It appears as my UNIX account has been accessed...it is a good idea to change passwords now and again, especially if one is used across various logins... ;)
--------------------- ftpd-xferlog Begin ------------------------
TOTAL KB OUT: 105964KB (105MB)
TOTAL KB IN: 134KB (0MB)
Outgoing Anonymous FTP Transfers:
/pub/linuxtools -> 82.16.108.211 (2 Times)
Incoming User FTP Transfers:
192.168.0.136 -> /home/rod (User: rod)
67.228.202.72 -> /home/rod (User: rod) (2 Times)
67.228.202.72 -> /home/rod/SJphoneLnx-299a/lib/html (User: rod) (2 Times)
67.228.202.72 -> /home/rod/photoalbum/cgi-bin (User: rod)
------------------------------------------------------------------------
Using REVERSE DNS LOOKUP:
http://remote.12dt.com/rns/
Results
67.228.202.72 resolves to
"host2.dnsgem.com"
Top Level Domain: "dnsgem.com"
Country IP Address: UNITED STATES
Domain Name: DNSGEM.COM
Registrar: DIRECTI INTERNET SOLUTIONS PVT. LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Whois Server: whois.PublicDomainRegistry.com
Referral URL: http://www.PublicDomainRegistry.com
Name Server: NS1.DNSGEM.COM
Name Server: NS2.DNSGEM.COM
Status: ok
Updated Date: 09-feb-2009
Creation Date: 10-feb-2006
Expiration Date: 10-feb-2010
No harm done that I've noticed as yet...
Whilst checking the daily log here are the email stats:
MailScanner Status:
937 messages Scanned by MailScanner
9.5 Total MB
801 Spam messages detected by MailScanner
12 hits from MailScanner SpamAssassin cache
10 Content Problems found by MailScanner
136 Messages delivered by MailScanner
Content Report: (Total Seen = 10)
phishing tags: 4 Time(s)
web bug tags: 4 Time(s)
web bug, phishing tags: 2 Time(s)
14.5% is actual email!
------------------------------------------
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment