Looks certainly like a process having root access to this machine is
sending outgoing email. Am I reading the hints from the logs
correctly?
Suspicious queue:
3d 5.4K 18ah0G-0001SG-00 <mftb@???>
D unisonmusic@???
D johnnylarock@???
D eric@???
D furiouscurious@???
D rendulic@???
D Wanhope@???
D skhan@???
D sweetpea800@???
D eanmusic@???
D barbmerritt@???
D robertbiggers@???
D CAROLANNESCHUMACHER@???
D ryan_hajime@???
D angi_bedell@???
D furiouscurious@???
D whaleworld3000@???
D nikkitexasmusic@???
D veronicared@???
D sergiovan@???
D jonathanrread@???
D friendsofsimoom@???
D elfykins@???
D tictoc77@???
D facemace@???
D threeyaks@???
D fmcohen@???
D shawnallah@???
D SOKKO7@???
D Darrellamartin@???
D IGrossman@???
D charles@???
D DIGITALfluid@???
D FurnaceSt@???
D PLASTICEFX@???
D noisebreaker@???
D Vedalia120@???
dkraft@???
D byczyk@???
D jacobnf@???
D mortetreehorn@???
D kmerritt@???
D critikillkill@???
D chloegalvanic@???
D bob@???
D chuckchildren@???
D Wurzel666@???
D demarcomiller@???
D jvektor@???
D BarreSus@???
Relevant log entries for this message id:
2003-01-20 13:50:36 18ah0G-0001SG-00 <= mftb@??? U=root
P=local S=5472 id=000a01c28163$f0dc25a0$dd82570c@oemcomputer
T="Litter-A-Chair..." from <root@???> for [...]
Doesn't look good. Before I jump the gun, can anyone confirm my fears?
hank
