Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Spamming in server

Discussion in 'E-mail Discussion' started by nitaish, Mar 6, 2010.

  1. nitaish

    nitaish Well-Known Member PartnerNOC

    Joined:
    Jan 6, 2006
    Messages:
    135
    Likes Received:
    2
    Trophy Points:
    168
    Location:
    Mulund, India,
    I can see a lot of spam emails being sent out from one of our servers, but I am not able to find out the email user which is being used for SMTP authentication. From the headers of the spam emails, I can understand that one of my customers' computer is infected with virus and is sending out spam emails. I can see the IPs of a local ISP in the header, however, blocking the IP does not work as it seems he does not have a static IP as the IP changes everytime. What is the best way to find out which email account is being used for sending spam from the server?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 nitaish, Mar 6, 2010
  2. thewebhosting

    thewebhosting Well-Known Member

    Joined:
    May 9, 2008
    Messages:
    1,201
    Likes Received:
    1
    Trophy Points:
    68
    You will have to check the header ID in your email logs and check for the email address. You can get the email logs from the /var/log/exim_mainlog. You can check the particular header ID using the below mentioned command:

    cat /var/log/exim_mainlog | grep header ID.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 thewebhosting, Mar 6, 2010
  3. nitaish

    nitaish Well-Known Member PartnerNOC

    Joined:
    Jan 6, 2006
    Messages:
    135
    Likes Received:
    2
    Trophy Points:
    168
    Location:
    Mulund, India,
    I could find the domain from which the spamming was happening by enabling Extended logging in cpanel.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 nitaish, Mar 8, 2010
(You must log in or sign up to post here.)
Loading...
Similar Threads - Spamming server
  1. furquan

    Need to catch the Spamming Source

    furquan, Jul 3, 2017, in forum: E-mail Discussion
    Replies:
    19
    Views:
    1,764
    Jcats
    Jul 10, 2017
  2. Nermin

    rDSN PTR for dedicated server, one shared IP and one dedicated IP

    Nermin, Apr 19, 2019 at 7:11 AM, in forum: Bind/DNS/Nameserver
    Replies:
    1
    Views:
    30
    cPanelMichael
    Apr 19, 2019 at 2:28 PM
  3. WebHostPro

    Is there a way to speed up server to server FTP?

    WebHostPro, Apr 17, 2019 at 8:03 PM, in forum: Data Protection
    Replies:
    1
    Views:
    52
    cPanelMichael
    Apr 18, 2019 at 6:42 PM
  4. albatroz

    Open ports on server question

    albatroz, Apr 17, 2019 at 3:27 PM, in forum: Security
    Replies:
    2
    Views:
    92
    albatroz
    Apr 19, 2019 at 1:56 PM
  5. kUdtiHaEX

    Multiple cPanel servers with a common MySQL Cluster

    kUdtiHaEX, Apr 15, 2019 at 12:07 PM, in forum: Database Discussion
    Replies:
    1
    Views:
    50
    cPanelLauren
    Apr 16, 2019 at 11:48 AM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice