Vigor Filter detects spam attempts
For the last few days, I’m informed by the router that an unwanted protocol is blocked:
Event Time : 2013/10/23 05:58:14
, [CSM_AE] [eDonkey] [Block]
Packet info: 192.168.0.200:2525 -> 208.75.123.194:55760, PR tcp
-AP-----------------------------------------------
and that happens once every two hours or so, give or take a few minutes. Receiving port chnaanges (obviously), but the address is always the same.

Port 2525 means PMAS…
Actually, there is nothing wrong. PMAS will contact the sending mailserver to see if that server accepts mail for the user specified in the message beging the sender. Only, as I found out earlier, this will cause a problem if this user has a very long name that seems to resemble the signature of this eDonkey protocol.
Hence the message.
The sending address has been identified as a server at constantcontact.com, a company offering the ability to send bulk email; at least, their home page states:

Be Where Your Customers
are Every Day: Their Inbox

With Email Marketing, you’re right there. Try it free for 60 days.

At the look of the site URL, it uses a Java program to send out mail. That explains the long usernames.

It seems someone tried this site. And since I’m not interested (I think) I blocked it where it should be blocked: at the gate.