spam through my (argh) mailserver?

Offending message:
Return-Path: <sales@neovisiongroup.com>
Code: 
Received: from ensim.rackshack.net (root@localhost)
by custombirthdaynews.com (8.11.6/8.11.6) with ESMTP id h5A8mVA08173
for <x>; Tue, 10 Jun 2003 01:48:31 -0700
X-ClientAddr: [our mailserver IP]
Received: from localhost (ns03.mailserver.com [our mailservr ip])
by ensim.rackshack.net (8.11.6/8.11.6) with SMTP id h5A8mUI08168
for x; Tue, 10 Jun 2003 01:48:30 -0700
Received: from mail.com ([192.123.44.235])
    by localhost (8.11.9/8.11.9) with ESMTP id 60m54t09FmO2yo
    for <x>; Tue, 10 Jun 2003 02:05:12 -0600 (MDT)
Message-ID: <0203___________________O2yo@neovisiongroup.com>
From: "LogoSaur" <sales@neovisiongroup.com>
To: x
Subject: Quality Logo and Corporate Identity Design
Date: Tue, 10 Jun 2003 02:05:12 -0600 (MDT)
Status:
Bravely I went to terminate neovisiongroup.com..... only to discover that we do not host them / have never hosted them.

I also do not know the company that is being advertised in the Spam. Looking at the header it DOES look like it came through our mailserver. Or... am I missing something?

*edit* Brilliant. Since earlier today this IP is listed in several spam databases including spamcop.

I did some open relay tests but they all came up negative. No open relays on this server (cpanel)

So.. I don't know the sender, I don't know the company being advertised and I don't have an open relay.

I'm open for suggestions..

 

 

 

 

Top