Spam problem 'email from lauren'
Posted: Tue Dec 14, 2010 5:00 pm
I hope someone can help me with this email spam problem I and a few domains on my server have been getting over the past week. The e-mail is pretty much the same everytime bar the subject or email address in the body changing. The email looks like its sent to and from me (or whoever the receipient is). I have banned the sending e-mail domain and ip address but within a few hours (literally!) another comes from a different domain or ip address.
Is it possible, (and if so how?) to create a rule that blocks this email - maybe by body message?. It also comes with a gif attachment of a woman. The attachment number seems to increase everytime I've had the email up to 98892 - the first I received was 60543.
I'm on Plesk 9.5.3, and CentOS5. Spam assassin installed. Not sure what other information someone would need to help.
Chris.
Is it possible, (and if so how?) to create a rule that blocks this email - maybe by body message?. It also comes with a gif attachment of a woman. The attachment number seems to increase everytime I've had the email up to 98892 - the first I received was 60543.
I'm on Plesk 9.5.3, and CentOS5. Spam assassin installed. Not sure what other information someone would need to help.
DomainKey-Status: no signature
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on new.<mydomain>.com
X-Spam-Level: **
X-Spam-Status: No, score=2.3 required=5.0 tests=RCVD_IN_BL_SPAMCOP_NET,
RDNS_NONE,UNPARSEABLE_RELAY autolearn=no version=3.2.5
Received: (qmail 3846 invoked by uid 110); 14 Dec 2010 19:55:36 +0000
Delivered-To: 3-hello@<mydomain>.com
DomainKey-Status: no signature
Received: (qmail 3832 invoked from network); 14 Dec 2010 19:55:33 +0000
Received-SPF: none (no valid SPF record)
Received: from unknown (HELO ?79.135.200.152?) (79.135.200.152)
by <mydomain.com> with SMTP; 14 Dec 2010 19:55:32 +0000
Received: from 79.135.200.152 (account 000117u4508e865@fukuimegane.co.jp HELO psxftdarpskjofe.pohky.su)
by (CommuniGate Pro SMTP 5.2.3)
with ESMTPA id 099000115 for hello@<mydomain>.com; Tue, 14 Dec 2010 22:55:24 +0300
Date: Tue, 14 Dec 2010 22:55:24 +0300
From: <hello@<mydomain>.com>
X-Mailer: The Bat! (v3.71.04) Home
X-Priority: 3 (Normal)
Message-ID: <5048273845.79I3QA33963104@odkntggob.msqtfompjjxlv.info>
To: <hello@<mydomain>.com>
Subject: hi
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----------9FB49266C32D45"
------------9FB49266C32D45
Content-Type: text/plain; charset=iso-8859-2
Content-Transfer-Encoding: 7bit
Many thanksHello , i am Lauren,
I found your email in my friends list,
i think we talked some time at the one of social networks or not.
So i will remind you a little bit about me, i live in USA , Atlanta, GA.
I love to travel, visit new places, new countries. I am planning to visit UK once again,
that is why i am looking for friends here, it is always more interesting to travel
and to have good time together then alone.
So if you live in UK and you are single i will wait your email.
I am not interested in correspondence if you are married or have a girlfriend.
My e-mail is: sweet@laurenkisses.com
I hope to get your answer and of course i want to see your photo.
Have a good day
Kisses
Lauren
Chris.
)
