• The APS Catalog has been deprecated and removed from all Plesk Obsidian versions.
    Applications already installed from the APS Catalog will continue working. However, Plesk will no longer provide support for APS applications.
  • Please be aware: with the Plesk Obsidian 18.0.78 release, the support for the ngx_pagespeed.so module will be deprecated and removed from the sw-nginx package.

Issue Suspect server compromised

P

PatrickSG

New Pleskian
I have a Windows Server running Plesk 12 with MailEnable, I suspect my server is being compromised as it is sending out spam and the log shows that the spams are from 127.0.0.1.

I run a virus scan and it found no virus.

Is there a way to trace and find out the issues?

I have changed the Windows server administrator password, I notice there are some accounts created by Plesk (IME_ADMIN, IMS_USER, Plesk Administrator), can i reset the password for those accounts as well? So that I can eliminate the possibilities of those accounts being compromised?

Thanks.

Patrick
 
You must log in or register to reply here.

Similar threads

S
Issue Plesk Email Security Pro: Antivirus cannot be activated on server nor individual email accounts
Replies
5
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
M
Resolved Steps to understand why emails are being sent from localhost instead of domain?
Replies
6
Views
2K
MHC_1
M
W
Question odd file rewrites and wp directories
Replies
5
Views
3K
World eSports
W
T
Question ***SPAM*** Selected for Foundation Grant Donation
Replies
2
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
austriadesign
Issue Custom Dovecot Config fails (2.4) – Need Help
Replies
0
Views
2K
austriadesign
austriadesign
Back
Top