一堆莫名其妙廣告信固定從一個郵件帳戶寄出去 ....

junsheng_lin 發表於 2006-12-12 09:16:15

您好 有個問題想請教各位 ... 因為最近公司郵件主機都會有一推莫名其妙廣告信 固定從一個郵件帳戶寄出去 .... 而幾乎都被退信 ... (如以下訊息) Returned mail: see transcript for details Permanent Delivery Failure failure delivery 主旨都是 Subject: 渡橾褐樓霜濰檣/蘋萄渠轎萄董棲棻717146 寄給對方的網域都是以下的網域 @dreamwiz.com @empal.com @yahoo.co.kr 似乎來自韓國地區 這樣問題是否已經被當成跳板都固定用 [email protected] 帳戶在傳送信件 不知有什麼辦法可以透過 Log 查出問題點及阻止這樣廣告信 !! 謝謝 1. 作業系統：Windows 2000 server 2. 是否安防毒軟體，名稱 : 安裝 Norton antivirus 3. 是否安裝防火牆，名稱 : 無 4. 是否自行架設 DNS，或代管 : 有 5. ADSL 是否使用真正固接制或計時制（但有配發臨用型固定 IP）: 固接制固定 IP 6. 是否使用 IP 分享器 : 無 7. MDaemon、AntiVirus 版本 : V7.11 8. MDaemon 其他相關的設定 9 SMTP (in) 及 (Out) 的記錄內容參考這裏 -----Original Message----- From: [email protected] Sent: Thursday, December 07, 2006 7:29 PM To: [email protected] Subject: Transient Delivery Failure The attached message had transient non-fatal delivery errors THIS IS A WARNING MESSAGE ONLY - YOU DO NOT NEED TO RESEND YOUR MESSAGE! This server is configured to automatically retry delivery at configured intervals.　Subsequent attempts to deliver this message are pending. --- Session Transcript --- Thu 2006-12-07 19:28:25: Parsing Message <xxxxxxxxxxxxxxxxxx\pd50000009808. msg> Thu 2006-12-07 19:28:25: From: [email protected] Thu 2006-12-07 19:28:25: To: [email protected] Thu 2006-12-07 19:28:25: Subject: Aw@e@N4kCb/D+5e4k1] 4kCb =E<S9^@8<<?d30348 Thu 2006-12-07 19:28:25: Message-ID: Thu 2006-12-07 19:28:25: Route slip host: yahoo.co.kr Thu 2006-12-07 19:28:25: Route slip port: 25 Thu 2006-12-07 19:28:25: MX-record resolution of in progress (DNS Server: 168.95.1.1)... Thu 2006-12-07 19:28:25: P=020 D=yahoo.co.kr TTL=(42) MX= {202.165.108.248} Thu 2006-12-07 19:28:25: P=020 D=yahoo.co.kr TTL=(42) MX= Thu 2006-12-07 19:28:25: Attempting MX: P=020 D=yahoo.co.kr TTL=(42) MX= Thu 2006-12-07 19:28:25: Attempting SMTP connection to Thu 2006-12-07 19:28:25: A-record resolution of in progress (DNS Server: 168.95.1.1)... Thu 2006-12-07 19:28:25: D=mx3a.mail.yahoo.co.kr TTL=(89) A= Thu 2006-12-07 19:28:25: Attempting SMTP connection to Thu 2006-12-07 19:28:25: Waiting for socket connection... Thu 2006-12-07 19:28:26: Socket connection established (192.168.2.250 : 2968 -> 202.165.108.248 : 25) Thu 2006-12-07 19:28:26: Waiting for protocol initiation... Thu 2006-12-07 19:28:26: <-- 453 Mail from 211.23.115.99 not allowed - Thu 2006-12-07 19:28:26: --> QUIT Thu 2006-12-07 19:28:26: Attempting MX: P=020 D=yahoo.co.kr TTL=(42) MX= {202.165.108.248} Thu 2006-12-07 19:28:26: Attempting SMTP connection to Thu 2006-12-07 19:28:26: Waiting for socket connection... Thu 2006-12-07 19:28:26: Socket connection established (192.168.2.250 : 2970 -> 202.165.108.248 : 25) Thu 2006-12-07 19:28:26: Waiting for protocol initiation... Thu 2006-12-07 19:28:29: <-- 453 Mail from 211.23.115.99 not allowed - Thu 2006-12-07 19:28:29: --> QUIT Thu 2006-12-07 19:28:29: This message is 60 minutes old; it has 0 minutes left in this queue Thu 2006-12-07 19:28:29: Primary queue lifetime exceeded; message placed in retry queue --- End Transcript --- : Message contains file attachments

tungwj 發表於 2006-12-12 09:42:02

<a href='http://www.suma.tw/modules/ipboard/index.php?showtopic=887' target='_blank'>http://www.suma.tw/modules/ipboard/in...p?showtopic=887</a> <a href='http://www.suma.tw/modules/ipboard/index.php?showtopic=2126' target='_blank'>http://www.suma.tw/modules/ipboard/in...?showtopic=2126</a> 由於 MDaemon 架設的環境會影響諸多功能及設定，請於發問前提供詳細的架設環境，包括： 1. 作業系統：2000/XP/2003/Server 等等 2. 是否安防毒軟體，名稱 3. 是否安裝防火牆，名稱 4. 是否自行架設 DNS，或代管 5. ADSL 是否使用真正固接制或計時制（但有配發臨用型固定 IP） 6. 是否使用 IP 分享器 7. MDaemon、AntiVirus 版本 8. MDaemon 其他相關的設定 9 SMTP (in) 及 (Out) 的記錄內容參考這裏 以上資料越多越詳細越好，未提供上述資料者一律不回答。

MarchFun 發表於 2006-12-21 13:59:37

參考這篇看看： <a href='http://www.suma.tw/modules/ipboard/index.php?showtopic=756' target='_blank'>http://www.suma.tw/modules/ipboard/in...p?showtopic=756</a>

wheifund 發表於 2007-1-17 12:33:40

今天我們公司的伺服器也發生跟上面大大同樣的問題~~ 冒用我們公司的mail地址寄信到韓國~幫別人在發信~ 主要來至58.151.235.135、58.151.235.68、58.151.235.137，都發信到yahoo.co.kr 冒用的帳號為　postmaster@公司的mail地址，大量的的寄信到 yahoo.co.kr 我一早上來看到時，已經積了一百多封在retry queue,且還在不斷發信中.. 我趕快刪信件、重開機，封IP，封58.151.235.*，但其是會寄出去，所以我就再打一個IP一個IP的打~ 在Address Suppression封了這個mail: postmaster@公司的mail地址， 在最終~更新最近的病毒碼~接著全系統掃毒~掃到2個病毒~移除。 做了這些事後，mail server目前已停止在幫人發信了~ 但該 58.151.235.* 類似IP目前還是一直在screen 著我們公司的mail server PS. Open Relay 很早以前就已關閉了~ 把log給大家看一下~~目前已停止這場驚魂....但我想知道,真正的原因是因為中毒了嗎　<img src='http://www.suma.tw/uploads/smiles-063.gif' border='0' style='vertical-align:middle' alt='smiles-063.gif' /> ? smtp(in): Wed 2007-01-17 09:57:28: ---------- Wed 2007-01-17 09:58:08: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:08: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:08: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:08: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:08: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:58:09: Message received from urtqflrtgx.com <[email protected]> with SMTP for <[email protected]> {c:\mdaemon\remoteq\md50000003247.msg} Wed 2007-01-17 09:53:04: Accepting SMTP connection from Wed 2007-01-17 09:53:04: Looking up PTR record for 58.151.235.135 (135.235.151.58.IN-ADDR.ARPA) Wed 2007-01-17 09:53:05: Name server reports domain name unknown. Wed 2007-01-17 09:53:05: --> 220 ooooooooo.com.tw ESMTP MDaemon 6.8.5; Wed, 17 Jan 2007 09:53:05 +0800 Wed 2007-01-17 09:53:05: <-- HELO urtqflrtgx.com Wed 2007-01-17 09:53:05: --> 250 ooooooooo.com.tw Hello urtqflrtgx.com, pleased to meet you Wed 2007-01-17 09:53:05: <-- MAIL FROM:<[email protected]> Wed 2007-01-17 09:53:05: Spam Blocker is checking 58.151.235.135 (connecting IP) Wed 2007-01-17 09:53:05: * rbl.softworking.com - passed Wed 2007-01-17 09:53:05: * bl.spamcom.net - passed Wed 2007-01-17 09:53:05: Spam Blocker is finished Wed 2007-01-17 09:53:05: --> 250 <[email protected]>, Sender ok Wed 2007-01-17 09:53:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:06: More than 5 RCPT commands encountered; this session tarpitted with a 10 second delay Wed 2007-01-17 09:53:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:16: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:16: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:26: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:26: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:36: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:36: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:46: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:46: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:53:56: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:53:56: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:54:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:54:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:54:25: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:54:25: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:54:35: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:54:35: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:54:45: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:54:45: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:54:55: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:54:55: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:55:06: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:55:06: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:55:15: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:55:15: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:55:25: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:55:25: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:55:35: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:55:35: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:55:54: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:55:54: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:56:05: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:56:05: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:56:16: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:56:16: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:56:31: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:56:31: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:56:40: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:56:40: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:56:50: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:56:50: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:57:00: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:57:00: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:57:10: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:57:10: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:57:28: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:57:28: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:57:38: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:57:38: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:57:48: <-- RCPT TO:<[email protected]> Wed 2007-01-17 09:57:48: --> 250 <[email protected]>, Recipient ok Wed 2007-01-17 09:57:58: <-- DATA Wed 2007-01-17 09:57:58: --> 354 Enter mail, end with <CRLF>.<CRLF> Wed 2007-01-17 09:57:59: --> 250 Ok, message saved <Message-ID: none present in original message> Wed 2007-01-17 09:58:08: <-- QUIT Wed 2007-01-17 09:58:08: --> 221 See ya in cyberspace Wed 2007-01-17 09:58:08: SMTP session successful, 788 bytes transferred. Wed 2007-01-17 09:58:08: Shuffling message(s) into proper queue(s) Wed 2007-01-17 09:58:09: ---------- smtp(out): Wed 2007-01-17 10:34:32: ---------- Wed 2007-01-17 10:34:05: [-1:86:3] Parsing Message <C:\MDAEMON\Remoteq\pd50000003248.msg> Wed 2007-01-17 10:34:05: [-1:86:3] From: [email protected] Wed 2007-01-17 10:34:05: [-1:86:3] To: [email protected] Wed 2007-01-17 10:34:05: [-1:86:3] Subject: 蘋萄渠旎渠陶渡橾 萄董棲棻890700 Wed 2007-01-17 10:34:05: [-1:86:3] Message-ID: Wed 2007-01-17 10:34:05: [-1:86:3] Route slip host: yahoo.co.kr Wed 2007-01-17 10:34:05: [-1:86:3] Route slip port: 25 Wed 2007-01-17 10:34:05: [-1:86:3] MX-record resolution of in progress (DNS Server: 168.95.1.1)... Wed 2007-01-17 10:34:06: [-1:86:3] P=020 D=yahoo.co.kr TTL=(53) MX= {202.165.108.248} Wed 2007-01-17 10:34:06: [-1:86:3] P=020 D=yahoo.co.kr TTL=(53) MX= {202.165.108.248} Wed 2007-01-17 10:34:06: [-1:86:3] Attempting MX: P=020 D=yahoo.co.kr TTL=(53) MX= {202.165.108.248} Wed 2007-01-17 10:34:06: [-1:86:3] Attempting SMTP connection to Wed 2007-01-17 10:34:06: Waiting for socket connection... Wed 2007-01-17 10:34:06: Socket connection established (127.0.0.1 : 1337 -> 202.165.108.248 : 25) Wed 2007-01-17 10:34:06: Waiting for protocol initiation... Wed 2007-01-17 10:34:24: <-- 220 mta117.mail.krs.yahoo.com ESMTP YSmtp service ready Wed 2007-01-17 10:34:24: --> EHLO interking.com.tw Wed 2007-01-17 10:34:24: <-- 250-mta117.mail.krs.yahoo.com Wed 2007-01-17 10:34:24: <-- 250-8BITMIME Wed 2007-01-17 10:34:24: <-- 250-SIZE 31981568 Wed 2007-01-17 10:34:24: <-- 250 PIPELINING Wed 2007-01-17 10:34:24: --> MAIL From:<[email protected]> SIZE=1172 Wed 2007-01-17 10:34:24: <-- 250 sender <[email protected]> ok Wed 2007-01-17 10:34:24: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:25: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:25: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:25: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:25: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:25: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:25: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:25: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:25: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:26: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:26: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:26: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:26: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:26: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:26: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:26: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:26: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:26: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:26: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:27: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:27: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:27: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:27: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:27: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:27: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:27: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:27: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:27: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:27: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:28: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:28: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:28: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:28: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:28: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:28: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:28: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:28: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:29: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:29: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:29: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:29: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:29: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:29: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:29: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:29: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:30: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:30: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:30: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:30: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:30: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:30: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:30: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:30: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:31: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:31: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:31: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:31: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:31: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:31: --> RCPT To:<[email protected]> Wed 2007-01-17 10:34:32: <-- 250 recipient <[email protected]> ok Wed 2007-01-17 10:34:32: --> DATA Wed 2007-01-17 10:34:32: <-- 354 Please start mail input. Wed 2007-01-17 10:34:32: Sending <C:\MDAEMON\Remoteq\pd50000003248.msg> to Wed 2007-01-17 10:34:32: Transfer Complete. Wed 2007-01-17 10:34:32: <-- 250 Mail queued for delivery. Wed 2007-01-17 10:34:32: --> QUIT Wed 2007-01-17 10:34:32: <-- 221 Closing connection. Good bye. Wed 2007-01-17 10:34:32: SMTP session successful, 1243 bytes transferred. Wed 2007-01-17 10:34:32: ----------

MarchFun 發表於 2007-1-17 16:50:56

關閉 Open Relay 只能對付不是使用你們公司 mail 的位址。如果他冒用你們的 mail 位址還是防不了。所以除了關閉 Open Relay 之外，最好還能加上 POP Before SMTP。 至於是否因為中毒造成，我覺得應該不是。

iscandy 發表於 2007-12-13 16:01:33

下次有機會來試試看，

謝謝囉~

頁: [1]

數碼中文坊's Archiver

一堆莫名其妙廣告信 固定從一個郵件帳戶寄出去 ....

一堆莫名其妙廣告信固定從一個郵件帳戶寄出去 ....