Online Threat Alerts (OTA) - Alerting you to scams and frauds.
Spamming - Adware
This morning I woke up to approximately 2000 bounced emails from postmaster@edm.cazxa.com. Please see the sample below. It appears the emails are being sent to qq.com email addresses with a carbon copy (CC) sent to my email address. When the spam emails are ejected by qq.com, a copy of the bounced email is sent to me. And, that is how I ended up receiving almost 2000 bounced emails in my inbox.
Delivery reportFrom: postmaster@edm.cazxa.comReporting-MTA: dns;edm.cazxa.comX-PowerMTA-VirtualMTA: localhost.comReceived-From-MTA: dns;swz (154.223.166.96)Arrival-Date: Wed, 21 Aug 2019 09:46:47 +0800Final-Recipient: rfc822;1640716785@qq.comAction: failedStatus: 5.3.2 (system not accepting network messages)Remote-MTA: dns;mx3.qq.com (203.205.219.57)Diagnostic-Code: smtp;550 Connection frequency limited. http://service.mail.qq.com/cgi-bin/help?subtype=1&&id=20022&&no=1000722 [MDThoCbEAzIXoZSHKNYZWnZu0IrdIehBR73SDBVFXWHvYiYLSJhCEaHxOa3oe8tCug== IP: 162.248.4.103]X-PowerMTA-BounceCategory: otherHello, this is the mail server on edm.cazxa.com.I am sending you this message to inform you on the delivery status of amessage you previously sent. Immediately below you will find a list ofthe affected recipients; also attached is a Delivery Status Notification(DSN) report in standard format, as well as the headers of the originalmessage. <934695409@qq.com> delivery failed; will not continue trying
Hello, this is the mail server on edm.cazxa.com.
I am sending you this message to inform you on the delivery status of a
message you previously sent. Immediately below you will find a list of
the affected recipients; also attached is a Delivery Status Notification
(DSN) report in standard format, as well as the headers of the original
message.
<934695409@qq.com> delivery failed; will not continue trying
