Our customer has got complains from the broadband company that spam is sent from their IP-number.
They have a Exchange server 2003.
In the "message tracking center" in System manager, I am unable to see theese exemples of sent spam. But I can see all the normal traffic in/out from the exchange server.
What else can I do to track theese spam sent from their IP-number? And what can I do to lookup the server from outside users beeing able to relay throw this machine?
> * Date: Wed, 17 Nov 2010 15:36:34 -0700
> * From: Order Pfizer Online <firstname.lastname@example.org>
> * Subject: Hi moron, Mega discounts. They Agreement to
> * Host: XXX-XXX-XXX-XXX.customer.telia.com [XXX.XXX.XXX.XXX]
> * Reason: MULTI-BLACKLIST - [S=6 - cbl.abuseat.org bl.spamcop.net] - OurBl DynamicIP BlList - X=pascal H=XXX-XXX-XXX-XXX.customer.telia.com [XXX.XXX.XXX.XXX] HELO=[telia.com] F=[email@example.com] T=[firstname.lastname@example.org] S=[Hi moron, Mega discoun
> For more information about these abuse reports: http://wiki.junkemailfilter.com/index.php/Spam_abuse
> To test or be removed from our blacklist: http://ipadmin.junkemailfilter.com/remove.php?ip=XXX.XXX.XXX.XXX