- Dec 7, 2014
- cPanel Access Level
- Root Administrator
Hi, I have noticed strange behaviour reading my exim_mainlog, but not sure what is actually happening. Mail queue is getting full, when I investigated case, I have change e-mail password for suspicious account, and problem is still presented. I have mail queue full of spam messages, like that:
And then a lot of similar logs:
What is concerning me, I am not sure if that mailbox is brached, and sending a lot of spam to random e-mails, how to find out what is actually happening?
This message was created automatically by mail delivery software. A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed: [email protected] Domain [B]myuserdomain.com[/B] has exceeded the max defers and failures per hour (5/5 (17%)) allowed. Message discarded. ------ This is a copy of the message, including all the headers. ------ Return-path: <[B][email protected][/B]> Received: from [18.104.22.168] (port=51089) by [B]myhostname.example.com[/B] with esmtpa (Exim 4.84) (envelope-from <<[B][email protected][/B]>>) id 1YBJnJ-0006h0-6n for [email protected]; Wed, 14 Jan 2015 09:59:17 +0100 Content-Type: text/plain; charset="iso-8859-1" MIME-Version: 1.0 Content-Transfer-Encoding: quoted-printable Content-Description: Mail message body Subject: Settlement To: [email protected] From: "IMF" <<[B][email protected][/B]>> Date: Wed, 14 Jan 2015 02:58:45 -0600 Reply-To: [email protected]
[B]2015-01-14 09:57:50 1YBJlu-0006h0-Lz <= [B][email protected][/B] H=([22.214.171.124]) [126.96.36.199]:51089 P=esmtpa A=dovecot_login:[email protected] S=2057 T="Settlement" for [email protected][/B]