Undelivered Mail Returned to Sender Problem - 40k emails bekommen (und es geht weiter)

    Hallo,


    seit ca 1 std bekomm ich hunderte Undelivered Mail Returned to Sender Emails in mein postfach, jetzt sind es inzwischen 40.000 Stück.
    Ich glaube nicht das meine E-Mail gehackt ist, ich denke jemand spoofed meine email als absender und ich bekomm all den scheiß der nicht delivered werden kann.
    Ich glauben wegen dieser High Load ist spamassassin auch down und filtert nichts mehr.


    Was kann ich tun damit das ganze aufhört ?


    Bitte um schnelle tipps.


    Gruß,
    salexes


    Edit: Jetzt sind es 41k


    bsp. einer nachricht:


    This is the mail system at host xxxxxx.php-friends.de.


    I'm sorry to have to inform you that your message could not
    be delivered to one or more recipients. It's attached below.


    For further assistance, please send mail to postmaster.


    If you do so, please include this problem report. You can
    delete your own text from the attached returned message.


    The mail system


    <[email protected]>: host alt1.gmail-smtp-in.l.google.com[64.233.162.26]
    said: 550-5.7.1 [xxxxxxxx 18] Our system has detected that this
    message is 550-5.7.1 likely suspicious due to the very low reputation of
    the sending IP 550-5.7.1 address. To best protect our users from spam, the
    message has been 550-5.7.1 blocked. Please visit 550 5.7.1
    https://support.google.com/mail/answer/188131 for more information.
    y16si1404673lfd.391 - gsmtp (in reply to end of DATA command)
    Reporting-MTA: dns; xxxxxxx.php-friends.de
    X-Postfix-Queue-ID: 79CC8823B9
    X-Postfix-Sender: rfc822; [email protected][email protected]
    Arrival-Date: Thu, 10 Nov 2016 10:53:39 +0100 (CET)


    Final-Recipient: rfc822; [email protected]
    Original-Recipient: rfc822;[email protected]
    Action: failed
    Status: 5.7.1
    Remote-MTA: dns; alt1.gmail-smtp-in.l.google.com
    Diagnostic-Code: smtp; 550-5.7.1 [xxxxxxxx 18] Our system has detected
    that this message is 550-5.7.1 likely suspicious due to the very low
    reputation of the sending IP 550-5.7.1 address. To best protect our users
    from spam, the message has been 550-5.7.1 blocked. Please visit 550 5.7.1
    https://support.google.com/mail/answer/188131 for more information.
    y16si1404673lfd.391 - gsmtp

    Edited once, last by salexes ().

    Steht was im Log? Irgendein phpScript das aufgerufen wird?

    nano /var/log/mail.log


    Kannst ja auch erstmal den postfix stoppen. Dann wird nichts mehr verschickt, wenn es von dir kommt.

    -Queue ID- --Size-- ----Arrival Time---- -Sender/Recipient-------
    74FE0C19B7* 2079 Thu Nov 10 14:45:12 [email protected]
    (delivery temporarily suspended: lost connection with mx1.hotmail.com[65.55.37.72] while sending RCPT TO)
    [email protected]
    (delivery temporarily suspended: lost connection with mx4.hotmail.com[65.55.92.152] while sending RCPT TO)
    [email protected]
    [email protected]
    (delivery temporarily suspended: lost connection with mx-eu.mail.am0.yahoodns.net[188.125.69.79] while sending RCPT TO)
    [email protected]
    [email protected]


    AA5A786DAB* 2083 Thu Nov 10 11:57:32 [email protected]
    (delivery temporarily suspended: lost connection with mx-eu.mail.am0.yahoodns.net[188.125.69.79] while sending RCPT TO)
    [email protected]
    (delivery temporarily suspended: lost connection with mx.bt.lon5.cpcloud.co.uk[65.20.0.49] while sending RCPT TO)
    [email protected]
    [email protected]


    :