This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 19%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
Can a spammer post content into the “X-Microsoft-Antispam-Message-Info” in the email header? Should they even be able to? Especially taboo language content.
The sender appears to be using MS Outlook/Office online services.
=?iso-8859-1?Q?um1pff14+*****fUMzARsiSg=3D=3D?=
I replaced the plural for female anatomy slang word with ***** (a 4 letter word beginning with a “C”, 5 letters plural)
MN0PR12MB5787.namprd12.prod.outlook.com (::1) by
PH7PR12MB6719.namprd12.prod.outlook.com with HTTPS; Wed, 30 Nov 2022 [hh:nn:ss]
+0000
Received: from DS7PR05CA0056.namprd05.prod.outlook.com (2603:10b6:8:2f::17) by
MN0PR12MB5787.namprd12.prod.outlook.com (2603:10b6:208:376::9) with Microsoft
SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384)
This spam email was for a dental whitening treatment (spf none, dkim none, From address strange, image content hosted on a platform against their tos, target URLs to a seemingly unrelated website)
They previously also sent a very threatening abusive email last week, with foul language in the email body. I’ve reported to report_spam@Karima ben .com but not sure what more I can do.
@HankEU
I am writing here to confirm with you any update about this thread now.
If the suggestion below helps, please feel free to accept it as an answer to help more people.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 32%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
You can send an email (using whatever network software you want) with any HTTP header you want with any content you want. So yes it is trivial to do that. Unless the HTTP header in question has special meaning (e.g. Content-Type or Content-Length) then it is just a string value and no validation is really done. You can do this with any HTTP packet.
Which mailbox server that you used?
If you are using a mail server that managed by your organization, it is suggested to add a spam filter tool for your mail server.
If you are using a mail server that managed by Microsoft, such as hotmail.com, the most suitable way is reported to Microsoft and add this sender into a block sender in Outlook.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.