The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Spamming in server

Discussion in 'E-mail Discussions' started by nitaish, Mar 6, 2010.

  1. nitaish

    nitaish Well-Known Member
    PartnerNOC

    Joined:
    Jan 6, 2006
    Messages:
    129
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Mulund, India, India
    I can see a lot of spam emails being sent out from one of our servers, but I am not able to find out the email user which is being used for SMTP authentication. From the headers of the spam emails, I can understand that one of my customers' computer is infected with virus and is sending out spam emails. I can see the IPs of a local ISP in the header, however, blocking the IP does not work as it seems he does not have a static IP as the IP changes everytime. What is the best way to find out which email account is being used for sending spam from the server?
     
    #1 nitaish, Mar 6, 2010
  2. thewebhosting

    thewebhosting Well-Known Member

    Joined:
    May 9, 2008
    Messages:
    1,201
    Likes Received:
    1
    Trophy Points:
    68
    You will have to check the header ID in your email logs and check for the email address. You can get the email logs from the /var/log/exim_mainlog. You can check the particular header ID using the below mentioned command:

    cat /var/log/exim_mainlog | grep header ID.
     
    #2 thewebhosting, Mar 6, 2010
  3. nitaish

    nitaish Well-Known Member
    PartnerNOC

    Joined:
    Jan 6, 2006
    Messages:
    129
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Mulund, India, India
    I could find the domain from which the spamming was happening by enabling Extended logging in cpanel.
     
    #3 nitaish, Mar 8, 2010
(You must log in or sign up to post here.)
Loading...
Similar Threads - Spamming server
  1. Vasanthjan

    Email Spamming from my server

    Vasanthjan, Mar 11, 2017, in forum: E-mail Discussions
    Replies:
    3
    Views:
    247
    cPanelMichael
    Mar 12, 2017
  2. furquan

    Need to catch the Spamming Source

    furquan, Jul 3, 2017, in forum: E-mail Discussions
    Replies:
    19
    Views:
    163
    Jcats
    Jul 10, 2017
  3. euro-space

    Disable email sending capability for a spamming account

    euro-space, Nov 22, 2016, in forum: E-mail Discussions
    Replies:
    4
    Views:
    941
    danielpmc
    Nov 25, 2016
  4. Neutrall

    New Thread Connecting to cPanel API from remote server

    Neutrall, Jul 25, 2017 at 4:05 PM, in forum: cPanel Developers
    Replies:
    0
    Views:
    19
    Neutrall
    Jul 25, 2017 at 4:05 PM
  5. bejbi

    Configuration dns cluster: many webservers and 3 dns-only servers

    bejbi, Jul 25, 2017 at 4:11 AM, in forum: Bind / DNS / Nameserver Issues
    Replies:
    4
    Views:
    28
    bejbi
    Jul 25, 2017 at 2:31 PM

Share This Page