04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Fri Jun 7 04:42:06 2019
Date Range Processed: yesterday
( 2019-Jun-06 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [311:308]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
Connection attempts using mod_proxy:
188.163.92.247 -> www.msftncsi.com:443: 3 Time(s)
A total of 1 sites probed the server
61.219.11.153
Requests with error response codes
400 Bad Request
www.msftncsi.com:443: 3 Time(s)
/: 2 Time(s)
null: 2 Time(s)
/robots.txt: 1 Time(s)
http://110.249.212.46/testget?q=23333&port=80: 1 Time(s)
mstshash=Administr: 1 Time(s)
404 Not Found
/robots.txt: 28 Time(s)
/berlin/apple-touch-icon.png: 6 Time(s)
/wp-login.php: 3 Time(s)
/reader/2017_SoSe_Berlin_vorlaeufig.pdf: 1 Time(s)
/sites/default/files/2001_SoSe_Erlangen.pdf: 1 Time(s)
/sites/default/files/2005_SoSe_Erlangen.pdf: 1 Time(s)
/sites/default/files/2009_WiSe_M%C3%BCnchen.pdf: 1 Time(s)
/sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s)
500 Internal Server Error
/: 7 Time(s)
/HNAP1/: 1 Time(s)
/hudson/script: 1 Time(s)
/script: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (23.100.12.133): 66 Time(s)
unknown (173-167-200-227-ip-static.hfc.comcastbusiness.net): 53 Time(s)
unknown (165.227.2.127): 50 Time(s)
unknown (41.208.222.165): 50 Time(s)
unknown (oc-129-158-72-141.compute.oraclecloud.com): 50 Time(s)
unknown (125.63.116.106): 48 Time(s)
unknown (193.194.77.194): 48 Time(s)
unknown (217.182.95.16): 47 Time(s)
unknown (167.99.232.88): 46 Time(s)
unknown (ip75.ip-54-37-44.eu): 45 Time(s)
unknown (104.248.57.113): 44 Time(s)
unknown (ns338956.ip-178-33-228.eu): 44 Time(s)
unknown (185.2.140.155): 43 Time(s)
unknown (157.230.23.46): 42 Time(s)
unknown (204.48.18.3): 42 Time(s)
unknown (14.118.128.150): 40 Time(s)
unknown (180.76.108.147): 39 Time(s)
unknown (host81-130-149-101.in-addr.btopenworld.com): 39 Time(s)
unknown (159.89.100.35): 37 Time(s)
unknown (106.12.109.129): 34 Time(s)
unknown (123.207.38.221): 32 Time(s)
unknown (www.iscp.edu.br): 28 Time(s)
unknown (189.125.76.32): 23 Time(s)
unknown (128.199.231.40): 17 Time(s)
unknown (128.199.104.232): 14 Time(s)
unknown (200.216.30.74): 14 Time(s)
unknown (119.27.170.64): 12 Time(s)
unknown (192.99.216.184): 12 Time(s)
unknown (177.red-81-36-238.dynamicip.rima-tde.net): 10 Time(s)
unknown (57.red-88-7-224.staticip.rima-tde.net): 10 Time(s)
unknown (lfbn-ren-1-499-8.w2-10.abo.wanadoo.fr): 8 Time(s)
root (113.17.17.77): 6 Time(s)
root (180.126.2.152): 6 Time(s)
root (39.70.167.36): 6 Time(s)
unknown (122-116-85-217.hinet-ip.hinet.net): 6 Time(s)
unknown (27.8.138.105): 6 Time(s)
unknown (138.41.19.66): 2 Time(s)
backup (125.63.116.106): 1 Time(s)
backup (128.199.104.232): 1 Time(s)
backup (193.194.77.194): 1 Time(s)
backup (oc-129-158-72-141.compute.oraclecloud.com): 1 Time(s)
games (159.89.100.35): 1 Time(s)
gnats (157.230.23.46): 1 Time(s)
gnats (193.194.77.194): 1 Time(s)
list (14.118.128.150): 1 Time(s)
list (ip75.ip-54-37-44.eu): 1 Time(s)
lp (165.227.2.127): 1 Time(s)
mail (106.12.109.129): 1 Time(s)
mail (180.76.108.147): 1 Time(s)
mail (ns338956.ip-178-33-228.eu): 1 Time(s)
mail (oc-129-158-72-141.compute.oraclecloud.com): 1 Time(s)
man (167.99.232.88): 1 Time(s)
man (204.48.18.3): 1 Time(s)
man (host81-130-149-101.in-addr.btopenworld.com): 1 Time(s)
memcache (125.63.116.106): 1 Time(s)
mysql (159.89.100.35): 1 Time(s)
news (125.63.116.106): 1 Time(s)
news (204.48.18.3): 1 Time(s)
nobody (128.199.231.40): 1 Time(s)
postfix (165.227.2.127): 1 Time(s)
postfix (217.182.95.16): 1 Time(s)
postgres (125.63.116.106): 1 Time(s)
postgres (157.230.23.46): 1 Time(s)
postgres (167.99.232.88): 1 Time(s)
postgres (189.125.76.32): 1 Time(s)
postgres (193.194.77.194): 1 Time(s)
proxy (14.118.128.150): 1 Time(s)
proxy (host81-130-149-101.in-addr.btopenworld.com): 1 Time(s)
root (218.92.0.135): 1 Time(s)
root (218.92.0.140): 1 Time(s)
sshd (104.248.57.113): 1 Time(s)
sshd (185.2.140.155): 1 Time(s)
sshd (41.208.222.165): 1 Time(s)
sshd (ns338956.ip-178-33-228.eu): 1 Time(s)
sync (41.208.222.165): 1 Time(s)
sync (oc-129-158-72-141.compute.oraclecloud.com): 1 Time(s)
temp (lfbn-ren-1-499-8.w2-10.abo.wanadoo.fr): 1 Time(s)
unknown (110.45.145.178): 1 Time(s)
unknown (114-32-3-138.hinet-ip.hinet.net): 1 Time(s)
unknown (13.red-88-28-219.staticip.rima-tde.net): 1 Time(s)
unknown (159.65.7.56): 1 Time(s)
unknown (171.241.151.95): 1 Time(s)
unknown (193.32.163.89): 1 Time(s)
unknown (198.211.125.131): 1 Time(s)
unknown (222.84.169.142): 1 Time(s)
unknown (68.183.191.99): 1 Time(s)
unknown (94-227-225-64.access.telenet.be): 1 Time(s)
www-data (host81-130-149-101.in-addr.btopenworld.com): 1 Time(s)
Invalid Users:
Unknown Account: 1111 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
9 Miscellaneous warnings
10.835K Bytes accepted 11,095
10.835K Bytes sent via SMTP 11,095
======== ==================================================
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
3 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
3 Total 4xx Rejects 100.00%
======== ==================================================
188 Connections
184 Connections lost (inbound)
188 Disconnections
1 Removed from queue
1 Sent via SMTP
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
invalid : 1 Time(s)
root : 3 Time(s)
Failed logins from:
2.10.87.8 (lfbn-ren-1-499-8.w2-10.abo.wanadoo.fr): 1 time
14.118.128.150: 2 times
39.70.167.36: 6 times
41.208.222.165 (broadlink-41-208-222-165.broadlink.net): 2 times
54.37.44.75 (ip75.ip-54-37-44.eu): 1 time
81.130.149.101 (host81-130-149-101.in-addr.btopenworld.com): 3 times
104.248.57.113: 1 time
106.12.109.129: 1 time
113.17.17.77: 6 times
125.63.116.106 (125.63.116.106.reverse.spectranet.in): 4 times
128.199.104.232: 1 time
128.199.231.40: 1 time
129.158.72.141 (oc-129-158-72-141.compute.oraclecloud.com): 3 times
157.230.23.46 (prod.armeniatree.org): 2 times
159.89.100.35: 2 times
165.227.2.127: 2 times
167.99.232.88: 2 times
178.33.228.67 (ns338956.ip-178-33-228.eu): 2 times
180.76.108.147: 1 time
180.126.2.152: 6 times
185.2.140.155 (HSI-KBW-185-002-140-155.hsi20.kabel-badenwuerttemberg.de): 1 time
189.125.76.32 (www.iscp.com.br): 1 time
193.194.77.194: 3 times
204.48.18.3: 2 times
217.182.95.16: 1 time
218.92.0.135: 2 times
218.92.0.140: 4 times
Illegal users from:
undef: 851 times
2.10.87.8 (lfbn-ren-1-499-8.w2-10.abo.wanadoo.fr): 8 times
14.118.128.150: 40 times
23.100.12.133: 66 times
27.8.138.105: 6 times
41.208.222.165 (broadlink-41-208-222-165.broadlink.net): 50 times
54.37.44.75 (ip75.ip-54-37-44.eu): 45 times
68.183.191.99: 1 time
81.36.238.177 (177.red-81-36-238.dynamicip.rima-tde.net): 10 times
81.130.149.101 (host81-130-149-101.in-addr.btopenworld.com): 39 times
88.7.224.57 (57.red-88-7-224.staticip.rima-tde.net): 10 times
88.28.219.13 (13.red-88-28-219.staticip.rima-tde.net): 1 time
94.227.225.64 (94-227-225-64.access.telenet.be): 1 time
104.248.57.113: 44 times
106.12.109.129: 34 times
110.45.145.178: 1 time
114.32.3.138 (114-32-3-138.HINET-IP.hinet.net): 1 time
119.27.170.64: 12 times
122.116.85.217 (122-116-85-217.HINET-IP.hinet.net): 6 times
123.207.38.221: 32 times
125.63.116.106 (125.63.116.106.reverse.spectranet.in): 48 times
128.199.104.232: 14 times
128.199.231.40: 17 times
129.158.72.141 (oc-129-158-72-141.compute.oraclecloud.com): 50 times
138.41.19.66: 2 times
139.162.122.110 (scan-8.security.ipip.net): 1 time
157.230.23.46 (prod.armeniatree.org): 42 times
159.65.7.56: 1 time
159.89.100.35: 37 times
165.227.2.127: 50 times
167.99.232.88: 46 times
171.241.151.95 (dynamic-ip-adsl.viettel.vn): 1 time
173.167.200.227 (173-167-200-227-ip-static.hfc.comcastbusiness.net): 53 times
178.33.228.67 (ns338956.ip-178-33-228.eu): 44 times
180.76.108.147: 39 times
185.2.140.155 (HSI-KBW-185-002-140-155.hsi20.kabel-badenwuerttemberg.de): 43 times
189.125.76.32 (www.iscp.com.br): 51 times
192.99.216.184: 12 times
193.32.163.89 (srv.eqaltech.su): 1 time
193.194.77.194: 48 times
198.211.125.131: 1 time
200.216.30.74: 14 times
204.48.18.3: 42 times
217.182.95.16: 47 times
222.84.169.142: 1 time
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 241G 160G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
2329
days inactive
2329
days old
0 comments
1 participants
participants (1)
-
root@zapf.in