| 178.91.254.34 |
attack |
Advance-fee Fraud Spam
Return-Path:
Received: from mail.logitex.kz (mail.logitex.kz [178.91.254.34])
Reply-To:
From: DR DAVID
To:
Subject: Re: Gold Investment
Date: Mon, 13 Jan 2020 18:15:16 -0500
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
Message-ID:
Hello Friend
My name is Dr. David Koffi I am a financial broker by profession. I have an
important business I want to propose to you therefore go through this email and
get back to me.
In the year 2011 during the political upheavals in Libya, I was consulted by one
of my old client an oil magnate and ex minister of petroleum being a strong ally
to deposed Libyan president Muammar Gaddaffi. My client sought for my assistance
to move 900 kilograms of Gold ore Bars to a financial house abroad when it became
clear to him that |
2020-01-15 16:26:38 |
| 222.186.180.6 |
attack |
Multiple SSH login attempts. |
2020-01-15 16:21:30 |
| 112.78.1.247 |
attackbotsspam |
Jan 15 07:40:48 alfc-lms-prod01 sshd\[21712\]: Invalid user admin from 112.78.1.247
Jan 15 07:41:55 alfc-lms-prod01 sshd\[22037\]: Invalid user test8 from 112.78.1.247
Jan 15 07:43:08 alfc-lms-prod01 sshd\[22707\]: Invalid user test from 112.78.1.247
... |
2020-01-15 16:38:33 |
| 221.226.251.58 |
attackspam |
Jan 15 08:58:53 vpn01 sshd[26722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.226.251.58
Jan 15 08:58:54 vpn01 sshd[26722]: Failed password for invalid user rania from 221.226.251.58 port 51618 ssh2
... |
2020-01-15 16:35:16 |
| 116.232.16.70 |
attackspam |
Jan 15 04:38:19 localhost sshd\[15233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.232.16.70 user=root
Jan 15 04:38:21 localhost sshd\[15233\]: Failed password for root from 116.232.16.70 port 60390 ssh2
Jan 15 04:51:20 localhost sshd\[15418\]: Invalid user user from 116.232.16.70 port 58934
... |
2020-01-15 16:49:06 |
| 198.98.52.141 |
attack |
Invalid user glassfish from 198.98.52.141 port 59412 |
2020-01-15 16:35:45 |
| 203.162.31.112 |
attack |
Jan1505:52:11server2pure-ftpd:\(\?@51.68.11.215\)[WARNING]Authenticationfailedforuser[info]Jan1505:50:41server2pure-ftpd:\(\?@203.162.31.112\)[WARNING]Authenticationfailedforuser[info]Jan1505:52:14server2pure-ftpd:\(\?@5.159.50.62\)[WARNING]Authenticationfailedforuser[info]Jan1505:49:28server2pure-ftpd:\(\?@89.46.105.197\)[WARNING]Authenticationfailedforuser[info]Jan1505:52:00server2pure-ftpd:\(\?@51.68.11.215\)[WARNING]Authenticationfailedforuser[info]IPAddressesBlocked:51.68.11.215\(FR/France/gwc.cluster011.hosting.ovh.net\) |
2020-01-15 16:22:15 |
| 179.157.56.56 |
attack |
Jan 15 06:30:53 localhost sshd\[16555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.157.56.56 user=root
Jan 15 06:30:56 localhost sshd\[16555\]: Failed password for root from 179.157.56.56 port 30765 ssh2
Jan 15 06:33:01 localhost sshd\[16597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.157.56.56 user=root
Jan 15 06:33:03 localhost sshd\[16597\]: Failed password for root from 179.157.56.56 port 31276 ssh2
Jan 15 06:35:10 localhost sshd\[16867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.157.56.56 user=root
... |
2020-01-15 16:24:26 |
| 112.85.42.238 |
attack |
Jan 15 09:41:16 h2177944 sshd\[17833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238 user=root
Jan 15 09:41:18 h2177944 sshd\[17833\]: Failed password for root from 112.85.42.238 port 62469 ssh2
Jan 15 09:41:26 h2177944 sshd\[17833\]: Failed password for root from 112.85.42.238 port 62469 ssh2
Jan 15 09:43:57 h2177944 sshd\[17919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238 user=root
... |
2020-01-15 16:53:30 |
| 222.186.175.216 |
attackbots |
Jan 15 09:17:18 h2177944 sshd\[16989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root
Jan 15 09:17:19 h2177944 sshd\[16989\]: Failed password for root from 222.186.175.216 port 3952 ssh2
Jan 15 09:17:23 h2177944 sshd\[16989\]: Failed password for root from 222.186.175.216 port 3952 ssh2
Jan 15 09:17:26 h2177944 sshd\[16989\]: Failed password for root from 222.186.175.216 port 3952 ssh2
... |
2020-01-15 16:29:27 |
| 180.241.151.70 |
attackbots |
port scan and connect, tcp 1433 (ms-sql-s) |
2020-01-15 16:34:50 |
| 159.203.201.145 |
attack |
Portscan or hack attempt detected by psad/fwsnort |
2020-01-15 16:42:34 |
| 95.105.89.221 |
attack |
email spam |
2020-01-15 16:55:49 |
| 142.44.240.190 |
attackbots |
Unauthorized connection attempt detected from IP address 142.44.240.190 to port 2220 [J] |
2020-01-15 16:42:15 |
| 39.152.54.180 |
attack |
Fail2Ban - FTP Abuse Attempt |
2020-01-15 16:24:39 |