Thanks all for the advice. Ran some tests, and discovered our former firewall (which
had firmware
issues) was detached and never reconnected. We're installing another firewall.
Keith Purtell, Web/Network Administrator
VantageMed Operations (Kansas City)
Email: [EMAIL PROTECTED]
CONFIDENTIALITY
I had this happen also several times, about 2 months ago, I did everything
you mentioned below.
A friend had me download a utility called spybot, which found a cookie in my
internet explorer that launches popup ad's automatically.
Once I removed this, I haven't seen any since.
http://spybot.safer-n
Don't know if this is related to spam or not... This morning I logged onto
the NT4 server where we
host both our web and mail server. Immediately noticed a Messenger Service
box (like you get with
"net send" from dos prompt) containing a typical spam message (edited):
"From our Research Dept ..
And it is Spam, not a hack.
John Tolmachoff MCSE, CSSA
IT Manager, Network Engineer
RelianceSoft, Inc.
Fullerton, CA 92835
www.reliancesoft.com
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:Declude.JunkMail-
> [EMAIL PROTECTED] On Behalf Of Keith Purtell
> Sent: Monday, March 3
Most likely cause is open ports 137-139 from Internet or Messenger programs.
(MS Messenger, AOL Messenger, Yahoo messenger.)
John Tolmachoff MCSE, CSSA
IT Manager, Network Engineer
RelianceSoft, Inc.
Fullerton, CA 92835
www.reliancesoft.com
> -Original Message-
> From: [EMAIL PROTECTED]
Yep, it's a known "feature".
The deal is that although you may be blocking NetBIOS on your firewall, you
can do a programmatically do a "net send" to port 135, which you can't
unbind from your external NIC.
You need to firewall your machine to cut off this unwanted ingress. Doubly
so because of
> Don't know if this is related to spam or not... This morning I
> logged onto the NT4 server where we host both our web and mail
> server. Immediately noticed a Messenger Service box (like you get
> with "net send" from dos prompt) containing a typical spam message
> (edited): "F
Yes IMail does use Symantec's Norton Anti-Virus
Yes my desktop client software was also Symantec's Norton Anti-Virus
I too was very surprised to find that imail let emails with viruses pass
through on a regular bases and the desktop client anit-virus was detecting
it.
I called Imail support and t
Don't know if this is related to spam or not... This morning I logged onto the NT4
server where we
host both our web and mail server. Immediately noticed a Messenger Service box (like
you get with
"net send" from dos prompt) containing a typical spam message (edited): "From our
Research Dept ...
I may be off-base here, but I would imagine this could work:
This is one of several methods we are investigating.
-Scott
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.JunkMail mailing list. To
u
Hm, Scott:
I may be off-base here, but I would imagine this could work:
A) Declude inspects the D... and Q... File, correct?
B) once Declude decides, that there is a "TO" whitelist for a particular
email, it will determine if the "Q" file lists more than one "R" line
(Recipient).
C) if there is
I know that this may have been covered in previous posts, but I wanted
to cover this topic again. (I may even have discussed this myself). I have
some users that have requested that they receive everything so I have had
their accounts whitelisted (WHITELIST TO [EMAIL PROTECTED]). I also have b
Greetings,
I know that this may have been covered in previous posts, but I wanted
to cover this topic again. (I may even have discussed this myself). I have
some users that have requested that they receive everything so I have had
their accounts whitelisted (WHITELIST TO [EMAIL PROTECTED]). I a
Scott, I got the same one. Do you need the files to verify?
No. This is a known issue with some of the older v1.68 interim releases.
-Scott
---
[This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)]
---
This E-mail came from the Declude.JunkMail
> There is now a new interim release at
> http://www.declude.com/release/168i/declude.exe that attempts to address
> this problem, but will add extra logging information in case it continues.
Scott, I got the same one. Do you need the files to verify?
03/28/2003 01:32:38 Q16ae04cd0082b4dc Msg fai
15 matches
Mail list logo