Solved

Symantec warning: "Your email message was unable to be sent because your mail server rejected the message"

Posted on 2006-07-13
6
14,406 Views
Last Modified: 2008-03-06
My computer has become unuseable due to the hundreds of outgoing emails to what seems random users.  Symantec floods my screen with messages saying "Your email message was unable to be sent because your mail server rejected the message".  I have followed your instructions in a previous 2004 post but had no success, also did not see a root cause in this post.  I do have the executable that infected my machine if that helps.  I am running Windows XP pro sp2 and my email client is MS Outlook 2003 with an exchange account.  My NAV is 2005 Corporate edition ver. 10.0.0.359.  This virus seems to work independent of my mail client.  I can stop NAV from displaying all the warnings if I choose not to configure "Internet E-Mail Auto-Protect" however I would prefer to find the root cause and get rid of this adware/virus.  Re-formatting is not an option.
0
Comment
Question by:mcdougp
  • 3
  • 2
6 Comments
 
LVL 32

Accepted Solution

by:
jhance earned 125 total points
ID: 17104925
It's pretty clear that the cause of this is a virus (one or more) running on your PC and sending out messages or perhaps you have become the victim of a "bot-net" controller and some spammer is using your PC to send out spam.

You should take your PC OFF the network to prevent more spam or infections from being sent out.

You should also assume that your copy of NAV is compromised and is no longer functional.  This is common.

I like to use McAfee's STINGER program as a starting point.  Get it from their web site and scan to get the nastiest stuff off.  Then UNINSTALL NAV and re-install it from the original CD.  Apply the latest update file (use a different system to download and put on a CD or floppy so you don't have to put your suspect PC on the internet) and scan.  Keep scanning until you can reboot and perform a complete scan and come up clean.

If this doesn't work after 2 or 3 cycles, you probably have a rootkit.  In that case, re-install Windows from the original CD including a format of the partition.
0
 

Author Comment

by:mcdougp
ID: 17105445
STINGER (as previously mentioned in a prior post) did not work.  I did however take advise and uninstall and reinstall NAV, this did not work either. For the time being I'll just disable notification from NAV however this will not fix the underlying problem.  A desktop snap can be viewed here: http://users.tpg.com.au/mcdougp/temp/Symantec_Spam.jpg
0
 
LVL 32

Expert Comment

by:jhance
ID: 17107016
It's really hard to provide any help when you simply say "did not work...".

I STRONGLY URGE you to FIX this problem rather than just ignoring it by disabling notifications.  Your system is clearly compromised.  If you use this for ANY purpose that involves your (or other peoples) personal information, that is clearly at risk.

If you are unwilling or unable to take corrective action, get someone to help you clean up this mess!!!
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 
LVL 32

Expert Comment

by:jhance
ID: 17107056
By the way, since you have accepted an answer to this question, you have effectively ended any further discussion of your problem and any potential solutions.

Furthermore, I am NOT motivated to assist you any further since you provided a "punishment" C grade to my attempt to help you.

Perhaps you might ask the moderators to re-open this question and you might be able to get someone else to help you but I'm signing off this question.
0
 

Expert Comment

by:jfolgert
ID: 17139109
I too am having an issue similar to the one posted on 7/13/06.  Symantec warning: "Your email message was unable to be sent because your mail server rejected the message"

Hundreds of outgoing emails to what seems random users are "trying to be sent out".  Symantec appears to error-out with messages saying "Your email message was unable to be sent because your mail server rejected the message".

I am running Windows XP pro sp2 and my email client is MS Outlook Express.  My NAV is 2006 Norton SystemWorks 2006 .  This virus seems to work independent of the mail client.  I am seeking a solution to find the root cause and get rid of this adware/virus.  Re-formatting is not an option.  


I've unstalled Norton System Works 2006 and reinstalled (thinking the NSW was compromised).  This did not resolve the issue.  

I've also loaded Microsoft's Defender (Beta 2) x86 and the Microsoft Windows Malicious Software Removal Tool (KB890830).  Both reported no errors of problems with our system.

0
 

Author Comment

by:mcdougp
ID: 17142748
Sounds as tho you have exactly what I had. I was able to fix the problem 100% and as with most things was very simple.  Can you post a question to "Security" requesting assistance for your predicament and I will respond with the solution that fixed my problem.  I am quite new to "Expert-Exchange" and am not sure exactly how the points system works so please excuse my methods if inappropriate :)
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
OnPage: Incident management and secure messaging on your smartphone
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question