Hi Folks I am on the NSPSEC list and periodically see lists of compromised hosts posted. I Know Telecom has someone on the list but apart from that I am pretty sure I'm the only one from NZ. I am prepared to extract out NZ stuff and pass it on to ISPs if I can be sure it will be acted on. I am not prepared to fire it at generic abuse@ along with all the other high noise traffic. Currently I have a list of confirmed spyeye infections -- I've passes stuff the TCL where I know people and Orcon my own ISP and I have a few for both callplus and maxnet. Russell Fulton Information Security Officer, The University of Auckland New Zealand PS. I highly recommend nsp sec: http://puck.nether.net/mailman/listinfo/nsp-security -- the catch is that you need to be well known enough in the security community to get vouches from existing members or other well known and trusted folk.