adusei
asked on
Undeliverable email message
Emails from our domain (ccmsgov.us) are not delivered. This is the undeliverable email message I get:
Sent: 5/21/2008 12:21 PM
The following recipient(s) could not be reached:
Adusei (isaac@adusei.com) on 5/21/2008 12:21 PM
There was a SMTP communication problem with the recipient's email server. Please contact your system administrator.
<ccmailserv.ccmsgov.us #5.5.0 smtp;550-"JunkMail rejected - (ccmailserv.ccmsgov.us) [12.173.75.18] is in an RBL,>
Also see the attached message.
Please, I would need your help as soon as you can. Thanks.
Isaac
ATT231285.txt
Sent: 5/21/2008 12:21 PM
The following recipient(s) could not be reached:
Adusei (isaac@adusei.com) on 5/21/2008 12:21 PM
There was a SMTP communication problem with the recipient's email server. Please contact your system administrator.
<ccmailserv.ccmsgov.us #5.5.0 smtp;550-"JunkMail rejected - (ccmailserv.ccmsgov.us) [12.173.75.18] is in an RBL,>
Also see the attached message.
Please, I would need your help as soon as you can. Thanks.
Isaac
ATT231285.txt
I think you have to contact your ISP your DNS name seems to be in a black hole list
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Yes, I think our domain has been put on the blacklist. when I go to this site:
************************** ********** ********** ********** ********** ********** ********** ********** *
http://cbl.abuseat.org/lookup.cgi?ip=12.173.75.18 this is what I get:
IP Address 12.173.75.18 is currently listed in the CBL.
It was detected at 2008-05-22 12:00 GMT (+/- 30 minutes), approximately 4 hours, 30 minutes ago.
ATTENTION: This IP is infected with, or NATting for a computer infected with a high volume spam sending trojan - it is participating in a botnet.
You need to patch your system and then fix/remove the trojan. Do this before delisting, or you're most likely to be listed again almost immediately.
************************** ********** ********** ********** ********** ********** ********** ********** ********** ********
My question is how do I patch my system to remove remove this trojan. I have Trend Micro running on all PCs and servers though. This will help me request for delisting our domain from the blacklist.
Thanks.
Isaac
**************************
http://cbl.abuseat.org/lookup.cgi?ip=12.173.75.18 this is what I get:
IP Address 12.173.75.18 is currently listed in the CBL.
It was detected at 2008-05-22 12:00 GMT (+/- 30 minutes), approximately 4 hours, 30 minutes ago.
ATTENTION: This IP is infected with, or NATting for a computer infected with a high volume spam sending trojan - it is participating in a botnet.
You need to patch your system and then fix/remove the trojan. Do this before delisting, or you're most likely to be listed again almost immediately.
**************************
My question is how do I patch my system to remove remove this trojan. I have Trend Micro running on all PCs and servers though. This will help me request for delisting our domain from the blacklist.
Thanks.
Isaac
Is .18 the primary IP?
If it is, then it is probably a workstation that is infected - have a look at your router logs and you will see a stack of traffic going out on port 25
Ideally, you want to set your router so only a few servers can go out on port 25.
If it is, then it is probably a workstation that is infected - have a look at your router logs and you will see a stack of traffic going out on port 25
Ideally, you want to set your router so only a few servers can go out on port 25.