################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Wed Feb 16 04:42:04 2022 Date Range Processed: yesterday ( 2022-Feb-15 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 222.186.19.235 -> zapf.wiki:443: 2 Time(s) A total of 14 sites probed the server 103.1.212.248 103.153.77.170 103.156.91.51 107.189.8.191 134.209.157.21 164.90.136.96 173.249.53.50 202.44.139.16 222.186.19.235 23.224.186.46 34.77.162.11 59.99.132.89 61.219.11.151 89.248.172.16 Requests with error response codes 400 Bad Request null: 17 Time(s) *: 6 Time(s) /cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh: 3 Time(s) /: 2 Time(s) mstshash=Domain: 2 Time(s) zapf.wiki:443: 2 Time(s) /w00tw00t.at.ISC.SANS.DFind:): 1 Time(s) 7: 1 Time(s) W\xC4V;kJ\x1A\x17\xED\xDE^eOI\x97\x8C[\xC8 ... (\xC0#\xC0'\xC0: 1 Time(s) \x00\x00\x00\x00: 1 Time(s) \x12\x16?\xF8P\xC9\xC7\x00\x01<\xCC\x14\xC ... C0$\xC0\x14\xC0: 1 Time(s) \xC1: 1 Time(s) \xF8R\xD8\xB2\xAA\xF1a\x928\xFA\xF0\xBB\xF ... x04\x00\x05\x00: 1 Time(s) 404 Not Found //2018/wp-includes/wlwmanifest.xml: 1 Time(s) //2019/wp-includes/wlwmanifest.xml: 1 Time(s) //blog/wp-includes/wlwmanifest.xml: 1 Time(s) //cms/wp-includes/wlwmanifest.xml: 1 Time(s) //media/wp-includes/wlwmanifest.xml: 1 Time(s) //news/wp-includes/wlwmanifest.xml: 1 Time(s) //shop/wp-includes/wlwmanifest.xml: 1 Time(s) //site/wp-includes/wlwmanifest.xml: 1 Time(s) //sito/wp-includes/wlwmanifest.xml: 1 Time(s) //test/wp-includes/wlwmanifest.xml: 1 Time(s) //web/wp-includes/wlwmanifest.xml: 1 Time(s) //website/wp-includes/wlwmanifest.xml: 1 Time(s) //wordpress/wp-includes/wlwmanifest.xml: 1 Time(s) //wp-includes/wlwmanifest.xml: 1 Time(s) //wp/wp-includes/wlwmanifest.xml: 1 Time(s) //wp1/wp-includes/wlwmanifest.xml: 1 Time(s) //wp2/wp-includes/wlwmanifest.xml: 1 Time(s) //xmlrpc.php?rsd: 1 Time(s) 500 Internal Server Error /: 30 Time(s) /.env: 5 Time(s) /robots.txt: 3 Time(s) /ecp/Current/exporttool/microsoft.exchange ... ool.application: 2 Time(s) /.well-known/security.txt: 1 Time(s) /Autodiscover/Autodiscover.xml: 1 Time(s) /_ignition/execute-solution: 1 Time(s) /ab2g: 1 Time(s) /actuator/health: 1 Time(s) /console/: 1 Time(s) /favicon.ico: 1 Time(s) /mifs/.;/services/LogService: 1 Time(s) /owa/auth/logon.aspx: 1 Time(s) /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f: 1 Time(s) /owa/auth/x.js: 1 Time(s) /showLogin.cc: 1 Time(s) /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php: 1 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: unknown (ip-178-201-083-134.um46.pools.vodafone-ip.de): 2 Time(s) unknown (lfbn-bay-1-434-164.w90-30.abo.wanadoo.fr): 2 Time(s) unknown (xb90f4af1.cust.hiper.dk): 2 Time(s) root (112.85.42.13): 1 Time(s) root (122.194.229.65): 1 Time(s) root (179.43.175.170): 1 Time(s) unknown (179.43.150.82): 1 Time(s) unknown (183179034031.ctinets.com): 1 Time(s) unknown (92.255.85.135): 1 Time(s) unknown (slot0.epaperitaliait.com): 1 Time(s) Invalid Users: Unknown Account: 10 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 13 Miscellaneous warnings 46.331K Bytes accepted 47,443 46.331K Bytes sent via SMTP 47,443 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 4 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 4 Total 4xx Rejects 100.00% ======== ================================================== 76 Connections 18 Connections lost (inbound) 76 Disconnections 1 Removed from queue 1 Sent via SMTP 1 SMTP dialog errors ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Failed logins from: 112.85.42.13: 1 time 122.194.229.65: 2 times 179.43.175.170: 1 time Illegal users from: 2001:470:1:c84::21: 1 time undef: 5 times 64.62.197.62: 1 time 90.30.142.164 (lfbn-bay-1-434-164.w90-30.abo.wanadoo.fr): 2 times 92.255.85.135: 1 time 178.201.83.134 (ip-178-201-083-134.um46.pools.vodafone-ip.de): 2 times 179.43.150.82: 1 time 183.179.34.31 (183179034031.ctinets.com): 1 time 185.15.74.241 (xb90f4af1.cust.hiper.dk): 2 times 195.133.18.24 (slot0.epaperitaliait.com): 1 time **Unmatched Entries** Protocol major versions differ for 134.122.134.134: SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 vs. SSH-1.5-Server : 1 time(s) Protocol major versions differ for 180.215.192.156: SSH-2.0-OpenSSH_6.7p1 Debian-5+deb8u3 vs. SSH-1.5-Server : 1 time(s) ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/ploop33257p1 394G 242G 132G 65% / none 4.0G 0 4.0G 0% /dev ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################