I too am receiveing a large amount of viruses from xtra customers, a lot more
over the weekend than ever before... take a look at the averages (this is a
small mail server)...
Virus stats: http://ns.unix.co.nz/mrtg/virus/virus.html
Email flow: http://ns.unix.co.nz/mrtg/mesgs/mesgs.html
Current threat: Sober.j(a)MM virus
Spam / virus / clean: http://ns.unix.co.nz/~icepick/spamstats.png
The last link shows the amount of TRUE email that comes through, not much at
all.
Barry
Quoting Lesley Walker
Please forgive me if this is off-topic, I don't know anywhere else to ask for help.
How does one get the attention of the abuse people at Xtra? A mailing list that I administer is being attacked by viruses that originate at a Jetstream address (details below). I sent email to abuse(a)xtra.co.nz a couple of days ago and have not had the courtesy of a response, not even a "sod off" answer, or even a bounce.
The viruses come in batches from a consistent IP address - the address has changed a couple of times but I think it's the same infected machine because the messages have a consistent "look and feel".
The received header looks like this:
Received: from srunjn.com (210-86-89-213.jetstream.xtra.co.nz [210.86.89.213]) by [munged] with SMTP id iB1CGab26947; Thu, 2 Dec 2004 01:16:36 +1300 (NZDT)
The envelope "from" appears to be randomly generated nonsense as it is different every time, but the originating IP address is consistent for each batch.
The messages are designed to look like bounces from various ISPs and companies but in fact contain virus attachments.
The latest originating address is 210.86.90.246, as at Sat, 4 Dec 2004 08:36:21 +1300 (NZDT)
-- Lesley Walker, Wellington, New Zealand LRW(a)clear.net.nz http://home.clear.net.nz/pages/lrw http://walkinguphills.blogspot.com/
_______________________________________________ NZNOG mailing list NZNOG(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/nznog
------------------------------------------------------------- This mail sent through UnixCo Webmail: http://www.unix.co.nz/