asked on
MS Exchange 2003/Server 2003 - Pulling large amounts of data from Internet
Hi Experts. I have a MS Exchange Server 2003 on Server 2003nthat is pulling about 500MB an hour from the internet even when there is no mail coming in. If I reboot the server the problem goes away for about 3 to 4 hours then starts again. I have virus scanned (Symantec and Eset) and scanned with malwarebytes but nothing shows up. I've used Wireshark to try and see packet details but theres nothing unusual. Anyone got any ideas?
ExchangeWindows Server 2003
Last Comment
Tony Giangreco
ASKER
I've narrowed it down to this one server and have moved everything else on to other lines. This is the only thing that now goes out through that line. I've also disabled updates.
SOLUTION
Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a questionASKER
No, I was running it on the network. I'll try it on the server
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
Yes that would be better
Alternatively, depending on your switches, you can set up a monitoring port and run the wires hark from your laptop
If you want more details on that setup then let me know
Alternatively, depending on your switches, you can set up a monitoring port and run the wires hark from your laptop
If you want more details on that setup then let me know
ASKER
That would be apprecaited, thanks. In the meantime I'll start with wireshark on the server
Is that server a DC?
Is it just replicating?
What apps are loaded that may pull down periodic updates?
Do any users have access to it that may be downloading or uploading files to their user share?
Is it just replicating?
What apps are loaded that may pull down periodic updates?
Do any users have access to it that may be downloading or uploading files to their user share?
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
ASKER
Hi
Yes it is a DC
There should be no other connectivity other than the local network (except for mail of course)
No other apps other than AV and Exchange
No users have access to this server
Thanks for the reply
Yes it is a DC
There should be no other connectivity other than the local network (except for mail of course)
No other apps other than AV and Exchange
No users have access to this server
Thanks for the reply
ASKER CERTIFIED SOLUTION
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.
Check to see what ports are getting the most hits.