04:42
################### Logwatch 7.4.0 (03/01/11) ####################
Processing Initiated: Fri Jun 14 04:42:09 2019
Date Range Processed: yesterday
( 2019-Jun-13 )
Period is day.
Detail Level of Output: 0
Type of Output/Format: mail / text
Logfiles for Host: h2361197.stratoserver.net
##################################################################
--------------------- fail2ban-messages Begin ------------------------
Banned services with Fail2Ban: Bans:Unbans
ssh: [256:256]
---------------------- fail2ban-messages End -------------------------
--------------------- httpd Begin ------------------------
A total of 4 sites probed the server
49.51.152.82
61.219.11.153
66.240.205.34
66.240.236.119
Requests with error response codes
400 Bad Request
null: 10 Time(s)
/socket.io/?noteId=XdKJnzV3SqS8tRhprzFWYA& ... 1_Lea3MvenUABga: 4 Time(s)
mstshash=Administr: 3 Time(s)
/w00tw00t.at.ISC.SANS.DFind:): 2 Time(s)
\x99\xB3\xD0dJ\xA8\xE3\xB9\xF1\x1Bfi|\x18\xFB\xC3: 1 Time(s)
404 Not Found
/robots.txt: 31 Time(s)
/berlin/apple-touch-icon.png: 6 Time(s)
/wp-login.php: 4 Time(s)
/ads.txt: 1 Time(s)
/reader/2016_sose_konstanz_lang.pdf: 1 Time(s)
/resolutionen/sose12/Reso_Interdisziplinae ... f;Stellungnahme: 1 Time(s)
/resolutionen/sose14/reso_sose14_zusammenarbeitzapf-che.pdf: 1 Time(s)
/sites/all/modules/civicrm/packages/OpenFl ... _bar_hollow.php: 1 Time(s)
/sites/default/files/2011_WiSe_Bonn.pdf: 1 Time(s)
/sites/default/files/Empfehlungen_der_ZaPF ... 7CStellungnahme: 1 Time(s)
500 Internal Server Error
/: 12 Time(s)
/000000000000.cfg: 1 Time(s)
/aastra.cfg: 1 Time(s)
/admin/: 1 Time(s)
/api/v1/pods: 1 Time(s)
/backup/: 1 Time(s)
/bremen/2014/indexeb91.html?p=207: 1 Time(s)
/db/: 1 Time(s)
/dbadmin/: 1 Time(s)
/myadmin/: 1 Time(s)
/phpMyAdmin/: 1 Time(s)
/phpmyadmin/: 1 Time(s)
/pma/: 1 Time(s)
/y000000000000.cfg: 1 Time(s)
/y000000000005.cfg: 1 Time(s)
/y000000000007.cfg: 1 Time(s)
/y000000000028.cfg: 1 Time(s)
/y000000000029.cfg: 1 Time(s)
/y000000000031.cfg: 1 Time(s)
/y000000000068.cfg: 1 Time(s)
---------------------- httpd End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (139.59.238.14): 55 Time(s)
unknown (182.74.252.58): 47 Time(s)
unknown (120.92.173.154): 44 Time(s)
unknown (183.134.65.22): 42 Time(s)
unknown (183.193.7.98): 42 Time(s)
unknown (115.ip-158-69-194.net): 41 Time(s)
unknown (210.77.89.215): 41 Time(s)
unknown (70.89.88.3): 41 Time(s)
unknown (94.191.20.179): 40 Time(s)
unknown (xdsl-188-155-145-24.adslplus.ch): 40 Time(s)
unknown (106.12.38.84): 38 Time(s)
unknown (ns329837.ip-37-187-117.eu): 37 Time(s)
unknown (104.236.72.187): 36 Time(s)
unknown (139.59.75.241): 35 Time(s)
unknown (140.143.228.75): 35 Time(s)
unknown (ip212.ip-144-217-42.net): 35 Time(s)
unknown (106.12.203.210): 34 Time(s)
unknown (93-39-116-254.ip75.fastwebnet.it): 34 Time(s)
root (139.59.238.14): 18 Time(s)
unknown (150.109.23.56): 18 Time(s)
unknown (ip-109-73.sn2.clouditalia.com): 14 Time(s)
unknown (111.230.248.125): 12 Time(s)
unknown (119.10.58.58): 11 Time(s)
root (140.143.228.75): 10 Time(s)
root (104.236.72.187): 7 Time(s)
root (183.134.65.22): 7 Time(s)
root (ns329837.ip-37-187-117.eu): 7 Time(s)
unknown (host-109-89-237-89.dynamic.voo.be): 7 Time(s)
root (218.92.0.156): 6 Time(s)
root (58.242.82.7): 6 Time(s)
root (93-39-116-254.ip75.fastwebnet.it): 6 Time(s)
root (94.191.20.179): 6 Time(s)
root (xdsl-188-155-145-24.adslplus.ch): 6 Time(s)
root (106.12.38.84): 5 Time(s)
root (115.ip-158-69-194.net): 5 Time(s)
root (182.74.252.58): 5 Time(s)
root (120.92.173.154): 4 Time(s)
root (183.193.7.98): 4 Time(s)
root (70.89.88.3): 4 Time(s)
root (106.12.203.210): 3 Time(s)
root (150.109.23.56): 3 Time(s)
root (210.77.89.215): 3 Time(s)
root (host-109-89-237-89.dynamic.voo.be): 3 Time(s)
root (ip-109-73.sn2.clouditalia.com): 3 Time(s)
root (ip212.ip-144-217-42.net): 3 Time(s)
unknown (115.159.25.60): 3 Time(s)
unknown (139.199.34.112): 3 Time(s)
unknown (218.88.164.159): 3 Time(s)
root (111.230.248.125): 2 Time(s)
root (139.59.75.241): 2 Time(s)
unknown (p54b7a310.dip0.t-ipconnect.de): 2 Time(s)
backup (106.12.38.84): 1 Time(s)
backup (139.59.238.14): 1 Time(s)
daemon (106.12.38.84): 1 Time(s)
irc (106.12.38.84): 1 Time(s)
irc (139.59.238.14): 1 Time(s)
irc (182.74.252.58): 1 Time(s)
irc (host-109-89-237-89.dynamic.voo.be): 1 Time(s)
list (ns329837.ip-37-187-117.eu): 1 Time(s)
mail (120.92.173.154): 1 Time(s)
mail (182.74.252.58): 1 Time(s)
mail (ip212.ip-144-217-42.net): 1 Time(s)
mail (ns329837.ip-37-187-117.eu): 1 Time(s)
mailman (106.12.38.84): 1 Time(s)
mailman (ip212.ip-144-217-42.net): 1 Time(s)
man (111.230.248.125): 1 Time(s)
mysql (120.92.173.154): 1 Time(s)
news (ns329837.ip-37-187-117.eu): 1 Time(s)
postfix (119.10.58.58): 1 Time(s)
postfix (139.59.238.14): 1 Time(s)
postfix (210.77.89.215): 1 Time(s)
proxy (183.134.65.22): 1 Time(s)
root (115.159.25.60): 1 Time(s)
root (119.10.58.58): 1 Time(s)
root (162.ip-54-37-205.eu): 1 Time(s)
root (218.88.164.159): 1 Time(s)
root (58.242.82.11): 1 Time(s)
root (58.242.82.6): 1 Time(s)
root (92.116.149.61): 1 Time(s)
smmsp (ns329837.ip-37-187-117.eu): 1 Time(s)
smmsp (xdsl-188-155-145-24.adslplus.ch): 1 Time(s)
sshd (183.193.7.98): 1 Time(s)
sync (140.143.228.75): 1 Time(s)
sync (94.191.20.179): 1 Time(s)
temp (120.92.173.154): 1 Time(s)
unknown (106.13.117.84): 1 Time(s)
unknown (112.26.44.112): 1 Time(s)
unknown (123.21.30.160): 1 Time(s)
unknown (139.59.59.90): 1 Time(s)
unknown (183.157.172.195): 1 Time(s)
unknown (185.208.64.6): 1 Time(s)
unknown (193.32.163.89): 1 Time(s)
unknown (61.163.179.56): 1 Time(s)
unknown (95.247.241.135): 1 Time(s)
unknown (lneuilly-656-1-178-54.w80-13.abo.wanadoo.fr): 1 Time(s)
www-data (182.74.252.58): 1 Time(s)
www-data (ip212.ip-144-217-42.net): 1 Time(s)
Invalid Users:
Unknown Account: 804 Time(s)
---------------------- pam_unix End -------------------------
--------------------- Postfix Begin ------------------------
20 Miscellaneous warnings
12.638K Bytes accepted 12,941
12.638K Bytes sent via SMTP 12,941
======== ==================================================
1 Accepted 100.00%
-------- --------------------------------------------------
1 Total 100.00%
======== ==================================================
4 4xx Reject relay denied 100.00%
-------- --------------------------------------------------
4 Total 4xx Rejects 100.00%
======== ==================================================
80 Connections
74 Connections lost (inbound)
80 Disconnections
1 Removed from queue
1 Sent via SMTP
---------------------- Postfix End -------------------------
--------------------- sendmail-largeboxes (large mail spool files) Begin
------------------------
Large Mailbox threshold: 40MB (41943040 bytes)
Warning: Large mailbox: mailman.gz (1747199807)
Warning: Large mailbox: mailman (235703599967)
---------------------- sendmail-largeboxes (large mail spool files) End
-------------------------
--------------------- SSHD Begin ------------------------
Disconnecting after too many authentication failures for user:
root : 2 Time(s)
Failed logins from:
37.187.117.187 (ns329837.ip-37-187-117.eu): 11 times
54.37.205.162 (162.ip-54-37-205.eu): 1 time
58.242.82.6: 2 times
58.242.82.7: 6 times
58.242.82.11: 2 times
70.89.88.3: 4 times
83.211.109.73 (ip-109-73.sn2.clouditalia.com): 3 times
92.116.149.61: 1 time
93.39.116.254 (93-39-116-254.ip75.fastwebnet.it): 6 times
94.191.20.179: 7 times
104.236.72.187: 7 times
106.12.38.84: 9 times
106.12.203.210: 3 times
109.89.237.89 (host-109-89-237-89.dynamic.voo.be): 4 times
111.230.248.125: 3 times
115.159.25.60: 1 time
119.10.58.58: 2 times
120.92.173.154: 7 times
139.59.75.241: 2 times
139.59.238.14: 21 times
140.143.228.75: 11 times
144.217.42.212 (ip212.ip-144-217-42.net): 6 times
150.109.23.56: 3 times
158.69.194.115 (115.ip-158-69-194.net): 5 times
182.74.252.58: 8 times
183.134.65.22: 8 times
183.193.7.98 (.): 5 times
188.155.145.24 (xdsl-188-155-145-24.adslplus.ch): 7 times
210.77.89.215: 4 times
218.88.164.159 (159.164.88.218.broad.nc.sc.dynamic.163data.com.cn): 1 time
218.92.0.156: 6 times
Illegal users from:
undef: 650 times
37.187.117.187 (ns329837.ip-37-187-117.eu): 37 times
61.163.179.56 (hn.ly.kd.adsl): 1 time
70.89.88.3: 41 times
80.13.13.54 (lneuilly-656-1-178-54.w80-13.abo.wanadoo.fr): 1 time
83.211.109.73 (ip-109-73.sn2.clouditalia.com): 14 times
84.183.163.16 (p54B7A310.dip0.t-ipconnect.de): 2 times
93.39.116.254 (93-39-116-254.ip75.fastwebnet.it): 34 times
94.191.20.179: 40 times
95.247.241.135 (host135-241-dynamic.247-95-r.retail.telecomitalia.it): 1 time
104.236.72.187: 36 times
106.12.38.84: 38 times
106.12.203.210: 34 times
106.13.117.84: 1 time
109.89.237.89 (host-109-89-237-89.dynamic.voo.be): 7 times
111.230.248.125: 12 times
112.26.44.112: 1 time
115.159.25.60: 3 times
119.10.58.58: 11 times
120.92.173.154: 44 times
123.21.30.160: 1 time
139.59.59.90: 1 time
139.59.75.241: 35 times
139.59.238.14: 55 times
139.199.34.112: 3 times
140.143.228.75: 35 times
144.217.42.212 (ip212.ip-144-217-42.net): 35 times
150.109.23.56: 18 times
158.69.194.115 (115.ip-158-69-194.net): 41 times
182.74.252.58: 47 times
183.134.65.22: 42 times
183.157.172.195: 5 times
183.193.7.98 (.): 42 times
185.208.64.6: 1 time
188.155.145.24 (xdsl-188-155-145-24.adslplus.ch): 40 times
193.32.163.89 (srv.eqaltech.su): 1 time
204.93.154.212 (unknown.scnet.net): 1 time
210.77.89.215: 41 times
218.88.164.159 (159.164.88.218.broad.nc.sc.dynamic.163data.com.cn): 3 times
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/vzfs 400G 242G 159G 61% /
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
2321
days inactive
2321
days old
0 comments
1 participants
participants (1)
-
root@zapf.in