Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Spam attack on one e-mail account

Discussion in 'E-mail Discussion' started by Misiek, Jul 1, 2013.

  1. Misiek

    Misiek Well-Known Member

    Joined:
    Feb 23, 2004
    Messages:
    113
    Likes Received:
    0
    Trophy Points:
    166
    cPanel Access Level:
    Root Administrator
    Hello,
    I have a problem i recieve a tons of emails including only hyperlink in html
    Here is the header :

    Code:
    Return-path: <neva_greer@levantateyanda.org>
Envelope-to: my@email.com
Delivery-date: Mon, 01 Jul 2013 10:58:48 +0200
Received: from ds59.buyhttp.com ([66.45.247.210]:37998 helo=srv1.canoa.net)
        by my.host.pl with esmtps (TLSv1:DHE-RSA-AES256-SHA:256)
        (Exim 4.80.1)
        (envelope-from <neva_greer@levantateyanda.org>)
        id 1UtZwc-0006SI-8g
        for my@email.com; Mon, 01 Jul 2013 10:58:48 +0200
Received: from levantat by srv1.canoa.net with local (Exim 4.80.1)
        (envelope-from <neva_greer@levantateyanda.org>)
        id 1UtZwY-000550-Ob
        for my@email.com; Mon, 01 Jul 2013 04:58:42 -0400
To: my@email.com
Subject: Put it there
From: "Neva Greer" <neva_greer@levantateyanda.org>
Reply-To: "Neva Greer" <neva_greer@levantateyanda.org>
X-Priority: 3 (Normal)
MIME-Version: 1.0
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Message-Id: <E1UtZwY-000550-Ob@srv1.canoa.net>
Date: Mon, 01 Jul 2013 04:58:42 -0400
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - srv1.canoa.net
X-AntiAbuse: Original Domain - email.com
X-AntiAbuse: Originator/Caller UID/GID - [580 580] / [47 12]
X-AntiAbuse: Sender Address Domain - levantateyanda.org
X-Get-Message-Sender-Via: srv1.canoa.net: authenticated_id: levantat/from_h
X-Spam-Status: No, score=1.9
X-Spam-Score: 19
X-Spam-Bar: +
X-Ham-Report: Spam detection software, running on the system "my.host.pl", has
 identified this incoming email as possible spam.  The original message
 has been attached to this so you can view it (if it isn't spam) or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 
 Content preview:  Intimate Moments my mom with her BF [...] 
 
 Content analysis details:   (1.9 points, 5.0 required)
 
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was blocked.
                             See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URIs: naco.sk]
  0.0 HTML_MESSAGE           BODY: HTML included in message
  0.8 BAYES_50               BODY: Bayes spam probability is 40 to 60%
                             [score: 0.4971]
  0.7 MIME_HTML_ONLY         BODY: Message only has text/html MIME parts
  0.4 HTML_MIME_NO_HTML_TAG  HTML-only message, but there is no HTML tag
X-Spam-Flag: NO



 Intimate Moments my mom with her BF
    I really do not know how to handle this problem please help. Lowering the score will help but will affect most of the clients emails so its not a solution
     
    #1 Misiek, Jul 1, 2013
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,409
    Likes Received:
    1,956
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    You will find several options available to help reduce incoming SPAM in:

    "WHM Home » Service Configuration » Exim Configuration Manager"

    These options are documented at:

    Exim - Basic Editor

    You may also want to utilize account level filtering on a per-account basis via cPanel. This option is documented at:

    Account Level Filtering

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelMichael, Jul 1, 2013
(You must log in or sign up to post here.)
Loading...
Similar Threads - Spam attack mail
  1. David_spm

    Unable to stop large xmlrpc spam attack

    David_spm, Jul 24, 2018, in forum: Security
    Replies:
    6
    Views:
    709
    cPanelMichael
    Jul 27, 2018
  2. DennisMidjord

    New Thread Why is SpamBox not enabled by default?

    DennisMidjord, Dec 11, 2018 at 4:05 AM, in forum: E-mail Discussion
    Replies:
    14
    Views:
    128
    sparek-3
    Dec 11, 2018 at 10:43 AM
  3. Tanner_W

    SpamAssassin included ruleset outdated

    Tanner_W, Dec 9, 2018 at 2:31 AM, in forum: E-mail Discussion
    Replies:
    2
    Views:
    228
    Tanner_W
    Dec 11, 2018 at 7:22 PM
  4. RobinF28

    SOLVED DKIM for 'root' user, to avoid emails going to spam

    RobinF28, Dec 8, 2018 at 12:54 PM, in forum: E-mail Discussion
    Replies:
    2
    Views:
    242
    RobinF28
    Dec 10, 2018 at 5:29 PM
  5. DigitalEssence

    Emails Bypassing RBL Reject and SpamAssassin Bounce

    DigitalEssence, Dec 6, 2018 at 3:44 AM, in forum: E-mail Discussion
    Replies:
    5
    Views:
    432
    cPanelLauren
    Dec 10, 2018 at 12:48 PM

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice