[Solved] Suspended: Skully

[skullys]

Have received numerous bounce back emails over the last couple of days, that may be related to spoofing (password compromise).

Suspension related to this?

 

username: skully

server: Tommy

main domain: skullythepirate

 

Thanks for looking into this!

 

[skullys]

One additional bit of info... Ths email account I was receiving bounce back was ... skully@thepiratestore.com

 

Here is raw source from one of the bounced emails...

 

Return-Path: <>
Delivered-To: skully@thepiratestore.com
Received: from tommy.heliohost.org
    by tommy.heliohost.org with LMTP
    id /lJvMytdT18k8wAAY4nxBQ
    (envelope-from <>)
    for <skully@thepiratestore.com>; Wed, 02 Sep 2020 08:51:55 +0000
Return-path: <>
Envelope-to: skully@thepiratestore.com
Delivery-date: Wed, 02 Sep 2020 08:51:55 +0000
Received: from mailnull by tommy.heliohost.org with local (Exim 4.92)
    id 1kDOUl-000GB4-MN
    for skully@thepiratestore.com; Wed, 02 Sep 2020 08:51:55 +0000
X-Failed-Recipients: jerromebardesley@aol.com
Auto-Submitted: auto-replied
From: Mail Delivery System <Mailer-Daemon@tommy.heliohost.org>
To: skully@thepiratestore.com
Content-Type: multipart/report; report-type=delivery-status; boundary=1599036715-eximdsn-1607433541
MIME-Version: 1.0
Subject: Mail delivery failed: returning message to sender
Message-Id: <E1kDOUl-000GB4-MN@tommy.heliohost.org>
Date: Wed, 02 Sep 2020 08:51:55 +0000

--1599036715-eximdsn-1607433541
Content-type: text/plain; charset=us-ascii

This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:

  jerromebardesley@aol.com
    host mx-aol.mail.gm0.yahoodns.net [67.195.228.84]
    SMTP error from remote mail server after end of data:
    554 delivery error: dd Not a valid recipient - atlas101.aol.mail.gq1.yahoo.com

--1599036715-eximdsn-1607433541
Content-type: message/delivery-status

Reporting-MTA: dns; tommy.heliohost.org

Action: failed
Final-Recipient: rfc822;jerromebardesley@aol.com
Status: 5.0.0
Remote-MTA: dns; mx-aol.mail.gm0.yahoodns.net
Diagnostic-Code: smtp; 554 delivery error: dd Not a valid recipient - atlas101.aol.mail.gq1.yahoo.com

--1599036715-eximdsn-1607433541
Content-type: message/rfc822

Return-path: <skully@thepiratestore.com>
Received: from hig34.internetdsl.tpnet.pl ([79.187.214.34]:62383 helo=[169.254.53.195])
    by tommy.heliohost.org with esmtpsa (TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256)
    (Exim 4.92)
    (envelope-from <skully@thepiratestore.com>)
    id 1kDOUj-000Fjt-O0
    for jerromebardesley@aol.com; Wed, 02 Sep 2020 08:51:54 +0000
MIME-Version: 1.0
X-Mailer: MailBee.NET 12.0.0.615
From: skully@thepiratestore.com
To: jerromebardesley@aol.com
Subject: Test
Date: Wed, 02 Sep 2020 01:51:52 -0700
Message-ID: <1.c2ecc48c8d4ae17d3594@WIN-DDV6UFOS797>
Content-Type: text/plain;
    charset="utf-8"
Content-Transfer-Encoding: quoted-printable

qwe

--1599036715-eximdsn-1607433541--
 

 

 

 

 

Edited September 4, 2020 by skullys

[wolstech]

Sending too many emails...sounds like a compromised password to me. Someone got into that mailbox and tried sending spam is my guess. The bounces are the rejected spam mails coming back...

 

Please change the password to that mailbox immediately. Unsuspended.

 

EDIT: Never mind, your mail counter hasn't reset yet. You'll need to wait until tonight when it resets before I can unsuspend this.

Edited September 4, 2020 by wolstech

[skullys]

Will that be midnight my time (eastern)?

[Flaze]

UTC.

[skullys]

Thanks!!

[skullys]

If the mail counter has reset... (see above) could someone unsuspend me so I can change email password.

[wolstech]

Unsuspended.