Every single entry that is shown is a China IP (SRC=) trying to gain access to MySQL (DPT=3306)
Sure hope you don't have a wildcard placeholder for host for any user with privileges
eg:
Code:
grant ALL to dev_wants_root@'%' identified by 'weak_ass_password'
And this
wildcard host should NEVER be allowed for mysql_root.
Modern installations of mysql force run the security/hardening script.
It removes % for mysql_root, I believe and sets passwords for accounts that don't have one.
Other accounts you'll have to manually inspect with
Code:
mysql -uroot -p -e "use mysql; select user,host from user where host = '%';"
Good Luck.