Re: Clogged Internet Traffic SBS 2000
From: Kurt Leege (noxes_at_nyc.rr.com)
Date: 03/17/04
- Next message: Brad: "VPN Help"
- Previous message: Dom: "Error 1327 SBS 2k3 -> XP Pro -> Office 2k3"
- In reply to: Bill \(nee Gizmo\) Swan: "Re: Clogged Internet Traffic SBS 2000"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 17 Mar 2004 12:53:42 -0500
Turns out that one of our customers uses mxlogic as their anti-spam company.
We had tried to send them e-mail which we getting cued and resent,
generating the traffic. I don't know how we got blacklisted as we don't show
up in any of the common spam and open-relay databases... Oh, well. I sent
them a nasty e-mail, as the very first thing I asked them on the phone was
if a blacklisting could cause the problem & and their reply was 'no'...
Thanks for your comments...
Kurt
"Bill (nee Gizmo) Swan" <bill@nospam.firstresponseit.co.uk> wrote in message
news:euw6zF7CEHA.2592@TK2MSFTNGP12.phx.gbl...
> Hi Kurt
>
> How are you spotting the problem ?
>
> I ask this as the time frame of being able to have all pcs turned off,
> server only running, then bring on each pc one at a time to see if can
> narrow down the user.
>
> SMTP logs, ISA logs ?
>
> --
> www.smallbizserver.net (2000 and 2003)
>
> microsoft.public.backoffice.smallbiz2000 (2000 NG)
>
> microsoft.public.windows.server.sbs (2003 NG)
>
>
http://groups.google.com/groups?hl=en&safe=off&group=microsoft.public.backof
fice.smallbiz2000
>
>
http://groups.google.com/groups?hl=en&lr=lang_en&ie=UTF-8&safe=off&group=mic
rosoft.public.windows.server.sbs
>
> http://www.sbslinks.com/
>
> "Kurt Leege" <noxes@nyc.rr.com> wrote in message
> news:105etjl26qj7h7d@corp.supernews.com...
> > Also, the problem stops when I turn of the SMTP service - which is what
> led
> > me to believe it was a Netsky style virus in the first place. However,
as
> I
> > have said, Trend and Stinger say I'm clean and I can't find any Netsky
> > associated .exe files.
> >
> >
> >
> > "John Oliver, Jr. (MVP)" <jcoliverjr@hotmail.com> wrote in message
> > news:O3w1S74CEHA.2308@tk2msftngp13.phx.gbl...
> > > This sounds like a worm, have you run Windows Update on all your
clients
> > and
> > > server? You can also download stinger.exe from Trend to scan for this
> > > activity.
> > >
> > > --
> > > John Oliver, Jr.
> > > MCSE, MCT, CCNA, Exchange MVP
> > > Microsoft Certified Partner
> > >
> > > "Kurt Leege" <noxes@nyc.rr.com> wrote in message
> > > news:105ektncnnuir40@corp.supernews.com...
> > > > I've had the oddest problem during the last few days. There has been
a
> > > > continuous flow of information between our IP and the IP of a
company
> > > called
> > > > mxlogic.com [an internet security firm]. I contacted their
engineering
> > > > department & they confirmed that they are getting a near continuous
> > > request
> > > > for use from one of my users. However, using the current virus
> patterns
> > > from
> > > > Trend, none of my computers, including my server and the computer
> > > associated
> > > > with the user, show a virus of any kind. Does anyone have any idea
how
> I
> > > can
> > > > shut this off?
> > > >
> > > > Thanks
> > > > Kurt
> > > >
> > > >
> > > >
> > >
> > >
> >
> >
>
>
- Next message: Brad: "VPN Help"
- Previous message: Dom: "Error 1327 SBS 2k3 -> XP Pro -> Office 2k3"
- In reply to: Bill \(nee Gizmo\) Swan: "Re: Clogged Internet Traffic SBS 2000"
- Messages sorted by: [ date ] [ thread ]
