Mar 21 08:46:45 mail sshd\[3274\]: Invalid user admin from 62.210.77.54
Mar 21 08:46:45 mail sshd\[3274\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.77.54
Mar 21 08:46:47 mail sshd\[3274\]: Failed password for invalid user admin from 62.210.77.54 port 38622 ssh2
...

20 attempts against mh-ssh on cloud

Mar 21 05:43:26 h1745522 proftpd[9699]: 0.0.0.0 (139.209.161.33[139.209.161.33]) - USER anonymous: no such user found from 139.209.161.33 [139.209.161.33] to 85.214.254.6:21
Mar 21 05:43:27 h1745522 proftpd[9700]: 0.0.0.0 (139.209.161.33[139.209.161.33]) - USER www: no such user found from 139.209.161.33 [139.209.161.33] to 85.214.254.6:21
Mar 21 05:43:29 h1745522 proftpd[9701]: 0.0.0.0 (139.209.161.33[139.209.161.33]) - USER www: no such user found from 139.209.161.33 [139.209.161.33] to 85.214.254.6:21
Mar 21 05:43:30 h1745522 proftpd[9704]: 0.0.0.0 (139.209.161.33[139.209.161.33]) - USER www: no such user found from 139.209.161.33 [139.209.161.33] to 85.214.254.6:21
Mar 21 05:43:31 h1745522 proftpd[9705]: 0.0.0.0 (139.209.161.33[139.209.161.33]) - USER www: no such user found from 139.209.161.33 [139.209.161.33] to 85.214.254.6:21
...

1584762687 - 03/21/2020 04:51:27 Host: 36.78.67.57/36.78.67.57 Port: 445 TCP Blocked

FTP brute-force attack

20 attempts against mh-ssh on echoip

(From LorraineKnight904@gmail.com) Greetings!

If you're open to try new trends in productivity, let me tell you about this tool that most successful businesses use to reach out to their clients making their business more profitable and credible at the same time. It's an app! It can help you run the business, whether in terms of sales, marketing, management, or a combination of those. 

If you already some ideas, I'd like to hear about I'll send you my portfolio ready to be viewed, and I can also give you a free consultation via the phone. Don't worry about the cost of my services since they're relatively inexpensive even for the smallest businesses. them so I can show you how I can make them possible.

If you're interested in developing an app, or acquiring more info about it, please just reply and let me know when's the best time to contact you. Talk to you soon!

Thanks.
Lorraine Knight

CMS (WordPress or Joomla) login attempt.

Invalid user administrator from 212.129.242.128 port 36148

2020-03-20 22:50:56 H=(k7dVyR) [60.169.94.134]:62378 I=[192.147.25.65]:25 F= rejected RCPT <2129823216@qq.com>: RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.2, 127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBL468331)
2020-03-20 22:51:04 dovecot_login authenticator failed for (L4jh7QZ) [60.169.94.134]:62798 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=hkcdtsradxes@lerctr.org)
2020-03-20 22:51:14 dovecot_login authenticator failed for (teZouEX) [60.169.94.134]:63677 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=hkcdtsradxes@lerctr.org)
...

Mar 21 08:30:44 debian-2gb-nbg1-2 kernel: \[7034943.194563\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=222.186.19.221 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=TCP SPT=51125 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0

Mar 21 03:50:58 sshgateway sshd\[13914\]: Invalid user xwq from 83.153.30.149
Mar 21 03:50:58 sshgateway sshd\[13914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cau59-2-83-153-30-149.fbx.proxad.net
Mar 21 03:50:59 sshgateway sshd\[13914\]: Failed password for invalid user xwq from 83.153.30.149 port 43816 ssh2

kp-sea2-01 recorded 2 login violations from 121.138.171.77 and was blocked at 2020-03-21 03:50:42. 121.138.171.77 has been blocked on 0 previous occasions. 121.138.171.77's first attempt was recorded at 2020-03-21 03:50:42

2020-03-21T07:58:00.154714upcloud.m0sh1x2.com sshd[15963]: Invalid user pj from 190.60.94.189 port 21361

Port 8080 (HTTP proxy) access denied