I have a client that is actually 100 clients.. it's a mobile home park that provides wireless internet to all tenants. One of their lines (they have 4 residential internet lines) has been blocked from sending emails because an infected computer is spamming.
I have managed to narrow it down to the ROUTER that is serving the client, but it is one of 11 routers and serves about 10-15 different small homes. It is a piece of junk actiontek router that was provided by their ISP.
Anyone have any advice on how to pin down which client in particular is responsible? If I could even get the exact internal IP of their computer I could cut their internet off and wait for the call "my internet doesn't worrrkkk" and then explain why and go from there. Help Please!!?
I have managed to narrow it down to the ROUTER that is serving the client, but it is one of 11 routers and serves about 10-15 different small homes. It is a piece of junk actiontek router that was provided by their ISP.
Anyone have any advice on how to pin down which client in particular is responsible? If I could even get the exact internal IP of their computer I could cut their internet off and wait for the call "my internet doesn't worrrkkk" and then explain why and go from there. Help Please!!?
Last edited:
I found the culprit in a round about way.. The router was so handicapped by the provider we ended up changing the wireless password and waiting for the calls. We connected 1 person at a time and watched the activity.. 3 person connected sent 300+ emails in a matter of minutes. We restricted their access and are still waiting for them to notice they cannot send emails.
