[2020-07-16 18:26:05] NOTICE[1277] chan_sip.c: Registration from '"543"' failed for '5.183.92.128:52838' - Wrong password
[2020-07-16 18:26:05] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-16T18:26:05.073-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="543",SessionID="0x7f175414cf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.183.92.128/52838",Challenge="328762d7",ReceivedChallenge="328762d7",ReceivedHash="f154eae596210d6e27e3ca3700e7b8de"
[2020-07-16 18:32:29] NOTICE[1277] chan_sip.c: Registration from '"544"' failed for '5.183.92.128:37339' - Wrong password
[2020-07-16 18:32:29] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-16T18:32:29.083-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="544",SessionID="0x7f17540de808",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.183.92.1
...

[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T13:27:41.388+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="518973635-123769044-452640836",LocalAddress="IPV4/UDP/51.255.2.242/5060",RemoteAddress="IPV4/UDP/5.183.92.170/60923",Challenge="1599650861/52198d4167c3a9a00e5d361ee7f02dcd",Response="6532c6282320ff82d1005d4123862644",ExpectedResponse=""
[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2020-09-09T13:27:41.418+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="10",SessionID="518973635-123769044-452640836",LocalAddress="IPV4/UDP/51.255.2.242/5060",RemoteAddress="IPV4/UDP/5.183.92.170/60923"
[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T13:27:41.419+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="518
...

[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T13:27:41.388+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="518973635-123769044-452640836",LocalAddress="IPV4/UDP/51.255.2.242/5060",RemoteAddress="IPV4/UDP/5.183.92.170/60923",Challenge="1599650861/52198d4167c3a9a00e5d361ee7f02dcd",Response="6532c6282320ff82d1005d4123862644",ExpectedResponse=""
[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2020-09-09T13:27:41.418+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="10",SessionID="518973635-123769044-452640836",LocalAddress="IPV4/UDP/51.255.2.242/5060",RemoteAddress="IPV4/UDP/5.183.92.170/60923"
[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T13:27:41.419+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="518
...

[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T13:27:41.388+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="518973635-123769044-452640836",LocalAddress="IPV4/UDP/51.255.2.242/5060",RemoteAddress="IPV4/UDP/5.183.92.170/60923",Challenge="1599650861/52198d4167c3a9a00e5d361ee7f02dcd",Response="6532c6282320ff82d1005d4123862644",ExpectedResponse=""
[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="InvalidAccountID",EventTV="2020-09-09T13:27:41.418+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="10",SessionID="518973635-123769044-452640836",LocalAddress="IPV4/UDP/51.255.2.242/5060",RemoteAddress="IPV4/UDP/5.183.92.170/60923"
[2020-09-09 13:27:41] SECURITY[2022] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-09-09T13:27:41.419+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="518
...

(From info@conniecwilson.cc) Hi,

Have you had enough of President Donnie?

Welcome to Weekly Wilson's New News.

Join us in facing 2020 with as much good humor as we can muster.
Progressives, remorseful Republicans, incensed Independents,
disillusioned Democrats, Lincoln Project alums—-lend me your ears. Come
take a comedic stroll down memory lane with author Connie C. Wilson.

Connie has followed presidential politics on the ground for 20 years.
She was Content Producer of the Year for Politics (Yahoo, 2008) and is
the author of 40 books, 4 of them on presidential races.

Order BEE GONE now and we will give you—-absolutely FREE August
16-20—-the children’s e-book version, “The Christmas Cats Flee the Bee,”
when you purchase the adult version.

This hysterically funny, beautifully illustrated graphic novel just won
the E-Lit Gold Medal for graphic novels.

In a very short story about a disgruntled drone in a beehive who wants
to take over the hive, the take-away is: “Elections have con

Spam comment : go now https://hydraruzonionx.ru

(From jessicastone236@gmail.com) Hi,

I hope this email reaches you in good health. I had a chance to come across your website recently. Your amazing website was a pleasant detour for me, which led me here in your inbox. 

I would like to propose an offer to you, an offer that would be beneficial for both of us. 

I would like to publish a guest post article on your splendid website. The article would be relevant to your website niche and of top-notch quality. All I require in return is a backlink within the body of the article. 

If you're happy with this arrangement, I can proceed to send you some unique topics. 

I await your affirmation with anticipation.

Looking forward.

Regards,

Jessica Stone

\[Apr 12 06:53:33\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.183.92.176:53654' - Wrong password
\[Apr 12 06:54:20\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.183.92.176:59122' - Wrong password
\[Apr 12 06:54:42\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.183.92.176:60576' - Wrong password
\[Apr 12 06:54:48\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.183.92.176:65343' - Wrong password
\[Apr 12 06:55:00\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.183.92.176:59309' - Wrong password
\[Apr 12 06:55:11\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.183.92.176:51353' - Wrong password
\[Apr 12 06:55:31\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '5.1
...

Has tried to attack my server.

POST /index.php/napisat-nam.html HTTP/1.0 303 - index.phpMozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 OPR/55.0.2994.44

[2020-02-26 22:38:49] NOTICE[14744] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '' failed for '5.183.92.32:64598' (callid: 376215522-649646893-389571818) - Failed to authenticate
[2020-02-26 22:38:49] SECURITY[20721] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-02-26T22:38:49.492+0100",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="",SessionID="376215522-649646893-389571818",LocalAddress="IPV4/UDP/185.118.196.148/5060",RemoteAddress="IPV4/UDP/5.183.92.32/64598",Challenge="1582753129/dad733ecc9e5841b0a1529ab2e7adcda",Response="1de0935f9f82950b6c3e7fb95c212f82",ExpectedResponse=""
[2020-02-26 22:38:49] NOTICE[14744] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '' failed for '5.183.92.32:64598' (callid: 376215522-649646893-389571818) - Failed to authenticate
[2020-02-26 22:38:49] SECURITY[20721] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2020-02-26T22:38:49.563+0

Honeypot attack, port: 445, PTR: PTR record not found

Jan  4 05:49:18 nextcloud sshd\[7273\]: Invalid user mwc from 165.22.112.45
Jan  4 05:49:18 nextcloud sshd\[7273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.112.45
Jan  4 05:49:20 nextcloud sshd\[7273\]: Failed password for invalid user mwc from 165.22.112.45 port 49444 ssh2
...

Honeypot attack, port: 445, PTR: PTR record not found

Jan  3 20:47:50 web9 sshd\[28497\]: Invalid user www from 190.8.80.42
Jan  3 20:47:50 web9 sshd\[28497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42
Jan  3 20:47:52 web9 sshd\[28497\]: Failed password for invalid user www from 190.8.80.42 port 44524 ssh2
Jan  3 20:51:12 web9 sshd\[28946\]: Invalid user raju from 190.8.80.42
Jan  3 20:51:12 web9 sshd\[28946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42

Jan  4 10:13:25 localhost sshd\[4543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.187  user=root
Jan  4 10:13:27 localhost sshd\[4543\]: Failed password for root from 222.186.30.187 port 22182 ssh2
Jan  4 10:13:30 localhost sshd\[4543\]: Failed password for root from 222.186.30.187 port 22182 ssh2

Jan  4 09:24:36 MK-Soft-VM8 sshd[16785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.137.10 
Jan  4 09:24:38 MK-Soft-VM8 sshd[16785]: Failed password for invalid user spy from 1.179.137.10 port 53621 ssh2
...

Honeypot attack, port: 5555, PTR: PTR record not found

1578113337 - 01/04/2020 05:48:57 Host: 14.177.106.243/14.177.106.243 Port: 445 TCP Blocked

SSH login attempts.

Jan  4 08:25:02 h2812830 sshd[19613]: Invalid user octro from 47.22.135.70 port 57027
Jan  4 08:25:02 h2812830 sshd[19613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ool-2f168746.static.optonline.net
Jan  4 08:25:02 h2812830 sshd[19613]: Invalid user octro from 47.22.135.70 port 57027
Jan  4 08:25:04 h2812830 sshd[19613]: Failed password for invalid user octro from 47.22.135.70 port 57027 ssh2
Jan  4 08:29:40 h2812830 sshd[19808]: Invalid user bzl from 47.22.135.70 port 26941
...

$f2bV_matches

Invalid user tomio from 192.241.213.168 port 34434

20/1/3@23:49:28: FAIL: Alarm-Network address from=112.133.236.127
20/1/3@23:49:28: FAIL: Alarm-Network address from=112.133.236.127
...

[munged]::80 129.205.24.167 - - [04/Jan/2020:05:49:24 +0100] "POST /[munged]: HTTP/1.1" 200 3861 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"
[munged]::80 129.205.24.167 - - [04/Jan/2020:05:49:25 +0100] "POST /[munged]: HTTP/1.1" 200 3860 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"
[munged]::80 129.205.24.167 - - [04/Jan/2020:05:49:26 +0100] "POST /[munged]: HTTP/1.1" 200 3860 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"
[munged]::80 129.205.24.167 - - [04/Jan/2020:05:49:27 +0100] "POST /[munged]: HTTP/1.1" 200 3860 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"
[munged]::80 129.205.24.167 - - [04/Jan/2020:05:49:28 +0100] "POST /[munged]: HTTP/1.1" 200 3860 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0"
[munged]::80 129.205.24.167 - - [04/Jan/2020:05:49:30

2020-01-04T09:58:22.922296centos sshd\[32193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.158.207.141  user=root
2020-01-04T09:58:24.716508centos sshd\[32193\]: Failed password for root from 69.158.207.141 port 49330 ssh2
2020-01-04T09:58:56.524789centos sshd\[32217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.158.207.141  user=root