################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Thu Feb 14 04:42:03 2019 Date Range Processed: yesterday ( 2019-Feb-13 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 9:10 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Requests with error response codes 400 Bad Request /: 2 Time(s) 404 Not Found /robots.txt: 36 Time(s) /wp-login.php: 14 Time(s) /berlin/apple-touch-icon.png: 7 Time(s) /HNAP1/: 1 Time(s) /node: 1 Time(s) /old/wp-login.php: 1 Time(s) /sites/default/files/2009_WiSe_M%C3%BCnchen_gescannt_low.pdf: 1 Time(s) /sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s) 500 Internal Server Error /: 2 Time(s) /cgi-bin/config.exp: 2 Time(s) 502 Bad Gateway /: 23 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (112.0.170.178): 6 Time(s) root (116.255.14.216): 6 Time(s) root (182.40.47.154): 6 Time(s) root (218.92.1.184): 6 Time(s) root (41.74.3.18): 6 Time(s) root (cle60-2-88-173-19-214.fbx.proxad.net): 6 Time(s) unknown (125.36.159.216): 6 Time(s) unknown (178.62.62.139): 6 Time(s) unknown (37.29.57.5): 6 Time(s) unknown (142-254-41-60.dsl.dynamic.fusionbroadband.com): 2 Time(s) unknown (45.116.44.22): 2 Time(s) unknown (83-233-197-93.cust.bredband2.com): 2 Time(s) nobody (104.244.77.155): 1 Time(s) postgres (105.22.42.250): 1 Time(s) postgres (116.255.75.249): 1 Time(s) root (106.12.216.128): 1 Time(s) root (115.94.103.170): 1 Time(s) root (124.158.5.112): 1 Time(s) root (134.209.14.76): 1 Time(s) root (159.89.104.243): 1 Time(s) root (185.244.25.105): 1 Time(s) root (189.254.33.157): 1 Time(s) root (68.183.229.159): 1 Time(s) root (net-2-32-114-226.cust.vodafonedsl.it): 1 Time(s) unknown (106.12.200.71): 1 Time(s) unknown (106.12.205.168): 1 Time(s) unknown (106.12.205.171): 1 Time(s) unknown (122.160.137.37): 1 Time(s) unknown (124.158.5.112): 1 Time(s) unknown (138.97.64.22): 1 Time(s) unknown (139.59.78.70): 1 Time(s) unknown (159.89.104.243): 1 Time(s) unknown (185.244.25.227): 1 Time(s) unknown (189-76-193-40-pdtst-cf-1.visaonet.com.br): 1 Time(s) unknown (202.137.154.161): 1 Time(s) unknown (43.225.22.35): 1 Time(s) unknown (64.76.6.126): 1 Time(s) unknown (68.183.229.159): 1 Time(s) unknown (74-95-83-153-washingtondc.hfc.comcastbusiness.net): 1 Time(s) unknown (appa1.australiasoutheast.cloudapp.azure.com): 1 Time(s) unknown (dhk.xeonbd.com): 1 Time(s) unknown (ns3016508.ip-51-254-47.eu): 1 Time(s) unknown (ns522805.ip-158-69-124.net): 1 Time(s) unknown (qui56-1-78-245-125-220.fbx.proxad.net): 1 Time(s) Invalid Users: Unknown Account: 44 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 2 Miscellaneous warnings 9.909K Bytes accepted 10,147 9.909K Bytes sent via SMTP 10,147 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 3 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 3 Total 4xx Rejects 100.00% ======== ================================================== 184 Connections 94 Connections lost (inbound) 184 Disconnections 1 Removed from queue 1 Sent via SMTP ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 3 Time(s) root : 6 Time(s) Failed logins from: 2.32.114.226 (net-2-32-114-226.cust.vodafonedsl.it): 1 time 41.74.3.18: 6 times 68.183.229.159: 1 time 88.173.19.214 (cle60-2-88-173-19-214.fbx.proxad.net): 6 times 104.244.77.155 (.): 1 time 105.22.42.250: 1 time 106.12.216.128: 1 time 112.0.170.178: 6 times 115.94.103.170: 1 time 116.255.14.216 (dyn-116-255-14-216.superbb.superloop.com): 6 times 116.255.75.249: 1 time 124.158.5.112: 1 time 134.209.14.76: 1 time 159.89.104.243 (166473.cloudwaysapps.com): 1 time 182.40.47.154: 6 times 185.244.25.105 (Dedi08.customers.kvsolutions.nl): 1 time 189.254.33.157 (customer-189-254-33-157-sta.uninet-ide.com.mx): 1 time 218.92.1.184: 6 times Illegal users from: undef: 18 times 37.29.57.5 (ip-37-29-57-5.nwgsm.ru): 6 times 40.127.67.157: 1 time 43.225.22.35: 1 time 45.116.44.22: 2 times 51.254.47.198 (ns3016508.ip-51-254-47.eu): 1 time 64.76.6.126 (64-76-6-126.dynamic.impsat.net.ar): 1 time 68.183.229.159: 1 time 74.95.83.153 (74-95-83-153-WashingtonDC.hfc.comcastbusiness.net): 1 time 78.245.125.220 (qui56-1-78-245-125-220.fbx.proxad.net): 1 time 83.233.197.93 (83-233-197-93.cust.bredband2.com): 2 times 103.48.119.116 (dhk.xeonbd.com): 1 time 106.12.200.71: 1 time 106.12.205.168: 1 time 106.12.205.171: 1 time 122.160.137.37 (abts-north-static-037.137.160.122.airtelbroadband.in): 1 time 124.158.5.112: 1 time 125.36.159.216: 6 times 138.97.64.22: 1 time 139.59.78.70: 1 time 142.254.41.60 (142-254-41-60.dsl.dynamic.fusionbroadband.com): 2 times 158.69.124.9 (ns522805.ip-158-69-124.net): 1 time 159.89.104.243 (166473.cloudwaysapps.com): 1 time 178.62.62.139: 6 times 185.244.25.227: 1 time 189.76.193.40 (189-76-193-40-pdtst-cf-1.visaonet.com.br): 1 time 202.137.154.161: 1 time ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################