| unban | # | remove | id | IP | jail | country | rdns | loglines | timestamp | ports | protocol | hostname | failures |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 39942 | 180.94.74.122 | postfix-sasl | AF, Afghanistan | 2026-02-16T05:46:25.424104+01:00 server postfix/smtps/smtpd[3090170]: warning: unknown[180.94.74.122]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-16 04:46:26 | ||||||||
| 39941 | 62.220.236.203 | postfix-sasl | FI, Finland | 2026-02-16T05:46:13.455937+01:00 server postfix/smtps/smtpd[3090130]: warning: unknown[62.220.236.203]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-16 04:46:14 | ||||||||
| 39940 | 60.172.41.103 | postfix-sasl | CN, China | 2026-02-16T05:34:49.451216+01:00 server postfix/smtps/smtpd[3089711]: warning: unknown[60.172.41.103]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-16 04:34:50 | ||||||||
| 39939 | 128.185.187.2 | postfix-sasl | IN, India | 2026-02-16T05:34:35.138929+01:00 server postfix/smtps/smtpd[3089713]: warning: unknown[128.185.187.2]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-16 04:34:36 | ||||||||
| 39938 | 58.222.72.182 | postfix-sasl | CN, China | 2026-02-16T01:26:02.191899+01:00 server postfix/smtps/smtpd[3083354]: warning: unknown[58.222.72.182]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-16 00:26:03 | ||||||||
| 39937 | 218.15.224.102 | postfix-sasl | CN, China | 2026-02-16T01:25:38.152432+01:00 server postfix/smtps/smtpd[3083278]: warning: unknown[218.15.224.102]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-16 00:25:42 | ||||||||
| 39936 | 149.54.62.166 | postfix-sasl | AF, Afghanistan | 2026-02-16T00:06:18.149842+01:00 server postfix/smtps/smtpd[2967866]: warning: unknown[149.54.62.166]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-15 23:06:19 | ||||||||
| 39935 | 103.186.114.73 | postfix-sasl | PK, Pakistan | 2026-02-16T00:05:48.237189+01:00 server postfix/smtps/smtpd[2967824]: warning: unknown[103.186.114.73]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-15 23:05:49 | ||||||||
| 39934 | 103.160.26.152 | postfix-sasl | IN, India | 2026-02-15T21:58:49.280035+01:00 server postfix/submission/smtpd[2964768]: warning: unknown[103.160.26.152]: SASL PLAIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-15 20:58:50 | ||||||||
| 39933 | 220.246.47.169 | postfix-sasl | HK, Hong Kong | 2026-02-15T20:19:22.321956+01:00 server postfix/smtps/smtpd[2961970]: warning: 169.47.246.220.static.netvigator.com[220.246.47.169]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-15 19:19:23 | ||||||||
| 39932 | 194.237.70.114 | postfix-sasl | SE, Sweden | 2026-02-15T20:19:07.085197+01:00 server postfix/smtps/smtpd[2961918]: warning: unknown[194.237.70.114]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-15 19:19:07 | ||||||||
| 39931 | 122.187.231.57 | postfix-sasl | IN, India | 2026-02-15T19:10:31.248301+01:00 server postfix/smtps/smtpd[2960452]: warning: unknown[122.187.231.57]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=theo@langstraatonline.nl | 2026-02-15 18:10:32 | ||||||||
| 39930 | 195.178.110.199 | apache-auth | BG, Bulgaria | [Sun Feb 15 11:02:49.483908 2026] [authz_core:error] [pid 2925405:tid 2925481] [client 195.178.110.199:59216] AH01630: client denied by server configuration: /var/www/Pure-FTPd/.htaccess | 2026-02-15 10:02:50 | ||||||||
| 39926 | 185.177.72.52 | apache-auth | GB, United Kingdom | [Sat Feb 14 23:12:27.187417 2026] [authz_core:error] [pid 2803128:tid 2803214] [client 185.177.72.52:34304] AH01630: client denied by server configuration: /var/www/mail/.htaccess | 2026-02-14 22:12:27 | ||||||||
| 39900 | 45.148.10.238 | apache-auth | NL, Netherlands | [Thu Feb 12 15:49:52.383605 2026] [authz_core:error] [pid 2445808:tid 2445896] [client 45.148.10.238:38098] AH01630: client denied by server configuration: /var/www/html/v13/.git | 2026-02-12 14:49:56 | ||||||||
| 39897 | 91.92.240.214 | postfix-sasl | BG, Bulgaria | 2026-02-11T21:45:36.078596+01:00 server postfix/smtps/smtpd[2328363]: warning: unknown[91.92.240.214]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=admin@langstraatonline.nl | 2026-02-11 20:45:36 | ||||||||
| 39882 | 195.178.110.108 | apache-auth | BG, Bulgaria | [Tue Feb 10 22:24:02.286131 2026] [authz_core:error] [pid 2095488:tid 2095581] [client 195.178.110.108:55454] AH01630: client denied by server configuration: /var/www/Pure-FTPd/.htaccess | 2026-02-10 21:24:03 | ||||||||
| 39852 | 94.102.49.155 | apache-auth | NL, Netherlands | [Sun Feb 08 08:25:58.719214 2026] [authz_core:error] [pid 1816923:tid 1816997] [client 94.102.49.155:49572] AH01630: client denied by server configuration: /var/www/Pure-FTPd/server-status | 2026-02-08 07:26:00 | ||||||||
| 39789 | 195.178.110.132 | apache-auth | BG, Bulgaria | [Wed Feb 04 11:18:20.485895 2026] [authz_core:error] [pid 1090732:tid 1090789] [client 195.178.110.132:54542] AH01630: client denied by server configuration: /var/www/html/v13/.env.bak | 2026-02-04 10:18:21 | ||||||||
| 39567 | 45.91.64.6 | apache-auth | ES, Spain | [Tue Jan 27 07:48:31.606595 2026] [authz_core:error] [pid 163632:tid 163707] [client 45.91.64.6:50950] AH01630: client denied by server configuration: /var/www/Pure-FTPd/server-status | 2026-01-27 06:48:32 |
Analyse
Na drie dagen 399 sshd aanvallen geregistreerd. Reden om hier een ander poort nummer voor in te stellen. Port 22 is blijkbaar erg geliefd onder hackers. Opvallend, United States met 94 op nummer één en China met 86 op nummer twee maken samen bijna de helft van de aanvallen uit. Rusland komt op de 8st plaats met 14 aanvallen.
Apache en Dovecot aanvallen werden "slechts" 16 respectievelijk 9 keer geregistreerd in deze periode.