宇宙主机交流论坛

 找回密码
 注册

QQ登录

只需一步,快速开始

欧基零壹微头条IP归属甄别会员请立即修改密码
查看: 3122|回复: 3

[Windows VPS] vultr客服说我的服务器进行网络欺诈钓鱼,请帮忙看看

[复制链接]
发表于 2015-3-22 18:05:02 | 显示全部楼层 |阅读模式
104.156.*.* 是我的服务器IP
昨天刚装好Vesta控制面板,网站还没架设,一直空着。
然后就收到vultr的ticket了,
请帮忙看下怎么回事,我该怎么处理呢?

Dear Sirs,
We are coming into contact to know that we received reports of practice of phishing scam from a user of their service.
The IP used in the fraud in question is 104.156.*.*.
We request the your cooperation to analyze and to investigate these facts and, if confirmed the incident, to apply energetic and effective actions to inhibit this kind of incident.
Attached is the source of the complaint. Already now, thank you for your attention in solving this incident.
You are receiving this message because its e-mail address is being informed in the URL: http://whois.arin.net/rest/poc/VULTR-ARIN.html
-----------------------------------------------------------------------------
HEADER
-----------------------------------------------------------------------------
Return-Path: <vidacomlivros+[email protected]>
Received: from [10.235.200.91] by mail-lmtp03-mia.tpn.terra.com (LMTP); Thu, 19 Mar
2015 17:14:14 +0000 (UTC)
X-Terra-Karma: -2%
X-Terra-Hash: 32b577e14462c1cf488d2bd4db32c8a1
Received: from mail-ob0-f189.google.com (mail-ob0-f189.google.com [209.85.214.189])
by 3xc.tpn.terra.com (Postfix) with ESMTP id EBA5A140000C8
for <[email protected]>; Thu, 19 Mar 2015 17:14:13 +0000 (UTC)
Received: by mail-ob0-f189.google.com with SMTP id vb8sf24176243obc.0 for
<[email protected]>; Thu, 19 Mar 2015 10:14:13 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlegroups.com; s=20120806;
h=to:subject:mime-version:content-type:from:message-id:date
:x-original-sender:x-original-authentication-results:reply-to
:precedence:mailing-list:list-id:list-post:list-help:list-archive
:sender:list-unsubscribe;
bh=Bd9RM2B/2iIdXV3kRMRpAajTFrSDH99oniYiKtMPSLY=;
b=Pm65Ca5iRxJXE99uSWr+VjFu0y+e4hFs+fWwZgHvAdxia4pwFLZRIeVtfpKKX6j6Rw
DXpEjX/iEmLUzQbIUe+ydJwsCcMi1ROAafBn5Sx3D3U/ZdmiAg4tmKgENuTLgjenpm9i
i9ckW9mKRsGaKB9Wrey8Mhls5oIs8mwnyBayAUWHhkcbz8gHuwyv9WkFHstjON1niU0V
dsp7kAzRINXeE6iK5wmpmTnJF5H7umqwOzRYIwlw31fW2ZlFGmLD1yabJWa0Kzihceh/
0JOW7M5NWMtnGTSt+LkX9UtTtlLbz5z2cccO0EDrYrD4ulmV4GhfgelCqrhJXMHHX9N4
FFzw==
X-Received: by 10.140.80.200 with SMTP id c66mr468748qgd.1.1426785253848; Thu, 19
Mar 2015 10:14:13 -0700 (PDT)
X-BeenThere: [email protected]
Received: by 10.140.72.20 with SMTP id l20ls1253065qgc.2.gmail; Thu, 19 Mar 2015
10:14:06 -0700 (PDT)
X-Received: by 10.236.207.68 with SMTP id m44mr71583606yho.25.1426785246001; Thu,
19 Mar 2015 10:14:06 -0700 (PDT)
Received: by 10.50.55.66 with SMTP id q2msigp; Thu, 19 Mar 2015 08:37:35 -0700
(PDT)
X-Received: by 10.182.28.104 with SMTP id a8mr79007156obh.15.1426779454901; Thu,
19 Mar 2015 08:37:34 -0700 (PDT)
Received: from vultr.guest ([104.156.*.*]) by gmr-mx.google.com with ESMTP
id t6si183326igz.3.2015.03.19.08.37.34 for
<[email protected]>; Thu, 19 Mar 2015 08:37:34 -0700
(PDT)
Received-SPF: none (google.com: [email protected] does not designate permitted sender
hosts) client-ip=104.156.*.*;
Received: by vultr.guest (Postfix, from userid 33)
id 85915D7738; Thu, 19 Mar 2015 15:28:47 +0000 (UTC)
To: [email protected]
X-PHP-Originating-Script: 0:ultimate.php
From: Boleto Protestado <[email protected]>
Message-Id: <[email protected]>
Date: Thu, 19 Mar 2015 15:28:47 +0000 (UTC)
X-Original-Sender: [email protected]
X-Original-Authentication-Results: gmr-mx.google.com; spf=none (google.com: [email protected] does not
designate permitted sender hosts) [email protected];
dmarc=fail (p=NONE dis=NONE) header.from=gmail.com
Reply-To: [email protected]
Precedence: list
Mailing-list: list [email protected]; contact
vidacomlivros+[email protected]
List-ID: <vidacomlivros.googlegroups.com>
X-Google-Group-Id: 740585385027
List-Post: <http://groups.google.com/group/vidacomlivros/post>,
<mailto:[email protected]>
List-Help: <http://groups.google.com/support/>,
<mailto:vidacomlivros+[email protected]>
List-Archive: <http://groups.google.com/group/vidacomlivros
Sender: [email protected]
List-Unsubscribe: <mailto:googlegroups-manage+740585385027+[email protected]>,
<http://groups.google.com/group/vidacomlivros/subscribe>
X-CMAE-Score: 100
X-CMAE-Analysis: v=2.1 cv=AeQ/HhnG c=0 sm=1 tr=0 p=yXTKxY2TWEoA:10
a=FYhvMGpHxVMXu+kSfKNC8Q==:117 a=NJ7wQMkHpK7RrTNB9ALCMQ==:17
a=IkcTkHD0fZMA:10
X-Terra-Client-IP: 209.85.214.189
Content-Type: text/html; charset=UTF-8
X-Terra-Spam: Yes
X-Terra-Rec-Key: cm9jaW9AdGVycmEuY29tLmJy
MIME-Version: 1.0
Subject: [Spam] <VL> A e R Advogados Associados .
-----------------------------------------------------------------------------
Thanks in advance
Terra Networks Brazil S/A
[email protected]
Abuse Department - Security Team
发表于 2015-3-22 18:48:48 | 显示全部楼层
vultr默认的25端口是关闭的啊,应该不可能被用来发垃圾邮件。

是不是账户密码设置的太简单,被挂马了?
 楼主| 发表于 2015-3-22 19:09:30 | 显示全部楼层
杯具 发表于 2015-3-22 18:48
vultr默认的25端口是关闭的啊,应该不可能被用来发垃圾邮件。

是不是账户密码设置的太简单,被挂马了? ...


原来不是我的问题。。。。。
客服又回复了:
This appears to be an old abuse complaint as your VPS wasn't deployed on the date they have listed.

我真是躺着中枪了
发表于 2015-3-23 18:16:32 | 显示全部楼层
呵呵,弄清楚了就好。

有时候确实会出现这样的情况。比如你还没买vps之前,这个ip是别人用的,以前对别人的投诉,可能会被误认为是你的问题。
您需要登录后才可以回帖 登录 | 注册

本版积分规则

Archiver|手机版|小黑屋|宇宙主机交流论坛

GMT+8, 2024-10-31 01:33 , Processed in 0.254679 second(s), 10 queries , Gzip On, MemCache On.

Powered by Discuz! X3.4

© 2001-2023 Discuz! Team.

快速回复 返回顶部 返回列表