Huge amounts of Spyware being sent from server
Posted on 2007-10-12
Ok. I have a company that has been sending huge amounts of spam each day. we have made sure that it not an open relay.
I have Installed AVG for networks and scanned each machine
I have also run ad-aware, spybot and windows defender scans on each machine and removed anything that was a threat. all machines have system restore turned off.
each machine including the server is now apparently free of threats, however, when i check the queues in system manager taht i have frozen, there is dozens of spam waiting to go out as " 'RANDOMNAME'@YAHOO.COM "
Is there anyway that i can try to find out which machine is sending this out apart from turning them off individually and seeing which one is the culporate. Or is there a way I can just set my SMTP connector to only allow specific users to send the e-mail through the server and all other e-mail addresses will be denied?
There is 11 machines on the network all running XP Professional SP2 and 1 server running SBS2003 with latest updates
any ideas or help would be hugely appreciated as this is very urgent now