Solved

spamcop blacklisted me, why?

Posted on 2008-06-16
7
231 Views
Last Modified: 2010-04-18
Last week I was blacklisted by spamcop. They sent me the following details as explanation stating my email server was sending out spam:

Received: from mailserver.server.com (HELO
82.80/29.177.152.12.in-addr.arpa) (12.152.177.82)
   by [trap servername] with SMTP; 13 Jun 2008 14:xx:xx -0600
From: "Rosa Massey" <x@x>
Subject: Luxury
Date: Fri, 13 Jun 2008 12:xx:xx -0800

Can someone make sense of this info?
0
Comment
Question by:lenivan
7 Comments
 
LVL 7

Accepted Solution

by:
Raymond Jansen earned 500 total points
ID: 21796056
Could be a trojan on the network. Scan with your virus scanner, cc-cleaner, trojan hunter. Best to scan in safe mode.

0
 
LVL 25

Expert Comment

by:kieran_b
ID: 21799106
I agree with r-jansen, I find checking the firewall for which machines are generating traffic on port 25 to be faster though
0
 
LVL 7

Expert Comment

by:Raymond Jansen
ID: 21800194
True kieran_b, I always block all port 25 traffic except from the server. Could help also.

But of course this does not take away the problem. All machines still needs to be checked.
0
Integrate social media with email signatures

Is your company active on social media? Do you also use email signatures? Including social media icons in your email signature is a great way to get fans for free. Let all your email users know you’re on social media quickly and easily, in a single click.

 
LVL 25

Expert Comment

by:kieran_b
ID: 21800227
>>All machines still needs to be checked.

I agree, my point was that the logs will tell you what machine is infected.  If you have 1000 machines, manual checking is impractical
0
 
LVL 2

Expert Comment

by:dualarrow
ID: 21818646
Another possibility is your server is an open relay. If thats the case, then it doesn't take long for spammers to find you and flood spam out of your server (I know this from 1st had experience).

Try going to an open relay test site like http://www.abuse.net/relay.html and put in your details.
0
 
LVL 25

Expert Comment

by:kieran_b
ID: 21818659
The askers IP address is there to test yourself - and it is not an open relay.
0
 

Author Comment

by:lenivan
ID: 21823588
Turned out to be a virus on one a machine a user brought into my network. The machine was removed and the problem went away.
0

Featured Post

Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
This article aims to explain the working of CircularLogArchiver. This tool was designed to solve the buildup of log file in cases where systems do not support circular logging or where circular logging is not enabled
In this video we show how to create an Address List in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Organization >> Ad…
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

24 Experts available now in Live!

Get 1:1 Help Now