URGENT! BADMAIL GROWING FAST!

[OdedShafran]

ok,
this is very urgnet, i will write whatever i did.

in the last 2 days my badmail was growing in 1 mb each 1-2min!
in the QUEUE folder, the same!
i noticed the RELAY\PERMISSION ACCESS was to anonymous and everyone is allowed to send mail.
so i changed it.
now, the queue is empty (good!) but the badmail keeps growing!
i have no viruses\trojans.

i also notice, that the SYMANTEC EXCHANGE FILTERING services are taking 20%-60%cpu, so i figured maybe it is cleaning what the hackers left...
but it keeps for hours to work!
as well as my IIS server is 120MB RAM! and taking 5-10% of the cpu...

what do u think is the source of this badmail?? should i keep waiting for the EXCHANGE SYMANTEC to finish??
please ! its urgent!
thanks

Oded Shafran,
Network Administrator,
Francesca Coffee S.A.

 

[speedracercjr]

It sounds like you were an open relay and all the badmail that you are recieving is just mail that is bouncing. Your probably on a "blackhole" list now. So if some other company uses that black hole list they will not be able to send you an email even thought your no longer an open relay.

 

[OdedShafran]

i know that
i was an open relay!
but why i keep getting BADMAIL to the dir! even though no emails are found in QEUEU!

Oded Shafran,
Network Administrator,
Francesca Coffee S.A.

 

[w3bm0nki]

Badmail is mail that could not be delivered. There should be no reason you can't go in and delete items in the directory. I have a script that runs weekly and deletes everything out of the Badmail directory.

 

[gringacho1]

I have this same problem, lots and lots of badmail - during boot I will get THOUSANDS (no joking, 12-33,000 email messages) before I turn the SMTP off. what is going on... is this a bot? how can my connection even handle that kind of traffic?

 

[SSonnier]

Would you care to share the script that you use to delete the bad mail each week?

How do you schedule this?