[TOPF] Logwatch for h2361197.stratoserver.net (Linux)

Sonntag, 3 Februar 2019


 
 ################### Logwatch 7.4.0 (03/01/11) #################### 
        Processing Initiated: Sun Feb  3 04:42:04 2019
        Date Range Processed: yesterday
                              ( 2019-Feb-02 )
                              Period is day.
        Detail Level of Output: 0
        Type of Output/Format: mail / text
        Logfiles for Host: h2361197.stratoserver.net
 ################################################################## 
 
 --------------------- fail2ban-messages Begin ------------------------ 

 Banned services with Fail2Ban:				 Bans:Unbans
    ssh:                                                    [  5:5  ]
 
 ---------------------- fail2ban-messages End ------------------------- 

 
 --------------------- httpd Begin ------------------------ 

 
 Connection attempts using mod_proxy:
    59.36.132.222 -> www.baidu.com:443: 1 Time(s)
 
 A total of 2 sites probed the server 
    5.188.210.12
    66.240.205.34
 
 Requests with error response codes
    400 Bad Request
       null: 3 Time(s)
       /GponForm/diag_Form?images/: 1 Time(s)
       http://www.baidu.com/: 1 Time(s)
       www.baidu.com:443: 1 Time(s)
    404 Not Found
       /robots.txt: 38 Time(s)
       /wp-login.php: 12 Time(s)
       /berlin/apple-touch-icon.png: 4 Time(s)
       /.git/HEAD: 1 Time(s)
       /.well-known/apple-app-site-association: 1 Time(s)
       /apple-app-site-association: 1 Time(s)
       /reader/favicon.ico: 1 Time(s)
       /sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s)
    500 Internal Server Error
       /: 5 Time(s)
       //a2billing/customer/templates/default/footer.tpl: 1 Time(s)
       /Consolidacion/ArchivosPorPublicacion: 1 Time(s)
       /cgi-bin/config.exp: 1 Time(s)
    502 Bad Gateway
       /: 27 Time(s)
       //wp-login.php: 1 Time(s)
 
 ---------------------- httpd End ------------------------- 

 
 --------------------- pam_unix Begin ------------------------ 

 sshd:
    Authentication Failures:
       root (119.177.58.163): 6 Time(s)
       root (47.153.49.145): 6 Time(s)
       root (99-9-206-161.lightspeed.bcvloh.sbcglobal.net): 6 Time(s)
       root (broadband-5-228-214-241.ip.moscow.rt.ru): 6 Time(s)
       root (mv-213-141-48-90.telecable.es): 6 Time(s)
       unknown (150.109.127.114): 2 Time(s)
       unknown (88.214.26.49): 2 Time(s)
       root (150.109.127.114): 1 Time(s)
       unknown (123.20.165.234): 1 Time(s)
       unknown (156.214.129.139): 1 Time(s)
    Invalid Users:
       Unknown Account: 6 Time(s)
 
 
 ---------------------- pam_unix End ------------------------- 

 
 --------------------- Postfix Begin ------------------------ 

        4   Miscellaneous warnings  
 
    6.673K  Bytes accepted                               6,833
    6.673K  Bytes sent via SMTP                          6,833
 ========   ==================================================
 
        1   Accepted                                   100.00%
 --------   --------------------------------------------------
        1   Total                                      100.00%
 ========   ==================================================
 
        2   4xx Reject relay denied                    100.00%
 --------   --------------------------------------------------
        2   Total 4xx Rejects                          100.00%
 ========   ==================================================
 
        9   Connections             
        4   Connections lost (inbound) 
        9   Disconnections          
        1   Removed from queue      
        1   Sent via SMTP           
 
 
 ---------------------- Postfix End ------------------------- 

 
 --------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------ 

 Large Mailbox threshold: 40MB (41943040 bytes)
  Warning: Large mailbox: mailman.gz (1747199807)
  Warning: Large mailbox: mailman (235703599967)
 
 ---------------------- sendmail-largeboxes (large mail spool files) End
------------------------- 

 
 --------------------- SSHD Begin ------------------------ 

 
 Disconnecting after too many authentication failures for user:
    root : 5 Time(s)
 
 Failed logins from:
    5.228.214.241 (broadband-5-228-214-241.ip.moscow.rt.ru): 6 times
    47.153.49.145: 6 times
    99.9.206.161 (99-9-206-161.lightspeed.bcvloh.sbcglobal.net): 6 times
    119.177.58.163: 6 times
    150.109.127.114: 1 time
    213.141.48.90 (mv-213-141-48-90.telecable.es): 6 times
 
 Illegal users from:
    undef: 3 times
    88.214.26.49: 2 times
    123.20.165.234: 1 time
    150.109.127.114: 2 times
    156.214.129.139 (host-156.214.139.129-static.tedata.net): 1 time
 
 **Unmatched Entries**
 Disconnecting: Change of username or service not allowed: (admin,ssh-connection) ->
(user,ssh-connection) [preauth] : 2 time(s)
 
 ---------------------- SSHD End ------------------------- 

 
 --------------------- Disk Space Begin ------------------------ 

 Filesystem      Size  Used Avail Use% Mounted on
 /dev/vzfs       400G  241G  160G  61% /
 
 
 ---------------------- Disk Space End ------------------------- 

 
 ###################### Logwatch End #########################

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

[TOPF] Logwatch for h2361197.stratoserver.net (Linux)