Is Our Server Being Used as a Relay?

Hey Guys,

More and more lately, we are getting the following bounced emails sent to us:

-----------------------------------------


From: Mail Delivery Subsystem < MAILER-DAEMON@f1.peterstar.net>
To: lmcml@mjmmagic.com
Subject: Returned mail: see transcript for details
Date: Sat, 30 Sep 2006 07:01:06 +0400 (MSD)

The original message was received at Sat, 30 Sep 2006 07:01:06 +0400
(MSD)
from mx.peterstar.ru [217.195.65.15]

----- The following addresses had permanent fatal errors -----
/d/mail/vodopad
(reason: Service unavailable)
(expanded from: < vodopad@peterstar.ru> )

----- Transcript of session follows -----
550 /d/mail/vodopad... User mailbox quota exceeded, please send this
message later
554 5.0.0 Service unavailable

Date: Sat, 30 Sep 2006 12:00:54 +0900
From: Jerome Oliver < lmcml@mjmmagic.com>
To: vodopad@peterstar.ru
Subject: prejudge

-----------------------------------------

It appears that this email was sent FROM a user named " Jerome Oliver < lmcml@mjmmagic.com> " , but that user doesn't exist on our server!

Being a newbie when it comes to cPanel, is there any settings you can walk me through to Tweak in the root Control Panel which may prevent these from being sent out from non-existent users?

Here is a screenshot of my current Mail settings under cPanel: http://www.mjmmagic.com/images/cPanelMailSettings.jpg

 

Sorry for the long delay in responding. I DO have the antirelayd enabled in my configuration. For some reason though, someone seems to still be sending SPAM out from our domain using fictional users.

For example, our domain is mjmmagic.com

We are getting bounced messages back to us, showing that some fictional user like hfsdhjks@mjmmagic.com is sending mail out to people.

I don't know how to stop this, or determine the script that might be the culprit. Any ideas?