I have been receiving atleast 2 virus emails PER day from this person for the last 50 days continously and this is the mail header


From big@boss.com Thu Mar 13 23:27:28 2003
X-Apparently-To: my@email.address via 216.136.172.21; 14 Mar 2003 07:27:29 -0800 (PST)
Return-Path: <big@boss.com>
Received: from my.server.ip.address (EHLO my.smtp.server) (my.server.ip.address) by mta533.mail.yahoo.com with SMTP; 14 Mar 2003 07:27:29 -0800 (PST)
Received: from VEGETA (bprc-dhcp-200.mps.ohio-state.edu [128.146.135.200]) by my.smtp.server (8.11.6/8.11.6) with ESMTP id h2EFRR604566 for <my@email.address>; Fri, 14 Mar 2003 09:27:28 -0600
Message-Id: <200303141527.h2EFRR604566@my.smtp.server>
From: big@boss.com
To: my@email.address
Subject: Re: Document
Date: Fri, 14 Mar 2003 7:27:28 --0800
Importance: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MSMail-Priority: Normal
X-Priority: 3 (Normal)
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="CSmtpMsgPart123X456_000_00040D3B"
Content-Length: 212



my@email.address
my.server.ip.address
my.smtp.server


I have changed only the above 3 things
and left all the OTHERS undisturbed

1) so is the suspect computer bprc-dhcp-200.mps.ohio-state.edu ?

2) if so can anyone tell me who is the ISP for that computer so that I can report it to them ?

3) or is there anywhere else I can make a report ?


Thanks

chris

Forward the e-mail header w/ your explanation to abuse@ohio-state.edu... in the meantime you can block them w/ your MTA and iptables too if you wanna be downright nasty ;)

---www.sekure.us---

Hi,

128.146.135.200 looks like a computer and not a mail server. Maybe just an innocent student who got a virus in his outlook and sends email without his knowledge.

emails are coming directly form VEGETA (bprc-dhcp-200.mps.ohio-state.edu [128.146.135.200]) to your.smtp.server

However since his return address is From: big@boss.com, can't determine if it is intentional or the work of a virus itself.

:homer:

email sent to "abuse@ohio"

will keep posted on developments.