HELP!! My email address is being used to spam!

[Steve_010]

I keep getting MAILER-DAEMON emails in my in-bin.

"Returned mail: see the transcript [FAILED(1)]"
"failure notice"

The body of the email says that it couldn't be delivered and then the original message is about pills and other spam crap...

I get like 10 of these a day every day. I know these emails aren't coming from me. I could care less accept that my email address is being attached to all this spam that other people are getting...tarnishing my name...

Anyway to stop this?

This is the mail delivery agent at messagelabs.com.
I was not able to deliver your message to the following addresses.

<[email protected]>:
144.189.100.102 does not like recipient.
Remote host said: 550 5.0.0 <[email protected]>... Host unknown


--- Below this line is a copy of the message.

Return-Path: <[email protected]>
X-VirusChecked: Checked
X-Env-Sender: [email protected]
X-Msg-Ref: server-3.tower-119.messagelabs.com!1160830669!9822232!1
X-StarScan-Version: 5.5.10.7; banners=-,-,-
X-Originating-IP: [88.224.222.87]
X-SpamInfo: spam detected heuristically
X-Spam-Flag: YES
X-SpamReason: Yes, hits=8.3 required=7.0 tests=HTML_10_20,HTML_MESSAGE,
MIME_HTML_ONLY,ML_RADAR_76,RCVD_NUMERIC_HELO,URG_BIZ,spamassassin:
Received: (qmail 21412 invoked from network); 14 Oct 2006 12:57:50 -0000
Received: from unknown (HELO cspup) (88.224.222.87)
by server-3.tower-119.messagelabs.com with SMTP; 14 Oct 2006 12:57:50 -0000
Received: from [88.224.99.34] (helo=88.224.99.34)
by cspup with smtp (Exim 4.43)
id 1IYNcW-0004Mm-SX; Thu, 20 Sep 2007 18:07:12 +0300
Message-ID: <[email protected]>
Date: Thu, 20 Sep 2007 17:58:38 +0300
From: Clarence Le <[email protected]>
User-Agent: Thunderbird 1.5.0.7 (Windows/20060909)
MIME-Version: 1.0
To: [email protected]
Subject: two first person
Content-Type: multipart/related;
boundary="------------060104020105040608060807"

This is a multi-part message in MIME format.
--------------060104020105040608060807
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
<img alt="" src="cid[email protected]" height="442"
width="505"><br>
Discover why you might want to build your own components, plus what you
must keep in mind if you decide to do so. So with September right around
the corner, check out what's going on.<br>
com Oldies Music GuideSite.<br>
's in Iraq on page five. The "national anthem of Halloween" may be the
most popular song of the costuming season, but, as this newly-revamped
history proves, it only got that way with. In predictive modeling, data
is collected to create a statistical model, which is tweaked as
additional data becomes available.<br>
Thecourse also covers portlet design, internationalizing and
localizingapplications, and AJAX technology.<br>
So with September right around the corner, check out what's going
on.<br>
WEENIE IN THE DEBATE!<br>
Weeenie, then you'll probably think he won anyway and you'll go click to
somewhere else.<br>
The technique uses variables that can be measured to predict the future
behavior of a person or other entity.<br>
Take a browse through more than a dozen new views of personal sacred
spaces. An independent web developer, Walter has wanted to up-level his
career and offer his clients the Java web apps they've been asking for.
Screening sites all over the US will be offering free depression
screenings.<br>
It's time to grab a handfull and wave that magic wand!<br>
Here are the latest results of our previous poll, which is. Take a
browse through more than a dozen new views of personal sacred spaces. An
independent web developer, Walter has wanted to up-level his career and
offer his clients the Java web apps they've been asking for. want to
know what Bobby Rydell had to do with the genesis. Walk through the
installation, adding an example database, setting up a MySQL data
source, and creating a demo web application.<br>
Because the documents were photocopied at a Kinkos in Texas, their
provenance cannot be proven and they might have been faked.<br>
These are the requirements recommended by the Center. Fighting in Iraq
is reported with terms like "precision bombing" of "insurgents", with
little notice of the imprecision of our attacks and the civilian deaths
and injuries they cause. Thecourse also covers portlet design,
internationalizing and localizingapplications, and AJAX technology.<br>
WEENIE IN THE DEBATE! You'll use the tool's bundled JavaServer Faces
components to buildapplications that access a database, EJB components,
and Web services.<br>
com Depression GuideSite.<br>
not only does it feature a total. The first page has a button that
navigates to the second page, which contains a progress bar.<br>
Times carried the deaths of two more G.<br>
The technique uses variables that can be measured to predict the future
behavior of a person or other entity. Because the documents were
photocopied at a Kinkos in Texas, their provenance cannot be proven and
they might have been faked. want to know what Bobby Rydell had to do
with the genesis.<br>
The technique uses variables that can be measured to predict the future
behavior of a person or other entity.<br>
not only does it feature a total. Bumper stickers to spice up your
locker, patches for your backpack and even bookmarks for those.<br>
want to know what Bobby Rydell had to do with the genesis. Well,
gee-fuckin'-whiz!<br>
Fighting in Iraq is reported with terms like "precision bombing" of
"insurgents", with little notice of the imprecision of our attacks and
the civilian deaths and injuries they cause.<br>
<br>
</body>
</html>

--------------060104020105040608060807
Content-Type: image/gif;
name="nonstandard.gif"
Content-Transfer-Encoding: base64
Content-ID: <pa

--Message Truncated--

I only have 2 email address for my website and [email protected] is not one of them...

 

[mikeblas]

Call your ISP and ask them why they haven't secured your mail server.

 

[Zinn]

damn, call your ISP!

 

[Fark_Maniac]

Looking at this piece of the header information:
Received: from unknown (HELO cspup) (88.224.222.87)

is your IP 88.224.222.87?

A spammer could be sending spam to a list with your email as the recipient. When an email gets sent to a mail server with a bad account, it will bounce back to your account.

 

[tskiller]

Or they could just be spoofing the headers....not hard to do....

 

[The-One]

That's crazy. I feel less secure on the net every day.

 

[mikeblas]

This isn't a new attack vector. You should have never felt secure on the net to begin with.

 

[Steve_010]

Call your ISP and ask them why they haven't secured your mail server.

my site is hosted by http://www.1portfolio.com/

I'm going to send them an email now...

 

[tskiller]

Ok, 99% this is just a spoofed header. Anyone can do this. It's been like this since the email protocol was created. Its the same thing as writing a snail mail and putting someone elses address on the return address section. If this is indeed the case, this is just something you will have to live with. If not, well, your webhost should be shot for using open SMTP relays, or you should be shot for having a poor password.

 

[XOR != OR]

This isn't a new attack vector. You should have never felt secure on the net to begin with.

Very very very wise words.

What is happening to you is called a Joe Job, and there is exactly jack and shit you can do about it.

Sorry.

 

[Steve_010]

Ok, 99% this is just a spoofed header. Anyone can do this. It's been like this since the email protocol was created. Its the same thing as writing a snail mail and putting someone elses address on the return address section. If this is indeed the case, this is just something you will have to live with. If not, well, your webhost should be shot for using open SMTP relays, or you should be shot for having a poor password.

Well thats fucking retarted....has anyone else here experienced this problem too?

My webhost uses cpanel and there is an option to reject all emails that have an invalid email address. This has stopped me from recieving all those return to sender emails with random letters before the @

Guess thats all I can do...

 

[tskiller]

Well thats fucking retarted....has anyone else here experienced this problem too?

My webhost uses cpanel and there is an option to reject all emails that have an invalid email address. This has stopped me from recieving all those return to sender emails with random letters before the @

Guess thats all I can do...

millions of people across the world have had this happen to them. Its just something you have to deal with if you want to use the internet. It's just the way that the email protocol was originally designed. i agree, many of the standard protocols we use are nigh useless these days due to the many kinds of abuse, but unfortuantly we cannot change them. its become so standard it would be impossible to move to a new system, get rid of the old systems problems, while at the same time retaining the necissary legacy support.

 

[shadowfax]

hey you're lucky. When they spoofed mine it was for penis enlargement and sex toy ads, and some dimwits actually thought I was the real spammer

 

[Steve_010]

I guess I'll just put a little disclaimer on the front of my page regarding this.

 

[ksar123]

millions of people across the world have had this happen to them. Its just something you have to deal with if you want to use the internet. It's just the way that the email protocol was originally designed. i agree, many of the standard protocols we use are nigh useless these days due to the many kinds of abuse, but unfortuantly we cannot change them. its become so standard it would be impossible to move to a new system, get rid of the old systems problems, while at the same time retaining the necissary legacy support.

+1 - unfortunately there's really nothing you can do...

 

[Steve_010]

+1 - unfortunately there's really nothing you can do...

Theres really nothing or there is nothing?

 

[Fark_Maniac]

you could spend a lot of money to track down the spammer and then send him to sleep with the fishes....really, that's about it.
Spammers will continue to spam. This is an easy trick.

 

[Dew]

One thing that may help is implimenting SPF for your domain. It will at least help people identify YOUR traffic as real.

 

[Cobalt2112]

Isn't this as old as the Melissa virus?

 

[ksar123]

nevermind.

 

[Nasty_Savage]

Maybe they have open relay enabled by mistake?