I am getting from time to time emails that have this kind of text in the From field: ViagraAuthorized-Store firstname.lastname@example.org
The header looks like this:
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on
X-Spam-Status: Yes, score=11.7 required=5.0 tests=CMAE_1,HTML_MESSAGE,
MIME_HTML_ONLY,MISSING_DATE,MISSING_MID autolearn=disabled version=3.2.5
* 0.0 MISSING_MID Missing Message-Id: header
* 0.0 MISSING_DATE Missing Date: header
* 0.0 HTML_MESSAGE BODY: HTML included in message
* 1.7 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
* 10 CMAE_1 Cloudmark CMAE detected spam
Received: (qmail 3615 invoked by uid 110); 11 Jun 2010 13:53:50 -0700
Received: (qmail 3611 invoked from network); 11 Jun 2010 13:53:50 -0700
Received: from linhost03.isomedia.com (HELO btcentralplus.com) (18.104.22.168)
by linhost03.isomedia.com with SMTP; 11 Jun 2010 13:53:49 -0700
Received: from btcentralplus.com (host86-129-187-251.range86-129.btcentralplus.com [22.214.171.124])
by linvps13.isomedia.com (8.12.10/8.12.10) with ESMTP id j6OPGs0646279
for <support@....com>; Fri, 11 Jun 2010 13:53:50 -0700
From: ViagraAuthorized-Store <email@example.com>
Subject: Dear support! Discount marathon continues! 80% off. the in believers not
Content-Type: text/html; charset="utf-8"
I’d like to set up a rule that would delete any email that has ‘viagra’ in the From field or in the header in general.
For some reason this is not working.
I have Outlook 2010, but it was the same situation with Outlook 2007.