Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Event log Analyzing

Posted on 2008-10-10
14
224 Views
Last Modified: 2011-10-19
Hi

i have attached one Event log. This Event Log at 5 am ( and no body tryed to send email to this address) still i am seeing this log in event  log
i already setup my server as http://support.microsoft.com/kb/843106 saing

my understanding is , 1) some one tryed to realy to sales@chshel.net by using  my server but my server  refusing to realy. hense i am seeting this event log

is that right ??

Or 2) some one tryed to realy by using  my server and myserver actually relyed to that domain  but it got refused from chsel.net server so i am seeing this log in my event log ??

Please let me know, i am really worring .






Compromised2.GIF
0
Comment
Question by:fosiul01
  • 8
  • 6
14 Comments
 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685194
>some one tryed to realy to sales@chshel.net by using  my server but my server  refusing to realy.
That is correct.
0
 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685198
>some one tryed to realy to sales@chshel.net by using  my server but my server  refusing to realy.
That is correct.
0
 
LVL 29

Author Comment

by:fosiul01
ID: 22685220
hi thanks, is there any way to create event log as soon as Exchange server will realy any email ??( offcourse authenticate but unauthenticate aswell)

0
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685233
you might want to check the diagnostic logging for the server in the ESM.
there are quite a lot of options that you can set there.
0
 
LVL 29

Author Comment

by:fosiul01
ID: 22685242
you meant , message tracking ??

but with message tracking everything comes up, incomming , outgoing ..

i just want to check outgoing messages
0
 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685255
no, i meant diagnostic logging from the exchange server properties in the Exchange system manager.
0
 
LVL 29

Author Comment

by:fosiul01
ID: 22685269
while i check diagnostic login please check the bellow

Please check the bellow picture, 5 minutes ago it came to my event log

does this mean Sameting is not it ?? some one is trying to realy mail via my server but my server is refusing to realy ??


compromised4.GIF
0
 
LVL 29

Author Comment

by:fosiul01
ID: 22685275
diagnostic logging from the exchange server properties in the Exchange system manager.  == is there any tutorial for that

i am not expert in exchange.
how will i do that ??
0
 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685282
correct.
0
 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685292
0
 
LVL 29

Author Comment

by:fosiul01
ID: 22685322
Hi thanks for that link

as you can see, i realy enable Msexchagne transport

but which service and categories do i have to select for viewing - all out going email eamil in event log ??
0
 
LVL 35

Expert Comment

by:rakeshmiglani
ID: 22685509
categorie can be SMTP Protocol
0
 
LVL 29

Author Comment

by:fosiul01
ID: 22685534
HI thanks again
SMTP protocol is set as medium

but i am not seeting any log when email is going out
0
 
LVL 35

Accepted Solution

by:
rakeshmiglani earned 500 total points
ID: 22685950
if you set that to maximum do you get any more details?
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Exchange 2010 to 2013 8 75
Exchange 2010 Plans with Exchange Online 2 31
No NDR to Distribution Group in Exchange 2013 8 42
Hyper-V won't start Server 2003 as a guest OS 7 61
Following basic email etiquette rules will help you write a professional email and achieve a good, lasting impression with your contacts.
This article explains in simple steps how to renew expiring Exchange Server Internal Transport Certificate.
In this video we show how to create a mailbox database in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Servers >> Data‚Ķ
how to add IIS SMTP to handle application/Scanner relays into office 365.

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question