Wow the first t00n from Poland today, it seems stupidity finally reached Europe :-).
Of course that loser has no clue that what goes as provider in his country has a long history of netabuse.
But hey that t00n seems to be a close relative to El Tardo, he also mails to all addresses he could find...
Needless to say that German authorities are the ones that did set all those 20000+ spambots hosted at that Polish spammerhaeven into our list.
Here we go with the cart00ney:
=== START OF MESSAGE ===
X-From_: firstname.lastname@example.org Mon Dec 28 15:09:45 2009
Received: from mail-fx0-f219.google.com (22.214.171.124)
via SMTP by UCEPROTECT Proxy V4.1 at unimatrix.admins.ws, id smtpdCr6927; Mon Dec 28 15:09:43 2009
Received: by fxm19 with SMTP id 19so10020714fxm.37
for multiple recipients; Mon, 28 Dec 2009 06:09:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
DomainKey-Signature: a=rsa-sha1; c=nofws;
Received: by 10.223.6.9 with SMTP id 9mr21119312fax.84.1262009050779;
Mon, 28 Dec 2009 06:04:10 -0800 (PST)
Received: from ?192.168.1.4? ([126.96.36.199])
by mx.google.com with ESMTPS id h2sm17224213fkh.2.2009.12.28.06.04.09
Mon, 28 Dec 2009 06:04:09 -0800 (PST)
Date: Mon, 28 Dec 2009 15:04:07 +0100
From: =?UTF-8?B?TWljaGHFgiBLb2xpxYRza2k=?= email@example.com
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; pl; rv:188.8.131.52) Gecko/20091204 Thunderbird/3.0
To: we-dont-talk-to-listees( @ )uceprotect.net, orders( @ )fast9.uceprotect.net, abuse( @ )uceprotect.net, hostmaster( @ )uceprotect.net, root( @ )uceprotect.net
Subject: Blacklisting of 184.108.40.206 in dnsbl-2 and dnsbl-3.uceprotect.net
Content-Type: text/plain; charset=UTF-8; format=flowed
You have 24 hours to remove 220.127.116.11 from your blacklists
dnsbl-2.uceprotect.net and dnsbl-3.uceprotect.net.
Otherwise, I will report your extortion activity to Bundeskriminalamt
and file a lawsuit against your company in a Polish court.
=== END OF MESSAGE ===