Merhabalar;
Nünlük olarak hergün bu tip kayıtlar maille bana geliyor ama ne yapmam gerekiyor ne manaya geliyor tam bilmiyorum. Atraştırıp öğreneceğim ama şu açamada ilk yapmam gereken nedir? Diğerlerini zamanla öğrenirim...
Sunucuya bağlı vbulletin tabanlı büyük bir forum sitesi 3-4 tane de küçük kişisel siteler var...
Sanırım açıklarım falan var... İlk hangi açığı nasıl kapatmalıyım?
Plesk panel kurulu... Linux Centos 5 yüklü...
Ciddi manada şu aşamada ne yapmalıyım:
################### Logwatch 7.3 (03/24/06) ####################
Processing Initiated: Mon Mar 14 04:02:11 2011
Date Range Processed: yesterday
( 2011-Mar-13 )
Period is day.
Detail Level of Output: 0
Type of Output: unformatted
Logfiles for Host: localhost.localdomain
##################################################################
--------------------- httpd Begin ------------------------
Connection attempts using mod_proxy:
125.230.150.230 -> 203.188.201.253:25: 1 Time(s)
125.230.153.1 -> 203.188.201.253:25: 2 Time(s)
Requests with error response codes
400 Bad Request
/: 1 Time(s)
/clientscript/vbulletin_important.css?v=386: 1 Time(s)
/customavatars/avatar2735_1.gif: 1 Time(s)
/images/afis.png: 1 Time(s)
/images/buttons/lastpost.gif: 1 Time(s)
/images/hakkinda.png: 1 Time(s)
/images/icons/icon12.gif: 1 Time(s)
/images/statusicon/uye.ol.png: 1 Time(s)
/images/styles/christmas_2008/misc/navbits_finallink_ltr.gif: 1 Time(s)
/images/styles/christmas_2008/statusicon/thread_hot.gif: 1 Time(s)
/showthread.php?t=7937: 1 Time(s)
/w00tw00t.at.ISC.SANS.DFind
: 60 Time(s)
/w00tw00t.at.ISC.SANS.test0: 1 Time(s)
404 Not Found
/PMA/: 1 Time(s)
/TeklifSende/dwr/call/plaincall/BiddingCou ... iddingCount.dwr: 1 Time(s)
/TeklifSende/sicakteklif/Document_showFAQ. ... D790C22E31?id=3: 1 Time(s)
/robots.txt: 14 Time(s)
/tr: 1 Time(s)
http://www.boost.org/LICENSE_1_0.txt: 1 Time(s)
http://www.cjpjp.com/proxyheader.php: 1 Time(s)
http://www.mtajp.com/proxyheader.php: 1 Time(s)
405 Method Not Allowed
203.188.201.253:25: 3 Time(s)
---------------------- httpd End -------------------------
--------------------- Named Begin ------------------------
**Unmatched Entries**
client 174.129.92.26 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 174.129.92.26 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 174.129.92.26 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 174.129.92.85 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 174.129.92.85 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 174.129.92.85 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 184.73.72.155 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 184.73.72.155 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 184.73.72.155 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 192.221.158.154 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 64.246.165.10 query (cache) 'NS2.DEGISTIRIVERIN.COM/A/IN' denied: 8 Time(s)
client 64.71.184.34 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 66.249.71.102 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.108 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.113 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.114 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.121 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.196 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.199 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.200 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.226 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.4 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.6 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/ANY/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/MX/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/SOA/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.80 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.82 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 2 Time(s)
client 74.125.38.82 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.83 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.84 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.86 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.86 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 2 Time(s)
client 74.125.38.87 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/ANY/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/MX/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/SOA/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 8.0.30.138 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 8.0.30.147 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.30.20 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.30.212 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.30.32 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.31.120 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 8.0.31.172 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.31.75 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 87.106.128.249 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 87.106.128.249 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
---------------------- Named End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (118.33.110.52): 13938 Time(s)
root (118.33.110.52): 624 Time(s)
root (196.202.196.213): 284 Time(s)
mysql (118.33.110.52): 19 Time(s)
root (62.199.231.203): 16 Time(s)
ftp (118.33.110.52): 15 Time(s)
apache (118.33.110.52): 14 Time(s)
root (202.114.12.137): 13 Time(s)
adm (118.33.110.52): 11 Time(s)
mail (118.33.110.52): 10 Time(s)
postgres (118.33.110.52): 10 Time(s)
nobody (118.33.110.52): 8 Time(s)
operator (118.33.110.52): 8 Time(s)
lp (118.33.110.52): 7 Time(s)
sshd (118.33.110.52): 7 Time(s)
games (118.33.110.52): 6 Time(s)
bin (118.33.110.52): 5 Time(s)
smmsp (118.33.110.52): 5 Time(s)
uucp (118.33.110.52): 5 Time(s)
named (118.33.110.52): 4 Time(s)
rpc (118.33.110.52): 4 Time(s)
sync (118.33.110.52): 4 Time(s)
vcsa (118.33.110.52): 4 Time(s)
alias (118.33.110.52): 3 Time(s)
daemon (118.33.110.52): 3 Time(s)
gopher (118.33.110.52): 3 Time(s)
mailnull (118.33.110.52): 3 Time(s)
nfsnobody (118.33.110.52): 3 Time(s)
pcap (118.33.110.52): 3 Time(s)
rpcuser (118.33.110.52): 3 Time(s)
webalizer (118.33.110.52): 3 Time(s)
xfs (118.33.110.52): 3 Time(s)
qmailq (118.33.110.52): 2 Time(s)
qmailr (118.33.110.52): 2 Time(s)
qmails (118.33.110.52): 2 Time(s)
unknown (202.114.12.137): 2 Time(s)
halt (118.33.110.52): 1 Time(s)
nscd (118.33.110.52): 1 Time(s)
ntp (118.33.110.52): 1 Time(s)
qmaill (118.33.110.52): 1 Time(s)
qmailp (118.33.110.52): 1 Time(s)
shutdown (118.33.110.52): 1 Time(s)
Invalid Users:
Unknown Account: 13940 Time(s)
Bad User: : 3 Time(s)
---------------------- pam_unix End -------------------------
--------------------- proftpd-messages Begin ------------------------
**Unmatched Entries**
localhost.localdomain (188.59.183.49[188.59.183.49]) - Preparing to chroot to directory '/var/www/vhosts/sitem.com'
localhost.localdomain (188.59.183.49[188.59.183.49]) - Preparing to chroot to directory '/var/www/vhosts/sitem.com'
---------------------- proftpd-messages End -------------------------
--------------------- SSHD Begin ------------------------
Failed logins from:
62.199.231.203: 16 times
118.33.110.52: 810 times
196.202.196.213 (ge-3-3-0-core-as12455.orange.co.ke): 284 times
202.114.12.137: 13 times
Illegal users from:
118.33.110.52: 13943 times
202.114.12.137: 2 times
Users logging in through sshd:
root:
188.59.160.174: 1 time
Received disconnect:
11: Bye Bye : 15068 Time(s)
**Unmatched Entries**
pam_succeed_if(sshd:auth): error retrieving information about user florian : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mehalia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user demolinux : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kelletta : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user erin : 6 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user k12 : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rudolph : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mark : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user carlos : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rosalie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user merrie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user amity : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user marvel : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user manele : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user emech : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ianh : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rhoda : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user forum : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alise : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user machine : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user linuxis : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user zita : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cola : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user storm : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sanderson : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user math : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user loretta : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user didier : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alexandru : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user teneal : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user suzanne : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rafael : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user melonie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mystic : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lyly : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user anila : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user tristina : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kiana : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user yy : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user nasia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user simon : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kurtis : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user catarina : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user latisha : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user haru : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user delphine : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user shan : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user francisca : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ciara : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user name : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user picture : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user chasity : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user laina : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user google : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user tod : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user megan : 5 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ruben : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rainey : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user carlton : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user frederic : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kenneth : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user field : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user betty : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lissa : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user zuza : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user delyssa : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sauv : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user new : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user aryn : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user dores : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sapphire : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user adele : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kimy : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user zoa : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user pia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user eboni : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user banana : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user gin : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user wynonna : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user indira : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user persephone : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user jacky : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user illya : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user karley : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user pentium3 : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user evaleen : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user fabia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lorainne : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user hilaire : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mandarina : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alecia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cassia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user queenie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user nadja : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user download : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user netstat : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kaia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user a : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ivan : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user styx : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user snow : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user margaret : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user joao : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user babe : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user hollye : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user louie : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kennetha : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user darkman : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user amy : 6 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cailin : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user niiyama : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user jerald : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sarita : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alyssa : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user calan : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user marjorie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ninon : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user montana : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user peter : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lunette : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user giles : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lucas : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user chesna : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user amaris : 3 time(s)
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/sda5 222G 6.1G 205G 3% /
/dev/sda3 1.9G 36M 1.8G 2% /tmp
/dev/sda1 99M 12M 83M 13% /boot
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################
Nünlük olarak hergün bu tip kayıtlar maille bana geliyor ama ne yapmam gerekiyor ne manaya geliyor tam bilmiyorum. Atraştırıp öğreneceğim ama şu açamada ilk yapmam gereken nedir? Diğerlerini zamanla öğrenirim...
Sunucuya bağlı vbulletin tabanlı büyük bir forum sitesi 3-4 tane de küçük kişisel siteler var...
Sanırım açıklarım falan var... İlk hangi açığı nasıl kapatmalıyım?
Plesk panel kurulu... Linux Centos 5 yüklü...
Ciddi manada şu aşamada ne yapmalıyım:
################### Logwatch 7.3 (03/24/06) ####################
Processing Initiated: Mon Mar 14 04:02:11 2011
Date Range Processed: yesterday
( 2011-Mar-13 )
Period is day.
Detail Level of Output: 0
Type of Output: unformatted
Logfiles for Host: localhost.localdomain
##################################################################
--------------------- httpd Begin ------------------------
Connection attempts using mod_proxy:
125.230.150.230 -> 203.188.201.253:25: 1 Time(s)
125.230.153.1 -> 203.188.201.253:25: 2 Time(s)
Requests with error response codes
400 Bad Request
/: 1 Time(s)
/clientscript/vbulletin_important.css?v=386: 1 Time(s)
/customavatars/avatar2735_1.gif: 1 Time(s)
/images/afis.png: 1 Time(s)
/images/buttons/lastpost.gif: 1 Time(s)
/images/hakkinda.png: 1 Time(s)
/images/icons/icon12.gif: 1 Time(s)
/images/statusicon/uye.ol.png: 1 Time(s)
/images/styles/christmas_2008/misc/navbits_finallink_ltr.gif: 1 Time(s)
/images/styles/christmas_2008/statusicon/thread_hot.gif: 1 Time(s)
/showthread.php?t=7937: 1 Time(s)
/w00tw00t.at.ISC.SANS.DFind
: 60 Time(s)/w00tw00t.at.ISC.SANS.test0
: 1 Time(s)404 Not Found
/PMA/: 1 Time(s)
/TeklifSende/dwr/call/plaincall/BiddingCou ... iddingCount.dwr: 1 Time(s)
/TeklifSende/sicakteklif/Document_showFAQ. ... D790C22E31?id=3: 1 Time(s)
/robots.txt: 14 Time(s)
/tr: 1 Time(s)
http://www.boost.org/LICENSE_1_0.txt: 1 Time(s)
http://www.cjpjp.com/proxyheader.php: 1 Time(s)
http://www.mtajp.com/proxyheader.php: 1 Time(s)
405 Method Not Allowed
203.188.201.253:25: 3 Time(s)
---------------------- httpd End -------------------------
--------------------- Named Begin ------------------------
**Unmatched Entries**
client 174.129.92.26 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 174.129.92.26 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 174.129.92.26 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 174.129.92.85 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 174.129.92.85 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 174.129.92.85 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 184.73.72.155 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 184.73.72.155 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 184.73.72.155 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 2 Time(s)
client 192.221.158.154 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 64.246.165.10 query (cache) 'NS2.DEGISTIRIVERIN.COM/A/IN' denied: 8 Time(s)
client 64.71.184.34 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 66.249.71.102 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.108 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.113 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.114 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.121 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.196 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.199 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.200 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.226 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.4 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 66.249.71.6 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/ANY/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/MX/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'degistiriverin.com/SOA/IN' denied: 1 Time(s)
client 69.162.74.234 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.80 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.82 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 2 Time(s)
client 74.125.38.82 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.83 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.84 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.86 query (cache) 'ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 74.125.38.86 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 2 Time(s)
client 74.125.38.87 query (cache) 'www.ns2.degistiriverin.com/A/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/ANY/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/MX/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'degistiriverin.com/SOA/IN' denied: 1 Time(s)
client 76.76.11.241 query (cache) 'www.degistiriverin.com/A/IN' denied: 1 Time(s)
client 8.0.30.138 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 8.0.30.147 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.30.20 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.30.212 query (cache) 'ns2.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.30.32 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.31.120 query (cache) 'degistiriverin.com/A/IN' denied: 1 Time(s)
client 8.0.31.172 query (cache) 'ns1.degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 8.0.31.75 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
client 87.106.128.249 query (cache) 'degistiriverin.com/A/IN' denied: 2 Time(s)
client 87.106.128.249 query (cache) 'degistiriverin.com/AAAA/IN' denied: 1 Time(s)
---------------------- Named End -------------------------
--------------------- pam_unix Begin ------------------------
sshd:
Authentication Failures:
unknown (118.33.110.52): 13938 Time(s)
root (118.33.110.52): 624 Time(s)
root (196.202.196.213): 284 Time(s)
mysql (118.33.110.52): 19 Time(s)
root (62.199.231.203): 16 Time(s)
ftp (118.33.110.52): 15 Time(s)
apache (118.33.110.52): 14 Time(s)
root (202.114.12.137): 13 Time(s)
adm (118.33.110.52): 11 Time(s)
mail (118.33.110.52): 10 Time(s)
postgres (118.33.110.52): 10 Time(s)
nobody (118.33.110.52): 8 Time(s)
operator (118.33.110.52): 8 Time(s)
lp (118.33.110.52): 7 Time(s)
sshd (118.33.110.52): 7 Time(s)
games (118.33.110.52): 6 Time(s)
bin (118.33.110.52): 5 Time(s)
smmsp (118.33.110.52): 5 Time(s)
uucp (118.33.110.52): 5 Time(s)
named (118.33.110.52): 4 Time(s)
rpc (118.33.110.52): 4 Time(s)
sync (118.33.110.52): 4 Time(s)
vcsa (118.33.110.52): 4 Time(s)
alias (118.33.110.52): 3 Time(s)
daemon (118.33.110.52): 3 Time(s)
gopher (118.33.110.52): 3 Time(s)
mailnull (118.33.110.52): 3 Time(s)
nfsnobody (118.33.110.52): 3 Time(s)
pcap (118.33.110.52): 3 Time(s)
rpcuser (118.33.110.52): 3 Time(s)
webalizer (118.33.110.52): 3 Time(s)
xfs (118.33.110.52): 3 Time(s)
qmailq (118.33.110.52): 2 Time(s)
qmailr (118.33.110.52): 2 Time(s)
qmails (118.33.110.52): 2 Time(s)
unknown (202.114.12.137): 2 Time(s)
halt (118.33.110.52): 1 Time(s)
nscd (118.33.110.52): 1 Time(s)
ntp (118.33.110.52): 1 Time(s)
qmaill (118.33.110.52): 1 Time(s)
qmailp (118.33.110.52): 1 Time(s)
shutdown (118.33.110.52): 1 Time(s)
Invalid Users:
Unknown Account: 13940 Time(s)
Bad User: : 3 Time(s)
---------------------- pam_unix End -------------------------
--------------------- proftpd-messages Begin ------------------------
**Unmatched Entries**
localhost.localdomain (188.59.183.49[188.59.183.49]) - Preparing to chroot to directory '/var/www/vhosts/sitem.com'
localhost.localdomain (188.59.183.49[188.59.183.49]) - Preparing to chroot to directory '/var/www/vhosts/sitem.com'
---------------------- proftpd-messages End -------------------------
--------------------- SSHD Begin ------------------------
Failed logins from:
62.199.231.203: 16 times
118.33.110.52: 810 times
196.202.196.213 (ge-3-3-0-core-as12455.orange.co.ke): 284 times
202.114.12.137: 13 times
Illegal users from:
118.33.110.52: 13943 times
202.114.12.137: 2 times
Users logging in through sshd:
root:
188.59.160.174: 1 time
Received disconnect:
11: Bye Bye : 15068 Time(s)
**Unmatched Entries**
pam_succeed_if(sshd:auth): error retrieving information about user florian : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mehalia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user demolinux : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kelletta : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user erin : 6 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user k12 : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rudolph : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mark : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user carlos : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rosalie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user merrie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user amity : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user marvel : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user manele : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user emech : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ianh : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rhoda : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user forum : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alise : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user machine : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user linuxis : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user zita : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cola : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user storm : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sanderson : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user math : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user loretta : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user didier : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alexandru : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user teneal : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user suzanne : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rafael : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user melonie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mystic : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lyly : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user anila : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user tristina : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kiana : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user yy : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user nasia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user simon : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kurtis : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user catarina : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user latisha : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user haru : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user delphine : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user shan : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user francisca : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ciara : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user name : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user picture : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user chasity : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user laina : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user google : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user tod : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user megan : 5 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ruben : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user rainey : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user carlton : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user frederic : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kenneth : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user field : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user betty : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lissa : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user zuza : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user delyssa : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sauv : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user new : 2 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user aryn : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user dores : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sapphire : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user adele : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kimy : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user zoa : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user pia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user eboni : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user banana : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user gin : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user wynonna : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user indira : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user persephone : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user jacky : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user illya : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user karley : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user pentium3 : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user evaleen : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user fabia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lorainne : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user hilaire : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user mandarina : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alecia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cassia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user queenie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user nadja : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user download : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user netstat : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kaia : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user a : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ivan : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user styx : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user snow : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user margaret : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user joao : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user babe : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user hollye : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user louie : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user kennetha : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user darkman : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user amy : 6 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user cailin : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user niiyama : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user jerald : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user sarita : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user alyssa : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user calan : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user marjorie : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user ninon : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user montana : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user peter : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lunette : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user giles : 1 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user lucas : 4 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user chesna : 3 time(s)
pam_succeed_if(sshd:auth): error retrieving information about user amaris : 3 time(s)
---------------------- SSHD End -------------------------
--------------------- Disk Space Begin ------------------------
Filesystem Size Used Avail Use% Mounted on
/dev/sda5 222G 6.1G 205G 3% /
/dev/sda3 1.9G 36M 1.8G 2% /tmp
/dev/sda1 99M 12M 83M 13% /boot
---------------------- Disk Space End -------------------------
###################### Logwatch End #########################