04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Wed Dec 18 04:42:03 2019
Date Range Processed: yesterday
( 2019-Dec-17 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [172:172]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
A total of 1 sites probed the server
18.194.139.142
Requests with error response codes
400 Bad Request
mstshash=Administr: 4 Time(s)
/: 1 Time(s)
/dana-na/../dana/html5acc/guacamole/../../ ... 5acc/guacamole/: 1 Time(s)
/manager/text/list: 1 Time(s)
/robots.txt: 1 Time(s)
/w00tw00t.at.ISC.SANS.DFind:): 1 Time(s)
7: 1 Time(s)
404 Not Found
/robots.txt: 44 Time(s)
/berlin/apple-touch-icon.png: 8 Time(s)
/.git/HEAD: 1 Time(s)
/datenschutz: 1 Time(s)
/resolutionen/wise19/lernraume/Lernr%C3%83%C2%A4ume.pdf: 1 Time(s)
/sites/default/files/Lehramtstellungnahme.pdf: 1 Time(s)
/verein/satzung/%7CSatzung: 1 Time(s)
/wp-login.php: 1 Time(s)
/zapf/geschaeftsordnung: 1 Time(s)
499 (undefined)
/apple-touch-icon.png: 1 Time(s)
/favicon.png: 1 Time(s)
500 Internal Server Error
/: 153 Time(s)
/HNAP1/: 3 Time(s)
/login/submit/only: 3 Time(s)
/login: 1 Time(s)
/solr/: 1 Time(s)
/version: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
root (222.186.180.41): 41 Time(s)
root (222.186.42.4): 41 Time(s)
root (218.92.0.172): 40 Time(s)
root (222.186.173.238): 36 Time(s)
root (222.186.180.17): 36 Time(s)
root (49.88.112.55): 36 Time(s)
root (222.186.175.148): 34 Time(s)
root (49.88.112.61): 33 Time(s)
root (218.92.0.179): 30 Time(s)
root (222.186.169.194): 30 Time(s)
root (222.186.173.183): 30 Time(s)
root (222.186.180.223): 30 Time(s)
root (222.186.180.8): 30 Time(s)
root (218.92.0.155): 29 Time(s)
root (218.92.0.170): 29 Time(s)
root (222.186.175.202): 28 Time(s)
root (222.186.175.220): 27 Time(s)
root (222.186.175.181): 26 Time(s)
root (222.186.173.154): 24 Time(s)
root (222.186.175.154): 24 Time(s)
root (222.186.175.169): 24 Time(s)
root (222.186.175.216): 24 Time(s)
root (222.186.173.180): 23 Time(s)
root (222.186.175.147): 18 Time(s)
root (222.186.175.150): 18 Time(s)
root (222.186.175.155): 18 Time(s)
root (222.186.175.161): 18 Time(s)
root (222.186.175.163): 18 Time(s)
root (222.186.175.167): 18 Time(s)
root (222.186.180.6): 18 Time(s)
root (222.186.180.9): 18 Time(s)
root (49.88.112.59): 18 Time(s)
root (49.88.112.62): 18 Time(s)
root (218.92.0.178): 17 Time(s)
root (222.186.190.92): 17 Time(s)
root (218.92.0.175): 16 Time(s)
root (112.85.42.182): 12 Time(s)
root (218.92.0.134): 12 Time(s)
root (218.92.0.165): 12 Time(s)
root (218.92.0.212): 12 Time(s)
root (222.186.169.192): 12 Time(s)
root (222.186.173.142): 12 Time(s)
root (222.186.175.212): 12 Time(s)
root (222.186.175.217): 12 Time(s)
root (112.85.42.181): 11 Time(s)
root (222.186.173.226): 11 Time(s)
root (112.85.42.172): 10 Time(s)
root (218.92.0.135): 6 Time(s)
root (218.92.0.145): 6 Time(s)
root (218.92.0.148): 6 Time(s)
root (218.92.0.164): 6 Time(s)
root (222.186.173.215): 6 Time(s)
root (222.186.175.140): 6 Time(s)
root (222.186.175.151): 6 Time(s)
root (222.186.175.183): 6 Time(s)
root (222.186.180.147): 6 Time(s)
root (222.186.190.2): 6 Time(s)
root (112.85.42.171): 5 Time(s)
root (112.85.42.174): 5 Time(s)
root (222.186.175.215): 5 Time(s)
root (61.177.172.128): 5 Time(s)
unknown (bzq-62-219-3-58.dcenter.bezeqint.net): 4 Time(s)
bin (bzq-62-219-3-58.dcenter.bezeqint.net): 2 Time(s)
root (bzq-62-219-3-58.dcenter.bezeqint.net): 2 Time(s)
unknown (82-64-185-26.subs.proxad.net): 2 Time(s)
unknown (94.203.254.248): 2 Time(s)
unknown (cpc112471-chms6-2-0-cust116.20-1.cable.virginm.net): 2 Time(s)
daemon (bzq-62-219-3-58.dcenter.bezeqint.net): 1 Time(s)
mysql (181.66.99.176): 1 Time(s)
mysql (218.146.168.239): 1 Time(s)
mysql (89.189.154.66.dynamic.ufanet.ru): 1 Time(s)
root (109.228.232.4): 1 Time(s)
root (112.111.13.253): 1 Time(s)
root (218.92.0.141): 1 Time(s)
root (47.244.169.183): 1 Time(s)
root (60.54.96.139): 1 Time(s)
root (90.220.55.200): 1 Time(s)
root (bcdd2abd.skybroadband.com): 1 Time(s)
unknown (1.213.195.154): 1 Time(s)
unknown (102.185.77.116): 1 Time(s)
unknown (103.219.166.197): 1 Time(s)
unknown (109.110.52.77): 1 Time(s)
unknown (114.67.74.49): 1 Time(s)
unknown (118.25.237.124): 1 Time(s)
unknown (118.32.181.96): 1 Time(s)
unknown (122.49.35.37): 1 Time(s)
unknown (128.246.211.130.bc.googleusercontent.com): 1 Time(s)
unknown (130.ip-142-4-203.net): 1 Time(s)
unknown (132.145.18.157): 1 Time(s)
unknown (14.186.206.33): 1 Time(s)
unknown (14.225.3.47): 1 Time(s)
unknown (142.93.81.77): 1 Time(s)
unknown (162.snat-111-91-34.hns.net.in): 1 Time(s)
unknown (171.228.157.99): 1 Time(s)
unknown (174.138.56.93): 1 Time(s)
unknown (177.67.83.139): 1 Time(s)
unknown (178.128.81.125): 1 Time(s)
unknown (187.62.198.5): 1 Time(s)
unknown (188.120.239.34): 1 Time(s)
unknown (198.211.123.183): 1 Time(s)
unknown (200-90-190-68.static.tie.cl): 1 Time(s)
unknown (200.173.187.35.bc.googleusercontent.com): 1 Time(s)
unknown (200.252.132.22): 1 Time(s)
unknown (202.141.245.134): 1 Time(s)
unknown (207.154.232.160): 1 Time(s)
unknown (220.149.241.71): 1 Time(s)
unknown (222.128.59.164): 1 Time(s)
unknown (223.197.175.171): 1 Time(s)
unknown (36.66.149.211): 1 Time(s)
unknown (36.66.156.125): 1 Time(s)
unknown (36.66.188.183): 1 Time(s)
unknown (39.53.188.179): 1 Time(s)
unknown (45.121.88.102): 1 Time(s)
unknown (54.ip-51-68-230.eu): 1 Time(s)
unknown (58.227.194.207): 1 Time(s)
unknown (61.95.186.120): 1 Time(s)
unknown (92.63.194.26): 1 Time(s)
unknown (cloud-io.cloud): 1 Time(s)
unknown (ip30-18-176-143.adsl2.static.versatel.nl): 1 Time(s)
unknown (net-5-88-155-130.cust.vodafonedsl.it): 1 Time(s)
unknown (nkym.com.ph): 1 Time(s)
unknown (ns301667.ip-94-23-50.eu): 1 Time(s)
unknown (v133-130-109-118.a038.g.tyo1.static.cnode.io): 1 Time(s)
Invalid Users:
Unknown Account: 55 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
80 Miscellaneous warnings
12.282K Bytes accepted 12,577
12.282K Bytes sent via SMTP 12,577
======== ==================================================
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
4 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
4 Total 4xx Rejects 100.00%
======== ==================================================
298 Connections
14 Connections lost (inbound)
298 Disconnections
1 Removed from queue
1 Sent via SMTP
4 Hostname verification errors (FCRDNS)
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
root : 191 Time(s)
Failed logins from:
47.244.169.183: 1 time
49.88.112.55: 36 times
49.88.112.59: 18 times
49.88.112.61: 35 times
49.88.112.62: 18 times
60.54.96.139: 1 time
61.177.172.128: 5 times
62.219.3.58 (bzq-62-219-3-58.dcenter.bezeqint.net): 5 times
89.189.154.66 (89.189.154.66.dynamic.ufanet.ru): 1 time
90.220.55.200 (5adc37c8.bb.sky.com): 1 time
109.228.232.4: 1 time
112.85.42.171: 5 times
112.85.42.172: 10 times
112.85.42.174: 5 times
112.85.42.181: 11 times
112.85.42.182: 12 times
112.111.13.253: 1 time
181.66.99.176: 1 time
188.221.42.189 (bcdd2abd.skybroadband.com): 1 time
218.92.0.134: 12 times
218.92.0.135: 6 times
218.92.0.141: 1 time
218.92.0.145: 6 times
218.92.0.148: 6 times
218.92.0.155: 29 times
218.92.0.164: 6 times
218.92.0.165: 12 times
218.92.0.170: 29 times
218.92.0.172: 40 times
218.92.0.175: 16 times
218.92.0.178: 17 times
218.92.0.179: 30 times
218.92.0.212: 12 times
218.146.168.239 (wymm91.com): 1 time
222.186.42.4: 41 times
222.186.169.192: 12 times
222.186.169.194: 33 times
222.186.173.142: 12 times
222.186.173.154: 24 times
222.186.173.180: 23 times
222.186.173.183: 30 times
222.186.173.215: 6 times
222.186.173.226: 11 times
222.186.173.238: 36 times
222.186.175.140: 6 times
222.186.175.147: 18 times
222.186.175.148: 36 times
222.186.175.150: 18 times
222.186.175.151: 6 times
222.186.175.154: 24 times
222.186.175.155: 18 times
222.186.175.161: 18 times
222.186.175.163: 18 times
222.186.175.167: 18 times
222.186.175.169: 24 times
222.186.175.181: 30 times
222.186.175.183: 6 times
222.186.175.202: 28 times
222.186.175.212: 12 times
222.186.175.215: 5 times
222.186.175.216: 24 times
222.186.175.217: 12 times
222.186.175.220: 29 times
222.186.180.6: 18 times
222.186.180.8: 30 times
222.186.180.9: 18 times
222.186.180.17: 36 times
222.186.180.41: 41 times
222.186.180.147: 6 times
222.186.180.223: 30 times
222.186.190.2: 6 times
222.186.190.92: 17 times
Illegal users from:
undef: 21 times
1.213.195.154: 1 time
5.88.155.130 (net-5-88-155-130.cust.vodafonedsl.it): 1 time
14.186.206.33 (static.vnpt.vn): 1 time
14.225.3.47: 1 time
35.187.173.200 (200.173.187.35.bc.googleusercontent.com): 1 time
36.66.149.211: 1 time
36.66.156.125: 1 time
36.66.188.183: 1 time
39.53.188.179: 1 time
45.121.88.102: 1 time
51.68.230.54 (54.ip-51-68-230.eu): 1 time
58.227.194.207: 1 time
61.95.186.120: 1 time
62.219.3.58 (bzq-62-219-3-58.dcenter.bezeqint.net): 4 times
77.103.24.117 (cpc112471-chms6-2-0-cust116.20-1.cable.virginm.net): 2 times
80.211.9.57 (cloud-io.cloud): 1 time
82.64.185.26 (82-64-185-26.subs.proxad.net): 2 times
92.63.194.26: 1 time
94.23.50.194 (ns301667.ip-94-23-50.eu): 1 time
94.203.254.248: 2 times
102.185.77.116: 1 time
103.219.166.197: 1 time
109.110.52.77: 1 time
111.91.34.162 (162.snat-111-91-34.hns.net.in): 1 time
114.67.74.49: 1 time
118.25.237.124: 1 time
118.32.181.96: 1 time
122.49.35.37: 1 time
122.55.19.115 (nkym.com.ph): 1 time
130.211.246.128 (128.246.211.130.bc.googleusercontent.com): 1 time
132.145.18.157: 1 time
133.130.109.118 (v133-130-109-118.a038.g.tyo1.static.cnode.io): 1 time
139.162.122.110 (scan-8.security.ipip.net): 1 time
142.4.203.130 (130.ip-142-4-203.net): 1 time
142.93.81.77: 1 time
143.176.18.30 (ip30-18-176-143.adsl2.static.versatel.nl): 1 time
171.228.157.99 (dynamic-adsl.viettel.vn): 1 time
174.138.56.93: 1 time
177.67.83.139: 1 time
178.128.81.125: 1 time
187.62.198.5 (187-62-198-5.ble.voxconexao.com.br): 1 time
188.120.239.34 (fanam-cinema.fvds.ru): 1 time
198.211.123.183: 1 time
200.90.190.68 (200-90-190-68.static.tie.cl): 1 time
200.252.132.22: 1 time
202.141.245.134 (202-141-245-134.multi.net.pk): 1 time
207.154.232.160: 1 time
220.149.241.71: 1 time
222.128.59.164: 1 time
223.197.175.171 (223-197-175-171.static.imsbiz.com): 1 time
**Unmatched Entries**
error: Received disconnect from 141.98.10.39: 2: Handshake failed [preauth] : 1 time(s)
fatal: no matching cipher found: client
aes256-cbc,rijndael-cbc(a)lysator.liu.se,aes192-cbc,aes128-cbc,arcfour128,arcfour,3des-cbc,none
server
aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,chacha20-poly1305@openssh.com
[preauth] : 5 time(s)
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 241G 160G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
2132
days inactive
2132
days old
0 comments
1 participants
participants (1)
-
root@zapf.in