这是从aol滥用得到的电子邮件标题和信息。 这种types的电子邮件是从我的服务器以非常低的速率随机生成的,IP被非常频繁地列入黑名单。 经过2周的努力,我仍然无法find垃圾邮件发送者:
Return-Path: <[email protected]> Received: from zircon.freezone.co.uk (zircon.freezone.co.uk [91.222.8.110]) by mtaig-mcb01.mx.aol.com (Internet Inbound) with SMTP id 09111700012D7 for <[email protected]>; Sun, 9 Nov 2014 10:13:08 -0500 (EST) Received: from rosemaryzipn by mailtn.zircon.freezone.co.uk with local (Exim 4.40) id YAkDpP-GlgNmv-5p for [email protected]; Sun, 09 Nov 2014 23:57:32 +0000 To: [email protected] Subject: Photos from the most thrilling naked cocktail party in a bamboo cafe for your enjoyment! Message-Id: <[email protected]> From: "Versie Donelly" <[email protected]> Date: Sun, 09 Nov 2014 23:57:32 +0000 Mime-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: 8bit x-aol-global-disposition: G Authentication-Results: mx.aol.com; spf=neutral (aol.com: the domain gocaltech.com reports a neutral SPF policy.) smtp.mailfrom=gocaltech.com; x-aol-sid: 3039ac1a32a1545f84843484 X-AOL-IP: 91.222.8.110 X-AOL-SPF: domain : gocaltech.com SPF : neutral <html><body>Hello, love muscle!<br>When my naughty hottest friend and me went to the beach I was wondering<br> if we could see a proper nook to spend some time and have a good cocktail.<br> Luckily, we found a perfect place - a sweet bamboo cafe on the sea shore where we spent our nights.<br> <a href="http://ridiqee.loveandpickup.net/">See new naked pics at my profile</a> to appreciate a breathtaking party that we had.<br> Be ready to see <a href="http://ridiqee.loveandpickup.net/">many perfect spots and <syn32> naked curves!</a></body></html> 服务器是与CentOS 6 plesk 11.有任何信息出现在这个头,使用我可以知道垃圾邮件发送者的来源。
Received: from rosemaryzipn by mailtn.zircon.freezone.co.uk with local (Exim 4.40)
看起来你的主机上有一些垃圾邮件。 该bot在本地提交消息,而不是通过SMTP。 这可能是一些脆弱的CMS,如wordpress,甚至plesk本身。