Not sure if someone spoofed our domain and used my exchange server to send out tons of emails, but that's what it looks like to me what happened. I have attached a screenshot of the logs from my exchange server 2007 SP2. For some reason, the system won't let me download them, but my exchange server is telling me that an email address from my domain, which the email does exist in AD, sent out thousands of emails a few days ago.
How could this be, because no one actually has the email in question, it's just used to receive certain emails at. How can I research this fruther to see if someone hacked into my system or to see what happened.
Any help with this will be much appreciated.