I have an Exchange 2003 server and some users are receiving SPAM emails from themselves. I know this is a SPAM technique but what worries me is that some of the emails have REALLY been sent from Exchange. If I go to the message tracking centre I can see that the email has been sent. The message ID appears as:
Is my Exchange server been compromised? Does the user have a virus?