[H1] Blocked by UFW

DATE:2020-07-29 05:48:33, IP:187.221.220.42, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)

(From bernard.matthaei@gmail.com) Hi there,

Read this if you haven’t made your first $100 from  bafilefamilychiro.com online yet...
 
I've heard it a million times...

I'm going to quit my job, I'm going to start my own business, I'm going to live where I want, and I'm going to live the dream...

Enough talk.

Everyone's got a vision.

Fine.

What exactly have you done lately to make it come true?

Not much, you say?

If everyone suddenly got injected with the truth serum, you'd hear people talk a different game:

I've got huge dreams. But I'm a failure, because I did nothing to make these dreams come true. I'm too afraid to start. I procrastinate about taking action. I will probably never do anything or amount to anything in my life, because I choose to stay in my comfort zone.

Incidentally, the first step to changing your life is to be honest about how you feel.

Are you afraid?

Fine.

Are you anxious?

Fine.

Do you procrastinate?

Great.

This means you have to start

Jul 29 13:32:35 sso sshd[7751]: Failed password for root from 222.186.190.2 port 63806 ssh2
Jul 29 13:32:38 sso sshd[7751]: Failed password for root from 222.186.190.2 port 63806 ssh2
...

Failed password for invalid user nijian from 201.231.172.33 port 24705 ssh2

37.187.72.146 - - [29/Jul/2020:12:53:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2418 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
37.187.72.146 - - [29/Jul/2020:12:53:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2438 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
37.187.72.146 - - [29/Jul/2020:12:54:13 +0100] "POST /wp-login.php HTTP/1.1" 200 2433 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36"
...

Dovecot Invalid User Login Attempt.

Invalid user huiliu from 213.32.105.159 port 34204

07/28/2020-23:49:07.340999 180.242.154.163 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433

Jul 29 12:24:43 inter-technics sshd[20770]: Invalid user zookeeper from 120.70.100.54 port 58514
Jul 29 12:24:43 inter-technics sshd[20770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.54
Jul 29 12:24:43 inter-technics sshd[20770]: Invalid user zookeeper from 120.70.100.54 port 58514
Jul 29 12:24:45 inter-technics sshd[20770]: Failed password for invalid user zookeeper from 120.70.100.54 port 58514 ssh2
Jul 29 12:30:01 inter-technics sshd[21099]: Invalid user word from 120.70.100.54 port 58163
...

SSH Brute Force

Jul 29 12:52:17 ns3164893 sshd[7786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.229.122
Jul 29 12:52:20 ns3164893 sshd[7786]: Failed password for invalid user bulbakov from 148.70.229.122 port 46864 ssh2
...

SSH Brute Force

(From bernard.matthaei@gmail.com) Hi there,

Read this if you haven’t made your first $100 from  bafilefamilychiro.com online yet...
 
I've heard it a million times...

I'm going to quit my job, I'm going to start my own business, I'm going to live where I want, and I'm going to live the dream...

Enough talk.

Everyone's got a vision.

Fine.

What exactly have you done lately to make it come true?

Not much, you say?

If everyone suddenly got injected with the truth serum, you'd hear people talk a different game:

I've got huge dreams. But I'm a failure, because I did nothing to make these dreams come true. I'm too afraid to start. I procrastinate about taking action. I will probably never do anything or amount to anything in my life, because I choose to stay in my comfort zone.

Incidentally, the first step to changing your life is to be honest about how you feel.

Are you afraid?

Fine.

Are you anxious?

Fine.

Do you procrastinate?

Great.

This means you have to start

 TCP (SYN) 185.173.35.29:55847 -> port 22, len 44