Facebook
TwitterFirst off, here's the version and platform:
12.5.30 Ubuntu 14.04 1205160608.09
I keep getting emails telling me that KAV has found a virus:
From: "Parallels Panel KAV" <kav-handler@somehost.com>
To: "System Administrator" <postmaster@somehost.com>
Subject: A trojan has been detected !
Dear System Administrator,
A message with the following attributes was not delivered because it contains an infected object.
Sender = burke.23@rozdilskylaw.ca (may be forged)
Recipients = user@somedomain.com
Subject = Wrong model
Message-ID = <14c31dd773ac98937eeaf92983dff5b1@rokylzdilsaw.ca>
--- Antivirus report ---
The following trojan was found:
Trojan-Downloader.JS.Agent.mwp
Detected threat is highly dangerous
--- Antivirus report ---
--------------------------------------------
Date: Wed, 26 Oct 2016 01:19:42 -0400
To: user@somedomain.com
From: "Saundra Burke" <Burke.23@rozdilskylaw.ca>
Reply-To: "Saundra Burke" <Burke.23@rozdilskylaw.ca>
Subject: Wrong model
Message-ID: <14c31dd773ac98937eeaf92983dff5b1@rokylzdilsaw.ca>
X-Priority: 3
X-Mailer: PHPMailer 5.2.2 (http://code.google.com/a/apache-extras.org/p/phpmailer/)
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="b1_14c31dd737eeaf973ac9892983dff5b1"
--010-KAV-Handler--
With the level of information that these warnings give, I don't see how to take any action on this. I don't have the received headers I would need to know for sure where it's from.
Normally, I get one of these every couple of weeks.
But the botnets/spammers are doing a run, and I'm getting about 100 of these a day.
How can I either turn this notification off, or configure it to send the full headers, or go find the offending message file myself?
12.5.30 Ubuntu 14.04 1205160608.09
I keep getting emails telling me that KAV has found a virus:
From: "Parallels Panel KAV" <kav-handler@somehost.com>
To: "System Administrator" <postmaster@somehost.com>
Subject: A trojan has been detected !
Dear System Administrator,
A message with the following attributes was not delivered because it contains an infected object.
Sender = burke.23@rozdilskylaw.ca (may be forged)
Recipients = user@somedomain.com
Subject = Wrong model
Message-ID = <14c31dd773ac98937eeaf92983dff5b1@rokylzdilsaw.ca>
--- Antivirus report ---
The following trojan was found:
Trojan-Downloader.JS.Agent.mwp
Detected threat is highly dangerous
--- Antivirus report ---
--------------------------------------------
Date: Wed, 26 Oct 2016 01:19:42 -0400
To: user@somedomain.com
From: "Saundra Burke" <Burke.23@rozdilskylaw.ca>
Reply-To: "Saundra Burke" <Burke.23@rozdilskylaw.ca>
Subject: Wrong model
Message-ID: <14c31dd773ac98937eeaf92983dff5b1@rokylzdilsaw.ca>
X-Priority: 3
X-Mailer: PHPMailer 5.2.2 (http://code.google.com/a/apache-extras.org/p/phpmailer/)
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="b1_14c31dd737eeaf973ac9892983dff5b1"
--010-KAV-Handler--
With the level of information that these warnings give, I don't see how to take any action on this. I don't have the received headers I would need to know for sure where it's from.
Normally, I get one of these every couple of weeks.
But the botnets/spammers are doing a run, and I'm getting about 100 of these a day.
How can I either turn this notification off, or configure it to send the full headers, or go find the offending message file myself?
