Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.

Share tech news, updates, or what's on your mind.

Sign up to Post


We have this script to delete phising emails from our organisation, however we also these requirements:

1)      We need to add into the search-mailbox after -searchquery an additional requirement for date or time, as we only want to search for emails since a certain date. We use this script to delete phishing attack emails, so we know when they started, so need to be able to search for all emails since a date and delete them if the subject matches. So the most recent example, would be all emails containing subject “RE: NOTICE: MC Support UPGRADE.” however only emails received after 01/03/2018. I assume we can just do -searchquery “Subject:’Content of Subject’ AND ReceivedDate:>01/03/2018” or something like that?
2)      We need to be able to search for subjects with special characters in. –searchquery “Subject:’RE: NOTICE: MC Support UPGRADE.’ Will currently give an error as it won’t like the : in the subject.
3)      We need to be able to search for the above criteria, but also potentially include only emails from certain email addresses. One of the phishing emails was “RE: Attention (Staff Migration)” which could be very close to something we actually send to users. The phishing email only came from a certain email though, so if we add an extra criteria for sender, that would help us focus the search.

Please can someone show me how to achieve this?

also I would appreciate if you any other suggestions for improvement.

$mbs = Get-Mailbox 

Open in new window

Managed Security Services Webinar - March 15
Managed Security Services Webinar - March 15

Selecting the right managed security services platform to grow your business can be a huge undertaking. Join WatchGuard and Frost & Sullivan in an upcoming webinar as we dive into the key elements of selecting a vendor platform and partnership to fuel a successful MSSP business.

Is there a way in EOP Spam filter policy to prevent messages hitting Junk email box and deliver them to the user's inbox with a text prepend to the subject line of the messages?
Hi Everyone

What is the best practice for gateways. For example we got blacklisted a while ago and public ip is still blacklisted on spam rats. It says about reverse lookup not being setup

the exact message "Does IP Address comply with reverse hostname naming convention". While letting my isp know we were told to liase directly with spamrats which i did but the ip has not been given ok by spamrats. I think that they want us to set reverse DNS on gateway.

1) What is the best practice for gateways?
2) What happens if i give it a name with my domain?
3) Does it interrupt my traffic?
4) Do i have to change my firewall rules based on the name change?
5) What all do i have to do to get this done?
6) What is the whole purpose of reverse dns on gateway as i was told by my ISP that they only setup if told by a customer to do so?
Hello guys,
I was asked to recommend an anti spam solution for a large organization with over 18,000 on-premise exchange users. I would have loved to recommend Exchange Online Protection, but that is going to cost a fortune given the number of users.

I would like a reliable reasonably priced solution for that number of users. Please help.
This website is keep popping up every time when i try to load any web page. I have malware bytes but its not catching anything. I am using windows 7.

Hi All

I have 2 domains for which i want to setup spf record. both are on different public IPs. I am sending emails from both domains via one exchange server 2010

First domain  public Ip
Second domain public Ip
For IN TXT "v=spf1 mx a ip4: -all"

For public Ip IN TXT "v=spf1 mx a ip4: -all"

Will this cause any conflicts or is it correct?

Do i need to make any changes on my exchange 2010 server after the above record is published by ISP?
Android 7
I swipe and usually see this screen adware
1 month ago I installed battery optimizer app
And this adware started 1 month ago

Please provide me with the URL addresses for downloading Malwarebytes for Server 2016.
I have had a odd issue the last month or so. At random points I will get spam emails that say they are from for different things like car warranties, hari care products, roofing etc. obviously they are scam emails but I don't see them in my inbox when using the outlook website but on my PC using the Outlook program I can see the spam emails. I have three email accounts connected to the Outlook program but only one account is receiving the spam.

When I run CCleaner and Spy Bot S&D it stops for a while and then comes back a week or more later.

I don't surf any crazy sites or hacking sites. Mainly just news, tech and some forums. What type of site is this likely coming from or is it totally random?

Is there anything I can install that will actively catch and block this garbage from getting on my PC? I have the free versions of CCLeaner, MalewareBytes and SpyBot and use Windows Defender but these apps are not doign the job.
i received large spam mail om my leased line and checked my exchange 2013 and my two mailbox and Symantec exchange mail security  7.5.6 are updated and good
I opened Anti spam in fortiGate and blocked many ip but not all.
i need solution for my situation.
SMB Security Just Got a Layer Stronger
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Please provide me with guides and processes on how to protect Office 365 email domains from email spoofing.

We need to prevent our Office 365 users from receiving spoofed emails that look like they were sent from legitimate existing internal email addresses.
A Windows Server 2008 R2 installation has been infected with a Trojan horse that has encrypted files with the *.rapid extension.  The server had Avast for Business installed.  An AVG rescue CD was made and ran multiple times to eliminate instances of the Trojan horse.  After four times, the server is labeled clean from the AVG rescue CD.  I then uploaded two *.rapid files to and it came back saying that there was no fix for this.  Does anybody know of a trusted decryption software that can correct this problem?  I can attach a file if requested.

I have been warned from my ISP that they have blocked my IPs because a lot of spamming is coming from my network.

How Can I check this ? I have a network of 50 Computers. I also have a firewall (Cyberoam).

Please advise.
[DKIM] Your DKIM signature is missing.
The message was not signed. This means that the message had no DKIM signature. This is not the same as failing.

What is the cause of this error?

I can say, I host the image file as my email signature as a domain that does not match my email's domain.

Is this the problem?

On a related note, what is the SPAM impact of hosting my email signature image on a domain that does not match my email's domain?

I would love that since I could send a dozen different emails, and use that to improve my odds of being blocked.

It's a great service is anyone as looking for a new business, in the event the service does not yet exist.

I suspect my email may be flagged as SPAM and need to understand if so, and how to fix it.

I use a CRM call PipeDrive. This has two ways of tracking emails...

1) When the recipient has viewed the email, I get an alert.

2) In the case the email also contained a web URL, I get an alert when that URL has been clicked.

3) I also use an email signature as an image file, hosted by a web development company of mine.

Did I describe anything that makes my emails SPAMMY?

I see huge swaths of emails I sent that never got opened, but more directly, a customer I spoke with today had not gotten my emails.

When I sent a bare bones email, it got through.

Is have an image file (my signature) in the body of the email a red flag for SPAM filters?

What about the tracking mechanism for:
1) email's been read
2) the URL's been clicked.


Certain SPAM emails are reaching to user inbox though their SPAM score is high.

On checking further I found the those emails have a setting Backend TLS: YES.

Any clues on this.
I have done some researching in upgrading my current exchange 2013 to 2016, and I have a problem with needing to have the edge server outside my AD organization. All my servers are running in VMs in a scale computing hyperconverged system.  Can I just have the edge server on the same network, but not added to the domain, would that work?
Otherwise,  I would have to purchase a physical server to run somewhere outside of my firewall, which complicates things.

Any recommendations?
Dear Experts,
My client has regular pop3 email boxes from Godaddy, which recently have been spoofed.  Basically, someone is sending emails using their email addresses requesting payments or loans.  I changed their passwords, scanned their machines, and am pretty sure these emails are not coming from my clients' PCs.  After I spoke to Godaddy, they recommended I switch to Office 365 email boxes because of encryption.
What I am skeptical about is, if all they are using is the email addresses that they know exist, how does encryption of the email stop this type of spoofing?  It feels as though someone just saw my name on the website, and decided to use that name to register for something.
Unless my name itself is encrypted, I cannot stop that person from impersonating me, so why does encrypted email stop spoofing?
Please advise.
We Need Your Input!
We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

I'm successfully using a Barracuda spam filter in conjunction with our 2010 Exchange server.  Our MX record and our rDNS record point to, which is also the Hello response from our Exchange server.  Now that the Barracuda is in line and working, it is responding with a Hello of  I've added an A record for the Barracuda response, and MX Toolbox passes everything, but I'm concerned that eventually they will get black listed because the MX record and rDNS don't match the Hello banner.

I'm considering changed the MX record, and the matching rDNS record, to  But this has been up and running for a while and I don't want to create an issue where one doesn't exist.

Thoughts please??  Thanks!!
Hello people,

In my Exchange 2013 after we configured the anti spam solution, we cannot receive emails.

I checked the configuration and it is not working...we made some changes in the receive connectors.

Do you have any clue where to start?
Hi Guys,

I've setup the SonicWALL Antispam module and all went well with the config.
When trying to send a test mail to the incoming MX, I am getting the following error.

Any advise will be appreciated,

Resolving hostname...
Connection: opening to, timeout=300, options=array (
Connection: opened
SMTP NOTICE: EOF caught while checking if connected
Connection: closed
2017-11-24 08:38:17      The following From address failed: : Called MAIL FROM without being connected,,,SMTP server error: Called MAIL FROM without being connected
Message sending failed.

We are providing antispam service to few clients using our builtin antispam in our server.
Now customers requesting for interface to release the quarantined emails.

Is there any antispam software you guys know which can provide interface and filter spams?

Our main domain for mailservers has been blacklisted by Spamhaus.
I have not received any complaints prior to this (24 hours ago).
Spamhaus do not let me delist, the domain has been flagged for manual delist (whatever that is), and I did that 24 hours ago, but until now, nothing from Spamhaus.

Anyone knows how to get out of that blacklist, or to get sem response from Spamhaus?


I've a problem with bounce back when i send a mail with a distribution group and the recipent address is faulse, i don't receive the bounce back.
technical context :
2 Exchange server 2016 standard without edge in DAG
Antispam Exchange ENABLED
my external mail are filtred by an antispam gateway

My antispam gateway send me the bounce back, my  server1 create event HARECEIVE the mail and create an event HADISCARD and the mail is DROP by the server1 or the server2.
do you have already meet this case ?

Thanks for your help!



Various techniques are used to prevent email spam (unsolicited bulk email). No technique is a complete solution to the spam problem, and each has trade-offs between incorrectly rejecting legitimate email (false positives) vs. not rejecting all spam (false negatives) - and the associated costs in time and effort. Anti-spam techniques can be broken into four broad categories: those that require actions by individuals, those that can be automated by email administrators, those that can be automated by email senders and those employed by researchers and law enforcement officials.