Chapter 9. Troubleshooting

If you experiencing trouble protecting you mail server from virus threats and spam, follow the steps below to ensure that Dr.Web for MIMEsweeper is installed and configured properly:

•	Check installation

•	Check Updater module

•	Check integration with content filter

To check installation

1.	Ensure that the plug-in created the following folders:

•	%ProgramFiles%\DrWeb for MIMEsweeper\

•	%CommonProgramFiles%\Doctor Web\

•	%AllUserProfile%\Application Data\Doctor Web\

2.	On the Control Panel, double-click Administrative Tools and then double-click Services. Ensure that the following services are running:

•	Dr.Web Scanning Engine (DrWebEngine)

•	MIMEsweeper for SMTP Infrastructure

•	MIMEsweeper for SMTP Security Service

3.	View Event Log and ensure that there is no errors which originate from Dr.Web for MIMEsweeper.

4.	In the %AllUserProfile%\Local Settings\Application Data\Doctor Web\Logs folder, view the DRWMSWLog.log text log and ensure that is contains no errors.

To check Updater

1.	On the Control Panel, double-click Scheduled Tasks and ensure that the DrWeb for MIMEsweeper Update task is created.

2.	Check that last update succeeded. The program updates virus databases automatically after installation completes. If update completes successfully, the ERRORLEVEL environment variable is set to 0. Other values indicate an error.

3.	In the %AllUserProfile%\Application Data\Doctor Web\Logs\ folder, view the DRWebUpw.log the update log and ensure that it contains no errors.

To check plug-in integration

1.	Create and send an e-mail with the EICAR-Test-File in attachment to a mailbox on your mail server.

2.	Check the received e-mail. If you configured the content filter according to this guide, the infected object must be cleaned or stripped. The message and its header may contain annotation which notifies you on the plug-in actions.

3.	Send via SMTP to a mailbox on you mail server a spam message with the following text:

Start enjoying the benefits of Generic Medic1ne. Order quickly and easily, and save a ton of money. Try them out, they're 100% m0ney back guarantee.

4.	Check incoming messages. The content filter must move the message to quarantine directly without sending it to the address.