| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 51344 | 2004-11-18 08:41:00 | Being sent viruses via e-mail | george12 (7) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 293590 | 2004-11-18 08:41:00 | Hi, I am having a problem, namely viruses being sent to multiple business e-mail addresses (mostly staff @ jgih.com and advertising @ jgih.com). I have received these over the last two months, always from the same person. Reverse DNS has tracked them to be an Ihug user in Hamilton. I have sent e-mails to Ihug with no response - just more of the viruses sent. The e-mail 'from' address is always a randomly generated, spoofed address at yahoo or MSN, ie. vfbweyfbewq@yahoo.com or 2358yvhshd74@msn.com. What actions can I take to stop these e-mails being sent? E-mailing Ihug is not helping. I am not thick enough to download the attachment of such e-mails, but it is annoying and offensive. Cheers George |
george12 (7) | ||
| 293591 | 2004-11-18 08:50:00 | > I am having a problem, namely viruses being sent to > multiple business e-mail addresses (mostly staff @ > jgih.com and advertising @ jgih.com). I think you will find that virus has pick up your domain name from some one address book & that could be one reason why you are getting those e-mails. > I have received these over the last two months, > always from the same person. Reverse DNS has tracked > them to be an Ihug user in Hamilton. > What actions can I take to stop these e-mails being > sent? Not much, the only thing you can do is if you don’t use advertising & staff jgih.com is to block those addresses. Also have you tried phoning Ihug? |
stu120404 (268) | ||
| 293592 | 2004-11-18 08:52:00 | have you tried a program that stops spam from getting into your inbox? | Prescott (11) | ||
| 293593 | 2004-11-18 08:54:00 | spam or the other nasties /edit |
Prescott (11) | ||
| 293594 | 2004-11-18 09:36:00 | Ring Ihug, Righto, I will do that tomorrow. I want to get this guy (or virus the poor guy has). Cheers |
george12 (7) | ||
| 293595 | 2004-11-18 09:51:00 | If this guy in Hamilton is spamming emails, its possible he has some open ports on his computer. Its Ihug responsiblilty to stop this person spamming, its breach of there terms and conditions surely.....even if the persons not aware they are doing it. Other ISPs block users if they are spamming, its how there servers end up on blacklists |
Cave Servant (6124) | ||
| 293596 | 2004-11-18 09:57:00 | > What actions can I take to stop these e-mails being > sent? E-mailing Ihug is not helping. I am not thick > enough to download the attachment of such e-mails, > but it is annoying and offensive. It's a fact of life if you run a mail server that you will have to deal with viruses and spam. An average day on our mail server picks up about 50+% spam and 7 - 10% viruses. It's impossible to deal with them all due to the pure volume. If you're e-mailing ihug, this should be going to their Abuse department, their support team won't be able to do anything about it. You should be including the entire message as an attachment so that they can look at the headers and determine the originating IP and time stamp - dial-up addresses are dynamic so they have to trawl through shedloads of logs to find who was using what address at what time. Don't just copy and paste the headers in as there is no way to tell if they are being manipulated or not. The message must be as an attachment to preserve it's original information - can't stress that enough. Also remember that they have a shedload of other things to deal with as well, so one home user on another network with a virus complaint isn't going to be at the top of the priority list. I've worn the Abuse Officer hat for a while and was inundated with numb nuts incorrectly reporting messages as spam that weren't originating from our network, people who sent in 25MB firewall logs showing absolutely nothing. There is also no obligation for them to give you a response outisde an automated "we got your e-mail" - they can't reveal any details to you regarding the customer anyway, and they don't have to reveal any action taken (if any at all). Who's to say they haven't already contacted the user involved and they've managed to reinfect themselves again. |
ninja (1671) | ||
| 293597 | 2004-11-18 10:02:00 | > If this guy in Hamilton is spamming emails, its > possible he has some open ports on his computer. Its > Ihug responsiblilty to stop this person spamming, its > breach of there terms and conditions surely.....even > if the persons not aware they are doing it. > > Other ISPs block users if they are spamming, its how > there servers end up on blacklists Viruses and deliberate spam mailouts are two very different things. How would you feel if your kid (or other person) downloaded something off the web and your machine turned into a spam relay or virus bot. I doubt you'd be happy if your ISP said "hey you violated T&C, even though you didn't know about it, your account has been permanently closed" |
ninja (1671) | ||
| 293598 | 2004-11-18 10:05:00 | I have had to clean machines in the past where their ISP had disconnected them due to broadcasting viruses and spam. I think its a great idea,these people don't care and won't take any action untill they are forced into it. |
metla (154) | ||
| 293599 | 2004-11-18 10:48:00 | The e-mail was to abuse@ihug.[net-or-co].nz. It included the message (.eml file) as an attachment. I provided every detail they could possibly want, and got no reply, ever. It could be a virus they have, but if that is the case as metla said, it would be doing them a service letting them know as well as stopping my viruses. I agree ninja, I get lots of spam, but not viruses until now. I suppose people just see Port 25 as a tube, that it is their duty to inject junk into.... Cheers George |
george12 (7) | ||
| 1 2 3 | |||||