weird spam emails
Printed From: LogSat Software
Category: Spam Filter ISP
Forum Name: Spam Filter ISP Support
Forum Description: General support for Spam Filter ISP
URL: https://www.logsat.com/spamfilter/forums/forum_posts.asp?TID=5104
Printed Date: 13 January 2025 at 9:33pm
Topic: weird spam emails
Posted By: chinabee
Subject: weird spam emails
Date Posted: 16 March 2005 at 3:39pm
| I received some weird spam emails. is there a way i can post it here? |
Replies:
Posted By: LogSat
Date Posted: 16 March 2005 at 4:03pm
|
Yes, just copy and paste the full email source, headers included. Note
that you need to have the *original* source, you can't copy and paste
from MS Outlook for example because Outlook completely modifies the
email's content.
------------- Roberto Franceschetti http://www.logsat.com" rel="nofollow - LogSat Software http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP |
Posted By: chinabee
Date Posted: 16 March 2005 at 4:50pm
| I can't. the weird stuff is in the body, not the header. |
Posted By: LogSat
Date Posted: 16 March 2005 at 6:22pm
|
To have any chances of finding out the reason, we need to see the whole
original email. If you're not able to do so there's nothing we can do.
Please note that you can usually succeed in obtaining the original
email by forwarding it as an attachment to an email account that uses a
"clean" email client like Outlook Express to retrieve the email.
------------- Roberto Franceschetti http://www.logsat.com" rel="nofollow - LogSat Software http://www.logsat.com/sfi-spam-filter.asp" rel="nofollow - Spam Filter ISP |
Posted By: chinabee
Date Posted: 17 March 2005 at 9:59am
|
Header Microsoft Mail Internet Headers Version 2.0 --0-1297890435-1110983398=:46223 --0-1297890435-1110983398=:46223
|
Posted By: chinabee
Date Posted: 17 March 2005 at 9:59am
|
Body <DIV> |
Posted By: chinabee
Date Posted: 17 March 2005 at 10:01am
|
This is what user sees:
Hello, http://www.am.ox.com.starrinin.com/ - and SAVE 75%
Have a good day. P.S. You will be pIeasantIy surprised with our PRlCES ;-) |
Posted By: Desperado
Date Posted: 17 March 2005 at 12:19pm
|
Fractional Font sizes are not valid and are used to obscure / fool filters. This is what I use: Corrected Version: ((?i)(font\-size\:[\x20]{0,1}(\d){1,}\.[1-9]{1,}[\d]{0,1}((\")|(\;)|(p(t|x))))) Dan ------------- The Desperado Dan Seligmann. Work: http://www.mags.net Personal: http://www.desperado.com |
Posted By: chinabee
Date Posted: 17 March 2005 at 4:21pm
|
What do you mean? add this in keyword black list? Would you mind sharing your keyword list with me? I think you are realllllly great at this!!!! |
Posted By: Desperado
Date Posted: 17 March 2005 at 4:57pm
|
chinabee, Yes, it would be placed in the keyword blacklist. please email me at daseligmann at hotmail dot com BUT, I usually only use this account for testing so it is not my general point of contact. Dan S. ------------- The Desperado Dan Seligmann. Work: http://www.mags.net Personal: http://www.desperado.com |
Posted By: chinabee
Date Posted: 17 March 2005 at 5:02pm
| email sent. Dan, thanks again. |
Posted By: Web123
Date Posted: 18 March 2005 at 2:29am
|
Dan! Could I have it too? (kim @ engberg.fi) You seem to be "The Master" Thanks, |
of the keywords-list.Posted By: Desperado
Date Posted: 18 March 2005 at 11:18am
|
I am not the "Master" ... just persistant. D ------------- The Desperado Dan Seligmann. Work: http://www.mags.net Personal: http://www.desperado.com |