header:
01: Return-Path: <postmaster [at] christianautosales.net>
02: X-Original-To: *
03: Delivered-To: *
04: Received: from localhost (localhost.localdomain [127.0.0.1])
05: by mail.*.de (*) with ESMTP ID: [ID filtered]
06: for <*>; Mon, 12 Dec 2005 xx:xx:xx +0100 (CET)
07: Received: from mail.*.de ([127.0.0.1])
08: by localhost (mail.*.de [127.0.0.1]) (amavisd-new, port 10024)
09: with ESMTP ID: [ID filtered]
10: Mon, 12 Dec 2005 xx:xx:xx +0100 (CET)
11: X-policyd-weight: NOT_IN_DYN_NJABL=0 NOT_IN_BL_NJABL=-1.5 IN_SPAMCOP=4.25
12: NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT_IN_DSBL_ORG=0 NOT_IN_IX_MANITU=0 NOT_IN_ORDB_ORG=0
13: CL_IP_EQ_FROM_MX=-2.5 <client=63.239.148.34> <helo=batt1.battcave.com>
14: <from=postmaster [at] christianautosales.net>, rate: -1.25
15: Received: from batt1.battcave.com (batt1.battcave.com [63.239.148.34])
16: by mail.*.de (*) with SMTP ID: [ID filtered]
17: for <*>; Mon, 12 Dec 2005 xx:xx:xx +0100 (CET)
18: Received: (qmail 69516 invoked by UID: [UID filtered]
19: Date: 12 Dec 2005 xx:xx:xx -0000
20: Message-ID: [ID filtered]
21: To: sales [at] christianautosales.net
22: Subject: Message from Web user; christianautosales.com/contact.htm
23: From: IssueOfTheWeek4320 [at] batt1.battcave.com
24: Content-Type: text/plain; charset=\"us-ascii\"
25: MIME-Version: 1.0
26: Content-Transfer-Encoding: 8bit
27: Subject: The most impressive issue so far this quarter
28: From: IssueOfTheWeek4320 [at] christianautosales.net
Hier mal eine Börsenspam, welcher offensichtlich über ein Kontaktformular eingeliefert wurde. Im Body war eine zweite Mail eingebettet mit ca. 100 E-Mailadressen im BCC:. Scheinbar feilen die Spamer noch an dieser Technik.
Lesezeichen