Hi,
I am having dreadful spamm issues. I have my own domian and a catch all active. I know that catch all will stop my problem and I wioll turn it off, but it doesn't answer WHY I'm having the problem and I'd like some help there please if possible.
The SPAM I'm getting are all Mailer Daemon messages telling me that email I've sent hasn't been delivered. First I thouight, oh s***, did a full virus and spyware scan (NOD32 v$ and A-squared and moosofts the cleaner). Nothing apart from the usual tracking cookies. I looked at the emails themselves, and they are being returned to me through the catch all to addresses that don't exist on my domain, althought the first header is sent to me (I assume the catch all adds this). Iam wondering, if my machine hasn't been compromised, is it possible that someone who has no access to any of my mail services is simply using my domain for Spamming purposes and that they don't even have any access to any of my mail services?
Hoping this is the case, I guess if so, There's nothing I can do about it. Here are the headers with my domian addresses changed. Where my real email address was, I've changed to my_real_email_address@my_domain.com, and for the false on, to false_email_address@my_domain.com.
Return-path: <>
Envelope-to: My_Real_Email_Address@my_domian.com
Delivery-date: Tue, 07 Apr 2009 19:50:50 +0100
Received: from mail by mail27.extendcp.com with spamvirus-scanned (Exim 4.69)
id 1LrGNk-0001Rf-AC
for my_real_email_address@my_domain.com; Tue, 07 Apr 2009 19:50:50 +0100
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
mail27.extendcp.co.uk
X-Spam-Level: **
X-Spam-Status: No, score=2.9 required=5.0 tests=BAD_ENC_HEADER,HTML_MESSAGE
autolearn=disabled version=3.2.5
Received: from prdn03.lasdec.or.jp ([210.254.150.121])
by mail27.extendcp.com with esmtp (Exim 4.69)
id 1LrGNi-0001L2-Ph
for false_email_address@my_domain.com; Tue, 07 Apr 2009 19:50:48 +0100
Received: from prdned01.lasdec.or.jp (localhost.localdomain [127.0.0.1])
by prdn03.lasdec.or.jp (8.12.11.20060308/8.12.10) with ESMTP id n37Ioaj9014029
for <falseemailaddress@my_domain.com>; Wed, 8 Apr 2009 03:50:39 +0900
Received: from prdnid02.lasdec.or.jp ([192.168.241.254])
by prdned01.lasdec.or.jp (8.12.11.20060308/8.12.10) with ESMTP id n37IoZeD014004
for <false_email_address@my_domain.com>; Wed, 8 Apr 2009 03:50:36 +0900
Received: from prdsec01.las.lasdec.or.jp (prdsec01.las.lasdec.or.jp [192.168.1.22])
by prdnid02.lasdec.or.jp (8.11.6p2/8.11.6) with ESMTP id n37IoU405882
for <false_email_address@my_domain.com>; Wed, 8 Apr 2009 03:50:30 +0900
From: [email protected]
To: false_email_address@my_domain.com
Date: Wed, 8 Apr 2009 03:43:40 +0900
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
boundary="9B095B5ADSN=_01C9B7A3F1A414DD000001E1prdsec01.las.las"
X-DSNContext: 335a7efd - 4523 - 00000001 - 80040546
Message-ID: <[email protected]>
Subject: =?unicode-1-1-utf-7?Q?+kU1P4XK2YUuQGnfl-
(+MKgw6TD8-)?=



Print Thread
deleted