quick spam! (virus?)

[snooper]

i opened a new account a few days ago, within minutes, i was getting (bounce) emails to the only 2 emails i opened on that domain, from all kinds of [email protected] - that dont even exist.

ie, i opened [email protected] and [email protected] and they were both getting kind of bounce emails to/from [email protected] , [email protected] etc...

what can be done about this?

i already have a catch-all setup (to delete) and spam is set to agressive.

cheers


PS: here's a copy of the message -----------------------

Hi. This is the qmail-send program at mail.m****here.biz.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.

<anna@***.org>:
204.14.107.174 failed after I sent the message.
Remote host said: 552 sorry, the virused mail is detected (#5.6.0)

--- Enclosed are the original headers of the message.

 

[Scotty_32]

not sure if IS the same as wot i got

but i got bounce back virus's

sent from [email protected]

to (like yours) random name @mydomain.com

the emails that was sent was sent as if it was connected to my site saying things like:

<html>
<body>
<BR><STRONG>Dear *mydomain* Member, </STRONG><BR>
<BR>We have temporarily suspended your email account serg@*mydomain*.com.<BR>
<BR>This might be due to either of the following reasons: <BR>
<BR>1. A recent change in your personal information (i.e. change of address).
<BR>2. Submiting invalid information during the initial sign up process.
<BR>3. An innability to accurately verify your selected option of subscription due to an internal error within our processors.
<BR>See the details to reactivate your *mydomain* account. <BR>
<BR>Sincerely,The *mydomain* Support Team <BR>
<BR><BR><BR><BR><BR>
<BR>+++ Attachment: No Virus (Clean)
<BR>+++ *mydomain* Antivirus -
www.[b]*mydomain*[/b].com</body>
</html>

thing is, you cant really stop it, as its a bounce back, so unless you set a filter to delete emails containing wot ever the emails always have you cant really do anything bout it

its quote worrying that the emails say its had a virus scan FROM my website

luckly for me, nobody who has an account with my site has an email address, and even luckier - am the only one with email addresses with my site

 

[Stephen]

Sounds like some of the virii/worms that are running around so much today, computers that are SMTP zombies with fake reply-to/from addresses.

 

[snooper]

indeed, but how does it work so fast??? it was within minutes of me setting up the new emails - on the new account!!
makes me think the zombie thing is on JH... ?(

 

[Stephen]

No, more likely the domain, was it newly registered, or had it been around for along time and just moved?

 

[snooper]

brand new domain - registered about an hour or 2 before opening the account ?(

 

[SubSpace]

There are websites around that list newly registered domain names. Possibly some spam software harvests those domain names and uses them to send spam to?