|
阅读:3579回复:1
邮件分析,自认为是高手的请进来!
请分析此邮件是用什么方法或者什么软件发送出来的,谢谢!
源信头如下: Return-Path: <zejouz@yellowweb.co.jp> Delivered-To: <!-- e --><a href="mailto:******@sohu.com">******@sohu.com</a><!-- e --> Received: from sohumx11.sohu.com (unknown [192.168.132.114]) by mx46.mail.sohu.com (Postfix) with ESMTP id 9E8B2AAA61 for <******@sohu.com>; Wed, 14 May 2008 15:18:09 +0800 (CST) Received: from mail.yellowweb.co.jp (unknown [210.166.220.24]) by sohumx11.sohu.com (Postfix) with ESMTP id 2DCCE1522886F; Wed, 14 May 2008 15:18:06 +0800 (CST) Received: from insye (unknown [218.20.154.63]) by mail.yellowweb.co.jp (Postfix) with ESMTP id 37C7B1220BF4; Wed, 14 May 2008 15:47:45 +0900 (JST) From: =?GB2312?B?zsTX5sG8?= <zejouz@yellowweb.co.jp> Subject: =?GB2312?B?cjM1N9HQt6LW0LjfsuO1xLnYvPy8qNCn1rix6jRJTlQ=?= To: <!-- e --><a href="mailto:hrdl@neusoft.com">hrdl@neusoft.com</a><!-- e --> Content-Type: multipart/mixed; charset="GB2312"; boundary="fxmKX57=_zhYbhCAldNvTwYOg1U6BSbUIa" MIME-Version: 1.0 Date: Wed, 14 May 2008 14:47:52 +0800 Message-Id: <20080514064745.37C7B1220BF4@mail.yellowweb.co.jp> X-SOHU-UID: 27815.1210749489.650376.651 This is a multi-part message in MIME format --fxmKX57=_zhYbhCAldNvTwYOg1U6BSbUIa Content-Type: text/plain Content-Transfer-Encoding: 8bit |
|
|
1楼#
发布于:2008-05-27 19:21
从下往上数第一个 Received: 段是发件人的真实 ip,邮寄的路线是
insye (unknown [218.20.154.63] => mail.yellowweb.co.jp (Postfix) => mail.yellowweb.co.jp (unknown [210.166.220.24] => sohumx11.sohu.com (Postfix) => sohumx11.sohu.com (unknown [192.168.132.114] => mx46.mail.sohu.com (Postfix) 应该是广州的群发者用 smtp 方式通过在日本邮件服务器上的帐号向你 sohu 的邮箱发送的垃圾邮件。发件人应该没有隐藏自己的帐号,可以向 mail.yellowweb.co.jp 投诉 zejouz 这个用户。 过滤这种垃圾邮件的方式比较简单,收件人不是你的用户名的邮件一律拒收。 |
|
