Hi, I have a employee that swears she did not send and email out. This was an internal email and we are running exchange 2010. I have verified from her outlook it was not sent from her pc, and also message tracking in exchange doesnt show a source IP address.
I tried using Get-LogonStatistics however I am not familiar enough to know how to use this feature to track this. Can anyone suggest any options I may have to find out who internally sent this message?