Spam attack
- From: KMD <KMD@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 11 Jun 2008 12:41:01 -0700
I know this subject pops up all the time, but dispite hours of searching, I
can't find answers to my specific questions.
My server is a 2003 SBS with exchange SP2, windows 2003 SP2, and 2003 SBS
SP2 installed. I am using smtp smarthost to send emails through my ISP's
smtp servers. I used the wizard to set up email and internet connections.
As I type this, my 2003 sbs is generating hundreds of "event 7010" errors
from the msexchangetransport source.
*********************************************************************************************
The errors all look pretty much like this:
"This is an SMTP protocol log for virtual server ID 1, connection #3373. The
client at "220.225.238.242" sent a "rcpt" command, and the SMTP server
responded with "550 5.7.1 Unable to relay for yjij@xxxxxxxxxxxx ". The full
command sent was "rcpt TO:<yjij@xxxxxxxxxxxx>". This will probably cause the
connection to fail. "
******************************************************************************************************************
The emails in the queue look like this:
“ ±o¯q?O2z-1§{
5¯s?q?FRO?u±A?u-n50??
!•±q?i?f!B?Mo{?[?u!B?]?E!B|v°t?tµ{§C•A§@•~!C
!•3a?÷¯uaA?]?E,?e?KRA2z,AHRE|bRa?E?I(AH3fat?O2z?eak)!C
!•’??NA?U?Aa?P?A-J’OAa?o?i?@oO!C
~~~|v°t?ic2,Awai1IAE~~~
“
******************************************************************************************************************
The NDR’s that are still being generated even though NRD’s should be turned
off look like this:
“This is an automatically generated Delivery Status Notification.
Delivery to the following recipients failed.
deartry@xxxxxxxxxxxx
breathy@xxxxxxxxxxxx
llikeleehomtw@xxxxxxxxxxxx
roclky@xxxxxxxxxxxx
weley@xxxxxxxxxxxx
chinliang_tw@xxxxxxxxxxxx
asftrdsrew@xxxxxxxxxxxx
loadthru@xxxxxxxxxxxx
lionfaye_rabbitv@xxxxxxxxxxxx
yokohouse.tw@xxxxxxxxxxxx
shenyuchen.tw@xxxxxxxxxxxx
su_fairy@xxxxxxxxxxxx
bfahey@xxxxxxxxxxxx
kittybug.tw@xxxxxxxxxxxx
vallez@xxxxxxxxxxxx
hafey@xxxxxxxxxxxx
kx39ip0616y@xxxxxxxxxxxx
laijack.tw@xxxxxxxxxxxx
ycmiky@xxxxxxxxxxxx
bleakney@xxxxxxxxxxxx
emilyvsamy@xxxxxxxxxxxx
cellomay.tw@xxxxxxxxxxxx
viper66tw@xxxxxxxxxxxx
danishsu@xxxxxxxxxxxx
green.wu@xxxxxxxxxxxx
blazehenry@xxxxxxxxxxxx
advisably@xxxxxxxxxxxx
wxweaz@xxxxxxxxxxxx
chibenz@xxxxxxxxxxxx
ewig-x@xxxxxxxxxxxx
rocmyuritony@xxxxxxxxxxxx
I have confirmed that my server is not an open relay.
I have turned off NDR's, but my server still seems to be generating NDR's
I want to know why email that my server should not be relaying is still
getting into the SMTP vitural server queue and if there is a way to stop it
before it gets there.
I would also like to know why my server is still generating NDR's.
Thanks for any help with this problem, I’ve been on this since 8 am this
morning and it’s 3:30 now.
.
- Follow-Ups:
- RE: Spam attack
- From: "Robbin Meng [MSFT]"
- Re: Spam attack
- From: Cliff Galiher
- RE: Spam attack
- Prev by Date: Re: Additional global address book.
- Next by Date: Re: cheap router recommendation
- Previous by thread: Re: Additional global address book.
- Next by thread: Re: Spam attack
- Index(es):
Relevant Pages
|
