März 2024 - TOPF - ZaPF-Lists

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Mon Mar 18 04:42:02 2024 Date Range Processed: yesterday ( 2024-Mar-17 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 63:63 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 87.121.69.25 -> google.com:443: 1 Time(s) 91.92.244.152 -> zapf.wiki:443: 1 Time(s) A total of 13 sites probed the server 107.170.230.25 107.170.239.28 161.35.230.183 170.64.232.128 185.91.69.110 192.241.211.13 198.235.24.162 45.128.232.191 45.95.169.184 64.227.99.233 65.49.1.84 66.240.205.34 78.153.140.179 Requests with error response codes 400 Bad Request null: 15 Time(s) mstshash=Administr: 6 Time(s) *: 4 Time(s) /: 4 Time(s) 1,: 2 Time(s) 7: 2 Time(s) (Windows: 1 Time(s) /.env: 1 Time(s) /ctrlt/DeviceUpgrade_1: 1 Time(s) /hello: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) \xAC\xB9\xF5\xA10\x7F\xD7\xBB\xB0R\x86\xAD\x89\xB4: 1 Time(s) google.com:443: 1 Time(s) http://httpbin.org/ip: 1 Time(s) ry\xAE\x7F\xA3\x86\xA4A\xB3\xD2\xBF]~F2\xD ... x09\xC0\x13\xC0: 1 Time(s) stager64: 1 Time(s) zapf.wiki:443: 1 Time(s) 404 Not Found //cdnjs.cloudflare.com/ajax/libs/es5-shim/ ... es5-shim.min.js: 2 Time(s) //cdnjs.cloudflare.com/ajax/libs/html5shiv ... tml5shiv.min.js: 2 Time(s) //cdnjs.cloudflare.com/ajax/libs/respond.j ... /respond.min.js: 2 Time(s) //gist.git: 2 Time(s) //protokolle.zapf.in/build/6.cover-pack.fe ... 36298be630a4.js: 2 Time(s) //protokolle.zapf.in/build/8.common.fef3ca2736298be630a4.js: 2 Time(s) //protokolle.zapf.in/build/constant.js: 2 Time(s) //assets-cdn.git: 1 Time(s) /wp-content/plugins/miniorange-malware-pro ... des/js/phone.js: 1 Time(s) 499 (undefined) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 1 Time(s) 500 Internal Server Error /debug/default/view?panel=config: 44 Time(s) /: 41 Time(s) /%C0: 22 Time(s) /debug/default/view: 22 Time(s) /debug/default/view.html: 22 Time(s) /frontend/web/debug/default/view: 22 Time(s) /sapi/debug/default/view: 22 Time(s) /tool/view/phpinfo.view.php: 22 Time(s) /web/debug/default/view: 22 Time(s) /wp-config.php-backup: 22 Time(s) /.env: 11 Time(s) /.git/config: 6 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 3 Time(s) /symfony/public/_profiler/phpinfo: 2 Time(s) /.aws/credentials: 1 Time(s) /.env.bak: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /SiteLoader: 1 Time(s) /WuEL: 1 Time(s) /_profiler/phpinfo: 1 Time(s) /a: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /aws.yml: 1 Time(s) /config.js: 1 Time(s) /config/aws.yml: 1 Time(s) /download/file.ext: 1 Time(s) /favicon.ico: 1 Time(s) /geoserver/web/: 1 Time(s) /info.php: 1 Time(s) /mPlayer: 1 Time(s) /phpinfo: 1 Time(s) /phpinfo.php: 1 Time(s) /webui/: 1 Time(s) 502 Bad Gateway /YsmARieUTPGHR1-N837aTg/pdf: 1 Time(s) /bibundlern/pdf: 1 Time(s) /eRS1_n_IRVirXNN_X4ryVQ/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (103.36.84.194): 212 Time(s) root (179.43.180.106): 33 Time(s) root (79.110.62.21): 19 Time(s) unknown (139.59.16.110): 12 Time(s) unknown (170.64.174.65): 9 Time(s) root (120.224.116.208): 7 Time(s) root (170.64.174.65): 7 Time(s) root (158.51.96.38): 6 Time(s) unknown (170.64.228.124): 6 Time(s) unknown (96.88.139.138): 6 Time(s) root (123.110.12.185): 5 Time(s) root (170.64.228.124): 5 Time(s) unknown (202.165.16.209): 5 Time(s) unknown (210.126.78.57): 4 Time(s) unknown (218.157.163.203): 4 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 3 Time(s) unknown (058176110189.ctinets.com): 2 Time(s) unknown (103.155.46.98): 2 Time(s) unknown (103.181.141.50): 2 Time(s) unknown (115-179-4-58.east.ap.gmo-isp.jp): 2 Time(s) unknown (145.40.133.47): 2 Time(s) unknown (181.129.31.123): 2 Time(s) unknown (193.222.96.163): 2 Time(s) unknown (200.35.54.73): 2 Time(s) unknown (200.52.65.31): 2 Time(s) unknown (202.58.124.92): 2 Time(s) unknown (31.184.198.71): 2 Time(s) unknown (41.207.248.204): 2 Time(s) unknown (45.71.24.198): 2 Time(s) unknown (45.95.147.236): 2 Time(s) unknown (65.20.144.244): 2 Time(s) unknown (65.20.214.198): 2 Time(s) unknown (78-107-253-237.static.corbina.ru): 2 Time(s) unknown (ua-84-217-215-241.bbcust.telenor.se): 2 Time(s) nobody (1.9.249.234): 1 Time(s) nobody (122.169.118.142): 1 Time(s) nobody (203.134.219.10): 1 Time(s) nobody (59-120-179-121.hinet-ip.hinet.net): 1 Time(s) nobody (65.20.175.221): 1 Time(s) nobody (c-73-195-112-141.hsd1.nj.comcast.net): 1 Time(s) root (31.184.198.71): 1 Time(s) root (c188-149-234-105.bredband.tele2.se): 1 Time(s) unknown (014199168188.ctinets.com): 1 Time(s) unknown (078132104154.public.t-mobile.at): 1 Time(s) unknown (1.117.192.120): 1 Time(s) unknown (103.129.221.223): 1 Time(s) unknown (103.157.114.186): 1 Time(s) unknown (103.157.115.10): 1 Time(s) unknown (103.3.43.242): 1 Time(s) unknown (109.227.6.45): 1 Time(s) unknown (110.242.49.234): 1 Time(s) unknown (115.20.185.86): 1 Time(s) unknown (115.241.228.34): 1 Time(s) unknown (124.104.151.235): 1 Time(s) unknown (124.41.213.231): 1 Time(s) unknown (124.89.116.178): 1 Time(s) unknown (137.77.195.35.bc.googleusercontent.com): 1 Time(s) unknown (139-144-171-106.ip.linodeusercontent.com): 1 Time(s) unknown (139-144-69-201.ip.linodeusercontent.com): 1 Time(s) unknown (139.59.5.140): 1 Time(s) unknown (139.59.9.198): 1 Time(s) unknown (14.88.228.202): 1 Time(s) unknown (141-140-17-89.fiber.hringdu.is): 1 Time(s) unknown (147.45.109.181): 1 Time(s) unknown (149.23.117.254): 1 Time(s) unknown (154.82.84.7): 1 Time(s) unknown (156.67.173.194): 1 Time(s) unknown (157.122.183.220): 1 Time(s) unknown (160.20.59.171): 1 Time(s) unknown (161.35.142.12): 1 Time(s) unknown (165.16.124.29): 1 Time(s) unknown (176.10.248.195): 1 Time(s) unknown (183.237.164.206): 1 Time(s) unknown (185.216.70.138): 1 Time(s) unknown (188-169-66-154.dsl.utg.ge): 1 Time(s) unknown (188.166.211.228): 1 Time(s) unknown (195-154-41-131.rev.poneytelecom.eu): 1 Time(s) unknown (200.26.235.75): 1 Time(s) unknown (202.134.147.67): 1 Time(s) unknown (202.166.198.34): 1 Time(s) unknown (211.216.58.204): 1 Time(s) unknown (213-67-213-21-no2663.tbcn.telia.com): 1 Time(s) unknown (218.27.148.86): 1 Time(s) unknown (25.182.62.50.host.secureserver.net): 1 Time(s) unknown (254c71c1.catv.pool.telekom.hu): 1 Time(s) unknown (27.116.52.180): 1 Time(s) unknown (27.72.29.114): 1 Time(s) unknown (46.100.107.36): 1 Time(s) unknown (49.249.202.89): 1 Time(s) unknown (58.216.101.162): 1 Time(s) unknown (62.201.212.52): 1 Time(s) unknown (65.20.137.127): 1 Time(s) unknown (65.20.162.185): 1 Time(s) unknown (65.20.173.115): 1 Time(s) unknown (65.20.179.251): 1 Time(s) unknown (65.20.195.95): 1 Time(s) unknown (65.20.216.248): 1 Time(s) unknown (74.235.202.76): 1 Time(s) unknown (80.120.67.22): 1 Time(s) unknown (85.208.117.104): 1 Time(s) unknown (93.118.104.68): 1 Time(s) unknown (blogtools.ro): 1 Time(s) unknown (c48-211.i13-13.melita.com): 1 Time(s) unknown (cable-84-43-254-214.mnet.bg): 1 Time(s) unknown (cm222-166-167-89.hkcable.com.hk): 1 Time(s) unknown (ec2-3-6-174-71.ap-south-1.compute.amazonaws.com): 1 Time(s) unknown (ip213-165-73-136.pbiaas.com): 1 Time(s) unknown (ip68-2-152-102.ph.ph.cox.net): 1 Time(s) unknown (mail.colito.de): 1 Time(s) unknown (ool-43522457.dyn.optonline.net): 1 Time(s) unknown (ool-45716aae.dyn.optonline.net): 1 Time(s) unknown (p57b4ce1a.dip0.t-ipconnect.de): 1 Time(s) unknown (rinoparts2019.vps.wbsprt.com): 1 Time(s) unknown (s0106001aae04a6d0.vc.shawcable.net): 1 Time(s) unknown (starface.pannes.telinfoservices.fr): 1 Time(s) Invalid Users: Unknown Account: 162 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 15.242K Bytes accepted 15,608 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 4 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 4 Total 4xx Rejects 100.00% ======== ================================================== 98 Connections 14 Connections lost (inbound) 98 Disconnections 1 Removed from queue 1 Sent via SMTP 3 SMTP dialog errors ---------------------- Postfix End ------------------------- --------------------- Connections (secure-log) Begin ------------------------ **Unmatched Entries** systemd-logind: New seat seat0.: 1 Time(s) ---------------------- Connections (secure-log) End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ SSHD Started: 2 Time(s) Disconnecting after too many authentication failures for user: invalid : 1 Time(s) root : 1 Time(s) Failed logins from: 1.9.249.234 (nexusnetwork.com.my): 1 time 31.184.198.71: 1 time 59.120.179.121 (59-120-179-121.hinet-ip.hinet.net): 1 time 65.20.175.221: 1 time 73.195.112.141 (c-73-195-112-141.hsd1.nj.comcast.net): 1 time 79.110.62.21: 19 times 103.36.84.194: 212 times 120.224.116.208: 7 times 122.169.118.142 (abts-mum-static-142.118.169.122.airtelbroadband.in): 1 time 123.110.12.185 (123-110-12-185.cctv.dynamic.tbcnet.net.tw): 5 times 158.51.96.38 (unknown.ip-xfer.net): 6 times 170.64.174.65: 7 times 170.64.228.124: 5 times 179.43.180.106 (hostedby.privatelayer.com): 33 times 188.149.234.105 (c188-149-234-105.bredband.tele2.se): 1 time 203.134.219.10: 1 time Illegal users from: 2001:470:1:c84::31 (scan-21c.shadowserver.org): 1 time undef: 88 times 1.117.192.120: 1 time 3.6.174.71 (ec2-3-6-174-71.ap-south-1.compute.amazonaws.com): 1 time 14.88.228.202: 1 time 14.199.168.188 (014199168188.ctinets.com): 1 time 24.86.28.152 (S0106001aae04a6d0.vc.shawcable.net): 1 time 27.72.29.114 (dynamic-ip-adsl.viettel.vn): 1 time 27.116.52.180: 1 time 31.184.198.71: 3 times 35.195.77.137 (137.77.195.35.bc.googleusercontent.com): 1 time 37.9.170.115 (rinoparts2019.vps.wbsprt.com): 1 time 37.76.113.193 (254C71C1.catv.pool.telekom.hu): 1 time 41.207.248.204: 2 times 45.71.24.198: 2 times 45.95.147.236 (hosted-by.as49870.net): 2 times 46.100.107.36: 1 time 46.101.108.245 (blogtools.ro): 1 time 49.249.202.89 (static-89.202.249.49-tataidc.co.in): 1 time 50.62.182.25 (25.182.62.50.host.secureserver.net): 1 time 51.178.151.131 (starface.pannes.telinfoservices.fr): 1 time 58.176.110.189 (058176110189.ctinets.com): 2 times 58.216.101.162: 1 time 62.201.212.52: 1 time 64.62.197.232 (scan-43u.shadowserver.org): 1 time 65.20.137.127: 1 time 65.20.144.244: 2 times 65.20.162.185: 1 time 65.20.173.115: 1 time 65.20.179.251: 1 time 65.20.195.95: 1 time 65.20.214.198: 2 times 65.20.216.248: 1 time 67.82.36.87 (ool-43522457.dyn.optonline.net): 1 time 68.2.152.102 (ip68-2-152-102.ph.ph.cox.net): 1 time 69.113.106.174 (ool-45716aae.dyn.optonline.net): 1 time 74.235.202.76: 1 time 78.107.253.237 (78-107-253-237.static.corbina.ru): 2 times 78.132.104.154 (078132104154.public.t-mobile.at): 1 time 79.110.62.21: 1 time 80.120.67.22: 1 time 84.43.254.214 (cable-84-43-254-214.mnet.bg): 1 time 84.217.215.241 (ua-84-217-215-241.bbcust.telenor.se): 2 times 85.208.117.104 (104.117-208-85.rdns.scalabledns.com): 1 time 87.139.5.229 (mail.colito.de): 1 time 87.180.206.26 (p57b4ce1a.dip0.t-ipconnect.de): 1 time 89.17.140.141 (141-140-17-89.fiber.hringdu.is): 1 time 93.118.104.68: 1 time 94.17.48.211 (c48-211.i13-13.melita.com): 1 time 96.88.139.138 (96-88-139-138-static.hfc.comcastbusiness.net): 6 times 103.3.43.242 (static-242.43.3.103-tataidc.co.in): 1 time 103.36.84.194: 16 times 103.129.221.223 (ip103-129-221-223.cloudhost.web.id): 1 time 103.155.46.98: 2 times 103.157.114.186 (186.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.10 (10.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.181.141.50: 2 times 109.227.6.45 (srv-109-227-6-45.static.a1.hr): 1 time 110.42.200.114: 1 time 110.242.49.234: 1 time 115.20.185.86: 5 times 115.179.4.58 (115-179-4-58.east.ap.gmo-isp.jp): 2 times 115.241.228.34: 1 time 124.41.213.231 (231.213.41.124.dynamic.wlink.com.np): 1 time 124.89.116.178: 1 time 124.104.151.235 (124.104.151.235.pldt.net): 1 time 139.59.5.140: 1 time 139.59.9.198: 1 time 139.59.16.110: 12 times 139.144.69.201 (139-144-69-201.ip.linodeusercontent.com): 1 time 139.144.171.106 (139-144-171-106.ip.linodeusercontent.com): 1 time 145.40.133.47 (uk-133-47.toob.co.uk): 2 times 147.45.109.181: 1 time 149.23.117.254: 1 time 154.82.84.7: 1 time 156.67.173.194: 1 time 157.122.183.220: 1 time 160.20.59.171: 1 time 161.35.142.12: 1 time 165.16.124.29: 1 time 170.64.174.65: 10 times 170.64.228.124: 7 times 176.10.248.195 (se-248-195.integrity.st): 1 time 181.129.31.123 (adsl-181-129-31-123.une.net.co): 2 times 183.237.164.206: 1 time 185.216.70.138: 1 time 188.166.211.228: 1 time 188.169.66.154 (188-169-66-154.dsl.utg.ge): 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 3 times 193.222.96.163: 2 times 195.154.41.131 (195-154-41-131.rev.poneytelecom.eu): 1 time 200.26.235.75: 1 time 200.35.54.73 (adsl-mnt-200-35-54-73.edatel.net.co): 2 times 200.52.65.31 (service-static-52.65.31.mcm-telecom.com.mx): 2 times 202.58.124.92: 2 times 202.134.147.67: 1 time 202.165.16.209: 5 times 202.166.198.34 (34.198.166.202.ether.static.wlink.com.np): 1 time 210.126.78.57: 4 times 211.216.58.204: 1 time 213.67.213.21 (213-67-213-21-no2663.tbcn.telia.com): 1 time 213.165.73.136 (ip213-165-73-136.pbiaas.com): 1 time 218.27.148.86 (86.148.27.218.adsl-pool.jlccptt.net.cn): 1 time 218.157.163.203: 4 times 222.166.167.89 (cm222-166-167-89.hkcable.com.hk): 1 time **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 1 time(s) error: buffer_get_string_ret: incomplete message [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (0,ssh-connection) -> (root,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ubnt,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (admin,ssh-connection) [preauth] : 1 time(s) fatal: buffer_get_string: buffer error [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sun Mar 17 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-16 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 11:11 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 80.75.212.75 -> api64.ipify.org:443: 2 Time(s) A total of 8 sites probed the server 107.170.252.16 162.243.137.32 166.88.141.168 172.105.128.13 184.105.139.68 185.16.38.158 205.210.31.53 207.90.244.5 Requests with error response codes 400 Bad Request null: 13 Time(s) /: 3 Time(s) *: 2 Time(s) api64.ipify.org:443: 2 Time(s) mstshash=Administr: 2 Time(s) /.env: 1 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) \xC2C\xF8\xA9: 1 Time(s) \xF5\x1C\x9A\x06\xBD@\xF9\xEF\x81<\x175A\x ... x09\xC0\x13\xC0: 1 Time(s) 499 (undefined) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 1 Time(s) 500 Internal Server Error /: 16 Time(s) /.env: 7 Time(s) /config: 6 Time(s) /.git/config: 4 Time(s) /admin: 3 Time(s) /admin/: 3 Time(s) /admin/.git/config: 3 Time(s) /admin/config: 3 Time(s) /api: 3 Time(s) /api/: 3 Time(s) /api/.git/config: 3 Time(s) /api/config: 3 Time(s) /app: 3 Time(s) /app/: 3 Time(s) /app/.git/config: 3 Time(s) /app/config: 3 Time(s) /backend: 3 Time(s) /backend/: 3 Time(s) /backend/.git/config: 3 Time(s) /backend/config: 3 Time(s) /backup: 3 Time(s) /backup/: 3 Time(s) /backup/.git/config: 3 Time(s) /backup/config: 3 Time(s) /bak: 3 Time(s) /bak/: 3 Time(s) /bak/.git/config: 3 Time(s) /bak/config: 3 Time(s) /cfg: 3 Time(s) /cfg/: 3 Time(s) /cfg/.git/config: 3 Time(s) /cfg/config: 3 Time(s) /conf: 3 Time(s) /conf/: 3 Time(s) /conf/.git/config: 3 Time(s) /conf/config: 3 Time(s) /config/: 3 Time(s) /config/.git/config: 3 Time(s) /config/config: 3 Time(s) /cron: 3 Time(s) /cron/: 3 Time(s) /data: 3 Time(s) /data/: 3 Time(s) /data/.git/config: 3 Time(s) /data/config: 3 Time(s) /download: 3 Time(s) /download/: 3 Time(s) /downloads: 3 Time(s) /downloads/: 3 Time(s) /files: 3 Time(s) /files/: 3 Time(s) /git: 3 Time(s) /git/: 3 Time(s) /git/.git/config: 3 Time(s) /git/config: 3 Time(s) /inc: 3 Time(s) /inc/: 3 Time(s) /inc/.git/config: 3 Time(s) /inc/config: 3 Time(s) /include: 3 Time(s) /include/: 3 Time(s) /include/.git/config: 3 Time(s) /include/config: 3 Time(s) /includes: 3 Time(s) /includes/: 3 Time(s) /includes/.git/config: 3 Time(s) /lib: 3 Time(s) /lib/: 3 Time(s) /lib/.git/config: 3 Time(s) /lib/config: 3 Time(s) /libs: 3 Time(s) /libs/: 3 Time(s) /libs/.git/config: 3 Time(s) /libs/config: 3 Time(s) /log: 3 Time(s) /log/: 3 Time(s) /logs: 3 Time(s) /logs/: 3 Time(s) /rest: 3 Time(s) /rest/: 3 Time(s) /rest/.git/config: 3 Time(s) /rest/config: 3 Time(s) /service: 3 Time(s) /service/: 3 Time(s) /service/.git/config: 3 Time(s) /service/config: 3 Time(s) /services: 3 Time(s) /services/: 3 Time(s) /services/.git/config: 3 Time(s) /services/config: 3 Time(s) /source: 3 Time(s) /source/: 3 Time(s) /source/.git/config: 3 Time(s) /source/config: 3 Time(s) /sources: 3 Time(s) /sources/: 3 Time(s) /sources/.git/config: 3 Time(s) /sources/config: 3 Time(s) /src: 3 Time(s) /src/: 3 Time(s) /src/.git/config: 3 Time(s) /src/config: 3 Time(s) /svc: 3 Time(s) /svc/: 3 Time(s) /svc/.git/config: 3 Time(s) /svc/config: 3 Time(s) /temp: 3 Time(s) /temp/: 3 Time(s) /temp/.git/config: 3 Time(s) /temp/config: 3 Time(s) /test: 3 Time(s) /test/: 3 Time(s) /test/.git/config: 3 Time(s) /test/config: 3 Time(s) /tmp: 3 Time(s) /tmp/: 3 Time(s) /tmp/.git/config: 3 Time(s) /tmp/config: 3 Time(s) /upload: 3 Time(s) /upload/: 3 Time(s) /uploads: 3 Time(s) /uploads/: 3 Time(s) /wallet: 3 Time(s) /wallet/: 3 Time(s) /wallets: 3 Time(s) /wallets/: 3 Time(s) /favicon.ico: 2 Time(s) /includes/config: 2 Time(s) /.well-known/security.txt: 1 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 1 Time(s) /geoserver/web/: 1 Time(s) /robots.txt: 1 Time(s) /sitemap.xml: 1 Time(s) /webui/: 1 Time(s) 502 Bad Gateway /DigitalZaPF:Anforderungen_an_psychologisc ... ungsstellen/pdf: 1 Time(s) /NDAi3L_fSz2XYjfxzaCc_Q/pdf: 1 Time(s) /WS22_nachhaltigkeitsresolution/pdf: 1 Time(s) /_2VggSWpTGiqgb_nGCCc8A/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (194.169.175.106): 18 Time(s) root (mail.rokor.kz): 18 Time(s) root (179.43.180.106): 14 Time(s) unknown (85.209.11.254): 8 Time(s) root (119.188.169.9): 6 Time(s) root (216.126.68.10): 6 Time(s) unknown (175.206.96.66): 5 Time(s) unknown (194.169.175.35): 3 Time(s) unknown (202.165.16.209): 3 Time(s) root (85.209.11.27): 2 Time(s) unknown (152.42.200.242): 2 Time(s) unknown (203-59-73-76.perm.iinet.net.au): 2 Time(s) unknown (85.209.11.27): 2 Time(s) nobody (124.89.116.178): 1 Time(s) nobody (178.182.233.186): 1 Time(s) nobody (65.20.192.5): 1 Time(s) nobody (65.20.194.204): 1 Time(s) root (103.127.8.226): 1 Time(s) root (109.202.173.227): 1 Time(s) root (152.42.200.242): 1 Time(s) root (180.150.243.126): 1 Time(s) root (194.169.175.35): 1 Time(s) root (85.209.11.254): 1 Time(s) sshd (194.169.175.35): 1 Time(s) sshd (85.209.11.254): 1 Time(s) unknown (103.127.8.226): 1 Time(s) unknown (103.129.220.143): 1 Time(s) unknown (103.157.114.202): 1 Time(s) unknown (103.157.114.242): 1 Time(s) unknown (103.157.115.106): 1 Time(s) unknown (103.35.169.154): 1 Time(s) unknown (103.38.12.236): 1 Time(s) unknown (108-254-167-57.lightspeed.livnmi.sbcglobal.net): 1 Time(s) unknown (110.39.182.66): 1 Time(s) unknown (110.39.55.182): 1 Time(s) unknown (112.26.65.51): 1 Time(s) unknown (122.14.197.21): 1 Time(s) unknown (122.53.57.33): 1 Time(s) unknown (136.232.68.50): 1 Time(s) unknown (14.98.73.66): 1 Time(s) unknown (141.148.226.227): 1 Time(s) unknown (152.230.106.235): 1 Time(s) unknown (183.236.187.172): 1 Time(s) unknown (185.196.8.151): 1 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (19010730120.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (194.169.175.36): 1 Time(s) unknown (198.11.78.181.ufinet.com.co): 1 Time(s) unknown (203.134.219.10): 1 Time(s) unknown (31-10-205-51.static.upc.ch): 1 Time(s) unknown (41.2.31.31.dyn.idknet.com): 1 Time(s) unknown (41.207.248.204): 1 Time(s) unknown (42-2-251-116.static.netvigator.com): 1 Time(s) unknown (59-120-179-121.hinet-ip.hinet.net): 1 Time(s) unknown (59.94.35.242): 1 Time(s) unknown (62.116.243.192): 1 Time(s) unknown (65.20.143.189): 1 Time(s) unknown (65.20.189.109): 1 Time(s) unknown (65.20.194.27): 1 Time(s) unknown (65.20.195.95): 1 Time(s) unknown (65.20.250.215): 1 Time(s) unknown (69.79.197.196): 1 Time(s) unknown (82.67.30.217): 1 Time(s) unknown (94.204.204.226): 1 Time(s) unknown (94.206.67.82): 1 Time(s) unknown (c83-254-230-160.bredband.tele2.se): 1 Time(s) unknown (ip85-215-77-41.pbiaas.com): 1 Time(s) unknown (ool-45716aae.dyn.optonline.net): 1 Time(s) unknown (ppp-vpdn-92.242.51.118.yarnet.ru): 1 Time(s) Invalid Users: Unknown Account: 69 Time(s) systemd-user: Unknown Entries: session opened for user root by (uid=0): 1 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 17.634K Bytes accepted 18,057 17.634K Bytes sent via SMTP 18,057 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 24 Connections 2 Connections lost (inbound) 24 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors ---------------------- Postfix End ------------------------- --------------------- rsyslogd Begin ------------------------ **** Unmatched entries **** [origin software="rsyslogd" swVersion="8.4.2" x-pid="195" x-info="http://www.rsyslog.com"] exiting on signal 15. : 1 Times ---------------------- rsyslogd End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 1 Time(s) Failed logins from: 65.20.192.5: 1 time 65.20.194.204: 1 time 85.209.11.27: 2 times 85.209.11.254: 2 times 103.127.8.226: 1 time 109.202.173.227: 1 time 119.188.169.9: 6 times 124.89.116.178: 1 time 152.42.200.242: 1 time 178.88.167.38 (mail.rokor.kz): 18 times 178.182.233.186 (178.182.233.186.mobile.static.t-mobile.pl): 1 time 179.43.180.106 (hostedby.privatelayer.com): 14 times 180.150.243.126 (undefined.hostname.localhost): 1 time 194.169.175.35: 2 times 194.169.175.106: 18 times 216.126.68.10: 6 times Illegal users from: undef: 22 times 14.98.73.66: 1 time 31.10.205.51 (31-10-205-51.static.upc.ch): 1 time 31.31.2.41 (41.2.31.31.dyn.idknet.com): 1 time 41.207.248.204: 1 time 42.2.251.116 (42-2-251-116.static.netvigator.com): 1 time 59.94.35.242: 1 time 59.120.179.121 (59-120-179-121.hinet-ip.hinet.net): 1 time 62.116.243.192 (192.fttbcentrum2.gavlenet.com): 1 time 65.20.143.189: 1 time 65.20.189.109: 1 time 65.20.194.27: 1 time 65.20.195.95: 1 time 65.20.250.215: 1 time 69.79.197.196 (196-197-79-69-static.flowja.com): 1 time 69.113.106.174 (ool-45716aae.dyn.optonline.net): 1 time 82.67.30.217 (ril69-1_migr-82-67-30-217.fbx.proxad.net): 1 time 83.254.230.160 (c83-254-230-160.bredband.tele2.se): 1 time 85.209.11.27: 2 times 85.209.11.254: 8 times 85.215.77.41 (ip85-215-77-41.pbiaas.com): 1 time 92.242.51.118 (ppp-vpdn-92.242.51.118.yarnet.ru): 1 time 94.204.204.226: 1 time 94.206.67.82: 1 time 103.35.169.154 (103.35.169-154.cyberwaybd.net): 1 time 103.38.12.236 (static-12.38.103.extranet.co.in): 1 time 103.127.8.226: 1 time 103.129.220.143: 1 time 103.157.114.202 (202.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.114.242 (242.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.106 (106.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 108.254.167.57 (108-254-167-57.lightspeed.livnmi.sbcglobal.net): 1 time 110.39.55.182 (WGPON-3955-182.wateen.net): 1 time 110.39.182.66 (WGPON-39182-66.wateen.net): 1 time 112.26.65.51: 1 time 122.14.197.21: 1 time 122.53.57.33 (122.53.57.33.static.pldt.net): 1 time 136.232.68.50: 1 time 141.148.226.227: 1 time 152.42.200.242: 2 times 152.230.106.235 (static.152.230.106.235.gtdinternet.com): 1 time 175.206.96.66: 5 times 181.78.11.198 (198.11.78.181.ufinet.com.co): 1 time 183.236.187.172: 1 time 185.196.8.151: 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 1 time 190.107.30.120 (19010730120.ip71.static.mediacommerce.com.co): 1 time 194.169.175.35: 3 times 194.169.175.36: 1 time 194.169.175.106: 1 time 202.165.16.209: 3 times 203.59.73.76 (203-59-73-76.perm.iinet.net.au): 2 times 203.134.219.10: 1 time Users logging in through sshd: root: 77.12.46.215 (dynamic-077-012-046-215.77.12.pool.telefonica.de): 1 time **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sat Mar 16 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-15 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 30:30 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 12 sites probed the server 162.216.150.191 165.22.222.77 178.79.163.211 179.43.168.98 185.100.87.136 185.142.236.43 198.199.110.40 209.97.132.140 63.251.106.21 65.49.1.49 66.240.205.34 87.251.64.153 Requests with error response codes 400 Bad Request null: 21 Time(s) /: 7 Time(s) *: 3 Time(s) /aaa9: 2 Time(s) /aab9: 2 Time(s) /bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${I ... }zyxel.selfrep;: 2 Time(s) /.env: 1 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) >\xED\x99\xA5\xD4\xBC\x87\xBE\x0CT\xA0[\xD ... 8E%\xE3\xA8\xF4: 1 Time(s) LM: 1 Time(s) \x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x ... x00\x00\x00\x00: 1 Time(s) \x01\x00\x01\x1C\x03\x03\x8AR\x17\x13<\xF1 ... \xFB\xAE\xF9Qoq: 1 Time(s) \x09\x91\x81_*?\xC8\xEE\x9F2@o\xB7\x8F\x0C ... x00\x01\x02\x00: 1 Time(s) \x8A\x1CW,\xE4\xE2-\xB8s\x03?\x18\xDCnU\xE ... x00\x01\x02\x00: 1 Time(s) \xA3]n\x08\xDE\xE0\x01\x17\xDBat\xAF\xA8\x ... xA9\xC7\xFB\x7F: 1 Time(s) \xC0/\xC00\xC0+\xC0,\xCC\xA8\xCC\xA9\xC0\x ... x09\xC0\x14\xC0: 1 Time(s) _\xA8\x95\xAA\xB0\xD8\xA5\xAB\xA6\xD3\x80\ ... x00\x01\x02\x00: 1 Time(s) c\x05\xA1: 1 Time(s) 500 Internal Server Error /: 32 Time(s) /.env: 3 Time(s) /.git/config: 3 Time(s) /aaa9: 2 Time(s) /aab9: 2 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 2 Time(s) /favicon.ico: 2 Time(s) /remote/fgt_lang?lang=/../../../..//////// ... lvpn_websession: 2 Time(s) /ztp/cgi-bin/handler: 2 Time(s) /.well-known/security.txt: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /HNAP1: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /ajax: 1 Time(s) /evox/about: 1 Time(s) /geoserver/web/: 1 Time(s) /global-protect/login.esp: 1 Time(s) /index.html: 1 Time(s) /login: 1 Time(s) /nmaplowercheck1710496931: 1 Time(s) /owa/: 1 Time(s) /robots.txt: 1 Time(s) /sdk: 1 Time(s) /sitemap.xml: 1 Time(s) /webui/: 1 Time(s) /wlm/login: 1 Time(s) 502 Bad Gateway /LXfQG2qcTpSj_0d9YLsf0g/pdf: 1 Time(s) /O2CAPBprSRO1hR9J52_r_w/pdf: 1 Time(s) /T_BKxBP1RJe2MgBIWZnSMA/pdf: 1 Time(s) /T_HrFtt1RNCO4fUwT9jzDQ/pdf: 1 Time(s) /Z7JgFtprRTu4mj0ux-SJ3w/pdf: 1 Time(s) /ak_wiki/pdf: 1 Time(s) /w1op49QpSGyk43xo0up_Aw/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (165.227.219.126): 216 Time(s) root (47.100.230.180): 90 Time(s) root (179.43.180.106): 34 Time(s) root (mail.rokor.kz): 12 Time(s) unknown (202.165.16.209): 12 Time(s) root (pat-89-23-181-191.pool.powernet.com.ru): 7 Time(s) unknown (194.169.175.36): 7 Time(s) unknown (85.209.11.254): 7 Time(s) root (123203108104.ctinets.com): 6 Time(s) root (121.152.45.237): 5 Time(s) root (96.88.139.138): 5 Time(s) root (85.209.11.254): 4 Time(s) unknown (185.191.127.212): 4 Time(s) unknown (194.169.175.35): 4 Time(s) unknown (161.35.52.191): 3 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 3 Time(s) unknown (45.71.24.198): 3 Time(s) unknown (85.209.11.27): 3 Time(s) unknown (1.52.230.54): 2 Time(s) unknown (103.157.115.26): 2 Time(s) unknown (152.230.106.235): 2 Time(s) unknown (179.131.11.68): 2 Time(s) unknown (185.196.8.151): 2 Time(s) unknown (190.107.71.200): 2 Time(s) unknown (192.12.113.119): 2 Time(s) unknown (204.216.170.215): 2 Time(s) unknown (31.184.198.71): 2 Time(s) unknown (36.137.22.65): 2 Time(s) unknown (79.117.24.4): 2 Time(s) unknown (91.74.96.181): 2 Time(s) unknown (fp6fd8c294.ap.nuro.jp): 2 Time(s) nobody (19010730117.ip71.static.mediacommerce.com.co): 1 Time(s) nobody (202.165.16.209): 1 Time(s) nobody (213-65-246-133-no2661.tbcn.telia.com): 1 Time(s) nobody (59-120-179-121.hinet-ip.hinet.net): 1 Time(s) nobody (81.68.166.244): 1 Time(s) nobody (i19-les03-ix2-5-48-120-230.sfr.lns.abo.bbox.fr): 1 Time(s) root (112.196.59.146): 1 Time(s) root (158.51.96.38): 1 Time(s) root (179.209.237.119): 1 Time(s) root (194.169.175.35): 1 Time(s) root (194.169.175.36): 1 Time(s) root (200.229.209.202): 1 Time(s) root (200.91.234.36): 1 Time(s) root (202.165.16.209): 1 Time(s) root (31.184.198.71): 1 Time(s) root (fp73a31e6e.stmb122.ap.nuro.jp): 1 Time(s) unknown (102.38.3.181): 1 Time(s) unknown (103.127.53.114): 1 Time(s) unknown (103.127.53.122): 1 Time(s) unknown (103.194.249.82): 1 Time(s) unknown (103.58.64.19): 1 Time(s) unknown (110.7.40.114): 1 Time(s) unknown (111.92.62.19): 1 Time(s) unknown (114-32-191-1.hinet-ip.hinet.net): 1 Time(s) unknown (115.90.226.11): 1 Time(s) unknown (117.187.89.145): 1 Time(s) unknown (117.220.162.66): 1 Time(s) unknown (122-117-15-25.hinet-ip.hinet.net): 1 Time(s) unknown (122.53.57.33): 1 Time(s) unknown (123.201.57.243): 1 Time(s) unknown (124.106.213.54): 1 Time(s) unknown (124.89.116.178): 1 Time(s) unknown (134.249.147.136): 1 Time(s) unknown (136.255.158.118): 1 Time(s) unknown (139.135.136.34): 1 Time(s) unknown (146.56.151.124): 1 Time(s) unknown (159-118-82-58.cpe.sparklight.net): 1 Time(s) unknown (159.89.18.106): 1 Time(s) unknown (167-179-148-169.a7b394.syd.nbn.aussiebb.net): 1 Time(s) unknown (171.212.103.245): 1 Time(s) unknown (175.139.203.77): 1 Time(s) unknown (182.220.46.169): 1 Time(s) unknown (188-169-66-154.dsl.utg.ge): 1 Time(s) unknown (19010730116.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (194.29.62.5): 1 Time(s) unknown (203.109.80.222): 1 Time(s) unknown (206.252.194.38): 1 Time(s) unknown (211.109.93.130): 1 Time(s) unknown (213.111.66.72): 1 Time(s) unknown (217-210-89-93-no2663.tbcn.telia.com): 1 Time(s) unknown (220-130-226-160.hinet-ip.hinet.net): 1 Time(s) unknown (221.4.197.154): 1 Time(s) unknown (27.21.168.184.host.secureserver.net): 1 Time(s) unknown (31-10-205-51.static.upc.ch): 1 Time(s) unknown (36.89.156.215): 1 Time(s) unknown (36.93.114.148): 1 Time(s) unknown (37.255.202.68): 1 Time(s) unknown (41.2.31.31.dyn.idknet.com): 1 Time(s) unknown (41.207.248.204): 1 Time(s) unknown (41.33.69.243): 1 Time(s) unknown (41.63.61.165): 1 Time(s) unknown (42-2-251-116.static.netvigator.com): 1 Time(s) unknown (42.112.235.77.dyn.idknet.com): 1 Time(s) unknown (49.248.46.2): 1 Time(s) unknown (49.249.202.89): 1 Time(s) unknown (58.246.253.218): 1 Time(s) unknown (59-125-252-50.hinet-ip.hinet.net): 1 Time(s) unknown (62.201.212.54): 1 Time(s) unknown (65.20.144.244): 1 Time(s) unknown (65.20.162.33): 1 Time(s) unknown (65.20.174.246): 1 Time(s) unknown (65.20.192.86): 1 Time(s) unknown (65.20.204.17): 1 Time(s) unknown (65.20.205.152): 1 Time(s) unknown (69-38.mc.ccapcable.com): 1 Time(s) unknown (80.210.26.105): 1 Time(s) unknown (82-65-140-218.subs.proxad.net): 1 Time(s) unknown (85.122.56.15): 1 Time(s) unknown (91-241-150-246-dyn.neotele.com.ru): 1 Time(s) unknown (91.92.124.199): 1 Time(s) unknown (92.52.146.18): 1 Time(s) unknown (94.142.51.44): 1 Time(s) unknown (c-68-35-16-210.hsd1.al.comcast.net): 1 Time(s) unknown (c-73-155-248-188.hsd1.tx.comcast.net): 1 Time(s) unknown (cm222-166-167-89.hkcable.com.hk): 1 Time(s) unknown (fp784a0093.tkyc623.ap.nuro.jp): 1 Time(s) unknown (fw01.softeco.it): 1 Time(s) unknown (host-176-36-13-121.b024.la.net.ua): 1 Time(s) unknown (ip50-158-35-220.lv.lv.cox.net): 1 Time(s) unknown (ool-1826d6c2.dyn.optonline.net): 1 Time(s) Invalid Users: Unknown Account: 366 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 18.258K Bytes accepted 18,696 18.258K Bytes sent via SMTP 18,696 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 5 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 5 Total 4xx Rejects 100.00% ======== ================================================== 55 Connections 8 Connections lost (inbound) 55 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 18 Time(s) Failed logins from: 5.48.120.230 (i19-les03-ix2-5-48-120-230.sfr.lns.abo.bbox.fr): 1 time 31.184.198.71: 1 time 47.100.230.180: 90 times 59.120.179.121 (59-120-179-121.hinet-ip.hinet.net): 1 time 81.68.166.244: 1 time 85.209.11.254: 4 times 89.23.181.191 (pat-89-23-181-191.pool.powernet.com.ru): 7 times 96.88.139.138 (96-88-139-138-static.hfc.comcastbusiness.net): 6 times 112.196.59.146: 1 time 115.163.30.110 (fp73a31e6e.stmb122.ap.nuro.jp): 1 time 121.152.45.237: 6 times 123.203.108.104 (123203108104.ctinets.com): 6 times 158.51.96.38 (unknown.ip-xfer.net): 1 time 178.88.167.38 (mail.rokor.kz): 12 times 179.43.180.106 (hostedby.privatelayer.com): 34 times 179.209.237.119 (b3d1ed77.virtua.com.br): 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 1 time 194.169.175.35: 1 time 194.169.175.36: 1 time 200.91.234.36 (desenliste.ifxcorp.com): 1 time 200.229.209.202 (200-229-209-202.r2webnet.com.br): 1 time 202.165.16.209: 2 times 213.65.246.133 (213-65-246-133-no2661.tbcn.telia.com): 1 time Illegal users from: 2001:470:1:c84::17 (scan-07o.shadowserver.org): 1 time undef: 140 times 1.52.230.54: 2 times 24.38.214.194 (ool-1826d6c2.dyn.optonline.net): 1 time 31.10.205.51 (31-10-205-51.static.upc.ch): 1 time 31.31.2.41 (41.2.31.31.dyn.idknet.com): 1 time 31.184.198.71: 3 times 36.89.156.215: 1 time 36.93.114.148: 1 time 36.137.22.65: 2 times 37.255.202.68: 1 time 41.33.69.243 (host-41.33.69.243.tedata.net): 1 time 41.63.61.165: 1 time 41.207.248.204: 1 time 42.2.251.116 (42-2-251-116.static.netvigator.com): 1 time 45.71.24.198: 3 times 47.76.43.229: 1 time 49.248.46.2 (static-2.46.248.49-tataidc.co.in): 1 time 49.249.202.89 (static-89.202.249.49-tataidc.co.in): 1 time 50.158.35.220 (ip50-158-35-220.lv.lv.cox.net): 1 time 58.246.253.218: 1 time 59.125.252.50 (59-125-252-50.hinet-ip.hinet.net): 1 time 62.201.212.54: 1 time 64.62.197.114 (scan-47h.shadowserver.org): 1 time 65.20.144.244: 1 time 65.20.162.33: 1 time 65.20.174.246: 1 time 65.20.192.86: 1 time 65.20.204.17: 1 time 65.20.205.152: 1 time 68.35.16.210 (c-68-35-16-210.hsd1.al.comcast.net): 1 time 73.155.248.188 (c-73-155-248-188.hsd1.tx.comcast.net): 1 time 77.235.112.42 (42.112.235.77.dyn.idknet.com): 1 time 79.117.24.4 (79-117-24-4.digimobil.es): 2 times 80.210.26.105: 1 time 82.65.140.218 (82-65-140-218.subs.proxad.net): 1 time 85.122.56.15: 1 time 85.209.11.27: 3 times 85.209.11.254: 7 times 91.74.96.181: 2 times 91.92.124.199: 1 time 91.241.150.246 (91-241-150-246-dyn.neotele.com.ru): 1 time 92.52.146.18: 1 time 93.62.202.194 (fw01.softeco.it): 1 time 94.142.51.44 (ip94-142-51-44.zaindata.jo): 1 time 102.38.3.181: 1 time 103.58.64.19: 1 time 103.127.53.114: 1 time 103.127.53.122: 1 time 103.157.115.26 (26.115.157.103.Ai-bkti-hts.iforte.net.id): 2 times 103.194.249.82: 1 time 110.7.40.114: 1 time 111.92.62.19 (19.62.92.111.asianet.co.in): 1 time 111.216.194.148 (fp6fd8c294.ap.nuro.jp): 2 times 114.32.191.1 (114-32-191-1.hinet-ip.hinet.net): 1 time 115.90.226.11: 5 times 117.187.89.145: 1 time 117.220.162.66: 1 time 120.74.0.147 (fp784a0093.tkyc623.ap.nuro.jp): 1 time 122.53.57.33 (122.53.57.33.static.pldt.net): 1 time 122.117.15.25 (122-117-15-25.hinet-ip.hinet.net): 1 time 123.201.57.243 (243-57-201-123.static.youbroadband.in): 1 time 124.89.116.178: 1 time 124.106.213.54: 1 time 134.249.147.136 (134-249-147-136.broadband.kyivstar.net): 1 time 136.255.158.118: 1 time 139.135.136.34: 1 time 146.56.151.124: 1 time 152.230.106.235 (static.152.230.106.235.gtdinternet.com): 2 times 159.89.18.106: 1 time 159.118.82.58 (159-118-82-58.cpe.sparklight.net): 1 time 161.35.52.191: 3 times 165.227.219.126: 216 times 167.179.148.169 (167-179-148-169.a7b394.syd.nbn.aussiebb.net): 1 time 171.212.103.245: 1 time 175.24.152.224: 1 time 175.139.203.77 (rehon.com): 1 time 176.36.13.121 (host-176-36-13-121.b024.la.net.ua): 1 time 179.131.11.68: 2 times 182.220.46.169: 1 time 184.168.21.27 (27.21.168.184.host.secureserver.net): 1 time 185.191.127.212: 4 times 185.196.8.151: 2 times 188.169.66.154 (188-169-66-154.dsl.utg.ge): 1 time 190.107.30.116 (19010730116.ip71.static.mediacommerce.com.co): 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 3 times 190.107.71.200: 2 times 192.12.113.119: 2 times 194.29.62.5 (unassigned-2-5.unitel.net.ua): 1 time 194.169.175.35: 4 times 194.169.175.36: 9 times 202.165.16.209: 12 times 203.109.80.222 (222-80-109-203.static.youbroadband.in): 1 time 204.216.170.215: 2 times 206.252.194.38: 1 time 211.109.93.130: 1 time 213.111.66.72 (unused-213.111.66.72.bilink.ua): 1 time 216.113.69.38 (69-38.mc.ccapcable.com): 1 time 217.210.89.93 (217-210-89-93-no2663.tbcn.telia.com): 1 time 220.130.226.160 (220-130-226-160.hinet-ip.hinet.net): 1 time 221.4.197.154: 1 time 222.166.167.89 (cm222-166-167-89.hkcable.com.hk): 1 time **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 3 time(s) Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (admin,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (admin,ssh-connection) -> (ubnt,ssh-connection) [preauth] : 1 time(s) Disconnecting: Change of username or service not allowed: (0,ssh-connection) -> (root,ssh-connection) [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

DOMAIN zapfev.de RENEWAL SUCCESSFUL

by INWX GmbH

DOMAIN: zapfev.de PERIOD: 1 PERIODTIMEUNIT: Y ----------------------------------------------------------------------------------- DOMAIN RENEWAL SUCCESSFUL ----------------------------------------------------------------------------------- -- INWX GmbH Anschrift | Prinzessinnenstraße 30 | 10969 Berlin | Germany Support-Hotline | 0180 - 373 0000 (0,09 Euro je Minute aus dem Festnetz, | maximal 0,42 Euro pro Minute aus den Mobilfunknetzen) Telefon | +49.30.983212121 Fax | +49.30.98321290 E-Mail | support(a)inwx.de Website | www.inwx.de Registergericht | Amtsgericht Berlin-Charlottenburg, HRB 237141 B USt-IdNr. | DE814537105 Geschäftsführung | Mario Peschel --------------------------------------------------------------------------- Hinweis: Dies ist eine automatisch generierte E-Mail. Bitte antworten Sie nicht auf diese Adresse. --------------------------------------------------------------------------- Ihre Kundennummer: 133355

1 Jahr, 7 Monate

1
0
0 / 0

DOMAIN studienführer-physik.de RENEWAL SUCCESSFUL

by INWX GmbH

DOMAIN: studienführer-physik.de PERIOD: 1 PERIODTIMEUNIT: Y ----------------------------------------------------------------------------------- DOMAIN RENEWAL SUCCESSFUL ----------------------------------------------------------------------------------- -- INWX GmbH Anschrift | Prinzessinnenstraße 30 | 10969 Berlin | Germany Support-Hotline | 0180 - 373 0000 (0,09 Euro je Minute aus dem Festnetz, | maximal 0,42 Euro pro Minute aus den Mobilfunknetzen) Telefon | +49.30.983212121 Fax | +49.30.98321290 E-Mail | support(a)inwx.de Website | www.inwx.de Registergericht | Amtsgericht Berlin-Charlottenburg, HRB 237141 B USt-IdNr. | DE814537105 Geschäftsführung | Mario Peschel --------------------------------------------------------------------------- Hinweis: Dies ist eine automatisch generierte E-Mail. Bitte antworten Sie nicht auf diese Adresse. --------------------------------------------------------------------------- Ihre Kundennummer: 133355

1 Jahr, 7 Monate

1
0
0 / 0

Familiarize yourself with the factual points of your case.

by topf＠zapf.in

Hello, my perverted friend, Unfortunately, the fact that our paths have crossed doesn't mean anything good for you. I have some good news and bad news. I'll start with the bad news. While you were surfing porn sites, I managed to install a spyware using your browser. It has gained access to your webcam, your browser history, and all your devices, not just your computer. This alone wouldn't be a problem if only I wasn't particularly interested in your love of the very controversial genre of pornography. You know what I mean. I saved a backup copy of your webcam and screen recordings as you enjoy jerking off to these videos. The video on the left shows a recording of your screen with the clip, while the one on the right shows you in real time. There is no need to feel sorry for yourself or blame me for the situation - the fault here is yours alone because if you gaze into a dark abyss for too long, this darkness eventually will come knocking at your door. You should even be grateful to fate that I'm the only one who discovered your unhealthy obsession and not your friends, family and colleagues. And this is where I get to the essence of my message - I can easily organize this. Everyone you know, love and cherish, everyone you've spent years building your reputation as a respectable and honorable person in front of, will get a copy of the video of you self-pleasing yourself while watching these controversial videos. All of your email and messengers contacts will get these videos at the same time. You will have nothing left but to move to another city, and perhaps even another country, to get rid of the sick guy trail that will be running behind you. However, this also might not help. As they say, the Internet remembers everything. There's a good chance you will have to deal with the consequences for the rest of your life, despite your efforts to clear your name. Now, as I promised, the good news. I have a win-win solution for both you and me. You regain your old free life and I make a small profit. You should transfer $1340 to my Bitcoin wallet: 17aB5wwDJ6EGdzzMgp3Y5deKCrqe7ga3qR If you are unfamiliar with cryptocurrency, it's simple. Type "crypto exchange" into the search engine and choose the option that suits you. You can think of me as a kind of your life coach because if I didn't show up in your life, you would continue to lead the same destructive lifestyle as before. So I kind of did you a favor, and favors are never free. I must warn you not to do something stupid that you might do due to your lack of experience, such as: ; Contacting law enforcement. I'm untraceable anyway, because cryptocurrencies are anonymous and I have access to all your devices, so as soon as I notice you trying to do something like this, the compromising clips will be made public. ; Negotiating with me by responding to this letter. My demands are ultimatums. I generated this letter using your own email client, therefore it is impossible to contact me! ; Resetting, reinstalling your system or destroying your devices won't help you. I repeat: I have access to them and if I notice such activity, hasta la vista, baby. I wish you all the best and especially get rid of your "interesting" habits. Then you will not only no longer encounter people like me, but you will also be able to reach a new quality level in your self-development. Bye! P.S. A little friendly advice: from now on, take what you do online more seriously.

1 Jahr, 7 Monate

1
0
0 / 0

Neuer Subunternehmer - Aufnahme in den AVV

by erp＠infra.run

Sehr geehrte Nutzerinnen und Nutzer der infra.run Serivces, wir möchten Sie auf eine beabsichtigte Änderung im AVV aufmerksam machen. Die Änderung betrifft Anlage 4 "Genehmigte Subunternehmer". Die infra.run Service GmbH beabsichtigt, ab dem 22.04.2024 die WIIT AG (Joachim-Erwin-Platz 3, 40212 Düsseldorf) mit Hosting und Netz-Uplink zu beauftragen. Informationen über die WIIT AG finden Sie unter https://www.wiit.cloud. Der Serverstandort Deutschland ändert sich nicht. Wir möchten darauf hinweisen, dass wir laut dem mit Ihnen abgeschlossenen AVV (siehe §10) und Art 28 DSGVO dazu verpflichtet sind, Ihnen solche Änderungen im Vertrag anzuzeigen. Sie können gegen die Beauftragung des weiteren Subunternehmers Einspruch erheben . Sofern Sie dies tun möchten, richten Sie den Widerspruch bitte bis 15.04.2024 an support(a)infra.run. Wichtig: Die Nutzung unserer Services wird von den Änderungen nicht beeinflusst! Bitte leiten Sie diese Mail ggf. auch an die richtige Stelle weiter, oder nennen Sie uns die jeweilige Ansprechperson. Im Anhang finden Sie die Anlage 4 mit der markierten Änderung. Mit freundlichen Grüßen, Eleonore Waibel None [1] Abmelden None [2] infra.run Service GmbH - Wilhelmine-Gemberg-Weg 14 10179 Berlin Handelsregister: Amtsgericht Charlottenburg HRB 225307 B Steuernummer: 30/358/51857 Ust-IdNr: DE340100821 Geschäftsführer*innen: Leonie Hannig, Andreas Steinhauser [1] https://erp.infra.run/unsubscribe_from_list [2] https://erp.infra.run/unsubscribe_from_list

1 Jahr, 7 Monate

1
0
0 / 0

Undelivered Mail Returned to Sender

by MAILER-DAEMON＠zapf.in

This is the mail system at host mail.zapf.in. I'm sorry to have to inform you that your message could not be delivered to one or more recipients. It's attached below. For further assistance, please send mail to postmaster. If you do so, please include this problem report. You can delete your own text from the attached returned message. The mail system <lbart12724(a)aol.com>: host mx-aol.mail.gm0.yahoodns.net[67.195.228.84] said: 554 30 Sorry, your message to lbart12724(a)aol.com cannot be delivered. This mailbox is disabled (554.30). (in reply to end of DATA command)

1 Jahr, 7 Monate

1
0
0 / 0

Logwatch for h2361197.stratoserver.net (Linux)

by root＠zapf.in

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Fri Mar 15 04:42:03 2024 Date Range Processed: yesterday ( 2024-Mar-14 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 17:17 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 91.92.244.152 -> zapf.wiki:443: 1 Time(s) A total of 16 sites probed the server 118.193.36.149 157.230.15.222 161.35.230.3 161.35.236.158 162.243.148.7 167.71.133.68 18.132.35.135 18.133.156.145 185.142.236.34 192.241.227.47 205.210.31.170 205.210.31.64 3.10.207.181 45.95.147.236 65.49.1.10 78.153.140.179 Requests with error response codes 400 Bad Request null: 22 Time(s) *: 7 Time(s) /: 5 Time(s) mstshash=Administr: 3 Time(s) /.env: 2 Time(s) -6\xE6o\x043\xBE\xBD\x91\x0B\x91X\xA6Z\xD7 ... D\xC0$\xC0(\xC0: 1 Time(s) /../../mnt/mtd/Config/Account1: 1 Time(s) /../../mnt/mtd/Config/Account2: 1 Time(s) /cgi-bin/authLogin.cgi: 1 Time(s) /manager/html: 1 Time(s) /manager/text/list: 1 Time(s) /query?q=SHOW+DIAGNOSTICS: 1 Time(s) /solr/admin/cores?action=STATUS&wt=json: 1 Time(s) /solr/admin/info/system: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) /v2/_catalog: 1 Time(s) 12.1.2: 1 Time(s) \x9B\x93\xE6\x81\x0E\xB9\xDF\x1Ca\x9B\xE8Z ... AB\xEC[\xAB\xEE: 1 Time(s) \xBF\x08\x5C\xFF: 1 Time(s) http://httpbin.org/ip: 1 Time(s) mB\xCD\xF5\x00\x00\x1A\xC0/\xC0+\xC0\x11\x ... x09\xC0\x14\xC0: 1 Time(s) zapf.wiki:443: 1 Time(s) 500 Internal Server Error /: 35 Time(s) /favicon.ico: 10 Time(s) /.env: 8 Time(s) /+CSCOE+/logon.html: 6 Time(s) /cgi-bin/login.cgi: 6 Time(s) /doc/index.html: 6 Time(s) /index.html: 6 Time(s) /login.jsp: 6 Time(s) /logon.htm: 6 Time(s) /manage/account/login: 6 Time(s) /admin/index.html: 5 Time(s) /.git/config: 2 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 2 Time(s) /robots.txt: 2 Time(s) /sitemap.xml: 2 Time(s) /webui/: 2 Time(s) /.well-known/security.txt: 1 Time(s) /?XDEBUG_SESSION_START=phpstorm: 1 Time(s) /HNAP1: 1 Time(s) /HNAP1/: 1 Time(s) /Public/home/js/check.js: 1 Time(s) /ReportServer: 1 Time(s) /actuator/gateway/routes: 1 Time(s) /api/v2/cmdb/system/admin/admin: 1 Time(s) /autodiscover/autodiscover.json?@zdi/Powershell: 1 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 1 Time(s) /evox/about: 1 Time(s) /geoserver/web/: 1 Time(s) /index.php?lang=../../../../../../../../tmp/index1: 1 Time(s) /index.php?lang=../../../../../../../../us ... /tmp/index1.php: 1 Time(s) /index.php?s=/index/\x5Cthink\x5Capp/invok ... vars[1][]=Hello: 1 Time(s) /index.php?s=index/index/index/think_lang/ ... y.sh%20%7C%20sh: 1 Time(s) /login: 1 Time(s) /nmaplowercheck1710443974: 1 Time(s) /public/index.php?s=/index/\x5Cthink\x5Cap ... vars[1][]=Hello: 1 Time(s) /remote/login: 1 Time(s) /remote/login/remote/login: 1 Time(s) /sdk: 1 Time(s) /static/admin/javascript/hetong.js: 1 Time(s) /ztp/cgi-bin/handler: 1 Time(s) 502 Bad Gateway /-UCiB4o_SaOfdBPLYtK8YA/pdf: 1 Time(s) /70ngShdKS3eQcEWPm_k3lw/pdf: 1 Time(s) /XiNWfzB6SouKz0g2FE5_Vg/pdf: 1 Time(s) /features/pdf: 1 Time(s) /musterrechtsverordung/pdf: 1 Time(s) /register/pdf: 1 Time(s) /reso_abschlussarbeiten/pdf: 1 Time(s) /slide-example/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (165.227.219.126): 148 Time(s) unknown (139.59.47.104): 53 Time(s) unknown (188.166.113.5): 53 Time(s) root (188.166.113.5): 46 Time(s) root (179.43.180.106): 27 Time(s) root (mail.rokor.kz): 18 Time(s) unknown (139.59.16.110): 12 Time(s) root (165.227.219.126): 9 Time(s) root (139.59.47.104): 7 Time(s) unknown (19010730117.ip71.static.mediacommerce.com.co): 7 Time(s) root (104-230-097-051.res.spectrum.com): 6 Time(s) root (122.224.37.86): 6 Time(s) root (202.79.38.59): 6 Time(s) root (211.43.80.245): 6 Time(s) unknown (202.165.16.209): 6 Time(s) root (221.159.100.63): 5 Time(s) root (218.75.45.86): 4 Time(s) root (14.33.29.66): 3 Time(s) unknown (159.65.202.125): 3 Time(s) root (202.165.16.209): 2 Time(s) unknown (19010730119.ip71.static.mediacommerce.com.co): 2 Time(s) unknown (191.5.98.231): 2 Time(s) unknown (s1.thehost.com.ua): 2 Time(s) nobody (103.38.13.52): 1 Time(s) nobody (110.39.183.46): 1 Time(s) nobody (19010730117.ip71.static.mediacommerce.com.co): 1 Time(s) nobody (202.165.16.209): 1 Time(s) nobody (65.20.131.99): 1 Time(s) nobody (82.67.30.217): 1 Time(s) nobody (85.215.78.130): 1 Time(s) nobody (n112119122248.netvigator.com): 1 Time(s) postgres (165.227.219.126): 1 Time(s) postgres (188.166.113.5): 1 Time(s) root (58.246.253.218): 1 Time(s) root (65.20.167.207): 1 Time(s) root (65.20.218.228): 1 Time(s) root (c-76-129-75-128.hsd1.ut.comcast.net): 1 Time(s) unknown (1.9.249.234): 1 Time(s) unknown (103.157.114.194): 1 Time(s) unknown (103.157.115.146): 1 Time(s) unknown (103.91.103.51): 1 Time(s) unknown (113.254.80.176): 1 Time(s) unknown (115.241.38.14): 1 Time(s) unknown (116.97.240.172): 1 Time(s) unknown (117.4.162.208): 1 Time(s) unknown (118.89.139.185): 1 Time(s) unknown (122.160.128.150): 1 Time(s) unknown (122.4.70.142): 1 Time(s) unknown (124.41.217.210): 1 Time(s) unknown (124244010182.ctinets.com): 1 Time(s) unknown (128.199.67.1): 1 Time(s) unknown (137.63.134.158): 1 Time(s) unknown (143.198.222.155): 1 Time(s) unknown (148.202.102.151): 1 Time(s) unknown (157.122.183.219): 1 Time(s) unknown (165.16.124.215): 1 Time(s) unknown (167.99.68.29): 1 Time(s) unknown (176.224.153.176): 1 Time(s) unknown (179.131.11.68): 1 Time(s) unknown (179.209.237.119): 1 Time(s) unknown (180.183.245.232): 1 Time(s) unknown (182.254.216.230): 1 Time(s) unknown (185.196.8.151): 1 Time(s) unknown (185.199.98.51): 1 Time(s) unknown (186.239.27.86): 1 Time(s) unknown (187.9.20.246): 1 Time(s) unknown (188-169-66-154.dsl.utg.ge): 1 Time(s) unknown (189.56.252.115): 1 Time(s) unknown (190.107.71.200): 1 Time(s) unknown (190.61.89.115): 1 Time(s) unknown (19010730120.ip71.static.mediacommerce.com.co): 1 Time(s) unknown (191.36.152.41): 1 Time(s) unknown (202.88.237.198): 1 Time(s) unknown (206.252.194.42): 1 Time(s) unknown (212.64.216.45): 1 Time(s) unknown (213.59.165.130): 1 Time(s) unknown (218.75.45.86): 1 Time(s) unknown (223.16.59.209): 1 Time(s) unknown (36.137.22.65): 1 Time(s) unknown (36.93.91.188): 1 Time(s) unknown (42.112.235.77.dyn.idknet.com): 1 Time(s) unknown (45.71.24.198): 1 Time(s) unknown (52.152.104.58): 1 Time(s) unknown (59-125-210-231.hinet-ip.hinet.net): 1 Time(s) unknown (6.ip-92-222-171.eu): 1 Time(s) unknown (62.116.243.192): 1 Time(s) unknown (65.20.135.187): 1 Time(s) unknown (65.20.144.159): 1 Time(s) unknown (65.20.150.51): 1 Time(s) unknown (65.20.157.206): 1 Time(s) unknown (65.20.162.198): 1 Time(s) unknown (65.20.166.132): 1 Time(s) unknown (65.20.170.129): 1 Time(s) unknown (65.20.189.109): 1 Time(s) unknown (65.20.194.204): 1 Time(s) unknown (65.20.204.76): 1 Time(s) unknown (65.20.205.172): 1 Time(s) unknown (65.20.215.208): 1 Time(s) unknown (65.20.216.248): 1 Time(s) unknown (65.20.223.117): 1 Time(s) unknown (65.20.235.177): 1 Time(s) unknown (65.20.237.130): 1 Time(s) unknown (65.20.249.167): 1 Time(s) unknown (78.188.93.56): 1 Time(s) unknown (80.210.19.85): 1 Time(s) unknown (81-232-159-138-no2663.tbcn.telia.com): 1 Time(s) unknown (81.16.121.86): 1 Time(s) unknown (81.70.48.225): 1 Time(s) unknown (82-64-102-158.subs.proxad.net): 1 Time(s) unknown (88.248.250.143): 1 Time(s) unknown (91.75.113.51): 1 Time(s) unknown (91.92.124.199): 1 Time(s) unknown (94.45.113.113): 1 Time(s) unknown (94.74.181.100): 1 Time(s) unknown (95.38.15.2): 1 Time(s) unknown (agencijaiiz1-155.bih.net.ba): 1 Time(s) unknown (c-24-61-48-36.hsd1.ct.comcast.net): 1 Time(s) unknown (c-67-183-162-103.hsd1.wa.comcast.net): 1 Time(s) unknown (c-73-180-208-11.hsd1.md.comcast.net): 1 Time(s) unknown (host-188-15-20-68.business.telecomitalia.it): 1 Time(s) unknown (lfbn-idf2-1-1001-109.w86-238.abo.wanadoo.fr): 1 Time(s) unknown (ool-2f163093.static.optonline.net): 1 Time(s) unknown (ua-84-217-215-241.bbcust.telenor.se): 1 Time(s) unknown (web12.servicehoster.ch): 1 Time(s) Invalid Users: Unknown Account: 375 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 4 Miscellaneous warnings 18.304K Bytes accepted 18,743 18.304K Bytes sent via SMTP 18,743 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 80 Connections 15 Connections lost (inbound) 80 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors 2 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 4 Time(s) Failed logins from: 14.33.29.66: 4 times 58.246.253.218: 1 time 65.20.131.99: 1 time 65.20.167.207: 1 time 65.20.218.228: 1 time 76.129.75.128 (c-76-129-75-128.hsd1.ut.comcast.net): 1 time 82.67.30.217 (ril69-1_migr-82-67-30-217.fbx.proxad.net): 1 time 85.215.78.130 (ionos.opole.icu): 1 time 103.38.13.52 (static-13.38.103.extranet.co.in): 1 time 104.230.97.51 (104-230-097-051.res.spectrum.com): 6 times 110.39.183.46 (WGPON-39183-46.wateen.net): 1 time 112.119.122.248 (n112119122248.netvigator.com): 1 time 122.224.37.86: 6 times 139.59.47.104: 7 times 165.227.219.126: 10 times 178.88.167.38 (mail.rokor.kz): 18 times 179.43.180.106 (hostedby.privatelayer.com): 27 times 188.166.113.5: 47 times 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 1 time 202.79.38.59 (bck-chdc-01.wlink.com.np): 6 times 202.165.16.209: 3 times 211.43.80.245: 6 times 218.75.45.86: 4 times 221.159.100.63: 6 times Illegal users from: 2001:470:1:c84::13 (scan-03n.shadowserver.org): 1 time undef: 150 times 1.9.249.234 (nexusnetwork.com.my): 1 time 24.61.48.36 (c-24-61-48-36.hsd1.ct.comcast.net): 1 time 36.93.91.188: 1 time 36.137.22.65: 1 time 45.71.24.198: 1 time 47.22.48.147 (ool-2f163093.static.optonline.net): 1 time 52.152.104.58: 1 time 59.125.210.231 (59-125-210-231.hinet-ip.hinet.net): 1 time 62.116.243.192 (192.fttbcentrum2.gavlenet.com): 1 time 64.62.197.220 (scan-43i.shadowserver.org): 1 time 65.20.135.187: 1 time 65.20.144.159: 1 time 65.20.150.51: 1 time 65.20.157.206: 1 time 65.20.162.198: 1 time 65.20.166.132: 1 time 65.20.170.129: 1 time 65.20.189.109: 1 time 65.20.194.204: 1 time 65.20.204.76: 1 time 65.20.205.172: 1 time 65.20.215.208: 1 time 65.20.216.248: 1 time 65.20.223.117: 1 time 65.20.235.177: 1 time 65.20.237.130: 1 time 65.20.249.167: 1 time 67.183.162.103 (c-67-183-162-103.hsd1.wa.comcast.net): 1 time 73.180.208.11 (c-73-180-208-11.hsd1.md.comcast.net): 1 time 77.235.112.42 (42.112.235.77.dyn.idknet.com): 1 time 78.188.93.56 (78.188.93.56.static.ttnet.com.tr): 1 time 80.65.90.155 (agencijaiiz1-155.bih.net.ba): 1 time 80.210.19.85: 1 time 81.16.121.86: 1 time 81.70.48.225: 1 time 81.232.159.138 (81-232-159-138-no2663.tbcn.telia.com): 1 time 82.64.102.158 (82-64-102-158.subs.proxad.net): 1 time 84.217.215.241 (ua-84-217-215-241.bbcust.telenor.se): 1 time 86.238.232.109 (lfbn-idf2-1-1001-109.w86-238.abo.wanadoo.fr): 1 time 88.248.250.143 (88.248.250.143.static.ttnet.com.tr): 1 time 91.75.113.51: 1 time 91.92.124.199: 1 time 91.234.33.250 (s1.thehost.com.ua): 2 times 92.222.171.6 (6.ip-92-222-171.eu): 1 time 94.45.113.113: 1 time 94.74.181.100: 1 time 95.38.15.2: 1 time 103.91.103.51: 1 time 103.157.114.194 (194.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time 103.157.115.146 (146.115.157.103.Ai-bkti-hts.iforte.net.id): 1 time 113.254.80.176 (176-80-254-113-on-nets.com): 1 time 115.241.38.14: 1 time 116.97.240.172 (dynamic-adsl.viettel.vn): 1 time 117.4.162.208 (localhost): 1 time 118.89.139.185: 1 time 122.4.70.142 (142.70.4.122.broad.qd.sd.dynamic.163data.com.cn): 1 time 122.160.128.150 (abts-north-static-150.128.160.122.airtelbroadband.in): 1 time 124.41.217.210 (210.217.41.124.dynamic.wlink.com.np): 1 time 124.244.10.182 (124244010182.ctinets.com): 1 time 128.199.67.1: 1 time 137.63.134.158: 1 time 139.59.16.110: 12 times 139.59.47.104: 53 times 143.198.222.155: 1 time 148.202.102.151 (151-102.cuaad.udg.mx): 1 time 157.122.183.219: 1 time 159.65.202.125: 3 times 165.16.124.215: 1 time 165.227.219.126: 148 times 167.99.68.29: 1 time 176.224.153.176: 1 time 179.131.11.68: 1 time 179.209.237.119 (b3d1ed77.virtua.com.br): 1 time 180.183.245.232 (mx-ll-180.183.245-232.dynamic.3bb.in.th): 1 time 182.254.216.230: 1 time 185.196.8.151: 1 time 185.199.98.51: 1 time 186.239.27.86: 1 time 187.9.20.246 (187-9-20-246.customer.tdatabrasil.net.br): 1 time 188.15.20.68 (host-188-15-20-68.business.telecomitalia.it): 1 time 188.166.113.5: 53 times 188.169.66.154 (188-169-66-154.dsl.utg.ge): 1 time 189.56.252.115: 1 time 190.61.89.115 (115.89.61.190.ufinet.com.gt): 1 time 190.107.30.117 (19010730117.ip71.static.mediacommerce.com.co): 7 times 190.107.30.119 (19010730119.ip71.static.mediacommerce.com.co): 2 times 190.107.30.120 (19010730120.ip71.static.mediacommerce.com.co): 1 time 190.107.71.200: 1 time 191.5.98.231 (191-5-98-231.static.redeglobaltelecom.net.br): 2 times 191.36.152.41 (vipturbo.com.br): 1 time 194.191.24.22 (web12.servicehoster.ch): 1 time 202.88.237.198 (198.237.88.202.asianet.co.in): 1 time 202.165.16.209: 6 times 206.252.194.42: 1 time 212.64.216.45 (212.64.216.45.static.comnetnetwork.com): 1 time 213.59.165.130 (ip165_130.sevtelecom.ru): 1 time 218.75.45.86: 1 time 223.16.59.209 (209-59-16-223-on-nets.com): 1 time **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 3 time(s) Disconnecting: Change of username or service not allowed: (root,ssh-connection) -> (test,ssh-connection) [preauth] : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop19598p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################

1 Jahr, 7 Monate

1
0
0 / 0

Undelivered Mail Returned to Sender

by MAILER-DAEMON＠zapf.in

This is the mail system at host mail.zapf.in. I'm sorry to have to inform you that your message could not be delivered to one or more recipients. It's attached below. For further assistance, please send mail to postmaster. If you do so, please include this problem report. You can delete your own text from the attached returned message. The mail system <topf(a)zapf.in>: host 127.0.0.1[127.0.0.1] said: 550 No Message-ID header provided (in reply to end of DATA command)

1 Jahr, 7 Monate

1
0
0 / 0

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

TOPF März 2024