Spam Emails from edm.cazxa.com to Sent to qq.com

Spamming - Adware

0
58
Aug. 21, 2019

This morning I woke up to approximately 2000 bounced emails from postmaster@edm.cazxa.com. Please see the sample below. It appears the emails are being sent to qq.com email addresses with a carbon copy (CC) sent to my email address. When the spam emails are ejected by qq.com, a copy of the bounced email is sent to me. And, that is how I ended up receiving almost 2000 bounced emails in my inbox.

Sample of the edm.cazxa.com Bounced Email

Delivery report
From: postmaster@edm.cazxa.com
Reporting-MTA: dns;edm.cazxa.com
X-PowerMTA-VirtualMTA: localhost.com
Received-From-MTA: dns;swz (154.223.166.96)
Arrival-Date: Wed, 21 Aug 2019 09:46:47 +0800
Final-Recipient: rfc822;1640716785@qq.com
Action: failed
Status: 5.3.2 (system not accepting network messages)
Remote-MTA: dns;mx3.qq.com (203.205.219.57)
Diagnostic-Code: smtp;550 Connection frequency limited. http://service.mail.qq.com/cgi-bin/help?subtype=1&&id=20022&&no=1000722 [MDThoCbEAzIXoZSHKNYZWnZu0IrdIehBR73SDBVFXWHvYiYLSJhCEaHxOa3oe8tCug== IP: 162.248.4.103]
X-PowerMTA-BounceCategory: other
Hello, this is the mail server on edm.cazxa.com.
I am sending you this message to inform you on the delivery status of a
message you previously sent. Immediately below you will find a list of
the affected recipients; also attached is a Delivery Status Notification
(DSN) report in standard format, as well as the headers of the original
message.
- 934695409@qq.com delivery failed; will not continue trying

Email Headers

X-Email-Count: 1
X-Source-Sender: () [162.248.4.102]:36421
X-Local-Domain: No
X-Exim-ID: 1A1erdFFxwJPj1-4KCKq7K-141ra6O90k
X-Source-IP: 162.248.4.102
Return-Path:
Received: from edm.cazxa.com (mta35.aeonmail.com [162.248.4.102]) by with SMTP;
Tue, 20 Aug 2019 20:30:43 -0500
Date: Wed, 21 Aug 2019 09:43:08 +0800
From: postmaster@edm.cazxa.com
Subject: Delivery report
To:
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
boundary="report5D5CA1AC@edm.cazxa.com"
Message-ID: - 322255739aae45fcbfd8db7c1808c685@com
X-SmarterMail-Spam: Reverse DNS Lookup [Passed], ISpamAssassin 0 [raw: 0], DK_None, DKIM_None
X-SmarterMail-SpamDetail: 0.6 MISSING_MID Missing Message-Id: header
X-SmarterMail-TotalSpamWeight: 0

Check the comment section for additional information, or share what you know or ask a question about this article, by clicking the 'View or Write Comment' button below.

Note: Some of the information in samples on this website may have been impersonated or spoofed.

Share this article with others.