\[2019-07-05 12:59:01\] NOTICE\[13443\] chan_sip.c: Registration from '"5050" \' failed for '64.31.33.70:5074' - Wrong password
\[2019-07-05 12:59:01\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-05T12:59:01.115-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5050",SessionID="0x7f02f8335788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/64.31.33.70/5074",Challenge="33476610",ReceivedChallenge="33476610",ReceivedHash="6ba670d9ba427a3251360fae5ab23015"
\[2019-07-05 12:59:01\] NOTICE\[13443\] chan_sip.c: Registration from '"5050" \' failed for '64.31.33.70:5074' - Wrong password
\[2019-07-05 12:59:01\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-05T12:59:01.211-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5050",SessionID="0x7f02f81ae088",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/

Brute force attempt

Unauthorised access (Jul  5) SRC=125.70.179.153 LEN=44 TTL=104 ID=256 TCP DPT=1433 WINDOW=16384 SYN

RDP Bruteforce

(From animatedvideos33@gmail.com) Hi there, I just came across your website and wanted to get in touch. 
 
I run an animation studio that makes animated explainer videos helping companies to explain what they do, why it matters and how they're unique in less than 2 minutes. 
 
You can watch some of the videos we’ve made here: 
http://bit.ly/2ZXxoLa - what do you think? 
 
I really wanted to make you a super awesome animated video explaining what your company does and the value behind it. 
 
We have a smooth production process and handle everything needed for a high-quality video that typically takes us 6 weeks to produce from start to finish. 
 
First, we nail the script, design storyboards you can’t wait to see animated. Voice actors in your native language that capture your brand and animation that screams premium with sound design that brings it all together. 
 
Our videos are made from scratch and designed to make you stand out and get results. No templates, no cookie cutter animation that ta

[munged]::443 196.216.53.134 - - [05/Jul/2019:09:51:03 +0200] "POST /[munged]: HTTP/1.1" 200 6319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 196.216.53.134 - - [05/Jul/2019:09:51:05 +0200] "POST /[munged]: HTTP/1.1" 200 6321 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"

Invalid user shannon from 24.148.115.153 port 42566

Jul  5 14:42:21 host proftpd\[1674\]: 0.0.0.0 \(211.228.246.140\[211.228.246.140\]\) - USER anonymous: no such user found from 211.228.246.140 \[211.228.246.140\] to 62.210.146.38:21
...

Jul  5 08:42:12 localhost sshd[10086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.253.140.10
Jul  5 08:42:15 localhost sshd[10086]: Failed password for invalid user anonymous from 84.253.140.10 port 41980 ssh2
Jul  5 08:44:33 localhost sshd[10129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.253.140.10
Jul  5 08:44:35 localhost sshd[10129]: Failed password for invalid user bot2 from 84.253.140.10 port 38824 ssh2
...

firewall-block, port(s): 445/tcp

mail.log:Jun 19 15:25:08 mail postfix/smtpd[24486]: warning: unknown[200.23.239.39]: SASL PLAIN authentication failed: authentication failure

Jul  5 10:22:43 [host] sshd[14505]: Invalid user temp from 202.91.86.100
Jul  5 10:22:43 [host] sshd[14505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.91.86.100
Jul  5 10:22:45 [host] sshd[14505]: Failed password for invalid user temp from 202.91.86.100 port 56218 ssh2

firewall-block, port(s): 111/udp

POST /wp-login.php HTTP/1.1 200 3819 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0

2019-07-05 00:49:04 server sshd[74685]: Failed password for invalid user hello from 88.198.15.12 port 46578 ssh2