[munged]::443 2607:5300:60:5d0::1 - - [05/Jan/2020:05:52:17 +0100] "POST /[munged]: HTTP/1.1" 200 6982 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 2607:5300:60:5d0::1 - - [05/Jan/2020:05:52:22 +0100] "POST /[munged]: HTTP/1.1" 200 6852 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 2607:5300:60:5d0::1 - - [05/Jan/2020:05:52:22 +0100] "POST /[munged]: HTTP/1.1" 200 6852 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 2607:5300:60:5d0::1 - - [05/Jan/2020:05:52:25 +0100] "POST /[munged]: HTTP/1.1" 200 6850 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 2607:5300:60:5d0::1 - - [05/Jan/2020:05:52:25 +0100] "POST /[munged]: HTTP/1.1" 200 6850 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 2607:5300:60:5d0::1 - - [05/Jan/2020:05:52:28 +0100] "POST /[munged]: HTTP/1.1"

1599151783 - 09/03/2020 18:49:43 Host: 191.254.221.1/191.254.221.1 Port: 445 TCP Blocked

firewall-block, port(s): 5806/tcp

Sep  4 09:06:23 ny01 sshd[8051]: Failed password for root from 112.85.42.174 port 32520 ssh2
Sep  4 09:06:38 ny01 sshd[8051]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 32520 ssh2 [preauth]
Sep  4 09:06:44 ny01 sshd[8101]: Failed password for root from 112.85.42.174 port 63790 ssh2

Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 63.142.208.231, Reason:[(sshd) Failed SSH login from 63.142.208.231 (US/United States/63.142.208.231.nwinternet.com): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER

SSH-BruteForce

Sep  3 18:49:20 mellenthin postfix/smtpd[21042]: NOQUEUE: reject: RCPT from unknown[14.251.229.180]: 554 5.7.1 Service unavailable; Client host [14.251.229.180] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/14.251.229.180; from= to= proto=ESMTP helo=

Invalid user psh from 118.122.91.148 port 36953

2020-07-23 05:57:12,823 fail2ban.actions        [18606]: NOTICE  [sshd] Ban 117.211.192.70
2020-07-23 06:12:54,023 fail2ban.actions        [18606]: NOTICE  [sshd] Ban 117.211.192.70
2020-07-23 06:28:50,529 fail2ban.actions        [18606]: NOTICE  [sshd] Ban 117.211.192.70
2020-07-23 06:44:59,375 fail2ban.actions        [18606]: NOTICE  [sshd] Ban 117.211.192.70
2020-07-23 07:01:32,640 fail2ban.actions        [18606]: NOTICE  [sshd] Ban 117.211.192.70
...

 TCP (SYN) 112.116.155.205:38811 -> port 5365, len 44

(smtpauth) Failed SMTP AUTH login from 52.156.169.35 (AU/Australia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-04 04:29:20 login authenticator failed for (ADMIN) [52.156.169.35]: 535 Incorrect authentication data (set_id=info@fmc-co.com)

Dovecot Invalid User Login Attempt.

Sep  4 13:24:27 IngegnereFirenze sshd[30324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.189.161  user=root
...

Sep  4 16:21:58 pkdns2 sshd\[22441\]: Failed password for root from 112.85.42.94 port 14745 ssh2Sep  4 16:21:59 pkdns2 sshd\[22441\]: Failed password for root from 112.85.42.94 port 14745 ssh2Sep  4 16:22:02 pkdns2 sshd\[22441\]: Failed password for root from 112.85.42.94 port 14745 ssh2Sep  4 16:23:48 pkdns2 sshd\[22508\]: Failed password for root from 112.85.42.94 port 26777 ssh2Sep  4 16:28:23 pkdns2 sshd\[22698\]: Failed password for root from 112.85.42.94 port 60209 ssh2Sep  4 16:29:18 pkdns2 sshd\[22741\]: Failed password for root from 112.85.42.94 port 12546 ssh2
...

Invalid user pi from 69.119.85.43 port 41922

2020-08-24 12:54:46,491 fail2ban.actions        [1312]: NOTICE  [sshd] Ban 192.144.187.153
2020-08-24 13:12:51,315 fail2ban.actions        [1312]: NOTICE  [sshd] Ban 192.144.187.153
2020-08-24 13:30:44,923 fail2ban.actions        [1312]: NOTICE  [sshd] Ban 192.144.187.153
2020-08-24 13:48:27,347 fail2ban.actions        [1312]: NOTICE  [sshd] Ban 192.144.187.153
2020-08-24 14:06:19,458 fail2ban.actions        [1312]: NOTICE  [sshd] Ban 192.144.187.153
...