04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Sun Jun 9 04:42:09 2019
Date Range Processed: yesterday
( 2019-Jun-08 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [421:416]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
A total of 2 sites probed the server
176.8.91.216
61.219.11.153
Requests with error response codes
400 Bad Request
/socket.io/?noteId=Mp2j3pRqRsqyarkZlU5zXQ& ... cDhQyFVrdsFAAW8: 4 Time(s)
null: 4 Time(s)
/socket.io/?noteId=NqXFlx-0RMCv9Q793zPtWA& ... jxtd0mWmUa6AAWM: 3 Time(s)
/api/v1: 1 Time(s)
mstshash=Administr: 1 Time(s)
403 Forbidden
/resolutionen/: 1 Time(s)
/resolutionen/sose17/Praktika/: 1 Time(s)
/resolutionen/wise18/: 1 Time(s)
404 Not Found
/robots.txt: 36 Time(s)
/wp-login.php: 6 Time(s)
/berlin/apple-touch-icon.png: 4 Time(s)
/,81.169.150.252: 2 Time(s)
/.git/HEAD: 1 Time(s)
//2015/wp-includes/wlwmanifest.xml: 1 Time(s)
//2016/wp-includes/wlwmanifest.xml: 1 Time(s)
//2017/wp-includes/wlwmanifest.xml: 1 Time(s)
//2018/wp-includes/wlwmanifest.xml: 1 Time(s)
//blog/wp-includes/wlwmanifest.xml: 1 Time(s)
//cms/wp-includes/wlwmanifest.xml: 1 Time(s)
//media/wp-includes/wlwmanifest.xml: 1 Time(s)
//news/wp-includes/wlwmanifest.xml: 1 Time(s)
//shop/wp-includes/wlwmanifest.xml: 1 Time(s)
//site/wp-includes/wlwmanifest.xml: 1 Time(s)
//sito/wp-includes/wlwmanifest.xml: 1 Time(s)
//test/wp-includes/wlwmanifest.xml: 1 Time(s)
//web/wp-includes/wlwmanifest.xml: 1 Time(s)
//website/wp-includes/wlwmanifest.xml: 1 Time(s)
//wordpress/wp-includes/wlwmanifest.xml: 1 Time(s)
//wp-includes/wlwmanifest.xml: 1 Time(s)
//wp/wp-includes/wlwmanifest.xml: 1 Time(s)
//wp1/wp-includes/wlwmanifest.xml: 1 Time(s)
//wp2/wp-includes/wlwmanifest.xml: 1 Time(s)
//xmlrpc.php?rsd: 1 Time(s)
/admin/: 1 Time(s)
/berlin/zapf/apple-touch-icon.png: 1 Time(s)
/index.php?option=com_user&task=register: 1 Time(s)
/protokolle/ergebnisprotokoll_mv_09.06.2017.pdf: 1 Time(s)
/reader/1989-wi-berlin.pdf: 1 Time(s)
/reader/1993-so-reader_do93.pdf: 1 Time(s)
/reader/1993-wi-reader_st93.pdf: 1 Time(s)
/reader/1994-wi-reader_hb94.pdf: 1 Time(s)
/reader/1995-so-reader_ha95.pdf: 1 Time(s)
/reader/1995-wi-reader_bn95.pdf: 1 Time(s)
/reader/1998-so-reader_ro98.pdf: 1 Time(s)
/resolutionen/sose17/gesellschaftlich_vera ... wantwortung.pdf: 1 Time(s)
/resolutionen/sose18/reso_ablaeufe_akkr.pdf: 1 Time(s)
/resolutionen/sose18/reso_laender_akkr.pdf: 1 Time(s)
/user/register: 1 Time(s)
/wp-login.php?action=register: 1 Time(s)
499 (undefined)
/apple-touch-icon.png: 10 Time(s)
/favicon.png: 9 Time(s)
/fonts/SourceSansPro-Regular.woff: 6 Time(s)
/build/emojify.js/dist/css/basic/emojify.min.css: 4 Time(s)
/build/font-pack.2c73dce02b1eaa3a3b4e.css: 3 Time(s)
/favicon.ico: 3 Time(s)
/build/af7ae505a9eed503f8b8e6982036873e.woff2: 2 Time(s)
/build/index-styles-pack.2c73dce02b1eaa3a3b4e.css: 2 Time(s)
/fonts/SourceSansPro-Semibold.woff: 2 Time(s)
/build/cover.2c73dce02b1eaa3a3b4e.css: 1 Time(s)
/build/emojify.js/dist/images/basic/smile.png: 1 Time(s)
/build/index-styles.2c73dce02b1eaa3a3b4e.css: 1 Time(s)
/build/index.2c73dce02b1eaa3a3b4e.css: 1 Time(s)
/fonts/SourceSansPro-Italic.woff: 1 Time(s)
500 Internal Server Error
/: 25 Time(s)
/api/v1: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (183.111.125.172): 62 Time(s)
unknown (132.232.111.247): 56 Time(s)
unknown (154.8.223.253): 55 Time(s)
unknown (189.112.228.153): 53 Time(s)
unknown (159.89.169.109): 52 Time(s)
unknown (222.108.131.117): 51 Time(s)
unknown (plaintext.xyz): 51 Time(s)
unknown (182.61.58.166): 50 Time(s)
unknown (200-207-216-138.dsl.telesp.net.br): 50 Time(s)
unknown (203.113.66.151): 50 Time(s)
unknown (98.ip-151-80-155.eu): 49 Time(s)
unknown (115.248.223.180): 48 Time(s)
unknown (oc-129-150-122-243.compute.oraclecloud.com): 48 Time(s)
unknown (pool-108-26-167-124.bstnma.fios.verizon.net): 44 Time(s)
unknown (84-236-1-124.pool.digikabel.hu): 43 Time(s)
unknown (122.165.149.75): 42 Time(s)
unknown (ns37798.ip-91-121-7.eu): 36 Time(s)
unknown (106.75.93.253): 33 Time(s)
unknown (118.25.90.127): 33 Time(s)
unknown (52.166.196.196): 33 Time(s)
unknown (87.ip-51-254-34.eu): 33 Time(s)
unknown (ns364702.ip-94-23-204.eu): 33 Time(s)
unknown (106.12.99.173): 32 Time(s)
unknown (203.129.219.198): 32 Time(s)
unknown (ip148.ip-66-70-130.net): 31 Time(s)
unknown (217-133-99-111.static.clienti.tiscali.it): 29 Time(s)
unknown (114.ip-92-222-92.eu): 27 Time(s)
unknown (164.132.38.167): 27 Time(s)
unknown (41.164.195.204): 27 Time(s)
unknown (106.12.24.108): 26 Time(s)
unknown (187.0.221.222): 26 Time(s)
unknown (36.89.85.33): 26 Time(s)
unknown (210.4.119.59): 13 Time(s)
unknown (111.230.152.118): 12 Time(s)
unknown (185.242.249.50): 9 Time(s)
root (182.88.124.133): 6 Time(s)
root (183.147.29.180): 6 Time(s)
root (58.242.82.11): 6 Time(s)
unknown (183.157.168.173): 6 Time(s)
root (125.65.112.191): 5 Time(s)
unknown (175.6.64.169): 5 Time(s)
unknown (ppp91-122-14-178.pppoe.avangarddsl.ru): 3 Time(s)
postgres (115.248.223.180): 2 Time(s)
unknown (114.5.81.67): 2 Time(s)
unknown (89.43.156.91): 2 Time(s)
unknown (c-68-39-30-29.hsd1.in.comcast.net): 2 Time(s)
backup (182.61.58.166): 1 Time(s)
backup (200-207-216-138.dsl.telesp.net.br): 1 Time(s)
backup (203.113.66.151): 1 Time(s)
backup (87.ip-51-254-34.eu): 1 Time(s)
daemon (189.112.228.153): 1 Time(s)
daemon (36.89.85.33): 1 Time(s)
gnats (203.113.66.151): 1 Time(s)
irc (222.108.131.117): 1 Time(s)
list (132.232.111.247): 1 Time(s)
list (187.0.221.222): 1 Time(s)
lp (154.8.223.253): 1 Time(s)
mail (122.165.149.75): 1 Time(s)
mailman (106.12.24.108): 1 Time(s)
mailman (118.25.90.127): 1 Time(s)
mailman (182.61.58.166): 1 Time(s)
mailman (200-207-216-138.dsl.telesp.net.br): 1 Time(s)
mailman (ip148.ip-66-70-130.net): 1 Time(s)
mailman (ns364702.ip-94-23-204.eu): 1 Time(s)
man (115.248.223.180): 1 Time(s)
man (132.232.111.247): 1 Time(s)
man (154.8.223.253): 1 Time(s)
man (ns364702.ip-94-23-204.eu): 1 Time(s)
nobody (ns364702.ip-94-23-204.eu): 1 Time(s)
nobody (oc-129-150-122-243.compute.oraclecloud.com): 1 Time(s)
postfix (106.75.93.253): 1 Time(s)
postfix (118.25.90.127): 1 Time(s)
postfix (84-236-1-124.pool.digikabel.hu): 1 Time(s)
postgres (122.165.149.75): 1 Time(s)
postgres (217-133-99-111.static.clienti.tiscali.it): 1 Time(s)
postgres (52.166.196.196): 1 Time(s)
postgres (98.ip-151-80-155.eu): 1 Time(s)
postgres (ip148.ip-66-70-130.net): 1 Time(s)
postgres (ns37798.ip-91-121-7.eu): 1 Time(s)
root (218.92.0.166): 1 Time(s)
root (45.55.232.84): 1 Time(s)
smmsp (183.111.125.172): 1 Time(s)
sshd (203.129.219.198): 1 Time(s)
sync (118.25.90.127): 1 Time(s)
sync (182.61.58.166): 1 Time(s)
sync (200-207-216-138.dsl.telesp.net.br): 1 Time(s)
temp (106.12.99.173): 1 Time(s)
temp (182.61.58.166): 1 Time(s)
temp (187.0.221.222): 1 Time(s)
temp (200-207-216-138.dsl.telesp.net.br): 1 Time(s)
unknown (113.172.12.48): 1 Time(s)
unknown (124.205.9.241): 1 Time(s)
unknown (130.ip-54-37-19.eu): 1 Time(s)
unknown (178.128.81.125): 1 Time(s)
unknown (181.223.213.28): 1 Time(s)
unknown (193.32.163.89): 1 Time(s)
unknown (47.91.92.228): 1 Time(s)
unknown (pppoe.178-65-153-251.dynamic.avangarddsl.ru): 1 Time(s)
uucp (182.61.58.166): 1 Time(s)
uucp (plaintext.xyz): 1 Time(s)
www-data (175.6.64.169): 1 Time(s)
www-data (pool-108-26-167-124.bstnma.fios.verizon.net): 1 Time(s)
Invalid Users:
Unknown Account: 1350 Time(s)
systemd-user:
Unknown Entries:
session opened for user root by (uid=0): 2 Time(s)
session closed for user root: 1 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
3 Miscellaneous warnings
13.964K Bytes accepted 14,299
13.964K Bytes sent via SMTP 14,299
======== ==================================================
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
2 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
2 Total 4xx Rejects 100.00%
======== ==================================================
155 Connections
151 Connections lost (inbound)
155 Disconnections
1 Removed from queue
1 Sent via SMTP
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
invalid : 1 Time(s)
root : 3 Time(s)
Failed logins from:
36.89.85.33: 1 time
45.55.232.84: 1 time
51.254.34.87 (87.ip-51-254-34.eu): 1 time
52.166.196.196: 1 time
58.242.82.11: 6 times
66.70.130.148 (ip148.ip-66-70-130.net): 2 times
84.236.1.124 (84-236-1-124.pool.digikabel.hu): 1 time
91.121.7.107 (ns37798.ip-91-121-7.eu): 1 time
94.23.204.136 (ns364702.ip-94-23-204.eu): 3 times
104.236.94.49 (plaintext.xyz): 1 time
106.12.24.108: 1 time
106.12.99.173: 1 time
106.75.93.253: 1 time
108.26.167.124 (pool-108-26-167-124.bstnma.fios.verizon.net): 1 time
115.248.223.180: 3 times
118.25.90.127: 3 times
122.165.149.75 (abts-tn-static-075.149.165.122.airtelbroadband.in): 2 times
125.65.112.191: 5 times
129.150.122.243 (oc-129-150-122-243.compute.oraclecloud.com): 1 time
132.232.111.247: 2 times
151.80.155.98 (98.ip-151-80-155.eu): 1 time
154.8.223.253: 2 times
175.6.64.169: 1 time
182.61.58.166: 5 times
182.88.124.133: 6 times
183.111.125.172: 1 time
183.147.29.180: 6 times
187.0.221.222: 2 times
189.112.228.153 (mx.kyb.com.br): 1 time
200.207.216.138 (200-207-216-138.dsl.telesp.net.br): 4 times
203.113.66.151: 2 times
203.129.219.198: 1 time
217.133.99.111 (217-133-99-111.static.clienti.tiscali.it): 1 time
218.92.0.166: 3 times
222.108.131.117: 1 time
Illegal users from:
undef: 963 times
36.89.85.33: 26 times
41.164.195.204: 27 times
47.91.92.228: 1 time
51.254.34.87 (87.ip-51-254-34.eu): 33 times
52.166.196.196: 33 times
54.37.19.130 (130.ip-54-37-19.eu): 1 time
66.70.130.148 (ip148.ip-66-70-130.net): 31 times
68.39.30.29 (c-68-39-30-29.hsd1.in.comcast.net): 2 times
84.236.1.124 (84-236-1-124.pool.digikabel.hu): 43 times
89.43.156.91: 2 times
91.121.7.107 (ns37798.ip-91-121-7.eu): 36 times
91.122.14.178 (ppp91-122-14-178.pppoe.avangarddsl.ru): 3 times
92.222.92.114 (114.ip-92-222-92.eu): 27 times
94.23.204.136 (ns364702.ip-94-23-204.eu): 33 times
104.236.94.49 (plaintext.xyz): 51 times
106.12.24.108: 26 times
106.12.99.173: 32 times
106.75.93.253: 33 times
108.26.167.124 (pool-108-26-167-124.bstnma.fios.verizon.net): 44 times
111.230.152.118: 12 times
113.172.12.48 (static.vnpt.vn): 1 time
114.5.81.67 (114-5-81-67.resources.indosat.com): 2 times
115.248.223.180: 48 times
118.25.90.127: 33 times
122.165.149.75 (abts-tn-static-075.149.165.122.airtelbroadband.in): 42 times
124.205.9.241: 1 time
129.150.122.243 (oc-129-150-122-243.compute.oraclecloud.com): 48 times
132.232.111.247: 56 times
151.80.155.98 (98.ip-151-80-155.eu): 49 times
154.8.223.253: 55 times
159.89.169.109: 52 times
164.132.38.167: 27 times
175.6.64.169: 5 times
178.65.153.251 (pppoe.178-65-153-251.dynamic.avangarddsl.ru): 1 time
178.128.81.125: 1 time
181.223.213.28 (b5dfd51c.virtua.com.br): 1 time
182.61.58.166: 50 times
183.111.125.172: 62 times
183.157.168.173: 6 times
185.242.249.50 (185.242.249.50-ip.operadors.cat): 9 times
187.0.221.222: 26 times
189.112.228.153 (mx.kyb.com.br): 53 times
193.32.163.89 (srv.eqaltech.su): 1 time
200.207.216.138 (200-207-216-138.dsl.telesp.net.br): 50 times
203.113.66.151: 50 times
203.129.219.198: 32 times
210.4.119.59: 13 times
217.133.99.111 (217-133-99-111.static.clienti.tiscali.it): 29 times
222.108.131.117: 51 times
Users logging in through sshd:
root:
131.220.249.204 (eduroam-249-204.wlan.uni-bonn.de): 2 times
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 242G 159G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
2327
days inactive
2327
days old
0 comments
1 participants
participants (1)
-
root@zapf.in