Malke
Thu Nov 03 05:59:22 CST 2005
Johannes Buchner wrote:
> Andrei popescu wrote:
>> Lanwench [MVP - Exchange] wrote:
>>
>>> In news:ac4e5$4367907f$d99c5301$29020@allthenewsgroups.com,
>>> Andrei popescu <andrei.popescu@balcanicsoft.com> typed:
>>>
>>>> Hello!
>>>> I have a Windows Xp SP2 machine and i whant to catch all smtp
>>>> server activity and to redirect it on a specific e-mail addres. I
>>>> mean, if someone using a smtp server on that machine send an email
>>>> to xxx@hotmail.com the machine shoult delivery the mail to the
>>>> addres abc@localhost and not to xxx@hotmail.com. The reason is that
>>>> i suspect some suspect smtp activity on my machine and i whant to
>>>> see the content of the emails. Can someone help me?
>>>> Thanks in advice
>>>
>>>
>>>
>>> I don't think the IIS SMTP server can do this. What do you mean by
>>> 'suspect' ?
>>>
>> I mean i suspect a spambot running in the same time with my smtp
>> server but with a self smtp engine so i need to see the content of
>> the messages(all the trafic that exit on smtp, a "layer 7 filter". I
>> have some e-mail sniffers, but i don't know what is "behind the
>> code", so, i'm thinking that i could find a firewall rule solution.
> Use iptables and postfix or sendmail ;-)
Yes, well... if the OP were using iptables, etc. he wouldn't have the
problem and he wouldn't be posting here.
To the OP: it would be a far simpler and better idea to just take the
machine off any networks and clean it up with the usual Windows
troubleshooting for viruses/malware. Here are general steps:
http://www.elephantboycomputers.com/page2.html#Removing_Malware
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User