baran_xrain
June 6th, 2015, 12:01
با سلام آنلاليز اين log چيه لطفا راهنمايي كنيد. يك سرور مجازي centos هست. لطفا براي رفع مشكل و بلاك نشدن آي پي، كمك كنيد.
X.X.X.X آي پي سرور هست
ABUSE - outgoing Dos Attack
Example DNS responses from your resolver during this attack are given below.
Date/timestamps (far left) are UTC.
2015-06-05 23:01:51.480211 IP (tos 0x0, ttl 51, id 33318, offset 0, flags [+], proto UDP (17), length 1500) X.X.X.X.53 > 66.150.121.x.59983: 40128| 12/0/1 067.cz. RRSIG[|domain]
0x0000: 4500 05dc 8226 2000 3311 a13b b2a2 cfd4 E....&..3..;....
0x0010: 4296 79a2 0035 ea4f 0f7a 0bbe 9cc0 8380 B.y..5.O.z......
0x0020: 0001 000c 0000 0001 0330 3637 0263 7a00 .........067.cz.
0x0030: 00ff 0001 c00c 002e 0001 0000 0394 021a ................
0x0040: 0063 0702 0000 0708 5732 f143 5551 bdc3 .c......W2.CUQ..
0x0050: de3a .:
2015-06-05 23:01:51.480604 IP (tos 0x0, ttl 51, id 33319, offset 0, flags [+], proto UDP (17), length 1500) X.X.X.X.53 > 66.150.121.x.59983: 40128| 12/0/1 067.cz. RRSIG[|domain]
0x0000: 4500 05dc 8227 2000 3311 a13a b2a2 cfd4 E....'..3..:....
0x0010: 4296 79a2 0035 ea4f 0f7a a722 9cc0 8380 B.y..5.O.z.\"....
0x0020: 0001 000c 0000 0001 0330 3637 0263 7a00 .........067.cz.
0x0030: 00ff 0001 c00c 002e 0001 0000 0394 021a ................
0x0040: 0063 0702 0000 0708 5732 f143 5551 bdc3 .c......W2.CUQ..
0x0050: de3a .:
2015-06-05 23:01:51.481036 IP (tos 0x0, ttl 51, id 33320, offset 0, flags [+], proto UDP (17), length 1500) X.X.X.X.53 > 66.150.121.x.59983: 40128| 12/0/1 067.cz. RRSIG[|domain]
0x0000: 4500 05dc 8228 2000 3311 a139 b2a2 cfd4 E....(..3..9....
0x0010: 4296 79a2 0035 ea4f 0f7a 0bbe 9cc0 8380 B.y..5.O.z......
0x0020: 0001 000c 0000 0001 0330 3637 0263 7a00 .........067.cz.
0x0030: 00ff 0001 c00c 002e 0001 0000 0394 021a ................
0x0040: 0063 0702 0000 0708 5732 f143 5551 bdc3 .c......W2.CUQ..
0x0050: de3a
X.X.X.X آي پي سرور هست
ABUSE - outgoing Dos Attack
Example DNS responses from your resolver during this attack are given below.
Date/timestamps (far left) are UTC.
2015-06-05 23:01:51.480211 IP (tos 0x0, ttl 51, id 33318, offset 0, flags [+], proto UDP (17), length 1500) X.X.X.X.53 > 66.150.121.x.59983: 40128| 12/0/1 067.cz. RRSIG[|domain]
0x0000: 4500 05dc 8226 2000 3311 a13b b2a2 cfd4 E....&..3..;....
0x0010: 4296 79a2 0035 ea4f 0f7a 0bbe 9cc0 8380 B.y..5.O.z......
0x0020: 0001 000c 0000 0001 0330 3637 0263 7a00 .........067.cz.
0x0030: 00ff 0001 c00c 002e 0001 0000 0394 021a ................
0x0040: 0063 0702 0000 0708 5732 f143 5551 bdc3 .c......W2.CUQ..
0x0050: de3a .:
2015-06-05 23:01:51.480604 IP (tos 0x0, ttl 51, id 33319, offset 0, flags [+], proto UDP (17), length 1500) X.X.X.X.53 > 66.150.121.x.59983: 40128| 12/0/1 067.cz. RRSIG[|domain]
0x0000: 4500 05dc 8227 2000 3311 a13a b2a2 cfd4 E....'..3..:....
0x0010: 4296 79a2 0035 ea4f 0f7a a722 9cc0 8380 B.y..5.O.z.\"....
0x0020: 0001 000c 0000 0001 0330 3637 0263 7a00 .........067.cz.
0x0030: 00ff 0001 c00c 002e 0001 0000 0394 021a ................
0x0040: 0063 0702 0000 0708 5732 f143 5551 bdc3 .c......W2.CUQ..
0x0050: de3a .:
2015-06-05 23:01:51.481036 IP (tos 0x0, ttl 51, id 33320, offset 0, flags [+], proto UDP (17), length 1500) X.X.X.X.53 > 66.150.121.x.59983: 40128| 12/0/1 067.cz. RRSIG[|domain]
0x0000: 4500 05dc 8228 2000 3311 a139 b2a2 cfd4 E....(..3..9....
0x0010: 4296 79a2 0035 ea4f 0f7a 0bbe 9cc0 8380 B.y..5.O.z......
0x0020: 0001 000c 0000 0001 0330 3637 0263 7a00 .........067.cz.
0x0030: 00ff 0001 c00c 002e 0001 0000 0394 021a ................
0x0040: 0063 0702 0000 0708 5732 f143 5551 bdc3 .c......W2.CUQ..
0x0050: de3a