[TOPF] Logwatch for h2361197.stratoserver.net (Linux)

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Tue Jan 15 04:42:05 2019 Date Range Processed: yesterday ( 2019-Jan-14 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 12:11 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 2 sites probed the server 139.162.184.185 5.188.210.50 Requests with error response codes 400 Bad Request null: 4 Time(s) /: 3 Time(s) mstshash=Administr: 2 Time(s) http://5.188.210.50/echo.php: 1 Time(s) 404 Not Found /berlin/apple-touch-icon.png: 9 Time(s) /favicon.ico: 9 Time(s) /wp-login.php: 3 Time(s) /robots.txt: 2 Time(s) /verein/satzung/%7CSatzung: 2 Time(s) /berlin/orientierung/apple-touch-icon.png: 1 Time(s) /resolutionen/wise17/Akkreditierung_PosPap/Pospap_: 1 Time(s) /sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s) 500 Internal Server Error /: 3 Time(s) 502 Bad Gateway /: 24 Time(s) /robots.txt: 2 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (112.84.222.237): 6 Time(s) root (153.37.134.166): 6 Time(s) root (181.105.154.240): 6 Time(s) root (218.92.1.166): 6 Time(s) root (222.188.140.123): 6 Time(s) root (91.238.47.89): 6 Time(s) root (line135-69.adsl.kirov.ru): 6 Time(s) root (n11211974109.netvigator.com): 6 Time(s) root (ti0051a400-2695.bb.online.no): 6 Time(s) unknown (183.157.65.212): 6 Time(s) unknown (104.211.157.50): 2 Time(s) unknown (106.12.108.22): 2 Time(s) unknown (119.90.52.36): 2 Time(s) unknown (218.28.76.138): 2 Time(s) unknown (88.214.26.49): 2 Time(s) unknown (ip64.ip-54-36-151.eu): 2 Time(s) unknown (p5b143dd8.dip0.t-ipconnect.de): 2 Time(s) postgres (118.89.237.64): 1 Time(s) postgres (dsl-emcali-200.29.100.224.emcali.net.co): 1 Time(s) root (106.12.205.171): 1 Time(s) root (168.253.72.209): 1 Time(s) root (175.117.145.239): 1 Time(s) root (175.6.80.199): 1 Time(s) root (177.106.124.177): 1 Time(s) root (210.183.236.30): 1 Time(s) root (218.22.24.134): 1 Time(s) root (32.ip-91-134-140.eu): 1 Time(s) root (correo.administradoraintegral.com): 1 Time(s) unknown (106.12.125.212): 1 Time(s) unknown (106.13.4.172): 1 Time(s) unknown (111.207.49.185): 1 Time(s) unknown (118.179.136.26): 1 Time(s) unknown (123.207.138.196): 1 Time(s) unknown (125.75.47.88): 1 Time(s) unknown (139.59.13.63): 1 Time(s) unknown (14.190.188.132): 1 Time(s) unknown (143.255.155.163): 1 Time(s) unknown (148.101.91.58): 1 Time(s) unknown (148.70.6.155): 1 Time(s) unknown (165084191236.ctinets.com): 1 Time(s) unknown (175.117.145.239): 1 Time(s) unknown (185.10.215.227): 1 Time(s) unknown (185.244.25.105): 1 Time(s) unknown (186.210.235.184): 1 Time(s) unknown (188.166.237.191): 1 Time(s) unknown (190.93.208.176): 1 Time(s) unknown (213.149.105.12): 1 Time(s) unknown (218.17.221.58): 1 Time(s) unknown (220.75.246.145): 1 Time(s) unknown (222.252.30.117): 1 Time(s) unknown (27.195.169.62): 1 Time(s) unknown (32.ip-91-134-140.eu): 1 Time(s) unknown (36.67.61.247): 1 Time(s) unknown (40.76.50.216): 1 Time(s) unknown (51.52.197.102): 1 Time(s) unknown (85.132.38.4): 1 Time(s) unknown (94.0.236.201): 1 Time(s) unknown (host81-136-255-20.in-addr.btopenworld.com): 1 Time(s) unknown (host81-149-211-134.in-addr.btopenworld.com): 1 Time(s) unknown (ipa120.0.tellas.gr): 1 Time(s) unknown (mail.commail14.cc): 1 Time(s) www-data (200.69.250.253): 1 Time(s) Invalid Users: Unknown Account: 61 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 7229 Miscellaneous warnings 9.860K Bytes accepted 10,097 9.860K Bytes sent via SMTP 10,097 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 7275 Connections 7233 Connections lost (inbound) 7275 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 1 Time(s) root : 9 Time(s) Failed logins from: 80.213.189.145 (ti0051a400-2695.bb.online.no): 6 times 91.134.140.32 (32.ip-91-134-140.eu): 1 time 91.238.47.89 (ppp91-238-47-89.pppoe.sisamara.ru.47.238.91.in-addr.arpa): 6 times 94.241.196.135 (line135-69.adsl.kirov.ru): 6 times 106.12.205.171: 1 time 112.84.222.237: 6 times 112.119.74.109 (n11211974109.netvigator.com): 6 times 118.89.237.64: 1 time 153.37.134.166: 6 times 168.253.72.209: 1 time 175.6.80.199: 1 time 175.117.145.239: 1 time 177.106.124.177 (177-106-124-177.xd-dynamic.algarnetsuper.com.br): 1 time 181.105.154.240 (host240.181-105-154.telecom.net.ar): 6 times 200.11.150.238 (correo.administradoraintegral.com): 1 time 200.29.100.224 (dsl-emcali-200.29.100.224.emcali.net.co): 1 time 200.69.250.253 (customer-static-250-253.iplannetworks.net): 1 time 210.183.236.30: 1 time 218.22.24.134 (134.24.22.218.broad.static.hf.ah.cndata.com): 1 time 218.92.1.166: 6 times 222.188.140.123: 6 times Illegal users from: undef: 34 times 14.190.188.132 (static.vnpt.vn): 1 time 27.195.169.62: 5 times 36.67.61.247: 1 time 40.76.50.216: 1 time 51.52.197.102: 1 time 54.36.151.64 (ip64.ip-54-36-151.eu): 2 times 81.136.255.20 (host81-136-255-20.in-addr.btopenworld.com): 1 time 81.149.211.134 (host81-149-211-134.in-addr.btopenworld.com): 1 time 84.254.0.120 (ipa120.0.tellas.gr): 1 time 85.132.38.4 (ppp-4-38-132-85.azstarnet.az): 1 time 88.214.26.49: 2 times 91.20.61.216 (p5B143DD8.dip0.t-ipconnect.de): 2 times 91.134.140.32 (32.ip-91-134-140.eu): 1 time 94.0.236.201 (5e00ecc9.bb.sky.com): 5 times 104.211.157.50: 2 times 106.12.108.22: 2 times 106.12.125.212: 1 time 106.13.4.172: 1 time 106.75.132.91 (mail.commail14.cc): 1 time 111.207.49.185: 1 time 118.179.136.26: 1 time 119.90.52.36: 2 times 123.207.138.196: 1 time 125.75.47.88: 1 time 139.59.13.63: 1 time 139.162.122.110 (scan-8.security.ipip.net): 1 time 143.255.155.163 (163-155.customer.enredes.com.ar): 1 time 148.70.6.155: 1 time 148.101.91.58 (58.91.101.148.d.dyn.claro.net.do): 1 time 165.84.191.236 (165084191236.ctinets.com): 1 time 175.117.145.239: 1 time 183.157.65.212: 6 times 185.10.215.227: 1 time 185.244.25.105 (Dedi08.customers.kvsolutions.nl): 1 time 186.210.235.184 (186-210-235-184.xd-dynamic.algarnetsuper.com.br): 1 time 188.166.237.191: 1 time 190.93.208.176: 1 time 213.149.105.12 (icgserveri1.12.crnagora.net): 1 time 218.17.221.58: 1 time 218.28.76.138 (pc0.zz.ha.cn): 2 times 220.75.246.145: 1 time 222.252.30.117 (static.vnpt-hanoi.com.vn): 1 time ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################