We have a shared mailbox that sent out a lot of spam and need to determine which computer actually sent out the spam. Not sure if there is way to setup a specific diagnostic logging to have it show the computer.
I looked through the messagetracking logs , but it just shows that it was sent from the shared mailbox account. We have 4 or 5 users that have access to that account and are in the process of scanning those computers individually for viruses, etc.. But want to know if we could track down the culprit from the exchange server logs or possibly another way.