I have an issue with my Exchange 2003 server log files filling up my drive. Normally the nightly backups take care of this issue but yesterday that all came to an end. I have checked to see if my server has been hacked and used as a relay but I have all those settings closed so I am to think either my a machine on my network is infected or our Website that uses our server as a relay is infected.
First off when I try to look at any of the log files they all look encrypted so I cannot read them and see if there is a machine on my network that is sending out emails. Is that normal? I have read that those files are plain text so that makes me concerned. I also did a full virus scan on my network and Exchange which all came back negative.
With that said where should I start with my detective work?