• Introducing WebPros Cloud - a fully managed infrastructure platform purpose-built to simplify the deployment of WebPros products !  WebPros Cloud enables you to easily deliver WebPros solutions — without the complexity of managing the infrastructure.
    Join the pilot program today!
  • Support for BIND DNS has been removed from Plesk for Windows due to security and maintenance risks.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS.

Issue Suspect server compromised

P

PatrickSG

New Pleskian
I have a Windows Server running Plesk 12 with MailEnable, I suspect my server is being compromised as it is sending out spam and the log shows that the spams are from 127.0.0.1.

I run a virus scan and it found no virus.

Is there a way to trace and find out the issues?

I have changed the Windows server administrator password, I notice there are some accounts created by Plesk (IME_ADMIN, IMS_USER, Plesk Administrator), can i reset the password for those accounts as well? So that I can eliminate the possibilities of those accounts being compromised?

Thanks.

Patrick
 
You must log in or register to reply here.

Similar threads

N
Question Migrate mail server from other server
Replies
3
Views
1K
Kaspar@Plesk
Kaspar@Plesk
J.Wick
Issue External Email Stopped Working after Upgrading to Plesk Obsidian 18.0.70 Update #2
Replies
1
Views
250
J.Wick
J.Wick
M
Issue Outgoing Mail Control is always 0
Replies
1
Views
697
MarketPC
M
TheColin21
Resolved Docker outbound traffic gets blocked after 18.0.67 Update #3
2
Replies
28
Views
16K
Sebahat.hadzhi
Sebahat.hadzhi
M
Issue Database Connection Refused 10 mins after Deploy
Replies
1
Views
782
scsa20
scsa20
Back
Top