04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Wed Feb 6 04:42:05 2019
Date Range Processed: yesterday
( 2019-Feb-05 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [ 12:12 ]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
A total of 5 sites probed the server
173.212.225.214
176.58.98.14
194.147.32.109
198.20.99.130
66.240.205.34
Requests with error response codes
400 Bad Request
null: 12 Time(s)
mstshash=Administr: 2 Time(s)
/: 1 Time(s)
//a2billing/customer/templates/default/footer.tpl: 1 Time(s)
//recordings/: 1 Time(s)
//vtigercrm/vtigerservice.php: 1 Time(s)
/robots.txt: 1 Time(s)
7: 1 Time(s)
404 Not Found
/robots.txt: 23 Time(s)
/berlin/apple-touch-icon.png: 6 Time(s)
/favicon.ico: 2 Time(s)
/.well-known/assetlinks.json: 1 Time(s)
/oauth/errors?error=invalid_request&error_ ... arameter+value.: 1 Time(s)
/reader/2017_SoSe_Berlin_vorlaeufig.pdf: 1 Time(s)
/sites/default/files/Bericht_SommerZaPF13_Jena.pdf: 1 Time(s)
/sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s)
/wp-login.php: 1 Time(s)
500 Internal Server Error
/: 9 Time(s)
/.well-known/security.txt: 1 Time(s)
//a2billing/customer/templates/default/footer.tpl: 1 Time(s)
//libs/js/iframe.js: 1 Time(s)
//recordings/: 1 Time(s)
//vtigercrm/vtigerservice.php: 1 Time(s)
/cgi-bin/config.exp: 1 Time(s)
/favicon.ico: 1 Time(s)
/robots.txt: 1 Time(s)
/sitemap.xml: 1 Time(s)
502 Bad Gateway
/: 24 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
root (12.sub-166-140-45.myvzw.com): 6 Time(s)
root (178.45.148.189): 6 Time(s)
root (182.93.83.15): 6 Time(s)
root (212.69.31.108): 6 Time(s)
root (218.154.248.207): 6 Time(s)
root (58.78.215.78): 6 Time(s)
root (71.198.85.64): 6 Time(s)
root (94.50.29.171): 6 Time(s)
root (s0106b4750ef70d77.su.shawcable.net): 6 Time(s)
unknown (114.207.112.18): 6 Time(s)
unknown (124.46.250.76): 6 Time(s)
unknown (182.231.203.182): 6 Time(s)
unknown (1.236.151.31): 2 Time(s)
unknown (114.219.159.125): 2 Time(s)
unknown (193.176.85.185): 2 Time(s)
unknown (89.43.156.91): 2 Time(s)
postgres (104.244.77.155): 1 Time(s)
postgres (36.89.114.66): 1 Time(s)
root (103.117.139.40): 1 Time(s)
root (114.113.90.9): 1 Time(s)
root (139.59.85.89): 1 Time(s)
root (151.67.61.235): 1 Time(s)
root (170.80.28.203): 1 Time(s)
root (59.45.171.108): 1 Time(s)
root (93-62-182-103.ip23.fastwebnet.it): 1 Time(s)
unknown (1.235.192.208): 1 Time(s)
unknown (101.236.42.219): 1 Time(s)
unknown (103.104.161.27): 1 Time(s)
unknown (103.109.209.15): 1 Time(s)
unknown (106.13.44.98): 1 Time(s)
unknown (110.77.168.142): 1 Time(s)
unknown (115.94.103.170): 1 Time(s)
unknown (116.255.75.249): 1 Time(s)
unknown (117.255.216.106): 1 Time(s)
unknown (117.36.53.108): 1 Time(s)
unknown (118.89.230.107): 1 Time(s)
unknown (119246033158.ctinets.com): 1 Time(s)
unknown (120.194.0.170): 1 Time(s)
unknown (124.193.121.3): 1 Time(s)
unknown (124.206.188.50): 1 Time(s)
unknown (134.red-80-28-234.staticip.rima-tde.net): 1 Time(s)
unknown (139.59.15.43): 1 Time(s)
unknown (139.59.85.89): 1 Time(s)
unknown (14.215.48.67): 1 Time(s)
unknown (14.225.3.50): 1 Time(s)
unknown (14.231.19.184): 1 Time(s)
unknown (159.65.135.55): 1 Time(s)
unknown (165084191236.ctinets.com): 1 Time(s)
unknown (167.99.43.65): 1 Time(s)
unknown (181.62.248.12): 1 Time(s)
unknown (185.221.125.13): 1 Time(s)
unknown (188.131.141.170): 1 Time(s)
unknown (190.55.238.31): 1 Time(s)
unknown (192.144.135.135): 1 Time(s)
unknown (218.90.205.83): 1 Time(s)
unknown (222.192.62.8): 1 Time(s)
unknown (222.252.30.117): 1 Time(s)
unknown (222.76.229.158): 1 Time(s)
unknown (60-250-127-182.hinet-ip.hinet.net): 1 Time(s)
unknown (88.214.26.49): 1 Time(s)
unknown (91.73.131.200): 1 Time(s)
unknown (d8d873c3c.access.telenet.be): 1 Time(s)
unknown (dsl-emcali-190.1.201.152.emcali.net.co): 1 Time(s)
unknown (dw39.csie.ncu.edu.tw): 1 Time(s)
unknown (ef1124.mirohost.net): 1 Time(s)
unknown (eps138.internetdsl.tpnet.pl): 1 Time(s)
unknown (ip-208-109-53-165.ip.secureserver.net): 1 Time(s)
unknown (iso.thetank.host): 1 Time(s)
unknown (ns3106598.ip-5-39-89.eu): 1 Time(s)
unknown (ool-2f168746.static.optonline.net): 1 Time(s)
unknown (wsip-184-191-191-146.sd.sd.cox.net): 1 Time(s)
Invalid Users:
Unknown Account: 72 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
250 Miscellaneous warnings
10.044K Bytes accepted 10,285
10.044K Bytes sent via SMTP 10,285
======== ==================================================
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
4 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
4 Total 4xx Rejects 100.00%
======== ==================================================
271 Connections
254 Connections lost (inbound)
271 Disconnections
1 Removed from queue
1 Sent via SMTP
1 Hostname verification errors (FCRDNS)
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
invalid : 3 Time(s)
root : 9 Time(s)
Failed logins from:
36.89.114.66: 1 time
58.78.215.78: 6 times
59.45.171.108 (108.171.45.59.broad.fx.ln.dynamic.163data.com.cn): 1 time
70.76.77.247 (S0106b4750ef70d77.su.shawcable.net): 6 times
71.198.85.64 (c-71-198-85-64.hsd1.ca.comcast.net): 6 times
93.62.182.103 (93-62-182-103.ip23.fastwebnet.it): 1 time
94.50.29.171: 6 times
103.117.139.40: 1 time
104.244.77.155 (.): 1 time
114.113.90.9: 1 time
139.59.85.89 (187125.cloudwaysapps.com): 1 time
151.67.61.235: 1 time
166.140.45.12 (12.sub-166-140-45.myvzw.com): 6 times
170.80.28.203 (static-170-80-28-203.coeficiente.net): 1 time
178.45.148.189: 6 times
182.93.83.15: 6 times
212.69.31.108 (ip-212-69-31-108.oriontelekom.rs): 6 times
218.154.248.207: 6 times
Illegal users from:
undef: 44 times
1.235.192.208: 1 time
1.236.151.31: 2 times
5.39.89.70 (ns3106598.ip-5-39-89.eu): 1 time
14.215.48.67: 1 time
14.225.3.50: 1 time
14.231.19.184 (static.vnpt.vn): 1 time
47.22.135.70 (ool-2f168746.static.optonline.net): 1 time
58.211.23.183: 1 time
60.250.127.182 (60-250-127-182.HINET-IP.hinet.net): 1 time
64.76.163.165 (64-76-163-165.static.impsat.cl): 1 time
77.87.194.190 (ef1124.mirohost.net): 1 time
80.28.234.134 (134.red-80-28-234.staticip.rima-tde.net): 1 time
83.13.10.138 (eps138.internetdsl.tpnet.pl): 1 time
88.214.26.49: 1 time
89.43.156.91: 2 times
91.73.131.200: 1 time
101.236.42.219: 1 time
103.104.161.27: 1 time
103.109.209.15: 1 time
106.13.44.98: 1 time
106.38.139.126: 1 time
110.77.168.142: 1 time
114.207.112.18 (114-207-112-18.tongkni.co.kr): 6 times
114.219.159.125: 2 times
115.94.103.170: 1 time
116.255.75.249: 1 time
117.36.53.108: 1 time
117.255.216.106: 1 time
118.89.230.107: 1 time
119.246.33.158 (119246033158.ctinets.com): 1 time
120.194.0.170: 1 time
124.46.250.76: 6 times
124.193.121.3: 1 time
124.206.188.50: 1 time
125.227.69.45 (125-227-69-45.HINET-IP.hinet.net): 1 time
139.59.15.43: 1 time
139.59.85.89 (187125.cloudwaysapps.com): 1 time
139.162.122.110 (scan-8.security.ipip.net): 1 time
140.115.52.39 (dw39.csie.ncu.edu.tw): 1 time
141.135.60.60 (d8d873c3c.access.telenet.be): 1 time
142.93.240.79 (iso.thetank.host): 1 time
159.65.135.55: 1 time
165.84.191.236 (165084191236.ctinets.com): 1 time
167.99.43.65: 1 time
181.62.248.12 (dynamic-ip-1816124812.cable.net.co): 1 time
182.74.167.42: 1 time
182.231.203.182: 6 times
184.191.191.146 (wsip-184-191-191-146.sd.sd.cox.net): 1 time
185.221.125.13 (185-221-125-13.horalnet.net): 1 time
188.131.141.170: 1 time
190.1.201.152 (dsl-emcali-190.1.201.152.emcali.net.co): 1 time
190.55.238.31 (cpe-190-55-238-31.telecentro-reversos.com.ar): 1 time
192.144.135.135: 1 time
193.176.85.185: 2 times
208.109.53.165 (ip-208-109-53-165.ip.secureserver.net): 1 time
218.90.205.83: 1 time
222.76.229.158: 1 time
222.192.62.8: 1 time
222.252.30.117 (static.vnpt-hanoi.com.vn): 1 time
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 241G 160G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
2447
days inactive
2447
days old
0 comments
1 participants
participants (1)
-
root@zapf.in