[TOPF] Logwatch for h2361197.stratoserver.net (Linux)

################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Tue Feb 5 04:42:04 2019 Date Range Processed: yesterday ( 2019-Feb-04 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 2:2 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 46.246.123.67 -> zapf.wiki:443: 1 Time(s) A total of 4 sites probed the server 194.147.32.109 46.118.126.87 46.118.157.179 5.188.210.12 Requests with error response codes 400 Bad Request null: 7 Time(s) mstshash=Test: 6 Time(s) mstshash=Administr: 2 Time(s) http://5.188.210.12/echo.php: 1 Time(s) zapf.wiki:443: 1 Time(s) 404 Not Found /robots.txt: 33 Time(s) /berlin/apple-touch-icon.png: 6 Time(s) //wp-login.php: 2 Time(s) //xmlrpc.php: 2 Time(s) /oauth/errors?error=invalid_request&error_ ... t_id+parameter.: 2 Time(s) /wp-login.php: 2 Time(s) /.well-known/apple-app-site-association: 1 Time(s) //blog/wp-includes/wlwmanifest.xml: 1 Time(s) //cms/wp-includes/wlwmanifest.xml: 1 Time(s) //site/wp-includes/wlwmanifest.xml: 1 Time(s) //wordpress/wp-includes/wlwmanifest.xml: 1 Time(s) //wp-includes/wlwmanifest.xml: 1 Time(s) //wp/wp-includes/wlwmanifest.xml: 1 Time(s) //xmlrpc.php?rsd: 1 Time(s) /apple-app-site-association: 1 Time(s) /berichte/WiSe14/Bericht_WiSe14-Bremen.pdf: 1 Time(s) /reader/1989-wi-berlin.pdf: 1 Time(s) /reader/1993-so-reader_do93.pdf: 1 Time(s) /reader/1993-wi-reader_st93.pdf: 1 Time(s) /reader/1994-wi-reader_hb94.pdf: 1 Time(s) /reader/1995-so-reader_ha95.pdf: 1 Time(s) /reader/1995-wi-reader_bn95.pdf: 1 Time(s) /reader/1998-so-reader_ro98.pdf: 1 Time(s) /reader/2017_SoSe_Berlin_vorlaeufig.pdf: 1 Time(s) /sites/default/files/2008_SoSe_Konstanz.pdf: 1 Time(s) 500 Internal Server Error /: 5 Time(s) //recordings/: 1 Time(s) /api/v1/pods: 1 Time(s) /robots.txt: 1 Time(s) 502 Bad Gateway /: 26 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (176.49.216.126): 6 Time(s) unknown (ool-4a592ba8.dyn.optonline.net): 6 Time(s) unknown (122.224.98.154): 3 Time(s) unknown (101.89.80.218): 2 Time(s) unknown (106.12.205.171): 2 Time(s) postgres (v118-27-10-174.86ce.static.cnode.io): 1 Time(s) root (117.50.27.57): 1 Time(s) root (125.94.219.17): 1 Time(s) root (129.211.129.76): 1 Time(s) root (150.109.127.114): 1 Time(s) root (201.76.162.152): 1 Time(s) root (220.174.236.220): 1 Time(s) root (94.191.99.103): 1 Time(s) root (c-76-25-19-250.hsd1.co.comcast.net): 1 Time(s) root (host81-142-80-97.in-addr.btopenworld.com): 1 Time(s) unknown (1.202.15.234): 1 Time(s) unknown (101.167.174.108): 1 Time(s) unknown (106.12.194.80): 1 Time(s) unknown (106.12.216.128): 1 Time(s) unknown (106.13.43.242): 1 Time(s) unknown (106.251.78.51): 1 Time(s) unknown (106.75.146.213): 1 Time(s) unknown (110.10.129.226): 1 Time(s) unknown (112.16.160.83): 1 Time(s) unknown (112.49.34.58): 1 Time(s) unknown (114.255.244.129): 1 Time(s) unknown (116.236.211.238): 1 Time(s) unknown (117.50.79.91): 1 Time(s) unknown (118.144.82.74): 1 Time(s) unknown (123.134.67.88): 1 Time(s) unknown (125.76.229.24): 1 Time(s) unknown (140.143.137.188): 1 Time(s) unknown (150.109.127.114): 1 Time(s) unknown (180.211.135.42): 1 Time(s) unknown (180.76.97.86): 1 Time(s) unknown (181.63.245.127): 1 Time(s) unknown (188.166.237.191): 1 Time(s) unknown (193.179.134.5): 1 Time(s) unknown (211.161.90.99): 1 Time(s) unknown (218.241.153.243): 1 Time(s) unknown (222.252.30.117): 1 Time(s) unknown (223.83.178.17): 1 Time(s) unknown (27.34.245.26): 1 Time(s) unknown (37.114.169.28): 1 Time(s) unknown (40.76.50.216): 1 Time(s) unknown (60.217.235.73): 1 Time(s) unknown (70-88-172-38-smc-az.hfc.comcastbusiness.net): 1 Time(s) unknown (80.92.113.217): 1 Time(s) unknown (88.214.26.49): 1 Time(s) unknown (91.73.131.200): 1 Time(s) unknown (broadband-109-173-40-60.ip.moscow.rt.ru): 1 Time(s) unknown (d8d873c3c.access.telenet.be): 1 Time(s) unknown (dsl-emcali-200.29.100.224.emcali.net.co): 1 Time(s) unknown (kch-106-33.tm.net.my): 1 Time(s) Invalid Users: Unknown Account: 58 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 360 Miscellaneous warnings 8.008K Bytes accepted 8,200 8.008K Bytes sent via SMTP 8,200 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 403 Connections 393 Connections lost (inbound) 403 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 2 Time(s) Failed logins from: 76.25.19.250 (c-76-25-19-250.hsd1.co.comcast.net): 1 time 81.142.80.97 (host81-142-80-97.in-addr.btopenworld.com): 1 time 94.191.99.103: 1 time 117.50.27.57: 1 time 118.27.10.174 (v118-27-10-174.86ce.static.cnode.io): 1 time 125.94.219.17: 1 time 129.211.129.76: 1 time 150.109.127.114: 1 time 201.76.162.152 (mvx-201-76-162-152.mundivox.com): 1 time 220.174.236.220: 1 time Illegal users from: undef: 37 times 1.202.15.234 (234.15.202.1.static.bjtelecom.net): 1 time 27.34.245.26 (27.34.245.26.static.belltele.in): 1 time 37.114.169.28: 1 time 40.76.50.216: 1 time 60.217.235.73: 1 time 70.88.172.38 (70-88-172-38-smc-az.hfc.comcastbusiness.net): 1 time 74.89.43.168 (ool-4a592ba8.dyn.optonline.net): 6 times 80.92.113.217: 1 time 88.214.26.49: 1 time 91.73.131.200: 1 time 101.89.80.218: 2 times 101.167.174.108 (cpe-101-167-174-108.sa.asp.telstra.net): 1 time 106.12.194.80: 1 time 106.12.205.171: 2 times 106.12.216.128: 1 time 106.13.43.242: 1 time 106.75.146.213: 1 time 106.251.78.51: 1 time 109.173.40.60 (broadband-109-173-40-60.ip.moscow.rt.ru): 1 time 110.10.129.226: 1 time 112.16.160.83: 1 time 112.49.34.58: 1 time 114.255.244.129: 1 time 116.236.211.238: 1 time 117.50.79.91: 1 time 118.144.82.74: 1 time 122.224.98.154: 3 times 123.134.67.88: 1 time 125.76.229.24: 1 time 140.143.137.188: 1 time 141.135.60.60 (d8d873c3c.access.telenet.be): 1 time 150.109.127.114: 1 time 176.49.216.126 (b-internet.176.49.216.126.nsk.rt.ru): 6 times 180.76.97.86: 1 time 180.211.135.42: 1 time 181.49.49.246: 1 time 181.63.245.127 (static-ip-cr18163245127.cable.net.co): 1 time 188.166.237.191: 1 time 193.179.134.5: 1 time 200.29.100.224 (dsl-emcali-200.29.100.224.emcali.net.co): 1 time 209.254.244.146 (209-254-244-146.ip.mcleodusa.net): 1 time 211.161.90.99: 1 time 218.241.153.243: 1 time 219.93.106.33 (kch-106-33.tm.net.my): 1 time 221.180.144.79: 1 time 222.252.30.117 (static.vnpt-hanoi.com.vn): 1 time 223.83.178.17: 1 time ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################