Question:
How do I stop all these spammed emails?
Me
2012-09-28 09:08:47 UTC
I keep getting 100s of emails a week from MAILER-DAEMON@yahoo.com saying I get message failures. The thing is I haven't sent an email from this address in months and when I open the emails they all say something like:


Sorry, we were unable to deliver your message to the following address.

:
Remote host said: 550 Requested action not taken: mailbox unavailable [RCPT_TO]

--- Below this line is a copy of the message.

Received: from [98.139.212.150] by nm20.bullet.mail.bf1.yahoo.com with NNFMP; 25 Sep 2012 01:51:15 -0000
Received: from [98.139.215.248] by tm7.bullet.mail.bf1.yahoo.com with NNFMP; 25 Sep 2012 01:51:15 -0000
Received: from [127.0.0.1] by omp1061.mail.bf1.yahoo.com with NNFMP; 25 Sep 2012 01:51:15 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 678682.40598.bm@omp1061.mail.bf1.yahoo.com
Received: (qmail 28790 invoked by uid 60001); 25 Sep 2012 01:51:15 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1348537875; bh=KEOx2c/Q0MmnlkE1OvwO8is1aIYSUjugE0HNxswLn5g=; h=X-YMail-OSG:Received:X-Mailer:Message-ID:Date:From:Subject:To:MIME-Version:Content-Type; b=h3JWT98Jmdbp6p1/7D+n0uVqQoLZxruEORuEzN/+aKfrVQHdSeztUzT8+weEoALlXax57WKCeTLwvztPQQFKGQIm8YeLQXc3ALKqWC+8nKaYigVlfZIYjlkbD2Bdy0K4jU481vn+Hg7PZ6fesXKW/aX8wgV8d2l9L9sd3agDi00=
DomainKey-Signature:a=rsa-sha1; q=dns; c=nofws;
s=s1024; d=yahoo.com;
h=X-YMail-OSG:Received:X-Mailer:Message-ID:Date:From:Subject:To:MIME-Version:Content-Type;
b=O3w9viHFTEVeAmoPwJqiRF2GV66QfcuF4i6wcYsJc7Ar54cXJSEBRr8ajjRzgHNwFxSXepG6DFGrGtRBRpOwP0wJJxJo/dobhkiRw4zESdHsjmFFbQxGVeIklnAV/CeiaKLUW4ffDmNHW+cdzBJfCXjyBFG2v3B6HJyq8M6JHMk=;
X-YMail-OSG: gOxqtV0VM1mB0FhzN2szWkXNQN1hslsqPLjNqJ1BXhEGE2d
a1rQKCc4.2Uhvi23ZVXH7RXvPb0e6Q38ZqhF0jed.2XgyDKQpDL_9tPAAObq
wYDDZy98bBEkmLde84uVGU7kVxU_6srulWAnZ_fF4UOrbTDVRiukrP7w426Z
RenoyAbV3HZ8EcUKxeMDEU1sdIMQrQWS6U0Eqya2ydDW.FojwuqndTqMivlB
YmdloFRecKs5oxNvn_aYBBa_YHgBUBEBODNCq5ViTmJUPOlqLeLa9HIL8X93
UtMEcMmJdMJE7bBpIm.oyhqzc7MI8hu9OMoOwcExLHAubSN2YdcdKpSXrABN
4EVVUB77xnET3cml3BOwAX_PxsdecuDdYiGiZO1K6WkVlJBBxUtwnqlT.CEL
AoQXDZ8zLOGAKYhk8bxvxCkrJ0DJTQidBDJKItwtr9aVeZvikgvjgNsUQlC2
hJWhbL2UlumPWWKryGLMMswVlZcA4siwTwBh78AQGq.LyQoerPejvaj5iID1
MTHrzfxal
Received: from [112.209.154.3] by web142502.mail.bf1.yahoo.com via HTTP; Mon, 24 Sep 2012 18:51:15 PDT
X-Mailer: YahooMailWebService/0.8.121.434
Message-ID: <1348537875.16282.BPMail_high_noncarrier@web142502.mail.bf1.yahoo.com>
Date: Mon, 24 Sep 2012 18:51:15 -0700 (PDT)
From: Braydon Lauer
Subject: Re2:
To: d1verjim@hotmail.com, eirik_thoresen@hotmail.com, ralfolof@hotmail.com,
emma_6969@hotmail.com, demonkiller18@hotmail.com, graciekatok@hotmail.com,
robintusup@hotmail.com, timgroce@hotmail.com, angelfuryjunk@hotmail.com,
delorisgumytog@hotmail.com, suicide_warrior@hotmail.com,
bloodangelselite@hotmail.com, semisonic57@hotmail.com, rw2fiver@msn.com,
marcusheath1@yahoo.com, noralee283@yahoo.com, mophisus@yahoo.com,
geir_abel@yahoo.com, chadcromwell@live.com, brownski35@hotmail.com
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii


Salute!
http://velplan.vndv.com/rtyuihfjj.php?sonytheme=838




How can I stop all these message failures from spamming my inbox? Thanks
Five answers:
Me
2012-09-28 09:12:26 UTC
Get a new email address.
Kaja
2012-09-28 09:19:58 UTC
well it sounds like you got a virus and or trojan horse.. A lot of the time what they do right away is send out emails to everybody but this looks like You are Braydon and you are sending out a email RE2 with a cc of a lot of people. Do you know these people? if not then I would say There are a variety of remedies for this. The simplest thing is since you have not used this email for months is to deactivate it and use another email account. Also go in and change the password on that account. Now to be thorough since I suspect an infection update your antivirus software and do a full scan. If you do not have an anti-virus i use and recommend Avast free you can get it here http://www.avast.com/en-us/index

It is great free and runs lightly. Also i always like a lot of folks recommend a free anti malware program called Malwarebytes get it here http://www.malwarebytes.org





Download it install it and then when you have updated the antivirus programs restart your computer and keep tapping the F8 key. You will see a menu of modes. Go into safe mode and do full scans there. I think that will solve your problem
2012-09-28 09:56:34 UTC
I think you have to up grade your Internet security and get a new email now that it has been compromised. Please do not click on attachments on emails you do not know who the sender is. I use my service providers email for the important stuff and only share it with my best friends. The ones that are free like hotmail seem to be the worst offenders. See some good articles on the Asystematics site. ATB
Tony RB
2012-09-29 16:24:25 UTC
First, you have to report all of these email addresses as spam.

Yahoo's email workers will have to analyze these emails to see where they are really coming from.



For example, look for the line that says :

Received: from [112.209.154.3] by web142502.mail.bf1.yahoo.com via HTTP; Mon, 24 Sep 2012 18:51:15 PDT



That IP address is assigned to the Phillipines, the ipvoid website reports :



http://ipvoid.com/scan/112.209.154.3/



ISP: Unknown

Organization: Unknown

IP Hostname: 112.209.154.3.pldt.net

IP Country: Philippines Philippines (PH)



But the message says

Sorry, we were unable to deliver your message to the following address.



:



Hotmail is a Microsoft webservice, and Microsoft does not use unidentifiable IP addresses for its outgoing email.



Therefore I suspect these emails are phony failure notices, they are trying to trick you into checking that link out, because it might be an attack website, where that particular page is loaded with code that tries various exploits out against your browser.



Look at that URL, the filename is "rtyuihfjj.php" which is a bizarre collection of letters that mean nothing but makes it easy for the malware criminals to rapidly find it in a list of files, normal programmers don't use filenames like that.



Let's look at MyWorldOfTrust website to see what users have reported about the vndv.com website:



http://www.mywot.com/en/scorecard/vndv.com



"server for: zymic.com

which is a web host that offers free hosting as well as paid."



"This is a hosting domain used to host sub-domains. All sub-domains of vndv.com are under control of independent users and should be rated on their own merits."



"The domain vndv.com, registered through ENOM, INC. is listed on at least two SPAM blacklists as of today. This does not necessarily indicate that they are guilty of sending SPAM, merely that the server that their IP address is associated to was confirmed by at least 2 sources to be a gateway for SPAM. This leads us to recommend caution on this server as it is possible that if it is compromised for SPAM, other data could be compromised."



"Warning: Keep out. IP/Hostname/Website created in order to perpetrate malicious attacks (ex. Social Engineering, Frauds of various kinds etc.) against users."



=====



Whenever a website provides free hosting, there are going to be criminals who attempt to take advantage of the free hosting to be able to build attact websites. They can operate for several days before the hosting site shuts that particular website down. All those criminals have to do is trick people into going to their website, and one way is to send out emails claiming to be failure notices.



=====



Read about exploit packs here :



http://krebsonsecurity.com/2012/03/new-java-attack-rolled-into-exploit-packs/



An exploit pack is a software toolkit that gets injected into hacked or malicious sites, allowing the attacker to foist a kitchen sink full of browser exploits on visitors. Those visiting such sites with outdated browser plugins may have malware silently installed, and Java is almost universally the most successful method of compromise across all exploit kits.



Brian Krebs is a journalist who tracks a lot of news about malicious software and does some of his own investigations.



=====
2016-12-11 15:00:01 UTC
There could be an anti-virus software put in on your laptop (if no longer please deploy it for secure practices of your laptop), pass to the alternative tag and in you’ll get a listing of software you want to, to be scanned for virus which includes emails. in case you mark this determination your laptop will test for virus in the digital mail you're approximately to open and if it detected you will get carry of a warning and persist with the education you get on the video exhibit. (YOUR ANTI-VIRUS must be as much as date many times for clean DEFINITION OF VIRUS.)


This content was originally posted on Y! Answers, a Q&A website that shut down in 2021.
Loading...