WARNING: Email Abuse on Account from Host

  • Resolved Chinonso Enyiuche

    (@nehemiah459)


    7 years, 5 months ago

    I recieved a mail from my host (namecheap) stating thus:

    Hello,

    It has come to our attention that there is a high number of similar emails queued on the server by your hosting account *******. It appears that the emails in the queue are system notifications.

    Please resolve the issue within 24 hours and get back to us with the result; otherwise, we will be forced to suspend your account. We will keep monitoring the issue. If the account activity negatively affects the overall performance of our service or if the email queue considerably grows, we may be forced to suspend the account immediately to our regret.

    Please let us know if you have any questions.

    and this was attached with the mail:

    Header:
    1dFSG5-001Z4N-F9-H
    projpvnh 2625 32007
    <*****@server192.web-hosting.com>
    1496093485 0
    -ident *******
    -received_protocol local
    -body_linecount 1
    -max_received_linelength 93
    -auth_id ******
    -auth_sender ******@server192.web-hosting.com
    -allow_unqualified_recipient
    -allow_unqualified_sender
    -frozen 1496148760
    -local
    XX
    1
    [moderated]

    210P Received: from ***** by server192.web-hosting.com with local (Exim 4.87)
    (envelope-from <******@server192.web-hosting.com>)
    id 1dFSG5-001Z4N-F9
    for
    [moderated]; Mon, 29 May 2017 17:31:25 -0400
    025T To:
    [moderated]
    027 Subject: domainname.com
    074 X-PHP-Script: domainname.com/wp-admin/admin-ajax.php for 197.211.61.82
    094 X-PHP-Filename: /home/******/public_html/wp-admin/admin-ajax.php REMOTE_ADDR: 197.211.61.82
    058I Message-Id: <[email protected]>
    041F From: ****@server192.web-hosting.com
    038 Date: Mon, 29 May 2017 17:31:25 -0400

    Body:
    1dFSG5-001Z4N-F9-D https://domainname.com/wp-admin/admin-ajax.php

    • This topic was modified 7 years, 5 months ago by Andrew Nevins.
    • This topic was modified 7 years, 5 months ago by Andrew Nevins.
    • This topic was modified 7 years, 5 months ago by bcworkz.
Viewing 4 replies - 1 through 4 (of 4 total)
  • Moderator Marius L. J.

    (@clorith)

    Hi there,

    It looks like these could indeed be automated emails, what I would start by doing is seeing if you have any users with the email address it is trying to send these to, possibly check what plugins you have which might have a need for sending a status email message.

    If you can’t see anything obvious, searching through your files for the recipient, or the message body, might help pinpoint why they are being sent, and what is sending them.

    Thread Starter Chinonso Enyiuche

    (@nehemiah459)

    Checked all my users, none has the username.
    The message body is just a link Body:
    1dFSG5-001Z4N-F9-D https://domainname.com/wp-admin/admin-ajax.php

    Moderator Marius L. J.

    (@clorith)

    Do you have any contact form plugins of some kind installed anywhere on your site ?

    If not, I’d recommend scanning your website (Personally I prefer Sucuri, but Wordfence and All in One are also quite popular), as WordPress should not be sending out cryptic emails on its own.

    • This reply was modified 7 years, 5 months ago by Marius L. J..
    Thread Starter Chinonso Enyiuche

    (@nehemiah459)

    Anyway, I got a message from my host that the messages has been reduced to minimal, so no cause for alarm again.
    Thanks for your time.

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘WARNING: Email Abuse on Account from Host’ is closed to new replies.