Outbound Traffic To APNIC?

Long story short...

I had been getting a ton of spam from APNIC on my exchange server so I blocked their IP range on my firewall. Now my log file is full of attempted connections to and from APNIC at about 8 minute intervals.

The inbound blocks are fine. However, I am worried about the outbound. I'll add a small sample of the firewall log and a copy of the hijackthis log to the bottom of the post.

Any help would be greatly appreciated.

Russ


Firewall Log:

05/05/2005 10:16:37.381229 2x tl0 @100:9 b 211.216.50.160,domain -> pia146-90.pioneernet.net[66.114.146.90],domain PR udp len 20 144 K-S IN
05/05/2005 10:16:41.223880 2x tl0 @100:9 b 211.216.50.150,domain -> pia146-90.pioneernet.net[66.114.146.90],domain PR udp len 20 144 K-S IN
05/05/2005 10:16:42.157613 2x tl0 @65535:0 b pia146-90.pioneernet.net[66.114.146.90],domain -> 211.216.50.160,domain PR udp len 20 61 K-S IN
05/05/2005 10:16:42.158206 2x tl0 @65535:0 b pia146-90.pioneernet.net[66.114.146.90],domain -> 211.216.50.150,domain PR udp len 20 61 K-S IN
05/05/2005 10:16:42.158462 2x tl0 @65535:0 b pia146-90.pioneernet.net[66.114.146.90],domain -> 211.216.50.160,domain PR udp len 20 61 K-S IN

~removed Hijackthis Log....Bubba~

 

Unfortunately Russ....we no longer provide HJT analysis as per this announcement .

The are many forums that do, and two of the best are CastleCops & Net Intergration. Be sure to read their FAQ/rules before posting your log.

Hopefully what remains of your post will be enough for others to continue with as they attempt to assist with your question\problem.

Regards,
Bubba

 

Thanks for the information. Sorry about that.

Russ