Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Spam attack on one e-mail account

Discussion in 'E-mail Discussion' started by Misiek, Jul 1, 2013.

  1. Misiek

    Misiek Well-Known Member

    Joined:
    Feb 23, 2004
    Messages:
    105
    Likes Received:
    0
    Trophy Points:
    166
    Hello,
    I have a problem i recieve a tons of emails including only hyperlink in html
    Here is the header :

    Code:
    Return-path: <neva_greer@levantateyanda.org>
Envelope-to: my@email.com
Delivery-date: Mon, 01 Jul 2013 10:58:48 +0200
Received: from ds59.buyhttp.com ([66.45.247.210]:37998 helo=srv1.canoa.net)
        by my.host.pl with esmtps (TLSv1:DHE-RSA-AES256-SHA:256)
        (Exim 4.80.1)
        (envelope-from <neva_greer@levantateyanda.org>)
        id 1UtZwc-0006SI-8g
        for my@email.com; Mon, 01 Jul 2013 10:58:48 +0200
Received: from levantat by srv1.canoa.net with local (Exim 4.80.1)
        (envelope-from <neva_greer@levantateyanda.org>)
        id 1UtZwY-000550-Ob
        for my@email.com; Mon, 01 Jul 2013 04:58:42 -0400
To: my@email.com
Subject: Put it there
From: "Neva Greer" <neva_greer@levantateyanda.org>
Reply-To: "Neva Greer" <neva_greer@levantateyanda.org>
X-Priority: 3 (Normal)
MIME-Version: 1.0
Content-Type: text/html; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Message-Id: <E1UtZwY-000550-Ob@srv1.canoa.net>
Date: Mon, 01 Jul 2013 04:58:42 -0400
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - srv1.canoa.net
X-AntiAbuse: Original Domain - email.com
X-AntiAbuse: Originator/Caller UID/GID - [580 580] / [47 12]
X-AntiAbuse: Sender Address Domain - levantateyanda.org
X-Get-Message-Sender-Via: srv1.canoa.net: authenticated_id: levantat/from_h
X-Spam-Status: No, score=1.9
X-Spam-Score: 19
X-Spam-Bar: +
X-Ham-Report: Spam detection software, running on the system "my.host.pl", has
 identified this incoming email as possible spam.  The original message
 has been attached to this so you can view it (if it isn't spam) or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 
 Content preview:  Intimate Moments my mom with her BF [...] 
 
 Content analysis details:   (1.9 points, 5.0 required)
 
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was blocked.
                             See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URIs: naco.sk]
  0.0 HTML_MESSAGE           BODY: HTML included in message
  0.8 BAYES_50               BODY: Bayes spam probability is 40 to 60%
                             [score: 0.4971]
  0.7 MIME_HTML_ONLY         BODY: Message only has text/html MIME parts
  0.4 HTML_MIME_NO_HTML_TAG  HTML-only message, but there is no HTML tag
X-Spam-Flag: NO



 Intimate Moments my mom with her BF
    I really do not know how to handle this problem please help. Lowering the score will help but will affect most of the clients emails so its not a solution
     
    #1 Misiek, Jul 1, 2013
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,803
    Likes Received:
    1,896
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    You will find several options available to help reduce incoming SPAM in:

    "WHM Home » Service Configuration » Exim Configuration Manager"

    These options are documented at:

    Exim - Basic Editor

    You may also want to utilize account level filtering on a per-account basis via cPanel. This option is documented at:

    Account Level Filtering

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelMichael, Jul 1, 2013
(You must log in or sign up to post here.)
Loading...
Similar Threads - Spam attack mail
  1. David_spm

    Unable to stop large xmlrpc spam attack

    David_spm, Jul 24, 2018, in forum: Security
    Replies:
    6
    Views:
    376
    cPanelMichael
    Jul 27, 2018
  2. chris0147

    Email blacklisted still goes to spam

    chris0147, Oct 16, 2018 at 3:27 PM, in forum: E-mail Discussion
    Replies:
    3
    Views:
    52
    keat63
    Oct 18, 2018 at 2:40 AM
  3. AdrianDamb

    High CPU usage with SpamAssassin?

    AdrianDamb, Oct 12, 2018 at 9:57 AM, in forum: Workarounds and Optimization
    Replies:
    1
    Views:
    70
    cPanelLauren
    Oct 12, 2018 at 10:42 AM
  4. chris0147

    Email Blacklisted Going to Spam

    chris0147, Oct 5, 2018, in forum: E-mail Discussion
    Replies:
    9
    Views:
    177
    chris0147
    Oct 10, 2018
  5. Tornado

    SPAM from -Remote- user

    Tornado, Sep 28, 2018, in forum: E-mail Discussion
    Replies:
    17
    Views:
    268
    cPanelLauren
    Oct 5, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice