Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 155
  • Last Modified:

Spamhaus blacklisting

Have a self hosted Exchange server and Monday started to get reject messages :
atl4mhib11.myregisteredsite.com rejected your message to the following e-mail addresses:
rbrownell (rbrownell@xxx.com)
atl4mhib11.myregisteredsite.com gave this error:
xx.242.94.188 Rejected - see http://www.spamhaus.org 
Same for .82 and .83
I changed the static IP to a new one yesterday and now some sites work others do not.
so I changed to a 3rd different static IP and within 5 or 10 minutes Outlook Exchange mail users were getting bounce backs courtesy of Spamhaus again.

Only two blacklists report them ,any ideas?
spamhaus.PNG
0
pgm554
Asked:
pgm554
  • 2
  • 2
2 Solutions
 
John HurstBusiness Consultant (Owner)Commented:
You generally have to contact Spamhaus and explain with proof what you have done to eliminate spam your server is sending out.
0
 
VB ITSSpecialist ConsultantCommented:
Jump on the Spamhaus website and enter in your public IP addresses that are getting blacklisted: http://www.spamhaus.org/lookup/

This should tell you why your IP is got itself blacklisted.

You most likely have an infected computer on your network sending out spam or malicious traffic, so you will need to identify this infected machine and take it off the network while you clean out the virus/malware on it.

You can request to get delisted depending on which blocklist you've been added to but make sure you have identified and removed the infected machine off your network first otherwise you'll just keep on getting re-added to the blacklist.
0
 
pgm554Author Commented:
Turns out I had a cleaned machine that got reinfected.

Just how many different AV's do you have to run to get the job done?

Had a virus about 3 weeks ago that uninstalled Forefront 2010 an a W7 machine,I ran Adwcleaner,the M$ standalone and Malwarebytes and they all found something and cleaned it.

After I went to CBL from Spamhause,I had to use Norton Power Cleaner and it found 2 more infections and I once again ran Malwarebytes and it found 4 more.

Ugh....
0
 
John HurstBusiness Consultant (Owner)Commented:
Just how many different AV's do you have to run to get the job done?

We use Symantec Endpoint Protection at our clients and do not have virus outbreaks. If need be, we also run Malwarebytes.

I hope that helps and good luck with the problem machine.
0
 
pgm554Author Commented:
I've used Symantec in the past and let's just say it's not a great product.
I had an incident where it found a virus,but could not clean it.
Ended up using the M$ freebie and it worked.
0

Featured Post

[Webinar On Demand] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now