Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Email Spamming / Mail Queue problem

Discussion in 'E-mail Discussion' started by Ari Widya Putra, Jan 4, 2015.

  1. Ari Widya Putra

    Ari Widya Putra Registered

    Joined:
    Jan 4, 2015
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Bandung, Indonesia
    cPanel Access Level:
    Root Administrator
    helo,

    this email is caused my mail queue full and never stop, i guess it send spam from my hosting. please help me to stop this.

    email username@cloud.domain.net is not exist in my hosting email account
    username is username of my cpanel hosting
    cloud.domain.net is my subdomain

    Code:
    Headers spool file
1Y7oK9-0002rL-Jl-H
username 500 500
<username@cloud.domain.net>
1420390001 0
-ident username
-received_protocol local
-body_linecount 123
-max_received_linelength 94
-auth_id ajcosnet
-auth_sender username@cloud.domain.net
-allow_unqualified_recipient
-allow_unqualified_sender
-deliver_firsttime
-local
XX
1
pierre.otheruser@domain.com

212P Received: from username by cloud.domain.net with local (Exim 4.82)
	(envelope-from <username@cloud.domain.net>)
	id 1Y7oK9-0002rL-Jl
	for pierre.otheruser@domain.com; Sun, 04 Jan 2015 23:46:42 +0700
033T To: pierre.otheruser@domain.com
029  Subject: Postal Notification
050F From: "FedEx SameDay" <support@domain.net>
026  X-Mailer: Oudmlr(ver.3.4)
054R Reply-To: "FedEx SameDay" <support@domain.net>
018  Mime-Version: 1.0
081  Content-Type: multipart/alternative;boundary="----------142039000154A96E718BEBA"
055I Message-Id: <E1Y7oK9-0002rL-Jl@cloud.domain.net>
038  Date: Sun, 04 Jan 2015 23:46:41 +0700
Data spool file
1Y7oK9-0002rL-Jl-D
------------142039000154A96E718BEBA
Content-Type: text/plain; charset="ISO-8859-1"; format=flowed
Content-Transfer-Encoding: 7bit
  
  FedEx

  Dear Customer,
  
  Your parcel has arrived at December 29. Courier was unable to deliver the parcel to you.
  To receive your parcel, print this label and go to the nearest office. 
  
  Get Shipment Label

  FedEx 1995-2014

------------142039000154A96E718BEBA
Content-Type: text/html; charset="ISO-8859-1";
Content-Transfer-Encoding: 7bit

<html>
<body>
<table border="0" width="567" height="311" 
style="border-collapse: collapse">
 <tr>
  <td height="67" width="14" bgcolor="#3B1A73">
  <font size="6"> </font></td>
  <td height="67" width="549" bgcolor="#3B1A73" colspan="3">
  <font size="6" face="Tahoma" color="#FFFFFF">
  <span style="letter-spacing: -2px; font-weight: 700">Fe</span><span 
  style="font-weight: 700; letter-spacing: -5px">d</span></font><font 
  size="6" face="Tahoma" color="#ADAFB1"><span 
  style="font-weight: 700; letter-spacing: -5px">E</span><span 
  style="letter-spacing: -2px; font-weight: 700">x</span></font></td>
 </tr>
 <tr>
  <td height="21" width="14" bgcolor="#555555"></td>
  <td height="21" width="146" bgcolor="#555555"></td>
  <td height="21" width="401" bgcolor="#EAEAEA" colspan="2"></td>
 </tr>
 <tr>
  <td height="122" width="14"></td>
  <td height="122" width="549" colspan="3">
  <span style="font-family:Arial;font-size:12px;">
  Dear Customer,<br>
  <br>
  Your parcel has arrived at December 29. Courier was unable to deliver the parcel to you.<br>
  To receive your parcel, print this label and go to the nearest office. <br>
  </span>
 </td>
 </tr>
 <tr>
  <td height="42" width="14"></td>
  <td height="42" width="146"></td>
  <td height="42" width="232">
  <a href="http://karatec.com.au/session.php?fd=MWu+d699VcmBktMms53CzMjjcAVyJ+Ng5fSSVCYvCUs=">
  <div style="width:232px;height:40px;line-height:38px;background-color:#3B1A73;
  border-radius:7px;-moz-border-radius:7px;-webkit-border-radius:7px;
  text-align:center;color:#FFFFFF;font-size:18px;
  font-weight:bold;text-decoration:none;font-family:Arial;">
  Get Shipment Label</div>
  </a>
  </td>
  <td height="42" width="167"></td>
 </tr>
 <tr>
  <td height="38" width="14"></td>
  <td height="38" width="549" colspan="3"></td>
 </tr>
 <tr>
  <td height="21" width="14" bgcolor="#EAEAEA"></td>
  <td height="21" width="549" colspan="3" bgcolor="#EAEAEA">
  <span style="font-family:Arial;font-size:10px;">
  FedEx 1995-2014
  </span>
  </td>
 </tr>
</table>
</body>
</html>

------------142039000154A96E718BEBA--
    please advice

    Thanks :)
     
    #1 Ari Widya Putra, Jan 4, 2015
    Last edited by a moderator: Jan 4, 2015
  2. John

    John Active Member

    Joined:
    Jan 1, 2014
    Messages:
    25
    Likes Received:
    2
    Trophy Points:
    3
    cPanel Access Level:
    Root Administrator
    Seems like mails are generated from malicious scripts,

    Try this link /http://blog.rimuhosting.com/2012/09/20/finding-spam-sending-scripts-on-your-server/
     
    #2 John, Jan 4, 2015
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,395
    Likes Received:
    1,951
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    Try running the following command:

    Code:
    awk '$3 ~ /^cwd/{print $3}' /var/log/exim_mainlog | sort | uniq -c | sed "s|^ *||g" | sort -nr
    This may help determine which directory most the SPAM is coming from.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Jan 6, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - Email Spamming Mail
  1. Vasanthjan

    Email Spamming from my server

    Vasanthjan, Mar 11, 2017, in forum: E-mail Discussion
    Replies:
    3
    Views:
    1,563
    cPanelMichael
    Mar 12, 2017
  2. brand_land

    New Thread Email Backup

    brand_land, Dec 10, 2018 at 7:05 AM, in forum: E-mail Discussion
    Replies:
    0
    Views:
    23
    brand_land
    Dec 10, 2018 at 7:05 AM
  3. RobinF28

    DKIM for 'root' user, to avoid emails going to spam

    RobinF28, Dec 8, 2018 at 12:54 PM, in forum: E-mail Discussion
    Replies:
    1
    Views:
    102
    cPanelMichael
    Dec 10, 2018 at 11:16 AM
  4. chris0147

    New Thread Problem sending email with exim

    chris0147, Dec 8, 2018 at 11:22 AM, in forum: E-mail Discussion
    Replies:
    10
    Views:
    245
    chris0147
    Dec 9, 2018 at 9:39 AM
  5. Cristian Samuel Vargas

    Cannot Email PDF Files

    Cristian Samuel Vargas, Dec 6, 2018 at 6:55 PM, in forum: E-mail Discussion
    Replies:
    5
    Views:
    245
    Cristian Samuel Vargas
    Dec 7, 2018 at 11:27 AM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice