Cybersmart - email
How do I report spam that was sent to my e-mail address?
When reporting spam please email both the content to the email as well as the full email headers (How do I find the email headers in my email program?).
The body of the email is helpful in identifying the content of the spam and can be used to train the Baysian filters. In most cases the email address that appears to have sent the email is forged and so the full email headers help up track and trace the original sender of the spam.
Examples of the what the full email headers looks like are shown below:
Here is a example of just the header (not full) and body.
From: South Africa Revenue Service <notice@sars.co.za>
Dear Taxpayer ,
After the last annual calculations of your fiscal activity we have determined that you are eligible to receive a tax refund of 682.50 ZAR. Please submit the tax refund request and allow us 2-3 days in order to process it.
A refund can be delayed for a variety of reasons. For example submitting invalid records or applying after the deadline. To access the form for your tax refund, please
Click here : www.sars.gov.za/taxpayers/refundation.stml
Note: For security reasons, we will record your ip-address, the date and time. Deliberate wrong inputs are criminally pursued and indicated.
Thank You
South African Revenue Service
Oupa G. Magashula
Commissioner
Here is an example of just the full headers
Return-Path: <bbtzd@126.com>
X-Original-To: xxxx@cybersmart.co.za
Delivered-To: xxxx@cybersmart.co.za
Received: from mailback3.cybersmart.co.za (localhost [127.0.0.1])
by mailback3.cybersmart.co.za (Postfix) with ESMTP id 335161A9816A
for <xxxx@cybersmart.co.za>; Tue, 16 Mar 2010 06:54:05 +0200 (SAST)
X-Virus-Scanned: amavisd-new at cybersmart.co.za
X-Spam-Flag: NO
X-Spam-Score: 4.512
X-Spam-Level: ****
X-Spam-Status: No, score=4.512 tagged_above=0 required=6.31
tests=[AV:Sanesecurity.Junk.15108.UNOFFICIAL=0.1,
HK_RANDOM_ENVFROM=2.638, HK_RANDOM_FROM=1, PLING_QUERY=0.774]
autolearn=disabled
Received: from mailback3.cybersmart.co.za ([127.0.0.1])
by mailback3.cybersmart.co.za (mailback3.cybersmart.co.za [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id 8MLRB+vYRGzc for <xxxx@cybersmart.co.za>;
Tue, 16 Mar 2010 06:54:04 +0200 (SAST)
Received: from smtp4.cybersmart.co.za (smtp.cybersmart.co.za [196.41.123.57])
by mailback3.cybersmart.co.za (Postfix) with ESMTP id 371531A980F9
for <xxxx@cybersmart.co.za>; Tue, 16 Mar 2010 06:54:02 +0200 (SAST)
Received: from [123.125.50.111] by smtp4.cybersmart.co.za (Proto Balance Mail 362 www.protonet.co.za, US Pat App 12702584, EU Pat App EP10153117)
with ESMTP id 196.41.123.57.1268715241896.223915
for <xxxx@cybersmart.co.za>; Tue, 16 Mar 2010 04:54:01 +0000
Received: from localhost (unknown [117.16.29.118])
by smtp5 (Coremail) with SMTP id jtKowLCbHAitB59LABMRDg--.22976S2;
Tue, 16 Mar 2010 12:23:12 +0800 (CST)
From: bbtzd@126.com
To: xxxx@cybersmart.co.za
Subject: Dream to act like a xxx-director? Nail a magicpill!
X-CM-TRANSID:jtKowLCbHAitB59LABMRDg--.22976S2
X-Coremail-Antispam: 1Uf129KBjDUn29KB7ZKAUJUUUUU529EdanIXcx71UUUUU7v73
VFW2AGmfu7bjvjm3AaLaJ3UbIYCTnIWIevJa73UjIFyTuYvjxUuX6pDUUUU
Message-Id: <4B9F0EEE.067610.22018@m50-111.126.com>
Date: Tue, 16 Mar 2010 12:54:06 +0800 (CST)
X-CM-SenderInfo: heew6va6rslhhfrp/1tbi5waV9koZiV2s+wAAsS
The correct way to report spam
Send email to rembox@superlistmarket.net to ensure no further communication
This email gives us both the sender address as well as the body of the email. We would be better able to block this spam using the above information.
Regards,
Cybersmart
Tags: -
Related entries:
Last update: 2010-03-16 11:01
Author: Shaun Courtney
Revision: 1.1
You cannot comment on this entry