Subject: B-TSI-003993477 (011030-21593211)
From: abuse@mindspring.net
Date: Tue, 30 Oct 2001 14:09:09 -0500 (EST)
To: abuse@UU.NET, firebird@digitaldaemon.com

Hello, 

We have taken steps to secure this account and will be providing our 
customer with information on trojan horse/virus detection and removal. 


Regards, 

Beth Milliken
Abuse Engineer
EarthLink Networks



A virus intrusion attempt via your network IP 63.57.237.226
has been made to IP 63.105.9.60 domain www.jak.nl.

A Nimda intrusion attempt was made against www.jak.nl:
  Remote IP Address : 63.57.237.226, Port : 3697
  Server IP Address : 63.105.9.60, Port : 80
  Request URI : /scripts/root.exe?/c+dir
  Time : Mon Oct 29 12:23:20 2001 (EST)

Please advice your user or customer that their system has been
compromised and is actively being used as launch point for attacking
other systems!

Thanks for taking the appropriate action in this matter.

Sincerely,
FireBird

http://www.digitaldaemon.com/FreeBSD/firebird/


http://www.mindspring.com/aboutms/policy.html