################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Fri Jun 21 04:42:09 2019 Date Range Processed: yesterday ( 2019-Jun-20 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 68:67 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ A total of 1 sites probed the server 61.219.11.153 Requests with error response codes 400 Bad Request mstshash=Administr: 2 Time(s) null: 2 Time(s) /awstatstotals/awstatstotals.php?sort=].pa ... ('echo%20YYY;cd: 1 Time(s) /cgi-bin/script?cd: 1 Time(s) /scripts/ajaxPortal.lua: 1 Time(s) /socket.io/?noteId=XdKJnzV3SqS8tRhprzFWYA& ... 4KbEiD8KxI8ABiy: 1 Time(s) /socket.io/?noteId=reso_abschlussarbeiten& ... zPpisVYzRWgABi5: 1 Time(s) /socket.io/?noteId=reso_abschlussarbeiten& ... zsjPwVg-j5zABjh: 1 Time(s) 7: 1 Time(s) 403 Forbidden /resolutionen/sose17/gesellschaftlich_verantwortung/: 3 Time(s) 404 Not Found /robots.txt: 25 Time(s) /berlin/apple-touch-icon.png: 4 Time(s) /sites/all/libraries/elfinder/connectors/php/connector.php: 2 Time(s) /sites/all/libraries/elfinder/elfinder.html: 2 Time(s) /sites/all/libraries/elfinder/src/connecto ... p/connector.php: 2 Time(s) /sites/all/modules/elfinder/elfinder.php.html: 2 Time(s) /.well-known/apple-app-site-association: 1 Time(s) /ads.txt: 1 Time(s) /apple-app-site-association: 1 Time(s) /home/zapf: 1 Time(s) /resolutionen/sose14/reso_sose14_zusammenarbeitzapf-che.pdf: 1 Time(s) /wp-login.php: 1 Time(s) /xmlrpc.php: 1 Time(s) /zapf/berichte/zapf-wise-2011: 1 Time(s) 499 (undefined) /socket.io/?noteId=XdKJnzV3SqS8tRhprzFWYA& ... lling&t=Mjq9jbI: 1 Time(s) 500 Internal Server Error /: 9 Time(s) /000000000000.cfg: 1 Time(s) /aastra.cfg: 1 Time(s) /app/.env: 1 Time(s) /downloader/index.php: 1 Time(s) /errors/503.php: 1 Time(s) /index.php/admin/: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (203.229.206.22): 12 Time(s) unknown (45.248.27.23): 12 Time(s) unknown (64.76.6.126): 12 Time(s) unknown (b2b-94-79-181-162.unitymedia.biz): 12 Time(s) unknown (183.103.146.191): 11 Time(s) unknown (178.128.55.52): 10 Time(s) unknown (129.204.3.8): 9 Time(s) unknown (165.22.7.99): 9 Time(s) unknown (190.79.178.88): 9 Time(s) unknown (207.154.215.236): 9 Time(s) unknown (l37-193-108-101.novotelecom.ru): 9 Time(s) unknown (ns231729.ovh.net): 9 Time(s) unknown (personar-ve.nnmc.edu): 9 Time(s) unknown (104.131.178.223): 8 Time(s) unknown (106.12.117.114): 8 Time(s) unknown (118.24.250.245): 8 Time(s) unknown (139.59.90.40): 8 Time(s) unknown (159.192.144.203): 8 Time(s) unknown (159.65.239.104): 8 Time(s) unknown (183.ip-144-217-85.net): 8 Time(s) unknown (218.202.228.152): 8 Time(s) unknown (vps2.d3soft.ma): 8 Time(s) root (110.85.147.138): 6 Time(s) root (113.184.26.64): 6 Time(s) root (114.252.110.63): 6 Time(s) root (14.18.32.156): 6 Time(s) unknown (20.ip-51-254-220.eu): 6 Time(s) root (92-100-205-178.dynamic.avangarddsl.ru): 4 Time(s) postgres (178.128.55.52): 2 Time(s) unknown (106.13.120.176): 2 Time(s) unknown (220.78.226.189): 2 Time(s) unknown (95-55-98-92.dynamic.avangarddsl.ru): 2 Time(s) mysql (118.24.250.245): 1 Time(s) mysql (183.ip-144-217-85.net): 1 Time(s) postgres (183.103.146.191): 1 Time(s) postgres (20.ip-51-254-220.eu): 1 Time(s) postgres (64.76.6.126): 1 Time(s) postgres (personar-ve.nnmc.edu): 1 Time(s) postgres (static-201-244-64-146.static.etb.net.co): 1 Time(s) root (159.65.239.104): 1 Time(s) root (183.ip-144-217-85.net): 1 Time(s) root (20.ip-51-254-220.eu): 1 Time(s) root (207.154.215.236): 1 Time(s) root (218.92.0.171): 1 Time(s) root (vps2.d3soft.ma): 1 Time(s) unknown (123.21.8.59): 1 Time(s) unknown (142.93.73.51): 1 Time(s) unknown (145.1.254.183): 1 Time(s) unknown (193.32.163.182): 1 Time(s) unknown (59-120-148-151.hinet-ip.hinet.net): 1 Time(s) unknown (mx-ll-183.88.78-164.dynamic.3bb.co.th): 1 Time(s) unknown (net-93-144-35-78.cust.dsl.teletu.it): 1 Time(s) unknown (static-201-244-64-146.static.etb.net.co): 1 Time(s) Invalid Users: Unknown Account: 224 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 14 Miscellaneous warnings 16.037K Bytes accepted 16,422 16.037K Bytes sent via SMTP 16,422 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 2 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 2 Total 4xx Rejects 100.00% ======== ================================================== 69 Connections 62 Connections lost (inbound) 69 Disconnections 1 Removed from queue 1 Sent via SMTP 4 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 3 Time(s) Failed logins from: 14.18.32.156: 6 times 40.138.144.172 (personar-ve.nnmc.edu): 1 time 51.254.220.20 (20.ip-51-254-220.eu): 2 times 64.76.6.126 (64-76-6-126.dynamic.impsat.net.ar): 1 time 92.100.205.178 (92-100-205-178.dynamic.avangarddsl.ru): 4 times 110.85.147.138 (138.147.85.110.broad.zz.fj.dynamic.163data.com.cn): 6 times 113.184.26.64 (static.vnpt.vn): 6 times 114.252.110.63: 6 times 118.24.250.245: 1 time 144.217.85.183 (183.ip-144-217-85.net): 2 times 159.65.239.104: 1 time 178.33.67.12 (vps2.d3soft.ma): 1 time 178.128.55.52: 2 times 183.103.146.191: 1 time 201.244.64.146 (static-201-244-64-146.static.etb.net.co): 1 time 207.154.215.236: 1 time 218.92.0.171: 2 times Illegal users from: undef: 169 times 37.193.108.101 (l37-193-108-101.novotelecom.ru): 9 times 40.138.144.172 (personar-ve.nnmc.edu): 9 times 45.248.27.23: 12 times 51.254.220.20 (20.ip-51-254-220.eu): 6 times 59.120.148.151 (59-120-148-151.HINET-IP.hinet.net): 1 time 64.76.6.126 (64-76-6-126.dynamic.impsat.net.ar): 12 times 93.144.35.78 (net-93-144-35-78.cust.dsl.teletu.it): 1 time 94.79.181.162 (b2b-94-79-181-162.unitymedia.biz): 12 times 95.55.98.92 (95-55-98-92.dynamic.avangarddsl.ru): 2 times 104.131.178.223 (mail.mconnectmedia.com): 8 times 106.12.117.114: 8 times 106.13.120.176: 2 times 118.24.250.245: 8 times 123.21.8.59: 1 time 129.204.3.8: 9 times 139.59.90.40: 8 times 142.93.73.51: 1 time 144.217.85.183 (183.ip-144-217-85.net): 8 times 145.1.254.183: 1 time 159.65.239.104: 8 times 159.192.144.203: 8 times 165.22.7.99: 9 times 178.33.67.12 (vps2.d3soft.ma): 8 times 178.33.233.54 (ns231729.ovh.net): 9 times 178.128.55.52: 10 times 183.88.78.164 (mx-ll-183.88.78-164.dynamic.3bb.in.th): 1 time 183.103.146.191: 11 times 190.79.178.88 (190-79-178-88.dyn.dsl.cantv.net): 9 times 193.32.163.182 (hosting-by.cloud-home.me): 1 time 201.244.64.146 (static-201-244-64-146.static.etb.net.co): 1 time 203.229.206.22: 12 times 207.154.215.236: 9 times 218.202.228.152 (mx5.tudu.com): 8 times 220.78.226.189: 2 times ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 242G 159G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################