Solved

server is sending out spam email, trying to find responsible computer

Posted on 2013-01-17
5
289 Views
Last Modified: 2013-01-23
My server has been blacklisted for sending spam email. We use mailenable and cannot find which user is sending the mail or which computer has the virus. went to the guide here and even found help on this site here. Tried everything recommended however did not find anything weird. In the first article it stated to check for most recent things in the windows system 32 folder. The only files I found with a date equal to today (when the spam started)  were perfh009.dat & perfc009.dat wondering if these are legitimate or the cause of my problem.
0
Comment
Question by:mfsrules
  • 2
  • 2
5 Comments
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 38789494
0
 

Author Comment

by:mfsrules
ID: 38789616
We are using MailEnable Software
0
 
LVL 76

Expert Comment

by:Alan Hardisty
ID: 38789618
Okay - have you read my article?  Is anything relevant?

Who are the senders of the emails in your mail queue?
0
 
LVL 25

Accepted Solution

by:
Tony Giangreco earned 500 total points
ID: 38789830
I've had a client's server blacklisted before. Here is what i did:

1. Temporarily disconect your internet connection for the entire network
2. Run a full scan of the following on every desktop

a. SAS http://www.bleepingcomputer.com/download/search/?keyword=superantispyware

b. MB http://www.bleepingcomputer.com/download/malwarebytes-anti-malware-cleanup-tool/

c. TDS Killer http://www.bleepingcomputer.com/download/tdsskiller/
d. After full scans of each product, you should be 95% clean.
e. Run a full scan of your up-to-date anti virus
f. Run a full scan of anti virus on your server.

Being blacklisted stops all your email from being delivered. I suggest starting internet service from a new supplier after you know you are clean.

There is a lot of work here, but done properly, it will pay off.
0
 
LVL 25

Expert Comment

by:Tony Giangreco
ID: 38792735
Any progress to report?
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SID change in file permissions 3 104
SSIS package failing 3 98
SolarWind and DNS Server 12 68
Inserting a column in a table that creates an ID and row number 4 53
Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now