August 2023 - TOPF - ZaPF-Lists

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Wed Aug 2 04:42:04 2023 Date Range Processed: yesterday ( 2023-Aug-01 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 81:82 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 144.126.230.122 -> google.com:443: 1 Time(s) 172.233.208.171 -> google.com:443: 1 Time(s) 185.224.128.151 -> www.apple.com:443: 1 Time(s) 45.128.232.84 -> www.twitch.tv:443: 1 Time(s) 91.224.92.110 -> api.findip.net:443: 2 Time(s) A total of 9 sites probed the server 13.40.98.37 158.255.82.135 162.243.145.50 179.43.145.122 192.241.212.52 198.235.24.216 205.210.31.131 36.225.124.27 65.49.1.94 Requests with error response codes 400 Bad Request null: 9 Time(s) /: 7 Time(s) mstshash=Administr: 4 Time(s) /aaa9: 3 Time(s) /aab8: 3 Time(s) /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${I ... }zyxel.selfrep;: 2 Time(s) api.findip.net:443: 2 Time(s) google.com:443: 2 Time(s) *: 1 Time(s) /.env: 1 Time(s) /manager/html: 1 Time(s) A@BAE@FAI: 1 Time(s) \x97\x96\xA8\xE0\xDE\xBA5\xE5\x1BZ\x09\xF0 ... \xAE\xA1=\xABsW: 1 Time(s) \xC0/\xC00\xC0+\xC0,\xCC\xA8\xCC\xA9\xC0\x ... x09\xC0\x14\xC0: 1 Time(s) www.apple.com:443: 1 Time(s) www.twitch.tv:443: 1 Time(s) 500 Internal Server Error /: 39 Time(s) /.env: 5 Time(s) /robots.txt: 3 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 3 Time(s) /?XDEBUG_SESSION_START=phpstorm: 2 Time(s) /favicon.ico: 2 Time(s) /.git/config: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /SQLiteManager/: 1 Time(s) /_ignition/execute-solution: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /autodiscover/autodiscover.json?@zdi/Powershell: 1 Time(s) /console/: 1 Time(s) /dns-query: 1 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 1 Time(s) /epa/scripts/win/nsepa_setup.exe: 1 Time(s) /geoserver: 1 Time(s) /geoserver/web/: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/x.js: 1 Time(s) /phpinfo.php: 1 Time(s) /remote/fgt_lang?lang=/../../../..//////// ... lvpn_websession: 1 Time(s) /restore.php: 1 Time(s) /sitemap.xml: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (24.199.87.170): 144 Time(s) root (139.59.23.204): 84 Time(s) root (213.190.30.112): 62 Time(s) root (31.145.142.206): 44 Time(s) unknown (134.122.88.190): 37 Time(s) unknown (170.64.183.7): 37 Time(s) unknown (165.227.133.208): 28 Time(s) root (202.139.217.204): 23 Time(s) root (185.224.128.142): 18 Time(s) root (134.122.88.190): 15 Time(s) root (170.64.183.7): 15 Time(s) root (165.227.133.208): 14 Time(s) unknown (118.31.38.199): 14 Time(s) unknown (31.145.142.206): 14 Time(s) unknown (141.98.11.11): 13 Time(s) root (118.31.38.199): 11 Time(s) root (217.160.49.181): 10 Time(s) unknown (176.113.115.211): 10 Time(s) unknown (141.98.11.113): 8 Time(s) root (176.113.115.211): 7 Time(s) unknown (202.139.217.204): 7 Time(s) root (141.98.11.11): 6 Time(s) root (125.136.203.14): 5 Time(s) root (141.98.11.113): 5 Time(s) unknown (176.113.115.210): 5 Time(s) root (193.169.255.233): 4 Time(s) unknown (vmi1374414.contaboserver.net): 4 Time(s) root (36.110.228.254): 3 Time(s) unknown (81.17.22.114): 3 Time(s) postgres (118.31.38.199): 2 Time(s) root (176.113.115.210): 2 Time(s) root (59.173.31.105): 2 Time(s) unknown (192.141.149.82): 2 Time(s) unknown (59.173.31.105): 2 Time(s) postgres (134.122.88.190): 1 Time(s) postgres (141.98.11.113): 1 Time(s) postgres (165.227.133.208): 1 Time(s) postgres (170.64.183.7): 1 Time(s) root (170.245.133.129): 1 Time(s) root (188.255.158.174): 1 Time(s) root (217.144.74.112): 1 Time(s) root (80.240.206.14): 1 Time(s) root (cpe-76-91-64-101.socal.res.rr.com): 1 Time(s) root (fixed-187-251-244-234.totalplay.net): 1 Time(s) root (r201-217-144-237.ir-static.anteldata.net.uy): 1 Time(s) sync (141.98.11.11): 1 Time(s) unknown (103.157.104.248): 1 Time(s) unknown (103.235.3.225): 1 Time(s) unknown (103.25.81.147): 1 Time(s) unknown (121.188.160.55): 1 Time(s) unknown (123.252.209.150): 1 Time(s) unknown (174.138.27.86): 1 Time(s) unknown (176-35-70-13.xdsl.murphx.net): 1 Time(s) unknown (176.113.126.213): 1 Time(s) unknown (179.5.193.196): 1 Time(s) unknown (180.175.121.110): 1 Time(s) unknown (181.212.64.195): 1 Time(s) unknown (183.171.213.138): 1 Time(s) unknown (185.69.165.124): 1 Time(s) unknown (189.179.64.37): 1 Time(s) unknown (195.242.233.154): 1 Time(s) unknown (202.53.41.215): 1 Time(s) unknown (212-114-23-29.box.freepro.com): 1 Time(s) unknown (212.33.205.62): 1 Time(s) unknown (41.74.129.85): 1 Time(s) unknown (50.80.113.126): 1 Time(s) unknown (60-248-91-59.hinet-ip.hinet.net): 1 Time(s) unknown (62.84.112.69): 1 Time(s) unknown (65-102-181-141.tukw.qwest.net): 1 Time(s) unknown (78-106-43-241.broadband.corbina.ru): 1 Time(s) unknown (80.240.206.17): 1 Time(s) unknown (88.82.204.14): 1 Time(s) unknown (91-113-62-243.adsl.highway.telekom.at): 1 Time(s) unknown (c-67-176-78-57.hsd1.co.comcast.net): 1 Time(s) unknown (c188-150-228-81.bredband.tele2.se): 1 Time(s) unknown (c83-255-40-130.bredband.tele2.se): 1 Time(s) unknown (c91-130-51-190.bredband.tele2.se): 1 Time(s) unknown (d5152b305.access.telenet.be): 1 Time(s) unknown (m90-140-0-138.cust.tele2.lt): 1 Time(s) unknown (net-93-148-121-255.cust.dsl.teletu.it): 1 Time(s) unknown (p5b27618e.dip0.t-ipconnect.de): 1 Time(s) unknown (p5b28349f.dip0.t-ipconnect.de): 1 Time(s) uucp (206.74.214.208): 1 Time(s) Invalid Users: Unknown Account: 378 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 1 Miscellaneous warnings 14.548K Bytes accepted 14,897 14.548K Bytes sent via SMTP 14,897 ======== ================================================== 2 Accepted 100.00% -------- -------------------------------------------------- 2 Total 100.00% ======== ================================================== 5 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 5 Total 4xx Rejects 100.00% ======== ================================================== 365 Connections 96 Connections lost (inbound) 365 Disconnections 2 Removed from queue 2 Sent via SMTP 1 SMTP dialog errors 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 1 Time(s) Failed logins from: 31.145.142.206: 44 times 36.110.228.254: 3 times 59.173.31.105: 2 times 76.91.64.101 (cpe-76-91-64-101.socal.res.rr.com): 1 time 80.240.206.14: 1 time 118.31.38.199: 13 times 125.136.203.14: 6 times 134.122.88.190: 16 times 139.59.23.204: 84 times 141.98.11.11 (axon-stall.riddlecamera.net): 7 times 141.98.11.113 (annoying.medyamol.com): 6 times 165.227.133.208: 15 times 170.64.183.7: 16 times 170.245.133.129: 1 time 176.113.115.210: 2 times 176.113.115.211: 7 times 185.224.128.142: 18 times 187.251.244.234 (fixed-187-251-244-234.totalplay.net): 1 time 188.255.158.174 (free-158-174.mediaworksit.net): 1 time 193.169.255.233: 4 times 201.217.144.237 (r201-217-144-237.ir-static.anteldata.net.uy): 1 time 202.139.217.204: 23 times 206.74.214.208 (206-74-214-208.fttp.ftmlsc.dyn.comporium.net): 1 time 213.190.30.112 (ds.besthomesideas.com): 62 times 217.144.74.112 (217144074112.vdc-ndc.trd.as44381.net): 1 time 217.160.49.181: 10 times Illegal users from: 2001:470:1:332::4: 1 time undef: 98 times 24.199.87.170: 144 times 31.145.142.206: 14 times 31.187.74.176 (vmi1374414.contaboserver.net): 4 times 41.74.129.85 (bl3.41.74.129.85.dynamic.dsl.cvmultimedia.cv): 1 time 50.80.113.126 (50-80-113-126.client.mchsi.com): 1 time 59.173.31.105: 2 times 60.248.91.59 (60-248-91-59.hinet-ip.hinet.net): 1 time 62.84.112.69: 1 time 65.49.1.20: 1 time 65.102.181.141 (65-102-181-141.tukw.qwest.net): 1 time 67.176.78.57 (c-67-176-78-57.hsd1.co.comcast.net): 1 time 78.106.43.241 (78-106-43-241.broadband.corbina.ru): 1 time 80.240.206.17: 1 time 81.17.22.114 (hostedby.privatelayer.com): 15 times 81.82.179.5 (d5152b305.access.telenet.be): 1 time 83.255.40.130 (c83-255-40-130.bredband.tele2.se): 1 time 88.82.204.14: 1 time 90.140.0.138 (m90-140-0-138.cust.tele2.lt): 1 time 91.39.97.142 (p5b27618e.dip0.t-ipconnect.de): 1 time 91.40.52.159 (p5b28349f.dip0.t-ipconnect.de): 1 time 91.113.62.243 (91-113-62-243.adsl.highway.telekom.at): 1 time 91.130.51.190 (c91-130-51-190.bredband.tele2.se): 1 time 93.148.121.255 (net-93-148-121-255.cust.vodafonedsl.it): 1 time 103.25.81.147: 1 time 103.157.104.248: 1 time 103.235.3.225: 1 time 118.31.38.199: 14 times 121.188.160.55: 5 times 123.252.209.150 (static-150.209.252.123-tataidc.co.in): 1 time 134.122.88.190: 37 times 141.98.11.11 (axon-stall.riddlecamera.net): 13 times 141.98.11.113 (annoying.medyamol.com): 9 times 165.227.133.208: 28 times 170.64.183.7: 37 times 174.138.27.86: 1 time 176.35.70.13 (176-35-70-13.xdsl.murphx.net): 1 time 176.113.115.210: 5 times 176.113.115.211: 10 times 176.113.126.213: 1 time 179.5.193.196: 1 time 180.175.121.110: 1 time 181.212.64.195 (181-212-64-195.baf.movistar.cl): 1 time 183.171.213.138: 1 time 185.69.165.124: 1 time 188.150.228.81 (c188-150-228-81.bredband.tele2.se): 1 time 189.179.64.37 (dsl-189-179-64-37-dyn.prod-infinitum.com.mx): 1 time 192.141.149.82: 2 times 195.242.233.154 (host-195.242.233.154.c3.net.pl): 1 time 202.53.41.215 (202-53-41-215.tpgi.com.au): 1 time 202.139.217.204: 7 times 212.33.205.62: 1 time 212.114.23.29 (212-114-23-29.box.freepro.com): 1 time 213.190.30.112 (ds.besthomesideas.com): 16 times **Unmatched Entries** fatal: buffer_get_string: buffer error [preauth] : 1 time(s) Protocol major versions differ for 152.32.227.23: SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 vs. SSH-1.5-Server : 1 time(s) error: buffer_get_string_ret: incomplete message [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop47383p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

2 Jahre, 2 Monate

1
0
0 / 0

GitLab Security Release: 16.2.2, 16.1.3, and 16.0.8

by GitLab Security Team

To view this email as a web page, go to the following address: https://page.gitlab.com/index.php/email/emailWebview?mkt_tok=MTk0LVZWQy0y... Today we are releasing versions 16.2.2, 16.1.3, and 16.0.8 for GitLab Community Edition (CE) and Enterprise Edition (EE). These versions contain important security fixes and <strong>we strongly recommend that all GitLab installations be upgraded to one of these versions immediately</strong>. You can see details in this security release blog post <https://about.gitlab.com/releases/2023/08/01/security-release-gitlab-16-2... date like: July+28+2020>. Please forward this alert to appropriate people at your organization and have them subscribe to Security Notices <https://about.gitlab.com/company/contact/>. You can also receive security release blog updates by subscribing to our security release RSS feed <https://about.gitlab.com/security-releases.xml> or our RSS feed for all GitLab releases <https://about.gitlab.com/all-releases.xml>. GitLab releases patches for vulnerabilities in two types of dedicated security releases: a monthly security release, released a week after the feature release (which deploys on the 22nd of each month), and ad-hoc security releases for critical vulnerabilities. For more information, you can visit our security FAQ <https://email.gitlab.com/MTk0LVZWQy0yMjEAAAGNUXN-smiKzOgDdZdRvzXF3kDgEJme...>. Sincerely, GitLab Security Team GitLab 268 Bush Street, #350, San Francisco, CA 94104, USA This email was sent to topf(a)zapf.in. You may unsubscribe <[[https://page.gitlab.com/UnsubscribePage.html?mkt_unsubscribe=1&mkt_tok=MT...]]> anytime from GitLab's marketing emails but you will still receive operational emails related to your account.

2 Jahre, 2 Monate

1
0
0 / 0

Wichtige Mitteilung - Wartungsarbeiten am Cluster 03.08.2023

by erp＠infra.run

Sehr geehrte Nutzer:innen von infra.run-Dienstleistungen, Am 03.08.2023 * werden wir in der Zeit von 22:00 bis 02:00 * Wartungsarbeiten durchführen. Diese sind erforderlich, um unsere Software auf dem aktuellen Stand zu halten. In dieser Zeit können einzelne Dienste kurzzeitig nicht zur Verfügung stehen. Nach Ende der Wartungsarbeiten stehen Ihnen unsere Dienste wie gewohnt im vollem Umfang bereit. Für Fragen stehen wir jederzeit gerne zur Verfügung. Mit freundlichen Grüßen infra.run Service GmbH - Wilhelmine-Gemberg-Weg 14 10179 Berlin Handelsregister: Amtsgericht Charlottenburg HRB 225307 B Steuernummer: 30/358/51857 Ust-IdNr: DE340100821 Geschäftsführer*innen: Leonie Hannig, Sebastian Breuer, Andreas Steinhauser

2 Jahre, 2 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Tue Aug 1 04:42:04 2023 Date Range Processed: yesterday ( 2023-Jul-31 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 71:70 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 45.128.232.183 -> google.com:443: 2 Time(s) 84.54.51.12 -> google.com:443: 1 Time(s) A total of 19 sites probed the server 128.14.226.202 165.22.120.12 181.41.206.226 185.100.87.136 185.11.61.130 192.241.214.12 192.241.239.19 193.35.18.89 198.235.24.96 3.8.6.147 45.155.91.80 45.79.181.94 45.83.67.86 45.95.169.184 54.161.172.41 64.227.129.185 65.49.1.23 66.240.205.34 68.183.202.102 Requests with error response codes 400 Bad Request null: 23 Time(s) mstshash=Administr: 5 Time(s) /: 4 Time(s) google.com:443: 3 Time(s) mstshash=Domain: 3 Time(s) *: 2 Time(s) /.env: 2 Time(s) /private/api/v1/service/premaster: 2 Time(s) /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${I ... }zyxel.selfrep;: 1 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 1 Time(s) /index.htm: 1 Time(s) /index.php?s=/index/\x09hink\x07pp/invokef ... exec&vars[1][]=: 1 Time(s) 7\x1B\x1DD\xB0\xA4\xF5\xAC{0Z\xB8G,: 1 Time(s) A@BAE@FAI: 1 Time(s) Js\xCA\xBE\xA6\xA4\x05'\x88\xF8\x99]\x9B\x ... D\xC0$\xC0(\xC0: 1 Time(s) \x00\x00BBBB\xBA\x8C\xC1\xABDAAA: 1 Time(s) \x81.\x02\xF6\xB9\x96\xC1\xF5t\xA3\x84M\x8 ... x09\xC0\x14\xC0: 1 Time(s) \x99{\x07\xF5\xD0\x81\x90X\xD5\x9FsK62\xDF ... x09\xC0\x14\xC0: 1 Time(s) \xD5(\xC3\xE9^\xB6\xFF\x8F\xABo\xD7\xB7\x9 ... D\xC0$\xC0(\xC0: 1 Time(s) e4\x1E\x1Fu\x7F: 1 Time(s) 500 Internal Server Error /: 43 Time(s) /config: 6 Time(s) /.env: 5 Time(s) /.git/config: 4 Time(s) /admin: 3 Time(s) /admin/: 3 Time(s) /admin/.git/config: 3 Time(s) /admin/config: 3 Time(s) /api: 3 Time(s) /api/: 3 Time(s) /api/.git/config: 3 Time(s) /api/config: 3 Time(s) /app: 3 Time(s) /app/: 3 Time(s) /app/.git/config: 3 Time(s) /app/config: 3 Time(s) /backend: 3 Time(s) /backend/: 3 Time(s) /backend/.git/config: 3 Time(s) /backend/config: 3 Time(s) /backup: 3 Time(s) /backup/: 3 Time(s) /backup/.git/config: 3 Time(s) /backup/config: 3 Time(s) /bak: 3 Time(s) /bak/: 3 Time(s) /bak/.git/config: 3 Time(s) /bak/config: 3 Time(s) /cfg: 3 Time(s) /cfg/: 3 Time(s) /cfg/.git/config: 3 Time(s) /cfg/config: 3 Time(s) /conf: 3 Time(s) /conf/: 3 Time(s) /conf/.git/config: 3 Time(s) /conf/config: 3 Time(s) /config/: 3 Time(s) /config/.git/config: 3 Time(s) /config/config: 3 Time(s) /cron: 3 Time(s) /cron/: 3 Time(s) /data: 3 Time(s) /data/: 3 Time(s) /data/.git/config: 3 Time(s) /data/config: 3 Time(s) /download: 3 Time(s) /download/: 3 Time(s) /downloads: 3 Time(s) /downloads/: 3 Time(s) /favicon.ico: 3 Time(s) /files: 3 Time(s) /files/: 3 Time(s) /git: 3 Time(s) /git/: 3 Time(s) /git/.git/config: 3 Time(s) /git/config: 3 Time(s) /inc: 3 Time(s) /inc/: 3 Time(s) /inc/.git/config: 3 Time(s) /inc/config: 3 Time(s) /include: 3 Time(s) /include/: 3 Time(s) /include/.git/config: 3 Time(s) /include/config: 3 Time(s) /includes: 3 Time(s) /includes/: 3 Time(s) /includes/.git/config: 3 Time(s) /includes/config: 3 Time(s) /lib: 3 Time(s) /lib/: 3 Time(s) /lib/.git/config: 3 Time(s) /lib/config: 3 Time(s) /libs: 3 Time(s) /libs/: 3 Time(s) /libs/.git/config: 3 Time(s) /libs/config: 3 Time(s) /log: 3 Time(s) /log/: 3 Time(s) /logs: 3 Time(s) /logs/: 3 Time(s) /rest: 3 Time(s) /rest/: 3 Time(s) /rest/.git/config: 3 Time(s) /rest/config: 3 Time(s) /service: 3 Time(s) /service/: 3 Time(s) /service/.git/config: 3 Time(s) /service/config: 3 Time(s) /services: 3 Time(s) /services/: 3 Time(s) /services/.git/config: 3 Time(s) /services/config: 3 Time(s) /source: 3 Time(s) /source/: 3 Time(s) /source/.git/config: 3 Time(s) /source/config: 3 Time(s) /sources: 3 Time(s) /sources/: 3 Time(s) /sources/.git/config: 3 Time(s) /sources/config: 3 Time(s) /src: 3 Time(s) /src/: 3 Time(s) /src/.git/config: 3 Time(s) /src/config: 3 Time(s) /svc: 3 Time(s) /svc/: 3 Time(s) /svc/.git/config: 3 Time(s) /svc/config: 3 Time(s) /temp: 3 Time(s) /temp/: 3 Time(s) /temp/.git/config: 3 Time(s) /temp/config: 3 Time(s) /test: 3 Time(s) /test/: 3 Time(s) /test/.git/config: 3 Time(s) /test/config: 3 Time(s) /tmp: 3 Time(s) /tmp/: 3 Time(s) /tmp/.git/config: 3 Time(s) /tmp/config: 3 Time(s) /upload: 3 Time(s) /upload/: 3 Time(s) /uploads: 3 Time(s) /uploads/: 3 Time(s) /wallet: 3 Time(s) /wallet/: 3 Time(s) /wallets: 3 Time(s) /wallets/: 3 Time(s) /ab2g: 2 Time(s) /ab2h: 2 Time(s) /t4: 2 Time(s) /?20628182016134805143312Ex: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /BTlZ: 1 Time(s) /aab8: 1 Time(s) /aab9: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /geoserver: 1 Time(s) /geoserver/web/: 1 Time(s) /jquery-3.3.1.slim.min.js: 1 Time(s) /jquery-3.3.2.slim.min.js: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /p2rI: 1 Time(s) /phpmyadmin/index.php: 1 Time(s) /restore.php: 1 Time(s) /robots.txt: 1 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (24.199.87.170): 192 Time(s) root (139.59.23.204): 54 Time(s) root (129.205.194.230): 29 Time(s) root (ip201.ip-135-125-240.eu): 29 Time(s) unknown (139.59.10.175): 28 Time(s) root (185.224.128.142): 18 Time(s) root (45.95.147.207): 18 Time(s) root (217.160.49.181): 16 Time(s) unknown (139.59.13.119): 14 Time(s) root (121.239.102.26): 11 Time(s) root (141.98.11.113): 11 Time(s) unknown (141.98.11.11): 10 Time(s) unknown (141.98.11.113): 10 Time(s) unknown (176.113.115.210): 10 Time(s) unknown (159.203.46.152): 8 Time(s) root (130.61.184.148): 7 Time(s) root (176.113.115.210): 7 Time(s) root (118.47.143.195): 6 Time(s) root (124.222.211.66): 6 Time(s) root (14.116.193.108): 6 Time(s) unknown (45.95.147.207): 6 Time(s) root (202.6.239.90): 5 Time(s) unknown (176.113.115.211): 5 Time(s) root (176.113.115.211): 4 Time(s) root (193.169.255.233): 4 Time(s) root (141.98.11.11): 3 Time(s) unknown (106.225.193.35): 3 Time(s) unknown (139.59.10.137): 3 Time(s) unknown (81.17.22.114): 3 Time(s) root (139.59.10.175): 2 Time(s) unknown (109.100.33.178): 2 Time(s) unknown (109.182-182-91.adsl-dyn.isp.belgacom.be): 2 Time(s) unknown (ip4d1681ed.dynamic.kabel-deutschland.de): 2 Time(s) unknown (v157-7-205-164.mt0j.static.cnode.io): 2 Time(s) mysql (141.98.11.113): 1 Time(s) nobody (141.98.11.113): 1 Time(s) root (106.225.193.35): 1 Time(s) root (116.130.75.27): 1 Time(s) root (139.59.10.137): 1 Time(s) root (139.59.13.119): 1 Time(s) root (143.64.34.225): 1 Time(s) root (159.203.46.152): 1 Time(s) root (189.44.25.90): 1 Time(s) root (65.20.145.246): 1 Time(s) unknown (102.37.159.121): 1 Time(s) unknown (148.255.148.162): 1 Time(s) unknown (165.90.96.202): 1 Time(s) unknown (168.235.168.122): 1 Time(s) unknown (172.86.1.115): 1 Time(s) unknown (178.219.126.193): 1 Time(s) unknown (189.219.33.189): 1 Time(s) unknown (211.227.213.124): 1 Time(s) Invalid Users: Unknown Account: 320 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 8.942K Bytes accepted 9,157 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 6 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 6 Total 4xx Rejects 100.00% ======== ================================================== 370 Connections 101 Connections lost (inbound) 370 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors 3 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 3 Time(s) Failed logins from: 14.116.193.108: 6 times 45.95.147.207 (host0.ennsdomains.com): 18 times 65.20.145.246: 1 time 106.225.193.35: 1 time 116.130.75.27: 1 time 118.47.143.195: 6 times 121.239.102.26: 11 times 124.222.211.66: 6 times 129.205.194.230: 29 times 130.61.184.148: 7 times 135.125.240.201 (ip201.ip-135-125-240.eu): 29 times 139.59.10.137: 1 time 139.59.10.175: 2 times 139.59.13.119: 1 time 139.59.23.204: 54 times 141.98.11.11 (axon-stall.riddlecamera.net): 3 times 141.98.11.113 (annoying.medyamol.com): 13 times 143.64.34.225: 1 time 159.203.46.152: 1 time 176.113.115.210: 7 times 176.113.115.211: 4 times 185.224.128.142: 18 times 189.44.25.90 (189-44-25-90.customer.tdatabrasil.net.br): 1 time 193.169.255.233: 12 times 202.6.239.90 (202-6-239-90.padinet.com): 6 times 217.160.49.181: 16 times Illegal users from: 2001:470:1:c84::16: 1 time undef: 44 times 24.199.87.170: 192 times 45.95.147.207 (host0.ennsdomains.com): 6 times 60.26.160.182 (no-data): 1 time 64.62.197.144 (scan-48h.shadowserver.org): 1 time 77.22.129.237 (ip4d1681ed.dynamic.kabel-deutschland.de): 2 times 81.17.22.114 (hostedby.privatelayer.com): 15 times 91.182.182.109 (109.182-182-91.adsl-dyn.isp.belgacom.be): 2 times 102.37.159.121: 1 time 106.225.193.35: 3 times 109.100.33.178: 2 times 139.59.10.137: 3 times 139.59.10.175: 28 times 139.59.13.119: 14 times 141.98.11.11 (axon-stall.riddlecamera.net): 10 times 141.98.11.113 (annoying.medyamol.com): 10 times 148.255.148.162 (162.148.255.148.d.dyn.claro.net.do): 1 time 157.7.205.164 (v157-7-205-164.mt0j.static.cnode.io): 2 times 159.203.46.152: 8 times 165.90.96.202: 1 time 168.235.168.122: 1 time 172.86.1.115: 1 time 176.113.115.210: 10 times 176.113.115.211: 5 times 178.219.126.193 (host-178.219.126.193-c3.net.pl): 1 time 189.219.33.189 (189.219.33.189-clientes-izzi.mx): 1 time 211.227.213.124: 1 time ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop47383p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

2 Jahre, 2 Monate

1
0
0 / 0

Cron <root@h2361197> /usr/sbin/nginx -s reload

by root＠zapf.in

nginx: [warn] conflicting server name "xn--studienfhrer-physik-dbc.de" on 0.0.0.0:80, ignored nginx: [warn] conflicting server name "topf.zapf.in" on 0.0.0.0:80, ignored

2 Jahre, 2 Monate

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

TOPF August 2023