Exim Compromised

[wrsenter]

All of the sudden, I cant receive email using Outlook. I was looking in the exim_mainlog and I see this repeating over and over. The email address near the bottom is mine and it appears that it is being used to pump out spam. I would assume that CSF (Firewall/Scanner) app is catching it and blocking. Does anyone know how to address a problem like this ? Any help appreciated.

2008-08-21 22:37:46 H=fm5.miltnews.com [64.127.121.15] Warning: Sender rate 0.0 / 1h
2008-08-21 22:37:47 1KWNT8-0006FB-Am <= newsltr@miltnews.com H=fm5.miltnews.com [64.127.121.15] P=esmtp S=44879 id=20080822033807.59FED16CE598FA@fm5.miltnews.com T="10 Secrets Banks Won't Tell You"
2008-08-21 22:37:47 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1KWNT8-0006FB-Am
2008-08-21 22:37:47 1KWNT8-0006FB-Am => webmaster <webmaster@codeone.biz> R=virtual_user T=virtual_userdelivery
2008-08-21 22:37:47 1KWNT8-0006FB-Am Completed

[MaestriaNick]

this says that the mail sent from newsltr@miltnews.com (originally from server 64.127.121.15 ) successfully delivered to webmaster@codeone.biz. So, it does not appear that firewall is blocking it. To stop that spamming, you can add firewall rules to block mails from that ip, 64.127.121.15

[AndyReed]

All of the sudden, I cant receive email using Outlook. I was looking in the exim_mainlog and I see this repeating over and over. The email address near the bottom is mine and it appears that it is being used to pump out spam.

D you have SpamAssassin (SA) or any other SPAM application installed on your server? If yes, is your SPAM agent configured properly and did you enable it on your account?

Assuming your cPanel is v11.x, go to:
http://www.cpanel.net/support/docs/1...nfig_exim.html
http://www.cpanel.net/support/docs/1...im_editor.html