收到莫名的退件
本文章最後由 haw 於 2011-6-1 01:09 AM 編輯您好,是這樣的,同事最進會收到一些怪怪的退件
不過這些信感覺像是被當作跳板
但是實際上主機卻又沒有相關紀錄
雖然之前有被攻擊,不過都已經封鎖ip了
以下是內容:
Hi. This is the qmail-send program at mail.crist.ru.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
<[email protected]>:
Sorry, no mailbox here by that name. vpopmail (#5.1.1)
--- Below this line is a copy of the message.
Return-Path: <***@****.com>
Received: (qmail 5497 invoked from network); 31 May 2011 12:23:40 -0000
Received: from unknown (HELO 94-183-24-96.rasana.net) (94.183.24.96)
by mail.crist.ru with SMTP; 31 May 2011 12:23:40 -0000
Return-path: <[email protected]>
Received: from (port=9635 helo=Ardabilsrv)
by taiwanstrong.com with asmtp
id 060696-000861-05
for <[email protected]>; Tue, 31 May 2011 02:30:23 -0800
Message-ID: <EB441D8F1E754CF285ADA67AFA24E740@Ardabilsrv>
From: =?koi8-r?B?0M8gxsnOwc7Twc0=?=<****@****.com>
To: <[email protected]>
Subject: =?koi8-r?B?48XOz8/C0sHaz9fBzsnFINMgz9LJxc7UwcPJxcogzsEgy8/Oy9XSxc7D?=
=?koi8-r?B?ycA=?=
Date: Tue, 31 May 2011 02:30:23 -0800
MIME-Version: 1.0
Content-Type: text/plain;
format=flowed;
charset="windows-1251";
reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Windows Mail 6.0.6001.18000
X-MimeOLE: Produced By Microsoft MimeOLE V6.0.6001.18049
X-Mras: Ok
謝謝 如果主機中沒有相關記錄,不見得是你們的問題。比較有可能是垃圾客藉用你們的網域名稱作為寄件人,但實際上信不是從你們那裏寄出,是從僵屍電腦寄出。
再觀察一下。 咪吐~ 感覺有種被當成跳板的情況
YOUR MESSAGE WAS NOT DELIVERED TO ONE OR MORE RECIPIENTS!
Failed address: [email protected]
--- Session Transcript ---
Mon 2011-08-22 03:02:31: Parsing message <xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx\pd90000000606.msg>
Mon 2011-08-22 03:02:31: *From: [email protected]
Mon 2011-08-22 03:02:31: *To: [email protected]
Mon 2011-08-22 03:02:31: *Subject: MDaemon Notification -- Attachment Removed
他用我的postmaster帳號寄信出去:(:(:(
頁:
[1]