März 2024 - TOPF - ZaPF-Lists

[MediaWiki-announce] Security pre-release announcement: 1.39.7 / 1.40.3 / 1.41.1

by Sam Reed

Hi all, On Thursday we will be issuing a security and maintenance release to all supported branches of MediaWiki. The new releases will be: - 1.39.7 - 1.40.3 - 1.41.1 This will resolve two security issues in MediaWiki core, along with bug fixes included for maintenance reasons. This includes various patches for PHP 8.0, 8.1, 8.2 and 8.3 support. This release may or may not be made with a CVE number formally attached, due to the recent delays in receiving them from MITRE. We will make the fixes available in the respective release branches and master in git. Tarballs will be available for the above mentioned point releases as well. A summary of some of the security fixes that have gone into non-bundled MediaWiki extensions will also follow later. As a reminder, MediaWiki 1.35 became end of life (EOL) in December 2023. It is strongly recommended to upgrade to either 1.39 (the next LTS after 1.35), which will be supported until November 2025, 1.40, which will be supported until June 2024, or 1.41, which will be supported until December 2024. [1] https://www.mediawiki.org/wiki/Version_lifecycle _______________________________________________ MediaWiki-announce mailing list -- mediawiki-announce(a)lists.wikimedia.org To unsubscribe send an email to mediawiki-announce-leave(a)lists.wikimedia.org

1 Jahr, 6 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Wed Mar 27 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-26 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [150:151] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 87.121.69.52 -> google.com:443: 4 Time(s) A total of 13 sites probed the server 123.58.213.118 161.35.230.183 165.232.108.244 174.138.61.44 188.166.87.67 192.241.231.48 198.199.97.58 198.235.24.9 205.210.31.239 216.218.206.66 45.95.169.184 66.240.192.138 66.240.205.34 Requests with error response codes 400 Bad Request null: 19 Time(s) /: 4 Time(s) google.com:443: 4 Time(s) *: 3 Time(s) +\xD8\x1F\xFC}\xC1n@,\x97\xCC1\x10R\xB1\xE ... F\x0F\xF4\xFAj]: 1 Time(s) /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${I ... }zyxel.selfrep;: 1 Time(s) /index.htm: 1 Time(s) 12.1.2: 1 Time(s) 7: 1 Time(s) \x00\x00BBBB\xBA\x8C\xC1\xABDAAA: 1 Time(s) \xC0/\xC00\xC0+\xC0,\xCC\xA8\xCC\xA9\xC0\x ... x09\xC0\x14\xC0: 1 Time(s) \xC7p\xBC$\xAE\xFA\x8E\xBE\xDD\xD3\x19\xFE ... 92\xC70\xC1\x22: 1 Time(s) \xE4g-\xB2\xBA@\xA2H6\x89\x89\x12\xA7\x9A\ ... x09\xC0\x13\xC0: 1 Time(s) \xFD\xE0\xFAD\x94\x1FC\xBE\x98$\x7F\xE4y\x96\xF0\xB6\xD6: 1 Time(s) ]\x8DT\xAF\x8F\xA3^\x7F\x1E\xD2\xD8\xED\xE ... x09\xC0\x13\xC0: 1 Time(s) mstshash=Administr: 1 Time(s) 500 Internal Server Error /: 19 Time(s) /.env: 2 Time(s) /favicon.ico: 2 Time(s) /.git/config: 1 Time(s) /.well-known/security.txt: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /HNAP1/: 1 Time(s) /ab2g: 1 Time(s) /ab2h: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /actuator/health: 1 Time(s) /alive.php: 1 Time(s) /client/get_targets: 1 Time(s) /geoserver/web/: 1 Time(s) /robots.txt: 1 Time(s) /sitemap.xml: 1 Time(s) /t4: 1 Time(s) /teorema505?t=1: 1 Time(s) /version: 1 Time(s) /webui/: 1 Time(s) 502 Bad Gateway /%7CHackMD/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (89.218.49.34): 269 Time(s) root (218.92.0.53): 66 Time(s) root (218.92.0.45): 58 Time(s) root (183.81.169.238): 54 Time(s) root (218.92.0.33): 54 Time(s) root (103.36.84.194): 48 Time(s) root (218.92.0.55): 48 Time(s) root (218.92.0.40): 42 Time(s) root (218.92.0.43): 36 Time(s) root (179.43.180.106): 35 Time(s) root (218.92.0.51): 34 Time(s) root (218.92.0.47): 30 Time(s) root (218.92.0.52): 30 Time(s) root (218.92.0.59): 18 Time(s) root (218.92.0.28): 17 Time(s) root (113.106.88.146): 12 Time(s) root (201.48.108.11): 12 Time(s) unknown (212.70.149.150): 12 Time(s) root (212.70.149.150): 8 Time(s) unknown (167.172.230.140): 7 Time(s) root (121.183.30.17): 6 Time(s) root (158.51.96.38): 6 Time(s) unknown (185.11.61.88): 6 Time(s) unknown (62.122.184.252): 6 Time(s) root (121.129.194.210): 5 Time(s) root (194.169.175.35): 5 Time(s) root (85.209.11.27): 5 Time(s) unknown (141.98.11.179): 5 Time(s) unknown (194.169.175.35): 5 Time(s) unknown (85.209.11.254): 5 Time(s) root (101.33.73.147): 4 Time(s) root (141.98.11.179): 4 Time(s) unknown (185.224.128.34): 4 Time(s) unknown (85.209.11.27): 4 Time(s) unknown (194.169.175.36): 3 Time(s) root (171.217.93.19): 2 Time(s) root (d27-96-67-167.evv.wideopenwest.com): 2 Time(s) unknown (31.184.198.71): 2 Time(s) unknown (c-174-168-153-220.hsd1.ma.comcast.net): 2 Time(s) unknown (fixed-186-96-145-241.totalplay.net): 2 Time(s) mysql (141.98.11.179): 1 Time(s) root (31.184.198.71): 1 Time(s) root (85.209.11.254): 1 Time(s) sshd (194.169.175.35): 1 Time(s) sshd (194.169.175.36): 1 Time(s) unknown (101.33.73.147): 1 Time(s) unknown (175.203.118.149): 1 Time(s) unknown (183.105.173.232): 1 Time(s) unknown (185.196.8.151): 1 Time(s) Invalid Users: Unknown Account: 74 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 21.364K Bytes accepted 21,877 21.364K Bytes sent via SMTP 21,877 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 5 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 5 Total 4xx Rejects 100.00% ======== ================================================== 38 Connections 22 Connections lost (inbound) 38 Disconnections 1 Removed from queue 1 Sent via SMTP 3 Timeouts (inbound) 5 SMTP dialog errors 2 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 75 Time(s) Failed logins from: 31.184.198.71: 1 time 85.209.11.27: 5 times 85.209.11.254: 1 time 89.218.49.34 (mx12.vertex.kz): 269 times 96.27.167.67 (d27-96-67-167.evv.wideopenwest.com): 2 times 101.33.73.147: 4 times 103.36.84.194: 48 times 113.106.88.146: 12 times 121.129.194.210: 6 times 121.183.30.17: 6 times 141.98.11.179 (srv-141-98-11-179.serveroffer.net): 5 times 158.51.96.38 (unknown.ip-xfer.net): 6 times 171.217.93.19: 2 times 179.43.180.106 (hostedby.privatelayer.com): 35 times 183.81.169.238: 54 times 194.169.175.35: 6 times 194.169.175.36: 1 time 201.48.108.11 (201-048-108-011.static.ctbc.com.br): 12 times 212.70.149.150: 8 times 218.92.0.28: 17 times 218.92.0.33: 54 times 218.92.0.40: 42 times 218.92.0.43: 36 times 218.92.0.45: 58 times 218.92.0.47: 30 times 218.92.0.51: 34 times 218.92.0.52: 30 times 218.92.0.53: 66 times 218.92.0.55: 48 times 218.92.0.59: 18 times Illegal users from: 2001:470:1:c84::28 (scan-18o.shadowserver.org): 1 time undef: 43 times 31.184.198.71: 3 times 62.122.184.252: 6 times 65.49.1.78 (scan-56m.shadowserver.org): 1 time 85.209.11.27: 4 times 85.209.11.254: 5 times 89.218.49.34 (mx12.vertex.kz): 16 times 101.33.73.147: 1 time 141.98.11.179 (srv-141-98-11-179.serveroffer.net): 5 times 167.172.230.140: 7 times 174.168.153.220 (c-174-168-153-220.hsd1.ma.comcast.net): 2 times 175.203.118.149: 5 times 183.105.173.232: 5 times 185.11.61.88: 6 times 185.196.8.151: 1 time 185.224.128.34: 4 times 186.96.145.241 (fixed-186-96-145-241.totalplay.net): 2 times 194.169.175.35: 5 times 194.169.175.36: 3 times 212.70.149.150: 13 times **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 1 time(s) error: buffer_get_string_ret: incomplete message [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (test,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (0,ssh-connection) -> (root,ssh-connection) [preauth] : 1 time(s) fatal: buffer_get_string: buffer error [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ubnt,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (admin,ssh-connection) [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 6 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Tue Mar 26 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-25 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 51:51 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 185.106.94.117 -> www.google.com:443: 2 Time(s) 87.121.69.52 -> google.com:443: 4 Time(s) A total of 7 sites probed the server 141.98.7.88 172.104.11.51 188.166.71.161 192.241.230.29 198.235.24.172 64.62.197.150 78.153.140.179 Requests with error response codes 400 Bad Request null: 9 Time(s) /: 7 Time(s) google.com:443: 4 Time(s) *: 2 Time(s) mstshash=Administr: 2 Time(s) www.google.com:443: 2 Time(s) /.env: 1 Time(s) /.local/share/sqlmap/: 1 Time(s) /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${I ... }zyxel.selfrep;: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) 7: 1 Time(s) \xAA]J}\xF0:P#\xC8\xDE\x1D\xA3\xA2\xFD-&\x ... E7\x95'\xF0\x01: 1 Time(s) \xD7\x9F\xD5\x8D\xA0\x97\xF3m\xBEy\xA9\x1C ... x09\xC0\x13\xC0: 1 Time(s) 404 Not Found /wp-content/plugins/gotmls/readme.txt: 1 Time(s) /wp-plain.php: 1 Time(s) 500 Internal Server Error /: 25 Time(s) /.env: 7 Time(s) /.git/config: 5 Time(s) /dns-query: 4 Time(s) /.env.prod: 2 Time(s) /.env.production: 2 Time(s) /__tests__/test-become/.env: 2 Time(s) /config.json: 2 Time(s) /info.php: 2 Time(s) /redmine/.env: 2 Time(s) /.DS_Store: 1 Time(s) /.json: 1 Time(s) /.vscode/sftp.json: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /AwsConfig.json: 1 Time(s) /FD873AC4-CF86-4FED-84EC-4BD59C6F17A7: 1 Time(s) /_profiler/open?file=app/config/parameters.yml: 1 Time(s) /_profiler/phpinfo: 1 Time(s) /_wpeprivate/config.json: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /app/config/parameters.yml: 1 Time(s) /app_dev.php/_profiler/open?file=app/config/parameters.yml: 1 Time(s) /app_dev.php/_profiler/phpinfo: 1 Time(s) /autodiscover/autodiscover.json?@zdi/Powershell: 1 Time(s) /aws.json: 1 Time(s) /awsconfig.json: 1 Time(s) /client/get_targets: 1 Time(s) /client_secrets.json: 1 Time(s) /conf.json: 1 Time(s) /config/config.json: 1 Time(s) /config/default.json: 1 Time(s) /config/parameters.yml: 1 Time(s) /credentials/config.json: 1 Time(s) /database-config.json: 1 Time(s) /db.json: 1 Time(s) /db/robomongo.json: 1 Time(s) /debug/default/view: 1 Time(s) /debug/default/view.html: 1 Time(s) /debug/default/view?panel=config: 1 Time(s) /deployment-config.json: 1 Time(s) /dns-query?dns=GWYBAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ: 1 Time(s) /dns-query?dns=exoBAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ: 1 Time(s) /dns-query?dns=nEMBAAABAAAAAAAABHRlc3QJbWV ... 0BHdvcmsAAAEAAQ: 1 Time(s) /dns-query?dns=yn8BAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ: 1 Time(s) /env.json: 1 Time(s) /favicon.ico: 1 Time(s) /frontend/web/debug/default/view: 1 Time(s) /geoserver/web/: 1 Time(s) /owncloud/apps/graphapi/vendor/microsoft/m ... /GetPhpInfo.php: 1 Time(s) /parameters.yml: 1 Time(s) /phpinfo.php: 1 Time(s) /remote/login/remote/login: 1 Time(s) /robomongo.json: 1 Time(s) /sapi/debug/default/view: 1 Time(s) /sendgrid.json: 1 Time(s) /server-status: 1 Time(s) /sftp-config.json: 1 Time(s) /smtp.json: 1 Time(s) /ssh-config.json: 1 Time(s) /telescope/requests: 1 Time(s) /user-config.json: 1 Time(s) /web/debug/default/view: 1 Time(s) /webui/: 1 Time(s) /ws-config.json: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (183.81.169.238): 41 Time(s) root (103.36.84.194): 36 Time(s) root (179.43.180.106): 28 Time(s) root (218.92.0.33): 24 Time(s) root (218.92.0.47): 24 Time(s) unknown (212.70.149.150): 20 Time(s) root (218.92.0.43): 18 Time(s) root (218.92.0.53): 18 Time(s) root (218.92.0.40): 12 Time(s) root (218.92.0.51): 12 Time(s) root (fixed-186-96-145-241.totalplay.net): 9 Time(s) unknown (167.172.230.140): 7 Time(s) root (14.153.197.22): 6 Time(s) root (171.217.93.19): 6 Time(s) root (181.117.244.39): 6 Time(s) root (183.239.27.18): 6 Time(s) root (218.92.0.28): 6 Time(s) root (218.92.0.52): 6 Time(s) root (host-87-14-213-38.retail.telecomitalia.it): 6 Time(s) root (175.200.29.51): 5 Time(s) root (d27-96-67-167.evv.wideopenwest.com): 5 Time(s) unknown (41.207.248.204): 5 Time(s) root (212.70.149.150): 4 Time(s) unknown (175.203.118.149): 4 Time(s) unknown (185.196.8.151): 4 Time(s) unknown (221.157.41.231): 4 Time(s) unknown (125.66.243.1): 3 Time(s) unknown (222.121.250.116): 3 Time(s) unknown (1.7.180.245): 2 Time(s) unknown (179.61.18.4): 2 Time(s) unknown (185.11.61.88): 2 Time(s) unknown (194.4.43.75): 2 Time(s) unknown (202.165.14.236): 2 Time(s) unknown (62.122.184.252): 2 Time(s) unknown (65.20.251.41): 2 Time(s) daemon (212.70.149.150): 1 Time(s) nobody (103.157.114.210): 1 Time(s) nobody (167.99.68.29): 1 Time(s) nobody (175.202.52.89): 1 Time(s) nobody (188.129.219.2): 1 Time(s) nobody (19010730116.ip71.static.mediacommerce.com.co): 1 Time(s) nobody (223.82.116.185): 1 Time(s) nobody (27.128.203.51): 1 Time(s) nobody (31.41.84.98): 1 Time(s) nobody (46.44.18.254): 1 Time(s) nobody (62.116.243.192): 1 Time(s) nobody (dsl-hkibng11-50dcbd-126.dhcp.inet.fi): 1 Time(s) nobody (s0106001aae04a6d0.vc.shawcable.net): 1 Time(s) root (113.106.88.146): 1 Time(s) root (46.101.40.31): 1 Time(s) root (58.244.248.122): 1 Time(s) unknown (058176110189.ctinets.com): 1 Time(s) unknown (103.125.42.78): 1 Time(s) unknown (103.157.114.122): 1 Time(s) unknown (103.157.114.66): 1 Time(s) unknown (103.157.115.10): 1 Time(s) unknown (103.157.115.106): 1 Time(s) unknown (103.157.115.162): 1 Time(s) unknown (103.219.211.162): 1 Time(s) unknown (103.3.43.242): 1 Time(s) unknown (108.170.115.35): 1 Time(s) unknown (109.233.21.109): 1 Time(s) unknown (110-25-88-184.adsl.fetnet.net): 1 Time(s) unknown (110.39.51.118): 1 Time(s) unknown (111.23.117.108): 1 Time(s) unknown (113.11.34.221): 1 Time(s) unknown (115.241.228.34): 1 Time(s) unknown (116.110.53.123): 1 Time(s) unknown (117.186.145.98): 1 Time(s) unknown (118.41.204.48): 1 Time(s) unknown (118.41.204.91): 1 Time(s) unknown (121.139.52.211): 1 Time(s) unknown (121.202.206.37): 1 Time(s) unknown (122.14.197.22): 1 Time(s) unknown (123202018045.ctinets.com): 1 Time(s) unknown (134.249.147.136): 1 Time(s) unknown (136.232.68.50): 1 Time(s) unknown (14.48.52.161): 1 Time(s) unknown (157.245.106.108): 1 Time(s) unknown (159.54.133.25): 1 Time(s) unknown (165.231.143.243): 1 Time(s) unknown (171.212.103.245): 1 Time(s) unknown (175.101.150.15.static.excellmedia.net): 1 Time(s) unknown (175.202.52.89): 1 Time(s) unknown (176.121.9.169): 1 Time(s) unknown (176.221.235.140): 1 Time(s) unknown (177.100.213.51): 1 Time(s) unknown (177.72.87.7): 1 Time(s) unknown (180.242.212.153): 1 Time(s) unknown (183.105.173.232): 1 Time(s) unknown (183.6.99.197): 1 Time(s) unknown (186.79.153.95.dyn.idknet.com): 1 Time(s) unknown (187.33.161.18): 1 Time(s) unknown (188-169-66-154.dsl.utg.ge): 1 Time(s) unknown (190.241.18.12): 1 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (193.252.152.214): 1 Time(s) unknown (193.43.69.204): 1 Time(s) unknown (200.26.233.245): 1 Time(s) unknown (200.85.41.38): 1 Time(s) unknown (210.4.68.72): 1 Time(s) unknown (211.169.212.206): 1 Time(s) unknown (211.185.219.143): 1 Time(s) unknown (211.62.68.204): 1 Time(s) unknown (217-210-89-93-no2663.tbcn.telia.com): 1 Time(s) unknown (217-215-194-94-no2663.tbcn.telia.com): 1 Time(s) unknown (218.150.6.100): 1 Time(s) unknown (218.24.10.226): 1 Time(s) unknown (218.6.64.194): 1 Time(s) unknown (218.7.246.205): 1 Time(s) unknown (218.76.146.176): 1 Time(s) unknown (222.138.31.218): 1 Time(s) unknown (223.197.220.67): 1 Time(s) unknown (223.82.117.189): 1 Time(s) unknown (223.84.253.7): 1 Time(s) unknown (25.182.62.50.host.secureserver.net): 1 Time(s) unknown (31.41.84.98): 1 Time(s) unknown (37.114.208.13): 1 Time(s) unknown (37.220.121.75): 1 Time(s) unknown (38.255.255.75): 1 Time(s) unknown (42.112.235.77.dyn.idknet.com): 1 Time(s) unknown (45.115.173.11): 1 Time(s) unknown (46.100.5.240): 1 Time(s) unknown (47.145.242.102): 1 Time(s) unknown (58.216.101.162): 1 Time(s) unknown (58.241.51.18): 1 Time(s) unknown (58.52.198.77): 1 Time(s) unknown (59.25.70.86): 1 Time(s) unknown (59.4.55.162): 1 Time(s) unknown (60-251-38-66.hinet-ip.hinet.net): 1 Time(s) unknown (60.223.247.218): 1 Time(s) unknown (61.138.113.187): 1 Time(s) unknown (65.20.168.53): 1 Time(s) unknown (65.20.173.57): 1 Time(s) unknown (65.20.174.63): 1 Time(s) unknown (65.20.198.229): 1 Time(s) unknown (65.20.204.17): 1 Time(s) unknown (80-186-144-129.elisa-mobile.fi): 1 Time(s) unknown (89.106.101.34.unicsbg.net): 1 Time(s) unknown (94.201.110.43): 1 Time(s) unknown (94.202.71.206): 1 Time(s) unknown (94.204.228.126): 1 Time(s) unknown (94.204.66.131): 1 Time(s) unknown (94.231.123.164): 1 Time(s) unknown (95.38.48.98): 1 Time(s) unknown (bba-217-165-96-19.alshamil.net.ae): 1 Time(s) unknown (c-73-138-72-68.hsd1.fl.comcast.net): 1 Time(s) unknown (c-73-143-150-28.hsd1.ma.comcast.net): 1 Time(s) unknown (c-98-52-116-108.hsd1.il.comcast.net): 1 Time(s) unknown (c188-151-27-45.bredband.tele2.se): 1 Time(s) unknown (cm222-166-167-89.hkcable.com.hk): 1 Time(s) unknown (d5152d437.static.telenet.be): 1 Time(s) unknown (h-81-170-195-184.a980.priv.bahnhof.se): 1 Time(s) unknown (hmx.static.otenet.gr): 1 Time(s) unknown (kd111099116183.ppp-bb.dion.ne.jp): 1 Time(s) unknown (p10073118-ipngn18601marunouchi.tokyo.ocn.ne.jp): 1 Time(s) unknown (static-188-137-34-72.leon.com.pl): 1 Time(s) unknown (wsip-174-78-247-218.sd.sd.cox.net): 1 Time(s) Invalid Users: Unknown Account: 193 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 4 Miscellaneous warnings 26.249K Bytes accepted 26,879 26.249K Bytes sent via SMTP 26,879 ======== ================================================== 2 Accepted 100.00% -------- -------------------------------------------------- 2 Total 100.00% ======== ================================================== 3 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 3 Total 4xx Rejects 100.00% ======== ================================================== 40 Connections 31 Connections lost (inbound) 40 Disconnections 2 Removed from queue 2 Sent via SMTP 1 SMTP dialog errors 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 23 Time(s) Failed logins from: 14.153.197.22: 6 times 24.86.28.152 (S0106001aae04a6d0.vc.shawcable.net): 1 time 27.128.203.51: 1 time 31.41.84.98 (98.84.41.31.ip4.feromedia.eu): 1 time 46.44.18.254 (46-44-18-254.silinet.ru): 1 time 46.101.40.31: 1 time 58.244.248.122 (122.248.244.58.adsl-pool.jlccptt.net.cn): 1 time 62.116.243.192 (192.fttbcentrum2.gavlenet.com): 1 time 80.220.189.126 (dsl-hkibng11-50dcbd-126.dhcp.inet.fi): 1 time 87.14.213.38 (host-87-14-213-38.retail.telecomitalia.it): 6 times 96.27.167.67 (d27-96-67-167.evv.wideopenwest.com): 5 times 103.36.84.194: 36 times 103.157.114.210 (210.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 113.106.88.146: 1 time 167.99.68.29: 1 time 171.217.93.19: 6 times 175.200.29.51: 6 times 175.202.52.89: 1 time 179.43.180.106 (hostedby.privatelayer.com): 28 times 181.117.244.39 (host39.181-117-244.telmex.net.ar): 6 times 183.81.169.238: 41 times 183.239.27.18: 6 times 186.96.145.241 (fixed-186-96-145-241.totalplay.net): 9 times 188.129.219.2: 1 time 190.107.30.116 (19010730116.ip71.static.mediacommerce.com.co): 1 time 212.70.149.150: 5 times 218.92.0.28: 6 times 218.92.0.33: 24 times 218.92.0.40: 12 times 218.92.0.43: 18 times 218.92.0.47: 24 times 218.92.0.51: 12 times 218.92.0.52: 6 times 218.92.0.53: 18 times 223.82.116.185: 1 time Illegal users from: 2001:470:1:332::157 (scan-49p.shadowserver.org): 1 time undef: 35 times 1.7.180.245: 2 times 14.48.52.161: 5 times 31.41.84.98 (98.84.41.31.ip4.feromedia.eu): 1 time 37.114.208.13: 1 time 37.220.121.75: 1 time 38.255.255.75: 1 time 41.207.248.204: 5 times 43.134.92.159: 1 time 45.115.173.11: 1 time 46.100.5.240: 1 time 47.145.242.102: 1 time 50.62.182.25 (25.182.62.50.host.secureserver.net): 1 time 58.52.198.77: 1 time 58.176.110.189 (058176110189.ctinets.com): 1 time 58.216.101.162: 1 time 58.241.51.18: 1 time 59.4.55.162: 1 time 59.25.70.86: 5 times 60.223.247.218 (218.247.223.60.adsl-pool.sx.cn): 1 time 60.251.38.66 (60-251-38-66.hinet-ip.hinet.net): 1 time 61.138.113.187: 1 time 62.122.184.252: 2 times 64.62.197.223 (scan-43l.shadowserver.org): 1 time 65.20.168.53: 1 time 65.20.173.57: 1 time 65.20.174.63: 1 time 65.20.198.229: 1 time 65.20.204.17: 1 time 65.20.251.41: 2 times 65.49.1.20 (scan-52k.shadowserver.org): 1 time 73.138.72.68 (c-73-138-72-68.hsd1.fl.comcast.net): 1 time 73.143.150.28 (c-73-143-150-28.hsd1.ma.comcast.net): 1 time 77.235.112.42 (42.112.235.77.dyn.idknet.com): 1 time 79.129.206.144 (hmx.static.otenet.gr): 1 time 80.186.144.129 (80-186-144-129.elisa-mobile.fi): 1 time 81.82.212.55 (d5152d437.static.telenet.be): 1 time 81.170.195.184 (h-81-170-195-184.A980.priv.bahnhof.se): 1 time 89.106.101.34 (89.106.101.34.unicsbg.net): 1 time 94.201.110.43: 1 time 94.202.71.206: 1 time 94.204.66.131: 1 time 94.204.228.126: 1 time 94.231.123.164 (dhcp-dynamic-94-231-123-164.broadband.nlink.ru): 1 time 95.38.48.98: 1 time 95.153.79.186 (186.79.153.95.dyn.idknet.com): 1 time 98.52.116.108 (c-98-52-116-108.hsd1.il.comcast.net): 1 time 103.3.43.242 (static-242.43.3.103-tataidc.co.in): 1 time 103.125.42.78 (host-103-125-42-78.myrepublic.co.id): 1 time 103.157.114.66 (66.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.114.122 (122.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.10 (10.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.106 (106.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.162 (162.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.219.211.162: 1 time 108.170.115.35 (ool-6caa7323.static.optonline.net): 1 time 109.233.21.109: 1 time 110.25.88.184 (110-25-88-184.adsl.fetnet.net): 1 time 110.39.51.118 (WGPON-3951-118.wateen.net): 1 time 111.23.117.108: 1 time 111.99.116.183 (KD111099116183.ppp-bb.dion.ne.jp): 1 time 113.11.34.221 (113-11-34-221-smile.com.bd): 1 time 115.241.228.34: 1 time 116.110.53.123: 1 time 117.186.145.98: 1 time 118.41.204.48: 1 time 118.41.204.91: 1 time 121.139.52.211: 5 times 121.202.206.37 (m121-202-206-37.smartone.com): 1 time 122.14.197.22: 1 time 123.202.18.45 (123202018045.ctinets.com): 1 time 125.66.243.1 (1.243.66.125.broad.zg.sc.dynamic.163data.com.cn): 3 times 134.249.147.136 (134-249-147-136.broadband.kyivstar.net): 1 time 136.232.68.50: 1 time 153.213.133.118 (p10073118-ipngn18601marunouchi.tokyo.ocn.ne.jp): 1 time 157.245.106.108: 1 time 159.54.133.25: 1 time 165.231.143.243 (undefined.hostname.localhost): 1 time 167.172.230.140: 7 times 171.212.103.245: 1 time 174.78.247.218 (wsip-174-78-247-218.sd.sd.cox.net): 1 time 175.101.150.15 (175.101.150.15.static.excellmedia.net): 1 time 175.202.52.89: 1 time 175.203.118.149: 4 times 176.121.9.169: 1 time 176.221.235.140: 1 time 177.72.87.7 (7.lifedns.com.br): 1 time 177.100.213.51 (b164d533.virtua.com.br): 1 time 179.61.18.4: 2 times 180.242.212.153: 1 time 183.6.99.197: 1 time 183.105.173.232: 5 times 183.136.225.29: 1 time 185.11.61.88: 2 times 185.196.8.151: 4 times 187.33.161.18 (18.161.33.187.in-addr.arpa.verointernet.com.br): 1 time 188.137.34.72 (static-188-137-34-72.leon.com.pl): 1 time 188.151.27.45 (c188-151-27-45.bredband.tele2.se): 1 time 188.169.66.154 (188-169-66-154.dsl.utg.ge): 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 1 time 190.241.18.12: 1 time 193.43.69.204: 1 time 193.252.152.214: 1 time 194.4.43.75 (host-194-4-43-75.net.intranetwifi.it): 2 times 200.26.233.245: 1 time 200.85.41.38: 1 time 202.165.14.236: 2 times 210.4.68.72 (210.4.68-72.bdcom.com): 1 time 211.62.68.204: 5 times 211.169.212.206: 1 time 211.185.219.143: 5 times 212.70.149.150: 21 times 217.165.96.19 (bba-217-165-96-19.alshamil.net.ae): 1 time 217.210.89.93 (217-210-89-93-no2663.tbcn.telia.com): 1 time 217.215.194.94 (217-215-194-94-no2663.tbcn.telia.com): 1 time 218.6.64.194: 1 time 218.7.246.205: 1 time 218.24.10.226: 1 time 218.76.146.176: 1 time 218.150.6.100: 1 time 221.157.41.231: 4 times 222.121.250.116: 3 times 222.138.31.218 (hn.kd.ny.adsl): 1 time 222.166.167.89 (cm222-166-167-89.hkcable.com.hk): 1 time 223.82.117.189: 1 time 223.84.253.7: 1 time 223.197.220.67 (223-197-220-67.static.imsbiz.com): 1 time **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 6 Monate

1
0
0 / 0

Cron <root@h2361197> /srv/sommer17-webseite/update.sh

by root＠zapf.in

fatal: unable to access 'https://github.com/zapf-berlin/sommer17-webseite.git/': Could not resolve host: github.com

1 Jahr, 6 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Mon Mar 25 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-24 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 71:70 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 103.77.240.235 -> cloudflare.com:443: 1 Time(s) 87.121.69.52 -> google.com:443: 2 Time(s) A total of 10 sites probed the server 107.170.246.21 109.74.204.123 124.156.9.47 138.68.137.195 159.75.124.87 162.243.138.59 35.203.211.156 44.220.188.153 64.62.197.34 78.153.140.179 Requests with error response codes 400 Bad Request null: 18 Time(s) /: 5 Time(s) mstshash=Administr: 4 Time(s) *: 2 Time(s) google.com:443: 2 Time(s) (E\x06\xCCDg\x8BF\xDF;\xCA@\xC5\xB6\x8B\x0 ... C0\xAD\xC0$\xC0: 1 Time(s) *\xF1d\xC2\x1C\x08\x8A\x17\x9D\x84\x1B\x8A ... C\x00<\x00/\x00: 1 Time(s) /.env: 1 Time(s) /8yt7: 1 Time(s) /HNAP1: 1 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2 ... %2e/.%2e/bin/sh: 1 Time(s) /docs/cplugError.html/: 1 Time(s) /ghauri: 1 Time(s) /main.aspx: 1 Time(s) /session: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) 1\xD1'\xA3\xAEPCh\xA4\xB8\xA7-\x07\x0F\xD8 ... C0$\x13\x05\xC0: 1 Time(s) ;wO\xF4\x8E\xEB\x9A\xA5\x8B\xBA\x0F+#_\xBF ... C\x00<\x00/\x00: 1 Time(s) LM: 1 Time(s) L\x074/e\x0EI\x8C\xBA\x1A!$\xE4,\x138\xF8\ ... x09\xC0\x13\xC0: 1 Time(s) Q\xA5\xD4\xE0x\xB2\xB6MZ\xB2\xBB|\xC0\xCE~\xF4: 1 Time(s) R\xF9o\x81\x00\x01<\xCC\x14\xCC\x13\xCC\x1 ... C0$\xC0\x14\xC0: 1 Time(s) T\x8F\x02\xCB\xAC\x99\xDA: 1 Time(s) \x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x ... x00\x00\x00\x00: 1 Time(s) \x0B<v\x98z\xB5p\xBF&BEhI\x99\x22)2\xDB\xB ... D]^\xAC\xAD\x86: 1 Time(s) \x91\x95\xE8&\xDC|\x1A\x0E\xD20\xD8s\x0C\x ... C\x00<\x00/\x00: 1 Time(s) \x92\xA4\xC5\xB1PZ: 1 Time(s) \xAB\xB7\xB2\xD8\x1F\xA5\x9F[\xCF~\x05!\x0 ... C0\xAD\xC0$\xC0: 1 Time(s) \xB1: 1 Time(s) \xC6j,\xD9%\x07\xD5\xFB\x98cx\x8C\xEF/\xD6 ... xBE\x00\xBD\xC0: 1 Time(s) \xD8\xA5\xB2\xC4\x1D\xD3\xE8\x10\x06a-*<\x ... C0\xAE\xC0+\xC0: 1 Time(s) \xE1g\x19\x1F\x9AF,h\x88?\xEF\xB7?\x7F\x8E ... C0$\x13\x05\xC0: 1 Time(s) \xE6\xB9\x96v\xC0\xE2\xD8}b|;\x03\x16\xB1\ ... C0$\x13\x05\xC0: 1 Time(s) \xE7bg\xBE\x94\x8F\xA7\xD7\xE4'$\x1F\xED\x ... x13\xC0\x11\x00: 1 Time(s) \xF7\xAE\xA4\x16\xDDC\xAE\xBC#\xD3\xBC\xAF ... C0\xAE\xC0+\xC0: 1 Time(s) c3\x07\xC3\x8B\xA0\xE5\xFD`\x89\xDE\xBFP\x ... C0\xAE\xC0+\xC0: 1 Time(s) cloudflare.com:443: 1 Time(s) http://httpbin.org/ip: 1 Time(s) q$h\xA2\xD0\xFFDtr: 1 Time(s) 500 Internal Server Error /: 17 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 2 Time(s) /.env: 1 Time(s) /.env.bk: 1 Time(s) /.git/config: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /client/get_targets: 1 Time(s) /dns-query: 1 Time(s) /dns-query?dns=AAABAAABAAAAAAAAA3d3dwdleGFtcGxlA2NvbQAAAQAB: 1 Time(s) /dns-query?dns=Fj4BAAABAAAAAAAABmdvb2dsZQNjb20AAAEAAQ: 1 Time(s) /favicon.ico: 1 Time(s) /geoserver/web/: 1 Time(s) /ghauri: 1 Time(s) /webui/: 1 Time(s) 502 Bad Gateway /Z7JgFtprRTu4mj0ux-SJ3w/pdf: 1 Time(s) /ak_wiki/pdf: 1 Time(s) /w1op49QpSGyk43xo0up_Aw/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (64.23.227.68): 183 Time(s) root (183.81.169.238): 47 Time(s) root (179.43.180.106): 39 Time(s) root (64.23.227.68): 25 Time(s) unknown (167.71.103.243): 22 Time(s) root (103.36.84.194): 18 Time(s) unknown (170.64.214.7): 13 Time(s) unknown (212.70.149.150): 13 Time(s) root (171.217.93.19): 12 Time(s) root (113.106.88.146): 6 Time(s) root (221.156.105.215): 6 Time(s) root (222.79.103.8): 6 Time(s) root (93.88.107.47): 6 Time(s) unknown (211.223.191.20): 6 Time(s) unknown (211.229.98.228): 6 Time(s) unknown (220.124.21.35): 6 Time(s) unknown (221.162.65.165): 6 Time(s) unknown (fixed-186-96-145-241.totalplay.net): 6 Time(s) postgres (64.23.227.68): 5 Time(s) root (112.167.200.181): 5 Time(s) root (121.142.17.156): 5 Time(s) root (167.71.103.243): 5 Time(s) root (210.123.238.116): 5 Time(s) root (211.184.124.242): 5 Time(s) root (220.117.31.26): 5 Time(s) root (220.125.252.16): 5 Time(s) root (220.77.249.41): 5 Time(s) root (221.157.41.238): 5 Time(s) root (222.96.207.196): 5 Time(s) root (59.31.19.62): 5 Time(s) root (59.31.54.31): 5 Time(s) unknown (118.45.193.229): 5 Time(s) unknown (14.43.121.244): 5 Time(s) unknown (202.165.14.236): 5 Time(s) root (170.64.214.7): 4 Time(s) unknown (1.217.62.172): 4 Time(s) unknown (112.166.116.29): 4 Time(s) unknown (112.186.124.85): 4 Time(s) unknown (121.130.125.178): 4 Time(s) unknown (185.224.128.34): 4 Time(s) unknown (218.148.122.5): 4 Time(s) unknown (121.144.112.11): 3 Time(s) unknown (183.96.2.72): 3 Time(s) unknown (183.99.217.119): 3 Time(s) unknown (210.126.61.89): 3 Time(s) unknown (211.51.90.178): 3 Time(s) unknown (222.104.30.32): 3 Time(s) unknown (36.137.22.65): 3 Time(s) root (212.70.149.150): 2 Time(s) root (d27-96-67-167.evv.wideopenwest.com): 2 Time(s) unknown (111.21.45.74): 2 Time(s) unknown (115.20.208.119): 2 Time(s) unknown (139.198.16.118): 2 Time(s) unknown (150.129.48.228): 2 Time(s) unknown (185.196.8.151): 2 Time(s) unknown (202.53.94.195): 2 Time(s) unknown (203.134.210.45): 2 Time(s) unknown (220.86.238.236): 2 Time(s) unknown (41.207.248.204): 2 Time(s) unknown (45.115.173.11): 2 Time(s) mysql (170.64.214.7): 1 Time(s) nobody (195.142.192.2): 1 Time(s) nobody (217-211-252-37-no2663.tbcn.telia.com): 1 Time(s) nobody (5.21.5.139): 1 Time(s) nobody (99.232.240.108): 1 Time(s) root (118.41.18.210): 1 Time(s) root (41.207.248.204): 1 Time(s) root (46.101.40.31): 1 Time(s) root (49.248.143.253): 1 Time(s) root (60-251-38-66.hinet-ip.hinet.net): 1 Time(s) root (fixed-186-96-145-241.totalplay.net): 1 Time(s) root (n1164828130.netvigator.com): 1 Time(s) unknown (1.180.228.194): 1 Time(s) unknown (1.28.126.90): 1 Time(s) unknown (1.7.180.245): 1 Time(s) unknown (102.38.3.72): 1 Time(s) unknown (103.113.33.43): 1 Time(s) unknown (103.146.233.169): 1 Time(s) unknown (103.157.114.122): 1 Time(s) unknown (103.157.114.66): 1 Time(s) unknown (103.157.88.15): 1 Time(s) unknown (103.41.173.52): 1 Time(s) unknown (110.39.183.46): 1 Time(s) unknown (111-70-25-233.emome-ip.hinet.net): 1 Time(s) unknown (111-70-26-117.emome-ip.hinet.net): 1 Time(s) unknown (112.157.156.20): 1 Time(s) unknown (112.161.171.91): 1 Time(s) unknown (115-179-4-58.east.ap.gmo-isp.jp): 1 Time(s) unknown (116.109.218.66): 1 Time(s) unknown (116.131.53.14): 1 Time(s) unknown (117.4.136.219): 1 Time(s) unknown (118.41.204.72): 1 Time(s) unknown (119.193.110.81): 1 Time(s) unknown (119.199.21.75): 1 Time(s) unknown (119246235167.ctinets.com): 1 Time(s) unknown (120.202.24.117): 1 Time(s) unknown (121.144.100.161): 1 Time(s) unknown (121.184.38.49): 1 Time(s) unknown (121.202.205.222): 1 Time(s) unknown (122.139.165.122): 1 Time(s) unknown (123.212.20.131): 1 Time(s) unknown (124.104.151.235): 1 Time(s) unknown (125.136.93.114): 1 Time(s) unknown (125.209.118.235): 1 Time(s) unknown (125.66.243.1): 1 Time(s) unknown (14.43.215.190): 1 Time(s) unknown (151.237.75.114): 1 Time(s) unknown (157.245.106.108): 1 Time(s) unknown (162.191.182.142): 1 Time(s) unknown (165.16.124.20): 1 Time(s) unknown (175.201.194.225): 1 Time(s) unknown (175.204.58.16): 1 Time(s) unknown (175.212.36.31): 1 Time(s) unknown (178.150.135.19): 1 Time(s) unknown (182.75.197.174): 1 Time(s) unknown (183.196.174.235): 1 Time(s) unknown (185.232.36.17): 1 Time(s) unknown (185.235.231.159): 1 Time(s) unknown (185.39.167.72.host.secureserver.net): 1 Time(s) unknown (189.84.253.73): 1 Time(s) unknown (190.196.165.186): 1 Time(s) unknown (19010730116.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (19010730119.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (19010730120.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (194.44.200.98): 1 Time(s) unknown (195.158.26.59): 1 Time(s) unknown (2.181.0.1): 1 Time(s) unknown (200.108.131.2): 1 Time(s) unknown (200.229.209.202): 1 Time(s) unknown (201.236.204.98): 1 Time(s) unknown (201.48.32.49): 1 Time(s) unknown (202.88.237.198): 1 Time(s) unknown (203.134.219.10): 1 Time(s) unknown (207.145.9.109.rev.sfr.net): 1 Time(s) unknown (210.3.53.50): 1 Time(s) unknown (211.109.93.134): 1 Time(s) unknown (211.48.54.132): 1 Time(s) unknown (213-67-213-21-no2663.tbcn.telia.com): 1 Time(s) unknown (218.159.54.125): 1 Time(s) unknown (218.188.217.102): 1 Time(s) unknown (218.241.204.187): 1 Time(s) unknown (218.27.148.86): 1 Time(s) unknown (219.139.192.226): 1 Time(s) unknown (220-135-162-68.hinet-ip.hinet.net): 1 Time(s) unknown (220.121.93.140): 1 Time(s) unknown (220.123.75.96): 1 Time(s) unknown (220.124.34.12): 1 Time(s) unknown (220.78.126.27): 1 Time(s) unknown (221.13.138.138): 1 Time(s) unknown (222.76.48.73): 1 Time(s) unknown (223.197.223.237): 1 Time(s) unknown (25.red-95-124-251.staticip.rima-tde.net): 1 Time(s) unknown (38.255.229.192): 1 Time(s) unknown (41.215.147.90): 1 Time(s) unknown (42.112.21.207): 1 Time(s) unknown (45.225.225.195): 1 Time(s) unknown (45.71.24.198): 1 Time(s) unknown (46.100.5.240): 1 Time(s) unknown (5.32.32.14): 1 Time(s) unknown (59.1.233.78): 1 Time(s) unknown (59.26.16.137): 1 Time(s) unknown (59.4.13.146): 1 Time(s) unknown (59.4.55.162): 1 Time(s) unknown (6.ip-92-222-171.eu): 1 Time(s) unknown (60-251-229-144.hinet-ip.hinet.net): 1 Time(s) unknown (60.53.254.113): 1 Time(s) unknown (61-218-134-63.hinet-ip.hinet.net): 1 Time(s) unknown (61.84.162.66): 1 Time(s) unknown (65.20.142.24): 1 Time(s) unknown (65.20.144.244): 1 Time(s) unknown (65.20.162.185): 1 Time(s) unknown (65.20.169.99): 1 Time(s) unknown (65.20.173.217): 1 Time(s) unknown (65.20.174.246): 1 Time(s) unknown (65.20.194.91): 1 Time(s) unknown (65.20.195.129): 1 Time(s) unknown (65.20.197.148): 1 Time(s) unknown (65.20.247.94): 1 Time(s) unknown (68-93-137-219.lightspeed.rlghnc.sbcglobal.net): 1 Time(s) unknown (74.123.14.3): 1 Time(s) unknown (75.99.158.78): 1 Time(s) unknown (78.186.54.65): 1 Time(s) unknown (79.117.56.226): 1 Time(s) unknown (80-186-144-129.elisa-mobile.fi): 1 Time(s) unknown (80.210.38.47): 1 Time(s) unknown (83.239.171.226): 1 Time(s) unknown (84.175.242.35.bc.googleusercontent.com): 1 Time(s) unknown (89.23.116.75): 1 Time(s) unknown (91.238.69.91): 1 Time(s) unknown (92.52.146.18): 1 Time(s) unknown (93.126.21.4): 1 Time(s) unknown (94.204.213.130): 1 Time(s) unknown (94.207.99.76): 1 Time(s) unknown (bba-2-50-67-45.alshamil.net.ae): 1 Time(s) unknown (c-76-119-126-40.hsd1.ma.comcast.net): 1 Time(s) unknown (c102-93.i13-26.melita.com): 1 Time(s) unknown (c151-177-1-232.bredband.tele2.se): 1 Time(s) unknown (c188-149-108-232.bredband.tele2.se): 1 Time(s) unknown (c188-151-30-197.bredband.tele2.se): 1 Time(s) unknown (c188-151-33-181.bredband.tele2.se): 1 Time(s) unknown (c80-216-118-65.bredband.tele2.se): 1 Time(s) unknown (d66-222-166-36.abhsia.telus.net): 1 Time(s) unknown (fpa446bb1c.chbd107.ap.nuro.jp): 1 Time(s) unknown (host-208-96-90-105.public.eastlink.ca): 1 Time(s) unknown (host-95-255-196-183.business.telecomitalia.it): 1 Time(s) unknown (host2.osm3jm.ondsl.gr): 1 Time(s) unknown (ip-50-5-23-84.dynamic.fuse.net): 1 Time(s) unknown (mvx-200-142-103-202.mundivox.com): 1 Time(s) unknown (pl71558.ag2525.nttpc.ne.jp): 1 Time(s) Invalid Users: Unknown Account: 556 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 26.806K Bytes accepted 27,449 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 3 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 3 Total 4xx Rejects 100.00% ======== ================================================== 15 Connections 10 Connections lost (inbound) 15 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 5 Time(s) root : 13 Time(s) Failed logins from: 5.21.5.139 (dynamic.isp.ooredoo.om): 1 time 41.207.248.204: 1 time 46.101.40.31: 1 time 49.248.143.253 (static-253.143.248.49-tataidc.co.in): 1 time 59.31.19.62: 6 times 59.31.54.31: 6 times 60.251.38.66 (60-251-38-66.hinet-ip.hinet.net): 1 time 64.23.227.68: 30 times 93.88.107.47 (host47-107-88-93.convergenze.it): 6 times 96.27.167.67 (d27-96-67-167.evv.wideopenwest.com): 2 times 99.232.240.108 (cpea84e3f47e063-cma84e3f47e060.cpe.net.cable.rogers.com): 1 time 103.36.84.194: 18 times 112.167.200.181: 6 times 113.106.88.146: 6 times 116.48.28.130 (n1164828130.netvigator.com): 1 time 118.41.18.210: 1 time 121.142.17.156: 6 times 167.71.103.243: 5 times 170.64.214.7: 5 times 171.217.93.19: 12 times 179.43.180.106 (hostedby.privatelayer.com): 39 times 183.81.169.238: 47 times 186.96.145.241 (fixed-186-96-145-241.totalplay.net): 1 time 195.142.192.2: 1 time 210.123.238.116: 6 times 211.184.124.242: 6 times 212.70.149.150: 2 times 217.211.252.37 (217-211-252-37-no2663.tbcn.telia.com): 1 time 220.77.249.41: 6 times 220.117.31.26: 6 times 220.125.252.16: 6 times 221.156.105.215: 6 times 221.157.41.238: 6 times 222.79.103.8: 6 times 222.96.207.196: 6 times Illegal users from: 2001:470:1:332::4 (scan-38af.shadowserver.org): 1 time undef: 152 times 1.7.180.245: 1 time 1.28.126.90: 1 time 1.180.228.194: 1 time 1.217.62.172: 4 times 2.50.67.45 (bba-2-50-67-45.alshamil.net.ae): 1 time 2.181.0.1: 1 time 5.32.32.14: 1 time 14.43.121.244: 5 times 14.43.215.190: 5 times 35.242.175.84 (84.175.242.35.bc.googleusercontent.com): 1 time 36.137.22.65: 3 times 38.255.229.192: 1 time 41.207.248.204: 2 times 41.215.147.90: 1 time 42.112.21.207: 1 time 43.134.92.75: 1 time 45.71.24.198: 1 time 45.115.173.11: 2 times 45.225.225.195: 1 time 46.100.5.240: 1 time 47.236.131.201: 6 times 50.5.23.84 (ip-50-5-23-84.dynamic.fuse.net): 1 time 59.1.233.78: 5 times 59.4.13.146: 5 times 59.4.55.162: 1 time 59.26.16.137: 5 times 60.53.254.113: 1 time 60.251.229.144 (60-251-229-144.hinet-ip.hinet.net): 1 time 61.84.162.66: 1 time 61.218.134.63 (61-218-134-63.hinet-ip.hinet.net): 1 time 64.23.227.68: 183 times 64.62.197.67 (scan-38f.shadowserver.org): 1 time 65.20.142.24: 1 time 65.20.144.244: 1 time 65.20.162.185: 1 time 65.20.169.99: 1 time 65.20.173.217: 1 time 65.20.174.246: 1 time 65.20.194.91: 1 time 65.20.195.129: 1 time 65.20.197.148: 1 time 65.20.247.94: 1 time 66.222.166.36 (d66-222-166-36.abhsia.telus.net): 1 time 66.240.192.82: 1 time 68.93.137.219 (68-93-137-219.lightspeed.rlghnc.sbcglobal.net): 1 time 72.167.39.185 (185.39.167.72.host.secureserver.net): 1 time 74.123.14.3: 1 time 75.99.158.78 (ool-4b639e4e.static.optonline.net): 1 time 76.119.126.40 (c-76-119-126-40.hsd1.ma.comcast.net): 1 time 78.186.54.65 (78.186.54.65.static.ttnet.com.tr): 1 time 79.117.56.226 (79-117-56-226.digimobil.es): 1 time 80.186.144.129 (80-186-144-129.elisa-mobile.fi): 1 time 80.210.38.47: 1 time 80.216.118.65 (c80-216-118-65.bredband.tele2.se): 1 time 83.239.171.226: 1 time 89.23.116.75: 1 time 91.238.69.91 (tvinnet-91-238-69-91.tvinnet.ru): 1 time 92.52.146.18: 1 time 92.222.171.6 (6.ip-92-222-171.eu): 1 time 93.126.21.4 (asmanfaraz.4.21.126.93.in-addr.arpa): 1 time 94.17.102.93 (c102-93.i13-26.melita.com): 1 time 94.67.125.162 (host2.osm3jm.ondsl.gr): 1 time 94.204.213.130: 1 time 94.207.99.76: 1 time 95.124.251.25 (25.red-95-124-251.staticip.rima-tde.net): 1 time 95.255.196.183 (host-95-255-196-183.business.telecomitalia.it): 1 time 102.38.3.72: 1 time 103.41.173.52: 1 time 103.113.33.43: 1 time 103.146.233.169: 1 time 103.157.88.15: 1 time 103.157.114.66 (66.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.114.122 (122.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 109.9.145.207 (207.145.9.109.rev.sfr.net): 1 time 109.74.204.123 (academyforinternetresearch.org): 1 time 110.39.183.46 (WGPON-39183-46.wateen.net): 1 time 111.21.45.74: 2 times 111.70.25.233 (111-70-25-233.emome-ip.hinet.net): 1 time 111.70.26.117 (111-70-26-117.emome-ip.hinet.net): 1 time 112.157.156.20: 5 times 112.161.171.91: 5 times 112.166.116.29: 4 times 112.186.124.85: 5 times 115.20.208.119: 6 times 115.179.4.58 (115-179-4-58.east.ap.gmo-isp.jp): 1 time 116.109.218.66: 1 time 116.131.53.14: 1 time 117.4.136.219 (localhost): 1 time 118.41.204.72: 1 time 118.45.193.229: 6 times 119.193.110.81: 5 times 119.199.21.75: 5 times 119.246.235.167 (119246235167.ctinets.com): 1 time 120.202.24.117: 1 time 121.130.125.178: 4 times 121.144.100.161: 5 times 121.144.112.11: 3 times 121.184.38.49: 5 times 121.202.205.222 (m121-202-205-222.smartone.com): 1 time 122.139.165.122 (122.165.139.122.adsl-pool.jlccptt.net.cn): 1 time 123.212.20.131: 1 time 124.104.151.235 (124.104.151.235.pldt.net): 1 time 125.66.243.1 (1.243.66.125.broad.zg.sc.dynamic.163data.com.cn): 1 time 125.136.93.114: 5 times 125.209.118.235 (webmail.macter.com): 1 time 133.130.230.134 (pl71558.ag2525.nttpc.ne.jp): 1 time 139.198.16.118: 2 times 150.129.48.228: 2 times 151.177.1.232 (c151-177-1-232.bredband.tele2.se): 1 time 151.237.75.114: 1 time 157.245.106.108: 1 time 162.191.182.142: 1 time 164.70.187.28 (fpa446bb1c.chbd107.ap.nuro.jp): 1 time 165.16.124.20: 1 time 167.71.103.243: 22 times 170.64.214.7: 14 times 175.201.194.225: 5 times 175.204.58.16: 5 times 175.212.36.31: 5 times 178.150.135.19 (19.135.150.178.triolan.net): 1 time 182.75.197.174 (nsg-static-174.197.75.182-airtel.com): 1 time 183.96.2.72: 3 times 183.99.217.119: 3 times 183.196.174.235: 1 time 185.196.8.151: 2 times 185.224.128.34: 4 times 185.232.36.17: 1 time 185.235.231.159 (ppp-185-235-231-159.kmv.ru): 1 time 186.96.145.241 (fixed-186-96-145-241.totalplay.net): 6 times 188.149.108.232 (c188-149-108-232.bredband.tele2.se): 1 time 188.151.30.197 (c188-151-30-197.bredband.tele2.se): 1 time 188.151.33.181 (c188-151-33-181.bredband.tele2.se): 1 time 189.84.253.73 (189.84.253.73.fttx.gigalink.net.br): 1 time 190.107.30.116 (19010730116.ip71.static.mediacommerce.com.co): 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 1 time 190.107.30.119 (19010730119.ip71.static.mediacommerce.com.co): 1 time 190.107.30.120 (19010730120.ip71.static.mediacommerce.com.co): 1 time 190.196.165.186 (static.190.196.165.186.gtdinternet.com): 1 time 194.44.200.98: 1 time 195.158.26.59: 1 time 200.108.131.2: 1 time 200.142.103.202 (mvx-200-142-103-202.mundivox.com): 1 time 200.229.209.202 (200-229-209-202.r2webnet.com.br): 1 time 201.48.32.49 (201-048-032-049.static.ctbctelecom.com.br): 1 time 201.236.204.98 (laofrendasa.com): 1 time 202.53.94.195 (www.nettlinx.com): 2 times 202.88.237.198 (198.237.88.202.asianet.co.in): 1 time 202.165.14.236: 5 times 203.134.210.45: 2 times 203.134.219.10: 1 time 208.96.90.105 (host-208-96-90-105.public.eastlink.ca): 1 time 210.3.53.50 (static-bbs-50-53-3-210-on-nets.com): 1 time 210.126.61.89: 3 times 211.48.54.132: 5 times 211.51.90.178: 3 times 211.109.93.134: 1 time 211.223.191.20: 6 times 211.229.98.228: 6 times 212.70.149.150: 13 times 213.67.213.21 (213-67-213-21-no2663.tbcn.telia.com): 1 time 218.27.148.86 (86.148.27.218.adsl-pool.jlccptt.net.cn): 1 time 218.148.122.5: 4 times 218.159.54.125: 5 times 218.188.217.102 (static-bbs-102-217-188-218-on-nets.com): 1 time 218.241.204.187: 1 time 219.139.192.226: 1 time 220.78.126.27: 5 times 220.86.238.236: 2 times 220.121.93.140: 5 times 220.123.75.96: 5 times 220.124.21.35: 6 times 220.124.34.12: 1 time 220.135.162.68 (220-135-162-68.hinet-ip.hinet.net): 1 time 221.13.138.138 (hn.kd.smx.adsl): 1 time 221.162.65.165: 6 times 222.76.48.73 (73.48.76.222.broad.fz.fj.dynamic.163data.com.cn): 1 time 222.104.30.32: 3 times 223.197.223.237 (223-197-223-237.static.imsbiz.com): 1 time **Unmatched Entries** Protocol major versions differ for 109.74.204.123: SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 vs. SSH-1.5-NmapNSE_1.0 : 1 time(s) error: buffer_get_bignum2_ret: bignum is negative [preauth] : 1 time(s) Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 1 time(s) fatal: buffer_get_bignum2: buffer error [preauth] : 1 time(s) Protocol major versions differ for 109.74.204.123: SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 vs. SSH-1.5-Nmap-SSH1-Hostkey : 1 time(s) fatal: Unable to negotiate a key exchange method [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sun Mar 24 04:42:04 2024 Date Range Processed: yesterday ( 2024-Mar-23 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [125:126] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 185.150.26.251 -> zapf.wiki:443: 1 Time(s) 87.121.69.52 -> google.com:443: 4 Time(s) A total of 8 sites probed the server 107.170.240.46 139.59.92.64 185.100.87.136 198.235.24.170 205.210.31.111 64.62.197.102 66.240.205.34 91.92.250.119 Requests with error response codes 400 Bad Request null: 10 Time(s) *: 8 Time(s) /: 4 Time(s) google.com:443: 4 Time(s) mstshash=Administr: 2 Time(s) /.ghauri: 1 Time(s) /.sqlmap: 1 Time(s) /gM\x01\x98\xE0\x8C\xDE\xFA\x06\x9E\xF8\xA ... x09\xC0\x13\xC0: 1 Time(s) /hello: 1 Time(s) /login: 1 Time(s) /manager/html: 1 Time(s) /manager/text/list: 1 Time(s) =: 1 Time(s) M\xCC7\xAFo\x94\x03\x5C\x93A\xCD\x00\xC5\x ... x09\xC0\x13\xC0: 1 Time(s) \x01\x00\x01\x1C\x03\x03\xD5\x5C%\xD5\xC7\ ... xAD\xD0\x82\xC9: 1 Time(s) \x09\xC3\xC4\xA0\xD0?\x9B]\xA9.\x11\xF9H\x ... x09\xC0\x13\xC0: 1 Time(s) \x0E|H\xB1\xB4R\x15\x92\xC3\xA58\xD5E\xA4\ ... x09\xC0\x13\xC0: 1 Time(s) \x90\xA2\xE9g\x0E;\xF5oh\x06\xD7\x22\x86\x ... #\xC0'\x00g\xC0: 1 Time(s) \xA7:\xD7\x15\xC5{\xDA\x06\xD0S*\xD7\x89\x ... x09\xC0\x13\xC0: 1 Time(s) \xBD\xC0\xC0'\xE8\xAD\x0C4\x90\xA6a\x1D\xDE\x82\xD2Z\xDA: 1 Time(s) \xC1\xA2\x14\xC1rXf\xF5\xCD\x96\x06]\xFE\x ... D\xC0$\xC0(\xC0: 1 Time(s) \xC5zB\xF4)\x96\xDBB\xE5\x10z\x0E\x02\xE8\ ... x09\xC0\x13\xC0: 1 Time(s) \xCEj`\xAC\x22ntu\x8D\x8B\x89u\xC8\xDB\x93 ... x09\xC0\x13\xC0: 1 Time(s) \xCF,o\xDB;\x0C\xEF\xD2\x87\x0B\xD7\xBDg7\ ... x09\xC0\x13\xC0: 1 Time(s) \xEDs\x05\xA1l\xE4\xB2+U\x938\xC8!\x8F\x0B ... xF3\xB8\xF6\x92: 1 Time(s) \xEE4\x9Bs\x97\xBE\xD6-7\xF7\xAB\xB4\x8A\x ... x09\xC0\x13\xC0: 1 Time(s) mzup\x93ciCt\x957K\xB8\xF4I6\xF4\x91q3p\x1 ... x09\xC0\x13\xC0: 1 Time(s) zapf.wiki:443: 1 Time(s) 404 Not Found /.docker/laravel/app/.env: 2 Time(s) /: 1 Time(s) /wp-content/plugins/wp-automatic/css/style.css: 1 Time(s) /wp-plain.php: 1 Time(s) 500 Internal Server Error /: 21 Time(s) /.env: 4 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 2 Time(s) /client/get_targets: 2 Time(s) /favicon.ico: 2 Time(s) /.ghauri: 1 Time(s) /.git/config: 1 Time(s) /.sqlmap: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /RDWeb/Pages/en-US/login.aspx: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /autodiscover/autodiscover.json?@zdi/Powershell: 1 Time(s) /login: 1 Time(s) /robots.txt: 1 Time(s) /webui/: 1 Time(s) 502 Bad Gateway /.gitlab-ci/.env: 2 Time(s) /.vscode/.env: 2 Time(s) /mailer/.env: 1 Time(s) /register/pdf: 1 Time(s) /reso_abschlussarbeiten/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (167.71.103.243): 246 Time(s) unknown (64.23.227.68): 163 Time(s) root (218.92.0.28): 42 Time(s) root (218.92.0.33): 42 Time(s) root (218.92.0.43): 41 Time(s) root (183.81.169.238): 40 Time(s) root (218.92.0.40): 35 Time(s) root (218.92.0.55): 35 Time(s) root (218.92.0.52): 32 Time(s) root (218.92.0.51): 30 Time(s) root (218.92.0.53): 30 Time(s) root (218.92.0.45): 24 Time(s) root (167.71.103.243): 23 Time(s) root (171.217.93.19): 23 Time(s) root (218.92.0.59): 23 Time(s) root (179.43.180.106): 18 Time(s) root (218.92.0.47): 18 Time(s) unknown (64.23.224.234): 17 Time(s) root (64.23.227.68): 15 Time(s) unknown (212.70.149.150): 14 Time(s) root (host-87-3-79-220.retail.telecomitalia.it): 12 Time(s) unknown (194.169.175.35): 7 Time(s) root (103.36.84.194): 6 Time(s) root (106.52.230.254): 6 Time(s) root (119247141124.ctinets.com): 6 Time(s) root (123-205-2-124.adsl.dynamic.seed.net.tw): 6 Time(s) root (202.70.82.190): 6 Time(s) unknown (112.163.25.75): 6 Time(s) unknown (118.35.51.90): 6 Time(s) unknown (119.202.230.211): 6 Time(s) unknown (121.184.105.238): 6 Time(s) unknown (125.142.17.26): 6 Time(s) unknown (175.197.211.68): 6 Time(s) unknown (211.106.142.48): 6 Time(s) unknown (222.105.169.147): 6 Time(s) unknown (222.111.33.116): 6 Time(s) unknown (61.72.210.218): 6 Time(s) root (118.38.54.117): 5 Time(s) root (119.206.36.112): 5 Time(s) root (121.165.22.237): 5 Time(s) root (125.131.232.160): 5 Time(s) root (175.196.141.49): 5 Time(s) root (182.219.66.103): 5 Time(s) root (183.105.186.43): 5 Time(s) root (211.195.197.51): 5 Time(s) root (220.124.114.245): 5 Time(s) root (222.105.78.179): 5 Time(s) root (59.187.202.111): 5 Time(s) unknown (14.53.205.105): 5 Time(s) unknown (211.229.138.13): 5 Time(s) root (154.16.156.101): 4 Time(s) unknown (203.232.64.231): 4 Time(s) unknown (218.150.232.89): 4 Time(s) postgres (64.23.227.68): 3 Time(s) root (59.19.198.128): 3 Time(s) unknown (125.140.175.132): 3 Time(s) unknown (14.55.171.16): 3 Time(s) unknown (175.202.217.111): 3 Time(s) unknown (194.169.175.36): 3 Time(s) unknown (202.165.14.236): 3 Time(s) unknown (41.207.248.204): 3 Time(s) unknown (85.209.11.254): 3 Time(s) root (194.169.175.35): 2 Time(s) root (194.169.175.36): 2 Time(s) root (212.70.149.150): 2 Time(s) root (64.23.224.234): 2 Time(s) root (85.209.11.27): 2 Time(s) root (d27-96-67-167.evv.wideopenwest.com): 2 Time(s) unknown (112.186.152.191): 2 Time(s) unknown (14.50.4.242): 2 Time(s) unknown (146.255.229.214): 2 Time(s) unknown (220.117.31.1): 2 Time(s) unknown (31.184.198.71): 2 Time(s) unknown (45.71.24.198): 2 Time(s) unknown (65.20.161.2): 2 Time(s) unknown (80.111.168.125.sta.wbroadband.net.au): 2 Time(s) unknown (h79-138-42-38.cust.bredband2.com): 2 Time(s) unknown (p667146-ipngn2401imazuka.yamagata.ocn.ne.jp): 2 Time(s) unknown (port-92-195-121-181.dynamic.as20676.net): 2 Time(s) daemon (167.71.103.243): 1 Time(s) nobody (014199168188.ctinets.com): 1 Time(s) nobody (118.41.204.48): 1 Time(s) nobody (218.156.1.212): 1 Time(s) nobody (50.195.108.77): 1 Time(s) nobody (58.246.253.218): 1 Time(s) nobody (60.255.187.241): 1 Time(s) nobody (64.23.227.68): 1 Time(s) nobody (67.188.34.108): 1 Time(s) nobody (s010664777d9d1153.cg.shawcable.net): 1 Time(s) postgres (167.71.103.243): 1 Time(s) root (103.3.43.242): 1 Time(s) root (112.94.5.43): 1 Time(s) root (122.53.57.33): 1 Time(s) root (19010730120.ip71.static.mediacommerce.com.co): 1 Time(s) root (31.184.198.71): 1 Time(s) root (41.215.147.90): 1 Time(s) root (85.209.11.254): 1 Time(s) sshd (194.169.175.35): 1 Time(s) sshd (194.169.175.36): 1 Time(s) unknown (071-011-227-169.res.spectrum.com): 1 Time(s) unknown (103.127.8.242): 1 Time(s) unknown (103.147.248.44): 1 Time(s) unknown (103.157.114.106): 1 Time(s) unknown (103.157.114.202): 1 Time(s) unknown (103.157.114.234): 1 Time(s) unknown (103.157.190.210): 1 Time(s) unknown (103.172.10.181): 1 Time(s) unknown (103.207.171.83): 1 Time(s) unknown (103.228.35.162): 1 Time(s) unknown (103.232.247.197): 1 Time(s) unknown (103.3.43.242): 1 Time(s) unknown (106.12.109.212): 1 Time(s) unknown (108.180.149.210): 1 Time(s) unknown (109.194.27.107): 1 Time(s) unknown (113.25.250.80): 1 Time(s) unknown (115.241.16.251): 1 Time(s) unknown (115.241.203.210): 1 Time(s) unknown (115.40.43.134): 1 Time(s) unknown (117.232.192.137): 1 Time(s) unknown (117.247.171.124): 1 Time(s) unknown (117.4.136.219): 1 Time(s) unknown (118.185.157.226): 1 Time(s) unknown (118.194.247.28): 1 Time(s) unknown (118.40.247.43): 1 Time(s) unknown (118.41.204.80): 1 Time(s) unknown (119.195.118.2): 1 Time(s) unknown (119.93.87.71): 1 Time(s) unknown (120.33.137.113): 1 Time(s) unknown (121.137.110.160): 1 Time(s) unknown (121.169.186.165): 1 Time(s) unknown (121.170.218.142): 1 Time(s) unknown (121.175.55.8): 1 Time(s) unknown (121.185.251.232): 1 Time(s) unknown (121.191.54.199): 1 Time(s) unknown (122.168.122.243): 1 Time(s) unknown (123.138.199.66): 1 Time(s) unknown (124.136.29.20): 1 Time(s) unknown (150.129.48.228): 1 Time(s) unknown (154.16.156.101): 1 Time(s) unknown (165.16.124.32): 1 Time(s) unknown (168.253.61.209): 1 Time(s) unknown (170.231.18.68): 1 Time(s) unknown (175.101.150.15.static.excellmedia.net): 1 Time(s) unknown (175.200.58.141): 1 Time(s) unknown (176.215.255.242): 1 Time(s) unknown (178.134.11.94): 1 Time(s) unknown (182.23.64.139): 1 Time(s) unknown (183179126061.ctinets.com): 1 Time(s) unknown (186.217.211.130): 1 Time(s) unknown (187.33.161.18): 1 Time(s) unknown (190.79.46.27): 1 Time(s) unknown (193.43.69.204): 1 Time(s) unknown (2.182.152.162): 1 Time(s) unknown (2.187.118.61): 1 Time(s) unknown (2.57.219.2): 1 Time(s) unknown (200.108.131.2): 1 Time(s) unknown (202.155.192.70): 1 Time(s) unknown (202.165.15.31): 1 Time(s) unknown (202.165.16.209): 1 Time(s) unknown (208-105-196-214.biz.spectrum.com): 1 Time(s) unknown (210.206.24.238): 1 Time(s) unknown (210.4.68.73): 1 Time(s) unknown (210.96.27.248): 1 Time(s) unknown (211.107.37.40): 1 Time(s) unknown (211.109.93.134): 1 Time(s) unknown (211.169.212.206): 1 Time(s) unknown (211.197.149.161): 1 Time(s) unknown (211.224.98.177): 1 Time(s) unknown (211.39.130.134): 1 Time(s) unknown (211.46.176.215): 1 Time(s) unknown (217.12.114.70): 1 Time(s) unknown (217.147.171.48): 1 Time(s) unknown (218.149.25.39): 1 Time(s) unknown (218.248.17.227): 1 Time(s) unknown (219.148.50.80): 1 Time(s) unknown (220.124.114.245): 1 Time(s) unknown (220.70.178.196): 1 Time(s) unknown (220.77.57.59): 1 Time(s) unknown (220.89.92.197): 1 Time(s) unknown (221.151.7.108): 1 Time(s) unknown (221.153.97.22): 1 Time(s) unknown (221.166.197.23): 1 Time(s) unknown (221.7.61.34): 1 Time(s) unknown (222.109.234.61): 1 Time(s) unknown (222.116.201.65): 1 Time(s) unknown (222.120.180.87): 1 Time(s) unknown (223.16.137.60): 1 Time(s) unknown (223.82.117.189): 1 Time(s) unknown (23.162.168.58): 1 Time(s) unknown (36.103.241.107): 1 Time(s) unknown (36.137.22.65): 1 Time(s) unknown (40.121.66.227): 1 Time(s) unknown (41.190.39.142): 1 Time(s) unknown (43.242.120.50): 1 Time(s) unknown (46.100.49.51): 1 Time(s) unknown (46.166.23.83): 1 Time(s) unknown (47-184-66-37.dlls.tx.frontiernet.net): 1 Time(s) unknown (58.57.163.178): 1 Time(s) unknown (59-120-198-91.hinet-ip.hinet.net): 1 Time(s) unknown (59.11.140.208): 1 Time(s) unknown (59.20.113.2): 1 Time(s) unknown (60.214.127.246): 1 Time(s) unknown (61-216-92-193.hinet-ip.hinet.net): 1 Time(s) unknown (61-231-83-247.dynamic-ip.hinet.net): 1 Time(s) unknown (65.20.130.22): 1 Time(s) unknown (65.20.137.127): 1 Time(s) unknown (65.20.137.198): 1 Time(s) unknown (65.20.145.185): 1 Time(s) unknown (65.20.148.145): 1 Time(s) unknown (65.20.157.230): 1 Time(s) unknown (65.20.160.18): 1 Time(s) unknown (65.20.161.85): 1 Time(s) unknown (65.20.162.153): 1 Time(s) unknown (65.20.162.198): 1 Time(s) unknown (65.20.163.37): 1 Time(s) unknown (65.20.168.53): 1 Time(s) unknown (65.20.193.137): 1 Time(s) unknown (65.20.200.223): 1 Time(s) unknown (65.20.204.142): 1 Time(s) unknown (65.20.205.18): 1 Time(s) unknown (65.20.227.182): 1 Time(s) unknown (65.20.249.141): 1 Time(s) unknown (72.140.90.189): 1 Time(s) unknown (79.117.236.9): 1 Time(s) unknown (85.209.11.27): 1 Time(s) unknown (86.122.20.87): 1 Time(s) unknown (89-179-119-222.static.corbina.ru): 1 Time(s) unknown (90-226-51-136-no600.tbcn.telia.com): 1 Time(s) unknown (90.161.217.228): 1 Time(s) unknown (91.92.214.149): 1 Time(s) unknown (93.126.21.4): 1 Time(s) unknown (94.204.228.126): 1 Time(s) unknown (94.206.193.5): 1 Time(s) unknown (94.206.202.67): 1 Time(s) unknown (94.243.125.167): 1 Time(s) unknown (ah201183.dynamic.ppp.asahi-net.or.jp): 1 Time(s) unknown (c-98-221-202-174.hsd1.nj.comcast.net): 1 Time(s) unknown (c188-151-21-146.bredband.tele2.se): 1 Time(s) unknown (host-95-255-196-183.business.telecomitalia.it): 1 Time(s) unknown (host2.osm3jm.ondsl.gr): 1 Time(s) unknown (host62.190-224-35.telecom.net.ar): 1 Time(s) unknown (ip68-111-93-31.oc.oc.cox.net): 1 Time(s) unknown (kd113158205225.ppp-bb.dion.ne.jp): 1 Time(s) unknown (s01067483c24d3dd4.vc.shawcable.net): 1 Time(s) Invalid Users: Unknown Account: 804 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 24.383K Bytes accepted 24,968 24.383K Bytes sent via SMTP 24,968 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 1 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 1 Total 4xx Rejects 100.00% ======== ================================================== 21 Connections 15 Connections lost (inbound) 21 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors 2 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 11 Time(s) root : 72 Time(s) Failed logins from: 14.199.168.188 (014199168188.ctinets.com): 1 time 31.184.198.71: 1 time 41.215.147.90: 1 time 50.195.108.77 (50-195-108-77-static.hfc.comcastbusiness.net): 1 time 58.246.253.218: 1 time 59.19.198.128: 4 times 59.187.202.111: 6 times 60.255.187.241: 1 time 64.23.224.234: 2 times 64.23.227.68: 19 times 67.188.34.108: 1 time 70.77.225.190 (S010664777d9d1153.cg.shawcable.net): 1 time 85.209.11.27: 2 times 85.209.11.254: 1 time 87.3.79.220 (host-87-3-79-220.retail.telecomitalia.it): 12 times 96.27.167.67 (d27-96-67-167.evv.wideopenwest.com): 2 times 103.3.43.242 (static-242.43.3.103-tataidc.co.in): 1 time 103.36.84.194: 6 times 106.52.230.254: 6 times 112.94.5.43: 1 time 118.38.54.117: 6 times 118.41.204.48: 1 time 119.206.36.112: 6 times 119.247.141.124 (119247141124.ctinets.com): 6 times 121.165.22.237: 6 times 122.53.57.33 (122.53.57.33.static.pldt.net): 1 time 123.205.2.124 (123-205-2-124.adsl.dynamic.seed.net.tw): 6 times 125.131.232.160: 6 times 154.16.156.101: 4 times 167.71.103.243: 25 times 171.217.93.19: 23 times 175.196.141.49: 6 times 179.43.180.106 (hostedby.privatelayer.com): 18 times 182.219.66.103: 6 times 183.81.169.238: 40 times 183.105.186.43: 6 times 190.107.30.120 (19010730120.ip71.static.mediacommerce.com.co): 1 time 194.169.175.35: 3 times 194.169.175.36: 3 times 202.70.82.190: 6 times 211.195.197.51: 6 times 212.70.149.150: 2 times 218.92.0.28: 42 times 218.92.0.33: 42 times 218.92.0.40: 35 times 218.92.0.43: 41 times 218.92.0.45: 24 times 218.92.0.47: 18 times 218.92.0.51: 30 times 218.92.0.52: 32 times 218.92.0.53: 30 times 218.92.0.55: 35 times 218.92.0.59: 23 times 218.156.1.212: 1 time 220.124.114.245: 6 times 222.105.78.179: 6 times Illegal users from: 2001:470:1:c84::31 (scan-21c.shadowserver.org): 1 time undef: 343 times 2.57.219.2: 1 time 2.182.152.162: 1 time 2.187.118.61: 1 time 14.50.4.242: 3 times 14.53.205.105: 6 times 14.55.171.16: 3 times 23.162.168.58 (58.168.162.23.v4.ip.xentain.com): 1 time 24.80.27.241 (S01067483c24d3dd4.vc.shawcable.net): 1 time 31.184.198.71: 3 times 36.103.241.107: 1 time 36.137.22.65: 1 time 40.121.66.227: 1 time 41.190.39.142 (142-39sxx.broadband.yoafrica.com): 1 time 41.207.248.204: 3 times 43.242.120.50: 1 time 45.71.24.198: 2 times 46.100.49.51: 1 time 46.166.23.83 (host-46-166-23-83.hspa.orange.md): 1 time 47.184.66.37 (47-184-66-37.dlls.tx.frontiernet.net): 1 time 58.57.163.178: 1 time 59.11.140.208: 5 times 59.20.113.2: 1 time 59.120.198.91 (59-120-198-91.hinet-ip.hinet.net): 1 time 60.214.127.246: 1 time 61.72.210.218: 6 times 61.216.92.193 (61-216-92-193.hinet-ip.hinet.net): 1 time 61.231.83.247 (61-231-83-247.dynamic-ip.hinet.net): 1 time 64.23.224.234: 17 times 64.23.227.68: 164 times 64.62.197.137 (scan-48a.shadowserver.org): 1 time 65.20.130.22: 1 time 65.20.137.127: 1 time 65.20.137.198: 1 time 65.20.145.185: 1 time 65.20.148.145: 1 time 65.20.157.230: 1 time 65.20.160.18: 1 time 65.20.161.2: 2 times 65.20.161.85: 1 time 65.20.162.153: 1 time 65.20.162.198: 1 time 65.20.163.37: 1 time 65.20.168.53: 1 time 65.20.193.137: 1 time 65.20.200.223: 1 time 65.20.204.142: 1 time 65.20.205.18: 1 time 65.20.227.182: 1 time 65.20.249.141: 1 time 66.240.192.82: 1 time 68.111.93.31 (ip68-111-93-31.oc.oc.cox.net): 1 time 71.11.227.169 (071-011-227-169.res.spectrum.com): 1 time 72.140.90.189 (cpea84e3ff1fb43-cma84e3ff1fb40.cpe.net.fido.ca): 1 time 79.117.236.9 (79-117-236-9.digimobil.es): 1 time 79.138.42.38 (h79-138-42-38.cust.bredband2.com): 2 times 85.209.11.27: 1 time 85.209.11.254: 3 times 86.122.20.87: 1 time 89.179.119.222 (89-179-119-222.static.corbina.ru): 1 time 90.161.217.228 (228.pool90-161-217.static.orange.es): 1 time 90.226.51.136 (90-226-51-136-no600.tbcn.telia.com): 1 time 91.92.214.149: 1 time 92.195.121.181 (port-92-195-121-181.dynamic.as20676.net): 2 times 93.126.21.4 (asmanfaraz.4.21.126.93.in-addr.arpa): 1 time 94.67.125.162 (host2.osm3jm.ondsl.gr): 1 time 94.204.228.126: 1 time 94.206.193.5: 1 time 94.206.202.67: 1 time 94.243.125.167 (host-94-243-125-167.hspa.orange.md): 1 time 95.255.196.183 (host-95-255-196-183.business.telecomitalia.it): 1 time 98.221.202.174 (c-98-221-202-174.hsd1.nj.comcast.net): 1 time 103.3.43.242 (static-242.43.3.103-tataidc.co.in): 1 time 103.127.8.242: 1 time 103.147.248.44: 1 time 103.157.114.106 (106.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.114.202 (202.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.114.234 (234.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.190.210 (210.190.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.172.10.181: 1 time 103.207.171.83: 1 time 103.228.35.162 (static-103-228-35-162.pol.net.in): 1 time 103.232.247.197: 1 time 106.12.109.212: 1 time 108.180.149.210: 1 time 109.194.27.107 (dynamicip-109-194-27-107.pppoe.penza.ertelecom.ru): 1 time 112.163.25.75: 6 times 112.186.152.191: 4 times 113.25.250.80: 1 time 113.158.205.225 (KD113158205225.ppp-bb.dion.ne.jp): 1 time 115.40.43.134: 1 time 115.241.16.251: 1 time 115.241.203.210: 1 time 117.4.136.219 (localhost): 1 time 117.232.192.137: 1 time 117.247.171.124 (static.ftth.srg.117.247.171.124.bsnl.in): 1 time 118.35.51.90: 6 times 118.40.247.43: 5 times 118.41.204.80: 1 time 118.185.157.226: 1 time 118.194.247.28: 1 time 119.93.87.71 (119.93.87.71.static.pldt.net): 1 time 119.195.118.2: 5 times 119.202.230.211: 6 times 120.33.137.113: 1 time 121.137.110.160: 5 times 121.169.186.165: 5 times 121.170.218.142: 1 time 121.175.55.8: 5 times 121.184.105.238: 6 times 121.185.251.232: 5 times 121.191.54.199: 5 times 122.168.122.243 (abts-mp-dynamic-243.122.168.122.airtelbroadband.in): 1 time 123.138.199.66: 1 time 124.136.29.20: 1 time 125.140.175.132: 3 times 125.142.17.26: 6 times 125.168.111.80 (80.111.168.125.sta.wbroadband.net.au): 2 times 131.129.201.183 (ah201183.dynamic.ppp.asahi-net.or.jp): 1 time 146.255.229.214 (146-255-229-214.customers.silknet.com): 2 times 150.129.48.228: 1 time 154.16.156.101: 2 times 165.16.124.32: 1 time 167.71.103.243: 246 times 168.253.61.209: 1 time 170.231.18.68: 1 time 175.101.150.15 (175.101.150.15.static.excellmedia.net): 1 time 175.197.211.68: 6 times 175.200.58.141: 5 times 175.202.217.111: 3 times 176.215.255.242 (dynamicip-176-215-255-242.pppoe.irkutsk.ertelecom.ru): 1 time 178.134.11.94 (178-134-11-94.dsl.utg.ge): 1 time 182.23.64.139: 1 time 183.179.126.61 (183179126061.ctinets.com): 1 time 186.217.211.130: 1 time 187.33.161.18 (18.161.33.187.in-addr.arpa.verointernet.com.br): 1 time 188.151.21.146 (c188-151-21-146.bredband.tele2.se): 1 time 190.79.46.27 (190-79-46-27.lms-01-p74.cantv.net): 1 time 190.224.35.62 (host62.190-224-35.telecom.net.ar): 1 time 193.43.69.204: 1 time 194.169.175.35: 7 times 194.169.175.36: 3 times 200.108.131.2: 1 time 202.155.192.70: 1 time 202.165.14.236: 3 times 202.165.15.31: 1 time 202.165.16.209: 1 time 203.232.64.231: 5 times 208.105.196.214 (208-105-196-214.biz.spectrum.com): 1 time 210.4.68.73 (210.4.68-73.bdcom.com): 1 time 210.96.27.248: 5 times 210.206.24.238: 1 time 211.39.130.134: 1 time 211.46.176.215: 5 times 211.106.142.48: 6 times 211.107.37.40: 5 times 211.109.93.134: 1 time 211.169.212.206: 1 time 211.197.149.161: 5 times 211.224.98.177: 5 times 211.229.138.13: 5 times 212.70.149.150: 14 times 217.12.114.70 (static.217.12.114.70.tmg.md): 1 time 217.147.171.48: 1 time 218.149.25.39: 1 time 218.150.232.89: 4 times 218.248.17.227: 1 time 219.148.50.80: 1 time 219.165.15.146 (p667146-ipngn2401imazuka.yamagata.ocn.ne.jp): 2 times 220.70.178.196: 5 times 220.77.57.59: 5 times 220.89.92.197: 5 times 220.117.31.1: 4 times 220.124.114.245: 5 times 221.7.61.34: 1 time 221.151.7.108: 1 time 221.153.97.22: 5 times 221.166.197.23: 5 times 222.105.169.147: 6 times 222.109.234.61: 5 times 222.111.33.116: 6 times 222.116.201.65: 5 times 222.120.180.87: 5 times 223.16.137.60 (60-137-16-223-on-nets.com): 1 time 223.82.117.189: 1 time **Unmatched Entries** Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (test,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ubnt,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (admin,ssh-connection) [preauth] : 1 time(s) Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (0,ssh-connection) -> (root,ssh-connection) [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

Achtung: Traffic-Report-Limit-Überschreitung

by noreply＠hetzner.com

Sehr geehrter Herr Fabian Freyer, hiermit möchten wir Sie darauf aufmerksam machen, dass die Menge der übertragenen Daten das von Ihnen gesetzte Limit überschritten hat: Monatlich: IP / Subnet Servername Limit (GB) Traffic (GB) 94.130.65.175 20 20,2405 Bitte beachten Sie, dass die Zeit in Mitteleuropäischer Zeit (MEZ) +0100 UTC angegeben wird. Sie können den Wert, bei dem Sie diese Warnmeldung erhalten wollen, jederzeit selbst im Robot https://robot.hetzner.com unter dem Menüpunkt "Server; Reiter IPs" ändern. Sie haben mit unserem Traffic-Warnsystem eine gute Möglichkeit, Unregelmäßigkeiten festzustellen. Dieser Wert hat nichts mit Ihrem freien Transfervolumen zu tun! Falls Sie Fragen haben, senden Sie uns bitte eine Supportanfrage aus Ihrer Administrationsoberfläche Robot https://robot.hetzner.com . Bitte loggen Sie sich mit Ihrem Account in den Robot ein und klicken Sie rechts oben auf das Benutzer-Icon und wählen Sie anschließend den Punkt "Support" aus. Dort wählen Sie bitte die "Server" Option unter "Produkt" aus, dann können Sie Ihren Server auswählen. Alternativ können Sie auch eine allgemeine Anfrage senden. Wir werden Ihre Anfrage so schnell wie möglich beantworten. Mit freundlichen Grüßen Ihr Hetzner Online Team Hetzner Online GmbH Industriestr. 25 91710 Gunzenhausen Tel.: +49 9831 505-0 Fax: +49 9831 505-3 info(a)hetzner.com www.hetzner.com Registergericht Ansbach, HRB 6089 Geschäftsführer: Martin Hetzner, Stephan Konvickova, Günther Müller USt-IdNr. DE812871812 Hinweise zur Verarbeitung Ihrer personenbezogenen Daten im Rahmen der Kommunikation mit Ihnen finden Sie unter: https://www.hetzner.com/de/datenschutzhinweis

1 Jahr, 7 Monate

1
0
0 / 0

europa@zapf.in post from modegarsilverhelm2024@hotmail.com requires approval

by europa-owner＠zapf.in

As list administrator, your authorization is requested for the following mailing list posting: List: europa(a)zapf.in From: modegarsilverhelm2024(a)hotmail.com Subject: 76333005292 The message is being held because: The message is not from a list member At your convenience, visit your dashboard to approve or deny the request.

1 Jahr, 7 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sat Mar 23 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-22 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 44:43 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 87.121.69.52 -> google.com:443: 2 Time(s) A total of 6 sites probed the server 107.170.244.10 138.68.70.199 157.245.69.67 162.243.131.41 54.211.237.178 65.49.1.17 Requests with error response codes 400 Bad Request null: 10 Time(s) /: 7 Time(s) mstshash=Administr: 6 Time(s) /.env: 2 Time(s) google.com:443: 2 Time(s) *: 1 Time(s) /GponForm/diag_Form?images/: 1 Time(s) /sqlmap: 1 Time(s) J\x19\x18\xD8\x0F\xB6\x82|\xD44^`\xD1\xD6\ ... x09\xC0\x13\xC0: 1 Time(s) \x15,\xE9Y\x8A\x98\xCFn\x00t\xC1\xDE\xFAt\ ... x09\xC0\x13\xC0: 1 Time(s) \xED\x0C)\x91\x93\xCC$\x03\x1Cw\xB1\x1A\xE ... x00\x01\x02\x00: 1 Time(s) \xFB\xAC<\xED\xAEi\xC0`.C\xE9\xF3\x01\xF4\x02\xA2W\xE9]: 1 Time(s) `\xDB\xC5\x97\x88\xAA\xD4\xEF\xDB\xD6W*\x9 ... x00\x01\x02\x00: 1 Time(s) 404 Not Found /wp-content/plugins/gotmls/readme.txt: 1 Time(s) /wp-content/plugins/wp-automatic/css/style.css: 1 Time(s) 499 (undefined) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 1 Time(s) 500 Internal Server Error /: 16 Time(s) /.env: 7 Time(s) /.git/config: 3 Time(s) /favicon.ico: 2 Time(s) /robots.txt: 2 Time(s) /%25: 1 Time(s) /99vt: 1 Time(s) /99vu: 1 Time(s) /Res/login.html: 1 Time(s) /aaaaaaaaaaaaaaaaaaaaaaaaaqr: 1 Time(s) /ab2g: 1 Time(s) /ab2h: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /actuator/health: 1 Time(s) /ajax: 1 Time(s) /alive.php: 1 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 1 Time(s) /exec: 1 Time(s) /geoserver/web/: 1 Time(s) /sqlmap: 1 Time(s) /t4: 1 Time(s) /teorema505?t=1: 1 Time(s) /version: 1 Time(s) /webui/: 1 Time(s) 502 Bad Gateway /WS22_nachhaltigkeitsresolution/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (167.71.103.243): 267 Time(s) unknown (64.23.224.234): 69 Time(s) root (183.81.169.238): 46 Time(s) root (179.43.180.106): 40 Time(s) root (171.217.93.19): 36 Time(s) root (218.92.0.51): 18 Time(s) root (218.92.0.55): 18 Time(s) root (218.92.0.59): 17 Time(s) root (218.92.0.45): 12 Time(s) root (218.92.0.52): 12 Time(s) root (218.92.0.53): 12 Time(s) root (218.92.0.40): 11 Time(s) unknown (194.169.175.35): 11 Time(s) root (85.209.11.27): 10 Time(s) unknown (194.169.175.36): 10 Time(s) root (64.23.224.234): 9 Time(s) unknown (202.165.16.209): 7 Time(s) unknown (85.209.11.254): 7 Time(s) unknown (85.209.11.27): 7 Time(s) root (058176183239.ctinets.com): 6 Time(s) root (103.36.84.194): 6 Time(s) root (118.217.12.120): 6 Time(s) root (122.224.37.86): 6 Time(s) root (201.6.220.17): 6 Time(s) root (218.92.0.47): 6 Time(s) root (host-87-3-79-220.retail.telecomitalia.it): 6 Time(s) root (167.71.103.243): 5 Time(s) root (194.169.175.35): 5 Time(s) root (218.92.0.28): 5 Time(s) root (218.92.0.43): 5 Time(s) unknown (159.65.159.128): 5 Time(s) unknown (185.224.128.34): 4 Time(s) root (113.106.88.146): 3 Time(s) root (170.64.160.65): 3 Time(s) root (211.229.73.221): 3 Time(s) root (85.209.11.254): 3 Time(s) unknown (175.203.118.149): 3 Time(s) unknown (185.196.8.151): 3 Time(s) unknown (212.70.149.150): 3 Time(s) root (202.165.16.209): 2 Time(s) root (36.110.228.254): 2 Time(s) sshd (85.209.11.254): 2 Time(s) unknown (103.157.115.154): 2 Time(s) unknown (188-169-66-154.dsl.utg.ge): 2 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 2 Time(s) unknown (37.114.208.13): 2 Time(s) unknown (41.207.248.204): 2 Time(s) unknown (41.215.211.224): 2 Time(s) unknown (45.71.24.198): 2 Time(s) unknown (60-251-196-139.hinet-ip.hinet.net): 2 Time(s) unknown (65.20.194.91): 2 Time(s) nobody (170.238.144.233): 1 Time(s) nobody (188.129.219.2): 1 Time(s) nobody (220.80.223.144): 1 Time(s) nobody (5.32.32.14): 1 Time(s) nobody (65.20.173.115): 1 Time(s) nobody (catv-37-188-84-41.catv.fixed.vodafone.hu): 1 Time(s) nobody (ec2-54-156-128-43.compute-1.amazonaws.com): 1 Time(s) nobody (ppp-vpdn-92.242.51.118.yarnet.ru): 1 Time(s) root (103.88.238.3): 1 Time(s) root (120.138.13.66): 1 Time(s) root (120.33.205.162): 1 Time(s) root (122.225.203.106): 1 Time(s) root (136.255.154.146): 1 Time(s) root (14.98.28.43): 1 Time(s) root (159.65.159.128): 1 Time(s) root (19010730117.ip71.static.mediacommerce.com.co): 1 Time(s) root (194.169.175.36): 1 Time(s) root (20.21.1.132): 1 Time(s) root (211-22-218-139.hinet-ip.hinet.net): 1 Time(s) root (212-181-135-14-no600.tbcn.telia.com): 1 Time(s) root (217.61.245.210): 1 Time(s) root (41.207.248.204): 1 Time(s) root (91.92.124.199): 1 Time(s) unknown (058176134168.ctinets.com): 1 Time(s) unknown (101.98.52.66): 1 Time(s) unknown (103.122.201.124): 1 Time(s) unknown (103.124.188.178): 1 Time(s) unknown (103.147.248.44): 1 Time(s) unknown (103.157.114.194): 1 Time(s) unknown (103.157.114.66): 1 Time(s) unknown (103.157.115.10): 1 Time(s) unknown (103.157.115.162): 1 Time(s) unknown (103.157.115.18): 1 Time(s) unknown (103.157.115.186): 1 Time(s) unknown (103.157.115.26): 1 Time(s) unknown (103.157.88.15): 1 Time(s) unknown (103.232.247.197): 1 Time(s) unknown (103.93.201.42): 1 Time(s) unknown (108-254-167-57.lightspeed.livnmi.sbcglobal.net): 1 Time(s) unknown (109.233.21.109): 1 Time(s) unknown (113.183.67.127): 1 Time(s) unknown (114.108.126.228): 1 Time(s) unknown (115.241.38.11): 1 Time(s) unknown (117.160.3.137): 1 Time(s) unknown (117.221.68.64): 1 Time(s) unknown (117.247.73.168): 1 Time(s) unknown (117.32.249.174): 1 Time(s) unknown (117.4.136.219): 1 Time(s) unknown (117.4.187.19): 1 Time(s) unknown (119.6.55.57): 1 Time(s) unknown (123.129.245.249): 1 Time(s) unknown (123.138.199.66): 1 Time(s) unknown (124.167.21.95): 1 Time(s) unknown (124.65.142.62): 1 Time(s) unknown (125.69.76.148): 1 Time(s) unknown (14.88.228.202): 1 Time(s) unknown (141.145.207.38): 1 Time(s) unknown (151.114.15.93.rev.sfr.net): 1 Time(s) unknown (151.237.75.114): 1 Time(s) unknown (167-179-148-169.a7b394.syd.nbn.aussiebb.net): 1 Time(s) unknown (167.172.239.86): 1 Time(s) unknown (170.254.188.11): 1 Time(s) unknown (170.64.160.65): 1 Time(s) unknown (172.210.34.226): 1 Time(s) unknown (173.25.186.130): 1 Time(s) unknown (175.198.18.3): 1 Time(s) unknown (175.206.113.91): 1 Time(s) unknown (176.221.235.140): 1 Time(s) unknown (183.232.32.178): 1 Time(s) unknown (183.6.99.197): 1 Time(s) unknown (183.62.20.2): 1 Time(s) unknown (183179010068.ctinets.com): 1 Time(s) unknown (185.77.3.220): 1 Time(s) unknown (186.201.249.42): 1 Time(s) unknown (186.79.153.95.dyn.idknet.com): 1 Time(s) unknown (188.254.105.115): 1 Time(s) unknown (189.84.253.73): 1 Time(s) unknown (190.205.35.66): 1 Time(s) unknown (190.98.205.162): 1 Time(s) unknown (197.237.137.51): 1 Time(s) unknown (2.55.100.104): 1 Time(s) unknown (20.174.25.219): 1 Time(s) unknown (200.11.109.32): 1 Time(s) unknown (202.62.72.35): 1 Time(s) unknown (206.252.194.46): 1 Time(s) unknown (209.66.246.220.static.netvigator.com): 1 Time(s) unknown (210.4.101.34): 1 Time(s) unknown (211.253.10.61): 1 Time(s) unknown (212.152.216.141): 1 Time(s) unknown (212.4.121.56): 1 Time(s) unknown (213.59.164.230): 1 Time(s) unknown (217.147.171.48): 1 Time(s) unknown (218.3.150.1): 1 Time(s) unknown (220.95.14.102): 1 Time(s) unknown (223.19.188.59): 1 Time(s) unknown (223.197.142.137): 1 Time(s) unknown (223.75.246.172): 1 Time(s) unknown (36.137.22.65): 1 Time(s) unknown (37.255.202.68): 1 Time(s) unknown (42-200-60-186.static.imsbiz.com): 1 Time(s) unknown (42-200-75-233.static.imsbiz.com): 1 Time(s) unknown (45.115.173.11): 1 Time(s) unknown (47.188.209.237): 1 Time(s) unknown (5.31.22.214): 1 Time(s) unknown (55.10.31.31.dyn.idknet.com): 1 Time(s) unknown (58.244.248.122): 1 Time(s) unknown (61-231-83-247.dynamic-ip.hinet.net): 1 Time(s) unknown (61.164.51.34): 1 Time(s) unknown (61.183.232.62): 1 Time(s) unknown (65.20.137.127): 1 Time(s) unknown (65.20.143.189): 1 Time(s) unknown (65.20.156.21): 1 Time(s) unknown (65.20.162.121): 1 Time(s) unknown (65.20.162.198): 1 Time(s) unknown (65.20.164.92): 1 Time(s) unknown (65.20.180.143): 1 Time(s) unknown (65.20.183.209): 1 Time(s) unknown (65.20.205.171): 1 Time(s) unknown (65.20.237.78): 1 Time(s) unknown (65.20.250.71): 1 Time(s) unknown (78.186.54.65): 1 Time(s) unknown (81-229-15-242-no600.tbcn.telia.com): 1 Time(s) unknown (81-235-140-120-no600.tbcn.telia.com): 1 Time(s) unknown (81.70.119.217): 1 Time(s) unknown (91-158-75-221.elisa-laajakaista.fi): 1 Time(s) unknown (91.238.69.91): 1 Time(s) unknown (91.75.113.51): 1 Time(s) unknown (91.92.126.165): 1 Time(s) unknown (92.115.3.157): 1 Time(s) unknown (92.52.146.18): 1 Time(s) unknown (92.sub-166-248-61.myvzw.com): 1 Time(s) unknown (94.204.204.226): 1 Time(s) unknown (94.204.228.126): 1 Time(s) unknown (94.207.24.223): 1 Time(s) unknown (94.45.113.113): 1 Time(s) unknown (95.164.69.247): 1 Time(s) unknown (95.65.98.254): 1 Time(s) unknown (awork064163.netvigator.com): 1 Time(s) unknown (c-67-177-243-114.hsd1.co.comcast.net): 1 Time(s) unknown (c-68-41-47-27.hsd1.mi.comcast.net): 1 Time(s) unknown (c188-151-27-45.bredband.tele2.se): 1 Time(s) unknown (c188-151-27-57.bredband.tele2.se): 1 Time(s) unknown (c188-151-63-219.bredband.tele2.se): 1 Time(s) unknown (c48-211.i13-13.melita.com): 1 Time(s) unknown (c83-254-230-160.bredband.tele2.se): 1 Time(s) unknown (client-67-58-229-248.consolidated.net): 1 Time(s) unknown (d23-16-232-220.bchsia.telus.net): 1 Time(s) unknown (ec2-35-172-109-156.compute-1.amazonaws.com): 1 Time(s) unknown (ec2-54-211-237-178.compute-1.amazonaws.com): 1 Time(s) unknown (host-176-36-32-175.b024.la.net.ua): 1 Time(s) unknown (host-194-170.kylogro.louisville.ky.us.clients.pavlovmedia.net): 1 Time(s) unknown (host-79-121-97-106.wave-net.hu): 1 Time(s) unknown (host-79-41-196-118.retail.telecomitalia.it): 1 Time(s) unknown (igi67.internetdsl.tpnet.pl): 1 Time(s) unknown (kd113158205225.ppp-bb.dion.ne.jp): 1 Time(s) unknown (net-2-37-223-58.cust.vodafonedsl.it): 1 Time(s) unknown (node-abo.pool-182-53.dynamic.totinternet.net): 1 Time(s) unknown (static-dsl-26.213-160-185.telecom.sk): 1 Time(s) unknown (z76l242.static.ctm.net): 1 Time(s) uucp (194.169.175.35): 1 Time(s) Invalid Users: Unknown Account: 550 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 27.086K Bytes accepted 27,736 27.086K Bytes sent via SMTP 27,736 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 15 Connections 9 Connections lost (inbound) 15 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors 2 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 24 Time(s) Failed logins from: 5.32.32.14: 1 time 14.98.28.43: 1 time 20.21.1.132: 1 time 36.110.228.254: 2 times 37.188.84.41 (catv-37-188-84-41.catv.fixed.vodafone.hu): 1 time 41.207.248.204: 1 time 54.156.128.43 (ec2-54-156-128-43.compute-1.amazonaws.com): 1 time 58.176.183.239 (058176183239.ctinets.com): 6 times 64.23.224.234: 9 times 65.20.173.115: 1 time 85.209.11.27: 10 times 85.209.11.254: 5 times 87.3.79.220 (host-87-3-79-220.retail.telecomitalia.it): 6 times 91.92.124.199: 1 time 92.242.51.118 (ppp-vpdn-92.242.51.118.yarnet.ru): 1 time 103.36.84.194: 6 times 103.88.238.3: 1 time 113.106.88.146: 3 times 118.217.12.120: 6 times 120.33.205.162: 1 time 120.138.13.66 (ws66-13.138.120.rcil.gov.in): 1 time 122.224.37.86: 6 times 122.225.203.106: 1 time 136.255.154.146: 1 time 159.65.159.128: 1 time 167.71.103.243: 5 times 170.64.160.65: 3 times 170.238.144.233: 1 time 171.217.93.19: 36 times 179.43.180.106 (hostedby.privatelayer.com): 40 times 183.81.169.238: 46 times 188.129.219.2: 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 1 time 194.169.175.35: 6 times 194.169.175.36: 1 time 201.6.220.17 (c906dc11.virtua.com.br): 6 times 202.165.16.209: 2 times 211.22.218.139 (211-22-218-139.hinet-ip.hinet.net): 1 time 211.229.73.221: 4 times 212.181.135.14 (212-181-135-14-no600.tbcn.telia.com): 1 time 217.61.245.210: 1 time 218.92.0.28: 5 times 218.92.0.40: 11 times 218.92.0.43: 5 times 218.92.0.45: 12 times 218.92.0.47: 6 times 218.92.0.51: 18 times 218.92.0.52: 12 times 218.92.0.53: 12 times 218.92.0.55: 18 times 218.92.0.59: 17 times 220.80.223.144: 1 time Illegal users from: 2001:470:1:c84::25 (scan-15o.shadowserver.org): 1 time undef: 193 times 2.37.223.58 (net-2-37-223-58.cust.vodafonedsl.it): 1 time 2.55.100.104 (2-55-100-104.orange.net.il): 1 time 5.31.22.214: 1 time 14.88.228.202: 1 time 20.174.25.219: 1 time 23.16.232.220 (d23-16-232-220.bchsia.telus.net): 1 time 31.31.10.55 (55.10.31.31.dyn.idknet.com): 1 time 35.172.109.156 (ec2-35-172-109-156.compute-1.amazonaws.com): 1 time 36.137.22.65: 1 time 37.114.208.13: 2 times 37.255.202.68: 1 time 41.207.248.204: 2 times 41.215.211.224 (bl2.41.215.211.224.dynamic.dsl.cvmultimedia.cv): 2 times 42.200.60.186 (42-200-60-186.static.imsbiz.com): 1 time 42.200.75.233 (42-200-75-233.static.imsbiz.com): 1 time 45.71.24.198: 2 times 45.115.173.11: 1 time 47.188.209.237: 1 time 54.211.237.178 (ec2-54-211-237-178.compute-1.amazonaws.com): 1 time 58.176.134.168 (058176134168.ctinets.com): 1 time 58.244.248.122 (122.248.244.58.adsl-pool.jlccptt.net.cn): 1 time 60.251.196.139 (60-251-196-139.hinet-ip.hinet.net): 2 times 61.164.51.34: 1 time 61.183.232.62: 1 time 61.231.83.247 (61-231-83-247.dynamic-ip.hinet.net): 1 time 64.23.224.234: 69 times 64.62.197.126 (scan-40e.shadowserver.org): 1 time 65.20.137.127: 1 time 65.20.143.189: 1 time 65.20.156.21: 1 time 65.20.162.121: 1 time 65.20.162.198: 1 time 65.20.164.92: 1 time 65.20.180.143: 1 time 65.20.183.209: 1 time 65.20.194.91: 2 times 65.20.205.171: 1 time 65.20.237.78: 1 time 65.20.250.71: 1 time 66.240.192.82: 1 time 67.58.229.248 (client-67-58-229-248.consolidated.net): 1 time 67.177.243.114 (c-67-177-243-114.hsd1.co.comcast.net): 1 time 68.41.47.27 (c-68-41-47-27.hsd1.mi.comcast.net): 1 time 68.234.194.170 (host-194-170.kylogro.louisville.ky.us.clients.pavlovmedia.net): 1 time 78.186.54.65 (78.186.54.65.static.ttnet.com.tr): 1 time 79.41.196.118 (host-79-41-196-118.retail.telecomitalia.it): 1 time 79.121.97.106 (host-79-121-97-106.wave-net.hu): 1 time 79.189.164.67 (igi67.internetdsl.tpnet.pl): 1 time 81.70.119.217: 1 time 81.229.15.242 (81-229-15-242-no600.tbcn.telia.com): 1 time 81.235.140.120 (81-235-140-120-no600.tbcn.telia.com): 1 time 83.254.230.160 (c83-254-230-160.bredband.tele2.se): 1 time 85.209.11.27: 7 times 85.209.11.254: 7 times 91.75.113.51: 1 time 91.92.126.165: 1 time 91.158.75.221 (91-158-75-221.elisa-laajakaista.fi): 1 time 91.238.69.91 (tvinnet-91-238-69-91.tvinnet.ru): 1 time 92.52.146.18: 1 time 92.115.3.157 (host-static-92-115-3-157.moldtelecom.md): 1 time 93.15.114.151 (151.114.15.93.rev.sfr.net): 1 time 94.17.48.211 (c48-211.i13-13.melita.com): 1 time 94.45.113.113: 1 time 94.204.204.226: 1 time 94.204.228.126: 1 time 94.207.24.223: 1 time 95.65.98.254 (95-65-98-254.starnet.md): 1 time 95.153.79.186 (186.79.153.95.dyn.idknet.com): 1 time 95.164.69.247 (vm1949209.stark-industries.solutions): 1 time 101.98.52.66 (dice.westbrook.school.nz): 1 time 103.93.201.42: 1 time 103.122.201.124: 1 time 103.124.188.178: 1 time 103.147.248.44: 1 time 103.157.88.15: 1 time 103.157.114.66 (66.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.114.194 (194.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.10 (10.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.18 (18.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.26 (26.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.154 (154.115.157.103.Ai-bkti-hts.iforte.net.id): 2 times 103.157.115.162 (162.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.186 (186.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.232.247.197: 1 time 108.254.167.57 (108-254-167-57.lightspeed.livnmi.sbcglobal.net): 1 time 109.233.21.109: 1 time 113.106.88.146: 3 times 113.158.205.225 (KD113158205225.ppp-bb.dion.ne.jp): 1 time 113.183.67.127 (static.vnpt.vn): 1 time 114.108.126.228: 1 time 115.241.38.11: 1 time 117.4.136.219 (localhost): 1 time 117.4.187.19 (localhost): 1 time 117.32.249.174: 1 time 117.160.3.137: 1 time 117.221.68.64 (static.ftth.knr.117.221.68.64.bsnl.in): 1 time 117.247.73.168 (static.ftth.bbr.117.247.73.168.bsnl.in): 1 time 119.6.55.57: 1 time 123.129.245.249: 1 time 123.138.199.66: 1 time 124.65.142.62: 1 time 124.167.21.95 (95.21.167.124.adsl-pool.sx.cn): 1 time 125.69.76.148: 1 time 141.145.207.38: 1 time 151.237.75.114: 1 time 159.65.159.128: 5 times 166.248.61.92 (92.sub-166-248-61.myvzw.com): 1 time 167.71.103.243: 267 times 167.172.239.86: 1 time 167.179.148.169 (167-179-148-169.a7b394.syd.nbn.aussiebb.net): 1 time 170.64.160.65: 2 times 170.254.188.11 (170.254.188.11.avato.com.br): 1 time 172.210.34.226: 1 time 173.25.186.130 (173-25-186-130.client.mchsi.com): 1 time 175.198.18.3: 1 time 175.203.118.149: 3 times 175.206.113.91: 1 time 176.36.32.175 (host-176-36-32-175.b024.la.net.ua): 1 time 176.221.235.140: 1 time 182.53.52.68 (node-abo.pool-182-53.dynamic.totinternet.net): 1 time 183.6.99.197: 1 time 183.62.20.2: 1 time 183.136.225.32: 1 time 183.179.10.68 (183179010068.ctinets.com): 1 time 183.232.32.178: 1 time 185.77.3.220: 1 time 185.196.8.151: 3 times 185.224.128.34: 4 times 186.201.249.42: 1 time 188.151.27.45 (c188-151-27-45.bredband.tele2.se): 1 time 188.151.27.57 (c188-151-27-57.bredband.tele2.se): 1 time 188.151.63.219 (c188-151-63-219.bredband.tele2.se): 1 time 188.169.66.154 (188-169-66-154.dsl.utg.ge): 2 times 188.254.105.115: 1 time 189.84.253.73 (189.84.253.73.fttx.gigalink.net.br): 1 time 190.98.205.162: 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 2 times 190.205.35.66 (190.205.35.66.estatic.cantv.net): 1 time 194.169.175.35: 11 times 194.169.175.36: 11 times 197.237.137.51 (197.237.137.51.wananchi.com): 1 time 200.11.109.32: 1 time 202.62.72.35: 1 time 202.165.16.209: 7 times 202.175.76.242 (z76l242.static.ctm.net): 1 time 203.198.249.163 (awork064163.netvigator.com): 1 time 206.252.194.46: 1 time 210.4.101.34 (rdns34.convergeict.com): 1 time 211.253.10.61: 1 time 212.4.121.56 (var056-121.gnet.es): 1 time 212.70.149.150: 3 times 212.152.216.141: 1 time 213.59.164.230 (ip164_230.sevtelecom.ru): 1 time 213.160.185.26 (static-dsl-26.213-160-185.telecom.sk): 1 time 217.147.171.48: 1 time 218.3.150.1: 1 time 220.95.14.102: 1 time 220.246.66.209 (209.66.246.220.static.netvigator.com): 1 time 223.19.188.59 (59-188-19-223-on-nets.com): 1 time 223.75.246.172: 1 time 223.197.142.137 (223-197-142-137.static.imsbiz.com): 1 time **Unmatched Entries** fatal: buffer_get_string: buffer error [preauth] : 1 time(s) error: buffer_get_string_ret: incomplete message [preauth] : 1 time(s) Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 3 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

For your own safety, I highly recommend reading this email.

by topf＠zapf.in

Hello, You are in big trouble. However, don't panic right away. Listen to me first, because there is always a way out. You are now on the radar of an international group of hackers, and such things never end well for anyone. I'm sure you've heard of Anonymous. Well, compared to us, they are a bunch of schoolboys. We are a worldwide network of several thousand professionals, each with their own role. Someone hacks corporate and government networks, someone cooperates with intelligence agencies on the most delicate tasks, and someone (including me) deals with people like you to maintain the infrastructure of our group. "What kind of people like me?" - that is the question you are probably asking yourself now. The answer is simple: people who like to watch highly controversial and, shall we say, unconventional pornography on the internet that most normal people would consider perverted. But not you! In order to leave you without any doubts, I'll explain how I found it out. Two months ago, my colleagues and I installed spyware software on your computer and then gained access to all of your devices, including your phone. It was easy - one of those many pop-ups on porn sites was our work. I think you already understand that we would not write to an ordinary man who watches "vanilla" and even hardcore porn - there is nothing special about that. But the things you're watching are beyond good and evil. So after accessing your phone and computer cameras, we recorded you masturbating to extremely controversial videos. There is a close-up footage of you and a little square on the right with the videos you're pleasing yourself. However, as I said earlier, there is always a way out, because even the most degraded sinner deserves leniency. You are lucky today because I am not a sadist who enjoys other people's suffering. Only money matters to me. Here is your salvation: you must transfer $1490 in Bitcoin to this BTC cryptocurrency wallet: 13RuNi9xhDN5ngYy251h4WFDYoE3VA4kPJ You have exactly 48 hours to make the payment, so think less, and do more. As soon as I receive confirmation of the transaction, I will delete all compromising content and permanently disable our computer worm. Believe me, I always abide by gentleman's agreements. Even with people who are hardly gentlemen. Because it's nothing personal, just business. If I do not receive a payment, I will send all videos of you to every person in your contact list, messengers and email. Relatives, loved ones, colleagues, friends-everyone you've ever been in contact with will receive them. You understand perfectly well that you will never be able to wash this stain on your reputation. Everyone will remember you as sick as fuck. Your life will be completely ruined, and, most likely, only a tightened noose around your neck will be able to save the day. If you haven't dealt with crypto before, I suppose it won't be difficult for you to figure it all out. Simply type in the "crypto exchange" into the search bar and pay with a credit card. Besides, based on your browser history, you are a savvy user. When you want to, you can dig into the darkest depths of the Internet, so I'm sure you will be able to find out what is what. Here is what my colleagues and I should warn you against: ...Do not reply to this email. Do you really think we are so stupid to be tracked by an email address? This is a temporary disposable email. As soon as I clicked "Send", it was gone for good. ...Forget about law-enforcement authorities. As soon as I see that you are trying to contact them, the compromising material will be published. Remember, I have access to all your devices, and I can even track your movements. ...Do not reset your devices to factory settings and do not try to get rid of your devices. It won't help in any way. Look above - my All-seeing eye is watching all your actions. It is easy to hunt you down. I am sorry that we met in such circumstances. Probably, everything could be different if you had been more careful about what you are doing on the Internet. Watch yourself from now on, because even such things that you previously considered insignificant can destroy your life in the future like a butterfly effect. I hope this is goodbye forever. However, it depends on you. P.S. The countdown is on. The choice is yours.

1 Jahr, 7 Monate

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

TOPF März 2024