Question: I just noticed a whole number of bounced emails coming into my mailbox.

Obviously somebody is sending a ton of SPAM out under a number of spoofed email addresses like [email protected] and whenever it is sent to an invalid email address I, as the owner of domain name get the bounced email.

Is there a way to track down who the SPAMMER is?
Are we sure the SPAM is not sent out through my domain somehow?
Anything I can do to stop this? I don't want to get onto SPAM-blacklists or anything like that...

Answer: We have added a source tracking code to all emails that leave our servers.
Look at your header of your email. If you are using Outlook - right click on the email in the email list and click on the "View Options" link and you'll see a bunch of techie details about the sender and source of the email but the important part looks like this.


  X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
  X-AntiAbuse: Primary Hostname - primary_hostname
  X-AntiAbuse: Original Domain - original_domain
  X-AntiAbuse: Originator/Caller UID/GID - [originator_uid originator_gid] / [caller_uid
  X-AntiAbuse: Sender Address Domain - sender_address_domain


If the line
X-AntiAbuse: Sender Address Domain - sender_address_domain
looks like
X-AntiAbuse: Sender Address Domain -
 which has a  blank where the domain name should be then it is not from you.

If it looks like

X-AntiAbuse: Sender Address Domain - yourdomain.com

then it was sent from your site by a hacker who is using an unprotected form on your site to send them. To fix your form remove it completely or follow this advice

There is nothing you can do to stop it if it didn't come from you and if it didn't come from you then your domain won't be blocked for spam. The X-AntiAbuse tag is your and our proof that you did or didn't send it.