asked on Exchange Email Spam
I have an account using exchange email. There domain has become infected somehow. Two of the users are getting regular spam and the MX Lookup tool has had their account on suspended with some of the companies. This is what has been done:
1. Full virus and malware scans (21 infections killed) on all the machines using the domain.
2. Changed all of the machine passwords
3. Restored the reference to any companies listing the domain on the blacklist (CBL)
4. Registered the domain with emailreg
Two of the clients are still getting up to 150 spam emails a day. They are going directly into the junk mail account but we need to stop the access. Is there a way this can happen?
1. Full virus and malware scans (21 infections killed) on all the machines using the domain.
2. Changed all of the machine passwords
3. Restored the reference to any companies listing the domain on the blacklist (CBL)
4. Registered the domain with emailreg
Two of the clients are still getting up to 150 spam emails a day. They are going directly into the junk mail account but we need to stop the access. Is there a way this can happen?
ExchangeWindows 7Server Software
Last Comment
mcleeves
What version of exchange? Is IMF enabled?
ASKER
The Exchange server is 2007. This is the package that came with the Small Business 2008 server.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Try using a program like Barracuda or Postini, if they are just getting spam emails it doesn't necessarily sound like an infection but that their actual email address was compromised somehow and fell into the hands of a spam company.
ASKER
I have resolved the issue. Your post helped me investigate additional resources. This is what I did that finally resolved the problem:
1. Setup a SPF record with the hosting company
2. Revised the content filter settings
3. I created a Quarantine email account and forwarded all level 6 email to that location
3. I then setup all level 8 and above email to be deleted automatically.
4. Level 7 goes into the users spam folder for them to determine.
5. Made sure the blacklisting issues were clean.
All seems to be quiet now. The user has not complained since this security is in place.
Thank you for your efforts.
1. Setup a SPF record with the hosting company
2. Revised the content filter settings
3. I created a Quarantine email account and forwarded all level 6 email to that location
3. I then setup all level 8 and above email to be deleted automatically.
4. Level 7 goes into the users spam folder for them to determine.
5. Made sure the blacklisting issues were clean.
All seems to be quiet now. The user has not complained since this security is in place.
Thank you for your efforts.
Think they have a trial version available.
Once you get some control of the incoming spam use the Best Practices tool on your exchange server to check your exchange server setup. Little things like being an open relay will get you on a blacklist.