04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Thu Jun 20 04:42:08 2019
Date Range Processed: yesterday
( 2019-Jun-19 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [387:391]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
A total of 3 sites probed the server
139.162.212.60
61.219.11.153
77.247.110.141
Requests with error response codes
400 Bad Request
null: 4 Time(s)
mstshash=Administr: 3 Time(s)
7: 2 Time(s)
/: 1 Time(s)
/robots.txt: 1 Time(s)
404 Not Found
/robots.txt: 35 Time(s)
/wp-login.php: 3 Time(s)
/ads.txt: 1 Time(s)
/protokolle/ergebnisprotokoll_mv_09.06.2017.pdf: 1 Time(s)
/resolutionen/wise17/Akkreditierung_PosPap/Pospap_: 1 Time(s)
/sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s)
/wls-wsat/CoordinatorPortType: 1 Time(s)
408 Request Timeout
/reader/Reader_SoSe15_Aachen.pdf: 1 Time(s)
499 (undefined)
/reader/2002-so-reader_becojo02.pdf: 2 Time(s)
/build/emojify.js/dist/css/basic/emojify.min.css: 1 Time(s)
/fonts/SourceCodePro-Regular.woff: 1 Time(s)
/reader/1982-wi-Stuttgart_Wi82.pdf: 1 Time(s)
500 Internal Server Error
/: 48 Time(s)
/downloader/index.php: 6 Time(s)
/errors/503.php: 6 Time(s)
/index.php/admin/: 6 Time(s)
//libs/js/iframe.js: 1 Time(s)
/html/.env: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (mail.adsign.no): 62 Time(s)
unknown (138.68.178.64): 48 Time(s)
unknown (139.59.80.65): 47 Time(s)
unknown (106.12.36.42): 43 Time(s)
unknown (123.207.230.234): 42 Time(s)
unknown (115.236.168.35): 41 Time(s)
unknown (123.206.22.145): 41 Time(s)
unknown (177.131.122.210): 41 Time(s)
unknown (59.38.32.76): 41 Time(s)
unknown (79.109.176.9.dyn.user.ono.com): 41 Time(s)
unknown (178.128.84.246): 40 Time(s)
unknown (183.61.146.38): 40 Time(s)
unknown (46.97.44.18): 40 Time(s)
unknown (134.209.243.95): 37 Time(s)
unknown (142.93.18.15): 37 Time(s)
unknown (68.183.124.72): 34 Time(s)
unknown (160.ip-213-32-67.eu): 33 Time(s)
unknown (87.ip-54-38-185.eu): 32 Time(s)
unknown (132.232.32.54): 30 Time(s)
unknown (104.248.181.166): 28 Time(s)
unknown (12.ip-54-37-159.eu): 26 Time(s)
unknown (ip-88-153-128-51.hsi04.unitymediagroup.de): 26 Time(s)
unknown (106.12.196.28): 15 Time(s)
unknown (180.250.18.197): 14 Time(s)
unknown (194.183.173.216): 14 Time(s)
unknown (67.205.177.0): 14 Time(s)
unknown (120.92.51.155): 13 Time(s)
unknown (122.2.47.97): 13 Time(s)
unknown (223.223.188.208): 13 Time(s)
unknown (103.74.123.83): 12 Time(s)
unknown (106.12.93.12): 12 Time(s)
unknown (113.141.70.199): 12 Time(s)
unknown (127.ip-51-38-48.eu): 12 Time(s)
unknown (134.209.44.13): 12 Time(s)
unknown (139.59.141.137): 12 Time(s)
unknown (220-133-104-105.hinet-ip.hinet.net): 12 Time(s)
unknown (85.255.12.98): 12 Time(s)
unknown (95.246.229.237): 12 Time(s)
unknown (cpe-174-103-170-160.wi.res.rr.com): 12 Time(s)
root (87.ip-54-38-185.eu): 9 Time(s)
unknown (106.12.20.91): 9 Time(s)
unknown (107.170.109.82): 9 Time(s)
unknown (115.75.223.25): 9 Time(s)
unknown (157.230.58.231): 9 Time(s)
unknown (46.105.244.17): 9 Time(s)
unknown (68.183.31.138): 9 Time(s)
unknown (91.217.66.114): 9 Time(s)
root (ip-88-153-128-51.hsi04.unitymediagroup.de): 8 Time(s)
unknown (119.29.58.145): 8 Time(s)
unknown (181.52.249.26): 8 Time(s)
root (112.235.117.87): 6 Time(s)
root (112.84.243.57): 6 Time(s)
root (112.85.42.172): 6 Time(s)
root (180.175.10.6): 6 Time(s)
root (188.114.60.134): 6 Time(s)
root (188.187.110.80): 6 Time(s)
root (ip-206-124-194-20.dynamic.eatel.net): 6 Time(s)
unknown (109.133.105.154): 6 Time(s)
unknown (219.155.225.108): 6 Time(s)
unknown (cp84005.bkns.com.vn): 6 Time(s)
root (123.206.22.145): 5 Time(s)
root (178.128.84.246): 5 Time(s)
root (139.59.80.65): 4 Time(s)
root (68.183.124.72): 4 Time(s)
root (125.122.52.79): 3 Time(s)
root (138.68.178.64): 3 Time(s)
root (142.93.18.15): 3 Time(s)
root (183.61.146.38): 3 Time(s)
unknown (187.200.25.31): 3 Time(s)
daemon (59.38.32.76): 2 Time(s)
lp (177.131.122.210): 2 Time(s)
mysql (104.248.181.166): 2 Time(s)
mysql (142.93.18.15): 2 Time(s)
mysql (160.ip-213-32-67.eu): 2 Time(s)
mysql (177.131.122.210): 2 Time(s)
mysql (183.61.146.38): 2 Time(s)
root (104.248.181.166): 2 Time(s)
root (115.236.168.35): 2 Time(s)
root (134.209.243.95): 2 Time(s)
root (160.ip-213-32-67.eu): 2 Time(s)
root (46.97.44.18): 2 Time(s)
root (59.38.32.76): 2 Time(s)
root (79.109.176.9.dyn.user.ono.com): 2 Time(s)
www-data (181.52.249.26): 2 Time(s)
backup (106.12.36.42): 1 Time(s)
backup (132.232.32.54): 1 Time(s)
backup (160.ip-213-32-67.eu): 1 Time(s)
backup (183.61.146.38): 1 Time(s)
backup (46.97.44.18): 1 Time(s)
bin (178.128.84.246): 1 Time(s)
bin (ip-88-153-128-51.hsi04.unitymediagroup.de): 1 Time(s)
daemon (115.236.168.35): 1 Time(s)
daemon (183.61.146.38): 1 Time(s)
daemon (79.109.176.9.dyn.user.ono.com): 1 Time(s)
games (123.206.22.145): 1 Time(s)
games (139.59.80.65): 1 Time(s)
games (160.ip-213-32-67.eu): 1 Time(s)
games (ip-88-153-128-51.hsi04.unitymediagroup.de): 1 Time(s)
lp (12.ip-54-37-159.eu): 1 Time(s)
lp (139.59.80.65): 1 Time(s)
lp (79.109.176.9.dyn.user.ono.com): 1 Time(s)
mail (115.236.168.35): 1 Time(s)
mail (178.128.84.246): 1 Time(s)
mysql (106.12.36.42): 1 Time(s)
mysql (123.206.22.145): 1 Time(s)
mysql (132.232.32.54): 1 Time(s)
mysql (138.68.178.64): 1 Time(s)
mysql (139.59.141.137): 1 Time(s)
mysql (139.59.80.65): 1 Time(s)
mysql (139.59.82.78): 1 Time(s)
mysql (68.183.124.72): 1 Time(s)
mysql (87.ip-54-38-185.eu): 1 Time(s)
mysql (ip-88-153-128-51.hsi04.unitymediagroup.de): 1 Time(s)
nobody (142.93.18.15): 1 Time(s)
nobody (160.ip-213-32-67.eu): 1 Time(s)
nobody (79.109.176.9.dyn.user.ono.com): 1 Time(s)
postfix (87.ip-54-38-185.eu): 1 Time(s)
postgres (104.248.181.166): 1 Time(s)
postgres (106.12.20.91): 1 Time(s)
postgres (181.52.249.26): 1 Time(s)
postgres (183.61.146.38): 1 Time(s)
postgres (223.223.188.208): 1 Time(s)
postgres (59.38.32.76): 1 Time(s)
proxy (123.207.230.234): 1 Time(s)
root (106.12.36.42): 1 Time(s)
root (106.12.93.12): 1 Time(s)
root (112.85.42.174): 1 Time(s)
root (113.141.70.199): 1 Time(s)
root (119.29.58.145): 1 Time(s)
root (122.2.47.97): 1 Time(s)
root (123.207.230.234): 1 Time(s)
root (127.ip-51-38-48.eu): 1 Time(s)
root (134.209.44.13): 1 Time(s)
root (218.92.0.147): 1 Time(s)
root (220-133-104-105.hinet-ip.hinet.net): 1 Time(s)
root (95.246.229.237): 1 Time(s)
root (mail.adsign.no): 1 Time(s)
smmsp (138.68.178.64): 1 Time(s)
sshd (115.236.168.35): 1 Time(s)
sync (106.12.36.42): 1 Time(s)
sync (139.59.80.65): 1 Time(s)
sync (177.131.122.210): 1 Time(s)
sync (mail.adsign.no): 1 Time(s)
temp (107.170.109.82): 1 Time(s)
temp (91.217.66.114): 1 Time(s)
unknown (139.59.82.78): 1 Time(s)
unknown (156.213.69.0): 1 Time(s)
unknown (160.198.108.93.rev.vodafone.pt): 1 Time(s)
unknown (162.ip-54-37-205.eu): 1 Time(s)
unknown (193.32.163.89): 1 Time(s)
unknown (228.ip-51-75-17.eu): 1 Time(s)
unknown (mm-73-217-212-37.grodno.dynamic.pppoe.byfly.by): 1 Time(s)
uucp (46.97.44.18): 1 Time(s)
www-data (134.209.243.95): 1 Time(s)
www-data (67.205.177.0): 1 Time(s)
Invalid Users:
Unknown Account: 1173 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
15 Miscellaneous warnings
14.144K Bytes accepted 14,483
15.221K Bytes sent via SMTP 15,586
699 Bytes forwarded 699
======== ==================================================
2 Accepted 100.00%
-------- --------------------------------------------------
2 Total 100.00%
======== ==================================================
5 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
5 Total 4xx Rejects 100.00%
======== ==================================================
47 Connections
40 Connections lost (inbound)
47 Disconnections
3 Removed from queue
3 Sent via SMTP
1 Forwarded
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
invalid : 2 Time(s)
root : 7 Time(s)
Failed logins from:
46.97.44.18: 4 times
51.38.48.127 (127.ip-51-38-48.eu): 1 time
54.37.159.12 (12.ip-54-37-159.eu): 1 time
54.38.185.87 (87.ip-54-38-185.eu): 11 times
59.38.32.76: 5 times
67.205.177.0: 1 time
68.183.124.72: 5 times
79.109.176.9 (79.109.176.9.dyn.user.ono.com): 5 times
79.161.218.122 (mail.adsign.no): 2 times
88.153.128.51 (ip-88-153-128-51.hsi04.unitymediagroup.de): 11 times
91.217.66.114: 1 time
95.246.229.237 (host237-229-dynamic.246-95-r.retail.telecomitalia.it): 1 time
104.248.181.166: 5 times
106.12.20.91: 1 time
106.12.36.42: 4 times
106.12.93.12: 1 time
107.170.109.82: 1 time
112.84.243.57: 6 times
112.85.42.172: 6 times
112.85.42.174: 2 times
112.235.117.87: 6 times
113.141.70.199: 1 time
115.236.168.35: 5 times
119.29.58.145: 1 time
122.2.47.97 (122.2.47.97.static.pldt.net): 1 time
123.206.22.145: 7 times
123.207.230.234: 2 times
125.122.52.79: 9 times
132.232.32.54: 2 times
134.209.44.13: 1 time
134.209.243.95: 3 times
138.68.178.64: 5 times
139.59.80.65: 8 times
139.59.82.78 (238550.cloudwaysapps.com): 1 time
139.59.141.137 (prospectos-ubuntu-16.04): 1 time
142.93.18.15: 6 times
177.131.122.210 (mx.pronersupermercado.com.br): 5 times
178.128.84.246: 7 times
180.175.10.6: 6 times
181.52.249.26 (static-ip-18152024926.cable.net.co): 3 times
183.61.146.38: 8 times
188.114.60.134 (134.60.114.188.donpac.ru): 6 times
188.187.110.80 (188x187x110x80.dynamic.spb.ertelecom.ru): 6 times
206.124.194.20 (offload-1-isdn-20.eatel.net): 6 times
213.32.67.160 (160.ip-213-32-67.eu): 7 times
218.92.0.147: 3 times
220.133.104.105 (220-133-104-105.HINET-IP.hinet.net): 1 time
223.223.188.208: 1 time
Illegal users from:
undef: 867 times
37.212.217.73 (mm-73-217-212-37.grodno.dynamic.pppoe.byfly.by): 1 time
45.124.84.5 (cp84005.bkns.com.vn): 6 times
46.97.44.18: 40 times
46.105.244.17: 9 times
51.38.48.127 (127.ip-51-38-48.eu): 12 times
51.75.17.228 (228.ip-51-75-17.eu): 1 time
54.37.159.12 (12.ip-54-37-159.eu): 26 times
54.37.205.162 (162.ip-54-37-205.eu): 1 time
54.38.185.87 (87.ip-54-38-185.eu): 32 times
59.38.32.76: 41 times
67.205.177.0: 14 times
68.183.31.138: 9 times
68.183.124.72: 34 times
79.109.176.9 (79.109.176.9.dyn.user.ono.com): 41 times
79.161.218.122 (mail.adsign.no): 62 times
85.255.12.98 (98.12.forpsi.net): 12 times
88.153.128.51 (ip-88-153-128-51.hsi04.unitymediagroup.de): 26 times
91.217.66.114: 9 times
93.108.198.160 (160.198.108.93.rev.vodafone.pt): 1 time
95.246.229.237 (host237-229-dynamic.246-95-r.retail.telecomitalia.it): 12 times
103.74.123.83 (sv123083.bkns.vn): 12 times
104.248.181.166: 28 times
106.12.20.91: 9 times
106.12.36.42: 43 times
106.12.93.12: 12 times
106.12.196.28: 15 times
107.170.109.82: 9 times
109.133.105.154: 6 times
113.141.70.199: 12 times
115.75.223.25: 9 times
115.236.168.35: 41 times
119.29.58.145: 8 times
120.92.51.155: 13 times
122.2.47.97 (122.2.47.97.static.pldt.net): 13 times
123.206.22.145: 41 times
123.207.230.234: 42 times
132.232.32.54: 30 times
134.209.44.13: 12 times
134.209.243.95: 37 times
138.68.178.64: 48 times
139.59.80.65: 47 times
139.59.82.78 (238550.cloudwaysapps.com): 1 time
139.59.141.137 (prospectos-ubuntu-16.04): 12 times
142.93.18.15: 37 times
156.213.69.0 (host-156.213.0.69-static.tedata.net): 1 time
157.230.58.231: 9 times
174.103.170.160 (cpe-174-103-170-160.wi.res.rr.com): 12 times
177.131.122.210 (mx.pronersupermercado.com.br): 41 times
178.128.84.246: 40 times
180.250.18.197: 14 times
181.52.249.26 (static-ip-18152024926.cable.net.co): 8 times
183.61.146.38: 40 times
187.200.25.31 (dsl-187-200-25-31-dyn.prod-infinitum.com.mx): 3 times
193.32.163.89 (srv.eqaltech.su): 1 time
194.183.173.216: 14 times
213.32.67.160 (160.ip-213-32-67.eu): 33 times
219.155.225.108 (hn.kd.pix): 6 times
220.133.104.105 (220-133-104-105.HINET-IP.hinet.net): 12 times
223.223.188.208: 13 times
**Unmatched Entries**
Disconnecting: Change of username or service not allowed: (admin,ssh-connection) ->
(user,ssh-connection) [preauth] : 1 time(s)
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 242G 159G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
2315
days inactive
2315
days old
0 comments
1 participants
participants (1)
-
root@zapf.in