04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Wed Apr 3 04:42:03 2024
Date Range Processed: yesterday
( 2024-Apr-02 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [ 41:41 ]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
Connection attempts using mod_proxy:
45.125.66.34 -> google.com:443: 1 Time(s)
87.121.69.52 -> google.com:443: 4 Time(s)
A total of 10 sites probed the server
106.75.175.181
162.243.145.20
178.128.237.157
181.214.166.113
188.166.150.196
198.199.119.91
198.235.24.121
198.235.24.67
74.82.47.3
91.92.243.229
Requests with error response codes
400 Bad Request
null: 12 Time(s)
/: 5 Time(s)
google.com:443: 5 Time(s)
*: 3 Time(s)
mstshash=hello: 3 Time(s)
/.env: 2 Time(s)
[\x22miner1\x22,: 2 Time(s)
mstshash=Administr: 2 Time(s)
'\x02\xB4\xCCC\xC5\xE6\x00\x00\x1A\xC0/\xC ... x09\xC0\x14\xC0: 1 Time(s)
/aaa9: 1 Time(s)
/aab8: 1 Time(s)
12.1.2: 1 Time(s)
NT: 1 Time(s)
\x1B\xAB]\x83\xF6O\x0C\x9B\xB6\xF1\xFArr\x ... x09\xC0\x13\xC0: 1 Time(s)
\xE5\xC8\x03v\xB0\x09\xD43\x9C\xF597\xADFU ... x09\xC0\x13\xC0: 1 Time(s)
\xF8\xCF\x13o\xA0\x9AJu: 1 Time(s)
499 (undefined)
/cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 1 Time(s)
500 Internal Server Error
/: 26 Time(s)
/.env: 4 Time(s)
/cgi-bin/luci/;stok=/locale?form=country&o ... 20.%2Ftenda.sh): 3 Time(s)
/.git/config: 2 Time(s)
/favicon.ico: 2 Time(s)
/robots.txt: 2 Time(s)
/?XDEBUG_SESSION_START=phpstorm: 1 Time(s)
/aaa9: 1 Time(s)
/aab8: 1 Time(s)
/actuator/gateway/routes: 1 Time(s)
/bitcoin/.env: 1 Time(s)
/geoserver/web/: 1 Time(s)
/remote/fgt_lang?lang=/../../../..//////// ... lvpn_websession: 1 Time(s)
/sitemap.xml: 1 Time(s)
/webui/: 1 Time(s)
502 Bad Gateway
/Reso_DigitalePruefungen/pdf: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (165.22.229.104): 73 Time(s)
root (103.36.84.194): 54 Time(s)
root (179.43.180.106): 26 Time(s)
root (223.111.168.11): 24 Time(s)
root (183.81.169.238): 19 Time(s)
root (113.106.88.146): 18 Time(s)
unknown (212.70.149.150): 18 Time(s)
root (165.22.229.104): 17 Time(s)
postgres (fixed-186-96-145-241.totalplay.net): 8 Time(s)
unknown (193.201.9.156): 8 Time(s)
root (170.64.232.170): 6 Time(s)
root (218.92.0.33): 6 Time(s)
root (222.77.96.7): 6 Time(s)
root (47.236.179.153): 6 Time(s)
root (89.218.49.34): 6 Time(s)
unknown (119.201.11.162): 6 Time(s)
root (218.150.230.61): 5 Time(s)
root (218.92.0.28): 5 Time(s)
root (218.92.0.47): 5 Time(s)
root (218.92.0.59): 5 Time(s)
root (49.7.226.125): 5 Time(s)
root (59.0.8.68): 5 Time(s)
unknown (143.110.221.98): 5 Time(s)
unknown (170.64.232.170): 5 Time(s)
unknown (85.209.11.227): 5 Time(s)
unknown (87.246.7.206): 5 Time(s)
unknown (121.146.169.95): 4 Time(s)
unknown (183.107.151.167): 4 Time(s)
unknown (185.224.128.34): 4 Time(s)
root (193.201.9.156): 3 Time(s)
unknown (8.222.139.63): 3 Time(s)
root (212.70.149.150): 2 Time(s)
root (222.187.92.132): 2 Time(s)
root (85.209.11.227): 2 Time(s)
unknown (115.241.38.11): 2 Time(s)
unknown (85.209.11.254): 2 Time(s)
unknown (85.209.11.27): 2 Time(s)
backup (165.22.229.104): 1 Time(s)
bin (165.22.229.104): 1 Time(s)
mysql (170.64.232.170): 1 Time(s)
nobody (103.157.114.234): 1 Time(s)
nobody (112.227.21.38): 1 Time(s)
nobody (196.245.250.10): 1 Time(s)
nobody (220.178.117.98): 1 Time(s)
nobody (8.20.22.58): 1 Time(s)
nobody (93-62-72-229.ip21.fastwebnet.it): 1 Time(s)
nobody (c102-93.i13-26.melita.com): 1 Time(s)
nobody (h88-129-167-241.cust.bredband2.com): 1 Time(s)
root (067-049-074-072.res.spectrum.com): 1 Time(s)
root (1.20.156.196): 1 Time(s)
root (103.127.8.250): 1 Time(s)
root (110.39.55.182): 1 Time(s)
root (136.255.154.102): 1 Time(s)
root (14.98.78.11): 1 Time(s)
root (182.76.134.58): 1 Time(s)
root (194.169.175.35): 1 Time(s)
root (213.234.207.36): 1 Time(s)
root (36.110.228.254): 1 Time(s)
root (8.222.139.63): 1 Time(s)
root (85.209.11.27): 1 Time(s)
unknown (103.127.53.114): 1 Time(s)
unknown (103.157.114.242): 1 Time(s)
unknown (103.190.91.20): 1 Time(s)
unknown (103.88.238.3): 1 Time(s)
unknown (110.39.180.190): 1 Time(s)
unknown (111-70-38-105.emome-ip.hinet.net): 1 Time(s)
unknown (111.42.3.149): 1 Time(s)
unknown (113.140.84.86): 1 Time(s)
unknown (113.193.240.214): 1 Time(s)
unknown (113.25.250.81): 1 Time(s)
unknown (115.88.121.73): 1 Time(s)
unknown (117.254.196.215): 1 Time(s)
unknown (118.98.90.2): 1 Time(s)
unknown (119.149.235.101): 1 Time(s)
unknown (121.202.196.194): 1 Time(s)
unknown (122.14.197.21): 1 Time(s)
unknown (122.166.44.200): 1 Time(s)
unknown (122.187.226.21): 1 Time(s)
unknown (122.3.203.151): 1 Time(s)
unknown (123.129.198.203.static.netvigator.com): 1 Time(s)
unknown (123.212.0.130): 1 Time(s)
unknown (125.138.80.114): 1 Time(s)
unknown (125.23.220.112): 1 Time(s)
unknown (125.72.254.83): 1 Time(s)
unknown (137.184.116.83): 1 Time(s)
unknown (138.219.166.59): 1 Time(s)
unknown (147.235.228.132): 1 Time(s)
unknown (149.23.117.254): 1 Time(s)
unknown (161.132.96.130): 1 Time(s)
unknown (175.101.150.15.static.excellmedia.net): 1 Time(s)
unknown (175.202.13.55): 1 Time(s)
unknown (178.217.158.70): 1 Time(s)
unknown (179.60.244.18): 1 Time(s)
unknown (181.65.252.77): 1 Time(s)
unknown (183.167.217.86): 1 Time(s)
unknown (183.66.252.182): 1 Time(s)
unknown (185.13.182.232): 1 Time(s)
unknown (185.196.8.151): 1 Time(s)
unknown (185.255.212.178): 1 Time(s)
unknown (186.7.75.162): 1 Time(s)
unknown (191.36.154.131): 1 Time(s)
unknown (194.169.175.35): 1 Time(s)
unknown (194.169.175.36): 1 Time(s)
unknown (194.44.200.98): 1 Time(s)
unknown (202.29.221.214): 1 Time(s)
unknown (203.134.219.10): 1 Time(s)
unknown (203.252.10.4): 1 Time(s)
unknown (210.5.117.238): 1 Time(s)
unknown (211.185.219.143): 1 Time(s)
unknown (211.247.127.251): 1 Time(s)
unknown (218.91.236.106): 1 Time(s)
unknown (219.129.236.174): 1 Time(s)
unknown (220.90.239.143): 1 Time(s)
unknown (220.92.19.112): 1 Time(s)
unknown (221.139.3.84): 1 Time(s)
unknown (221.146.242.1): 1 Time(s)
unknown (221.146.242.33): 1 Time(s)
unknown (222.113.188.20): 1 Time(s)
unknown (222.128.84.21): 1 Time(s)
unknown (222.74.136.222): 1 Time(s)
unknown (223.171.91.118): 1 Time(s)
unknown (223.171.91.127): 1 Time(s)
unknown (27.122.62.185): 1 Time(s)
unknown (27.188.73.223): 1 Time(s)
unknown (27.72.41.167): 1 Time(s)
unknown (36.134.78.151): 1 Time(s)
unknown (39.129.25.70): 1 Time(s)
unknown (40.121.66.227): 1 Time(s)
unknown (43.130.58.94): 1 Time(s)
unknown (45.5.159.34): 1 Time(s)
unknown (45.71.24.198): 1 Time(s)
unknown (46.100.5.240): 1 Time(s)
unknown (50.223.38.94): 1 Time(s)
unknown (58.216.101.162): 1 Time(s)
unknown (59.61.215.86): 1 Time(s)
unknown (59.99.152.135): 1 Time(s)
unknown (61.178.89.207): 1 Time(s)
unknown (61.241.114.78): 1 Time(s)
unknown (64.141.55.29): 1 Time(s)
unknown (65.20.131.99): 1 Time(s)
unknown (77.240.33.15): 1 Time(s)
unknown (80.233.77.136): 1 Time(s)
unknown (87-198-60-128.ptr.magnet.ie): 1 Time(s)
unknown (87.200.180.233): 1 Time(s)
unknown (87.200.210.18): 1 Time(s)
unknown (89.111.170.112): 1 Time(s)
unknown (89.251.47.179): 1 Time(s)
unknown (92.115.3.157): 1 Time(s)
unknown (94.204.204.226): 1 Time(s)
unknown (94.207.99.76): 1 Time(s)
unknown (ip117.net-81-16-170.koping.net): 1 Time(s)
unknown (ool-45716aae.dyn.optonline.net): 1 Time(s)
unknown (static-108-35-131-4.nwrknj.fios.verizon.net): 1 Time(s)
uucp (193.201.9.156): 1 Time(s)
Invalid Users:
Unknown Account: 254 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
14.965K Bytes accepted 15,324
14.965K Bytes sent via SMTP 15,324
======== ==================================================
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
104 Connections
8 Connections lost (inbound)
104 Disconnections
1 Removed from queue
1 Sent via SMTP
1 SMTP dialog errors
2 Hostname verification errors (FCRDNS)
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
invalid : 1 Time(s)
root : 6 Time(s)
Failed logins from:
1.20.156.196: 1 time
8.20.22.58 (8-20-22-58.hwccustomers.com): 1 time
8.222.139.63: 1 time
14.98.78.11: 1 time
36.110.228.254: 1 time
47.236.179.153: 6 times
49.7.226.125: 5 times
59.0.8.68: 6 times
67.49.74.72 (067-049-074-072.res.spectrum.com): 1 time
85.209.11.27: 1 time
85.209.11.227: 2 times
88.129.167.241 (h88-129-167-241.cust.bredband2.com): 1 time
89.218.49.34 (mx12.vertex.kz): 6 times
93.62.72.229 (93-62-72-229.ip21.fastwebnet.it): 1 time
94.17.102.93 (c102-93.i13-26.melita.com): 1 time
103.36.84.194: 54 times
103.127.8.250: 1 time
103.157.114.234 (234.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time
110.39.55.182 (WGPON-3955-182.wateen.net): 1 time
112.227.21.38: 1 time
113.106.88.146: 18 times
136.255.154.102: 1 time
165.22.229.104: 19 times
170.64.232.170: 7 times
179.43.180.106 (hostedby.privatelayer.com): 26 times
182.76.134.58 (nsg-static-58.134.76.182-airtel.com): 1 time
183.81.169.238: 19 times
186.96.145.241 (fixed-186-96-145-241.totalplay.net): 8 times
193.201.9.156: 4 times
194.169.175.35: 1 time
196.245.250.10: 1 time
212.70.149.150: 2 times
213.234.207.36: 1 time
218.92.0.28: 5 times
218.92.0.33: 6 times
218.92.0.47: 5 times
218.92.0.59: 5 times
218.150.230.61: 6 times
220.178.117.98: 1 time
222.77.96.7: 6 times
222.187.92.132: 2 times
223.111.168.11: 24 times
Illegal users from:
2001:470:1:332::2 (scan-36af.shadowserver.org): 1 time
undef: 93 times
8.222.139.63: 3 times
24.199.94.58: 5 times
27.72.41.167 (dynamic-ip-adsl.viettel.vn): 1 time
27.122.62.185 (ws185-62.122.27.rcil.gov.in): 1 time
27.188.73.223: 1 time
36.134.78.151: 1 time
39.129.25.70: 1 time
40.121.66.227: 1 time
43.130.58.94: 1 time
45.5.159.34: 1 time
45.71.24.198: 1 time
46.100.5.240: 1 time
47.236.183.34: 4 times
50.223.38.94: 1 time
58.216.101.162: 1 time
59.61.215.86: 1 time
59.99.152.135 (static.ftth.ptk.59.99.152.135.bsnl.in): 1 time
61.178.89.207: 1 time
61.241.114.78: 1 time
64.62.197.97 (scan-39f.shadowserver.org): 1 time
64.141.55.29: 1 time
65.20.131.99: 1 time
69.113.106.174 (ool-45716aae.dyn.optonline.net): 1 time
77.240.33.15: 1 time
80.210.62.189: 1 time
80.233.77.136: 1 time
81.16.170.117 (ip117.net-81-16-170.koping.net): 1 time
85.209.11.27: 2 times
85.209.11.227: 5 times
85.209.11.254: 2 times
87.198.60.128 (87-198-60-128.ptr.magnet.ie): 1 time
87.200.180.233: 1 time
87.200.210.18: 1 time
87.246.7.206: 5 times
89.111.170.112: 1 time
89.251.47.179: 1 time
92.115.3.157 (host-static-92-115-3-157.moldtelecom.md): 1 time
94.204.204.226: 1 time
94.207.99.76: 1 time
103.88.238.3: 1 time
103.127.53.114: 1 time
103.157.114.242 (242.114.157.103.Ai-bkti-hts.iforte.net.id): 1 time
103.190.91.20: 1 time
108.35.131.4 (static-108-35-131-4.nwrknj.fios.verizon.net): 1 time
110.39.180.190 (WGPON-39180-190.wateen.net): 1 time
111.42.3.149: 1 time
111.70.38.105 (111-70-38-105.emome-ip.hinet.net): 1 time
113.25.250.81: 1 time
113.140.84.86: 1 time
113.193.240.214: 1 time
115.88.121.73: 1 time
115.241.38.11: 2 times
117.254.196.215 (static.ftth.nsk.117.254.196.215.bsnl.in): 1 time
118.98.90.2: 1 time
119.149.235.101: 5 times
119.201.11.162: 6 times
121.146.169.95: 4 times
121.202.196.194 (m121-202-196-194.smartone.com): 1 time
122.3.203.151 (122.3.203.151.static.pldt.net): 1 time
122.14.197.21: 1 time
122.166.44.200 (abts-kk-static-200.44.166.122.airtelbroadband.in): 1 time
122.187.226.21 (nsg-corporate-21.226.187.122.airtel.in): 1 time
123.212.0.130: 1 time
125.23.220.112 (abts-north-static-112.220.23.125.airtelbroadband.in): 1 time
125.72.254.83: 1 time
125.138.80.114: 5 times
137.184.116.83: 1 time
138.197.169.151: 4 times
138.219.166.59 (166-219-138-59.ereline.com.br): 1 time
143.110.221.98: 5 times
147.235.228.132: 1 time
149.23.117.254: 1 time
159.75.56.103: 1 time
159.89.152.240: 4 times
161.132.96.130: 1 time
165.22.229.104: 74 times
170.64.232.170: 7 times
175.101.150.15 (175.101.150.15.static.excellmedia.net): 1 time
175.202.13.55: 1 time
178.217.158.70: 1 time
179.60.244.18 (179-60-244-18.wisp.net.ec): 1 time
181.65.252.77: 1 time
183.66.252.182: 1 time
183.107.151.167: 4 times
183.167.217.86: 1 time
185.13.182.232: 1 time
185.196.8.151: 1 time
185.224.128.34: 4 times
185.255.212.178: 1 time
186.7.75.162 (162.75.7.186.f.dyn.claro.net.do): 1 time
191.36.154.131 (vipturbo.com.br): 1 time
193.201.9.156: 8 times
194.44.200.98: 1 time
194.169.175.35: 1 time
194.169.175.36: 1 time
202.29.221.214: 1 time
203.134.219.10: 1 time
203.198.129.123 (123.129.198.203.static.netvigator.com): 1 time
203.252.10.4: 1 time
210.5.117.238 (210.5.117.238.pldt.net): 1 time
211.185.219.143: 1 time
211.247.127.251: 1 time
212.70.149.150: 18 times
218.91.236.106: 1 time
219.129.236.174: 1 time
220.90.239.143: 1 time
220.92.19.112: 5 times
221.139.3.84: 1 time
221.146.242.1: 1 time
221.146.242.33: 1 time
222.74.136.222 (222.136.74.222.broad.ee.nm.dynamic.163data.com.cn): 1 time
222.113.188.20: 5 times
222.128.84.21: 1 time
223.171.91.118: 1 time
223.171.91.127: 1 time
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/ploop17333p1 394G 243G 132G 65% /
none 4.0G 0 4.0G 0% /dev
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
564
days inactive
564
days old
0 comments
1 participants
participants (1)
-
root@zapf.in