Martin Belz
01.03.2014, 15:21
Hallo zusamen!
Heute ist eine E.Mail mit folgenden Header bei mir eingeschlagen:
From - Sat Mar 1 XX:XX:XX 2014
X-Account-Key: account2
X-UIDL: [UID filtered]
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Return-Path: hjgedike [at] gmail.com
Received: from mail-wg0-f43.google.com ([74.125.82.43]) by mx.freenet.de
(Exim 4.80.1 #4) with ESMTPS (Nemesis) ID: [ID filtered]
<XXXXXXXXXXXXX [at] freenet.de>; Sat, 01 Mar 2014 XX:XX:XX +0100
Received: by mail-wg0-f43.google.com with SMTP ID: [ID filtered]
for <poor [at] spamvictim.tld>; Sat, 01 Mar 2014 XX:XX:XX -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=XXXXXXXX;
h=date:to:from:subject:message-id:mime-version:content-type
:content-transfer-encoding;
bh=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX=;
b=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX==
X-Received: by 10.180.187.237 with SMTP ID: [ID filtered]
Sat, 01 Mar 2014 XX:XX:XX -0800 (PST)
Return-Path: <hjgedike [at] gmail.com>
Received: from a20s12 ([93.174.95.55])
by mx.google.com with ESMTPSA ID: [ID filtered]
for <poor [at] spamvictim.tld>
(version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
Sat, 01 Mar 2014 XX:XX:XX -0800 (PST)
Date: Sat, 1 Mar 2014 XX:XX:XX +0100
Return-Path: <hjgedike [at] googlemail.com>
To: poor [at] spamvictim.tld
From: "=?utf-8?Q?service=XX=XX=XX=XX=XX=XX=XX=XX=XXde?=" <hjgedike [at] gmail.com>
Subject: =?utf-8?Q?XXXXXXX=C3=XXXXXXXXXXXXXXX?=
Message-ID: [ID filtered]
X-Priority: 3
X-Mailer: PHPMailer (https://github.com/PHPMailer/PHPMailer/)
MIME-Version: 1.0
Kann mir jemand erklären woher der Bursche kommt ?
Danke
Heute ist eine E.Mail mit folgenden Header bei mir eingeschlagen:
From - Sat Mar 1 XX:XX:XX 2014
X-Account-Key: account2
X-UIDL: [UID filtered]
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
X-Mozilla-Keys:
Return-Path: hjgedike [at] gmail.com
Received: from mail-wg0-f43.google.com ([74.125.82.43]) by mx.freenet.de
(Exim 4.80.1 #4) with ESMTPS (Nemesis) ID: [ID filtered]
<XXXXXXXXXXXXX [at] freenet.de>; Sat, 01 Mar 2014 XX:XX:XX +0100
Received: by mail-wg0-f43.google.com with SMTP ID: [ID filtered]
for <poor [at] spamvictim.tld>; Sat, 01 Mar 2014 XX:XX:XX -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=XXXXXXXX;
h=date:to:from:subject:message-id:mime-version:content-type
:content-transfer-encoding;
bh=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX=;
b=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX==
X-Received: by 10.180.187.237 with SMTP ID: [ID filtered]
Sat, 01 Mar 2014 XX:XX:XX -0800 (PST)
Return-Path: <hjgedike [at] gmail.com>
Received: from a20s12 ([93.174.95.55])
by mx.google.com with ESMTPSA ID: [ID filtered]
for <poor [at] spamvictim.tld>
(version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
Sat, 01 Mar 2014 XX:XX:XX -0800 (PST)
Date: Sat, 1 Mar 2014 XX:XX:XX +0100
Return-Path: <hjgedike [at] googlemail.com>
To: poor [at] spamvictim.tld
From: "=?utf-8?Q?service=XX=XX=XX=XX=XX=XX=XX=XX=XXde?=" <hjgedike [at] gmail.com>
Subject: =?utf-8?Q?XXXXXXX=C3=XXXXXXXXXXXXXXX?=
Message-ID: [ID filtered]
X-Priority: 3
X-Mailer: PHPMailer (https://github.com/PHPMailer/PHPMailer/)
MIME-Version: 1.0
Kann mir jemand erklären woher der Bursche kommt ?
Danke