Is it possible for Zimbra to be redirecting mail, by malicious installation?