[TOPF] Logwatch for h2361197.stratoserver.net (Linux)

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Fri Feb 1 04:42:03 2019 Date Range Processed: yesterday ( 2019-Jan-31 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 10:10 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 1 sites probed the server 118.151.209.119 Requests with error response codes 400 Bad Request mstshash=Administr: 1 Time(s) null: 1 Time(s) 404 Not Found /robots.txt: 29 Time(s) /berlin/apple-touch-icon.png: 8 Time(s) /wp-login.php: 4 Time(s) /berlin/helfikafaq/apple-touch-icon.png: 2 Time(s) /berlin/zapf/apple-touch-icon.png: 2 Time(s) /.well-known/apple-app-site-association: 1 Time(s) /admin/: 1 Time(s) /admin/content/sitetree/: 1 Time(s) /apple-app-site-association: 1 Time(s) /berlin//apple-touch-icon.png: 1 Time(s) /berlin/team/apple-touch-icon.png: 1 Time(s) /berlin/unterstuetzer/apple-touch-icon.png: 1 Time(s) /favicon.ico: 1 Time(s) /js/mage/cookies.js: 1 Time(s) /manager/: 1 Time(s) /simpla/: 1 Time(s) /sites/default/files/2009_WiSe_M%C3%BCnchen.pdf: 1 Time(s) /zapf/resolutionen/%7D%7Bwww.zapfev.de/zapf/resolutionen%7D: 1 Time(s) 500 Internal Server Error /: 2 Time(s) /robots.txt: 2 Time(s) /cgi-bin/config.exp: 1 Time(s) 502 Bad Gateway /: 25 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (113.122.46.16): 6 Time(s) root (177.125.31.136): 6 Time(s) root (187.115.92.82): 6 Time(s) root (95.236.230.132): 6 Time(s) root (ool-457c33de.dyn.optonline.net): 6 Time(s) unknown (188.187.116.203): 6 Time(s) unknown (71-80-178-254.dhcp.wsco.ca.charter.com): 6 Time(s) root (61.182.226.162): 5 Time(s) mysql (61.182.226.162): 2 Time(s) nobody (61.182.226.162): 2 Time(s) root (167.249.43.188): 2 Time(s) root (185.10.215.227): 2 Time(s) unknown (202.28.33.166): 2 Time(s) unknown (210-61-50-87.hinet-ip.hinet.net): 2 Time(s) unknown (60-250-233-223.hinet-ip.hinet.net): 2 Time(s) unknown (61.182.226.162): 2 Time(s) postgres (ns3016508.ip-51-254-47.eu): 1 Time(s) root (202.28.33.166): 1 Time(s) root (210-61-50-87.hinet-ip.hinet.net): 1 Time(s) root (60-250-233-223.hinet-ip.hinet.net): 1 Time(s) root (dw39.csie.ncu.edu.tw): 1 Time(s) unknown (117.167.252.251): 1 Time(s) unknown (167.249.43.188): 1 Time(s) unknown (185.10.215.227): 1 Time(s) unknown (193.201.224.241): 1 Time(s) unknown (200.71.94.239): 1 Time(s) unknown (dw39.csie.ncu.edu.tw): 1 Time(s) Invalid Users: Unknown Account: 30 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 372 Miscellaneous warnings 20.126K Bytes accepted 20,609 187.159K Bytes sent via SMTP 191,651 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 656 Connections 372 Connections lost (inbound) 656 Disconnections 9 Removed from queue 8 Sent via SMTP 9 Deferred 119 Deferrals 1 Expired and returned to sender 1 Notifications sent 119 Connection failures (outbound) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 2 Time(s) root : 5 Time(s) Failed logins from: 51.254.47.198 (ns3016508.ip-51-254-47.eu): 1 time 60.250.233.223 (60-250-233-223.HINET-IP.hinet.net): 1 time 61.182.226.162: 9 times 69.124.51.222 (ool-457c33de.dyn.optonline.net): 6 times 95.236.230.132 (host132-230-dynamic.236-95-r.retail.telecomitalia.it): 6 times 113.122.46.16: 6 times 140.115.52.39 (dw39.csie.ncu.edu.tw): 1 time 167.249.43.188: 2 times 177.125.31.136 (177.125.31.136.snbandalarga.com.br): 6 times 185.10.215.227: 2 times 187.115.92.82 (corporativo82.static.gvt.net.br): 6 times 202.28.33.166: 1 time 210.61.50.87 (210-61-50-87.HINET-IP.hinet.net): 1 time Illegal users from: undef: 9 times 60.250.233.223 (60-250-233-223.HINET-IP.hinet.net): 3 times 61.182.226.162: 2 times 71.80.178.254 (71-80-178-254.dhcp.wsco.ca.charter.com): 6 times 117.167.252.251 (localhost): 5 times 140.115.52.39 (dw39.csie.ncu.edu.tw): 1 time 167.249.43.188: 1 time 185.10.215.227: 1 time 188.187.116.203 (188x187x116x203.dynamic.spb.ertelecom.ru): 6 times 193.201.224.241: 1 time 200.71.94.239 (adsl-200-71-94-239.coopenetcolon.com.ar): 1 time 202.28.33.166: 2 times 210.61.50.87 (210-61-50-87.HINET-IP.hinet.net): 3 times ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################