################### Logwatch 7.4.0 (03/01/11) #################### Processing Initiated: Sun Feb 17 04:42:03 2019 Date Range Processed: yesterday ( 2019-Feb-16 ) Period is day. Detail Level of Output: 0 Type of Output/Format: mail / text Logfiles for Host: h2361197.stratoserver.net ################################################################## --------------------- fail2ban-messages Begin ------------------------ Banned services with Fail2Ban: Bans:Unbans ssh: [ 14:14 ] ---------------------- fail2ban-messages End ------------------------- --------------------- httpd Begin ------------------------ Connection attempts using mod_proxy: 59.36.132.222 -> www.baidu.com:443: 2 Time(s) A total of 4 sites probed the server 176.32.33.80 194.113.106.125 46.118.155.61 5.188.210.12 Requests with error response codes 400 Bad Request null: 9 Time(s) mstshash=Administr: 8 Time(s) www.baidu.com:443: 2 Time(s) /: 1 Time(s) /a2billing/customer/templates/default/footer.tpl: 1 Time(s) /moo: 1 Time(s) /recordings/: 1 Time(s) /vtigercrm/vtigerservice.php: 1 Time(s) http://5.188.210.12/echo.php: 1 Time(s) http://www.baidu.com/: 1 Time(s) 404 Not Found /robots.txt: 46 Time(s) /berlin/apple-touch-icon.png: 7 Time(s) /wp-login.php: 6 Time(s) //blog/wp-includes/wlwmanifest.xml: 2 Time(s) //cms/wp-includes/wlwmanifest.xml: 2 Time(s) //site/wp-includes/wlwmanifest.xml: 2 Time(s) //wordpress/wp-includes/wlwmanifest.xml: 2 Time(s) //wp-includes/wlwmanifest.xml: 2 Time(s) //wp/wp-includes/wlwmanifest.xml: 2 Time(s) //xmlrpc.php?rsd: 2 Time(s) /oauth/errors?error=invalid_request&error_ ... t_id+parameter.: 2 Time(s) /.well-known/apple-app-site-association: 1 Time(s) /apple-app-site-association: 1 Time(s) /resolutionen/wise15/Gefl%C3%83%C2%BCchtet ... efluechtete.pdf: 1 Time(s) /sites/default/file/2013_05_Stellungnahme_CHERanking.pdf: 1 Time(s) /sites/default/files/2014_SoSe_Duesseldorf.pdf: 1 Time(s) /sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s) /user/login?destination=comment%2Freply%2F34%23comment-form: 1 Time(s) /user/login?destination=comment%2Freply%2F9%23comment-form: 1 Time(s) /user/register?destination=comment%2Freply ... %23comment-form: 1 Time(s) /verein/satzung/%7CSatzung: 1 Time(s) /wordpress/wp-login.php: 1 Time(s) /wxtnyxisisvi.html: 1 Time(s) 500 Internal Server Error /: 5 Time(s) /a2billing/customer/templates/default/footer.tpl: 1 Time(s) /api/v1/pods: 1 Time(s) /recordings/: 1 Time(s) /vtigercrm/vtigerservice.php: 1 Time(s) 502 Bad Gateway /: 24 Time(s) ---------------------- httpd End ------------------------- --------------------- pam_unix Begin ------------------------ sshd: Authentication Failures: root (190.94.134.37): 6 Time(s) root (211.202.139.120): 6 Time(s) root (24.50.230.95): 6 Time(s) root (27.113.6.14): 6 Time(s) root (adsl-84-226-178-179.adslplus.ch): 6 Time(s) root (h83-209-219-129.cust.a3fiber.se): 6 Time(s) unknown (159.255.136.18): 6 Time(s) unknown (180.140.26.37.dyn.idknet.com): 6 Time(s) unknown (188.114.180.212): 6 Time(s) unknown (76-14-190-218.wsac.wavecable.com): 6 Time(s) unknown (95.248.101.25): 6 Time(s) postgres (ns3016508.ip-51-254-47.eu): 1 Time(s) root (185.244.25.105): 1 Time(s) unknown (106.12.205.168): 1 Time(s) unknown (113.169.178.198): 1 Time(s) unknown (156.194.220.226): 1 Time(s) unknown (185.244.25.227): 1 Time(s) unknown (211.200.220.142): 1 Time(s) unknown (41.ip-51-254-205.eu): 1 Time(s) unknown (88.214.26.49): 1 Time(s) Invalid Users: Unknown Account: 41 Time(s) ---------------------- pam_unix End ------------------------- --------------------- Postfix Begin ------------------------ 6 Miscellaneous warnings 6.306K Bytes accepted 6,457 6.306K Bytes sent via SMTP 6,457 ======== ================================================== 1 Accepted 100.00% -------- -------------------------------------------------- 1 Total 100.00% ======== ================================================== 811 Connections 387 Connections lost (inbound) 811 Disconnections 1 Removed from queue 1 Sent via SMTP ---------------------- Postfix End ------------------------- --------------------- sendmail-largeboxes (large mail spool files) Begin ------------------------ Large Mailbox threshold: 40MB (41943040 bytes) Warning: Large mailbox: mailman.gz (1747199807) Warning: Large mailbox: mailman (235703599967) ---------------------- sendmail-largeboxes (large mail spool files) End ------------------------- --------------------- SSHD Begin ------------------------ Disconnecting after too many authentication failures for user: invalid : 3 Time(s) root : 6 Time(s) Failed logins from: 24.50.230.95: 6 times 27.113.6.14: 6 times 51.254.47.198 (ns3016508.ip-51-254-47.eu): 1 time 83.209.219.129 (h83-209-219-129.cust.a3fiber.se): 6 times 84.226.178.179 (adsl-84-226-178-179.adslplus.ch): 6 times 185.244.25.105 (Dedi08.customers.kvsolutions.nl): 1 time 190.94.134.37 (37.190-94-134.etapanet.net): 6 times 211.202.139.120: 6 times Illegal users from: undef: 8 times 37.26.140.180 (180.140.26.37.dyn.idknet.com): 6 times 51.254.205.41 (41.ip-51-254-205.eu): 1 time 76.14.190.218 (76-14-190-218.wsac.wavecable.com): 6 times 88.214.26.49 (hostby.fcloud.biz): 1 time 95.248.101.25 (host25-101-dynamic.248-95-r.retail.telecomitalia.it): 6 times 106.12.205.168: 1 time 113.169.178.198 (static.vnpt.vn): 1 time 156.194.220.226 (host-156.194.226.220-static.tedata.net): 1 time 159.255.136.18 (ip-159-255-136-18.in-addr.viatek.it): 6 times 185.244.25.227: 1 time 188.114.180.212: 6 times 211.200.220.142: 5 times ---------------------- SSHD End ------------------------- --------------------- Disk Space Begin ------------------------ Filesystem Size Used Avail Use% Mounted on /dev/vzfs 400G 241G 160G 61% / ---------------------- Disk Space End ------------------------- ###################### Logwatch End #########################