(smtpauth) Failed SMTP AUTH login from 217.78.1.17 (IE/Ireland/db-01-dub.eagle.hosting): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-04-14 13:30:56 login authenticator failed for db-01-dub.eagle.hosting (ADMIN) [217.78.1.17]: 535 Incorrect authentication data (set_id=info@arshinmachine.com)

Attempted Brute Force (dovecot)

Attempted Brute Force (dovecot)

Apr 19 05:52:28 debian-2gb-nbg1-2 kernel: \[9527316.953583\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=217.78.1.59 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=17213 PROTO=TCP SPT=48217 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0

ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic

Unauthorised access (Feb 22) SRC=217.78.1.59 LEN=40 TTL=248 ID=38286 TCP DPT=445 WINDOW=1024 SYN

Honeypot attack, port: 445, PTR: PTR record not found

Scanning random ports - tries to find possible vulnerable services

Honeypot attack, port: 445, PTR: PTR record not found

ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic

Unauthorised access (Oct 13) SRC=217.78.1.59 LEN=40 TTL=247 ID=22447 TCP DPT=1433 WINDOW=1024 SYN

MYH,DEF GET /en_fr//wp-login.php

successful login with my credentials i.e user id & pswd didn't have the authy validation. Hacks

103.102.239.237  Sunrise Ritual - tony@outlook.com - Odd “sunrise ritual” burns 2lbs before dinner tonight, 6 May 2021
org-name:       Server Group BD
Address:        104 Green Road, Farmgate, Dhaka
NetRange:       103.102.236.0 - 103.102.239.255
Other emails from same group
103.102.239.237  Lottery Winner In 3 Months -xxx@gmail.com- I've managed to win the lotto 5 times in the last three months... Fri, 16 Apr 2021

137.135.140.176 Nine Bitcoin - contact.81779@323-deutschinc.club - Learn how to trade and make thousands on Bitcoins, Sat, 24 Apr 2021 
Refer to previous related messages.
Organization:   Microsoft Corporation (MSFT) 
NetRange:  	13.64.0.0 - 13.107.255.255
NetRange: 	20.33.0.0 - 20.128.255.255
NetRange: 	23.96.0.0 - 23.103.255.255
NetRange: 	40.64.0.0 - 40.71.255.255
NetRange: 	40.74.0.0 - 40.125.127.255
NetRange:  	52.145.0.0 - 52.191.255.255
NetRange:  	104.40.0.0 - 104.47.255.255
NetRange:       137.135.0.0 - 137.135.255.255
NetRange:  	168.61.0.0 - 168.63.255.255
13.69.173.162 Nine Bitcoin - contact.39738@077-deutschrezension.club-  Learn how to trade and make thousands on Bitcoins Sat, 10 Apr 2021
13.74.12.98 Nine Bitcoin - contact.44245@585-deutschhomes.club-  Learn how to trade and make thousands on Bitcoins Mon, 12 Apr 2021 
40.85.89.82  Nine Bitcoin - contact.78341@273-thedeutsch.club - Learn how to trade and make thousands on Bitcoins, Thu, 15 Apr 2021 
40.85.132.122 Nine Bitcoin - contact.60510@705-deutschmail.club-  Learn how to trade and make thousands on Bitcoins Tue, 13 Apr 2021
137.135.140.176 Nine Bitcoin - contact.81779@323-deutschinc.club - Learn how to trade and make thousands on Bitcoins, Sat, 24 Apr 2021

via dude login failure for user admin from 95.172.59.182

PHISHING AND SPAM ATTACK
FROM "Premium CBD Gummies - contact@460-deutschonline.club -" : 
SUBJECT "CBD Gummies at a Discounted Price! " :
RECEIVED from [13.82.45.109] (port=43686 helo=q3eg.afrigatenews.net) " :
DATE/TIMESENT "Sun, 11 Apr 2021 05:45:11"
IP ADDRESS "NetRange: 13.64.0.0 - 13.107.255.255 Organization: Microsoft Corporation (MSFT) "

Fu Pp + 0 ( 3 )2

,,,

51.137.50.20 China Coin - contact@250-deutschinc.club - Make 5 times back in your investment in 3 months, Thu, 29 Apr 2021
Refer also to: 
Organization:   Microsoft Corporation (MSFT) 
NetRange:  	13.64.0.0 - 13.107.255.255
NetRange: 	20.33.0.0 - 20.128.255.255
NetRange: 	23.96.0.0 - 23.103.255.255
NetRange: 	40.64.0.0 - 40.71.255.255
NetRange: 	40.74.0.0 - 40.125.127.255
NetRange: 	51.136.0.0 - 51.138.255.255
NetRange:  	52.145.0.0 - 52.191.255.255
NetRange:  	104.40.0.0 - 104.47.255.255
NetRange:	137.135.0.0 - 137.135.255.255
NetRange:  	168.61.0.0 - 168.63.255.255
13.90.210.200 ABC Bitcoin - contact.83635@463-deutschfam.club-  Australians are making millions from Bitcoin Mon, 12 Apr 2021
13.90.253.238 ABC Bitcoin - contact.34744@902-deutschinc.club-  Australians are making millions from Bitcoin Sat, 10 Apr 2021
23.96.34.209 ABC Bitcoin - contact.92079@443-deutschco.club - Australians are making millions from Bitcoin Thu, 15 Apr 2021
51.137.49.210 ABC Bitcoin - contact@634-deutschlife.club - Australians are making millions from Bitcoin Thu, 15 Apr 2021
51.144.93.87  ABC Bitcoin - contact.30351@982-drdeutsch.club-  Australians are making millions from Bitcoin Tue, 13 Apr 2021 
52.169.239.253 ABC Bitcoin -contact.31665@517-drdeutsch.club- Australians are making millions from Bitcoin, Thu, 15 Apr 2021
168.61.86.18 ABC Bitcoin - contact.86289@551-deutschhomes.club - Australians are making millions from Bitcoin, Sun, 25 Apr 2021
52.170.62.233 Bitcoin Trader - contact.69238@853-deutschonline.club-  Trade on Bitcoins and make thousands in as little as 48 hours Sat, 10 Apr 2021

23.247.125.248 Rescue Weakest Family - nicky@coliseum.top - Take 1 sip an hour before bed to boost fat-burning hormones while you sleep, Tue, 4 May 2021 16:37:56
OrgName: LayerHost
NetRange:       23.247.0.0 - 23.247.127.255
NetRange:       104.148.0.0 - 104.148.127.255
NetRange:       107.179.0.0 - 107.179.127.255
NetRange:       134.73.0.0 - 134.73.255.255 
23.247.53.76 Latest Bluetooth - LingoGenie@onlyhappye.bid - Multi-Language Instant Voice Translator, Wed, 5 May 2021 
23.247.125.237 Bidens Secret Pills - taylor@burbositision.top -  USSR + Cold War Research + Russian Scientists = How is Trumps brain still on FIRE?, Fri, 16 Apr 2021
23.247.125.241  Trumps Secret Pills - hazel@armchair.top - Cold War USSR brain boosting nootropics uncovered. What do you think Trump..., Tue, 4 May 2021 19:19:19 
104.148.6.239 Cinnamon -iris@coliseum.top- FALSE: Fat + People + Cinnamon Bark = People + Cinnamon Tea, Thu, 15 Apr 2021
107.179.127.158 Biden Brain Hacks - eden@dard.top - Russians developed secret brain enhancement drugs during the USSR. Now college kids..., Sun, 2 May 2021
134.73.142.197 Speechelo - Speechelo@sonavel.us-  At Last! Human Sounding Text To Speech 2021
134.73.142.204 FHA Program Guidelines - FHAProgramGuidelines@maxspeech.us - RE: your mortgage, Sun, 18 Apr 2021
134.73.142.222 Garden Landscaping - GardenLandscaping@flymee.us - Landscaping Designs Without Hiring Costly Professional Landscape Designers!, Sat, 17 Apr 2021
134.73.142.224 Furniture Flipping - FurnitureFlipping@secrettraining.us - Over $1,000 Per Week Flipping Furniture..., Wed, 14 Apr 2021 
134.73.142.231 Cannabidiol - Cannabidiol@lifesense.guru-  Smilz CBD inventory extremely low Thu, 15 Apr 2021

PHISHING AND SPAM ATTACK
FROM "Grace 曹向慧 - wh.dzxs02@xinyiglass.com -" : 
SUBJECT "XYG FINANCIAL REQUIREMENT--- LC" :
RECEIVED "from [45.137.22.138] (port=58343 helo=xinyiglass.com)" :
DATE/TIMESENT "Fri, 30 Apr 2021 17:28:39 "
IP ADDRESS "inetnum:45.128.0.0 - 45.159.255.255 org-name:RootLayer Web Services Ltd."

185.239.242.82 Soul-Mate -Soulmate@savagehut.us- Want to Meet Your Soulmate? Sun, 11 Apr 2021 18:59:10
NetRange:       31.210.22.0 - 31.210.23.255
NetRange:       185.239.242.0 - 185.239.242.255
netname:        SERVER-185-239-242-0     country:        NL
other connected messages
31.210.22.81 ReverseMortgageQuiz -ReverseMortgageQuiz@probiotic.guru- Take this quiz to see if you qualify for a reverse mortgage  Sat, 10 Apr 2021     
185.239.242.73 Divine Locks Method -DivineLocksMethod@heaterwood.buzz- Divine Locks Method for revitalizing your thick, full and youthful hair. Sat, 10 Apr 2021

PHISHING AND SPAM ATTACK
FROM "ABC Bitcoin - contact.34744@902-deutschinc.club -" : 
SUBJECT "Australians are making millions from Bitcoin" :
RECEIVED from [13.90.253.238] (port=41583 helo=ysc0.afrigatenews.net)  " :
DATE/TIMESENT "Sat, 10 Apr 2021 06:09:11 "
IP ADDRESS "NetRange: 13.64.0.0 - 13.107.255.255 Organization: Microsoft Corporation (MSFT) "

Hsystem volto

168.61.86.18 ABC Bitcoin - contact.86289@551-deutschhomes.club - Australians are making millions from Bitcoin, Sun, 25 Apr 2021
Refer to previous related messages.
Organization:   Microsoft Corporation (MSFT) 
NetRange:  	13.64.0.0 - 13.107.255.255
NetRange: 	20.33.0.0 - 20.128.255.255
NetRange: 	23.96.0.0 - 23.103.255.255
NetRange: 	40.64.0.0 - 40.71.255.255
NetRange: 	40.74.0.0 - 40.125.127.255
NetRange:  	52.145.0.0 - 52.191.255.255
NetRange:  	104.40.0.0 - 104.47.255.255
NetRange:  	168.61.0.0 - 168.63.255.255
13.90.210.200 ABC Bitcoin - contact.83635@463-deutschfam.club-  Australians are making millions from Bitcoin Mon, 12 Apr 2021
13.90.253.238 ABC Bitcoin - contact.34744@902-deutschinc.club-  Australians are making millions from Bitcoin Sat, 10 Apr 2021
23.96.34.209 ABC Bitcoin - contact.92079@443-deutschco.club - Australians are making millions from Bitcoin Thu, 15 Apr 2021
51.144.93.87  ABC Bitcoin - contact.30351@982-drdeutsch.club-  Australians are making millions from Bitcoin Tue, 13 Apr 2021 
52.169.239.253 ABC Bitcoin -contact.31665@517-drdeutsch.club- Australians are making millions from Bitcoin, Thu, 15 Apr 2021

23.247.53.76 Latest Bluetooth - LingoGenie@onlyhappye.bid - Multi-Language Instant Voice Translator, Wed, 5 May 2021 
OrgName: LayerHost
NetRange:       23.247.0.0 - 23.247.127.255
NetRange:       104.148.0.0 - 104.148.127.255
NetRange:       107.179.0.0 - 107.179.127.255
NetRange:       134.73.0.0 - 134.73.255.255
23.247.125.237 Bidens Secret Pills - taylor@burbositision.top -  USSR + Cold War Research + Russian Scientists = How is Trumps brain still on FIRE?, Fri, 16 Apr 2021
104.148.6.239 Cinnamon -iris@coliseum.top- FALSE: Fat + People + Cinnamon Bark = People + Cinnamon Tea, Thu, 15 Apr 2021
107.179.127.158 Biden Brain Hacks - eden@dard.top - Russians developed secret brain enhancement drugs during the USSR. Now college kids..., Sun, 2 May 2021
134.73.142.197 Speechelo - Speechelo@sonavel.us-  At Last! Human Sounding Text To Speech 2021
134.73.142.204 FHA Program Guidelines - FHAProgramGuidelines@maxspeech.us - RE: your mortgage, Sun, 18 Apr 2021
134.73.142.222 Garden Landscaping - GardenLandscaping@flymee.us - Landscaping Designs Without Hiring Costly Professional Landscape Designers!, Sat, 17 Apr 2021
134.73.142.224 Furniture Flipping - FurnitureFlipping@secrettraining.us - Over $1,000 Per Week Flipping Furniture..., Wed, 14 Apr 2021 
134.73.142.231 Cannabidiol - Cannabidiol@lifesense.guru-  Smilz CBD inventory extremely low Thu, 15 Apr 2021
134.73.142.231 Home Depot Shopper Feedback - HomeDepotOpinionRequested@jointflx.co -, Claim Your Fifty Dollar Home Depot Offer, Fri, 16 Apr 2021 
134.73.142.233 IRA Guide - contact@ideaszilla.us-  The best way to invest in gold,  Wed, 14 Apr 2021
134.73.142.239 BidenMedicarePlans -BidenMedicare@producthut.us- Compare Affordable Plans From Top Carriers Today! Thu, 15 Apr 2021
134.73.142.242 Badass Solar Charger -SolarPowerBank@smartpad.today- This Solar Charger Is A Must Have, Thu, 15 Apr 2021