Spam Emails from edm.cazxa.com to Sent to qq.com

Save
Comments: 0
Views: 9
Updated: August 21, 2019 2019-08-21T07:06:36
Date: August 21, 2019 2019-08-21T06:59:55

This morning I woke up to approximately 2000 bounced emails from postmaster@edm.cazxa.com. Please see the sample below. It appears the emails are being sent to qq.com email addresses with a carbon copy (CC) sent to my email address. When the spam emails are ejected by qq.com, a copy of the bounced email is sent to me. And, that is how I ended up receiving almost 2000 bounced emails in my inbox.

Sample of the edm.cazxa.com Bounced Email

Delivery report

From: postmaster@edm.cazxa.com

Reporting-MTA: dns;edm.cazxa.com

X-PowerMTA-VirtualMTA: localhost.com

Received-From-MTA: dns;swz (154.223.166.96)

Arrival-Date: Wed, 21 Aug 2019 09:46:47 +0800

Final-Recipient: rfc822;1640716785@qq.com

Action: failed

Status: 5.3.2 (system not accepting network messages)

Remote-MTA: dns;mx3.qq.com (203.205.219.57)

Diagnostic-Code: smtp;550 Connection frequency limited. http://service.mail.qq.com/cgi-bin/help?subtype=1&&id=20022&&no=1000722 [MDThoCbEAzIXoZSHKNYZWnZu0IrdIehBR73SDBVFXWHvYiYLSJhCEaHxOa3oe8tCug== IP: 162.248.4.103]

X-PowerMTA-BounceCategory: other

Hello, this is the mail server on edm.cazxa.com.

I am sending you this message to inform you on the delivery status of a

message you previously sent. Immediately below you will find a list of

the affected recipients; also attached is a Delivery Status Notification

(DSN) report in standard format, as well as the headers of the original

message.

<934695409@qq.com> delivery failed; will not continue trying

Email Headers

X-Email-Count: 1
X-Source-Sender: () [162.248.4.102]:36421
X-Local-Domain: No
X-Exim-ID: 1A1erdFFxwJPj1-4KCKq7K-141ra6O90k
X-Source-IP: 162.248.4.102
Return-Path: <>
Received: from edm.cazxa.com (mta35.aeonmail.com [162.248.4.102]) by with SMTP;
Tue, 20 Aug 2019 20:30:43 -0500
Date: Wed, 21 Aug 2019 09:43:08 +0800
From: postmaster@edm.cazxa.com
Subject: Delivery report
To:
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
boundary="report5D5CA1AC@edm.cazxa.com"
Message-ID: <322255739aae45fcbfd8db7c1808c685@com>
X-SmarterMail-Spam: Reverse DNS Lookup [Passed], ISpamAssassin 0 [raw: 0], DK_None, DKIM_None
X-SmarterMail-SpamDetail: 0.6 MISSING_MID Missing Message-Id: header
X-SmarterMail-TotalSpamWeight: 0

Note: Some of the names, addresses, email addresses, telephone numbers or other information in samples on this website may have been impersonated or spoofed.

Please share what you know or ask a question about this article by leaving a comment below. Check the comment section below for additional information, if there is any. Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com. And, report missing persons, scams, untrustworthy, or fraudulent websites to us. Tell us why you consider the websites untrustworthy or fraudulent. Also, to quickly find answers to your questions, use our search engine.

You can help maintain Online Threat Alerts (OTA) by paying a service fee. Click here to make payment.

Comments, Questions, Answers, or Reviews

There are no comments as yet, please leave one below or revisit.

To help protect your privacy, please do not post or remove, your full name, telephone number, email address, username, password, account number, credit card information, home address or other sensitive information in or from your comments, questions, or reviews.