[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Client on LAN sending spam

Posted on 2014-01-15
13
Medium Priority
?
549 Views
Last Modified: 2014-01-26
I have a client on the network that is sending out spam and it has caused us to be blacklisted.  I need to find the computer that is doing it.  I am going to block port 25 on my sonicwall tomorrow at work to see if I can find it that way.  Was wondering if anyone had any other suggestions.

We are using outlook and we don't have an internal email server.
0
Comment
Question by:lrollins
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 2
  • +2
13 Comments
 
LVL 35

Expert Comment

by:Dan Craciun
ID: 39784504
If you have a managed switch, set a port as mirror/monitor and connect a laptop with Wireshark to it. Capture the traffic and see what IP is sending mail.

HTH,
Dan
0
 
LVL 25

Expert Comment

by:Zephyr ICT
ID: 39784660
For more info, there was a thread about it recently: http://www.experts-exchange.com/Security/Misc/Q_28334188.html
0
 
LVL 10

Accepted Solution

by:
Korbus earned 2000 total points
ID: 39787194
If you have one infected machine, you might have more.  I would suggest you run a full scan on all computers in your network.  
Even with AV software installed, they cannot respond to new threats instantly.  If you get infected during the interval when a virus/malware program is released, and when the AV software is updated to protect against it:  this malware will NOT be automatically detected, unless you run a full system scan.  The normal "on-access" scanners will be too late, the file has already been put on your machine.  For this reason I recommend you have all your workstations run full av scans after-hours(nightly/weekly).  This ought to find the infected machine too.
0
Learn Veeam advantages over legacy backup

Every day, more and more legacy backup customers switch to Veeam. Technologies designed for the client-server era cannot restore any IT service running in the hybrid cloud within seconds. Learn top Veeam advantages over legacy backup and get Veeam for the price of your renewal

 
LVL 1

Assisted Solution

by:lrollins
lrollins earned 0 total points
ID: 39789210
Thanks for all the comments.  I finally got it fixed.  I closed the port 25 and installed malware bytes on all the machines and ran full scans.  Did the trick....
0
 
LVL 26

Expert Comment

by:Blue Street Tech
ID: 39797634
Please close this question by selecting your comment (http:#a39789210) as the answer. Thanks!
0
 
LVL 10

Expert Comment

by:Korbus
ID: 39797934
Why would you suggest he select his own comment, diverseit?  
I suggest, Irollins, you select my comment, where I suggested full AV scans on all machines(at least part of your actual resolution), as the answer (or part of it).
0
 
LVL 26

Expert Comment

by:Blue Street Tech
ID: 39797941
Sorry Korbus...but you are wrong!!! Just joking. :) In all seriousness I overlooked that...my mistake! Apologies.
0
 
LVL 10

Expert Comment

by:Korbus
ID: 39798000
Thanks bud :)
0
 
LVL 1

Author Comment

by:lrollins
ID: 39798671
I've requested that this question be closed as follows:

Accepted answer: 0 points for lrollins's comment #a39789210

for the following reason:

Resolved problem on my own
0
 
LVL 10

Expert Comment

by:Korbus
ID: 39798672
I suggested running scans on all machines.  This is part of the posted solution.  
The other part of the posted solution, closing port 25, was also posted in the askers original question.
0
 
LVL 1

Author Comment

by:lrollins
ID: 39798920
NA
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read this checklist to learn more about the 15 things you should never include in an email signature.
Article by: Dermot
The life of crime is over for 22 year-old Christian Ian Salvador, a student from Isabela State University in the Philippines.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question