Solved

Symantec warning: "Your email message was unable to be sent because your mail server rejected the message"

Posted on 2006-07-13
6
14,316 Views
Last Modified: 2008-03-06
My computer has become unuseable due to the hundreds of outgoing emails to what seems random users.  Symantec floods my screen with messages saying "Your email message was unable to be sent because your mail server rejected the message".  I have followed your instructions in a previous 2004 post but had no success, also did not see a root cause in this post.  I do have the executable that infected my machine if that helps.  I am running Windows XP pro sp2 and my email client is MS Outlook 2003 with an exchange account.  My NAV is 2005 Corporate edition ver. 10.0.0.359.  This virus seems to work independent of my mail client.  I can stop NAV from displaying all the warnings if I choose not to configure "Internet E-Mail Auto-Protect" however I would prefer to find the root cause and get rid of this adware/virus.  Re-formatting is not an option.
0
Comment
Question by:mcdougp
  • 3
  • 2
6 Comments
 
LVL 32

Accepted Solution

by:
jhance earned 125 total points
ID: 17104925
It's pretty clear that the cause of this is a virus (one or more) running on your PC and sending out messages or perhaps you have become the victim of a "bot-net" controller and some spammer is using your PC to send out spam.

You should take your PC OFF the network to prevent more spam or infections from being sent out.

You should also assume that your copy of NAV is compromised and is no longer functional.  This is common.

I like to use McAfee's STINGER program as a starting point.  Get it from their web site and scan to get the nastiest stuff off.  Then UNINSTALL NAV and re-install it from the original CD.  Apply the latest update file (use a different system to download and put on a CD or floppy so you don't have to put your suspect PC on the internet) and scan.  Keep scanning until you can reboot and perform a complete scan and come up clean.

If this doesn't work after 2 or 3 cycles, you probably have a rootkit.  In that case, re-install Windows from the original CD including a format of the partition.
0
 

Author Comment

by:mcdougp
ID: 17105445
STINGER (as previously mentioned in a prior post) did not work.  I did however take advise and uninstall and reinstall NAV, this did not work either. For the time being I'll just disable notification from NAV however this will not fix the underlying problem.  A desktop snap can be viewed here: http://users.tpg.com.au/mcdougp/temp/Symantec_Spam.jpg
0
 
LVL 32

Expert Comment

by:jhance
ID: 17107016
It's really hard to provide any help when you simply say "did not work...".

I STRONGLY URGE you to FIX this problem rather than just ignoring it by disabling notifications.  Your system is clearly compromised.  If you use this for ANY purpose that involves your (or other peoples) personal information, that is clearly at risk.

If you are unwilling or unable to take corrective action, get someone to help you clean up this mess!!!
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 
LVL 32

Expert Comment

by:jhance
ID: 17107056
By the way, since you have accepted an answer to this question, you have effectively ended any further discussion of your problem and any potential solutions.

Furthermore, I am NOT motivated to assist you any further since you provided a "punishment" C grade to my attempt to help you.

Perhaps you might ask the moderators to re-open this question and you might be able to get someone else to help you but I'm signing off this question.
0
 

Expert Comment

by:jfolgert
ID: 17139109
I too am having an issue similar to the one posted on 7/13/06.  Symantec warning: "Your email message was unable to be sent because your mail server rejected the message"

Hundreds of outgoing emails to what seems random users are "trying to be sent out".  Symantec appears to error-out with messages saying "Your email message was unable to be sent because your mail server rejected the message".

I am running Windows XP pro sp2 and my email client is MS Outlook Express.  My NAV is 2006 Norton SystemWorks 2006 .  This virus seems to work independent of the mail client.  I am seeking a solution to find the root cause and get rid of this adware/virus.  Re-formatting is not an option.  


I've unstalled Norton System Works 2006 and reinstalled (thinking the NSW was compromised).  This did not resolve the issue.  

I've also loaded Microsoft's Defender (Beta 2) x86 and the Microsoft Windows Malicious Software Removal Tool (KB890830).  Both reported no errors of problems with our system.

0
 

Author Comment

by:mcdougp
ID: 17142748
Sounds as tho you have exactly what I had. I was able to fix the problem 100% and as with most things was very simple.  Can you post a question to "Security" requesting assistance for your predicament and I will respond with the solution that fixed my problem.  I am quite new to "Expert-Exchange" and am not sure exactly how the points system works so please excuse my methods if inappropriate :)
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
In this seventh video of the Xpdf series, we discuss and demonstrate the PDFfonts utility, which lists all the fonts used in a PDF file. It does this via a command line interface, making it suitable for use in programs, scripts, batch files — any pl…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now