Hey Guys My inbox was flooded with over 700 emails this morning, all in the span of about 4 hours. They are all "Undelivered Mail Returned to Sender" emails being returned to non-existent recipients on my SegaSaturnCDS.com domain. Some of the messages say that the email was blocked by a spam blocker, but none say anything about a virus. I have two accounts on my SegaSaturnCDS.com domain, sales and info, and I've deleted both of them in Outlook but the messages still keep coming in. This happened once before about 3 weeks ago, but it stopped after a few hours. Between now and then I've reformatted the hard drive and reinstalled Windows (see other thread). I just did a virus scan and nothing was found. Anyone know what's going on?
Does the returned message say anything? Like buy cheap blue sweets that say viagrr on them or increase your banana size, etc? Also check the headers as it might give you a clue to where the messages came from, it could be a spammer using your address to do bulk emailing. Email is so weak that it's easy enough to fake the originator address so if the message does bounce the email will be returned to the originator even though they never sent them, bit like you sending a letter to a non existant address and putting someone elses address on the envelope as the return address. I've had a few 'Bounced' emails which I never sent.
Yeh, if you have a catchall email address for anything that gets returned you probably have a bot using your server as a spam server.
I thought that might be what was going on. About 90% of the mail just says that it's undeliverable because of fatal errors, spam guards, etc. A few have been auto-responders from Outlook saying the recipient is out of the office. I have two email accounts on the domain, info@segasaturncds.com and sales@segasaturncds.com. None of the original senders are from those accounts, they are all from bogus accounts like vah111@segasaturncds.com. Now that I think about it, on my default forward on the SegaSaturnCDS.com domain is my Japan-Games.com email. That's probably why turning off the SegaSaturnCDS.com accounts in outlook didn't change anything, it's being forwarded to my Japan-Games.com account since the recipients on my SegaSaturnCDS.com account don't exist. Time to remove the forwarder.... (below are some sample messages) ---------------------- This is the Postfix program at host mx1.bct.org. I'm sorry to have to inform you that your message could not be be delivered to one or more recipients. It's attached below. For further assistance, please send mail to <postmaster> If you do so, please include this problem report. You can delete your own text from the attached returned message. The Postfix program <vazqo@bctelco.com>: host 69.54.136.150[69.54.136.150] said: 550 5.1.1 User unknown (in reply to RCPT TO command) ----------------------- This is an automatically generated Delivery Status Notification. Delivery to the following recipients failed. rasputin@lexecon.com ------------------- This email address no longer exists. The user now has either a @datamail.co.nz or a @kinetic121.co.nz email address. -------------------
Right, it's very likely that it's not your computers causing the problem - rather, it is a spambot somewhere in the world that has e-mailed out claiming it's from you (fairly easy, just change the e-mail address on your e-mail sender - the average mail server won't stop it). However, on a reply back, there is a listing of which servers it went through before getting to the recipient - if your server is not on the list, then it's someone faking e-mails from you.
