################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Mon Jan 14 04:42:08 2019 Date Range Processed: yesterday ( 2019-Jan-13 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 9:9 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Requests with error response codes 400 Bad Request /robots.txt: 1 Time(s) 404 Not Found /wp-login.php: 16 Time(s) /robots.txt: 7 Time(s) /berlin/apple-touch-icon.png: 6 Time(s) /administrator/index.php: 2 Time(s) /cms: 2 Time(s) /demo: 2 Time(s) /en: 2 Time(s) /main: 2 Time(s) /new: 2 Time(s) /news: 2 Time(s) /press: 2 Time(s) /site: 2 Time(s) /test: 2 Time(s) /website: 2 Time(s) /wordpress: 2 Time(s) /wp: 2 Time(s) /wp-admin: 2 Time(s) /www: 2 Time(s) /blog: 1 Time(s) /favicon.ico: 1 Time(s) /home: 1 Time(s) /home/zapf: 1 Time(s) /neuigkeiten/einladung-mgv-ws2011: 1 Time(s) /reader/2016_SoSe_Konstanz_lang.pdf%7CLangversion: 1 Time(s) /sitemap.xml: 1 Time(s) 500 Internal Server Error /: 2 Time(s) 502 Bad Gateway /: 24 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (112.163.167.109): 6 Time(s) root (122.194.229.42): 6 Time(s) root (177-1-188-209.3g.brasiltelecom.net.br): 6 Time(s) root (180.164.214.139): 6 Time(s) root (211.211.1.138): 6 Time(s) root (218.108.153.237): 6 Time(s) root (58.101.4.46): 6 Time(s) root (c-98-226-244-119.hsd1.il.comcast.net): 6 Time(s) unknown (106.12.125.212): 2 Time(s) unknown (118-163-117-98.hinet-ip.hinet.net): 2 Time(s) unknown (139.59.13.63): 2 Time(s) unknown (58.26.43.39): 2 Time(s) gnats (200.6.136.184): 1 Time(s) postgres (187.51.24.194): 1 Time(s) postgres (222.110.249.244): 1 Time(s) postgres (iso.thetank.host): 1 Time(s) root (106.12.18.37): 1 Time(s) root (118-163-117-98.hinet-ip.hinet.net): 1 Time(s) root (118.71.224.186): 1 Time(s) root (201.76.162.152): 1 Time(s) root (c-68-37-52-95.hsd1.mi.comcast.net): 1 Time(s) root (correo.administradoraintegral.com): 1 Time(s) temp (210.183.236.30): 1 Time(s) unknown (101.89.114.94): 1 Time(s) unknown (106.12.108.22): 1 Time(s) unknown (106.12.205.168): 1 Time(s) unknown (106.12.212.39): 1 Time(s) unknown (115.254.63.52): 1 Time(s) unknown (118.179.136.26): 1 Time(s) unknown (119.235.21.178): 1 Time(s) unknown (119.90.52.36): 1 Time(s) unknown (120.132.23.72): 1 Time(s) unknown (122.228.253.98): 1 Time(s) unknown (123.21.251.130): 1 Time(s) unknown (127.25.198.35.bc.googleusercontent.com): 1 Time(s) unknown (128.199.214.9): 1 Time(s) unknown (14.29.250.24): 1 Time(s) unknown (148.101.91.58): 1 Time(s) unknown (148.70.6.155): 1 Time(s) unknown (165084191236.ctinets.com): 1 Time(s) unknown (178.128.98.90): 1 Time(s) unknown (179.127.146.228): 1 Time(s) unknown (180.76.97.86): 1 Time(s) unknown (180.97.196.108): 1 Time(s) unknown (188.166.237.191): 1 Time(s) unknown (200.37.97.206): 1 Time(s) unknown (200.6.136.184): 1 Time(s) unknown (206.189.97.89): 1 Time(s) unknown (220-133-115-37.hinet-ip.hinet.net): 1 Time(s) unknown (222.252.30.117): 1 Time(s) unknown (40.81.248.205): 1 Time(s) unknown (41.70.64.3): 1 Time(s) unknown (51.52.197.102): 1 Time(s) unknown (61.178.93.167): 1 Time(s) unknown (62.152.55.145): 1 Time(s) unknown (85.132.38.4): 1 Time(s) unknown (bfay1.pndsl.co.uk): 1 Time(s) unknown (catv-89-134-42-194.catv.broadband.hu): 1 Time(s) unknown (ec2-13-233-130-221.ap-south-1.compute.amazonaws.com): 1 Time(s) unknown (host81-149-211-134.in-addr.btopenworld.com): 1 Time(s) unknown (ipa120.0.tellas.gr): 1 Time(s) unknown (static.249.73.216.95.clients.your-server.de): 1 Time(s) Invalid Users: Unknown Account: 47 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 23276 Miscellaneous warnings 6.131K Bytes accepted 6,278 6.131K Bytes sent via SMTP 6,278 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 245 4xx Reject relay denied 100.00% -------- -------------------------------------------------- 245 Total 4xx Rejects 100.00% ======== ================================================== 23621 Connections 23519 Connections lost (inbound) 23621 Disconnections 1 Removed from queue 1 Sent via SMTP ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: root : 8 Time(s) Failed logins from: 58.101.4.46: 6 times 68.37.52.95 (c-68-37-52-95.hsd1.mi.comcast.net): 1 time 98.226.244.119 (c-98-226-244-119.hsd1.il.comcast.net): 6 times 106.12.18.37: 1 time 112.163.167.109: 6 times 118.71.224.186 (ip-address-pool-xxx.fpt.vn): 1 time 118.163.117.98 (118-163-117-98.HINET-IP.hinet.net): 1 time 122.194.229.42: 6 times 142.93.240.79 (iso.thetank.host): 1 time 177.1.188.209 (177-1-188-209.3g.brasiltelecom.net.br): 6 times 180.164.214.139: 6 times 187.51.24.194 (187-51-24-194.customer.tdatabrasil.net.br): 1 time 200.6.136.184: 1 time 200.11.150.238 (correo.administradoraintegral.com): 1 time 201.76.162.152 (mvx-201-76-162-152.mundivox.com): 1 time 210.183.236.30: 1 time 211.211.1.138: 6 times 218.108.153.237: 6 times 222.110.249.244: 1 time Illegal users from: undef: 34 times 13.233.130.221 (ec2-13-233-130-221.ap-south-1.compute.amazonaws.com): 1 time 14.29.250.24: 1 time 35.198.25.127 (127.25.198.35.bc.googleusercontent.com): 1 time 40.81.248.205: 1 time 41.70.64.3: 1 time 51.52.197.102: 1 time 58.26.43.39: 2 times 61.178.93.167: 1 time 62.152.55.145: 1 time 80.229.253.212 (bfay1.pndsl.co.uk): 1 time 81.149.211.134 (host81-149-211-134.in-addr.btopenworld.com): 1 time 84.254.0.120 (ipa120.0.tellas.gr): 1 time 85.132.38.4 (ppp-4-38-132-85.azstarnet.az): 1 time 89.134.42.194 (catv-89-134-42-194.catv.broadband.hu): 1 time 95.216.73.249 (static.249.73.216.95.clients.your-server.de): 1 time 101.89.114.94: 1 time 106.12.108.22: 1 time 106.12.125.212: 2 times 106.12.205.168: 1 time 106.12.212.39: 1 time 115.254.63.52: 1 time 118.163.117.98 (118-163-117-98.HINET-IP.hinet.net): 3 times 118.179.136.26: 1 time 119.90.52.36: 1 time 119.235.21.178: 1 time 120.132.23.72: 1 time 122.228.253.98: 1 time 123.21.251.130: 1 time 128.199.214.9: 1 time 139.59.13.63: 2 times 148.70.6.155: 1 time 148.101.91.58 (58.91.101.148.d.dyn.claro.net.do): 1 time 165.84.191.236 (165084191236.ctinets.com): 1 time 178.128.98.90: 1 time 179.127.146.228 (179.127.146.228.osjnet.com.br): 1 time 180.76.97.86: 1 time 180.97.196.108: 1 time 188.166.237.191: 1 time 200.6.136.184: 1 time 200.37.97.206: 1 time 206.189.97.89 (192887.cloudwaysapps.com): 1 time 220.133.115.37 (220-133-115-37.HINET-IP.hinet.net): 1 time 222.252.30.117 (static.vnpt-hanoi.com.vn): 1 time ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################