamic.wline.res.cust.swisscom.ch): 2 Time(s) unknown (116.110.223.93): 2 Time(s) unknown (141.98.10.121): 2 Time(s) unknown (141.98.10.60): 2 Time(s) unknown (175.43.133.56): 2 Time(s) unknown (176.111.173.218): 2 Time(s) unknown (176.111.173.226): 2 Time(s) unknown (203.228.100.41): 2 Time(s) unknown (45.153.160.138): 2 Time(s) unknown (51.15.197.4): 2 Time(s) mailman (116.110.223.93): 1 Time(s) mailman (139.198.123.106): 1 Time(s) postgres (176.111.173.226): 1 Time(s) root (116.105.77.250): 1 Time(s) root (116.110.223.93): 1 Time(s) root (117.197.2.106): 1 Time(s) root (117.245.71.244): 1 Time(s) root (157.47.245.23): 1 Time(s) root (182.151.214.104): 1 Time(s) root (211.220.27.191): 1 Time(s) unknown (141.98.10.109): 1 Time(s) unknown (45.153.160.135): 1 Time(s) unknown (tor38.quintex.com): 1 Time(s) Invalid Users: Unknown Account: 371 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 1 Miscellaneous warnings 12.288K Bytes accepted 12,583 12.288K Bytes sent via SMTP 12,583 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 53 Connections 41 Connections lost (inbound) 53 Disconnections 1 Removed from queue 1 Sent via SMTP 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Failed logins from: 1.202.77.126 (126.77.202.1.static.bjtelecom.net): 16 times 5.141.85.82: 25 times 34.134.153.202 (202.153.134.34.bc.googleusercontent.com): 18 times 42.193.19.16: 36 times 42.194.164.108: 23 times 49.234.105.203: 24 times 51.15.197.4 (4-197-15-51.instances.scw.cloud): 2 times 81.30.176.30 (mail.tubrb.ru): 32 times 83.174.237.211 (h83-174-237-211.static.bashtel.ru): 7 times 89.97.218.142 (89-97-218-142.ip19.fastwebnet.it): 17 times 106.13.140.138: 22 times 106.55.146.67: 37 times 107.189.30.134 (smtp4.achtungumbedingt.de): 7 times 111.198.33.54: 5 times 116.105.77.250: 1 time 116.110.223.93: 2 times 117.197.2.106: 1 time 117.245.71.244: 1 time 119.45.41.248: 27 times 123.207.167.21: 34 times 139.186.200.77: 26 times 139.198.123.106: 19 times 148.251.157.30 (schuller-productions.de): 14 times 152.136.198.176: 38 times 157.47.245.23: 1 time 159.89.152.89: 34 times 167.71.210.244: 14 times 167.172.230.14 (bizdebthelpers.netssl): 17 times 172.220.118.30 (172-220-118-030.res.spectrum.com): 29 times 176.111.173.226: 1 time 176.111.173.237: 2 times 178.62.123.167: 33 times 180.250.115.121: 9 times 182.151.214.104: 1 time 188.131.146.4: 31 times 188.166.240.30: 15 times 202.3.183.188 (188-183-3-202-static.chief.net.tw): 4 times 210.101.91.154: 25 times 211.220.27.191: 1 time 218.69.91.226: 35 times Illegal users from: 2001:470:1:c84::15: 1 time undef: 252 times 1.202.77.126 (126.77.202.1.static.bjtelecom.net): 6 times 2.56.59.39 (branewsinfos.ddns.net): 3 times 5.141.85.82: 22 times 34.134.153.202 (202.153.134.34.bc.googleusercontent.com): 7 times 42.193.19.16: 13 times 42.194.164.108: 8 times 45.153.160.135: 1 time 45.153.160.138: 2 times 49.234.105.203: 3 times 51.15.197.4 (4-197-15-51.instances.scw.cloud): 2 times 65.49.20.68 (scan-19.shadowserver.org): 1 time 81.30.176.30 (mail.tubrb.ru): 11 times 89.97.218.142 (89-97-218-142.ip19.fastwebnet.it): 8 times 92.106.102.116 (116.102.106.92.dynamic.wline.res.cust.swisscom.ch): 2 times 94.232.46.202: 3 times 106.13.140.138: 11 times 106.55.146.67: 11 times 107.189.30.134 (smtp4.achtungumbedingt.de): 3 times 111.198.33.54: 13 times 116.105.77.250: 3 times 116.110.64.186: 4 times 116.110.99.56: 4 times 116.110.223.93: 2 times 117.7.122.163 (localhost): 4 times 119.45.41.248: 8 times 123.207.167.21: 15 times 136.144.41.253: 4 times 139.186.200.77: 8 times 139.198.123.106: 6 times 141.98.10.60: 2 times 141.98.10.82: 4 times 141.98.10.109: 1 time 141.98.10.121: 2 times 148.251.157.30 (schuller-productions.de): 6 times 152.136.198.176: 10 times 159.89.152.89: 16 times 167.71.210.244: 11 times 167.172.145.53: 3 times 167.172.230.14 (bizdebthelpers.netssl): 6 times 171.252.208.77 (dynamic-ip-adsl.viettel.vn): 4 times 172.220.118.30 (172-220-118-030.res.spectrum.com): 21 times 175.43.133.56: 2 times 176.111.173.218: 2 times 176.111.173.226: 2 times 176.111.173.237: 6 times 178.62.123.167: 17 times 180.250.115.121: 5 times 188.131.146.4: 19 times 188.166.240.30: 10 times 195.133.18.210: 6 times 199.249.230.87 (tor38.quintex.com): 1 time 202.3.183.188 (188-183-3-202-static.chief.net.tw): 4 times 203.228.100.41: 2 times 210.101.91.154: 8 times 218.69.91.226: 15 times ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop33257p1 394G 242G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

3 Jahre, 11 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sun Nov 7 04:42:04 2021 Date Range Processed: yesterday ( 2021-Nov-06 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 27:27 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 222.186.19.235 -> zapf.wiki:443: 1 Time(s) A total of 13 sites probed the server 142.93.210.126 165.227.12.150 165.227.2.207 165.227.45.197 167.99.64.66 172.104.131.24 178.239.21.102 222.186.19.235 23.224.189.13 27.115.124.99 40.76.56.186 49.89.62.141 93.174.95.106 Requests with error response codes 400 Bad Request null: 22 Time(s) /ab2g: 7 Time(s) /ab2h: 7 Time(s) /: 4 Time(s) mstshash=Administr: 4 Time(s) *: 2 Time(s) /3000D00E0000FFFF3F00313137443737313436343 ... 000000000000000: 2 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 2 Time(s) /config/getuser?index=0: 2 Time(s) /.env: 1 Time(s) /10102720: 1 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) \x03V\xF39p\xD9g\xB6\xFBQ\xC2\x03|\x19\xC9 ... x09\xC0\x14\xC0: 1 Time(s) http://ipinfo.io: 1 Time(s) zapf.wiki:443: 1 Time(s) 404 Not Found /404: 1 Time(s) 499 (undefined) /socket.io/?noteId=cdZDOUK6SMuuOAgcE8hemA& ... lling&t=NpoSr35: 1 Time(s) 500 Internal Server Error /: 55 Time(s) /.env: 7 Time(s) /robots.txt: 4 Time(s) /favicon.ico: 3 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 2 Time(s) /sitemap.xml: 2 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 2 Time(s) ///remote/fgt_lang?lang=/../../../..//////////dev/: 1 Time(s) //a2billing/customer/templates/default/footer.tpl: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /Telerik.Web.UI.WebResource.axd?type=rau: 1 Time(s) /_ignition/execute-solution: 1 Time(s) /actuator/health: 1 Time(s) /api/jsonws/invoke: 1 Time(s) /console/: 1 Time(s) /dns-query?dns=ORkBAAABAAAAAAAAA3d3dwZnb29nbGUDY29tAAABAAE: 1 Time(s) /dns-query?dns=tBQBAAABAAAAAAAAA3d3dwZnb29nbGUDY29tAAABAAE: 1 Time(s) /index.php?s=/Index/\x5Cthink\x5Capp/invok ... HelloThinkPHP21: 1 Time(s) /mifs/.;/services/LogService: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f: 1 Time(s) /owa/auth/x.js: 1 Time(s) /remote/login: 1 Time(s) /webadmin/Index.action: 1 Time(s) /wp-content/plugins/wp-file-manager/readme.txt: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (82.156.120.226): 39 Time(s) root (82.156.53.141): 38 Time(s) unknown (52.169.122.231): 37 Time(s) root (103.146.30.114): 36 Time(s) root (121.4.116.241): 35 Time(s) root (125.141.139.29): 35 Time(s) root (134.209.239.241): 35 Time(s) root (106.53.110.236): 33 Time(s) root (ppp-vpdn-93.158.229.62.yarnet.ru): 33 Time(s) root (218.234.149.18): 32 Time(s) root (net-31-27-105-102.cust.vodafonedsl.it): 31 Time(s) root (42.193.137.220): 29 Time(s) root (121.4.70.7): 28 Time(s) root (1.215.195.10): 27 Time(s) root (117.158.107.107): 22 Time(s) root (43.129.221.217): 22 Time(s) root (115.231.73.154): 21 Time(s) unknown (42.193.137.220): 19 Time(s) unknown (net-31-27-105-102.cust.vodafonedsl.it): 19 Time(s) root (1.119.131.102): 17 Time(s) unknown (ppp-vpdn-93.158.229.62.yarnet.ru): 17 Time(s) unknown (218.234.149.18): 16 Time(s) unknown (121.4.116.241): 15 Time(s) unknown (125.141.139.29): 15 Time(s) unknown (134.209.239.241): 15 Time(s) unknown (103.146.30.114): 14 Time(s) unknown (106.53.110.236): 14 Time(s) root (52.169.122.231): 12 Time(s) unknown (1.215.195.10): 12 Time(s) unknown (82.156.53.141): 12 Time(s) unknown (82.156.120.226): 11 Time(s) unknown (121.4.70.7): 10 Time(s) root (104.131.84.124): 8 Time(s) root (119.45.41.248): 8 Time(s) unknown (117.158.107.107): 8 Time(s) unknown (119.45.41.248): 7 Time(s) unknown (1.119.131.102): 6 Time(s) unknown (104.131.84.124): 6 Time(s) unknown (115.231.73.154): 6 Time(s) root (175.209.89.234): 5 Time(s) root (2.153.116.80.dyn.user.ono.com): 5 Time(s) unknown (43.129.221.217): 4 Time(s) root (202.153.134.34.bc.googleusercontent.com): 2 Time(s) root (90.red-83-42-60.dynamicip.rima-tde.net): 2 Time(s) unknown (097-097-177-058.res.spectrum.com): 2 Time(s) unknown (109-186-225-21.bb.netvision.net.il): 2 Time(s) unknown (141.98.10.121): 2 Time(s) unknown (141.98.10.60): 2 Time(s) unknown (141.98.10.81): 2 Time(s) unknown (175.209.89.234): 2 Time(s) unknown (176.111.173.237): 2 Time(s) unknown (202.153.134.34.bc.googleusercontent.com): 2 Time(s) unknown (211.114.38.236): 2 Time(s) unknown (221.163.103.143): 2 Time(s) unknown (69.49.228.198): 2 Time(s) unknown (90.red-83-42-60.dynamicip.rima-tde.net): 2 Time(s) unknown (c-24-218-231-49.hsd1.nh.comcast.net): 2 Time(s) unknown (p579b0b3b.dip0.t-ipconnect.de): 2 Time(s) bin (69.49.228.198): 1 Time(s) postfix (42.193.137.220): 1 Time(s) postgres (176.111.173.237): 1 Time(s) root (103.151.182.6): 1 Time(s) root (113.81.197.166): 1 Time(s) root (139.59.169.103): 1 Time(s) root (189.254.255.3): 1 Time(s) root (36.91.61.178): 1 Time(s) root (69.49.228.198): 1 Time(s) unknown (141.98.10.63): 1 Time(s) unknown (189.254.255.3): 1 Time(s) unknown (198.98.54.56): 1 Time(s) unknown (2.153.116.80.dyn.user.ono.com): 1 Time(s) unknown (211-22-65-18.hinet-ip.hinet.net): 1 Time(s) unknown (netcupde.tor-exit.de): 1 Time(s) unknown (tor-exit-nl1.privex.cc): 1 Time(s) Invalid Users: Unknown Account: 298 Time(s) Bad User: --: 1 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 12.552K Bytes accepted 12,853 12.552K Bytes sent via SMTP 12,853 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 184 Connections 52 Connections lost (inbound) 184 Disconnections 1 Removed from queue 1 Sent via SMTP 2 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Failed logins from: 1.119.131.102: 17 times 1.215.195.10: 27 times 2.153.116.80 (2.153.116.80.dyn.user.ono.com): 5 times 31.27.105.102 (net-31-27-105-102.cust.vodafonedsl.it): 31 times 34.134.153.202 (202.153.134.34.bc.googleusercontent.com): 2 times 36.91.61.178: 1 time 42.193.137.220: 30 times 43.129.221.217: 22 times 52.169.122.231: 12 times 69.49.228.198 (69-49-228-198.unifiedlayer.com): 2 times 82.156.53.141: 38 times 82.156.120.226: 39 times 83.42.60.90 (90.red-83-42-60.dynamicip.rima-tde.net): 2 times 93.158.229.62 (ppp-vpdn-93.158.229.62.yarnet.ru): 33 times 103.146.30.114: 36 times 103.151.182.6 (ns1.bestcommunicatioon.net): 1 time 104.131.84.124: 8 times 106.53.110.236: 33 times 113.81.197.166: 1 time 115.231.73.154: 21 times 117.158.107.107: 22 times 119.45.41.248: 8 times 121.4.70.7: 28 times 121.4.116.241: 35 times 125.141.139.29: 35 times 134.209.239.241: 35 times 139.59.169.103: 1 time 175.209.89.234: 5 times 176.111.173.237: 1 time 189.254.255.3 (customer-189-254-255-3-sta.uninet-ide.com.mx): 1 time 218.234.149.18: 32 times Illegal users from: 2001:470:1:332::3: 1 time undef: 220 times 1.119.131.102: 6 times 1.215.195.10: 12 times 2.153.116.80 (2.153.116.80.dyn.user.ono.com): 1 time 24.218.231.49 (c-24-218-231-49.hsd1.nh.comcast.net): 2 times 31.27.105.102 (net-31-27-105-102.cust.vodafonedsl.it): 19 times 34.134.153.202 (202.153.134.34.bc.googleusercontent.com): 2 times 42.193.137.220: 19 times 43.129.221.217: 4 times 52.169.122.231: 38 times 65.49.20.69 (scan-20.shadowserver.org): 1 time 69.49.228.198 (69-49-228-198.unifiedlayer.com): 2 times 82.156.53.141: 12 times 82.156.120.226: 11 times 83.42.60.90 (90.red-83-42-60.dynamicip.rima-tde.net): 2 times 87.155.11.59 (p579b0b3b.dip0.t-ipconnect.de): 2 times 91.132.147.168 (netcupDE.tor-exit.de): 1 time 93.158.229.62 (ppp-vpdn-93.158.229.62.yarnet.ru): 17 times 97.97.177.58 (097-097-177-058.res.spectrum.com): 2 times 103.146.30.114: 14 times 104.131.84.124: 6 times 106.53.110.236: 14 times 109.186.225.21 (109-186-225-21.bb.netvision.net.il): 2 times 115.231.73.154: 6 times 117.158.107.107: 8 times 119.45.41.248: 7 times 121.4.70.7: 10 times 121.4.116.241: 15 times 125.141.139.29: 15 times 134.209.239.241: 15 times 141.98.10.60: 2 times 141.98.10.63: 1 time 141.98.10.81: 2 times 141.98.10.121: 2 times 175.209.89.234: 2 times 176.111.173.237: 2 times 185.130.47.58 (tor-exit-nl1.privex.cc): 1 time 189.254.255.3 (customer-189-254-255-3-sta.uninet-ide.com.mx): 1 time 198.98.54.56: 1 time 211.22.65.18 (211-22-65-18.hinet-ip.hinet.net): 1 time 211.114.38.236: 2 times 218.234.149.18: 16 times 221.163.103.143: 2 times ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop33257p1 394G 242G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

3 Jahre, 11 Monate

1
0
0 / 0

winter21-teilnehmika-koe@zapf.in post from zigzag@uni-goettingen.de requires approval

by winter21-teilnehmika-koe-owner＠zapf.in

As list administrator, your authorization is requested for the following mailing list posting: List: winter21-teilnehmika-koe(a)zapf.in From: zigzag(a)uni-goettingen.de Subject: Packliste und weitere Infos f?r die ZaPF The message is being held because: The message is larger than the 40 KB maximum size At your convenience, visit your dashboard to approve or deny the request.

3 Jahre, 11 Monate

1
0
0 / 0

winter21-teilnehmika-goe@zapf.in post from zigzag@uni-goettingen.de requires approval

by winter21-teilnehmika-goe-owner＠zapf.in

As list administrator, your authorization is requested for the following mailing list posting: List: winter21-teilnehmika-goe(a)zapf.in From: zigzag(a)uni-goettingen.de Subject: Packliste und weitere Infos f?r die ZaPF The message is being held because: The message is larger than the 40 KB maximum size At your convenience, visit your dashboard to approve or deny the request.

3 Jahre, 11 Monate

1
0
0 / 0

Undelivered Mail Returned to Sender

by MAILER-DAEMON＠uni-osnabrueck.de

This is the mail system at host vm844.rz.uni-osnabrueck.de. I'm sorry to have to inform you that your message could not be delivered to one or more recipients. It's attached below. For further assistance, please send mail to postmaster. If you do so, please include this problem report. You can delete your own text from the attached returned message. The mail system <chrschroeder96(a)uni-osnabrueck.de>: host maildelivery.rz.uni-osnabrueck.de[131.173.17.76] said: 550 5.1.1 <chrschroeder96(a)uni-osnabrueck.de>: Recipient address rejected: User unknown in local recipient table (in reply to RCPT TO command)

3 Jahre, 11 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sat Nov 6 04:42:04 2021 Date Range Processed: yesterday ( 2021-Nov-05 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 57:57 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 13 sites probed the server 103.156.90.219 120.85.118.160 123.12.25.79 185.191.32.158 193.107.216.49 198.98.56.220 212.192.241.51 223.99.228.201 34.96.130.30 54.226.133.77 82.221.105.6 89.248.165.120 94.102.49.193 Requests with error response codes 400 Bad Request null: 13 Time(s) /ab2g: 6 Time(s) /ab2h: 6 Time(s) /: 4 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 3 Time(s) /config/getuser?index=0: 3 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) 79\xB5\x9B\xF3\x9CU]\xE6\x8FA\xC3\x0FT\x9A ... x09\xC0\x13\xC0: 1 Time(s) J2\x95\x097\xFD\xE3\xA86\x16Z\x8DEr\xF5\xB ... (\xC0#\xC0'\xC0: 1 Time(s) 404 Not Found /404: 1 Time(s) 499 (undefined) /build/MathJax/jax/output/HTML-CSS/fonts/T ... data.js?V=2.7.8: 1 Time(s) 500 Internal Server Error /: 96 Time(s) /.env: 5 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 2 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 2 Time(s) ///libs/js/iframe.js: 1 Time(s) //remote/fgt_lang?lang=/../../../..//////////dev/: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /_ignition/execute-solution: 1 Time(s) /actuator/health: 1 Time(s) /api/jsonws/invoke: 1 Time(s) /cgi-bin/config.exp: 1 Time(s) /console/: 1 Time(s) /index.php?s=/Index/\x5Cthink\x5Capp/invok ... HelloThinkPHP21: 1 Time(s) /mifs/.;/services/LogService: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/x.js: 1 Time(s) /remote/fgt_lang?lang=/../../../..//////// ... lvpn_websession: 1 Time(s) /sitecore/shell/ClientBin/Reporting/Report.ashx: 1 Time(s) /wp-content/plugins/wp-file-manager/readme.txt: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (103.154.101.11): 40 Time(s) root (81.69.163.90): 38 Time(s) root (182.254.186.94): 35 Time(s) root (121.4.92.128): 34 Time(s) root (168.194.162.170): 34 Time(s) root (106.52.17.213): 32 Time(s) root (120.92.11.9): 32 Time(s) root (server-176.53.43.111.as42926.net): 32 Time(s) root (106.75.211.48): 31 Time(s) root (167.172.101.208): 31 Time(s) root (82.156.215.247): 31 Time(s) root (121.4.236.90): 30 Time(s) root (222.185.230.154): 30 Time(s) root (119.29.77.63): 29 Time(s) root (167.172.248.142): 29 Time(s) root (220.178.31.90): 27 Time(s) root (121.141.178.174): 26 Time(s) root (120.48.14.240): 24 Time(s) root (102.164.61.166): 21 Time(s) root (222.90.31.25): 20 Time(s) root (117.197.8.203): 19 Time(s) unknown (119.29.77.63): 19 Time(s) unknown (167.172.248.142): 18 Time(s) unknown (222.185.230.154): 18 Time(s) root (222.190.254.130): 17 Time(s) unknown (106.52.17.213): 17 Time(s) unknown (120.92.11.9): 17 Time(s) unknown (82.156.215.247): 17 Time(s) root (190.144.139.235): 16 Time(s) root (36.134.155.34): 16 Time(s) unknown (121.4.92.128): 16 Time(s) root (116.255.213.176): 15 Time(s) unknown (167.172.101.208): 15 Time(s) unknown (168.194.162.170): 15 Time(s) unknown (121.141.178.174): 14 Time(s) root (40.125.214.159): 13 Time(s) unknown (112.19.174.226): 13 Time(s) unknown (40.125.214.159): 13 Time(s) unknown (server-176.53.43.111.as42926.net): 13 Time(s) unknown (106.75.211.48): 12 Time(s) unknown (121.4.236.90): 12 Time(s) unknown (81.69.163.90): 12 Time(s) unknown (102.164.61.166): 10 Time(s) unknown (103.154.101.11): 10 Time(s) unknown (120.48.14.240): 10 Time(s) root (106.55.37.132): 9 Time(s) root (91.192.136.43): 9 Time(s) unknown (182.254.186.94): 9 Time(s) unknown (222.190.254.130): 9 Time(s) root (106.13.161.205): 8 Time(s) unknown (36.134.155.34): 8 Time(s) root (27.150.20.230): 7 Time(s) root (mail.irpdo.ir): 7 Time(s) unknown (106.13.161.205): 7 Time(s) unknown (116.255.213.176): 7 Time(s) unknown (117.197.8.203): 7 Time(s) unknown (121.4.70.7): 7 Time(s) unknown (220.178.31.90): 7 Time(s) unknown (27.150.20.230): 6 Time(s) root (121.4.70.7): 5 Time(s) unknown (222.90.31.25): 5 Time(s) root (183.157.170.123): 4 Time(s) unknown (106.55.37.132): 4 Time(s) unknown (181.23.95.157): 4 Time(s) unknown (190.144.139.235): 4 Time(s) root (112.19.174.226): 3 Time(s) root (159.203.111.100): 3 Time(s) root (201.119.151.33): 3 Time(s) root (91.144.135.82): 3 Time(s) unknown (91.192.136.43): 3 Time(s) root (176.111.173.226): 2 Time(s) unknown (159.203.111.100): 2 Time(s) unknown (218.234.149.18): 2 Time(s) unknown (fp5a957909.tkyc208.ap.nuro.jp): 2 Time(s) postgres (106.75.211.48): 1 Time(s) postgres (121.141.178.174): 1 Time(s) root (147.139.134.240): 1 Time(s) root (51.15.197.4): 1 Time(s) unknown (106.13.18.86): 1 Time(s) unknown (147.139.134.240): 1 Time(s) unknown (183.157.170.123): 1 Time(s) unknown (188.126.89.150): 1 Time(s) unknown (195.133.18.210): 1 Time(s) unknown (200.73.129.37): 1 Time(s) unknown (201.119.151.33): 1 Time(s) unknown (221.130.137.194): 1 Time(s) unknown (91.144.135.82): 1 Time(s) unknown (tor3.friendlyexitnode.com): 1 Time(s) www-data (167.172.248.142): 1 Time(s) Invalid Users: Unknown Account: 374 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 1 Miscellaneous warnings 17.449K Bytes accepted 17,868 17.449K Bytes sent via SMTP 17,868 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 4 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 4 Total 4xx Rejects 100.00% ======== ================================================== 224 Connections 26 Connections lost (inbound) 224 Disconnections 1 Removed from queue 1 Sent via SMTP 6 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Failed logins from: 27.150.20.230: 7 times 31.171.222.178 (mail.irpdo.ir): 7 times 36.134.155.34: 16 times 40.125.214.159: 13 times 51.15.197.4 (4-197-15-51.instances.scw.cloud): 1 time 81.69.163.90: 38 times 82.156.215.247: 31 times 91.144.135.82 (91x144x135x82.static-business.chel.ertelecom.ru): 3 times 91.192.136.43: 9 times 102.164.61.166: 21 times 103.154.101.11: 40 times 106.13.161.205: 8 times 106.52.17.213: 32 times 106.55.37.132: 9 times 106.75.211.48: 32 times 112.19.174.226: 3 times 116.255.213.176: 15 times 117.197.8.203: 19 times 119.29.77.63: 29 times 120.48.14.240: 24 times 120.92.11.9: 32 times 121.4.70.7: 5 times 121.4.92.128: 34 times 121.4.236.90: 30 times 121.141.178.174: 27 times 147.139.134.240: 1 time 159.203.111.100: 3 times 167.172.101.208: 31 times 167.172.248.142: 30 times 168.194.162.170 (170.162.194.168.rfc6598.dynamic.copelfibra.com.br): 34 times 176.53.43.111 (server-176.53.43.111.as42926.net): 32 times 176.111.173.226: 2 times 182.254.186.94: 35 times 183.157.170.123: 4 times 190.144.139.235: 16 times 201.119.151.33: 3 times 220.178.31.90: 27 times 222.90.31.25: 20 times 222.185.230.154: 30 times 222.190.254.130: 17 times Illegal users from: 2001:470:1:c84::19: 1 time undef: 252 times 27.150.20.230: 6 times 36.134.155.34: 8 times 40.125.214.159: 13 times 65.49.20.68 (scan-19.shadowserver.org): 1 time 81.69.163.90: 12 times 82.156.215.247: 17 times 90.149.121.9 (fp5a957909.tkyc208.ap.nuro.jp): 2 times 91.144.135.82 (91x144x135x82.static-business.chel.ertelecom.ru): 1 time 91.192.136.43: 3 times 102.164.61.166: 10 times 103.154.101.11: 10 times 106.13.18.86: 1 time 106.13.161.205: 7 times 106.52.17.213: 17 times 106.55.37.132: 4 times 106.75.211.48: 12 times 112.19.174.226: 13 times 116.255.213.176: 7 times 117.197.8.203: 7 times 119.29.77.63: 19 times 120.48.14.240: 10 times 120.92.11.9: 17 times 121.4.70.7: 7 times 121.4.92.128: 16 times 121.4.236.90: 12 times 121.141.178.174: 14 times 147.139.134.240: 1 time 154.89.5.37: 1 time 159.203.111.100: 2 times 167.172.101.208: 15 times 167.172.248.142: 18 times 168.194.162.170 (170.162.194.168.rfc6598.dynamic.copelfibra.com.br): 15 times 176.53.43.111 (server-176.53.43.111.as42926.net): 13 times 181.23.95.157 (181-23-95-157.speedy.com.ar): 4 times 182.254.186.94: 9 times 183.157.170.123: 1 time 188.126.89.150: 1 time 190.144.139.235: 4 times 195.100.192.188: 1 time 195.133.18.210: 1 time 198.98.57.207 (tor3.friendlyexitnode.com): 1 time 200.73.129.37 (37.129.73.200.cab.prima.net.ar): 1 time 201.119.151.33: 1 time 218.234.149.18: 2 times 220.178.31.90: 7 times 221.130.137.194: 1 time 222.90.31.25: 5 times 222.185.230.154: 18 times 222.190.254.130: 9 times **Unmatched Entries** fatal: no matching cipher found: client aes256-cbc,rijndael-cbc(a)lysator.liu.se,aes192-cbc,aes128-cbc,arcfour128,arcfour,3des-cbc,none server aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop33257p1 394G 242G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

3 Jahre, 11 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Fri Nov 5 04:42:04 2021 Date Range Processed: yesterday ( 2021-Nov-04 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [105:106] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 185.53.90.24 -> zapf.wiki:443: 1 Time(s) A total of 8 sites probed the server 104.248.175.31 161.35.238.241 198.98.56.220 209.141.51.171 209.97.141.19 45.134.225.16 45.61.184.37 66.240.205.34 Requests with error response codes 400 Bad Request null: 12 Time(s) /: 4 Time(s) /ab2g: 4 Time(s) /ab2h: 4 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 2 Time(s) mstshash=Administr: 2 Time(s) mstshash=Domain: 2 Time(s) /.env: 1 Time(s) /bag2: 1 Time(s) /c/version.js: 1 Time(s) /config/getuser?index=0: 1 Time(s) /flu/403.html: 1 Time(s) /gemini-iptv/get_prc.php: 1 Time(s) /gemini-iptv/vod.json: 1 Time(s) /qMRL: 1 Time(s) /robots.txt: 1 Time(s) /stalker_portal/c/version.js: 1 Time(s) /stream/live.php: 1 Time(s) /streaming/clients_live.php: 1 Time(s) /system_api.php: 1 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) zapf.wiki:443: 1 Time(s) 404 Not Found /: 1 Time(s) 500 Internal Server Error /: 37 Time(s) /.env: 4 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 2 Time(s) /robots.txt: 2 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 2 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /_ignition/execute-solution: 1 Time(s) /actuator/health: 1 Time(s) /api/jsonws/invoke: 1 Time(s) /c/version.js: 1 Time(s) /console/: 1 Time(s) /flu/403.html: 1 Time(s) /gemini-iptv/get_prc.php: 1 Time(s) /gemini-iptv/vod.json: 1 Time(s) /index.php?s=/Index/\x5Cthink\x5Capp/invok ... HelloThinkPHP21: 1 Time(s) /mifs/.;/services/LogService: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f: 1 Time(s) /owa/auth/x.js: 1 Time(s) /stalker_portal/c/version.js: 1 Time(s) /stream/live.php: 1 Time(s) /streaming/clients_live.php: 1 Time(s) /system_api.php: 1 Time(s) /wp-content/plugins/wp-file-manager/readme.txt: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (c-73-43-86-177.hsd1.ga.comcast.net): 48 Time(s) root (host35-78.ip.pdlsk.cifra1.ru): 42 Time(s) root (138.117.180.70): 39 Time(s) root (180.76.39.214): 39 Time(s) root (110.35.173.103): 37 Time(s) root (119.29.23.83): 37 Time(s) root (122.176.55.24): 37 Time(s) root (1.202.77.210): 36 Time(s) root (103.25.196.54): 35 Time(s) root (122.51.64.115): 35 Time(s) root (129.211.165.188): 35 Time(s) root (128.199.173.208): 34 Time(s) root (139.255.66.218): 34 Time(s) root (171.244.140.174): 33 Time(s) root (181.13.51.177): 33 Time(s) root (82.156.254.13): 33 Time(s) root (139.155.10.97): 32 Time(s) root (38.91.102.38): 32 Time(s) unknown (81.68.169.2): 31 Time(s) root (1.15.21.246): 30 Time(s) root (1.15.250.72): 30 Time(s) root (91.192.136.43): 29 Time(s) root (167.71.210.244): 28 Time(s) root (82.156.70.118): 28 Time(s) root (v-182-163-90-49.ub-freebit.net): 27 Time(s) root (106.55.37.132): 26 Time(s) unknown (167.71.210.244): 22 Time(s) root (165.232.186.196): 20 Time(s) unknown (1.15.21.246): 20 Time(s) unknown (181.13.51.177): 20 Time(s) root (219.135.209.164): 19 Time(s) unknown (49.233.210.232): 19 Time(s) root (117.119.100.210): 18 Time(s) root (64.225.49.153): 18 Time(s) root (106.12.140.168): 17 Time(s) root (218.104.225.140): 17 Time(s) unknown (171.244.140.174): 17 Time(s) root (42.192.137.134): 16 Time(s) root (45.112.242.39): 16 Time(s) unknown (128.199.173.208): 16 Time(s) unknown (139.155.10.97): 16 Time(s) unknown (139.255.66.218): 16 Time(s) root (106.75.6.234): 15 Time(s) root (120.92.79.133): 15 Time(s) root (175.42.70.240): 15 Time(s) root (218.234.149.18): 15 Time(s) root (42.194.148.212): 15 Time(s) unknown (103.25.196.54): 15 Time(s) unknown (122.51.64.115): 15 Time(s) unknown (1.202.77.210): 14 Time(s) unknown (129.211.165.188): 14 Time(s) unknown (175.42.70.240): 14 Time(s) root (static.48.60.21.65.clients.your-server.de): 13 Time(s) unknown (218.234.149.18): 13 Time(s) unknown (82.156.70.118): 13 Time(s) root (117.50.111.53): 12 Time(s) unknown (1.15.250.72): 12 Time(s) unknown (38.91.102.38): 12 Time(s) root (117.50.111.55): 11 Time(s) root (36-227-140-1.dynamic-ip.hinet.net): 11 Time(s) unknown (106.55.37.132): 11 Time(s) unknown (122.176.55.24): 11 Time(s) unknown (138.117.180.70): 11 Time(s) unknown (82.156.254.13): 11 Time(s) unknown (120.92.79.133): 10 Time(s) unknown (180.76.39.214): 10 Time(s) root (117.50.129.6): 9 Time(s) unknown (106.12.140.168): 9 Time(s) unknown (110.35.173.103): 9 Time(s) unknown (119.29.23.83): 9 Time(s) unknown (218.104.225.140): 9 Time(s) unknown (45.112.242.39): 9 Time(s) root (106.75.72.135): 8 Time(s) unknown (165.232.186.196): 8 Time(s) unknown (91.192.136.43): 8 Time(s) unknown (host35-78.ip.pdlsk.cifra1.ru): 8 Time(s) unknown (v-182-163-90-49.ub-freebit.net): 8 Time(s) unknown (117.119.100.210): 7 Time(s) root (199.195.248.175): 6 Time(s) unknown (64.225.49.153): 6 Time(s) root (42.193.104.220): 5 Time(s) root (81.68.169.2): 5 Time(s) unknown (106.75.6.234): 5 Time(s) unknown (141.98.10.60): 5 Time(s) unknown (181.23.95.157): 5 Time(s) unknown (2.56.59.39): 5 Time(s) root (117.50.111.54): 4 Time(s) root (171.90.122.95): 4 Time(s) root (205.185.115.39): 4 Time(s) root (49.233.210.232): 4 Time(s) unknown (106.75.72.135): 4 Time(s) unknown (117.50.111.54): 4 Time(s) unknown (117.50.129.6): 4 Time(s) unknown (141.98.10.63): 4 Time(s) unknown (167.88.161.219): 4 Time(s) unknown (219.135.209.164): 4 Time(s) unknown (42.192.137.134): 4 Time(s) unknown (42.194.148.212): 4 Time(s) unknown (static.48.60.21.65.clients.your-server.de): 4 Time(s) root (167.172.101.208): 3 Time(s) root (181.23.95.157): 3 Time(s) root (218.14.208.90): 3 Time(s) unknown (117.50.111.53): 3 Time(s) unknown (117.50.111.55): 3 Time(s) unknown (141.98.10.109): 3 Time(s) unknown (42.193.104.220): 3 Time(s) unknown (45.155.204.39): 3 Time(s) root (103.162.196.76): 2 Time(s) root (119.29.77.63): 2 Time(s) root (c-73-43-86-177.hsd1.ga.comcast.net): 2 Time(s) unknown (183.104.206.223): 2 Time(s) unknown (36-227-140-1.dynamic-ip.hinet.net): 2 Time(s) unknown (66.110.150.182): 2 Time(s) unknown (88.166.238.51): 2 Time(s) unknown (95.236.228.236): 2 Time(s) unknown (cli-5b7eceb7.ast.adamo.es): 2 Time(s) unknown (vmi693013.contaboserver.net): 2 Time(s) mysql (110.35.173.103): 1 Time(s) mysql (122.176.55.24): 1 Time(s) mysql (139.155.10.97): 1 Time(s) postgres (1.15.21.246): 1 Time(s) postgres (181.13.51.177): 1 Time(s) root (152.136.107.21): 1 Time(s) root (175.6.33.15): 1 Time(s) root (vmi693013.contaboserver.net): 1 Time(s) sys (91.192.136.43): 1 Time(s) unknown (103.162.196.76): 1 Time(s) unknown (107.189.13.172): 1 Time(s) unknown (152.136.107.21): 1 Time(s) unknown (167.172.101.208): 1 Time(s) unknown (171.90.122.95): 1 Time(s) unknown (177.53.68.44): 1 Time(s) unknown (185.247.225.55): 1 Time(s) unknown (185.31.175.213): 1 Time(s) unknown (188.126.89.77): 1 Time(s) unknown (200.73.129.37): 1 Time(s) unknown (205.185.115.39): 1 Time(s) unknown (212.35.101.210): 1 Time(s) unknown (h-37-123-163-58.a785.priv.bahnhof.se): 1 Time(s) unknown (smtp16.mib360realestate.com): 1 Time(s) unknown (this-is-a-tor-exit-node-hviv118.hviv.nl): 1 Time(s) uucp (122.176.55.24): 1 Time(s) Invalid Users: Unknown Account: 601 Time(s) Bad User: --: 1 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 1 Miscellaneous warnings 14.809K Bytes accepted 15,164 14.809K Bytes sent via SMTP 15,164 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 9 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 9 Total 4xx Rejects 100.00% ======== ================================================== 248 Connections 49 Connections lost (inbound) 248 Disconnections 1 Removed from queue 1 Sent via SMTP 62 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Network Read Write Errors: 1 Failed logins from: 1.15.21.246: 31 times 1.15.250.72: 30 times 1.202.77.210 (210.77.202.1.static.bjtelecom.net): 36 times 5.189.168.79 (vmi693013.contaboserver.net): 1 time 36.227.140.1 (36-227-140-1.dynamic-ip.hinet.net): 11 times 38.91.102.38: 32 times 42.192.137.134: 16 times 42.193.104.220: 5 times 42.194.148.212: 15 times 45.112.242.39: 16 times 49.233.210.232: 4 times 64.225.49.153: 18 times 65.21.60.48 (static.48.60.21.65.clients.your-server.de): 13 times 73.43.86.177 (c-73-43-86-177.hsd1.ga.comcast.net): 2 times 81.68.169.2: 5 times 82.156.70.118: 28 times 82.156.254.13: 33 times 91.192.136.43: 30 times 103.25.196.54: 35 times 103.162.196.76: 2 times 106.12.140.168: 17 times 106.55.37.132: 26 times 106.75.6.234: 15 times 106.75.72.135: 8 times 110.35.173.103: 38 times 117.50.111.53: 12 times 117.50.111.54: 4 times 117.50.111.55: 11 times 117.50.129.6: 9 times 117.119.100.210: 18 times 119.29.23.83: 37 times 119.29.77.63: 2 times 120.92.79.133: 15 times 122.51.64.115: 35 times 122.176.55.24 (abts-north-static-024.55.176.122.airtelbroadband.in): 39 times 128.199.173.208: 34 times 129.211.165.188: 35 times 138.117.180.70: 39 times 139.155.10.97: 33 times 139.255.66.218 (ln-static-139-255-66-218.link.net.id): 34 times 152.136.107.21: 1 time 165.232.186.196 (gitlab.mdevsolutions.com-1621079504413-s-4vcpu-8gb-blr1-01): 20 times 167.71.210.244: 28 times 167.172.101.208: 3 times 171.90.122.95: 4 times 171.244.140.174: 33 times 175.6.33.15: 1 time 175.42.70.240: 15 times 180.76.39.214: 39 times 181.13.51.177 (host-181-13-51-177.mendoza.gov.ar): 34 times 181.23.95.157 (181-23-95-157.speedy.com.ar): 3 times 182.163.90.49 (v-182-163-90-49.ub-freebit.net): 27 times 199.195.248.175: 6 times 205.185.115.39 (mx.learnmorefun.org): 4 times 212.152.35.78 (host35-78.ip.pdlsk.cifra1.ru): 42 times 218.14.208.90: 3 times 218.104.225.140: 17 times 218.234.149.18: 15 times 219.135.209.164 (164.209.135.219.broad.gz.gd.dynamic.163data.com.cn): 19 times Illegal users from: 2001:470:1:332::8: 1 time undef: 410 times 1.15.21.246: 20 times 1.15.250.72: 12 times 1.202.77.210 (210.77.202.1.static.bjtelecom.net): 14 times 2.56.59.39 (branewsinfos.ddns.net): 5 times 5.189.168.79 (vmi693013.contaboserver.net): 2 times 36.227.140.1 (36-227-140-1.dynamic-ip.hinet.net): 2 times 37.123.163.58 (h-37-123-163-58.A785.priv.bahnhof.se): 1 time 38.91.102.38: 12 times 42.192.137.134: 4 times 42.193.104.220: 3 times 42.194.148.212: 4 times 45.112.242.39: 9 times 45.155.204.39: 3 times 49.233.210.232: 20 times 64.225.49.153: 6 times 65.21.60.48 (static.48.60.21.65.clients.your-server.de): 4 times 66.110.150.182: 2 times 73.43.86.177 (c-73-43-86-177.hsd1.ga.comcast.net): 48 times 81.68.169.2: 31 times 82.156.70.118: 13 times 82.156.254.13: 11 times 88.166.238.51 (vir91-8_migr-88-166-238-51.fbx.proxad.net): 2 times 91.126.206.183 (cli-5b7eceb7.ast.adamo.es): 2 times 91.192.136.43: 8 times 95.236.228.236: 2 times 103.25.196.54: 15 times 103.162.196.76: 1 time 106.12.140.168: 9 times 106.55.37.132: 11 times 106.75.6.234: 5 times 106.75.72.135: 4 times 107.189.13.172 (LuxembourgTor51.lu): 1 time 110.35.173.103: 9 times 117.50.111.53: 3 times 117.50.111.54: 4 times 117.50.111.55: 3 times 117.50.129.6: 4 times 117.119.100.210: 7 times 119.29.23.83: 9 times 120.92.79.133: 10 times 122.51.64.115: 15 times 122.176.55.24 (abts-north-static-024.55.176.122.airtelbroadband.in): 11 times 128.199.173.208: 16 times 129.211.165.188: 14 times 138.117.180.70: 11 times 139.155.10.97: 16 times 139.255.66.218 (ln-static-139-255-66-218.link.net.id): 16 times 141.98.10.60: 5 times 141.98.10.63: 4 times 141.98.10.109: 3 times 152.136.107.21: 1 time 165.232.186.196 (gitlab.mdevsolutions.com-1621079504413-s-4vcpu-8gb-blr1-01): 8 times 167.71.210.244: 22 times 167.88.161.219 (smtp21.gftvrsr.xyz): 4 times 167.172.101.208: 1 time 171.90.122.95: 1 time 171.244.140.174: 17 times 175.42.70.240: 14 times 177.53.68.44: 1 time 178.73.215.171 (178-73-215-171-static.glesys.net): 1 time 180.76.39.214: 10 times 181.13.51.177 (host-181-13-51-177.mendoza.gov.ar): 20 times 181.23.95.157 (181-23-95-157.speedy.com.ar): 5 times 182.163.90.49 (v-182-163-90-49.ub-freebit.net): 8 times 183.104.206.223: 2 times 185.31.175.213: 1 time 185.247.225.55: 1 time 188.126.89.77: 1 time 192.42.116.18 (this-is-a-tor-exit-node-hviv118.hviv.nl): 1 time 200.73.129.37 (37.129.73.200.cab.prima.net.ar): 1 time 205.185.115.39 (mx.learnmorefun.org): 1 time 209.141.35.48 (smtp16.mib360realestate.com): 1 time 212.35.101.210 (mail.smc-net.be): 1 time 212.152.35.78 (host35-78.ip.pdlsk.cifra1.ru): 8 times 218.104.225.140: 9 times 218.234.149.18: 13 times 219.135.209.164 (164.209.135.219.broad.gz.gd.dynamic.163data.com.cn): 4 times **Unmatched Entries** Protocol major versions differ for 125.64.94.145: SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 vs. SSH-1.5-Nmap-SSH1-Hostkey : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop33257p1 394G 242G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

3 Jahre, 11 Monate

1
0
0 / 0

[MediaWiki-announce] MediaWiki 1.37.0-rc.1 is ready for testing

by Sam Reed

I'm pleased to announce the immediate availability of MediaWiki 1.37.0-rc.1, the second release candidate for 1.37.x. Download links are at the end of the e-mail. The tag has been signed and pushed to Git. This is not a final release, and should not be used for production websites. Known issues are tracked in Phabricator on the release workboard [1]. As with every release of MediaWiki, a large number of changes have landed in the last six months (over 1700 commits since 1.36.0 was cut), and you should read over the preliminary release notes as part of assuring yourself of areas that may have issues with your configuration, your skins, and/or your extensions. As always, please try out the release candidate in a test environment and do report any issues that you discover. Please use the #MW-1.37-Release [2] tag in Phabricator when reporting issues specific to this release, to make sure that we find them as quickly as possible. It is expected that MediaWiki 1.37 will become final in late November 2021, though the date may slip if blockers are identified. Preliminary release notes: https://gerrit.wikimedia.org/g/mediawiki/core/+/REL1_37/RELEASE-NOTES-1.37 https://www.mediawiki.org/wiki/Release_notes/1.37 Changes since 1.37.0-rc.0: * (T294043) checkStorage: pass no parameters to WikiRevision::getContent(). * (T292763) Do not cache private wiki completion results. * (T293783) ApiQueryImageInfo: don't show empty comments as deleted. * (T294316) Revert "Mark ApiClientLogin/ApiLogin as requiring write mode". * (T294796) JobQueueRedis: Replace deprecated zSize with zCard. * Remove duplicate settings from DefaultSettings. * (T278037) NoLocalSettings: Pass an EmptyBagOStuff to TemplateParser. Open Bugs: [1] https://phabricator.wikimedia.org/project/board/4928/ Bug report form: [2] https://phabricator.wikimedia.org/maniphest/task/edit/form/1/?tags=MW-1.3... ********************************************************************** Download: https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.tar.gz https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.zip Download without bundled extensions: https://releases.wikimedia.org/mediawiki/1.37/mediawiki-core-1.37.0-rc.1.... https://releases.wikimedia.org/mediawiki/1.37/mediawiki-core-1.37.0-rc.1.zip Patch to previous version (1.37.0-rc.0): https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.patch.gz https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.patch... GPG signatures: https://releases.wikimedia.org/mediawiki/1.37/mediawiki-core-1.37.0-rc.1.... https://releases.wikimedia.org/mediawiki/1.37/mediawiki-core-1.37.0-rc.1.... https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.tar.g... https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.zip.sig https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.patch... https://releases.wikimedia.org/mediawiki/1.37/mediawiki-1.37.0-rc.1.patch... Public keys: https://www.mediawiki.org/keys/keys.html _______________________________________________ MediaWiki-announce mailing list -- mediawiki-announce(a)lists.wikimedia.org To unsubscribe send an email to mediawiki-announce-leave(a)lists.wikimedia.org

3 Jahre, 11 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Thu Nov 4 04:42:04 2021 Date Range Processed: yesterday ( 2021-Nov-03 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 59:59 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 143.198.136.88 -> leakix.net:443: 1 Time(s) 185.53.90.24 -> zapf.wiki:443: 2 Time(s) A total of 8 sites probed the server 159.89.197.120 161.35.230.3 185.165.190.17 209.141.51.171 222.114.215.49 5.8.10.202 66.240.205.34 94.102.49.193 Requests with error response codes 400 Bad Request null: 14 Time(s) /ab2g: 5 Time(s) /ab2h: 5 Time(s) /: 4 Time(s) /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/ ... 2e%2e/etc/hosts: 2 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 2 Time(s) /config/getuser?index=0: 2 Time(s) zapf.wiki:443: 2 Time(s) /.env: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) \x00\x00\x00\x00: 1 Time(s) \xF6N\xC3\x86\xB9\x98\x83\xDC\xE3-k\x08+\x ... x09\xC0\x14\xC0: 1 Time(s) \xFC\xDFM\xCF\x9C\xD2`U\xA6>wR\xD1\x7F;\x8 ... x09\xC0\x14\xC0: 1 Time(s) leakix.net:443: 1 Time(s) }: 1 Time(s) 499 (undefined) /me: 1 Time(s) 500 Internal Server Error /: 18 Time(s) /.env: 5 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 2 Time(s) /.DS_Store: 1 Time(s) /.git/config: 1 Time(s) /.json: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /_ignition/execute-solution: 1 Time(s) /actuator/health: 1 Time(s) /api/jsonws/invoke: 1 Time(s) /api/search?folderIds=0: 1 Time(s) /bag2: 1 Time(s) /config.json: 1 Time(s) /console/: 1 Time(s) /debug/default/view?panel=config: 1 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 1 Time(s) /frontend_dev.php/$: 1 Time(s) /idx_config/: 1 Time(s) /index.php?s=/Index/\x5Cthink\x5Capp/invok ... HelloThinkPHP21: 1 Time(s) /info.php: 1 Time(s) /login: 1 Time(s) /login.action: 1 Time(s) /mifs/.;/services/LogService: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f: 1 Time(s) /owa/auth/x.js: 1 Time(s) /s/lkx/_/;/META-INF/maven/com.atlassian.ji ... /pom.properties: 1 Time(s) /server-status: 1 Time(s) /telescope/requests: 1 Time(s) /users/sign_in: 1 Time(s) /v2/_catalog: 1 Time(s) /wp-content/plugins/wp-file-manager/readme.txt: 1 Time(s) /wp-login.php: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (gurlstalk.com): 69 Time(s) root (103.72.147.23): 40 Time(s) unknown (218.104.225.140): 40 Time(s) root (131.72.127.222): 39 Time(s) root (132.232.230.220): 39 Time(s) root (134.209.64.28): 38 Time(s) root (152.136.129.89): 38 Time(s) root (1.117.12.193): 37 Time(s) root (200.52.80.34): 37 Time(s) root (152.136.107.21): 35 Time(s) root (103.162.196.76): 34 Time(s) root (125.141.139.29): 34 Time(s) root (186.208.114.100): 34 Time(s) root (122.51.145.200): 33 Time(s) root (66.98.45.242): 31 Time(s) root (218.104.225.140): 24 Time(s) root (42.193.104.220): 24 Time(s) root (dsl51b6f8c1.fixip.t-online.hu): 24 Time(s) root (139.198.27.217): 22 Time(s) root (static.48.60.21.65.clients.your-server.de): 21 Time(s) unknown (66.98.45.242): 19 Time(s) root (189.139.65.6): 18 Time(s) unknown (163.172.216.82): 18 Time(s) root (175.42.70.240): 17 Time(s) root (163.172.216.82): 16 Time(s) unknown (125.141.139.29): 16 Time(s) unknown (186.208.114.100): 16 Time(s) unknown (122.51.145.200): 15 Time(s) unknown (141.98.10.60): 15 Time(s) unknown (152.136.107.21): 15 Time(s) root (server.fri.mom.mybluehost.me): 14 Time(s) unknown (141.98.10.63): 14 Time(s) root (138.197.149.97): 13 Time(s) root (36.91.119.221): 13 Time(s) unknown (103.162.196.76): 13 Time(s) root (103.233.1.53): 12 Time(s) unknown (1.117.12.193): 12 Time(s) unknown (134.209.64.28): 12 Time(s) unknown (152.136.129.89): 12 Time(s) unknown (200.52.80.34): 12 Time(s) unknown (static.48.60.21.65.clients.your-server.de): 12 Time(s) root (143.110.248.63): 11 Time(s) root (49.232.223.172): 11 Time(s) unknown (131.72.127.222): 11 Time(s) unknown (175.42.70.240): 11 Time(s) root (v-182-163-90-49.ub-freebit.net): 10 Time(s) unknown (103.72.147.23): 10 Time(s) unknown (139.198.27.217): 10 Time(s) root (106.52.187.68): 9 Time(s) root (c-68-38-202-145.hsd1.in.comcast.net): 9 Time(s) unknown (106.52.187.68): 9 Time(s) unknown (138.197.149.97): 9 Time(s) unknown (49.232.223.172): 9 Time(s) root (117.50.129.4): 8 Time(s) unknown (189.139.65.6): 8 Time(s) unknown (42.193.104.220): 8 Time(s) unknown (103.233.1.53): 7 Time(s) unknown (132.232.230.220): 7 Time(s) unknown (143.110.248.63): 7 Time(s) unknown (36.91.119.221): 5 Time(s) unknown (dsl51b6f8c1.fixip.t-online.hu): 5 Time(s) unknown (205.185.120.180): 4 Time(s) unknown (server.fri.mom.mybluehost.me): 4 Time(s) root (p54b2bab7.dip0.t-ipconnect.de): 3 Time(s) unknown (116.110.121.9): 3 Time(s) unknown (117.50.129.4): 3 Time(s) unknown (117.7.122.163): 3 Time(s) unknown (141.98.10.109): 3 Time(s) unknown (185.90.136.171): 3 Time(s) unknown (209.141.55.232): 3 Time(s) unknown (amazoncojpbation.ga): 3 Time(s) unknown (v-182-163-90-49.ub-freebit.net): 3 Time(s) unknown (116.110.99.56): 2 Time(s) unknown (125.137.212.85): 2 Time(s) unknown (5.206.227.16): 2 Time(s) unknown (ip68-97-206-192.ok.ok.cox.net): 2 Time(s) unknown (lfbn-tln-1-141-109.w90-119.abo.wanadoo.fr): 2 Time(s) unknown (net-109-116-213-77.cust.vodafonedsl.it): 2 Time(s) unknown (p54b2bab7.dip0.t-ipconnect.de): 2 Time(s) irc (200.52.80.34): 1 Time(s) irc (dsl51b6f8c1.fixip.t-online.hu): 1 Time(s) mysql (152.136.107.21): 1 Time(s) root (103.93.17.149): 1 Time(s) root (115.76.92.187): 1 Time(s) root (116.110.69.4): 1 Time(s) root (185.90.136.171): 1 Time(s) root (36.133.216.195): 1 Time(s) unknown (116.105.75.56): 1 Time(s) unknown (116.110.69.4): 1 Time(s) unknown (119.57.156.38): 1 Time(s) unknown (124.41.213.166): 1 Time(s) unknown (188.126.89.58): 1 Time(s) unknown (188.126.89.76): 1 Time(s) unknown (210.211.117.212): 1 Time(s) unknown (213.202.216.189): 1 Time(s) unknown (45.13.104.179): 1 Time(s) unknown (45.153.160.139): 1 Time(s) unknown (49.234.22.220): 1 Time(s) unknown (68.166.134.74): 1 Time(s) unknown (c-68-38-202-145.hsd1.in.comcast.net): 1 Time(s) unknown (tor-exit-relay-5.anonymizing-proxy.digitalcourage.de): 1 Time(s) Invalid Users: Unknown Account: 417 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 3 Miscellaneous warnings 15.560K Bytes accepted 15,933 15.560K Bytes sent via SMTP 15,933 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 8 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 8 Total 4xx Rejects 100.00% ======== ================================================== 225 Connections 14 Connections lost (inbound) 225 Disconnections 1 Removed from queue 1 Sent via SMTP 29 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Failed logins from: 1.117.12.193: 37 times 36.91.119.221: 13 times 36.133.216.195: 1 time 42.193.104.220: 24 times 49.232.223.172: 11 times 65.21.60.48 (static.48.60.21.65.clients.your-server.de): 21 times 66.98.45.242 (242.45.98.66.f.static.claro.net.do): 31 times 68.38.202.145 (c-68-38-202-145.hsd1.in.comcast.net): 9 times 81.182.248.193 (dsl51B6F8C1.fixip.t-online.hu): 25 times 84.178.186.183 (p54b2bab7.dip0.t-ipconnect.de): 3 times 103.72.147.23: 40 times 103.93.17.149 (web1.acmepadm.com): 1 time 103.162.196.76: 34 times 103.233.1.53 (server.vps.ull): 12 times 104.248.168.195 (gurlstalk.com): 69 times 106.52.187.68: 9 times 115.76.92.187 (adsl.viettel.vn): 1 time 116.110.69.4: 1 time 117.50.129.4: 8 times 122.51.145.200: 33 times 125.141.139.29: 34 times 131.72.127.222 (131-72-127-222.speedzone.com.br): 39 times 132.232.230.220: 39 times 134.209.64.28: 38 times 138.197.149.97: 13 times 139.198.27.217: 22 times 143.110.248.63 (lpsonline.in): 11 times 152.136.107.21: 36 times 152.136.129.89: 38 times 162.241.94.40 (server.fri.mom.mybluehost.me): 14 times 163.172.216.82 (163-172-216-82.rev.poneytelecom.eu): 16 times 175.42.70.240: 17 times 182.163.90.49 (v-182-163-90-49.ub-freebit.net): 10 times 185.90.136.171: 1 time 186.208.114.100 (186-208-114-100.gotelecom.com.br): 34 times 189.139.65.6 (dsl-189-139-65-6-dyn.prod-infinitum.com.mx): 18 times 200.52.80.34 (34.80.52.200.in-addr.arpa): 38 times 218.104.225.140: 24 times Illegal users from: 2001:470:1:c84::23: 1 time undef: 273 times 1.117.12.193: 12 times 5.206.227.16 (blackslaves): 2 times 36.91.119.221: 5 times 42.193.104.220: 8 times 45.13.104.179 (nosoignons.cust.milkywan.net): 1 time 45.153.160.139: 1 time 49.232.223.172: 9 times 49.234.22.220: 1 time 65.21.60.48 (static.48.60.21.65.clients.your-server.de): 12 times 65.49.20.68 (scan-19.shadowserver.org): 1 time 66.98.45.242 (242.45.98.66.f.static.claro.net.do): 19 times 68.38.202.145 (c-68-38-202-145.hsd1.in.comcast.net): 1 time 68.97.206.192 (ip68-97-206-192.ok.ok.cox.net): 2 times 68.166.134.74 (h-68-166-134-74.lsan.ca.dynamic.globalcapacity.com): 1 time 81.182.248.193 (dsl51B6F8C1.fixip.t-online.hu): 5 times 84.178.186.183 (p54b2bab7.dip0.t-ipconnect.de): 2 times 90.119.109.109 (lfbn-tln-1-141-109.w90-119.abo.wanadoo.fr): 2 times 103.72.147.23: 10 times 103.162.196.76: 13 times 103.233.1.53 (server.vps.ull): 7 times 106.52.187.68: 9 times 109.116.213.77 (net-109-116-213-77.cust.vodafonedsl.it): 2 times 116.105.75.56: 1 time 116.110.69.4: 1 time 116.110.99.56: 2 times 116.110.121.9: 3 times 117.7.122.163 (localhost): 3 times 117.50.6.160: 1 time 117.50.129.4: 3 times 119.57.156.38: 1 time 122.51.145.200: 15 times 124.41.213.166: 1 time 125.137.212.85: 2 times 125.141.139.29: 16 times 131.72.127.222 (131-72-127-222.speedzone.com.br): 11 times 132.232.230.220: 7 times 134.209.64.28: 12 times 138.197.149.97: 9 times 139.198.27.217: 10 times 141.98.10.60: 15 times 141.98.10.63: 14 times 141.98.10.109: 3 times 143.110.248.63 (lpsonline.in): 7 times 152.136.107.21: 15 times 152.136.129.89: 12 times 154.89.5.43: 1 time 162.241.94.40 (server.fri.mom.mybluehost.me): 4 times 163.172.216.82 (163-172-216-82.rev.poneytelecom.eu): 18 times 165.227.137.85: 1 time 175.42.70.240: 11 times 182.163.90.49 (v-182-163-90-49.ub-freebit.net): 3 times 185.90.136.171: 3 times 185.220.102.251 (tor-exit-relay-5.anonymizing-proxy.digitalcourage.de): 1 time 186.208.114.100 (186-208-114-100.gotelecom.com.br): 16 times 188.126.89.58: 1 time 188.126.89.76: 1 time 189.139.65.6 (dsl-189-139-65-6-dyn.prod-infinitum.com.mx): 8 times 200.52.80.34 (34.80.52.200.in-addr.arpa): 12 times 205.185.120.180: 4 times 209.141.55.232: 3 times 209.141.59.184 (amazoncojpbation.ga): 3 times 210.211.117.212: 1 time 213.202.216.189 (h176.helix.dedi.server-hosting.expert): 1 time 218.104.225.140: 40 times ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop33257p1 394G 242G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

3 Jahre, 11 Monate

1
0
0 / 0

Achtung: Traffic-Report-Limit-Überschreitung

by noreply＠hetzner.com

Sehr geehrter Herr Fabian Freyer, hiermit möchten wir Sie darauf aufmerksam machen, dass die Menge der übertragenen Daten das von Ihnen gesetzte Limit überschritten hat: Stündlich: (12:00 - 13:00) IP / Subnet Servername Limit (MB) Traffic (MB) 94.130.65.175 2000 3992,7005 Bitte beachten Sie, dass die Zeit in Mitteleuropäischer Zeit (MEZ) +0100 UTC angegeben wird. Sie können den Wert, bei dem Sie diese Warnmeldung erhalten wollen, jederzeit selbst im Robot https://robot.your-server.de unter dem Menüpunkt "Hauptfunktionen; Server; Reiter IPs" ändern. Sie haben mit unserem Traffic-Warnsystem eine gute Möglichkeit, Unregelmäßigkeiten festzustellen. Dieser Wert hat nichts mit Ihrem freien Transfervolumen zu tun! Falls Sie Fragen haben, senden Sie uns bitte eine Supportanfrage aus Ihrer Administrationsoberfläche Robot ( https://robot.your-server.de ). Bitte loggen Sie sich mit Ihrem Account in den Robot ein und klicken Sie rechts oben auf das Benutzer-Icon und wählen Sie anschließend den Punkt "Support" aus. Dort wählen Sie bitte die "Server" Option unter "Produkt" aus, dann können Sie Ihren Server auswählen. Alternativ können Sie auch eine allgemeine Anfrage senden. Wir werden Ihre Anfrage so schnell wie möglich beantworten. Mit freundlichen Grüßen Ihr Hetzner Online Team Hetzner Online GmbH Industriestr. 25 91710 Gunzenhausen Tel.: +49 9831 505-0 Fax: +49 9831 505-3 info(a)hetzner.com www.hetzner.com Registergericht Ansbach, HRB 6089 Geschäftsführer: Martin Hetzner, Stephan Konvickova, Günther Müller USt-IdNr. DE812871812 Hinweise zur Verarbeitung Ihrer personenbezogenen Daten im Rahmen der Kommunikation mit Ihnen finden Sie unter: https://www.hetzner.com/de/datenschutzhinweis

3 Jahre, 11 Monate

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

TOPF November 2021