################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Tue Jan 29 04:42:03 2019
Date Range Processed: yesterday
( 2019-Jan-28 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host:
h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [ 4:4 ]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
A total of 1 sites probed the server
61.219.11.151
Requests with error response codes
400 Bad Request
mstshash=Administr: 2 Time(s)
null: 2 Time(s)
/: 1 Time(s)
/confirm/%s: 1 Time(s)
/w00tw00t.at.ISC.SANS.DFind:): 1 Time(s)
404 Not Found
/robots.txt: 27 Time(s)
/wp-login.php: 3 Time(s)
/berlin/apple-touch-icon.png: 2 Time(s)
/sites/all/modules/civicrm/packages/OpenFl ... pload_image.php: 2 Time(s)
/.well-known/apple-app-site-association: 1 Time(s)
/HNAP1/: 1 Time(s)
/apple-app-site-association: 1 Time(s)
/reader/1994-wi-reader_hb94.pdf: 1 Time(s)
/reader/2017_SoSe_Berlin_vorlaeufig.pdf: 1 Time(s)
/user/login?destination=comment%2Freply%2F32%23comment-form: 1 Time(s)
500 Internal Server Error
/: 5 Time(s)
//libs/js/iframe.js: 4 Time(s)
/robots.txt: 2 Time(s)
502 Bad Gateway
/: 25 Time(s)
/robots.txt: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
root (d51a55d0d.access.telenet.be): 6 Time(s)
root (ip-178-203-160-137.hsi10.unitymediagroup.de): 6 Time(s)
unknown (31-178-110-38.dynamic.chello.pl): 6 Time(s)
unknown (103.214.68.200): 3 Time(s)
unknown (177.206.128.131): 3 Time(s)
unknown (185.10.215.227): 3 Time(s)
unknown (193.231.32.6): 3 Time(s)
unknown (46.97.239.16): 3 Time(s)
unknown (
host-49-79.msstmsu.starkville.ms.us.clients.pavlovmedia.net): 3 Time(s)
root (68.183.231.192): 2 Time(s)
unknown (159.65.135.55): 2 Time(s)
unknown (45.119.83.196): 2 Time(s)
unknown (75.ip-51-254-102.eu): 2 Time(s)
unknown (80.88.90.108): 2 Time(s)
mysql (
23-25-72-234-static.hfc.comcastbusiness.net): 1 Time(s)
root (159.65.135.55): 1 Time(s)
root (177.81.55.167): 1 Time(s)
root (45.119.83.196): 1 Time(s)
root (75.ip-51-254-102.eu): 1 Time(s)
root (80.88.90.108): 1 Time(s)
unknown (14.186.44.171): 1 Time(s)
unknown (217-49-130-177.redewsp.com.br): 1 Time(s)
unknown (218.66.10.48): 1 Time(s)
unknown (88.214.26.49): 1 Time(s)
Invalid Users:
Unknown Account: 40 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
522 Miscellaneous warnings
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
7 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
7 Total 4xx Rejects 100.00%
======== ==================================================
541 Connections
531 Connections lost (inbound)
541 Disconnections
5 Deferred
103 Deferrals
103 Connection failures (outbound)
5 SMTP dialog errors
1 Hostname verification errors (FCRDNS)
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
invalid : 1 Time(s)
root : 2 Time(s)
Failed logins from:
23.25.72.234 (
23-25-72-234-static.hfc.comcastbusiness.net): 1 time
45.119.83.196: 1 time
51.254.102.75 (75.ip-51-254-102.eu): 1 time
68.183.231.192: 2 times
80.88.90.108 (host108-90-88-80.serverdedicati.aruba.it): 1 time
81.165.93.13 (d51A55D0D.access.telenet.be): 6 times
159.65.135.55: 1 time
177.81.55.167 (b15137a7.virtua.com.br): 1 time
178.203.160.137 (ip-178-203-160-137.hsi10.unitymediagroup.de): 6 times
Illegal users from:
undef: 26 times
14.186.44.171 (static.vnpt.vn): 1 time
31.178.110.38 (31-178-110-38.dynamic.chello.pl): 6 times
45.119.83.196: 2 times
46.97.239.16: 3 times
51.254.102.75 (75.ip-51-254-102.eu): 2 times
68.180.49.79 (
host-49-79.msstmsu.starkville.ms.us.clients.pavlovmedia.net): 3 times
80.88.90.108 (host108-90-88-80.serverdedicati.aruba.it): 2 times
88.214.26.49: 1 time
103.214.68.200: 3 times
159.65.135.55: 2 times
177.130.49.217 (217-49-130-177.redewsp.com.br): 1 time
177.206.128.131 (177.206.128.131.static.gvt.net.br): 3 times
185.10.215.227: 3 times
193.231.32.6: 3 times
218.66.10.48 (48.10.66.218.broad.fz.fj.dynamic.163data.com.cn): 5 times
**Unmatched Entries**
fatal: no matching cipher found: client
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,twofish-cbc,arcfour server
aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com
[preauth] : 1 time(s)
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 241G 160G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################