spam problem

i get lots of spam from myself.
do you know what's wrong with it from header?
Received:  from odc-mgw02.xxx.com ([165.241.62.227])          by test.jp.xxx.com (Lotus Domino Release 7.0.3FP1)          with ESMTP id 2008111202294705-62660 ;          Wed, 12 Nov 2008 02:29:47 +0900
X_AuditID:  0a31b1e1-a9050bb000001130-ec-4919c10ab250
Received:  from mail172.messagelabs.com (mail172.messagelabs.com [216.82.254.3])	by odc-mgw02.xxx.com (Symantec Mail Security) with SMTP id C4DAF3DC002	for <john.john@xxx.com>; Wed, 12 Nov 2008 02:29:46 +0900 (JST)
X_Env_Sender:  john.john@xxx.com
X_Msg_Ref:  server-4.tower-172.messagelabs.com!1226424584!26152912!1
X_StarScan_Version:  5.5.12.14.2; banners=-,-,-
X_Originating_IP:  [82.54.237.244]
X_SpamInfo:  blackholed by DUL
X_Spam_Flag:  YES
Subject:  SPAM:  I found driving license
Received:  (qmail 2038 invoked from network); 11 Nov 2008 17:29:45 -0000
Received:  from host244-237-dynamic.54-82-r.retail.telecomitalia.it (HELO host177-43-dynamic.183-80-r.retail.telecomitalia.it) (82.54.237.244)  by server-4.tower-172.messagelabs.com with SMTP; 11 Nov 2008 17:29:45 -0000
SendTo:  <john.john@xxx.com>
From:  <john.john@xxx.com>
MIME_Version:  1.0
Importance:  1
$MessageID:  <20081111172946.C4DAF3DC002@odc-mgw02.xxx.com>
PostedDate:  11/11/2008 11:29:46
X_Brightmail_Tracker:  AAAAAA==
$MIMETrack:  Itemize by SMTP Server on test/SVR/xxx CORP(Release 7.0.3FP1|February 24, 2008) at 2008/11/12 02:29:47,MIME-CD by Notes Client on john john/JP/xxx CORP(Release 5.0.10 |March 22, 2002) at 11/12/2008 14:30:39,MIME-CD complete at 11/12/2008 14:30:39
SMTPOriginator:  john.john@xxx.com
HasSafeStamp:  
RouteServers:  CN=test/OU=SVR/O=xxx CORP,CN=test/OU=SVR/O=xxx CORP
RouteTimes:  11/11/2008 11:29:47-11/11/2008 11:29:48,11/11/2008 11:31:00-11/11/2008 11:31:01
$Orig:  
$UpdatedBy:  CN=test/OU=SVR/O=xxx CORP,CN=test/OU=SVR/O=xxx CORP
Categories:  
$Revisions:  
DeliveredDate:  11/11/2008 11:31:01
 
If you are unable to see the message below, click here to view.

Open in new window

Hiroyuki TamuraField EngineerAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

war1Commented:
Hello hiroyuki718,

Someone is spoofing your address and sending spam mail as you.  Make sure your computer is not an open relay
http://www.postcastserver.com/help/Blocking_Open_Relays.aspx
and
http://support.microsoft.com/kb/324059

If you have control of the server, you can Integrate SPF and DomainKeys, which would help to stop spoofing in the future:

SPF:
http://www.openspf.org/

DomainKeys:
http://domainkeys.sourceforge.net/

Hope this helps!
war1
Hiroyuki TamuraField EngineerAuthor Commented:
thank you.
messagelab spam filter can catch this spam.
but i guess if i block this spammer, SPF or Domainkeys is the only way...
if i leave it, i get more spams... any other damage to me?
Hiroyuki TamuraField EngineerAuthor Commented:
and which line exactly tells "spoofing"? from snippet
Learn SQL Server Core 2016

This course will introduce you to SQL Server Core 2016, as well as teach you about SSMS, data tools, installation, server configuration, using Management Studio, and writing and executing queries.

war1Commented:
The combination of sending server which is not yours and from address which is yours show that spoofing is occurring.
Hiroyuki TamuraField EngineerAuthor Commented:
thank you.
which line shows sending server?
war1Commented:
It is usually the last Received line in the header

Received:  from host244-237-dynamic.54-82-r.retail.telecomitalia.it (HELO host177-43-dynamic.183-80-r.retail.telecomitalia.it) (82.54.237.244)  by server-4.tower-172.messagelabs.com with SMTP; 11 Nov 2008 17:29:45 -0000
Hiroyuki TamuraField EngineerAuthor Commented:
thank you.
we use frame relay to connect vpn to our main server.
can you guess what's the possibility they find our address?
war1Commented:
You left your address in a public website?  You sign up to a bad website, like pronography or shopping website, that collect addresses for spam.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Hiroyuki TamuraField EngineerAuthor Commented:
Thank you.
war1Commented:
You are welcome, hiroyuki !
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Email Software

From novice to tech pro — start learning today.