I have a VoIP Trixbox server on its own internet connection, recently it's connection was blocked from the ISP for distributing Spam/Virus, I know that I must find the source of this and remove it, but every time the connection is unblocked it is quickly blocked again for spam/virus.
I was wondering if there are any outgoing ports other than SMTP that should be blocked on the firewall.
I just need the connection to be up while I find the source of the spam.
any ideas on locating the source of the spam on a linux box would be a great help too, I only have a fairly basic linux knowledge. I have run chkrootkit on it and this didnt solve the problem, I tried to install an anti virus program through the command line but could not get it to function.
any help would be great