[TOPF] Logwatch for h2361197.stratoserver.net (Linux)

Donnerstag, 10 Januar 2019


 
 ################### Logwatch 7.4.0 (03/01/11) #################### 
        Processing Initiated: Thu Jan 10 04:42:04 2019
        Date Range Processed: yesterday
                              ( 2019-Jan-09 )
                              Period is day.
        Detail Level of Output: 0
        Type of Output/Format: mail / text
        Logfiles for Host: h2361197.stratoserver.net
 ################################################################## 
 
 --------------------- fail2ban-messages Begin ------------------------ 

 Banned services with Fail2Ban:				 Bans:Unbans
    ssh:                                                    [  5:5  ]
 
 ---------------------- fail2ban-messages End ------------------------- 

 
 --------------------- httpd Begin ------------------------ 

 
 Connection attempts using mod_proxy:
    45.55.188.183 -> www.youtube.com:443: 1 Time(s)
 
 A total of 1 sites probed the server 
    108.178.16.154
 
 Requests with error response codes
    400 Bad Request
       /: 3 Time(s)
       null: 2 Time(s)
       /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s)
       http://110.249.212.46/testget?q=23333&port=80: 1 Time(s)
       mstshash=Administr: 1 Time(s)
       www.youtube.com:443: 1 Time(s)
    404 Not Found
       /robots.txt: 9 Time(s)
       /wp-login.php: 9 Time(s)
       /favicon.ico: 5 Time(s)
       /berlin/apple-touch-icon.png: 2 Time(s)
       /wordpress/wp-config.php~: 2 Time(s)
       /assets/global/plugins/jquery-file-upload/ ... r/php/index.php: 1 Time(s)
       /assets/jquery-file-upload/server/php/index.php: 1 Time(s)
       /assets/plugins/jquery-file-upload/server/php/index.php: 1 Time(s)
       /phpformbuilder/plugins/jQuery-File-Upload ... r/php/index.php: 1 Time(s)
       /reader/2017_SoSe_Berlin_vorlaeufig.pdf%7C: 1 Time(s)
       /sucndhxmpo.html: 1 Time(s)
    499 (undefined)
       /apple-touch-icon.png: 2 Time(s)
       /build/af7ae505a9eed503f8b8e6982036873e.woff2: 1 Time(s)
       /fonts/SourceSansPro-Regular.woff: 1 Time(s)
    500 Internal Server Error
       /: 2 Time(s)
    502 Bad Gateway
       /: 28 Time(s)
       /robots.txt: 5 Time(s)
       /sitemap.xml: 1 Time(s)
 
 ---------------------- httpd End ------------------------- 

 
 --------------------- pam_unix Begin ------------------------ 

 sshd:
    Authentication Failures:
       root (31.163.160.215): 6 Time(s)
       root (c3b01-219.milare-tv.ne.jp): 6 Time(s)
       unknown (27.3.150.15): 6 Time(s)
       unknown (bzq-250-168-31-174.red.bezeqint.net): 6 Time(s)
       unknown (59-125-177-95.hinet-ip.hinet.net): 2 Time(s)
       unknown (88.214.26.49): 2 Time(s)
       root (59-125-177-95.hinet-ip.hinet.net): 1 Time(s)
       unknown (197.51.78.32): 1 Time(s)
       unknown (31.163.145.214): 1 Time(s)
       unknown (46-150-163-217.broadband.opcom.ru): 1 Time(s)
       unknown (ns3016508.ip-51-254-47.eu): 1 Time(s)
    Invalid Users:
       Unknown Account: 20 Time(s)
 
 
 ---------------------- pam_unix End ------------------------- 

 
 --------------------- Postfix Begin ------------------------ 

    6.014K  Bytes accepted                               6,158
    6.014K  Bytes sent via SMTP                          6,158
 ========   ==================================================
 
        1   Accepted                                   100.00%
 --------   --------------------------------------------------
        1   Total                                      100.00%
 ========   ==================================================
 
       86   Connections             
        2   Connections lost (inbound) 
       86   Disconnections          
        1   Removed from queue      
        1   Sent via SMTP           
 
        5   Timeouts (inbound)      
        1   SMTP dialog errors      
 
 
 ---------------------- Postfix End ------------------------- 

 
 --------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------ 

 Large Mailbox threshold: 40MB (41943040 bytes)
  Warning: Large mailbox: mailman.gz (1747199807)
  Warning: Large mailbox: mailman (235703599967)
 
 ---------------------- sendmail-largeboxes (large mail spool files) End
------------------------- 

 
 --------------------- SSHD Begin ------------------------ 

 
 Disconnecting after too many authentication failures for user:
    invalid : 2 Time(s)
    root : 2 Time(s)
 
 Failed logins from:
    31.163.160.215 (ws215.zone31-163-160.zaural.ru): 6 times
    59.125.177.95 (59-125-177-95.HINET-IP.hinet.net): 1 time
    202.172.65.219 (c3b01-219.milare-tv.ne.jp): 6 times
 
 Illegal users from:
    undef: 4 times
    27.3.150.15: 6 times
    31.163.145.214 (ws214.zone31-163-145.zaural.ru): 1 time
    31.168.250.174 (bzq-250-168-31-174.red.bezeqint.net): 6 times
    46.150.163.217 (46-150-163-217.broadband.opcom.ru): 1 time
    51.254.47.198 (ns3016508.ip-51-254-47.eu): 1 time
    59.125.177.95 (59-125-177-95.HINET-IP.hinet.net): 3 times
    88.214.26.49: 2 times
    197.51.78.32 (host-197.51.78.32.tedata.net): 1 time
 
 ---------------------- SSHD End ------------------------- 

 
 --------------------- Disk Space Begin ------------------------ 

 Filesystem      Size  Used Avail Use% Mounted on
 /dev/vzfs       400G  241G  160G  61% /
 
 
 ---------------------- Disk Space End ------------------------- 

 
 ###################### Logwatch End #########################

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

[TOPF] Logwatch for h2361197.stratoserver.net (Linux)