From 5b4b184778ac04bd90fb2745d6d5a19f8423d7cc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 23 Aug 2018 08:49:02 +0200
Subject: [PATCH 01/56] [Web] Fixes to mailcow logo (stickers are coming!)
 [Web] Fix adding multiple domain aliases, fixes #1705

---
 data/web/img/cow_mailcow.svg           | 316 ++++++++++++-------------
 data/web/inc/functions.mailbox.inc.php |  42 ++--
 2 files changed, 174 insertions(+), 184 deletions(-)

diff --git a/data/web/img/cow_mailcow.svg b/data/web/img/cow_mailcow.svg
index d4577821..6ba98e46 100644
--- a/data/web/img/cow_mailcow.svg
+++ b/data/web/img/cow_mailcow.svg
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8" standalone="no"?>
-<!-- Generator: Adobe Illustrator 17.0.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+<!-- Generator: Adobe Illustrator 16.0.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
 
 <svg
    xmlns:dc="http://purl.org/dc/elements/1.1/"
@@ -10,20 +10,21 @@
    xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
    xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
    version="1.1"
-   id="Layer_1"
+   id="layer1"
    x="0px"
    y="0px"
-   width="374.82101"
-   height="356.871"
-   viewBox="0 0 374.821 356.871"
-   enable-background="new 0 0 1600 1200"
+   width="434.82101"
+   height="376.871"
+   viewBox="0 0 434.82101 376.871"
+   enable-background="new 0 0 374.82 356.871"
    xml:space="preserve"
    inkscape:version="0.91 r13725"
    sodipodi:docname="cow_mailcow.svg"><metadata
-     id="metadata144"><rdf:RDF><cc:Work
+     id="metadata77"><rdf:RDF><cc:Work
          rdf:about=""><dc:format>image/svg+xml</dc:format><dc:type
-           rdf:resource="http://purl.org/dc/dcmitype/StillImage" /><dc:title /></cc:Work></rdf:RDF></metadata><defs
-     id="defs142" /><sodipodi:namedview
+           rdf:resource="http://purl.org/dc/dcmitype/StillImage" /><dc:title></dc:title><cc:license
+           rdf:resource="" /></cc:Work></rdf:RDF></metadata><defs
+     id="defs75" /><sodipodi:namedview
      pagecolor="#ffffff"
      bordercolor="#666666"
      borderopacity="1"
@@ -32,161 +33,150 @@
      guidetolerance="10"
      inkscape:pageopacity="0"
      inkscape:pageshadow="2"
-     inkscape:window-width="1097"
-     inkscape:window-height="1138"
-     id="namedview140"
+     inkscape:window-width="1721"
+     inkscape:window-height="1177"
+     id="namedview73"
      showgrid="false"
-     inkscape:zoom="1.5733334"
-     inkscape:cx="264.82839"
-     inkscape:cy="340.43592"
-     inkscape:window-x="814"
-     inkscape:window-y="0"
-     inkscape:window-maximized="0"
-     inkscape:current-layer="g3"
-     fit-margin-top="0"
-     fit-margin-left="0"
-     fit-margin-right="0"
-     fit-margin-bottom="0" /><g
+     inkscape:zoom="1.4142136"
+     inkscape:cx="219.01206"
+     inkscape:cy="236.74714"
+     inkscape:window-x="-8"
+     inkscape:window-y="-8"
+     inkscape:window-maximized="1"
+     inkscape:current-layer="layer1"
+     fit-margin-top="10"
+     fit-margin-left="50"
+     fit-margin-bottom="10"
+     fit-margin-right="10"
+     showguides="true" /><g
      id="g3"
-     transform="translate(-648.292,-401.988)"><g
-       id="g5"><g
-         id="g7"><g
-           id="email"><path
-             d="m 890.306,557.81 29.26,11.373 0,172.027 c 0,9.753 -7.895,17.649 -17.638,17.649 l -235.998,0 c -9.743,0 -17.638,-7.896 -17.638,-17.649 l 0,-172.026 29.259,-8.937"
-             id="path10"
-             inkscape:connector-curvature="0"
-             style="fill:#5a3620" /><path
-             d="M 758.871,656.221 649.49,747.45 c 2.507,6.648 8.901,11.409 16.44,11.409 l 235.998,0 c 7.536,0 13.933,-4.761 16.444,-11.409 l -107.402,-91.229 -52.099,0 z"
-             id="path12"
-             inkscape:connector-curvature="0"
-             style="fill:#fee70f;fill-opacity:0.89499996" /><g
-             id="g14"><path
-               d="m 810.391,656.686 107.981,90.764 c -0.331,0.881 -0.744,1.726 -1.205,2.536 l 0.028,0.035 c 1.501,-2.596 2.371,-5.594 2.371,-8.81 l 0,-172.004 -109.175,87.479 z"
-               id="path16"
-               inkscape:connector-curvature="0"
-               style="fill:#f9e82d;fill-opacity:1" /><path
-               d="m 649.49,747.45 108.864,-90.764 -110.061,-87.479 0,172.003 c 0,3.216 0.876,6.214 2.367,8.81 l 0.039,-0.035 c -0.466,-0.809 -0.877,-1.654 -1.209,-2.535 z"
-               id="path18"
-               inkscape:connector-curvature="0"
-               style="fill:#f9e82d;fill-opacity:1" /></g></g><path
-           d="m 961.81,681.214 c 0,0 -15.232,16.783 -42.244,14.73 l 0,28.14 c 13.328,-5.185 47.061,-20.036 56.854,-40.809 l -14.61,-2.061 z"
-           id="path20"
-           inkscape:connector-curvature="0"
-           style="fill:#b58765" /><path
-           d="m 984.594,658.413 c 3.59,-9.156 7.701,-11 9.346,-11.346 -49.276,4.542 -32.99,38.693 -32.99,38.693 0,0 6.229,14.728 26.532,13.892 27.063,0.461 35.631,-50.166 35.631,-50.166 -6.654,11.655 -26.404,9.876 -38.519,8.927 z"
-           id="path22"
-           inkscape:connector-curvature="0"
-           style="fill:#fef3df" /><path
-           d="m 783.931,446.247 c -66.396,0 -120.223,53.827 -120.223,120.223 0,66.396 53.827,120.221 120.223,120.221 66.397,0 120.222,-53.825 120.222,-120.221 0,-66.395 -53.825,-120.223 -120.222,-120.223 z m -11.96,215.702 c -53.009,0 -95.982,-43.855 -95.982,-97.953 0,-54.098 42.973,-97.952 95.982,-97.952 53.007,0 95.98,43.855 95.98,97.952 -10e-4,54.098 -42.973,97.953 -95.98,97.953 z"
-           id="path26"
-           inkscape:connector-curvature="0"
-           style="opacity:0.1;fill:#3d5263" /><g
-           id="g28"><g
-             id="g30"><polyline
-               points="691.144,492.5 673.257,540.276 686.55,605.582 712.496,631.852      "
-               id="polyline32"
-               style="fill:#3d5263" /><g
-               id="g34"><g
-                 id="g36"><polyline
-                   points="658.248,450.81 673.501,487.076 693.836,496.903 724.04,458.731        "
-                   id="polyline38"
-                   style="fill:#fef3df" /><g
-                   id="g40"><path
-                     d="m 710.634,473.205 c 0,0 -22.482,-25.556 -49.793,-18.975 0,0 4.667,34.118 46.349,44.019 l 2.61,8.533 c 0,0 -65.612,-9.689 -59.339,-67.593 0,0 49.008,-19.884 72.598,15.106"
-                     id="path42"
-                     inkscape:connector-curvature="0"
-                     style="fill:#b58765" /><polyline
-                     points="909.697,450.81 894.447,487.076 874.114,496.903 843.907,458.731         "
-                     id="polyline44"
-                     style="fill:#fef3df" /><path
-                     d="m 857.314,473.205 c 0,0 22.48,-25.556 49.79,-18.975 0,0 -4.664,34.118 -46.347,44.019 l -2.613,8.533 c 0,0 65.611,-9.689 59.339,-67.593 0,0 -49.006,-19.884 -72.6,15.106"
-                     id="path46"
-                     inkscape:connector-curvature="0"
-                     style="fill:#b58765" /></g></g><path
-                 d="m 726.619,647.067 55.945,0 16.40428,-204.81407 c -55.814,0 -112.41728,30.01707 -112.41728,77.85207 0,1.454 0.085,2.787 0.121,4.175 0.127,3.934 0.448,7.585 0.856,11.135 1.689,14.816 5.451,27.177 8.461,43.383 1.452,7.831 5.002,23.374 5.002,23.374 0.056,0.408 0.165,0.804 0.224,1.211 2.535,16.546 11.832,32.027 25.404,43.684 z"
-                 id="path48"
-                 inkscape:connector-curvature="0"
-                 style="fill:#b58765"
-                 sodipodi:nodetypes="cccscccccc" /><path
-                 d="m 781.992,433.489 0,213.577 55.944,0 c 13.572,-11.657 22.867,-27.138 25.406,-43.684 0.058,-0.407 0.163,-0.803 0.221,-1.211 0,0 3.549,-15.543 5.002,-23.374 3.011,-16.206 6.774,-28.567 8.464,-43.381 0.405,-3.552 0.724,-7.203 0.846,-11.137 0.042,-1.388 0.126,-2.721 0.126,-4.175 0,-47.834 -40.191,-86.615 -96.009,-86.615 z"
-                 id="path50"
-                 inkscape:connector-curvature="0"
-                 style="fill:#b58765" /><g
-                 id="g52"><g
-                   id="g54"><path
-                     d="m 860.944,613.502 c 0,28.321 -35.091,51.289 -78.383,51.289 -43.299,0 -78.388,-22.968 -78.388,-51.289 0,-28.325 35.089,-51.289 78.388,-51.289 43.292,0 78.383,22.964 78.383,51.289 z"
-                     id="path56"
-                     inkscape:connector-curvature="0"
-                     style="fill:#fef3df" /></g></g><g
-                 id="g58"><g
-                   id="g60"><g
-                     id="g62"><path
-                       d="m 747.044,605.582 c 0,6.215 -5.04,11.256 -11.261,11.256 -6.21,0 -11.253,-5.041 -11.253,-11.256 0,-6.223 5.043,-11.257 11.253,-11.257 6.22,0 11.261,5.034 11.261,11.257 z"
-                       id="path64"
-                       inkscape:connector-curvature="0"
-                       style="fill:#5a3620" /></g></g><g
-                   id="g66"><g
-                     id="g68"><path
-                       d="m 840.856,605.582 c 0,6.215 -5.037,11.256 -11.257,11.256 -6.218,0 -11.259,-5.041 -11.259,-11.256 0,-6.223 5.041,-11.257 11.259,-11.257 6.22,0 11.257,5.034 11.257,11.257 z"
-                       id="path70"
-                       inkscape:connector-curvature="0"
-                       style="fill:#5a3620" /></g></g></g><g
-                 id="g72"><path
-                   d="m 875.228,525.835 c 0.354,-3.113 0.634,-6.311 0.743,-9.754 0.035,-1.218 0.109,-2.384 0.109,-3.661 0,-40.785 -33.369,-74.043 -80.237,-75.775 l -7.335,0.005 -0.006,0 c -0.007,0.018 -25.93541,90.33209 79.27959,142.17809 3.15658,-17.35082 5.65276,-38.01947 7.44641,-52.99309 z"
-                   id="path74"
-                   inkscape:connector-curvature="0"
-                   style="fill:#87654a"
-                   sodipodi:nodetypes="ccsccccc" /></g><g
-                 id="g76"><g
-                   id="g78"><g
-                     id="g80"><g
-                       id="g82"><path
-                         d="m 843.907,519.681 c 0,6.964 -5.65,12.611 -12.618,12.611 -6.963,0 -12.614,-5.646 -12.614,-12.611 0,-6.97 5.651,-12.614 12.614,-12.614 6.968,0 12.618,5.644 12.618,12.614 z"
-                         id="path84"
-                         inkscape:connector-curvature="0"
-                         style="fill:#5a3620" /></g></g></g><g
-                   id="g86"><g
-                     id="g88"><g
-                       id="g90"><path
-                         d="m 752.028,519.681 c 0,6.964 -5.649,12.611 -12.612,12.611 -6.969,0 -12.612,-5.646 -12.612,-12.611 0,-6.97 5.642,-12.614 12.612,-12.614 6.964,0 12.612,5.644 12.612,12.614 z"
-                         id="path92"
-                         inkscape:connector-curvature="0"
-                         style="fill:#5a3620" /></g></g></g><g
-                   id="g94"><g
-                     id="g96"><path
-                       d="m 748.75,515.894 c 0,2.558 -2.071,4.629 -4.63,4.629 -2.558,0 -4.633,-2.072 -4.633,-4.629 0,-2.552 2.076,-4.626 4.633,-4.626 2.559,0 4.63,2.073 4.63,4.626 z"
-                       id="path98"
-                       inkscape:connector-curvature="0"
-                       style="fill:#ffffff" /></g></g><g
-                   id="g100"><g
-                     id="g102"><path
-                       d="m 839.771,515.894 c 0,2.558 -2.073,4.629 -4.629,4.629 -2.558,0 -4.631,-2.072 -4.631,-4.629 0,-2.552 2.072,-4.626 4.631,-4.626 2.555,0 4.629,2.073 4.629,4.626 z"
-                       id="path104"
-                       inkscape:connector-curvature="0"
-                       style="fill:#ffffff" /></g></g></g></g><path
-               d="m 734.557,443.625 c 0,0 -18.236,-25.199 0,-41.637 0,0 13.125,32.012 40.242,31.502"
-               id="path106"
-               inkscape:connector-curvature="0"
-               style="fill:#fef3df" /><path
-               d="m 834.496,443.625 c 0,0 18.236,-25.199 0,-41.637 0,0 -13.126,32.012 -40.242,31.502"
-               id="path108"
-               inkscape:connector-curvature="0"
-               style="fill:#fef3df" /><path
-               d="m 786.264,431.965 c -66.396,0 -120.223,53.827 -120.223,120.223 0,66.396 53.827,120.221 120.223,120.221 66.397,0 120.222,-53.825 120.222,-120.221 10e-4,-66.395 -53.825,-120.223 -120.222,-120.223 z m -11.96,215.702 c -53.009,0 -95.982,-43.855 -95.982,-97.953 0,-54.098 42.973,-97.952 95.982,-97.952 53.007,0 95.979,43.855 95.979,97.952 0,54.098 -42.972,97.953 -95.979,97.953 z"
-               id="path110"
-               inkscape:connector-curvature="0"
-               style="fill:#f1f2f2" /></g><g
-             id="g112"><path
-               d="m 781.737,436.751 c 66.396,0 120.221,53.827 120.221,120.223 0,30.718 -11.526,58.74 -30.482,79.991 21.636,-21.74 35.01,-51.708 35.01,-84.803 0,-66.395 -53.825,-120.222 -120.222,-120.222 -35.678,0 -67.721,15.549 -89.739,40.233 21.772,-21.879 51.91,-35.422 85.212,-35.422 z"
-               id="path114"
-               inkscape:connector-curvature="0"
-               style="fill:#ffffff" /></g></g><path
-           d="m 919.566,695.944 c 0,0 7.562,0.712 13.317,-0.502 l 13.013,16.12 c 0,0 -17.639,9.525 -26.33,12.523 l 0,-28.141 z"
-           id="path116"
-           inkscape:connector-curvature="0"
-           style="opacity:0.1;fill:#3d5263" /></g><path
-         d="m 648.292,659.614 0,81.645 c 0,9.72 7.88,17.6 17.6,17.6 l 236.073,0 c 9.72,0 17.6,-7.88 17.6,-17.6 l 0,-24.902 c 10e-4,0 -175.814,35.524 -271.273,-56.743 z"
-         id="path124"
+     transform="translate(50,10)"><g
+       id="grey_5_"><path
+         d="m 55.948,213.25 c 0.07331,-20.26146 -0.716379,-17.26061 -3.655806,-39.26743 2.227824,-22.4392 -7.627923,-38.85857 -7.669233,-58.34044 0,-4.715 -5.805961,-6.78013 -4.760961,-11.13713 -6.292,13.037 -9.833,27.707 -9.833,43.222 0,25.946 9.89,49.533 26.027,67.059 -0.048,-0.511 -0.082,-1.023 -0.108,-1.536 z"
+         id="path6"
+         inkscape:connector-curvature="0"
+         style="fill:#3d5263"
+         sodipodi:nodetypes="ccccscc" /></g><g
+       id="yellow"><path
+         d="m 254.808,180.412 -0.567,0.455 c -10.49,39.88 -40.951,71.658 -80.048,83.996 l 10.952,9.206 53.296,44.799 31.601,26.563 c 0.783,-2.011 1.229,-4.19 1.231,-6.478 0,-0.007 10e-4,-0.013 10e-4,-0.02 l 0,-16.836 0,-10e-4 0,-28.141 0,-126.736 -16.466,13.193 z"
+         id="path9"
+         inkscape:connector-curvature="0"
+         style="fill:#f9e82d" /><path
+         d="m 23.027,185.52 -6.574,-5.225 -16.452,-13.076 0,90.407 0,81.307 c 0,2.295 0.447,4.481 1.233,6.499 l 58.39,-48.683 26.964,-22.481 12.38,-10.321 C 62.73,251.524 34.307,222.274 23.027,185.52 Z"
+         id="path11"
+         inkscape:connector-curvature="0"
+         style="fill:#f9e82d" /><path
+         d="m 238.441,318.868 -53.296,-44.799 -10.952,-9.206 c -11.431,3.607 -23.597,5.558 -36.22,5.558 -13.653,0 -26.772,-2.28 -39.004,-6.474 l -12.38,10.321 -26.965,22.482 -58.39,48.683 c 2.605,6.69 9.094,11.438 16.706,11.438 l 235.394,0 c 7.613,0 14.103,-4.749 16.707,-11.44 l -31.6,-26.563 z"
+         id="path13"
+         inkscape:connector-curvature="0"
+         style="fill:#edd514;fill-opacity:0.89499996" /></g><g
+       id="grey_4_"><path
+         enable-background="new    "
+         d="M 238.441,318.868 C 196.984,322.876 123.368,324.434 59.625,296.75 38.082,287.394 17.666,274.7 0.002,257.627 l 0,81.307 c 0,2.295 0.447,4.481 1.233,6.499 2.605,6.69 9.094,11.438 16.706,11.438 l 235.394,0 c 7.613,0 14.103,-4.749 16.707,-11.44 0.783,-2.011 1.229,-4.19 1.231,-6.478 l 0,-24.584 c 0,0 -12.58,2.541 -32.832,4.499 z"
+         id="path16"
+         inkscape:connector-curvature="0"
+         style="opacity:0.1;fill:#3d5263" /><path
+         enable-background="new    "
+         d="m 86.588,274.268 c 14.979,6.703 31.579,10.435 49.051,10.435 17.648,0 34.408,-3.803 49.505,-10.634 37.082,-16.777 64.125,-51.824 69.664,-93.657 l -0.567,0.455 c -10.49,39.88 -40.951,71.658 -80.048,83.996 -11.431,3.607 -23.597,5.558 -36.22,5.558 -13.653,0 -26.772,-2.28 -39.004,-6.474 C 62.731,251.524 34.308,222.274 23.028,185.52 l -6.574,-5.225 c 5.525,42.054 32.786,77.261 70.134,93.973 z"
+         id="path18"
          inkscape:connector-curvature="0"
          style="opacity:0.1;fill:#3d5263" /></g><g
-       id="g126" /></g></svg>
\ No newline at end of file
+       id="white_1_"><path
+         d="m 54.293,63.875 c -1.799,1.745 -3.541,3.548 -5.229,5.402 -0.042,0.046 -0.085,0.092 -0.127,0.139 -0.234,0.258 -0.473,0.51 -0.705,0.77 0.055,-0.055 0.111,-0.108 0.166,-0.163 21.76,-21.782 51.828,-35.259 85.046,-35.259 66.396,0 120.222,53.826 120.222,120.223 0,30.718 -11.526,58.74 -30.482,79.991 21.633,-21.737 35.006,-51.7 35.01,-84.791 0,-0.004 0,-0.009 0,-0.013 0,-21.143 -5.465,-41.007 -15.049,-58.269 -1.449,-2.608 -2.991,-5.157 -4.624,-7.643 -5.377,-8.187 -11.727,-15.676 -18.885,-22.307 -5.903,-5.467 -12.351,-10.354 -19.26,-14.558 -4.278,-2.604 -8.734,-4.944 -13.341,-7.006 -10.627,-4.756 -22.07,-8.016 -34.062,-9.509 -4.915,-0.612 -9.921,-0.931 -15.001,-0.931 -5.747,0 -11.398,0.409 -16.93,1.189 -12.291,1.733 -23.981,5.329 -34.784,10.487 -4.742,2.264 -9.313,4.83 -13.688,7.672 -6.561,4.266 -12.682,9.149 -18.277,14.576 z"
+         id="path21"
+         inkscape:connector-curvature="0"
+         style="fill:#ffffff" /><path
+         d="m 95.828,118.535 c 2.559,0 4.63,-2.071 4.63,-4.629 0,-2.553 -2.071,-4.626 -4.63,-4.626 -2.558,0 -4.634,2.074 -4.634,4.626 10e-4,2.557 2.076,4.629 4.634,4.629 z"
+         id="path23"
+         inkscape:connector-curvature="0"
+         style="fill:#ffffff" /><path
+         d="m 186.85,118.535 c 2.556,0 4.629,-2.071 4.629,-4.629 0,-2.553 -2.074,-4.626 -4.629,-4.626 -2.559,0 -4.631,2.074 -4.631,4.626 0,2.557 2.073,4.629 4.631,4.629 z"
+         id="path25"
+         inkscape:connector-curvature="0"
+         style="fill:#ffffff" /></g><g
+       id="grey_3_"><g
+         id="g28"><path
+           d="m 223.701,234.394 c 18.648,-21.18 29.965,-48.971 29.965,-79.408 0,-66.396 -53.825,-120.223 -120.222,-120.223 -33.218,0 -63.286,13.477 -85.046,35.259 -4.591,5.125 -8.746,10.647 -12.413,16.507 -1.524,2.437 -2.963,4.931 -4.314,7.48 -7.067,13.341 -11.704,28.167 -13.301,43.893 -0.411,4.043 -0.622,8.146 -0.622,12.298 0,3.849 0.188,7.653 0.542,11.409 0.776,8.241 2.38,16.24 4.735,23.912 11.281,36.754 39.703,66.004 75.941,78.427 12.231,4.193 25.351,6.474 39.004,6.474 12.623,0 24.79,-1.95 36.22,-5.558 18.139,-5.725 34.412,-15.64 47.7,-28.603 0.536,-0.522 1.811,-1.867 1.811,-1.867 z m -5.788,-58.356 c -2.132,7.217 -5.052,14.085 -8.668,20.495 -16.571,29.372 -47.64,49.146 -83.233,49.146 -27.584,0 -52.447,-11.88 -69.956,-30.895 C 39.919,197.26 30.03,173.673 30.03,147.726 c 0,-15.515 3.54,-30.185 9.833,-43.222 15.648,-32.42 48.344,-54.73 86.15,-54.73 3.967,0 7.876,0.25 11.717,0.728 47.479,5.898 84.262,47.175 84.262,97.224 -0.002,9.846 -1.431,19.348 -4.079,28.312 z"
+           id="path30"
+           inkscape:connector-curvature="0"
+           style="fill:#f1f2f2" /></g><path
+         d="m 49.064,69.277 c -0.042,0.046 -0.085,0.092 -0.127,0.139 0.042,-0.047 0.085,-0.093 0.127,-0.139 z"
+         id="path32"
+         inkscape:connector-curvature="0"
+         style="fill:#f1f2f2" /></g><g
+       id="darkbrown_1_"><path
+         d="m 257.626,161.89 c -0.488,5.062 -1.29,10.032 -2.387,14.89 -0.31,1.371 -0.643,2.733 -0.999,4.086 l 0.567,-0.455 16.466,-13.193 0,-0.023 -13.647,-5.305 z"
+         id="path35"
+         inkscape:connector-curvature="0"
+         style="fill:#5a3620" /><path
+         d="m 0.001,167.219 16.451,13.076 6.574,5.225 c -2.354,-7.672 -3.959,-15.671 -4.735,-23.912 l -2.85,0.871 L 0,167.196"
+         id="path37"
+         inkscape:connector-curvature="0"
+         style="fill:#5a3620" /><path
+         d="m 87.491,192.337 c -6.21,0 -11.254,5.034 -11.254,11.257 0,6.216 5.043,11.257 11.254,11.257 6.221,0 11.261,-5.041 11.261,-11.257 0,-6.223 -5.041,-11.257 -11.261,-11.257 z"
+         id="path39"
+         inkscape:connector-curvature="0"
+         style="fill:#5a3620" /><path
+         d="m 181.307,192.337 c -6.218,0 -11.259,5.034 -11.259,11.257 0,6.216 5.041,11.257 11.259,11.257 6.22,0 11.257,-5.041 11.257,-11.257 0,-6.223 -5.037,-11.257 -11.257,-11.257 z"
+         id="path41"
+         inkscape:connector-curvature="0"
+         style="fill:#5a3620" /><path
+         d="m 182.997,102.25057 c -6.963,0 -15.44243,7.76632 -15.44243,14.73532 0,6.965 8.12588,17.2072 15.08888,17.2072 6.968,0 15.79898,-9.53609 15.79898,-16.50009 0.001,-6.97 -8.47743,-15.44243 -15.44543,-15.44243 z m 3.853,16.28443 c -2.558,0 -4.631,-2.072 -4.631,-4.629 0,-2.552 2.072,-4.626 4.631,-4.626 2.555,0 4.629,2.073 4.629,4.626 0,2.558 -2.073,4.629 -4.629,4.629 z"
+         id="path43"
+         inkscape:connector-curvature="0"
+         style="fill:#5a3620"
+         sodipodi:nodetypes="ssscssssss" /><path
+         d="m 89.709786,102.60413 c -6.971,0 -14.379767,8.11987 -14.379767,15.08887 0,6.965 8.824981,16.14653 15.793981,16.14653 6.963,0 15.79298,-9.18253 15.79298,-16.14653 0.001,-6.97 -10.243194,-15.08887 -17.207194,-15.08887 z M 95.828,118.535 c -2.559,0 -4.634,-2.072 -4.634,-4.629 0,-2.552 2.076,-4.626 4.634,-4.626 2.559,0 4.63,2.073 4.63,4.626 0,2.558 -2.071,4.629 -4.63,4.629 z"
+         id="path45"
+         inkscape:connector-curvature="0"
+         style="fill:#5a3620"
+         sodipodi:nodetypes="ssscssssss" /></g><g
+       id="cream"><path
+         d="m 336.302,256.425 c 3.59,-9.155 7.701,-11 9.346,-11.346 -40.757,3.757 -36.661,27.769 -34.026,35.96 0.55,1.712 1.037,2.733 1.037,2.733 0,0 2.031,4.787 7.536,8.748 4.149,2.986 10.27,5.503 18.995,5.144 27.063,0.461 35.631,-50.166 35.631,-50.166 -6.654,11.655 -26.404,9.876 -38.519,8.927 z"
+         id="path48"
+         inkscape:connector-curvature="0"
+         style="fill:#fef3df" /><path
+         d="m 48.937,69.415 c 0.042,-0.046 0.085,-0.092 0.127,-0.139 1.688,-1.854 3.43,-3.657 5.229,-5.402 -8.915,-6.977 -24.344,-15.826 -41.744,-11.633 0,0 2.814,20.458 23.437,34.287 3.667,-5.86 7.822,-11.381 12.413,-16.507 -0.055,0.055 -0.111,0.108 -0.166,0.163 0.231,-0.258 0.47,-0.511 0.704,-0.769 z"
+         id="path50"
+         inkscape:connector-curvature="0"
+         style="fill:#fef3df" /><path
+         d="m 258.812,52.242 c -15.831,-3.815 -30.029,3.169 -39.176,9.714 7.158,6.63 13.508,14.12 18.885,22.307 17.763,-13.689 20.291,-32.021 20.291,-32.021 z"
+         id="path52"
+         inkscape:connector-curvature="0"
+         style="fill:#fef3df" /><path
+         d="m 134.269,160.225 c -43.299,0 -78.388,22.964 -78.388,51.289 0,0.582 0.038,1.157 0.067,1.735 0.026,0.514 0.06,1.025 0.108,1.535 17.508,19.015 42.371,30.895 69.956,30.895 35.594,0 66.662,-19.774 83.233,-49.146 -9.796,-21.016 -39.651,-36.308 -74.976,-36.308 z M 87.491,214.85 c -6.211,0 -11.254,-5.041 -11.254,-11.257 0,-6.223 5.044,-11.257 11.254,-11.257 6.22,0 11.261,5.034 11.261,11.257 0,6.216 -5.04,11.257 -11.261,11.257 z m 93.816,0 c -6.218,0 -11.259,-5.041 -11.259,-11.257 0,-6.223 5.041,-11.257 11.259,-11.257 6.22,0 11.257,5.034 11.257,11.257 0,6.216 -5.037,11.257 -11.257,11.257 z"
+         id="path54"
+         inkscape:connector-curvature="0"
+         style="fill:#fef3df" /><path
+         d="M 86.265,0 C 68.102,16.373 86.113,41.427 86.258,41.628 97.061,36.47 108.751,32.874 121.042,31.141 97.629,27.686 86.265,0 86.265,0 Z"
+         id="path56"
+         inkscape:connector-curvature="0"
+         style="fill:#fef3df" /><path
+         d="m 186.204,0 c 0,0 -10.863,26.476 -33.231,30.883 11.992,1.493 23.435,4.752 34.062,9.509 C 190.383,35.136 202.036,14.271 186.204,0 Z"
+         id="path58"
+         inkscape:connector-curvature="0"
+         style="fill:#fef3df" /></g><g
+       id="g60"><path
+         d="m 217.913,176.038 c 2.647,-8.964 6.55187,-25.89162 6.55187,-35.73662 C 224.46487,90.252379 185.208,56.4 137.728,50.502 c -2.157,28.03 3.629,87.043 80.185,125.536 z m -47.53,-58.345 c 0,-6.97 5.651,-12.614 12.614,-12.614 6.968,0 12.617,5.645 12.617,12.614 0,6.964 -5.649,12.611 -12.617,12.611 -6.963,0 -12.614,-5.646 -12.614,-12.611 z"
+         id="path62"
+         inkscape:connector-curvature="0"
+         style="fill:#87654a"
+         sodipodi:nodetypes="csccsssss" /></g><g
+       id="brown"><path
+         d="m 312.658,283.772 c 0,0 -0.487,-1.021 -1.037,-2.733 -3.758,3.317 -13.036,10.236 -27.03,12.416 l 0,-10e-4 c -0.009,0.002 -0.019,0.003 -0.027,0.005 -4.044,0.628 -8.479,0.863 -13.29,0.497 l 0,28.141 c 2.059,-0.801 4.607,-1.834 7.477,-3.083 5.462,-2.377 12.093,-5.542 18.771,-9.395 0.027,-0.016 0.054,-0.031 0.081,-0.047 8.158,-4.713 16.37,-10.452 22.593,-17.052 -5.506,-3.961 -7.538,-8.748 -7.538,-8.748 z"
+         id="path65"
+         inkscape:connector-curvature="0"
+         style="fill:#b58765" /><path
+         d="m 12.549,52.242 c 17.4,-4.193 32.83,4.656 41.744,11.633 C 59.888,58.449 66.009,53.565 72.57,49.301 48.272,18.498 2.169,37.201 2.169,37.201 -1.114,67.502 15.288,84.594 31.672,94.01 33.023,91.461 34.462,88.966 35.986,86.53 15.363,72.699 12.549,52.242 12.549,52.242 Z"
+         id="path67"
+         inkscape:connector-curvature="0"
+         style="fill:#b58765" /><path
+         d="m 200.376,47.398 c 6.909,4.205 13.356,9.091 19.26,14.558 9.146,-6.545 23.345,-13.529 39.176,-9.714 0,0 -2.527,18.332 -20.291,32.021 1.633,2.485 3.175,5.034 4.624,7.643 15.141,-9.784 29.097,-26.539 26.046,-54.704 0,-10e-4 -44.152,-17.909 -68.815,10.196 z"
+         id="path69"
+         inkscape:connector-curvature="0"
+         style="fill:#b58765" /><path
+         d="m 138.854,50.502 c -3.841,-0.478 -8.875,-0.728 -12.842,-0.728 -37.806,0 -70.502,22.31 -86.15,54.73 -1.045,4.357 -1.603,8.897 -1.603,13.612 0,1.454 0.085,2.787 0.121,4.175 0.127,3.935 0.448,7.585 0.855,11.135 4.291755,24.95762 7.959057,42.49186 13.464,66.758 0.056,0.407 0.164,0.804 0.224,1.211 0.617,4.028 1.642,7.992 3.025,11.854 -0.029,-0.578 -0.067,-1.153 -0.067,-1.735 0,-28.325 35.089,-51.289 78.388,-51.289 35.325,0 65.181,15.292 74.977,36.308 3.616,-6.409 6.536,-13.277 8.668,-20.495 C 179.98905,152.54886 163.9995,134.88987 153.25313,111.82124 142.50675,88.752624 137.775,64.517 138.854,50.502 Z m -47.73,79.802 c -6.97,0 -12.612,-5.646 -12.612,-12.611 0,-6.97 5.642,-12.614 12.612,-12.614 6.964,0 12.611,5.645 12.611,12.614 0.001,6.964 -5.648,12.611 -12.611,12.611 z"
+         id="path71"
+         inkscape:connector-curvature="0"
+         style="fill:#b58765"
+         sodipodi:nodetypes="cscscccccssccscssscs" /></g></g></svg>
\ No newline at end of file
diff --git a/data/web/inc/functions.mailbox.inc.php b/data/web/inc/functions.mailbox.inc.php
index 200ff0ae..b17e204f 100644
--- a/data/web/inc/functions.mailbox.inc.php
+++ b/data/web/inc/functions.mailbox.inc.php
@@ -637,7 +637,7 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             );
             return false;
           }
-          foreach ($alias_domains as $i => &$alias_domain) {
+          foreach ($alias_domains as $i => $alias_domain) {
             $alias_domain = idn_to_ascii(strtolower(trim($alias_domain)));
             if (!is_valid_domain_name($alias_domain)) {
               $_SESSION['return'][] = array(
@@ -680,30 +680,30 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
               );
               continue;
             }
-          }
-          $stmt = $pdo->prepare("INSERT INTO `alias_domain` (`alias_domain`, `target_domain`, `active`)
-            VALUES (:alias_domain, :target_domain, :active)");
-          $stmt->execute(array(
-            ':alias_domain' => $alias_domain,
-            ':target_domain' => $target_domain,
-            ':active' => $active
-          ));
-          try {
-            $redis->hSet('DOMAIN_MAP', $alias_domain, 1);
-          }
-          catch (RedisException $e) {
+            $stmt = $pdo->prepare("INSERT INTO `alias_domain` (`alias_domain`, `target_domain`, `active`)
+              VALUES (:alias_domain, :target_domain, :active)");
+            $stmt->execute(array(
+              ':alias_domain' => $alias_domain,
+              ':target_domain' => $target_domain,
+              ':active' => $active
+            ));
+            try {
+              $redis->hSet('DOMAIN_MAP', $alias_domain, 1);
+            }
+            catch (RedisException $e) {
+              $_SESSION['return'][] = array(
+                'type' => 'danger',
+                'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
+                'msg' => array('redis_error', $e)
+              );
+              return false;
+            }
             $_SESSION['return'][] = array(
-              'type' => 'danger',
+              'type' => 'success',
               'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
-              'msg' => array('redis_error', $e)
+              'msg' => array('aliasd_added', htmlspecialchars($alias_domain))
             );
-            return false;
           }
-          $_SESSION['return'][] = array(
-            'type' => 'success',
-            'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
-            'msg' => array('aliasd_added', htmlspecialchars($alias_domain))
-          );
         break;
         case 'mailbox':
           $local_part   = strtolower(trim($_data['local_part']));

From 4b09b5b1bb78cb5e5623954bc9680342e982a725 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9=20Peters?= <andre.peters@debinux.de>
Date: Sun, 26 Aug 2018 18:31:44 +0200
Subject: [PATCH 02/56] Update functions.mailbox.inc.php

[Web] Remove invalid parameter from sieve_filters update query, fixes #1714
---
 data/web/inc/functions.mailbox.inc.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/data/web/inc/functions.mailbox.inc.php b/data/web/inc/functions.mailbox.inc.php
index b17e204f..dd40fa0e 100644
--- a/data/web/inc/functions.mailbox.inc.php
+++ b/data/web/inc/functions.mailbox.inc.php
@@ -139,7 +139,6 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             $stmt = $pdo->prepare("UPDATE `sieve_filters` SET `script_name` = 'inactive' WHERE `username` = :username AND `filter_type` = :filter_type");
             $stmt->execute(array(
               ':username' => $username,
-              'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
               ':filter_type' => $filter_type
             ));
           }
@@ -3394,4 +3393,4 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
   if ($_action != 'get' && in_array($_type, array('domain', 'alias', 'alias_domain', 'mailbox'))) {
     update_sogo_static_view();
   }
-}
\ No newline at end of file
+}

From 5e56a46c8434ab4289687a20852678c99b02c429 Mon Sep 17 00:00:00 2001
From: sriccio <sr@swisscenter.com>
Date: Tue, 28 Aug 2018 17:14:05 +0200
Subject: [PATCH 03/56] [dovecot] Enhancement to allow to use
 auth_default_realm

When using auth_default_realm in dovecot configuration to setup a default domain name (to allow users to login with only a username instead of the full e-mail address), it breaks the compatibility with imapsync and sogo/sieve vacation.

Adding a domain name to dovecot master user/pass fixes this.

This never made it do the master branch, so I'm trying a PR again :)

See: https://github.com/mailcow/mailcow-dockerized/pull/1331#issuecomment-386534307
---
 data/Dockerfiles/dovecot/docker-entrypoint.sh | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/data/Dockerfiles/dovecot/docker-entrypoint.sh b/data/Dockerfiles/dovecot/docker-entrypoint.sh
index 70ffb701..50e91a12 100755
--- a/data/Dockerfiles/dovecot/docker-entrypoint.sh
+++ b/data/Dockerfiles/dovecot/docker-entrypoint.sh
@@ -110,8 +110,9 @@ if [[ $(stat -c %U /var/vmail/) != "vmail" ]] ; then chown -R vmail:vmail /var/v
 # Create random master for SOGo sieve features
 RAND_USER=$(cat /dev/urandom | tr -dc 'a-z0-9' | fold -w 16 | head -n 1)
 RAND_PASS=$(cat /dev/urandom | tr -dc 'a-z0-9' | fold -w 24 | head -n 1)
-echo ${RAND_USER}:$(doveadm pw -s SHA1 -p ${RAND_PASS}) > /usr/local/etc/dovecot/dovecot-master.passwd
-echo ${RAND_USER}:${RAND_PASS} > /etc/sogo/sieve.creds
+
+echo ${RAND_USER}@mailcow.local:$(doveadm pw -s SHA1 -p ${RAND_PASS}) > /usr/local/etc/dovecot/dovecot-master.passwd
+echo ${RAND_USER}@mailcow.local:${RAND_PASS} > /etc/sogo/sieve.creds
 
 # 401 is user dovecot
 if [[ ! -f /mail_crypt/ecprivkey.pem || ! -f /mail_crypt/ecpubkey.pem ]]; then

From e5b830adeaea28d7c5a79f72b72911cbda0cf668 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Fri, 31 Aug 2018 23:33:55 +0200
Subject: [PATCH 04/56] [Dovecot] Fix shared namespace

---
 data/conf/dovecot/dovecot.conf | 2 +-
 docker-compose.yml             | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/data/conf/dovecot/dovecot.conf b/data/conf/dovecot/dovecot.conf
index dd8db8a3..5fc0024d 100644
--- a/data/conf/dovecot/dovecot.conf
+++ b/data/conf/dovecot/dovecot.conf
@@ -175,7 +175,7 @@ namespace {
     type = shared
     separator = /
     prefix = Shared/%%u/
-    location = maildir:%%h/:CONTROL=~/Shared/%%u:INDEXPVT=~/Shared/%%u
+    location = maildir:%%h/:INDEX=~/Shared/%%u;CONTROL=~/Shared/%%u
     subscriptions = no
     list = children
 }
diff --git a/docker-compose.yml b/docker-compose.yml
index 871961a8..c1a3a1c8 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -136,7 +136,7 @@ services:
             - phpfpm
 
     sogo-mailcow:
-      image: mailcow/sogo:1.34
+      image: mailcow/sogo:1.35
       build: ./data/Dockerfiles/sogo
       environment:
         - DBNAME=${DBNAME}

From 8a88514dfde20b277ace76b87a126513e040fade Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Fri, 7 Sep 2018 16:40:37 +0200
Subject: [PATCH 05/56] [SOGo] Declare /usr/lib/GNUstep/SOGo as volume [Nginx]
 Mount vols from sogo-mailcow to access /usr/lib/GNUstep/SOGo

---
 data/Dockerfiles/sogo/Dockerfile | 2 ++
 docker-compose.yml               | 4 +++-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/data/Dockerfiles/sogo/Dockerfile b/data/Dockerfiles/sogo/Dockerfile
index 30a06d24..9d3965a7 100644
--- a/data/Dockerfiles/sogo/Dockerfile
+++ b/data/Dockerfiles/sogo/Dockerfile
@@ -49,4 +49,6 @@ COPY sogo-full.svg /usr/lib/GNUstep/SOGo/WebServerResources/img/sogo-full.svg
 COPY acl.diff /acl.diff
 CMD exec /usr/bin/supervisord -c /etc/supervisor/supervisord.conf
 
+VOLUME /usr/lib/GNUstep/SOGo/
+
 RUN rm -rf /tmp/* /var/tmp/*
diff --git a/docker-compose.yml b/docker-compose.yml
index c1a3a1c8..353772eb 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -136,7 +136,7 @@ services:
             - phpfpm
 
     sogo-mailcow:
-      image: mailcow/sogo:1.35
+      image: mailcow/sogo:1.36
       build: ./data/Dockerfiles/sogo
       environment:
         - DBNAME=${DBNAME}
@@ -264,6 +264,8 @@ services:
         - ./data/assets/ssl/:/etc/ssl/mail/:ro
         - ./data/conf/nginx/:/etc/nginx/conf.d/:rw
         - ./data/conf/rspamd/meta_exporter:/meta_exporter:ro
+      volumes_from:
+        - sogo-mailcow
       ports:
         - "${HTTPS_BIND:-0.0.0.0}:${HTTPS_PORT:-443}:${HTTPS_PORT:-443}"
         - "${HTTP_BIND:-0.0.0.0}:${HTTP_PORT:-80}:${HTTP_PORT:-80}"

From afc18fd46935e201a9be85ab636f0ed0b77209be Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 9 Sep 2018 09:47:47 +0200
Subject: [PATCH 06/56] [Rspamd] Update bad asn, move KEEP_SPAM to a custom lua
 function

---
 data/conf/rspamd/custom/bad_asn.map    | 15 +++----
 data/conf/rspamd/local.d/multimap.conf | 15 -------
 data/conf/rspamd/lua/rspamd.local.lua  | 54 ++++++++++++++++++++++++++
 3 files changed, 62 insertions(+), 22 deletions(-)

diff --git a/data/conf/rspamd/custom/bad_asn.map b/data/conf/rspamd/custom/bad_asn.map
index 8b7a4407..bc9e10f6 100644
--- a/data/conf/rspamd/custom/bad_asn.map
+++ b/data/conf/rspamd/custom/bad_asn.map
@@ -1,11 +1,10 @@
 # High spam networks, disabled by default
 #201942:5 #Soltia Consulting SL - ipinfo.io
-#16276:5 #OVH
-#12876:5 #ONLINE S.A.S
-#31034:5
-#12874:5
-#30823:5
-#197071:5
+#16276:2 #OVH
+#12876:2 #ONLINE S.A.S
+#31034:5 #ARUBA-ASN, IT
+#12874:5 #FASTWEB, IT
+#30823:3 #PKV spam
 #42831:5 #UK Dedicated Servers Ltd
 #29119:5 #Aire Networks del Mediterraneo S.L.U.
 #13335:5 #Cloudflare
@@ -17,7 +16,7 @@
 #14061:4 #Digitalocean
 #55293:4 #A2 Hosting
 #63018:4 #US Dedicated
-#197518:2
+#197518:2 #RACKMARKT
 #44493:2
 #46606:2
 #49505:2
@@ -25,3 +24,5 @@
 #197695:2
 #198068:2
 #43146:2
+#49100:4
+#39364:4
diff --git a/data/conf/rspamd/local.d/multimap.conf b/data/conf/rspamd/local.d/multimap.conf
index da4afaf2..c27a9d63 100644
--- a/data/conf/rspamd/local.d/multimap.conf
+++ b/data/conf/rspamd/local.d/multimap.conf
@@ -25,13 +25,6 @@ WHITELISTED_FWD_HOST {
   symbols_set = ["WHITELISTED_FWD_HOST"];
 }
 
-KEEP_SPAM {
-  type = "ip";
-  map = "redis://KEEP_SPAM";
-  action = "accept";
-  symbols_set = ["KEEP_SPAM"];
-}
-
 LOCAL_BL_ASN {
   require_symbols = "!MAILCOW_WHITE";
   type = "asn";
@@ -40,11 +33,3 @@ LOCAL_BL_ASN {
   description = "Sender's ASN is on the local blacklist";
   symbols_set = ["LOCAL_BL_ASN"];
 }
-
-#SPOOFED_SENDER {
-#  type = "rcpt";
-#  filter = "email:domain:tld";
-#  map = "redis://DOMAIN_MAP";
-#  require_symbols = "AUTH_NA | !RCVD_VIA_SMTP_AUTH";
-#  symbols_set = ["SPOOFED_SENDER"];
-#}
diff --git a/data/conf/rspamd/lua/rspamd.local.lua b/data/conf/rspamd/lua/rspamd.local.lua
index 7c9efbb4..92d223b1 100644
--- a/data/conf/rspamd/lua/rspamd.local.lua
+++ b/data/conf/rspamd/lua/rspamd.local.lua
@@ -7,6 +7,60 @@ rspamd_config.MAILCOW_AUTH = {
 	end
 }
 
+rspamd_config:register_symbol({
+  name = 'KEEP_SPAM',
+  type = 'prefilter',
+  callback = function(task)
+    local util = require("rspamd_util")
+    local rspamd_logger = require "rspamd_logger"
+    local rspamd_ip = require 'rspamd_ip'
+    local uname = task:get_user()
+    if uname then
+      return false
+    end
+    local redis_params = rspamd_parse_redis_server('keep_spam')
+    local ip = task:get_from_ip()
+    local from_ip_string = ip:to_string()
+    ip_check_table = {from_ip_string}
+    local maxbits = 128
+    local minbits = 32
+    if ip:get_version() == 4 then
+        maxbits = 32
+        minbits = 8
+    end
+    for i=maxbits,minbits,-1 do
+      local nip = ip:apply_mask(i):to_string() .. "/" .. i
+      table.insert(ip_check_table, nip)
+    end
+    local function keep_spam_cb(err, data)
+      if err then
+        rspamd_logger.infox(rspamd_config, "keep_spam query request for ip %s returned invalid or empty data (\"%s\") or error (\"%s\")", ip, data, err)
+        return false
+      else
+        for k,v in pairs(data) do
+          if (v and v ~= userdata and v == '1') then
+            rspamd_logger.infox(rspamd_config, "found ip in keep_spam map, setting pre-result", v)
+            task:set_pre_result('accept', 'IP matched with forward hosts')
+          end
+        end
+      end
+    end
+    table.insert(ip_check_table, 1, 'KEEP_SPAM')
+    local redis_ret_user = rspamd_redis_make_request(task,
+      redis_params, -- connect params
+      'KEEP_SPAM', -- hash key
+      false, -- is write
+      keep_spam_cb, --callback
+      'HMGET', -- command
+      ip_check_table -- arguments
+    )
+    if not redis_ret_user then
+      rspamd_logger.infox(rspamd_config, "cannot check keep_spam redis map")
+    end
+  end,
+  priority = 19
+})
+
 rspamd_config:register_symbol({
   name = 'TAG_MOO',
   type = 'postfilter',

From ad902f0ad8ab781d08583f4c69d6c70570531671 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 9 Sep 2018 09:48:11 +0200
Subject: [PATCH 07/56] [SOGo] Remove HTTP server on port 9192

---
 data/Dockerfiles/sogo/supervisord.conf | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/data/Dockerfiles/sogo/supervisord.conf b/data/Dockerfiles/sogo/supervisord.conf
index 2a889560..1c1422b3 100644
--- a/data/Dockerfiles/sogo/supervisord.conf
+++ b/data/Dockerfiles/sogo/supervisord.conf
@@ -16,13 +16,6 @@ command=/usr/sbin/cron -f
 autorestart=true
 priority=2
 
-[program:sogo-webres]
-command=/usr/bin/python -u -m SimpleHTTPServer 9192
-directory=/usr/lib/GNUstep/SOGo/
-user=sogo
-autorestart=true
-priority=4
-
 [program:bootstrap-sogo]
 command=/bootstrap-sogo.sh
 stdout_logfile=/dev/stdout

From ea4a26eabfbb19c04a2bcdcb3e510147ab5c65c8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 9 Sep 2018 09:51:37 +0200
Subject: [PATCH 08/56] [Nginx] Use SOGo web resources from local mount

---
 data/conf/nginx/site.conf | 33 ++++-----------------------------
 1 file changed, 4 insertions(+), 29 deletions(-)

diff --git a/data/conf/nginx/site.conf b/data/conf/nginx/site.conf
index d25d3b61..9ea4c385 100644
--- a/data/conf/nginx/site.conf
+++ b/data/conf/nginx/site.conf
@@ -156,44 +156,19 @@ server {
   }
 
   location /SOGo.woa/WebServerResources/ {
-    proxy_pass http://sogo:9192/WebServerResources/;
-    proxy_set_header Host $http_host;
-    proxy_cache sogo;
-    proxy_cache_valid 200 1d;
-    proxy_cache_use_stale error timeout invalid_header updating http_500 http_502 http_503 http_504;
-    #alias /usr/lib/GNUstep/SOGo/WebServerResources/;
-    expires $expires;
-    allow all;
+    alias /usr/lib/GNUstep/SOGo/WebServerResources/;
   }
 
   location /.woa/WebServerResources/ {
-    proxy_pass http://sogo:9192/WebServerResources/;
-    proxy_set_header Host $http_host;
-    proxy_cache sogo;
-    proxy_cache_valid 200 1d;
-    proxy_cache_use_stale error timeout invalid_header updating http_500 http_502 http_503 http_504;
-    #alias /usr/lib/GNUstep/SOGo/WebServerResources/;
-    expires $expires;
-    allow all;
+    alias /usr/lib/GNUstep/SOGo/WebServerResources/;
   }
 
   location /SOGo/WebServerResources/ {
-    proxy_pass http://sogo:9192/WebServerResources/;
-    proxy_set_header Host $http_host;
-    proxy_cache sogo;
-    proxy_cache_valid 200 1d;
-    proxy_cache_use_stale error timeout invalid_header updating http_500 http_502 http_503 http_504;
-    #alias /usr/lib/GNUstep/SOGo/WebServerResources/;
-    allow all;
+    alias /usr/lib/GNUstep/SOGo/WebServerResources/;
   }
 
   location (^/SOGo/so/ControlPanel/Products/[^/]*UI/Resources/.*\.(jpg|png|gif|css|js)$) {
-    proxy_pass http://sogo:9192/$1.SOGo/Resources/$2;
-    proxy_set_header Host $http_host;
-    proxy_cache sogo;
-    proxy_cache_valid 200 1d;
-    proxy_cache_use_stale error timeout invalid_header updating http_500 http_502 http_503 http_504;
-    #alias /usr/lib/GNUstep/SOGo/$1.SOGo/Resources/$2;
+    alias /usr/lib/GNUstep/SOGo/$1.SOGo/Resources/$2;
   }
 
   include /etc/nginx/conf.d/site.*.custom;

From c9554ca02291e64e56a786217de8d4b34b25544d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 9 Sep 2018 21:17:59 +0200
Subject: [PATCH 09/56] [Compose] Update watchdog image [Watchdog] Fix IP
 detection with multiple networks [Web] Show API field (no docs, no support,
 wip) [Web] haveibeenpwned.com implementation [Web] User and domain admin ACL
 (no docs, no support, wip) [Web] Some minor fixes

---
 data/Dockerfiles/watchdog/watchdog.sh         |  27 ++-
 data/web/admin.php                            |  15 +-
 data/web/css/admin.css                        |   6 -
 data/web/css/mailbox.css                      |   3 -
 data/web/css/mailcow.css                      |  10 +
 data/web/edit.php                             |  68 +++++-
 data/web/inc/footer.inc.php                   | 117 ++--------
 data/web/inc/functions.acl.inc.php            | 216 ++++++++++++++++++
 .../inc/functions.address_rewriting.inc.php   |  32 +++
 data/web/inc/functions.domain_admin.inc.php   | 208 ++++++-----------
 data/web/inc/functions.inc.php                |  50 +---
 data/web/inc/functions.mailbox.inc.php        |  17 +-
 data/web/inc/functions.policy.inc.php         |  32 +--
 data/web/inc/functions.ratelimit.inc.php      |   8 +
 data/web/inc/init_db.inc.php                  |  34 ++-
 data/web/inc/prerequisites.inc.php            |   3 +-
 data/web/inc/triggers.inc.php                 |   2 +-
 data/web/js/admin.js                          |   4 +
 data/web/js/api.js                            |   4 +-
 data/web/js/edit.js                           |  12 +-
 data/web/js/mailbox.js                        |  19 +-
 data/web/js/mailcow.js                        | 193 ++++++++++++++++
 data/web/js/sha1.min.js                       |   1 +
 data/web/json_api.php                         |   6 +
 data/web/lang/lang.de.php                     |  23 +-
 data/web/lang/lang.en.php                     |  21 ++
 data/web/mailbox.php                          |  15 +-
 data/web/modals/admin.php                     |   4 +-
 data/web/modals/mailbox.php                   |   7 +-
 data/web/modals/user.php                      |   4 +-
 data/web/quarantine.php                       |   2 +-
 data/web/user.php                             |  89 ++------
 docker-compose.yml                            |   2 +-
 33 files changed, 793 insertions(+), 461 deletions(-)
 create mode 100644 data/web/inc/functions.acl.inc.php
 create mode 100644 data/web/js/mailcow.js
 create mode 100644 data/web/js/sha1.min.js

diff --git a/data/Dockerfiles/watchdog/watchdog.sh b/data/Dockerfiles/watchdog/watchdog.sh
index c06abbc2..ec3d5aca 100755
--- a/data/Dockerfiles/watchdog/watchdog.sh
+++ b/data/Dockerfiles/watchdog/watchdog.sh
@@ -59,10 +59,10 @@ function mail_error() {
   log_msg "Sent notification email to ${1}"
 }
 
-
 get_container_ip() {
   # ${1} is container
   CONTAINER_ID=()
+  CONTAINER_IPS=()
   CONTAINER_IP=
   LOOP_C=1
   until [[ ${CONTAINER_IP} =~ ^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$ ]] || [[ ${LOOP_C} -gt 5 ]]; do
@@ -72,15 +72,21 @@ get_container_ip() {
     # returned id can have multiple elements (if scaled), shuffle for random test
     CONTAINER_ID=($(printf "%s\n" "${CONTAINER_ID[@]}" | shuf))
     if [[ ! -z ${CONTAINER_ID} ]]; then
-      for matched_container in "${CONTAINER_ID[@]}"; do
-        CONTAINER_IP=$(curl --silent http://dockerapi:8080/containers/${matched_container}/json | jq -r '.NetworkSettings.Networks[].IPAddress')
-        # grep will do nothing if one of these vars is empty
-        [[ -z ${CONTAINER_IP} ]] && continue
-        [[ -z ${IPV4_NETWORK} ]] && continue
-        # only return ips that are part of our network
-        if ! grep -q ${IPV4_NETWORK} <(echo ${CONTAINER_IP}); then
-          CONTAINER_IP=
-        fi
+      for matched_container in "${CONTAINER_ID[@]}"; do 
+        CONTAINER_IPS=($(curl --silent http://dockerapi:8080/containers/${matched_container}/json | jq -r '.NetworkSettings.Networks[].IPAddress')) 
+        for ip_match in "${CONTAINER_IPS[@]}"; do 
+          # grep will do nothing if one of these vars is empty
+          [[ -z ${ip_match} ]] && continue
+          [[ -z ${IPV4_NETWORK} ]] && continue
+          # only return ips that are part of our network
+          if ! grep -q ${IPV4_NETWORK} <(echo ${ip_match}); then
+            continue
+          else
+            CONTAINER_IP=${ip_match}
+            break
+          fi
+        done
+        [[ ! -z ${CONTAINER_IP} ]] && break
       done
     fi
     LOOP_C=$((LOOP_C + 1))
@@ -88,7 +94,6 @@ get_container_ip() {
   [[ ${LOOP_C} -gt 5 ]] && echo 240.0.0.0 || echo ${CONTAINER_IP}
 }
 
-# Check functions
 nginx_checks() {
   err_count=0
   diff_c=0
diff --git a/data/web/admin.php b/data/web/admin.php
index d2734431..749c96b6 100644
--- a/data/web/admin.php
+++ b/data/web/admin.php
@@ -29,7 +29,7 @@ $tfa_data = get_tfa();
           <div class="form-group">
             <label class="control-label col-sm-3" for="admin_pass"><?=$lang['admin']['password'];?>:</label>
             <div class="col-sm-9">
-            <input type="password" class="form-control" name="admin_pass" id="admin_pass" placeholder="<?=$lang['admin']['unchanged_if_empty'];?>">
+            <input type="password" data-hibp="true" class="form-control" name="admin_pass" id="admin_pass" placeholder="<?=$lang['admin']['unchanged_if_empty'];?>">
             </div>
           </div>
           <div class="form-group">
@@ -44,7 +44,7 @@ $tfa_data = get_tfa();
             </div>
           </div>
         </form>
-        <hr>
+        <legend><?=$lang['tfa']['tfa'];?></legend>
         <div class="row">
           <div class="col-sm-3 col-xs-5 text-right"><?=$lang['tfa']['tfa'];?>:</div>
           <div class="col-sm-9 col-xs-7">
@@ -76,12 +76,10 @@ $tfa_data = get_tfa();
             </select>
           </div>
         </div>
-      </div>
-    </div>
-
-    <div class="hidden panel panel-primary">
-      <div class="panel-heading">API</div>
-      <div class="panel-body">
+        <legend data-target="#api" style="margin-top:40px;cursor:pointer" id="api_legend" unselectable="on" data-toggle="collapse">
+          <span id="api_arrow" style="font-size:12px" class="rotate glyphicon glyphicon-menu-down"></span> API (experimental, work in progress)
+        </legend>
+        <div id="api" class="collapse">
         <form class="form-horizontal" autocapitalize="none" autocorrect="off" role="form" method="post">
           <div class="form-group">
             <label class="control-label col-sm-3" for="allow_from"><?=$lang['admin']['api_allow_from'];?>:</label>
@@ -111,6 +109,7 @@ $tfa_data = get_tfa();
             </div>
           </div>
         </form>
+        </div>
       </div>
     </div>
 
diff --git a/data/web/css/admin.css b/data/web/css/admin.css
index a53d721c..bc89f1dd 100644
--- a/data/web/css/admin.css
+++ b/data/web/css/admin.css
@@ -65,12 +65,6 @@ body.modal-open {
   font-size:9pt;
   background:transparent;
 }
-.bootstrap-select {
-  width: auto!important;
-}
 .table-condensed .input-sm {
   width: 100%!important;  
 }
-.full-width-select {
-  width: 100%!important;  
-}
diff --git a/data/web/css/mailbox.css b/data/web/css/mailbox.css
index da2e96e3..488150d3 100644
--- a/data/web/css/mailbox.css
+++ b/data/web/css/mailbox.css
@@ -5,9 +5,6 @@ table.footable>tbody>tr.footable-empty>td {
 .pagination a {
   text-decoration: none !important;
 }
-.panel panel-default {
-  overflow: visible !important;
-}
 .btn-group {
   width: max-content;
 }
diff --git a/data/web/css/mailcow.css b/data/web/css/mailcow.css
index 374688a1..04d1b874 100644
--- a/data/web/css/mailcow.css
+++ b/data/web/css/mailcow.css
@@ -148,3 +148,13 @@ nav .glyphicon {
   color: #5a5a5a;
   white-space: nowrap;
 }
+.haveibeenpwned {
+  cursor: pointer;
+  -webkit-user-select: none;  
+  -moz-user-select: none;    
+  -ms-user-select: none;      
+  user-select: none;
+}
+.full-width-select {
+  width: 100%!important;  
+}
\ No newline at end of file
diff --git a/data/web/edit.php b/data/web/edit.php
index c4903c28..417f2a7c 100644
--- a/data/web/edit.php
+++ b/data/web/edit.php
@@ -92,7 +92,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="domains"><?=$lang['edit']['domains'];?></label>
               <div class="col-sm-10">
-                <select data-live-search="true" id="domains" name="domains" multiple required>
+                <select data-live-search="true" class="full-width-select" id="domains" name="domains" multiple required>
                 <?php
                 foreach ($result['selected_domains'] as $domain):
                 ?>
@@ -111,7 +111,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="password"><?=$lang['edit']['password'];?></label>
               <div class="col-sm-10">
-              <input type="password" class="form-control" name="password" id="password" placeholder="">
+              <input type="password" data-hibp="true" class="form-control" name="password" id="password" placeholder="">
               </div>
             </div>
             <div class="form-group">
@@ -140,6 +140,30 @@ if (isset($_SESSION['mailcow_cc_role'])) {
               </div>
             </div>
           </form>
+          <form data-id="daacl" class="form-inline well" method="post">
+            <div class="row">
+              <div class="col-sm-1">
+                <p class="help-block">ACL</p>
+              </div>
+              <div class="col-sm-10">
+                <div class="form-group">
+                  <select id="da_acl" name="da_acl" size="10" multiple>
+                  <?php
+                  $da_acls = acl('get', 'domainadmin', $domain_admin);
+                  foreach ($da_acls as $acl => $val):
+                    ?>
+                    <option value="<?=$acl;?>" <?=($val == 1) ? 'selected' : null;?>><?=$lang['acl'][$acl];?></option>
+                    <?php
+                  endforeach;
+                  ?>
+                  </select>
+                </div>
+                <div class="form-group">
+                  <button class="btn btn-default" id="edit_selected" data-id="daacl" data-item="<?=htmlspecialchars($domain_admin);?>" data-api-url='edit/da-acl' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+                </div>
+              </div>
+            </div>
+          </form>
         <?php
         }
         else {
@@ -266,7 +290,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           </select>
         </div>
         <div class="form-group">
-          <button class="btn btn-default" id="edit_selected" data-id="domratelimit" data-item="<?=$domain;?>" data-api-url='edit/rl-domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+          <button data-acl="<?=$_SESSION['acl']['ratelimit'];?>" class="btn btn-default" id="edit_selected" data-id="domratelimit" data-item="<?=$domain;?>" data-api-url='edit/rl-domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
         </div>
       </form>
       <hr>
@@ -278,14 +302,14 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <table class="table table-striped table-condensed" id="wl_policy_domain_table"></table>
           </div>
           <div class="mass-actions-user">
-            <div class="btn-group">
+            <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
               <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_wl_domain" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
               <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_wl_domain" data-api-url='delete/domain-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
               </ul>
             </div>
           </div>
           <form class="form-inline" data-id="add_wl_policy_domain">
-            <div class="input-group">
+            <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
               <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
               <span class="input-group-btn">
                 <button class="btn btn-default" id="add_item" data-id="add_wl_policy_domain" data-api-url='add/domain-policy' data-api-attr='{"domain":"<?= $domain; ?>","object_list":"wl"}' href="#"><?=$lang['user']['spamfilter_table_add'];?></button>
@@ -300,14 +324,14 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <table class="table table-striped table-condensed" id="bl_policy_domain_table"></table>
           </div>
           <div class="mass-actions-user">
-            <div class="btn-group">
+            <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
               <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_bl_domain" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
               <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_bl_domain" data-api-url='delete/domain-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
               </ul>
             </div>
           </div>
           <form class="form-inline" data-id="add_bl_policy_domain">
-            <div class="input-group">
+            <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
               <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
               <span class="input-group-btn">
                 <button class="btn btn-default" id="add_item" data-id="add_bl_policy_domain" data-api-url='add/domain-policy' data-api-attr='{"domain":"<?= $domain; ?>","object_list":"bl"}' href="#"><?=$lang['user']['spamfilter_table_add'];?></button>
@@ -474,7 +498,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="password"><?=$lang['edit']['password'];?></label>
             <div class="col-sm-10">
-            <input type="password" class="form-control" name="password" id="password" placeholder="<?=$lang['edit']['unchanged_if_empty'];?>">
+            <input type="password" data-hibp="true" class="form-control" name="password" id="password" placeholder="<?=$lang['edit']['unchanged_if_empty'];?>">
             </div>
           </div>
           <div class="form-group">
@@ -527,6 +551,30 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
           </div>
         </form>
+        <form data-id="useracl" class="form-inline well" method="post">
+          <div class="row">
+            <div class="col-sm-1">
+              <p class="help-block">ACL</p>
+            </div>
+            <div class="col-sm-10">
+              <div class="form-group">
+                <select id="user_acl" name="user_acl" size="10" multiple>
+                <?php
+                $user_acls = acl('get', 'user', $mailbox);
+                foreach ($user_acls as $acl => $val):
+                  ?>
+                  <option value="<?=$acl;?>" <?=($val == 1) ? 'selected' : null;?>><?=$lang['acl'][$acl];?></option>
+                  <?php
+                endforeach;
+                ?>
+                </select>
+              </div>
+              <div class="form-group">
+                <button class="btn btn-default" id="edit_selected" data-id="useracl" data-item="<?=htmlspecialchars($mailbox);?>" data-api-url='edit/user-acl' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+              </div>
+            </div>
+          </div>
+        </form>
       <?php
       }
     }
@@ -553,7 +601,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="password"><?=$lang['add']['password'];?></label>
               <div class="col-sm-10">
-                <input type="password" class="form-control" name="password" id="password" value="<?=htmlspecialchars($result['password'], ENT_QUOTES, 'UTF-8');?>">
+                <input type="password" data-hibp="true" class="form-control" name="password" id="password" value="<?=htmlspecialchars($result['password'], ENT_QUOTES, 'UTF-8');?>">
               </div>
             </div>
             <div class="form-group">
@@ -965,7 +1013,7 @@ else {
 <script type='text/javascript'>
 <?php
 $lang_user = json_encode($lang['user']);
-echo "var lang = ". $lang_user . ";\n";
+echo "var lang_user = ". $lang_user . ";\n";
 echo "var table_for_domain = '". ((isset($domain)) ? $domain : null) . "';\n";
 echo "var csrf_token = '". $_SESSION['CSRF']['TOKEN'] . "';\n";
 echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
diff --git a/data/web/inc/footer.inc.php b/data/web/inc/footer.inc.php
index cdef8e0b..14d2acf2 100644
--- a/data/web/inc/footer.inc.php
+++ b/data/web/inc/footer.inc.php
@@ -12,10 +12,20 @@ logger();
 <script src="/js/formcache.min.js"></script>
 <script src="/js/google.charts.loader.js"></script>
 <script src="/js/numberedtextarea.min.js"></script>
+<script src="/js/sha1.min.js"></script>
 <script src="/js/u2f-api.js"></script>
 <script src="/js/api.js"></script>
+<script src="/js/mailcow.js"></script>
 <script>
-var loading_text = '<?= $lang['footer']['loading']; ?>'
+<?php
+$lang_footer = json_encode($lang['footer']);
+$lang_acl = json_encode($lang['acl']);
+$lang_tfa = json_encode($lang['tfa']);
+echo "var lang_footer = ". $lang_footer . ";\n";
+echo "var lang_acl = ". $lang_acl . ";\n";
+echo "var lang_tfa = ". $lang_tfa . ";\n";
+echo "var docker_timeout = ". $DOCKER_TIMEOUT * 1000 . ";\n";
+?>
 $(window).scroll(function() {
   sessionStorage.scrollTop = $(this).scrollTop();
 });
@@ -28,17 +38,8 @@ $(window).load(function() {
   $(".overlay").hide();
 });
 $(document).ready(function() {
-  window.mailcow_alert_box = function(message, type) {
-    msg = $('<span/>').text(message).text();
-    if (type == 'danger') {
-      auto_hide = 0;
-      $('#' + localStorage.getItem("add_modal")).modal('show');
-      localStorage.removeItem("add_modal");
-    } else {
-      auto_hide = 5000;
-    }
-    $.notify({message: msg},{z_index: 20000, delay: auto_hide, type: type,placement: {from: "bottom",align: "right"},animate: {enter: 'animated fadeInUp',exit: 'animated fadeOutDown'}});
-  }
+  // TFA, CSRF, Alerts in footer.inc.php
+  // Other general functions in mailcow.js
   <?php
   $alertbox_log_parser = alertbox_log_parser($_SESSION);
   if (is_array($alertbox_log_parser)) {
@@ -50,7 +51,6 @@ $(document).ready(function() {
   unset($_SESSION['return']);
   }
   ?>
-  $('[data-cached-form="true"]').formcache({key: $(this).data('id')});
   // Confirm TFA modal
   <?php if (isset($_SESSION['pending_tfa_method'])):?>
   $('#ConfirmTFAModal').modal({
@@ -68,7 +68,7 @@ $(document).ready(function() {
           dataType: 'script',
           url: "/api/v1/get/u2f-authentication/<?= (isset($_SESSION['pending_mailcow_cc_username'])) ? rawurlencode($_SESSION['pending_mailcow_cc_username']) : null; ?>",
           complete: function(data){
-            $('#u2f_status_auth').html('<?=$lang['tfa']['waiting_usb_auth'];?>');
+            $('#u2f_status_auth').html(lang_tfa.waiting_usb_auth);
             data;
             setTimeout(function() {
               console.log("Ready to authenticate");
@@ -98,7 +98,6 @@ $(document).ready(function() {
   <?php endif; ?>
 
   // Set TFA modals
-
   $('#selectTFA').change(function () {
     if ($(this).val() == "yubi_otp") {
       $('#YubiOTPModal').modal('show');
@@ -121,7 +120,7 @@ $(document).ready(function() {
           data;
           setTimeout(function() {
             console.log("Ready to register");
-            $('#u2f_status_reg').html('<?=$lang['tfa']['waiting_usb_register'];?>');
+            $('#u2f_status_reg').html(lang_tfa.waiting_usb_register);
             u2f.register(appId, registerRequests, registeredKeys, function(deviceResponse) {
               var form  = document.getElementById('u2f_reg_form');
               var reg   = document.getElementById('u2f_register_data');
@@ -146,92 +145,6 @@ $(document).ready(function() {
     }
   });
 
-  $(function () {
-    $('[data-toggle="tooltip"]').tooltip()
-  });
-
-  // Remember last navigation pill
-  (function () {
-    'use strict';
-    if ($('a[data-toggle="tab"]').length) {
-      $('a[data-toggle="tab"]').on('shown.bs.tab', function (e) {
-        if ($(this).data('dont-remember') == 1) {
-          return true;
-        }
-        var id = $(this).parents('[role="tablist"]').attr('id');
-        var key = 'lastTag';
-        if (id) {
-          key += ':' + id;
-        }
-        localStorage.setItem(key, $(e.target).attr('href'));
-      });
-      $('[role="tablist"]').each(function (idx, elem) {
-        var id = $(elem).attr('id');
-        var key = 'lastTag';
-        if (id) {
-          key += ':' + id;
-        }
-        var lastTab = localStorage.getItem(key);
-        if (lastTab) {
-          $('[href="' + lastTab + '"]').tab('show');
-        }
-      });
-    }
-  })();
-
-  // Disable submit after submitting form (not API driven buttons)
-  $('form').submit(function() {
-    if ($('form button[type="submit"]').data('submitted') == '1') {
-      return false;
-    } else {
-      $(this).find('button[type="submit"]').first().text('<?= $lang['footer']['loading']; ?>');
-      $('form button[type="submit"]').attr('data-submitted', '1');
-      function disableF5(e) { if ((e.which || e.keyCode) == 116 || (e.which || e.keyCode) == 82) e.preventDefault(); };
-      $(document).on("keydown", disableF5);
-    }
-  });
-
-  // IE fix to hide scrollbars when table body is empty
-  $('tbody').filter(function (index) {
-    return $(this).children().length < 1;
-  }).remove();
-
-  // Init Bootstrap Selectpicker
-  $('select').selectpicker();
-
-  // Trigger container restart
-  $('#RestartContainer').on('show.bs.modal', function(e) {
-    var container = $(e.relatedTarget).data('container');
-    $('#containerName').text(container);
-    $('#triggerRestartContainer').click(function(){
-      $(this).prop("disabled",true);
-      $(this).html('<span class="glyphicon glyphicon-refresh glyphicon-spin"></span> ');
-      $('#statusTriggerRestartContainer').html('<?= $lang['footer']['restarting_container']; ?>');
-      $.ajax({
-        method: 'get',
-        url: '/inc/ajax/container_ctrl.php',
-        timeout: <?= $DOCKER_TIMEOUT * 1000; ?>,
-        data: {
-        'service': container,
-        'action': 'restart'
-        }
-      })
-      .always( function (data, status) {
-        $('#statusTriggerRestartContainer').append(data);
-        var htmlResponse = $.parseHTML(data)
-        if ($(htmlResponse).find('span').hasClass('text-success')) {
-          $('#triggerRestartContainer').html('<span class="glyphicon glyphicon-ok"></span> ');
-          setTimeout(function(){
-            $('#RestartContainer').modal('toggle'); 
-            window.location = window.location.href.split("#")[0];
-          }, 1200);
-        } else {
-          $('#triggerRestartContainer').html('<span class="glyphicon glyphicon-remove"></span> ');
-        }
-      })
-    });
-  })
-
   // CSRF
   $('<input type="hidden" value="<?= $_SESSION['CSRF']['TOKEN']; ?>">').attr('id', 'csrf_token').attr('name', 'csrf_token').appendTo('form');
   if (sessionStorage.scrollTop != "undefined") {
diff --git a/data/web/inc/functions.acl.inc.php b/data/web/inc/functions.acl.inc.php
new file mode 100644
index 00000000..b2fbd766
--- /dev/null
+++ b/data/web/inc/functions.acl.inc.php
@@ -0,0 +1,216 @@
+<?php
+function acl($_action, $_scope = null, $_data = null) {
+  global $pdo;
+  global $lang;
+  $_data_log = $_data;
+  switch ($_action) {
+    case 'edit':
+      switch ($_scope) {
+        case 'user':
+          if (!is_array($_data['username'])) {
+            $usernames = array();
+            $usernames[] = $_data['username'];
+          }
+          else {
+            $usernames = $_data['username'];
+          }
+          foreach ($usernames as $username) {
+            // Cast to array for single selections
+            $acls = (array)$_data['user_acl'];
+            // Create associative array from index array
+            // All set items are given 1 as value
+            foreach ($acls as $acl_key => $acl_val) {
+              $acl_post[$acl_val] = 1;
+            }
+            // Users cannot change their own ACL
+            if (!hasMailboxObjectAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $username)
+              || ($_SESSION['mailcow_cc_role'] != 'admin' && $_SESSION['mailcow_cc_role'] != 'domainadmin')) {
+              $_SESSION['return'][] = array(
+                'type' => 'danger',
+                'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+                'msg' => 'access_denied'
+              );
+              continue;
+            }
+            // Read all available acl options by calling acl(get)
+            // Set all available acl options we cannot find in the post data to 0, else 1
+            $is_now = acl('get', 'user', $username);
+            if (!empty($is_now)) {
+              foreach ($is_now as $acl_now_name => $acl_now_val) {
+                $set_acls[$acl_now_name] = (isset($acl_post[$acl_now_name])) ? 1 : 0;
+              }
+            }
+            else {
+              $_SESSION['return'][] = array(
+                'type' => 'danger',
+                'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+                'msg' => 'Cannot determine current ACL'
+              );
+              continue;
+            }
+            foreach ($set_acls as $set_acl_key => $set_acl_val) {
+              $stmt = $pdo->prepare("UPDATE `user_acl` SET " . $set_acl_key . " = " . intval($set_acl_val) . "
+                WHERE `username` = :username");
+              $stmt->execute(array(
+                ':username' => $username,
+              ));
+            }
+            $_SESSION['return'][] = array(
+              'type' => 'success',
+              'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+              'msg' => array('acl_saved', $username)
+            );
+          }
+        break;
+        case 'domainadmin':
+          if ($_SESSION['mailcow_cc_role'] != 'admin') {
+            $_SESSION['return'][] = array(
+              'type' => 'danger',
+              'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+              'msg' => 'access_denied'
+            );
+            return false;
+          }
+          if (!is_array($_data['username'])) {
+            $usernames = array();
+            $usernames[] = $_data['username'];
+          }
+          else {
+            $usernames = $_data['username'];
+          }
+          foreach ($usernames as $username) {
+            // Cast to array for single selections
+            $acls = (array)$_data['da_acl'];
+            // Create associative array from index array
+            // All set items are given 1 as value
+            foreach ($acls as $acl_key => $acl_val) {
+              $acl_post[$acl_val] = 1;
+            }
+            // Users cannot change their own ACL
+            if ($_SESSION['mailcow_cc_role'] != 'admin') {
+              $_SESSION['return'][] = array(
+                'type' => 'danger',
+                'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+                'msg' => 'access_denied'
+              );
+              continue;
+            }
+            // Read all available acl options by calling acl(get)
+            // Set all available acl options we cannot find in the post data to 0, else 1
+            $is_now = acl('get', 'domainadmin', $username);
+            if (!empty($is_now)) {
+              foreach ($is_now as $acl_now_name => $acl_now_val) {
+                $set_acls[$acl_now_name] = (isset($acl_post[$acl_now_name])) ? 1 : 0;
+              }
+            }
+            else {
+              $_SESSION['return'][] = array(
+                'type' => 'danger',
+                'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+                'msg' => 'Cannot determine current ACL'
+              );
+              continue;
+            }
+            foreach ($set_acls as $set_acl_key => $set_acl_val) {
+              $stmt = $pdo->prepare("UPDATE `da_acl` SET " . $set_acl_key . " = " . intval($set_acl_val) . "
+                WHERE `username` = :username");
+              $stmt->execute(array(
+                ':username' => $username,
+              ));
+            }
+            $_SESSION['return'][] = array(
+              'type' => 'success',
+              'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+              'msg' => array('acl_saved', $username)
+            );
+          }
+        break;
+      }
+    break;
+    case 'get':
+      switch ($_scope) {
+        case 'user':
+          if (!hasMailboxObjectAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $_data)) {
+            return false;
+          }
+          $stmt = $pdo->prepare("SELECT * FROM `user_acl` WHERE `username` = :username");
+          $stmt->execute(array(':username' => $_data));
+          $data = $stmt->fetch(PDO::FETCH_ASSOC);
+          if (!empty($data)) {
+            unset($data['username']);
+            return $data;
+          }
+          else {
+            return false;
+          }
+        break;
+        case 'domainadmin':
+          if ($_SESSION['mailcow_cc_role'] != 'admin' && $_SESSION['mailcow_cc_role'] != 'domainadmin') {
+            return false;
+          }
+          if ($_SESSION['mailcow_cc_role'] == 'domainadmin' && $_SESSION['mailcow_cc_username'] != $_data) {
+            return false;
+          }
+          $stmt = $pdo->prepare("SELECT * FROM `da_acl` WHERE `username` = :username");
+          $stmt->execute(array(':username' => $_data));
+          $data = $stmt->fetch(PDO::FETCH_ASSOC);
+          if (!empty($data)) {
+            unset($data['username']);
+            return $data;
+          }
+          else {
+            return false;
+          }
+        break;
+      }
+    break;
+    case 'to_session':
+      if (!isset($_SESSION['mailcow_cc_role'])) {
+        return false;
+      }
+      unset($_SESSION['acl']);
+      $username = strtolower(trim($_SESSION['mailcow_cc_username']));
+      // Admins get access to all modules
+      if ($_SESSION['mailcow_cc_role'] == 'admin' ||
+        (isset($_SESSION["dual-login"]["role"]) && $_SESSION["dual-login"]["role"] == 'admin')) {
+        $stmt = $pdo->query("SHOW COLUMNS FROM `user_acl` WHERE `Field` != 'username';");
+        $acl_all = $stmt->fetchAll(PDO::FETCH_ASSOC);
+        while ($row = array_shift($acl_all)) {
+          $acl['acl'][$row['Field']] = 1;
+        }
+        $stmt = $pdo->query("SHOW COLUMNS FROM `da_acl` WHERE `Field` != 'username';");
+        $acl_all = $stmt->fetchAll(PDO::FETCH_ASSOC);
+        while ($row = array_shift($acl_all)) {
+          $acl['acl'][$row['Field']] = 1;
+        }
+      }
+      elseif ($_SESSION['mailcow_cc_role'] == 'domainadmin' ||
+        (isset($_SESSION["dual-login"]["role"]) && $_SESSION["dual-login"]["role"] == 'domainadmin')) {
+        // Read all exting user_acl modules and set to 1
+        $stmt = $pdo->query("SHOW COLUMNS FROM `user_acl` WHERE `Field` != 'username';");
+        $acl_all = $stmt->fetchAll(PDO::FETCH_ASSOC);
+        while ($row = array_shift($acl_all)) {
+          $acl['acl'][$row['Field']] = 1;
+        }
+        // Read da_acl rules for current user, OVERWRITE overlapping modules
+        // This prevents access to a users sync jobs, when a domain admins was not given access to sync jobs
+        $stmt = $pdo->prepare("SELECT * FROM `da_acl` WHERE `username` = :username");
+        $stmt->execute(array(':username' => (isset($_SESSION["dual-login"]["username"])) ? $_SESSION["dual-login"]["username"] : $username));
+        $acl_user = $stmt->fetch(PDO::FETCH_ASSOC);
+        foreach ($acl_user as $acl_user_key => $acl_user_val) {
+          $acl['acl'][$acl_user_key] = $acl_user_val;
+        }
+        unset($acl['acl']['username']);
+      }
+      elseif ($_SESSION['mailcow_cc_role'] == 'user') {
+        $stmt = $pdo->prepare("SELECT * FROM `user_acl` WHERE `username` = :username");
+        $stmt->execute(array(':username' => $username));
+        $acl['acl'] = $stmt->fetch(PDO::FETCH_ASSOC);
+        unset($acl['acl']['username']);
+      }
+      if (!empty($acl)) {
+        $_SESSION = array_merge($_SESSION, $acl);
+      }
+    break;
+  }
+}
\ No newline at end of file
diff --git a/data/web/inc/functions.address_rewriting.inc.php b/data/web/inc/functions.address_rewriting.inc.php
index 36fc4946..037166fa 100644
--- a/data/web/inc/functions.address_rewriting.inc.php
+++ b/data/web/inc/functions.address_rewriting.inc.php
@@ -233,6 +233,14 @@ function bcc($_action, $_data = null, $attr = null) {
       return $bccdata;
     break;
     case 'delete':
+      if (!isset($_SESSION['acl']['bcc_maps']) || $_SESSION['acl']['bcc_maps'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       $ids = (array)$_data['id'];
       foreach ($ids as $id) {
         if (!is_numeric($id)) {
@@ -279,6 +287,14 @@ function recipient_map($_action, $_data = null, $attr = null) {
   }
   switch ($_action) {
     case 'add':
+      if (!isset($_SESSION['acl']['recipient_maps']) || $_SESSION['acl']['recipient_maps'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       $old_dest = strtolower(trim($_data['recipient_map_old']));
       if (substr($old_dest, 0, 1) == '@') {
         $old_dest = substr($old_dest, 1);
@@ -343,6 +359,14 @@ function recipient_map($_action, $_data = null, $attr = null) {
       );
     break;
     case 'edit':
+      if (!isset($_SESSION['acl']['recipient_maps']) || $_SESSION['acl']['recipient_maps'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       $ids = (array)$_data['id'];
       foreach ($ids as $id) {
         $is_now = recipient_map('details', $id);
@@ -458,6 +482,14 @@ function recipient_map($_action, $_data = null, $attr = null) {
       return $mapdata;
     break;
     case 'delete':
+      if (!isset($_SESSION['acl']['recipient_maps']) || $_SESSION['acl']['recipient_maps'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       $ids = (array)$_data['id'];
       foreach ($ids as $id) {
         if (!is_numeric($id)) {
diff --git a/data/web/inc/functions.domain_admin.inc.php b/data/web/inc/functions.domain_admin.inc.php
index 86cec621..3151350c 100644
--- a/data/web/inc/functions.domain_admin.inc.php
+++ b/data/web/inc/functions.domain_admin.inc.php
@@ -90,43 +90,22 @@ function domain_admin($_action, $_data = null) {
             );
             return false;
           }
-          try {
-            $stmt = $pdo->prepare("INSERT INTO `domain_admins` (`username`, `domain`, `created`, `active`)
-                VALUES (:username, :domain, :created, :active)");
-            $stmt->execute(array(
-              ':username' => $username,
-              ':domain' => $domain,
-              ':created' => date('Y-m-d H:i:s'),
-              ':active' => $active
-            ));
-          }
-          catch (PDOException $e) {
-            domain_admin('delete', $username);
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_data_log),
-              'msg' => array('mysql_error', $e)
-            );
-            return false;
-          }
-        }
-        try {
-          $stmt = $pdo->prepare("INSERT INTO `admin` (`username`, `password`, `superadmin`, `active`)
-            VALUES (:username, :password_hashed, '0', :active)");
+          $stmt = $pdo->prepare("INSERT INTO `domain_admins` (`username`, `domain`, `created`, `active`)
+              VALUES (:username, :domain, :created, :active)");
           $stmt->execute(array(
             ':username' => $username,
-            ':password_hashed' => $password_hashed,
+            ':domain' => $domain,
+            ':created' => date('Y-m-d H:i:s'),
             ':active' => $active
           ));
         }
-        catch (PDOException $e) {
-          $_SESSION['return'][] = array(
-            'type' => 'danger',
-            'log' => array(__FUNCTION__, $_action, $_data_log),
-            'msg' => array('mysql_error', $e)
-          );
-          return false;
-        }
+        $stmt = $pdo->prepare("INSERT INTO `admin` (`username`, `password`, `superadmin`, `active`)
+          VALUES (:username, :password_hashed, '0', :active)");
+        $stmt->execute(array(
+          ':username' => $username,
+          ':password_hashed' => $password_hashed,
+          ':active' => $active
+        ));
       }
       else {
         $_SESSION['return'][] = array(
@@ -136,6 +115,10 @@ function domain_admin($_action, $_data = null) {
         );
         return false;
       }
+      $stmt = $pdo->prepare("INSERT INTO `da_acl` (`username`) VALUES (:username)");
+      $stmt->execute(array(
+        ':username' => $username
+      ));
       $_SESSION['return'][] = array(
         'type' => 'success',
         'log' => array(__FUNCTION__, $_action, $_data_log),
@@ -209,41 +192,20 @@ function domain_admin($_action, $_data = null) {
               continue;
             }
           }
-          try {
-            $stmt = $pdo->prepare("DELETE FROM `domain_admins` WHERE `username` = :username");
-            $stmt->execute(array(
-              ':username' => $username,
-            ));
-          }
-          catch (PDOException $e) {
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_data_log),
-              'msg' => array('mysql_error', $e)
-            );
-            continue;
-          }
-
+          $stmt = $pdo->prepare("DELETE FROM `domain_admins` WHERE `username` = :username");
+          $stmt->execute(array(
+            ':username' => $username,
+          ));
           if (!empty($domains)) {
             foreach ($domains as $domain) {
-              try {
-                $stmt = $pdo->prepare("INSERT INTO `domain_admins` (`username`, `domain`, `created`, `active`)
-                  VALUES (:username_new, :domain, :created, :active)");
-                $stmt->execute(array(
-                  ':username_new' => $username_new,
-                  ':domain' => $domain,
-                  ':created' => date('Y-m-d H:i:s'),
-                  ':active' => $active
-                ));
-              }
-              catch (PDOException $e) {
-                $_SESSION['return'][] = array(
-                  'type' => 'danger',
-                  'log' => array(__FUNCTION__, $_action, $_data_log),
-                  'msg' => array('mysql_error', $e)
-                );
-                continue;
-              }
+              $stmt = $pdo->prepare("INSERT INTO `domain_admins` (`username`, `domain`, `created`, `active`)
+                VALUES (:username_new, :domain, :created, :active)");
+              $stmt->execute(array(
+                ':username_new' => $username_new,
+                ':domain' => $domain,
+                ':created' => date('Y-m-d H:i:s'),
+                ':active' => $active
+              ));
             }
           }
 
@@ -265,56 +227,36 @@ function domain_admin($_action, $_data = null) {
               continue;
             }
             $password_hashed = hash_password($password);
-            try {
-              $stmt = $pdo->prepare("UPDATE `admin` SET `username` = :username_new, `active` = :active, `password` = :password_hashed WHERE `username` = :username");
-              $stmt->execute(array(
-                ':password_hashed' => $password_hashed,
-                ':username_new' => $username_new,
-                ':username' => $username,
-                ':active' => $active
-              ));
-              if (isset($_data['disable_tfa'])) {
-                $stmt = $pdo->prepare("UPDATE `tfa` SET `active` = '0' WHERE `username` = :username");
-                $stmt->execute(array(':username' => $username));
-              }
-              else {
-                $stmt = $pdo->prepare("UPDATE `tfa` SET `username` = :username_new WHERE `username` = :username");
-                $stmt->execute(array(':username_new' => $username_new, ':username' => $username));
-              }
+            $stmt = $pdo->prepare("UPDATE `admin` SET `username` = :username_new, `active` = :active, `password` = :password_hashed WHERE `username` = :username");
+            $stmt->execute(array(
+              ':password_hashed' => $password_hashed,
+              ':username_new' => $username_new,
+              ':username' => $username,
+              ':active' => $active
+            ));
+            if (isset($_data['disable_tfa'])) {
+              $stmt = $pdo->prepare("UPDATE `tfa` SET `active` = '0' WHERE `username` = :username");
+              $stmt->execute(array(':username' => $username));
             }
-            catch (PDOException $e) {
-              $_SESSION['return'][] = array(
-                'type' => 'danger',
-                'log' => array(__FUNCTION__, $_action, $_data_log),
-                'msg' => array('mysql_error', $e)
-              );
-              continue;
+            else {
+              $stmt = $pdo->prepare("UPDATE `tfa` SET `username` = :username_new WHERE `username` = :username");
+              $stmt->execute(array(':username_new' => $username_new, ':username' => $username));
             }
           }
           else {
-            try {
-              $stmt = $pdo->prepare("UPDATE `admin` SET `username` = :username_new, `active` = :active WHERE `username` = :username");
-              $stmt->execute(array(
-                ':username_new' => $username_new,
-                ':username' => $username,
-                ':active' => $active
-              ));
-              if (isset($_data['disable_tfa'])) {
-                $stmt = $pdo->prepare("UPDATE `tfa` SET `active` = '0' WHERE `username` = :username");
-                $stmt->execute(array(':username' => $username));
-              }
-              else {
-                $stmt = $pdo->prepare("UPDATE `tfa` SET `username` = :username_new WHERE `username` = :username");
-                $stmt->execute(array(':username_new' => $username_new, ':username' => $username));
-              }
+            $stmt = $pdo->prepare("UPDATE `admin` SET `username` = :username_new, `active` = :active WHERE `username` = :username");
+            $stmt->execute(array(
+              ':username_new' => $username_new,
+              ':username' => $username,
+              ':active' => $active
+            ));
+            if (isset($_data['disable_tfa'])) {
+              $stmt = $pdo->prepare("UPDATE `tfa` SET `active` = '0' WHERE `username` = :username");
+              $stmt->execute(array(':username' => $username));
             }
-            catch (PDOException $e) {
-              $_SESSION['return'][] = array(
-                'type' => 'danger',
-                'log' => array(__FUNCTION__, $_action, $_data_log),
-                'msg' => array('mysql_error', $e)
-              );
-              continue;
+            else {
+              $stmt = $pdo->prepare("UPDATE `tfa` SET `username` = :username_new WHERE `username` = :username");
+              $stmt->execute(array(':username_new' => $username_new, ':username' => $username));
             }
           }
           $_SESSION['return'][] = array(
@@ -365,21 +307,11 @@ function domain_admin($_action, $_data = null) {
             return false;
           }
           $password_hashed = hash_password($password_new);
-          try {
-            $stmt = $pdo->prepare("UPDATE `admin` SET `password` = :password_hashed WHERE `username` = :username");
-            $stmt->execute(array(
-              ':password_hashed' => $password_hashed,
-              ':username' => $username
-            ));
-          }
-          catch (PDOException $e) {
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_data_log),
-              'msg' => array('mysql_error', $e)
-            );
-            return false;
-          }
+          $stmt = $pdo->prepare("UPDATE `admin` SET `password` = :password_hashed WHERE `username` = :username");
+          $stmt->execute(array(
+            ':password_hashed' => $password_hashed,
+            ':username' => $username
+          ));
         }
         $_SESSION['return'][] = array(
           'type' => 'success',
@@ -407,24 +339,14 @@ function domain_admin($_action, $_data = null) {
           );
           continue;
         }
-        try {
-          $stmt = $pdo->prepare("DELETE FROM `domain_admins` WHERE `username` = :username");
-          $stmt->execute(array(
-            ':username' => $username,
-          ));
-          $stmt = $pdo->prepare("DELETE FROM `admin` WHERE `username` = :username");
-          $stmt->execute(array(
-            ':username' => $username,
-          ));
-        }
-        catch (PDOException $e) {
-          $_SESSION['return'][] = array(
-            'type' => 'danger',
-            'log' => array(__FUNCTION__, $_action, $_data_log),
-            'msg' => array('mysql_error', $e)
-          );
-          continue;
-        }
+        $stmt = $pdo->prepare("DELETE FROM `domain_admins` WHERE `username` = :username");
+        $stmt->execute(array(
+          ':username' => $username,
+        ));
+        $stmt = $pdo->prepare("DELETE FROM `admin` WHERE `username` = :username");
+        $stmt->execute(array(
+          ':username' => $username,
+        ));
         $_SESSION['return'][] = array(
           'type' => 'success',
           'log' => array(__FUNCTION__, $_action, $_data_log),
diff --git a/data/web/inc/functions.inc.php b/data/web/inc/functions.inc.php
index a44cf7eb..29cb10d1 100644
--- a/data/web/inc/functions.inc.php
+++ b/data/web/inc/functions.inc.php
@@ -373,54 +373,6 @@ function check_login($user, $pass) {
 	sleep($_SESSION['ldelay']);
   return false;
 }
-function set_acl() {
-	global $pdo;
-	if (!isset($_SESSION['mailcow_cc_username'])) {
-		return false;
-	}
-	if ($_SESSION['mailcow_cc_role'] == 'admin' || $_SESSION['mailcow_cc_role'] == 'domainadmin') {
-    $stmt = $pdo->query("SHOW COLUMNS FROM `user_acl` WHERE `Field` != 'username';");
-    $acl_all = $stmt->fetchAll(PDO::FETCH_ASSOC);
-    while ($row = array_shift($acl_all)) {
-      $acl['acl'][$row['Field']] = 1;
-    }
-	}
-  else {
-    $username = strtolower(trim($_SESSION['mailcow_cc_username']));
-    $stmt = $pdo->prepare("SELECT * FROM `user_acl` WHERE `username` = :username");
-    $stmt->execute(array(':username' => $username));
-    $acl['acl'] = $stmt->fetch(PDO::FETCH_ASSOC);
-    unset($acl['acl']['username']);
-  }
-  if (!empty($acl)) {
-    $_SESSION = array_merge($_SESSION, $acl);
-  }
-  else {
-    $_SESSION['return'][] =  array(
-      'type' => 'info',
-      'log' => array(__FUNCTION__),
-      'msg' => 'set_acl_failed'
-    );
-    return false;
-  }
-}
-function get_acl($username) {
-	global $pdo;
-	if ($_SESSION['mailcow_cc_role'] != "admin") {
-		return false;
-	}
-  $username = strtolower(trim($username));
-  $stmt = $pdo->prepare("SELECT * FROM `user_acl` WHERE `username` = :username");
-  $stmt->execute(array(':username' => $username));
-  $acl = $stmt->fetch(PDO::FETCH_ASSOC);
-  unset($acl['username']);
-  if (!empty($acl)) {
-    return $acl;
-  }
-  else {
-    return false;
-  }
-}
 function formatBytes($size, $precision = 2) {
 	if(!is_numeric($size)) {
 		return "0";
@@ -1266,7 +1218,7 @@ function get_admin_details() {
     return false;
   }
   $stmt = $pdo->query("SELECT `admin`.`username`, `api`.`active` AS `api_active`, `api`.`api_key`, `api`.`allow_from` FROM `admin`
-    INNER JOIN `api` ON `admin`.`username` = `api`.`username`
+    LEFT OUTER JOIN `api` ON `admin`.`username` = `api`.`username`
     WHERE `admin`.`superadmin`='1'
       AND `admin`.`active`='1'");
   $data = $stmt->fetch(PDO::FETCH_ASSOC);
diff --git a/data/web/inc/functions.mailbox.inc.php b/data/web/inc/functions.mailbox.inc.php
index b17e204f..18f21fd5 100644
--- a/data/web/inc/functions.mailbox.inc.php
+++ b/data/web/inc/functions.mailbox.inc.php
@@ -139,7 +139,6 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             $stmt = $pdo->prepare("UPDATE `sieve_filters` SET `script_name` = 'inactive' WHERE `username` = :username AND `filter_type` = :filter_type");
             $stmt->execute(array(
               ':username' => $username,
-              'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
               ':filter_type' => $filter_type
             ));
           }
@@ -1453,14 +1452,6 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
           }
         break;
         case 'filter':
-          $sieve = new Sieve\SieveParser();
-          if (!is_array($_data['id'])) {
-            $ids = array();
-            $ids[] = $_data['id'];
-          }
-          else {
-            $ids = $_data['id'];
-          }
           if (!isset($_SESSION['acl']['filters']) || $_SESSION['acl']['filters'] != "1" ) {
             $_SESSION['return'][] = array(
               'type' => 'danger',
@@ -1469,6 +1460,14 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             );
             return false;
           }
+          $sieve = new Sieve\SieveParser();
+          if (!is_array($_data['id'])) {
+            $ids = array();
+            $ids[] = $_data['id'];
+          }
+          else {
+            $ids = $_data['id'];
+          }
           foreach ($ids as $id) {
             $is_now = mailbox('get', 'filter_details', $id);
             if (!empty($is_now)) {
diff --git a/data/web/inc/functions.policy.inc.php b/data/web/inc/functions.policy.inc.php
index c8526169..12aacdd5 100644
--- a/data/web/inc/functions.policy.inc.php
+++ b/data/web/inc/functions.policy.inc.php
@@ -6,6 +6,14 @@ function policy($_action, $_scope, $_data = null) {
 	$_data_log = $_data;
   switch ($_action) {
     case 'add':
+      if (!isset($_SESSION['acl']['spam_policy']) || $_SESSION['acl']['spam_policy'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       switch ($_scope) {
         case 'domain':
           $object = $_data['domain'];
@@ -90,14 +98,6 @@ function policy($_action, $_scope, $_data = null) {
             );
             return false;
           }
-          if (!isset($_SESSION['acl']['spam_policy']) || $_SESSION['acl']['spam_policy'] != "1" ) {
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
-              'msg' => 'access_denied'
-            );
-            return false;
-          }
           if ($_data['object_list'] == "bl") {
             $object_list = "blacklist_from";
           }
@@ -151,6 +151,14 @@ function policy($_action, $_scope, $_data = null) {
       }
     break;
     case 'delete':
+      if (!isset($_SESSION['acl']['spam_policy']) || $_SESSION['acl']['spam_policy'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       switch ($_scope) {
         case 'domain':
           (array)$prefids = $_data['prefid'];
@@ -215,14 +223,6 @@ function policy($_action, $_scope, $_data = null) {
           else {
             $prefids = $_data['prefid'];
           }
-          if (!isset($_SESSION['acl']['spam_policy']) || $_SESSION['acl']['spam_policy'] != "1" ) {
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_scope, $_data_log),
-              'msg' => 'access_denied'
-            );
-            return false;
-          }
           foreach ($prefids as $prefid) {
             if (!is_numeric($prefid)) {
               $_SESSION['return'][] = array(
diff --git a/data/web/inc/functions.ratelimit.inc.php b/data/web/inc/functions.ratelimit.inc.php
index 2ead02e4..7fac01e4 100644
--- a/data/web/inc/functions.ratelimit.inc.php
+++ b/data/web/inc/functions.ratelimit.inc.php
@@ -5,6 +5,14 @@ function ratelimit($_action, $_scope, $_data = null) {
   $_data_log = $_data;
   switch ($_action) {
     case 'edit':
+      if (!isset($_SESSION['acl']['ratelimit']) || $_SESSION['acl']['ratelimit'] != "1" ) {
+        $_SESSION['return'][] = array(
+          'type' => 'danger',
+          'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
+          'msg' => 'access_denied'
+        );
+        return false;
+      }
       switch ($_scope) {
         case 'domain':
           if (!is_array($_data['object'])) {
diff --git a/data/web/inc/init_db.inc.php b/data/web/inc/init_db.inc.php
index c318d634..d56de607 100644
--- a/data/web/inc/init_db.inc.php
+++ b/data/web/inc/init_db.inc.php
@@ -3,7 +3,7 @@ function init_db_schema() {
   try {
     global $pdo;
 
-    $db_version = "19082018_1004";
+    $db_version = "01092018_1902";
 
     $stmt = $pdo->query("SHOW TABLES LIKE 'versions'");
     $num_results = count($stmt->fetchAll(PDO::FETCH_ASSOC));
@@ -280,10 +280,7 @@ function init_db_schema() {
           "delimiter_action" => "TINYINT(1) NOT NULL DEFAULT '1'",
           "syncjobs" => "TINYINT(1) NOT NULL DEFAULT '1'",
           "eas_reset" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "filters" => "TINYINT(1) NOT NULL DEFAULT '1'",
           "quarantine" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "bcc_maps" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "recipient_maps" => "TINYINT(1) NOT NULL DEFAULT '0'",
           ),
         "keys" => array(
           "primary" => array(
@@ -300,6 +297,32 @@ function init_db_schema() {
         ),
         "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
       ),
+      "da_acl" => array(
+        "cols" => array(
+          "username" => "VARCHAR(255) NOT NULL",
+          "syncjobs" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "quarantine" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "login_as" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "bcc_maps" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "filters" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "ratelimit" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "spam_policy" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          ),
+        "keys" => array(
+          "primary" => array(
+            "" => array("username")
+          ),
+          "fkey" => array(
+            "fk_domain_admin_acl" => array(
+              "col" => "username",
+              "ref" => "domain_admins.username",
+              "delete" => "CASCADE",
+              "update" => "NO ACTION"
+            )
+          )
+        ),
+        "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
+      ),
       "alias_domain" => array(
         "cols" => array(
           "alias_domain" => "VARCHAR(255) NOT NULL",
@@ -950,8 +973,9 @@ DELIMITER ;';
       'msg' => 'db_init_complete'
     );
 
-    // Fix user_acl
+    // Fix ACL
     $stmt = $pdo->query("INSERT INTO `user_acl` (`username`) SELECT `username` FROM `mailbox` WHERE `kind` = '' AND NOT EXISTS (SELECT `username` FROM `user_acl`);");
+    $stmt = $pdo->query("INSERT INTO `da_acl` (`username`) SELECT DISTINCT `username` FROM `domain_admins` WHERE `username` != 'admin' AND NOT EXISTS (SELECT `username` FROM `da_acl`);");
   }
   catch (PDOException $e) {
     $_SESSION['return'][] = array(
diff --git a/data/web/inc/prerequisites.inc.php b/data/web/inc/prerequisites.inc.php
index a5e03672..c2626d33 100644
--- a/data/web/inc/prerequisites.inc.php
+++ b/data/web/inc/prerequisites.inc.php
@@ -124,6 +124,7 @@ if (isset($_GET['lang']) && in_array($_GET['lang'], $AVAILABLE_LANGUAGES)) {
 require_once $_SERVER['DOCUMENT_ROOT'] . '/lang/lang.en.php';
 include $_SERVER['DOCUMENT_ROOT'] . '/lang/lang.'.$_SESSION['mailcow_locale'].'.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.inc.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.acl.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.mailbox.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.customize.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.address_rewriting.inc.php';
@@ -141,6 +142,6 @@ require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/init_db.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/triggers.inc.php';
 init_db_schema();
 if (isset($_SESSION['mailcow_cc_role'])) {
-  set_acl();
+  acl('to_session');
 }
 $UI_TEXTS = customize('get', 'ui_texts');
diff --git a/data/web/inc/triggers.inc.php b/data/web/inc/triggers.inc.php
index 4df1beca..d37c0968 100644
--- a/data/web/inc/triggers.inc.php
+++ b/data/web/inc/triggers.inc.php
@@ -40,7 +40,7 @@ if (isset($_POST["login_user"]) && isset($_POST["pass_user"])) {
 	}
 }
 
-if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == "admin") {
+if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['acl']['login_as'] == "1") {
 	if (isset($_GET["duallogin"])) {
     $duallogin = html_entity_decode(rawurldecode($_GET["duallogin"]));
     if (filter_var($duallogin, FILTER_VALIDATE_EMAIL)) {
diff --git a/data/web/js/admin.js b/data/web/js/admin.js
index 24725f60..d4fa4097 100644
--- a/data/web/js/admin.js
+++ b/data/web/js/admin.js
@@ -13,6 +13,10 @@ jQuery(function($){
     e.preventDefault();
     $('#duplicate_dkim_arrow').toggleClass("animation"); 
   });
+  $("#api_legend").on('click', function(e) {
+    e.preventDefault();
+    $('#api_arrow').toggleClass("animation"); 
+  });
   $("#rspamd_preset_1").on('click', function(e) {
     e.preventDefault();
     $("form[data-id=rsetting]").find("#desc").val(lang.rsettings_preset_1);
diff --git a/data/web/js/api.js b/data/web/js/api.js
index 2e770f7b..a573d7f4 100644
--- a/data/web/js/api.js
+++ b/data/web/js/api.js
@@ -5,9 +5,9 @@ $(document).ready(function() {
     } else {
       var parent_btn_grp = $(elem).parentsUntil(".btn-group").parent();
       if (parent_btn_grp.hasClass('btn-group')) {
-        parent_btn_grp.replaceWith('<button class="btn btn-default btn-sm" disabled>' + loading_text + '</a>');
+        parent_btn_grp.replaceWith('<button class="btn btn-default btn-sm" disabled>' + lang_footer.loading + '</a>');
       }
-      $(elem).text(loading_text);
+      $(elem).text(lang_footer.loading);
       $(elem).attr('data-submitted', '1');
       function disableF5(e) { if ((e.which || e.keyCode) == 116 || (e.which || e.keyCode) == 82) e.preventDefault(); };
       $(document).on("keydown", disableF5);
diff --git a/data/web/js/edit.js b/data/web/js/edit.js
index 2322fa9b..f91f6b70 100644
--- a/data/web/js/edit.js
+++ b/data/web/js/edit.js
@@ -61,10 +61,10 @@ jQuery(function($){
       "columns": [
         {"name":"chkbox","title":"","style":{"maxWidth":"40px","width":"40px"},"filterable": false,"sortable": false,"type":"html"},
         {"name":"prefid","style":{"maxWidth":"40px","width":"40px"},"title":"ID","filterable": false,"sortable": false},
-        {"sorted": true,"name":"value","title":lang.spamfilter_table_rule},
+        {"sorted": true,"name":"value","title":lang_user.spamfilter_table_rule},
         {"name":"object","title":"Scope"}
       ],
-      "empty": lang.empty,
+      "empty": lang_user.empty,
       "rows": $.ajax({
         dataType: 'json',
         url: '/api/v1/get/policy_wl_domain/' + table_for_domain,
@@ -78,7 +78,7 @@ jQuery(function($){
               item.chkbox = '<input type="checkbox" data-id="policy_wl_domain" name="multi_select" value="' + item.prefid + '" />';
             }
             else {
-              item.chkbox = '<input type="checkbox" disabled title="' + lang.spamfilter_table_domain_policy + '" />';
+              item.chkbox = '<input type="checkbox" disabled title="' + lang_user.spamfilter_table_domain_policy + '" />';
             }
           });
         }
@@ -98,10 +98,10 @@ jQuery(function($){
       "columns": [
         {"name":"chkbox","title":"","style":{"maxWidth":"40px","width":"40px"},"filterable": false,"sortable": false,"type":"html"},
         {"name":"prefid","style":{"maxWidth":"40px","width":"40px"},"title":"ID","filterable": false,"sortable": false},
-        {"sorted": true,"name":"value","title":lang.spamfilter_table_rule},
+        {"sorted": true,"name":"value","title":lang_user.spamfilter_table_rule},
         {"name":"object","title":"Scope"}
       ],
-      "empty": lang.empty,
+      "empty": lang_user.empty,
       "rows": $.ajax({
         dataType: 'json',
         url: '/api/v1/get/policy_bl_domain/' + table_for_domain,
@@ -115,7 +115,7 @@ jQuery(function($){
               item.chkbox = '<input type="checkbox" data-id="policy_bl_domain" name="multi_select" value="' + item.prefid + '" />';
             }
             else {
-              item.chkbox = '<input type="checkbox" disabled tooltip="' + lang.spamfilter_table_domain_policy + '" />';
+              item.chkbox = '<input type="checkbox" disabled tooltip="' + lang_user.spamfilter_table_domain_policy + '" />';
             }
           });
         }
diff --git a/data/web/js/mailbox.js b/data/web/js/mailbox.js
index 95b4dc61..34f3ec20 100644
--- a/data/web/js/mailbox.js
+++ b/data/web/js/mailbox.js
@@ -1,4 +1,5 @@
 $(document).ready(function() {
+  acl_data = JSON.parse(acl);
   FooTable.domainFilter = FooTable.Filtering.extend({
     construct: function(instance){
       this._super(instance);
@@ -82,6 +83,7 @@ $(document).ready(function() {
 
   $(".generate_password").click(function( event ) {
     event.preventDefault();
+    $('[data-hibp]').trigger('input');
     var random_passwd = Math.random().toString(36).slice(-8)
     $('#password').prop('type', 'text');
     $('#password').val(random_passwd);
@@ -233,6 +235,13 @@ jQuery(function($){
     eval(draw_table + '()');
   });
   function table_mailbox_ready(ft, name) {
+    if(is_dual) {
+      $('.login_as').data("toggle", "tooltip")
+        .attr("disabled", true)
+        .removeAttr("href")
+        .attr("title", "Dual login cannot be used twice")
+        .tooltip();
+    }
     heading = ft.$el.parents('.tab-pane').find('.panel-heading')
     var ft_paging = ft.use(FooTable.Paging)
     $(heading).children('.table-lines').text(function(){
@@ -264,10 +273,10 @@ jQuery(function($){
         },
         },
         {"name":"max_quota_for_mbox","title":lang.mailbox_quota,"breakpoints":"xs sm","style":{"width":"125px"}},
-        {"name":"rl","title":"RL","breakpoints":"xs sm md","style":{"width":"125px"}},
-        {"name":"backupmx","filterable": false,"style":{"maxWidth":"120px","width":"120px"},"title":lang.backup_mx,"breakpoints":"xs sm"},
+        {"name":"rl","title":"RL","breakpoints":"xs sm md","style":{"maxWidth":"100px","width":"100px"}},
+        {"name":"backupmx","filterable": false,"style":{"maxWidth":"120px","width":"120px"},"title":lang.backup_mx,"breakpoints":"xs sm md"},
         {"name":"active","filterable": false,"style":{"maxWidth":"80px","width":"80px"},"title":lang.active},
-        {"name":"action","filterable": false,"sortable": false,"style":{"text-align":"right","maxWidth":"240px","width":"240px"},"type":"html","title":lang.action,"breakpoints":"xs sm"}
+        {"name":"action","filterable": false,"sortable": false,"style":{"text-align":"right","maxWidth":"240px","width":"240px"},"type":"html","title":lang.action,"breakpoints":"xs sm md"}
       ],
       "rows": $.ajax({
         dataType: 'json',
@@ -374,11 +383,11 @@ jQuery(function($){
               }).join('/1');
             }
             item.chkbox = '<input type="checkbox" data-id="mailbox" name="multi_select" value="' + encodeURIComponent(item.username) + '" />';
-            if (role == "admin") {
+            if (acl_data.login_as === 1) {
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?mailbox=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" id="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
-              '<a href="/index.php?duallogin=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-success"><span class="glyphicon glyphicon-user"></span> Login</a>' +
+              '<a href="/index.php?duallogin=' + encodeURIComponent(item.username) + '" class="login_as btn btn-xs btn-success"><span class="glyphicon glyphicon-user"></span> Login</a>' +
               '</div>';
             }
             else {
diff --git a/data/web/js/mailcow.js b/data/web/js/mailcow.js
new file mode 100644
index 00000000..d9019c23
--- /dev/null
+++ b/data/web/js/mailcow.js
@@ -0,0 +1,193 @@
+$(document).ready(function() {
+  // mailcow alert box generator
+  window.mailcow_alert_box = function(message, type) {
+    msg = $('<span/>').text(message).text();
+    if (type == 'danger') {
+      auto_hide = 0;
+      $('#' + localStorage.getItem("add_modal")).modal('show');
+      localStorage.removeItem("add_modal");
+    } else {
+      auto_hide = 5000;
+    }
+    $.notify({message: msg},{z_index: 20000, delay: auto_hide, type: type,placement: {from: "bottom",align: "right"},animate: {enter: 'animated fadeInUp',exit: 'animated fadeOutDown'}});
+  }
+
+  // https://stackoverflow.com/questions/4399005/implementing-jquerys-shake-effect-with-animate
+  function shake(div,interval=100,distance=10,times=4) {
+    $(div).css('position','relative');
+    for(var iter=0;iter<(times+1);iter++){
+      $(div).animate({ left: ((iter%2==0 ? distance : distance*-1))}, interval);
+    }
+    $(div).animate({ left: 0},interval);
+  }
+
+  // form cache
+  $('[data-cached-form="true"]').formcache({key: $(this).data('id')});
+
+  //  tooltips
+  $(function () {
+    $('[data-toggle="tooltip"]').tooltip()
+  });
+
+  // remember last navigation pill
+  (function () {
+    'use strict';
+    if ($('a[data-toggle="tab"]').length) {
+      $('a[data-toggle="tab"]').on('shown.bs.tab', function (e) {
+        if ($(this).data('dont-remember') == 1) {
+          return true;
+        }
+        var id = $(this).parents('[role="tablist"]').attr('id');
+        var key = 'lastTag';
+        if (id) {
+          key += ':' + id;
+        }
+        localStorage.setItem(key, $(e.target).attr('href'));
+      });
+      $('[role="tablist"]').each(function (idx, elem) {
+        var id = $(elem).attr('id');
+        var key = 'lastTag';
+        if (id) {
+          key += ':' + id;
+        }
+        var lastTab = localStorage.getItem(key);
+        if (lastTab) {
+          $('[href="' + lastTab + '"]').tab('show');
+        }
+      });
+    }
+  })();
+
+  // IE fix to hide scrollbars when table body is empty
+  $('tbody').filter(function (index) {
+    return $(this).children().length < 1;
+  }).remove();
+
+  // selectpicker
+  $('select').selectpicker();
+
+  // haveibeenpwned?
+  $('[data-hibp]').after('<p class="small haveibeenpwned">↪ Check against haveibeenpwned.com</p><span class="hibp-out"></span>');
+  $('[data-hibp]').on('input', function() {
+    out_field = $(this).next('.haveibeenpwned').next('.hibp-out').text('').attr('class', 'hibp-out');
+  });
+  $('.haveibeenpwned:not(.task-running)').on('click', function() {
+    var hibp_field = $(this)
+    $(hibp_field).addClass('task-running');
+    var hibp_result = $(hibp_field).next('.hibp-out')
+    var password_field = $(this).prev('[data-hibp]')
+    if ($(password_field).val() == '') {
+      shake(password_field);
+    }
+    else {
+      $(hibp_result).attr('class', 'hibp-out label label-info');
+      $(hibp_result).text(lang_footer.loading);
+      var password_digest = $.sha1($(password_field).val())
+      var digest_five = password_digest.substring(0, 5).toUpperCase();
+      var queryURL = "https://api.pwnedpasswords.com/range/" + digest_five;
+      var compl_digest = password_digest.substring(5, 41).toUpperCase();
+      $.ajax({
+        url: queryURL,
+        type: 'GET',
+        success: function(res) {
+          if (res.search(compl_digest) > -1){
+            $(hibp_result).removeClass('label label-info').addClass('label label-danger');
+            $(hibp_result).text(lang_footer.hibp_nok)
+          } else {
+            $(hibp_result).removeClass('label label-info').addClass('label label-success');
+            $(hibp_result).text(lang_footer.hibp_ok)
+          }
+          $(hibp_field).removeClass('task-running');
+        },
+        error: function(xhr, status, error) {
+          $(hibp_result).removeClass('label label-info').addClass('label label-warning');
+          $(hibp_result).text('API error: ' + xhr.responseText)
+          $(hibp_field).removeClass('task-running');
+        }
+      });
+    }
+  });
+
+  // Disable disallowed inputs
+  $('[data-acl="0"]').each(function(){
+    if ($(this).attr('class') == 'btn-group') {
+      $(this).find('a').each(function(){
+        $(this).removeClass('dropdown-toggle')
+          .removeAttr('data-toggle')
+          .removeAttr('id')
+          .attr("disabled", true);
+        $(this).click(function(event) {
+          event.preventDefault();
+          return;
+        });
+      });
+      $(this).find('button').each(function() {
+        $(this).attr("disabled", true);
+      });
+    } else if ($(this).attr('class') == 'input-group') {
+      $(this).find('input').each(function() {
+        $(this).removeClass('dropdown-toggle')
+          .removeAttr('data-toggle')
+          .attr("disabled", true);
+        $(this).click(function(event) {
+          event.preventDefault();
+        });
+      });
+      $(this).find('button').each(function() {
+        $(this).attr("disabled", true);
+      });
+    } else if ($(this).hasClass('btn')) {
+      $(this).attr("disabled", true);
+    } else if ($(this).attr('data-provide', 'slider')) {
+      $(this).slider("disable");
+    }
+    $(this).data("toggle", "tooltip");
+    $(this).attr("title", lang_acl.prohibited);
+    $(this).tooltip(); 
+  });
+
+  // disable submit after submitting form (not API driven buttons)
+  $('form').submit(function() {
+    if ($('form button[type="submit"]').data('submitted') == '1') {
+      return false;
+    } else {
+      $(this).find('button[type="submit"]').first().text(lang_footer.loading);
+      $('form button[type="submit"]').attr('data-submitted', '1');
+      function disableF5(e) { if ((e.which || e.keyCode) == 116 || (e.which || e.keyCode) == 82) e.preventDefault(); };
+      $(document).on("keydown", disableF5);
+    }
+  });
+
+  // trigger container restart
+  $('#RestartContainer').on('show.bs.modal', function(e) {
+    var container = $(e.relatedTarget).data('container');
+    $('#containerName').text(container);
+    $('#triggerRestartContainer').click(function(){
+      $(this).prop("disabled",true);
+      $(this).html('<span class="glyphicon glyphicon-refresh glyphicon-spin"></span> ');
+      $('#statusTriggerRestartContainer').html(lang_footer.restarting_container);
+      $.ajax({
+        method: 'get',
+        url: '/inc/ajax/container_ctrl.php',
+        timeout: docker_timeout,
+        data: {
+        'service': container,
+        'action': 'restart'
+        }
+      })
+      .always( function (data, status) {
+        $('#statusTriggerRestartContainer').append(data);
+        var htmlResponse = $.parseHTML(data)
+        if ($(htmlResponse).find('span').hasClass('text-success')) {
+          $('#triggerRestartContainer').html('<span class="glyphicon glyphicon-ok"></span> ');
+          setTimeout(function(){
+            $('#RestartContainer').modal('toggle'); 
+            window.location = window.location.href.split("#")[0];
+          }, 1200);
+        } else {
+          $('#triggerRestartContainer').html('<span class="glyphicon glyphicon-remove"></span> ');
+        }
+      })
+    });
+  })
+});
\ No newline at end of file
diff --git a/data/web/js/sha1.min.js b/data/web/js/sha1.min.js
new file mode 100644
index 00000000..1abe5880
--- /dev/null
+++ b/data/web/js/sha1.min.js
@@ -0,0 +1 @@
+!function(r){var o=function(r,o){return r<<o|r>>>32-o},e=function(r){var o,e="";for(o=7;o>=0;o--)e+=(r>>>4*o&15).toString(16);return e};jQuery.extend({sha1:function(r){var a,t,n,h,C,c,f,d,u,i=new Array(80),A=1732584193,g=4023233417,s=2562383102,S=271733878,m=3285377520,p=(r=function(r){r=r.replace(/\x0d\x0a/g,"\n");for(var o="",e=0;e<r.length;e++){var a=r.charCodeAt(e);a<128?o+=String.fromCharCode(a):a>127&&a<2048?(o+=String.fromCharCode(a>>6|192),o+=String.fromCharCode(63&a|128)):(o+=String.fromCharCode(a>>12|224),o+=String.fromCharCode(a>>6&63|128),o+=String.fromCharCode(63&a|128))}return o}(r)).length,l=new Array;for(t=0;t<p-3;t+=4)n=r.charCodeAt(t)<<24|r.charCodeAt(t+1)<<16|r.charCodeAt(t+2)<<8|r.charCodeAt(t+3),l.push(n);switch(p%4){case 0:t=2147483648;break;case 1:t=r.charCodeAt(p-1)<<24|8388608;break;case 2:t=r.charCodeAt(p-2)<<24|r.charCodeAt(p-1)<<16|32768;break;case 3:t=r.charCodeAt(p-3)<<24|r.charCodeAt(p-2)<<16|r.charCodeAt(p-1)<<8|128}for(l.push(t);l.length%16!=14;)l.push(0);for(l.push(p>>>29),l.push(p<<3&4294967295),a=0;a<l.length;a+=16){for(t=0;t<16;t++)i[t]=l[a+t];for(t=16;t<=79;t++)i[t]=o(i[t-3]^i[t-8]^i[t-14]^i[t-16],1);for(h=A,C=g,c=s,f=S,d=m,t=0;t<=19;t++)u=o(h,5)+(C&c|~C&f)+d+i[t]+1518500249&4294967295,d=f,f=c,c=o(C,30),C=h,h=u;for(t=20;t<=39;t++)u=o(h,5)+(C^c^f)+d+i[t]+1859775393&4294967295,d=f,f=c,c=o(C,30),C=h,h=u;for(t=40;t<=59;t++)u=o(h,5)+(C&c|C&f|c&f)+d+i[t]+2400959708&4294967295,d=f,f=c,c=o(C,30),C=h,h=u;for(t=60;t<=79;t++)u=o(h,5)+(C^c^f)+d+i[t]+3395469782&4294967295,d=f,f=c,c=o(C,30),C=h,h=u;A=A+h&4294967295,g=g+C&4294967295,s=s+c&4294967295,S=S+f&4294967295,m=m+d&4294967295}return(u=e(A)+e(g)+e(s)+e(S)+e(m)).toLowerCase()}})}();
\ No newline at end of file
diff --git a/data/web/json_api.php b/data/web/json_api.php
index fba933c4..98525de7 100644
--- a/data/web/json_api.php
+++ b/data/web/json_api.php
@@ -1039,6 +1039,12 @@ if (isset($_SESSION['mailcow_cc_role']) || isset($_SESSION['pending_mailcow_cc_u
           case "rl-mbox":
             process_edit_return(ratelimit('edit', 'mailbox', array_merge(array('object' => $items), $attr)));
           break;
+          case "user-acl":
+            process_edit_return(acl('edit', 'user', array_merge(array('username' => $items), $attr)));
+          break;
+          case "da-acl":
+            process_edit_return(acl('edit', 'domainadmin', array_merge(array('username' => $items), $attr)));
+          break;
           case "alias-domain":
             process_edit_return(mailbox('edit', 'alias_domain', array_merge(array('alias_domain' => $items), $attr)));
           break;
diff --git a/data/web/lang/lang.de.php b/data/web/lang/lang.de.php
index 5741f968..2c26cdcf 100644
--- a/data/web/lang/lang.de.php
+++ b/data/web/lang/lang.de.php
@@ -16,6 +16,9 @@ $lang['footer']['delete_these_items'] = 'Sind Sie sicher, dass die Änderungen a
 $lang['footer']['delete_now'] = 'Jetzt löschen';
 $lang['footer']['cancel'] = 'Abbrechen';
 
+$lang['footer']['hibp_nok'] = 'Übereinstimmung gefunden! Dieses Passwort ist potentiell gefährlich!';
+$lang['footer']['hibp_ok'] = 'Keine Übereinstimmung gefunden.';
+
 $lang['danger']['mysql_error'] = "MySQL Fehler: %s";
 $lang['danger']['redis_error'] = "Redis Fehler: %s";
 $lang['danger']['unknown_tfa_method'] = "Unbekannte TFA Methode";
@@ -43,6 +46,7 @@ $lang['danger']['domain_cannot_match_hostname'] = "Domain darf nicht dem Hostnam
 $lang['warning']['domain_added_sogo_failed'] = "Domain wurde hinzugefügt; SOGo konnte nicht neugestartet werden";
 $lang['danger']['rl_timeframe'] = "Ratelimit Zeitraum ist inkorrekt";
 $lang['success']['rl_saved'] = "Ratelimit für Objekt %s wurde gesetzt";
+$lang['success']['acl_saved'] = "ACL für Objekt %s wurde gesetzt";
 $lang['success']['deleted_syncjobs'] = "Syncjobs gelöscht: %s";
 $lang['success']['deleted_syncjob'] = "Syncjobs ID %s gelöscht";
 $lang['success']['delete_filters'] = "Filter gelöscht: %s";
@@ -332,6 +336,8 @@ $lang['edit']['relay_all_info'] = '<small>Wenn Sie <b>nicht</b> alle Empfänger-
 $lang['edit']['full_name'] = 'Voller Name';
 $lang['edit']['quota_mb'] = 'Speicherplatz (MiB)';
 $lang['edit']['sender_acl'] = 'Darf Nachrichten versenden als';
+$lang['edit']['sender_acl_disabled'] = '↳ <span class="label label-danger">Absenderprüfung deaktiviert</span>';
+$lang['user']['sender_acl_disabled'] = '<span class="label label-danger">Absenderprüfung deaktiviert</span>';
 $lang['edit']['previous'] = 'Vorherige Seite';
 $lang['edit']['unchanged_if_empty'] = 'Unverändert, wenn leer';
 $lang['edit']['dont_check_sender_acl'] = 'Absender für Domain %s u. Alias-Dom. nicht prüfen';
@@ -339,7 +345,22 @@ $lang['edit']['multiple_bookings'] = 'Mehrfaches Buchen';
 $lang['edit']['kind'] = 'Art';
 $lang['edit']['resource'] = 'Ressource';
 
-$lang['add']['syncjob'] = 'Sync-Job erstellen';
+$lang['acl']['spam_alias'] = 'Temporäre E-Mail Aliasse';
+$lang['acl']['tls_policy'] = 'Verschlüsselungsrichtlinie';
+$lang['acl']['spam_score'] = 'Spam Bewertung';
+$lang['acl']['spam_policy'] = 'Blacklist/Whitelist';
+$lang['acl']['delimiter_action'] = 'Delimiter Aktionen (tags)';
+$lang['acl']['syncjobs'] = 'Sync Jobs';
+$lang['acl']['eas_reset'] = 'EAS-Cache zurücksetzen';
+$lang['acl']['quarantine'] = 'Quarantäne';
+$lang['acl']['login_as'] = 'Einloggen als Mailbox-Benutzer';
+$lang['acl']['bcc_maps'] = 'BCC Maps';
+$lang['acl']['filters'] = 'Filter';
+$lang['acl']['ratelimit'] = 'Rate limit';
+$lang['acl']['recipient_maps'] = 'Empfängerumschreibungen';
+$lang['acl']['prohibited'] = 'Untersagt durch Richtlinie';
+
+$lang['add']['generate'] = 'generieren';
 $lang['add']['syncjob_hint'] = 'Passwörter werden unverschlüsselt abgelegt!';
 $lang['add']['hostname'] = 'Servername';
 $lang['add']['port'] = 'Port';
diff --git a/data/web/lang/lang.en.php b/data/web/lang/lang.en.php
index 0a04f649..bd85b15e 100644
--- a/data/web/lang/lang.en.php
+++ b/data/web/lang/lang.en.php
@@ -16,6 +16,9 @@ $lang['footer']['delete_these_items'] = 'Please confirm your changes to the foll
 $lang['footer']['delete_now'] = 'Delete now';
 $lang['footer']['cancel'] = 'Cancel';
 
+$lang['footer']['hibp_nok'] = 'Matched! This is a potentially dangerous password!';
+$lang['footer']['hibp_ok'] = 'No match found.';
+
 $lang['danger']['mysql_error'] = "MySQL error: %s";
 $lang['danger']['redis_error'] = "Redis error: %s";
 $lang['danger']['unknown_tfa_method'] = "Unknown TFA method";
@@ -43,6 +46,7 @@ $lang['danger']['domain_cannot_match_hostname'] = "Domain cannot match hostname"
 $lang['warning']['domain_added_sogo_failed'] = "Added domain but failed to restart SOGo, please check your server logs.";
 $lang['danger']['rl_timeframe'] = "Rate limit time frame is incorrect";
 $lang['success']['rl_saved'] = "Rate limit for object %s saved";
+$lang['success']['acl_saved'] = "ACL for object %s saved";
 $lang['success']['deleted_syncjobs'] = "Deleted syncjobs: %s";
 $lang['success']['deleted_syncjob'] = "Deleted syncjob ID %s";
 $lang['success']['delete_filters'] = "Deleted filters: %s";
@@ -342,6 +346,7 @@ $lang['edit']['full_name'] = 'Full name';
 $lang['edit']['quota_mb'] = 'Quota (MiB)';
 $lang['edit']['sender_acl'] = 'Allow to send as';
 $lang['edit']['sender_acl_disabled'] = '↳ <span class="label label-danger">Sender check is disabled</span>';
+$lang['user']['sender_acl_disabled'] = '<span class="label label-danger">Sender check is disabled</span>';
 $lang['edit']['previous'] = 'Previous page';
 $lang['edit']['unchanged_if_empty'] = 'If unchanged leave blank';
 $lang['edit']['dont_check_sender_acl'] = "Disable sender check for domain %s (+ alias domains)";
@@ -349,6 +354,22 @@ $lang['edit']['multiple_bookings'] = 'Multiple bookings';
 $lang['edit']['kind'] = 'Kind';
 $lang['edit']['resource'] = 'Resource';
 
+$lang['acl']['spam_alias'] = 'Temporary aliases';
+$lang['acl']['tls_policy'] = 'TLS policy';
+$lang['acl']['spam_score'] = 'Spam score';
+$lang['acl']['spam_policy'] = 'Blacklist/Whitelist';
+$lang['acl']['delimiter_action'] = 'Delimiter action';
+$lang['acl']['syncjobs'] = 'Sync jobs';
+$lang['acl']['eas_reset'] = 'Reset EAS devices';
+$lang['acl']['quarantine'] = 'Quarantine';
+$lang['acl']['login_as'] = 'Login as mailbox user';
+$lang['acl']['bcc_maps'] = 'BCC maps';
+$lang['acl']['filters'] = 'Filters';
+$lang['acl']['ratelimit'] = 'Rate limit';
+$lang['acl']['recipient_maps'] = 'Recipient maps';
+$lang['acl']['prohibited'] = 'Prohibited by ACL';
+
+$lang['add']['generate'] = 'generate';
 $lang['add']['syncjob'] = 'Add sync job';
 $lang['add']['syncjob_hint'] = 'Be aware that passwords need to be saved plain-text!';
 $lang['add']['hostname'] = 'Hostname';
diff --git a/data/web/mailbox.php b/data/web/mailbox.php
index e236a8af..32880837 100644
--- a/data/web/mailbox.php
+++ b/data/web/mailbox.php
@@ -214,7 +214,7 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
               <table class="table table-striped" id="filter_table"></table>
             </div>
             <div class="mass-actions-mailbox">
-              <div class="btn-group">
+              <div class="btn-group" data-acl="<?=$_SESSION['acl']['filters'];?>">
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="filter_item" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
@@ -245,7 +245,7 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
               <table class="table table-striped" id="bcc_table"></table>
             </div>
             <div class="mass-actions-mailbox">
-              <div class="btn-group">
+              <div class="btn-group" data-acl="<?=$_SESSION['acl']['bcc_maps'];?>">
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="bcc" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
@@ -261,7 +261,7 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
               </div>
             </div>
           </div>
-          <div class="panel panel-default">
+          <div class="panel panel-default <?=($_SESSION['mailcow_cc_role'] == "admin") ?: 'hidden';?>">
             <div class="panel-heading">
               <?=$lang['mailbox']['recipient_maps'];?> <span class="badge badge-info table-lines"></span>
               <div class="btn-group pull-right">
@@ -272,12 +272,6 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
             <div class="table-responsive">
               <table class="table table-striped" id="recipient_map_table"></table>
             </div>
-<?php
-if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "admin"))
-  $display = 'block';
-else
-  $display = 'none';
-?>
             <div class="mass-actions-mailbox" style="display: <?php echo $display; ?>">
               <div class="btn-group">
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="recipient_map" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
@@ -304,9 +298,12 @@ require_once $_SERVER['DOCUMENT_ROOT'] . '/modals/mailbox.php';
 <?php
 $lang_mailbox = json_encode($lang['mailbox']);
 echo "var lang = ". $lang_mailbox . ";\n";
+echo "var acl = '". json_encode($_SESSION['acl']) . "';\n";
 echo "var csrf_token = '". $_SESSION['CSRF']['TOKEN'] . "';\n";
 $role = ($_SESSION['mailcow_cc_role'] == "admin") ? 'admin' : 'domainadmin';
+$is_dual = (!empty($_SESSION["dual-login"]["username"])) ? 'true' : 'false';
 echo "var role = '". $role . "';\n";
+echo "var is_dual = " . $is_dual . ";\n";
 echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
 ?>
 </script>
diff --git a/data/web/modals/admin.php b/data/web/modals/admin.php
index 7e8656e5..8bca0d87 100644
--- a/data/web/modals/admin.php
+++ b/data/web/modals/admin.php
@@ -67,7 +67,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="name"><?=$lang['admin']['admin_domains'];?>:</label>
               <div class="col-sm-10">
-                <select title="<?=$lang['admin']['search_domain_da'];?>" style="width:100%" name="domains" size="5" multiple>
+                <select title="<?=$lang['admin']['search_domain_da'];?>" class="full-width-select" name="domains" size="5" multiple>
                 <?php
                 foreach (mailbox('get', 'domains') as $domain) {
                   echo "<option>".htmlspecialchars($domain)."</option>";
@@ -79,7 +79,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="password"><?=$lang['admin']['password'];?>:</label>
               <div class="col-sm-10">
-              <input type="password" class="form-control" name="password" id="password" placeholder="" required>
+              <input type="password" class="form-control" data-hibp="true" name="password" id="password" placeholder="" required>
               </div>
             </div>
             <div class="form-group">
diff --git a/data/web/modals/mailbox.php b/data/web/modals/mailbox.php
index b4a51893..160ab178 100644
--- a/data/web/modals/mailbox.php
+++ b/data/web/modals/mailbox.php
@@ -23,7 +23,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="domain"><?=$lang['add']['domain'];?>:</label>
             <div class="col-sm-10">
-              <select data-live-search="true" id="addSelectDomain" name="domain" id="domain" required>
+              <select class="full-width-select" data-live-search="true" id="addSelectDomain" name="domain" id="domain" required>
               <?php
               foreach (mailbox('get', 'domains') as $domain) {
                 echo "<option>".htmlspecialchars($domain)."</option>";
@@ -48,10 +48,9 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
             </div>
           </div>
           <div class="form-group">
-            <label class="control-label col-sm-2" for="password"><?=$lang['add']['password'];?></label>
+            <label class="control-label col-sm-2" for="password"><?=$lang['add']['password'];?> (<a href="#" class="generate_password"><?=$lang['add']['generate'];?></a>)</label>
             <div class="col-sm-10">
-            <input type="password" class="form-control" name="password" id="password" placeholder="" required>
-            (<a href="#" class="generate_password">Generate</a>)
+            <input type="password" data-hibp="true" class="form-control" name="password" id="password" placeholder="" required>
             </div>
           </div>
           <div class="form-group">
diff --git a/data/web/modals/user.php b/data/web/modals/user.php
index 62ccf1b1..5e0849e2 100644
--- a/data/web/modals/user.php
+++ b/data/web/modals/user.php
@@ -37,7 +37,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="password1"><?=$lang['add']['password'];?></label>
 						<div class="col-sm-10">
-						<input type="password" class="form-control" name="password1" id="password1" required>
+						<input type="password" class="form-control" name="password1" id="password1" data-hibp="true" required>
 						</div>
 					</div>
 					<div class="form-group">
@@ -155,7 +155,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-3" for="user_new_pass"><?=$lang['user']['new_password'];?></label>
             <div class="col-sm-5">
-            <input type="password" class="form-control" name="user_new_pass" id="user_new_pass" autocomplete="off" required>
+            <input type="password" data-hibp="true" class="form-control" name="user_new_pass" id="user_new_pass" autocomplete="off" required>
             </div>
           </div>
           <div class="form-group">
diff --git a/data/web/quarantine.php b/data/web/quarantine.php
index 87f565a1..3e193586 100644
--- a/data/web/quarantine.php
+++ b/data/web/quarantine.php
@@ -18,7 +18,7 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
           <table id="quarantinetable" class="table table-striped"></table>
         </div>
         <div class="mass-actions-quarantine">
-          <div class="btn-group">
+          <div class="btn-group" data-acl="<?=$_SESSION['acl']['quarantine'];?>">
             <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="qitems" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['quarantine']['toggle_all'];?></a>
             <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['quarantine']['quick_actions'];?> <span class="caret"></span></a>
             <ul class="dropdown-menu">
diff --git a/data/web/user.php b/data/web/user.php
index 07e28616..dd75e360 100644
--- a/data/web/user.php
+++ b/data/web/user.php
@@ -88,7 +88,6 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
       fclose($fh);
     }
   }
-
 ?>
 <div class="container">
 <h3><?=$lang['user']['user_settings'];?></h3>
@@ -145,7 +144,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
   <div class="row">
     <div class="col-md-3 col-xs-5 text-right"><?=$lang['user']['aliases_also_send_as'];?>:</div>
     <div class="col-md-9 col-xs-7">
-    <p><?=$user_get_alias_details['aliases_also_send_as'];?></p>
+    <p><?=($user_get_alias_details['aliases_also_send_as'] == '*') ? $lang['user']['sender_acl_disabled'] : $user_get_alias_details['aliases_also_send_as'];?></p>
     </div>
   </div>
   <div class="row">
@@ -172,87 +171,71 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
       <p><?=formatBytes($mailboxdata['quota_used'], 2);?> / <?=formatBytes($mailboxdata['quota'], 2);?>, <?=$mailboxdata['messages'];?> <?=$lang['user']['messages'];?></p>
     </div>
   </div>
+  <hr>
   <?php
-  ($_SESSION['acl']['delimiter_action'] == 0 && $_SESSION['acl']['delimiter_action'] == 0 && $_SESSION['acl']['delimiter_action'] == 0) ? null : '<hr>';
   // Show tagging options
-  if ($_SESSION['acl']['delimiter_action'] == 1):
   $get_tagging_options = mailbox('get', 'delimiter_action', $username);
   ?>
   <div class="row">
     <div class="col-md-3 col-xs-5 text-right"><?=$lang['user']['tag_handling'];?>:</div>
     <div class="col-md-9 col-xs-7">
-    <div class="btn-group">
-
+    <div class="btn-group" data-acl="<?=$_SESSION['acl']['delimiter_action'];?>">
       <button type="button" class="btn btn-sm btn-default <?=($get_tagging_options == "subfolder") ? 'active' : null; ?>"
         id="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="delimiter_action"
         data-api-url='edit/delimiter_action'
         data-api-attr='{"tagged_mail_handler":"subfolder"}'><?=$lang['user']['tag_in_subfolder'];?></button>
-
       <button type="button" class="btn btn-sm btn-default <?=($get_tagging_options == "subject") ? 'active' : null; ?>"
         id="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="delimiter_action"
         data-api-url='edit/delimiter_action'
         data-api-attr='{"tagged_mail_handler":"subject"}'><?=$lang['user']['tag_in_subject'];?></button>
-
       <button type="button" class="btn btn-sm btn-default <?=($get_tagging_options == "none") ? 'active' : null; ?>"
         id="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="delimiter_action"
         data-api-url='edit/delimiter_action'
         data-api-attr='{"tagged_mail_handler":"none"}'><?=$lang['user']['tag_in_none'];?></button>
-
     </div>
     <p class="help-block"><?=$lang['user']['tag_help_explain'];?></p>
     <p class="help-block"><?=$lang['user']['tag_help_example'];?></p>
     </div>
   </div>
   <?php
-  endif;
   // Show TLS policy options
-  if ($_SESSION['acl']['tls_policy'] == 1):
   $get_tls_policy = mailbox('get', 'tls_policy', $username);
   ?>
   <div class="row">
     <div class="col-md-3 col-xs-5 text-right"><?=$lang['user']['tls_policy'];?>:</div>
     <div class="col-md-9 col-xs-7">
-    <div class="btn-group">
-
+    <div class="btn-group" data-acl="<?=$_SESSION['acl']['tls_policy'];?>">
       <button type="button" class="btn btn-sm btn-default <?=($get_tls_policy['tls_enforce_in'] == "1") ? "active" : null;?>"
         id="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="tls_policy"
         data-api-url='edit/tls_policy'
         data-api-attr='{"tls_enforce_in":<?=($get_tls_policy['tls_enforce_in'] == "1") ? "0" : "1";?>}'><?=$lang['user']['tls_enforce_in'];?></button>
-
       <button type="button" class="btn btn-sm btn-default <?=($get_tls_policy['tls_enforce_out'] == "1") ? "active" : null;?>"
         id="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="tls_policy"
         data-api-url='edit/tls_policy'
         data-api-attr='{"tls_enforce_out":<?=($get_tls_policy['tls_enforce_out'] == "1") ? "0" : "1";?>}'><?=$lang['user']['tls_enforce_out'];?></button>
-
     </div>
     <p class="help-block"><?=$lang['user']['tls_policy_warning'];?></p>
     </div>
   </div>
-  <?php
-  endif;
-  // Rest EAS devices
-  if ($_SESSION['acl']['eas_reset'] == 1):
-  ?>
+
   <div class="row">
     <div class="col-md-3 col-xs-5 text-right"><?=$lang['user']['eas_reset'];?>:</div>
     <div class="col-md-9 col-xs-7">
-    <button class="btn btn-xs btn-default" id="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-item="<?= htmlentities($username); ?>" data-id="eas_cache" data-api-url='delete/eas_cache' href="#"><?=$lang['user']['eas_reset_now'];?></button>
+    <button class="btn btn-xs btn-default" data-acl="<?=$_SESSION['acl']['eas_reset'];?>" id="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-item="<?= htmlentities($username); ?>" data-id="eas_cache" data-api-url='delete/eas_cache' href="#"><?=$lang['user']['eas_reset_now'];?></button>
     <p class="help-block"><?=$lang['user']['eas_reset_help'];?></p>
     </div>
   </div>
-  <?php
-  endif;
-  ?>
+
 </div>
 </div>
 
@@ -273,11 +256,9 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         </div>
       </div>
 		</div>
-    <?php
-    if ($_SESSION['acl']['spam_alias'] == 1):
-    ?>
+
     <div class="mass-actions-user">
-      <div class="btn-group">
+      <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_alias'];?>">
         <div class="btn-group">
           <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="tla" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
           <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
@@ -299,9 +280,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         </div>
       </div>
     </div>
-    <?php
-    endif;
-    ?>
+
 	</div>
 
 	<div role="tabpanel" class="tab-pane" id="Spamfilter">
@@ -309,7 +288,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
 		<form class="form-horizontal" role="form" data-id="spam_score" method="post">
 			<div class="form-group">
 				<div class="col-lg-6 col-sm-12">
-					<input name="spam_score" id="spam_score" type="text" style="width: 100%;"
+					<input data-acl="<?=$_SESSION['acl']['spam_score'];?>" name="spam_score" id="spam_score" type="text" style="width: 100%;"
 						data-provide="slider"
 						data-slider-min="1"
 						data-slider-max="2000"
@@ -330,21 +309,17 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
 					<p><?=$lang['user']['spamfilter_hint'];?></p>
 				</div>
 			</div>
-      <?php
-      if ($_SESSION['acl']['spam_score'] == 1):
-      ?>
+
       <div class="form-group">
 				<div class="col-sm-10">
-        <button type="button" class="btn btn-sm btn-success" id="edit_selected"
+        <button data-acl="<?=$_SESSION['acl']['spam_score'];?>" type="button" class="btn btn-sm btn-success" id="edit_selected"
           data-item="<?= htmlentities($username); ?>"
           data-id="spam_score"
           data-api-url='edit/spam-score'
           data-api-attr='{}'><?=$lang['user']['save_changes'];?></button>
 				</div>
 			</div>
-      <?php
-      endif;
-      ?>
+
 		</form>
 		<hr>
 		<div class="row">
@@ -354,26 +329,22 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         <div class="table-responsive">
           <table class="table table-striped table-condensed" id="wl_policy_mailbox_table"></table>
         </div>
-        <?php
-        if ($_SESSION['acl']['spam_policy'] == 1):
-        ?>
+
         <div class="mass-actions-user">
-          <div class="btn-group">
+          <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_wl_mailbox" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
             <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_wl_mailbox" data-api-url='delete/mailbox-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
           </div>
         </div>
         <form class="form-inline" data-id="add_wl_policy_mailbox">
-          <div class="input-group">
+          <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
             <span class="input-group-btn">
               <button class="btn btn-default" id="add_item" data-id="add_wl_policy_mailbox" data-api-url='add/mailbox-policy' data-api-attr='{"username":<?= json_encode($username); ?>,"object_list":"wl"}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['spamfilter_table_add'];?></button>
             </span>
           </div>
         </form>
-        <?php
-        endif;
-        ?>
+
       </div>
 			<div class="col-sm-6">
 				<h4><?=$lang['user']['spamfilter_bl'];?></h4>
@@ -381,28 +352,22 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         <div class="table-responsive">
           <table class="table table-striped table-condensed" id="bl_policy_mailbox_table"></table>
         </div>
-        <?php
-        if ($_SESSION['acl']['spam_policy'] == 1):
-        ?>
+
         <div class="mass-actions-user">
-          <div class="btn-group">
+          <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_bl_mailbox" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
             <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_bl_mailbox" data-api-url='delete/mailbox-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
           </div>
         </div>
         <form class="form-inline" data-id="add_bl_policy_mailbox">
-          <div class="input-group">
+          <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
-            <input type="hidden" name="username" value="<?= htmlentities($username) ;?>">
-            <input type="hidden" name="object_list" value="bl">
             <span class="input-group-btn">
               <button class="btn btn-default" id="add_item" data-id="add_bl_policy_mailbox" data-api-url='add/mailbox-policy' data-api-attr='{"username":<?= json_encode($username); ?>,"object_list":"bl"}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['spamfilter_table_add'];?></button>
             </span>
           </div>
         </form>
-        <?php
-        endif;
-        ?>
+
       </div>
     </div>
   </div>
@@ -411,11 +376,9 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
 		<div class="table-responsive">
       <table class="table table-striped" id="sync_job_table"></table>
 		</div>
-    <?php
-    if ($_SESSION['acl']['syncjobs'] == 1):
-    ?>
+
     <div class="mass-actions-user">
-      <div class="btn-group">
+      <div class="btn-group" data-acl="<?=$_SESSION['acl']['syncjobs'];?>">
         <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="syncjob" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
         <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
         <ul class="dropdown-menu">
@@ -427,9 +390,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addSyncJobModal"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['create_syncjob'];?></a>
       </div>
     </div>
-    <?php
-    endif;
-    ?>
+
 		</div>
 	</div>
 
diff --git a/docker-compose.yml b/docker-compose.yml
index 353772eb..cd0c69f8 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -330,7 +330,7 @@ services:
         - /lib/modules:/lib/modules:ro
 
     watchdog-mailcow:
-      image: mailcow/watchdog:1.19
+      image: mailcow/watchdog:1.21
       # Debug
       #command: /watchdog.sh
       build: ./data/Dockerfiles/watchdog

From 1a5ec7655ec24ec7c2093e09c858a20440a06835 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 9 Sep 2018 21:52:35 +0200
Subject: [PATCH 10/56] [Compose] Update watchdog image

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index cd0c69f8..b8cdbeea 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -330,7 +330,7 @@ services:
         - /lib/modules:/lib/modules:ro
 
     watchdog-mailcow:
-      image: mailcow/watchdog:1.21
+      image: mailcow/watchdog:1.22
       # Debug
       #command: /watchdog.sh
       build: ./data/Dockerfiles/watchdog

From 29aeb5b85d52eb39805dbaf70c1e475b73dbd679 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 9 Sep 2018 21:52:48 +0200
Subject: [PATCH 11/56] [Watchdog] Fix SOGo check, fixes #1750

---
 data/Dockerfiles/watchdog/watchdog.sh | 1 -
 1 file changed, 1 deletion(-)

diff --git a/data/Dockerfiles/watchdog/watchdog.sh b/data/Dockerfiles/watchdog/watchdog.sh
index ec3d5aca..64795ad3 100755
--- a/data/Dockerfiles/watchdog/watchdog.sh
+++ b/data/Dockerfiles/watchdog/watchdog.sh
@@ -143,7 +143,6 @@ sogo_checks() {
   while [ ${err_count} -lt ${THRESHOLD} ]; do
     host_ip=$(get_container_ip sogo-mailcow)
     err_c_cur=${err_count}
-    /usr/lib/nagios/plugins/check_http -4 -H ${host_ip} -u /WebServerResources/css/theme-default.css -p 9192 -R md-default-theme 1>&2; err_count=$(( ${err_count} + $? ))
     /usr/lib/nagios/plugins/check_http -4 -H ${host_ip} -u /SOGo.index/ -p 20000 -R "SOGo\.MainUI" 1>&2; err_count=$(( ${err_count} + $? ))
     [ ${err_c_cur} -eq ${err_count} ] && [ ! $((${err_count} - 1)) -lt 0 ] && err_count=$((${err_count} - 1)) diff_c=1
     [ ${err_c_cur} -ne ${err_count} ] && diff_c=$(( ${err_c_cur} - ${err_count} ))

From ce604232e26fdca6a39b00e69b717255c97d4852 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Mon, 10 Sep 2018 10:56:32 +0200
Subject: [PATCH 12/56] [Web] Add missing data-acl for sync jobs

---
 data/web/mailbox.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/web/mailbox.php b/data/web/mailbox.php
index 32880837..7e865fbb 100644
--- a/data/web/mailbox.php
+++ b/data/web/mailbox.php
@@ -184,7 +184,7 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
               <table class="table table-striped" id="sync_job_table"></table>
             </div>
             <div class="mass-actions-mailbox">
-              <div class="btn-group">
+              <div class="btn-group" data-acl="<?=$_SESSION['acl']['syncjobs'];?>">
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="syncjob" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">

From a5488d4ba6526dad5ec2751f19e1ab9504b51bf9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Mon, 10 Sep 2018 16:23:08 +0200
Subject: [PATCH 13/56] [Web] Fix init db on fresh installations

---
 data/web/inc/functions.inc.php     | 28 +++++++++-------
 data/web/inc/init_db.inc.php       | 52 +++++++++++++++---------------
 data/web/inc/prerequisites.inc.php |  1 +
 3 files changed, 44 insertions(+), 37 deletions(-)

diff --git a/data/web/inc/functions.inc.php b/data/web/inc/functions.inc.php
index 29cb10d1..6804fec0 100644
--- a/data/web/inc/functions.inc.php
+++ b/data/web/inc/functions.inc.php
@@ -64,17 +64,23 @@ function logger($_data = false) {
         $user = 'unauthenticated';
         $role = 'unauthenticated';
       }
-      $stmt = $pdo->prepare("INSERT INTO `logs` (`type`, `task`, `msg`, `call`, `user`, `role`, `remote`, `time`) VALUES
-        (:type, :task, :msg, :call, :user, :role, :remote, UNIX_TIMESTAMP())");
-      $stmt->execute(array(
-        ':type' => $type,
-        ':task' => $task,
-        ':call' => $call,
-        ':msg' => $msg,
-        ':user' => $user,
-        ':role' => $role,
-        ':remote' => get_remote_ip()
-      ));
+      // We cannot log when logs is missing...
+      try {
+        $stmt = $pdo->prepare("INSERT INTO `logs` (`type`, `task`, `msg`, `call`, `user`, `role`, `remote`, `time`) VALUES
+          (:type, :task, :msg, :call, :user, :role, :remote, UNIX_TIMESTAMP())");
+        $stmt->execute(array(
+          ':type' => $type,
+          ':task' => $task,
+          ':call' => $call,
+          ':msg' => $msg,
+          ':user' => $user,
+          ':role' => $role,
+          ':remote' => get_remote_ip()
+        ));
+      }
+      catch (Exception $e) {
+        // Do nothing
+      }
     }
   }
   else {
diff --git a/data/web/inc/init_db.inc.php b/data/web/inc/init_db.inc.php
index d56de607..58566ab7 100644
--- a/data/web/inc/init_db.inc.php
+++ b/data/web/inc/init_db.inc.php
@@ -297,32 +297,6 @@ function init_db_schema() {
         ),
         "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
       ),
-      "da_acl" => array(
-        "cols" => array(
-          "username" => "VARCHAR(255) NOT NULL",
-          "syncjobs" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "quarantine" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "login_as" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "bcc_maps" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "filters" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "ratelimit" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          "spam_policy" => "TINYINT(1) NOT NULL DEFAULT '1'",
-          ),
-        "keys" => array(
-          "primary" => array(
-            "" => array("username")
-          ),
-          "fkey" => array(
-            "fk_domain_admin_acl" => array(
-              "col" => "username",
-              "ref" => "domain_admins.username",
-              "delete" => "CASCADE",
-              "update" => "NO ACTION"
-            )
-          )
-        ),
-        "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
-      ),
       "alias_domain" => array(
         "cols" => array(
           "alias_domain" => "VARCHAR(255) NOT NULL",
@@ -440,6 +414,32 @@ function init_db_schema() {
         ),
         "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
       ),
+      "da_acl" => array(
+        "cols" => array(
+          "username" => "VARCHAR(255) NOT NULL",
+          "syncjobs" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "quarantine" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "login_as" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "bcc_maps" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "filters" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "ratelimit" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          "spam_policy" => "TINYINT(1) NOT NULL DEFAULT '1'",
+          ),
+        "keys" => array(
+          "primary" => array(
+            "" => array("username")
+          ),
+          "fkey" => array(
+            "fk_domain_admin_acl" => array(
+              "col" => "username",
+              "ref" => "domain_admins.username",
+              "delete" => "CASCADE",
+              "update" => "NO ACTION"
+            )
+          )
+        ),
+        "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
+      ),
       "imapsync" => array(
         "cols" => array(
           "id" => "INT NOT NULL AUTO_INCREMENT",
diff --git a/data/web/inc/prerequisites.inc.php b/data/web/inc/prerequisites.inc.php
index c2626d33..aedda083 100644
--- a/data/web/inc/prerequisites.inc.php
+++ b/data/web/inc/prerequisites.inc.php
@@ -52,6 +52,7 @@ catch (PDOException $e) {
 exit;
 }
 function pdo_exception_handler($e) {
+    print_r($e);
     if ($e instanceof PDOException) {
       $_SESSION['return'][] = array(
         'type' => 'danger',

From 1499094b61b74f0595cbe52512814c15157725fd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Tue, 11 Sep 2018 19:35:21 +0200
Subject: [PATCH 14/56] [PHP-FPM] Increase PHP memory limit for "web" to 512M
 [Helper] Nextcloud 14 [Rspamd] Fix KEEP_SPAM lua script: skip check if ip is
 false

---
 data/conf/phpfpm/php-fpm.d/pools.conf | 2 +-
 data/conf/rspamd/lua/rspamd.local.lua | 8 ++++++++
 helper-scripts/nextcloud.sh           | 2 +-
 3 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/data/conf/phpfpm/php-fpm.d/pools.conf b/data/conf/phpfpm/php-fpm.d/pools.conf
index 0667c2bc..d6520948 100644
--- a/data/conf/phpfpm/php-fpm.d/pools.conf
+++ b/data/conf/phpfpm/php-fpm.d/pools.conf
@@ -26,7 +26,7 @@ listen = [::]:9002
 access.log = /proc/self/fd/2
 clear_env = no
 catch_workers_output = yes
-php_admin_value[memory_limit] = 256M
+php_admin_value[memory_limit] = 512M
 php_admin_value[max_execution_time] = 1200
 php_admin_value[max_input_time] = 1200
 
diff --git a/data/conf/rspamd/lua/rspamd.local.lua b/data/conf/rspamd/lua/rspamd.local.lua
index 92d223b1..3043ec86 100644
--- a/data/conf/rspamd/lua/rspamd.local.lua
+++ b/data/conf/rspamd/lua/rspamd.local.lua
@@ -15,13 +15,21 @@ rspamd_config:register_symbol({
     local rspamd_logger = require "rspamd_logger"
     local rspamd_ip = require 'rspamd_ip'
     local uname = task:get_user()
+
     if uname then
       return false
     end
+
     local redis_params = rspamd_parse_redis_server('keep_spam')
     local ip = task:get_from_ip()
+
+    if not ip then
+      return false
+    end
+
     local from_ip_string = ip:to_string()
     ip_check_table = {from_ip_string}
+
     local maxbits = 128
     local minbits = 32
     if ip:get_version() == 4 then
diff --git a/helper-scripts/nextcloud.sh b/helper-scripts/nextcloud.sh
index 3922f499..8dd8c0fd 100755
--- a/helper-scripts/nextcloud.sh
+++ b/helper-scripts/nextcloud.sh
@@ -64,7 +64,7 @@ elif [[ ${NC_INSTALL} == "y" ]]; then
 
 	ADMIN_NC_PASS=$(</dev/urandom tr -dc A-Za-z0-9 | head -c 28)
 
-	curl -L# -o nextcloud.tar.bz2 "https://download.nextcloud.com/server/releases/latest-13.tar.bz2" || { echo "Failed to download Nextcloud archive."; exit 1; } \
+	curl -L# -o nextcloud.tar.bz2 "https://download.nextcloud.com/server/releases/latest-14.tar.bz2" || { echo "Failed to download Nextcloud archive."; exit 1; } \
 	  && tar -xjf nextcloud.tar.bz2 -C ./data/web/ \
 	  && rm nextcloud.tar.bz2 \
 	  && rm -rf ./data/web/nextcloud/updater \

From 1b5409f3fa92a58b8a77769fde09475ea5688cb2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 12 Sep 2018 15:50:42 +0200
Subject: [PATCH 15/56] [Rspamd] Check if ip is valid (KEEP_SPAM symbol), fixes
 #1759

---
 data/conf/rspamd/lua/rspamd.local.lua | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/data/conf/rspamd/lua/rspamd.local.lua b/data/conf/rspamd/lua/rspamd.local.lua
index 3043ec86..c6fc0b98 100644
--- a/data/conf/rspamd/lua/rspamd.local.lua
+++ b/data/conf/rspamd/lua/rspamd.local.lua
@@ -23,11 +23,11 @@ rspamd_config:register_symbol({
     local redis_params = rspamd_parse_redis_server('keep_spam')
     local ip = task:get_from_ip()
 
-    if not ip then
+    if not ip:is_valid() then
       return false
     end
 
-    local from_ip_string = ip:to_string()
+    local from_ip_string = tostring(ip)
     ip_check_table = {from_ip_string}
 
     local maxbits = 128

From c7cef3241f63a41fd07470d0299e6bcda1435a03 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 12 Sep 2018 20:32:59 +0200
Subject: [PATCH 16/56] [Rspamd] Controller worker count == 1, fixes #1716

---
 data/conf/rspamd/override.d/worker-controller.inc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/conf/rspamd/override.d/worker-controller.inc b/data/conf/rspamd/override.d/worker-controller.inc
index 60338e15..9750f4a5 100644
--- a/data/conf/rspamd/override.d/worker-controller.inc
+++ b/data/conf/rspamd/override.d/worker-controller.inc
@@ -1,5 +1,5 @@
 bind_socket = "*:11334";
-count = 2;
+count = 1;
 secure_ip = "127.0.0.1";
 secure_ip = "::1";
 bind_socket = "/rspamd-sock/rspamd.sock mode=0666 owner=nobody";

From 8056ed21af52035e1b4ba71c4d7ae1c61653cafa Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Fri, 14 Sep 2018 21:26:56 +0200
Subject: [PATCH 17/56] [Compose] Update dockerapi-mailcow, base image is now
 Alpine 3.8, fixes #1767

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index b8cdbeea..f539854e 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -356,7 +356,7 @@ services:
             - watchdog
 
     dockerapi-mailcow:
-      image: mailcow/dockerapi:1.13
+      image: mailcow/dockerapi:1.14
       restart: always
       build: ./data/Dockerfiles/dockerapi
       oom_kill_disable: true

From 5db40bf688b3c8824508566877bd795a48ff9673 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 20 Sep 2018 10:25:36 +0200
Subject: [PATCH 18/56] [Web] Implement MD5-CRYPT verification, fixes #1665

---
 data/web/inc/functions.inc.php | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/data/web/inc/functions.inc.php b/data/web/inc/functions.inc.php
index 6804fec0..94eada4f 100644
--- a/data/web/inc/functions.inc.php
+++ b/data/web/inc/functions.inc.php
@@ -266,6 +266,12 @@ function verify_hash($hash, $password) {
       return true;
     }
   }
+  elseif (preg_match('/^{MD5-CRYPT}/i', $hash)) {
+    $hash = preg_replace('/^{MD5-CRYPT}/i', '', $hash);
+    if (password_verify($password, $hash)) {
+      return true;
+    }
+  }
   return false;
 }
 function check_login($user, $pass) {

From b5df239c1b764eb0f7e12166ecc062eb64a12ce2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9=20Peters?= <andre.peters@debinux.de>
Date: Tue, 25 Sep 2018 11:17:00 +0200
Subject: [PATCH 19/56] [Rspamd] Update to 1.8.0

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index f539854e..e330d6a3 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -71,7 +71,7 @@ services:
             - clamd
 
     rspamd-mailcow:
-      image: mailcow/rspamd:1.24
+      image: mailcow/rspamd:1.25
       build: ./data/Dockerfiles/rspamd
       stop_grace_period: 30s
       depends_on:

From cd24831679e6b7ff00d51da8f2703c6b7ae6a1cb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9=20Peters?= <andre.peters@debinux.de>
Date: Tue, 25 Sep 2018 21:03:04 +0200
Subject: [PATCH 20/56] [Rspamd] Fix settings map location, fixes #1796

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index e330d6a3..58f98ae3 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -71,7 +71,7 @@ services:
             - clamd
 
     rspamd-mailcow:
-      image: mailcow/rspamd:1.25
+      image: mailcow/rspamd:1.26
       build: ./data/Dockerfiles/rspamd
       stop_grace_period: 30s
       depends_on:

From 96c985abad9fa94b4d26501c92f873d72f119fdd Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 26 Sep 2018 13:23:05 +0200
Subject: [PATCH 21/56] [Rspamd] Move settings file to RSPAMD_CONF root, delete
 old lua scripts

---
 data/Dockerfiles/rspamd/Dockerfile    |   2 +-
 data/Dockerfiles/rspamd/lua_util.lua  | 152 ------
 data/Dockerfiles/rspamd/ratelimit.lua | 674 --------------------------
 3 files changed, 1 insertion(+), 827 deletions(-)
 delete mode 100644 data/Dockerfiles/rspamd/lua_util.lua
 delete mode 100644 data/Dockerfiles/rspamd/ratelimit.lua

diff --git a/data/Dockerfiles/rspamd/Dockerfile b/data/Dockerfiles/rspamd/Dockerfile
index 67b8aa1c..daf9760b 100644
--- a/data/Dockerfiles/rspamd/Dockerfile
+++ b/data/Dockerfiles/rspamd/Dockerfile
@@ -20,7 +20,7 @@ RUN apt-get update && apt-get install -y \
 	&& mkdir -p /run/rspamd \
 	&& chown _rspamd:_rspamd /run/rspamd
 
-COPY settings.conf /etc/rspamd/modules.d/settings.conf
+COPY settings.conf /etc/rspamd/settings.conf
 COPY docker-entrypoint.sh /docker-entrypoint.sh
 
 ENTRYPOINT ["/docker-entrypoint.sh"]
diff --git a/data/Dockerfiles/rspamd/lua_util.lua b/data/Dockerfiles/rspamd/lua_util.lua
deleted file mode 100644
index a9abd901..00000000
--- a/data/Dockerfiles/rspamd/lua_util.lua
+++ /dev/null
@@ -1,152 +0,0 @@
-local exports = {}
-local lpeg = require 'lpeg'
-
-local split_grammar = {}
-local function rspamd_str_split(s, sep)
-  local gr = split_grammar[sep]
-
-  if not gr then
-    local _sep = lpeg.P(sep)
-    local elem = lpeg.C((1 - _sep)^0)
-    local p = lpeg.Ct(elem * (_sep * elem)^0)
-    gr = p
-    split_grammar[sep] = gr
-  end
-
-  return gr:match(s)
-end
-
-exports.rspamd_str_split = rspamd_str_split
-
-local space = lpeg.S' \t\n\v\f\r'
-local nospace = 1 - space
-local ptrim = space^0 * lpeg.C((space^0 * nospace^1)^0)
-local match = lpeg.match
-exports.rspamd_str_trim = function(s)
-  return match(ptrim, s)
-end
-
--- Robert Jay Gould http://lua-users.org/wiki/SimpleRound
-exports.round = function(num, numDecimalPlaces)
-  local mult = 10^(numDecimalPlaces or 0)
-  return math.floor(num * mult) / mult
-end
-
-exports.template = function(tmpl, keys)
-  local var_lit = lpeg.P { lpeg.R("az") + lpeg.R("AZ") + lpeg.R("09") + "_" }
-  local var = lpeg.P { (lpeg.P("$") / "") * ((var_lit^1) / keys) }
-  local var_braced = lpeg.P { (lpeg.P("${") / "") * ((var_lit^1) / keys) * (lpeg.P("}") / "") }
-
-  local template_grammar = lpeg.Cs((var + var_braced + 1)^0)
-
-  return lpeg.match(template_grammar, tmpl)
-end
-
-exports.remove_email_aliases = function(email_addr)
-  local function check_gmail_user(addr)
-    -- Remove all points
-    local no_dots_user = string.gsub(addr.user, '%.', '')
-    local cap, pluses = string.match(no_dots_user, '^([^%+][^%+]*)(%+.*)$')
-    if cap then
-      return cap, rspamd_str_split(pluses, '+'), nil
-    elseif no_dots_user ~= addr.user then
-      return no_dots_user,{},nil
-    end
-
-    return nil
-  end
-
-  local function check_address(addr)
-    if addr.user then
-      local cap, pluses = string.match(addr.user, '^([^%+][^%+]*)(%+.*)$')
-      if cap then
-        return cap, rspamd_str_split(pluses, '+'), nil
-      end
-    end
-
-    return nil
-  end
-
-  local function set_addr(addr, new_user, new_domain)
-    if new_user then
-      addr.user = new_user
-    end
-    if new_domain then
-      addr.domain = new_domain
-    end
-
-    if addr.domain then
-      addr.addr = string.format('%s@%s', addr.user, addr.domain)
-    else
-      addr.addr = string.format('%s@', addr.user)
-    end
-
-    if addr.name and #addr.name > 0 then
-      addr.raw = string.format('"%s" <%s>', addr.name, addr.addr)
-    else
-      addr.raw = string.format('<%s>', addr.addr)
-    end
-  end
-
-  local function check_gmail(addr)
-    local nu, tags, nd = check_gmail_user(addr)
-
-    if nu then
-      return nu, tags, nd
-    end
-
-    return nil
-  end
-
-  local function check_googlemail(addr)
-    local nd = 'gmail.com'
-    local nu, tags = check_gmail_user(addr)
-
-    if nu then
-      return nu, tags, nd
-    end
-
-    return nil, nil, nd
-  end
-
-  local specific_domains = {
-    ['gmail.com'] = check_gmail,
-    ['googlemail.com'] = check_googlemail,
-  }
-
-  if email_addr then
-    if email_addr.domain and specific_domains[email_addr.domain] then
-      local nu, tags, nd = specific_domains[email_addr.domain](email_addr)
-      if nu or nd then
-        set_addr(email_addr, nu, nd)
-
-        return nu, tags
-      end
-    else
-      local nu, tags, nd = check_address(email_addr)
-      if nu or nd then
-        set_addr(email_addr, nu, nd)
-
-        return nu, tags
-      end
-    end
-
-    return nil
-  end
-end
-
-exports.is_rspamc_or_controller = function(task)
-  local ua = task:get_request_header('User-Agent') or ''
-  local pwd = task:get_request_header('Password')
-  local is_rspamc = false
-  if tostring(ua) == 'rspamc' or pwd then is_rspamc = true end
-
-  return is_rspamc
-end
-
-local unpack_function = table.unpack or unpack
-exports.unpack = function(t)
-  return unpack_function(t)
-end
-
-return exports
diff --git a/data/Dockerfiles/rspamd/ratelimit.lua b/data/Dockerfiles/rspamd/ratelimit.lua
deleted file mode 100644
index 839ec5c6..00000000
--- a/data/Dockerfiles/rspamd/ratelimit.lua
+++ /dev/null
@@ -1,674 +0,0 @@
---[[
-Copyright (c) 2011-2017, Vsevolod Stakhov <vsevolod@highsecure.ru>
-Copyright (c) 2016-2017, Andrew Lewis <nerf@judo.za.org>
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-]]--
-
-if confighelp then
-  return
-end
-
--- A plugin that implements ratelimits using redis
-
-local E = {}
-local N = 'ratelimit'
-local redis_params
--- Senders that are considered as bounce
-local settings = {
-  bounce_senders = { 'postmaster', 'mailer-daemon', '', 'null', 'fetchmail-daemon', 'mdaemon' },
--- Do not check ratelimits for these recipients
-  whitelisted_rcpts = { 'postmaster', 'mailer-daemon' },
-  prefix = 'RL',
-  ham_factor_rate = 1.01,
-  spam_factor_rate = 0.99,
-  ham_factor_burst = 1.02,
-  spam_factor_burst = 0.98,
-  max_rate_mult = 5,
-  max_bucket_mult = 10,
-  expire = 60 * 60 * 24 * 2, -- 2 days by default
-  limits = {},
-  allow_local = false,
-}
-
--- Checks bucket, updating it if needed
--- KEYS[1] - prefix to update, e.g. RL_<triplet>_<seconds>
--- KEYS[2] - current time in milliseconds
--- KEYS[3] - bucket leak rate (messages per millisecond)
--- KEYS[4] - bucket burst
--- KEYS[5] - expire for a bucket
--- return 1 if message should be ratelimited and 0 if not
--- Redis keys used:
---   l - last hit
---   b - current burst
---   dr - current dynamic rate multiplier (*10000)
---   db - current dynamic burst multiplier (*10000)
-local bucket_check_script = [[
-  local last = redis.call('HGET', KEYS[1], 'l')
-  local now = tonumber(KEYS[2])
-  local dynr, dynb = 0, 0
-  if not last then
-    -- New bucket
-    redis.call('HSET', KEYS[1], 'l', KEYS[2])
-    redis.call('HSET', KEYS[1], 'b', '0')
-    redis.call('HSET', KEYS[1], 'dr', '10000')
-    redis.call('HSET', KEYS[1], 'db', '10000')
-    redis.call('EXPIRE', KEYS[1], KEYS[5])
-    return {0, 0, 1, 1}
-  end
-
-  last = tonumber(last)
-  local burst = tonumber(redis.call('HGET', KEYS[1], 'b'))
-  -- Perform leak
-  if burst > 0 then
-   if last < tonumber(KEYS[2]) then
-    local rate = tonumber(KEYS[3])
-    dynr = tonumber(redis.call('HGET', KEYS[1], 'dr')) / 10000.0
-    rate = rate * dynr
-    local leaked = ((now - last) * rate)
-    burst = burst - leaked
-    redis.call('HINCRBYFLOAT', KEYS[1], 'b', -(leaked))
-   end
-  else
-   burst = 0
-   redis.call('HSET', KEYS[1], 'b', '0')
-  end
-
-  dynb = tonumber(redis.call('HGET', KEYS[1], 'db')) / 10000.0
-
-  if (burst + 1) * dynb > tonumber(KEYS[4]) then
-   return {1, tostring(burst), tostring(dynr), tostring(dynb)}
-  end
-
-  return {0, tostring(burst), tostring(dynr), tostring(dynb)}
-]]
-local bucket_check_id
-
-
--- Updates a bucket
--- KEYS[1] - prefix to update, e.g. RL_<triplet>_<seconds>
--- KEYS[2] - current time in milliseconds
--- KEYS[3] - dynamic rate multiplier
--- KEYS[4] - dynamic burst multiplier
--- KEYS[5] - max dyn rate (min: 1/x)
--- KEYS[6] - max burst rate (min: 1/x)
--- KEYS[7] - expire for a bucket
--- Redis keys used:
---   l - last hit
---   b - current burst
---   dr - current dynamic rate multiplier
---   db - current dynamic burst multiplier
-local bucket_update_script = [[
-  local last = redis.call('HGET', KEYS[1], 'l')
-  local now = tonumber(KEYS[2])
-  if not last then
-    -- New bucket
-    redis.call('HSET', KEYS[1], 'l', KEYS[2])
-    redis.call('HSET', KEYS[1], 'b', '1')
-    redis.call('HSET', KEYS[1], 'dr', '10000')
-    redis.call('HSET', KEYS[1], 'db', '10000')
-    redis.call('EXPIRE', KEYS[1], KEYS[7])
-    return {1, 1, 1}
-  end
-
-  local burst = tonumber(redis.call('HGET', KEYS[1], 'b'))
-  local db = tonumber(redis.call('HGET', KEYS[1], 'db')) / 10000
-  local dr = tonumber(redis.call('HGET', KEYS[1], 'dr')) / 10000
-
-  if dr < tonumber(KEYS[5]) and dr > 1.0 / tonumber(KEYS[5]) then
-    dr = dr * tonumber(KEYS[3])
-    redis.call('HSET', KEYS[1], 'dr', tostring(math.floor(dr * 10000)))
-  end
-
-  if db < tonumber(KEYS[6]) and db > 1.0 / tonumber(KEYS[6]) then
-    db = db * tonumber(KEYS[4])
-    redis.call('HSET', KEYS[1], 'db', tostring(math.floor(db * 10000)))
-  end
-
-  redis.call('HINCRBYFLOAT', KEYS[1], 'b', 1)
-  redis.call('HSET', KEYS[1], 'l', KEYS[2])
-  redis.call('EXPIRE', KEYS[1], KEYS[7])
-
-  return {tostring(burst), tostring(dr), tostring(db)}
-]]
-local bucket_update_id
-
--- message_func(task, limit_type, prefix, bucket)
-local message_func = function(_, limit_type, _, _)
-  return string.format('Ratelimit "%s" exceeded', limit_type)
-end
-
-local rspamd_logger = require "rspamd_logger"
-local rspamd_util = require "rspamd_util"
-local rspamd_lua_utils = require "lua_util"
-local lua_redis = require "lua_redis"
-local fun = require "fun"
-local lua_maps = require "lua_maps"
-local lua_util = require "lua_util"
-local rspamd_hash = require "rspamd_cryptobox_hash"
-
-
-local function load_scripts(cfg, ev_base)
-  bucket_check_id = lua_redis.add_redis_script(bucket_check_script, redis_params)
-  bucket_update_id = lua_redis.add_redis_script(bucket_update_script, redis_params)
-end
-
-local limit_parser
-local function parse_string_limit(lim, no_error)
-  local function parse_time_suffix(s)
-    if s == 's' then
-      return 1
-    elseif s == 'm' then
-      return 60
-    elseif s == 'h' then
-      return 3600
-    elseif s == 'd' then
-      return 86400
-    end
-  end
-  local function parse_num_suffix(s)
-    if s == '' then
-      return 1
-    elseif s == 'k' then
-      return 1000
-    elseif s == 'm' then
-      return 1000000
-    elseif s == 'g' then
-      return 1000000000
-    end
-  end
-  local lpeg = require "lpeg"
-
-  if not limit_parser then
-    local digit = lpeg.R("09")
-    limit_parser = {}
-    limit_parser.integer =
-    (lpeg.S("+-") ^ -1) *
-            (digit   ^  1)
-    limit_parser.fractional =
-    (lpeg.P(".")   ) *
-            (digit ^ 1)
-    limit_parser.number =
-    (limit_parser.integer *
-            (limit_parser.fractional ^ -1)) +
-            (lpeg.S("+-") * limit_parser.fractional)
-    limit_parser.time = lpeg.Cf(lpeg.Cc(1) *
-            (limit_parser.number / tonumber) *
-            ((lpeg.S("smhd") / parse_time_suffix) ^ -1),
-      function (acc, val) return acc * val end)
-    limit_parser.suffixed_number = lpeg.Cf(lpeg.Cc(1) *
-            (limit_parser.number / tonumber) *
-            ((lpeg.S("kmg") / parse_num_suffix) ^ -1),
-      function (acc, val) return acc * val end)
-    limit_parser.limit = lpeg.Ct(limit_parser.suffixed_number *
-            (lpeg.S(" ") ^ 0) * lpeg.S("/") * (lpeg.S(" ") ^ 0) *
-            limit_parser.time)
-  end
-  local t = lpeg.match(limit_parser.limit, lim)
-
-  if t and t[1] and t[2] and t[2] ~= 0 then
-    return t[2], t[1]
-  end
-
-  if not no_error then
-    rspamd_logger.errx(rspamd_config, 'bad limit: %s', lim)
-  end
-
-  return nil
-end
-
-local function parse_limit(name, data)
-  local buckets = {}
-  if type(data) == 'table' then
-    -- 3 cases here:
-    --  * old limit in format [burst, rate]
-    --  * vector of strings in Andrew's string format
-    --  * proper bucket table
-    if #data == 2 and tonumber(data[1]) and tonumber(data[2]) then
-      -- Old style ratelimit
-      rspamd_logger.warnx(rspamd_config, 'old style ratelimit for %s', name)
-      if tonumber(data[1]) > 0 and tonumber(data[2]) > 0 then
-        table.insert(buckets, {
-          burst = data[1],
-          rate = data[2]
-        })
-      elseif data[1] ~= 0 then
-        rspamd_logger.warnx(rspamd_config, 'invalid numbers for %s', name)
-      else
-        rspamd_logger.infox(rspamd_config, 'disable limit %s, burst is zero', name)
-      end
-    else
-      -- Recursively map parse_limit and flatten the list
-      fun.each(function(l)
-        -- Flatten list
-        for _,b in ipairs(l) do table.insert(buckets, b) end
-      end, fun.map(function(d) return parse_limit(d, name) end, data))
-    end
-  elseif type(data) == 'string' then
-    local rep_rate, burst = parse_string_limit(data)
-
-    if rep_rate and burst then
-      table.insert(buckets, {
-        burst = burst,
-        rate = 1.0 / rep_rate -- reciprocal
-      })
-    end
-  end
-
-  -- Filter valid
-  return fun.totable(fun.filter(function(val)
-    return type(val.burst) == 'number' and type(val.rate) == 'number'
-  end, buckets))
-end
-
---- Check whether this addr is bounce
-local function check_bounce(from)
-  return fun.any(function(b) return b == from end, settings.bounce_senders)
-end
-
-local keywords = {
-  ['ip'] = {
-    ['get_value'] = function(task)
-      local ip = task:get_ip()
-      if ip and ip:is_valid() then return tostring(ip) end
-      return nil
-    end,
-  },
-  ['rip'] = {
-    ['get_value'] = function(task)
-      local ip = task:get_ip()
-      if ip and ip:is_valid() and not ip:is_local() then return tostring(ip) end
-      return nil
-    end,
-  },
-  ['from'] = {
-    ['get_value'] = function(task)
-      local from = task:get_from(0)
-      if ((from or E)[1] or E).addr then
-        return string.lower(from[1]['addr'])
-      end
-      return nil
-    end,
-  },
-  ['bounce'] = {
-    ['get_value'] = function(task)
-      local from = task:get_from(0)
-      if not ((from or E)[1] or E).user then
-        return '_'
-      end
-      if check_bounce(from[1]['user']) then return '_' else return nil end
-    end,
-  },
-  ['asn'] = {
-    ['get_value'] = function(task)
-      local asn = task:get_mempool():get_variable('asn')
-      if not asn then
-        return nil
-      else
-        return asn
-      end
-    end,
-  },
-  ['user'] = {
-    ['get_value'] = function(task)
-      local auser = task:get_user()
-      if not auser then
-        return nil
-      else
-        return auser
-      end
-    end,
-  },
-  ['to'] = {
-    ['get_value'] = function(task)
-      return task:get_principal_recipient()
-    end,
-  },
-}
-
-local function gen_rate_key(task, rtype, bucket)
-  local key_t = {tostring(lua_util.round(100000.0 / bucket.burst))}
-  local key_keywords = lua_util.str_split(rtype, '_')
-  local have_user = false
-
-  for _, v in ipairs(key_keywords) do
-    local ret
-
-    if keywords[v] and type(keywords[v]['get_value']) == 'function' then
-      ret = keywords[v]['get_value'](task)
-    end
-    if not ret then return nil end
-    if v == 'user' then have_user = true end
-    if type(ret) ~= 'string' then ret = tostring(ret) end
-    table.insert(key_t, ret)
-  end
-
-  if have_user and not task:get_user() then
-    return nil
-  end
-
-  return table.concat(key_t, ":")
-end
-
-local function make_prefix(redis_key, name, bucket)
-  local hash_len = 24
-  if hash_len > #redis_key then hash_len = #redis_key end
-  local hash = settings.prefix ..
-      string.sub(rspamd_hash.create(redis_key):base32(), 1, hash_len)
-  -- Fill defaults
-  if not bucket.spam_factor_rate then
-    bucket.spam_factor_rate = settings.spam_factor_rate
-  end
-  if not bucket.ham_factor_rate then
-    bucket.ham_factor_rate = settings.ham_factor_rate
-  end
-  if not bucket.spam_factor_burst then
-    bucket.spam_factor_burst = settings.spam_factor_burst
-  end
-  if not bucket.ham_factor_burst then
-    bucket.ham_factor_burst = settings.ham_factor_burst
-  end
-
-  return {
-    bucket = bucket,
-    name = name,
-    hash = hash
-  }
-end
-
-local function limit_to_prefixes(task, k, v, prefixes)
-  local n = 0
-  for _,bucket in ipairs(v) do
-    local prefix = gen_rate_key(task, k, bucket)
-
-    if prefix then
-      prefixes[prefix] = make_prefix(prefix, k, bucket)
-      n = n + 1
-    end
-  end
-
-  return n
-end
-
-local function ratelimit_cb(task)
-  if not settings.allow_local and
-          rspamd_lua_utils.is_rspamc_or_controller(task) then return end
-
-  -- Get initial task data
-  local ip = task:get_from_ip()
-  if ip and ip:is_valid() and settings.whitelisted_ip then
-    if settings.whitelisted_ip:get_key(ip) then
-      -- Do not check whitelisted ip
-      rspamd_logger.infox(task, 'skip ratelimit for whitelisted IP')
-      return
-    end
-  end
-  -- Parse all rcpts
-  local rcpts = task:get_recipients()
-  local rcpts_user = {}
-  if rcpts then
-    fun.each(function(r)
-      fun.each(function(type) table.insert(rcpts_user, r[type]) end, {'user', 'addr'})
-    end, rcpts)
-
-    if fun.any(function(r) return settings.whitelisted_rcpts:get_key(r) end, rcpts_user) then
-      rspamd_logger.infox(task, 'skip ratelimit for whitelisted recipient')
-      return
-    end
-  end
-  -- Get user (authuser)
-  if settings.whitelisted_user then
-    local auser = task:get_user()
-    if settings.whitelisted_user:get_key(auser) then
-      rspamd_logger.infox(task, 'skip ratelimit for whitelisted user')
-      return
-    end
-  end
-  -- Now create all ratelimit prefixes
-  local prefixes = {}
-  local nprefixes = 0
-
-  for k,v in pairs(settings.limits) do
-    nprefixes = nprefixes + limit_to_prefixes(task, k, v, prefixes)
-  end
-
-  for k, hdl in pairs(settings.custom_keywords or E) do
-    local ret, redis_key, bd = pcall(hdl, task)
-
-    if ret then
-      local bucket = parse_limit(k, bd)
-      if bucket[1] then
-        prefixes[redis_key] = make_prefix(redis_key, k, bucket[1])
-      end
-      nprefixes = nprefixes + 1
-    else
-      rspamd_logger.errx(task, 'cannot call handler for %s: %s',
-          k, redis_key)
-    end
-  end
-
-  local function gen_check_cb(prefix, bucket, lim_name)
-    return function(err, data)
-      if err then
-        rspamd_logger.errx('cannot check limit %s: %s %s', prefix, err, data)
-      elseif type(data) == 'table' and data[1] and data[1] == 1 then
-        -- set symbol only and do NOT soft reject
-        if settings.symbol then
-          task:insert_result(settings.symbol, 0.0, lim_name .. "(" .. prefix .. ")")
-          rspamd_logger.infox(task,
-              'set_symbol_only: ratelimit "%s(%s)" exceeded, (%s / %s): %s (%s:%s dyn)',
-              lim_name, prefix,
-              bucket.burst, bucket.rate,
-              data[2], data[3], data[4])
-          return
-        -- set INFO symbol and soft reject
-        elseif settings.info_symbol then
-          task:insert_result(settings.info_symbol, 1.0,
-              lim_name .. "(" .. prefix .. ")")
-        end
-        rspamd_logger.infox(task,
-            'ratelimit "%s(%s)" exceeded, (%s / %s): %s (%s:%s dyn)',
-            lim_name, prefix,
-            bucket.burst, bucket.rate,
-            data[2], data[3], data[4])
-        task:set_pre_result('soft reject',
-                message_func(task, lim_name, prefix, bucket))
-      end
-    end
-  end
-
-  -- Don't do anything if pre-result has been already set
-  if task:has_pre_result() then return end
-
-  if nprefixes > 0 then
-    -- Save prefixes to the cache to allow update
-    task:cache_set('ratelimit_prefixes', prefixes)
-    local now = rspamd_util.get_time()
-    now = lua_util.round(now * 1000.0) -- Get milliseconds
-    -- Now call check script for all defined prefixes
-
-    for pr,value in pairs(prefixes) do
-      local bucket = value.bucket
-      local rate = (bucket.rate) / 1000.0 -- Leak rate in messages/ms
-      rspamd_logger.debugm(N, task, "check limit %s:%s -> %s (%s/%s)",
-          value.name, pr, value.hash, bucket.burst, bucket.rate)
-      lua_redis.exec_redis_script(bucket_check_id,
-              {key = value.hash, task = task, is_write = true},
-              gen_check_cb(pr, bucket, value.name),
-              {value.hash, tostring(now), tostring(rate), tostring(bucket.burst),
-                  tostring(settings.expire)})
-    end
-  end
-end
-
-local function ratelimit_update_cb(task)
-  local prefixes = task:cache_get('ratelimit_prefixes')
-
-  if prefixes then
-    if task:has_pre_result() then
-      -- Already rate limited/greylisted, do nothing
-      rspamd_logger.debugm(N, task, 'pre-action has been set, do not update')
-      return
-    end
-
-    local is_spam = not (task:get_metric_action() == 'no action')
-
-    -- Update each bucket
-    for k, v in pairs(prefixes) do
-      local bucket = v.bucket
-      local function update_bucket_cb(err, data)
-        if err then
-          rspamd_logger.errx(task, 'cannot update rate bucket %s: %s',
-                  k, err)
-        else
-          rspamd_logger.debugm(N, task,
-              "updated limit %s:%s -> %s (%s/%s), burst: %s, dyn_rate: %s, dyn_burst: %s",
-              v.name, k, v.hash,
-              bucket.burst, bucket.rate,
-              data[1], data[2], data[3])
-        end
-      end
-      local now = rspamd_util.get_time()
-      now = lua_util.round(now * 1000.0) -- Get milliseconds
-      local mult_burst = bucket.ham_factor_burst or 1.0
-      local mult_rate = bucket.ham_factor_burst or 1.0
-
-      if is_spam then
-        mult_burst = bucket.spam_factor_burst or 1.0
-        mult_rate = bucket.spam_factor_rate or 1.0
-      end
-
-      lua_redis.exec_redis_script(bucket_update_id,
-              {key = v.hash, task = task, is_write = true},
-              update_bucket_cb,
-              {v.hash, tostring(now), tostring(mult_rate), tostring(mult_burst),
-               tostring(settings.max_rate_mult), tostring(settings.max_bucket_mult),
-               tostring(settings.expire)})
-    end
-  end
-end
-
-local opts = rspamd_config:get_all_opt(N)
-if opts then
-
-  settings = lua_util.override_defaults(settings, opts)
-
-  if opts['limit'] then
-    rspamd_logger.errx(rspamd_config, 'Legacy ratelimit config format no longer supported')
-  end
-
-  if opts['rates'] and type(opts['rates']) == 'table' then
-    -- new way of setting limits
-    fun.each(function(t, lim)
-      local buckets = parse_limit(t, lim)
-
-      if buckets and #buckets > 0 then
-        settings.limits[t] = buckets
-      end
-    end, opts['rates'])
-  end
-
-  local enabled_limits = fun.totable(fun.map(function(t)
-    return t
-  end, settings.limits))
-  rspamd_logger.infox(rspamd_config,
-          'enabled rate buckets: [%1]', table.concat(enabled_limits, ','))
-
-  -- Ret, ret, ret: stupid legacy stuff:
-  -- If we have a string with commas then load it as as static map
-  -- otherwise, apply normal logic of Rspamd maps
-
-  local wrcpts = opts['whitelisted_rcpts']
-  if type(wrcpts) == 'string' then
-    if string.find(wrcpts, ',') then
-      settings.whitelisted_rcpts = lua_maps.rspamd_map_add_from_ucl(
-        lua_util.rspamd_str_split(wrcpts, ','), 'set', 'Ratelimit whitelisted rcpts')
-    else
-      settings.whitelisted_rcpts = lua_maps.rspamd_map_add_from_ucl(wrcpts, 'set',
-        'Ratelimit whitelisted rcpts')
-    end
-  elseif type(opts['whitelisted_rcpts']) == 'table' then
-    settings.whitelisted_rcpts = lua_maps.rspamd_map_add_from_ucl(wrcpts, 'set',
-      'Ratelimit whitelisted rcpts')
-  else
-    -- Stupid default...
-    settings.whitelisted_rcpts = lua_maps.rspamd_map_add_from_ucl(
-        settings.whitelisted_rcpts, 'set', 'Ratelimit whitelisted rcpts')
-  end
-
-  if opts['whitelisted_ip'] then
-    settings.whitelisted_ip = lua_maps.rspamd_map_add('ratelimit', 'whitelisted_ip', 'radix',
-      'Ratelimit whitelist ip map')
-  end
-
-  if opts['whitelisted_user'] then
-    settings.whitelisted_user = lua_maps.rspamd_map_add('ratelimit', 'whitelisted_user', 'set',
-      'Ratelimit whitelist user map')
-  end
-
-  settings.custom_keywords = {}
-  if opts['custom_keywords'] then
-    local ret, res_or_err = pcall(loadfile(opts['custom_keywords']))
-
-    if ret then
-      opts['custom_keywords'] = {}
-      if type(res_or_err) == 'table' then
-        for k,hdl in pairs(res_or_err) do
-          settings['custom_keywords'][k] = hdl
-        end
-      elseif type(res_or_err) == 'function' then
-        settings['custom_keywords']['custom'] = res_or_err
-      end
-    else
-      rspamd_logger.errx(rspamd_config, 'cannot execute %s: %s',
-          opts['custom_keywords'], res_or_err)
-      settings['custom_keywords'] = {}
-    end
-  end
-
-  if opts['message_func'] then
-    message_func = assert(load(opts['message_func']))()
-  end
-
-  redis_params = lua_redis.parse_redis_server('ratelimit')
-
-  if not redis_params then
-    rspamd_logger.infox(rspamd_config, 'no servers are specified, disabling module')
-    lua_util.disable_module(N, "redis")
-  else
-    local s = {
-      type = 'prefilter,nostat',
-      name = 'RATELIMIT_CHECK',
-      priority = 7,
-      callback = ratelimit_cb,
-      flags = 'empty',
-    }
-
-    if settings.symbol then
-      s.name = settings.symbol
-    elseif settings.info_symbol then
-      s.name = settings.info_symbol
-    end
-
-    rspamd_config:register_symbol(s)
-    rspamd_config:register_symbol {
-      type = 'idempotent',
-      name = 'RATELIMIT_UPDATE',
-      callback = ratelimit_update_cb,
-    }
-  end
-end
-
-rspamd_config:add_on_load(function(cfg, ev_base, worker)
-  load_scripts(cfg, ev_base)
-end)

From 0fb43f49161554dbe0e66cd6170ad00166efc8b3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sat, 29 Sep 2018 22:01:23 +0200
Subject: [PATCH 22/56] [Docker API] Use TLS encryption for communication with
 "on-the-fly" created key paris (non-exposed) [Docker API] Create pipe to pass
 Rspamd UI worker password [Dovecot] Pull Spamassassin ruleset to be read by
 Rspamd (MANY THANKS to Peer Heinlein!) [Dovecot] Garbage collector for
 deleted maildirs (set keep time via MAILDIR_GC_TIME which defaults to 1440
 minutes) [Web] Flush memcached after mailbox item changes, fixes #1808 [Web]
 Fix duplicate IDs, fixes #1792 [Compose] Use SQL sockets [PHP-FPM] Update
 APCu and Redis libs [Dovecot] Encrypt maildir with global key pair in
 crypt-vol-1 (BACKUP!), also fixes #1791 [Web] Fix deletion of spam aliases
 [Helper] Add "crypt" to backup script [Helper] Override file for external SQL
 socket (not supported!) [Compose] New images for Rspamd, PHP-FPM, SOGo,
 Dovecot, Docker API, Watchdog, ACME, Postfix

---
 data/Dockerfiles/acme/docker-entrypoint.sh    |    10 +-
 data/Dockerfiles/dockerapi/Dockerfile         |     8 +-
 data/Dockerfiles/dockerapi/server.py          |   133 +-
 data/Dockerfiles/dovecot/Dockerfile           |    16 +-
 data/Dockerfiles/dovecot/docker-entrypoint.sh |    18 +-
 data/Dockerfiles/dovecot/maildir_gc.sh        |     2 +
 data/Dockerfiles/dovecot/postlogin.sh         |     1 -
 data/Dockerfiles/dovecot/sa-rules.sh          |    25 +
 data/Dockerfiles/dovecot/trim_logs.sh         |    13 +-
 data/Dockerfiles/phpfpm/Dockerfile            |     4 +-
 data/Dockerfiles/phpfpm/docker-entrypoint.sh  |    10 +-
 data/Dockerfiles/postfix/postfix.sh           |    30 +-
 data/Dockerfiles/rspamd/docker-entrypoint.sh  |     1 +
 data/Dockerfiles/sogo/bootstrap-sogo.sh       |    38 +-
 data/Dockerfiles/watchdog/watchdog.sh         |    20 +-
 data/assets/mysql/docker-entrypoint.sh        |   192 +
 data/conf/dovecot/dovecot.conf                |    17 +-
 data/conf/rspamd/custom/sa-rules-heinlein     | 10561 ++++++++++++++++
 data/conf/rspamd/dynmaps/settings.php         |     3 +-
 data/conf/rspamd/meta_exporter/pipe.php       |     3 +-
 .../override.d/worker-controller-password.inc |     2 +-
 data/web/admin.php                            |   106 +-
 data/web/autodiscover.php                     |     3 +-
 data/web/edit.php                             |   104 +-
 data/web/inc/footer.inc.php                   |     4 +-
 data/web/inc/functions.docker.inc.php         |    33 +-
 data/web/inc/functions.inc.php                |    12 +
 data/web/inc/functions.mailbox.inc.php        |    28 +-
 data/web/inc/init_db.inc.php                  |     2 +-
 data/web/inc/prerequisites.inc.php            |    14 +-
 data/web/inc/vars.inc.php                     |     1 +
 data/web/js/admin.js                          |    14 +-
 data/web/js/api.js                            |     7 +-
 data/web/js/edit.js                           |    32 +-
 data/web/js/mailbox.js                        |    29 +-
 data/web/js/mailcow.js                        |     4 +-
 data/web/js/quarantine.js                     |     2 +-
 data/web/js/user.js                           |     4 +-
 data/web/mailbox.php                          |    64 +-
 data/web/modals/admin.php                     |    18 +-
 data/web/modals/footer.php                    |    26 +-
 data/web/modals/mailbox.php                   |   102 +-
 data/web/modals/user.php                      |    30 +-
 data/web/quarantine.php                       |     6 +-
 data/web/user.php                             |    10 +-
 docker-compose.yml                            |    34 +-
 generate_config.sh                            |     5 +
 helper-scripts/backup_and_restore.sh          |    24 +-
 .../ext_sql_sock.docker-compose.override.yml  |    31 +
 49 files changed, 11437 insertions(+), 419 deletions(-)
 create mode 100755 data/Dockerfiles/dovecot/maildir_gc.sh
 create mode 100755 data/Dockerfiles/dovecot/sa-rules.sh
 create mode 100755 data/assets/mysql/docker-entrypoint.sh
 create mode 100644 data/conf/rspamd/custom/sa-rules-heinlein
 create mode 100644 helper-scripts/ext_sql_sock.docker-compose.override.yml

diff --git a/data/Dockerfiles/acme/docker-entrypoint.sh b/data/Dockerfiles/acme/docker-entrypoint.sh
index c9a91dfa..37e150f6 100755
--- a/data/Dockerfiles/acme/docker-entrypoint.sh
+++ b/data/Dockerfiles/acme/docker-entrypoint.sh
@@ -37,7 +37,7 @@ mkdir -p ${ACME_BASE}/acme/private
 restart_containers(){
   for container in $*; do
     log_f "Restarting ${container}..." no_nl
-    C_REST_OUT=$(curl -X POST http://dockerapi:8080/containers/${container}/restart | jq -r '.msg')
+    C_REST_OUT=$(curl -X POST --insecure https://dockerapi/containers/${container}/restart | jq -r '.msg')
     log_f "${C_REST_OUT}" no_date
   done
 }
@@ -125,7 +125,7 @@ else
 fi
 
 log_f "Waiting for database... "
-while ! mysqladmin ping --host mysql -u${DBUSER} -p${DBPASS} --silent; do
+while ! mysqladmin ping --socket=/var/run/mysqld/mysqld.sock -u${DBUSER} -p${DBPASS} --silent; do
   sleep 2
 done
 log_f "Initializing, please wait... "
@@ -161,19 +161,19 @@ while true; do
   fi
 
   # Container ids may have changed
-  CONTAINERS_RESTART=($(curl --silent http://dockerapi:8080/containers/json | jq -r '.[] | {name: .Config.Labels["com.docker.compose.service"], id: .Id}' | jq -rc 'select( .name | tostring | contains("nginx-mailcow") or contains("postfix-mailcow") or contains("dovecot-mailcow")) | .id' | tr "\n" " "))
+  CONTAINERS_RESTART=($(curl --silent --insecure https://dockerapi/containers/json | jq -r '.[] | {name: .Config.Labels["com.docker.compose.service"], id: .Id}' | jq -rc 'select( .name | tostring | contains("nginx-mailcow") or contains("postfix-mailcow") or contains("dovecot-mailcow")) | .id' | tr "\n" " "))
 
   log_f "Waiting for domain table... " no_nl
   while [[ -z ${DOMAIN_TABLE} ]]; do
     curl --silent http://nginx/ >/dev/null 2>&1
-    DOMAIN_TABLE=$(mysql -h mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SHOW TABLES LIKE 'domain'" -Bs)
+    DOMAIN_TABLE=$(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SHOW TABLES LIKE 'domain'" -Bs)
     [[ -z ${DOMAIN_TABLE} ]] && sleep 10
   done
   log_f "OK" no_date
 
   while read domains; do
     SQL_DOMAIN_ARR+=("${domains}")
-  done < <(mysql -h mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT domain FROM domain WHERE backupmx=0 UNION SELECT alias_domain FROM alias_domain" -Bs)
+  done < <(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT domain FROM domain WHERE backupmx=0 UNION SELECT alias_domain FROM alias_domain" -Bs)
 
   for SQL_DOMAIN in "${SQL_DOMAIN_ARR[@]}"; do
     A_CONFIG=$(dig A autoconfig.${SQL_DOMAIN} +short | tail -n 1)
diff --git a/data/Dockerfiles/dockerapi/Dockerfile b/data/Dockerfiles/dockerapi/Dockerfile
index 78389c4f..9d0bdaec 100644
--- a/data/Dockerfiles/dockerapi/Dockerfile
+++ b/data/Dockerfiles/dockerapi/Dockerfile
@@ -1,8 +1,10 @@
-FROM python:2-alpine
+FROM alpine:3.8
 LABEL maintainer "Andre Peters <andre.peters@servercow.de>"
 
-RUN apk add -U --no-cache iptables ip6tables tzdata
-RUN pip install docker==3.0.1 flask flask-restful
+RUN apk add -U --no-cache python2 python-dev py-pip gcc musl-dev tzdata openssl-dev libffi-dev \
+  && pip2 install --upgrade docker==3.0.1 flask flask-restful pyOpenSSL \
+  && apk del python-dev py2-pip gcc
 
 COPY server.py /
+
 CMD ["python2", "-u", "/server.py"]
diff --git a/data/Dockerfiles/dockerapi/server.py b/data/Dockerfiles/dockerapi/server.py
index e66cf238..cdba5ea4 100644
--- a/data/Dockerfiles/dockerapi/server.py
+++ b/data/Dockerfiles/dockerapi/server.py
@@ -3,12 +3,16 @@ from flask_restful import Resource, Api
 from flask import jsonify
 from flask import request
 from threading import Thread
+from OpenSSL import crypto
 import docker
+import uuid
 import signal
 import time
 import os
 import re
 import sys
+import ssl
+import socket
 
 docker_client = docker.DockerClient(base_url='unix://var/run/docker.sock', version='auto')
 app = Flask(__name__)
@@ -93,22 +97,74 @@ class container_post(Resource):
               return sieve_return.output
           except Exception as e:
             return jsonify(type='danger', msg=str(e))
+        # not in use...
+        elif request.json['cmd'] == 'mail_crypt_generate' and request.json['username'] and request.json['old_password'] and request.json['new_password']:
+          try:
+            for container in docker_client.containers.list(filters={"id": container_id}):
+              # create if missing
+              crypto_generate = container.exec_run(["/bin/bash", "-c", "/usr/local/bin/doveadm mailbox cryptokey generate -u '" + request.json['username'].replace("'", "'\\''") + "' -URf"], user='vmail')
+              if crypto_generate.exit_code == 0:
+                # open a shell, bind stdin and return socket
+                cryptokey_shell = container.exec_run(["/bin/bash"], stdin=True, socket=True, user='vmail')
+                # command to be piped to shell
+                cryptokey_cmd = "/usr/local/bin/doveadm mailbox cryptokey password -u '" + request.json['username'].replace("'", "'\\''") + "' -n '" + request.json['new_password'].replace("'", "'\\''") + "' -o '" + request.json['old_password'].replace("'", "'\\''") + "'\n"
+                # socket is .output
+                cryptokey_socket = cryptokey_shell.output;
+                try :
+                  # send command utf-8 encoded
+                  cryptokey_socket.sendall(cryptokey_cmd.encode('utf-8'))
+                  # we won't send more data than this
+                  cryptokey_socket.shutdown(socket.SHUT_WR)
+                except socket.error:
+                  # exit on socket error
+                  return jsonify(type='danger', msg=str('socket error'))
+                # read response
+                cryptokey_response = recv_socket_data(cryptokey_socket)
+                crypto_error = re.search('dcrypt_key_load_private.+failed.+error', cryptokey_response)
+                if crypto_error is not None:
+                  return jsonify(type='danger', msg=str("dcrypt_key_load_private error"))
+                return jsonify(type='success', msg=str("key pair generated"))
+              else:
+                return jsonify(type='danger', msg=str(crypto_generate.output))
+          except Exception as e:
+            return jsonify(type='danger', msg=str(e))
+        elif request.json['cmd'] == 'maildir_cleanup' and request.json['maildir']:
+          try:
+            for container in docker_client.containers.list(filters={"id": container_id}):
+              sane_name = re.sub(r'\W+', '', request.json['maildir'])
+              maildir_cleanup = container.exec_run(["/bin/bash", "-c", "/bin/mv '/var/vmail/" + request.json['maildir'].replace("'", "'\\''") + "' '/var/vmail/_garbage/" + str(int(time.time())) + "_" + sane_name + "'"], user='vmail')
+              if maildir_cleanup.exit_code == 0:
+                return jsonify(type='success', msg=str("moved to garbage"))
+              else:
+                return jsonify(type='danger', msg=str(maildir_cleanup.output))
+          except Exception as e:
+            return jsonify(type='danger', msg=str(e))
         elif request.json['cmd'] == 'worker_password' and request.json['raw']:
           try:
             for container in docker_client.containers.list(filters={"id": container_id}):
-              hash = container.exec_run(["/bin/bash", "-c", "/usr/bin/rspamadm pw -e -p '" + request.json['raw'].replace("'", "'\\''") + "' 2> /dev/null"], user='_rspamd')
-              if hash.exit_code == 0:
-                hash_stdout = str(hash.output)
-                for line in hash_stdout.split("\n"):
-                  if '$2$' in line:
-                    hash = line.strip()
-                f = open("/access.inc", "w")
-                f.write('enable_password = "' + re.sub('[^0-9a-zA-Z\$]+', '', hash.rstrip()) + '";\n')
-                f.close()
-                container.restart()
+              worker_shell = container.exec_run(["/bin/bash"], stdin=True, socket=True, user='_rspamd')
+              worker_cmd = "/usr/bin/rspamadm pw -e -p '" + request.json['raw'].replace("'", "'\\''") + "' 2> /dev/null\n"
+              worker_socket = worker_shell.output;
+              try :
+                worker_socket.sendall(worker_cmd.encode('utf-8'))
+                worker_socket.shutdown(socket.SHUT_WR)
+              except socket.error:
+                return jsonify(type='danger', msg=str('socket error'))
+              worker_response = recv_socket_data(worker_socket)
+              matched = False
+              for line in worker_response.split("\n"):
+                if '$2$' in line:
+                  matched = True
+                  hash = line.strip()
+                  hash_out = re.search('\$2\$.+$', hash).group(0)
+                  f = open("/access.inc", "w")
+                  f.write('enable_password = "' + re.sub('[^0-9a-zA-Z\$]+', '', hash_out.rstrip()) + '";\n')
+                  f.close()
+                  container.restart()
+              if matched:
                 return jsonify(type='success', msg='command completed successfully')
               else:
-                return jsonify(type='danger', msg='command did not complete, exit code was ' + int(hash.exit_code))
+                return jsonify(type='danger', msg='command did not complete')
           except Exception as e:
             return jsonify(type='danger', msg=str(e))
         elif request.json['cmd'] == 'mailman_password' and request.json['email'] and request.json['passwd']:
@@ -137,11 +193,62 @@ class GracefulKiller:
     signal.signal(signal.SIGINT, self.exit_gracefully)
     signal.signal(signal.SIGTERM, self.exit_gracefully)
 
-  def exit_gracefully(self,signum, frame):
+  def exit_gracefully(self, signum, frame):
     self.kill_now = True
 
 def startFlaskAPI():
-  app.run(debug=False, host='0.0.0.0', port=8080, threaded=True)
+  create_self_signed_cert()
+  try:
+    ctx = ssl.create_default_context(ssl.Purpose.CLIENT_AUTH)
+    ctx.check_hostname = False
+    ctx.load_cert_chain(certfile='/cert.pem', keyfile='/key.pem')
+  except:
+    print "Cannot initialize TLS, retrying in 5s..."
+    time.sleep(5)
+  app.run(debug=False, host='0.0.0.0', port=443, threaded=True, ssl_context=ctx)
+
+def recv_socket_data(c_socket, timeout=10):
+  c_socket.setblocking(0)
+  total_data=[];
+  data='';
+  begin=time.time()
+  while True:
+    if total_data and time.time()-begin > timeout:
+      break
+    elif time.time()-begin > timeout*2:
+      break
+    try:
+      data = c_socket.recv(8192)
+      if data:
+        total_data.append(data)
+        #change the beginning time for measurement
+        begin=time.time()
+      else:
+        #sleep for sometime to indicate a gap
+        time.sleep(0.1)
+        break
+    except:
+      pass
+  return ''.join(total_data)
+
+def create_self_signed_cert():
+  pkey = crypto.PKey()
+  pkey.generate_key(crypto.TYPE_RSA, 2048)
+  cert = crypto.X509()
+  cert.get_subject().O = "mailcow"
+  cert.get_subject().CN = "dockerapi"
+  cert.set_serial_number(int(uuid.uuid4()))
+  cert.gmtime_adj_notBefore(0)
+  cert.gmtime_adj_notAfter(10*365*24*60*60)
+  cert.set_issuer(cert.get_subject())
+  cert.set_pubkey(pkey)
+  cert.sign(pkey, 'sha512')
+  cert = crypto.dump_certificate(crypto.FILETYPE_PEM, cert)
+  pkey = crypto.dump_privatekey(crypto.FILETYPE_PEM, pkey)
+  with os.fdopen(os.open('/cert.pem', os.O_WRONLY | os.O_CREAT, 0o644), 'w') as handle:
+    handle.write(cert)
+  with os.fdopen(os.open('/key.pem', os.O_WRONLY | os.O_CREAT, 0o600), 'w') as handle:
+    handle.write(pkey)
 
 api.add_resource(containers_get, '/containers/json')
 api.add_resource(container_get, '/containers/<string:container_id>/json')
diff --git a/data/Dockerfiles/dovecot/Dockerfile b/data/Dockerfiles/dovecot/Dockerfile
index 03323914..84ecb322 100644
--- a/data/Dockerfiles/dovecot/Dockerfile
+++ b/data/Dockerfiles/dovecot/Dockerfile
@@ -14,6 +14,7 @@ RUN apt-get update && apt-get -y --no-install-recommends install \
   cpanminus \
   curl \
   default-libmysqlclient-dev \
+  dnsutils \
   libjson-webtoken-perl \
   libcgi-pm-perl \
   libcrypt-openssl-rsa-perl \
@@ -88,10 +89,11 @@ RUN curl https://www.dovecot.org/releases/2.3/dovecot-$DOVECOT_VERSION.tar.gz |
   && rm -rf dovecot-2.3-pigeonhole-$PIGEONHOLE_VERSION
 
 RUN cpanm Data::Uniqid Mail::IMAPClient String::Util
-RUN echo '* * * * *   root   /usr/local/bin/imapsync_cron.pl' > /etc/cron.d/imapsync
-RUN echo '30 3 * * *   vmail  /usr/local/bin/doveadm quota recalc -A' > /etc/cron.d/dovecot-sync
-RUN echo '* * * * *   root  /usr/local/bin/trim_logs.sh >> /dev/stdout 2>&1' > /etc/cron.d/trim_logs
-
+RUN echo '* * * * *   root  /usr/local/bin/imapsync_cron.pl' > /etc/cron.d/imapsync
+RUN echo '30 3 * * *  vmail /usr/local/bin/doveadm quota recalc -A' > /etc/cron.d/dovecot-sync
+RUN echo '* * * * *   vmail /usr/local/bin/trim_logs.sh >> /dev/stdout 2>&1' > /etc/cron.d/trim_logs
+RUN echo '30 2 * * *  vmail /usr/local/bin/maildir_gc.sh >> /dev/stdout 2>&1' > /etc/cron.d/maildir_gc
+RUN echo '30 1 * * *  root  /usr/local/bin/sa-rules.sh  >> /dev/stdout 2>&1' > /etc/cron.d/sa-rules
 COPY trim_logs.sh /usr/local/bin/trim_logs.sh
 COPY syslog-ng.conf /etc/syslog-ng/syslog-ng.conf
 COPY imapsync /usr/local/bin/imapsync
@@ -101,6 +103,8 @@ COPY report-spam.sieve /usr/local/lib/dovecot/sieve/report-spam.sieve
 COPY report-ham.sieve /usr/local/lib/dovecot/sieve/report-ham.sieve
 COPY rspamd-pipe-ham /usr/local/lib/dovecot/sieve/rspamd-pipe-ham
 COPY rspamd-pipe-spam /usr/local/lib/dovecot/sieve/rspamd-pipe-spam
+COPY sa-rules.sh /usr/local/bin/sa-rules.sh
+COPY maildir_gc.sh /usr/local/bin/maildir_gc.sh
 COPY docker-entrypoint.sh /
 COPY supervisord.conf /etc/supervisor/supervisord.conf
 
@@ -109,7 +113,9 @@ RUN chmod +x /usr/local/lib/dovecot/sieve/rspamd-pipe-ham \
   /usr/local/bin/imapsync_cron.pl \
   /usr/local/bin/postlogin.sh \
   /usr/local/bin/imapsync \
-  /usr/local/bin/trim_logs.sh
+  /usr/local/bin/trim_logs.sh \
+  /usr/local/bin/sa-rules.sh \
+  /usr/local/bin/maildir_gc.sh
 
 RUN groupadd -g 5000 vmail \
   && groupadd -g 401 dovecot \
diff --git a/data/Dockerfiles/dovecot/docker-entrypoint.sh b/data/Dockerfiles/dovecot/docker-entrypoint.sh
index 50e91a12..57e0330a 100755
--- a/data/Dockerfiles/dovecot/docker-entrypoint.sh
+++ b/data/Dockerfiles/dovecot/docker-entrypoint.sh
@@ -2,7 +2,7 @@
 set -e
 
 # Wait for MySQL to warm-up
-while ! mysqladmin ping --host mysql -u${DBUSER} -p${DBPASS} --silent; do
+while ! mysqladmin ping --socket=/var/run/mysqld/mysqld.sock -u${DBUSER} -p${DBPASS} --silent; do
   echo "Waiting for database to come up..."
   sleep 2
 done
@@ -15,6 +15,7 @@ sed -i "s/LOG_LINES/${LOG_LINES}/g" /usr/local/bin/trim_logs.sh
 
 # Create missing directories
 [[ ! -d /usr/local/etc/dovecot/sql/ ]] && mkdir -p /usr/local/etc/dovecot/sql/
+[[ ! -d /var/vmail/_garbage ]] && mkdir -p /var/vmail/_garbage
 [[ ! -d /var/vmail/sieve ]] && mkdir -p /var/vmail/sieve
 [[ ! -d /etc/sogo ]] && mkdir -p /etc/sogo
 
@@ -23,7 +24,7 @@ DBPASS=$(echo ${DBPASS} | sed 's/"/\\"/g')
 
 # Create quota dict for Dovecot
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-quota.conf
-connect = "host=mysql dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
+connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
 map {
   pattern = priv/quota/storage
   table = quota2
@@ -40,7 +41,7 @@ EOF
 
 # Create dict used for sieve pre and postfilters
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-sieve_before.conf
-connect = "host=mysql dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
+connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
 map {
   pattern = priv/sieve/name/\$script_name
   table = sieve_before
@@ -62,7 +63,7 @@ map {
 EOF
 
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-sieve_after.conf
-connect = "host=mysql dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
+connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
 map {
   pattern = priv/sieve/name/\$script_name
   table = sieve_after
@@ -87,7 +88,7 @@ EOF
 # Create userdb dict for Dovecot
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-userdb.conf
 driver = mysql
-connect = "host=mysql dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
+connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
 user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, 5000 AS uid, 5000 AS gid, concat('*:bytes=', quota) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1'
 iterate_query = SELECT username FROM mailbox WHERE active='1';
 EOF
@@ -95,7 +96,7 @@ EOF
 # Create pass dict for Dovecot
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-passdb.conf
 driver = mysql
-connect = "host=mysql dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
+connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS} ssl_verify_server_cert=no ssl_ca=/etc/ssl/certs/ca-certificates.crt"
 default_pass_scheme = SSHA256
 password_query = SELECT password FROM mailbox WHERE username = '%u' AND domain IN (SELECT domain FROM domain WHERE domain='%d' AND active='1') AND JSON_EXTRACT(attributes, '$.force_pw_update') NOT LIKE '%%1%%'
 EOF
@@ -106,6 +107,7 @@ cat /usr/local/etc/dovecot/sieve_after > /var/vmail/sieve/global.sieve
 # Check permissions of vmail directory.
 # Do not do this every start-up, it may take a very long time. So we use a stat check here.
 if [[ $(stat -c %U /var/vmail/) != "vmail" ]] ; then chown -R vmail:vmail /var/vmail ; fi
+if [[ $(stat -c %U /var/vmail/_garbage) != "vmail" ]] ; then chown -R vmail:vmail /var/vmail/_garbage ; fi
 
 # Create random master for SOGo sieve features
 RAND_USER=$(cat /dev/urandom | tr -dc 'a-z0-9' | fold -w 16 | head -n 1)
@@ -139,7 +141,7 @@ touch /etc/crontab /etc/cron.*/*
 
 # Clean stopped imapsync jobs
 rm -f /tmp/imapsync_busy.lock
-IMAPSYNC_TABLE=$(mysql -h mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SHOW TABLES LIKE 'imapsync'" -Bs)
-[[ ! -z ${IMAPSYNC_TABLE} ]] && mysql -h mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "UPDATE imapsync SET is_running='0'"
+IMAPSYNC_TABLE=$(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SHOW TABLES LIKE 'imapsync'" -Bs)
+[[ ! -z ${IMAPSYNC_TABLE} ]] && mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "UPDATE imapsync SET is_running='0'"
 
 exec "$@"
diff --git a/data/Dockerfiles/dovecot/maildir_gc.sh b/data/Dockerfiles/dovecot/maildir_gc.sh
new file mode 100755
index 00000000..24c1e461
--- /dev/null
+++ b/data/Dockerfiles/dovecot/maildir_gc.sh
@@ -0,0 +1,2 @@
+#/bin/bash
+[ -d /var/vmail/_garbage/ ] && /usr/bin/find /var/vmail/_garbage/ -mindepth 1 -maxdepth 1 -type d -cmin +${MAILDIR_GC_TIME} -exec rm -r {} \;
diff --git a/data/Dockerfiles/dovecot/postlogin.sh b/data/Dockerfiles/dovecot/postlogin.sh
index 343910ff..01a45f31 100755
--- a/data/Dockerfiles/dovecot/postlogin.sh
+++ b/data/Dockerfiles/dovecot/postlogin.sh
@@ -1,4 +1,3 @@
 #!/bin/sh
-
 export MASTER_USER=$USER
 exec "$@"
diff --git a/data/Dockerfiles/dovecot/sa-rules.sh b/data/Dockerfiles/dovecot/sa-rules.sh
new file mode 100755
index 00000000..197ded87
--- /dev/null
+++ b/data/Dockerfiles/dovecot/sa-rules.sh
@@ -0,0 +1,25 @@
+#!/bin/bash
+[[ ! -d /tmp/sa-rules-heinlein ]] && mkdir -p /tmp/sa-rules-heinlein
+if [[ ! -f /etc/rspamd/custom/sa-rules-heinlein ]]; then
+  HASH_SA_RULES=0
+else
+  HASH_SA_RULES=$(cat /etc/rspamd/custom/sa-rules-heinlein | md5sum | cut -d' ' -f1)
+fi
+
+curl http://www.spamassassin.heinlein-support.de/$(dig txt 1.4.3.spamassassin.heinlein-support.de +short | tr -d '"').tar.gz --output /tmp/sa-rules.tar.gz
+if [[ -f /tmp/sa-rules.tar.gz ]]; then
+  tar xfvz /tmp/sa-rules.tar.gz -C /tmp/sa-rules-heinlein
+  # create complete list of rules in a single file
+  cat /tmp/sa-rules-heinlein/*cf > /etc/rspamd/custom/sa-rules-heinlein
+  # Only restart rspamd-mailcow when rules changed
+  if [[ $(cat /etc/rspamd/custom/sa-rules-heinlein | md5sum | cut -d' ' -f1) != ${HASH_SA_RULES} ]]; then
+    CONTAINER_NAME=rspamd-mailcow
+    CONTAINER_ID=$(curl --silent --insecure https://dockerapi/containers/json | \
+      jq -r ".[] | {name: .Config.Labels[\"com.docker.compose.service\"], id: .Id}" | \
+      jq -rc "select( .name | tostring | contains(\"${CONTAINER_NAME}\")) | .id")
+    if [[ ! -z ${CONTAINER_ID} ]]; then
+      curl --silent --insecure -XPOST https://dockerapi/containers/${CONTAINER_ID}/restart
+    fi
+  fi
+fi
+rm -r /tmp/sa-rules-heinlein /tmp/sa-rules.tar.gz
diff --git a/data/Dockerfiles/dovecot/trim_logs.sh b/data/Dockerfiles/dovecot/trim_logs.sh
index b8da9740..8489f27a 100755
--- a/data/Dockerfiles/dovecot/trim_logs.sh
+++ b/data/Dockerfiles/dovecot/trim_logs.sh
@@ -1,8 +1,7 @@
 #!/bin/bash
-
-redis-cli -h redis LTRIM ACME_LOG 0 LOG_LINES
-redis-cli -h redis LTRIM POSTFIX_MAILLOG 0 LOG_LINES
-redis-cli -h redis LTRIM DOVECOT_MAILLOG 0 LOG_LINES
-redis-cli -h redis LTRIM SOGO_LOG 0 LOG_LINES
-redis-cli -h redis LTRIM NETFILTER_LOG 0 LOG_LINES
-redis-cli -h redis LTRIM AUTODISCOVER_LOG 0 LOG_LINES
+/usr/bin/redis-cli -h redis LTRIM ACME_LOG 0 LOG_LINES
+/usr/bin/redis-cli -h redis LTRIM POSTFIX_MAILLOG 0 LOG_LINES
+/usr/bin/redis-cli -h redis LTRIM DOVECOT_MAILLOG 0 LOG_LINES
+/usr/bin/redis-cli -h redis LTRIM SOGO_LOG 0 LOG_LINES
+/usr/bin/redis-cli -h redis LTRIM NETFILTER_LOG 0 LOG_LINES
+/usr/bin/redis-cli -h redis LTRIM AUTODISCOVER_LOG 0 LOG_LINES
diff --git a/data/Dockerfiles/phpfpm/Dockerfile b/data/Dockerfiles/phpfpm/Dockerfile
index 3acfd09f..0ed81896 100644
--- a/data/Dockerfiles/phpfpm/Dockerfile
+++ b/data/Dockerfiles/phpfpm/Dockerfile
@@ -1,11 +1,11 @@
 FROM php:7.2-fpm-alpine3.7
 LABEL maintainer "Andre Peters <andre.peters@servercow.de>"
 
-ENV APCU_PECL 5.1.11
+ENV APCU_PECL 5.1.12
 ENV IMAGICK_PECL 3.4.3
 ENV MAILPARSE_PECL 3.0.2
 ENV MEMCACHED_PECL 3.0.4
-ENV REDIS_PECL 4.0.2
+ENV REDIS_PECL 4.1.1
 
 RUN apk add -U --no-cache autoconf \
   bash \
diff --git a/data/Dockerfiles/phpfpm/docker-entrypoint.sh b/data/Dockerfiles/phpfpm/docker-entrypoint.sh
index 44d46f74..50c5275d 100755
--- a/data/Dockerfiles/phpfpm/docker-entrypoint.sh
+++ b/data/Dockerfiles/phpfpm/docker-entrypoint.sh
@@ -4,11 +4,13 @@ set -e
 function array_by_comma { local IFS=","; echo "$*"; }
 
 # Wait for containers
-while ! mysqladmin ping --host mysql -u${DBUSER} -p${DBPASS} --silent; do
+while ! mysqladmin ping --socket=/var/run/mysqld/mysqld.sock -u${DBUSER} -p${DBPASS} --silent; do
+  echo "Waiting for SQL..."
   sleep 2
 done
 
 until [[ $(redis-cli -h redis-mailcow PING) == "PONG" ]]; do
+  echo "Waiting for Redis..."
   sleep 2
 done
 
@@ -18,11 +20,11 @@ redis-cli -h redis-mailcow DEL DOMAIN_MAP
 while read line
 do
   DOMAIN_ARR+=("$line")
-done < <(mysql -h mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT domain FROM domain" -Bs)
+done < <(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT domain FROM domain" -Bs)
 while read line
 do
   DOMAIN_ARR+=("$line")
-done < <(mysql -h mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT alias_domain FROM alias_domain" -Bs)
+done < <(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT alias_domain FROM alias_domain" -Bs)
 
 if [[ ! -z ${DOMAIN_ARR} ]]; then
 for domain in "${DOMAIN_ARR[@]}"; do
@@ -48,7 +50,7 @@ if [[ ${API_ALLOW_FROM} != "invalid" ]] && \
   done
   VALIDATED_IPS=$(array_by_comma ${VALIDATED_API_ALLOW_FROM_ARR[*]})
   if [[ ! -z ${VALIDATED_IPS} ]]; then
-    mysql --host mysql-mailcow -u ${DBUSER} -p${DBPASS} ${DBNAME} << EOF
+    mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} << EOF
 INSERT INTO api (username, api_key, active, allow_from)
 SELECT username, "${API_KEY}", '1', "${VALIDATED_IPS}" FROM admin WHERE superadmin='1' AND active='1'
 ON DUPLICATE KEY UPDATE active = '1', allow_from = "${VALIDATED_IPS}", api_key = "${API_KEY}";
diff --git a/data/Dockerfiles/postfix/postfix.sh b/data/Dockerfiles/postfix/postfix.sh
index 28e51ccd..6f839725 100755
--- a/data/Dockerfiles/postfix/postfix.sh
+++ b/data/Dockerfiles/postfix/postfix.sh
@@ -14,7 +14,7 @@ newaliases;
 cat <<EOF > /opt/postfix/conf/sql/mysql_relay_recipient_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT DISTINCT
   CASE WHEN '%d' IN (
@@ -32,7 +32,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_tls_enforce_in_policy.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT IF(EXISTS(
   SELECT 'TLS_ACTIVE' FROM alias
@@ -49,7 +49,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_sender_dependent_default_transport_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT GROUP_CONCAT(transport SEPARATOR '') AS transport_maps
   FROM (
@@ -80,7 +80,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_sasl_passwd_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT CONCAT_WS(':', username, password) AS auth_data FROM relayhosts
   WHERE id IN (
@@ -96,7 +96,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_alias_domain_catchall_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT goto FROM alias, alias_domain
   WHERE alias_domain.alias_domain = '%d'
@@ -107,7 +107,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_alias_domain_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT username FROM mailbox, alias_domain
   WHERE alias_domain.alias_domain = '%d'
@@ -119,7 +119,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_alias_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT goto FROM alias
   WHERE address='%s'
@@ -129,7 +129,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_recipient_bcc_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT bcc_dest FROM bcc_maps
   WHERE local_dest='%s'
@@ -140,7 +140,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_sender_bcc_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT bcc_dest FROM bcc_maps
   WHERE local_dest='%s'
@@ -151,7 +151,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_recipient_canonical_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT new_dest FROM recipient_maps
   WHERE old_dest='%s'
@@ -161,7 +161,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_domains_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT alias_domain from alias_domain WHERE alias_domain='%s' AND active='1'
   UNION
@@ -174,7 +174,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_mailbox_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT maildir FROM mailbox WHERE username='%s' AND active = '1'
 EOF
@@ -182,7 +182,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_relay_domain_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT domain FROM domain WHERE domain='%s' AND backupmx = '1' AND active = '1'
 EOF
@@ -190,7 +190,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_sender_acl.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 # First select queries domain and alias_domain to determine if domains are active.
 query = SELECT goto FROM alias
@@ -231,7 +231,7 @@ EOF
 cat <<EOF > /opt/postfix/conf/sql/mysql_virtual_spamalias_maps.cf
 user = ${DBUSER}
 password = ${DBPASS}
-hosts = mysql
+hosts = unix:/var/run/mysqld/mysqld.sock
 dbname = ${DBNAME}
 query = SELECT goto FROM spamalias
   WHERE address='%s'
diff --git a/data/Dockerfiles/rspamd/docker-entrypoint.sh b/data/Dockerfiles/rspamd/docker-entrypoint.sh
index afb03bb6..1e255d3c 100755
--- a/data/Dockerfiles/rspamd/docker-entrypoint.sh
+++ b/data/Dockerfiles/rspamd/docker-entrypoint.sh
@@ -2,5 +2,6 @@
 
 chown -R _rspamd:_rspamd /var/lib/rspamd
 [[ ! -f /etc/rspamd/override.d/worker-controller-password.inc ]] && echo '# Placeholder' > /etc/rspamd/override.d/worker-controller-password.inc
+[[ ! -f /etc/rspamd/custom/sa-rules-heinlein ]] && echo '# to be auto-filled by dovecot-mailcow' > /etc/rspamd/custom/sa-rules-heinlein
 
 exec "$@"
diff --git a/data/Dockerfiles/sogo/bootstrap-sogo.sh b/data/Dockerfiles/sogo/bootstrap-sogo.sh
index 46d8ec6c..77f03b63 100755
--- a/data/Dockerfiles/sogo/bootstrap-sogo.sh
+++ b/data/Dockerfiles/sogo/bootstrap-sogo.sh
@@ -1,7 +1,7 @@
 #!/bin/bash
 
 # Wait for MySQL to warm-up
-while ! mysqladmin ping --host mysql -u${DBUSER} -p${DBPASS} --silent; do
+while ! mysqladmin ping --socket=/var/run/mysqld/mysqld.sock -u${DBUSER} -p${DBPASS} --silent; do
   echo "Waiting for database to come up..."
   sleep 2
 done
@@ -15,10 +15,10 @@ done
 
 # Recreate view
 
-mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "DROP VIEW IF EXISTS sogo_view"
+mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "DROP VIEW IF EXISTS sogo_view"
 
 while [[ ${VIEW_OK} != 'OK' ]]; do
-  mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} << EOF
+  mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} << EOF
 CREATE VIEW sogo_view (c_uid, domain, c_name, c_password, c_cn, mail, aliases, ad_aliases, home, kind, multiple_bookings) AS
 SELECT mailbox.username, mailbox.domain, mailbox.username, if(json_extract(attributes, '$.force_pw_update') LIKE '%0%', password, 'invalid'), mailbox.name, mailbox.username, IFNULL(GROUP_CONCAT(ga.aliases SEPARATOR ' '), ''), IFNULL(gda.ad_alias, ''), CONCAT('/var/vmail/', maildir), mailbox.kind, mailbox.multiple_bookings FROM mailbox
 LEFT OUTER JOIN grouped_mail_aliases ga ON ga.username REGEXP CONCAT('(^|,)', mailbox.username, '($|,)')
@@ -26,7 +26,7 @@ LEFT OUTER JOIN grouped_domain_alias_address gda ON gda.username = mailbox.usern
 WHERE mailbox.active = '1'
 GROUP BY mailbox.username;
 EOF
-  if [[ ! -z $(mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "SELECT 'OK' FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_NAME = 'sogo_view'") ]]; then
+  if [[ ! -z $(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "SELECT 'OK' FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_NAME = 'sogo_view'") ]]; then
     VIEW_OK=OK
   else
     echo "Will retry to setup SOGo view in 3s"
@@ -37,11 +37,11 @@ done
 # Wait for static view table if missing after update and update content
 
 while [[ ${STATIC_VIEW_OK} != 'OK' ]]; do
-  if [[ ! -z $(mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "SELECT 'OK' FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_NAME = '_sogo_static_view'") ]]; then
+  if [[ ! -z $(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "SELECT 'OK' FROM INFORMATION_SCHEMA.TABLES WHERE TABLE_NAME = '_sogo_static_view'") ]]; then
     STATIC_VIEW_OK=OK
     echo "Updating _sogo_static_view content..."
-    mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "REPLACE INTO _sogo_static_view SELECT * from sogo_view"
-    mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "DELETE FROM _sogo_static_view WHERE c_uid NOT IN (SELECT username FROM mailbox WHERE active = '1')"
+    mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "REPLACE INTO _sogo_static_view SELECT * from sogo_view"
+    mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "DELETE FROM _sogo_static_view WHERE c_uid NOT IN (SELECT username FROM mailbox WHERE active = '1')"
   else
     echo "Waiting for database initialization..."
     sleep 3
@@ -50,10 +50,10 @@ done
 
 # Recreate password update trigger
 
-mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "DROP TRIGGER IF EXISTS sogo_update_password"
+mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "DROP TRIGGER IF EXISTS sogo_update_password"
 
 while [[ ${TRIGGER_OK} != 'OK' ]]; do
-  mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} << EOF
+  mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} << EOF
 DELIMITER -
 CREATE TRIGGER sogo_update_password AFTER UPDATE ON _sogo_static_view
 FOR EACH ROW
@@ -63,7 +63,7 @@ END;
 -
 DELIMITER ;
 EOF
-  if [[ ! -z $(mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "SELECT 'OK' FROM INFORMATION_SCHEMA.TRIGGERS WHERE TRIGGER_NAME = 'sogo_update_password'") ]]; then
+  if [[ ! -z $(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -B -e "SELECT 'OK' FROM INFORMATION_SCHEMA.TRIGGERS WHERE TRIGGER_NAME = 'sogo_update_password'") ]]; then
     TRIGGER_OK=OK
   else
     echo "Will retry to setup SOGo password update trigger in 3s"
@@ -81,19 +81,19 @@ cat <<EOF > /var/lib/sogo/GNUstep/Defaults/sogod.plist
 <plist version="0.9">
 <dict>
     <key>OCSAclURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_acl</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_acl</string>
     <key>OCSCacheFolderURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_cache_folder</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_cache_folder</string>
     <key>OCSEMailAlarmsFolderURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_alarms_folder</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_alarms_folder</string>
     <key>OCSFolderInfoURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_folder_info</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_folder_info</string>
     <key>OCSSessionsFolderURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_sessions_folder</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_sessions_folder</string>
     <key>OCSStoreURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_store</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_store</string>
     <key>SOGoProfileURL</key>
-    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/sogo_user_profile</string>
+    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/sogo_user_profile</string>
     <key>SOGoTimeZone</key>
     <string>${TZ}</string>
     <key>domains</key>
@@ -138,11 +138,11 @@ while read line
                     <key>prependPasswordScheme</key>
                     <string>YES</string>
                     <key>viewURL</key>
-                    <string>mysql://${DBUSER}:${DBPASS}@mysql:3306/${DBNAME}/_sogo_static_view</string>
+                    <string>mysql://${DBUSER}:${DBPASS}@%2Fvar%2Frun%2Fmysqld%2Fmysqld.sock/${DBNAME}/_sogo_static_view</string>
                 </dict>
             </array>
         </dict>" >> /var/lib/sogo/GNUstep/Defaults/sogod.plist
-done < <(mysql --host mysql -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT domain FROM domain;" -B -N)
+done < <(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SELECT domain FROM domain;" -B -N)
 
 # Generate footer
 echo '    </dict>
diff --git a/data/Dockerfiles/watchdog/watchdog.sh b/data/Dockerfiles/watchdog/watchdog.sh
index 64795ad3..b412ccaf 100755
--- a/data/Dockerfiles/watchdog/watchdog.sh
+++ b/data/Dockerfiles/watchdog/watchdog.sh
@@ -68,13 +68,13 @@ get_container_ip() {
   until [[ ${CONTAINER_IP} =~ ^[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}$ ]] || [[ ${LOOP_C} -gt 5 ]]; do
     sleep 0.5
     # get long container id for exact match
-    CONTAINER_ID=($(curl --silent http://dockerapi:8080/containers/json | jq -r ".[] | {name: .Config.Labels[\"com.docker.compose.service\"], id: .Id}" | jq -rc "select( .name | tostring == \"${1}\") | .id"))
+    CONTAINER_ID=($(curl --silent --insecure https://dockerapi/containers/json | jq -r ".[] | {name: .Config.Labels[\"com.docker.compose.service\"], id: .Id}" | jq -rc "select( .name | tostring == \"${1}\") | .id"))
     # returned id can have multiple elements (if scaled), shuffle for random test
     CONTAINER_ID=($(printf "%s\n" "${CONTAINER_ID[@]}" | shuf))
     if [[ ! -z ${CONTAINER_ID} ]]; then
-      for matched_container in "${CONTAINER_ID[@]}"; do 
-        CONTAINER_IPS=($(curl --silent http://dockerapi:8080/containers/${matched_container}/json | jq -r '.NetworkSettings.Networks[].IPAddress')) 
-        for ip_match in "${CONTAINER_IPS[@]}"; do 
+      for matched_container in "${CONTAINER_ID[@]}"; do
+        CONTAINER_IPS=($(curl --silent --insecure https://dockerapi/containers/${matched_container}/json | jq -r '.NetworkSettings.Networks[].IPAddress')) 
+        for ip_match in "${CONTAINER_IPS[@]}"; do
           # grep will do nothing if one of these vars is empty
           [[ -z ${ip_match} ]] && continue
           [[ -z ${IPV4_NETWORK} ]] && continue
@@ -123,8 +123,8 @@ mysql_checks() {
   while [ ${err_count} -lt ${THRESHOLD} ]; do
     host_ip=$(get_container_ip mysql-mailcow)
     err_c_cur=${err_count}
-    /usr/lib/nagios/plugins/check_mysql -H ${host_ip} -P 3306 -u ${DBUSER} -p ${DBPASS} -d ${DBNAME} 1>&2; err_count=$(( ${err_count} + $? ))
-    /usr/lib/nagios/plugins/check_mysql_query -H ${host_ip} -P 3306 -u ${DBUSER} -p ${DBPASS} -d ${DBNAME} -q "SELECT COUNT(*) FROM information_schema.tables" 1>&2; err_count=$(( ${err_count} + $? ))
+    /usr/lib/nagios/plugins/check_mysql -s /var/run/mysqld/mysqld.sock -u ${DBUSER} -p ${DBPASS} -d ${DBNAME} 1>&2; err_count=$(( ${err_count} + $? ))
+    /usr/lib/nagios/plugins/check_mysql_query -s /var/run/mysqld/mysqld.sock -u ${DBUSER} -p ${DBPASS} -d ${DBNAME} -q "SELECT COUNT(*) FROM information_schema.tables" 1>&2; err_count=$(( ${err_count} + $? ))
     [ ${err_c_cur} -eq ${err_count} ] && [ ! $((${err_count} - 1)) -lt 0 ] && err_count=$((${err_count} - 1)) diff_c=1
     [ ${err_c_cur} -ne ${err_count} ] && diff_c=$(( ${err_c_cur} - ${err_count} ))
     progress "MySQL/MariaDB" ${THRESHOLD} $(( ${THRESHOLD} - ${err_count} )) ${diff_c}
@@ -342,12 +342,12 @@ done
 # Monitor dockerapi
 (
 while true; do
-  while nc -z dockerapi 8080; do
+  while nc -z dockerapi 443; do
     sleep 3
   done
   log_msg "Cannot find dockerapi-mailcow, waiting to recover..."
   kill -STOP ${BACKGROUND_TASKS[*]}
-  until nc -z dockerapi 8080; do
+  until nc -z dockerapi 443; do
     sleep 3
   done
   kill -CONT ${BACKGROUND_TASKS[*]}
@@ -362,10 +362,10 @@ while true; do
   if [[ ${com_pipe_answer} =~ .+-mailcow ]]; then
     kill -STOP ${BACKGROUND_TASKS[*]}
     sleep 3
-    CONTAINER_ID=$(curl --silent http://dockerapi:8080/containers/json | jq -r ".[] | {name: .Config.Labels[\"com.docker.compose.service\"], id: .Id}" | jq -rc "select( .name | tostring | contains(\"${com_pipe_answer}\")) | .id")
+    CONTAINER_ID=$(curl --silent --insecure https://dockerapi/containers/json | jq -r ".[] | {name: .Config.Labels[\"com.docker.compose.service\"], id: .Id}" | jq -rc "select( .name | tostring | contains(\"${com_pipe_answer}\")) | .id")
     if [[ ! -z ${CONTAINER_ID} ]]; then
       log_msg "Sending restart command to ${CONTAINER_ID}..."
-      curl --silent -XPOST http://dockerapi:8080/containers/${CONTAINER_ID}/restart
+      curl --silent --insecure -XPOST https://dockerapi/containers/${CONTAINER_ID}/restart
     fi
     log_msg "Wait for restarted container to settle and continue watching..."
     sleep 30s
diff --git a/data/assets/mysql/docker-entrypoint.sh b/data/assets/mysql/docker-entrypoint.sh
new file mode 100755
index 00000000..94e394ac
--- /dev/null
+++ b/data/assets/mysql/docker-entrypoint.sh
@@ -0,0 +1,192 @@
+#!/bin/bash
+set -eo pipefail
+shopt -s nullglob
+
+openssl req -x509 -sha256 -newkey rsa:2048 -keyout /var/lib/mysql/sql.key -out /var/lib/mysql/sql.crt -days 3650 -nodes -subj '/CN=mysql'
+
+# if command starts with an option, prepend mysqld
+if [ "${1:0:1}" = '-' ]; then
+	set -- mysqld "$@"
+fi
+
+# skip setup if they want an option that stops mysqld
+wantHelp=
+for arg; do
+	case "$arg" in
+		-'?'|--help|--print-defaults|-V|--version)
+			wantHelp=1
+			break
+			;;
+	esac
+done
+
+# usage: file_env VAR [DEFAULT]
+#    ie: file_env 'XYZ_DB_PASSWORD' 'example'
+# (will allow for "$XYZ_DB_PASSWORD_FILE" to fill in the value of
+#  "$XYZ_DB_PASSWORD" from a file, especially for Docker's secrets feature)
+file_env() {
+	local var="$1"
+	local fileVar="${var}_FILE"
+	local def="${2:-}"
+	if [ "${!var:-}" ] && [ "${!fileVar:-}" ]; then
+		echo >&2 "error: both $var and $fileVar are set (but are exclusive)"
+		exit 1
+	fi
+	local val="$def"
+	if [ "${!var:-}" ]; then
+		val="${!var}"
+	elif [ "${!fileVar:-}" ]; then
+		val="$(< "${!fileVar}")"
+	fi
+	export "$var"="$val"
+	unset "$fileVar"
+}
+
+_check_config() {
+	toRun=( "$@" --verbose --help --log-bin-index="$(mktemp -u)" )
+	if ! errors="$("${toRun[@]}" 2>&1 >/dev/null)"; then
+		cat >&2 <<-EOM
+
+			ERROR: mysqld failed while attempting to check config
+			command was: "${toRun[*]}"
+
+			$errors
+		EOM
+		exit 1
+	fi
+}
+
+# Fetch value from server config
+# We use mysqld --verbose --help instead of my_print_defaults because the
+# latter only show values present in config files, and not server defaults
+_get_config() {
+	local conf="$1"; shift
+	"$@" --verbose --help --log-bin-index="$(mktemp -u)" 2>/dev/null | awk '$1 == "'"$conf"'" { print $2; exit }'
+}
+
+# allow the container to be started with `--user`
+if [ "$1" = 'mysqld' -a -z "$wantHelp" -a "$(id -u)" = '0' ]; then
+	_check_config "$@"
+	DATADIR="$(_get_config 'datadir' "$@")"
+	mkdir -p "$DATADIR"
+	chown -R mysql:mysql "$DATADIR"
+	exec gosu mysql "$BASH_SOURCE" "$@"
+fi
+
+if [ "$1" = 'mysqld' -a -z "$wantHelp" ]; then
+	# still need to check config, container may have started with --user
+	_check_config "$@"
+	# Get config
+	DATADIR="$(_get_config 'datadir' "$@")"
+
+	if [ ! -d "$DATADIR/mysql" ]; then
+		file_env 'MYSQL_ROOT_PASSWORD'
+		if [ -z "$MYSQL_ROOT_PASSWORD" -a -z "$MYSQL_ALLOW_EMPTY_PASSWORD" -a -z "$MYSQL_RANDOM_ROOT_PASSWORD" ]; then
+			echo >&2 'error: database is uninitialized and password option is not specified '
+			echo >&2 '  You need to specify one of MYSQL_ROOT_PASSWORD, MYSQL_ALLOW_EMPTY_PASSWORD and MYSQL_RANDOM_ROOT_PASSWORD'
+			exit 1
+		fi
+
+		mkdir -p "$DATADIR"
+
+		echo 'Initializing database'
+		# "Other options are passed to mysqld." (so we pass all "mysqld" arguments directly here)
+		mysql_install_db --datadir="$DATADIR" --rpm "${@:2}"
+		echo 'Database initialized'
+
+		SOCKET="$(_get_config 'socket' "$@")"
+		"$@" --skip-networking --socket="${SOCKET}" &
+		pid="$!"
+
+		mysql=( mysql --protocol=socket -uroot -hlocalhost --socket="${SOCKET}" )
+
+		for i in {30..0}; do
+			if echo 'SELECT 1' | "${mysql[@]}" &> /dev/null; then
+				break
+			fi
+			echo 'MySQL init process in progress...'
+			sleep 1
+		done
+		if [ "$i" = 0 ]; then
+			echo >&2 'MySQL init process failed.'
+			exit 1
+		fi
+
+		if [ -z "$MYSQL_INITDB_SKIP_TZINFO" ]; then
+			# sed is for https://bugs.mysql.com/bug.php?id=20545
+			mysql_tzinfo_to_sql /usr/share/zoneinfo | sed 's/Local time zone must be set--see zic manual page/FCTY/' | "${mysql[@]}" mysql
+		fi
+
+		if [ ! -z "$MYSQL_RANDOM_ROOT_PASSWORD" ]; then
+			export MYSQL_ROOT_PASSWORD="$(pwgen -1 32)"
+			echo "GENERATED ROOT PASSWORD: $MYSQL_ROOT_PASSWORD"
+		fi
+
+		rootCreate=
+		# default root to listen for connections from anywhere
+		file_env 'MYSQL_ROOT_HOST' '%'
+		if [ ! -z "$MYSQL_ROOT_HOST" -a "$MYSQL_ROOT_HOST" != 'localhost' ]; then
+			# no, we don't care if read finds a terminating character in this heredoc
+			# https://unix.stackexchange.com/questions/265149/why-is-set-o-errexit-breaking-this-read-heredoc-expression/265151#265151
+			read -r -d '' rootCreate <<-EOSQL || true
+				CREATE USER 'root'@'${MYSQL_ROOT_HOST}' IDENTIFIED BY '${MYSQL_ROOT_PASSWORD}' ;
+				GRANT ALL ON *.* TO 'root'@'${MYSQL_ROOT_HOST}' WITH GRANT OPTION ;
+			EOSQL
+		fi
+
+		"${mysql[@]}" <<-EOSQL
+			-- What's done in this file shouldn't be replicated
+			--  or products like mysql-fabric won't work
+			SET @@SESSION.SQL_LOG_BIN=0;
+
+			DELETE FROM mysql.user WHERE user NOT IN ('mysql.sys', 'mysqlxsys', 'root') OR host NOT IN ('localhost') ;
+			SET PASSWORD FOR 'root'@'localhost'=PASSWORD('${MYSQL_ROOT_PASSWORD}') ;
+			GRANT ALL ON *.* TO 'root'@'localhost' WITH GRANT OPTION ;
+			${rootCreate}
+			DROP DATABASE IF EXISTS test ;
+			FLUSH PRIVILEGES ;
+		EOSQL
+
+		if [ ! -z "$MYSQL_ROOT_PASSWORD" ]; then
+			mysql+=( -p"${MYSQL_ROOT_PASSWORD}" )
+		fi
+
+		file_env 'MYSQL_DATABASE'
+		if [ "$MYSQL_DATABASE" ]; then
+			echo "CREATE DATABASE IF NOT EXISTS \`$MYSQL_DATABASE\` ;" | "${mysql[@]}"
+			mysql+=( "$MYSQL_DATABASE" )
+		fi
+
+		file_env 'MYSQL_USER'
+		file_env 'MYSQL_PASSWORD'
+		if [ "$MYSQL_USER" -a "$MYSQL_PASSWORD" ]; then
+			echo "CREATE USER '$MYSQL_USER'@'%' IDENTIFIED BY '$MYSQL_PASSWORD' ;" | "${mysql[@]}"
+
+			if [ "$MYSQL_DATABASE" ]; then
+				echo "GRANT ALL ON \`$MYSQL_DATABASE\`.* TO '$MYSQL_USER'@'%' ;" | "${mysql[@]}"
+			fi
+		fi
+
+		echo
+		for f in /docker-entrypoint-initdb.d/*; do
+			case "$f" in
+				*.sh)     echo "$0: running $f"; . "$f" ;;
+				*.sql)    echo "$0: running $f"; "${mysql[@]}" < "$f"; echo ;;
+				*.sql.gz) echo "$0: running $f"; gunzip -c "$f" | "${mysql[@]}"; echo ;;
+				*)        echo "$0: ignoring $f" ;;
+			esac
+			echo
+		done
+
+		if ! kill -s TERM "$pid" || ! wait "$pid"; then
+			echo >&2 'MySQL init process failed.'
+			exit 1
+		fi
+
+		echo
+		echo 'MySQL init process done. Ready for start up.'
+		echo
+	fi
+fi
+
+exec "$@"
diff --git a/data/conf/dovecot/dovecot.conf b/data/conf/dovecot/dovecot.conf
index 5fc0024d..2df625e2 100644
--- a/data/conf/dovecot/dovecot.conf
+++ b/data/conf/dovecot/dovecot.conf
@@ -14,7 +14,7 @@ disable_plaintext_auth = yes
 login_log_format_elements = "user=<%u> method=%m rip=%r lip=%l mpid=%e %c %k"
 mail_home = /var/vmail/%d/%n
 mail_location = maildir:~/
-mail_plugins = quota acl zlib listescape #mail_crypt
+mail_plugins = quota acl zlib listescape mail_crypt mail_crypt_acl
 
 # Dovecot 2.2
 #ssl_protocols = !SSLv3
@@ -223,7 +223,7 @@ service pop3-login {
 }
 service imap {
   executable = imap imap-postlogin
-  user = dovenull
+  user = vmail
   vsz_limit = 256 M
 }
 service managesieve {
@@ -244,11 +244,11 @@ userdb {
 }
 protocol imap {
   imap_metadata = yes
-  mail_plugins = quota imap_quota imap_acl acl zlib imap_zlib imap_sieve listescape #mail_crypt
+  mail_plugins = quota imap_quota imap_acl acl zlib imap_zlib imap_sieve listescape mail_crypt mail_crypt_acl
 }
 mail_attribute_dict = file:%h/dovecot-attributes
 protocol lmtp {
-  mail_plugins = quota sieve acl zlib listescape #mail_crypt
+  mail_plugins = quota sieve acl zlib listescape mail_crypt mail_crypt_acl
   auth_socket_path = /usr/local/var/run/dovecot/auth-master
 }
 protocol sieve {
@@ -288,9 +288,12 @@ plugin {
   sieve_before = dict:proxy::sieve_before;name=active;bindir=/var/vmail/sieve_before_bindir
   sieve_after = dict:proxy::sieve_after;name=active;bindir=/var/vmail/sieve_after_bindir
   sieve_after2 = /var/vmail/sieve/global.sieve
-  #mail_crypt_global_private_key = </mail_crypt/ecprivkey.pem
-  #mail_crypt_global_public_key = </mail_crypt/ecpubkey.pem
-  #mail_crypt_save_version = 2
+
+  # -- Global keys
+  mail_crypt_global_private_key = </mail_crypt/ecprivkey.pem
+  mail_crypt_global_public_key = </mail_crypt/ecpubkey.pem
+  mail_crypt_save_version = 2
+
   # Enable compression while saving, lz4 Dovecot v2.2.11+
   zlib_save = lz4
 }
diff --git a/data/conf/rspamd/custom/sa-rules-heinlein b/data/conf/rspamd/custom/sa-rules-heinlein
new file mode 100644
index 00000000..9e3646c6
--- /dev/null
+++ b/data/conf/rspamd/custom/sa-rules-heinlein
@@ -0,0 +1,10561 @@
+header          __HS_XM_BLAT_311_WIN32 X-Mailer =~ /^Blat v3\.1\.1, a Win32 SMTP\/NNTP mailer http:\/\/www.blat.net/
+header          __HS_XOLE_BLAT_311     X-MimeOLE =~ /Produced by Blat v3\.1\.1/
+meta            HS_HEADER_SPAM_70      (__HS_XM_BLAT_311_WIN32 && __HS_XOLE_BLAT_311)
+score           HS_HEADER_SPAM_70      3.5
+#
+# Heinlein Support -- SpamAssassin Regelsätze
+# Use it as it is.
+#
+#
+body HS_BODY_2		/Unser ING-DIBA Sicherheits Bereich investiert sehr viel Zeit/
+describe HS_BODY_2		Heinlein Support Spamschutz Body-2 
+score HS_BODY_2		5
+
+body HS_BODY_4		/We are the department of Asian Domain Registration Service in China. Here I have something/
+describe HS_BODY_4		Heinlein Support Spamschutz Body-4 
+score HS_BODY_4		5
+
+body HS_BODY_5		/schicken Sie bitte einen Brief auf Violet\@arbeitdeutschland\.com/
+describe HS_BODY_5		Heinlein Support Spamschutz Body-5 
+score HS_BODY_5		5
+
+body HS_BODY_6		/Dear RandomForename_/
+describe HS_BODY_6		Heinlein Support Spamschutz Body-6 
+score HS_BODY_6		5
+
+body HS_BODY_7		/http:\/\/defiteq\.com\/qms\/upload/
+describe HS_BODY_7		Heinlein Support Spamschutz Body-7 
+score HS_BODY_7		5
+
+body HS_BODY_8		/mail\.iphone\.mn/
+describe HS_BODY_8		Heinlein Support Spamschutz Body-8 
+score HS_BODY_8		5
+
+body HS_BODY_9		/http:\/\/www\.safe\-slh\.com/
+describe HS_BODY_9		Heinlein Support Spamschutz Body-9 
+score HS_BODY_9		5
+
+body HS_BODY_10		/Sie konnen Ihre Postsendung in unserer Postabteilung personlich kriegen/
+describe HS_BODY_10		Heinlein Support Spamschutz Body-10 
+score HS_BODY_10		5
+
+body HS_BODY_11		/Sie sollen dieses Postetikett drucken lassen/
+describe HS_BODY_11		Heinlein Support Spamschutz Body-11 
+score HS_BODY_11		5
+
+body HS_BODY_12		/Wenn dies nicht sofort machen Sie Ihre E-Mail-Adresse deaktiviert von unserem Server./
+describe HS_BODY_12		Heinlein Support Spamschutz Body-12 
+score HS_BODY_12		5
+
+body HS_BODY_13		/^Message\-ID:\*\@vps332995\.netsons\.net/
+describe HS_BODY_13		Heinlein Support Spamschutz Body-13 
+score HS_BODY_13		5
+
+body HS_BODY_14		/dildodaddy/
+describe HS_BODY_14		Heinlein Support Spamschutz Body-14 
+score HS_BODY_14		5
+
+body HS_BODY_15		/mehreren fehlgeschlagenen TAN\-Eingeben/
+describe HS_BODY_15		Heinlein Support Spamschutz Body-15 
+score HS_BODY_15		5
+
+body HS_BODY_16		/filename="c\.g\.euromilion\.pdf"/
+describe HS_BODY_16		Heinlein Support Spamschutz Body-16 
+score HS_BODY_16		5
+
+body HS_BODY_17		/^Bei Interesse bitten wir um folgende$/
+describe HS_BODY_17		Heinlein Support Spamschutz Body-17 
+score HS_BODY_17		5
+
+body HS_BODY_18		/palmandmore\.de/
+describe HS_BODY_18		Heinlein Support Spamschutz Body-18 
+score HS_BODY_18		5
+
+body HS_BODY_19		/co\.cc\/aff\/item\.php\?usn=(aeb1|dap1|dvg1)&i=it\_ep&e=admin\@groupon\.de/
+describe HS_BODY_19		Heinlein Support Spamschutz Body-19 
+score HS_BODY_19		5
+
+body HS_BODY_20		/You Are Guaranteed To Get Paid Instantly For Each Email You Process!/
+describe HS_BODY_20		Heinlein Support Spamschutz Body-20 
+score HS_BODY_20		5
+
+body HS_BODY_21		/I (talk|speak) 2 'languages'\. Now i'm 24\. I/
+describe HS_BODY_21		Heinlein Support Spamschutz Body-21 
+score HS_BODY_21		5
+
+body HS_BODY_22		/My nickname \"Kuma\"! :\)/
+describe HS_BODY_22		Heinlein Support Spamschutz Body-22 
+score HS_BODY_22		5
+
+body HS_BODY_23		/http:\/\/free\.fr\/support\/verification\/compte\//
+describe HS_BODY_23		Heinlein Support Spamschutz Body-23 
+score HS_BODY_23		5
+
+body HS_BODY_24		/http:\/\/sonofages\.free\.fr\/images\/LogoCreditMutuel\.png/
+describe HS_BODY_24		Heinlein Support Spamschutz Body-24 
+score HS_BODY_24		5
+
+body HS_BODY_25		/ucc\.edu\.ni/
+describe HS_BODY_25		Heinlein Support Spamschutz Body-25 
+score HS_BODY_25		5
+
+body HS_BODY_26		/7figureincome\.php/
+describe HS_BODY_26		Heinlein Support Spamschutz Body-26 
+score HS_BODY_26		5
+
+body HS_BODY_27		/Cher Client Verified by Visa/
+describe HS_BODY_27		Heinlein Support Spamschutz Body-27 
+score HS_BODY_27		5
+
+body HS_BODY_28		/^From: "Topillen Apotheke" /
+describe HS_BODY_28		Heinlein Support Spamschutz Body-28 
+score HS_BODY_28		5
+
+body HS_BODY_29		/^Aufgrund mehrerer Phishing Versuche, unsere Visa und Mastercard/
+describe HS_BODY_29		Heinlein Support Spamschutz Body-29 
+score HS_BODY_29		5
+
+body HS_BODY_30		/^ Phishing Departament/
+describe HS_BODY_30		Heinlein Support Spamschutz Body-30 
+score HS_BODY_30		5
+
+body HS_BODY_31		/We wish to invest between \$5Million\-\$100Million in any viable projects/
+describe HS_BODY_31		Heinlein Support Spamschutz Body-31 
+score HS_BODY_31		5
+
+body HS_BODY_32		/God bless you as you get back to me/
+describe HS_BODY_32		Heinlein Support Spamschutz Body-32 
+score HS_BODY_32		5
+
+body HS_BODY_33		/www\.(b|B)ien(e|E)tremag\.com/
+describe HS_BODY_33		Heinlein Support Spamschutz Body-33 
+score HS_BODY_33		5
+
+body HS_BODY_34		/Sehr geehrte Sparkasse Card/
+describe HS_BODY_34		Heinlein Support Spamschutz Body-34 
+score HS_BODY_34		5
+
+body HS_BODY_35		/zigaretten\-discount\.info/
+describe HS_BODY_35		Heinlein Support Spamschutz Body-35 
+score HS_BODY_35		5
+
+body HS_BODY_36		/zigaretten\-discount[punkt]info/
+describe HS_BODY_36		Heinlein Support Spamschutz Body-36 
+score HS_BODY_36		5
+
+body HS_BODY_37		/Guten Tag Mitglied [0-9]{5}/
+describe HS_BODY_37		Heinlein Support Spamschutz Body-37 
+score HS_BODY_37		5
+
+body HS_BODY_38		/elenx\.innovacon\.com\/\.e\/e\.php/
+describe HS_BODY_38		Heinlein Support Spamschutz Body-38 
+score HS_BODY_38		5
+
+body HS_BODY_39		/www\.sniperrs\.de\/modules\/Forums\/admin/
+describe HS_BODY_39		Heinlein Support Spamschutz Body-39 
+score HS_BODY_39		5
+
+body HS_BODY_40		/boxneufnet\.com\/id\/oragne\.fr\/Identifiant/
+describe HS_BODY_40		Heinlein Support Spamschutz Body-40 
+score HS_BODY_40		5
+
+body HS_BODY_41		/www\.colellsa\.com\/img\/quienes\/pabo\/paypal\-fr/
+describe HS_BODY_41		Heinlein Support Spamschutz Body-41 
+score HS_BODY_41		5
+
+body HS_BODY_42		/dekmor\.cmu\.ac\.th\/sticker\/upload\/Logs\/Login\/webscrcmd/
+describe HS_BODY_42		Heinlein Support Spamschutz Body-42 
+score HS_BODY_42		5
+
+body HS_BODY_43		/ektoschronou\.com/
+describe HS_BODY_43		Heinlein Support Spamschutz Body-43 
+score HS_BODY_43		5
+
+body HS_BODY_44		/ulouwaio\.com/
+describe HS_BODY_44		Heinlein Support Spamschutz Body-44 
+score HS_BODY_44		5
+
+body HS_BODY_45		/logonature\.com\.nu/
+describe HS_BODY_45		Heinlein Support Spamschutz Body-45 
+score HS_BODY_45		5
+
+body HS_BODY_46		/suinlop\.com/
+describe HS_BODY_46		Heinlein Support Spamschutz Body-46 
+score HS_BODY_46		5
+
+body HS_BODY_47		/soudoorpo\.com/
+describe HS_BODY_47		Heinlein Support Spamschutz Body-47 
+score HS_BODY_47		5
+
+body HS_BODY_48		/GOOGLE AUSSTATTUNGSFONDS 20.?.? GEWINNER ANMELDEFORMULAR FUER ZAHLUNG/
+describe HS_BODY_48		Heinlein Support Spamschutz Body-48 
+score HS_BODY_48		5
+
+body HS_BODY_49		/Anbieter: Privacy GG Limited, 99 Albert Street, Belize City, CA/
+describe HS_BODY_49		Heinlein Support Spamschutz Body-49 
+score HS_BODY_49		5
+
+body HS_BODY_50		/^Die Nachricht wurde durch Interads 24 Ltd/
+describe HS_BODY_50		Heinlein Support Spamschutz Body-50 
+score HS_BODY_50		5
+
+body HS_BODY_51		/www\.sommer\-mit\-kollegen\.de/
+describe HS_BODY_51		Heinlein Support Spamschutz Body-51 
+score HS_BODY_51		5
+
+body HS_BODY_52		/^www.*\/ausa$/
+describe HS_BODY_52		Heinlein Support Spamschutz Body-52 
+score HS_BODY_52		5
+
+body HS_BODY_53		/KlickTel Telefonbuch OEM/
+describe HS_BODY_53		Heinlein Support Spamschutz Body-53 
+score HS_BODY_53		5
+
+body HS_BODY_54		/www\.klicktel24\.org/
+describe HS_BODY_54		Heinlein Support Spamschutz Body-54 
+score HS_BODY_54		5
+
+body HS_BODY_56		/maryjanemax\@yahoo\.co\.uk/
+describe HS_BODY_56		Heinlein Support Spamschutz Body-56 
+score HS_BODY_56		5
+
+body HS_BODY_57		/http\.*muqugeh\.cn/
+describe HS_BODY_57		Heinlein Support Spamschutz Body-57 
+score HS_BODY_57		5
+
+body HS_BODY_59		/INTERNATIONAL LOTTERIE PROMOTION SPIELGEMEINSCHAFT/
+describe HS_BODY_59		Heinlein Support Spamschutz Body-59 
+score HS_BODY_59		5
+
+body HS_BODY_60		/Leider st=F6ren Sie.=20/
+describe HS_BODY_60		Heinlein Support Spamschutz Body-60 
+score HS_BODY_60		5
+
+body HS_BODY_61		/Sie haben dieses Email erhalten, weil Sie im Newsletter von Promohouse Ltd eingetragen sind/
+describe HS_BODY_61		Heinlein Support Spamschutz Body-61 
+score HS_BODY_61		5
+
+body HS_BODY_62		/ATTN: Beneficiar/
+describe HS_BODY_62		Heinlein Support Spamschutz Body-62 
+score HS_BODY_62		5
+
+body HS_BODY_63		/www\.hedonismails\.de/
+describe HS_BODY_63		Heinlein Support Spamschutz Body-63 
+score HS_BODY_63		5
+
+body HS_BODY_64		/www\.globadressen\.(com|net|org|info)/
+describe HS_BODY_64		Heinlein Support Spamschutz Body-64 
+score HS_BODY_64		5
+
+body HS_BODY_65		/elegalal\.nextmail\.ru/
+describe HS_BODY_65		Heinlein Support Spamschutz Body-65 
+score HS_BODY_65		5
+
+body HS_BODY_66		/www\.switzerlandpussy\.eu/
+describe HS_BODY_66		Heinlein Support Spamschutz Body-66 
+score HS_BODY_66		5
+
+body HS_BODY_67		/Die jungen Girls fliegen nur so auf die langen/
+describe HS_BODY_67		Heinlein Support Spamschutz Body-67 
+score HS_BODY_67		5
+
+body HS_BODY_68		/\*\*\*\* Commercial use of this software is prohibited \*\*\*\*/
+describe HS_BODY_68		Heinlein Support Spamschutz Body-68 
+score HS_BODY_68		5
+
+body HS_BODY_69		/I finded your email in internet and I decide to ask you for help/
+describe HS_BODY_69		Heinlein Support Spamschutz Body-69 
+score HS_BODY_69		5
+
+body HS_BODY_70		/Details und moegliche Schritte zur Entsperrung finden Sie/
+describe HS_BODY_70		Heinlein Support Spamschutz Body-70 
+score HS_BODY_70		5
+
+body HS_BODY_71		/^Amount Won:/
+describe HS_BODY_71		Heinlein Support Spamschutz Body-71 
+score HS_BODY_71		5
+
+body HS_BODY_72		/AWARD WINNING NOTICE/
+describe HS_BODY_72		Heinlein Support Spamschutz Body-72 
+score HS_BODY_72		5
+
+body HS_BODY_73		/mixvarejo\.com/
+describe HS_BODY_73		Heinlein Support Spamschutz Body-73 
+score HS_BODY_73		5
+
+body HS_BODY_74		/www\.global\-db\.(com|net|org)/
+describe HS_BODY_74		Heinlein Support Spamschutz Body-74 
+score HS_BODY_74		5
+
+body HS_BODY_75		/^I am Barrister/
+describe HS_BODY_75		Heinlein Support Spamschutz Body-75 
+score HS_BODY_75		5
+
+body HS_BODY_76		/respublica\@gaucherepublicaine\.org/
+describe HS_BODY_76		Heinlein Support Spamschutz Body-76 
+score HS_BODY_76		5
+
+body HS_BODY_77		/NEU - Vi Super Active/
+describe HS_BODY_77		Heinlein Support Spamschutz Body-77 
+score HS_BODY_77		5
+
+body HS_BODY_78		/anhaltende Versagensangste und wiederholte peinliche Situationen/
+describe HS_BODY_78		Heinlein Support Spamschutz Body-78 
+score HS_BODY_78		5
+
+body HS_BODY_79		/Schulfreunde Vermittlungs Service AG/
+describe HS_BODY_79		Heinlein Support Spamschutz Body-79 
+score HS_BODY_79		5
+
+body HS_BODY_80		/Multimedia Telegramm/
+describe HS_BODY_80		Heinlein Support Spamschutz Body-80 
+score HS_BODY_80		5
+
+body HS_BODY_81		/http.*\.fdub\.biz/
+describe HS_BODY_81		Heinlein Support Spamschutz Body-81 
+score HS_BODY_81		5
+
+body HS_BODY_82		/TanjaGuenther/
+describe HS_BODY_82		Heinlein Support Spamschutz Body-82 
+score HS_BODY_82		5
+
+body HS_BODY_83		/www\.bestnetz24\.de\/letter\/ausgabe\.php/
+describe HS_BODY_83		Heinlein Support Spamschutz Body-83 
+score HS_BODY_83		5
+
+body HS_BODY_84		/www\.db\.?adressen\.(com|net|org|info)/
+describe HS_BODY_84		Heinlein Support Spamschutz Body-84 
+score HS_BODY_84		5
+
+body HS_BODY_85		/thomas\@jthomas\.es/
+describe HS_BODY_85		Heinlein Support Spamschutz Body-85 
+score HS_BODY_85		5
+
+body HS_BODY_86		/Ihre Marketing Agentur Espa/
+describe HS_BODY_86		Heinlein Support Spamschutz Body-86 
+score HS_BODY_86		5
+
+body HS_BODY_87		/www\.pakandu\.com/
+describe HS_BODY_87		Heinlein Support Spamschutz Body-87 
+score HS_BODY_87		5
+
+body HS_BODY_88		/Glob.?.?.?(C|K)ontact.?.?.?Team/
+describe HS_BODY_88		Heinlein Support Spamschutz Body-88 
+score HS_BODY_88		5
+
+body HS_BODY_89		/www.gc.?datenbaken.(com|net|org|info)/
+describe HS_BODY_89		Heinlein Support Spamschutz Body-89 
+score HS_BODY_89		5
+
+body HS_BODY_90		/www.glc-?data.(com|net|org|info)/
+describe HS_BODY_90		Heinlein Support Spamschutz Body-90 
+score HS_BODY_90		5
+
+body HS_BODY_91		/Global.?(C|K)ontact/
+describe HS_BODY_91		Heinlein Support Spamschutz Body-91 
+score HS_BODY_91		5
+
+body HS_BODY_92		/www\.imarketing\.com\.br\.remove/
+describe HS_BODY_92		Heinlein Support Spamschutz Body-92 
+score HS_BODY_92		5
+
+body HS_BODY_93		/Bestellen Sie jetzt und vergessen Sie Ihre Enttauschungen/
+describe HS_BODY_93		Heinlein Support Spamschutz Body-93 
+score HS_BODY_93		5
+
+body HS_BODY_94		/Online Apotheke - original Qualitaet/
+describe HS_BODY_94		Heinlein Support Spamschutz Body-94 
+score HS_BODY_94		5
+
+body HS_BODY_95		/Wir wissen was Frauen wollern/
+describe HS_BODY_95		Heinlein Support Spamschutz Body-95 
+score HS_BODY_95		5
+
+body HS_BODY_96		/Viiiiaaaaaagra/
+describe HS_BODY_96		Heinlein Support Spamschutz Body-96 
+score HS_BODY_96		5
+
+body HS_BODY_97		/Web: www\.eurasianpages\. com/
+describe HS_BODY_97		Heinlein Support Spamschutz Body-97 
+score HS_BODY_97		5
+
+body HS_BODY_98		/^Firma Global Contact bietet Ihnen/
+describe HS_BODY_98		Heinlein Support Spamschutz Body-98 
+score HS_BODY_98		5
+
+body HS_BODY_99		/www\.g\-adressen\.net/
+describe HS_BODY_99		Heinlein Support Spamschutz Body-99 
+score HS_BODY_99		5
+
+body HS_BODY_100		/NIEMALS geben Sie Ihre Passw.rter an niemanden NUR und melden Sie sich/
+describe HS_BODY_100		Heinlein Support Spamschutz Body-100 
+score HS_BODY_100		5
+
+body HS_BODY_101		/www\.loteria\.es/
+describe HS_BODY_101		Heinlein Support Spamschutz Body-101 
+score HS_BODY_101		5
+
+body HS_BODY_106		/^Ein Dienst der IT4YOU AG, Friedrichstrasse 171, Berlin - Mitte als/
+describe HS_BODY_106		Heinlein Support Spamschutz Body-106 
+score HS_BODY_106		5
+
+body HS_BODY_107		/^www\.cdtophit\.org/
+describe HS_BODY_107		Heinlein Support Spamschutz Body-107 
+score HS_BODY_107		5
+
+body HS_BODY_108		/http:\/\/www\.doenertreff\.de/
+describe HS_BODY_108		Heinlein Support Spamschutz Body-108 
+score HS_BODY_108		5
+
+body HS_BODY_109		/Brauchen Sie noch einen Grund um zu Vegas VIP Casino/
+describe HS_BODY_109		Heinlein Support Spamschutz Body-109 
+score HS_BODY_109		5
+
+body HS_BODY_110		/glob\-contact\.net$/
+describe HS_BODY_110		Heinlein Support Spamschutz Body-110 
+score HS_BODY_110		5
+
+body HS_BODY_111		/^Ihr Glob\-Kontakt\-Team$/
+describe HS_BODY_111		Heinlein Support Spamschutz Body-111 
+score HS_BODY_111		5
+
+body HS_BODY_112		/www\.feilervision\.de/
+describe HS_BODY_112		Heinlein Support Spamschutz Body-112 
+score HS_BODY_112		5
+
+body HS_BODY_113		/DER INVESTORALARM!/
+describe HS_BODY_113		Heinlein Support Spamschutz Body-113 
+score HS_BODY_113		5
+
+body HS_BODY_114		/ES IST EIN UNGLAUBLICHES PROFITPOTENTIAL! VERLIERE DIESE CHANCE NICHT!/
+describe HS_BODY_114		Heinlein Support Spamschutz Body-114 
+score HS_BODY_114		5
+
+body HS_BODY_115		/I work very hard every day to be able to buy necessities for my mother/
+describe HS_BODY_115		Heinlein Support Spamschutz Body-115 
+score HS_BODY_115		5
+
+body HS_BODY_116		/THE FREELOTTO COMPANY/
+describe HS_BODY_116		Heinlein Support Spamschutz Body-116 
+score HS_BODY_116		5
+
+body HS_BODY_117		/BreakingMrktNews/
+describe HS_BODY_117		Heinlein Support Spamschutz Body-117 
+score HS_BODY_117		5
+
+body HS_BODY_118		/China Media Crop OTC\.BB CHMD/
+describe HS_BODY_118		Heinlein Support Spamschutz Body-118 
+score HS_BODY_118		5
+
+body HS_BODY_119		/Weltweit gilt das nummerierte TAN\-Verfahren als eines der sicherste/
+describe HS_BODY_119		Heinlein Support Spamschutz Body-119 
+score HS_BODY_119		5
+
+body HS_BODY_120		/^Marion Beckera/
+describe HS_BODY_120		Heinlein Support Spamschutz Body-120 
+score HS_BODY_120		5
+
+body HS_BODY_121		/Zwecks abschlie&szlig;ende Zustimmung f&uuml;r deine Verhandlung zur/
+describe HS_BODY_121		Heinlein Support Spamschutz Body-121 
+score HS_BODY_121		5
+
+body HS_BODY_122		/annullieren deine on\-line &Uuml;bertragung&reg; Dienstleistungen\./
+describe HS_BODY_122		Heinlein Support Spamschutz Body-122 
+score HS_BODY_122		5
+
+body HS_BODY_123		/www\.internetloginuser\.info/
+describe HS_BODY_123		Heinlein Support Spamschutz Body-123 
+score HS_BODY_123		5
+
+body HS_BODY_124		/realsevgi\.com/
+describe HS_BODY_124		Heinlein Support Spamschutz Body-124 
+score HS_BODY_124		5
+
+body HS_BODY_126		/Oder Ihr Provider hat die Mail falsch weiter geleitet!?/
+describe HS_BODY_126		Heinlein Support Spamschutz Body-126 
+score HS_BODY_126		5
+
+body HS_BODY_127		/Versatel\-Attachment\-Warning\.txt/
+describe HS_BODY_127		Heinlein Support Spamschutz Body-127 
+score HS_BODY_127		5
+
+body HS_BODY_128		/www=2Eanaforturizm=2Ecom/
+describe HS_BODY_128		Heinlein Support Spamschutz Body-128 
+score HS_BODY_128		5
+
+body HS_BODY_129		/www\.anaforturizm\.com/
+describe HS_BODY_129		Heinlein Support Spamschutz Body-129 
+score HS_BODY_129		5
+
+body HS_BODY_131		/^jpberlin\.de support team\./
+describe HS_BODY_131		Heinlein Support Spamschutz Body-131 
+score HS_BODY_131		5
+
+body HS_BODY_132		/You have successfully updated the password of your Jpberlin account/
+describe HS_BODY_132		Heinlein Support Spamschutz Body-132 
+score HS_BODY_132		5
+
+body HS_BODY_133		/www\.ru4mailnow\.com/
+describe HS_BODY_133		Heinlein Support Spamschutz Body-133 
+score HS_BODY_133		5
+
+body HS_BODY_134		/EXPLOSIVE PICK FOR OUR MEMBERS/
+describe HS_BODY_134		Heinlein Support Spamschutz Body-134 
+score HS_BODY_134		5
+
+body HS_BODY_135		/AntiVirus-System: Kein Virus erkannt/
+describe HS_BODY_135		Heinlein Support Spamschutz Body-135 
+score HS_BODY_135		5
+
+body HS_BODY_136		/\-\-\- FIFA Fussball\-Weltmeisterschaft 2006/
+describe HS_BODY_136		Heinlein Support Spamschutz Body-136 
+score HS_BODY_136		5
+
+body HS_BODY_137		/ankara\@ankararentacar\.de/
+describe HS_BODY_137		Heinlein Support Spamschutz Body-137 
+score HS_BODY_137		5
+
+body HS_BODY_138		/Replica Watch Models/
+describe HS_BODY_138		Heinlein Support Spamschutz Body-138 
+score HS_BODY_138		5
+
+body HS_BODY_139		/Diadem Travel/
+describe HS_BODY_139		Heinlein Support Spamschutz Body-139 
+score HS_BODY_139		5
+
+body HS_BODY_140		/Let the search engine experts compete/
+describe HS_BODY_140		Heinlein Support Spamschutz Body-140 
+score HS_BODY_140		5
+
+body HS_BODY_141		/http:\/\/www\.ehmig\.net\/web_mailer/
+describe HS_BODY_141		Heinlein Support Spamschutz Body-141 
+score HS_BODY_141		5
+
+body HS_BODY_142		/http:\/\/real\.slon\.biz/
+describe HS_BODY_142		Heinlein Support Spamschutz Body-142 
+score HS_BODY_142		5
+
+body HS_BODY_144		/www\.inverz\.net/
+describe HS_BODY_144		Heinlein Support Spamschutz Body-144 
+score HS_BODY_144		5
+
+body HS_BODY_145		/We recommend you to follow the instructions in order to keep your computer safe./
+describe HS_BODY_145		Heinlein Support Spamschutz Body-145 
+score HS_BODY_145		5
+
+body HS_BODY_146		/Sieh Dir einfach mal ein Video an und mach dann gleich ein Treffen/
+describe HS_BODY_146		Heinlein Support Spamschutz Body-146 
+score HS_BODY_146		5
+
+body HS_BODY_147		/ CIALIS /
+describe HS_BODY_147		Heinlein Support Spamschutz Body-147 
+score HS_BODY_147		5
+
+body HS_BODY_148		/www\.galamed\.biz/
+describe HS_BODY_148		Heinlein Support Spamschutz Body-148 
+score HS_BODY_148		5
+
+body HS_BODY_149		/Starts working in less than 15 min\./
+describe HS_BODY_149		Heinlein Support Spamschutz Body-149 
+score HS_BODY_149		5
+
+body HS_BODY_150		/Adipren720/
+describe HS_BODY_150		Heinlein Support Spamschutz Body-150 
+score HS_BODY_150		5
+
+body HS_BODY_151		/www\.lending\-home\.com/
+describe HS_BODY_151		Heinlein Support Spamschutz Body-151 
+score HS_BODY_151		5
+
+body HS_BODY_152		/bigbonus\-casino\.com/
+describe HS_BODY_152		Heinlein Support Spamschutz Body-152 
+score HS_BODY_152		5
+
+body HS_BODY_153		/Ich hab die ultimative Seite.*dich, klick doch mal an!/
+describe HS_BODY_153		Heinlein Support Spamschutz Body-153 
+score HS_BODY_153		5
+
+body HS_BODY_154		/www\.server42\.com/
+describe HS_BODY_154		Heinlein Support Spamschutz Body-154 
+score HS_BODY_154		5
+
+body HS_BODY_155		/seo\-profits\.com/
+describe HS_BODY_155		Heinlein Support Spamschutz Body-155 
+score HS_BODY_155		5
+
+body HS_BODY_156		/Have a great web site, but no one knows it even/
+describe HS_BODY_156		Heinlein Support Spamschutz Body-156 
+score HS_BODY_156		5
+
+body HS_BODY_157		/REVERZ.*D\-INFO/
+describe HS_BODY_157		Heinlein Support Spamschutz Body-157 
+score HS_BODY_157		5
+
+body HS_BODY_158		/D\-INFO.*REVERZ/
+describe HS_BODY_158		Heinlein Support Spamschutz Body-158 
+score HS_BODY_158		5
+
+body HS_BODY_159		/greatmaleenhancement\.biz/
+describe HS_BODY_159		Heinlein Support Spamschutz Body-159 
+score HS_BODY_159		5
+
+body HS_BODY_161		/ Vic(o|0)din /
+describe HS_BODY_161		Heinlein Support Spamschutz Body-161 
+score HS_BODY_161		5
+
+body HS_BODY_162		/ Hydr(o|0)c(o|0)d(o|0)ne /
+describe HS_BODY_162		Heinlein Support Spamschutz Body-162 
+score HS_BODY_162		5
+
+body HS_BODY_163		/ V1agra /
+describe HS_BODY_163		Heinlein Support Spamschutz Body-163 
+score HS_BODY_163		5
+
+body HS_BODY_164		/warehousefull\.com/
+describe HS_BODY_164		Heinlein Support Spamschutz Body-164 
+score HS_BODY_164		5
+
+body HS_BODY_165		/No doctor visit needed/
+describe HS_BODY_165		Heinlein Support Spamschutz Body-165 
+score HS_BODY_165		5
+
+body HS_BODY_166		/KLICKTEL KENNT SIE!/
+describe HS_BODY_166		Heinlein Support Spamschutz Body-166 
+score HS_BODY_166		5
+
+body HS_BODY_167		/^www\.femo\-online\.de/
+describe HS_BODY_167		Heinlein Support Spamschutz Body-167 
+score HS_BODY_167		5
+
+body HS_BODY_168		/www\.land\-ua\.com/
+describe HS_BODY_168		Heinlein Support Spamschutz Body-168 
+score HS_BODY_168		5
+
+body HS_BODY_169		/Come to Loqozine/
+describe HS_BODY_169		Heinlein Support Spamschutz Body-169 
+score HS_BODY_169		5
+
+body HS_BODY_170		/www\.gord\.us/
+describe HS_BODY_170		Heinlein Support Spamschutz Body-170 
+score HS_BODY_170		5
+
+body HS_BODY_171		/www\.reverz\.org/
+describe HS_BODY_171		Heinlein Support Spamschutz Body-171 
+score HS_BODY_171		5
+
+body HS_BODY_172		/wonderfulaction\.com/
+describe HS_BODY_172		Heinlein Support Spamschutz Body-172 
+score HS_BODY_172		5
+
+body HS_BODY_173		/At our pharmacy we offer/
+describe HS_BODY_173		Heinlein Support Spamschutz Body-173 
+score HS_BODY_173		5
+
+body HS_BODY_174		/Was ist besser als eine fette Ladung Sahne/
+describe HS_BODY_174		Heinlein Support Spamschutz Body-174 
+score HS_BODY_174		5
+
+body HS_BODY_175		/www\.surerxmed\.com/
+describe HS_BODY_175		Heinlein Support Spamschutz Body-175 
+score HS_BODY_175		5
+
+body HS_BODY_176		/www\.surerxpills\.com/
+describe HS_BODY_176		Heinlein Support Spamschutz Body-176 
+score HS_BODY_176		5
+
+body HS_BODY_177		/www\.stifyems\.com/
+describe HS_BODY_177		Heinlein Support Spamschutz Body-177 
+score HS_BODY_177		5
+
+body HS_BODY_178		/www\.diatrus\.com/
+describe HS_BODY_178		Heinlein Support Spamschutz Body-178 
+score HS_BODY_178		5
+
+body HS_BODY_179		/CITYNETT\-NEWSLETTER/
+describe HS_BODY_179		Heinlein Support Spamschutz Body-179 
+score HS_BODY_179		5
+
+body HS_BODY_180		/Note: *Use *password/
+describe HS_BODY_180		Heinlein Support Spamschutz Body-180 
+score HS_BODY_180		5
+
+body HS_BODY_181		/ will be disabled because of improper using/
+describe HS_BODY_181		Heinlein Support Spamschutz Body-181 
+score HS_BODY_181		5
+
+body HS_BODY_182		/i.*don.*like.*the*.plaintext/
+describe HS_BODY_182		Heinlein Support Spamschutz Body-182 
+score HS_BODY_182		5
+
+body HS_BODY_183		/archive *password/
+describe HS_BODY_183		Heinlein Support Spamschutz Body-183 
+score HS_BODY_183		5
+
+body HS_BODY_184		/The *Attac\.org *team/
+describe HS_BODY_184		Heinlein Support Spamschutz Body-184 
+score HS_BODY_184		5
+
+body HS_BODY_185		/The *Attac\.de *team/
+describe HS_BODY_185		Heinlein Support Spamschutz Body-185 
+score HS_BODY_185		5
+
+body HS_BODY_186		/The *Attac\-netzwerk\.de *team/
+describe HS_BODY_186		Heinlein Support Spamschutz Body-186 
+score HS_BODY_186		5
+
+body HS_BODY_187		/The *Jpberlin\.de *team/
+describe HS_BODY_187		Heinlein Support Spamschutz Body-187 
+score HS_BODY_187		5
+
+body HS_BODY_188		/Our main mailing server/
+describe HS_BODY_188		Heinlein Support Spamschutz Body-188 
+score HS_BODY_188		5
+
+body HS_BODY_189		/please update your profile at Billing Center/
+describe HS_BODY_189		Heinlein Support Spamschutz Body-189 
+score HS_BODY_189		5
+
+body HS_BODY_190		/WSEAS will reply to you/
+describe HS_BODY_190		Heinlein Support Spamschutz Body-190 
+score HS_BODY_190		5
+
+body HS_BODY_191		/de\.componentsengine\.net/
+describe HS_BODY_191		Heinlein Support Spamschutz Body-191 
+score HS_BODY_191		5
+
+body HS_BODY_192		/List von Components Engine eingetragen/
+describe HS_BODY_192		Heinlein Support Spamschutz Body-192 
+score HS_BODY_192		5
+
+body HS_BODY_193		/Muzenda der ?teste Sohn von Paul Muzenda bin , einem Farmer in Simba/
+describe HS_BODY_193		Heinlein Support Spamschutz Body-193 
+score HS_BODY_193		5
+
+body HS_BODY_194		/Alles fr die Autorennbahn/
+describe HS_BODY_194		Heinlein Support Spamschutz Body-194 
+score HS_BODY_194		5
+
+body HS_BODY_195		/Der Wurm nennt sich selbst "ODIN" und konnte sich bist jetzt/
+describe HS_BODY_195		Heinlein Support Spamschutz Body-195 
+score HS_BODY_195		5
+
+body HS_BODY_196		/Der Meister unter den Druckprogrammen: PRINTMASTER 8 GOLD/
+describe HS_BODY_196		Heinlein Support Spamschutz Body-196 
+score HS_BODY_196		5
+
+body HS_BODY_197		/Stellen Sie sich vor, Sie kaufen ein Produkt oder eine Dienstleistung im/
+describe HS_BODY_197		Heinlein Support Spamschutz Body-197 
+score HS_BODY_197		5
+
+body HS_BODY_198		/So finden Sie blitzschnell den NAMEN und ADRESS-EINTRAG zu jeder/
+describe HS_BODY_198		Heinlein Support Spamschutz Body-198 
+score HS_BODY_198		5
+
+body HS_BODY_199		/eptember 2003, Cumulative Patch/
+describe HS_BODY_199		Heinlein Support Spamschutz Body-199 
+score HS_BODY_199		5
+
+body HS_BODY_200		/Ich bin gerade vor einem neuen.*sehr gef?rlichen V.rus gewarnt/
+describe HS_BODY_200		Heinlein Support Spamschutz Body-200 
+score HS_BODY_200		5
+
+body HS_BODY_201		/exklusives virtuelles Gratis-Rubbellos welches Sie gleich jetzt live mit/
+describe HS_BODY_201		Heinlein Support Spamschutz Body-201 
+score HS_BODY_201		5
+
+body HS_BODY_202		/Willkommen beim Lucky7Casino/
+describe HS_BODY_202		Heinlein Support Spamschutz Body-202 
+score HS_BODY_202		5
+
+body HS_BODY_203		/heutzutage spielen Kontakte und Adressdaten eine immer wichtigere Rolle./
+describe HS_BODY_203		Heinlein Support Spamschutz Body-203 
+score HS_BODY_203		5
+
+body HS_BODY_204		/REVERZ anhand des Datenbestands der D-Info den gesuchten/
+describe HS_BODY_204		Heinlein Support Spamschutz Body-204 
+score HS_BODY_204		5
+
+body HS_BODY_205		/www\.privatseitennetz\.com/
+describe HS_BODY_205		Heinlein Support Spamschutz Body-205 
+score HS_BODY_205		5
+
+body HS_BODY_206		/Outlook and Outlook Express as well as five newly/
+describe HS_BODY_206		Heinlein Support Spamschutz Body-206 
+score HS_BODY_206		5
+
+body HS_BODY_207		/delog\@cip\.informatik\.uni\-wuerzburg\.de/
+describe HS_BODY_207		Heinlein Support Spamschutz Body-207 
+score HS_BODY_207		5
+
+body HS_BODY_208		/credit\.hostfree2003\.com/
+describe HS_BODY_208		Heinlein Support Spamschutz Body-208 
+score HS_BODY_208		5
+
+body HS_BODY_209		/www\.mediabiz\.de\.ewmail/
+describe HS_BODY_209		Heinlein Support Spamschutz Body-209 
+score HS_BODY_209		5
+
+body HS_BODY_210		/Want to boost your sales with Internet/
+describe HS_BODY_210		Heinlein Support Spamschutz Body-210 
+score HS_BODY_210		5
+
+body HS_BODY_211		/talente\.tripod\.com\.br/
+describe HS_BODY_211		Heinlein Support Spamschutz Body-211 
+score HS_BODY_211		5
+
+body HS_BODY_212		/schlechte Schufa-Auskunft? Bonit?sprobleme? Dann w?len Sie doch/
+describe HS_BODY_212		Heinlein Support Spamschutz Body-212 
+score HS_BODY_212		5
+
+body HS_BODY_213		/Diese Liste von Banken, Sparkassen Volks- und Raiffeisenbanken OHNE Schufa-Anschluss finden Sie nicht/
+describe HS_BODY_213		Heinlein Support Spamschutz Body-213 
+score HS_BODY_213		5
+
+body HS_BODY_214		/Gute Nachrichten\. Gerade habe ich die geile "FickShow" gefunden:/
+describe HS_BODY_214		Heinlein Support Spamschutz Body-214 
+score HS_BODY_214		5
+
+body HS_BODY_216		/Create Professional 3D Page\-Tuning/
+describe HS_BODY_216		Heinlein Support Spamschutz Body-216 
+score HS_BODY_216		5
+
+body HS_BODY_217		/SEXKONTAKTE ONLINE/
+describe HS_BODY_217		Heinlein Support Spamschutz Body-217 
+score HS_BODY_217		5
+
+body HS_BODY_218		/FREE Access to.*adult.*sites/
+describe HS_BODY_218		Heinlein Support Spamschutz Body-218 
+score HS_BODY_218		5
+
+body HS_BODY_219		/web\-supermarket\.com/
+describe HS_BODY_219		Heinlein Support Spamschutz Body-219 
+score HS_BODY_219		5
+
+body HS_BODY_220		/Wir haben ihre Adresse durch eines unserer Partnerunternehmen/
+describe HS_BODY_220		Heinlein Support Spamschutz Body-220 
+score HS_BODY_220		5
+
+body HS_BODY_221		/herbal\-place\.com/
+describe HS_BODY_221		Heinlein Support Spamschutz Body-221 
+score HS_BODY_221		5
+
+body HS_BODY_222		/GIO DIET\-CAPS greifen hier ein durch:/
+describe HS_BODY_222		Heinlein Support Spamschutz Body-222 
+score HS_BODY_222		5
+
+body HS_BODY_223		/These are Free Cash Grants That you NEVER have to repay/
+describe HS_BODY_223		Heinlein Support Spamschutz Body-223 
+score HS_BODY_223		5
+
+body HS_BODY_224		/Wir haben unseren Zugang neu upgedadet/
+describe HS_BODY_224		Heinlein Support Spamschutz Body-224 
+score HS_BODY_224		5
+
+body HS_BODY_225		/Jemand der Dich sehr gut kennt wuerde gern ein Treffen mit Dir/
+describe HS_BODY_225		Heinlein Support Spamschutz Body-225 
+score HS_BODY_225		5
+
+body HS_BODY_226		/Wenn Du wissen willst wer Dich treffen moechte/
+describe HS_BODY_226		Heinlein Support Spamschutz Body-226 
+score HS_BODY_226		5
+
+body HS_BODY_227		/You Have Won a FREEE/
+describe HS_BODY_227		Heinlein Support Spamschutz Body-227 
+score HS_BODY_227		5
+
+body HS_BODY_228		/Click Here For All Your Favorite Pornstars/
+describe HS_BODY_228		Heinlein Support Spamschutz Body-228 
+score HS_BODY_228		5
+
+body HS_BODY_229		/Year the U\.S\. Government Gives away BILLIONS in cash grants/
+describe HS_BODY_229		Heinlein Support Spamschutz Body-229 
+score HS_BODY_229		5
+
+body HS_BODY_230		/Banken ohne Schufa\-Auskunft/
+describe HS_BODY_230		Heinlein Support Spamschutz Body-230 
+score HS_BODY_230		5
+
+body HS_BODY_231		/Probleme mit der Schufa/
+describe HS_BODY_231		Heinlein Support Spamschutz Body-231 
+score HS_BODY_231		5
+
+body HS_BODY_232		/Laden Sie sich jetzt unsere kostenlose Zugangssoftware runter/
+describe HS_BODY_232		Heinlein Support Spamschutz Body-232 
+score HS_BODY_232		5
+
+body HS_BODY_233		/Genocide Is A Black\-And\-White Concept/
+describe HS_BODY_233		Heinlein Support Spamschutz Body-233 
+score HS_BODY_233		5
+
+body HS_BODY_234		/So viele Wuensche auf einmal/
+describe HS_BODY_234		Heinlein Support Spamschutz Body-234 
+score HS_BODY_234		5
+
+body HS_BODY_235		/diese Mail ist kein SPAM/
+describe HS_BODY_235		Heinlein Support Spamschutz Body-235 
+score HS_BODY_235		5
+
+body HS_BODY_236		/Sch.*ne Gr.*e von Lucky Casino/
+describe HS_BODY_236		Heinlein Support Spamschutz Body-236 
+score HS_BODY_236		5
+
+body HS_BODY_237		/Weil Sie oder ein anderer bei Lucky Casino/
+describe HS_BODY_237		Heinlein Support Spamschutz Body-237 
+score HS_BODY_237		5
+
+body HS_BODY_238		/Endlich habe ich Deine E-Mail Adresse wieder gefunden, das hat aber/
+describe HS_BODY_238		Heinlein Support Spamschutz Body-238 
+score HS_BODY_238		5
+
+body HS_BODY_239		/.*www\.removeyou\.com.*/
+describe HS_BODY_239		Heinlein Support Spamschutz Body-239 
+score HS_BODY_239		5
+
+body HS_BODY_240		/.*waterforge\.com.*/
+describe HS_BODY_240		Heinlein Support Spamschutz Body-240 
+score HS_BODY_240		5
+
+body HS_BODY_241		/.*capitalwave\.com\?subject=Please*/
+describe HS_BODY_241		Heinlein Support Spamschutz Body-241 
+score HS_BODY_241		5
+
+body HS_BODY_242		/\.virtmundo\.com/
+describe HS_BODY_242		Heinlein Support Spamschutz Body-242 
+score HS_BODY_242		5
+
+body HS_BODY_243		/Nude Celebrities/
+describe HS_BODY_243		Heinlein Support Spamschutz Body-243 
+score HS_BODY_243		5
+
+body HS_BODY_244		/PRODUCT or SERVICE/
+describe HS_BODY_244		Heinlein Support Spamschutz Body-244 
+score HS_BODY_244		5
+
+body HS_BODY_245		/Amateur Girls/
+describe HS_BODY_245		Heinlein Support Spamschutz Body-245 
+score HS_BODY_245		5
+
+body HS_BODY_246		/<iframe src=(3D)?cid:.* height=(3D)?0 width=(3D)?0>/
+describe HS_BODY_246		Heinlein Support Spamschutz Body-246 
+score HS_BODY_246		5
+
+body HS_BODY_247		/^Big tit lovers unite.$|cum.?(shoo?ts|slurp)|swallow(ing)? cum|cum.*swallow(ing)?|(ass|arse).?fucking|(tight|wet|shaved|young|teen)+ pussy|fuck.?fest|pussy.?juice|cum all over|compulsive masturbators agree|explicit hardcore|(nasty|teen).*sluts/
+describe HS_BODY_247		Heinlein Support Spamschutz Body-247 
+score HS_BODY_247		5
+
+body HS_BODY_250		/^Content\-Disposition: attachment;filename=".*.(doc|zip|exe|xls|jpg|gif).(pif|bat|com|exe|lnk)"$/
+describe HS_BODY_250		Heinlein Support Spamschutz Body-250 
+score HS_BODY_250		5
+
+body HS_BODY_251		/^Content\-Disposition: attachment;filename=.*.(doc|zip|exe|xls|jpg|gif).(pif|bat|com|exe|lnk)$/
+describe HS_BODY_251		Heinlein Support Spamschutz Body-251 
+score HS_BODY_251		5
+
+body HS_BODY_252		/(filename|name)="(WTC|wtc|README)\.EXE"/
+describe HS_BODY_252		Heinlein Support Spamschutz Body-252 
+score HS_BODY_252		5
+
+body HS_BODY_253		/(filename|name)="(Happy99|Navidad|prettypark|pretty park|zipped_files|flcss|Msinit|wininit|msi216|readme|README|Avp_updates|Qi_test|Anti_cih).exe"/
+describe HS_BODY_253		Heinlein Support Spamschutz Body-253 
+score HS_BODY_253		5
+
+body HS_BODY_254		/(filename|name)="(dhcp*|Emanuel|kmbfejkm|NakedWife|Seicho_no_ie|JAMGCJJA|Sulfnbk).exe"/
+describe HS_BODY_254		Heinlein Support Spamschutz Body-254 
+score HS_BODY_254		5
+
+body HS_BODY_255		/(kak|day)\.(reg|hta)/
+describe HS_BODY_255		Heinlein Support Spamschutz Body-255 
+score HS_BODY_255		5
+
+body HS_BODY_260		/to remove[,]* please send a blank email/
+describe HS_BODY_260		Heinlein Support Spamschutz Body-260 
+score HS_BODY_260		5
+
+body HS_BODY_261		/removed from our mail agents/
+describe HS_BODY_261		Heinlein Support Spamschutz Body-261 
+score HS_BODY_261		5
+
+body HS_BODY_262		/to remove yourself immediately/
+describe HS_BODY_262		Heinlein Support Spamschutz Body-262 
+score HS_BODY_262		5
+
+body HS_BODY_263		/to remove yourself from future/
+describe HS_BODY_263		Heinlein Support Spamschutz Body-263 
+score HS_BODY_263		5
+
+body HS_BODY_264		/Rem[o]*ve me fro[nm] any (furhter|further) mailings/
+describe HS_BODY_264		Heinlein Support Spamschutz Body-264 
+score HS_BODY_264		5
+
+body HS_BODY_265		/remove yourself from any future mailings/
+describe HS_BODY_265		Heinlein Support Spamschutz Body-265 
+score HS_BODY_265		5
+
+body HS_BODY_266		/to no longer receive this message reply/
+describe HS_BODY_266		Heinlein Support Spamschutz Body-266 
+score HS_BODY_266		5
+
+body HS_BODY_267		/to no longer receive messages click the link/
+describe HS_BODY_267		Heinlein Support Spamschutz Body-267 
+score HS_BODY_267		5
+
+body HS_BODY_268		/to no longer receive messages please click the link/
+describe HS_BODY_268		Heinlein Support Spamschutz Body-268 
+score HS_BODY_268		5
+
+body HS_BODY_269		/our broadcast email software/
+describe HS_BODY_269		Heinlein Support Spamschutz Body-269 
+score HS_BODY_269		5
+
+body HS_BODY_270		/there are no federal regulations or laws on (email|e-mail) advertising/
+describe HS_BODY_270		Heinlein Support Spamschutz Body-270 
+score HS_BODY_270		5
+
+body HS_BODY_271		/to receive (no|any) (further|future) (offers|mailings)/
+describe HS_BODY_271		Heinlein Support Spamschutz Body-271 
+score HS_BODY_271		5
+
+body HS_BODY_272		/unsubscribe from Virtumundo Rewards/
+describe HS_BODY_272		Heinlein Support Spamschutz Body-272 
+score HS_BODY_272		5
+
+body HS_BODY_273		/if you do not wish to receive email from me/
+describe HS_BODY_273		Heinlein Support Spamschutz Body-273 
+score HS_BODY_273		5
+
+body HS_BODY_274		/reply with the word remove in the subject line/
+describe HS_BODY_274		Heinlein Support Spamschutz Body-274 
+score HS_BODY_274		5
+
+body HS_BODY_275		/reply address on this email was active at the time this email was sent/
+describe HS_BODY_275		Heinlein Support Spamschutz Body-275 
+score HS_BODY_275		5
+
+body HS_BODY_276		/not a registered investment advisor/
+describe HS_BODY_276		Heinlein Support Spamschutz Body-276 
+score HS_BODY_276		5
+
+body HS_BODY_277		/sent by corporate micro mail manager/
+describe HS_BODY_277		Heinlein Support Spamschutz Body-277 
+score HS_BODY_277		5
+
+body HS_BODY_278		/to be stop future mailings/
+describe HS_BODY_278		Heinlein Support Spamschutz Body-278 
+score HS_BODY_278		5
+
+body HS_BODY_279		/to stop future mailings/
+describe HS_BODY_279		Heinlein Support Spamschutz Body-279 
+score HS_BODY_279		5
+
+body HS_BODY_280		/to be taken off the mailing list please click below/
+describe HS_BODY_280		Heinlein Support Spamschutz Body-280 
+score HS_BODY_280		5
+
+body HS_BODY_281		/sent to you in compliance (with|of)/
+describe HS_BODY_281		Heinlein Support Spamschutz Body-281 
+score HS_BODY_281		5
+
+body HS_BODY_282		/sent in compliance (with|of)/
+describe HS_BODY_282		Heinlein Support Spamschutz Body-282 
+score HS_BODY_282		5
+
+body HS_BODY_283		/compliance with the current federal legislation/
+describe HS_BODY_283		Heinlein Support Spamschutz Body-283 
+score HS_BODY_283		5
+
+body HS_BODY_284		/comply with proposed federal legislation/
+describe HS_BODY_284		Heinlein Support Spamschutz Body-284 
+score HS_BODY_284		5
+
+body HS_BODY_285		/permanently (deleted|removed) from our (database|list)/
+describe HS_BODY_285		Heinlein Support Spamschutz Body-285 
+score HS_BODY_285		5
+
+body HS_BODY_286		/to be removed your email from our mailing list/
+describe HS_BODY_286		Heinlein Support Spamschutz Body-286 
+score HS_BODY_286		5
+
+body HS_BODY_287		/this mailing is done by an independent marketing/
+describe HS_BODY_287		Heinlein Support Spamschutz Body-287 
+score HS_BODY_287		5
+
+body HS_BODY_288		/this[ ]*message[ ]*is[ ]*being[ ]*sent[ ]*in[ ]*full[ ]*compliance/
+describe HS_BODY_288		Heinlein Support Spamschutz Body-288 
+score HS_BODY_288		5
+
+body HS_BODY_289		/this is a one[- ]*time (email|e-mail|mailing|offer)/
+describe HS_BODY_289		Heinlein Support Spamschutz Body-289 
+score HS_BODY_289		5
+
+body HS_BODY_290		/Under Bill s\.1618/
+describe HS_BODY_290		Heinlein Support Spamschutz Body-290 
+score HS_BODY_290		5
+
+body HS_BODY_291		/cannot be considered spam/
+describe HS_BODY_291		Heinlein Support Spamschutz Body-291 
+score HS_BODY_291		5
+
+body HS_BODY_292		/cannot be considered as spam/
+describe HS_BODY_292		Heinlein Support Spamschutz Body-292 
+score HS_BODY_292		5
+
+body HS_BODY_293		/(respect|honor|honour) all removal requests/
+describe HS_BODY_293		Heinlein Support Spamschutz Body-293 
+score HS_BODY_293		5
+
+body HS_BODY_294		/no longer wish to receive these offers/
+describe HS_BODY_294		Heinlein Support Spamschutz Body-294 
+score HS_BODY_294		5
+
+body HS_BODY_295		/you will not receive this offer again/
+describe HS_BODY_295		Heinlein Support Spamschutz Body-295 
+score HS_BODY_295		5
+
+body HS_BODY_296		/this is not an unsolicited mail/
+describe HS_BODY_296		Heinlein Support Spamschutz Body-296 
+score HS_BODY_296		5
+
+body HS_BODY_297		/this email has not been sent to you unsolicited/
+describe HS_BODY_297		Heinlein Support Spamschutz Body-297 
+score HS_BODY_297		5
+
+body HS_BODY_298		/has not been sent unsolicited/
+describe HS_BODY_298		Heinlein Support Spamschutz Body-298 
+score HS_BODY_298		5
+
+body HS_BODY_299		/all removes (honored|honoured)/
+describe HS_BODY_299		Heinlein Support Spamschutz Body-299 
+score HS_BODY_299		5
+
+body HS_BODY_300		/To[ ]+remove[ ]+.*\@excite.com/
+describe HS_BODY_300		Heinlein Support Spamschutz Body-300 
+score HS_BODY_300		5
+
+body HS_BODY_301		/to[ ]+be[ ]+removed[ ]+.*\@excite.com/
+describe HS_BODY_301		Heinlein Support Spamschutz Body-301 
+score HS_BODY_301		5
+
+body HS_BODY_302		/removemenow\@excite\.com/
+describe HS_BODY_302		Heinlein Support Spamschutz Body-302 
+score HS_BODY_302		5
+
+body HS_BODY_303		/1800cruisesandtours\.com/
+describe HS_BODY_303		Heinlein Support Spamschutz Body-303 
+score HS_BODY_303		5
+
+body HS_BODY_304		/freewebdirect\.net/
+describe HS_BODY_304		Heinlein Support Spamschutz Body-304 
+score HS_BODY_304		5
+
+body HS_BODY_305		/new\-herbalway\.com/
+describe HS_BODY_305		Heinlein Support Spamschutz Body-305 
+score HS_BODY_305		5
+
+body HS_BODY_306		/advantagesweb\.com/
+describe HS_BODY_306		Heinlein Support Spamschutz Body-306 
+score HS_BODY_306		5
+
+body HS_BODY_307		/phytohealing\.com/
+describe HS_BODY_307		Heinlein Support Spamschutz Body-307 
+score HS_BODY_307		5
+
+body HS_BODY_308		/tradersprophet\.com/
+describe HS_BODY_308		Heinlein Support Spamschutz Body-308 
+score HS_BODY_308		5
+
+body HS_BODY_309		/ugot2see\.com/
+describe HS_BODY_309		Heinlein Support Spamschutz Body-309 
+score HS_BODY_309		5
+
+body HS_BODY_310		/hotlatinparadise\.com/
+describe HS_BODY_310		Heinlein Support Spamschutz Body-310 
+score HS_BODY_310		5
+
+body HS_BODY_311		/pearlgolf\.com/
+describe HS_BODY_311		Heinlein Support Spamschutz Body-311 
+score HS_BODY_311		5
+
+body HS_BODY_312		/halloweenomania\.com/
+describe HS_BODY_312		Heinlein Support Spamschutz Body-312 
+score HS_BODY_312		5
+
+body HS_BODY_313		/gofortuneonline\.com/
+describe HS_BODY_313		Heinlein Support Spamschutz Body-313 
+score HS_BODY_313		5
+
+body HS_BODY_314		/scantexas\.com/
+describe HS_BODY_314		Heinlein Support Spamschutz Body-314 
+score HS_BODY_314		5
+
+body HS_BODY_315		/buildreferrals\.com/
+describe HS_BODY_315		Heinlein Support Spamschutz Body-315 
+score HS_BODY_315		5
+
+body HS_BODY_316		/removeyou\.com/
+describe HS_BODY_316		Heinlein Support Spamschutz Body-316 
+score HS_BODY_316		5
+
+body HS_BODY_317		/cashbackmall\.com/
+describe HS_BODY_317		Heinlein Support Spamschutz Body-317 
+score HS_BODY_317		5
+
+body HS_BODY_318		/pageitnow\.net/
+describe HS_BODY_318		Heinlein Support Spamschutz Body-318 
+score HS_BODY_318		5
+
+body HS_BODY_319		/easycream\.com/
+describe HS_BODY_319		Heinlein Support Spamschutz Body-319 
+score HS_BODY_319		5
+
+body HS_BODY_320		/optinrealbig\.com/
+describe HS_BODY_320		Heinlein Support Spamschutz Body-320 
+score HS_BODY_320		5
+
+body HS_BODY_321		/realgreatgifts\.com/
+describe HS_BODY_321		Heinlein Support Spamschutz Body-321 
+score HS_BODY_321		5
+
+body HS_BODY_322		/realcheapgifts\.com/
+describe HS_BODY_322		Heinlein Support Spamschutz Body-322 
+score HS_BODY_322		5
+
+body HS_BODY_323		/pillsofpleasure\.com/
+describe HS_BODY_323		Heinlein Support Spamschutz Body-323 
+score HS_BODY_323		5
+
+body HS_BODY_324		/greathealthpills\.com/
+describe HS_BODY_324		Heinlein Support Spamschutz Body-324 
+score HS_BODY_324		5
+
+body HS_BODY_325		/saverealbigdeals\.com/
+describe HS_BODY_325		Heinlein Support Spamschutz Body-325 
+score HS_BODY_325		5
+
+body HS_BODY_326		/saverealbigstore\.com/
+describe HS_BODY_326		Heinlein Support Spamschutz Body-326 
+score HS_BODY_326		5
+
+body HS_BODY_327		/realbigwinners\.com/
+describe HS_BODY_327		Heinlein Support Spamschutz Body-327 
+score HS_BODY_327		5
+
+body HS_BODY_328		/saverealbig\.com/
+describe HS_BODY_328		Heinlein Support Spamschutz Body-328 
+score HS_BODY_328		5
+
+body HS_BODY_329		/extremetraffic_rem\@excite\.com/
+describe HS_BODY_329		Heinlein Support Spamschutz Body-329 
+score HS_BODY_329		5
+
+body HS_BODY_330		/tccoptin\@yahoo\.com/
+describe HS_BODY_330		Heinlein Support Spamschutz Body-330 
+score HS_BODY_330		5
+
+body HS_BODY_331		/tccoptout\@yahoo\.com/
+describe HS_BODY_331		Heinlein Support Spamschutz Body-331 
+score HS_BODY_331		5
+
+body HS_BODY_332		/stop026\@excite\.com/
+describe HS_BODY_332		Heinlein Support Spamschutz Body-332 
+score HS_BODY_332		5
+
+body HS_BODY_333		/pleasestopsending\@hotmail\.com/
+describe HS_BODY_333		Heinlein Support Spamschutz Body-333 
+score HS_BODY_333		5
+
+body HS_BODY_334		/viperdrawing\@winning\.com/
+describe HS_BODY_334		Heinlein Support Spamschutz Body-334 
+score HS_BODY_334		5
+
+body HS_BODY_335		/mailto:.*@.*?subject=(3D)*(remove|removeme|pleasedelete|pleaseremove|deleteme)+/
+describe HS_BODY_335		Heinlein Support Spamschutz Body-335 
+score HS_BODY_335		5
+
+body HS_BODY_336		/StudioPros/
+describe HS_BODY_336		Heinlein Support Spamschutz Body-336 
+score HS_BODY_336		5
+
+body HS_BODY_337		/universal advertising systems/
+describe HS_BODY_337		Heinlein Support Spamschutz Body-337 
+score HS_BODY_337		5
+
+body HS_BODY_338		/androstenone pheromone concentrate/
+describe HS_BODY_338		Heinlein Support Spamschutz Body-338 
+score HS_BODY_338		5
+
+body HS_BODY_339		/message was sent by a[n]* independent advertising company/
+describe HS_BODY_339		Heinlein Support Spamschutz Body-339 
+score HS_BODY_339		5
+
+body HS_BODY_340		/amazing cash products/
+describe HS_BODY_340		Heinlein Support Spamschutz Body-340 
+score HS_BODY_340		5
+
+body HS_BODY_341		/penis.*growth/
+describe HS_BODY_341		Heinlein Support Spamschutz Body-341 
+score HS_BODY_341		5
+
+body HS_BODY_342		/vortex[ ]+supplies/
+describe HS_BODY_342		Heinlein Support Spamschutz Body-342 
+score HS_BODY_342		5
+
+body HS_BODY_343		/international trade sources llc/
+describe HS_BODY_343		Heinlein Support Spamschutz Body-343 
+score HS_BODY_343		5
+
+body HS_BODY_344		/postmasterdirect inc/
+describe HS_BODY_344		Heinlein Support Spamschutz Body-344 
+score HS_BODY_344		5
+
+body HS_BODY_345		/free no obligation consultation/
+describe HS_BODY_345		Heinlein Support Spamschutz Body-345 
+score HS_BODY_345		5
+
+body HS_BODY_346		/voted sex[- ]server on the web/
+describe HS_BODY_346		Heinlein Support Spamschutz Body-346 
+score HS_BODY_346		5
+
+body HS_BODY_347		/get back.*years of your income taxes/
+describe HS_BODY_347		Heinlein Support Spamschutz Body-347 
+score HS_BODY_347		5
+
+body HS_BODY_348		/click here for your free quote/
+describe HS_BODY_348		Heinlein Support Spamschutz Body-348 
+score HS_BODY_348		5
+
+body HS_BODY_349		/click here to be (permanently)* ?(removed|deleted)/
+describe HS_BODY_349		Heinlein Support Spamschutz Body-349 
+score HS_BODY_349		5
+
+body HS_BODY_350		/to unsubscribe do nothing/
+describe HS_BODY_350		Heinlein Support Spamschutz Body-350 
+score HS_BODY_350		5
+
+body HS_BODY_351		/OTCBB Stock Alert/
+describe HS_BODY_351		Heinlein Support Spamschutz Body-351 
+score HS_BODY_351		5
+
+body HS_BODY_352		/apparently you have filled out an online form/
+describe HS_BODY_352		Heinlein Support Spamschutz Body-352 
+score HS_BODY_352		5
+
+body HS_BODY_353		/list management software will not know/
+describe HS_BODY_353		Heinlein Support Spamschutz Body-353 
+score HS_BODY_353		5
+
+body HS_BODY_354		/message will only be sent once/
+describe HS_BODY_354		Heinlein Support Spamschutz Body-354 
+score HS_BODY_354		5
+
+body HS_BODY_355		/found this company on the internet/
+describe HS_BODY_355		Heinlein Support Spamschutz Body-355 
+score HS_BODY_355		5
+
+body HS_BODY_356		/you will not receive any future mailings/
+describe HS_BODY_356		Heinlein Support Spamschutz Body-356 
+score HS_BODY_356		5
+
+body HS_BODY_357		/all removal requests are (honored|honoured)/
+describe HS_BODY_357		Heinlein Support Spamschutz Body-357 
+score HS_BODY_357		5
+
+body HS_BODY_358		/you will be removed from our mailing[ ]*list and receive no further information from us/
+describe HS_BODY_358		Heinlein Support Spamschutz Body-358 
+score HS_BODY_358		5
+
+body HS_BODY_359		/we include contact information and a method to be removed from our mailing[ ]*list/
+describe HS_BODY_359		Heinlein Support Spamschutz Body-359 
+score HS_BODY_359		5
+
+body HS_BODY_360		/there is no need to unsubscribe/
+describe HS_BODY_360		Heinlein Support Spamschutz Body-360 
+score HS_BODY_360		5
+
+body HS_BODY_361		/I have made every attempt to target this message/
+describe HS_BODY_361		Heinlein Support Spamschutz Body-361 
+score HS_BODY_361		5
+
+body HS_BODY_362		/If you do not wish to be on our list then click here/
+describe HS_BODY_362		Heinlein Support Spamschutz Body-362 
+score HS_BODY_362		5
+
+body HS_BODY_363		/If you are not interested in receiving information/
+describe HS_BODY_363		Heinlein Support Spamschutz Body-363 
+score HS_BODY_363		5
+
+body HS_BODY_364		/your request will be (honored|honoured) with prompt removal/
+describe HS_BODY_364		Heinlein Support Spamschutz Body-364 
+score HS_BODY_364		5
+
+body HS_BODY_365		/if you feel you got this e[-]*mail by mistake/
+describe HS_BODY_365		Heinlein Support Spamschutz Body-365 
+score HS_BODY_365		5
+
+body HS_BODY_366		/to have us permanently remove you from our list/
+describe HS_BODY_366		Heinlein Support Spamschutz Body-366 
+score HS_BODY_366		5
+
+body HS_BODY_367		/we guarantee you will not receive any future e[-]*mails from us/
+describe HS_BODY_367		Heinlein Support Spamschutz Body-367 
+score HS_BODY_367		5
+
+body HS_BODY_368		/if you would rather not receive future e[-]*mails/
+describe HS_BODY_368		Heinlein Support Spamschutz Body-368 
+score HS_BODY_368		5
+
+body HS_BODY_369		/we do not intend to send any future e[-]*mails/
+describe HS_BODY_369		Heinlein Support Spamschutz Body-369 
+score HS_BODY_369		5
+
+body HS_BODY_370		/further emailing to you by the of this email may be stopped/
+describe HS_BODY_370		Heinlein Support Spamschutz Body-370 
+score HS_BODY_370		5
+
+body HS_BODY_371		/by the of this email may be stopped/
+describe HS_BODY_371		Heinlein Support Spamschutz Body-371 
+score HS_BODY_371		5
+
+body HS_BODY_372		/receiving this e[-]*mail because you opted[- ]in/
+describe HS_BODY_372		Heinlein Support Spamschutz Body-372 
+score HS_BODY_372		2
+
+body HS_BODY_373		/this email has been sent to you because someone at this e[-]*mail address/
+describe HS_BODY_373		Heinlein Support Spamschutz Body-373 
+score HS_BODY_373		5
+
+body HS_BODY_374		/to have your name removed from our email database/
+describe HS_BODY_374		Heinlein Support Spamschutz Body-374 
+score HS_BODY_374		5
+
+body HS_BODY_375		/stopped at no cost to you by sending a reply to this e[-]*mail address/
+describe HS_BODY_375		Heinlein Support Spamschutz Body-375 
+score HS_BODY_375		5
+
+body HS_BODY_376		/this message is an advertisement/
+describe HS_BODY_376		Heinlein Support Spamschutz Body-376 
+score HS_BODY_376		5
+
+body HS_BODY_377		/immediately removed from receiving any more information/
+describe HS_BODY_377		Heinlein Support Spamschutz Body-377 
+score HS_BODY_377		5
+
+body HS_BODY_378		/would not like to receive future messages/
+describe HS_BODY_378		Heinlein Support Spamschutz Body-378 
+score HS_BODY_378		5
+
+body HS_BODY_379		/tell us you would not like to continue to receive such e[-]*mails/
+describe HS_BODY_379		Heinlein Support Spamschutz Body-379 
+score HS_BODY_379		5
+
+body HS_BODY_380		/advertise your product or service using bulk email services/
+describe HS_BODY_380		Heinlein Support Spamschutz Body-380 
+score HS_BODY_380		5
+
+body HS_BODY_381		/You have been specially selected to qualify/
+describe HS_BODY_381		Heinlein Support Spamschutz Body-381 
+score HS_BODY_381		5
+
+body HS_BODY_382		/while working from the privacy of your own home/
+describe HS_BODY_382		Heinlein Support Spamschutz Body-382 
+score HS_BODY_382		5
+
+body HS_BODY_383		/e[-]*mail messages may be stopped/
+describe HS_BODY_383		Heinlein Support Spamschutz Body-383 
+score HS_BODY_383		5
+
+body HS_BODY_384		/list removal\/opt[- ].*out/
+describe HS_BODY_384		Heinlein Support Spamschutz Body-384 
+score HS_BODY_384		5
+
+body HS_BODY_385		/this is a no obligation qualification form/
+describe HS_BODY_385		Heinlein Support Spamschutz Body-385 
+score HS_BODY_385		5
+
+body HS_BODY_386		/please notify the sender immediately with .*remove/
+describe HS_BODY_386		Heinlein Support Spamschutz Body-386 
+score HS_BODY_386		5
+
+body HS_BODY_387		/home[- ]based income opportunity/
+describe HS_BODY_387		Heinlein Support Spamschutz Body-387 
+score HS_BODY_387		5
+
+body HS_BODY_388		/(filename|name)="(Happy99|Navidad|prettypark).exe"/
+describe HS_BODY_388		Heinlein Support Spamschutz Body-388 
+score HS_BODY_388		5
+
+body HS_BODY_389		/(filename|name)="(pretty park|zipped_files|flcss).exe"/
+describe HS_BODY_389		Heinlein Support Spamschutz Body-389 
+score HS_BODY_389		2
+
+body HS_BODY_390		/(filename|name)="(Msinit|wininit|msi216|CFGWIZ31).exe"/
+describe HS_BODY_390		Heinlein Support Spamschutz Body-390 
+score HS_BODY_390		5
+
+body HS_BODY_391		/(filename|name)="(Avp_updates|Qi_test|Anti_cih).exe"/
+describe HS_BODY_391		Heinlein Support Spamschutz Body-391 
+score HS_BODY_391		5
+
+body HS_BODY_392		/(filename|name)="(Emanuel|kmbfejkm|NakedWife|Readme|readme).exe"/
+describe HS_BODY_392		Heinlein Support Spamschutz Body-392 
+score HS_BODY_392		5
+
+body HS_BODY_393		/(filename|name)="(Seicho_no_ie|JAMGCJJA|Sulfnbk|QuickLnk).exe"/
+describe HS_BODY_393		Heinlein Support Spamschutz Body-393 
+score HS_BODY_393		5
+
+body HS_BODY_394		/(filename|name)="(Readme|readme).eml"/
+describe HS_BODY_394		Heinlein Support Spamschutz Body-394 
+score HS_BODY_394		5
+
+body HS_BODY_395		/(kak|day).(reg|hta)/
+describe HS_BODY_395		Heinlein Support Spamschutz Body-395 
+score HS_BODY_395		1
+
+body HS_BODY_396		/Rem I am sorry/
+describe HS_BODY_396		Heinlein Support Spamschutz Body-396 
+score HS_BODY_396		5
+
+body HS_BODY_397		/Te mando este archivo para que me des tu punto de vista/
+describe HS_BODY_397		Heinlein Support Spamschutz Body-397 
+score HS_BODY_397		5
+
+body HS_BODY_398		/I send you this file in order to have your advice/
+describe HS_BODY_398		Heinlein Support Spamschutz Body-398 
+score HS_BODY_398		5
+
+body HS_BODY_399		/Espero me puedas ayudar con el archivo que te mando/
+describe HS_BODY_399		Heinlein Support Spamschutz Body-399 
+score HS_BODY_399		5
+
+body HS_BODY_400		/Espero te guste este archivo que te mando/
+describe HS_BODY_400		Heinlein Support Spamschutz Body-400 
+score HS_BODY_400		5
+
+body HS_BODY_401		/Este es el archivo con la informaci? que me pediste/
+describe HS_BODY_401		Heinlein Support Spamschutz Body-401 
+score HS_BODY_401		5
+
+body HS_BODY_402		/I hope you can help me with this file that I send/
+describe HS_BODY_402		Heinlein Support Spamschutz Body-402 
+score HS_BODY_402		5
+
+body HS_BODY_403		/I hope you like the file that I send you/
+describe HS_BODY_403		Heinlein Support Spamschutz Body-403 
+score HS_BODY_403		5
+
+body HS_BODY_404		/This is the file with the information that you ask for/
+describe HS_BODY_404		Heinlein Support Spamschutz Body-404 
+score HS_BODY_404		5
+
+body HS_BODY_405		/0 Business Fax Numbers/
+describe HS_BODY_405		Heinlein Support Spamschutz Body-405 
+score HS_BODY_405		5
+
+body HS_BODY_406		/1[- ]Time Mailling/
+describe HS_BODY_406		Heinlein Support Spamschutz Body-406 
+score HS_BODY_406		5
+
+body HS_BODY_407		/30 day money back guarantee/
+describe HS_BODY_407		Heinlein Support Spamschutz Body-407 
+score HS_BODY_407		5
+
+body HS_BODY_408		/A New Loan Makes Sense/
+describe HS_BODY_408		Heinlein Support Spamschutz Body-408 
+score HS_BODY_408		5
+
+body HS_BODY_409		/Advertise your product or service/
+describe HS_BODY_409		Heinlein Support Spamschutz Body-409 
+score HS_BODY_409		5
+
+body HS_BODY_410		/Aging While Burning Fat/
+describe HS_BODY_410		Heinlein Support Spamschutz Body-410 
+score HS_BODY_410		5
+
+body HS_BODY_411		/Amazing cash products/
+describe HS_BODY_411		Heinlein Support Spamschutz Body-411 
+score HS_BODY_411		5
+
+body HS_BODY_412		/Androstenone/
+describe HS_BODY_412		Heinlein Support Spamschutz Body-412 
+score HS_BODY_412		5
+
+body HS_BODY_413		/Attract Members of The Opposite/
+describe HS_BODY_413		Heinlein Support Spamschutz Body-413 
+score HS_BODY_413		5
+
+body HS_BODY_414		/Automatic Stock Picking Software/
+describe HS_BODY_414		Heinlein Support Spamschutz Body-414 
+score HS_BODY_414		5
+
+body HS_BODY_415		/Bad Credit Is History/
+describe HS_BODY_415		Heinlein Support Spamschutz Body-415 
+score HS_BODY_415		5
+
+body HS_BODY_416		/Banner Advertising Price/
+describe HS_BODY_416		Heinlein Support Spamschutz Body-416 
+score HS_BODY_416		5
+
+body HS_BODY_417		/Barnyard Fucking/
+describe HS_BODY_417		Heinlein Support Spamschutz Body-417 
+score HS_BODY_417		5
+
+body HS_BODY_418		/BEAUTIFUL Women On The Web/
+describe HS_BODY_418		Heinlein Support Spamschutz Body-418 
+score HS_BODY_418		5
+
+body HS_BODY_419		/Because Our Records Indicate That You Are A/
+describe HS_BODY_419		Heinlein Support Spamschutz Body-419 
+score HS_BODY_419		5
+
+body HS_BODY_420		/Because You Have Subscribed To One Of Our/
+describe HS_BODY_420		Heinlein Support Spamschutz Body-420 
+score HS_BODY_420		5
+
+body HS_BODY_421		/Because You Signed Up At One/
+describe HS_BODY_421		Heinlein Support Spamschutz Body-421 
+score HS_BODY_421		5
+
+body HS_BODY_422		/Best Porn/
+describe HS_BODY_422		Heinlein Support Spamschutz Body-422 
+score HS_BODY_422		5
+
+body HS_BODY_423		/Buy Preforeclosure Houses/
+describe HS_BODY_423		Heinlein Support Spamschutz Body-423 
+score HS_BODY_423		5
+
+body HS_BODY_424		/Cable TV Descrambler/
+describe HS_BODY_424		Heinlein Support Spamschutz Body-424 
+score HS_BODY_424		5
+
+body HS_BODY_425		/Cannot be Considered Spam/
+describe HS_BODY_425		Heinlein Support Spamschutz Body-425 
+score HS_BODY_425		5
+
+body HS_BODY_426		/Cannot be Considered As Spam/
+describe HS_BODY_426		Heinlein Support Spamschutz Body-426 
+score HS_BODY_426		5
+
+body HS_BODY_427		/Caso nao desejar receber este tipo de email novamente/
+describe HS_BODY_427		Heinlein Support Spamschutz Body-427 
+score HS_BODY_427		5
+
+body HS_BODY_428		/Click Here For Your Free Quote/
+describe HS_BODY_428		Heinlein Support Spamschutz Body-428 
+score HS_BODY_428		5
+
+body HS_BODY_429		/Click Here To Avoid This In The Future/
+describe HS_BODY_429		Heinlein Support Spamschutz Body-429 
+score HS_BODY_429		5
+
+body HS_BODY_430		/Compliance with the current federal legislation/
+describe HS_BODY_430		Heinlein Support Spamschutz Body-430 
+score HS_BODY_430		5
+
+body HS_BODY_431		/Copy DVD Movies/
+describe HS_BODY_431		Heinlein Support Spamschutz Body-431 
+score HS_BODY_431		5
+
+body HS_BODY_432		/Creating Immediate Wealth/
+describe HS_BODY_432		Heinlein Support Spamschutz Body-432 
+score HS_BODY_432		5
+
+body HS_BODY_433		/Cum Shots/
+describe HS_BODY_433		Heinlein Support Spamschutz Body-433 
+score HS_BODY_433		5
+
+body HS_BODY_434		/Dear Future/
+describe HS_BODY_434		Heinlein Support Spamschutz Body-434 
+score HS_BODY_434		5
+
+body HS_BODY_435		/Debt Consolidation/
+describe HS_BODY_435		Heinlein Support Spamschutz Body-435 
+score HS_BODY_435		5
+
+body HS_BODY_436		/Do You Want Financial/
+describe HS_BODY_436		Heinlein Support Spamschutz Body-436 
+score HS_BODY_436		5
+
+body HS_BODY_437		/E[- ]Mail Bill Section 301/
+describe HS_BODY_437		Heinlein Support Spamschutz Body-437 
+score HS_BODY_437		5
+
+body HS_BODY_438		/Earn A Full Time Income/
+describe HS_BODY_438		Heinlein Support Spamschutz Body-438 
+score HS_BODY_438		5
+
+body HS_BODY_439		/Easily Lose Weight/
+describe HS_BODY_439		Heinlein Support Spamschutz Body-439 
+score HS_BODY_439		5
+
+body HS_BODY_440		/Equalamail/
+describe HS_BODY_440		Heinlein Support Spamschutz Body-440 
+score HS_BODY_440		5
+
+body HS_BODY_441		/Email Bill Section 301/
+describe HS_BODY_441		Heinlein Support Spamschutz Body-441 
+score HS_BODY_441		5
+
+body HS_BODY_442		/Erotic Travel Guide/
+describe HS_BODY_442		Heinlein Support Spamschutz Body-442 
+score HS_BODY_442		5
+
+body HS_BODY_443		/Fat Blocker/
+describe HS_BODY_443		Heinlein Support Spamschutz Body-443 
+score HS_BODY_443		5
+
+body HS_BODY_444		/Fellow Internet entrepeneur/
+describe HS_BODY_444		Heinlein Support Spamschutz Body-444 
+score HS_BODY_444		5
+
+body HS_BODY_445		/Figure Income Earners/
+describe HS_BODY_445		Heinlein Support Spamschutz Body-445 
+score HS_BODY_445		5
+
+body HS_BODY_446		/Find Out Anything About Anyone/
+describe HS_BODY_446		Heinlein Support Spamschutz Body-446 
+score HS_BODY_446		5
+
+body HS_BODY_447		/Fix Your Credit/
+describe HS_BODY_447		Heinlein Support Spamschutz Body-447 
+score HS_BODY_447		5
+
+body HS_BODY_448		/Found this company on the internet/
+describe HS_BODY_448		Heinlein Support Spamschutz Body-448 
+score HS_BODY_448		5
+
+body HS_BODY_449		/Free Bulk Email/
+describe HS_BODY_449		Heinlein Support Spamschutz Body-449 
+score HS_BODY_449		5
+
+body HS_BODY_450		/Free Direct Email/
+describe HS_BODY_450		Heinlein Support Spamschutz Body-450 
+score HS_BODY_450		5
+
+body HS_BODY_451		/Free Multiple Moving Cost/
+describe HS_BODY_451		Heinlein Support Spamschutz Body-451 
+score HS_BODY_451		5
+
+body HS_BODY_452		/Free no obligation/
+describe HS_BODY_452		Heinlein Support Spamschutz Body-452 
+score HS_BODY_452		5
+
+body HS_BODY_453		/Free Private Webcam/
+describe HS_BODY_453		Heinlein Support Spamschutz Body-453 
+score HS_BODY_453		5
+
+body HS_BODY_454		/Free S e x/
+describe HS_BODY_454		Heinlein Support Spamschutz Body-454 
+score HS_BODY_454		5
+
+body HS_BODY_455		/Free Sex/
+describe HS_BODY_455		Heinlein Support Spamschutz Body-455 
+score HS_BODY_455		5
+
+body HS_BODY_456		/Free Vacation Giveaway/
+describe HS_BODY_456		Heinlein Support Spamschutz Body-456 
+score HS_BODY_456		5
+
+body HS_BODY_457		/Free XXX/
+describe HS_BODY_457		Heinlein Support Spamschutz Body-457 
+score HS_BODY_457		5
+
+body HS_BODY_458		/From A Concerned Gas User/
+describe HS_BODY_458		Heinlein Support Spamschutz Body-458 
+score HS_BODY_458		5
+
+body HS_BODY_459		/Get back.*years of your income taxes/
+describe HS_BODY_459		Heinlein Support Spamschutz Body-459 
+score HS_BODY_459		5
+
+body HS_BODY_460		/Government Grants E-Book/
+describe HS_BODY_460		Heinlein Support Spamschutz Body-460 
+score HS_BODY_460		5
+
+body HS_BODY_461		/GROWTH HORMONE RELEASER/
+describe HS_BODY_461		Heinlein Support Spamschutz Body-461 
+score HS_BODY_461		5
+
+body HS_BODY_462		/Hardcore Animal Action/
+describe HS_BODY_462		Heinlein Support Spamschutz Body-462 
+score HS_BODY_462		5
+
+body HS_BODY_463		/Hardcore Barnyard/
+describe HS_BODY_463		Heinlein Support Spamschutz Body-463 
+score HS_BODY_463		5
+
+body HS_BODY_464		/Hardcore Fist/
+describe HS_BODY_464		Heinlein Support Spamschutz Body-464 
+score HS_BODY_464		5
+
+body HS_BODY_465		/Hardcore Fucking/
+describe HS_BODY_465		Heinlein Support Spamschutz Body-465 
+score HS_BODY_465		5
+
+body HS_BODY_466		/Home[- ]based income opportunity/
+describe HS_BODY_466		Heinlein Support Spamschutz Body-466 
+score HS_BODY_466		5
+
+body HS_BODY_467		/Has not been sent unsolicited/
+describe HS_BODY_467		Heinlein Support Spamschutz Body-467 
+score HS_BODY_467		5
+
+body HS_BODY_468		/I Will Personally Show You How/
+describe HS_BODY_468		Heinlein Support Spamschutz Body-468 
+score HS_BODY_468		5
+
+body HS_BODY_469		/Independent advertising company/
+describe HS_BODY_469		Heinlein Support Spamschutz Body-469 
+score HS_BODY_469		5
+
+body HS_BODY_470		/Incredible Life Changing/
+describe HS_BODY_470		Heinlein Support Spamschutz Body-470 
+score HS_BODY_470		5
+
+body HS_BODY_471		/It Has Been Going Since/
+describe HS_BODY_471		Heinlein Support Spamschutz Body-471 
+score HS_BODY_471		5
+
+body HS_BODY_472		/Hardcore Animal/
+describe HS_BODY_472		Heinlein Support Spamschutz Body-472 
+score HS_BODY_472		5
+
+body HS_BODY_474		/Hardcore Teens/
+describe HS_BODY_474		Heinlein Support Spamschutz Body-474 
+score HS_BODY_474		5
+
+body HS_BODY_475		/Hardcore Unsuspecting/
+describe HS_BODY_475		Heinlein Support Spamschutz Body-475 
+score HS_BODY_475		5
+
+body HS_BODY_476		/Has not been sent to you unsolicited/
+describe HS_BODY_476		Heinlein Support Spamschutz Body-476 
+score HS_BODY_476		5
+
+body HS_BODY_477		/Hear About Future Offers From Us/
+describe HS_BODY_477		Heinlein Support Spamschutz Body-477 
+score HS_BODY_477		5
+
+body HS_BODY_478		/Hear About Offers From Us/
+describe HS_BODY_478		Heinlein Support Spamschutz Body-478 
+score HS_BODY_478		5
+
+body HS_BODY_479		/Hot Horny Girls/
+describe HS_BODY_479		Heinlein Support Spamschutz Body-479 
+score HS_BODY_479		5
+
+body HS_BODY_480		/Hot Young Nasty/
+describe HS_BODY_480		Heinlein Support Spamschutz Body-480 
+score HS_BODY_480		5
+
+body HS_BODY_481		/Huge Wild Animals/
+describe HS_BODY_481		Heinlein Support Spamschutz Body-481 
+score HS_BODY_481		5
+
+body HS_BODY_482		/Improve Sexual Vigor/
+describe HS_BODY_482		Heinlein Support Spamschutz Body-482 
+score HS_BODY_482		5
+
+body HS_BODY_483		/If you prefer not to receive future emails/
+describe HS_BODY_483		Heinlein Support Spamschutz Body-483 
+score HS_BODY_483		5
+
+body HS_BODY_484		/Im a total exibitionist/
+describe HS_BODY_484		Heinlein Support Spamschutz Body-484 
+score HS_BODY_484		5
+
+body HS_BODY_485		/In Compliance With The New E[- ]Mail Bill/
+describe HS_BODY_485		Heinlein Support Spamschutz Body-485 
+score HS_BODY_485		5
+
+body HS_BODY_486		/Just ONE click away from showing you/
+describe HS_BODY_486		Heinlein Support Spamschutz Body-486 
+score HS_BODY_486		5
+
+body HS_BODY_487		/Lender referral service/
+describe HS_BODY_487		Heinlein Support Spamschutz Body-487 
+score HS_BODY_487		5
+
+body HS_BODY_488		/Lenders Compete For Your Business/
+describe HS_BODY_488		Heinlein Support Spamschutz Body-488 
+score HS_BODY_488		5
+
+body HS_BODY_489		/Life Changing Opportunity/
+describe HS_BODY_489		Heinlein Support Spamschutz Body-489 
+score HS_BODY_489		3
+
+body HS_BODY_490		/Lips Around Your/
+describe HS_BODY_490		Heinlein Support Spamschutz Body-490 
+score HS_BODY_490		5
+
+body HS_BODY_491		/Locate Hidden Assets/
+describe HS_BODY_491		Heinlein Support Spamschutz Body-491 
+score HS_BODY_491		5
+
+body HS_BODY_492		/Lose Pounds And Inches/
+describe HS_BODY_492		Heinlein Support Spamschutz Body-492 
+score HS_BODY_492		5
+
+body HS_BODY_493		/Lose Some Weight Before/
+describe HS_BODY_493		Heinlein Support Spamschutz Body-493 
+score HS_BODY_493		5
+
+body HS_BODY_494		/Low[- ]Cost Viagra/
+describe HS_BODY_494		Heinlein Support Spamschutz Body-494 
+score HS_BODY_494		5
+
+body HS_BODY_495		/Lowest Mortgage/
+describe HS_BODY_495		Heinlein Support Spamschutz Body-495 
+score HS_BODY_495		5
+
+body HS_BODY_496		/Make money online/
+describe HS_BODY_496		Heinlein Support Spamschutz Body-496 
+score HS_BODY_496		5
+
+body HS_BODY_497		/Million E[- ]mail Addresses/
+describe HS_BODY_497		Heinlein Support Spamschutz Body-497 
+score HS_BODY_497		5
+
+body HS_BODY_498		/Million Email Addresses/
+describe HS_BODY_498		Heinlein Support Spamschutz Body-498 
+score HS_BODY_498		5
+
+body HS_BODY_499		/Minutes To Complete Your Order/
+describe HS_BODY_499		Heinlein Support Spamschutz Body-499 
+score HS_BODY_499		5
+
+body HS_BODY_500		/Much More Effective For Both Partners/
+describe HS_BODY_500		Heinlein Support Spamschutz Body-500 
+score HS_BODY_500		5
+
+body HS_BODY_501		/Mortgage Quote/
+describe HS_BODY_501		Heinlein Support Spamschutz Body-501 
+score HS_BODY_501		5
+
+body HS_BODY_502		/Need Fod Adult Entertainment/
+describe HS_BODY_502		Heinlein Support Spamschutz Body-502 
+score HS_BODY_502		5
+
+body HS_BODY_503		/Never Sends Unsolicited Email/
+describe HS_BODY_503		Heinlein Support Spamschutz Body-503 
+score HS_BODY_503		5
+
+body HS_BODY_504		/No[- ]Spam Policy/
+describe HS_BODY_504		Heinlein Support Spamschutz Body-504 
+score HS_BODY_504		5
+
+body HS_BODY_505		/On my personal live Webcam/
+describe HS_BODY_505		Heinlein Support Spamschutz Body-505 
+score HS_BODY_505		5
+
+body HS_BODY_506		/One[- ]Time Mail/
+describe HS_BODY_506		Heinlein Support Spamschutz Body-506 
+score HS_BODY_506		5
+
+body HS_BODY_507		/One[- ]Time Non[- ]Commercial/
+describe HS_BODY_507		Heinlein Support Spamschutz Body-507 
+score HS_BODY_507		5
+
+body HS_BODY_508		/Opt-In To Our/
+describe HS_BODY_508		Heinlein Support Spamschutz Body-508 
+score HS_BODY_508		5
+
+body HS_BODY_509		/Opt-Out From Our/
+describe HS_BODY_509		Heinlein Support Spamschutz Body-509 
+score HS_BODY_509		5
+
+body HS_BODY_510		/Our Herbal Supplement/
+describe HS_BODY_510		Heinlein Support Spamschutz Body-510 
+score HS_BODY_510		5
+
+body HS_BODY_511		/Owning your first home/
+describe HS_BODY_511		Heinlein Support Spamschutz Body-511 
+score HS_BODY_511		5
+
+body HS_BODY_512		/Partner E[- ]mail Offers/
+describe HS_BODY_512		Heinlein Support Spamschutz Body-512 
+score HS_BODY_512		5
+
+body HS_BODY_513		/Partner Email Offers/
+describe HS_BODY_513		Heinlein Support Spamschutz Body-513 
+score HS_BODY_513		5
+
+body HS_BODY_514		/Penis.*growth/
+describe HS_BODY_514		Heinlein Support Spamschutz Body-514 
+score HS_BODY_514		5
+
+body HS_BODY_515		/Permanently (deleted|removed) From Our/
+describe HS_BODY_515		Heinlein Support Spamschutz Body-515 
+score HS_BODY_515		5
+
+body HS_BODY_516		/Permission Based E[- ]mail/
+describe HS_BODY_516		Heinlein Support Spamschutz Body-516 
+score HS_BODY_516		5
+
+body HS_BODY_517		/Permission Based Email/
+describe HS_BODY_517		Heinlein Support Spamschutz Body-517 
+score HS_BODY_517		5
+
+body HS_BODY_518		/Pheromone Concentrate/
+describe HS_BODY_518		Heinlein Support Spamschutz Body-518 
+score HS_BODY_518		5
+
+body HS_BODY_519		/Potent Pheromone/
+describe HS_BODY_519		Heinlein Support Spamschutz Body-519 
+score HS_BODY_519		5
+
+body HS_BODY_520		/Price Discount for New TLD Extensions/
+describe HS_BODY_520		Heinlein Support Spamschutz Body-520 
+score HS_BODY_520		5
+
+body HS_BODY_521		/Quality Amateur Action/
+describe HS_BODY_521		Heinlein Support Spamschutz Body-521 
+score HS_BODY_521		5
+
+body HS_BODY_522		/Ready to refinance/
+describe HS_BODY_522		Heinlein Support Spamschutz Body-522 
+score HS_BODY_522		5
+
+body HS_BODY_523		/Real Live Cameras And Movies/
+describe HS_BODY_523		Heinlein Support Spamschutz Body-523 
+score HS_BODY_523		5
+
+body HS_BODY_524		/Real LiveCameras And Movies/
+describe HS_BODY_524		Heinlein Support Spamschutz Body-524 
+score HS_BODY_524		5
+
+body HS_BODY_525		/Receive Special Offer/
+describe HS_BODY_525		Heinlein Support Spamschutz Body-525 
+score HS_BODY_525		5
+
+body HS_BODY_526		/Reduce Body Fat/
+describe HS_BODY_526		Heinlein Support Spamschutz Body-526 
+score HS_BODY_526		5
+
+body HS_BODY_527		/Refinance Your Home/
+describe HS_BODY_527		Heinlein Support Spamschutz Body-527 
+score HS_BODY_527		5
+
+body HS_BODY_528		/Second Mortgage/
+describe HS_BODY_528		Heinlein Support Spamschutz Body-528 
+score HS_BODY_528		5
+
+body HS_BODY_529		/Secure A Better Life For/
+describe HS_BODY_529		Heinlein Support Spamschutz Body-529 
+score HS_BODY_529		5
+
+body HS_BODY_530		/See How Much You Can Save/
+describe HS_BODY_530		Heinlein Support Spamschutz Body-530 
+score HS_BODY_530		5
+
+body HS_BODY_531		/Sent to you in compliance (with|of)/
+describe HS_BODY_531		Heinlein Support Spamschutz Body-531 
+score HS_BODY_531		5
+
+body HS_BODY_532		/Sent To You By A Marketing Partner/
+describe HS_BODY_532		Heinlein Support Spamschutz Body-532 
+score HS_BODY_532		5
+
+body HS_BODY_533		/Sent in compliance (with|of)/
+describe HS_BODY_533		Heinlein Support Spamschutz Body-533 
+score HS_BODY_533		5
+
+body HS_BODY_534		/Serious Inquiries Only Please/
+describe HS_BODY_534		Heinlein Support Spamschutz Body-534 
+score HS_BODY_534		5
+
+body HS_BODY_535		/Shop Hundreds Of Lenders/
+describe HS_BODY_535		Heinlein Support Spamschutz Body-535 
+score HS_BODY_535		5
+
+body HS_BODY_536		/Start Making \$1/
+describe HS_BODY_536		Heinlein Support Spamschutz Body-536 
+score HS_BODY_536		5
+
+body HS_BODY_537		/Step To Financial Freedom/
+describe HS_BODY_537		Heinlein Support Spamschutz Body-537 
+score HS_BODY_537		5
+
+body HS_BODY_538		/Steps To Financial Freedom/
+describe HS_BODY_538		Heinlein Support Spamschutz Body-538 
+score HS_BODY_538		5
+
+body HS_BODY_539		/Suck My Cock/
+describe HS_BODY_539		Heinlein Support Spamschutz Body-539 
+score HS_BODY_539		5
+
+body HS_BODY_540		/Take A FREE Trip/
+describe HS_BODY_540		Heinlein Support Spamschutz Body-540 
+score HS_BODY_540		5
+
+body HS_BODY_541		/TAKE YOUR FIRST BIG STEP/
+describe HS_BODY_541		Heinlein Support Spamschutz Body-541 
+score HS_BODY_541		5
+
+body HS_BODY_542		/Targeted E[- ]mail List/
+describe HS_BODY_542		Heinlein Support Spamschutz Body-542 
+score HS_BODY_542		5
+
+body HS_BODY_543		/Targeted Email List/
+describe HS_BODY_543		Heinlein Support Spamschutz Body-543 
+score HS_BODY_543		5
+
+body HS_BODY_544		/The following gift or special offer was sent to you/
+describe HS_BODY_544		Heinlein Support Spamschutz Body-544 
+score HS_BODY_544		5
+
+body HS_BODY_545		/This email is not sent unsolicited/
+describe HS_BODY_545		Heinlein Support Spamschutz Body-545 
+score HS_BODY_545		5
+
+body HS_BODY_546		/This Is A One[- ]*Time (email|e-mail|mailing|offer)/
+describe HS_BODY_546		Heinlein Support Spamschutz Body-546 
+score HS_BODY_546		5
+
+body HS_BODY_547		/This mailing is done by an independent marketing/
+describe HS_BODY_547		Heinlein Support Spamschutz Body-547 
+score HS_BODY_547		5
+
+body HS_BODY_548		/To Be Removed From This Targeted/
+describe HS_BODY_548		Heinlein Support Spamschutz Body-548 
+score HS_BODY_548		5
+
+body HS_BODY_549		/To Claim Your Prize Click/
+describe HS_BODY_549		Heinlein Support Spamschutz Body-549 
+score HS_BODY_549		5
+
+body HS_BODY_550		/To Stop All Future Offers/
+describe HS_BODY_550		Heinlein Support Spamschutz Body-550 
+score HS_BODY_550		5
+
+body HS_BODY_551		/Under Bill s.1618/
+describe HS_BODY_551		Heinlein Support Spamschutz Body-551 
+score HS_BODY_551		5
+
+body HS_BODY_552		/Universal Advertising System/
+describe HS_BODY_552		Heinlein Support Spamschutz Body-552 
+score HS_BODY_552		5
+
+body HS_BODY_553		/Unlimited Phone Conversations/
+describe HS_BODY_553		Heinlein Support Spamschutz Body-553 
+score HS_BODY_553		5
+
+body HS_BODY_554		/Using Your Identity/
+describe HS_BODY_554		Heinlein Support Spamschutz Body-554 
+score HS_BODY_554		5
+
+body HS_BODY_555		/Virtumundo/
+describe HS_BODY_555		Heinlein Support Spamschutz Body-555 
+score HS_BODY_555		5
+
+body HS_BODY_556		/Voted sex[- ]server on the web/
+describe HS_BODY_556		Heinlein Support Spamschutz Body-556 
+score HS_BODY_556		5
+
+body HS_BODY_557		/We can award any degree/
+describe HS_BODY_557		Heinlein Support Spamschutz Body-557 
+score HS_BODY_557		5
+
+body HS_BODY_558		/We know it sounds impossible/
+describe HS_BODY_558		Heinlein Support Spamschutz Body-558 
+score HS_BODY_558		5
+
+body HS_BODY_559		/While working from the privacy of your own home/
+describe HS_BODY_559		Heinlein Support Spamschutz Body-559 
+score HS_BODY_559		5
+
+body HS_BODY_560		/Win Big Money Today/
+describe HS_BODY_560		Heinlein Support Spamschutz Body-560 
+score HS_BODY_560		5
+
+body HS_BODY_561		/Without Pumps Or Weights Or Stretches/
+describe HS_BODY_561		Heinlein Support Spamschutz Body-561 
+score HS_BODY_561		5
+
+body HS_BODY_562		/You Agree To Receive Email Marketing From/
+describe HS_BODY_562		Heinlein Support Spamschutz Body-562 
+score HS_BODY_562		5
+
+body HS_BODY_563		/You Are Receiving This Exclusive Promotion/
+describe HS_BODY_563		Heinlein Support Spamschutz Body-563 
+score HS_BODY_563		5
+
+body HS_BODY_564		/You Are Registered At One Of Our/
+describe HS_BODY_564		Heinlein Support Spamschutz Body-564 
+score HS_BODY_564		5
+
+body HS_BODY_565		/You are receiving this mail because you have/
+describe HS_BODY_565		Heinlein Support Spamschutz Body-565 
+score HS_BODY_565		5
+
+body HS_BODY_566		/You Have Agreed To Receive/
+describe HS_BODY_566		Heinlein Support Spamschutz Body-566 
+score HS_BODY_566		5
+
+body HS_BODY_567		/You Can Search For Anyone/
+describe HS_BODY_567		Heinlein Support Spamschutz Body-567 
+score HS_BODY_567		5
+
+body HS_BODY_568		/You Registered At One Of Our/
+describe HS_BODY_568		Heinlein Support Spamschutz Body-568 
+score HS_BODY_568		5
+
+body HS_BODY_569		/Your E[- ]mail Address Was Obtained/
+describe HS_BODY_569		Heinlein Support Spamschutz Body-569 
+score HS_BODY_569		5
+
+body HS_BODY_570		/Your Email Address Was Obtained/
+describe HS_BODY_570		Heinlein Support Spamschutz Body-570 
+score HS_BODY_570		5
+
+body HS_BODY_571		/Your Email Address Was Supplied/
+describe HS_BODY_571		Heinlein Support Spamschutz Body-571 
+score HS_BODY_571		5
+
+body HS_BODY_572		/Your Mail Address Was Supplied/
+describe HS_BODY_572		Heinlein Support Spamschutz Body-572 
+score HS_BODY_572		5
+
+body HS_BODY_573		/Your Penis Size/
+describe HS_BODY_573		Heinlein Support Spamschutz Body-573 
+score HS_BODY_573		5
+
+body HS_BODY_574		/Smart Tags, Smart Investments?/
+describe HS_BODY_574		Heinlein Support Spamschutz Body-574 
+score HS_BODY_574		5
+
+body HS_BODY_575		/faze the Neptune focal point and strive enterprising/
+describe HS_BODY_575		Heinlein Support Spamschutz Body-575 
+score HS_BODY_575		5
+
+body HS_BODY_576		/full moon insistence gist an packed/
+describe HS_BODY_576		Heinlein Support Spamschutz Body-576 
+score HS_BODY_576		5
+
+body HS_BODY_577		/a upward prominently field day health care the ridicule offing or Internet seemingly/
+describe HS_BODY_577		Heinlein Support Spamschutz Body-577 
+score HS_BODY_577		5
+
+body HS_BODY_578		/fanatic but consistency sluice scrape downtrodden five and ten on needless/
+describe HS_BODY_578		Heinlein Support Spamschutz Body-578 
+score HS_BODY_578		5
+
+body HS_BODY_579		/fuse box sick sister/
+describe HS_BODY_579		Heinlein Support Spamschutz Body-579 
+score HS_BODY_579		5
+
+body HS_BODY_580		/immediate fulfillment big deal and cashier/
+describe HS_BODY_580		Heinlein Support Spamschutz Body-580 
+score HS_BODY_580		5
+
+body HS_BODY_581		/in on parakeet quizzical chicken feed leper on square/
+describe HS_BODY_581		Heinlein Support Spamschutz Body-581 
+score HS_BODY_581		5
+
+body HS_BODY_582		/reference ounce a achiever sunblock syringe roadside longevity/
+describe HS_BODY_582		Heinlein Support Spamschutz Body-582 
+score HS_BODY_582		5
+
+body HS_BODY_583		/ocean distrust as antiperspirant coax lubricant entry, the northwestern politicize,/
+describe HS_BODY_583		Heinlein Support Spamschutz Body-583 
+score HS_BODY_583		5
+
+body HS_BODY_584		/By the time Scarlett had undressed and blown out the candle, her/
+describe HS_BODY_584		Heinlein Support Spamschutz Body-584 
+score HS_BODY_584		5
+
+body HS_BODY_585		/E\-MAIL:czq7q67a\@yahoo\.co\.jp/
+describe HS_BODY_585		Heinlein Support Spamschutz Body-585 
+score HS_BODY_585		5
+
+body HS_BODY_586		/kundenverifikationservice\.u2m\.ru\/VERIFY\.PHP/
+describe HS_BODY_586		Heinlein Support Spamschutz Body-586 
+score HS_BODY_586		5
+
+body HS_BODY_587		/The Weekend Pill - Xialis is safer, quicker, lasts longers/
+describe HS_BODY_587		Heinlein Support Spamschutz Body-587 
+score HS_BODY_587		5
+
+body HS_BODY_588		/NICHT ABHEBEN, SONDERN SOFORT ABWEISEN/
+describe HS_BODY_588		Heinlein Support Spamschutz Body-588 
+score HS_BODY_588		5
+
+body HS_BODY_589		/Es ist ein Virus, welcher alle IMEI und IMSI Daten/
+describe HS_BODY_589		Heinlein Support Spamschutz Body-589 
+score HS_BODY_589		5
+
+body HS_BODY_590		/galerie kurt im hirsch/
+describe HS_BODY_590		Heinlein Support Spamschutz Body-590 
+score HS_BODY_590		5
+
+body HS_BODY_591		/X-MS_Scanner: Kein Virus erkannt/
+describe HS_BODY_591		Heinlein Support Spamschutz Body-591 
+score HS_BODY_591		5
+
+body HS_BODY_592		/Anti_Virus Service/
+describe HS_BODY_592		Heinlein Support Spamschutz Body-592 
+score HS_BODY_592		5
+
+body HS_BODY_593		/Aufgrund der Staus in allen jpberlin.de Benutzer und Beseitigung aller jpberlin.de/
+describe HS_BODY_593		Heinlein Support Spamschutz Body-593 
+score HS_BODY_593		5
+
+body HS_BODY_594		/Damit durchzuführen Qualität Wartungsarbeiten an Ihrem Internet/
+describe HS_BODY_594		Heinlein Support Spamschutz Body-594 
+score HS_BODY_594		5
+
+body HS_BODY_596		/http:\/\/Super-Rabatte-2013-14111.com/
+describe HS_BODY_596		Heinlein Support Spamschutz Body-596 
+score HS_BODY_596		5
+
+body HS_BODY_597		/www\.otis\.co\.hu\/151981\.html/
+describe HS_BODY_597		Heinlein Support Spamschutz Body-597 
+score HS_BODY_597		5
+
+body HS_BODY_598		/http\:\/\/ininsu\.client\.jp\/425397\.html/
+describe HS_BODY_598		Heinlein Support Spamschutz Body-598 
+score HS_BODY_598		5
+
+body HS_BODY_599		/^Hi, this is Jeff Wu from China/
+describe HS_BODY_599		Heinlein Support Spamschutz Body-599 
+score HS_BODY_599		6
+
+body HS_BODY_607		/http:\/\/jpberlin-emailupgrade.tr.vu/
+describe HS_BODY_607		Heinlein Support Spamschutz Body-607 
+score HS_BODY_607		10
+
+body HS_BODY_608		/Your mailbox has exceeded the set quota limit due to hidden files/
+describe HS_BODY_608		Heinlein Support Spamschutz Body-608 
+score HS_BODY_608		5
+
+body HS_BODY_609		/Failure to increase your quota limit as advised may result to loss/
+describe HS_BODY_609		Heinlein Support Spamschutz Body-609 
+score HS_BODY_609		5
+
+body HS_BODY_611		/Ihr Postfach hat die eingestellte Kontingents durch versteckte Dateien/
+describe HS_BODY_611		Heinlein Support Spamschutz Body-611 
+score HS_BODY_611		5
+
+body HS_BODY_612		/Sie sind m.glicherweise nicht in der Lage zu senden oder zu empfangen neue E-Mails auf/
+describe HS_BODY_612		Heinlein Support Spamschutz Body-612 
+score HS_BODY_612		5
+
+body HS_BODY_613		/jpberlin-emailupgrade.tr.vu/
+describe HS_BODY_613		Heinlein Support Spamschutz Body-613 
+score HS_BODY_613		6
+
+body HS_BODY_615		/Vielen Dank f.*r Ihre Mitarbeit/
+describe HS_BODY_615		Heinlein Support Spamschutz Body-615 
+score HS_BODY_615		2
+
+body HS_BODY_616		/Ihr Webmail hat die Speichergrenze von Webmail Administrator/
+describe HS_BODY_616		Heinlein Support Spamschutz Body-616 
+score HS_BODY_616		3
+
+body HS_BODY_617		/ weiterhin seine Gr.*berschreiten/
+describe HS_BODY_617		Heinlein Support Spamschutz Body-617 
+score HS_BODY_617		3
+
+body HS_BODY_618		/http\:\/jpberlin\.de\/itservice/
+describe HS_BODY_618		Heinlein Support Spamschutz Body-618 
+score HS_BODY_618		5
+
+body HS_BODY_619		/wenn nicht innerhalb von 24 Stunden best.*Konto sperren/
+describe HS_BODY_619		Heinlein Support Spamschutz Body-619 
+score HS_BODY_619		5
+
+body HS_BODY_625		/carat of rough diamond/
+describe HS_BODY_625		Heinlein Support Spamschutz Body-625 
+score HS_BODY_625		7
+
+body HS_BODY_627		/Sommer-Angebot.*Bonus bis zu 200\%/
+describe HS_BODY_627		Heinlein Support Spamschutz Body-627 
+score HS_BODY_627		5
+
+body HS_BODY_628		/http\:\/\/203\.92\.45\.67/
+describe HS_BODY_628		Heinlein Support Spamschutz Body-628 
+score HS_BODY_628		5
+
+body HS_BODY_629		/sample\@email.tst/
+describe HS_BODY_629		Heinlein Support Spamschutz Body-629 
+score HS_BODY_629		10
+
+body HS_BODY_630		 /X-PowerMTA-VirtualMTA: mta_bd_cc270/
+describe HS_BODY_630		Heinlein Support Spamschutz Body-630 
+score HS_BODY_630		5
+
+body HS_BODY_631		/ Hello, this is the mail server on groupon.de./
+describe HS_BODY_631		Heinlein Support Spamschutz Body-631 
+score HS_BODY_631		5
+
+body HS_BODY_632		/X-PowerMTA-BounceCategory: other/
+describe HS_BODY_632		Heinlein Support Spamschutz Body-632 
+score HS_BODY_632		1
+
+body HS_BODY_633		/\@comcast\.net.  delivery failed; will not continue trying/
+describe HS_BODY_633		Heinlein Support Spamschutz Body-633 
+score HS_BODY_633		2
+
+body HS_BODY_634		/KINDLY OPEN THE ATTACHMENT FOR MORE INFORMATION./
+describe HS_BODY_634		Heinlein Support Spamschutz Body-634 
+score HS_BODY_634		3
+
+body HS_BODY_635		/\/vode\/aufladen\/step1\//
+describe HS_BODY_635		Heinlein Support Spamschutz Body-635 Phishing
+score HS_BODY_635		5
+
+body HS_BODY_636		/103\.5\.26\.7/
+describe HS_BODY_636		Heinlein Support Spamschutz Body-636 Phishing
+score HS_BODY_636		10
+
+body HS_BODY_637		/publish_form\/112297/
+describe HS_BODY_637		Heinlein Support Spamschutz Body-637 phishing
+score HS_BODY_637		10
+
+body HS_BODY_638		/© Webmail Inc/
+describe HS_BODY_638		Heinlein Support Spamschutz Body-638 phishing
+score HS_BODY_638		10
+
+body HS_BODY_639		/August Ank.ndigung!!!/
+describe HS_BODY_639		Heinlein Support Spamschutz Body-639 phishing
+score HS_BODY_639		10
+
+body HS_BODY_640		/web-mail-system-pgrade.phpforms.net/
+describe HS_BODY_640		Heinlein Support Spamschutz Body-640 phishing
+score HS_BODY_640		10
+
+body HS_BODY_641		/JPBerlin.de hat den Webmail-Server zu einer neuen und gesicherten Version/
+describe HS_BODY_641		Heinlein Support Spamschutz Body-641 phishing
+score HS_BODY_641		10
+
+body HS_BODY_642		/web-mail-system-upgrade.phpforms.net/
+describe HS_BODY_642		Heinlein Support Spamschutz Body-642 phishing
+score HS_BODY_642		10
+
+body HS_BODY_643		/partner\.sotmarket\.ru\/videos\.htm/
+describe HS_BODY_643		Heinlein Support Spamschutz Body-643 
+score HS_BODY_643		5
+
+body HS_BODY_644		/blind\.maglan\.ru\/video\.htm/
+describe HS_BODY_644		Heinlein Support Spamschutz Body-644 SPAM
+score HS_BODY_644		5
+
+body HS_BODY_645		/Ihre E-Mail wurde 2 GB, die erzeugt wird von unserem Webmaster/
+describe HS_BODY_645		Heinlein Support Spamschutz Body-645 
+score HS_BODY_645		5
+
+body HS_BODY_646		/Ihre E-Mail Quote hat den eingestellten Kontingent/
+describe HS_BODY_646		Heinlein Support Spamschutz Body-646 Phishing
+score HS_BODY_646		6
+
+body HS_BODY_647		/f=3DCYzP9H58V39kAlc4jBXhmg/
+describe HS_BODY_647		Heinlein Support Spamschutz Body-647 Phishing
+score HS_BODY_647		6
+
+body HS_BODY_648		/GOOGLE ANNIVERSARY WINNING NOTIFICATION/
+describe HS_BODY_648		Heinlein Support Spamschutz Body-648 
+score HS_BODY_648		5
+
+body HS_BODY_649		/JVBERi0xLjQNJeLjz9MNCjY1IDAgb2JqDTw8L0xpbmVhcml6ZWQgMS9MIDIzODA1L08gNjcvRSAx/
+describe HS_BODY_649		Heinlein Support Spamschutz Body-649 MALWARE
+score HS_BODY_649		6
+
+body HS_BODY_650		/F=FCllen Sie das Formular unten, um Ihre E-Mail-Adresse best=E4tigen:/
+describe HS_BODY_650		Heinlein Support Spamschutz Body-650 Phishing
+score HS_BODY_650		10
+
+body HS_BODY_651		/Ihre E-Mail wurde 2 GB, die von unserem Webmaster erstellt wird/
+describe HS_BODY_651		Heinlein Support Spamschutz Body-651 Phishing
+score HS_BODY_651		5
+
+body HS_BODY_652		/.4. Passwort best=E4tigen:/
+describe HS_BODY_652		Heinlein Support Spamschutz Body-652 
+score HS_BODY_652		10
+
+body HS_BODY_653		/IHR REFERENZ NUMMER/
+describe HS_BODY_653		Heinlein Support Spamschutz Body-653 
+score HS_BODY_653		6
+
+body HS_BODY_654		/Offiziellen Gewinn Mitteilung/
+describe HS_BODY_654		Heinlein Support Spamschutz Body-654 
+score HS_BODY_654		6
+
+body HS_BODY_655		/HERZLICHEN GLUCKWUNSCH!!!/
+describe HS_BODY_655		Heinlein Support Spamschutz Body-655 
+score HS_BODY_655		4.5
+
+body HS_BODY_658		/Tel: \+387=0A61 895 954/
+describe HS_BODY_658		Heinlein Support Spamschutz Body-658 
+score HS_BODY_658		6
+
+body HS_BODY_660		/As finding a partner is not easy in a fierce industry/
+describe HS_BODY_660		Heinlein Support Spamschutz Body-660 
+score HS_BODY_660		4
+
+body HS_BODY_661		/=0AHallo,=0A=0Abehandelt/
+describe HS_BODY_661		Heinlein Support Spamschutz Body-661 
+score HS_BODY_661		6
+
+body HS_BODY_662		/Platzhalter:=0Ac\/o\/m/
+describe HS_BODY_662		Heinlein Support Spamschutz Body-662 
+score HS_BODY_662		6
+
+body HS_BODY_663		/=FC  5 Pages static mobile website/
+describe HS_BODY_663		Heinlein Support Spamschutz Body-663 
+score HS_BODY_663		6
+
+body HS_BODY_664		/I am Gyan Ranjan/
+describe HS_BODY_664		Heinlein Support Spamschutz Body-664 
+score HS_BODY_664		4.5
+
+body HS_BODY_665		/Gyan\.gyanranjan2008\@gmail\.com/
+describe HS_BODY_665		Heinlein Support Spamschutz Body-665 
+score HS_BODY_665		5
+
+body HS_BODY_666		/JVBERi0xLjMKJcfsj6IKNSAwIG9iago8PC9MZW5ndGggNiAwIFIvRmlsdGVyIC9GbGF0ZURlY29k/
+describe HS_BODY_666		Heinlein Support Spamschutz Body-666 MALWARE
+score HS_BODY_666		6
+
+body HS_BODY_667		/SHELL OFFICIAL WINNING NOTIFICATION/
+describe HS_BODY_667		Heinlein Support Spamschutz Body-667 Malware
+score HS_BODY_667		5
+
+body HS_BODY_668		/CK HERE TO ACCEPT FUNDS=0A/
+describe HS_BODY_668		Heinlein Support Spamschutz Body-668 
+score HS_BODY_668		6
+
+body HS_BODY_669		/ail\.winner\/Email\.winner/
+describe HS_BODY_669		Heinlein Support Spamschutz Body-669 
+score HS_BODY_669		6
+
+body HS_BODY_670		/Creative Website Design - Creative layouts/
+describe HS_BODY_670		Heinlein Support Spamschutz Body-670 
+score HS_BODY_670		5
+
+body HS_BODY_671		/Skype: infoamit/
+describe HS_BODY_671		Heinlein Support Spamschutz Body-671 
+score HS_BODY_671		6
+
+body HS_BODY_672		/5h sagt jem\. durch mich hindurch/
+describe HS_BODY_672		Heinlein Support Spamschutz Body-672 
+score HS_BODY_672		6
+
+body HS_BODY_673		/=\?GB2312\?B\?u8bSq8\/cLnBkZg==\?=/
+describe HS_BODY_673		Heinlein Support Spamschutz Body-673 
+score HS_BODY_673		6
+
+body HS_BODY_674		/y82077i9vP6jrMfr1KTAwA==/
+describe HS_BODY_674		Heinlein Support Spamschutz Body-674 
+score HS_BODY_674		6
+
+body HS_BODY_675		/We JBS Expedite LTD/
+describe HS_BODY_675		Heinlein Support Spamschutz Body-675 
+score HS_BODY_675		6
+
+body HS_BODY_676		/E-mail=3D: sales\@jbsexpedite\.com/
+describe HS_BODY_676		Heinlein Support Spamschutz Body-676 
+score HS_BODY_676		6
+
+body HS_BODY_677		/http:\/\/jbsexpedite\.com/
+describe HS_BODY_677		Heinlein Support Spamschutz Body-677 
+score HS_BODY_677		6
+
+body HS_BODY_678		/laden Sie sich bitte und füllen Sie das beigefügte Formular/
+describe HS_BODY_678		Heinlein Support Spamschutz Body-678 PHISHING
+score HS_BODY_678		6
+
+body HS_BODY_679		/PCFET0NUWVBFIEhUTUwgUFVCTElDICItLy9XM0MvL0RURCBIVE1MIDQuMDEgVHJhbnNpdGlv/
+describe HS_BODY_679		Heinlein Support Spamschutz Body-679 PHISHING
+score HS_BODY_679		5
+
+body HS_BODY_680		/Zur Erhöhung der Sicherheit der Kreditkarte/
+describe HS_BODY_680		Heinlein Support Spamschutz Body-680 PHISHING
+score HS_BODY_680		6
+
+body HS_BODY_681		/financial instrument such as BG & S=/
+describe HS_BODY_681		Heinlein Support Spamschutz Body-681 Spam
+score HS_BODY_681		6
+
+body HS_BODY_682		/HSBC BANK LONDON & BARCLAYS BANK LO=/
+describe HS_BODY_682		Heinlein Support Spamschutz Body-682 Spam
+score HS_BODY_682		6
+
+body HS_BODY_683		/LOOKING FOR GOLD BUYER/
+describe HS_BODY_683		Heinlein Support Spamschutz Body-683 Spam
+score HS_BODY_683		6
+
+body HS_BODY_684		/GOLD DORE BARS/
+describe HS_BODY_684		Heinlein Support Spamschutz Body-684 Spam
+score HS_BODY_684		6
+
+body HS_BODY_685		/Origin: Cote D'Ivoire/
+describe HS_BODY_685		Heinlein Support Spamschutz Body-685 Spam
+score HS_BODY_685		6
+
+body HS_BODY_686		/eurotartufi.com\/my_animations\/animations\/ftoeuro/
+describe HS_BODY_686		Heinlein Support Spamschutz Body-686 Phishing
+score HS_BODY_686		8
+
+body HS_BODY_687		/The Westpac Support Team/
+describe HS_BODY_687		Heinlein Support Spamschutz Body-687 Phishing
+score HS_BODY_687		6
+
+body HS_BODY_688		/Uw e-mail heeft 2GB/
+describe HS_BODY_688		Heinlein Support Spamschutz Body-688 Phishing
+score HS_BODY_688		6
+
+body HS_BODY_689		/die wordt gecre=EBerd door overschreden/
+describe HS_BODY_689		Heinlein Support Spamschutz Body-689 Phishing
+score HS_BODY_689		6
+
+body HS_BODY_690		/Complete het formulier om uw account te=/
+describe HS_BODY_690		Heinlein Support Spamschutz Body-690 Phishing
+score HS_BODY_690		6
+
+body HS_BODY_691		/\*Mailbox Quota exceeded the approved limit .*%/
+describe HS_BODY_691		Heinlein Support Spamschutz Body-691 
+score HS_BODY_691		3
+
+body HS_BODY_692		/ Tech-Support Agent 01\*/
+describe HS_BODY_692		Heinlein Support Spamschutz Body-692 
+score HS_BODY_692		3
+
+body HS_BODY_693		/ṽḻȦĠ℟Ȧ/
+describe HS_BODY_693		Heinlein Support Spamschutz Body-693 SPAM
+score HS_BODY_693		5
+
+body HS_BODY_694		/überschritten Boxen setzen ihre/
+describe HS_BODY_694		Heinlein Support Spamschutz Body-694 phishing
+score HS_BODY_694		6
+
+body HS_BODY_695		/webmailupdate20340\.jimdo\.com/
+describe HS_BODY_695		Heinlein Support Spamschutz Body-695 Phishing
+score HS_BODY_695		6
+
+body HS_BODY_696		/=?iso-8859-2?B?TUlDUk9TT0ZUIExPVFRFUlkgQVdBUkQgMjAxMy5kb2M=?=/
+describe HS_BODY_696		Heinlein Support Spamschutz Body-696 Malware
+score HS_BODY_696		6
+
+body HS_BODY_697		/0M8R4KGxGuEAAAAAAAAAAAAAAAAAAAAAPgADAP7/
+describe HS_BODY_697		Heinlein Support Spamschutz Body-697 Malware
+score HS_BODY_697		6
+
+body HS_BODY_698		/CONGRATULATION!!! OPEN ATTACHMENT FOR PAYMENT DETAILS/
+describe HS_BODY_698		Heinlein Support Spamschutz Body-698 Malware
+score HS_BODY_698		6
+
+body HS_BODY_699		/www\.viseca\.ch/
+describe HS_BODY_699		Heinlein Support Spamschutz Body-699 SCAM
+score HS_BODY_699		5
+
+body HS_BODY_702		/WRD116\.jpg\>/
+describe HS_BODY_702		Heinlein Support Spamschutz Body-702 PHISHING
+score HS_BODY_702		6
+
+body HS_BODY_703		/zweifaches klicken nicht =F6ffnen=/
+describe HS_BODY_703		Heinlein Support Spamschutz Body-703 PHISHING
+score HS_BODY_703		6
+
+body HS_BODY_704		/http:\/\/evlilik\.kadın\.net\/wp-content\/themes\/options\/blogs\.php/
+describe HS_BODY_704		Heinlein Support Spamschutz Body-704 Phishing
+score HS_BODY_704		6
+
+body HS_BODY_705		/dass die Sparkasse schätzt Ihre Sicherheit/
+describe HS_BODY_705		Heinlein Support Spamschutz Body-705 Phisihing
+score HS_BODY_705		6
+
+body HS_BODY_706		/Wir senden in regelm=C3=A4=C3=9Figen Abst=C3=A4nden News mit wichtigen aber=\nauch lustigen=20/
+describe HS_BODY_706		Heinlein Support Spamschutz Body-706 Spam
+score HS_BODY_706		6
+
+body HS_BODY_707		/die Neuigkeiten darstellen. Sie k=C3=B6nnen die Mails und Anh=C3=A4nge lese=/
+describe HS_BODY_707		Heinlein Support Spamschutz Body-707 Spam
+score HS_BODY_707		6
+
+body HS_BODY_708		/weiterleiten, speichern und sammeln f=C3=BCr sp=C3=A4tere Anl=C3=A4sse oder=/
+describe HS_BODY_708		Heinlein Support Spamschutz Body-708 Spam
+score HS_BODY_708		6
+
+body HS_BODY_709		/maxi-615%20Die%20T%FCrken%20im%20Altertum%2Epdf/
+describe HS_BODY_709		Heinlein Support Spamschutz Body-709 Spam
+score HS_BODY_709		6
+
+body HS_BODY_710		/JVBERi0xLjYNJeLjz9MNCjc3IDAgb2JqDTw8L0xpbmVhcml6ZWQgMS9MIDUxMzEyNS9PIDgwL0Ug/
+describe HS_BODY_710		Heinlein Support Spamschutz Body-710 Spam
+score HS_BODY_710		6
+
+body HS_BODY_711		/http:\/\/www.form2go.com\/publish\/publish_form\/122238/
+describe HS_BODY_711		Heinlein Support Spamschutz Body-711 Spam
+score HS_BODY_711		10
+
+body HS_BODY_712		/Uw webmail quota heeft overschreden de quota, die 2 GB is\. Momenteel/
+describe HS_BODY_712		Heinlein Support Spamschutz Body-712 Spam
+score HS_BODY_712		6
+
+body HS_BODY_713		/<div dir=3D"ltr">Uw webmail quota heeft overschreden de quota, die 2 GB is\.=/
+describe HS_BODY_713		Heinlein Support Spamschutz Body-713 Spam
+score HS_BODY_713		6
+
+body HS_BODY_715		/l'm Mrs\. Myriam Abdullah, a dying muslim woman/
+describe HS_BODY_715		Heinlein Support Spamschutz Body-715 SPAM
+score HS_BODY_715		10
+
+body HS_BODY_716		/springshares\@consultant\.com/
+describe HS_BODY_716		Heinlein Support Spamschutz Body-716 Spam
+score HS_BODY_716		6
+
+body HS_BODY_717		/MR\. SEAN MOORE/
+describe HS_BODY_717		Heinlein Support Spamschutz Body-717 Spam
+score HS_BODY_717		6
+
+body HS_BODY_718		/Package A Local Optimization \) 10-20 keywords optimized/
+describe HS_BODY_718		Heinlein Support Spamschutz Body-718 SEO-SPAM
+score HS_BODY_718		10
+
+body HS_BODY_719		/We rank top 10 on Google for terms like Online SEO Company/
+describe HS_BODY_719		Heinlein Support Spamschutz Body-719 SEO-SPAM
+score HS_BODY_719		10
+
+body HS_BODY_720		/B7 Green Avenue, Amritsar 143001 Punjab/
+describe HS_BODY_720		Heinlein Support Spamschutz Body-720 SEO-SPAM
+score HS_BODY_720		10
+
+body HS_BODY_721		/globalcua\.com\/spkss/
+describe HS_BODY_721		Heinlein Support Spamschutz Body-721 Phishing
+score HS_BODY_721		8
+
+body HS_BODY_722		/dass in K=FCrze Ihre Online-Banking-Zugang abl=E4uft/
+describe HS_BODY_722		Heinlein Support Spamschutz Body-722 Phishing
+score HS_BODY_722		6
+
+body HS_BODY_723		/yiv3849226144yui_3_13_0_rc_1_1_1382344930563_36/
+describe HS_BODY_723		Heinlein Support Spamschutz Body-723 Phishing
+score HS_BODY_723		8
+
+body HS_BODY_724		/precise process that has to be handled by an EXPERIENCED SEO/
+describe HS_BODY_724		Heinlein Support Spamschutz Body-724 SEO-SPAM
+score HS_BODY_724		8
+
+body HS_BODY_725		/We Only use white hat ethical methods to gain rankings/
+describe HS_BODY_725		Heinlein Support Spamschutz Body-725 SEO-SPAM
+score HS_BODY_725		6
+
+body HS_BODY_726		/B7 Green Avenue, ASR \(India\)/
+describe HS_BODY_726		Heinlein Support Spamschutz Body-726 SEO-SPAM
+score HS_BODY_726		6
+
+body HS_BODY_727		/http\:\/\/s7\.directupload\.net\/images\/131015\/azazti92\.png/
+describe HS_BODY_727		Heinlein Support Spamschutz Body-727 Spam
+score HS_BODY_727		7
+
+body HS_BODY_728		/http\:\/\/einfach-sichererer\.de\/mail_2488956\.html/
+describe HS_BODY_728		Heinlein Support Spamschutz Body-728 Spam
+score HS_BODY_728		8
+
+body HS_BODY_729		/\<p\> Leider kam es in unserer Unternehmensgeschichte des öfteren zu Betrugsfällen\.\<br\>/
+describe HS_BODY_729		Heinlein Support Spamschutz Body-729 Spam
+score HS_BODY_729		8
+
+body HS_BODY_730		/1937å¹/
+describe HS_BODY_730		Heinlein Support Spamschutz Body-730 SPAM
+score HS_BODY_730		7
+
+body HS_BODY_731		/8時翌朝、レッドリバーの/
+describe HS_BODY_731		Heinlein Support Spamschutz Body-731 SPAM
+score HS_BODY_731		6
+
+body HS_BODY_735		/Lasst uns Geschäfte machen zusammen 20,5 Mio. USD wert, antworten Sie bitte mich für weitere Informationen/
+describe HS_BODY_735		Heinlein Support Spamschutz Body-735 SPAM
+score HS_BODY_735		7
+
+body HS_BODY_736		/http\:\/\/helpdesk-dsc-de\.blg\.lt\/out\/1\//
+describe HS_BODY_736		Heinlein Support Spamschutz Body-736 Phishing
+score HS_BODY_736		5
+
+body HS_BODY_737		/Lieber E-Mail an Benutzer\./
+describe HS_BODY_737		Heinlein Support Spamschutz Body-737 Phishing
+score HS_BODY_737		5
+
+body HS_BODY_738		/Ihre eingehenden Nachrichten wurden =C3=BCber anh=C3=A4ngige=20/
+describe HS_BODY_738		Heinlein Support Spamschutz Body-738 SPAM
+score HS_BODY_738		8
+
+body HS_BODY_739		/http\:\/\/emailuserupgrade3\.webs\.com\//
+describe HS_BODY_739		Heinlein Support Spamschutz Body-739 Spam
+score HS_BODY_739		10
+
+body HS_BODY_740		/Kreditkarte-Zugang zu Ihrem Konto in Kürze abläuft. Für diesen Dienst/
+describe HS_BODY_740		Heinlein Support Spamschutz Body-740 SPAM
+score HS_BODY_740		8
+
+body HS_BODY_741		/Sie werden durch der konto-abteilung/
+describe HS_BODY_741		Heinlein Support Spamschutz Body-741 Spam
+score HS_BODY_741		8
+
+body HS_BODY_743		/My name is Sandra Assi, 21 years old Girl from Cote D 'Ivoire/
+describe HS_BODY_743		Heinlein Support Spamschutz Body-743 Spam
+score HS_BODY_743		8
+
+body HS_BODY_744		/I want you to assist me transfer and invest this sum of Nine Million US Dollars/
+describe HS_BODY_744		Heinlein Support Spamschutz Body-744 Spam
+score HS_BODY_744		8
+
+body HS_BODY_745		/l was convinced that you are reputable and a trust worthy person who can help me/
+describe HS_BODY_745		Heinlein Support Spamschutz Body-745 
+score HS_BODY_745		8
+
+body HS_BODY_746		/Should darauf hinweisen wir Siei/
+describe HS_BODY_746		Heinlein Support Spamschutz Body-746 
+score HS_BODY_746		5
+
+body HS_BODY_747		/Kontozugang beef um die Uhr/
+describe HS_BODY_747		Heinlein Support Spamschutz Body-747 
+score HS_BODY_747		5
+
+body HS_BODY_748		/Ihr ING-Diba Science Service/
+describe HS_BODY_748		Heinlein Support Spamschutz Body-748 
+score HS_BODY_748		5
+
+body HS_BODY_749		/\. PSD to xHTML and Wordpress conversion/
+describe HS_BODY_749		Heinlein Support Spamschutz Body-749 
+score HS_BODY_749		7
+
+body HS_BODY_750		/Send us the project details along with requirements to receive a quick =/
+describe HS_BODY_750		Heinlein Support Spamschutz Body-750 
+score HS_BODY_750		7
+
+body HS_BODY_751		/Sgt Elizabeth Gunther/
+describe HS_BODY_751		Heinlein Support Spamschutz Body-751 Phishing
+score HS_BODY_751		7
+
+body HS_BODY_752		/MEDICAL TEAM presently in Iraq/
+describe HS_BODY_752		Heinlein Support Spamschutz Body-752 Phishing
+score HS_BODY_752		7
+
+body HS_BODY_753		/U\.S\. ARMY USARPAC/
+describe HS_BODY_753		Heinlein Support Spamschutz Body-753 Phishing
+score HS_BODY_753		7
+
+body HS_BODY_754		/sac lancel pas cher/
+describe HS_BODY_754		Heinlein Support Spamschutz Body-754 
+score HS_BODY_754		7
+
+body HS_BODY_755		/http\:\/\/www\.mquin\.com\/saclancel\.php/
+describe HS_BODY_755		Heinlein Support Spamschutz Body-755 
+score HS_BODY_755		7
+
+body HS_BODY_756		/The RailAir express bus service \(running every 20 min\)/
+describe HS_BODY_756		Heinlein Support Spamschutz Body-756 
+score HS_BODY_756		7
+
+body HS_BODY_759		/Nachricht\: Cash cost per ounce produced is a not a generally/
+describe HS_BODY_759		Heinlein Support Spamschutz Body-759 
+score HS_BODY_759		7
+
+body HS_BODY_760		/http\:\/\/www\.mamlekabu\.co\.uk\/mulberry\//
+describe HS_BODY_760		Heinlein Support Spamschutz Body-760 
+score HS_BODY_760		7
+
+body HS_BODY_761		/\\"cash cost per ounce produced\\"/
+describe HS_BODY_761		Heinlein Support Spamschutz Body-761 
+score HS_BODY_761		7
+
+body HS_BODY_762		/Sparkasse\/Erstebank AG \(Sicherheitsabteilung\)/
+describe HS_BODY_762		Heinlein Support Spamschutz Body-762 PHISHING
+score HS_BODY_762		7
+
+body HS_BODY_763		/Übersichtliche Kontoführung/
+describe HS_BODY_763		Heinlein Support Spamschutz Body-763 Phishing
+score HS_BODY_763		7
+
+body HS_BODY_766		/http\:\/\/verify-jpberlin-de\.webs\.com/
+describe HS_BODY_766		Heinlein Support Spamschutz Body-766 Phishing
+score HS_BODY_766		8
+
+body HS_BODY_767		/BJPBerlin/
+describe HS_BODY_767		Heinlein Support Spamschutz Body-767 Phishing
+score HS_BODY_767		3
+
+body HS_BODY_768		/Ihre zwei eingehende Mails wurden auf ausstehende Status durch den/
+describe HS_BODY_768		Heinlein Support Spamschutz Body-768 
+score HS_BODY_768		8
+
+body HS_BODY_769		/Dear PaypaI Member/
+describe HS_BODY_769		Heinlein Support Spamschutz Body-769 Phishing
+score HS_BODY_769		8
+
+body HS_BODY_770		/Unfortunately, Your online access has been blocked/
+describe HS_BODY_770		Heinlein Support Spamschutz Body-770 Phishing
+score HS_BODY_770		8
+
+body HS_BODY_771		/PaypaI Billing/
+describe HS_BODY_771		Heinlein Support Spamschutz Body-771 Phishing
+score HS_BODY_771		8
+
+body HS_BODY_772		/BiIIing/
+describe HS_BODY_772		Heinlein Support Spamschutz Body-772 Phishing
+score HS_BODY_772		8
+
+body HS_BODY_773		/If you cannot play, move message to the \"Inbox\" folder\./
+describe HS_BODY_773		Heinlein Support Spamschutz Body-773 Phishing
+score HS_BODY_773		8
+
+body HS_BODY_774		/Ich wurde es sehr gerne weiter chatten mit dir, und in der Zukunft zu treffen\./
+describe HS_BODY_774		Heinlein Support Spamschutz Body-774 
+score HS_BODY_774		10
+
+body HS_BODY_775		/Kannst du mich finden Sie auf der Website MEETINGEVERYONE\.COM mein Nick Svetlanaxx\./
+describe HS_BODY_775		Heinlein Support Spamschutz Body-775 
+score HS_BODY_775		10
+
+body HS_BODY_776		/Egoisten, Tr=C3=A4umer, taubgeistige, Angsthasen, Waschweiber, Jammerlappen= , Lemminge, Versager und Weicheier d=C3=BCfen sich jedoch auch hier/
+describe HS_BODY_776		Heinlein Support Spamschutz Body-776 
+score HS_BODY_776		10
+
+body HS_BODY_777		/34812058zezami\-MK/
+describe HS_BODY_777		Heinlein Support Spamschutz Body-777 
+score HS_BODY_777		5
+
+body HS_BODY_778		/Please find the attachment copy as instructed the total amount/
+describe HS_BODY_778		Heinlein Support Spamschutz Body-778 
+score HS_BODY_778		8
+
+body HS_BODY_779		/transferred to your account and please confirm back the payment copy/
+describe HS_BODY_779		Heinlein Support Spamschutz Body-779 
+score HS_BODY_779		8
+
+body HS_BODY_780		/Siva Kumar Raju/
+describe HS_BODY_780		Heinlein Support Spamschutz Body-780 
+score HS_BODY_780		8
+
+body HS_BODY_781		/PGh0bWwgc3R5bGU9Im92ZXJmbG93LXg6IGhpZGRlbjsgb3ZlcmZsb3cteTogYXV0bzsiIGNsYXNz/
+describe HS_BODY_781		Heinlein Support Spamschutz Body-781 
+score HS_BODY_781		8
+
+body HS_BODY_782		/Rechnungsstelle Luca Myer und Altdorfer/
+describe HS_BODY_782		Heinlein Support Spamschutz Body-782 
+score HS_BODY_782		10
+
+body HS_BODY_783		/w=E4ren Sie an einer Zusammenarbeit mit unserer Dating-/
+describe HS_BODY_783		Heinlein Support Spamschutz Body-783 
+score HS_BODY_783		8
+
+body HS_BODY_784		/Website=2C das Schreiben eines einzigartigen Artikel f=FCr&n/
+describe HS_BODY_784		Heinlein Support Spamschutz Body-784 
+score HS_BODY_784		8
+
+body HS_BODY_785		/oder einem kostenlosen SEO-Audit Ihres=20/
+describe HS_BODY_785		Heinlein Support Spamschutz Body-785 
+score HS_BODY_785		8
+
+body HS_BODY_786		/We are a very reputable company from the US looking for a partner in your/
+describe HS_BODY_786		Heinlein Support Spamschutz Body-786 
+score HS_BODY_786		8
+
+body HS_BODY_787		/country to provide IPV4 and IPV6 space/
+describe HS_BODY_787		Heinlein Support Spamschutz Body-787 
+score HS_BODY_787		8
+
+body HS_BODY_788		/CgoKICAgIDx0aXRsZT48L3RpdGxlPgoKCiAgICA8ZGl2IHN0eWxlPSJiYWNrZ3JvdW5kOiNmNmY2/
+describe HS_BODY_788		Heinlein Support Spamschutz Body-788 
+score HS_BODY_788		8
+
+body HS_BODY_789		/ZWlnaHQ6NDRweDsiPgogICAgICAgICAgPHRhYmxlIGFsaWduPSJyaWdodCIgY2VsbHBhZGRpbmc9/
+describe HS_BODY_789		Heinlein Support Spamschutz Body-789 
+score HS_BODY_789		8
+
+body HS_BODY_790		/We can help you also with build 10,000 Twitter Followers in 7 days/
+describe HS_BODY_790		Heinlein Support Spamschutz Body-790 
+score HS_BODY_790		8
+
+body HS_BODY_791		/888-233-0877/
+describe HS_BODY_791		Heinlein Support Spamschutz Body-791 
+score HS_BODY_791		8
+
+body HS_BODY_792		/You can get help building 100,000 Facebook LIKES in 7 days/
+describe HS_BODY_792		Heinlein Support Spamschutz Body-792 
+score HS_BODY_792		8
+
+body HS_BODY_793		/Ich komme von dieser e-mail informieren sie/
+describe HS_BODY_793		Heinlein Support Spamschutz Body-793 SCAM
+score HS_BODY_793		8
+
+body HS_BODY_794		/70% des grundkapitals während einer dauer von 20/
+describe HS_BODY_794		Heinlein Support Spamschutz Body-794 SCAM
+score HS_BODY_794		8
+
+body HS_BODY_795		/tkqzxmcmwxm\@gmail\.com/
+describe HS_BODY_795		Heinlein Support Spamschutz Body-795 
+score HS_BODY_795		8
+
+body HS_BODY_796		/discount hermes handbags for sale/
+describe HS_BODY_796		Heinlein Support Spamschutz Body-796 
+score HS_BODY_796		8
+
+body HS_BODY_798		/Mit wem ich zu verschiedenen Themen des Lebens sagen kann/
+describe HS_BODY_798		Heinlein Support Spamschutz Body-798 
+score HS_BODY_798		8
+
+body HS_BODY_799		/Mit wem ich die Gedanken teilen kann/
+describe HS_BODY_799		Heinlein Support Spamschutz Body-799 
+score HS_BODY_799		8
+
+body HS_BODY_800		/securesertupdate.com\/mobiletelekom\//
+describe HS_BODY_800		Heinlein Support Spamschutz Body-800 SCAM
+score HS_BODY_800		8
+
+body HS_BODY_801		/Ihre Telekom Mobilfunk RechnungOnline/
+describe HS_BODY_801		Heinlein Support Spamschutz Body-801 SCAM
+score HS_BODY_801		1
+
+body HS_BODY_802		/securesertupdate\.com\/volksbank/
+describe HS_BODY_802		Heinlein Support Spamschutz Body-802 SCAM
+score HS_BODY_802		5
+
+body HS_BODY_803		/Volksbank warnt Sie, dass Ihr Zugang zum Online-Banking bald endet/
+describe HS_BODY_803		Heinlein Support Spamschutz Body-803 SCAM
+score HS_BODY_803		5
+
+body HS_BODY_804		/Je suis Madame Sophie Weber. J=E2=80=99ai =C3=A9t=C3=A9 mari=C3=A9e =C3=A0 =/
+describe HS_BODY_804		Heinlein Support Spamschutz Body-804 
+score HS_BODY_804		8
+
+body HS_BODY_805		/Nous n=E2=80=99avons pas eu d=E2=80=99enfants. Etant tout deux chr=C3=A9tie=/
+describe HS_BODY_805		Heinlein Support Spamschutz Body-805 
+score HS_BODY_805		8
+
+body HS_BODY_806		/Mme Sophie weber/
+describe HS_BODY_806		Heinlein Support Spamschutz Body-806 
+score HS_BODY_806		8
+
+body HS_BODY_807		/www\.iampm\.fr\/christian-louboutin-soldes/
+describe HS_BODY_807		Heinlein Support Spamschutz Body-807 
+score HS_BODY_807		8
+
+body HS_BODY_808		/Christian Louboutin solds/
+describe HS_BODY_808		Heinlein Support Spamschutz Body-808 
+score HS_BODY_808		8
+
+body HS_BODY_809		/St\. Louis is like a Wal Mart/
+describe HS_BODY_809		Heinlein Support Spamschutz Body-809 
+score HS_BODY_809		8
+
+body HS_BODY_813		/ased client with NO CLANS/
+describe HS_BODY_813		Heinlein Support Spamschutz Body-813 
+score HS_BODY_813		8
+
+body HS_BODY_814		/Due to the urgency i decided to e-mail you/
+describe HS_BODY_814		Heinlein Support Spamschutz Body-814 
+score HS_BODY_814		4
+
+body HS_BODY_815		/all process is completely risk free/
+describe HS_BODY_815		Heinlein Support Spamschutz Body-815 
+score HS_BODY_815		4
+
+body HS_BODY_816		/NOTE; all process is completely risk free,I/
+describe HS_BODY_816		Heinlein Support Spamschutz Body-816 
+score HS_BODY_816		8
+
+body HS_BODY_817		/Sunn David Mao/
+describe HS_BODY_817		Heinlein Support Spamschutz Body-817 
+score HS_BODY_817		8
+
+body HS_BODY_818		/Bis dahin haben wir den Zugang zu Ihrem Konto vorübergehend Ihr Konto ein und gehen Sie auf die Seite/
+describe HS_BODY_818		Heinlein Support Spamschutz Body-818 PHISHING
+score HS_BODY_818		8
+
+body HS_BODY_819		/Ihr Konto braucht Ihre Hilfe/
+describe HS_BODY_819		Heinlein Support Spamschutz Body-819 PHISHING
+score HS_BODY_819		3
+
+body HS_BODY_820		/Kontoprüfungsabteilung/
+describe HS_BODY_820		Heinlein Support Spamschutz Body-820 PHISHING
+score HS_BODY_820		3
+
+body HS_BODY_821		/on-line video administrator/
+describe HS_BODY_821		Heinlein Support Spamschutz Body-821 
+score HS_BODY_821		8
+
+body HS_BODY_822		/You have new messages from ladies/
+describe HS_BODY_822		Heinlein Support Spamschutz Body-822 
+score HS_BODY_822		8
+
+body HS_BODY_823		/47cf06ac859001157b286990c8351b41.jpg/
+describe HS_BODY_823		Heinlein Support Spamschutz Body-823 
+score HS_BODY_823		8
+
+body HS_BODY_824		/alisa1113\.com\.ua/
+describe HS_BODY_824		Heinlein Support Spamschutz Body-824 
+score HS_BODY_824		8
+
+body HS_BODY_834		/interessiere mich sehr für dich. Ich suche einen Mann für ernste/
+describe HS_BODY_834		Heinlein Support Spamschutz Body-834 
+score HS_BODY_834		8
+
+body HS_BODY_835		/http:\/\/[-.\w]+\/(telekom|NTTCable|volksbank|vodafon?|volksbank_eg|telekom_deutschland|vodafone_online)\//
+describe HS_BODY_835		Heinlein Support Spamschutz Body-835 Downloadlinks zu WORM.WIN32.CRIDEX.POV
+score HS_BODY_835		15
+
+body HS_BODY_836		/Ihre E-Mail hat 2 GB, die von Webmaster erstellt wird, =FCberschritten =/
+describe HS_BODY_836		Heinlein Support Spamschutz Body-836 
+score HS_BODY_836		8
+
+body HS_BODY_837		/Sie derzeit bei 2.30GB laufen, =/
+describe HS_BODY_837		Heinlein Support Spamschutz Body-837 
+score HS_BODY_837		8
+
+body HS_BODY_838		/Bitte f=FCllen Sie die Details unten, um Ihr Konto zu best=E4tigen =/
+describe HS_BODY_838		Heinlein Support Spamschutz Body-838 
+score HS_BODY_838		8
+
+body HS_BODY_839		/http:\/\/[-.\w]+\/(telekom|NTTCable|volksbank|vodafon?|volksbank_eg|telekom_deutschland|vodafone_online|1und1).php/
+describe HS_BODY_839		Heinlein Support Spamschutz Body-839 Downloadlinks zu WORM.WIN32.CRIDEX.POV
+score HS_BODY_839		15
+
+body HS_BODY_840		/PGRpdiBkaXI9Imx0ciI+PHA+PGZvbnQgY29sb3I9IiMyMjIyMjIiPjxmb250IGZhY2U9IkFyaWFs/
+describe HS_BODY_840		Heinlein Support Spamschutz Body-840 
+score HS_BODY_840		8
+
+body HS_BODY_841		/to the recent changes in Google\'s SEO policies, there are a lot of/
+describe HS_BODY_841		Heinlein Support Spamschutz Body-841 
+score HS_BODY_841		8
+
+body HS_BODY_842		/detailed analysis in the form of a Search Engine Optimization (SEO)/
+describe HS_BODY_842		Heinlein Support Spamschutz Body-842 
+score HS_BODY_842		8
+
+body HS_BODY_843		/wir benutzen dieses Mittel, informieren Sie bitte uns Ihren Benutzernamen/
+describe HS_BODY_843		Heinlein Support Spamschutz Body-843 
+score HS_BODY_843		10
+
+body HS_BODY_844		/Bitte beachten Sie, dass Upgrade-Prozess findet in weniger als 48 Stunden,/
+describe HS_BODY_844		Heinlein Support Spamschutz Body-844 
+score HS_BODY_844		5
+
+body HS_BODY_846		/PGRpdiBkaXI9Imx0ciI+PGZvbnQ+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OnZlcmRhbmEsc2Fu/
+describe HS_BODY_846		Heinlein Support Spamschutz Body-846 
+score HS_BODY_846		8
+
+body HS_BODY_847		/have regular update in major Social Media sites/
+describe HS_BODY_847		Heinlein Support Spamschutz Body-847 
+score HS_BODY_847		5
+
+body HS_BODY_848		/because they are at the top of the Google search rankings\. Being at the top/
+describe HS_BODY_848		Heinlein Support Spamschutz Body-848 
+score HS_BODY_848		8
+
+body HS_BODY_849		/sodass es jedem verlorene e-Mail-Id oder Kennwort =C4nderung werden =/
+describe HS_BODY_849		Heinlein Support Spamschutz Body-849 
+score HS_BODY_849		8
+
+body HS_BODY_850		/Kontos f=FChren. Informationen =FCber erforderliche =/
+describe HS_BODY_850		Heinlein Support Spamschutz Body-850 
+score HS_BODY_850		8
+
+body HS_BODY_851		/Bitte beachten Sie, dass Upgrade-Prozess findet in weniger als 48/
+describe HS_BODY_851		Heinlein Support Spamschutz Body-851 
+score HS_BODY_851		8
+
+body HS_BODY_852		/führen. Informationen über erforderliche Benutzername\/Passwort/
+describe HS_BODY_852		Heinlein Support Spamschutz Body-852 
+score HS_BODY_852		8
+
+body HS_BODY_853		/Bitte beachten Sie, dass Upgrade-Prozess findet in weniger als 48 Stunden, wir benutzen/
+describe HS_BODY_853		Heinlein Support Spamschutz Body-853 
+score HS_BODY_853		8
+
+body HS_BODY_854		/Bestätigen Sie Kennwort:/
+describe HS_BODY_854		Heinlein Support Spamschutz Body-854 
+score HS_BODY_854		5
+
+body HS_BODY_856		/Ihre Jpberlin.de Mail-Konto wurde vor=FCbergehend ausgesetzt/
+describe HS_BODY_856		Heinlein Support Spamschutz Body-856 
+score HS_BODY_856		8
+
+body HS_BODY_858		/KLICKEN SIE HIER UM SICHER, DASS IHR KONTO/
+describe HS_BODY_858		Heinlein Support Spamschutz Body-858 
+score HS_BODY_858		8
+
+body HS_BODY_859		/webamilupgradingcenter\.zohosites\.com/
+describe HS_BODY_859		Heinlein Support Spamschutz Body-859 
+score HS_BODY_859		8
+
+body HS_BODY_860		/KLICKEN SIE HIER UM SICHER, DASS IHR KONTO ist aktiv./
+describe HS_BODY_860		Heinlein Support Spamschutz Body-860 Account-Phishing
+score HS_BODY_860		10
+
+body HS_BODY_861		/webamilupgradingcenter\.zohosites\.com/
+describe HS_BODY_861		Heinlein Support Spamschutz Body-861 
+score HS_BODY_861		8
+
+body HS_BODY_862		/www\.nic\.ru\/manager\/email\.cgi/
+describe HS_BODY_862		Heinlein Support Spamschutz Body-862 
+score HS_BODY_862		8
+
+body HS_BODY_863		/Sunrise domain registration fee per 2 years varies in cost from 7960 to 11280 rubles depending on the category/
+describe HS_BODY_863		Heinlein Support Spamschutz Body-863 
+score HS_BODY_863		8
+
+body HS_BODY_864		/RU-CENTER starts application process for Landrush and General Availability domain registration for all/
+describe HS_BODY_864		Heinlein Support Spamschutz Body-864 
+score HS_BODY_864		8
+
+body HS_BODY_865		/Fifa 14 Coins/
+describe HS_BODY_865		Heinlein Support Spamschutz Body-865 
+score HS_BODY_865		5
+
+body HS_BODY_867		/FIFA Ultimate team coins/
+describe HS_BODY_867		Heinlein Support Spamschutz Body-867 
+score HS_BODY_867		5
+
+body HS_BODY_868		/Buy FIFA 14 Ultimate team coin/
+describe HS_BODY_868		Heinlein Support Spamschutz Body-868 
+score HS_BODY_868		5
+
+body HS_BODY_869		/Nachrichten, bis Sie Ihre account.Complete das folgende Formular überprüfen, um Ihr Konto /
+describe HS_BODY_869		Heinlein Support Spamschutz Body-869 Phishing
+score HS_BODY_869		10
+
+body HS_BODY_870		/Wir bitten Sie, um zu bestätigen, und aktualisieren Sie Ihre Informationen heute/
+describe HS_BODY_870		Heinlein Support Spamschutz Body-870 Phishing
+score HS_BODY_870		8
+
+body HS_BODY_871		/tobaccoclaims1\@outlook\.com/
+describe HS_BODY_871		Heinlein Support Spamschutz Body-871 
+score HS_BODY_871		8
+
+body HS_BODY_872		/Die britische America Tobacco-Award Sie 1\.000\.000,00 Von der On-going/
+describe HS_BODY_872		Heinlein Support Spamschutz Body-872 
+score HS_BODY_872		8
+
+body HS_BODY_873		/My name is Michela, i am 25yrs old, i'm a free/
+describe HS_BODY_873		Heinlein Support Spamschutz Body-873 
+score HS_BODY_873		8
+
+body HS_BODY_874		/michelapeterson89\@yahoo.com/
+describe HS_BODY_874		Heinlein Support Spamschutz Body-874 
+score HS_BODY_874		8
+
+body HS_BODY_875		/Ihre E-Mail hat 2 GB, die von Webmaster erstellt =FCberschritten wird/
+describe HS_BODY_875		Heinlein Support Spamschutz Body-875 
+score HS_BODY_875		5
+
+body HS_BODY_876		/Complete das folgende Fo=rmular =FCberpr=FCfen, um Ihr Konto zu =FCberpr=FCfen/
+describe HS_BODY_876		Heinlein Support Spamschutz Body-876 
+score HS_BODY_876		5
+
+body HS_BODY_877		/Bitte f=FCllen Sie die Details unten, um Ihr Konto zu best=E4tigen=20/
+describe HS_BODY_877		Heinlein Support Spamschutz Body-877 
+score HS_BODY_877		5
+
+body HS_BODY_878		/SWEET VIDEO kiss means that the member is interested in SWEET VIDEO/
+describe HS_BODY_878		Heinlein Support Spamschutz Body-878 
+score HS_BODY_878		10
+
+body HS_BODY_879		/Ihre E-Mail hat 2 GB, die von Webmaster erstellt =FCberschritten/
+describe HS_BODY_879		Heinlein Support Spamschutz Body-879 
+score HS_BODY_879		8
+
+body HS_BODY_880		/Bitte f=FCllen Sie die Details unten, um Ihr Konto zu/
+describe HS_BODY_880		Heinlein Support Spamschutz Body-880 
+score HS_BODY_880		8
+
+body HS_BODY_881		/Ihr Jpberlin\.de-Mail-Account zeitlich unterbrochen wurde/
+describe HS_BODY_881		Heinlein Support Spamschutz Body-881 Phishing
+score HS_BODY_881		8
+
+body HS_BODY_882		/Dies ist wegen der laufenden j=E4hrlichen Web-Wartung und L=F6schen von inaktiven Jpberlin\.de-Mail-Konten/
+describe HS_BODY_882		Heinlein Support Spamschutz Body-882 Phishing
+score HS_BODY_882		8
+
+body HS_BODY_883		/http:\/\/webmailupgradingcenter\.zohosites\.com/
+describe HS_BODY_883		Heinlein Support Spamschutz Body-883 
+score HS_BODY_883		8
+
+body HS_BODY_884		/Dies ist wegen der laufenden j=E4hrlichen Web-Wartung und L=F6schen von/
+describe HS_BODY_884		Heinlein Support Spamschutz Body-884 
+score HS_BODY_884		8
+
+body HS_BODY_885		/jpberlindekontovalidation\.webs\.com/
+describe HS_BODY_885		Heinlein Support Spamschutz Body-885 
+score HS_BODY_885		8
+
+body HS_BODY_886		/The Classic version of Jpberlinde!/
+describe HS_BODY_886		Heinlein Support Spamschutz Body-886 
+score HS_BODY_886		8
+
+body HS_BODY_887		/Dear \*JPBerlin \* User/
+describe HS_BODY_887		Heinlein Support Spamschutz Body-887 
+score HS_BODY_887		8
+
+body HS_BODY_888		/jpberlins\.webs\.com/
+describe HS_BODY_888		Heinlein Support Spamschutz Body-888 
+score HS_BODY_888		8
+
+body HS_BODY_889		/Sua conta jpberlin\.de foi temporariamente/
+describe HS_BODY_889		Heinlein Support Spamschutz Body-889 Phishing
+score HS_BODY_889		8
+
+body HS_BODY_890		/37 Million dollars\.contact/
+describe HS_BODY_890		Heinlein Support Spamschutz Body-890 
+score HS_BODY_890		8
+
+body HS_BODY_891		/perrychang\@yeah\.net/
+describe HS_BODY_891		Heinlein Support Spamschutz Body-891 
+score HS_BODY_891		8
+
+body HS_BODY_892		/Your Jpberlin\.de mailbox has exceeded the storage limit as provided by your administrator/
+describe HS_BODY_892		Heinlein Support Spamschutz Body-892 Phishing
+score HS_BODY_892		8
+
+body HS_BODY_893		/Copy or click here: http:\/\/adminemailunit\.yolasite\.com/
+describe HS_BODY_893		Heinlein Support Spamschutz Body-893 Phishing
+score HS_BODY_893		8
+
+body HS_BODY_894		/Your Jpberlin\.de mailbox has exceeded the storage limit as provided by you=r administrator/
+describe HS_BODY_894		Heinlein Support Spamschutz Body-894 Phishing
+score HS_BODY_894		8
+
+body HS_BODY_895		/Copy or click here: http:\/\/admi=nemailunit\.yolasite\.com\/=C2=A0/
+describe HS_BODY_895		Heinlein Support Spamschutz Body-895 Phishing
+score HS_BODY_895		8
+
+body HS_BODY_896		/Your  \*JPBerlin \* Mail quota has reached limit, You might not be able to send or receive new mail until you re-validate your mailbox/
+describe HS_BODY_896		Heinlein Support Spamschutz Body-896 Phishing
+score HS_BODY_896		8
+
+body HS_BODY_897		/To re-validate your mailbox please CLICK HERE <http:\/\/myupdatesjpberlin\.webs\.com\/> and fill the form/
+describe HS_BODY_897		Heinlein Support Spamschutz Body-897 Phishing
+score HS_BODY_897		8
+
+body HS_BODY_898		/tunden Ihrer Zeit zweimal w=F6chentlich. Jede erf=FCllte Aufgabe wird Ihnen/
+describe HS_BODY_898		Heinlein Support Spamschutz Body-898 
+score HS_BODY_898		8
+
+body HS_BODY_899		/The seller hasn’t provided any postage details yet/
+describe HS_BODY_899		Heinlein Support Spamschutz Body-899 Phishing
+score HS_BODY_899		8
+
+body HS_BODY_900		/Hello Dear,=0AI am Ms\. Sally Bellame/
+describe HS_BODY_900		Heinlein Support Spamschutz Body-900 
+score HS_BODY_900		8
+
+body HS_BODY_901		/or possible any good lucrative=0Abusi=/
+describe HS_BODY_901		Heinlein Support Spamschutz Body-901 
+score HS_BODY_901		8
+
+body HS_BODY_902		/Asoziale Chefs und Kollegen k&ouml;nnen einem das Leben am Arbeitsplatz permanent zur Psychoh&ouml;lle machen/
+describe HS_BODY_902		Heinlein Support Spamschutz Body-902 Phishing
+score HS_BODY_902		8
+
+body HS_BODY_903		/wie man zum Monatsende hin immer ausreichend Mittel zur Verf&uuml;gung hat, ohne sich tagt&auml;glich mit den gleichen Idioten herumzu&auml;rgern/
+describe HS_BODY_903		Heinlein Support Spamschutz Body-903 Phishing
+score HS_BODY_903		8
+
+body HS_BODY_904		/Als vorbeugende Maßnahme alle unsere Kunden sind erforderlich, um Bankkonto zu aktualisieren/
+describe HS_BODY_904		Heinlein Support Spamschutz Body-904 Phishing
+score HS_BODY_904		8
+
+body HS_BODY_905		/Um zu unserem neuen Sicherheits-System zu verbinden und zum Schutz vor Betrug/
+describe HS_BODY_905		Heinlein Support Spamschutz Body-905 Phishing
+score HS_BODY_905		8
+
+body HS_BODY_907		/http:\/\/www.google.com\/url\?q=3Dhttp%3A%2F%2Fjs\.hdr\.hr%2Fciy%2Flogin\.htm&s=/
+describe HS_BODY_907		Heinlein Support Spamschutz Body-907 Phishing
+score HS_BODY_907		8
+
+body HS_BODY_908		/Anschlie=C3=9Fend wir Ihr Online-Konto automatisch wiederhergestellt und =/
+describe HS_BODY_908		Heinlein Support Spamschutz Body-908 Phishing
+score HS_BODY_908		8
+
+body HS_BODY_909		/soutogomes\@iol\.pt/
+describe HS_BODY_909		Heinlein Support Spamschutz Body-909 Phishing
+score HS_BODY_909		8
+
+body HS_BODY_910		/I was going to call you and then I thought I would save you/
+describe HS_BODY_910		Heinlein Support Spamschutz Body-910 Spam
+score HS_BODY_910		8
+
+body HS_BODY_911		/1472 Murpy Ave\, Ste 213/
+describe HS_BODY_911		Heinlein Support Spamschutz Body-911 Spqm
+score HS_BODY_911		8
+
+body HS_BODY_912		/adf\.ly\/gmRjD/
+describe HS_BODY_912		Heinlein Support Spamschutz Body-912 Spam
+score HS_BODY_912		8
+
+body HS_BODY_914		/jpberlin1\.weebly\.com/
+describe HS_BODY_914		Heinlein Support Spamschutz Body-914 Phishing
+score HS_BODY_914		8
+
+body HS_BODY_915		/Security Alert Amt/
+describe HS_BODY_915		Heinlein Support Spamschutz Body-915 Phishing
+score HS_BODY_915		8
+
+body HS_BODY_917		/jpberlin1\.weebly\.com/
+describe HS_BODY_917		Heinlein Support Spamschutz Body-917 Phishing
+score HS_BODY_917		8
+
+body HS_BODY_918		/because of the on-going yearly jpberlin\.de web maintenance and deleting of inactive jpberlin\.de accounts/
+describe HS_BODY_918		Heinlein Support Spamschutz Body-918 Phishing
+score HS_BODY_918		8
+
+body HS_BODY_919		/jpberlin\.de Konto wurde vor=FCbergehend ausgesetzt, und dies bedeutet,= dass Sie nicht in der Lage, neue E-Mail-Nachrichten zu senden und zu empfangen/
+describe HS_BODY_919		Heinlein Support Spamschutz Body-919 Phishing
+score HS_BODY_919		8
+
+body HS_BODY_920		/http:\/\/www\.barantrag\.com/
+describe HS_BODY_920		Heinlein Support Spamschutz Body-920 Phishing
+score HS_BODY_920		8
+
+body HS_BODY_921		/My name is Site Harif  and I am the owner of CV Abadi and Molkin Timber/
+describe HS_BODY_921		Heinlein Support Spamschutz Body-921 
+score HS_BODY_921		8
+
+body HS_BODY_922		/ascok\.satilikfiloguvercini\.com/
+describe HS_BODY_922		Heinlein Support Spamschutz Body-922 Phishing
+score HS_BODY_922		8
+
+body HS_BODY_923		/haben Sie vor zu verreisen ? 30% Discount auf/
+describe HS_BODY_923		Heinlein Support Spamschutz Body-923 
+score HS_BODY_923		8
+
+body HS_BODY_924		/bellalady0314\.com\.ua/
+describe HS_BODY_924		Heinlein Support Spamschutz Body-924 
+score HS_BODY_924		8
+
+body HS_BODY_925		/\.bargeldformular\.com/
+describe HS_BODY_925		Heinlein Support Spamschutz Body-925 Spam
+score HS_BODY_925		8
+
+body HS_BODY_926		/auch bei negativer Bonit=E4t/
+describe HS_BODY_926		Heinlein Support Spamschutz Body-926 
+score HS_BODY_926		6
+
+body HS_BODY_927		/kreditkartenabruf\.com/
+describe HS_BODY_927		Heinlein Support Spamschutz Body-927 Spam
+score HS_BODY_927		10
+
+body HS_BODY_928		/Ohne Information an Ihre Hausbank/
+describe HS_BODY_928		Heinlein Support Spamschutz Body-928 Spam
+score HS_BODY_928		10
+
+body HS_BODY_929		/beantragen Sie noch heute Ihre Kreditauszahlung/
+describe HS_BODY_929		Heinlein Support Spamschutz Body-929 Spam
+score HS_BODY_929		10
+
+body HS_BODY_930		/Good Life Ltd\./
+describe HS_BODY_930		Heinlein Support Spamschutz Body-930 Spam
+score HS_BODY_930		10
+
+body HS_BODY_931		/Ihr Auszahlungsteam/
+describe HS_BODY_931		Heinlein Support Spamschutz Body-931 Spam
+score HS_BODY_931		6
+
+body HS_BODY_932		/VLT 1432 Malta/
+describe HS_BODY_932		Heinlein Support Spamschutz Body-932 Spam
+score HS_BODY_932		6
+
+body HS_BODY_933		/12\/12 Vincenti Buildings, Strait Street/
+describe HS_BODY_933		Heinlein Support Spamschutz Body-933 Spam
+score HS_BODY_933		10
+
+body HS_BODY_934		/Sparkasse Deutschland und Österreich Pty Limited/
+describe HS_BODY_934		Heinlein Support Spamschutz Body-934 
+score HS_BODY_934		5
+
+body HS_BODY_935		/Um dies zu tun, laden Sie bitte das Formular aus/
+describe HS_BODY_935		Heinlein Support Spamschutz Body-935 
+score HS_BODY_935		5
+
+body HS_BODY_936		/Sparkasse überpr.*ft regelm.*ig Konten für Betrug und \/ oder /
+describe HS_BODY_936		Heinlein Support Spamschutz Body-936 
+score HS_BODY_936		5
+
+body HS_BODY_939		/http:\/\/hoachatthaiha\.vn\/components\/com_tag\/css\/index\.html/
+describe HS_BODY_939		Heinlein Support Spamschutz Body-939 Pishing
+score HS_BODY_939		8
+
+body HS_BODY_941		/vergleichpkv2014\.com/
+describe HS_BODY_941		Heinlein Support Spamschutz Body-941 
+score HS_BODY_941		8
+
+body HS_BODY_942		/http\:\/\/blacklabimaging\.com\/administrator\/components\/com\_banners\/models\/client\.php/
+describe HS_BODY_942		Heinlein Support Spamschutz Body-942 Phishing
+score HS_BODY_942		8
+
+body HS_BODY_944		/77u\/PCFET0NUWVBFIGh0bWw+IDxodG1sIGxhbmc9ZGUgeG1sbnM6ZmI9Imh0dHA6Ly92ZXJpZml6/
+describe HS_BODY_944		Heinlein Support Spamschutz Body-944 
+score HS_BODY_944		8
+
+body HS_BODY_945		/http\:\/\/www\.chasingthecut\.org\/css\/fr\//
+describe HS_BODY_945		Heinlein Support Spamschutz Body-945 
+score HS_BODY_945		8
+
+body HS_BODY_946		/jpberlin-de\.yolasite\.com/
+describe HS_BODY_946		Heinlein Support Spamschutz Body-946 Phishing
+score HS_BODY_946		10
+
+body HS_BODY_947		/Wir werden d=ie einige wichtige E-Mail-Kontof=FChrung auf hohe Qualit=E4t in Internet-Ko=nnektivit=E4t in der 2014 Kampf gegen Spam zu gew=E4hrleisten und die Siche=rheit zu erh=F6hen/
+describe HS_BODY_947		Heinlein Support Spamschutz Body-947 Phishing
+score HS_BODY_947		8
+
+body HS_BODY_948		/Bitte wird freundlich informiert, dass das Vers=E4umnis, dies zu tun=, wird die sofortige K=FCndigung des E-Mail-Kontos werden/
+describe HS_BODY_948		Heinlein Support Spamschutz Body-948 Phishing
+score HS_BODY_948		8
+
+body HS_BODY_949		/Gr=C3=BC=C3=9Fen=0A=C2=A0=0AEldin=0ADautovic=0A==C2=A0=0A=0A=0AUna\_copy=0A=0A=0ABosnia i=0AHercegovina=0ASarajevo/
+describe HS_BODY_949		Heinlein Support Spamschutz Body-949 Phishing
+score HS_BODY_949		6
+
+body HS_BODY_950		/ Media Center GmbH/
+describe HS_BODY_950		Heinlein Support Spamschutz Body-950 
+score HS_BODY_950		2
+
+body HS_BODY_951		/Giro Online Office AG Maximilian Beck/
+describe HS_BODY_951		Heinlein Support Spamschutz Body-951 
+score HS_BODY_951		4
+
+body HS_BODY_952		/http\:\/\/reklamajandekos.hu\/slobozinstosky.htm/
+describe HS_BODY_952		Heinlein Support Spamschutz Body-952 
+score HS_BODY_952		6
+
+body HS_BODY_953		/Qualit.t in Internet-Konnektivität in der 2014/
+describe HS_BODY_953		Heinlein Support Spamschutz Body-953 
+score HS_BODY_953		5
+
+body HS_BODY_954		/werden alle E-Mail-Hub-Systeme/
+describe HS_BODY_954		Heinlein Support Spamschutz Body-954 
+score HS_BODY_954		5
+
+body HS_BODY_955		/oakleycountry\.com/
+describe HS_BODY_955		Heinlein Support Spamschutz Body-955 
+score HS_BODY_955		2
+
+body HS_BODY_956		/To ensure the smooth delivery of oakleylove emails to your inbox/
+describe HS_BODY_956		Heinlein Support Spamschutz Body-956 
+score HS_BODY_956		4
+
+body HS_BODY_957		/копирай следния линк в твоя уеб браузър/
+describe HS_BODY_957		Heinlein Support Spamschutz Body-957 
+score HS_BODY_957		3
+
+body HS_BODY_958		/Аз Съм За иска да те опознае в Two/
+describe HS_BODY_958		Heinlein Support Spamschutz Body-958 
+score HS_BODY_958		3
+
+body HS_BODY_959		/cnc-precision-turned\.com/
+describe HS_BODY_959		Heinlein Support Spamschutz Body-959 Spam
+score HS_BODY_959		6
+
+body HS_BODY_960		/http\:\/\/enlevement-epave-gratuit-idf\.fr\/xmlrpc\/includes\/webstat\/vodafone_service\_d2/
+describe HS_BODY_960		Heinlein Support Spamschutz Body-960 
+score HS_BODY_960		8
+
+body HS_BODY_961		/theappleids\@idapple\.com/
+describe HS_BODY_961		Heinlein Support Spamschutz Body-961 Spam
+score HS_BODY_961		8
+
+body HS_BODY_962		/fio-net\.de/
+describe HS_BODY_962		Heinlein Support Spamschutz Body-962 Spam
+score HS_BODY_962		6
+
+body HS_BODY_963		/uyyug\.com/
+describe HS_BODY_963		Heinlein Support Spamschutz Body-963 
+score HS_BODY_963		7
+
+body HS_BODY_964		/atlasurody\.pl/
+describe HS_BODY_964		Heinlein Support Spamschutz Body-964 Spam
+score HS_BODY_964		7
+
+body HS_BODY_966		/ekodanismanlik\.com/
+describe HS_BODY_966		Heinlein Support Spamschutz Body-966 
+score HS_BODY_966		7
+
+body HS_BODY_970		/osudems\.com/
+describe HS_BODY_970		Heinlein Support Spamschutz Body-970 
+score HS_BODY_970		7
+
+body HS_BODY_972		/perfect\.delivery\@aol\.com/
+describe HS_BODY_972		Heinlein Support Spamschutz Body-972 Spam
+score HS_BODY_972		7
+
+body HS_BODY_973		/UEsDBBQAAAAIADlbs0Rhpqi5xFIKAG8MDwAbAAAATkVXIE9yZGVyIHNwZWNpZmljYXRpb24uZXhl/
+describe HS_BODY_973		Heinlein Support Spamschutz Body-973 
+score HS_BODY_973		7
+
+body HS_BODY_974		/firmenserver\.com/
+describe HS_BODY_974		Heinlein Support Spamschutz Body-974 
+score HS_BODY_974		6
+
+body HS_BODY_975		/confixx\.sws-hosting\.de/
+describe HS_BODY_975		Heinlein Support Spamschutz Body-975 Spam
+score HS_BODY_975		6
+
+body HS_BODY_976		/Wir gemailt Sie eine kleine Weile/
+describe HS_BODY_976		Heinlein Support Spamschutz Body-976 
+score HS_BODY_976		5
+
+body HS_BODY_977		/Link Hilfe in der oberen/
+describe HS_BODY_977		Heinlein Support Spamschutz Body-977 
+score HS_BODY_977		3
+
+body HS_BODY_978		/Sehr geehrter PayPal-Mitglied,/
+describe HS_BODY_978		Heinlein Support Spamschutz Body-978 
+score HS_BODY_978		5
+
+body HS_BODY_979		/papalolo\@q.com/
+describe HS_BODY_979		Heinlein Support Spamschutz Body-979 
+score HS_BODY_979		8
+
+body HS_BODY_980		/Haben Sie je Angst Ihr Atem könnte stillstehen, weil sich Ihr Brustkorb/
+describe HS_BODY_980		Heinlein Support Spamschutz Body-980 Spam
+score HS_BODY_980		5
+
+body HS_BODY_981		/web331p1\@anna\.webhoster\.ag/
+describe HS_BODY_981		Heinlein Support Spamschutz Body-981 
+score HS_BODY_981		6
+
+body HS_BODY_982		/Webmail AdministratorInc\. Alle Rechte vorbehalten/
+describe HS_BODY_982		Heinlein Support Spamschutz Body-982 
+score HS_BODY_982		5
+
+body HS_BODY_983		/webmail-jpberlin-de.webs.com/
+describe HS_BODY_983		Heinlein Support Spamschutz Body-983 
+score HS_BODY_983		10
+
+body HS_BODY_984		/IhreKontingentgrenze/
+describe HS_BODY_984		Heinlein Support Spamschutz Body-984 
+score HS_BODY_984		5
+
+body HS_BODY_985		/IhrWebmail-Konto zu verwende/
+describe HS_BODY_985		Heinlein Support Spamschutz Body-985 
+score HS_BODY_985		3
+
+body HS_BODY_986		/www.tinnituswunder.me/
+describe HS_BODY_986		Heinlein Support Spamschutz Body-986 SPAM
+score HS_BODY_986		5
+
+body HS_BODY_987		/Falls Sie oder jemand Ihrer Lieben an Tinnitus leidet, dann /
+
+describe HS_BODY_987		Heinlein Support Spamschutz Body-987 Spam
+score HS_BODY_987		5
+
+body HS_BODY_988		/Helpdesk Copyright.*2014 Webmail AdministratorInc./
+describe HS_BODY_988		Heinlein Support Spamschutz Body-988 Phishing
+score HS_BODY_988		5
+
+body HS_BODY_989		/panikhilfe\.me/
+describe HS_BODY_989		Heinlein Support Spamschutz Body-989 Spam
+score HS_BODY_989		6
+
+body HS_BODY_990		/e-Mails in unsererDatenbank =FCberschritten/
+describe HS_BODY_990		Heinlein Support Spamschutz Body-990 
+score HS_BODY_990		6
+
+body HS_BODY_991		/Um E-mail-Kontingentgrenzen f=FCr 2.2 GB zu verbessern/
+describe HS_BODY_991		Heinlein Support Spamschutz Body-991 
+score HS_BODY_991		6
+
+body HS_BODY_992		/sk1175\@nyu\.edu/
+describe HS_BODY_992		Heinlein Support Spamschutz Body-992 
+score HS_BODY_992		6
+
+body HS_BODY_993		/Antworten für weitere Informationen per E-Mail: qatarcharityqc.gmail.com/
+describe HS_BODY_993		Heinlein Support Spamschutz Body-993 Spam
+score HS_BODY_993		5
+
+body HS_BODY_994		/hier im Anhang finden Sie Ihre Rechnung.*als PDF-Datei. Wenn es Ihnen nicht gelingt, die Datei auf dem Handy zu öffnen, versuchen Sie es bitte auf Ihrem Computer./
+describe HS_BODY_994		Heinlein Support Spamschutz Body-994 Spam
+score HS_BODY_994		8
+
+body HS_BODY_995		/Um wieder zu beleben und erhöhen Sie Ihre Webmail-Quote auf de/
+describe HS_BODY_995		Heinlein Support Spamschutz Body-995 Phishing
+score HS_BODY_995		5
+
+body HS_BODY_996		/tjrn\.jus\.br/
+describe HS_BODY_996		Heinlein Support Spamschutz Body-996 
+score HS_BODY_996		8
+
+body HS_BODY_997		/reheart\.org/
+describe HS_BODY_997		Heinlein Support Spamschutz Body-997 
+score HS_BODY_997		8
+
+body HS_BODY_998		/RGVhciBzdXBwb3J0LA0KDQpXZSBhcmUgc3RhcnRpbmcgdG8gcmVjZWl2ZSBzZXZlcmFsIHNwYW0g/
+describe HS_BODY_998		Heinlein Support Spamschutz Body-998 
+score HS_BODY_998		8
+
+body HS_BODY_999		/Network Webmaster. All Rights Reserved\<br\>Security Alert Office/
+describe HS_BODY_999		Heinlein Support Spamschutz Body-999 Phishing
+score HS_BODY_999		10
+
+body HS_BODY_1000		/jpberlinde.weebly.com/
+describe HS_BODY_1000		Heinlein Support Spamschutz Body-1000 Phishing
+score HS_BODY_1000		10
+
+body HS_BODY_1001		/Ihr Konto wurde jpberlin.de zeitlich ausgesetzt, und dies bedeutet, dass/
+describe HS_BODY_1001		Heinlein Support Spamschutz Body-1001 Phishing
+score HS_BODY_1001		10
+
+body HS_BODY_1002		/Security Alert Amt/
+describe HS_BODY_1002		Heinlein Support Spamschutz Body-1002 
+score HS_BODY_1002		5
+
+body HS_BODY_1003		/De-Aktivierung Warnung/
+describe HS_BODY_1003		Heinlein Support Spamschutz Body-1003 
+score HS_BODY_1003		3
+
+body HS_BODY_1004		/jpberlinde\.weebly\.com/
+describe HS_BODY_1004		Heinlein Support Spamschutz Body-1004 
+score HS_BODY_1004		5
+
+body HS_BODY_1006		/Anschließend wir Ihr Online-Konto automatisch wiederhergestellt/
+describe HS_BODY_1006		Heinlein Support Spamschutz Body-1006 Phishing
+score HS_BODY_1006		5
+
+body HS_BODY_1007		/Your jpberlin\.de account has been temporally suspended/
+describe HS_BODY_1007		Heinlein Support Spamschutz Body-1007 Phishing
+score HS_BODY_1007		8
+
+body HS_BODY_1008		/jpberlinde\.weebly\.com/
+describe HS_BODY_1008		Heinlein Support Spamschutz Body-1008 Phishing
+score HS_BODY_1008		8
+
+body HS_BODY_1009		/Ebay_Ausgleich_stornierten_Buchung_Ihrer_Bestellung/
+
+describe HS_BODY_1009		Heinlein Support Spamschutz Body-1009 Ebay Phishing
+score HS_BODY_1009		5
+
+body HS_BODY_1010		/ndige Forderungsausstellung/
+describe HS_BODY_1010		Heinlein Support Spamschutz Body-1010 
+score HS_BODY_1010		3
+
+body HS_BODY_1011		/ Namens unseren Mandanten Paypal GmbH/
+describe HS_BODY_1011		Heinlein Support Spamschutz Body-1011 
+score HS_BODY_1011		5
+
+body HS_BODY_1012		/Sparkasse-Team wird Ihr Online-Konto Konto zu aktualisieren.Sparkasse akt=/
+describe HS_BODY_1012		Heinlein Support Spamschutz Body-1012 
+score HS_BODY_1012		5
+
+body HS_BODY_1013		/Problem_l=F6sen:_Konto_verifizieren_&_vervollst=E4ndigen?=/
+describe HS_BODY_1013		Heinlein Support Spamschutz Body-1013 
+score HS_BODY_1013		8
+
+body HS_BODY_1014		/http\:\/\/chai4car=2Ecom\/themes\/deutschland/
+describe HS_BODY_1014		Heinlein Support Spamschutz Body-1014 
+score HS_BODY_1014		8
+
+body HS_BODY_1015		/25 no need to deposit/
+describe HS_BODY_1015		Heinlein Support Spamschutz Body-1015 
+score HS_BODY_1015		6
+
+body HS_BODY_1016		/Jackpot Grand Casino and claim a huge/
+describe HS_BODY_1016		Heinlein Support Spamschutz Body-1016 
+score HS_BODY_1016		6
+
+body HS_BODY_1017		/capman\.es\/eager\.html /
+describe HS_BODY_1017		Heinlein Support Spamschutz Body-1017 Spam
+score HS_BODY_1017		5
+
+body HS_BODY_1018		/movqvqtr\@gmail\.com /
+describe HS_BODY_1018		Heinlein Support Spamschutz Body-1018 
+score HS_BODY_1018		8
+
+body HS_BODY_1019		/tritonmed\@gmail\.com/
+describe HS_BODY_1019		Heinlein Support Spamschutz Body-1019 
+score HS_BODY_1019		8
+
+body HS_BODY_1020		/0091-9810114765/
+describe HS_BODY_1020		Heinlein Support Spamschutz Body-1020 Spam
+score HS_BODY_1020		8
+
+body HS_BODY_1021		/www\.curveseurope\.com/
+describe HS_BODY_1021		Heinlein Support Spamschutz Body-1021 
+score HS_BODY_1021		6
+
+body HS_BODY_1022		/domainnotices[0-9]{0,4}\.com/
+describe HS_BODY_1022		Heinlein Support Spamschutz Body-1022 
+score HS_BODY_1022		8
+
+body HS_BODY_1023		/JVBERi0xLjMKJcfsj6IKNSAwIG9iago8PC9MZW5ndGggNiAwIFIvRmlsdGVyIC9GbGF0ZURlY29k/
+describe HS_BODY_1023		Heinlein Support Spamschutz Body-1023 
+score HS_BODY_1023		8
+
+body HS_BODY_1024		/xolaizxircr\@gmail\.com /
+describe HS_BODY_1024		Heinlein Support Spamschutz Body-1024 Spam
+score HS_BODY_1024		8
+
+body HS_BODY_1025		/www\.cortinajescomin\.com/
+describe HS_BODY_1025		Heinlein Support Spamschutz Body-1025 
+score HS_BODY_1025		8
+
+body HS_BODY_1026		/obligation to pay the amounts stated unless you accept this offer/
+describe HS_BODY_1026		Heinlein Support Spamschutz Body-1026 
+score HS_BODY_1026		5
+
+body HS_BODY_1027		/www-easybank.at\/sepa.abteilung/
+describe HS_BODY_1027		Heinlein Support Spamschutz Body-1027 
+score HS_BODY_1027		5
+
+body HS_BODY_1028		/IHR ACCOUNT KANN GESPERRT WERDEN\/SEPA ZAHLUNGSVERKEHR/
+describe HS_BODY_1028		Heinlein Support Spamschutz Body-1028 
+score HS_BODY_1028		5
+
+body HS_BODY_1029		/Sie haben Schulden, finanzielle Rechtsstreite und all Ihre Versuche bei de/
+describe HS_BODY_1029		Heinlein Support Spamschutz Body-1029 
+score HS_BODY_1029		5
+
+body HS_BODY_1030		/ Wenn Sie eine ehrliche Person und gutgl=E4ubig sind, sind wir bereit, Ihnen= /
+describe HS_BODY_1030		Heinlein Support Spamschutz Body-1030 
+score HS_BODY_1030		5
+
+body HS_BODY_1031		/ Hon\.Dr\.John Jonasdr\.kaddii\@yahoo\.com=2C dr.keddi\@yahoo\.comTel +225 477 86 8= /
+describe HS_BODY_1031		Heinlein Support Spamschutz Body-1031 
+score HS_BODY_1031		5
+
+body HS_BODY_1032		/please kindly Let me know if you have been receiving my last mail/
+describe HS_BODY_1032		Heinlein Support Spamschutz Body-1032 
+score HS_BODY_1032		5
+
+body HS_BODY_1033		/www.apotheke-germany.co.uk/
+describe HS_BODY_1033		Heinlein Support Spamschutz Body-1033 Spam
+score HS_BODY_1033		5
+
+body HS_BODY_1034		/PEhUTUw+PEhFQUQ+PC9IRUFEPg0KPEJPRFk+DQo8RElWIGlkPW1lc3NhZ2Vib2R5Pg0KPERJ/
+describe HS_BODY_1034		Heinlein Support Spamschutz Body-1034 Spam
+score HS_BODY_1034		8
+
+body HS_BODY_1035		/john_max11114\@yahoo\.com/
+describe HS_BODY_1035		Heinlein Support Spamschutz Body-1035 
+score HS_BODY_1035		8
+
+body HS_BODY_1036		/mail\.autochina360\.com/
+describe HS_BODY_1036		Heinlein Support Spamschutz Body-1036 Spam
+score HS_BODY_1036		6
+
+body HS_BODY_1037		/newladies0614\.com\.ua/
+describe HS_BODY_1037		Heinlein Support Spamschutz Body-1037 Spam
+score HS_BODY_1037		8
+
+body HS_BODY_1039		/unter\ einer\ Pilzinfektion/
+describe HS_BODY_1039		Heinlein Support Spamschutz Body-1039 Spam
+score HS_BODY_1039		8
+
+body HS_BODY_1040		/Antigua Investment Partners in collaboration with C\.I\.P/
+describe HS_BODY_1040		Heinlein Support Spamschutz Body-1040 Spam
+score HS_BODY_1040		8
+
+body HS_BODY_1041		/http\:\/\/www\.wasistgesund\.me\?email\=/
+describe HS_BODY_1041		Heinlein Support Spamschutz Body-1041 Spam
+score HS_BODY_1041		8
+
+body HS_BODY_1042		/http\:\/\/www\.openmixer\.org\/envio\/unsubscribe\.php\?M\=/
+describe HS_BODY_1042		Heinlein Support Spamschutz Body-1042 Spam
+score HS_BODY_1042		8
+
+body HS_BODY_1043		/http...www.klickhier....eu/
+describe HS_BODY_1043		Heinlein Support Spamschutz Body-1043 
+score HS_BODY_1043		5
+
+body HS_BODY_1046		/webmail-jpberlin-de-Re-src\.webs\.com/
+describe HS_BODY_1046		Heinlein Support Spamschutz Body-1046 Spam
+score HS_BODY_1046		8
+
+body HS_BODY_1047		/neuesten\ IP\ Security\-Upgrades/
+describe HS_BODY_1047		Heinlein Support Spamschutz Body-1047 
+score HS_BODY_1047		5
+
+body HS_BODY_1048		/jazmyncil\.me/
+describe HS_BODY_1048		Heinlein Support Spamschutz Body-1048 Spam
+score HS_BODY_1048		8
+
+body HS_BODY_1049		/sertha\@sertha\.com\.br/
+describe HS_BODY_1049		Heinlein Support Spamschutz Body-1049 Spam
+score HS_BODY_1049		5
+
+body HS_BODY_1050		/bipbup\.com\.br/
+describe HS_BODY_1050		Heinlein Support Spamschutz Body-1050 Spam
+score HS_BODY_1050		5
+
+body HS_BODY_1051		/www\.sertha\.com\.br/
+describe HS_BODY_1051		Heinlein Support Spamschutz Body-1051 Spam
+score HS_BODY_1051		5
+
+body HS_BODY_1052		/dementia-challengenorth\.co\.uk/
+describe HS_BODY_1052		Heinlein Support Spamschutz Body-1052 Spam
+score HS_BODY_1052		8
+
+body HS_BODY_1053		/anticellulitenartikel\.me/
+describe HS_BODY_1053		Heinlein Support Spamschutz Body-1053 Spam
+score HS_BODY_1053		5
+
+body HS_BODY_1054		/href\=\"http\:\/\/american1\.tk\/CRM\/link.php\?URL\=aHR0cDovL2luZm8uZmxhZ2NvdW50ZXIuY29tL/
+describe HS_BODY_1054		Heinlein Support Spamschutz Body-1054 Spam
+score HS_BODY_1054		8
+
+body HS_BODY_1055		/href\=\"http\:\/\/www\.pouyandeganaka\.tk\/index\.php\?subid\=67413\&option\=com\_acymailing\&ctrl\=user\&task\=out\&mailid\=10\&key\=285dcfd07e2dbc345587410e6e2969e5\&acm\=67413\_10\"/
+describe HS_BODY_1055		Heinlein Support Spamschutz Body-1055 Spam
+score HS_BODY_1055		8
+
+body HS_BODY_1056		/href\=\"http\:\/\/www\.e\-posta\.info\/unsubscribe\.php/
+describe HS_BODY_1056		Heinlein Support Spamschutz Body-1056 Spam
+score HS_BODY_1056		8
+
+body HS_BODY_1057		/mail1\.hmrrblog\.me\/link\.php\?M\=27937\&N\=2\&L\=1\&F\=T/
+describe HS_BODY_1057		Heinlein Support Spamschutz Body-1057 Spam
+score HS_BODY_1057		8
+
+body HS_BODY_1058		/http\:\/\/inbox8\.tk\/email\/link\.php/
+describe HS_BODY_1058		Heinlein Support Spamschutz Body-1058 
+score HS_BODY_1058		8
+
+body HS_BODY_1059		/From\:.*\<newsletter\@jojormall.me\>/
+describe HS_BODY_1059		Heinlein Support Spamschutz Body-1059 
+score HS_BODY_1059		4
+
+body HS_BODY_1060		/http\:\/\/mail1\.fettwegbeispiel\.me/
+describe HS_BODY_1060		Heinlein Support Spamschutz Body-1060 
+score HS_BODY_1060		8
+
+body HS_BODY_1061		/http\:\/\/www\.cxdnkx\.com\/article\/index\.php/
+describe HS_BODY_1061		Heinlein Support Spamschutz Body-1061 Phishing
+score HS_BODY_1061		8
+
+body HS_BODY_1062		/http\:\/\/mail1\.tinnitusheilung\.me\/unsubscribe\.php\?M\=85415\&C\=49b7e498abd38a3afc643cf082ad730f\&L\=1\&N\=2/
+describe HS_BODY_1062		Heinlein Support Spamschutz Body-1062 Spam
+score HS_BODY_1062		8
+
+body HS_BODY_1063		/ PLEASE OPEN THE ATTACHED FILE FOR MORE INFORMATION/
+describe HS_BODY_1063		Heinlein Support Spamschutz Body-1063 
+score HS_BODY_1063		5
+
+body HS_BODY_1064		/tinnitusheilung.me/
+describe HS_BODY_1064		Heinlein Support Spamschutz Body-1064 
+score HS_BODY_1064		5
+
+body HS_BODY_1065		/Diese Alternativen Tinnitusheilmitte/
+describe HS_BODY_1065		Heinlein Support Spamschutz Body-1065 
+score HS_BODY_1065		5
+
+body HS_BODY_1066		/Tinnitusheilmittel in Betracht ziehen/
+describe HS_BODY_1066		Heinlein Support Spamschutz Body-1066 
+score HS_BODY_1066		3
+
+body HS_BODY_1067		/List any special requirements attached to letter/
+describe HS_BODY_1067		Heinlein Support Spamschutz Body-1067 
+score HS_BODY_1067		5
+
+body HS_BODY_1068		/rooms reservation/
+describe HS_BODY_1068		Heinlein Support Spamschutz Body-1068 
+score HS_BODY_1068		1
+
+body HS_BODY_1069		/Dear Hotel Manager,/
+describe HS_BODY_1069		Heinlein Support Spamschutz Body-1069 
+score HS_BODY_1069		3
+
+body HS_BODY_1070		/http\:\/\/mail[0-9]\.haarausfallloesung\.me\/unsubscribe\.php/
+describe HS_BODY_1070		Heinlein Support Spamschutz Body-1070 Spam
+score HS_BODY_1070		10
+
+body HS_BODY_1076		/PRAJNA/
+describe HS_BODY_1076		Heinlein Support Spamschutz Body-1076 You are a backscatter
+score HS_BODY_1076		2
+
+body HS_BODY_1077		/href\=\'http\:\/\/hypermail\.ir\/unsubscribe\./
+describe HS_BODY_1077		Heinlein Support Spamschutz Body-1077 
+score HS_BODY_1077		1
+
+body HS_BODY_1078		/http\:\/\/www\.imm\-tunisie\.com\.tn\/\_found\.your\.photo2\.jpeg\?lexukaf753349/
+describe HS_BODY_1078		Heinlein Support Spamschutz Body-1078 Phishing
+score HS_BODY_1078		8
+
+body HS_BODY_1079		/webmail-jpberlin-de-roundcube\.webs\.com/
+describe HS_BODY_1079		Heinlein Support Spamschutz Body-1079 
+score HS_BODY_1079		10
+
+body HS_BODY_1080		/flexibleportableso\=larmodulesfactoryinChina/
+describe HS_BODY_1080		Heinlein Support Spamschutz Body-1080 Spam
+score HS_BODY_1080		8
+
+body HS_BODY_1081		/http\:\/\/www\.dailyaag\.com\/img\/\_vti\_cnf\/col1\-hdr\.php/
+describe HS_BODY_1081		Heinlein Support Spamschutz Body-1081 Phishing
+score HS_BODY_1081		8
+
+body HS_BODY_1082		/qgawfc\@gmail\.com/
+describe HS_BODY_1082		Heinlein Support Spamschutz Body-1082 Spam
+score HS_BODY_1082		5
+
+body HS_BODY_1083		/http\:\/\/iesucs\.org\.ve\/webmail\.de\/public\_html\/webmail\/webmail\/index\.php/
+describe HS_BODY_1083		Heinlein Support Spamschutz Body-1083 Phishing
+score HS_BODY_1083		8
+
+body HS_BODY_1085		/http\:\/\/beauties4u0814\.com\.ua\/login\.php\?d\=dT0xNzU0MjEwNyZwPTAyNGMyYzg5NGZkM2M0NDg3OTg5MDg3ZDE3Y2UzOTc1JnM9c3BhbXZwc192My0y/
+describe HS_BODY_1085		Heinlein Support Spamschutz Body-1085 Phishing
+score HS_BODY_1085		5
+
+body HS_BODY_1087		/Subject\: are you ready for this\?/
+describe HS_BODY_1087		Heinlein Support Spamschutz Body-1087 
+score HS_BODY_1087		8
+
+body HS_BODY_1088		/http\:\/\/www\.marketwatch\.com\/investing\/stock\/cnrmf/ 
+describe HS_BODY_1088		Heinlein Support Spamschutz Body-1088 SPAM
+score HS_BODY_1088		8
+
+body HS_BODY_1089		/It will be at 30cents+ before day\'s end and past 65cents by month\'s end/
+describe HS_BODY_1089		Heinlein Support Spamschutz Body-1089 SPAM
+score HS_BODY_1089		8
+
+body HS_BODY_1090		/http\:\/\/www\.jyzxwz2003\.com\/base\/admin/
+describe HS_BODY_1090		Heinlein Support Spamschutz Body-1090 Spam
+score HS_BODY_1090		8
+
+body HS_BODY_1091		/http\:\/\/tracking\.news\.cavesdebourgogne\.com\/tracking\/les\-caves\-acqui\/ccnRy9aocgaNxrLLeP\-c/
+describe HS_BODY_1091		Heinlein Support Spamschutz Body-1091 Spam
+score HS_BODY_1091		8
+
+body HS_BODY_1092		/mailto\:contact\@news\.cavesdebordeaux\.com/
+describe HS_BODY_1092		Heinlein Support Spamschutz Body-1092 Spam
+score HS_BODY_1092		5
+
+body HS_BODY_1093		/http\:\/\/warpdut\.fulba\.com\/gde\-kupit\-byustgalter\-dlya\-sporta\.html/
+describe HS_BODY_1093		Heinlein Support Spamschutz Body-1093 Spam
+score HS_BODY_1093		8
+
+body HS_BODY_1094		/http\:\/\/nicelady0814\.com\.ua\/login\.php\?d\=dT0xNzU0MjEwNyZwPTAyNGMyYzg5NGZkM2M0NDg3OTg5MDg3ZDE3Y2UzOTc1JnM9c3BhbXZwc192NC0x/
+describe HS_BODY_1094		Heinlein Support Spamschutz Body-1094 Spam
+score HS_BODY_1094		8
+
+body HS_BODY_1095		/login\:support\@jpberlin\.de/
+describe HS_BODY_1095		Heinlein Support Spamschutz Body-1095 Phishing
+score HS_BODY_1095		8
+
+body HS_BODY_1096		/Website FREESEXWOMAN\.BIZ\..?Meine ID 1736044/
+describe HS_BODY_1096		Heinlein Support Spamschutz Body-1096 Spam
+score HS_BODY_1096		12
+
+body HS_BODY_1097		/http\:\/\/calfaeurope\.com/
+describe HS_BODY_1097		Heinlein Support Spamschutz Body-1097 Phishing
+score HS_BODY_1097		8
+
+body HS_BODY_1098		/Zur Bestätigung\<http\:\/\/www.amazon-umfrage.com\>/
+describe HS_BODY_1098		Heinlein Support Spamschutz Body-1098 Phishing
+score HS_BODY_1098		5
+
+body HS_BODY_1099		/http\:\/\/electrinox\.com\/AAAAAGGGG\/Sparkarowes\/index\.html/
+describe HS_BODY_1099		Heinlein Support Spamschutz Body-1099 Phishing
+score HS_BODY_1099		8
+
+body HS_BODY_1101		/www\.SPYMASTER\.bg/
+describe HS_BODY_1101		Heinlein Support Spamschutz Body-1101 Malware
+score HS_BODY_1101		5
+
+body HS_BODY_1102		/www\.spymaster\.bg/
+describe HS_BODY_1102		Heinlein Support Spamschutz Body-1102 Malware
+score HS_BODY_1102		5
+
+body HS_BODY_1103		/http\:\/\/webdegerman\.twomini\.com\/logg\.html/
+describe HS_BODY_1103		Heinlein Support Spamschutz Body-1103 Phishing
+score HS_BODY_1103		8
+
+body HS_BODY_1104		/Ihre E-Mail-Konto hat, um unsere neue Secured DGTFX Antiviren-Upgrade/
+describe HS_BODY_1104		Heinlein Support Spamschutz Body-1104 Phishing
+score HS_BODY_1104		8
+
+body HS_BODY_1105		/www\.wellsfargo\.com\/privacy\_security\/fraud/
+describe HS_BODY_1105		Heinlein Support Spamschutz Body-1105 Spam
+score HS_BODY_1105		8
+
+body HS_BODY_1106		/http\:\/\/bluepearlresort.nl/
+describe HS_BODY_1106		Heinlein Support Spamschutz Body-1106 
+score HS_BODY_1106		6
+
+body HS_BODY_1107		/http\:\/\/weldmaster\.com\.my/
+describe HS_BODY_1107		Heinlein Support Spamschutz Body-1107 Phishing
+score HS_BODY_1107		4
+
+body HS_BODY_1108		/http\:\/\/actingupcarolina\.com\/fZxnd64EB/
+describe HS_BODY_1108		Heinlein Support Spamschutz Body-1108 Phishing
+score HS_BODY_1108		7
+
+body HS_BODY_1109		/http\:\/\/dallascowboysfootball\.org\/MrlDC9PaF/
+describe HS_BODY_1109		Heinlein Support Spamschutz Body-1109 Phishing
+score HS_BODY_1109		7
+
+body HS_BODY_1110		/www\.alghammas\.sa/
+describe HS_BODY_1110		Heinlein Support Spamschutz Body-1110 Malware
+score HS_BODY_1110		5
+
+body HS_BODY_1111		/AL Ghammas groub/
+describe HS_BODY_1111		Heinlein Support Spamschutz Body-1111 Malware
+score HS_BODY_1111		3
+
+body HS_BODY_1112		/http\:\/\/uniquerecycling\.com\/dDINAleanH/
+describe HS_BODY_1112		Heinlein Support Spamschutz Body-1112 Phishing
+score HS_BODY_1112		7
+
+body HS_BODY_1113		/http\:\/\/kubilaybalci\.com\/RWoXtKfBIm/
+describe HS_BODY_1113		Heinlein Support Spamschutz Body-1113 Phishing
+score HS_BODY_1113		7
+
+body HS_BODY_1114		/http\:\/\/turunjoogayhdistys\.com\/LGZ2Fedo/
+describe HS_BODY_1114		Heinlein Support Spamschutz Body-1114 Phishing
+score HS_BODY_1114		7
+
+body HS_BODY_1115		/jxxxdxht\@gmail\.com/
+describe HS_BODY_1115		Heinlein Support Spamschutz Body-1115 Spam
+score HS_BODY_1115		5
+
+body HS_BODY_1116		/http\:\/\/delrico\.net\/aabb\/SparkaSu\/index\.html/
+describe HS_BODY_1116		Heinlein Support Spamschutz Body-1116 Phishing
+score HS_BODY_1116		7
+
+body HS_BODY_1117		/Kindly Peruse the Attached Letter and Follow the instruction Therein/
+describe HS_BODY_1117		Heinlein Support Spamschutz Body-1117 Malware
+score HS_BODY_1117		5
+
+body HS_BODY_1118		/Sitzng lcloud von einem nicht autorsierten Computer zu offnen/
+describe HS_BODY_1118		Heinlein Support Spamschutz Body-1118 Phishing
+score HS_BODY_1118		5
+
+body HS_BODY_1119		/-Konto ist nun gesperrt\, greifen Sie bitte Ihr Konto und eine Prufung/
+describe HS_BODY_1119		Heinlein Support Spamschutz Body-1119 Phishing
+score HS_BODY_1119		5
+
+body HS_BODY_1120		/http\:\/\/ladiesville0814\.com\.ua/
+describe HS_BODY_1120		Heinlein Support Spamschutz Body-1120 Spam
+score HS_BODY_1120		5
+
+body HS_BODY_1121		/Fräulein Schicksal Ajala/
+describe HS_BODY_1121		Heinlein Support Spamschutz Body-1121 Spam
+score HS_BODY_1121		8
+
+body HS_BODY_1122		/freewomenchat\.biz/
+describe HS_BODY_1122		Heinlein Support Spamschutz Body-1122 Spam
+score HS_BODY_1122		5
+
+body HS_BODY_1123		/Registrierung abzuschlie\?en und mich finden/
+describe HS_BODY_1123		Heinlein Support Spamschutz Body-1123 Spam
+score HS_BODY_1123		5
+
+body HS_BODY_1124		/http\:\/\/onetwentysevenfightwear\.com\/k6fK0zZoa/
+describe HS_BODY_1124		Heinlein Support Spamschutz Body-1124 Phishing
+score HS_BODY_1124		8
+
+body HS_BODY_1125		/Group Data Protection Officer Volksbanken aG/
+
+describe HS_BODY_1125		Heinlein Support Spamschutz Body-1125 Bankphishing
+score HS_BODY_1125		5
+
+body HS_BODY_1127		/kulisysportu\.pl/
+describe HS_BODY_1127		Heinlein Support Spamschutz Body-1127 Malware
+score HS_BODY_1127		5
+
+body HS_BODY_1128		/JPBerlin wird alle Konten für die Sicherheit Zweck Überprüfung/
+describe HS_BODY_1128		Heinlein Support Spamschutz Body-1128 Phishing
+score HS_BODY_1128		8
+
+body HS_BODY_1129		/Ihre ID Apple wurde verwendet\, um eine Stzung l ClouD-Apple von einem nicht a utorisierten Computer zu/
+describe HS_BODY_1129		Heinlein Support Spamschutz Body-1129 Spam
+score HS_BODY_1129		8
+
+body HS_BODY_1130		/http\:\/\/www\.whats\-sexy\.com\/abm\/76673463\/90100323\/755573493150c123db0acb88400\=2a2e0\//
+describe HS_BODY_1130		Heinlein Support Spamschutz Body-1130 Spam
+score HS_BODY_1130		5
+
+body HS_BODY_1131		/http\:\/\/www\.weihnachtsspeck\.com\/755573493150c123db0acb884002a2e0\//
+describe HS_BODY_1131		Heinlein Support Spamschutz Body-1131 Spam
+score HS_BODY_1131		8
+
+body HS_BODY_1132		/http\:\/\/www\.nalima\.es\/iC4QL1gjw/
+describe HS_BODY_1132		Heinlein Support Spamschutz Body-1132 Phishing
+score HS_BODY_1132		8
+
+body HS_BODY_1133		/http\:\/\/ngocrongonline\.org\/wp\-content\/uploads\/AF3kvnQo\/AF3kvnQo\/AF3kvnQo\/G8imzO3Yq/
+describe HS_BODY_1133		Heinlein Support Spamschutz Body-1133 Phishing
+score HS_BODY_1133		8
+
+body HS_BODY_1136		/https:\/\/enterprise.mycw.co.uk\/themes\/vf\/img\/vodafone-icon.png/
+describe HS_BODY_1136		Heinlein Support Spamschutz Body-1136 Phishingverdacht
+score HS_BODY_1136		4
+
+body HS_BODY_1137		/SPAN.*COLOR:.*e60000.*Ihre neue Rechnung als PDF.*SPAN/
+
+describe HS_BODY_1137		Heinlein Support Spamschutz Body-1137 Phishingverdacht
+score HS_BODY_1137		2
+
+body HS_BODY_1138		/http:..www.img-source.de.img.2014.Kundeninfo.DE.05.1A3988_95070195/
+
+describe HS_BODY_1138		Heinlein Support Spamschutz Body-1138 Phishingverdacht
+score HS_BODY_1138		4
+
+body HS_BODY_1139		/heute erhalten Sie Ihre Rechnung vom .* Sie finden diese im Anhang als PDF-Datei/
+
+describe HS_BODY_1139		Heinlein Support Spamschutz Body-1139 Phishingverdacht
+score HS_BODY_1139		1
+
+body HS_BODY_1140		/Umsatzsteuergesetz: DE189964006 Stnr.: 2636530279/
+describe HS_BODY_1140		Heinlein Support Spamschutz Body-1140 
+score HS_BODY_1140		5
+
+body HS_BODY_1141		/http\:\/\/www\.nachrichtenweb\.com\/755573493150c123db0acb884002a2e0\//
+describe HS_BODY_1141		Heinlein Support Spamschutz Body-1141 Phishing
+score HS_BODY_1141		8
+
+body HS_BODY_1142		/Ihr iTunes-Konto I st nun gesperrt/
+describe HS_BODY_1142		Heinlein Support Spamschutz Body-1142 Spam
+score HS_BODY_1142		6
+
+body HS_BODY_1143		/http\:\/\/webmail\.jpberlin\.de\/www\.festival42\.com\.br\/fspa\//
+describe HS_BODY_1143		Heinlein Support Spamschutz Body-1143 Phishing
+score HS_BODY_1143		8
+
+body HS_BODY_1144		/http\:\/\/justnice\.my\/online\/apache\/sparkasse\//
+describe HS_BODY_1144		Heinlein Support Spamschutz Body-1144 Phishing
+score HS_BODY_1144		8
+
+body HS_BODY_1145		/Haben Sie einen Investor brauchen\?/
+describe HS_BODY_1145		Heinlein Support Spamschutz Body-1145 Spam
+score HS_BODY_1145		8
+
+body HS_BODY_1146		/http\:\/\/jsocraft\.net\/s\/1nkann/
+describe HS_BODY_1146		Heinlein Support Spamschutz Body-1146 Spam
+score HS_BODY_1146		8
+
+body HS_BODY_1147		/http\:\/\/sankofajourney\.org\/scodvl\/vnapvhzsenqtutistvxxziofvcdb\.vpisuqgplgddlazsolpnwoembhbbm/
+describe HS_BODY_1147		Heinlein Support Spamschutz Body-1147 Spam
+score HS_BODY_1147		8
+
+body HS_BODY_1148		/Fed\*Ex\*/
+describe HS_BODY_1148		Heinlein Support Spamschutz Body-1148 
+score HS_BODY_1148		8
+
+body HS_BODY_1149		/http\:\/\/www\.sim\-stroy\.com\/ikvmna\/crnfwftjhsihfcfbnvu\.pdctapznhheuamfnvnkmm/
+
+describe HS_BODY_1149		Heinlein Support Spamschutz Body-1149 Spam
+score HS_BODY_1149		5
+
+body HS_BODY_1150		/http\:\/\/www\.undmagie\.biz\/s\/MzMwKjI2OCoxNDYwMyo0MSpicm9hZGNhc3Q\=/
+describe HS_BODY_1150		Heinlein Support Spamschutz Body-1150 Spam
+score HS_BODY_1150		5
+
+body HS_BODY_1151		/ebcjsxzht\@gmail\.com/
+describe HS_BODY_1151		Heinlein Support Spamschutz Body-1151 Spam
+score HS_BODY_1151		5
+
+body HS_BODY_1152		/versand\-medizin\.net/
+describe HS_BODY_1152		Heinlein Support Spamschutz Body-1152 Spam
+score HS_BODY_1152		8
+
+body HS_BODY_1153		/Al Marouf Trading Company./
+describe HS_BODY_1153		Heinlein Support Spamschutz Body-1153 Malware
+score HS_BODY_1153		5
+
+body HS_BODY_1154		/Heran Ahmed/
+describe HS_BODY_1154		Heinlein Support Spamschutz Body-1154 Malware
+score HS_BODY_1154		5
+
+body HS_BODY_1155		/melalui Blackberry Messanger/
+describe HS_BODY_1155		Heinlein Support Spamschutz Body-1155 Spam
+score HS_BODY_1155		5
+
+body HS_BODY_1156		/http\:\/\/yeaban.com\/hoped.php/
+describe HS_BODY_1156		Heinlein Support Spamschutz Body-1156 Spam
+score HS_BODY_1156		5
+
+body HS_BODY_1157		/http\:\/\/r\.newsletter\.mgdev\-net\.fr\/a7kwws81qajbdhfd\.html/
+describe HS_BODY_1157		Heinlein Support Spamschutz Body-1157 Phishing
+score HS_BODY_1157		8
+
+body HS_BODY_1158		/http\:\/\/www\.lojai\.com\/blast\/promo\.html/
+describe HS_BODY_1158		Heinlein Support Spamschutz Body-1158 Spam
+score HS_BODY_1158		8
+
+body HS_BODY_1159		/http\:\/\/r\.newsletter\.mgdev\-net\.fr\/a7kwws81wmafdhfd\.html/
+describe HS_BODY_1159		Heinlein Support Spamschutz Body-1159 Phishing
+score HS_BODY_1159		8
+
+body HS_BODY_1160		/preciousbabyadlan200\@gmail\.com/
+describe HS_BODY_1160		Heinlein Support Spamschutz Body-1160 Spam
+score HS_BODY_1160		5
+
+body HS_BODY_1161		/http\:\/\/adk\.hongxiangqipai\.com/
+describe HS_BODY_1161		Heinlein Support Spamschutz Body-1161 Spam
+score HS_BODY_1161		6
+
+body HS_BODY_1162		/https\:\/\/formcrafts\.com\/a\/8707/
+describe HS_BODY_1162		Heinlein Support Spamschutz Body-1162 Spam
+score HS_BODY_1162		6
+
+body HS_BODY_1163		/https\:\/\/formcrafts\.com\/a\/8862/
+describe HS_BODY_1163		Heinlein Support Spamschutz Body-1163 Spam
+score HS_BODY_1163		8
+
+body HS_BODY_1165		/http\:\/\/vakantieindelden\.nl\/sparko3\//
+describe HS_BODY_1165		Heinlein Support Spamschutz Body-1165 Phishing
+score HS_BODY_1165		8
+
+body HS_BODY_1166		/http\:\/\/itsolution\.com\.vn\/language\/x/
+describe HS_BODY_1166		Heinlein Support Spamschutz Body-1166 Phishing
+score HS_BODY_1166		8
+
+body HS_BODY_1167		/As you own a similar domain, we are emailing you to let you know that/
+describe HS_BODY_1167		Heinlein Support Spamschutz Body-1167 
+score HS_BODY_1167		3
+
+body HS_BODY_1168		/is now being offered by our company for a limited time.\<br \/\>\<br \/\>It is currently listed at/
+describe HS_BODY_1168		Heinlein Support Spamschutz Body-1168 
+score HS_BODY_1168		3
+
+body HS_BODY_1169		/and is offered on a \<b\>first-come, first-served\<\/b\> basis.\<br \/\>\<br \/\>If you're interested in/
+describe HS_BODY_1169		Heinlein Support Spamschutz Body-1169 
+score HS_BODY_1169		3
+
+body HS_BODY_1170		/\, we encourage you to secure it before it's too late by visiting \<a href\=\"http\:\/\//
+describe HS_BODY_1170		Heinlein Support Spamschutz Body-1170 
+score HS_BODY_1170		3
+
+body HS_BODY_1171		/Haben Sie schon einmal cybersex/
+describe HS_BODY_1171		Heinlein Support Spamschutz Body-1171 Spam
+score HS_BODY_1171		5
+
+body HS_BODY_1172		/Es gibt ein paar von meinen aufrichtigen Videos in der nackt/
+describe HS_BODY_1172		Heinlein Support Spamschutz Body-1172 Spam
+score HS_BODY_1172		5
+
+body HS_BODY_1173		/Bitte dräcken Sie Bilder/
+describe HS_BODY_1173		Heinlein Support Spamschutz Body-1173 Phishing
+score HS_BODY_1173		5
+
+body HS_BODY_1174		/trxmmm2354782369\.fitac\.com\.tr/
+describe HS_BODY_1174		Heinlein Support Spamschutz Body-1174 Phishing
+score HS_BODY_1174		5
+
+body HS_BODY_1176		/Bitte benutzen Sie den, unten angezeigten Button um die Änderung Kostenfrei/
+describe HS_BODY_1176		Heinlein Support Spamschutz Body-1176 Phishing
+score HS_BODY_1176		8
+
+body HS_BODY_1177		/in a few day you will Received the money/
+describe HS_BODY_1177		Heinlein Support Spamschutz Body-1177 Phishing
+score HS_BODY_1177		8
+
+body HS_BODY_1178		/erforderlich.Dies dient zu Ihrer eigenen Sicherheit/
+describe HS_BODY_1178		Heinlein Support Spamschutz Body-1178 Phishing
+score HS_BODY_1178		5
+
+body HS_BODY_1179		/Sind sie es auch leid für ein Päckchen zigaretten/
+describe HS_BODY_1179		Heinlein Support Spamschutz Body-1179 Spam
+score HS_BODY_1179		5
+
+body HS_BODY_1180		/How are you doing\?hope you are fine\?I/
+describe HS_BODY_1180		Heinlein Support Spamschutz Body-1180 Spam
+score HS_BODY_1180		5
+
+body HS_BODY_1181		/zu Ihrem Konto anzumelden. Sie können durch click auf den linken unten/
+describe HS_BODY_1181		Heinlein Support Spamschutz Body-1181 Spam
+score HS_BODY_1181		5
+
+body HS_BODY_1182		/http\:\/\/dasdsadadsa7789513526\.rdvpris\.fr\/index\.php/
+describe HS_BODY_1182		Heinlein Support Spamschutz Body-1182 Spam
+score HS_BODY_1182		8
+
+body HS_BODY_1183		/http\:\/\/apoteosefestas\.com\.br\/ic\/weblogin.html/
+describe HS_BODY_1183		Heinlein Support Spamschutz Body-1183 Spam
+score HS_BODY_1183		5
+
+body HS_BODY_1184		/r.newsletter.mgdev-net.fr/
+describe HS_BODY_1184		Heinlein Support Spamschutz Body-1184 Spam
+score HS_BODY_1184		5
+
+body HS_BODY_1185		/http\:\/\/invites\.info-emailer\.com/
+describe HS_BODY_1185		Heinlein Support Spamschutz Body-1185 SPAM
+score HS_BODY_1185		8
+
+body HS_BODY_1186		/für ein Charity-Projekt von Herrn Sam abgeholt/
+describe HS_BODY_1186		Heinlein Support Spamschutz Body-1186 Spam
+score HS_BODY_1186		5
+
+body HS_BODY_1187		/lenderloanfirm\@foxmail\.com/
+describe HS_BODY_1187		Heinlein Support Spamschutz Body-1187 Spam
+score HS_BODY_1187		5
+
+body HS_BODY_1188		/http\:\/\/meine6470130313\.caterite\.co\/images\/gallery\/x\/index\.php/
+describe HS_BODY_1188		Heinlein Support Spamschutz Body-1188 Phishing
+score HS_BODY_1188		8
+
+body HS_BODY_1189		/http\:\/\/narwani\.pl\/Zt1wv8bymN/
+describe HS_BODY_1189		Heinlein Support Spamschutz Body-1189 Phishing
+score HS_BODY_1189		5
+
+body HS_BODY_1190		/http\:\/\/monbanhngon\.com\/nwplyT6je/
+describe HS_BODY_1190		Heinlein Support Spamschutz Body-1190 Phishing
+score HS_BODY_1190		5
+
+body HS_BODY_1191		/http\:\/\/triumph\-k\.ru\/3zHlKY1v2GFO/
+describe HS_BODY_1191		Heinlein Support Spamschutz Body-1191 Phishing
+score HS_BODY_1191		5
+
+body HS_BODY_1192		/http\:\/\/mmddiieef9289658037\.reviewuswp\.com\/index\.php/
+describe HS_BODY_1192		Heinlein Support Spamschutz Body-1192 Phishing
+score HS_BODY_1192		5
+
+body HS_BODY_1193		/Watch <a href=3D"http:\/\/myplanearns.com"><b>this<\/b><\/a> in the next 15/
+describe HS_BODY_1193		Heinlein Support Spamschutz Body-1193 Spam
+score HS_BODY_1193		10
+
+body HS_BODY_1194		/Colonel Michael Warner from the US Army Syria/
+describe HS_BODY_1194		Heinlein Support Spamschutz Body-1194 Spam
+score HS_BODY_1194		5
+
+body HS_BODY_1195		/2358 euro schulden.Kostenplan im Anhang/
+describe HS_BODY_1195		Heinlein Support Spamschutz Body-1195 Spam
+score HS_BODY_1195		5
+
+body HS_BODY_1196		/http\:\/\/airworld\.com\.my\/S2Rb6VNkA/
+describe HS_BODY_1196		Heinlein Support Spamschutz Body-1196 Phishing
+score HS_BODY_1196		5
+
+body HS_BODY_1197		/Simply visit our site\: www\.careerandcash\.com/
+describe HS_BODY_1197		Heinlein Support Spamschutz Body-1197 Spam
+score HS_BODY_1197		10
+
+body HS_BODY_1198		/http:\/\/go.google-mkto.com\/WT0gJAPiC1S1C2800K0un00/
+describe HS_BODY_1198		Heinlein Support Spamschutz Body-1198 Phishing
+score HS_BODY_1198		5
+
+body HS_BODY_1199		/http\:\/\/tinypic\.com\?ref\=2h6rtdf/
+describe HS_BODY_1199		Heinlein Support Spamschutz Body-1199 Spam
+score HS_BODY_1199		5
+
+body HS_BODY_1200		/http\:\/\/www\.adriginal\.com\/signup\/ct\/index\.php/
+describe HS_BODY_1200		Heinlein Support Spamschutz Body-1200 Phishing
+score HS_BODY_1200		5
+
+body HS_BODY_1201		/http\:\/\/brzseguros\.com\.br\/VMRLNEtIJ2x1/
+describe HS_BODY_1201		Heinlein Support Spamschutz Body-1201 Spam
+score HS_BODY_1201		5
+
+body HS_BODY_1202		/Tatyana\.Fedoseevna\@gmail\.com/
+describe HS_BODY_1202		Heinlein Support Spamschutz Body-1202 Spam
+score HS_BODY_1202		5
+
+body HS_BODY_1203		/http\:\/\/vidaavida\.com\.br\/ThWMBNXd3/
+describe HS_BODY_1203		Heinlein Support Spamschutz Body-1203 Spam
+score HS_BODY_1203		5
+
+body HS_BODY_1204		/http\:\/\/starter\-fb\-business\.eu/
+describe HS_BODY_1204		Heinlein Support Spamschutz Body-1204 Spam
+score HS_BODY_1204		5
+
+body HS_BODY_1205		/Tatyana\.Erofeevna\@gmail\.com/
+describe HS_BODY_1205		Heinlein Support Spamschutz Body-1205 Spam
+score HS_BODY_1205		5
+
+body HS_BODY_1206		/chudoyuliya83\@gmail\.com/
+describe HS_BODY_1206		Heinlein Support Spamschutz Body-1206 Spam
+score HS_BODY_1206		5
+
+body HS_BODY_1207		/vikasumptuous\@yahoo\.com/
+describe HS_BODY_1207		Heinlein Support Spamschutz Body-1207 Spam
+score HS_BODY_1207		5
+
+body HS_BODY_1208		/http\:\/\/x\.co\/8hxrE\?paypal\.com\/updatesecurity/
+describe HS_BODY_1208		Heinlein Support Spamschutz Body-1208 Phishing
+score HS_BODY_1208		5
+
+body HS_BODY_1209		/vikaprincely\@yahoo\.com/
+describe HS_BODY_1209		Heinlein Support Spamschutz Body-1209 Spam
+score HS_BODY_1209		5
+
+body HS_BODY_1210		/http\:\/\/help\.sina\.com\.cn\/i\/90\/152\_2\.html/
+describe HS_BODY_1210		Heinlein Support Spamschutz Body-1210 Spam
+score HS_BODY_1210		5
+
+body HS_BODY_1211		/qinp04\@sina\.com\.mda1\.sinamail\.sina\.com\.cn/
+describe HS_BODY_1211		Heinlein Support Spamschutz Body-1211 Spam
+score HS_BODY_1211		5
+
+body HS_BODY_1212		/Siostra Ruth Hamson/
+describe HS_BODY_1212		Heinlein Support Spamschutz Body-1212 Spam
+score HS_BODY_1212		5
+
+body HS_BODY_1213		/oxfam\.oxfamuae\@cash4u\.com/
+describe HS_BODY_1213		Heinlein Support Spamschutz Body-1213 Spam
+score HS_BODY_1213		5
+
+body HS_BODY_1214		/orlenko\.lv\/shipment\_8327489732847328478392782892\.exe/
+describe HS_BODY_1214		Heinlein Support Spamschutz Body-1214 Spam
+score HS_BODY_1214		5
+
+body HS_BODY_1215		/fullframeproductions\.com\.au/
+describe HS_BODY_1215		Heinlein Support Spamschutz Body-1215 Spam
+score HS_BODY_1215		5
+
+body HS_BODY_1216		/tinyurl\.com\/p6kpr3c/
+describe HS_BODY_1216		Heinlein Support Spamschutz Body-1216 Spam
+score HS_BODY_1216		5
+
+body HS_BODY_1217		/tinyurl\.com\/nmvcppc/
+describe HS_BODY_1217		Heinlein Support Spamschutz Body-1217 Spam
+score HS_BODY_1217		5
+
+body HS_BODY_1219		/http\:\/\/pp2check\-sicherheitcheck\=2Ebiz\/nachweis\/kunde/
+describe HS_BODY_1219		Heinlein Support Spamschutz Body-1219 Phishing
+score HS_BODY_1219		8
+
+body HS_BODY_1221		/sevenfurious2015.blogspot.com/
+describe HS_BODY_1221		Heinlein Support Spamschutz Body-1221 Spam
+score HS_BODY_1221		5
+
+body HS_BODY_1222		/podrejentem.com.pl\/shipment\_83274897328473284783927828/
+describe HS_BODY_1222		Heinlein Support Spamschutz Body-1222 Malware
+score HS_BODY_1222		5
+
+body HS_BODY_1225		/http\:\/\/to\.ly\/PA7W/
+describe HS_BODY_1225		Heinlein Support Spamschutz Body-1225 Phishing
+score HS_BODY_1225		8
+
+body HS_BODY_1226		/http\:\/\/newserviceonline\-pro\.com\//
+describe HS_BODY_1226		Heinlein Support Spamschutz Body-1226 Spam
+score HS_BODY_1226		8
+
+body HS_BODY_1227		/http\:\/\/colegiodelrincon\.com\/administrator\/tradekey\.com\/index\.html/
+describe HS_BODY_1227		Heinlein Support Spamschutz Body-1227 Phishing
+score HS_BODY_1227		8
+
+body HS_BODY_1228		/Autounfall zusammen Yamoussoukro/
+describe HS_BODY_1228		Heinlein Support Spamschutz Body-1228 Spam
+score HS_BODY_1228		5
+
+body HS_BODY_1229		/administrator\/madeinC/
+describe HS_BODY_1229		Heinlein Support Spamschutz Body-1229 Spam
+score HS_BODY_1229		5
+
+body HS_BODY_1232		/components\/madeinC/
+describe HS_BODY_1232		Heinlein Support Spamschutz Body-1232 Spam
+score HS_BODY_1232		5
+
+body HS_BODY_1233		/Wang Bruce, from Russia/
+describe HS_BODY_1233		Heinlein Support Spamschutz Body-1233 Spam
+score HS_BODY_1233		5
+
+body HS_BODY_1234		/http\:\/\/tinyurl\.com\/mbfqmpl/
+describe HS_BODY_1234		Heinlein Support Spamschutz Body-1234 Spam
+score HS_BODY_1234		8
+
+body HS_BODY_1235		/outstanding avenue for a possible business corporation/
+describe HS_BODY_1235		Heinlein Support Spamschutz Body-1235 Spam
+score HS_BODY_1235		5
+
+body HS_BODY_1236		/Omprakash, business development professional/
+describe HS_BODY_1236		Heinlein Support Spamschutz Body-1236 Spam
+score HS_BODY_1236		5
+
+body HS_BODY_1237		/wponlinesupport.com/
+describe HS_BODY_1237		Heinlein Support Spamschutz Body-1237 Spam
+score HS_BODY_1237		5
+
+body HS_BODY_1238		/Ihr Team bei der DHL/
+describe HS_BODY_1238		Heinlein Support Spamschutz Body-1238 Phishing
+score HS_BODY_1238		5
+
+body HS_BODY_1239		/We are a factory which produces pet clothes, pet harness, pet leash/
+describe HS_BODY_1239		Heinlein Support Spamschutz Body-1239 Spam
+score HS_BODY_1239		7
+
+body HS_BODY_1240		/in Lome Togo and left \$ 9.5 million/
+describe HS_BODY_1240		Heinlein Support Spamschutz Body-1240 Spam
+score HS_BODY_1240		5
+
+body HS_BODY_1241		/surestartloanfirmdept01\@outlook.com/
+describe HS_BODY_1241		Heinlein Support Spamschutz Body-1241 Spam
+score HS_BODY_1241		8
+
+body HS_BODY_1242		/http\:\/\/ow.ly\/MrZAg/
+describe HS_BODY_1242		Heinlein Support Spamschutz Body-1242 Phishing
+score HS_BODY_1242		5
+
+body HS_BODY_1243		/ PayPaI /
+describe HS_BODY_1243		Heinlein Support Spamschutz Body-1243 Phishing
+score HS_BODY_1243		8
+
+body HS_BODY_1244		/me,kindly get back to me with your telephone number if you will be/
+describe HS_BODY_1244		Heinlein Support Spamschutz Body-1244 Spam
+score HS_BODY_1244		5
+
+body HS_BODY_1245		/Team Versand, DHL/
+describe HS_BODY_1245		Heinlein Support Spamschutz Body-1245 Phishing
+score HS_BODY_1245		5
+
+body HS_BODY_1246		/Hier aktueller DHL-Sendungsstatus./
+describe HS_BODY_1246		Heinlein Support Spamschutz Body-1246 Phishing
+score HS_BODY_1246		5
+
+body HS_BODY_1247		/http\:\/\/heliosradio.com\/WGNz20QXeyK/
+describe HS_BODY_1247		Heinlein Support Spamschutz Body-1247 Phishing
+score HS_BODY_1247		5
+
+body HS_BODY_1248		/http\:\/\/bit.ly\/1cKFfTS/
+describe HS_BODY_1248		Heinlein Support Spamschutz Body-1248 Pharmacyspam
+score HS_BODY_1248		10
+
+body HS_BODY_1249		/documentations and briefing\,majorericmillerukarmy\@gmail\.com/
+describe HS_BODY_1249		Heinlein Support Spamschutz Body-1249 Spam
+score HS_BODY_1249		8
+
+body HS_BODY_1250		/Company\:Hebei Leijie Trade Co\.\,LTD\./
+describe HS_BODY_1250		Heinlein Support Spamschutz Body-1250 Spam
+score HS_BODY_1250		8
+
+body HS_BODY_1251		/eb.by\/TS9L/
+describe HS_BODY_1251		Heinlein Support Spamschutz Body-1251 Spam
+score HS_BODY_1251		8
+
+body HS_BODY_1252		/www\.suntimedirekt\.com/
+describe HS_BODY_1252		Heinlein Support Spamschutz Body-1252 SPAM
+score HS_BODY_1252		8
+
+body HS_BODY_1253		/www\.versandgutunddirekt\.com/
+describe HS_BODY_1253		Heinlein Support Spamschutz Body-1253 SPAM
+score HS_BODY_1253		8
+
+body HS_BODY_1254		/jomasgop\.com/
+describe HS_BODY_1254		Heinlein Support Spamschutz Body-1254 SPAM
+score HS_BODY_1254		5
+
+body HS_BODY_1255		/benvenuto\.quoteroler\.com/
+describe HS_BODY_1255		Heinlein Support Spamschutz Body-1255 SPAM
+score HS_BODY_1255		5
+
+body HS_BODY_1256		/http\:\/\/smarturl\.it\/tvpoint/
+describe HS_BODY_1256		Heinlein Support Spamschutz Body-1256 Spam
+score HS_BODY_1256		5
+
+body HS_BODY_1257		/http\:\/\/pawad\.cddphayao\.com\/WNJzdFEBkxj8rh/
+describe HS_BODY_1257		Heinlein Support Spamschutz Body-1257 Spam
+score HS_BODY_1257		8
+
+body HS_BODY_1258		/oasweoa\. com/
+describe HS_BODY_1258		Heinlein Support Spamschutz Body-1258 Spam
+score HS_BODY_1258		8
+
+body HS_BODY_1259		/www.paypal-konfliktlosungen.com\/validierung\/benutzer\/daten/
+describe HS_BODY_1259		Heinlein Support Spamschutz Body-1259 Phishing
+score HS_BODY_1259		8
+
+body HS_BODY_1260		/my-recommendations.com/
+describe HS_BODY_1260		Heinlein Support Spamschutz Body-1260 Spam
+score HS_BODY_1260		5
+
+body HS_BODY_1261		/Pr\.cruise2015\@yandex\.com/
+describe HS_BODY_1261		Heinlein Support Spamschutz Body-1261 Spam
+score HS_BODY_1261		8
+
+body HS_BODY_1262		/K==FCrzlich haben wir Ihr Konto gepr=FCft und ben=F6tigen weitere Inform=ationen, damit wir Ihnen einen sicheren Service anbieten k=F6nnen/
+describe HS_BODY_1262		Heinlein Support Spamschutz Body-1262 Phishing
+score HS_BODY_1262		3
+
+body HS_BODY_1263		/Solange uns diese Informationen nicht zur Verf\=FCgung stehen, ist Ihr \= Zugang zu vertraulichen Kontofunktionen eingeschr\=E4nkt/
+describe HS_BODY_1263		Heinlein Support Spamschutz Body-1263 Phishing
+score HS_BODY_1263		3
+
+body HS_BODY_1264		/NO\.26\,THE 3RD INDUSTRIAL PARK\, LANGXIA VILLAGE\, SONG GANG TOWN\, BAOAN DISTRICT SHENZHEN 518105 P\.R\.CHINA/
+describe HS_BODY_1264		Heinlein Support Spamschutz Body-1264 Spam
+score HS_BODY_1264		8
+
+body HS_BODY_1265		/Neue\ TAN-Liste\ wird\ Verfahren\./
+describe HS_BODY_1265		Heinlein Support Spamschutz Body-1265 Phishing
+score HS_BODY_1265		8
+
+body HS_BODY_1266		/http\:\/\/www\.bojministries\.com\/js\/wag\//
+describe HS_BODY_1266		Heinlein Support Spamschutz Body-1266 Phishing
+score HS_BODY_1266		8
+
+body HS_BODY_1267		/<p>Als weitere Sicherheitsmassnahme ben=F6tigen Sie Ihre Kreditkarten Ko/
+describe HS_BODY_1267		Heinlein Support Spamschutz Body-1267 
+score HS_BODY_1267		5
+
+body HS_BODY_1268		/<p>best=E4tigen Kontoinformationen./
+describe HS_BODY_1268		Heinlein Support Spamschutz Body-1268 
+score HS_BODY_1268		5
+
+body HS_BODY_1269		/http:\/\/flatoutjacked.com\/ba\//
+describe HS_BODY_1269		Heinlein Support Spamschutz Body-1269 
+score HS_BODY_1269		8
+
+body HS_BODY_1270		/ Ich lebe eine und niemals war verheiratet/
+describe HS_BODY_1270		Heinlein Support Spamschutz Body-1270 
+score HS_BODY_1270		5
+
+body HS_BODY_1271		/ch werde froh sein, noch grosser von mir zu erzahlen/
+describe HS_BODY_1271		Heinlein Support Spamschutz Body-1271 
+score HS_BODY_1271		5
+
+body HS_BODY_1272		/financialsolution683\@gmail.com/
+describe HS_BODY_1272		Heinlein Support Spamschutz Body-1272 Spam
+score HS_BODY_1272		5
+
+body HS_BODY_1273		/http\:\/\/www\.budoten\.ch\/uDZHNv9ISn/
+describe HS_BODY_1273		Heinlein Support Spamschutz Body-1273 Phishing
+score HS_BODY_1273		8
+
+body HS_BODY_1274		/DHL, Verfolgung Zustellungsweg./
+describe HS_BODY_1274		Heinlein Support Spamschutz Body-1274 Phishing
+score HS_BODY_1274		5
+
+body HS_BODY_1275		/Ihnen keiner mitteilen/
+describe HS_BODY_1275		Heinlein Support Spamschutz Body-1275 Phishing
+score HS_BODY_1275		5
+
+body HS_BODY_1276		/Dann starten SIE JETZT hier\! (Hier klicken)/
+describe HS_BODY_1276		Heinlein Support Spamschutz Body-1276 SPAM
+score HS_BODY_1276		8
+
+body HS_BODY_1277		/http\:\/\/tinyurl\.com\/o2x4yn8/
+describe HS_BODY_1277		Heinlein Support Spamschutz Body-1277 SPAM
+score HS_BODY_1277		8
+
+body HS_BODY_1278		/Neue TAN-Liste Methode zur Verfügung steht/
+describe HS_BODY_1278		Heinlein Support Spamschutz Body-1278 Phishing
+score HS_BODY_1278		8
+
+body HS_BODY_1279		/Das beste Bindesystem der Welt/
+describe HS_BODY_1279		Heinlein Support Spamschutz Body-1279 SPAM
+score HS_BODY_1279		5
+
+body HS_BODY_1280		/http\:\/\/www\.boarding-door\.de\/3\/B446\/1\/7619\/206\/s48953137\/\_\/17995543e5f26785a4f78a2dd18b80ed35a8e2d7\/\_\/\_\/\_\/0\/\?wm=19979\&pr=\_MKTID\_\&prm=rev/
+describe HS_BODY_1280		Heinlein Support Spamschutz Body-1280 SPAM
+score HS_BODY_1280		8
+
+body HS_BODY_1281		/https\:\/\/runescape2007golds\.wordpress\.com\/2015\/06\/03\/runescape\-the\-spells\//
+describe HS_BODY_1281		Heinlein Support Spamschutz Body-1281 Spam
+score HS_BODY_1281		8
+
+body HS_BODY_1282		/mailto\:clncynlson\@outlook\.com/
+describe HS_BODY_1282		Heinlein Support Spamschutz Body-1282 Spam
+score HS_BODY_1282		8
+
+body HS_BODY_1283		/http\:\/\/elitecg\.com\.br\/kQtwHENnP/
+describe HS_BODY_1283		Heinlein Support Spamschutz Body-1283 Spam
+score HS_BODY_1283		8
+
+body HS_BODY_1284		/http\:\/\/paiypael\.com\//
+describe HS_BODY_1284		Heinlein Support Spamschutz Body-1284 Spam
+score HS_BODY_1284		8
+
+body HS_BODY_1285		/https\:\/\/gator3177\.hostgator\.com\/\~systems\/login\/85D6FS2C5F6DCX/
+describe HS_BODY_1285		Heinlein Support Spamschutz Body-1285 Phishing
+score HS_BODY_1285		5
+
+body HS_BODY_1286		/http\:\/\/www\.blueglobere\.com\/blog\/view\/639203\/players\-gallery\-is\-a\-monthly\-showcase\-of\-awesome\-artwork\-from\-the\-community\-from\-runescape/
+describe HS_BODY_1286		Heinlein Support Spamschutz Body-1286 Spam
+score HS_BODY_1286		8
+
+body HS_BODY_1287		/Keine soziale Sicherheit und keine Bonitätsprüfung 100\%\./
+describe HS_BODY_1287		Heinlein Support Spamschutz Body-1287 Spam
+score HS_BODY_1287		8
+
+body HS_BODY_1288		/Ihr Microsoft Exchange-Postfach ist voll \" KLICKEN SIE HIER/
+describe HS_BODY_1288		Heinlein Support Spamschutz Body-1288 Phishing
+score HS_BODY_1288		8
+
+body HS_BODY_1289		/http\:\/\/www\.disneycruise\.disney\.go\.com\//
+describe HS_BODY_1289		Heinlein Support Spamschutz Body-1289 Spam
+score HS_BODY_1289		8
+
+body HS_BODY_1290		/http\:\/\/q4v8vp6h9\.w\.j1rg\.com\/link\.php\?M\=8400337\!N\=8\!L\=71\!F\=H/
+describe HS_BODY_1290		Heinlein Support Spamschutz Body-1290 Spam
+score HS_BODY_1290		8
+
+body HS_BODY_1291		/Brillante Druckqualit\ä\;t \& h\ö\;chste Standards/
+describe HS_BODY_1291		Heinlein Support Spamschutz Body-1291 Spam
+score HS_BODY_1291		8
+
+body HS_BODY_1292		/http\:\/\/affiliate\.lufax\.com\/action\/tRvCa/
+describe HS_BODY_1292		Heinlein Support Spamschutz Body-1292 Spam
+score HS_BODY_1292		8
+
+body HS_BODY_1293		/^Select the term above, then return by fax: 1-716-242-0416/
+describe HS_BODY_1293		Heinlein Support Spamschutz Body-1293 Domainspam
+score HS_BODY_1293		7
+
+body HS_BODY_1294		/selected as a Google Ambassador for using Google services/
+describe HS_BODY_1294		Heinlein Support Spamschutz Body-1294 Spam
+score HS_BODY_1294		5
+
+body HS_BODY_1295		/You have received a donation of 950\,000 USD\, For more details email\:mrrichbonner\@gmail\.com/
+describe HS_BODY_1295		Heinlein Support Spamschutz Body-1295 spam
+score HS_BODY_1295		8
+
+body HS_BODY_1296		/Zugriff auf Ihr Online-Konto läuft im Brief/
+describe HS_BODY_1296		Heinlein Support Spamschutz Body-1296 Phishing
+score HS_BODY_1296		5
+
+body HS_BODY_1298		/ANVAR BAYOT LTD Uzbekistan \- Toshkent Shahri \+998 97 5467 927/
+describe HS_BODY_1298		Heinlein Support Spamschutz Body-1298 Spam
+score HS_BODY_1298		8
+
+body HS_BODY_1299		/hkhling\@vip.163.com/
+describe HS_BODY_1299		Heinlein Support Spamschutz Body-1299 Spam
+score HS_BODY_1299		5
+
+body HS_BODY_1300		/This is Honey from Pinsumtech\.we have new and special design car jump starter for you check\,pls find below\:/
+describe HS_BODY_1300		Heinlein Support Spamschutz Body-1300 Spam
+score HS_BODY_1300		8
+
+body HS_BODY_1301		/1297362494-paypal.de.ystorno-pp.name/
+describe HS_BODY_1301		Heinlein Support Spamschutz Body-1301 Phishing
+score HS_BODY_1301		5
+
+body HS_BODY_1302		/Ihre gewinnende Menge an Geld in einem sicheren Unternehmen gespeichert und in Ihrem Namen versichert\./
+describe HS_BODY_1302		Heinlein Support Spamschutz Body-1302 Spam
+score HS_BODY_1302		8
+
+body HS_BODY_1303		/http\:\/\/no-punkte.com/
+describe HS_BODY_1303		Heinlein Support Spamschutz Body-1303 Spam
+score HS_BODY_1303		5
+
+body HS_BODY_1304		/www.satec.co.in/
+describe HS_BODY_1304		Heinlein Support Spamschutz Body-1304 Spam
+score HS_BODY_1304		5
+
+body HS_BODY_1305		/www.chinaca.en.alibaba.com/
+describe HS_BODY_1305		Heinlein Support Spamschutz Body-1305 Spam
+score HS_BODY_1305		5
+
+body HS_BODY_1306		/drmohamedyuosuf\@yahoo.com/
+describe HS_BODY_1306		Heinlein Support Spamschutz Body-1306 Spam
+score HS_BODY_1306		5
+
+body HS_BODY_1307		/pro-pitchers.com/
+describe HS_BODY_1307		Heinlein Support Spamschutz Body-1307 Spam
+score HS_BODY_1307		5
+
+body HS_BODY_1308		/http\:\/\/bestdepartment.net/
+describe HS_BODY_1308		Heinlein Support Spamschutz Body-1308 Spam
+score HS_BODY_1308		5
+
+body HS_BODY_1309		/http\:\/\/bio-fruits.net/
+describe HS_BODY_1309		Heinlein Support Spamschutz Body-1309 Spam
+score HS_BODY_1309		5
+
+body HS_BODY_1310		/Voici  mon N\° de téléphone pour me joindre\: \+44 705 381 7564/
+describe HS_BODY_1310		Heinlein Support Spamschutz Body-1310 Spam
+score HS_BODY_1310		8
+
+body HS_BODY_1311		/\(c\) 2012\-2014 DHL International/
+describe HS_BODY_1311		Heinlein Support Spamschutz Body-1311 Phishing
+score HS_BODY_1311		8
+
+body HS_BODY_1312		/krankenkasse-beitrag-sparen.biz/
+describe HS_BODY_1312		Heinlein Support Spamschutz Body-1312 Spam
+score HS_BODY_1312		5
+
+body HS_BODY_1313		/tarifanpassung.biz/
+describe HS_BODY_1313		Heinlein Support Spamschutz Body-1313 Spam
+score HS_BODY_1313		5
+
+body HS_BODY_1314		/I am a small business owner who supplies local outlets here and like to place and order from your store\,i will like to make payment with my credit card\. Thanks\./
+describe HS_BODY_1314		Heinlein Support Spamschutz Body-1314 Spam
+score HS_BODY_1314		8
+
+body HS_BODY_1315		/http\:\/\/titan\-z\.com\/A69\_100\/form\/index\.php/
+describe HS_BODY_1315		Heinlein Support Spamschutz Body-1315 Spam
+score HS_BODY_1315		8
+
+body HS_BODY_1316		/tilbud hos Dansk777.dk/
+describe HS_BODY_1316		Heinlein Support Spamschutz Body-1316 Spam
+score HS_BODY_1316		5
+
+body HS_BODY_1317		/http\:\/\/public\.mails\.satisfythedeal\.com\/public\/redirect\/link\/l\/111069\/n\/19264\/s\/693764203\/h\/5b7857c62d/
+describe HS_BODY_1317		Heinlein Support Spamschutz Body-1317 Spam
+score HS_BODY_1317		8
+
+body HS_BODY_1318		/Please find attached invoice for the past months\. Remit the new payment by 30\/07\/2015 as outlines under our payment agreement\./
+describe HS_BODY_1318		Heinlein Support Spamschutz Body-1318 Spam
+score HS_BODY_1318		8
+
+body HS_BODY_1319		/stwstz6pld0ge.saudipsych.org/
+describe HS_BODY_1319		Heinlein Support Spamschutz Body-1319 Phishing
+score HS_BODY_1319		5
+
+body HS_BODY_1320		/vsdfdsfdstfdsfdsh107yx5sqy17hnr60i7qb6o0ozvp9m.kayakkiyafetleri.gen.tr/
+describe HS_BODY_1320		Heinlein Support Spamschutz Body-1320 Phishing
+score HS_BODY_1320		8
+
+body HS_BODY_1321		/Also include you delivery mode and payment terms in the quotation/
+describe HS_BODY_1321		Heinlein Support Spamschutz Body-1321 Spam
+score HS_BODY_1321		5
+
+body HS_BODY_1322		/riadqabbani\@secauthsend.com/
+describe HS_BODY_1322		Heinlein Support Spamschutz Body-1322 Spam
+score HS_BODY_1322		5
+
+body HS_BODY_1323		/girlslovebangle.com/
+describe HS_BODY_1323		Heinlein Support Spamschutz Body-1323 Spam
+score HS_BODY_1323		5
+
+body HS_BODY_1324		/Wir sind für Sie ein Darlehen von 10\.000 \€ bis \€20\,000\,000\.00 geben\./
+describe HS_BODY_1324		Heinlein Support Spamschutz Body-1324 Spam
+score HS_BODY_1324		8
+
+body HS_BODY_1325		/the-smartest-way.com/
+describe HS_BODY_1325		Heinlein Support Spamschutz Body-1325 Spam
+score HS_BODY_1325		5
+
+body HS_BODY_1326		/https\:\/\/www\.ubs\.com\/ch\/DE\/online\-services\/e\-banking\.html/
+describe HS_BODY_1326		Heinlein Support Spamschutz Body-1326 Spam
+score HS_BODY_1326		8
+
+body HS_BODY_1327		/http\:\/\/www\.newdeals\.eu/
+describe HS_BODY_1327		Heinlein Support Spamschutz Body-1327 Spam
+score HS_BODY_1327		5
+
+body HS_BODY_1328		/Please find attached PDF Investment proposal \& treat for our mutual benefits/
+describe HS_BODY_1328		Heinlein Support Spamschutz Body-1328 Spam
+score HS_BODY_1328		8
+
+body HS_BODY_1329		/Hi Dear\,\=A0\=0AI\'m Alexandra Caroline\, French nationality\./
+describe HS_BODY_1329		Heinlein Support Spamschutz Body-1329 Spam
+score HS_BODY_1329		8
+
+body HS_BODY_1330		/I am sending you this mail with sorrow in my heart hoping that you will help me out in the name of God\./
+describe HS_BODY_1330		Heinlein Support Spamschutz Body-1330 Spam
+score HS_BODY_1330		8
+
+body HS_BODY_1332		/The domains \"opensynergy\.asia\/\.cn\.\.\.\" you registered with us had been expired/
+describe HS_BODY_1332		Heinlein Support Spamschutz Body-1332 SPAM
+score HS_BODY_1332		8
+
+body HS_BODY_1333		/http:\/\/95-170-86-82.colo.transip.net\/nuevoMailer\/subscriber/
+describe HS_BODY_1333		Heinlein Support Spamschutz Body-1333 
+score HS_BODY_1333		5
+
+body HS_BODY_1334		/email me at\:brsen\@religious\.com/
+describe HS_BODY_1334		Heinlein Support Spamschutz Body-1334 Spam
+score HS_BODY_1334		8
+
+body HS_BODY_1335		/Do NOT share as acc\.ess has been restricted for VIP users only\./
+describe HS_BODY_1335		Heinlein Support Spamschutz Body-1335 spam
+score HS_BODY_1335		8
+
+body HS_BODY_1336		/http\:\/\/s8m2\.goldbar\.net\/l\/nyh2axwcxfax966k5hnf\/3fa7766/
+describe HS_BODY_1336		Heinlein Support Spamschutz Body-1336 spam
+score HS_BODY_1336		8
+
+body HS_BODY_1337		/Address\:No\.60 Wangjiang East Road\, Hefei\, AnHui P\.R\.China/
+describe HS_BODY_1337		Heinlein Support Spamschutz Body-1337 Spam
+score HS_BODY_1337		8
+
+body HS_BODY_1338		/http\:\/\/.*\/link\.htm/
+describe HS_BODY_1338		Heinlein Support Spamschutz Body-1338 
+score HS_BODY_1338		1
+
+body HS_BODY_1339		/http\:\/\/s8m2\.goldbar\.net\/l\/.*\/3fa7766/
+describe HS_BODY_1339		Heinlein Support Spamschutz Body-1339 Spam
+score HS_BODY_1339		8
+
+body HS_BODY_1340		/grid.lamost.org\/AAABBB\/sparkade\/index.html/
+describe HS_BODY_1340		Heinlein Support Spamschutz Body-1340 Phishing
+score HS_BODY_1340		8
+
+body HS_BODY_1341		/http:\/\/xyfs520.com\/woop/
+describe HS_BODY_1341		Heinlein Support Spamschutz Body-1341 Phishing
+score HS_BODY_1341		8
+
+body HS_BODY_1342		/http\:\/\/www.krspace.com\//
+describe HS_BODY_1342		Heinlein Support Spamschutz Body-1342 Spam
+score HS_BODY_1342		5
+
+body HS_BODY_1343		/atlantictouristic\@gmail.com/
+describe HS_BODY_1343		Heinlein Support Spamschutz Body-1343 Spam
+score HS_BODY_1343		5
+
+body HS_BODY_1344		/www.maldivessunnyisles.com/
+describe HS_BODY_1344		Heinlein Support Spamschutz Body-1344 Spam
+score HS_BODY_1344		5
+
+body HS_BODY_1345		/http\:\/\/idapple-secureid/
+describe HS_BODY_1345		Heinlein Support Spamschutz Body-1345 Phishing
+score HS_BODY_1345		8
+
+body HS_BODY_1346		/http\:\/\/www.olamails.biz/
+describe HS_BODY_1346		Heinlein Support Spamschutz Body-1346 Spam
+score HS_BODY_1346		8
+
+body HS_BODY_1347		/http\:\/\/tinyurl.com\/o3tujy4/
+describe HS_BODY_1347		Heinlein Support Spamschutz Body-1347 Spam
+score HS_BODY_1347		8
+
+body HS_BODY_1348		/http\:\/\/www.b-o-ra.com\/video/
+describe HS_BODY_1348		Heinlein Support Spamschutz Body-1348 Spam
+score HS_BODY_1348		5
+
+body HS_BODY_1349		/http\:\/\/www.heritagemails.com\//
+describe HS_BODY_1349		Heinlein Support Spamschutz Body-1349 Spam
+score HS_BODY_1349		8
+
+body HS_BODY_1350		/http\:\/\/www.no-punkte.com\//
+describe HS_BODY_1350		Heinlein Support Spamschutz Body-1350 Spam
+score HS_BODY_1350		5
+
+body HS_BODY_1351		/http\:\/\/apog.co\/5ZE/
+describe HS_BODY_1351		Heinlein Support Spamschutz Body-1351 Spam
+score HS_BODY_1351		8
+
+body HS_BODY_1352		/binorotrader.com/
+describe HS_BODY_1352		Heinlein Support Spamschutz Body-1352 Spam
+score HS_BODY_1352		5
+
+body HS_BODY_1353		/http\:\/\/\%7B\%7Bdn\%7D\%7D/
+describe HS_BODY_1353		Heinlein Support Spamschutz Body-1353 Spam
+score HS_BODY_1353		8
+
+body HS_BODY_1354		/http\:\/\/www.\{\{dn\}\}.com\//
+describe HS_BODY_1354		Heinlein Support Spamschutz Body-1354 Spam
+score HS_BODY_1354		8
+
+body HS_BODY_1355		/http\:\/\/www.karrierejournalde.net\//
+describe HS_BODY_1355		Heinlein Support Spamschutz Body-1355 Spam
+score HS_BODY_1355		8
+
+body HS_BODY_1356		/http\:\/\/qlix.tk\/p2Jur/
+describe HS_BODY_1356		Heinlein Support Spamschutz Body-1356 Spam
+score HS_BODY_1356		8
+
+body HS_BODY_1357		/http\:\/\/www.s1-mcrm.net\//
+describe HS_BODY_1357		Heinlein Support Spamschutz Body-1357 Spam
+score HS_BODY_1357		8
+
+body HS_BODY_1358		/http\:\/\/tinyurl.com\/lpdrolb/
+describe HS_BODY_1358		Heinlein Support Spamschutz Body-1358 Spam
+score HS_BODY_1358		8
+
+body HS_BODY_1359		/http\:\/\/tinyurl.com\/opmuf6k/
+describe HS_BODY_1359		Heinlein Support Spamschutz Body-1359 Spam
+score HS_BODY_1359		8
+
+body HS_BODY_1360		/http\:\/\/bit.ly\/1Q9RhEE/
+describe HS_BODY_1360		Heinlein Support Spamschutz Body-1360 Spam
+score HS_BODY_1360		8
+
+body HS_BODY_1361		/http\:\/\/www.marketingmagic.in\//
+describe HS_BODY_1361		Heinlein Support Spamschutz Body-1361 Spam
+score HS_BODY_1361		8
+
+body HS_BODY_1362		/http\:\/\/change-advertising.org/
+describe HS_BODY_1362		Heinlein Support Spamschutz Body-1362 Spam
+score HS_BODY_1362		8
+
+body HS_BODY_1363		/http\:\/\/jumpingmaillist.biz\//
+describe HS_BODY_1363		Heinlein Support Spamschutz Body-1363 Spam
+score HS_BODY_1363		8
+
+body HS_BODY_1364		/http\:\/\/port-maillist.biz\//
+describe HS_BODY_1364		Heinlein Support Spamschutz Body-1364 Spam
+score HS_BODY_1364		8
+
+body HS_BODY_1365		/http\:\/\/tinyurl.com\/pmfgoss/
+describe HS_BODY_1365		Heinlein Support Spamschutz Body-1365 Spam
+score HS_BODY_1365		8
+
+body HS_BODY_1366		/http\:\/\/tinyurl.com\/p9k4jyg/
+describe HS_BODY_1366		Heinlein Support Spamschutz Body-1366 Spam
+score HS_BODY_1366		8
+
+body HS_BODY_1367		/http\:\/\/dispatchbroadcasting.org\//
+describe HS_BODY_1367		Heinlein Support Spamschutz Body-1367 Spam
+score HS_BODY_1367		5
+
+body HS_BODY_1368		/martin.buma\@outlook.com/
+describe HS_BODY_1368		Heinlein Support Spamschutz Body-1368 Spam
+score HS_BODY_1368		5
+
+body HS_BODY_1369		/rediff.com/
+describe HS_BODY_1369		Heinlein Support Spamschutz Body-1369 Spam
+score HS_BODY_1369		5
+
+body HS_BODY_1370		/http\:\/\/channel5bd.com\/pass\/sparkade\/index.html/
+describe HS_BODY_1370		Heinlein Support Spamschutz Body-1370 Phishing
+score HS_BODY_1370		8
+
+body HS_BODY_1371		/http\:\/\/channel5bd.com/
+describe HS_BODY_1371		Heinlein Support Spamschutz Body-1371 Phishing
+score HS_BODY_1371		8
+
+body HS_BODY_1373		/skyfinance0\@gmail.com/
+describe HS_BODY_1373		Heinlein Support Spamschutz Body-1373 Spam
+score HS_BODY_1373		8
+
+body HS_BODY_1374		/david\@dadli.com/
+describe HS_BODY_1374		Heinlein Support Spamschutz Body-1374 Spam
+score HS_BODY_1374		5
+
+body HS_BODY_1375		/info\@onlineranking.net/
+describe HS_BODY_1375		Heinlein Support Spamschutz Body-1375 Spam
+score HS_BODY_1375		5
+
+body HS_BODY_1376		/biddsmanager.com/
+describe HS_BODY_1376		Heinlein Support Spamschutz Body-1376 Spam
+score HS_BODY_1376		5
+
+body HS_BODY_1377		/extrabids.net/
+describe HS_BODY_1377		Heinlein Support Spamschutz Body-1377 Spam
+score HS_BODY_1377		5
+
+body HS_BODY_1378		/insidethecash.com/
+describe HS_BODY_1378		Heinlein Support Spamschutz Body-1378 Spam
+score HS_BODY_1378		8
+
+body HS_BODY_1379		/http\:\/\/logo4sell.com\/wp-content\/theme\/wlk\/sparkde\/index.html/
+describe HS_BODY_1379		Heinlein Support Spamschutz Body-1379 Phishing
+score HS_BODY_1379		8
+
+body HS_BODY_1380		/Um weiterhin diesen Vorteil zu nutzen, bitten wir Sie Daten auf den folgenden Link/
+describe HS_BODY_1380		Heinlein Support Spamschutz Body-1380 Phishing
+score HS_BODY_1380		8
+
+body HS_BODY_1382		/http\:\/\/www.pavpall.ga\//
+describe HS_BODY_1382		Heinlein Support Spamschutz Body-1382 Phishing
+score HS_BODY_1382		8
+
+body HS_BODY_1384		/Our company captures 85-90 Percent of the domain names we go after and that is why we are looked at, as one of the number one backordering providers./
+describe HS_BODY_1384		Heinlein Support Spamschutz Body-1384 SPAM
+score HS_BODY_1384		9
+
+body HS_BODY_1385		/Notice to Appear/
+describe HS_BODY_1385		Heinlein Support Spamschutz Body-1385 Malware
+score HS_BODY_1385		5
+
+body HS_BODY_1386		/Our company captures 85-90 Percent of the domain names,  we go after and that is why we are looked at, as one of the number one backordering providers./
+describe HS_BODY_1386		Heinlein Support Spamschutz Body-1386 SPAM
+score HS_BODY_1386		9
+
+body HS_BODY_1387		/Achtung\: Zugriff auf Ihr Online-Konto läuft kurz/
+describe HS_BODY_1387		Heinlein Support Spamschutz Body-1387 Phishing
+score HS_BODY_1387		8
+
+body HS_BODY_1388		/quicktrack.ecsv4.com/
+describe HS_BODY_1388		Heinlein Support Spamschutz Body-1388 Spam
+score HS_BODY_1388		8
+
+body HS_BODY_1389		/Ich bin eine besondere finanzielle, biete ich die Finanzierung/
+describe HS_BODY_1389		Heinlein Support Spamschutz Body-1389 Spam
+score HS_BODY_1389		8
+
+body HS_BODY_1390		/I have a proposal for you with a value of One Hundred and Sixteen Million/
+describe HS_BODY_1390		Heinlein Support Spamschutz Body-1390 Spam
+score HS_BODY_1390		8
+
+body HS_BODY_1391		/I am dying and I want you to adopt my daughter/
+describe HS_BODY_1391		Heinlein Support Spamschutz Body-1391 Spam
+score HS_BODY_1391		8
+
+body HS_BODY_1392		/Sicherheitsstandarts/
+describe HS_BODY_1392		Heinlein Support Spamschutz Body-1392 Phishing
+score HS_BODY_1392		5
+
+body HS_BODY_1393		/http\:\/\/tehnotop.com.ro\//
+describe HS_BODY_1393		Heinlein Support Spamschutz Body-1393 Phishing
+score HS_BODY_1393		3
+
+body HS_BODY_1394		/de-DE.mod_virtuemart_manufacturer.sys.ini.php/
+describe HS_BODY_1394		Heinlein Support Spamschutz Body-1394 Phishing
+score HS_BODY_1394		5
+
+body HS_BODY_1395		/sparkakse/
+describe HS_BODY_1395		Heinlein Support Spamschutz Body-1395 Phishing
+score HS_BODY_1395		8
+
+body HS_BODY_1396		/sparkase/
+describe HS_BODY_1396		Heinlein Support Spamschutz Body-1396 Phishing
+score HS_BODY_1396		5
+
+body HS_BODY_1397		/http\:\/\/bit\.ly\/1K2b61o/
+describe HS_BODY_1397		Heinlein Support Spamschutz Body-1397 Spam
+score HS_BODY_1397		8
+
+body HS_BODY_1398		/kinggenerator.com/
+describe HS_BODY_1398		Heinlein Support Spamschutz Body-1398 Spam
+score HS_BODY_1398		5
+
+body HS_BODY_1399		/We have an 85-90% success rate in capturing domains for our clients and that is why many clients use us exclusively for their domain backordering needs./
+describe HS_BODY_1399		Heinlein Support Spamschutz Body-1399 SPAM
+score HS_BODY_1399		9
+
+body HS_BODY_1400		/pro-application.com/
+describe HS_BODY_1400		Heinlein Support Spamschutz Body-1400 Spam
+score HS_BODY_1400		5
+
+body HS_BODY_1401		/http:\/\/gforce-marketing.com\/u\//
+describe HS_BODY_1401		Heinlein Support Spamschutz Body-1401 SPAM
+score HS_BODY_1401		9
+
+body HS_BODY_1402		/http\:\/\/nagradibe\.info\/lists\/lt\.php\?id\=3DYhgFCR0GBhgGB1IEVgIE/
+describe HS_BODY_1402		Heinlein Support Spamschutz Body-1402 Spam
+score HS_BODY_1402		8
+
+body HS_BODY_1403		/TREAT AS URGENT UNITED NATIONS ORGANIZATION/
+describe HS_BODY_1403		Heinlein Support Spamschutz Body-1403 Spam
+score HS_BODY_1403		8
+
+body HS_BODY_1404		/You have not paid for driving on a toll road\./
+describe HS_BODY_1404		Heinlein Support Spamschutz Body-1404 Spam
+score HS_BODY_1404		8
+
+body HS_BODY_1405		/Find attached Contact details of m\/t \"LIBERIA\-1\"\/ Manifest/
+describe HS_BODY_1405		Heinlein Support Spamschutz Body-1405 Spam
+score HS_BODY_1405		8
+
+body HS_BODY_1406		/http\:\/\/makinwork.com/
+describe HS_BODY_1406		Heinlein Support Spamschutz Body-1406 Spam
+score HS_BODY_1406		5
+
+body HS_BODY_1407		/sparda-info.com/
+describe HS_BODY_1407		Heinlein Support Spamschutz Body-1407 Phishing
+score HS_BODY_1407		8
+
+body HS_BODY_1408		/stringadvertising.biz/
+describe HS_BODY_1408		Heinlein Support Spamschutz Body-1408 Spam
+score HS_BODY_1408		5
+
+body HS_BODY_1409		/mergesender.net/
+describe HS_BODY_1409		Heinlein Support Spamschutz Body-1409 Spam
+score HS_BODY_1409		5
+
+body HS_BODY_1410		/listemail.biz/
+describe HS_BODY_1410		Heinlein Support Spamschutz Body-1410 Spam
+score HS_BODY_1410		5
+
+body HS_BODY_1411		/gurbhejsrafoundation\@inbox.lv/
+describe HS_BODY_1411		Heinlein Support Spamschutz Body-1411 Spam
+score HS_BODY_1411		5
+
+body HS_BODY_1412		/jumpemail.biz/
+describe HS_BODY_1412		Heinlein Support Spamschutz Body-1412 Spam
+score HS_BODY_1412		8
+
+body HS_BODY_1413		/http\:\/\/www\.replicasbag\.net\/de\/\-c87\//
+describe HS_BODY_1413		Heinlein Support Spamschutz Body-1413 Spam
+score HS_BODY_1413		8
+
+body HS_BODY_1414		/http\:\/\/www\.komsta\-fenster\.de\//
+describe HS_BODY_1414		Heinlein Support Spamschutz Body-1414 Spam
+score HS_BODY_1414		8
+
+body HS_BODY_1415		/http\:\/\/vpmngt\.com\/oahdqeb\/rszehtswvwvtgumz\.yhfmajmtzogtintizijyyt/
+describe HS_BODY_1415		Heinlein Support Spamschutz Body-1415 Spam
+score HS_BODY_1415		8
+
+body HS_BODY_1416		/wir tun Online-Upgrade,/
+describe HS_BODY_1416		Heinlein Support Spamschutz Body-1416 Phishing
+score HS_BODY_1416		8
+
+body HS_BODY_1417		/als ich ein wenig Kind./
+describe HS_BODY_1417		Heinlein Support Spamschutz Body-1417 Spam
+score HS_BODY_1417		5
+
+body HS_BODY_1418		/Du den Kontakt \®\πber DAS DATING herstellen/
+describe HS_BODY_1418		Heinlein Support Spamschutz Body-1418 Spam
+score HS_BODY_1418		5
+
+body HS_BODY_1419		/http\:\/\/news\.mylife\-magazine\.de\/vo\.php\?client\_id\=3D20136\&mid\=3Dca6c412545\=3274fadf9b36ce611d497a\&message\_id\=3D250947\&campagne\_id\=3D789979/
+describe HS_BODY_1419		Heinlein Support Spamschutz Body-1419 Spam
+score HS_BODY_1419		8
+
+body HS_BODY_1422		/http\:\/\/nl.my-check.de\//
+describe HS_BODY_1422		Heinlein Support Spamschutz Body-1422 Spam
+score HS_BODY_1422		5
+
+body HS_BODY_1423		/auevs.kredit.de/
+describe HS_BODY_1423		Heinlein Support Spamschutz Body-1423 Spam
+score HS_BODY_1423		5
+
+body HS_BODY_1424		/optivel AG/
+describe HS_BODY_1424		Heinlein Support Spamschutz Body-1424 Spam
+score HS_BODY_1424		8
+
+body HS_BODY_1425		/http\:\/\/flug-jetzt.com\//
+describe HS_BODY_1425		Heinlein Support Spamschutz Body-1425 Spam
+score HS_BODY_1425		5
+
+body HS_BODY_1426		/fly24.com/
+describe HS_BODY_1426		Heinlein Support Spamschutz Body-1426 Spam
+score HS_BODY_1426		5
+
+body HS_BODY_1427		/DETOXI DRAINE/
+describe HS_BODY_1427		Heinlein Support Spamschutz Body-1427 Spam
+score HS_BODY_1427		8
+
+body HS_BODY_1428		/http\:\/\/trusted\-nutriform\-deutschland\.com/
+describe HS_BODY_1428		Heinlein Support Spamschutz Body-1428 Spam
+score HS_BODY_1428		5
+
+body HS_BODY_1429		/holidayreporter.de.cc/
+describe HS_BODY_1429		Heinlein Support Spamschutz Body-1429 Spam
+score HS_BODY_1429		5
+
+body HS_BODY_1430		/n.=E2=80=89use.=E2=80=89cc/
+describe HS_BODY_1430		Heinlein Support Spamschutz Body-1430 Spam
+score HS_BODY_1430		5
+
+body HS_BODY_1431		/n.use.cc/
+describe HS_BODY_1431		Heinlein Support Spamschutz Body-1431 Spam
+score HS_BODY_1431		5
+
+body HS_BODY_1432		/news.de.cc/
+describe HS_BODY_1432		Heinlein Support Spamschutz Body-1432 Spam
+score HS_BODY_1432		5
+
+body HS_BODY_1433		/We are providing 99\.9\% uptime along with 24x7 quality support/
+describe HS_BODY_1433		Heinlein Support Spamschutz Body-1433 Spam
+score HS_BODY_1433		3
+
+body HS_BODY_1434		/We are also providing VPS and shared hosting/
+describe HS_BODY_1434		Heinlein Support Spamschutz Body-1434 Spam
+score HS_BODY_1434		5
+
+body HS_BODY_1435		/We are also providing V\.P\.S\./
+describe HS_BODY_1435		Heinlein Support Spamschutz Body-1435 Spam
+score HS_BODY_1435		5
+
+body HS_BODY_1436		/my name is Mr Kwasi Opoku/
+describe HS_BODY_1436		Heinlein Support Spamschutz Body-1436 Spam
+score HS_BODY_1436		5
+
+body HS_BODY_1437		/jumpemails.biz/
+describe HS_BODY_1437		Heinlein Support Spamschutz Body-1437 Spam
+score HS_BODY_1437		8
+
+body HS_BODY_1438		/pointbroadcasting.biz/
+describe HS_BODY_1438		Heinlein Support Spamschutz Body-1438 Spam
+score HS_BODY_1438		5
+
+body HS_BODY_1439		/spaceadvertising.biz/
+describe HS_BODY_1439		Heinlein Support Spamschutz Body-1439 Spam
+score HS_BODY_1439		5
+
+body HS_BODY_1440		/best.shopping.cx/
+describe HS_BODY_1440		Heinlein Support Spamschutz Body-1440 Spam
+score HS_BODY_1440		5
+
+body HS_BODY_1441		/x online active AG/
+describe HS_BODY_1441		Heinlein Support Spamschutz Body-1441 Spam
+score HS_BODY_1441		5
+
+body HS_BODY_1442		/http\:\/\/www\.finecartierstore\.fr\/fr\/cartier\-love\-collections\-c\-33\_19\.html/
+describe HS_BODY_1442		Heinlein Support Spamschutz Body-1442 Spam
+score HS_BODY_1442		8
+
+body HS_BODY_1443		/http\:\/\/www\.replicacartierbracelet\.ru\/it\/cartier\-juste\-un\-clou\-bracelet\-replica\-pink\-gold\-b6037715\-at\-wholesale\-price\-p747\//
+describe HS_BODY_1443		Heinlein Support Spamschutz Body-1443 Spam
+score HS_BODY_1443		8
+
+body HS_BODY_1444		/samsung.nightofcontest\@gmail.com/
+describe HS_BODY_1444		Heinlein Support Spamschutz Body-1444 Spam
+score HS_BODY_1444		8
+
+body HS_BODY_1445		/you have won your self;a brand new new Galaxy A8/
+describe HS_BODY_1445		Heinlein Support Spamschutz Body-1445 Spam
+score HS_BODY_1445		5
+
+body HS_BODY_1446		/\/spafk\//
+describe HS_BODY_1446		Heinlein Support Spamschutz Body-1446 Phishing
+score HS_BODY_1446		8
+
+body HS_BODY_1447		/http\:\/\/calendarsite\.co\.uk\/wepp\/wkss\/spafk\/index\.htm/
+describe HS_BODY_1447		Heinlein Support Spamschutz Body-1447 Phishing
+score HS_BODY_1447		8
+
+body HS_BODY_1448		/http\:\/\/kyrali\.com\/remained\.php\?cp/
+describe HS_BODY_1448		Heinlein Support Spamschutz Body-1448 Spam
+score HS_BODY_1448		5
+
+body HS_BODY_1449		/\/sparkde\//
+describe HS_BODY_1449		Heinlein Support Spamschutz Body-1449 Phishing
+score HS_BODY_1449		8
+
+body HS_BODY_1450		/treffperfekt.com/
+describe HS_BODY_1450		Heinlein Support Spamschutz Body-1450 Spam
+score HS_BODY_1450		5
+
+body HS_BODY_1451		/centiplex.com/
+describe HS_BODY_1451		Heinlein Support Spamschutz Body-1451 Spam
+score HS_BODY_1451		5
+
+body HS_BODY_1452		/deutschedomain.com/
+describe HS_BODY_1452		Heinlein Support Spamschutz Body-1452 Spam
+score HS_BODY_1452		5
+
+body HS_BODY_1453		/Sie müssen es sofort zu erneuern/
+describe HS_BODY_1453		Heinlein Support Spamschutz Body-1453 Spam
+score HS_BODY_1453		8
+
+body HS_BODY_1454		/sdf4g\.guidetohealth\.ru/
+describe HS_BODY_1454		Heinlein Support Spamschutz Body-1454 SPAM
+score HS_BODY_1454		8
+
+body HS_BODY_1455		/http\%3A\%2F\%2Feb\.by\%2FTRUR\&sa=D\&sntz=1\&usg=AFQjCNFA70HfjNYQ7GUFDKsGejmbUEeFhA/
+describe HS_BODY_1455		Heinlein Support Spamschutz Body-1455 Spam
+score HS_BODY_1455		8
+
+body HS_BODY_1456		/bildnachricht-handyzustellung\.info/
+describe HS_BODY_1456		Heinlein Support Spamschutz Body-1456 Phishing
+score HS_BODY_1456		8
+
+body HS_BODY_1457		/francis\.cave\@\@hotmail\.com/
+describe HS_BODY_1457		Heinlein Support Spamschutz Body-1457 Spam
+score HS_BODY_1457		8
+
+body HS_BODY_1459		/\"Ich will jetzt das Facebook\-Company\-Coaching\"/
+describe HS_BODY_1459		Heinlein Support Spamschutz Body-1459 Spam
+score HS_BODY_1459		8
+
+body HS_BODY_1462		/NEW MESSAGE\, PLEASE READ http\:\/\/labdigital\.cl\/received\.php/
+describe HS_BODY_1462		Heinlein Support Spamschutz Body-1462 Spam
+score HS_BODY_1462		8
+
+body HS_BODY_1463		/Ich bin bereit\, Ihnen als Entsch\ädigung für Ihre M\ühe \/ Eingang nach der erfolgreichen \Übertragung meiner ererbten Geld auf Ihr angegebenes Konto bieten 20\% der Gesamtsumme\./
+describe HS_BODY_1463		Heinlein Support Spamschutz Body-1463 SPAM
+score HS_BODY_1463		5
+
+body HS_BODY_1464		/projeavcisi\.com/
+describe HS_BODY_1464		Heinlein Support Spamschutz Body-1464 
+score HS_BODY_1464		3
+
+body HS_BODY_1465		/asking for system that WORKS/
+describe HS_BODY_1465		Heinlein Support Spamschutz Body-1465 
+score HS_BODY_1465		4
+
+body HS_BODY_1466		/bintinitiative\.com/
+describe HS_BODY_1466		Heinlein Support Spamschutz Body-1466 
+score HS_BODY_1466		4
+
+body HS_BODY_1467		/This is not push button silver bullet type/
+describe HS_BODY_1467		Heinlein Support Spamschutz Body-1467 
+score HS_BODY_1467		5
+
+body HS_BODY_1468		/doubled but more than QUADRUPLED/
+describe HS_BODY_1468		Heinlein Support Spamschutz Body-1468 
+score HS_BODY_1468		5
+
+body HS_BODY_1469		/D-D-D-D-D-D DUPLICATOR/
+describe HS_BODY_1469		Heinlein Support Spamschutz Body-1469 
+score HS_BODY_1469		7
+
+body HS_BODY_1470		/C0UP0N will end in/
+describe HS_BODY_1470		Heinlein Support Spamschutz Body-1470 
+score HS_BODY_1470		3
+
+body HS_BODY_1471		/ymlp114\.com/
+describe HS_BODY_1471		Heinlein Support Spamschutz Body-1471 
+score HS_BODY_1471		2
+
+body HS_BODY_1472		/MillionDollarDuplicator/
+describe HS_BODY_1472		Heinlein Support Spamschutz Body-1472 
+score HS_BODY_1472		4
+
+body HS_BODY_1473		/gogetcash\.net/
+describe HS_BODY_1473		Heinlein Support Spamschutz Body-1473 
+score HS_BODY_1473		3
+
+body HS_BODY_1474		/sales\@kinhungzheng\.xx\.tn/
+describe HS_BODY_1474		Heinlein Support Spamschutz Body-1474 Spam
+score HS_BODY_1474		8
+
+body HS_BODY_1475		/https\:\/\/box1059\.bluehost\.com\/\~lukasper\/sass\/components\/date\_picker\//
+describe HS_BODY_1475		Heinlein Support Spamschutz Body-1475 Spam
+score HS_BODY_1475		8
+
+body HS_BODY_1476		/http\:\/\/sinergia88\.com\/wp\-content\/amd\/googledocuments\.htm/
+describe HS_BODY_1476		Heinlein Support Spamschutz Body-1476 Spam
+score HS_BODY_1476		8
+
+body HS_BODY_1477		/https\:\/\/formcrafts\.com\/a\/11418/
+describe HS_BODY_1477		Heinlein Support Spamschutz Body-1477 Spam
+score HS_BODY_1477		8
+
+body HS_BODY_1478		/VICKEM Batana Co\.\, Ltd\./
+describe HS_BODY_1478		Heinlein Support Spamschutz Body-1478 Spam
+score HS_BODY_1478		8
+
+body HS_BODY_1480		/http\:\/\/stmarysmd\.net\/A11\/post\/index\.html\//
+describe HS_BODY_1480		Heinlein Support Spamschutz Body-1480 Phishing
+score HS_BODY_1480		8
+
+body HS_BODY_1481		/http\:\/\/webpinacces\.aircus\.com\//
+describe HS_BODY_1481		Heinlein Support Spamschutz Body-1481 Phishing
+score HS_BODY_1481		8
+
+body HS_BODY_1482		/MAILBOX RENEWAL ALERT!/
+describe HS_BODY_1482		Heinlein Support Spamschutz Body-1482 Phising MBO
+score HS_BODY_1482		15
+
+body HS_BODY_1483		/Mailbox Account Security Team./
+describe HS_BODY_1483		Heinlein Support Spamschutz Body-1483 phishing
+score HS_BODY_1483		15
+
+body HS_BODY_1484		/Kindly click on the link below to validate your Mailbox account now /
+describe HS_BODY_1484		Heinlein Support Spamschutz Body-1484 Phishing
+score HS_BODY_1484		15
+
+body HS_BODY_1485		/Thanks for choosing Interfax\!/
+describe HS_BODY_1485		Heinlein Support Spamschutz Body-1485 Spam
+score HS_BODY_1485		8
+
+body HS_BODY_1486		/in Bezug auf E-Mail-Marketing-und Datenschutzgesetze in Europa.Wenn man/
+describe HS_BODY_1486		Heinlein Support Spamschutz Body-1486 Spam
+score HS_BODY_1486		5
+
+body HS_BODY_1487		/dass diese E-Mail Ihnen Fehlerhaft gesendet wurde, so informieren Sie un/
+describe HS_BODY_1487		Heinlein Support Spamschutz Body-1487 Spam
+score HS_BODY_1487		1
+
+body HS_BODY_1489		/http\:\/\/www\.shitalyhappens\.com\/which\.php\?9k134/
+describe HS_BODY_1489		Heinlein Support Spamschutz Body-1489 Spam
+score HS_BODY_1489		8
+
+body HS_BODY_1490		/wonglee20015\@hotmail\.com/
+describe HS_BODY_1490		Heinlein Support Spamschutz Body-1490 Spam
+score HS_BODY_1490		8
+
+body HS_BODY_1491		/http\:\/\/kpialerts\.com\/jss\/mailupgradeOutlook\%20Web\/index\.html/
+describe HS_BODY_1491		Heinlein Support Spamschutz Body-1491 Phishing
+score HS_BODY_1491		8
+
+body HS_BODY_1492		/http\:\/\/vidrioseguridad\.com\/info\.php\?f\=45/
+describe HS_BODY_1492		Heinlein Support Spamschutz Body-1492 Spam
+score HS_BODY_1492		8
+
+body HS_BODY_1493		/http:\/\/(server.winnerfaster.com|www.sharedbread.com|www.healthaddress.net|geekutopia.org|consumersocial.org|top10bluray.com|e-onlinecorrespondence.com|iem32.smtp.com|armstrusts.com|okdone.net|gogetcash.net)/
+describe HS_BODY_1493		Heinlein Support Spamschutz Body-1493 Spam
+score HS_BODY_1493		3
+
+body HS_BODY_1494		/http:\/\/dontone.org/
+describe HS_BODY_1494		Heinlein Support Spamschutz Body-1494 Spam
+score HS_BODY_1494		3
+
+body HS_BODY_1495		/http\:\/\/tracker\.mcontact\.pro/
+describe HS_BODY_1495		Heinlein Support Spamschutz Body-1495 Spam
+score HS_BODY_1495		8
+
+body HS_BODY_1496		/http\:\/\/movesla\.com\/wpss\/plz\/spar\/index\.html/
+describe HS_BODY_1496		Heinlein Support Spamschutz Body-1496 Phishing
+score HS_BODY_1496		8
+
+body HS_BODY_1497		/Sie werden anschlie.*end weitergeleitet und haben dort die M.*glichkeit die Zahlung bis kostenlos zu stornieren./
+describe HS_BODY_1497		Heinlein Support Spamschutz Body-1497 
+score HS_BODY_1497		10
+
+body HS_BODY_1498		/Die Stonierung ist bis zum/
+describe HS_BODY_1498		Heinlein Support Spamschutz Body-1498 
+score HS_BODY_1498		3
+
+body HS_BODY_1499		/http:..paypal.com-supports\.com/
+describe HS_BODY_1499		Heinlein Support Spamschutz Body-1499 Paypal-Phishing
+score HS_BODY_1499		5
+
+body HS_BODY_1500		/http\:\/\/www\.1cvm\.ru\/language\/de\-DE\/de\-DE\.mod\_virtue\=mart\_search\.ini\.php/
+describe HS_BODY_1500		Heinlein Support Spamschutz Body-1500 Phishing
+score HS_BODY_1500		8
+
+body HS_BODY_1501		/Willkommen bei FANNIE MAE FINANCIAL erhalten sofortiges Bargeld Darlehen/
+describe HS_BODY_1501		Heinlein Support Spamschutz Body-1501 Spam
+score HS_BODY_1501		5
+
+body HS_BODY_1502		/Immer stecken auf der Suche nach einem Darlehen kann stressig\, sein/
+describe HS_BODY_1502		Heinlein Support Spamschutz Body-1502 Spam
+score HS_BODY_1502		5
+
+body HS_BODY_1503		/Ich bin total Schock zu entdecken\, dieses Konto war DORMANT/
+describe HS_BODY_1503		Heinlein Support Spamschutz Body-1503 SPAM
+score HS_BODY_1503		5
+
+body HS_BODY_1504		/Der Verstorbene Kontostand Summe ist \$31,000,000 USD/
+describe HS_BODY_1504		Heinlein Support Spamschutz Body-1504 Spam
+score HS_BODY_1504		5
+
+body HS_BODY_1505		/http\:\/\/theperthrealestateguy.petertaliangis.com\/possible.php\?zu/
+describe HS_BODY_1505		Heinlein Support Spamschutz Body-1505 Spam
+score HS_BODY_1505		8
+
+body HS_BODY_1506		/New message, please read .*http:.*secret.php/
+describe HS_BODY_1506		Heinlein Support Spamschutz Body-1506 Cryptolocker
+score HS_BODY_1506		5
+
+body HS_BODY_1507		/http\:\/\/www\.takecareskin\.com\/*/
+describe HS_BODY_1507		Heinlein Support Spamschutz Body-1507 Spam
+score HS_BODY_1507		8
+
+body HS_BODY_1508		/http\:\/\/www\.fusionwhiz\.com\/*/
+describe HS_BODY_1508		Heinlein Support Spamschutz Body-1508 Spam
+score HS_BODY_1508		8
+
+body HS_BODY_1509		/http\:\/\/www\.fishvitamins\.com\/*/
+describe HS_BODY_1509		Heinlein Support Spamschutz Body-1509 Spam
+score HS_BODY_1509		8
+
+body HS_BODY_1510		/http\:\/\/www\.tododay\.com\/*/
+describe HS_BODY_1510		Heinlein Support Spamschutz Body-1510 Spam
+score HS_BODY_1510		8
+
+body HS_BODY_1511		/burrenblog.com/
+describe HS_BODY_1511		Heinlein Support Spamschutz Body-1511 Wird beworben
+score HS_BODY_1511		5
+
+body HS_BODY_1512		/Gibt es einen ernsthafter Vorschlag zu einer Haft Konto im Ecobank/
+describe HS_BODY_1512		Heinlein Support Spamschutz Body-1512 Spam
+score HS_BODY_1512		8
+
+body HS_BODY_1513		/www.hausalarm.org/
+describe HS_BODY_1513		Heinlein Support Spamschutz Body-1513 Spam
+score HS_BODY_1513		5
+
+body HS_BODY_1514		/Wir sind zuverlässige Darlehen Unternehmen, geben wir Kredite zu 3 % Zins für jede Person und Unternehmen/
+describe HS_BODY_1514		Heinlein Support Spamschutz Body-1514 SPAM
+score HS_BODY_1514		5
+
+body HS_BODY_1516		/54397 Beaverton, OR 57008/
+describe HS_BODY_1516		Heinlein Support Spamschutz Body-1516 SPAM
+score HS_BODY_1516		8
+
+body HS_BODY_1517		/http\:\/\/www\.mimipower\.com\/iem2\/*/
+describe HS_BODY_1517		Heinlein Support Spamschutz Body-1517 spam
+score HS_BODY_1517		5
+
+body HS_BODY_1518		/http\:\/\/losmejoresdescuentos\.net\/*/
+describe HS_BODY_1518		Heinlein Support Spamschutz Body-1518 spam
+score HS_BODY_1518		8
+
+body HS_BODY_1519		/http\:\/\/eduportaldemo\.com\/admin\/spaskas\/index\.html/
+describe HS_BODY_1519		Heinlein Support Spamschutz Body-1519 Spam
+score HS_BODY_1519		8
+
+body HS_BODY_1520		/.*newsletters.active.com.*/
+describe HS_BODY_1520		Heinlein Support Spamschutz Body-1520 Spam
+score HS_BODY_1520		8
+
+body HS_BODY_1521		/.*paypal.de-gate003.pw.*/
+describe HS_BODY_1521		Heinlein Support Spamschutz Body-1521 Phishing
+score HS_BODY_1521		8
+
+body HS_BODY_1522		/\=D6ffnen Sie den Anhang f\=FCr weitere Informationen \=FCber Ihre Lotterie/
+describe HS_BODY_1522		Heinlein Support Spamschutz Body-1522 Spam
+score HS_BODY_1522		8
+
+body HS_BODY_1523		/.*ticktag.es.*/
+describe HS_BODY_1523		Heinlein Support Spamschutz Body-1523 Spam
+score HS_BODY_1523		8
+
+body HS_BODY_1525		/http\:\/\/b54\.in\/agk1/
+describe HS_BODY_1525		Heinlein Support Spamschutz Body-1525 Spam
+score HS_BODY_1525		8
+
+body HS_BODY_1526		/.*v2mx2.pw.*/
+describe HS_BODY_1526		Heinlein Support Spamschutz Body-1526 Spam
+score HS_BODY_1526		8
+
+body HS_BODY_1527		/.*bp1q7.xyz.*/
+describe HS_BODY_1527		Heinlein Support Spamschutz Body-1527 Spam
+score HS_BODY_1527		8
+
+body HS_BODY_1528		/.*xln27.pw.*/
+describe HS_BODY_1528		Heinlein Support Spamschutz Body-1528 Spam
+score HS_BODY_1528		8
+
+body HS_BODY_1529		/.*rezeptfrei24internet.com.de.*/
+describe HS_BODY_1529		Heinlein Support Spamschutz Body-1529 Spam
+score HS_BODY_1529		8
+
+body HS_BODY_1530		/.*klickensiejetzt.com.de.*/
+describe HS_BODY_1530		Heinlein Support Spamschutz Body-1530 Spam
+score HS_BODY_1530		8
+
+body HS_BODY_1531		/.*tabsrezeptfrei.xyz.*/
+describe HS_BODY_1531		Heinlein Support Spamschutz Body-1531 Spam
+score HS_BODY_1531		8
+
+body HS_BODY_1532		/.*diskretpotenzmittel.com.de.*/
+describe HS_BODY_1532		Heinlein Support Spamschutz Body-1532 Spam
+score HS_BODY_1532		8
+
+body HS_BODY_1533		/.*potenzmittelkaufen.xyz.*/
+describe HS_BODY_1533		Heinlein Support Spamschutz Body-1533 Spam
+score HS_BODY_1533		8
+
+body HS_BODY_1534		/http\:\/\/www\.network\-jp\.com\/*/
+describe HS_BODY_1534		Heinlein Support Spamschutz Body-1534 Spam
+score HS_BODY_1534		8
+
+body HS_BODY_1535		/.*artest light DIY*/
+describe HS_BODY_1535		Heinlein Support Spamschutz Body-1535 Spam
+score HS_BODY_1535		3
+
+body HS_BODY_1536		/.*paypal.de-group.*/
+describe HS_BODY_1536		Heinlein Support Spamschutz Body-1536 
+score HS_BODY_1536		8
+
+body HS_BODY_1537		/.*iop-server\.com\/usr/
+describe HS_BODY_1537		Heinlein Support Spamschutz Body-1537 
+score HS_BODY_1537		8
+
+body HS_BODY_1538		/http\:\/\/ns1\.amazon-amazonservice\.com.*/
+describe HS_BODY_1538		Heinlein Support Spamschutz Body-1538 
+score HS_BODY_1538		8
+
+body HS_BODY_1539		/http\:\/\/efficient\-sent\.net.*/
+describe HS_BODY_1539		Heinlein Support Spamschutz Body-1539 
+score HS_BODY_1539		5
+
+body HS_BODY_1540		/amazon\..*\.cf/
+describe HS_BODY_1540		Heinlein Support Spamschutz Body-1540 
+score HS_BODY_1540		5
+
+body HS_BODY_1541		/Best.*tigung ihres Amazon-Kontos n.*tig/
+describe HS_BODY_1541		Heinlein Support Spamschutz Body-1541 
+score HS_BODY_1541		2
+
+body HS_BODY_1542		/diese E-Mail, da wir ihr Nutzerkonto sonst m.*glicherweise deaktivier/
+describe HS_BODY_1542		Heinlein Support Spamschutz Body-1542 
+score HS_BODY_1542		4
+
+body HS_BODY_1543		/Ihre kostenlose Platz behaupten/
+describe HS_BODY_1543		Heinlein Support Spamschutz Body-1543 
+score HS_BODY_1543		5
+
+body HS_BODY_1544		/wie viel Sie verpasst haben zu beenden./
+describe HS_BODY_1544		Heinlein Support Spamschutz Body-1544 
+score HS_BODY_1544		5
+
+body HS_BODY_1545		/http:\/\/marcodavinci\.net/
+describe HS_BODY_1545		Heinlein Support Spamschutz Body-1545 
+score HS_BODY_1545		8
+
+body HS_BODY_1546		/Wenn Sie diese Empfehlungen nicht erhalten m.*chten: Mich entfernen/
+describe HS_BODY_1546		Heinlein Support Spamschutz Body-1546 
+score HS_BODY_1546		5
+
+body HS_BODY_1547		/per Einschreiben mit Verfolgungsnimmer/
+describe HS_BODY_1547		Heinlein Support Spamschutz Body-1547 
+score HS_BODY_1547		5
+
+body HS_BODY_1548		/The specified sum of .* was paid and now your order is being processed/
+describe HS_BODY_1548		Heinlein Support Spamschutz Body-1548 
+score HS_BODY_1548		5
+
+body HS_BODY_1549		/http:\/\/www\.profitstrategie\.com/
+describe HS_BODY_1549		Heinlein Support Spamschutz Body-1549 
+score HS_BODY_1549		5
+
+body HS_BODY_1550		/http:\/\/webmailrapidresponse\.xyz/
+describe HS_BODY_1550		Heinlein Support Spamschutz Body-1550 
+score HS_BODY_1550		3
+
+body HS_BODY_1551		/dass diese E-Mail Ihnen Fehlerhaft gesendet wurde/
+describe HS_BODY_1551		Heinlein Support Spamschutz Body-1551 
+score HS_BODY_1551		4
+
+body HS_BODY_1552		/Non Skid, Non Slip Floor Coating/
+describe HS_BODY_1552		Heinlein Support Spamschutz Body-1552 
+score HS_BODY_1552		5
+
+body HS_BODY_1553		/Garage Floor Coating from the Pros/
+describe HS_BODY_1553		Heinlein Support Spamschutz Body-1553 
+score HS_BODY_1553		5
+
+body HS_BODY_1554		/Diese E-Mail wurde gesendet an .*, unter Beachtung/
+describe HS_BODY_1554		Heinlein Support Spamschutz Body-1554 
+score HS_BODY_1554		3
+
+body HS_BODY_1555		/Ihre Online- E-MAIL , klicken Sie bitte den unten stehenden Link sofort zu/
+describe HS_BODY_1555		Heinlein Support Spamschutz Body-1555 
+score HS_BODY_1555		5
+
+body HS_BODY_1556		/verweigert 30Minuten vor/
+describe HS_BODY_1556		Heinlein Support Spamschutz Body-1556 
+score HS_BODY_1556		5
+
+body HS_BODY_1557		/Sehr geehrter Kunde T-online.de/
+describe HS_BODY_1557		Heinlein Support Spamschutz Body-1557 
+score HS_BODY_1557		5
+
+body HS_BODY_1558		/;r eine Web-basierte Version/
+describe HS_BODY_1558		Heinlein Support Spamschutz Body-1558 
+score HS_BODY_1558		2
+
+body HS_BODY_1559		/server.*\.zmaximum\.ru/
+describe HS_BODY_1559		Heinlein Support Spamschutz Body-1559 
+score HS_BODY_1559		5
+
+body HS_BODY_1560		/filename="Complaint_.*7z"/
+describe HS_BODY_1560		Heinlein Support Spamschutz Body-1560 
+score HS_BODY_1560		4
+
+body HS_BODY_1561		/Benedikt Sundler GmbH mailt Ihnen/
+describe HS_BODY_1561		Heinlein Support Spamschutz Body-1561 
+score HS_BODY_1561		5
+
+body HS_BODY_1562		/http:\/\/www\.profitmethodik\.xyz/
+describe HS_BODY_1562		Heinlein Support Spamschutz Body-1562 
+score HS_BODY_1562		5
+
+body HS_BODY_1563		/Microsoft Exchange Server Will Be Shut Down/
+describe HS_BODY_1563		Heinlein Support Spamschutz Body-1563 
+score HS_BODY_1563		5
+
+body HS_BODY_1564		/Zugang zu Ihrem Online-Konto in Kurze abläuft/
+describe HS_BODY_1564		Heinlein Support Spamschutz Body-1564 Phishing
+score HS_BODY_1564		5
+
+body HS_BODY_1565		/http:\/\/www\.net\-dating\-concept\.com/
+describe HS_BODY_1565		Heinlein Support Spamschutz Body-1565 
+score HS_BODY_1565		5
+
+body HS_BODY_1566		/http:\/\/info\.annas\-tv-beitrag\.com/
+describe HS_BODY_1566		Heinlein Support Spamschutz Body-1566 
+score HS_BODY_1566		5
+
+body HS_BODY_1567		/Ihr Sparkasse Kunden service\./
+describe HS_BODY_1567		Heinlein Support Spamschutz Body-1567 
+score HS_BODY_1567		5
+
+body HS_BODY_1569		/duckfishelectronics/
+describe HS_BODY_1569		Heinlein Support Spamschutz Body-1569 Spam
+score HS_BODY_1569		6
+
+body HS_BODY_1570		/DUCKFISH ELECTRONICS LLC/
+describe HS_BODY_1570		Heinlein Support Spamschutz Body-1570 Spam
+score HS_BODY_1570		6
+
+body HS_BODY_1571		/http:\/\/electrorabet\.ir\/2/
+describe HS_BODY_1571		Heinlein Support Spamschutz Body-1571 
+score HS_BODY_1571		5
+
+body HS_BODY_1572		/https\:\/\/youtu\.be\/F7hyE1IF\_QY/
+describe HS_BODY_1572		Heinlein Support Spamschutz Body-1572 Spam
+score HS_BODY_1572		8
+
+body HS_BODY_1573		/Inliner Build Version 4380b7741bb759d6cb997545f3/
+describe HS_BODY_1573		Heinlein Support Spamschutz Body-1573 Spam
+score HS_BODY_1573		6
+
+body HS_BODY_1575		/diesem Grund folgende Zahlung zu stornieren. Um den dafür nötigen/
+describe HS_BODY_1575		Heinlein Support Spamschutz Body-1575 Paypal-Spam
+score HS_BODY_1575		2
+
+body HS_BODY_1576		/festgestellt. Diese könnte auf Geldwäsche oder auf einen Zugriff/
+describe HS_BODY_1576		Heinlein Support Spamschutz Body-1576 Paypal-Spam
+score HS_BODY_1576		2
+
+body HS_BODY_1577		/Kontobewegungen hat unser System eine auffällige Transaktion/
+describe HS_BODY_1577		Heinlein Support Spamschutz Body-1577 Paypal-Spam
+score HS_BODY_1577		2
+
+body HS_BODY_1578		/binnen 3 Tagen bestätigen können, sehen wir uns gezwungen Ihr/
+describe HS_BODY_1578		Heinlein Support Spamschutz Body-1578 
+score HS_BODY_1578		2
+
+body HS_BODY_1579		/http:\/\/www.paypal.de-26GAM5022T236.com-secu.=.re/
+describe HS_BODY_1579		Heinlein Support Spamschutz Body-1579 
+score HS_BODY_1579		5
+
+body HS_BODY_1580		/VictoriaMilan\.de/
+describe HS_BODY_1580		Heinlein Support Spamschutz Body-1580 Spam
+score HS_BODY_1580		8
+
+body HS_BODY_1581		/VictoriaMilan\.com/
+describe HS_BODY_1581		Heinlein Support Spamschutz Body-1581 SPam
+score HS_BODY_1581		5
+
+body HS_BODY_1582		/Subject\: FELICITATION\!/
+describe HS_BODY_1582		Heinlein Support Spamschutz Body-1582 
+score HS_BODY_1582		5
+
+body HS_BODY_1583		/www\.alcotesters\.net/
+describe HS_BODY_1583		Heinlein Support Spamschutz Body-1583 
+score HS_BODY_1583		4
+
+body HS_BODY_1584		/style="TEXT-DECORATION: none" href="http:\/\/ek2.net\/Rt1WX" target=_blank/
+describe HS_BODY_1584		Heinlein Support Spamschutz Body-1584 Phishing
+score HS_BODY_1584		8.5
+
+body HS_BODY_1587		/Trusted Funeral Plans/
+describe HS_BODY_1587		Heinlein Support Spamschutz Body-1587 
+score HS_BODY_1587		5
+
+body HS_BODY_1588		/http:\/\/www\.trustedfuneralplans\.co\.uk/
+describe HS_BODY_1588		Heinlein Support Spamschutz Body-1588 
+score HS_BODY_1588		5
+
+body HS_BODY_1589		/Darlehen Kreditangebot . loan credit offer/
+describe HS_BODY_1589		Heinlein Support Spamschutz Body-1589 
+score HS_BODY_1589		5
+
+body HS_BODY_1590		/Our Dienstleistungen ist billig/
+describe HS_BODY_1590		Heinlein Support Spamschutz Body-1590 
+score HS_BODY_1590		8
+
+body HS_BODY_1591		/Good day sir\/madam/
+describe HS_BODY_1591		Heinlein Support Spamschutz Body-1591 
+score HS_BODY_1591		5
+
+body HS_BODY_1592		/19th project between Knight Knox and X1 Developments/
+describe HS_BODY_1592		Heinlein Support Spamschutz Body-1592 
+score HS_BODY_1592		5
+
+body HS_BODY_1593		/Darlehen Angebot Jetzt bewerben/
+describe HS_BODY_1593		Heinlein Support Spamschutz Body-1593 
+score HS_BODY_1593		5
+
+body HS_BODY_1594		/firstfinancecompany924\@gmail\.com/
+describe HS_BODY_1594		Heinlein Support Spamschutz Body-1594 
+score HS_BODY_1594		5
+
+body HS_BODY_1595		/http:\/\/goodpolicy\.xyz/
+describe HS_BODY_1595		Heinlein Support Spamschutz Body-1595 
+score HS_BODY_1595		5
+
+body HS_BODY_1596		/sperrt unser System automatisch Ihren Amazon-Zugang unwiederuflich/
+describe HS_BODY_1596		Heinlein Support Spamschutz Body-1596 
+score HS_BODY_1596		5
+
+body HS_BODY_1597		/ www\.yourluckychance\.co\.uk/
+describe HS_BODY_1597		Heinlein Support Spamschutz Body-1597 
+score HS_BODY_1597		5
+
+body HS_BODY_1598		/Protect your family with a low cost, prepaid funeral plan today/
+describe HS_BODY_1598		Heinlein Support Spamschutz Body-1598 
+score HS_BODY_1598		5
+
+body HS_BODY_1599		/with Flexus Solutions, a reputed IT company/
+describe HS_BODY_1599		Heinlein Support Spamschutz Body-1599 
+score HS_BODY_1599		5
+
+body HS_BODY_1600		/Today market is full of competition/
+describe HS_BODY_1600		Heinlein Support Spamschutz Body-1600 
+score HS_BODY_1600		3
+
+body HS_BODY_1601		/trading robot that works for you 24 hours a day every/
+describe HS_BODY_1601		Heinlein Support Spamschutz Body-1601 
+score HS_BODY_1601		5
+
+body HS_BODY_1602		/Ed Reed/
+describe HS_BODY_1602		Heinlein Support Spamschutz Body-1602 
+score HS_BODY_1602		3
+
+body HS_BODY_1603		/http:\/\/team.\.in\.net\//
+describe HS_BODY_1603		Heinlein Support Spamschutz Body-1603 
+score HS_BODY_1603		4
+
+body HS_BODY_1604		/http:\/\/nxinfra\.in\.net/
+describe HS_BODY_1604		Heinlein Support Spamschutz Body-1604 
+score HS_BODY_1604		5
+
+body HS_BODY_1605		/http:\/\/trackpride\.in\.net/
+describe HS_BODY_1605		Heinlein Support Spamschutz Body-1605 
+score HS_BODY_1605		5
+
+body HS_BODY_1607		/Notice_to_Appear_.*.zip/
+describe HS_BODY_1607		Heinlein Support Spamschutz Body-1607 
+score HS_BODY_1607		5
+
+body HS_BODY_1608		/complete details of the Court Notice in the attachment/
+describe HS_BODY_1608		Heinlein Support Spamschutz Body-1608 
+score HS_BODY_1608		5
+
+body HS_BODY_1609		/victoriamilan\.com/
+describe HS_BODY_1609		Heinlein Support Spamschutz Body-1609 
+score HS_BODY_1609		5
+
+body HS_BODY_1610		/email-edg\.paypal\.com/
+describe HS_BODY_1610		Heinlein Support Spamschutz Body-1610 
+score HS_BODY_1610		5
+
+body HS_BODY_1611		/41628_GER/
+describe HS_BODY_1611		Heinlein Support Spamschutz Body-1611 Spam
+score HS_BODY_1611		5
+
+body HS_BODY_1612		/Free Spins - No Deposit Required/
+describe HS_BODY_1612		Heinlein Support Spamschutz Body-1612 Spam
+score HS_BODY_1612		5
+
+body HS_BODY_1613		/Wir haben nicht in der Lage gewesen, um zu bestimmen/
+describe HS_BODY_1613		Heinlein Support Spamschutz Body-1613 
+score HS_BODY_1613		5
+
+body HS_BODY_1615		/Ihr Konto in weniger als 48 Stunden abgelaufen ist, ist es/
+describe HS_BODY_1615		Heinlein Support Spamschutz Body-1615 
+score HS_BODY_1615		2
+
+body HS_BODY_1616		/http:\/\/interflow-th.com:32000\/mail\/pda\/get.html/
+describe HS_BODY_1616		Heinlein Support Spamschutz Body-1616 
+score HS_BODY_1616		5
+
+body HS_BODY_1617		/not the responsible person for this section, please do me a favour to tran/
+describe HS_BODY_1617		Heinlein Support Spamschutz Body-1617 
+score HS_BODY_1617		5
+
+body HS_BODY_1618		/purchasing department or your friends. It may be useful for them./
+describe HS_BODY_1618		Heinlein Support Spamschutz Body-1618 
+score HS_BODY_1618		5
+
+body HS_BODY_1619		/man kann Sauberlaufteppiche auch teuer ausleihen. Aber unser Kaufpreis ist/
+describe HS_BODY_1619		Heinlein Support Spamschutz Body-1619 Spam
+score HS_BODY_1619		5
+
+body HS_BODY_1620		/Nous vous invitons à nous soumettre votre demande de remboursement afin de nous permettre de la traiter dans les plus brefs details. Consulter les démarches à suivre en cliquant sur le lien ci-dessous :/
+describe HS_BODY_1620		Heinlein Support Spamschutz Body-1620 Backscatter SPAM
+score HS_BODY_1620		15
+
+body HS_BODY_1621		/Ameli.fr assurance maladie ameli 2015 France/
+describe HS_BODY_1621		Heinlein Support Spamschutz Body-1621 Spam
+score HS_BODY_1621		10
+
+body HS_BODY_1622		/http...www.werbestrategen.info.unsubscribeHN.php/
+describe HS_BODY_1622		Heinlein Support Spamschutz Body-1622 Unverlangt zugesandter Gewerbenewsletter
+score HS_BODY_1622		5
+
+body HS_BODY_1623		/eMail:.info.gewerbenewsletter.com/
+
+describe HS_BODY_1623		Heinlein Support Spamschutz Body-1623 Spam
+score HS_BODY_1623		5
+
+body HS_BODY_1625		/http:\/\/mail33.serverstream.com:32000\/mail\/pda\/get.html/
+describe HS_BODY_1625		Heinlein Support Spamschutz Body-1625 
+score HS_BODY_1625		8
+
+body HS_BODY_1626		/http:\/\/affirman.com/
+describe HS_BODY_1626		Heinlein Support Spamschutz Body-1626 
+score HS_BODY_1626		8
+
+body HS_BODY_1627		/https\:\/\/itloker\.com\/\/test/
+describe HS_BODY_1627		Heinlein Support Spamschutz Body-1627 Phishing
+score HS_BODY_1627		8
+
+body HS_BODY_1628		/VictoriaMilan\.de/
+describe HS_BODY_1628		Heinlein Support Spamschutz Body-1628 Spam
+score HS_BODY_1628		8
+
+body HS_BODY_1629		/Diese Nachricht ist, dass Sie Ihre kostenlose Testversion Abonnement zu/
+describe HS_BODY_1629		Heinlein Support Spamschutz Body-1629 Phishing
+score HS_BODY_1629		8
+
+body HS_BODY_1630		/Um diese E-Mail in Ihrem Web-Browser lesen, clicken Sie/
+describe HS_BODY_1630		Heinlein Support Spamschutz Body-1630 Spam
+score HS_BODY_1630		5
+
+body HS_BODY_1632		/amount of \$11,000,000.00 with a financial/
+describe HS_BODY_1632		Heinlein Support Spamschutz Body-1632 
+score HS_BODY_1632		5
+
+body HS_BODY_1633		/My name is Maria Donson. I am married/
+describe HS_BODY_1633		Heinlein Support Spamschutz Body-1633 
+score HS_BODY_1633		5
+
+body HS_BODY_1634		/my Doctor told me that I might not live for more than Eight months/
+describe HS_BODY_1634		Heinlein Support Spamschutz Body-1634 
+score HS_BODY_1634		5
+
+body HS_BODY_1635		/www.perfektb2b.com\/newsletter.htm/
+describe HS_BODY_1635		Heinlein Support Spamschutz Body-1635 Unverlangt zugesandter Gewerbenewsletter
+score HS_BODY_1635		5
+
+body HS_BODY_1636		/Mail-Kontingent \(kostenlos\) zu aktualisieren normalen/
+describe HS_BODY_1636		Heinlein Support Spamschutz Body-1636 Spam
+score HS_BODY_1636		8
+
+body HS_BODY_1637		/Wir bitten Sie die Verifizierung innerhlab der/
+describe HS_BODY_1637		Heinlein Support Spamschutz Body-1637 Phishing
+score HS_BODY_1637		5
+
+body HS_BODY_1638		/E-Mail-Account-Inhaber, die sich weigert,/
+describe HS_BODY_1638		Heinlein Support Spamschutz Body-1638 Spam
+score HS_BODY_1638		5
+
+body HS_BODY_1639		/Wie lange brauchen Sie, um 5000 € zu verdienen?/
+describe HS_BODY_1639		Heinlein Support Spamschutz Body-1639 Spam
+score HS_BODY_1639		6
+
+body HS_BODY_1640		/Do you want to save 50% or more on your PPC management cost?/
+describe HS_BODY_1640		Heinlein Support Spamschutz Body-1640 Spam
+score HS_BODY_1640		6
+
+body HS_BODY_1641		/====> Bitte klicken Sie hier, um Ihr Geld zu bekommen <====/
+describe HS_BODY_1641		Heinlein Support Spamschutz Body-1641 Spam
+score HS_BODY_1641		6
+
+body HS_BODY_1642		/Activate Your Coupon Now to Get Your Logo for Only \$49/
+describe HS_BODY_1642		Heinlein Support Spamschutz Body-1642 Spam
+score HS_BODY_1642		6
+
+body HS_BODY_1643		/Trust Fund Bond of 76,000,000 USD deposited with Lloyds Bank has been/
+describe HS_BODY_1643		Heinlein Support Spamschutz Body-1643 Spam
+score HS_BODY_1643		6
+
+body HS_BODY_1644		/netztarif: Netzebene 7, Wien, nicht gemessene Leistung/
+describe HS_BODY_1644		Heinlein Support Spamschutz Body-1644 
+score HS_BODY_1644		3
+
+body HS_BODY_1645		/Ausmaß der Netznutzung: 4,00 kW/
+describe HS_BODY_1645		Heinlein Support Spamschutz Body-1645 
+score HS_BODY_1645		3
+
+body HS_BODY_1646		/Ihre Ihr Paket hat eine Ausnahme erfahren/
+describe HS_BODY_1646		Heinlein Support Spamschutz Body-1646 Spam
+score HS_BODY_1646		5
+
+body HS_BODY_1647		/unsubscribe.php\?M\=10803920\&C\=387608d58184b283cf6aafa373d8f05f/
+describe HS_BODY_1647		Heinlein Support Spamschutz Body-1647 Spam
+score HS_BODY_1647		5
+
+body HS_BODY_1648		/link.php\?M\=10803920/
+describe HS_BODY_1648		Heinlein Support Spamschutz Body-1648 Spam
+score HS_BODY_1648		3
+
+body HS_BODY_1649		/Viagra\&Ciali/
+describe HS_BODY_1649		Heinlein Support Spamschutz Body-1649 
+score HS_BODY_1649		2
+
+body HS_BODY_1650		/http:\/\/www.appleshop.gdn\/appleshop/
+describe HS_BODY_1650		Heinlein Support Spamschutz Body-1650 
+score HS_BODY_1650		5
+
+body HS_BODY_1651		/http:\/\/www.topangebot.biz.ua\/topangebot2/
+describe HS_BODY_1651		Heinlein Support Spamschutz Body-1651 
+score HS_BODY_1651		5
+
+body HS_BODY_1652		/http:\/\/www.online-pm.co.ua\/online-pm*/
+describe HS_BODY_1652		Heinlein Support Spamschutz Body-1652 
+score HS_BODY_1652		5
+
+body HS_BODY_1653		/http:\/\/www.topangebot.biz.ua\/pillsgeneric/
+describe HS_BODY_1653		Heinlein Support Spamschutz Body-1653 
+score HS_BODY_1653		5
+
+body HS_BODY_1655		/id is tech\.formedia/
+describe HS_BODY_1655		Heinlein Support Spamschutz Body-1655 
+score HS_BODY_1655		3
+
+body HS_BODY_1656		/Ihr Konto weist un\=FCbliche Aktivit\=E4ten auf, welche m\=F6glicherwei\=DF\=/
+describe HS_BODY_1656		Heinlein Support Spamschutz Body-1656 Phishing
+score HS_BODY_1656		5
+
+body HS_BODY_1657		/Mailbox Support Team. All Rights Reserved/
+describe HS_BODY_1657		Heinlein Support Spamschutz Body-1657 
+score HS_BODY_1657		20
+
+body HS_BODY_1658		/has exceeded the storage limit is 1 GB, which is defined by the administrator, you are running at/
+describe HS_BODY_1658		Heinlein Support Spamschutz Body-1658 
+score HS_BODY_1658		10
+
+body HS_BODY_1660		/WARNING! Protect your privacy. Log-out when you are done and completely exit your browser/
+describe HS_BODY_1660		Heinlein Support Spamschutz Body-1660 
+score HS_BODY_1660		1
+
+body HS_BODY_1661		/http:\/\/espaces-modes\.fr\/1etAjfBcHUlCCs8wvtrcuiVEpDkd1jP_c_CbYzYakTPFpO8pRLIwo*/
+describe HS_BODY_1661		Heinlein Support Spamschutz Body-1661 Spam
+score HS_BODY_1661		8
+
+body HS_BODY_1662		/DE74600501017450118741/
+describe HS_BODY_1662		Heinlein Support Spamschutz Body-1662 Spam
+score HS_BODY_1662		5
+
+body HS_BODY_1663		/www.superdigi.org.code.newsletter.php/
+describe HS_BODY_1663		Heinlein Support Spamschutz Body-1663 Spam
+score HS_BODY_1663		5
+
+body HS_BODY_1664		/Two pretty student girls ready to present gentle sex to a man or woman/
+describe HS_BODY_1664		Heinlein Support Spamschutz Body-1664 Spam
+score HS_BODY_1664		5
+
+body HS_BODY_1665		/business-catalogs.trmaildat.com/
+describe HS_BODY_1665		Heinlein Support Spamschutz Body-1665 Spam
+score HS_BODY_1665		2
+
+body HS_BODY_1666		/databases.en\@express-contacts.com/
+describe HS_BODY_1666		Heinlein Support Spamschutz Body-1666 Spam
+score HS_BODY_1666		2
+
+body HS_BODY_1667		/www.ihrgeld2016.com/
+describe HS_BODY_1667		Heinlein Support Spamschutz Body-1667 
+score HS_BODY_1667		3
+
+body HS_BODY_1668		/Every 1 Kilobyte (1024 symbols) of text content is paid by \$5/
+describe HS_BODY_1668		Heinlein Support Spamschutz Body-1668 
+score HS_BODY_1668		7
+
+body HS_BODY_1669		/I am ready to be your partner on Christmas!/
+describe HS_BODY_1669		Heinlein Support Spamschutz Body-1669 Spam
+score HS_BODY_1669		3
+
+body HS_BODY_1670		/I guarantee hot sex, I like doing a blow job./
+describe HS_BODY_1670		Heinlein Support Spamschutz Body-1670 Spam
+score HS_BODY_1670		3
+
+body HS_BODY_1671		/My questionnaireу is only here!/
+describe HS_BODY_1671		Heinlein Support Spamschutz Body-1671 Spam
+score HS_BODY_1671		5
+
+body HS_BODY_1672		/Our rapidly expanding company announces a  position of a letters proofreader/
+describe HS_BODY_1672		Heinlein Support Spamschutz Body-1672 Spam
+score HS_BODY_1672		5
+
+body HS_BODY_1673		/eliminating spelling and grammar  inexactness that might occur in the text./
+describe HS_BODY_1673		Heinlein Support Spamschutz Body-1673 Spam
+score HS_BODY_1673		5
+
+body HS_BODY_1674		/The position takes about 1-2 hours  per day. You may do it on your spare/
+describe HS_BODY_1674		Heinlein Support Spamschutz Body-1674 Spam
+score HS_BODY_1674		5
+
+body HS_BODY_1675		/Incredible! The startling discovery of mathematics enables people to earn millions by doing absolutely NO-TH-ING!/
+describe HS_BODY_1675		Heinlein Support Spamschutz Body-1675 Spam
+score HS_BODY_1675		5
+
+body HS_BODY_1676		/But you still have time to get rich if you open this link!/
+describe HS_BODY_1676		Heinlein Support Spamschutz Body-1676 Spam
+score HS_BODY_1676		5
+
+body HS_BODY_1677		/den (nicht gedeckten|ausstehenden) Betrag unseren Mandanten .* zu (begleichen|decken)/
+describe HS_BODY_1677		Heinlein Support Spamschutz Body-1677 Phishing
+score HS_BODY_1677		5
+
+body HS_BODY_1678		/Stellvertretender Rechtsanwalt Lennard Köhler/
+describe HS_BODY_1678		Heinlein Support Spamschutz Body-1678 Phishing
+score HS_BODY_1678		5
+
+body HS_BODY_1679		/Die vollständige Forderungsausstellung .*, der Sie alle Buchungen entnehmen können, fügen wir bei./
+describe HS_BODY_1679		Heinlein Support Spamschutz Body-1679 Phishing
+score HS_BODY_1679		5
+
+body HS_BODY_1680		/Aufgrund des andauernden Zahlungsausstands sind Sie gezwungen zuzüglich, die durch unsere Tätigkeit entstandene Kosten von .* Euro zu tragen/
+describe HS_BODY_1680		Heinlein Support Spamschutz Body-1680 Phishing
+score HS_BODY_1680		5
+
+body HS_BODY_1681		/Um weitete Kosten auszuschließen, bitten wir Sie den ausstehenden Betrag auf unser Konto zu überweisen./
+describe HS_BODY_1681		Heinlein Support Spamschutz Body-1681 Phishing mit Schreibfehler
+score HS_BODY_1681		7
+
+body HS_BODY_1682		/Heizungsbau M. Meyer/
+describe HS_BODY_1682		Heinlein Support Spamschutz Body-1682 Spam
+score HS_BODY_1682		1
+
+body HS_BODY_1683		/zu unserem Bedauern haben wir festgestellt.*Jetzt bieten wir Ihnen nun letztmalig die Chance/
+describe HS_BODY_1683		Heinlein Support Spamschutz Body-1683 Phishing
+score HS_BODY_1683		3
+
+body HS_BODY_1684		/ds\.theaussiedeal.com/
+describe HS_BODY_1684		Heinlein Support Spamschutz Body-1684 
+score HS_BODY_1684		5
+
+body HS_BODY_1685		/www.schnee-selbst-beseitigen.com/
+describe HS_BODY_1685		Heinlein Support Spamschutz Body-1685 Spam
+score HS_BODY_1685		3
+
+body HS_BODY_1686		/Damit geht es 4 mal so schnell wie bisher:/
+describe HS_BODY_1686		Heinlein Support Spamschutz Body-1686 Spam
+score HS_BODY_1686		3
+
+body HS_BODY_1687		/Konvektorheizer mit Temperaturwache unverzichtbar bei diesem Wetter/
+describe HS_BODY_1687		Heinlein Support Spamschutz Body-1687 Spam
+score HS_BODY_1687		3
+
+body HS_BODY_1688		/http:\/\/.*tradetrackersupport.com/
+describe HS_BODY_1688		Heinlein Support Spamschutz Body-1688 Spam
+score HS_BODY_1688		4
+
+body HS_BODY_1689		/http:\/\/.*onlinewealthmarketssupport.com/
+describe HS_BODY_1689		Heinlein Support Spamschutz Body-1689 Spam
+score HS_BODY_1689		4
+
+body HS_BODY_1690		/http:\/\/.*crimeblade.com/
+describe HS_BODY_1690		Heinlein Support Spamschutz Body-1690 Spam
+score HS_BODY_1690		4
+
+body HS_BODY_1691		/http:\/\/.*styleconstant.com/
+describe HS_BODY_1691		Heinlein Support Spamschutz Body-1691 Spam
+score HS_BODY_1691		4
+
+body HS_BODY_1692		/http:\/\/.*scheduledchair.com/
+describe HS_BODY_1692		Heinlein Support Spamschutz Body-1692 Spam
+score HS_BODY_1692		4
+
+body HS_BODY_1693		/http:\/\/.*summitpity.com/
+describe HS_BODY_1693		Heinlein Support Spamschutz Body-1693 Spam
+score HS_BODY_1693		4
+
+body HS_BODY_1694		/http:\/\/.*quick-cash-app.com/
+describe HS_BODY_1694		Heinlein Support Spamschutz Body-1694 Spam
+score HS_BODY_1694		4
+
+body HS_BODY_1695		/http:\/\/.*tradefusionmails.com/
+describe HS_BODY_1695		Heinlein Support Spamschutz Body-1695 Spam
+score HS_BODY_1695		4
+
+body HS_BODY_1696		/http:\/\/.*piramidalious.com/
+describe HS_BODY_1696		Heinlein Support Spamschutz Body-1696 Spam
+score HS_BODY_1696		4
+
+body HS_BODY_1697		/http:\/\/.*finalalgosupport.com/
+describe HS_BODY_1697		Heinlein Support Spamschutz Body-1697 Spam
+score HS_BODY_1697		4
+
+body HS_BODY_1698		/http:\/\/.*refrigeratorbluejean.com/
+describe HS_BODY_1698		Heinlein Support Spamschutz Body-1698 Spam
+score HS_BODY_1698		4
+
+body HS_BODY_1699		/http:\/\/.*hostilesea.net/
+describe HS_BODY_1699		Heinlein Support Spamschutz Body-1699 Spam
+score HS_BODY_1699		4
+
+body HS_BODY_1700		/http:\/\/.*prizm-mails.com/
+describe HS_BODY_1700		Heinlein Support Spamschutz Body-1700 Spam
+score HS_BODY_1700		4
+
+body HS_BODY_1701		/http:\/\/.*biteappoint.com/
+describe HS_BODY_1701		Heinlein Support Spamschutz Body-1701 Spam
+score HS_BODY_1701		4
+
+body HS_BODY_1702		/http:\/\/.*ladderresponse.com/
+describe HS_BODY_1702		Heinlein Support Spamschutz Body-1702 Spam
+score HS_BODY_1702		4
+
+body HS_BODY_1703		/Be prepared to start shortly! Please simply Skip this email if you are not interested anymore/
+describe HS_BODY_1703		Heinlein Support Spamschutz Body-1703 Spam
+score HS_BODY_1703		10
+
+body HS_BODY_1704		/You have successfully passed the first part of selection for a new vacancy in our company./
+describe HS_BODY_1704		Heinlein Support Spamschutz Body-1704 Spam
+score HS_BODY_1704		10
+
+body HS_BODY_1705		/I'm very auspicious girl and at present trying to find ineffect Man/
+describe HS_BODY_1705		Heinlein Support Spamschutz Body-1705 Spam
+score HS_BODY_1705		10
+
+body HS_BODY_1706		/http:\/\/.*fiftykdaily.com/
+describe HS_BODY_1706		Heinlein Support Spamschutz Body-1706 Spam
+score HS_BODY_1706		4
+
+body HS_BODY_1707		/http:\/\/.*gtradersupport.com/
+describe HS_BODY_1707		Heinlein Support Spamschutz Body-1707 Spam
+score HS_BODY_1707		4
+
+body HS_BODY_1708		/http:\/\/.*dbparamlame.com/
+describe HS_BODY_1708		Heinlein Support Spamschutz Body-1708 Spam
+score HS_BODY_1708		4
+
+body HS_BODY_1709		/http:\/\/.*tributehouseplant.com/
+describe HS_BODY_1709		Heinlein Support Spamschutz Body-1709 Spam
+score HS_BODY_1709		4
+
+body HS_BODY_1710		/http:\/\/.*regalwealth-mails.com/
+describe HS_BODY_1710		Heinlein Support Spamschutz Body-1710 Spam
+score HS_BODY_1710		4
+
+body HS_BODY_1711		/http:\/\/.*wisecrackbiology.com/
+describe HS_BODY_1711		Heinlein Support Spamschutz Body-1711 Spam
+score HS_BODY_1711		4
+
+body HS_BODY_1712		/http:\/\/.*safe-guardtrader.com/
+describe HS_BODY_1712		Heinlein Support Spamschutz Body-1712 Spam
+score HS_BODY_1712		4
+
+body HS_BODY_1713		/bhv-tarifevergleichen.net/
+describe HS_BODY_1713		Heinlein Support Spamschutz Body-1713 
+score HS_BODY_1713		5
+
+body HS_BODY_1714		/neue-versicherung.online/
+describe HS_BODY_1714		Heinlein Support Spamschutz Body-1714 
+score HS_BODY_1714		5
+
+body HS_BODY_1715		/stopazforeclosure.com/
+describe HS_BODY_1715		Heinlein Support Spamschutz Body-1715 
+score HS_BODY_1715		5
+
+body HS_BODY_1716		/innovatorservices.com/
+describe HS_BODY_1716		Heinlein Support Spamschutz Body-1716 
+score HS_BODY_1716		5
+
+body HS_BODY_1717		/aleestrade.com/
+describe HS_BODY_1717		Heinlein Support Spamschutz Body-1717 
+score HS_BODY_1717		5
+
+body HS_BODY_1719		/http:\/\/knkro21.com/
+describe HS_BODY_1719		Heinlein Support Spamschutz Body-1719 
+score HS_BODY_1719		5
+
+body HS_BODY_1722		/Monate \(und Tausende Dollar\) verschwenden/
+describe HS_BODY_1722		Heinlein Support Spamschutz Body-1722 
+score HS_BODY_1722		5
+
+body HS_BODY_1723		/Heute haben sie die moglichkeit, es herauszufinden. nutzen sie diese eigenartige gelegenheit, unsere generika potenzmittel./
+describe HS_BODY_1723		Heinlein Support Spamschutz Body-1723 Spam
+score HS_BODY_1723		5
+
+body HS_BODY_1724		/Super preise testpaket generika haben sie sich jemals gefragt, welches potenzmittel in ihrem konkreten fall am besten wirken wurde?/
+describe HS_BODY_1724		Heinlein Support Spamschutz Body-1724 Spam
+score HS_BODY_1724		5
+
+body HS_BODY_1725		/Discover Bank Customer Service/
+describe HS_BODY_1725		Heinlein Support Spamschutz Body-1725 Spam
+score HS_BODY_1725		3
+
+body HS_BODY_1726		/DISCOVER BANK QUICK LINKS:/
+describe HS_BODY_1726		Heinlein Support Spamschutz Body-1726 Spam
+score HS_BODY_1726		3
+
+body HS_BODY_1727		/This is in reference to your Discover Bank Account(s) Online Banking we know notice some suspicious activity on your account./
+describe HS_BODY_1727		Heinlein Support Spamschutz Body-1727 Spam
+score HS_BODY_1727		5
+
+body HS_BODY_1728		/http:\/\/xkgehe.ru/
+describe HS_BODY_1728		Heinlein Support Spamschutz Body-1728 
+score HS_BODY_1728		5
+
+body HS_BODY_1729		/http:\/\/neuestetarifauskunft\.online/
+describe HS_BODY_1729		Heinlein Support Spamschutz Body-1729 
+score HS_BODY_1729		5
+
+body HS_BODY_1730		/tarifuebersichtjanuar2017.com/
+describe HS_BODY_1730		Heinlein Support Spamschutz Body-1730 
+score HS_BODY_1730		5
+
+body HS_BODY_1731		/Die Ware wurde geladen. Anbei die Rechnung./
+
+describe HS_BODY_1731		Heinlein Support Spamschutz Body-1731 Virus
+score HS_BODY_1731		5
+
+body HS_BODY_1732		/update-account-information.com-secured-riskykitti.info/
+describe HS_BODY_1732		Heinlein Support Spamschutz Body-1732 
+score HS_BODY_1732		5
+
+body HS_BODY_1733		/http:\/\/www.marketbelize.com\/index.php\/campaigns/
+describe HS_BODY_1733		Heinlein Support Spamschutz Body-1733 Spam
+score HS_BODY_1733		4
+
+body HS_BODY_1734		/request will be processed shortly. If this request was made accidentally an/
+describe HS_BODY_1734		Heinlein Support Spamschutz Body-1734 Phishing
+score HS_BODY_1734		5
+
+body HS_BODY_1735		/However, if you do not cancel this request,your account will be shutdown/
+describe HS_BODY_1735		Heinlein Support Spamschutz Body-1735 Spam
+score HS_BODY_1735		5
+
+body HS_BODY_1736		/d you have no knowledge of it, you are advised to cancel the request now/
+describe HS_BODY_1736		Heinlein Support Spamschutz Body-1736 Spam
+score HS_BODY_1736		5
+
+body HS_BODY_1737		/The.*should appear in.*(days|minutes|hours). Please see.*(attached|in attachment)/
+describe HS_BODY_1737		Heinlein Support Spamschutz Body-1737 Spam
+score HS_BODY_1737		3
+
+body HS_BODY_1738		/You need (Doc Access Credentials|File Passcode|Doc Access Key):/
+describe HS_BODY_1738		Heinlein Support Spamschutz Body-1738 Spam
+score HS_BODY_1738		5
+
+body HS_BODY_1739		/The.*will be posted in .*(days|minutes|hours). Please see.*(attached|in attachment)/
+describe HS_BODY_1739		Heinlein Support Spamschutz Body-1739 
+score HS_BODY_1739		5
+
+body HS_BODY_1740		/kaiser-kerst.com/
+describe HS_BODY_1740		Heinlein Support Spamschutz Body-1740 Spam
+score HS_BODY_1740		3
+
+body HS_BODY_1741		/schreibtoll.com/
+describe HS_BODY_1741		Heinlein Support Spamschutz Body-1741 Spam
+score HS_BODY_1741		3
+
+body HS_BODY_1742		/stylochamps.com/
+describe HS_BODY_1742		Heinlein Support Spamschutz Body-1742 Spam
+score HS_BODY_1742		3
+
+body HS_BODY_1743		/stylomaxx.com/
+describe HS_BODY_1743		Heinlein Support Spamschutz Body-1743 Spam
+score HS_BODY_1743		3
+
+body HS_BODY_1744		/ferramaxx.com/
+describe HS_BODY_1744		Heinlein Support Spamschutz Body-1744 Spam
+score HS_BODY_1744		3
+
+body HS_BODY_1745		/schmieder-office-versand.com/
+describe HS_BODY_1745		Heinlein Support Spamschutz Body-1745 Spam
+score HS_BODY_1745		3
+
+body HS_BODY_1746		/<meta name=3D"Generator" content=3D"Microsoft Word 15 .filtered med/
+describe HS_BODY_1746		Heinlein Support Spamschutz Body-1746 Spam
+score HS_BODY_1746		1
+
+body HS_BODY_1747		/http:\/\/.*rechnung_js_telekom/
+describe HS_BODY_1747		Heinlein Support Spamschutz Body-1747 spam
+score HS_BODY_1747		5
+
+body HS_BODY_1748		/mails with attachments. You must upgrade your mailbox to increase storage/
+describe HS_BODY_1748		Heinlein Support Spamschutz Body-1748 Phishing
+score HS_BODY_1748		5
+
+body HS_BODY_1749		/Note: Failure to upgrade implies your email will be deactivated to minimiz/
+
+describe HS_BODY_1749		Heinlein Support Spamschutz Body-1749 Phishing
+score HS_BODY_1749		5
+
+body HS_BODY_1750		/Attention: .*  Our server indicated that your mai/
+describe HS_BODY_1750		Heinlein Support Spamschutz Body-1750 Phishing
+score HS_BODY_1750		5
+
+body HS_BODY_1751		/URGENT EMAIL UPGRADE/
+describe HS_BODY_1751		Heinlein Support Spamschutz Body-1751 Phishing
+score HS_BODY_1751		5
+
+body HS_BODY_1752		/nice-man.co.ua/
+describe HS_BODY_1752		Heinlein Support Spamschutz Body-1752 Spam
+score HS_BODY_1752		3
+
+body HS_BODY_1753		/f.pepainc.biz.ua/
+describe HS_BODY_1753		Heinlein Support Spamschutz Body-1753 Spam
+score HS_BODY_1753		3
+
+body HS_BODY_1754		/office-perfekt.com/
+describe HS_BODY_1754		Heinlein Support Spamschutz Body-1754 Spam
+score HS_BODY_1754		3
+
+body HS_BODY_1755		/handelskauf.com/
+describe HS_BODY_1755		Heinlein Support Spamschutz Body-1755 Spam
+score HS_BODY_1755		3
+
+body HS_BODY_1756		/Valgus Pro.*ist eine Korrekturhilfe für den großen Zeh/
+describe HS_BODY_1756		Heinlein Support Spamschutz Body-1756 Spam
+score HS_BODY_1756		5
+
+body HS_BODY_1757		/hilfe f.r den großen Zeh/
+describe HS_BODY_1757		Heinlein Support Spamschutz Body-1757 Spam
+score HS_BODY_1757		2
+
+body HS_BODY_1758		/s Pro=BB ist eine =0D=0AKorrekturhilfe f.r den großen=20=/
+describe HS_BODY_1758		Heinlein Support Spamschutz Body-1758 Spam
+score HS_BODY_1758		5
+
+body HS_BODY_1759		/Nichts zu tun, wird zu einem eingeschr=E4nkten Zugriff auf Ihre Mailbox f/
+describe HS_BODY_1759		Heinlein Support Spamschutz Body-1759 Phishing
+score HS_BODY_1759		5
+
+body HS_BODY_1760		/Sie haben die Kontingentgrenze f=FCr Ihre Mailbox =FCberschritten, Sie werd/ 
+describe HS_BODY_1760		Heinlein Support Spamschutz Body-1760 Phishing
+score HS_BODY_1760		5
+
+body HS_BODY_1761		/Bist du in ernsthafter Notwendigkeit von finanziellen\?/
+describe HS_BODY_1761		Heinlein Support Spamschutz Body-1761 Spam
+score HS_BODY_1761		5
+
+body HS_BODY_1762		/ja, sind wir eine seri=C3=B6se Kreditgeber E-Mail f=C3=BCr weitere/
+describe HS_BODY_1762		Heinlein Support Spamschutz Body-1762 Spam
+score HS_BODY_1762		5
+
+body HS_BODY_1763		/Jahren als Berater f=3DC3=3DBCr Unterhehmensfinanz/
+describe HS_BODY_1763		Heinlein Support Spamschutz Body-1763 Spam
+score HS_BODY_1763		3
+
+body HS_BODY_1764		/Sollte das ineressant f=3DC3=3DBCr Sie ?/
+describe HS_BODY_1764		Heinlein Support Spamschutz Body-1764 Spam
+score HS_BODY_1764		3
+
+body HS_BODY_1765		/p.deliveryservic.eu/
+describe HS_BODY_1765		Heinlein Support Spamschutz Body-1765 Spam
+score HS_BODY_1765		3
+
+body HS_BODY_1766		/deutschepharma.shop/
+describe HS_BODY_1766		Heinlein Support Spamschutz Body-1766 Spam
+score HS_BODY_1766		3
+
+body HS_BODY_1767		/topfashion.city Ltd/
+describe HS_BODY_1767		Heinlein Support Spamschutz Body-1767 Spam
+score HS_BODY_1767		3
+
+body HS_BODY_1768		/an Einzelpersonen, Gesellschaften, Gesellschaften usw./
+describe HS_BODY_1768		Heinlein Support Spamschutz Body-1768 Spam
+score HS_BODY_1768		3
+
+body HS_BODY_1769		/privatekvtarife.net/
+describe HS_BODY_1769		Heinlein Support Spamschutz Body-1769 Spam
+score HS_BODY_1769		5
+
+body HS_BODY_1770		/finanzierung-?2017.net/
+describe HS_BODY_1770		Heinlein Support Spamschutz Body-1770 Spam
+score HS_BODY_1770		5
+
+body HS_BODY_1771		/neuester-?bhvtarif.net/
+describe HS_BODY_1771		Heinlein Support Spamschutz Body-1771 Spam
+score HS_BODY_1771		5
+
+body HS_BODY_1772		/Geben Sie diesem neuen Flacher Bauch Über Nacht - Trick eine Chance und beobachten Sie, wie Ihr Bauchfett über Nacht wegschmil/
+describe HS_BODY_1772		Heinlein Support Spamschutz Body-1772 Spam
+score HS_BODY_1772		5
+
+body HS_BODY_1773		/schnelle-auszahlung.online/
+describe HS_BODY_1773		Heinlein Support Spamschutz Body-1773 Spam
+score HS_BODY_1773		5
+
+body HS_BODY_1774		/Source:.*Email Security Team.*/
+describe HS_BODY_1774		Heinlein Support Spamschutz Body-1774 Phishing
+score HS_BODY_1774		5
+
+body HS_BODY_1775		/After upgrade, uour mailbox .*will be clos/
+describe HS_BODY_1775		Heinlein Support Spamschutz Body-1775 Phishing
+score HS_BODY_1775		5
+
+body HS_BODY_1776		/Apologies for the Any inconvenience and appreciate Your Understanding/
+describe HS_BODY_1776		Heinlein Support Spamschutz Body-1776 Phishing
+score HS_BODY_1776		5
+
+body HS_BODY_1777		/http\:\/\/casualient.com\/c75/
+describe HS_BODY_1777		Heinlein Support Spamschutz Body-1777 Phishing
+score HS_BODY_1777		3
+
+body HS_BODY_1778		/finanzierungsueberblick.org/
+describe HS_BODY_1778		Heinlein Support Spamschutz Body-1778 Spam
+score HS_BODY_1778		5
+
+body HS_BODY_1780		/Konto hat ein neues Entger/
+describe HS_BODY_1780		Heinlein Support Spamschutz Body-1780 Phishing
+score HS_BODY_1780		3
+
+body HS_BODY_1783		/der Sie nie mehr schwitzen bringt/
+describe HS_BODY_1783		Heinlein Support Spamschutz Body-1783 Spam
+score HS_BODY_1783		3
+
+body HS_BODY_1786		/www.ihre-erste-hilfe.com/
+describe HS_BODY_1786		Heinlein Support Spamschutz Body-1786 Spam
+score HS_BODY_1786		3
+
+body HS_BODY_1788		/Sortimetn mit vielen Passformen/
+describe HS_BODY_1788		Heinlein Support Spamschutz Body-1788 Spam
+score HS_BODY_1788		3
+
+body HS_BODY_1789		/Zuzatzangebot Universall Autoteppiche/
+describe HS_BODY_1789		Heinlein Support Spamschutz Body-1789 Spam
+score HS_BODY_1789		3
+
+body HS_BODY_1792		/BrandfallAushangBetriebskennzeichnunginnerbetrieblicher/
+describe HS_BODY_1792		Heinlein Support Spamschutz Body-1792 Spam
+score HS_BODY_1792		3
+
+body HS_BODY_1794		/HIER KANNST DU MEINEN AUFTRITT BEI PRO'7 MITERLEBEN/
+describe HS_BODY_1794		Heinlein Support Spamschutz Body-1794 Spam
+score HS_BODY_1794		3
+
+body HS_BODY_1795		/Wenn interessiert kontaktieren Sie uns auf E-Mail unten/
+describe HS_BODY_1795		Heinlein Support Spamschutz Body-1795 Spam
+score HS_BODY_1795		3
+
+body HS_BODY_1798		/wenn diese Meldung hat Sie zu erreichendurch Fehler/
+describe HS_BODY_1798		Heinlein Support Spamschutz Body-1798 Spam
+score HS_BODY_1798		5
+
+body HS_BODY_1800		/zun\&auml;chst unsere Bankverbindung f\&uuml;r die weitere Bearbeitung zu \&uuml;bermitteln und mir er\&ouml;rtert werden/
+describe HS_BODY_1800		Heinlein Support Spamschutz Body-1800 Phishing
+score HS_BODY_1800		5
+
+body HS_BODY_1802		/AuszahlungsabteilungVIP Payments GmbH/
+describe HS_BODY_1802		Heinlein Support Spamschutz Body-1802 Spam
+score HS_BODY_1802		3
+
+body HS_BODY_1805		/Der gesamte Klüngel an der Bundesregierung muss weg! Einzige Möglichkeit: Alle Regierungsparteien abwählen!/
+describe HS_BODY_1805		Heinlein Support Spamschutz Body-1805 Spam
+score HS_BODY_1805		15
+
+body HS_BODY_1807		/Der gesamte Kl=C3=BCngel an der Bundesregierung muss weg! Einzige M=C3=/
+describe HS_BODY_1807		Heinlein Support Spamschutz Body-1807 Spam
+score HS_BODY_1807		5
+
+body HS_BODY_1808		/Das Wahlteam 2017/
+describe HS_BODY_1808		Heinlein Support Spamschutz Body-1808 Spam
+score HS_BODY_1808		5
+
+body HS_BODY_1809		/unsere Kanzlei wurden vom Unternehmen GiroPay GmbH beauftragt/
+describe HS_BODY_1809		Heinlein Support Spamschutz Body-1809 Virus
+score HS_BODY_1809		3
+
+body HS_BODY_1811		/den aussehenden Betrag unter Angaben der Rechnungsnummer/
+describe HS_BODY_1811		Heinlein Support Spamschutz Body-1811 Virus
+score HS_BODY_1811		3
+
+body HS_BODY_1812		/die Datenbanken nach bevorzugten Datenfeldern, T.*tigkeitsbereichen und der Stadt, in der die Firma eingetragen wurde, filtern/
+describe HS_BODY_1812		Heinlein Support Spamschutz Body-1812 Spam
+score HS_BODY_1812		5
+
+body HS_BODY_1815		/automase.co.ua/
+describe HS_BODY_1815		Heinlein Support Spamschutz Body-1815 Spam
+score HS_BODY_1815		4
+
+body HS_BODY_1817		/genkoha1987.tumblr.com/
+describe HS_BODY_1817		Heinlein Support Spamschutz Body-1817 Spam
+score HS_BODY_1817		3
+
+body HS_BODY_1819		/graspskills.tcmail.in/
+describe HS_BODY_1819		Heinlein Support Spamschutz Body-1819 Spam
+score HS_BODY_1819		3
+
+body HS_BODY_1820		/treeleaves.co/
+describe HS_BODY_1820		Heinlein Support Spamschutz Body-1820 Spam
+score HS_BODY_1820		3
+
+body HS_BODY_1823		/de.factoum.store/
+describe HS_BODY_1823		Heinlein Support Spamschutz Body-1823 Spam
+score HS_BODY_1823		3
+
+body HS_BODY_1826		/winbitcoin.biz.ua/
+describe HS_BODY_1826		Heinlein Support Spamschutz Body-1826 Spam
+score HS_BODY_1826		3
+
+body HS_BODY_1829		/kunst-tannenbaum.com/
+describe HS_BODY_1829		Heinlein Support Spamschutz Body-1829 Spam
+score HS_BODY_1829		3
+
+body HS_BODY_1831		/kredit.kreditde.group/
+describe HS_BODY_1831		Heinlein Support Spamschutz Body-1831 Spam
+score HS_BODY_1831		2
+
+body HS_BODY_1832		/de.apotekem.group/
+describe HS_BODY_1832		Heinlein Support Spamschutz Body-1832 Spam
+score HS_BODY_1832		2
+
+body HS_BODY_1835		/ INCREASE MAIL BOX/i
+describe HS_BODY_1835		Heinlein Support Spamschutz Body-1835 Phishing
+score HS_BODY_1835		1
+
+body HS_BODY_1837		/oon as you have exceeded quota limit. You need to increase the size of your/
+describe HS_BODY_1837		Heinlein Support Spamschutz Body-1837 Phishing
+score HS_BODY_1837		2
+
+body HS_BODY_1838		/the link below. Failure to increase your mailbox within the next 24 hours w/
+describe HS_BODY_1838		Heinlein Support Spamschutz Body-1838 Phishing
+score HS_BODY_1838		2
+
+body HS_BODY_1840		/^ill lead to account deactivation./
+describe HS_BODY_1840		Heinlein Support Spamschutz Body-1840 Phsihing
+score HS_BODY_1840		1
+
+body HS_BODY_1841		/LED Strahler\, LED Fluter\. Das beste Licht f\. Ihre Sicherheit\. Auch mit/
+describe HS_BODY_1841		Heinlein Support Spamschutz Body-1841 Spam
+score HS_BODY_1841		2
+
+body HS_BODY_1844		/de.germanypharm.group/
+describe HS_BODY_1844		Heinlein Support Spamschutz Body-1844 Spam
+score HS_BODY_1844		2
+
+body HS_BODY_1846		/sweet-bonbon.com/
+describe HS_BODY_1846		Heinlein Support Spamschutz Body-1846 Spam
+score HS_BODY_1846		3
+
+body HS_BODY_1849		/barbgam.com/
+describe HS_BODY_1849		Heinlein Support Spamschutz Body-1849 Spam
+score HS_BODY_1849		3
+
+body HS_BODY_1850		/wheretosubmit.com/
+describe HS_BODY_1850		Heinlein Support Spamschutz Body-1850 Spam
+score HS_BODY_1850		3
+
+body HS_BODY_1851		/visonfolk.com/
+describe HS_BODY_1851		Heinlein Support Spamschutz Body-1851 Spam
+score HS_BODY_1851		3
+
+body HS_BODY_1853		/die von der Tierarzneimittelindustrie praktiziert werden/
+describe HS_BODY_1853		Heinlein Support Spamschutz Body-1853 Spam
+score HS_BODY_1853		3
+
+body HS_BODY_1856		/Die Zucht unserer alten reinrassigen Gefl/
+describe HS_BODY_1856		Heinlein Support Spamschutz Body-1856 Spam
+score HS_BODY_1856		3
+
+body HS_BODY_1859		/ Genozid gegen die Artenvielfalt der Haustiere gibt/
+describe HS_BODY_1859		Heinlein Support Spamschutz Body-1859 Spam
+score HS_BODY_1859		3
+
+body HS_BODY_1862		/Wenn dieselben juristisch-legalen Tierwohlaktivisten mit demselben Elan und Wagemut /
+describe HS_BODY_1862		Heinlein Support Spamschutz Body-1862 Spam
+score HS_BODY_1862		3
+
+body HS_BODY_1864		/Auf den Hilfeseiten das an diese E-Mail angehangte Formular Sie mehr/
+describe HS_BODY_1864		Heinlein Support Spamschutz Body-1864 Phishing
+score HS_BODY_1864		2
+
+body HS_BODY_1865		/Bitte laden Sie das beigef"ugte Formular/
+describe HS_BODY_1865		Heinlein Support Spamschutz Body-1865 Phishing
+score HS_BODY_1865		2
+
+body HS_BODY_1867		/Freundliche Grube/
+describe HS_BODY_1867		Heinlein Support Spamschutz Body-1867 Phishing
+score HS_BODY_1867		2
+
+body HS_BODY_1868		/Mein Vater wurde von meinen Onkeln aus Gier und Neid zu Tode vergiftet./
+describe HS_BODY_1868		Heinlein Support Spamschutz Body-1868 Spam
+score HS_BODY_1868		5
+
+body HS_BODY_1870		/Triannual Philanthropic Donation/
+describe HS_BODY_1870		Heinlein Support Spamschutz Body-1870 Spam
+score HS_BODY_1870		2
+
+body HS_BODY_1871		/geben kostenlose Lebensmittel im Wert von 500/
+describe HS_BODY_1871		Heinlein Support Spamschutz Body-1871 Spam
+score HS_BODY_1871		2
+
+body HS_BODY_1874		/als einer der m=C3=B6glichen Gewinner ausgew=C3=A4hlt/
+describe HS_BODY_1874		Heinlein Support Spamschutz Body-1874 Spam
+score HS_BODY_1874		2
+
+body HS_BODY_1877		/Konto-Nr: 475244-327/
+describe HS_BODY_1877		Heinlein Support Spamschutz Body-1877 Spam
+score HS_BODY_1877		3
+
+body HS_BODY_1879		/dann benutzen Sie bitte eine andere E-Mail-Adresse/
+describe HS_BODY_1879		Heinlein Support Spamschutz Body-1879 Spam
+score HS_BODY_1879		2
+
+body HS_BODY_1880		/Dies ist die Drette Erinnerung/
+describe HS_BODY_1880		Heinlein Support Spamschutz Body-1880 Spam
+score HS_BODY_1880		3
+
+body HS_BODY_1881		/Lassen Sie uns das unter uns bleiben/
+describe HS_BODY_1881		Heinlein Support Spamschutz Body-1881 Spam
+score HS_BODY_1881		2
+
+body HS_BODY_1884		/info\@unitedfinancialgroup.es/
+describe HS_BODY_1884		Heinlein Support Spamschutz Body-1884 Malware
+score HS_BODY_1884		3
+
+body HS_BODY_1887		/E-mail has exceeded the storage limit. You can not send or receive new/
+describe HS_BODY_1887		Heinlein Support Spamschutz Body-1887 Phishing
+score HS_BODY_1887		8
+
+body HS_BODY_1890		/to have your online account unlocked/
+describe HS_BODY_1890		Heinlein Support Spamschutz Body-1890 Phishing
+score HS_BODY_1890		20
+
+body HS_BODY_1891		/^The Mailbox.Team$/
+describe HS_BODY_1891		Heinlein Support Spamschutz Body-1891 Phishing
+score HS_BODY_1891		5
+
+body HS_BODY_1893		/The Mailbox.Team/
+describe HS_BODY_1893		Heinlein Support Spamschutz Body-1893 Phishing
+score HS_BODY_1893		1
+
+body HS_BODY_1895		/Um weitete Kosten zu vermeiden, bitten wir Sie den/
+describe HS_BODY_1895		Heinlein Support Spamschutz Body-1895 Viren
+score HS_BODY_1895		10
+
+body HS_BODY_1898		/You can not send or receive new messages until you re-validate/
+describe HS_BODY_1898		Heinlein Support Spamschutz Body-1898 Phishing
+score HS_BODY_1898		50
+
+body HS_BODY_1901		/has exceeded the storage limit./
+describe HS_BODY_1901		Heinlein Support Spamschutz Body-1901 Phishing
+score HS_BODY_1901		30
+
+body HS_BODY_1902		/^Mailbox.Team/
+describe HS_BODY_1902		Heinlein Support Spamschutz Body-1902 Phishing
+score HS_BODY_1902		50
+
+body HS_BODY_1905		/re-validate your mail/
+describe HS_BODY_1905		Heinlein Support Spamschutz Body-1905 Phishing
+score HS_BODY_1905		200
+
+body HS_BODY_1907		/You can not send or receive new/
+describe HS_BODY_1907		Heinlein Support Spamschutz Body-1907 Phishing
+score HS_BODY_1907		20
+
+#
+# Heinlein Support -- SpamAssassin Regelsätze
+# Use it as it is.
+#
+#
+header HS_HEADER_0		From:=~/^.*\@payapl\.fr/
+describe HS_HEADER_0		Heinlein Support Spamschutz Header-0 Header-Spamschutzregel 1031
+score HS_HEADER_0		5
+
+header HS_HEADER_1		Received =~ /^.*test\@sideaitalia\.com.*/
+describe HS_HEADER_1		Heinlein Support Spamschutz Header-1 
+score HS_HEADER_1		5
+
+header HS_HEADER_2		Subject =~ /^inolar\.com/
+describe HS_HEADER_2		Heinlein Support Spamschutz Header-2 Header-Spamschutzregel 1177
+score HS_HEADER_2		5
+
+header HS_HEADER_3		Return-Path =~  /^\<noreply\@direkt\-sicher\.com\>/
+describe HS_HEADER_3		Heinlein Support Spamschutz Header-3 Header-Spamschutzregel 1176
+score HS_HEADER_3		5
+
+header HS_HEADER_4		Return-Path =~  /^site258\@www\.pand331\.nl/
+describe HS_HEADER_4		Heinlein Support Spamschutz Header-4 Header-Spamschutzregel 1175
+score HS_HEADER_4		5
+
+header HS_HEADER_5		Received =~  /^.*puck844\.server4you\.de.*/
+describe HS_HEADER_5		Heinlein Support Spamschutz Header-5 Header-Spamschutzregel 1174
+score HS_HEADER_5		5
+
+header HS_HEADER_6		From =~  /^.*\<olgaber[1-9]\@yandex\.ru\>.*/
+describe HS_HEADER_6		Heinlein Support Spamschutz Header-6 Header-Spamschutzregel 1173
+score HS_HEADER_6		5
+
+header HS_HEADER_7		From =~  /^.*jpberlin admin \<drepcaulfield\@eircom\.net\>.*/
+describe HS_HEADER_7		Heinlein Support Spamschutz Header-7 Header-Spamschutzregel 1172
+score HS_HEADER_7		5
+
+header HS_HEADER_8		Received =~  /^.*envelope\-from \<konductt\@server\.mwhdns\.com.*/
+describe HS_HEADER_8		Heinlein Support Spamschutz Header-8 Header-Spamschutzregel 1171
+score HS_HEADER_8		5
+
+header HS_HEADER_9		From =~  /^.*dpaypal\@dpaypal\.at/
+describe HS_HEADER_9		Heinlein Support Spamschutz Header-9 Header-Spamschutzregel 1170
+score HS_HEADER_9		5
+
+header HS_HEADER_10		Subject =~  /^.*=?koi8-r?B?ycvBINDPIMTPzMfBzSDLz83Qwc7JyS4=?=.*/
+describe HS_HEADER_10		Heinlein Support Spamschutz Header-10 Header-Spamschutzregel 1169
+score HS_HEADER_10		5
+
+header HS_HEADER_11		Subject =~  /^.*Company founded in Gibraltar is currently looking for European sector based labor force.*/
+describe HS_HEADER_11		Heinlein Support Spamschutz Header-11 Header-Spamschutzregel 1168
+score HS_HEADER_11		5
+
+header HS_HEADER_12		From =~  /^.*\@papertocad\.de/
+describe HS_HEADER_12		Heinlein Support Spamschutz Header-12 Header-Spamschutzregel 1167
+score HS_HEADER_12		5
+
+header HS_HEADER_13		From =~  /^.*admin\@mailbox\.com.*/
+describe HS_HEADER_13		Heinlein Support Spamschutz Header-13 Header-Spamschutzregel 1166
+score HS_HEADER_13		5
+
+header HS_HEADER_14		From =~  /^.*Billing\-Service\@NetPay\.de.*/
+describe HS_HEADER_14		Heinlein Support Spamschutz Header-14 Header-Spamschutzregel 1165
+score HS_HEADER_14		5
+
+header HS_HEADER_15		Subject: =~  /^.*V[^a-z]{3,6}[1,i,l][^a-z]{3,6}A[^a-z]{3,6}G[^a-z]{3,6}R[^a-z]{3,6}A/
+describe HS_HEADER_15		Heinlein Support Spamschutz Header-15 Header-Spamschutzregel 1164
+score HS_HEADER_15		5
+
+header HS_HEADER_16		Sender =~  /^.*phpscript\@ws[0-9]\.microware\.hu.*$/
+describe HS_HEADER_16		Heinlein Support Spamschutz Header-16 Header-Spamschutzregel 1163
+score HS_HEADER_16		5
+
+header HS_HEADER_17		Subject =~  /^.*async\.facebook\.com.*$/
+describe HS_HEADER_17		Heinlein Support Spamschutz Header-17 Header-Spamschutzregel 1162
+score HS_HEADER_17		5
+
+header HS_HEADER_18		Subject =~  /^.*Ihr freundlicher Support$/
+describe HS_HEADER_18		Heinlein Support Spamschutz Header-18 Header-Spamschutzregel 1161
+score HS_HEADER_18		5
+
+header HS_HEADER_19		From =~  /^.*\@deutschseo\.com/
+describe HS_HEADER_19		Heinlein Support Spamschutz Header-19 Header-Spamschutzregel 1160
+score HS_HEADER_19		5
+
+header HS_HEADER_20		X-RocketYMMF =~  /^webluck1847\@att\.net/
+describe HS_HEADER_20		Heinlein Support Spamschutz Header-20 Header-Spamschutzregel 1159
+score HS_HEADER_20		5
+
+header HS_HEADER_21		Subject =~  /^offizielle sieger/
+describe HS_HEADER_21		Heinlein Support Spamschutz Header-21 Header-Spamschutzregel 1158
+score HS_HEADER_21		5
+
+header HS_HEADER_22		From =~  /.*\@verifiedbyvisa\.fr*/
+describe HS_HEADER_22		Heinlein Support Spamschutz Header-22 Header-Spamschutzregel 1157
+score HS_HEADER_22		5
+
+header HS_HEADER_23		Reply-To =~  /.*\@verifiedbyvisa\.fr/
+describe HS_HEADER_23		Heinlein Support Spamschutz Header-23 Header-Spamschutzregel 1156
+score HS_HEADER_23		5
+
+header HS_HEADER_24		Reply-To =~  /.*girl\@mailisfree\.com/
+describe HS_HEADER_24		Heinlein Support Spamschutz Header-24 Header-Spamschutzregel 1155
+score HS_HEADER_24		5
+
+header HS_HEADER_25		Subject =~  /^vous devez reglez votre compte free\.fr/
+describe HS_HEADER_25		Heinlein Support Spamschutz Header-25 Header-Spamschutzregel 1154
+score HS_HEADER_25		5
+
+header HS_HEADER_26		Message-ID =~  /.*mscreator[0-9][0-9]\.fagms\.de/
+describe HS_HEADER_26		Heinlein Support Spamschutz Header-26 Header-Spamschutzregel 1153
+score HS_HEADER_26		1
+
+header HS_HEADER_27		Subject =~  /^gelegenheit zur webverbesserung/
+describe HS_HEADER_27		Heinlein Support Spamschutz Header-27 Header-Spamschutzregel 1052
+score HS_HEADER_27		5
+
+header HS_HEADER_28		Subject =~  /^Achtung! Ihr paypal-Konto wurde begrenzt!/
+describe HS_HEADER_28		Heinlein Support Spamschutz Header-28 Header-Spamschutzregel 1051
+score HS_HEADER_28		5
+
+header HS_HEADER_29		X-PHP-Script =~  /^campnetworking\.ca\/images\/susscesful_soties\/nfoscomm\.php*/
+describe HS_HEADER_29		Heinlein Support Spamschutz Header-29 Header-Spamschutzregel 1050
+score HS_HEADER_29		5
+
+header HS_HEADER_30		Subject =~  /^.*zusammenarbeit zur webverbesserung/
+describe HS_HEADER_30		Heinlein Support Spamschutz Header-30 Header-Spamschutzregel 1049
+score HS_HEADER_30		5
+
+header HS_HEADER_31		X-PHP-Script =~  /^biditsaleit\.com\/dz\/mailer\.php*/
+describe HS_HEADER_31		Heinlein Support Spamschutz Header-31 Header-Spamschutzregel 1048
+score HS_HEADER_31		5
+
+header HS_HEADER_32		Subject =~  /^.*from GMC manufacturer/
+describe HS_HEADER_32		Heinlein Support Spamschutz Header-32 
+score HS_HEADER_32		5
+
+header HS_HEADER_33		Return-Path =~  /.*ventouxl\@ns[0-9]{3}\.medialook\.net/
+describe HS_HEADER_33		Heinlein Support Spamschutz Header-33 
+score HS_HEADER_33		5
+
+header HS_HEADER_34		From  =~  /^.*Topillen Apotheke /
+describe HS_HEADER_34		Heinlein Support Spamschutz Header-34 
+score HS_HEADER_34		5
+
+header HS_HEADER_35		Subject =~  /^Top Apotheke/
+describe HS_HEADER_35		Heinlein Support Spamschutz Header-35 
+score HS_HEADER_35		5
+
+header HS_HEADER_36		message-ID =~  /.*phx\.gbl/
+describe HS_HEADER_36		Heinlein Support Spamschutz Header-36 
+score HS_HEADER_36		1
+
+header HS_HEADER_37		List-Unsubscribe =~  /.*e\-mailing\.pymac\.fr\/[a-z]\/[a-z]\/[0-9]{4}\/[0-9]{6}/
+describe HS_HEADER_37		Heinlein Support Spamschutz Header-37 
+score HS_HEADER_37		5
+
+header HS_HEADER_38		Return-Path =~  /.*\@oanm[0-9]{2}\.com/
+describe HS_HEADER_38		Heinlein Support Spamschutz Header-38 Header-Spamschutzregel 1141
+score HS_HEADER_38		5
+
+header HS_HEADER_39		Subject =~  /^lighting products from GMC manufacturer/
+describe HS_HEADER_39		Heinlein Support Spamschutz Header-39 Header-Spamschutzregel 1140
+score HS_HEADER_39		5
+
+header HS_HEADER_40		Subject =~  /^OFFIZIELLE GEWINNBENACHRITIGUNG/
+describe HS_HEADER_40		Heinlein Support Spamschutz Header-40 Header-Spamschutzregel 1139
+score HS_HEADER_40		5
+
+header HS_HEADER_41		Subject =~  /^God bless you as you get back to me/
+describe HS_HEADER_41		Heinlein Support Spamschutz Header-41 Header-Spamschutzregel 1038
+score HS_HEADER_41		5
+
+header HS_HEADER_42		List-Unsubscribe =~  /.*tk3\.sbc01\.com\/sy\/\*/
+describe HS_HEADER_42		Heinlein Support Spamschutz Header-42 Header-Spamschutzregel 1037
+score HS_HEADER_42		5
+
+header HS_HEADER_43		List-Unsubscribe =~  /tk3\.sbc01\.com\/sy\/\*/
+describe HS_HEADER_43		Heinlein Support Spamschutz Header-43 Header-Spamschutzregel 1037
+score HS_HEADER_43		5
+
+header HS_HEADER_44		Message-ID =~  /.*[0-9]{8}\-[0-9]{8}\-[0-9a-z]{3}\-0\@S102*/
+describe HS_HEADER_44		Heinlein Support Spamschutz Header-44 Header-Spamschutzregel 1036
+score HS_HEADER_44		5
+
+header HS_HEADER_45		Subject =~  /.*YOUR EMAIL HAS WON YOU GBP*/
+describe HS_HEADER_45		Heinlein Support Spamschutz Header-45 Header-Spamschutzregel 1035
+score HS_HEADER_45		5
+
+header HS_HEADER_46		From =~  /.*ventouxl\@ns[0-9]?[0-9]\.medialook\.net/
+describe HS_HEADER_46		Heinlein Support Spamschutz Header-46 Header-Spamschutzregel 1034
+score HS_HEADER_46		5
+
+header HS_HEADER_47		From =~  /.*gestioncreditexpert_[0-9]{4}\@gce\-mailer\-[0-9]{2}\.com/
+describe HS_HEADER_47		Heinlein Support Spamschutz Header-47 Header-Spamschutzregel 1033
+score HS_HEADER_47		5
+
+header HS_HEADER_48		From =~  /^.*erosvision\.com/
+describe HS_HEADER_48		Heinlein Support Spamschutz Header-48 Header-Spamschutzregel 1032
+score HS_HEADER_48		5
+
+header HS_HEADER_50		X-PHP-Script =~  /^mars\.rapidvps\.com\/~emoosite\/tmp\/install_4b10cb87da737\/languages\/site\/husa\.php*/
+describe HS_HEADER_50		Heinlein Support Spamschutz Header-50 Header-Spamschutzregel 1030
+score HS_HEADER_50		5
+
+header HS_HEADER_51		Thread-Index =~  /.*Acvd0cAG8IQaasqAcNaztWODnM30ZA/
+describe HS_HEADER_51		Heinlein Support Spamschutz Header-51 Header-Spamschutzregel 1029
+score HS_HEADER_51		5
+
+header HS_HEADER_52		Subject =~  /^aktualisieren Sie Ihre Bankdaten/
+describe HS_HEADER_52		Heinlein Support Spamschutz Header-52 Header-Spamschutzregel 1028
+score HS_HEADER_52		5
+
+header HS_HEADER_53		Subject =~  /^Erfahrungsbericht Bernd Matthes/
+describe HS_HEADER_53		Heinlein Support Spamschutz Header-53 Header-Spamschutzregel 1027
+score HS_HEADER_53		5
+
+header HS_HEADER_54		Subject =~  /^.*IP PBX/
+describe HS_HEADER_54		Heinlein Support Spamschutz Header-54 Header-Spamschutzregel 1026
+score HS_HEADER_54		5
+
+header HS_HEADER_55		From =~  /^.*Nicoll Christopher John/
+describe HS_HEADER_55		Heinlein Support Spamschutz Header-55 Header-Spamschutzregel 1025
+score HS_HEADER_55		5
+
+header HS_HEADER_56		From =~  /^.*SHELL PETROLEUM/
+describe HS_HEADER_56		Heinlein Support Spamschutz Header-56 Header-Spamschutzregel 1024
+score HS_HEADER_56		5
+
+header HS_HEADER_57		From =~  /^.*Versicherungs Dienst/
+describe HS_HEADER_57		Heinlein Support Spamschutz Header-57 Header-Spamschutzregel 1023
+score HS_HEADER_57		5
+
+header HS_HEADER_58		From =~  /^.*soft\-cd\.com/
+describe HS_HEADER_58		Heinlein Support Spamschutz Header-58 Header-Spamschutzregel 1022
+score HS_HEADER_58		5
+
+header HS_HEADER_59		From =~  /^\"Oxford Business News\" \<info\@oxford\-bn\.org\>/
+describe HS_HEADER_59		Heinlein Support Spamschutz Header-59 Header-Spamschutzregel 1021
+score HS_HEADER_59		5
+
+header HS_HEADER_60		Subject =~  /^=\?iso\-8859\-1\?Q\?Leider_st=F6\?= =\?iso-8859-1\?Q\?ren_Sie\.\?\=/
+describe HS_HEADER_60		Heinlein Support Spamschutz Header-60 Header-Spamschutzregel 1020
+score HS_HEADER_60		5
+
+header HS_HEADER_61		From =~  /^.*Elena.*\@eposta\.ru/
+describe HS_HEADER_61		Heinlein Support Spamschutz Header-61 Header-Spamschutzregel 1019
+score HS_HEADER_61		5
+
+header HS_HEADER_62		Subject =~  /^.*Results 2008 \!/
+describe HS_HEADER_62		Heinlein Support Spamschutz Header-62 Header-Spamschutzregel 1018
+score HS_HEADER_62		5
+
+header HS_HEADER_63		From =~  /^Sponsor Lotto/
+describe HS_HEADER_63		Heinlein Support Spamschutz Header-63 Header-Spamschutzregel 1017
+score HS_HEADER_63		5
+
+header HS_HEADER_64		From =~  /^.*nodiet\@web\.de/
+describe HS_HEADER_64		Heinlein Support Spamschutz Header-64 Header-Spamschutzregel 1016
+score HS_HEADER_64		5
+
+header HS_HEADER_65		From =~  /^.*edirects\.com/
+describe HS_HEADER_65		Heinlein Support Spamschutz Header-65 Header-Spamschutzregel 1015
+score HS_HEADER_65		5
+
+header HS_HEADER_66		Subject =~  /^.*WINNING NOTIFICATION\!\!\!/
+describe HS_HEADER_66		Heinlein Support Spamschutz Header-66 
+score HS_HEADER_66		5
+
+header HS_HEADER_67		Subject =~  /^.*Wir wissen was Frauen wollern/
+describe HS_HEADER_67		Heinlein Support Spamschutz Header-67 Header-Spamschutzregel 1013
+score HS_HEADER_67		5
+
+header HS_HEADER_68		From =~  /^.*newscd\.org/
+describe HS_HEADER_68		Heinlein Support Spamschutz Header-68 Header-Spamschutzregel 1012
+score HS_HEADER_68		5
+
+header HS_HEADER_69		From =~  /^.*mms\-und\-sms\-gutschein\.com/
+describe HS_HEADER_69		Heinlein Support Spamschutz Header-69 Header-Spamschutzregel 1011
+score HS_HEADER_69		5
+
+header HS_HEADER_70		Subject =~  /^.*CONFIRM YOUR WINNING/
+describe HS_HEADER_70		Heinlein Support Spamschutz Header-70 Header-Spamschutzregel 1010
+score HS_HEADER_70		5
+
+header HS_HEADER_71		Subject =~  /^.*Gratisaktion \- Du wurdest ausgewaehlt unseren neuen SMS/
+describe HS_HEADER_71		Heinlein Support Spamschutz Header-71 Header-Spamschutzregel 1009
+score HS_HEADER_71		5
+
+header HS_HEADER_72		From =~  /^.*Seitensprung/
+describe HS_HEADER_72		Heinlein Support Spamschutz Header-72 Header-Spamschutzregel 1008
+score HS_HEADER_72		5
+
+header HS_HEADER_73		Received =~  /^.*germans\-mailc\.com/
+describe HS_HEADER_73		Heinlein Support Spamschutz Header-73 Header-Spamschutzregel 1007
+score HS_HEADER_73		5
+
+header HS_HEADER_74		Received =~  /^.*stienitzsee\.info/
+describe HS_HEADER_74		Heinlein Support Spamschutz Header-74 Header-Spamschutzregel 1006
+score HS_HEADER_74		5
+
+header HS_HEADER_75		Subject =~  /^Bonus 555eu/
+describe HS_HEADER_75		Heinlein Support Spamschutz Header-75 Header-Spamschutzregel 1005
+score HS_HEADER_75		5
+
+header HS_HEADER_76		Subject =~ /.*(ATTN|TO) *:.*SALES? *MANAGER/
+describe HS_HEADER_76		Heinlein Support Spamschutz Header-76 Header-Spamschutzregel 1004
+score HS_HEADER_76		5
+
+header HS_HEADER_77		Subject =~  /^.*Take this postcard now\!/
+describe HS_HEADER_77		Heinlein Support Spamschutz Header-77 Header-Spamschutzregel 1003
+score HS_HEADER_77		5
+
+header HS_HEADER_78		Subject =~  /^.*FUXIN/
+describe HS_HEADER_78		Heinlein Support Spamschutz Header-78 Header-Spamschutzregel 1002
+score HS_HEADER_78		5
+
+header HS_HEADER_79		From =~  /^.*marion\.backera/
+describe HS_HEADER_79		Heinlein Support Spamschutz Header-79 Header-Spamschutzregel 1001
+score HS_HEADER_79		5
+
+header HS_HEADER_80		Subject =~  /^.*kein spam\. aber eine Antwort auf ihre Fragen/
+describe HS_HEADER_80		Heinlein Support Spamschutz Header-80 Header-Spamschutzregel 1000
+score HS_HEADER_80		5
+
+header HS_HEADER_81		Subject =~  /^4,8 Mill\. Osteuropaeer durch Fischer\-Volmer Erlass/
+describe HS_HEADER_81		Heinlein Support Spamschutz Header-81  Nazi Spam1
+score HS_HEADER_81		5
+
+header HS_HEADER_82		Subject =~ /^Auf Streife durch den Berliner Wedding/
+describe HS_HEADER_82		Heinlein Support Spamschutz Header-82  Nazi Spam2
+score HS_HEADER_82		5
+
+header HS_HEADER_83		Subject =~ /^Auslaender bevorzugt/
+describe HS_HEADER_83		Heinlein Support Spamschutz Header-83  Nazi Spam3
+score HS_HEADER_83		5
+
+header HS_HEADER_84		Subject =~ /^Auslaenderpolitik/
+describe HS_HEADER_84		Heinlein Support Spamschutz Header-84  Nazi Spam4
+score HS_HEADER_84		5
+
+header HS_HEADER_85		Subject =~ /^Deutsche werden kuenftig beim Arzt abgezockt/
+describe HS_HEADER_85		Heinlein Support Spamschutz Header-85  Nazi Spam5
+score HS_HEADER_85		5
+
+header HS_HEADER_86		Subject =~ /^Du wirst zum Sklaven gemacht\!\!\!/
+describe HS_HEADER_86		Heinlein Support Spamschutz Header-86  Nazi Spam6
+score HS_HEADER_86		5
+
+header HS_HEADER_87		Subject =~ /^Graeberschaendung auf bundesdeutsche Anordnung/
+describe HS_HEADER_87		Heinlein Support Spamschutz Header-87  Nazi Spam7
+score HS_HEADER_87		5
+
+header HS_HEADER_88		Subject =~ /^Hier sind wir Lehrer die einzigen Auslaender/
+describe HS_HEADER_88		Heinlein Support Spamschutz Header-88  Nazi Spam8
+score HS_HEADER_88		5
+
+header HS_HEADER_89		Subject =~ /^Paranoider Deutschenmoerder kommt in Psychiatrie/
+describe HS_HEADER_89		Heinlein Support Spamschutz Header-89  Nazi Spam9
+score HS_HEADER_89		5
+
+header HS_HEADER_90		Subject =~ /^Tuerkei in die EU/
+describe HS_HEADER_90		Heinlein Support Spamschutz Header-90  Nazi Spam10
+score HS_HEADER_90		5
+
+header HS_HEADER_91		Subject =~  /^Verbrechen der deutschen Frau/
+describe HS_HEADER_91		Heinlein Support Spamschutz Header-91  Nazi Spam11
+score HS_HEADER_91		5
+
+header HS_HEADER_92		Subject =~  /^.*Skandal in Berlin/
+describe HS_HEADER_92		Heinlein Support Spamschutz Header-92  JPBERLIN-14
+score HS_HEADER_92		5
+
+header HS_HEADER_93		Subject =~ /^.*Auslaendergewalt: Herr Rau, wo waren Sie?/
+describe HS_HEADER_93		Heinlein Support Spamschutz Header-93  JPBERLIN-15
+score HS_HEADER_93		5
+
+header HS_HEADER_94		Subject =~  /^.*Bankrott des Gesundheitswesens durch Auslaender!/
+describe HS_HEADER_94		Heinlein Support Spamschutz Header-94  JPBERLIN-16
+score HS_HEADER_94		5
+
+header HS_HEADER_95		Subject =~  /^.*Wer an ein Tabu ruehrt, muss und darf vernichtet werden/
+describe HS_HEADER_95		Heinlein Support Spamschutz Header-95  JPBERLIN-17
+score HS_HEADER_95		5
+
+header HS_HEADER_96		Subject =~  /^.*EU Beitritt der Tuerkei/
+describe HS_HEADER_96		Heinlein Support Spamschutz Header-96  JPBERLIN-18
+score HS_HEADER_96		5
+
+header HS_HEADER_97		Subject =~  /^.*Bin ich zu weltfremd.*Ich glaube wohl kaum/
+describe HS_HEADER_97		Heinlein Support Spamschutz Header-97  JPBERLIN-19
+score HS_HEADER_97		5
+
+header HS_HEADER_98		Subject =~  /^.*Die Deform der sozialen Ordnung/
+describe HS_HEADER_98		Heinlein Support Spamschutz Header-98  JPBERLIN-20
+score HS_HEADER_98		5
+
+header HS_HEADER_99		Subject =~  /^.*Moschee-Bau in Deutschland/
+describe HS_HEADER_99		Heinlein Support Spamschutz Header-99  JPBERLIN-21
+score HS_HEADER_99		5
+
+header HS_HEADER_100		Subject =~  /^.*Augen auf.*So sieht es aus/
+describe HS_HEADER_100		Heinlein Support Spamschutz Header-100  JPBERLIN-22
+score HS_HEADER_100		5
+
+header HS_HEADER_101		Subject =~  /^.*Paradies Bundesrepublik - Rente fuer die Welt/
+describe HS_HEADER_101		Heinlein Support Spamschutz Header-101  JPBERLIN-23
+score HS_HEADER_101		5
+
+header HS_HEADER_102		Subject =~  /^.*Libanesen in Berlin/
+describe HS_HEADER_102		Heinlein Support Spamschutz Header-102  JPBERLIN-24
+score HS_HEADER_102		5
+
+header HS_HEADER_103		Subject =~  /^.*Garather klagen ueber eskalierende Gewalt im Stadtteil!/
+describe HS_HEADER_103		Heinlein Support Spamschutz Header-103  JPBERLIN-24
+score HS_HEADER_103		5
+
+header HS_HEADER_104		Subject =~  /^.*Auslaender erschleichen sich zunehmend Sozialleistungen/
+describe HS_HEADER_104		Heinlein Support Spamschutz Header-104  JPBERLIN-25
+score HS_HEADER_104		5
+
+header HS_HEADER_105		Subject =~  /^.*Auslaenderkriminalitaet steigt weiter!/
+describe HS_HEADER_105		Heinlein Support Spamschutz Header-105  JPBERLIN-26
+score HS_HEADER_105		5
+
+header HS_HEADER_106		Subject =~  /^.*Das kann unmoeglich sein -Leserbrief/
+describe HS_HEADER_106		Heinlein Support Spamschutz Header-106  JPBERLIN-27
+score HS_HEADER_106		5
+
+header HS_HEADER_107		Subject =~  /^.*Nein zum Zuwanderungsgesetz !/
+describe HS_HEADER_107		Heinlein Support Spamschutz Header-107  JPBERLIN-28
+score HS_HEADER_107		5
+
+header HS_HEADER_108		Subject =~  /^.*Skandalurteil in Darmstadt/
+describe HS_HEADER_108		Heinlein Support Spamschutz Header-108  JPBERLIN-29
+score HS_HEADER_108		5
+
+header HS_HEADER_109		Subject =~  /^.*Auf Kosten der deutschen Beitragszahler und Rentner!/
+describe HS_HEADER_109		Heinlein Support Spamschutz Header-109  JPBERLIN-30
+score HS_HEADER_109		5
+
+header HS_HEADER_110		Subject =~  /^.*Wir haben die Auslaender doch geholt/
+describe HS_HEADER_110		Heinlein Support Spamschutz Header-110  JPBERLIN-31
+score HS_HEADER_110		5
+
+header HS_HEADER_111		Subject =~  /^.*TUERKEN\-TERROR AM HIMMELFAHRTSTAG/
+describe HS_HEADER_111		Heinlein Support Spamschutz Header-111  JPBERLIN-32
+score HS_HEADER_111		5
+
+header HS_HEADER_112		Subject =~  /^.*MULTI\-KULTI\-BANDE TYRANNISIERTE MITSCHUELER/
+describe HS_HEADER_112		Heinlein Support Spamschutz Header-112  JPBERLIN-33
+score HS_HEADER_112		5
+
+header HS_HEADER_113		Subject =~  /^.*ASYLANTEN BEGRABSCHTEN DEUTSCHES MAEDCHEN/
+describe HS_HEADER_113		Heinlein Support Spamschutz Header-113  JPBERLIN-34
+score HS_HEADER_113		5
+
+header HS_HEADER_114		Subject =~  /^.*Was Deutschland braucht, sind deutsche Kinder!/
+describe HS_HEADER_114		Heinlein Support Spamschutz Header-114  JPBERLIN-35
+score HS_HEADER_114		5
+
+header HS_HEADER_115		Subject =~  /^.*Diplomatische Zensur/
+describe HS_HEADER_115		Heinlein Support Spamschutz Header-115  JPBERLIN-36
+score HS_HEADER_115		5
+
+header HS_HEADER_116		Subject =~  /^.*EU gibt Erwerbslosen volle Freizuegigkeit/
+describe HS_HEADER_116		Heinlein Support Spamschutz Header-116  JPBERLIN-37
+score HS_HEADER_116		5
+
+header HS_HEADER_117		Subject =~  /^.*Richter unterstuetzt kriminelle Auslaenderin/
+describe HS_HEADER_117		Heinlein Support Spamschutz Header-117  JPBERLIN-38
+score HS_HEADER_117		5
+
+header HS_HEADER_118		Subject =~  /^.*Auslaenderanteile in Schweizer Gefaengnissen/
+describe HS_HEADER_118		Heinlein Support Spamschutz Header-118  JPBERLIN-39
+score HS_HEADER_118		5
+
+header HS_HEADER_119		Subject =~  /^.*Augen auf\! (So sieht es aus\!)/
+describe HS_HEADER_119		Heinlein Support Spamschutz Header-119  JPBERLIN-40
+score HS_HEADER_119		5
+
+header HS_HEADER_120		Subject =~  /^.*Neue Voelkerwanderung droht\!/
+describe HS_HEADER_120		Heinlein Support Spamschutz Header-120  JPBERLIN-41
+score HS_HEADER_120		5
+
+header HS_HEADER_121		Subject =~  /^.*Client TOS Notification/
+describe HS_HEADER_121		Heinlein Support Spamschutz Header-121  JPBERLIN-50
+score HS_HEADER_121		5
+
+header HS_HEADER_122		Subject =~  /^.*Postbank Sicherheitsaktualisierung/
+describe HS_HEADER_122		Heinlein Support Spamschutz Header-122  JPBERLIN-52
+score HS_HEADER_122		5
+
+header HS_HEADER_123		Subject =~  /^.*Sicherheitsaktualisierung/
+describe HS_HEADER_123		Heinlein Support Spamschutz Header-123  JPBERLIN-53
+score HS_HEADER_123		5
+
+header HS_HEADER_124		Subject =~  /^.*Deutsche-bank Sicherheitsaktualisierung/
+describe HS_HEADER_124		Heinlein Support Spamschutz Header-124  JPBERLIN-54
+score HS_HEADER_124		5
+
+header HS_HEADER_125		Subject =~  /^.*internet.*pharmacy/
+describe HS_HEADER_125		Heinlein Support Spamschutz Header-125  JPBERLIN-55
+score HS_HEADER_125		5
+
+header HS_HEADER_126		Subject =~  /^.*Affordable Premade Logos/
+describe HS_HEADER_126		Heinlein Support Spamschutz Header-126  JPBERLIN-56
+score HS_HEADER_126		5
+
+header HS_HEADER_127		Subject =~  /^.*Best prices.*on the net/
+describe HS_HEADER_127		Heinlein Support Spamschutz Header-127  JPBERLIN-57
+score HS_HEADER_127		5
+
+header HS_HEADER_128		Subject =~  /^.*Phentermine/
+describe HS_HEADER_128		Heinlein Support Spamschutz Header-128  JPBERLIN-60
+score HS_HEADER_128		5
+
+header HS_HEADER_130		Subject =~  /^.*Die Sahne tropft heraus/
+describe HS_HEADER_130		Heinlein Support Spamschutz Header-130  JPBERLIN-61
+score HS_HEADER_130		5
+
+header HS_HEADER_132		Subject =~  /^.*Replica Watch Models/
+describe HS_HEADER_132		Heinlein Support Spamschutz Header-132  JPBERLIN-64
+score HS_HEADER_132		5
+
+header HS_HEADER_133		Subject =~  /^.*Sehr geehrter Postbankkunde/
+describe HS_HEADER_133		Heinlein Support Spamschutz Header-133  JPBERLIN-65
+score HS_HEADER_133		5
+
+header HS_HEADER_134		Subject =~  /^.*AIR ANTALYA/
+describe HS_HEADER_134		Heinlein Support Spamschutz Header-134  JPBERLIN-66
+score HS_HEADER_134		5
+
+header HS_HEADER_135		Subject =~  /^.*Search engines \- submit/
+describe HS_HEADER_135		Heinlein Support Spamschutz Header-135  JPBERLIN-12
+score HS_HEADER_135		5
+
+header HS_HEADER_136		Subject =~  /^.*Search engine traffic/
+describe HS_HEADER_136		Heinlein Support Spamschutz Header-136  JPBERLIN-13
+score HS_HEADER_136		5
+
+header HS_HEADER_137		Subject =~  /^More efficient than via\-gra/
+describe HS_HEADER_137		Heinlein Support Spamschutz Header-137 Header-Spamschutzregel 22
+score HS_HEADER_137		5
+
+header HS_HEADER_138		Subject =~  /^Mailadresse unbekannt/
+describe HS_HEADER_138		Heinlein Support Spamschutz Header-138 Header-Spamschutzregel 27
+score HS_HEADER_138		5
+
+header HS_HEADER_139		Subject =~ /^.*SARS\: Viet Nam removed from list of affected countries.*/
+describe HS_HEADER_139		Heinlein Support Spamschutz Header-139 Header-Spamschutzregel 29
+score HS_HEADER_139		5
+
+header HS_HEADER_140		Subject =~  /^.*Wichtig \!\!\! Die Telefonnummer die du haben wolltest/
+describe HS_HEADER_140		Heinlein Support Spamschutz Header-140 Header-Spamschutzregel 31
+score HS_HEADER_140		5
+
+header HS_HEADER_141		Subject =~  /^.*Weihnachtsbaeume ab EURO.*/
+describe HS_HEADER_141		Heinlein Support Spamschutz Header-141 Header-Spamschutzregel 32
+score HS_HEADER_141		5
+
+header HS_HEADER_142		Subject =~  /^.*Neue Version zum downloaden.*/
+describe HS_HEADER_142		Heinlein Support Spamschutz Header-142 Header-Spamschutzregel 33
+score HS_HEADER_142		5
+
+header HS_HEADER_143		Subject =~  /^.*Frants for.*/
+describe HS_HEADER_143		Heinlein Support Spamschutz Header-143 Header-Spamschutzregel 34
+score HS_HEADER_143		5
+
+header HS_HEADER_144		Subject =~  /^.*FREEE.*/
+describe HS_HEADER_144		Heinlein Support Spamschutz Header-144 Header-Spamschutzregel 35
+score HS_HEADER_144		5
+
+header HS_HEADER_145		Subject =~  /^.*Webdesign leicht gemacht.*/
+describe HS_HEADER_145		Heinlein Support Spamschutz Header-145 Header-Spamschutzregel 36
+score HS_HEADER_145		5
+
+header HS_HEADER_146		Subject =~  /^.*Check this Message Board Out.*/
+describe HS_HEADER_146		Heinlein Support Spamschutz Header-146 Header-Spamschutzregel 37
+score HS_HEADER_146		5
+
+header HS_HEADER_147		Subject =~  /^SAVE GERMANY VOTE STOIBER.*/
+describe HS_HEADER_147		Heinlein Support Spamschutz Header-147 Header-Spamschutzregel 38
+score HS_HEADER_147		5
+
+header HS_HEADER_148		Received =~  /^.*luftmensch\.com/
+describe HS_HEADER_148		Heinlein Support Spamschutz Header-148 Header-Spamschutzregel 28
+score HS_HEADER_148		5
+
+header HS_HEADER_149		From =~ /.*Mandy Tweed/
+describe HS_HEADER_149		Heinlein Support Spamschutz Header-149 Header-Spamschutzregel 39
+score HS_HEADER_149		5
+
+header HS_HEADER_150		Received =~ /from privat .*\.aol\.com/
+describe HS_HEADER_150		Heinlein Support Spamschutz Header-150 Header-Spamschutzregel 40
+score HS_HEADER_150		5
+
+header HS_HEADER_151		Received =~ /.*tpg_exsrvr\.thepowellgroup\.com/
+describe HS_HEADER_151		Heinlein Support Spamschutz Header-151 Header-Spamschutzregel 41
+score HS_HEADER_151		5
+
+header HS_HEADER_152		Received =~ /from mx?\.eudoramail\.com/
+describe HS_HEADER_152		Heinlein Support Spamschutz Header-152 Header-Spamschutzregel 42
+score HS_HEADER_152		5
+
+header HS_HEADER_154		Subject =~ /^FW\: Warm this world by truely Love$/
+describe HS_HEADER_154		Heinlein Support Spamschutz Header-154 Header-Spamschutzregel 51
+score HS_HEADER_154		5
+
+header HS_HEADER_155		Subject =~ /^.*Fwd\:Peace BeTweeN AmeriCa and IsLaM\!/
+describe HS_HEADER_155		Heinlein Support Spamschutz Header-155 Header-Spamschutzregel 58
+score HS_HEADER_155		5
+
+header HS_HEADER_156		Subject =~  /^ILOVEYOU/
+describe HS_HEADER_156		Heinlein Support Spamschutz Header-156 Header-Spamschutzregel 60
+score HS_HEADER_156		5
+
+header HS_HEADER_157		Subject =~ /^(Re: )*BubbleBoy is back\!/
+describe HS_HEADER_157		Heinlein Support Spamschutz Header-157 Header-Spamschutzregel 62
+score HS_HEADER_157		5
+
+header HS_HEADER_158		Subject =~  /^Accept Credit Cards/
+describe HS_HEADER_158		Heinlein Support Spamschutz Header-158 Header-Spamschutzregel 63
+score HS_HEADER_158		5
+
+header HS_HEADER_159		Subject =~  /^How Soon Are You Going To Retire\?/
+describe HS_HEADER_159		Heinlein Support Spamschutz Header-159 Header-Spamschutzregel 64
+score HS_HEADER_159		5
+
+header HS_HEADER_160		Subject =~ /^\[ADV\:/
+describe HS_HEADER_160		Heinlein Support Spamschutz Header-160 Header-Spamschutzregel 65
+score HS_HEADER_160		5
+
+header HS_HEADER_161		Subject =~ /^ADV\:/
+describe HS_HEADER_161		Heinlein Support Spamschutz Header-161 Header-Spamschutzregel 66
+score HS_HEADER_161		5
+
+header HS_HEADER_162		Subject =~  /^Snowhite and the Seven Dwarfs \- The REAL story\!/
+describe HS_HEADER_162		Heinlein Support Spamschutz Header-162 Header-Spamschutzregel 67
+score HS_HEADER_162		5
+
+header HS_HEADER_163		Subject =~  /^Are you losing sleep over debt\?/
+describe HS_HEADER_163		Heinlein Support Spamschutz Header-163 Header-Spamschutzregel 68
+score HS_HEADER_163		5
+
+header HS_HEADER_164		Subject =~  /^a stock that makes money/
+describe HS_HEADER_164		Heinlein Support Spamschutz Header-164 Header-Spamschutzregel 69
+score HS_HEADER_164		5
+
+header HS_HEADER_165		Subject =~  /^high earnings may soar/
+describe HS_HEADER_165		Heinlein Support Spamschutz Header-165 Header-Spamschutzregel 70
+score HS_HEADER_165		5
+
+header HS_HEADER_166		Subject =~  /^See the VIDEO Britney/
+describe HS_HEADER_166		Heinlein Support Spamschutz Header-166 Header-Spamschutzregel 71
+score HS_HEADER_166		5
+
+header HS_HEADER_167		Subject =~ /^FW\: VIDEOS OF BRITNEY/
+describe HS_HEADER_167		Heinlein Support Spamschutz Header-167 Header-Spamschutzregel 72
+score HS_HEADER_167		5
+
+header HS_HEADER_168		Subject =~  /^STOLEN HARDCORE VIDEO/
+describe HS_HEADER_168		Heinlein Support Spamschutz Header-168 Header-Spamschutzregel 73
+score HS_HEADER_168		5
+
+header HS_HEADER_169		Subject =~  /^NEW CASH PROGRAM/
+describe HS_HEADER_169		Heinlein Support Spamschutz Header-169 Header-Spamschutzregel 74
+score HS_HEADER_169		5
+
+header HS_HEADER_170		Subject =~  /^Hot Celebs 100\% Exposed\!/
+describe HS_HEADER_170		Heinlein Support Spamschutz Header-170 Header-Spamschutzregel 75
+score HS_HEADER_170		5
+
+header HS_HEADER_171		Subject =~  /^Make It Happen/
+describe HS_HEADER_171		Heinlein Support Spamschutz Header-171 Header-Spamschutzregel 76
+score HS_HEADER_171		5
+
+header HS_HEADER_172		Subject =~  /^If you need extra money\.\.\.read this\!/
+describe HS_HEADER_172		Heinlein Support Spamschutz Header-172 Header-Spamschutzregel 77
+score HS_HEADER_172		5
+
+header HS_HEADER_173		Subject =~  /^Recieve A Free Quote/
+describe HS_HEADER_173		Heinlein Support Spamschutz Header-173 Header-Spamschutzregel 78
+score HS_HEADER_173		5
+
+header HS_HEADER_174		Subject =~  /^We Have Low Mortgage Rates\!\!\!/
+describe HS_HEADER_174		Heinlein Support Spamschutz Header-174 Header-Spamschutzregel 79
+score HS_HEADER_174		5
+
+header HS_HEADER_175		Subject =~ /^Re: travel confirmation/
+describe HS_HEADER_175		Heinlein Support Spamschutz Header-175 Header-Spamschutzregel 80
+score HS_HEADER_175		5
+
+header HS_HEADER_176		Subject =~  /^Receive a FREE SAMPLE of Viagra for Women/
+describe HS_HEADER_176		Heinlein Support Spamschutz Header-176 Header-Spamschutzregel 81
+score HS_HEADER_176		5
+
+header HS_HEADER_177		Subject =~  /^DOUBLE YOUR BREAST SIZE! GUARANTEED/
+describe HS_HEADER_177		Heinlein Support Spamschutz Header-177 Header-Spamschutzregel 82
+score HS_HEADER_177		5
+
+header HS_HEADER_178		Subject =~  /^Ground Breaking Business \"Starts Today\"/
+describe HS_HEADER_178		Heinlein Support Spamschutz Header-178 Header-Spamschutzregel 83
+score HS_HEADER_178		5
+
+header HS_HEADER_179		Subject =~  /^AS SEEN ON T\.V/
+describe HS_HEADER_179		Heinlein Support Spamschutz Header-179 Header-Spamschutzregel 84
+score HS_HEADER_179		5
+
+header HS_HEADER_180		Subject =~  /^99 Million Email Addresses \- \$99/
+describe HS_HEADER_180		Heinlein Support Spamschutz Header-180 Header-Spamschutzregel 85
+score HS_HEADER_180		5
+
+header HS_HEADER_181		Subject =~  /^50 Million Fresh Email Addresses/
+describe HS_HEADER_181		Heinlein Support Spamschutz Header-181 Header-Spamschutzregel 87
+score HS_HEADER_181		5
+
+header HS_HEADER_182		Subject =~  /^200 Million Email Addresses \- \$149/
+describe HS_HEADER_182		Heinlein Support Spamschutz Header-182 Header-Spamschutzregel 88
+score HS_HEADER_182		5
+
+header HS_HEADER_183		Subject =~  /^Get Viagra Online Now \!\!\!/
+describe HS_HEADER_183		Heinlein Support Spamschutz Header-183 Header-Spamschutzregel 89
+score HS_HEADER_183		5
+
+header HS_HEADER_184		Subject =~  /^Boost Your Windows Reliability/
+describe HS_HEADER_184		Heinlein Support Spamschutz Header-184 Header-Spamschutzregel 90
+score HS_HEADER_184		5
+
+header HS_HEADER_185		Subject =~  /^Hot Penny Stock Pick/
+describe HS_HEADER_185		Heinlein Support Spamschutz Header-185 Header-Spamschutzregel 92
+score HS_HEADER_185		5
+
+header HS_HEADER_186		Subject =~  /^Need a great deal on a home loan\?/
+describe HS_HEADER_186		Heinlein Support Spamschutz Header-186 Header-Spamschutzregel 93
+score HS_HEADER_186		5
+
+header HS_HEADER_187		Subject =~  /^I used to be in debt too\!/
+describe HS_HEADER_187		Heinlein Support Spamschutz Header-187 Header-Spamschutzregel 94
+score HS_HEADER_187		5
+
+header HS_HEADER_188		Subject =~  /^Work less, make more/
+describe HS_HEADER_188		Heinlein Support Spamschutz Header-188 Header-Spamschutzregel 95
+score HS_HEADER_188		5
+
+header HS_HEADER_189		Subject =~  /^Drive Your Web Counter Ballistic/
+describe HS_HEADER_189		Heinlein Support Spamschutz Header-189 Header-Spamschutzregel 96
+score HS_HEADER_189		5
+
+header HS_HEADER_190		Subject =~ /^Re\: have you considered doing this\?/
+describe HS_HEADER_190		Heinlein Support Spamschutz Header-190 Header-Spamschutzregel 97
+score HS_HEADER_190		5
+
+header HS_HEADER_191		Subject =~  /^Work from home and get paid\!/
+describe HS_HEADER_191		Heinlein Support Spamschutz Header-191 Header-Spamschutzregel 98
+score HS_HEADER_191		5
+
+header HS_HEADER_192		Subject =~  /^Enter To Win One of 25 Dream Vacations\!\!/
+describe HS_HEADER_192		Heinlein Support Spamschutz Header-192 Header-Spamschutzregel 99
+score HS_HEADER_192		5
+
+header HS_HEADER_193		Subject =~  /^Do You Accept Credit Cards/
+describe HS_HEADER_193		Heinlein Support Spamschutz Header-193 Header-Spamschutzregel 100
+score HS_HEADER_193		5
+
+header HS_HEADER_194		Subject =~  /^Home Owners ONLY/
+describe HS_HEADER_194		Heinlein Support Spamschutz Header-194 Header-Spamschutzregel 101
+score HS_HEADER_194		5
+
+header HS_HEADER_195		Subject =~  /^Your Credit Info/
+describe HS_HEADER_195		Heinlein Support Spamschutz Header-195 Header-Spamschutzregel 102
+score HS_HEADER_195		5
+
+header HS_HEADER_196		Subject =~  /^Do you owe money\?/
+describe HS_HEADER_196		Heinlein Support Spamschutz Header-196 Header-Spamschutzregel 103
+score HS_HEADER_196		5
+
+header HS_HEADER_197		Subject =~  /^Need a Home Loan\? We Can Help\!\!/
+describe HS_HEADER_197		Heinlein Support Spamschutz Header-197 Header-Spamschutzregel 104
+score HS_HEADER_197		5
+
+header HS_HEADER_198		Subject =~  /^stock alert/
+describe HS_HEADER_198		Heinlein Support Spamschutz Header-198 Header-Spamschutzregel 105
+score HS_HEADER_198		5
+
+header HS_HEADER_199		Subject =~  /^contact lenses/
+describe HS_HEADER_199		Heinlein Support Spamschutz Header-199 Header-Spamschutzregel 106
+score HS_HEADER_199		5
+
+header HS_HEADER_200		Subject =~  /^ENLARGE YOUR PACAKGE GUARANTEED/
+describe HS_HEADER_200		Heinlein Support Spamschutz Header-200 Header-Spamschutzregel 107
+score HS_HEADER_200		5
+
+header HS_HEADER_201		Subject =~  /^ENLARGE YOUR PACKAGE GUARANTEED/
+describe HS_HEADER_201		Heinlein Support Spamschutz Header-201 Header-Spamschutzregel 108
+score HS_HEADER_201		5
+
+header HS_HEADER_202		Subject =~  /^We purchase uncollected Judicial Judgments/
+describe HS_HEADER_202		Heinlein Support Spamschutz Header-202 Header-Spamschutzregel 109
+score HS_HEADER_202		5
+
+header HS_HEADER_203		Subject =~  /^Increase Your Gas Mileage by up to 27\%\!/
+describe HS_HEADER_203		Heinlein Support Spamschutz Header-203 Header-Spamschutzregel 112
+score HS_HEADER_203		5
+
+header HS_HEADER_204		Subject =~  /^Willow Flower Herb For Prostate Problems\./
+describe HS_HEADER_204		Heinlein Support Spamschutz Header-204 Header-Spamschutzregel 113
+score HS_HEADER_204		5
+
+header HS_HEADER_205		Subject =~  /^NEW Increase Your Gas Mileage by 27\%/
+describe HS_HEADER_205		Heinlein Support Spamschutz Header-205 Header-Spamschutzregel 114
+score HS_HEADER_205		5
+
+header HS_HEADER_206		Subject =~  /^The easiest way to make money on the internet\!/
+describe HS_HEADER_206		Heinlein Support Spamschutz Header-206 Header-Spamschutzregel 115
+score HS_HEADER_206		5
+
+header HS_HEADER_207		Subject =~ /^Re: think about this.../
+describe HS_HEADER_207		Heinlein Support Spamschutz Header-207 Header-Spamschutzregel 116
+score HS_HEADER_207		5
+
+header HS_HEADER_208		Subject =~  /^think about this.../
+describe HS_HEADER_208		Heinlein Support Spamschutz Header-208 Header-Spamschutzregel 117
+score HS_HEADER_208		5
+
+header HS_HEADER_209		Subject =~  /^At Last, Herbal V, the All Natural Alternative\!/
+describe HS_HEADER_209		Heinlein Support Spamschutz Header-209 Header-Spamschutzregel 119
+score HS_HEADER_209		5
+
+header HS_HEADER_210		Subject =~  /^Make Money In Your Sleep\! /
+describe HS_HEADER_210		Heinlein Support Spamschutz Header-210 Header-Spamschutzregel 120
+score HS_HEADER_210		5
+
+header HS_HEADER_211		Subject =~  /^FREE Satellite TV System/
+describe HS_HEADER_211		Heinlein Support Spamschutz Header-211 Header-Spamschutzregel 122
+score HS_HEADER_211		5
+
+header HS_HEADER_212		Subject =~  /^About your site/
+describe HS_HEADER_212		Heinlein Support Spamschutz Header-212 Header-Spamschutzregel 124
+score HS_HEADER_212		5
+
+header HS_HEADER_213		Subject =~  /^No Deposit VISA or Master Card\!/
+describe HS_HEADER_213		Heinlein Support Spamschutz Header-213 Header-Spamschutzregel 126
+score HS_HEADER_213		5
+
+header HS_HEADER_214		Subject =~  /^FREE Auto Insurance Quote\!/
+describe HS_HEADER_214		Heinlein Support Spamschutz Header-214 Header-Spamschutzregel 127
+score HS_HEADER_214		5
+
+header HS_HEADER_215		Subject =~  /^Need money for college\?/
+describe HS_HEADER_215		Heinlein Support Spamschutz Header-215 Header-Spamschutzregel 131
+score HS_HEADER_215		5
+
+header HS_HEADER_216		Subject =~ /^(s+[[^]]*])?s+[-.{<]*ADV(ertisement)?[-:.>}s]/
+describe HS_HEADER_216		Heinlein Support Spamschutz Header-216 Header-Spamschutzregel 153
+score HS_HEADER_216		5
+
+header HS_HEADER_217		Subject =~  /^I viewed your site\-/
+describe HS_HEADER_217		Heinlein Support Spamschutz Header-217 Header-Spamschutzregel 155
+score HS_HEADER_217		5
+
+header HS_HEADER_218		Subject =~  /^.*Millions?s*(E?-?MAILs*)?ADDRESS/
+describe HS_HEADER_218		Heinlein Support Spamschutz Header-218 Header-Spamschutzregel 156
+score HS_HEADER_218		5
+
+header HS_HEADER_219		Subject =~ /^.*sTime[: ]+d+:d+:d+ [AP]Ms*$/
+describe HS_HEADER_219		Heinlein Support Spamschutz Header-219 Header-Spamschutzregel 162
+score HS_HEADER_219		5
+
+header HS_HEADER_221		Subject =~  /^new photos from my party\!/
+describe HS_HEADER_221		Heinlein Support Spamschutz Header-221 Header-Spamschutzregel 180
+score HS_HEADER_221		5
+
+header HS_HEADER_222		Subject =~  /^Liebe freunde, es tropft wieder/
+describe HS_HEADER_222		Heinlein Support Spamschutz Header-222 Header-Spamschutzregel 201
+score HS_HEADER_222		5
+
+header HS_HEADER_223		Subject =~  /^The best gift a wife or girlfriend could ever ask for/
+describe HS_HEADER_223		Heinlein Support Spamschutz Header-223 Header-Spamschutzregel 202
+score HS_HEADER_223		5
+
+header HS_HEADER_224		Subject =~  /^Increase your drive, stamina, size and performance\.\. reach your potential\!/
+describe HS_HEADER_224		Heinlein Support Spamschutz Header-224 Header-Spamschutzregel 203
+score HS_HEADER_224		5
+
+header HS_HEADER_225		Subject =~  /^Discover your true sexual potential/
+describe HS_HEADER_225		Heinlein Support Spamschutz Header-225 Header-Spamschutzregel 204
+score HS_HEADER_225		5
+
+header HS_HEADER_226		Subject =~  /^.*you could need it Pharamaceu tical/
+describe HS_HEADER_226		Heinlein Support Spamschutz Header-226 Header-Spamschutzregel 205
+score HS_HEADER_226		5
+
+header HS_HEADER_227		Subject =~  /^Nearly 65\% of women claim they wish their lover was more adept\.\. let us help/
+describe HS_HEADER_227		Heinlein Support Spamschutz Header-227 Header-Spamschutzregel 206
+score HS_HEADER_227		5
+
+header HS_HEADER_228		Subject =~  /^Increased spending on homeland security has created incredible opportunity/
+describe HS_HEADER_228		Heinlein Support Spamschutz Header-228 Header-Spamschutzregel 207
+score HS_HEADER_228		5
+
+header HS_HEADER_229		Subject =~  /^The security explosion/
+describe HS_HEADER_229		Heinlein Support Spamschutz Header-229 Header-Spamschutzregel 208
+score HS_HEADER_229		5
+
+header HS_HEADER_230		Subject =~  /^Ermittlungsverfahren gegen Sie.*/
+describe HS_HEADER_230		Heinlein Support Spamschutz Header-230 Header-Spamschutzregel 210
+score HS_HEADER_230		5
+
+header HS_HEADER_231		Subject =~  /^Bekommen Sie Uhren.*/
+describe HS_HEADER_231		Heinlein Support Spamschutz Header-231 Header-Spamschutzregel 211
+score HS_HEADER_231		5
+
+header HS_HEADER_232		To =~  /^\<ABALTAS\@europarl\.eu\.int\>/
+describe HS_HEADER_232		Heinlein Support Spamschutz Header-232 Header-Spamschutzregel 53
+score HS_HEADER_232		5
+
+header HS_HEADER_233		To =~  /^ACERCAS\@europarl\.eu\.int/
+describe HS_HEADER_233		Heinlein Support Spamschutz Header-233 Header-Spamschutzregel 54
+score HS_HEADER_233		5
+
+header HS_HEADER_234		To =~  /^infomail\@recurrent\.com/
+describe HS_HEADER_234		Heinlein Support Spamschutz Header-234 Header-Spamschutzregel 57
+score HS_HEADER_234		5
+
+header HS_HEADER_236		From =~ /^steve\-larson1\@execs\.com/
+describe HS_HEADER_236		Heinlein Support Spamschutz Header-236 Header-Spamschutzregel 110
+score HS_HEADER_236		5
+
+header HS_HEADER_237		From =~  /^\@execs\.com*/
+describe HS_HEADER_237		Heinlein Support Spamschutz Header-237 Header-Spamschutzregel 111
+score HS_HEADER_237		5
+
+header HS_HEADER_238		From =~  /^enews\@uscav\.com/
+describe HS_HEADER_238		Heinlein Support Spamschutz Header-238 Header-Spamschutzregel 118
+score HS_HEADER_238		5
+
+header HS_HEADER_248		(To|From|Cc|Reply-To) =~  /^.*Investor Alert/
+describe HS_HEADER_248		Heinlein Support Spamschutz Header-248 Header-Spamschutzregel 142
+score HS_HEADER_248		5
+
+header HS_HEADER_249		(To|From|Cc|Reply-To) =~  /^.*friend\@(public\.com|localhost\.net)/
+describe HS_HEADER_249		Heinlein Support Spamschutz Header-249 
+score HS_HEADER_249		5
+
+header HS_HEADER_250		(To|From|Cc|Reply-To) =~  /^.*[ <]d+\@(onramp|prodigy|uu)\.net/
+describe HS_HEADER_250		Heinlein Support Spamschutz Header-250 
+score HS_HEADER_250		5
+
+header HS_HEADER_251		(To|From|Cc|Reply-To) =~  /^.*\@funstuff2000\.net/
+describe HS_HEADER_251		Heinlein Support Spamschutz Header-251 
+score HS_HEADER_251		5
+
+header HS_HEADER_252		(To|From|Cc|Reply-To) =~  /^.*(infowatch\.net|nakedmaild?\.com)/
+describe HS_HEADER_252		Heinlein Support Spamschutz Header-252 
+score HS_HEADER_252		5
+
+header HS_HEADER_253		(To|From|Cc|Reply-To) =~  /^.*customer\@aol/
+describe HS_HEADER_253		Heinlein Support Spamschutz Header-253 
+score HS_HEADER_253		5
+
+header HS_HEADER_254		To =~  /^ListMembers\@theneteffect/
+describe HS_HEADER_254		Heinlein Support Spamschutz Header-254 
+score HS_HEADER_254		5
+
+header HS_HEADER_255		Reply-To =~  /^.*\@(china\.com|rever\-dreaming\.com|btamail\.net\.cn|amdpress\.com|nakedmaild?\.com|big\-salesfor\.you\-now\.net)/
+describe HS_HEADER_255		Heinlein Support Spamschutz Header-255 
+score HS_HEADER_255		5
+
+header HS_HEADER_257		(Received|Message-Id|X-(Mailer|Sender)) =~  /^.* (E-Broadcaster|Emailer Platinum|eMarksman|Extractor|e-Merge|from stealth[^.]|Global Messenger|GroupMaster|Mailcast|MailKing|Match10|MassE-Mail|massmail.pl|News Breaker|Powermailer|Quick Shot|Ready Aim Fire|WindoZ|WorldMerge|Yourdora|SEKOFOXM|Blat v3)/
+describe HS_HEADER_257		Heinlein Support Spamschutz Header-257 
+score HS_HEADER_257		15
+
+header HS_HEADER_259		X-Server =~  /^Advanced Direct Remailer/
+describe HS_HEADER_259		Heinlein Support Spamschutz Header-259 
+score HS_HEADER_259		5
+
+header HS_HEADER_260		Comment =~  /^Authenticated sender is/
+describe HS_HEADER_260		Heinlein Support Spamschutz Header-260 
+score HS_HEADER_260		5
+
+header HS_HEADER_261		(To|From|Cc|Reply-To) =~  /^.*\@sexyfun\.net/
+describe HS_HEADER_261		Heinlein Support Spamschutz Header-261 
+score HS_HEADER_261		5
+
+header HS_HEADER_262		Content-Disposition =~  /^Multipart message/
+describe HS_HEADER_262		Heinlein Support Spamschutz Header-262 
+score HS_HEADER_262		5
+
+header HS_HEADER_264		Date =~  /^.* \[AP\]M/
+describe HS_HEADER_264		Heinlein Support Spamschutz Header-264 
+score HS_HEADER_264		5
+
+header HS_HEADER_265		Date =~  /^.*[+-](1[4-9]|2d)dd$/
+describe HS_HEADER_265		Heinlein Support Spamschutz Header-265 
+score HS_HEADER_265		5
+
+header HS_HEADER_266		From =~  /^.*icyhot\.bakas24\.de/
+describe HS_HEADER_266		Heinlein Support Spamschutz Header-266 
+score HS_HEADER_266		5
+
+header HS_HEADER_270		Subject =~/^You wanna check how good in bed I am\?.*/
+describe HS_HEADER_270		Heinlein Support Spamschutz Header-270 
+score HS_HEADER_270		5
+
+header HS_HEADER_274		Subject =~ /^dog supply/
+describe HS_HEADER_274		Heinlein Support Spamschutz Header-274 
+score HS_HEADER_274		2
+
+header HS_HEADER_275		From =~ /phoenix-[a-zA-Z0-9]{3}.edu/
+describe HS_HEADER_275		Heinlein Support Spamschutz Header-275 
+score HS_HEADER_275		7
+
+header HS_HEADER_279		From =~ /.* \<noreply\@jpberlin\.de\>.*/
+describe HS_HEADER_279		Heinlein Support Spamschutz Header-279 
+score HS_HEADER_279		3
+
+header HS_HEADER_280		To =~ /\<noreply\@jpberlin\.de\>/
+describe HS_HEADER_280		Heinlein Support Spamschutz Header-280 
+score HS_HEADER_280		3
+
+header HS_HEADER_282		From =~ /fabianat\@alice\.it/
+describe HS_HEADER_282		Heinlein Support Spamschutz Header-282 
+score HS_HEADER_282		5
+
+header HS_HEADER_283		From =~ /itservice\@berlin.de/
+describe HS_HEADER_283		Heinlein Support Spamschutz Header-283 
+score HS_HEADER_283		5
+
+header HS_HEADER_284		From=~/weblinkservices281\@gmail\.com/
+describe HS_HEADER_284		Heinlein Support Spamschutz Header-284 
+score HS_HEADER_284		5
+
+header HS_HEADER_285		FROM=~/^.*mpmz\.com\.ua/
+describe HS_HEADER_285		Heinlein Support Spamschutz Header-285 
+score HS_HEADER_285		5
+
+header HS_HEADER_286		From=~/^.*\@boonrawd\.co\.th/
+describe HS_HEADER_286		Heinlein Support Spamschutz Header-286 
+score HS_HEADER_286		5
+
+header HS_HEADER_287		From =~ /sample\@email.tst/
+describe HS_HEADER_287		Heinlein Support Spamschutz Header-287 
+score HS_HEADER_287		10
+
+header HS_HEADER_289		Subject =~ /Postbank Benachrichtigung - Ihre Internet-Banking gesperrt/
+describe HS_HEADER_289		Heinlein Support Spamschutz Header-289 SPAM
+score HS_HEADER_289		6
+
+header HS_HEADER_290		Subject =~ /^=?utf-8?q?August_Ank=C3=BCndigun/
+describe HS_HEADER_290		Heinlein Support Spamschutz Header-290 phishing
+score HS_HEADER_290		5
+
+header HS_HEADER_293		From=~/\@Email Inc/
+describe HS_HEADER_293		Heinlein Support Spamschutz Header-293 Phishing
+score HS_HEADER_293		6
+
+header HS_HEADER_295		Subject =~ /'Echte' Kreditkarte mit >6< Monatseinkommen Limit ohne SCHUFA/
+describe HS_HEADER_295		Heinlein Support Spamschutz Header-295 SPAM
+score HS_HEADER_295		10
+
+header HS_HEADER_296		Subject =~ /SCHUFAfrei jetzt sofort Geld bekommen/
+describe HS_HEADER_296		Heinlein Support Spamschutz Header-296 
+score HS_HEADER_296		5
+
+header HS_HEADER_298		Reply-To =~ /^.*gogle\.eurolotto\@gmail\.com*/
+describe HS_HEADER_298		Heinlein Support Spamschutz Header-298 
+score HS_HEADER_298		5
+
+header HS_HEADER_299		From=~/sales[0-9]\@socilamediapro\.info/
+describe HS_HEADER_299		Heinlein Support Spamschutz Header-299 Spam
+score HS_HEADER_299		6
+
+header HS_HEADER_300		From=~/pratt-whitney\@web\.de/
+describe HS_HEADER_300		Heinlein Support Spamschutz Header-300 Spam
+score HS_HEADER_300		6
+
+header HS_HEADER_301		Subject =~ /=\?utf-8\?Q\?Wichtig:_Ungew=C3=B6hnliche_Aktivit=C3=A4ten_in_Ihrem_Konto\?=/
+describe HS_HEADER_301		Heinlein Support Spamschutz Header-301 
+score HS_HEADER_301		5
+
+header HS_HEADER_304		From =~ /contrataciones\@inn\.gob\.ve/
+describe HS_HEADER_304		Heinlein Support Spamschutz Header-304 
+score HS_HEADER_304		5
+
+header HS_HEADER_305		From =~ /spam\@co\.za/
+describe HS_HEADER_305		Heinlein Support Spamschutz Header-305 SCAM
+score HS_HEADER_305		5
+
+header HS_HEADER_307		From =~ /^.*\@maxispoint\.com/
+describe HS_HEADER_307		Heinlein Support Spamschutz Header-307 Spam
+score HS_HEADER_307		6
+
+header HS_HEADER_308		Reply-To =~ /evarich4life\@gmail\.com/
+describe HS_HEADER_308		Heinlein Support Spamschutz Header-308 Phishing
+score HS_HEADER_308		8
+
+header HS_HEADER_309		From =~ /\=\?ISO-8859-1\?Q\?\=A9_sparkasse/
+describe HS_HEADER_309		Heinlein Support Spamschutz Header-309 Phishing
+score HS_HEADER_309		8
+
+header HS_HEADER_310		Reply-To =~ /blackcurrant46631\@gmail\.com/
+describe HS_HEADER_310		Heinlein Support Spamschutz Header-310 SEO Spam
+score HS_HEADER_310		6
+
+header HS_HEADER_311		Subject =~ /Ungewoehnliche Zahlungsaktivitaeten Ihres Kontos/
+describe HS_HEADER_311		Heinlein Support Spamschutz Header-311 SPAM
+score HS_HEADER_311		6
+
+header HS_HEADER_312		Subject =~ /リモワ スーツケース 最安値/
+describe HS_HEADER_312		Heinlein Support Spamschutz Header-312 SPAM
+score HS_HEADER_312		8
+
+header HS_HEADER_314		Subject =~ /\?UTF-8\?Q\?Warnung!_Postfach_=C3=BCberschritten\?=/
+describe HS_HEADER_314		Heinlein Support Spamschutz Header-314 Spam
+score HS_HEADER_314		8
+
+header HS_HEADER_315		Disposition-Notification-To =~/.*brijesh\.websitedeveloper\@gmail\.com/
+describe HS_HEADER_315		Heinlein Support Spamschutz Header-315 SPAM
+score HS_HEADER_315		6
+
+header HS_HEADER_319		From=~ /djmasier\@ncsu\.edu/
+describe HS_HEADER_319		Heinlein Support Spamschutz Header-319 Phishing
+score HS_HEADER_319		10
+
+header HS_HEADER_322		From =~ /^.*\<paypal\@intI\.service\.com\>/
+describe HS_HEADER_322		Heinlein Support Spamschutz Header-322 Phishing
+score HS_HEADER_322		8
+
+header HS_HEADER_323		Subject =~ /Voice Message Notification/
+describe HS_HEADER_323		Heinlein Support Spamschutz Header-323 
+score HS_HEADER_323		3
+
+header HS_HEADER_324		From =~ /^.*\service\@mitsui\com\.au/
+describe HS_HEADER_324		Heinlein Support Spamschutz Header-324 
+score HS_HEADER_324		5
+
+header HS_HEADER_325		From =~ /=?utf-8?Q?RU-CENTER?=/
+describe HS_HEADER_325		Heinlein Support Spamschutz Header-325 
+score HS_HEADER_325		8
+
+header HS_HEADER_326		Subject =~ /=?utf-8?Q?Holiday=20?=/
+describe HS_HEADER_326		Heinlein Support Spamschutz Header-326 
+score HS_HEADER_326		8
+
+header HS_HEADER_327		Return-Path =~/^.*sunndavmao\@yahoo\.com/
+describe HS_HEADER_327		Heinlein Support Spamschutz Header-327 
+score HS_HEADER_327		8
+
+header HS_HEADER_328		Subject =~ /Dear Guest,- I am Karolina, on-line video administrator/
+describe HS_HEADER_328		Heinlein Support Spamschutz Header-328 
+score HS_HEADER_328		8
+
+header HS_HEADER_330		From =~ /^.*larimermccarya868\@gmail\.com/
+describe HS_HEADER_330		Heinlein Support Spamschutz Header-330 
+score HS_HEADER_330		8
+
+header HS_HEADER_331		Reply-To =~ /^.*lana83lave\@rambler\.ru/
+describe HS_HEADER_331		Heinlein Support Spamschutz Header-331 
+score HS_HEADER_331		8
+
+header HS_HEADER_332		X-Mailer =~ /.*\b(E-Broadcaster|Emailer Platinum|eMarksman|Extractor|e-Merge|from stealth[^.]|Global Messenger|GroupMaster|MailKing|Match10|MassE-Mail|massmail\.pl|News Breaker|Quick Shot|Ready Aim Fire|WindoZ|WorldMerge|Yourdora|SEKOFOXM|Blat.v3.1.1\b)/im
+describe HS_HEADER_332		Heinlein Support Spamschutz Header-332 Bulk-Mailer
+score HS_HEADER_332		5
+
+header HS_HEADER_333		Subject =~/^.*Gain Organic Traffic:/
+describe HS_HEADER_333		Heinlein Support Spamschutz Header-333 
+score HS_HEADER_333		6
+
+header HS_HEADER_334		Reply-To =~ /^.*mailcontrolunits\@mail\.com/
+describe HS_HEADER_334		Heinlein Support Spamschutz Header-334 
+score HS_HEADER_334		5
+
+header HS_HEADER_335		From =~ /^.*okoidahamilton\@gmail\.com/
+describe HS_HEADER_335		Heinlein Support Spamschutz Header-335 
+score HS_HEADER_335		8
+
+header HS_HEADER_337		Return-Path =~ /^.*nobody\@nic\.ru/
+describe HS_HEADER_337		Heinlein Support Spamschutz Header-337 
+score HS_HEADER_337		8
+
+header HS_HEADER_339		From =~ /^.*vivianefarias\@pampili\.com\.br/
+describe HS_HEADER_339		Heinlein Support Spamschutz Header-339 
+score HS_HEADER_339		8
+
+header HS_HEADER_340		From =~ /^.*florespraz4\@zipmail\.com\.br/
+describe HS_HEADER_340		Heinlein Support Spamschutz Header-340 
+score HS_HEADER_340		6
+
+header HS_HEADER_341		From =~ /^.*michelapeterson89\@yahoo\.com/
+describe HS_HEADER_341		Heinlein Support Spamschutz Header-341 
+score HS_HEADER_341		8
+
+header HS_HEADER_343		From =~ /^.*oefa\.gob\.pe/
+describe HS_HEADER_343		Heinlein Support Spamschutz Header-343 
+score HS_HEADER_343		10
+
+header HS_HEADER_344		From =~ /^.*feintour\.net/
+describe HS_HEADER_344		Heinlein Support Spamschutz Header-344 
+score HS_HEADER_344		7
+
+header HS_HEADER_345		From =~ /^.*tuerkeireisegewinn\.net/
+describe HS_HEADER_345		Heinlein Support Spamschutz Header-345 
+score HS_HEADER_345		7
+
+header HS_HEADER_346		Return-Path =~ /^.*okoidahamilton\@gmail\.com/
+describe HS_HEADER_346		Heinlein Support Spamschutz Header-346 
+score HS_HEADER_346		8
+
+header HS_HEADER_347		From =~ /^.*Jpberlin\.de Update/
+describe HS_HEADER_347		Heinlein Support Spamschutz Header-347 
+score HS_HEADER_347		8
+
+header HS_HEADER_348		Return-Path =~ /^.*mrgugaster\@gmail\.com/
+describe HS_HEADER_348		Heinlein Support Spamschutz Header-348 
+score HS_HEADER_348		8
+
+header HS_HEADER_349		Received =~ /^.*srv11\.sysproserver\.de/
+describe HS_HEADER_349		Heinlein Support Spamschutz Header-349 
+score HS_HEADER_349		8
+
+header HS_HEADER_350		From =~ /^.*mrgugaster\@gmail\.com/
+describe HS_HEADER_350		Heinlein Support Spamschutz Header-350 
+score HS_HEADER_350		8
+
+header HS_HEADER_351		Return-Path =~ /^.*rico4000\@aucegypt\.edu/
+describe HS_HEADER_351		Heinlein Support Spamschutz Header-351 SPAM
+score HS_HEADER_351		8
+
+header HS_HEADER_352		Return-Path =~ /^.*batran\@aucegypt\.edu/
+describe HS_HEADER_352		Heinlein Support Spamschutz Header-352 SPAM
+score HS_HEADER_352		8
+
+header HS_HEADER_353		Reply-To =~ /^.*perrychang\@yeah\.net/
+describe HS_HEADER_353		Heinlein Support Spamschutz Header-353 
+score HS_HEADER_353		8
+
+header HS_HEADER_354		Return-Path =~ /^.*nemekh\@mongol\.net/
+describe HS_HEADER_354		Heinlein Support Spamschutz Header-354 Phishing
+score HS_HEADER_354		6
+
+header HS_HEADER_355		Return-Path =~/^.*samuimoo\@melkus\.websitewelcome\.com/
+describe HS_HEADER_355		Heinlein Support Spamschutz Header-355 Phishing
+score HS_HEADER_355		8
+
+header HS_HEADER_356		From =~ /^.*mpv6611\@yahoo\.co\.jp/
+describe HS_HEADER_356		Heinlein Support Spamschutz Header-356 
+score HS_HEADER_356		8
+
+header HS_HEADER_357		Return-Path =~/^.*fcpmags\@fcp\.fcpmags\.com/
+describe HS_HEADER_357		Heinlein Support Spamschutz Header-357 Phishing
+score HS_HEADER_357		8
+
+header HS_HEADER_358		From =~ /^.*soutogomes\@iol\.pt/
+describe HS_HEADER_358		Heinlein Support Spamschutz Header-358 Phishing
+score HS_HEADER_358		8
+
+header HS_HEADER_359		From =~ /^.*jimmy_socialalley\@aol\.com/
+describe HS_HEADER_359		Heinlein Support Spamschutz Header-359 Spam
+score HS_HEADER_359		8
+
+header HS_HEADER_360		From =~/^.*\@aucegypt\.edu/
+describe HS_HEADER_360		Heinlein Support Spamschutz Header-360 
+score HS_HEADER_360		8
+
+header HS_HEADER_361		From =~/^.*\@barantrag\.com/
+describe HS_HEADER_361		Heinlein Support Spamschutz Header-361 
+score HS_HEADER_361		8
+
+header HS_HEADER_362		X-Google-Sender-Auth =~ /^.*X-Google-Sender-Auth/
+describe HS_HEADER_362		Heinlein Support Spamschutz Header-362 
+score HS_HEADER_362		8
+
+header HS_HEADER_363		Return-Path =~/^.*pay\@pal\.com/
+describe HS_HEADER_363		Heinlein Support Spamschutz Header-363 Phishing
+score HS_HEADER_363		8
+
+header HS_HEADER_364		FROM =~ /^.*Toursdiscount\@gmail\.com/
+describe HS_HEADER_364		Heinlein Support Spamschutz Header-364 
+score HS_HEADER_364		8
+
+header HS_HEADER_365		Subject =~/^.*Zustellung Ihrer Kreditkarte/
+describe HS_HEADER_365		Heinlein Support Spamschutz Header-365 Spam
+score HS_HEADER_365		6
+
+header HS_HEADER_366		Subject =~/ ?UTF-8?B?MjAgRnJlaXNwaWVsZSBhbHMgRGFua2VzY2jDg8K2biBmw4PCvHIgSWhyZSBBbm1lbGR1bmc/
+describe HS_HEADER_366		Heinlein Support Spamschutz Header-366 
+score HS_HEADER_366		3
+
+header HS_HEADER_367		Subject =~/utf-8?q\?Ihre_Online-Zug=C3=A4nglichkeit_____/
+describe HS_HEADER_367		Heinlein Support Spamschutz Header-367 
+score HS_HEADER_367		5
+
+header HS_HEADER_368		Subject: =~/iso-8859-1\?Q\?Kre_di_tk_=FCnd_ig_ung=3F__Unser__Angeb_ot_l=F6st_Ihre_Pro\?=/
+describe HS_HEADER_368		Heinlein Support Spamschutz Header-368 
+score HS_HEADER_368		5
+
+header HS_HEADER_372		Reply-To =~ /^.*tolleideen\.net/
+describe HS_HEADER_372		Heinlein Support Spamschutz Header-372 
+score HS_HEADER_372		8
+
+header HS_HEADER_373		From =~ /^.*tolleideen.net/
+describe HS_HEADER_373		Heinlein Support Spamschutz Header-373 
+score HS_HEADER_373		8
+
+header HS_HEADER_374		Return-Path =~ /^.*mendu\@hispeed\.ch/
+describe HS_HEADER_374		Heinlein Support Spamschutz Header-374 Phishing
+score HS_HEADER_374		8
+
+header HS_HEADER_377		Return-Path =~ /^.*gapp\.az/
+describe HS_HEADER_377		Heinlein Support Spamschutz Header-377 
+score HS_HEADER_377		8
+
+header HS_HEADER_378		From =~ /^.*gapp\.az/
+describe HS_HEADER_378		Heinlein Support Spamschutz Header-378 
+score HS_HEADER_378		8
+
+header HS_HEADER_379		From =~ /rayban\.sunglasses/
+describe HS_HEADER_379		Heinlein Support Spamschutz Header-379 
+score HS_HEADER_379		8
+
+header HS_HEADER_381		From =~/^.*ises\.net004\@gmail\.com/
+describe HS_HEADER_381		Heinlein Support Spamschutz Header-381 
+score HS_HEADER_381		8
+
+header HS_HEADER_383		From =~ /^.*contact\@france-usinage\.fr/
+describe HS_HEADER_383		Heinlein Support Spamschutz Header-383 Spam
+score HS_HEADER_383		8
+
+header HS_HEADER_384		Return-Path =~ /^.*contact\@france-usinage\.fr/
+describe HS_HEADER_384		Heinlein Support Spamschutz Header-384 
+score HS_HEADER_384		8
+
+header HS_HEADER_390		From =~ /^.*stankovicse\@askhatvan\.hu/
+describe HS_HEADER_390		Heinlein Support Spamschutz Header-390 
+score HS_HEADER_390		5
+
+header HS_HEADER_391		Return-Path =~ /^.*anandteknow\.com/
+describe HS_HEADER_391		Heinlein Support Spamschutz Header-391 
+score HS_HEADER_391		7
+
+header HS_HEADER_393		From =~ /papalolo\@q\.com/
+describe HS_HEADER_393		Heinlein Support Spamschutz Header-393 
+score HS_HEADER_393		8
+
+header HS_HEADER_394		Received =~ /s15379600\.onlinehome-server\.info/
+describe HS_HEADER_394		Heinlein Support Spamschutz Header-394 
+score HS_HEADER_394		8
+
+header HS_HEADER_398		Return-Path =~ /mmercer9\@kent\.edu/
+describe HS_HEADER_398		Heinlein Support Spamschutz Header-398 
+score HS_HEADER_398		8
+
+header HS_HEADER_399		From =~ /Beauftragte Anwaltschaft Ebay GmbH/
+describe HS_HEADER_399		Heinlein Support Spamschutz Header-399 Ebay-Phishing
+score HS_HEADER_399		5
+
+header HS_HEADER_400		From =~ /Anwaltschaft Paypal GmbH/
+describe HS_HEADER_400		Heinlein Support Spamschutz Header-400 
+score HS_HEADER_400		5
+
+header HS_HEADER_401		From =~ /^.YourCasino/
+describe HS_HEADER_401		Heinlein Support Spamschutz Header-401 
+score HS_HEADER_401		6
+
+header HS_HEADER_402		From: =~ /^.*movqvqtr\@gmail\.com/
+describe HS_HEADER_402		Heinlein Support Spamschutz Header-402 Spam
+score HS_HEADER_402		8
+
+header HS_HEADER_403		Reply-To: =~ /^.*movqvqtr\@gmail\.com/
+describe HS_HEADER_403		Heinlein Support Spamschutz Header-403 Spam
+score HS_HEADER_403		8
+
+header HS_HEADER_404		Return-Path: =~ /^.*kelyfugoldup\@gmail\.com/
+describe HS_HEADER_404		Heinlein Support Spamschutz Header-404 Spam
+score HS_HEADER_404		8
+
+header HS_HEADER_405		From: =~ /^.*kelyfugoldup\@gmail\.com/
+describe HS_HEADER_405		Heinlein Support Spamschutz Header-405 
+score HS_HEADER_405		8
+
+header HS_HEADER_406		From: =~ /^.*raudat\@gmail\.com/
+describe HS_HEADER_406		Heinlein Support Spamschutz Header-406 
+score HS_HEADER_406		8
+
+header HS_HEADER_407		Reply-To: =~ /^.*raudat\@gmail\.com/
+describe HS_HEADER_407		Heinlein Support Spamschutz Header-407 
+score HS_HEADER_407		8
+
+header HS_HEADER_408		Return-Path: =~ /^.*con_tacts\@mail\.com/
+describe HS_HEADER_408		Heinlein Support Spamschutz Header-408 Spam
+score HS_HEADER_408		8
+
+header HS_HEADER_409		Received: =~ /^.*grevs\@rasf\.ru/
+describe HS_HEADER_409		Heinlein Support Spamschutz Header-409 Spam
+score HS_HEADER_409		8
+
+header HS_HEADER_410		From: =~ /^.*con_tacts\@mail\.com/
+describe HS_HEADER_410		Heinlein Support Spamschutz Header-410 
+score HS_HEADER_410		8
+
+header HS_HEADER_411		Reply-To: =~ /^.*headoffices2012\@gmail\.com/
+describe HS_HEADER_411		Heinlein Support Spamschutz Header-411 
+score HS_HEADER_411		8
+
+header HS_HEADER_412		Message-ID: =~ /^.*relay\.amlsport\.ru/
+describe HS_HEADER_412		Heinlein Support Spamschutz Header-412 
+score HS_HEADER_412		8
+
+header HS_HEADER_413		Sender: =~ /^.*notices\@domainnotices8659\.com/
+describe HS_HEADER_413		Heinlein Support Spamschutz Header-413 
+score HS_HEADER_413		8
+
+header HS_HEADER_414		AntiAbuse: =~/^.*RS5IVUVMU0UtQU5LRVJNQU5OQEpQQkVSTElOLkRF/
+describe HS_HEADER_414		Heinlein Support Spamschutz Header-414 
+score HS_HEADER_414		8
+
+header HS_HEADER_415		Received: =~ /host\.domainnotices[0-9]{0,4}\.com/
+describe HS_HEADER_415		Heinlein Support Spamschutz Header-415 
+score HS_HEADER_415		8
+
+header HS_HEADER_416		From: =~ /^.*noreply\@popfax\.com/
+describe HS_HEADER_416		Heinlein Support Spamschutz Header-416 
+score HS_HEADER_416		8
+
+header HS_HEADER_417		Reply-To: =~ /juan_morato\@yahoo\.es/
+describe HS_HEADER_417		Heinlein Support Spamschutz Header-417 Phishing
+score HS_HEADER_417		8
+
+header HS_HEADER_418		Received: =~ /^.*wrdunn.co.uk/
+describe HS_HEADER_418		Heinlein Support Spamschutz Header-418 
+score HS_HEADER_418		8
+
+header HS_HEADER_420		From: =~ /.*<sepa.sicherheit\@easybank\.at.*/
+
+describe HS_HEADER_420		Heinlein Support Spamschutz Header-420 
+score HS_HEADER_420		5
+
+header HS_HEADER_421		From =~ /TRACK-FINANCE <info\@track-finance\.com/
+describe HS_HEADER_421		Heinlein Support Spamschutz Header-421 
+score HS_HEADER_421		5
+
+header HS_HEADER_422		List-Ubsubscribe =~ /www.apotheke-germany.co.uk/
+describe HS_HEADER_422		Heinlein Support Spamschutz Header-422 Spam
+score HS_HEADER_422		5
+
+header HS_HEADER_423		Return-Path: =~ /^.*bangzhu\@att\.net/
+describe HS_HEADER_423		Heinlein Support Spamschutz Header-423 Spam
+score HS_HEADER_423		8
+
+header HS_HEADER_424		From: =~ /^.*bangzhu\@att\.net/
+describe HS_HEADER_424		Heinlein Support Spamschutz Header-424 Spam
+score HS_HEADER_424		8
+
+header HS_HEADER_425		Subject: =~ /^.*=\?utf-8\?B\?a86\/1bh00L4gaWQ6IDYzNDI5NDE=\?=/
+describe HS_HEADER_425		Heinlein Support Spamschutz Header-425 Phishing
+score HS_HEADER_425		8
+
+header HS_HEADER_426		Reply-To: =~ /^.*john_max11114\@yahoo\.com/
+describe HS_HEADER_426		Heinlein Support Spamschutz Header-426 
+score HS_HEADER_426		8
+
+header HS_HEADER_427		Return-Path: =~ /^.*stanman\@absamail\.co\.za/
+describe HS_HEADER_427		Heinlein Support Spamschutz Header-427 Spam
+score HS_HEADER_427		8
+
+header HS_HEADER_428		X-Mailer: =~ /^.*Synapse - Pascal TCP\/IP library by Lukas Gebauer/
+describe HS_HEADER_428		Heinlein Support Spamschutz Header-428 
+score HS_HEADER_428		8
+
+header HS_HEADER_429		Return-Path: =~ /^.*Tatiana-15879722\@newladies0614\.com\.ua/
+describe HS_HEADER_429		Heinlein Support Spamschutz Header-429 Spam
+score HS_HEADER_429		8
+
+header HS_HEADER_430		From: =~ /^.*Tatiana-15879722\@newladies0614\.com\.ua/
+describe HS_HEADER_430		Heinlein Support Spamschutz Header-430 Spam
+score HS_HEADER_430		8
+
+header HS_HEADER_431		From =~ /ViagraKaufen/
+describe HS_HEADER_431		Heinlein Support Spamschutz Header-431 
+score HS_HEADER_431		5
+
+header HS_HEADER_432		Subject =~ /easy Potenz bestellen/
+describe HS_HEADER_432		Heinlein Support Spamschutz Header-432 
+score HS_HEADER_432		5
+
+header HS_HEADER_433		Subject =~ /Sertha Brindes/
+describe HS_HEADER_433		Heinlein Support Spamschutz Header-433 
+score HS_HEADER_433		5
+
+header HS_HEADER_434		From: =~ /^.*\@mail\.autochina360\.com/
+describe HS_HEADER_434		Heinlein Support Spamschutz Header-434 Spam
+score HS_HEADER_434		8
+
+header HS_HEADER_435		Subject: =~ /^.*\?gb2312\?B\?19TW98a3xcahsMquway9taGxtcTB7dK71ta94rbBIC0g1tC5+sb7s7Wy+tK1\?/
+describe HS_HEADER_435		Heinlein Support Spamschutz Header-435 Spam
+score HS_HEADER_435		8
+
+header HS_HEADER_436		From: =~ /^.*vertrieb\@consultlab\.de/
+describe HS_HEADER_436		Heinlein Support Spamschutz Header-436 
+score HS_HEADER_436		8
+
+header HS_HEADER_437		Subject: =~ /noreply\@JPBerlin\.de/
+describe HS_HEADER_437		Heinlein Support Spamschutz Header-437 
+score HS_HEADER_437		8
+
+header HS_HEADER_438		From:=~ /^.*\@bipbup\.com\.br/
+describe HS_HEADER_438		Heinlein Support Spamschutz Header-438 Spam
+score HS_HEADER_438		5
+
+header HS_HEADER_439		From:=~ /^.*\@gtevent\.co\.uk/
+describe HS_HEADER_439		Heinlein Support Spamschutz Header-439 Spam
+score HS_HEADER_439		8
+
+header HS_HEADER_440		From:=~ /^.*\@anticellulitenartikel\.me/
+describe HS_HEADER_440		Heinlein Support Spamschutz Header-440 Spam
+score HS_HEADER_440		8
+
+header HS_HEADER_441		From:=~/^.*\@allyes-tech\.com/
+describe HS_HEADER_441		Heinlein Support Spamschutz Header-441 
+score HS_HEADER_441		2
+
+header HS_HEADER_442		List-Unsubscribe:=~/^.*\<http\:\/\/www\.e\-posta\.info\/unsubscribe\.php/
+describe HS_HEADER_442		Heinlein Support Spamschutz Header-442 Spam
+score HS_HEADER_442		8
+
+header HS_HEADER_443		X-Mailer:=~/^.*oemPro/
+describe HS_HEADER_443		Heinlein Support Spamschutz Header-443 
+score HS_HEADER_443		4
+
+header HS_HEADER_444		From:=~/^.*\<newsletter\@jojormall.me\>/
+describe HS_HEADER_444		Heinlein Support Spamschutz Header-444 
+score HS_HEADER_444		4
+
+header HS_HEADER_447		Return-Path: =~ /^.*karolin\.kaestner\@fettwegbeispiel\.me/
+describe HS_HEADER_447		Heinlein Support Spamschutz Header-447 Spam
+score HS_HEADER_447		8
+
+header HS_HEADER_448		From:=~ /^.*xinyang05\@xy\-sy\.net/
+describe HS_HEADER_448		Heinlein Support Spamschutz Header-448 Spam
+score HS_HEADER_448		8
+
+header HS_HEADER_449		From:=~ /^.*wuchangbiz\@vip\.163\.com/
+describe HS_HEADER_449		Heinlein Support Spamschutz Header-449 Phishing
+score HS_HEADER_449		8
+
+header HS_HEADER_450		From:=~ /^.*gemtksrclk\@gmail\.com/
+describe HS_HEADER_450		Heinlein Support Spamschutz Header-450 Phishing
+score HS_HEADER_450		5
+
+header HS_HEADER_451		From =~ /^.*scrapelndyct\.biz/
+describe HS_HEADER_451		Heinlein Support Spamschutz Header-451 Spam
+score HS_HEADER_451		10
+
+header HS_HEADER_452		From:=~/^.*\<schwoto\@gmail\.com\>/
+describe HS_HEADER_452		Heinlein Support Spamschutz Header-452 SPAM
+score HS_HEADER_452		10
+
+header HS_HEADER_453		Reply-To =~ /.*no-reply.diskretklick693.eu/
+
+describe HS_HEADER_453		Heinlein Support Spamschutz Header-453 Spam
+score HS_HEADER_453		7
+
+header HS_HEADER_454		List-Unsubscribe:=~/^.*mail[0-9]{1}.haarausfallloesung.me\/unsubscribe.php/
+describe HS_HEADER_454		Heinlein Support Spamschutz Header-454 SPAM
+score HS_HEADER_454		3
+
+header HS_HEADER_455		X-Authenticated-User:=~/^.*\@ciaccess.com/
+describe HS_HEADER_455		Heinlein Support Spamschutz Header-455 Phishing
+score HS_HEADER_455		10
+
+header HS_HEADER_456		To =~ /Peer Heinlein.*akademie\@heinlein-support\.de/
+describe HS_HEADER_456		Heinlein Support Spamschutz Header-456 Spam
+score HS_HEADER_456		8
+
+header HS_HEADER_457		From =~ /.*commerciale\@scuolacoaching\.org/
+describe HS_HEADER_457		Heinlein Support Spamschutz Header-457 Spam
+score HS_HEADER_457		8
+
+header HS_HEADER_458		Subject: =~ /^.*The Stocktip Of The Year/
+describe HS_HEADER_458		Heinlein Support Spamschutz Header-458 
+score HS_HEADER_458		8
+
+header HS_HEADER_460		Subject: =~ /^.*are you ready for this/
+describe HS_HEADER_460		Heinlein Support Spamschutz Header-460 
+score HS_HEADER_460		5
+
+header HS_HEADER_462		Subject: =~ /^.*Important Message\: I beg you to read this letter\!/
+describe HS_HEADER_462		Heinlein Support Spamschutz Header-462 
+score HS_HEADER_462		5
+
+header HS_HEADER_463		Return-Path: =~ /^.*l110433\@web\-193115\.goracer\.de/
+describe HS_HEADER_463		Heinlein Support Spamschutz Header-463 Spam
+score HS_HEADER_463		8
+
+header HS_HEADER_464		From: =~ /^.*noreply\.inkassodienstleistung\@dispatchemail\.org/
+describe HS_HEADER_464		Heinlein Support Spamschutz Header-464 Spam
+score HS_HEADER_464		3
+
+header HS_HEADER_465		From:=~/daegregor\@correo\.inia\.gob\.ve/
+describe HS_HEADER_465		Heinlein Support Spamschutz Header-465 Spam
+score HS_HEADER_465		5
+
+header HS_HEADER_466		From:=~/^.*iTunes\.mail\@Store\.fr/
+describe HS_HEADER_466		Heinlein Support Spamschutz Header-466 Spam
+score HS_HEADER_466		8
+
+header HS_HEADER_467		Subject: =~ /^.*Ihre Kreditkarte beschrankt war/
+describe HS_HEADER_467		Heinlein Support Spamschutz Header-467 Phishing
+score HS_HEADER_467		5
+
+header HS_HEADER_468		Subject: =~ /WICHTIGE Information zur Deutschegarantie Lizenz!/
+describe HS_HEADER_468		Heinlein Support Spamschutz Header-468 Spam
+score HS_HEADER_468		5
+
+header HS_HEADER_469		From: =~ /Sparkasse GmbH/
+describe HS_HEADER_469		Heinlein Support Spamschutz Header-469 Phishing
+score HS_HEADER_469		5
+
+header HS_HEADER_470		Subject: =~ /^.*nike air jordan pas cher/
+describe HS_HEADER_470		Heinlein Support Spamschutz Header-470 Spam
+score HS_HEADER_470		5
+
+header HS_HEADER_471		From: =~ /jxxxdxht\@gmail\.com/
+describe HS_HEADER_471		Heinlein Support Spamschutz Header-471 Spam
+score HS_HEADER_471		5
+
+header HS_HEADER_472		From: =~ /^.*iTunes00\@store\.net/
+describe HS_HEADER_472		Heinlein Support Spamschutz Header-472 Phishing
+score HS_HEADER_472		5
+
+header HS_HEADER_473		From: =~ /^.*ladiesville0814\.com\.ua/
+describe HS_HEADER_473		Heinlein Support Spamschutz Header-473 Spam
+score HS_HEADER_473		5
+
+header HS_HEADER_474		From: =~ /^.*adugs\@adugs\.lv/
+describe HS_HEADER_474		Heinlein Support Spamschutz Header-474 Phishing
+score HS_HEADER_474		8
+
+header HS_HEADER_475		Subject: =~ /..\. November 2014.* ..:..:../
+describe HS_HEADER_475		Heinlein Support Spamschutz Header-475 Bankphishing
+score HS_HEADER_475		2
+
+header HS_HEADER_476		Subject: =~/FinanzGruppe Fiducia/
+describe HS_HEADER_476		Heinlein Support Spamschutz Header-476 Bankphishing
+score HS_HEADER_476		2
+
+header HS_HEADER_477		Subject: =~/Code : \(.*\)/
+describe HS_HEADER_477		Heinlein Support Spamschutz Header-477 Bankphishing
+score HS_HEADER_477		2
+
+header HS_HEADER_478		From: =~ /^.*telekom\.de.*pastoralbuero\@sankt-petrus-bonn\.de/
+describe HS_HEADER_478		Heinlein Support Spamschutz Header-478 Malware
+score HS_HEADER_478		5
+
+header HS_HEADER_479		Reply-To: =~/^.*trevorw756\@yahoo\.co\.uk/
+describe HS_HEADER_479		Heinlein Support Spamschutz Header-479 Spam
+score HS_HEADER_479		5
+
+header HS_HEADER_481		From: =~/^.*jroberts3\@ccsj\.edu/
+describe HS_HEADER_481		Heinlein Support Spamschutz Header-481 Spam
+score HS_HEADER_481		5
+
+header HS_HEADER_482		From: =~/^.*Nor-eply\@visa\.com/
+describe HS_HEADER_482		Heinlein Support Spamschutz Header-482 Phishing
+score HS_HEADER_482		7
+
+header HS_HEADER_483		From =~ /^.*ebcjsxzht\@gmail\.com/
+describe HS_HEADER_483		Heinlein Support Spamschutz Header-483 Spam
+score HS_HEADER_483		5
+
+header HS_HEADER_484		From =~ /^.*vinayak\@softaculous\.com/
+describe HS_HEADER_484		Heinlein Support Spamschutz Header-484 Spam
+score HS_HEADER_484		3
+
+header HS_HEADER_485		From: =~/^.*admin\@1876\.cn/
+describe HS_HEADER_485		Heinlein Support Spamschutz Header-485 Spam
+score HS_HEADER_485		5
+
+header HS_HEADER_486		Subject: =~ /^.*1 Pille Zacti Plus gleich 1 Kg weniger/
+describe HS_HEADER_486		Heinlein Support Spamschutz Header-486 Spam
+score HS_HEADER_486		8
+
+header HS_HEADER_487		Reply-To: =~/^.*alexbetts47\@yahoo\.com/
+describe HS_HEADER_487		Heinlein Support Spamschutz Header-487 Spam
+score HS_HEADER_487		8
+
+header HS_HEADER_488		From: =~/^.*test\@ELBOURI\.com/
+describe HS_HEADER_488		Heinlein Support Spamschutz Header-488 Spam
+score HS_HEADER_488		5
+
+header HS_HEADER_489		From: =~/^.*lenderloanfirm\@foxmail\.com/
+describe HS_HEADER_489		Heinlein Support Spamschutz Header-489 Spam
+score HS_HEADER_489		5
+
+header HS_HEADER_491		List-Unsubscribe: =~/^.*\<mailto\:GBZDQVRRMYYXKRKBHFJXUTLLMFIFGYTENBZHQZLNJVRDA6KBKN3U45LQIRNEEOBQNJSHGPI\.35078\.45944\.7\@unsub-sj\.mktomail\.com\>/
+describe HS_HEADER_491		Heinlein Support Spamschutz Header-491 Spam
+score HS_HEADER_491		5
+
+header HS_HEADER_492		From: =~/^.*bond\.9664740\@gmail\.com/
+describe HS_HEADER_492		Heinlein Support Spamschutz Header-492 Spam
+score HS_HEADER_492		5
+
+header HS_HEADER_494		From: =~/^.*wgedition\.62507\@gmail\.com/
+describe HS_HEADER_494		Heinlein Support Spamschutz Header-494 Spam
+score HS_HEADER_494		5
+
+header HS_HEADER_495		From: =~/^.*sisiwo\@nnnrw\.com/
+describe HS_HEADER_495		Heinlein Support Spamschutz Header-495 Spam
+score HS_HEADER_495		5
+
+header HS_HEADER_496		From: =~/^.*paypaI\.com/
+describe HS_HEADER_496		Heinlein Support Spamschutz Header-496 Phishing
+score HS_HEADER_496		5
+
+header HS_HEADER_497		From: =~/^.*webseoservices1\@hotmail\.com/
+describe HS_HEADER_497		Heinlein Support Spamschutz Header-497 Spam
+score HS_HEADER_497		5
+
+header HS_HEADER_498		Subject: =~ /^.*\=\?UTF-8\?B\?SWhyIFBheXBhbCBLb250byBpc3QgZWluZ2VzY2hyw6Rua3QhIElocmUgTWl0aGlsZmUgaXN0IGdlZnJhZ3Q\=\?\=/
+describe HS_HEADER_498		Heinlein Support Spamschutz Header-498 Phishing
+score HS_HEADER_498		10
+
+header HS_HEADER_499		From: =~/^.*2VydmljZUBwYXlwYWwuZGU/
+describe HS_HEADER_499		Heinlein Support Spamschutz Header-499 Phishing
+score HS_HEADER_499		10
+
+header HS_HEADER_500		From: =~/^.*login2rosy\@gmail\.com/
+describe HS_HEADER_500		Heinlein Support Spamschutz Header-500 Spam
+score HS_HEADER_500		5
+
+header HS_HEADER_501		From: =~/^.*senina.alla2016\@yandex.com/
+describe HS_HEADER_501		Heinlein Support Spamschutz Header-501 Spam
+score HS_HEADER_501		5
+
+header HS_HEADER_502		From: =~/^.*kiryll\@pewm.eu/
+describe HS_HEADER_502		Heinlein Support Spamschutz Header-502 Spam
+score HS_HEADER_502		5
+
+header HS_HEADER_503		From: =~/^.*lianglongwo486\@21cn.com/
+describe HS_HEADER_503		Heinlein Support Spamschutz Header-503 Spam
+score HS_HEADER_503		5
+
+header HS_HEADER_504		Return-Path: =~/^.*info\@techlinedisk\.ru/
+describe HS_HEADER_504		Heinlein Support Spamschutz Header-504 Phishing
+score HS_HEADER_504		8
+
+header HS_HEADER_505		From: =~/^.*xlemaz347405\@gmail.com/
+describe HS_HEADER_505		Heinlein Support Spamschutz Header-505 Spam
+score HS_HEADER_505		5
+
+header HS_HEADER_506		From: =~/^.*sever.me\@made.cn/
+describe HS_HEADER_506		Heinlein Support Spamschutz Header-506 Spam
+score HS_HEADER_506		5
+
+header HS_HEADER_507		From: =~/^.*hammi.made\@Made-in-China.biz/
+describe HS_HEADER_507		Heinlein Support Spamschutz Header-507 Spam
+score HS_HEADER_507		5
+
+header HS_HEADER_508		From: =~/^.*WangBruceCompany\@yeah.net/
+describe HS_HEADER_508		Heinlein Support Spamschutz Header-508 Spam
+score HS_HEADER_508		5
+
+header HS_HEADER_509		From: =~/^.*ahmed-noorr1\@outlook.com/
+describe HS_HEADER_509		Heinlein Support Spamschutz Header-509 Spam
+score HS_HEADER_509		5
+
+header HS_HEADER_510		From: =~/^.*jenniferrgbagbo\@yahoo.co.jp/
+describe HS_HEADER_510		Heinlein Support Spamschutz Header-510 Spam
+score HS_HEADER_510		5
+
+header HS_HEADER_511		From: =~/^.*omprakash\@taazaa.com/
+describe HS_HEADER_511		Heinlein Support Spamschutz Header-511 Spam
+score HS_HEADER_511		5
+
+header HS_HEADER_512		From: =~/^.*wpsupport\@scmapp.com/
+describe HS_HEADER_512		Heinlein Support Spamschutz Header-512 Spam
+score HS_HEADER_512		5
+
+header HS_HEADER_513		From: =~/^.*contact-numae.fr\@newsletter.mgdev-net.fr/
+describe HS_HEADER_513		Heinlein Support Spamschutz Header-513 Spam
+score HS_HEADER_513		5
+
+header HS_HEADER_514		From: =~/^.*alex37\@dssygroup.com/
+describe HS_HEADER_514		Heinlein Support Spamschutz Header-514 Spam
+score HS_HEADER_514		5
+
+header HS_HEADER_515		From: =~/^.*michealpeterss105\@gmail.com/
+describe HS_HEADER_515		Heinlein Support Spamschutz Header-515 Spam
+score HS_HEADER_515		3
+
+header HS_HEADER_516		Subject: =~/^.*sir\/ madam reply if you will be interested./
+describe HS_HEADER_516		Heinlein Support Spamschutz Header-516 Spam
+score HS_HEADER_516		5
+
+header HS_HEADER_517		From: =~/^.*wkbb02\@gmail.com/
+describe HS_HEADER_517		Heinlein Support Spamschutz Header-517 Spam
+score HS_HEADER_517		5
+
+header HS_HEADER_518		From: =~ /DHL Support/
+describe HS_HEADER_518		Heinlein Support Spamschutz Header-518 Phishing
+score HS_HEADER_518		5
+
+header HS_HEADER_519		From: =~/^.*web447p2\@tux39.loginserver.ch/
+describe HS_HEADER_519		Heinlein Support Spamschutz Header-519 Phishing
+score HS_HEADER_519		5
+
+header HS_HEADER_520		From: =~ /DHL Fachteam/
+describe HS_HEADER_520		Heinlein Support Spamschutz Header-520 Phishing
+score HS_HEADER_520		5
+
+header HS_HEADER_521		From: =~/^.*info\@hostbirds.co.in/
+describe HS_HEADER_521		Heinlein Support Spamschutz Header-521 Spam
+score HS_HEADER_521		5
+
+header HS_HEADER_522		Subject:=~/^.*Greetings from Gambia\/ Hon\. Francis Liti Mboge/
+describe HS_HEADER_522		Heinlein Support Spamschutz Header-522 Spam
+score HS_HEADER_522		8
+
+header HS_HEADER_523		From:=~/^.*vankoloeger\@yandex\.com/
+describe HS_HEADER_523		Heinlein Support Spamschutz Header-523 SPAM
+score HS_HEADER_523		8
+
+header HS_HEADER_524		From:=~/^.*guessansandra2010\@yahoo.co.jp/
+describe HS_HEADER_524		Heinlein Support Spamschutz Header-524 Spam
+score HS_HEADER_524		5
+
+header HS_HEADER_525		From:=~/^ .*DHL Logistik-Spezialist/
+describe HS_HEADER_525		Heinlein Support Spamschutz Header-525 Spam
+score HS_HEADER_525		8
+
+header HS_HEADER_526		Subject:=~/^.*Paketzustellung im Zusammenhang mit der Sendung/
+describe HS_HEADER_526		Heinlein Support Spamschutz Header-526 Phishing
+score HS_HEADER_526		8
+
+header HS_HEADER_527		From:=~/^.*david\.geletey\@zcredit\.org/
+describe HS_HEADER_527		Heinlein Support Spamschutz Header-527 Spam
+score HS_HEADER_527		8
+
+header HS_HEADER_528		From:=~/^.*DHL Transport-Team/
+describe HS_HEADER_528		Heinlein Support Spamschutz Header-528 Phishing
+score HS_HEADER_528		8
+
+header HS_HEADER_529		From:=~/^.*PayPal \<service\@payen\.com\>/
+describe HS_HEADER_529		Heinlein Support Spamschutz Header-529 Phishing
+score HS_HEADER_529		8
+
+header HS_HEADER_530		From:=~/^.*DHL Logistik-Spezialist/
+describe HS_HEADER_530		Heinlein Support Spamschutz Header-530 Phishing
+score HS_HEADER_530		8
+
+header HS_HEADER_531		From:=~/^.*Frauen-Finder\" \<frauen-finder\@erfolg-durch-profis\.com\>/
+describe HS_HEADER_531		Heinlein Support Spamschutz Header-531 SPAM
+score HS_HEADER_531		8
+
+header HS_HEADER_532		Subject:=~/^.*Ich will dich ficken\. Hier mein Profil/
+describe HS_HEADER_532		Heinlein Support Spamschutz Header-532 SPAM
+score HS_HEADER_532		8
+
+header HS_HEADER_533		From:=~/^.*\=\?UTF\-8\?Q\?PayPal\?\=\<support\@pypal\.com\>/
+describe HS_HEADER_533		Heinlein Support Spamschutz Header-533 Phishing
+score HS_HEADER_533		8
+
+header HS_HEADER_534		Subject:=~/^.*Ank\?\?ndigung Ihrer Sendung/
+describe HS_HEADER_534		Heinlein Support Spamschutz Header-534 Spam
+score HS_HEADER_534		8
+
+header HS_HEADER_535		From:=~/^.*\"DHL\.de\"/
+describe HS_HEADER_535		Heinlein Support Spamschutz Header-535 Phishing
+score HS_HEADER_535		5
+
+header HS_HEADER_537		From:=~/^.*mr\_evans1245\@yahoo\.com/
+describe HS_HEADER_537		Heinlein Support Spamschutz Header-537 Spam
+score HS_HEADER_537		8
+
+header HS_HEADER_539		From:=~/^.*administrator\@social-webshop.com/
+describe HS_HEADER_539		Heinlein Support Spamschutz Header-539 Phishing
+score HS_HEADER_539		5
+
+header HS_HEADER_540		From:=~/^.*info-null-punkte\@gmx.ch/
+describe HS_HEADER_540		Heinlein Support Spamschutz Header-540 Spam
+score HS_HEADER_540		5
+
+header HS_HEADER_541		From:=~/^.*contact\@satec.co.in/
+describe HS_HEADER_541		Heinlein Support Spamschutz Header-541 Spam
+score HS_HEADER_541		5
+
+header HS_HEADER_542		From:=~/^.*mirable24\@hotmail.com/
+describe HS_HEADER_542		Heinlein Support Spamschutz Header-542 Spam
+score HS_HEADER_542		5
+
+header HS_HEADER_543		From:=~/^.*mail\@pro-pitchers.com/
+describe HS_HEADER_543		Heinlein Support Spamschutz Header-543 Spam
+score HS_HEADER_543		5
+
+header HS_HEADER_544		From:=~/^.*news\@bestdepartment.net/
+describe HS_HEADER_544		Heinlein Support Spamschutz Header-544 Spam
+score HS_HEADER_544		5
+
+header HS_HEADER_545		From:=~/^.*news\@bio-fruits.net/
+describe HS_HEADER_545		Heinlein Support Spamschutz Header-545 Spam
+score HS_HEADER_545		5
+
+header HS_HEADER_546		From:=~/^.*\@erfolg\-durch\-profis\.(com|de)/
+describe HS_HEADER_546		Heinlein Support Spamschutz Header-546 Spam
+score HS_HEADER_546		8
+
+header HS_HEADER_547		Subject:=~/^.*I can show you how to fuel your brand and generate more revenue from search engines and social networks\./
+describe HS_HEADER_547		Heinlein Support Spamschutz Header-547 Spam
+score HS_HEADER_547		8
+
+header HS_HEADER_548		Subject:=~/^.*\=\?ISO\-8859\-1\?Q\?From\=3Amarketing\_\=3A\_Wie\_geht\_es\_\?\=/
+describe HS_HEADER_548		Heinlein Support Spamschutz Header-548 Spam
+score HS_HEADER_548		8
+
+header HS_HEADER_549		From:=~/^.*\@towerstream.com/
+describe HS_HEADER_549		Heinlein Support Spamschutz Header-549 Spam
+score HS_HEADER_549		5
+
+header HS_HEADER_550		From:=~/^.*bajas\@ticktag.es/
+describe HS_HEADER_550		Heinlein Support Spamschutz Header-550 Spam
+score HS_HEADER_550		5
+
+header HS_HEADER_551		From:=~/^.*uvqciexp\@aol.com/
+describe HS_HEADER_551		Heinlein Support Spamschutz Header-551 Spam
+score HS_HEADER_551		5
+
+header HS_HEADER_552		Reply-To:=~/^.*skyfinance01243\@gmail\.com/
+describe HS_HEADER_552		Heinlein Support Spamschutz Header-552 Spam
+score HS_HEADER_552		8
+
+header HS_HEADER_553		From:=~/^.*molly.mills1\@outlook.com/
+describe HS_HEADER_553		Heinlein Support Spamschutz Header-553 Spam
+score HS_HEADER_553		5
+
+header HS_HEADER_554		From:=~/^.*reply\@vip\.newdeals\.eu/
+describe HS_HEADER_554		Heinlein Support Spamschutz Header-554 Spam
+score HS_HEADER_554		8
+
+header HS_HEADER_555		From:=~/^.*SOLAR\-PANEL\-\-INSTALLATION\@usaenergysun\.party/
+describe HS_HEADER_555		Heinlein Support Spamschutz Header-555 spam
+score HS_HEADER_555		8
+
+header HS_HEADER_556		Subject:=~/^.* Auto Response\: Find something you like\? Take  \â\\• 65\% off\. It\'s on us/
+describe HS_HEADER_556		Heinlein Support Spamschutz Header-556 Spam
+score HS_HEADER_556		8
+
+header HS_HEADER_557		From:=~/^.*\@micro-sender\.biz/
+describe HS_HEADER_557		Heinlein Support Spamschutz Header-557 SPAM
+score HS_HEADER_557		8
+
+header HS_HEADER_558		Subject:=~/^.* Your Best Business Tool In Your Pocket/
+describe HS_HEADER_558		Heinlein Support Spamschutz Header-558 Spam
+score HS_HEADER_558		8
+
+header HS_HEADER_559		Message-ID: =~ /^.*JavaMail\.RCKAPP\$\@rckapp/
+describe HS_HEADER_559		Heinlein Support Spamschutz Header-559 
+score HS_HEADER_559		1
+
+header HS_HEADER_560		From:=~/^.*info\@onlineranking.net/
+describe HS_HEADER_560		Heinlein Support Spamschutz Header-560 Spam
+score HS_HEADER_560		5
+
+header HS_HEADER_561		From:=~/^.*david\@dadli.com/
+describe HS_HEADER_561		Heinlein Support Spamschutz Header-561 Spam
+score HS_HEADER_561		5
+
+header HS_HEADER_562		From:=~/^.*info\@biddsmanager.com/
+describe HS_HEADER_562		Heinlein Support Spamschutz Header-562 Spam
+score HS_HEADER_562		5
+
+header HS_HEADER_563		From:=~/^.*info\@extrabids.net/
+describe HS_HEADER_563		Heinlein Support Spamschutz Header-563 Spam
+score HS_HEADER_563		5
+
+header HS_HEADER_564		From:=~/^.*mail\@insidethecash.com/
+describe HS_HEADER_564		Heinlein Support Spamschutz Header-564 Spam
+score HS_HEADER_564		5
+
+header HS_HEADER_565		From:=~/^.*sales457\@aicl.pw/
+describe HS_HEADER_565		Heinlein Support Spamschutz Header-565 Spam
+score HS_HEADER_565		8
+
+header HS_HEADER_566		List-Unsubscribe:=~/^.*empfehlung-vom-profi.de/
+describe HS_HEADER_566		Heinlein Support Spamschutz Header-566 SPAM
+score HS_HEADER_566		8
+
+header HS_HEADER_567		List-Unsubscribe:=~/^.*fascinating-magic.de/
+describe HS_HEADER_567		Heinlein Support Spamschutz Header-567 SPAM
+score HS_HEADER_567		8
+
+header HS_HEADER_568		X-Mailer:=~/^.*Coremail Webmail Server Version SP_ntes V3.5 build 20150803(72677.7612) Copyright (c) 2002-2015 www.mailtech.cn yeah/
+describe HS_HEADER_568		Heinlein Support Spamschutz Header-568 Spam
+score HS_HEADER_568		9
+
+header HS_HEADER_569		Subject:=~/^.*Notice to Appear/
+describe HS_HEADER_569		Heinlein Support Spamschutz Header-569 Malware
+score HS_HEADER_569		5
+
+header HS_HEADER_570		Return-Path: =~/^.*admin\@pavpall.onmicrosoft.com/
+describe HS_HEADER_570		Heinlein Support Spamschutz Header-570 Phishing
+score HS_HEADER_570		8
+
+header HS_HEADER_571		Reply-To:=~/^.*mrspokumblo\_003\@yahoo.com/
+describe HS_HEADER_571		Heinlein Support Spamschutz Header-571 Spam
+score HS_HEADER_571		8
+
+header HS_HEADER_572		From:=~/^.*mrspokumblo\@gmail.com/
+describe HS_HEADER_572		Heinlein Support Spamschutz Header-572 Spam
+score HS_HEADER_572		8
+
+header HS_HEADER_573		From:=~/^.*baghdadiali\_mahmudi\@yahoo\.co\.uk/
+describe HS_HEADER_573		Heinlein Support Spamschutz Header-573 Spam
+score HS_HEADER_573		8
+
+header HS_HEADER_574		To:=~/^.*zentrale\@comdirect.de/
+describe HS_HEADER_574		Heinlein Support Spamschutz Header-574 Phishing
+score HS_HEADER_574		8
+
+header HS_HEADER_575		From:=~/^.*tina\_899tina\@yahoo\.co\.jp/
+describe HS_HEADER_575		Heinlein Support Spamschutz Header-575 Spam
+score HS_HEADER_575		8
+
+header HS_HEADER_576		From:=~/^.*JESPIRK\@aps\.k12\.co\.us/
+describe HS_HEADER_576		Heinlein Support Spamschutz Header-576 Spam
+score HS_HEADER_576		8
+
+header HS_HEADER_577		From:=~/^.*mail\@kinggenerator.com/
+describe HS_HEADER_577		Heinlein Support Spamschutz Header-577 Spam
+score HS_HEADER_577		8
+
+header HS_HEADER_578		From:=~/^.*consultorio\.raffadali\@aspag\.it/
+describe HS_HEADER_578		Heinlein Support Spamschutz Header-578 Spam
+score HS_HEADER_578		8
+
+header HS_HEADER_579		From:=~/^.*\@pro-application.com/
+describe HS_HEADER_579		Heinlein Support Spamschutz Header-579 Spam
+score HS_HEADER_579		5
+
+header HS_HEADER_580		From:=~/^.*ShariffMA\@ngha\.med\.sa/
+describe HS_HEADER_580		Heinlein Support Spamschutz Header-580 Spam
+score HS_HEADER_580		8
+
+header HS_HEADER_581		From:=~/^.*catc43\@aol\.com/
+describe HS_HEADER_581		Heinlein Support Spamschutz Header-581 Spam
+score HS_HEADER_581		8
+
+header HS_HEADER_582		From:=~/^.*job\.info187\@sapo\.pt/
+describe HS_HEADER_582		Heinlein Support Spamschutz Header-582 Spam
+score HS_HEADER_582		8
+
+header HS_HEADER_583		From:=~/^.*mariaelena\.garcia\@mecd\.es/
+describe HS_HEADER_583		Heinlein Support Spamschutz Header-583 Spam
+score HS_HEADER_583		8
+
+header HS_HEADER_584		From:=~/^.*William\.Hanna\@bridgew\.edu/
+describe HS_HEADER_584		Heinlein Support Spamschutz Header-584 Spam
+score HS_HEADER_584		8
+
+header HS_HEADER_585		From:=~/^.*\@makinwork.com/
+describe HS_HEADER_585		Heinlein Support Spamschutz Header-585 Spam
+score HS_HEADER_585		5
+
+header HS_HEADER_586		From:=~/^.*\@stringadvertising.biz/
+describe HS_HEADER_586		Heinlein Support Spamschutz Header-586 Spam
+score HS_HEADER_586		5
+
+header HS_HEADER_587		From:=~/^.*\@listemail.biz/
+describe HS_HEADER_587		Heinlein Support Spamschutz Header-587 Spam
+score HS_HEADER_587		5
+
+header HS_HEADER_588		From:=~/^.*\@mergesender.net/
+describe HS_HEADER_588		Heinlein Support Spamschutz Header-588 Spam
+score HS_HEADER_588		5
+
+header HS_HEADER_589		Reply-To:=~/^.*gurbhejsrafoundation\@inbox.lv/
+describe HS_HEADER_589		Heinlein Support Spamschutz Header-589 Spam
+score HS_HEADER_589		5
+
+header HS_HEADER_590		From:=~/^.*\@case-advertising.com/
+describe HS_HEADER_590		Heinlein Support Spamschutz Header-590 Spam
+score HS_HEADER_590		8
+
+header HS_HEADER_591		Return-Path:=~/^.*info\@1careergoal\.com/
+describe HS_HEADER_591		Heinlein Support Spamschutz Header-591 Phishing
+score HS_HEADER_591		8
+
+header HS_HEADER_592		From:=~/^.*iden\-pro\@ukr\.net/
+describe HS_HEADER_592		Heinlein Support Spamschutz Header-592 Spam
+score HS_HEADER_592		8
+
+header HS_HEADER_593		From:=~/^.*sam\.campanale\@century21\.ca/
+describe HS_HEADER_593		Heinlein Support Spamschutz Header-593 Spam
+score HS_HEADER_593		8
+
+header HS_HEADER_594		From:=~/^.*nathey\@web.de/i
+describe HS_HEADER_594		Heinlein Support Spamschutz Header-594 SPAM
+score HS_HEADER_594		10
+
+header HS_HEADER_595		Reply-To:=~/^.*diane.soto1901\@yahoo.com/
+describe HS_HEADER_595		Heinlein Support Spamschutz Header-595 Spam
+score HS_HEADER_595		5
+
+header HS_HEADER_596		From:=~/^.*infosky\@4kinder\.kz/
+describe HS_HEADER_596		Heinlein Support Spamschutz Header-596 Spam
+score HS_HEADER_596		8
+
+header HS_HEADER_597		From:=~/^.*nl.my-check.de/
+describe HS_HEADER_597		Heinlein Support Spamschutz Header-597 Spam
+score HS_HEADER_597		5
+
+header HS_HEADER_598		From:=~/^.*auevs.kredit.de/
+describe HS_HEADER_598		Heinlein Support Spamschutz Header-598 Spam
+score HS_HEADER_598		5
+
+header HS_HEADER_599		From:=~/^.*flug-jetzt.com/
+describe HS_HEADER_599		Heinlein Support Spamschutz Header-599 Spam
+score HS_HEADER_599		5
+
+header HS_HEADER_600		From:=~/^.*trusted\-nutriform\-deutschland\.com/
+describe HS_HEADER_600		Heinlein Support Spamschutz Header-600 Spam
+score HS_HEADER_600		5
+
+header HS_HEADER_601		From:=~/^.*news.de.cc/
+describe HS_HEADER_601		Heinlein Support Spamschutz Header-601 Spam
+score HS_HEADER_601		5
+
+header HS_HEADER_602		From:=~/^.*cse.ohio-state.edu/
+describe HS_HEADER_602		Heinlein Support Spamschutz Header-602 Spam
+score HS_HEADER_602		8
+
+header HS_HEADER_603		From:=~/^.*53596\-cf\@online\.de/
+describe HS_HEADER_603		Heinlein Support Spamschutz Header-603 Spam
+score HS_HEADER_603		8
+
+header HS_HEADER_604		From:=~/^.*\@tophosting.gq/
+describe HS_HEADER_604		Heinlein Support Spamschutz Header-604 Spam
+score HS_HEADER_604		8
+
+header HS_HEADER_605		From:=~/^.*\@beterservers.tld.cc/
+describe HS_HEADER_605		Heinlein Support Spamschutz Header-605 Spam
+score HS_HEADER_605		8
+
+header HS_HEADER_606		From:=~/^.*\@hikehosting.gq/
+describe HS_HEADER_606		Heinlein Support Spamschutz Header-606 Spam
+score HS_HEADER_606		8
+
+header HS_HEADER_607		From:=~/^.*\@servicehosting.usa.cc/
+describe HS_HEADER_607		Heinlein Support Spamschutz Header-607 Spam
+score HS_HEADER_607		8
+
+header HS_HEADER_608		From:=~/^.*\@dedicatedserver.nut.cc/
+describe HS_HEADER_608		Heinlein Support Spamschutz Header-608 Spam
+score HS_HEADER_608		8
+
+header HS_HEADER_609		From:=~/^.*\@bestservers.usa.cc/
+describe HS_HEADER_609		Heinlein Support Spamschutz Header-609 Spam
+score HS_HEADER_609		8
+
+header HS_HEADER_610		From:=~/^.*\@speedhost.flu.cc/
+describe HS_HEADER_610		Heinlein Support Spamschutz Header-610 Spam
+score HS_HEADER_610		8
+
+header HS_HEADER_611		From:=~/^.*\@websitehosting.tld.cc/
+describe HS_HEADER_611		Heinlein Support Spamschutz Header-611 Spam
+score HS_HEADER_611		8
+
+header HS_HEADER_612		From:=~/^.*\@bestresellerhosting.flu.cc/
+describe HS_HEADER_612		Heinlein Support Spamschutz Header-612 Spam
+score HS_HEADER_612		8
+
+header HS_HEADER_613		From:=~/^.*\@experthosting.flu.cc/
+describe HS_HEADER_613		Heinlein Support Spamschutz Header-613 Spam
+score HS_HEADER_613		8
+
+header HS_HEADER_614		From:=~/^.*\@takebesthosting.tld.cc/
+describe HS_HEADER_614		Heinlein Support Spamschutz Header-614 Spam
+score HS_HEADER_614		8
+
+header HS_HEADER_615		From:=~/^.*\@hostdadicate.nut.cc/
+describe HS_HEADER_615		Heinlein Support Spamschutz Header-615 Spam
+score HS_HEADER_615		8
+
+header HS_HEADER_616		From:=~/^.*\@fullyhosting.flu.cc/
+describe HS_HEADER_616		Heinlein Support Spamschutz Header-616 Spam
+score HS_HEADER_616		8
+
+header HS_HEADER_617		From:=~/^.*\@hostserver.nut.cc/
+describe HS_HEADER_617		Heinlein Support Spamschutz Header-617 Spam
+score HS_HEADER_617		8
+
+header HS_HEADER_618		From:=~/^.*\@bestvpssharedhosting.flu.cc/
+describe HS_HEADER_618		Heinlein Support Spamschutz Header-618 Spam
+score HS_HEADER_618		8
+
+header HS_HEADER_619		From:=~/^.*\@news-data\.net/
+describe HS_HEADER_619		Heinlein Support Spamschutz Header-619 Spam
+score HS_HEADER_619		8
+
+header HS_HEADER_620		From:=~/^.*stringadvertising.org/
+describe HS_HEADER_620		Heinlein Support Spamschutz Header-620 Spam
+score HS_HEADER_620		5
+
+header HS_HEADER_621		From:=~/^.*typicalhoster.biz/
+describe HS_HEADER_621		Heinlein Support Spamschutz Header-621 Spam
+score HS_HEADER_621		5
+
+header HS_HEADER_622		From:=~/^.*datamessage.biz/
+describe HS_HEADER_622		Heinlein Support Spamschutz Header-622 Spam
+score HS_HEADER_622		5
+
+header HS_HEADER_623		From:=~/^.*best.shopping.cx/
+describe HS_HEADER_623		Heinlein Support Spamschutz Header-623 Spam
+score HS_HEADER_623		5
+
+header HS_HEADER_625		From:=~/^.*\@10alogo.com/
+describe HS_HEADER_625		Heinlein Support Spamschutz Header-625 Spam
+score HS_HEADER_625		8
+
+header HS_HEADER_626		From:=~/^.*seoworld9\@gmail\.com/
+describe HS_HEADER_626		Heinlein Support Spamschutz Header-626 Spam
+score HS_HEADER_626		8
+
+header HS_HEADER_628		From:=~/^zainabinformation\@gmail.com/
+describe HS_HEADER_628		Heinlein Support Spamschutz Header-628 Spam
+score HS_HEADER_628		10
+
+header HS_HEADER_629		From:=~/^juanamahmood\@gmail.com/
+describe HS_HEADER_629		Heinlein Support Spamschutz Header-629 Spam
+score HS_HEADER_629		10
+
+header HS_HEADER_630		From:=~/^responsivewebsitedesign*/
+describe HS_HEADER_630		Heinlein Support Spamschutz Header-630 Spam
+score HS_HEADER_630		8
+
+header HS_HEADER_631		From:=~/^.*centiplex.com/
+describe HS_HEADER_631		Heinlein Support Spamschutz Header-631 Spam
+score HS_HEADER_631		5
+
+header HS_HEADER_632		From:=~/^.*deutschedomain.com/
+describe HS_HEADER_632		Heinlein Support Spamschutz Header-632 Spam
+score HS_HEADER_632		8
+
+header HS_HEADER_634		From:=~/^.*wie-teuer-ist-krankenkasse\.info/
+describe HS_HEADER_634		Heinlein Support Spamschutz Header-634 Phishing
+score HS_HEADER_634		8
+
+header HS_HEADER_635		From:=~/^.*(general-auction.com|g-so.com|expo-machineries.com|glassonthego.com|buyoceanfrontcondo.com|boxerrescuela.com|bio-cheese.com|flightssa.com|sellingoffers.ne|axcelectronics.com)/
+describe HS_HEADER_635		Heinlein Support Spamschutz Header-635 Spam
+score HS_HEADER_635		7
+
+header HS_HEADER_636		Subject:=~/^.*purchasing order from Graham/
+describe HS_HEADER_636		Heinlein Support Spamschutz Header-636 Spam
+score HS_HEADER_636		6
+
+header HS_HEADER_637		From:=~/^canon\@rosnou.ru/
+describe HS_HEADER_637		Heinlein Support Spamschutz Header-637 Spam
+score HS_HEADER_637		8
+
+header HS_HEADER_638		From:=~/^.*seoramakant\@gmail\.com/
+describe HS_HEADER_638		Heinlein Support Spamschutz Header-638 Spam
+score HS_HEADER_638		8
+
+header HS_HEADER_639		From:=~/^.*nitimechamber\@yahoo\.com\.au/
+describe HS_HEADER_639		Heinlein Support Spamschutz Header-639 Spam
+score HS_HEADER_639		8
+
+header HS_HEADER_640		From:=~/^.*creativewebdesign189\@gmail\.com/
+describe HS_HEADER_640		Heinlein Support Spamschutz Header-640 Spam
+score HS_HEADER_640		5
+
+header HS_HEADER_641		From:=~/^.*jbrcc98\@q\.com/
+describe HS_HEADER_641		Heinlein Support Spamschutz Header-641 Phishing
+score HS_HEADER_641		8
+
+header HS_HEADER_642		Subject:=~/^.*Cruise Job 2015/
+describe HS_HEADER_642		Heinlein Support Spamschutz Header-642 Spam
+score HS_HEADER_642		8
+
+header HS_HEADER_643		Return-Path:=~/^.*ibreply\@westpac\.co\.nz/
+describe HS_HEADER_643		Heinlein Support Spamschutz Header-643 Phishing
+score HS_HEADER_643		8
+
+header HS_HEADER_644		Subject:=~/MAILBOX RENEWAL ALERT/
+describe HS_HEADER_644		Heinlein Support Spamschutz Header-644 Phishing
+score HS_HEADER_644		15
+
+header HS_HEADER_646		From:=~/^.*J.Bernardi\@t\-online\.de/
+describe HS_HEADER_646		Heinlein Support Spamschutz Header-646 Spam
+score HS_HEADER_646		8
+
+header HS_HEADER_647		From:=~/^.*interac.it.*/
+describe HS_HEADER_647		Heinlein Support Spamschutz Header-647 Spam
+score HS_HEADER_647		8
+
+header HS_HEADER_648		Return-Path:=~/^.*listcompanion\-mailer.com/
+describe HS_HEADER_648		Heinlein Support Spamschutz Header-648 Spam
+score HS_HEADER_648		8
+
+header HS_HEADER_649		From:=~/^.*limited\@pavpa.co/
+describe HS_HEADER_649		Heinlein Support Spamschutz Header-649 Phishing
+score HS_HEADER_649		8
+
+header HS_HEADER_650		List-Unsubscribe:=~/^.*(server.winnerfaster.com|www.sharedbread.com|healthaddress.net|geekutopia.org|consumersocial.org|top10bluray.com|e-onlinecorrespondence.com|iem32.smtp.com|armstrusts.com|okdone.net|gogetcash.net)/
+describe HS_HEADER_650		Heinlein Support Spamschutz Header-650 Spam
+score HS_HEADER_650		5
+
+header HS_HEADER_651		Subject:=~/^.*~~~~~ Leaked CODE Could DEMOLISH The Entire U\.S\. Lotto Industry\. ~~~~~/
+describe HS_HEADER_651		Heinlein Support Spamschutz Header-651 Spam
+score HS_HEADER_651		5
+
+header HS_HEADER_652		From:=~/^.*hierrezeptfreianfordern.xyz/
+describe HS_HEADER_652		Heinlein Support Spamschutz Header-652 Spam
+score HS_HEADER_652		8
+
+header HS_HEADER_653		List-Unsubscribe:=~/^.*dontone.org/
+describe HS_HEADER_653		Heinlein Support Spamschutz Header-653 Spam
+score HS_HEADER_653		5
+
+header HS_HEADER_654		From:=~/^.*account\@zepeem\.com/
+describe HS_HEADER_654		Heinlein Support Spamschutz Header-654 Spam
+score HS_HEADER_654		8
+
+header HS_HEADER_655		From:=~/.*\@int.paypal.com.*\@mailbox.org/
+describe HS_HEADER_655		Heinlein Support Spamschutz Header-655 Paypal-Phishing mit MBO-Account ausgehend
+score HS_HEADER_655		10
+
+header HS_HEADER_656		X-PPP-Vhost:=~/pappdorf.de/
+describe HS_HEADER_656		Heinlein Support Spamschutz Header-656 
+score HS_HEADER_656		1
+
+header HS_HEADER_657		From:=~/^.*die\_walt7917\@aol\.com/
+describe HS_HEADER_657		Heinlein Support Spamschutz Header-657 Spam
+score HS_HEADER_657		8
+
+header HS_HEADER_658		From:=~/PayPal.*Service .*\@mailbox.org/
+describe HS_HEADER_658		Heinlein Support Spamschutz Header-658 Phishing
+score HS_HEADER_658		10
+
+header HS_HEADER_659		From:=~/PayPal.* .*\@mailbox.org/
+describe HS_HEADER_659		Heinlein Support Spamschutz Header-659 Phishing
+score HS_HEADER_659		16
+
+header HS_HEADER_660		From:=~/^.*info\@harrydfe\.biz/
+describe HS_HEADER_660		Heinlein Support Spamschutz Header-660 Spam
+score HS_HEADER_660		8
+
+header HS_HEADER_661		From:=~/^.*winnerfaster\.com.*/
+describe HS_HEADER_661		Heinlein Support Spamschutz Header-661 Spam
+score HS_HEADER_661		8
+
+header HS_HEADER_662		From:=~/^.*artinsitu.com.*/
+describe HS_HEADER_662		Heinlein Support Spamschutz Header-662 Spam
+score HS_HEADER_662		8
+
+header HS_HEADER_663		From:=~/^.*fusionwhiz.com.*/
+describe HS_HEADER_663		Heinlein Support Spamschutz Header-663 Spam
+score HS_HEADER_663		8
+
+header HS_HEADER_664		From:=~/^.*guar\@geldstrom\.eu/
+describe HS_HEADER_664		Heinlein Support Spamschutz Header-664 Spam
+score HS_HEADER_664		8
+
+header HS_HEADER_665		From:=~/^.*CyrilKoko\@netpartner\.com\.pl/
+describe HS_HEADER_665		Heinlein Support Spamschutz Header-665 Spam
+score HS_HEADER_665		8
+
+header HS_HEADER_666		From:=~/^.*webbizworld.org.*/
+describe HS_HEADER_666		Heinlein Support Spamschutz Header-666 Spam
+score HS_HEADER_666		8
+
+header HS_HEADER_667		From:=~/^.*kahayag.com.*/
+describe HS_HEADER_667		Heinlein Support Spamschutz Header-667 Spam
+score HS_HEADER_667		8
+
+header HS_HEADER_668		From:=~/^.*topeei.com.*/
+describe HS_HEADER_668		Heinlein Support Spamschutz Header-668 Spam
+score HS_HEADER_668		8
+
+header HS_HEADER_669		From:=~/^.*secorstrategy.com.*/
+describe HS_HEADER_669		Heinlein Support Spamschutz Header-669 Spam
+score HS_HEADER_669		8
+
+header HS_HEADER_670		Subject: =~ /artest light DIY/
+describe HS_HEADER_670		Heinlein Support Spamschutz Header-670 Spam
+score HS_HEADER_670		5
+
+header HS_HEADER_671		From:=~/^.*yeva-4u.com.ua.*/
+describe HS_HEADER_671		Heinlein Support Spamschutz Header-671 Spam
+score HS_HEADER_671		8
+
+header HS_HEADER_672		From:=~/^.*giuselip25\@aol\.com/
+describe HS_HEADER_672		Heinlein Support Spamschutz Header-672 Spam
+score HS_HEADER_672		7
+
+header HS_HEADER_675		From:=~/omahasteaks.com/
+describe HS_HEADER_675		Heinlein Support Spamschutz Header-675 
+score HS_HEADER_675		-3.5
+
+header HS_HEADER_676		Received:=~/Received: by webmail.century21.ca.*Authenticated sender: .*\@century21.ca/
+describe HS_HEADER_676		Heinlein Support Spamschutz Header-676 Bank-Phishing
+score HS_HEADER_676		2
+
+header HS_HEADER_677		From:=~/^.*jennycliffwsm\@gmail.com*/
+describe HS_HEADER_677		Heinlein Support Spamschutz Header-677 Spam
+score HS_HEADER_677		8
+
+header HS_HEADER_678		From:=~/^.*rabatt24.org*/
+describe HS_HEADER_678		Heinlein Support Spamschutz Header-678 Spam
+score HS_HEADER_678		5
+
+header HS_HEADER_679		From:=~/^.*juergen112\@online.de*/
+describe HS_HEADER_679		Heinlein Support Spamschutz Header-679 Spam
+score HS_HEADER_679		8
+
+header HS_HEADER_680		From:=~/^.*yanyin\@citiz.net*/
+describe HS_HEADER_680		Heinlein Support Spamschutz Header-680 Spam
+score HS_HEADER_680		8
+
+header HS_HEADER_681		From:=~/^.*roland.schreder\@greenpdb.com/
+describe HS_HEADER_681		Heinlein Support Spamschutz Header-681 Spam
+score HS_HEADER_681		8
+
+header HS_HEADER_682		Subject: =~ /Ihre E-Mail hat gewonnen 920,000.00 00Euro/
+describe HS_HEADER_682		Heinlein Support Spamschutz Header-682 Spam
+score HS_HEADER_682		8
+
+header HS_HEADER_683		From:=~/^.*master-zen.com/
+describe HS_HEADER_683		Heinlein Support Spamschutz Header-683 Spam
+score HS_HEADER_683		8
+
+header HS_HEADER_684		From:=~/^.*tettelbachm1\@lasalle\.edu/
+describe HS_HEADER_684		Heinlein Support Spamschutz Header-684 Spam
+score HS_HEADER_684		8
+
+header HS_HEADER_685		Subject:=~/=?utf-8?Q?Wie_Wichtig_ist_Ihnen_Ihr_F=C3=BChrerschein=3F?=/
+describe HS_HEADER_685		Heinlein Support Spamschutz Header-685 Spam
+score HS_HEADER_685		5
+
+header HS_HEADER_687		From:=~/caroline191\@theonlybandever.com/
+describe HS_HEADER_687		Heinlein Support Spamschutz Header-687 Spam
+score HS_HEADER_687		8
+
+header HS_HEADER_688		From:=~/^.*\@v2mx2.pw*/
+describe HS_HEADER_688		Heinlein Support Spamschutz Header-688 Spam
+score HS_HEADER_688		8
+
+header HS_HEADER_689		From:=~/^.*\@bp1q7.xyz*/
+describe HS_HEADER_689		Heinlein Support Spamschutz Header-689 Spam
+score HS_HEADER_689		8
+
+header HS_HEADER_690		From:=~/^.*\@xln27.pw*/
+describe HS_HEADER_690		Heinlein Support Spamschutz Header-690 Spam
+score HS_HEADER_690		8
+
+header HS_HEADER_691		From:=~/^.*\@klickensiejetzt.com.de*/
+describe HS_HEADER_691		Heinlein Support Spamschutz Header-691 Spam
+score HS_HEADER_691		8
+
+header HS_HEADER_692		From:=~/^.*\@eyepinsbx.com*/
+describe HS_HEADER_692		Heinlein Support Spamschutz Header-692 Spam
+score HS_HEADER_692		8
+
+header HS_HEADER_693		From:=~/^.*\@direct-credit.ru*/
+describe HS_HEADER_693		Heinlein Support Spamschutz Header-693 Spam
+score HS_HEADER_693		8
+
+header HS_HEADER_694		From:=~/^.*\@ocramada.com*/
+describe HS_HEADER_694		Heinlein Support Spamschutz Header-694 Spam
+score HS_HEADER_694		8
+
+header HS_HEADER_695		From:=~/^.*\@paycpleee.com*/
+describe HS_HEADER_695		Heinlein Support Spamschutz Header-695 Spam
+score HS_HEADER_695		8
+
+header HS_HEADER_696		From:=~/^.*emiratefoundation1\@gmail\.com/
+describe HS_HEADER_696		Heinlein Support Spamschutz Header-696 
+score HS_HEADER_696		8
+
+header HS_HEADER_697		From:=~/.*eberwachung\@oraise.com/
+describe HS_HEADER_697		Heinlein Support Spamschutz Header-697 
+score HS_HEADER_697		-4
+
+header HS_HEADER_698		From:=~/^.*vc0198\@hotmail\.com/
+describe HS_HEADER_698		Heinlein Support Spamschutz Header-698 
+score HS_HEADER_698		7
+
+header HS_HEADER_699		Subject:=~/Bitte Sie Ihr Konto aktualisieren/
+describe HS_HEADER_699		Heinlein Support Spamschutz Header-699 
+score HS_HEADER_699		7
+
+header HS_HEADER_700		Subject:=~/Admin update !/
+describe HS_HEADER_700		Heinlein Support Spamschutz Header-700 
+score HS_HEADER_700		5
+
+header HS_HEADER_701		Subject:=~/Your account will be blocked!/
+describe HS_HEADER_701		Heinlein Support Spamschutz Header-701 
+score HS_HEADER_701		4
+
+header HS_HEADER_702		Subject:=~/Erzielen Sie RIESIGE Profite mit dieser Schweizer Methode!/
+describe HS_HEADER_702		Heinlein Support Spamschutz Header-702 
+score HS_HEADER_702		5
+
+header HS_HEADER_703		From:=~/.*sv-lindemann.de/
+describe HS_HEADER_703		Heinlein Support Spamschutz Header-703 
+score HS_HEADER_703		-6
+
+header HS_HEADER_704		Received:=~/.*server.*\.zmaximum\.ru/
+describe HS_HEADER_704		Heinlein Support Spamschutz Header-704 
+score HS_HEADER_704		7
+
+header HS_HEADER_705		Received:=~/.*news-found\.com/
+describe HS_HEADER_705		Heinlein Support Spamschutz Header-705 Spam
+score HS_HEADER_705		8
+
+header HS_HEADER_706		From:=~/.*\@hawaii-h\.com/
+describe HS_HEADER_706		Heinlein Support Spamschutz Header-706 Spam
+score HS_HEADER_706		8
+
+header HS_HEADER_707		Subject:=~/Sparkasse Online-Banking Aktualisierung/
+describe HS_HEADER_707		Heinlein Support Spamschutz Header-707 
+score HS_HEADER_707		3
+
+header HS_HEADER_708		Subject:=~/Wie man mit einer Schweizer Methode reich wird/
+describe HS_HEADER_708		Heinlein Support Spamschutz Header-708 Spam
+score HS_HEADER_708		5
+
+header HS_HEADER_709		Subject:=~/Best.tigung Ihrer Zahlung an PornHub\.com Limited/
+describe HS_HEADER_709		Heinlein Support Spamschutz Header-709 Spam
+score HS_HEADER_709		5
+
+header HS_HEADER_711		X-PHP-Script:=~/^chickenintheouthouse\.com/
+describe HS_HEADER_711		Heinlein Support Spamschutz Header-711 Phishing
+score HS_HEADER_711		3
+
+header HS_HEADER_713		From:=~/.*\@duckfishelectronics\.com/
+describe HS_HEADER_713		Heinlein Support Spamschutz Header-713 Spam
+score HS_HEADER_713		5
+
+header HS_HEADER_714		From:=~/^.*sslukaff\@embarqmail\.com/
+describe HS_HEADER_714		Heinlein Support Spamschutz Header-714 Phishing
+score HS_HEADER_714		8
+
+header HS_HEADER_717		From:=~/LUEG-SCHUTZ\@gmx.ch/
+describe HS_HEADER_717		Heinlein Support Spamschutz Header-717 Spam
+score HS_HEADER_717		8
+
+header HS_HEADER_719		From:=~/sky\.finance6\@gmail\.com/	
+describe HS_HEADER_719		Heinlein Support Spamschutz Header-719 
+score HS_HEADER_719		5
+
+header HS_HEADER_720		Subject:=~/W=C3=A4hlen_Sie_Ihre_GL=C3=9CCKSZAHL_und_gewinnen_Sie/
+describe HS_HEADER_720		Heinlein Support Spamschutz Header-720 Spam
+score HS_HEADER_720		5
+
+header HS_HEADER_721		From:=~/Taschenalkotester.*/
+describe HS_HEADER_721		Heinlein Support Spamschutz Header-721 
+score HS_HEADER_721		5
+
+header HS_HEADER_722		Subject:=~/Dominic Newsletter von Ihrer Online-Apo-th-eke/
+describe HS_HEADER_722		Heinlein Support Spamschutz Header-722 
+score HS_HEADER_722		7
+
+header HS_HEADER_723		Subject:=~/Wichtige Mitteilung/
+describe HS_HEADER_723		Heinlein Support Spamschutz Header-723 
+score HS_HEADER_723		5
+
+header HS_HEADER_724		Subject:=~/Checkout the latest Funeral Insurance Options/
+describe HS_HEADER_724		Heinlein Support Spamschutz Header-724 
+score HS_HEADER_724		5
+
+header HS_HEADER_725		Subject:=~/Increase your income significantly/
+describe HS_HEADER_725		Heinlein Support Spamschutz Header-725 
+score HS_HEADER_725		5
+
+header HS_HEADER_726		From:=~ /postar1\@coolschrank1.info/
+describe HS_HEADER_726		Heinlein Support Spamschutz Header-726 
+score HS_HEADER_726		6
+
+header HS_HEADER_727		From:=~/Stellvertretender Rechtsanwalt Pay Online AG/
+describe HS_HEADER_727		Heinlein Support Spamschutz Header-727 Phishing
+score HS_HEADER_727		2
+
+header HS_HEADER_728		X-Source-Args:=~/\/home4\/paduwork\/public_html\/pgdeptcompscguk.com\/ravi\/autoconf.php/
+describe HS_HEADER_728		Heinlein Support Spamschutz Header-728 Phishing
+score HS_HEADER_728		4
+
+header HS_HEADER_729		X-Source-Dir:=~/precisetechnosoft\.com\:\/public_html\/pgdeptcompscguk\.com\/ravi/
+describe HS_HEADER_729		Heinlein Support Spamschutz Header-729 Phishing
+score HS_HEADER_729		3
+
+header HS_HEADER_730		Subject:=~ / =.iso-8859-1.B.aXRAb3BlbnN5bmVyZ3kuY29tIGZpbmRlIGRlaW5lIEFmZuRyZQ==.=/
+describe HS_HEADER_730		Heinlein Support Spamschutz Header-730 
+score HS_HEADER_730		5
+
+header HS_HEADER_731		From:=~/"Apple store" \<email\@bbox\.fr\>/
+describe HS_HEADER_731		Heinlein Support Spamschutz Header-731 
+score HS_HEADER_731		5
+
+header HS_HEADER_732		Subject:=~/Please\, I am Barr Issac William*/
+describe HS_HEADER_732		Heinlein Support Spamschutz Header-732 Spam
+score HS_HEADER_732		5
+
+header HS_HEADER_733		From:=~/.*paypal.* .*\@mailbox.org/
+describe HS_HEADER_733		Heinlein Support Spamschutz Header-733 Paypal Phishing
+score HS_HEADER_733		10
+
+header HS_HEADER_734		Subject:=~/Projektfinanzierung Programm nach Germany/
+describe HS_HEADER_734		Heinlein Support Spamschutz Header-734 Spam
+score HS_HEADER_734		5
+
+header HS_HEADER_735		Subject:=~/^.*variety of sports equipment/
+describe HS_HEADER_735		Heinlein Support Spamschutz Header-735 Spam
+score HS_HEADER_735		8
+
+header HS_HEADER_736		Subject:=~/^.*Ihr Abonnement whatsapp Ihr Konto gesperrt wird/
+describe HS_HEADER_736		Heinlein Support Spamschutz Header-736 Phising
+score HS_HEADER_736		8
+
+header HS_HEADER_737		Subject:=~/^.*RE\: Soll ich Ihres einen anderen geben\?/
+describe HS_HEADER_737		Heinlein Support Spamschutz Header-737 Spam
+score HS_HEADER_737		6
+
+header HS_HEADER_739		Message-id:=~/^.*REYNALDOPC[a-z0-9]{32}\@ReynaldoPC/
+describe HS_HEADER_739		Heinlein Support Spamschutz Header-739 
+score HS_HEADER_739		16
+
+header HS_HEADER_740		Message-id:=~/^.*VULTRGUEST[a-z0-9]{32}\@vulturguest/
+describe HS_HEADER_740		Heinlein Support Spamschutz Header-740 
+score HS_HEADER_740		16
+
+header HS_HEADER_741		Subject:=~/^Die besten Schnappchen im Sommer 2016!/
+describe HS_HEADER_741		Heinlein Support Spamschutz Header-741 Spam
+score HS_HEADER_741		5
+
+header HS_HEADER_742		Message-id:=~/^.*VULTRGUEST[a-z0-9]{32}\@vultrguest/
+
+describe HS_HEADER_742		Heinlein Support Spamschutz Header-742 
+score HS_HEADER_742		16
+
+header HS_HEADER_743		From:=~/^.*\@aktion05.xyz/
+describe HS_HEADER_743		Heinlein Support Spamschutz Header-743 Spam
+score HS_HEADER_743		5
+
+header HS_HEADER_744		Subject:=~/Psychologe Entdeckt Abnehmautomatismus im Gehirn/
+describe HS_HEADER_744		Heinlein Support Spamschutz Header-744 Spam
+score HS_HEADER_744		5
+
+header HS_HEADER_745		Subject:=~/Papierlose Rechlung.*/
+describe HS_HEADER_745		Heinlein Support Spamschutz Header-745 Spam
+score HS_HEADER_745		5
+
+header HS_HEADER_746		X-PHP-Originating-Script:=~ /.*eval\(\)\'d code.*/
+describe HS_HEADER_746		Heinlein Support Spamschutz Header-746 Spam
+score HS_HEADER_746		2
+
+header HS_HEADER_747		X-PHP-Script:=~ /.*eval\(\)\'d code.*/
+describe HS_HEADER_747		Heinlein Support Spamschutz Header-747 Spam
+score HS_HEADER_747		5
+
+header HS_HEADER_748		Subject:=~/^.*Wirkstoffen in einer Kombipackung fur Sparpreis.*/
+describe HS_HEADER_748		Heinlein Support Spamschutz Header-748 
+score HS_HEADER_748		8
+
+header HS_HEADER_749		Subject:=~/^.*Potenzmittel online kaufen/
+describe HS_HEADER_749		Heinlein Support Spamschutz Header-749 
+score HS_HEADER_749		8
+
+header HS_HEADER_750		From:=~/^.*gfgt.com.*/
+describe HS_HEADER_750		Heinlein Support Spamschutz Header-750 
+score HS_HEADER_750		0.5
+
+header HS_HEADER_751		X-Mailer:=~/Foxmail 6, 10, 201, 20 [cn]/
+describe HS_HEADER_751		Heinlein Support Spamschutz Header-751 
+score HS_HEADER_751		0.5
+
+header HS_HEADER_752		Subject:=~/Re-validate your mailbox/
+describe HS_HEADER_752		Heinlein Support Spamschutz Header-752 Phishing
+score HS_HEADER_752		6
+
+header HS_HEADER_753		From:=~/shirinkarryeva.mail.ru/
+describe HS_HEADER_753		Heinlein Support Spamschutz Header-753 
+score HS_HEADER_753		5
+
+header HS_HEADER_754		Subject:=~/Re: Unglaublich wie lange ich jetzt Durchhalten kann/
+describe HS_HEADER_754		Heinlein Support Spamschutz Header-754 
+score HS_HEADER_754		5
+
+header HS_HEADER_755		To:=~/^x$/
+describe HS_HEADER_755		Heinlein Support Spamschutz Header-755 
+score HS_HEADER_755		1
+
+header HS_HEADER_756		Message-ID:=~/<2016__________________mail@*/
+describe HS_HEADER_756		Heinlein Support Spamschutz Header-756 
+score HS_HEADER_756		1
+
+header HS_HEADER_757		Received:=~/by mail.superdigi.de/
+describe HS_HEADER_757		Heinlein Support Spamschutz Header-757 Spam
+score HS_HEADER_757		5
+
+header HS_HEADER_758		From:=~/From: Bodo Schlecht.*info\@superdigi.org/
+describe HS_HEADER_758		Heinlein Support Spamschutz Header-758 Spam
+score HS_HEADER_758		5
+
+header HS_HEADER_759		Subject:=~/Our_girls_are_missing_man/
+describe HS_HEADER_759		Heinlein Support Spamschutz Header-759 Spam
+score HS_HEADER_759		5
+
+header HS_HEADER_760		Subject:=~/Datenbank-E-Mail in wenigen Minuten/
+describe HS_HEADER_760		Heinlein Support Spamschutz Header-760 Spam
+score HS_HEADER_760		2
+
+header HS_HEADER_761		Subject:=~/Kontaktdatenbanken in wenigen Minuten/
+describe HS_HEADER_761		Heinlein Support Spamschutz Header-761 Spam
+score HS_HEADER_761		2
+
+header HS_HEADER_764		From:=~/From: Stellvertretender Rechtsanwalt Amazon AG <anwalt\@ebay.de>/
+describe HS_HEADER_764		Heinlein Support Spamschutz Header-764 Phishing
+score HS_HEADER_764		5
+
+header HS_HEADER_765		Subject:=~/Ihre neue Heizung: Kostenlos dank staatlicher Förderung/
+describe HS_HEADER_765		Heinlein Support Spamschutz Header-765 Spam
+score HS_HEADER_765		5
+
+header HS_HEADER_766		From:=~/Mailbox Service.*\@mail.ru/
+describe HS_HEADER_766		Heinlein Support Spamschutz Header-766 
+score HS_HEADER_766		5
+
+header HS_HEADER_767		Subject:=~/MAILBOX WARNING: Account Closure/
+describe HS_HEADER_767		Heinlein Support Spamschutz Header-767 Phishing
+score HS_HEADER_767		7
+
+header HS_HEADER_768		Subject:=~/Facebook 2017 - Mehr Umsatz zum halben Preis/
+describe HS_HEADER_768		Heinlein Support Spamschutz Header-768 Spam
+score HS_HEADER_768		5
+
+header HS_HEADER_769		From:=~/Facebook 2017/
+describe HS_HEADER_769		Heinlein Support Spamschutz Header-769 Spam
+score HS_HEADER_769		5
+
+header HS_HEADER_770		From:=~/Pillenversand/
+describe HS_HEADER_770		Heinlein Support Spamschutz Header-770 SPAM
+score HS_HEADER_770		5
+
+header HS_HEADER_771		Subject=~/Roboter-Koffer die Sachen tragt/
+describe HS_HEADER_771		Heinlein Support Spamschutz Header-771 SPAM
+score HS_HEADER_771		5
+
+header HS_HEADER_772		From:=~/.*services paypal.* .*\@mailbox.org/
+describe HS_HEADER_772		Heinlein Support Spamschutz Header-772 Spam
+score HS_HEADER_772		10
+
+header HS_HEADER_773		From:=~/.*\@binarysercretsrevealed.com/
+describe HS_HEADER_773		Heinlein Support Spamschutz Header-773 Spam
+score HS_HEADER_773		4
+
+header HS_HEADER_774		From:=~/.*\@signal-verify.com/
+describe HS_HEADER_774		Heinlein Support Spamschutz Header-774 Spam
+score HS_HEADER_774		4
+
+header HS_HEADER_775		From:=~/.*\@gute-tarife.online/
+describe HS_HEADER_775		Heinlein Support Spamschutz Header-775 Spam
+score HS_HEADER_775		5
+
+header HS_HEADER_776		From:=~/.*\@uebersicht-?tarife201.\.org/
+describe HS_HEADER_776		Heinlein Support Spamschutz Header-776 Spam
+score HS_HEADER_776		5
+
+header HS_HEADER_777		From:=~/Pillsgeneric/
+describe HS_HEADER_777		Heinlein Support Spamschutz Header-777 Spam
+score HS_HEADER_777		5
+
+header HS_HEADER_778		Subject:=~/Super preise/
+describe HS_HEADER_778		Heinlein Support Spamschutz Header-778 Spam
+score HS_HEADER_778		1
+
+header HS_HEADER_779		From:=~/.*\@gutetarife\.online/
+describe HS_HEADER_779		Heinlein Support Spamschutz Header-779 Spam
+score HS_HEADER_779		5
+
+header HS_HEADER_780		From:=~/.*\@gutetarife\.org/
+describe HS_HEADER_780		Heinlein Support Spamschutz Header-780 Spam
+score HS_HEADER_780		5
+
+header HS_HEADER_781		From:=~/.*\@neueste-tarifauskunft\.info/
+describe HS_HEADER_781		Heinlein Support Spamschutz Header-781 
+score HS_HEADER_781		5
+
+header HS_HEADER_782		From:=~/.*\@suioues\.com/
+describe HS_HEADER_782		Heinlein Support Spamschutz Header-782 Spam
+score HS_HEADER_782		5
+
+header HS_HEADER_783		From:=~/.*\@netzsupport\.org/
+describe HS_HEADER_783		Heinlein Support Spamschutz Header-783 
+score HS_HEADER_783		5
+
+header HS_HEADER_784		From:=~/.*\@woodmebel\.co\.ua/
+describe HS_HEADER_784		Heinlein Support Spamschutz Header-784 Spam
+score HS_HEADER_784		5
+
+header HS_HEADER_785		Subject:=~/.*MAILBOX WARNING: Account Update.*/i
+describe HS_HEADER_785		Heinlein Support Spamschutz Header-785 Phishing
+score HS_HEADER_785		10
+
+header HS_HEADER_786		From:=~/.*\@aktueller-testsieger-2106\.org/
+describe HS_HEADER_786		Heinlein Support Spamschutz Header-786 Spam
+score HS_HEADER_786		5
+
+header HS_HEADER_787		From:=~/.*\@neuester-tarifvergleich.org/
+describe HS_HEADER_787		Heinlein Support Spamschutz Header-787 Spam
+score HS_HEADER_787		5
+
+header HS_HEADER_788		From:=~/.*\@beitrag-rabatt.online/
+describe HS_HEADER_788		Heinlein Support Spamschutz Header-788 Spam
+score HS_HEADER_788		5
+
+header HS_HEADER_789		From:=~/.*\@gewinnertarif.com/
+describe HS_HEADER_789		Heinlein Support Spamschutz Header-789 Spam
+score HS_HEADER_789		5
+
+header HS_HEADER_790		From:=~/.*\@gute-tarife2017.org/
+describe HS_HEADER_790		Heinlein Support Spamschutz Header-790 Spam
+score HS_HEADER_790		5
+
+header HS_HEADER_791		Subject:=~/MAILBOX WARNING: Account Update/
+describe HS_HEADER_791		Heinlein Support Spamschutz Header-791 
+score HS_HEADER_791		5
+
+header HS_HEADER_792		From:=~/.*\@server.servernation.org/
+describe HS_HEADER_792		Heinlein Support Spamschutz Header-792 Spam
+score HS_HEADER_792		5
+
+header HS_HEADER_793		From:=~/.*\@drdailyinbox.com/
+describe HS_HEADER_793		Heinlein Support Spamschutz Header-793 Spam
+score HS_HEADER_793		5
+
+header HS_HEADER_794		From:=~/.*\@memorialdelivery.com/
+describe HS_HEADER_794		Heinlein Support Spamschutz Header-794 Spam
+score HS_HEADER_794		5
+
+header HS_HEADER_795		From:=~/.*\@celebrationdisclose.com/
+describe HS_HEADER_795		Heinlein Support Spamschutz Header-795 Spam
+score HS_HEADER_795		5
+
+header HS_HEADER_796		From:=~/.*\sufferingoak.com/
+describe HS_HEADER_796		Heinlein Support Spamschutz Header-796 Spam
+score HS_HEADER_796		5
+
+header HS_HEADER_797		Subject:=~/Dringend: Ihr Konto wurde gesperrt - Ihre Mithilfe ist erforderlich!/i
+
+describe HS_HEADER_797		Heinlein Support Spamschutz Header-797 
+score HS_HEADER_797		5
+
+header HS_HEADER_798		From:=~/.*\@suioues.com/
+describe HS_HEADER_798		Heinlein Support Spamschutz Header-798 
+score HS_HEADER_798		5
+
+header HS_HEADER_799		From:=~/.*\@abandonedluxury.co/
+describe HS_HEADER_799		Heinlein Support Spamschutz Header-799 Spam
+score HS_HEADER_799		5
+
+header HS_HEADER_800		From:=~/.*\@binaryoptionsrobotmails.com/
+describe HS_HEADER_800		Heinlein Support Spamschutz Header-800 Spam
+score HS_HEADER_800		5
+
+header HS_HEADER_801		From:=~/.*\@privilegepound.com/
+describe HS_HEADER_801		Heinlein Support Spamschutz Header-801 Spam
+score HS_HEADER_801		5
+
+header HS_HEADER_802		From:=~/.*\@grindoccasion.com/
+describe HS_HEADER_802		Heinlein Support Spamschutz Header-802 Spam
+score HS_HEADER_802		5
+
+header HS_HEADER_803		From:=~/.*\@fozzystyle.de/
+describe HS_HEADER_803		Heinlein Support Spamschutz Header-803 Phishing
+score HS_HEADER_803		5
+
+header HS_HEADER_804		Subject:=~/Re:1 ungewöhnlicher Tipp für einen flachen Bauch…/i
+describe HS_HEADER_804		Heinlein Support Spamschutz Header-804 Spam
+score HS_HEADER_804		5
+
+header HS_HEADER_805		From:=~/.*\@news-mailer.eu/
+describe HS_HEADER_805		Heinlein Support Spamschutz Header-805 Spam
+score HS_HEADER_805		5
+
+header HS_HEADER_806		From:=~/docyrekyuguia\@mail.ru/i
+describe HS_HEADER_806		Heinlein Support Spamschutz Header-806 Spam
+score HS_HEADER_806		5
+
+header HS_HEADER_807		From:=~/.*\@accountreg.com/
+describe HS_HEADER_807		Heinlein Support Spamschutz Header-807 Spam
+score HS_HEADER_807		5
+
+header HS_HEADER_808		From:=~/.*\@neuestetarif-news.org/
+describe HS_HEADER_808		Heinlein Support Spamschutz Header-808 Spam
+score HS_HEADER_808		5
+
+header HS_HEADER_809		From:=~/.*\@tarif-?verlaengert.(org|info)/
+describe HS_HEADER_809		Heinlein Support Spamschutz Header-809 Spam
+score HS_HEADER_809		5
+
+header HS_HEADER_810		From:=~/.*\@tarifinfo-?20...(com|org)/
+describe HS_HEADER_810		Heinlein Support Spamschutz Header-810 Spam
+score HS_HEADER_810		5
+
+header HS_HEADER_811		From:=~/.*\@paraded.eu/
+describe HS_HEADER_811		Heinlein Support Spamschutz Header-811 Spam
+score HS_HEADER_811		5
+
+header HS_HEADER_812		From:=~/.*\@schnellervergleich.org/
+describe HS_HEADER_812		Heinlein Support Spamschutz Header-812 Spam
+score HS_HEADER_812		5
+
+header HS_HEADER_813		From:=~/.*\@scheepsklokken.nl/
+describe HS_HEADER_813		Heinlein Support Spamschutz Header-813 Spam
+score HS_HEADER_813		5
+
+header HS_HEADER_814		Subject:=~/Bitte bestätigen Sie Ihren Einkauf!/i
+describe HS_HEADER_814		Heinlein Support Spamschutz Header-814 
+score HS_HEADER_814		4
+
+header HS_HEADER_815		From:=~/.*\@siegertarif-?bhv.(org|net)/
+describe HS_HEADER_815		Heinlein Support Spamschutz Header-815 Spam
+score HS_HEADER_815		5
+
+header HS_HEADER_816		From:=~/.*\@pitchter.com/
+describe HS_HEADER_816		Heinlein Support Spamschutz Header-816 Spam
+score HS_HEADER_816		5
+
+header HS_HEADER_817		From:=~/.*\@qbcoaches.com/
+describe HS_HEADER_817		Heinlein Support Spamschutz Header-817 Spam
+score HS_HEADER_817		5
+
+header HS_HEADER_818		From:=~/.*\@neuerpkvtarif-?20..?.com/
+describe HS_HEADER_818		Heinlein Support Spamschutz Header-818 Spam
+score HS_HEADER_818		5
+
+header HS_HEADER_819		From:=~/.*\@flu.cc/
+describe HS_HEADER_819		Heinlein Support Spamschutz Header-819 Spam
+score HS_HEADER_819		4
+
+header HS_HEADER_820		From:=~/.*\@pkv-?ueberblick.(com|org)/
+describe HS_HEADER_820		Heinlein Support Spamschutz Header-820 Spam
+score HS_HEADER_820		5
+
+header HS_HEADER_821		From:=~/.*\@guenstiger-?pkvtarif.com/
+describe HS_HEADER_821		Heinlein Support Spamschutz Header-821 Spam
+score HS_HEADER_821		5
+
+header HS_HEADER_822		From:=~/.*\@tarif-?neu.org/
+describe HS_HEADER_822		Heinlein Support Spamschutz Header-822 Spam
+score HS_HEADER_822		5
+
+header HS_HEADER_823		From:=~/.*\@onedrive.biz.ua/
+describe HS_HEADER_823		Heinlein Support Spamschutz Header-823 Spam
+score HS_HEADER_823		5
+
+header HS_HEADER_824		From:=~/.*\@dvmhoevestein.nl/
+describe HS_HEADER_824		Heinlein Support Spamschutz Header-824 Spam
+score HS_HEADER_824		5
+
+header HS_HEADER_825		From:=~/.*\@ihr-?tarif-?test.net/
+describe HS_HEADER_825		Heinlein Support Spamschutz Header-825 Spam
+score HS_HEADER_825		5
+
+header HS_HEADER_826		From:=~/.*\@kosten-?minimieren.(net|org)/
+describe HS_HEADER_826		Heinlein Support Spamschutz Header-826 Spam
+score HS_HEADER_826		5
+
+header HS_HEADER_827		From:=~/.*\@pkv-?satzsenken.com/
+describe HS_HEADER_827		Heinlein Support Spamschutz Header-827 Spam
+score HS_HEADER_827		5
+
+header HS_HEADER_828		From:=~/.*\@beitrags-?senkung.org/
+describe HS_HEADER_828		Heinlein Support Spamschutz Header-828 Spam
+score HS_HEADER_828		5
+
+header HS_HEADER_829		From:=~/.*\@papal.de/
+describe HS_HEADER_829		Heinlein Support Spamschutz Header-829 
+score HS_HEADER_829		5
+
+header HS_HEADER_830		From:=~/.*\@neueversicherung-?20..\.org/
+describe HS_HEADER_830		Heinlein Support Spamschutz Header-830 Spam
+score HS_HEADER_830		5
+
+header HS_HEADER_831		Subject:=~/Re: Unser Inkassoauftrag/
+describe HS_HEADER_831		Heinlein Support Spamschutz Header-831 Spam
+score HS_HEADER_831		4
+
+header HS_HEADER_832		From:=~/.*\@supertarif.org/
+describe HS_HEADER_832		Heinlein Support Spamschutz Header-832 Spam
+score HS_HEADER_832		5
+
+header HS_HEADER_833		From:=~/.*\@ertimethe.co.ua/
+describe HS_HEADER_833		Heinlein Support Spamschutz Header-833 
+score HS_HEADER_833		5
+
+header HS_HEADER_834		From:=~/.*\@tarife-?uebersicht.org/
+describe HS_HEADER_834		Heinlein Support Spamschutz Header-834 
+score HS_HEADER_834		5
+
+header HS_HEADER_835		From:=~/.*\@onetime.biz.ua/
+describe HS_HEADER_835		Heinlein Support Spamschutz Header-835 Spam
+score HS_HEADER_835		5
+
+header HS_HEADER_836		From:=~/.*\@folineper.co.ua/
+describe HS_HEADER_836		Heinlein Support Spamschutz Header-836 Spam
+score HS_HEADER_836		5
+
+header HS_HEADER_838		Thread-Topic:=~/Verify your Apple ID/
+describe HS_HEADER_838		Heinlein Support Spamschutz Header-838 Phishing
+score HS_HEADER_838		5
+
+header HS_HEADER_839		From:=~/.*AppIe ID.*kitty.*\@mailbox.org/
+
+describe HS_HEADER_839		Heinlein Support Spamschutz Header-839 Phishing
+score HS_HEADER_839		5
+
+header HS_HEADER_840		From:=~/.*\@buv-?tarif.net/
+describe HS_HEADER_840		Heinlein Support Spamschutz Header-840 Spam
+score HS_HEADER_840		5
+
+header HS_HEADER_841		Subject:=~/Payment Information/
+describe HS_HEADER_841		Heinlein Support Spamschutz Header-841 Malware
+score HS_HEADER_841		2
+
+header HS_HEADER_842		From:=~/.*\@love-?no-?limits.com/
+describe HS_HEADER_842		Heinlein Support Spamschutz Header-842 Spam
+score HS_HEADER_842		5
+
+header HS_HEADER_843		From:=~/.*\@rlv-?tarife.net/
+describe HS_HEADER_843		Heinlein Support Spamschutz Header-843 Spam
+score HS_HEADER_843		5
+
+header HS_HEADER_844		From:=~/.*\@pflegezusatz-?tarife.org/
+describe HS_HEADER_844		Heinlein Support Spamschutz Header-844 Spam
+score HS_HEADER_844		5
+
+header HS_HEADER_845		From:=~/.*\@pkv-?tarife-?2017.org/
+describe HS_HEADER_845		Heinlein Support Spamschutz Header-845 Spam
+score HS_HEADER_845		5
+
+header HS_HEADER_846		From:=~/.*\@sieger-?tarif-?pkv.org/
+describe HS_HEADER_846		Heinlein Support Spamschutz Header-846 Spam
+score HS_HEADER_846		5
+
+header HS_HEADER_847		From:=~/.*\@optionensystem.com/
+describe HS_HEADER_847		Heinlein Support Spamschutz Header-847 Spam
+score HS_HEADER_847		5
+
+header HS_HEADER_848		From:=~/.*\@dynamictrainingstudio.com/
+describe HS_HEADER_848		Heinlein Support Spamschutz Header-848 
+score HS_HEADER_848		5
+
+header HS_HEADER_849		From:=~/.*\@super-?versicherung.net/
+describe HS_HEADER_849		Heinlein Support Spamschutz Header-849 Spam
+score HS_HEADER_849		5
+
+header HS_HEADER_850		From:=~/.*\@buv-?ueberblick.net/
+describe HS_HEADER_850		Heinlein Support Spamschutz Header-850 Spam
+score HS_HEADER_850		5
+
+header HS_HEADER_851		From:=~/.*\@guenstige-?bhv.org/
+describe HS_HEADER_851		Heinlein Support Spamschutz Header-851 Spam
+score HS_HEADER_851		5
+
+header HS_HEADER_852		From:=~/.*\@versicherungen-?getestet.com/
+describe HS_HEADER_852		Heinlein Support Spamschutz Header-852 Spam
+score HS_HEADER_852		5
+
+header HS_HEADER_853		From:=~/.*\@preiswerteversicherung.net/
+describe HS_HEADER_853		Heinlein Support Spamschutz Header-853 Spam
+score HS_HEADER_853		5
+
+header HS_HEADER_854		From:=~/.*\@bewaldete.loan/
+describe HS_HEADER_854		Heinlein Support Spamschutz Header-854 Spam
+score HS_HEADER_854		5
+
+header HS_HEADER_855		From:=~/.*\@massiger.trade/
+describe HS_HEADER_855		Heinlein Support Spamschutz Header-855 Spam
+score HS_HEADER_855		5
+
+header HS_HEADER_856		From:=~/.*\@schwerer.loan/
+describe HS_HEADER_856		Heinlein Support Spamschutz Header-856 Spam
+score HS_HEADER_856		5
+
+header HS_HEADER_857		From:=~/.*\@abgeflacht.win/
+describe HS_HEADER_857		Heinlein Support Spamschutz Header-857 Spam
+score HS_HEADER_857		5
+
+header HS_HEADER_858		From:=~/.*\@(bewohnen|selbst)\.accountant/
+describe HS_HEADER_858		Heinlein Support Spamschutz Header-858 Spam
+score HS_HEADER_858		5
+
+header HS_HEADER_859		From:=~/.*\@erreichen.top/
+describe HS_HEADER_859		Heinlein Support Spamschutz Header-859 Spam
+score HS_HEADER_859		5
+
+header HS_HEADER_860		From:=~/.*\@drinamedia.com/
+describe HS_HEADER_860		Heinlein Support Spamschutz Header-860 Spam
+score HS_HEADER_860		5
+
+header HS_HEADER_862		From:=~/.*\@neueste-?tarifnews.org/
+describe HS_HEADER_862		Heinlein Support Spamschutz Header-862 Spam
+score HS_HEADER_862		5
+
+header HS_HEADER_863		From:=~/.*\@bhv-?testsieger.org/
+describe HS_HEADER_863		Heinlein Support Spamschutz Header-863 Sapm
+score HS_HEADER_863		5
+
+header HS_HEADER_864		From:=~/.*\@beste-rlv.com/
+describe HS_HEADER_864		Heinlein Support Spamschutz Header-864 Spam
+score HS_HEADER_864		5
+
+header HS_HEADER_865		From:=~/.*\@rlv-news.net/
+describe HS_HEADER_865		Heinlein Support Spamschutz Header-865 Spam
+score HS_HEADER_865		5
+
+header HS_HEADER_866		From:=~/.*\@bhv-ueberblick.com/
+describe HS_HEADER_866		Heinlein Support Spamschutz Header-866 Spam
+score HS_HEADER_866		5
+
+header HS_HEADER_867		From:=~/.*\@qwdre.xyz/
+describe HS_HEADER_867		Heinlein Support Spamschutz Header-867 Spam
+score HS_HEADER_867		5
+
+header HS_HEADER_868		From:=~/.*\@biznews247.co/
+describe HS_HEADER_868		Heinlein Support Spamschutz Header-868 Spam
+score HS_HEADER_868		5
+
+header HS_HEADER_869		From:=~/.*\@versicherung-?tarife.org/
+describe HS_HEADER_869		Heinlein Support Spamschutz Header-869 Spam
+score HS_HEADER_869		5
+
+header HS_HEADER_870		From:=~/.*\@tarife-pkv.net/
+describe HS_HEADER_870		Heinlein Support Spamschutz Header-870 Spam
+score HS_HEADER_870		5
+
+header HS_HEADER_871		From:=~/.*\@siegertarif-?pkv.com/
+describe HS_HEADER_871		Heinlein Support Spamschutz Header-871 Spam
+score HS_HEADER_871		5
+
+header HS_HEADER_872		From:=~/.*\@tarifuebersicht-januar2017.info/
+describe HS_HEADER_872		Heinlein Support Spamschutz Header-872 Spam
+score HS_HEADER_872		5
+
+header HS_HEADER_873		From:=~/.*\@neuer(pkv|bhv)tarif.(com|online|org)/
+describe HS_HEADER_873		Heinlein Support Spamschutz Header-873 Spam
+score HS_HEADER_873		5
+
+header HS_HEADER_874		From:=~/.*\@neuertarifvergleich.net/
+describe HS_HEADER_874		Heinlein Support Spamschutz Header-874 Spam
+score HS_HEADER_874		5
+
+header HS_HEADER_875		From:=~/.*\@pflegezusatznews.net/
+describe HS_HEADER_875		Heinlein Support Spamschutz Header-875 Spam
+score HS_HEADER_875		5
+
+header HS_HEADER_876		From:=~/.*\@bhvaktionstarif.com/
+describe HS_HEADER_876		Heinlein Support Spamschutz Header-876 Spam
+score HS_HEADER_876		5
+
+header HS_HEADER_877		From:=~/.*\@pflegezusatz-tarife.(com|net)/
+describe HS_HEADER_877		Heinlein Support Spamschutz Header-877 Spam
+score HS_HEADER_877		5
+
+header HS_HEADER_878		From:=~/.*\@rosemount.pw/
+describe HS_HEADER_878		Heinlein Support Spamschutz Header-878 Spam
+score HS_HEADER_878		5
+
+header HS_HEADER_879		From:=~/.*\@divinprime.org/
+describe HS_HEADER_879		Heinlein Support Spamschutz Header-879 Spam
+score HS_HEADER_879		5
+
+header HS_HEADER_880		From:=~/.*\@geprueftetarife.com/
+describe HS_HEADER_880		Heinlein Support Spamschutz Header-880 Spam
+score HS_HEADER_880		5
+
+header HS_HEADER_881		From:=~/.*\@drinkingrecipes.com/
+describe HS_HEADER_881		Heinlein Support Spamschutz Header-881 Spam
+score HS_HEADER_881		5
+
+header HS_HEADER_882		Subject:=~/Read Now: Why this company.*s shares are guaranteed to soar next week./
+describe HS_HEADER_882		Heinlein Support Spamschutz Header-882 Spam
+score HS_HEADER_882		7
+
+header HS_HEADER_883		Subject:=~/This public company is being bought out. Read now to profit from it./
+describe HS_HEADER_883		Heinlein Support Spamschutz Header-883 Spam
+score HS_HEADER_883		7
+
+header HS_HEADER_884		From:=~/.*\@neue-pkvuebersicht.com/
+describe HS_HEADER_884		Heinlein Support Spamschutz Header-884 Spam
+score HS_HEADER_884		5
+
+header HS_HEADER_885		From:=~/.*\@bhv-uberblick.online/
+describe HS_HEADER_885		Heinlein Support Spamschutz Header-885 Spam
+score HS_HEADER_885		5
+
+header HS_HEADER_886		From:=~/.*\@besterpkvtarif.org/
+describe HS_HEADER_886		Heinlein Support Spamschutz Header-886 Spam
+score HS_HEADER_886		5
+
+header HS_HEADER_887		From:=~/.*\@pkvtariftestsieger.net/
+describe HS_HEADER_887		Heinlein Support Spamschutz Header-887 Spam
+score HS_HEADER_887		5
+
+header HS_HEADER_888		From:=~/.*\@super-bhvtarif.com/
+describe HS_HEADER_888		Heinlein Support Spamschutz Header-888 Spam
+score HS_HEADER_888		5
+
+header HS_HEADER_889		From:=~/.*\@bhvpruefen.net/
+describe HS_HEADER_889		Heinlein Support Spamschutz Header-889 Spam
+score HS_HEADER_889		5
+
+header HS_HEADER_890		From:=~/.*\@int(ł|l)\.p(α|a)yp(α|a)(ł|l).\.com.* .*\@.*/
+describe HS_HEADER_890		Heinlein Support Spamschutz Header-890 Paypal Phishing
+score HS_HEADER_890		10
+
+header HS_HEADER_891		From:=~/.*services\@intl.payp=CE=B1=C5=82.com.*/
+describe HS_HEADER_891		Heinlein Support Spamschutz Header-891 Paypal-Phishing
+score HS_HEADER_891		10
+
+header HS_HEADER_893		From:=~/.*\@buv-?testsieger.com/
+describe HS_HEADER_893		Heinlein Support Spamschutz Header-893 Spam
+score HS_HEADER_893		5
+
+header HS_HEADER_894		Subject:=~/MAILBOX FINAL WARNING: Account/
+describe HS_HEADER_894		Heinlein Support Spamschutz Header-894 Spam
+score HS_HEADER_894		5
+
+header HS_HEADER_895		From:=~/.*\@billiger.de.cc/
+describe HS_HEADER_895		Heinlein Support Spamschutz Header-895 Spam
+score HS_HEADER_895		6
+
+header HS_HEADER_896		From:=~/.*\@beratung-?vorsorge.org/
+describe HS_HEADER_896		Heinlein Support Spamschutz Header-896 Spam
+score HS_HEADER_896		5
+
+header HS_HEADER_897		From:=~/.*\@tarif-?neuheiten.com/
+describe HS_HEADER_897		Heinlein Support Spamschutz Header-897 Spam
+score HS_HEADER_897		5
+
+header HS_HEADER_898		From:=~ /.*\@bu-versicherung.co/
+describe HS_HEADER_898		Heinlein Support Spamschutz Header-898 Spam
+score HS_HEADER_898		5
+
+header HS_HEADER_899		Subject:=~ /Generika.*Rezept/i
+describe HS_HEADER_899		Heinlein Support Spamschutz Header-899 Spam
+score HS_HEADER_899		6
+
+header HS_HEADER_900		From:=~ /.*\@meine-buv.net/
+describe HS_HEADER_900		Heinlein Support Spamschutz Header-900 Spam
+score HS_HEADER_900		5
+
+header HS_HEADER_901		From:=~ /.*\@neuer-?bhv-?tarif.net/
+describe HS_HEADER_901		Heinlein Support Spamschutz Header-901 Spam
+score HS_HEADER_901		5
+
+header HS_HEADER_902		Subject:=~/Generika - schnell, sicher und ohne Rezept/
+describe HS_HEADER_902		Heinlein Support Spamschutz Header-902 Spam
+score HS_HEADER_902		7
+
+header HS_HEADER_903		From:=~/Generika Testpacket/
+describe HS_HEADER_903		Heinlein Support Spamschutz Header-903 Spam
+score HS_HEADER_903		3
+
+header HS_HEADER_904		Received:=~/.*from ...\.yandex\.ru \(unknown/
+describe HS_HEADER_904		Heinlein Support Spamschutz Header-904 Spam
+score HS_HEADER_904		5
+
+header HS_HEADER_905		Subject:=~/.*Security reasons : Account will be closed/
+describe HS_HEADER_905		Heinlein Support Spamschutz Header-905 Spam
+score HS_HEADER_905		5
+
+header HS_HEADER_906		Subject:=~/Produkten fur mannliche Gesundheit/
+describe HS_HEADER_906		Heinlein Support Spamschutz Header-906 Spam
+score HS_HEADER_906		7
+
+header HS_HEADER_909		Subject:=~/Seminar: \"Wie Real Estate zum Kaufen in.*/
+describe HS_HEADER_909		Heinlein Support Spamschutz Header-909 Spam
+score HS_HEADER_909		7
+
+header HS_HEADER_910		From:=~/Company-Premium-Outlet/
+describe HS_HEADER_910		Heinlein Support Spamschutz Header-910 Spam
+score HS_HEADER_910		3
+
+header HS_HEADER_911		Reply-To:=~/.*\@geldgeber.site/
+describe HS_HEADER_911		Heinlein Support Spamschutz Header-911 Spam
+score HS_HEADER_911		3
+
+header HS_HEADER_912		Reply-To:=~/.*\@zkillster.eu/
+describe HS_HEADER_912		Heinlein Support Spamschutz Header-912 Spam
+score HS_HEADER_912		3
+
+header HS_HEADER_913		Reply-To:=~/.*\@die-versicherungsvergleicher.com/
+describe HS_HEADER_913		Heinlein Support Spamschutz Header-913 Spam
+score HS_HEADER_913		3
+
+header HS_HEADER_914		Reply-To:=~/.*\@fb-starter-edition.com/
+describe HS_HEADER_914		Heinlein Support Spamschutz Header-914 Spam
+score HS_HEADER_914		3
+
+header HS_HEADER_915		Reply-To:=~/.*\@pzvtarif-testsieger.net/
+describe HS_HEADER_915		Heinlein Support Spamschutz Header-915 Spam
+score HS_HEADER_915		3
+
+header HS_HEADER_916		Reply-To:=~/.*\@aktuelles-angebot.net/
+describe HS_HEADER_916		Heinlein Support Spamschutz Header-916 Spam
+score HS_HEADER_916		3
+
+header HS_HEADER_917		Subject:=~/ist eine Korrekturhilfe für den großen Zeh/
+describe HS_HEADER_917		Heinlein Support Spamschutz Header-917 Spam
+score HS_HEADER_917		5
+
+header HS_HEADER_918		From:=~/Valgus Pro/
+describe HS_HEADER_918		Heinlein Support Spamschutz Header-918 Spam
+score HS_HEADER_918		5
+
+header HS_HEADER_919		Subject:=~/Ihre Automatische Kontoabbuchung/
+describe HS_HEADER_919		Heinlein Support Spamschutz Header-919 Spam
+score HS_HEADER_919		3
+
+header HS_HEADER_920		X-Authentication-Warning:=~/.*informix set sender to.*/
+describe HS_HEADER_920		Heinlein Support Spamschutz Header-920 Spam
+score HS_HEADER_920		3
+
+header HS_HEADER_921		Reply-To:=~/.*\@tech-center.com/
+describe HS_HEADER_921		Heinlein Support Spamschutz Header-921 Phishing
+score HS_HEADER_921		5
+
+header HS_HEADER_922		Subject:=~/Vertrauliche Beratung & neutrale Verpackung/
+describe HS_HEADER_922		Heinlein Support Spamschutz Header-922 Spam
+score HS_HEADER_922		5
+
+header HS_HEADER_923		From:=~/Original Markenmedikamente/
+describe HS_HEADER_923		Heinlein Support Spamschutz Header-923 Spam
+score HS_HEADER_923		5
+
+header HS_HEADER_924		Subject: =~ /Dieser eine Trick verbrennt 1kg Bauchfett über Nacht/
+describe HS_HEADER_924		Heinlein Support Spamschutz Header-924 Spam
+score HS_HEADER_924		5
+
+header HS_HEADER_925		From: =~ /Email Security Team/
+describe HS_HEADER_925		Heinlein Support Spamschutz Header-925 Phishing
+score HS_HEADER_925		2
+
+header HS_HEADER_926		Subject: =~ /Email Storage Alert/
+describe HS_HEADER_926		Heinlein Support Spamschutz Header-926 Pishing
+score HS_HEADER_926		3
+
+header HS_HEADER_927		From:=~/(Online Apotheke|Apotheke Online)/
+describe HS_HEADER_927		Heinlein Support Spamschutz Header-927 Spam
+score HS_HEADER_927		2
+
+header HS_HEADER_928		Subject:=~/ohne Rezept/
+describe HS_HEADER_928		Heinlein Support Spamschutz Header-928 Spam
+score HS_HEADER_928		2
+
+header HS_HEADER_929		Subject:=~/(Beste Qualität von Arzneimitteln|=?utf-8?B?QmVzdGUgUXVhbGl0w6R0IHZvbiBBcnpuZWltaXR0ZWxu?=)/
+describe HS_HEADER_929		Heinlein Support Spamschutz Header-929 Spam
+score HS_HEADER_929		4
+
+header HS_HEADER_938		X-Mailer-RecptId: =~ /3967954/
+describe HS_HEADER_938		Heinlein Support Spamschutz Header-938 Spam
+score HS_HEADER_938		3
+
+header HS_HEADER_941		X-Mailer-RecptId: =~ /5836551/
+describe HS_HEADER_941		Heinlein Support Spamschutz Header-941 Spam
+score HS_HEADER_941		3
+
+header HS_HEADER_944		X-Mailer-RecptId: =~ /4951278/
+describe HS_HEADER_944		Heinlein Support Spamschutz Header-944 Spam
+score HS_HEADER_944		3
+
+header HS_HEADER_947		X-Mailer-RecptId: =~ /11436443/
+describe HS_HEADER_947		Heinlein Support Spamschutz Header-947 Spam
+score HS_HEADER_947		3
+
+header HS_HEADER_952		Reply-To:=~/.*\@begindust.com/
+describe HS_HEADER_952		Heinlein Support Spamschutz Header-952 Spam
+score HS_HEADER_952		3
+
+header HS_HEADER_954		Reply-To:=~/.*\@besterzahnzusatztarif.com/
+describe HS_HEADER_954		Heinlein Support Spamschutz Header-954 Spam
+score HS_HEADER_954		3
+
+header HS_HEADER_956		Reply-To:=~/.*\@pflege-vorsorgen.com/
+describe HS_HEADER_956		Heinlein Support Spamschutz Header-956 Spam
+score HS_HEADER_956		3
+
+header HS_HEADER_959		Reply-To:=~/.*\@okustra.org/
+describe HS_HEADER_959		Heinlein Support Spamschutz Header-959 Spam
+score HS_HEADER_959		3
+
+header HS_HEADER_962		X-Mailer-RecptId: =~ /380018/
+describe HS_HEADER_962		Heinlein Support Spamschutz Header-962 Spam
+score HS_HEADER_962		5
+
+header HS_HEADER_965		X-Mailer-RecptId: =~ /32223912/
+describe HS_HEADER_965		Heinlein Support Spamschutz Header-965 Spam
+score HS_HEADER_965		5
+
+header HS_HEADER_968		Reply-To:=~/.*michaellandon128\@aol.com/
+describe HS_HEADER_968		Heinlein Support Spamschutz Header-968 Spam
+score HS_HEADER_968		5
+
+header HS_HEADER_969		X-Mailer-RecptId: =~ /5802621/
+describe HS_HEADER_969		Heinlein Support Spamschutz Header-969 Spam
+score HS_HEADER_969		5
+
+header HS_HEADER_970		X-Vjff-Customer-Uid: =~ /eg456mvl11f74/
+describe HS_HEADER_970		Heinlein Support Spamschutz Header-970 Spam
+score HS_HEADER_970		5
+
+header HS_HEADER_1004		Cc:=~/.*\@consultant.com/
+describe HS_HEADER_1004		Heinlein Support Spamschutz Header-1004 Phishing
+score HS_HEADER_1004		5
+
+header HS_HEADER_1007		Reply-To:=~/un334996\@gmail.com/
+describe HS_HEADER_1007		Heinlein Support Spamschutz Header-1007 Spam
+score HS_HEADER_1007		5
+
+header HS_HEADER_1010		X-Mailer-RecptId: =~ /6335407/
+describe HS_HEADER_1010		Heinlein Support Spamschutz Header-1010 Spam
+score HS_HEADER_1010		5
+
+header HS_HEADER_1012		X-Mailer-RecptId: =~ /860614/
+describe HS_HEADER_1012		Heinlein Support Spamschutz Header-1012 Spam
+score HS_HEADER_1012		5
+
+header HS_HEADER_1015		X-Mailer-RecptId: =~ /121947/
+describe HS_HEADER_1015		Heinlein Support Spamschutz Header-1015 Spam
+score HS_HEADER_1015		3
+
+header HS_HEADER_1018		X-Mailer-RecptId: =~ /12431/
+describe HS_HEADER_1018		Heinlein Support Spamschutz Header-1018 Spam
+score HS_HEADER_1018		3
+
+header HS_HEADER_1019		Subject: =~ /Best prices on Pills/
+describe HS_HEADER_1019		Heinlein Support Spamschutz Header-1019 Spam
+score HS_HEADER_1019		2
+
+header HS_HEADER_1020		From: =~ /Online Pharmacy/
+describe HS_HEADER_1020		Heinlein Support Spamschutz Header-1020 Spam
+score HS_HEADER_1020		2
+
+header HS_HEADER_1023		Subject: =~/Die Rechtsstaatlichkeit in der BRD ist dank Altparteien am Ende. Polizei in Erfurt empfiehlt die AfD/
+describe HS_HEADER_1023		Heinlein Support Spamschutz Header-1023 Spam
+score HS_HEADER_1023		15
+
+header HS_HEADER_1025		From: =~ /Administrator.*no-reply\@postmaster.net/
+describe HS_HEADER_1025		Heinlein Support Spamschutz Header-1025 Phishing
+score HS_HEADER_1025		10
+
+header HS_HEADER_1027		X-Mailer-RecptId: =~ /6617599/
+describe HS_HEADER_1027		Heinlein Support Spamschutz Header-1027 Spam
+score HS_HEADER_1027		5
+
+header HS_HEADER_1030		From:=~/.*\@multi-expo.eu/
+describe HS_HEADER_1030		Heinlein Support Spamschutz Header-1030 Spam
+score HS_HEADER_1030		5
+
+header HS_HEADER_1033		From:=~/.*\@spa-hotel.biz.ua/
+describe HS_HEADER_1033		Heinlein Support Spamschutz Header-1033 Spam
+score HS_HEADER_1033		5
+
+header HS_HEADER_1034		Subject:=~/Reite auf der Bitcoin Bitcoin Welle und verdiene/
+describe HS_HEADER_1034		Heinlein Support Spamschutz Header-1034 Spam
+score HS_HEADER_1034		10
+
+header HS_HEADER_1036		From:=~/.*\@monerio.co.ua/
+describe HS_HEADER_1036		Heinlein Support Spamschutz Header-1036 Spam
+score HS_HEADER_1036		5
+
+header HS_HEADER_1039		From:=~/.*\@tritor.co.ua/
+describe HS_HEADER_1039		Heinlein Support Spamschutz Header-1039 Spam
+score HS_HEADER_1039		5
+
+header HS_HEADER_1042		From:=~/.*\@vaviloner.co.ua/
+describe HS_HEADER_1042		Heinlein Support Spamschutz Header-1042 Spam
+score HS_HEADER_1042		5
+
+header HS_HEADER_1043		From:=~/.*\@toyomag.biz.ua/
+describe HS_HEADER_1043		Heinlein Support Spamschutz Header-1043 Spam
+score HS_HEADER_1043		5
+
+header HS_HEADER_1045		Subject:=~/E-Mail-Datenbank fürs Geschäft - DEUTSCHLAND/
+describe HS_HEADER_1045		Heinlein Support Spamschutz Header-1045 Spam
+score HS_HEADER_1045		5
+
+header HS_HEADER_1048		From:=~/.*noreply\@express-contacts.com/
+describe HS_HEADER_1048		Heinlein Support Spamschutz Header-1048 Spam
+score HS_HEADER_1048		5
+
+header HS_HEADER_1050		From:=~/.*\@hutorec.co.ua/
+describe HS_HEADER_1050		Heinlein Support Spamschutz Header-1050 Spam
+score HS_HEADER_1050		5
+
+header HS_HEADER_1051		Subject:=~/Was ist die Swiss Method?/
+describe HS_HEADER_1051		Heinlein Support Spamschutz Header-1051 Spam
+score HS_HEADER_1051		10
+
+header HS_HEADER_1053		From:=~/.*\@sofort-angebot.science/
+describe HS_HEADER_1053		Heinlein Support Spamschutz Header-1053 Spam
+score HS_HEADER_1053		8
+
+header HS_HEADER_1054		From:=~/.*\@united-software.online/
+describe HS_HEADER_1054		Heinlein Support Spamschutz Header-1054 Spam
+score HS_HEADER_1054		8
+
+header HS_HEADER_1055		From:=~/.*\@graspskillsagilepractitioner.com/
+describe HS_HEADER_1055		Heinlein Support Spamschutz Header-1055 Spam
+score HS_HEADER_1055		3
+
+header HS_HEADER_1057		From:=~/.*\@treeleaves.co/
+describe HS_HEADER_1057		Heinlein Support Spamschutz Header-1057 Spam
+score HS_HEADER_1057		3
+
+header HS_HEADER_1058		From:=~/.*\@alfahost.co.ua/
+describe HS_HEADER_1058		Heinlein Support Spamschutz Header-1058 Spam
+score HS_HEADER_1058		3
+
+header HS_HEADER_1059		From:=~/.*\@multi-expo.eu/
+describe HS_HEADER_1059		Heinlein Support Spamschutz Header-1059 Spam
+score HS_HEADER_1059		3
+
+header HS_HEADER_1060		Subject:=~/Schnelle Lieferung Tabletten/
+describe HS_HEADER_1060		Heinlein Support Spamschutz Header-1060 Spam
+score HS_HEADER_1060		5
+
+header HS_HEADER_1062		From:=~/.*Schnelle Lieferung Tabletten/
+describe HS_HEADER_1062		Heinlein Support Spamschutz Header-1062 Spam
+score HS_HEADER_1062		5
+
+header HS_HEADER_1064		Subject:=~/Kredit nach Bedarf/
+describe HS_HEADER_1064		Heinlein Support Spamschutz Header-1064 Spam
+score HS_HEADER_1064		5
+
+header HS_HEADER_1065		From:=~/.*KreditBank/
+describe HS_HEADER_1065		Heinlein Support Spamschutz Header-1065 Spam
+score HS_HEADER_1065		2
+
+header HS_HEADER_1068		Subject:=~/Potenzpillen mit der Lieferung/
+describe HS_HEADER_1068		Heinlein Support Spamschutz Header-1068 Spam
+score HS_HEADER_1068		5
+
+header HS_HEADER_1069		Subject:=~/Wir finanzieren Ihre Firma ohne Bank/
+describe HS_HEADER_1069		Heinlein Support Spamschutz Header-1069 Spam
+score HS_HEADER_1069		5
+
+header HS_HEADER_1071		Subject:=~/ist eingriffslose Entfettung vom Bauch und Seiten/
+describe HS_HEADER_1071		Heinlein Support Spamschutz Header-1071 Spam
+score HS_HEADER_1071		5
+
+header HS_HEADER_1072		Subject:=~/Sicherheit in Helligkeit/
+describe HS_HEADER_1072		Heinlein Support Spamschutz Header-1072 Spam
+score HS_HEADER_1072		5
+
+header HS_HEADER_1073		Subject:=~/=?utf-8?B?UG90ZW56bWl0dGVsIGbDvHIgTcOkbm5lcg==?=/
+describe HS_HEADER_1073		Heinlein Support Spamschutz Header-1073 Spam
+score HS_HEADER_1073		5
+
+header HS_HEADER_1076		Sender:=~/.*mailbizd.xyz/
+describe HS_HEADER_1076		Heinlein Support Spamschutz Header-1076 Spam
+score HS_HEADER_1076		5
+
+header HS_HEADER_1077		Sender:=~/.*isnet.net.tr/
+describe HS_HEADER_1077		Heinlein Support Spamschutz Header-1077 Spam
+score HS_HEADER_1077		5
+
+header HS_HEADER_1078		From:=~/.*\@visonfolk.com/
+describe HS_HEADER_1078		Heinlein Support Spamschutz Header-1078 Spam
+score HS_HEADER_1078		5
+
+header HS_HEADER_1081		From:=~/.*\@sunrise.co.ua/
+describe HS_HEADER_1081		Heinlein Support Spamschutz Header-1081 
+score HS_HEADER_1081		5
+
+header HS_HEADER_1083		From:=~/.*\@winderom.co.ua/
+describe HS_HEADER_1083		Heinlein Support Spamschutz Header-1083 
+score HS_HEADER_1083		5
+
+header HS_HEADER_1084		X-OriginalSender:=~/mail.deutschland.r\@naturvalencia.eu/
+describe HS_HEADER_1084		Heinlein Support Spamschutz Header-1084 Spam
+score HS_HEADER_1084		5
+
+header HS_HEADER_1086		Subject:=~/Betrifft: Endlich sind sie hier/
+describe HS_HEADER_1086		Heinlein Support Spamschutz Header-1086 Spam
+score HS_HEADER_1086		1
+
+header HS_HEADER_1088		X-Mailer-RecptId: =~ /5522815/
+describe HS_HEADER_1088		Heinlein Support Spamschutz Header-1088 Spam
+score HS_HEADER_1088		5
+
+header HS_HEADER_1090		Message-ID:=~/.*tipptoplaptop.activehosted.com.*/
+describe HS_HEADER_1090		Heinlein Support Spamschutz Header-1090 Spam
+score HS_HEADER_1090		8
+
+header HS_HEADER_1091		From:=~/.*\@valatel.com.*/
+describe HS_HEADER_1091		Heinlein Support Spamschutz Header-1091 Spam
+score HS_HEADER_1091		3
+
+header HS_HEADER_1094		Subject:=~/Dringend! Sichern Sie Ihre E-Mail-Adresse/
+describe HS_HEADER_1094		Heinlein Support Spamschutz Header-1094 Phishing
+score HS_HEADER_1094		3
+
+header HS_HEADER_1095		From:=~/.*\@micromarineindia.com.*/
+describe HS_HEADER_1095		Heinlein Support Spamschutz Header-1095 Spam
+score HS_HEADER_1095		3
+
+header HS_HEADER_1098		List-Unsubscribe:=~/.*winzer.co.ua\/ru/
+describe HS_HEADER_1098		Heinlein Support Spamschutz Header-1098 Spam
+score HS_HEADER_1098		2
+
+header HS_HEADER_1101		From:=~/.*\@winzer.co.ua.*/
+describe HS_HEADER_1101		Heinlein Support Spamschutz Header-1101 Spam
+score HS_HEADER_1101		2
+
+header HS_HEADER_1103		Message-ID:=~/.*voros.dima.hu.*/
+describe HS_HEADER_1103		Heinlein Support Spamschutz Header-1103 Spam
+score HS_HEADER_1103		8
+
+header HS_HEADER_1106		X-Mailgun-Sending-Ip: =~ /104.130.96.11/
+describe HS_HEADER_1106		Heinlein Support Spamschutz Header-1106 Phishing
+score HS_HEADER_1106		5
+
+header HS_HEADER_1108		Return-Path:=~/.*route66logocoupon\.com\@maildedi2\.com.*/
+describe HS_HEADER_1108		Heinlein Support Spamschutz Header-1108 Spam
+score HS_HEADER_1108		3
+
+header HS_HEADER_1109		Return-Path:=~/.*videoanimationltd\.com\@maildedi2\.com.*/
+describe HS_HEADER_1109		Heinlein Support Spamschutz Header-1109 Spam
+score HS_HEADER_1109		3
+
+header HS_HEADER_1111		Return-Path:=~/.*ghost-writingltd\.com\@maildedi2\.com.*/
+describe HS_HEADER_1111		Heinlein Support Spamschutz Header-1111 Spam
+score HS_HEADER_1111		3
+
+header HS_HEADER_1114		Return-Path:=~/.*retrocubes\.com\@maildedi2\.com.*/
+describe HS_HEADER_1114		Heinlein Support Spamschutz Header-1114 Spam
+score HS_HEADER_1114		5
+
+header HS_HEADER_1118		Return-Path:=~/.*videosharks\.org\@maildedi2\.com.*/
+describe HS_HEADER_1118		Heinlein Support Spamschutz Header-1118 Spam
+score HS_HEADER_1118		5
+
+header HS_HEADER_1120		Return-Path:=~/.*fifthavenuelogocoupon\.com\@maildedi2\.com.*/
+describe HS_HEADER_1120		Heinlein Support Spamschutz Header-1120 Spam
+score HS_HEADER_1120		3
+
+header HS_HEADER_1121		Return-Path:=~/.*best2018seocompany\.com\@maildedi2\.com.*/
+describe HS_HEADER_1121		Heinlein Support Spamschutz Header-1121 Spam
+score HS_HEADER_1121		5
+
+header HS_HEADER_1123		List-Unsubscribe:=~/.*vilkov\.biz\.ua.*/
+describe HS_HEADER_1123		Heinlein Support Spamschutz Header-1123 Spam
+score HS_HEADER_1123		3
+
+header HS_HEADER_1124		List-Unsubscribe:=~/.*vipperson\.eu.*/
+describe HS_HEADER_1124		Heinlein Support Spamschutz Header-1124 Spam
+score HS_HEADER_1124		3
+
+header HS_HEADER_1127		List-Unsubscribe:=~/.*teeperos\.eu.*/
+describe HS_HEADER_1127		Heinlein Support Spamschutz Header-1127 Spam
+score HS_HEADER_1127		3
+
+header HS_HEADER_1129		From:=~/.*dtoomey\@vermontel.net/
+describe HS_HEADER_1129		Heinlein Support Spamschutz Header-1129 Phishing
+score HS_HEADER_1129		5
+
+header HS_HEADER_1131		Subject:=~/Incoming Mails On Hold/
+describe HS_HEADER_1131		Heinlein Support Spamschutz Header-1131 Phishing
+score HS_HEADER_1131		8
+
+header HS_HEADER_1134		Subject:=~/Unlock Account Access/
+describe HS_HEADER_1134		Heinlein Support Spamschutz Header-1134 Phishing
+score HS_HEADER_1134		6
+
+header HS_HEADER_1137		From:=~/Directpay Co. KG/
+describe HS_HEADER_1137		Heinlein Support Spamschutz Header-1137 Rechnungsvirus
+score HS_HEADER_1137		5
+
+header HS_HEADER_1140		Subject:=~/Subject: Kontoabbuchung konnte nicht vorgenommen werden/
+describe HS_HEADER_1140		Heinlein Support Spamschutz Header-1140 Rechnungsvirus
+score HS_HEADER_1140		5
+
+header HS_HEADER_1141		Disposition-Notification-To:=~/.*Mailbox.org.* .*\@mailbox.org/
+describe HS_HEADER_1141		Heinlein Support Spamschutz Header-1141 Phishing
+score HS_HEADER_1141		5
+
+header HS_HEADER_1144		From:=~/\"Mailbox.org\"/
+describe HS_HEADER_1144		Heinlein Support Spamschutz Header-1144 
+score HS_HEADER_1144		5
+
+header HS_HEADER_1146		Subject:=~/Langer durchhalten. Beste Pillen für Sex/
+describe HS_HEADER_1146		Heinlein Support Spamschutz Header-1146 Spam
+score HS_HEADER_1146		7
+
diff --git a/data/conf/rspamd/dynmaps/settings.php b/data/conf/rspamd/dynmaps/settings.php
index 5f83da81..0e517747 100644
--- a/data/conf/rspamd/dynmaps/settings.php
+++ b/data/conf/rspamd/dynmaps/settings.php
@@ -9,7 +9,8 @@ require_once "vars.inc.php";
 
 ini_set('error_reporting', 0);
 
-$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
+//$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
+$dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
 $opt = [
     PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
     PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
diff --git a/data/conf/rspamd/meta_exporter/pipe.php b/data/conf/rspamd/meta_exporter/pipe.php
index 7064b7b8..ffa3a9ca 100644
--- a/data/conf/rspamd/meta_exporter/pipe.php
+++ b/data/conf/rspamd/meta_exporter/pipe.php
@@ -6,7 +6,8 @@ require_once "vars.inc.php";
 // Do not show errors, we log to using error_log
 ini_set('error_reporting', 0);
 // Init database
-$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
+//$dsn = $database_type . ':host=' . $database_host . ';dbname=' . $database_name;
+$dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
 $opt = [
     PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
     PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
diff --git a/data/conf/rspamd/override.d/worker-controller-password.inc b/data/conf/rspamd/override.d/worker-controller-password.inc
index 9a5984d1..2421c524 100644
--- a/data/conf/rspamd/override.d/worker-controller-password.inc
+++ b/data/conf/rspamd/override.d/worker-controller-password.inc
@@ -1 +1 @@
-# Placeholder
+enable_password = "$2$gtgqjrojzkhoxjis6tygn6sexd8nonah$zi9m3bwnmhtosh4rgqwrdruixx56t8d31iez4mooxqd8a7onaoxy";
diff --git a/data/web/admin.php b/data/web/admin.php
index 749c96b6..949ecfc9 100644
--- a/data/web/admin.php
+++ b/data/web/admin.php
@@ -22,25 +22,25 @@ $tfa_data = get_tfa();
           <div class="form-group">
             <label class="control-label col-sm-3" for="admin_user"><?=$lang['admin']['admin'];?>:</label>
             <div class="col-sm-9">
-              <input type="text" class="form-control" name="admin_user" id="admin_user" value="<?=htmlspecialchars($admindetails['username']);?>" required>
+              <input type="text" class="form-control" name="admin_user" value="<?=htmlspecialchars($admindetails['username']);?>" required>
               &rdsh; <kbd>a-z A-Z - _ .</kbd>
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-3" for="admin_pass"><?=$lang['admin']['password'];?>:</label>
             <div class="col-sm-9">
-            <input type="password" data-hibp="true" class="form-control" name="admin_pass" id="admin_pass" placeholder="<?=$lang['admin']['unchanged_if_empty'];?>">
+            <input type="password" data-hibp="true" class="form-control" name="admin_pass" placeholder="<?=$lang['admin']['unchanged_if_empty'];?>">
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-3" for="admin_pass2"><?=$lang['admin']['password_repeat'];?>:</label>
             <div class="col-sm-9">
-            <input type="password" class="form-control" name="admin_pass2" id="admin_pass2">
+            <input type="password" class="form-control" name="admin_pass2">
             </div>
           </div>
           <div class="form-group">
             <div class="col-sm-offset-3 col-sm-9">
-              <button class="btn btn-default" id="edit_selected" data-id="admin" data-item="admin" data-api-url='edit/self' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
+              <button class="btn btn-default" data-action="edit_selected" data-id="admin" data-item="admin" data-api-url='edit/self' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
             </div>
           </div>
         </form>
@@ -124,12 +124,12 @@ $tfa_data = get_tfa();
               <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="domain_admins" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
               <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
               <ul class="dropdown-menu">
-                <li><a id="edit_selected" data-id="domain_admins" data-api-url='edit/domain-admin' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                <li><a id="edit_selected" data-id="domain_admins" data-api-url='edit/domain-admin' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                <li><a data-action="edit_selected" data-id="domain_admins" data-api-url='edit/domain-admin' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                <li><a data-action="edit_selected" data-id="domain_admins" data-api-url='edit/domain-admin' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                 <li role="separator" class="divider"></li>
-                <li><a id="edit_selected" data-id="domain_admins" data-api-url='edit/domain-admin' data-api-attr='{"disable_tfa":"1"}' href="#"><?=$lang['tfa']['disable_tfa'];?></a></li>
+                <li><a data-action="edit_selected" data-id="domain_admins" data-api-url='edit/domain-admin' data-api-attr='{"disable_tfa":"1"}' href="#"><?=$lang['tfa']['disable_tfa'];?></a></li>
                 <li role="separator" class="divider"></li>
-                <li><a id="delete_selected" data-id="domain_admins" data-api-url='delete/domain-admin' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                <li><a data-action="delete_selected" data-id="domain_admins" data-api-url='delete/domain-admin' href="#"><?=$lang['mailbox']['remove'];?></a></li>
               </ul>
               <a class="btn btn-sm btn-success" data-id="add_domain_admin" data-toggle="modal" data-target="#addDomainAdminModal" href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add_domain_admin'];?></a>
             </div>
@@ -155,13 +155,13 @@ $tfa_data = get_tfa();
             <div class="form-group">
               <label class="control-label col-sm-3" for="rspamd_ui_pass"><?=$lang['admin']['password'];?>:</label>
               <div class="col-sm-9">
-              <input type="password" class="form-control" name="rspamd_ui_pass" id="rspamd_ui_pass" required>
+              <input type="password" class="form-control" name="rspamd_ui_pass" required>
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-3" for="rspamd_ui_pass2"><?=$lang['admin']['password_repeat'];?>:</label>
               <div class="col-sm-9">
-              <input type="password" class="form-control" name="rspamd_ui_pass2" id="rspamd_ui_pass2" required>
+              <input type="password" class="form-control" name="rspamd_ui_pass2" required>
               </div>
             </div>
             <div class="form-group">
@@ -201,7 +201,7 @@ $tfa_data = get_tfa();
         <div class="mass-actions-admin">
           <div class="btn-group btn-group-sm">
             <button type="button" id="toggle_multi_select_all" data-id="dkim" class="btn btn-default"><?=$lang['mailbox']['toggle_all'];?></button>
-            <button type="button" id="delete_selected" name="delete_selected" data-id="dkim" data-api-url="delete/dkim" class="btn btn-danger"><?=$lang['admin']['remove'];?></button>
+            <button type="button" data-action="delete_selected" name="delete_selected" data-id="dkim" data-api-url="delete/dkim" class="btn btn-danger"><?=$lang['admin']['remove'];?></button>
           </div>
         </div>
         <?php
@@ -309,7 +309,7 @@ $tfa_data = get_tfa();
           </div>
           <div class="form-group">
             <label for="domain">Selector</label>
-            <input class="form-control input-sm" id="dkim_selector" name="dkim_selector" value="dkim" required>
+            <input class="form-control input-sm" name="dkim_selector" value="dkim" required>
           </div>
           <div class="form-group">
             <select data-width="200px" data-style="btn btn-default btn-sm" class="form-control" id="key_size" name="key_size" title="<?=$lang['admin']['dkim_key_length'];?>" required>
@@ -317,7 +317,7 @@ $tfa_data = get_tfa();
               <option data-subtext="bits">2048</option>
             </select>
           </div>
-          <button class="btn btn-sm btn-default" id="add_item" data-id="dkim" data-api-url='add/dkim' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add'];?></button>
+          <button class="btn btn-sm btn-default" data-action="add_item" data-id="dkim" data-api-url='add/dkim' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add'];?></button>
         </form>
 
         <legend data-target="#import_dkim" style="margin-top:40px;cursor:pointer" id="import_dkim_legend" unselectable="on" data-toggle="collapse">
@@ -327,17 +327,17 @@ $tfa_data = get_tfa();
         <form class="form" data-id="dkim_import" role="form" method="post">
           <div class="form-group">
             <label for="domain">Domain:</label>
-            <input class="form-control input-sm" id="domain" name="domain" placeholder="example.org" required>
+            <input class="form-control input-sm" name="domain" placeholder="example.org" required>
           </div>
           <div class="form-group">
             <label for="domain">Selector:</label>
-            <input class="form-control input-sm" id="dkim_selector" name="dkim_selector" value="dkim" required>
+            <input class="form-control input-sm" name="dkim_selector" value="dkim" required>
           </div>
           <div class="form-group">
             <label for="private_key_file"><?=$lang['admin']['private_key'];?>:</label>
             <textarea class="form-control input-sm" rows="10" name="private_key_file" id="private_key_file" required placeholder="-----BEGIN RSA KEY-----"></textarea>
           </div>
-          <button class="btn btn-sm btn-default" id="add_item" data-id="dkim_import" data-api-url='add/dkim_import' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['import'];?></button>
+          <button class="btn btn-sm btn-default" data-action="add_item" data-id="dkim_import" data-api-url='add/dkim_import' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['import'];?></button>
         </form>
         </div>
 
@@ -383,7 +383,7 @@ $tfa_data = get_tfa();
             </select>
             </div>
           </div>
-          <button class="btn btn-sm btn-default" id="add_item" data-id="dkim_duplicate" data-api-url='add/dkim_duplicate' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-duplicate"></span> <?=$lang['admin']['duplicate'];?></button>
+          <button class="btn btn-sm btn-default" data-action="add_item" data-id="dkim_duplicate" data-api-url='add/dkim_duplicate' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-duplicate"></span> <?=$lang['admin']['duplicate'];?></button>
         </form>
         </div>
 
@@ -403,10 +403,10 @@ $tfa_data = get_tfa();
             <button type="button" id="toggle_multi_select_all" data-id="fwdhosts" class="btn btn-default"><?=$lang['mailbox']['toggle_all'];?></button>
             <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
             <ul class="dropdown-menu">
-              <li><a id="edit_selected" data-id="fwdhosts" data-api-url='edit/fwdhost' data-api-attr='{"keep_spam":"0"}' href="#">Enable spam filter</a></li>
-              <li><a id="edit_selected" data-id="fwdhosts" data-api-url='edit/fwdhost' data-api-attr='{"keep_spam":"1"}' href="#">Disable spam filter</a></li>
+              <li><a data-action="edit_selected" data-id="fwdhosts" data-api-url='edit/fwdhost' data-api-attr='{"keep_spam":"0"}' href="#">Enable spam filter</a></li>
+              <li><a data-action="edit_selected" data-id="fwdhosts" data-api-url='edit/fwdhost' data-api-attr='{"keep_spam":"1"}' href="#">Disable spam filter</a></li>
               <li role="separator" class="divider"></li>
-              <li><a id="delete_selected" data-id="fwdhosts" data-api-url='delete/fwdhost' href="#"><?=$lang['admin']['remove'];?></a></li>
+              <li><a data-action="delete_selected" data-id="fwdhosts" data-api-url='delete/fwdhost' href="#"><?=$lang['admin']['remove'];?></a></li>
             </ul>
           </div>
         </div>
@@ -415,7 +415,7 @@ $tfa_data = get_tfa();
         <form class="form" data-id="fwdhost" role="form" method="post">
           <div class="form-group">
             <label for="hostname"><?=$lang['admin']['host'];?></label>
-            <input class="form-control" id="hostname" name="hostname" placeholder="example.org" required>
+            <input class="form-control" name="hostname" placeholder="example.org" required>
           </div>
           <div class="form-group">
             <select data-width="200px" class="form-control" id="filter_spam" name="filter_spam" title="<?=$lang['user']['spamfilter'];?>" required>
@@ -423,7 +423,7 @@ $tfa_data = get_tfa();
               <option value="0"><?=$lang['admin']['inactive'];?></option>
             </select>
           </div>
-          <button class="btn btn-default" id="add_item" data-id="fwdhost" data-api-url='add/fwdhost' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add'];?></button>
+          <button class="btn btn-default" data-action="add_item" data-id="fwdhost" data-api-url='add/fwdhost' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add'];?></button>
         </form>
       </div>
     </div>
@@ -438,41 +438,41 @@ $tfa_data = get_tfa();
         <form class="form" data-id="f2b" role="form" method="post">
           <div class="form-group">
             <label for="ban_time"><?=$lang['admin']['f2b_ban_time'];?>:</label>
-            <input type="number" class="form-control" id="ban_time" name="ban_time" value="<?=$f2b_data['ban_time'];?>" required>
+            <input type="number" class="form-control" name="ban_time" value="<?=$f2b_data['ban_time'];?>" required>
           </div>
           <div class="form-group">
             <label for="max_attempts"><?=$lang['admin']['f2b_max_attempts'];?>:</label>
-            <input type="number" class="form-control" id="max_attempts" name="max_attempts" value="<?=$f2b_data['max_attempts'];?>" required>
+            <input type="number" class="form-control" name="max_attempts" value="<?=$f2b_data['max_attempts'];?>" required>
           </div>
           <div class="form-group">
             <label for="retry_window"><?=$lang['admin']['f2b_retry_window'];?>:</label>
-            <input type="number" class="form-control" id="retry_window" name="retry_window" value="<?=$f2b_data['retry_window'];?>" required>
+            <input type="number" class="form-control" name="retry_window" value="<?=$f2b_data['retry_window'];?>" required>
           </div>
           <div class="form-group">
             <label for="netban_ipv4"><?=$lang['admin']['f2b_netban_ipv4'];?>:</label>
             <div class="input-group">
               <span class="input-group-addon">/</span>
-              <input type="number" class="form-control" id="netban_ipv4" name="netban_ipv4" value="<?=$f2b_data['netban_ipv4'];?>" required>
+              <input type="number" class="form-control" name="netban_ipv4" value="<?=$f2b_data['netban_ipv4'];?>" required>
             </div>
           </div>
           <div class="form-group">
             <label for="netban_ipv6"><?=$lang['admin']['f2b_netban_ipv6'];?>:</label>
             <div class="input-group">
               <span class="input-group-addon">/</span>
-              <input type="number" class="form-control" id="netban_ipv6" name="netban_ipv6" value="<?=$f2b_data['netban_ipv6'];?>" required>
+              <input type="number" class="form-control" name="netban_ipv6" value="<?=$f2b_data['netban_ipv6'];?>" required>
             </div>
           </div>
           <p class="help-block"><?=$lang['admin']['f2b_list_info'];?></p>
           <div class="form-group">
             <label for="whitelist"><?=$lang['admin']['f2b_whitelist'];?>:</label>
-            <textarea class="form-control" id="whitelist" name="whitelist" rows="5"><?=$f2b_data['whitelist'];?></textarea>
+            <textarea class="form-control" name="whitelist" rows="5"><?=$f2b_data['whitelist'];?></textarea>
           </div>
           <div class="form-group">
             <label for="blacklist"><?=$lang['admin']['f2b_blacklist'];?>:</label>
-            <textarea class="form-control" id="blacklist" name="blacklist" rows="5"><?=$f2b_data['blacklist'];?></textarea>
+            <textarea class="form-control" name="blacklist" rows="5"><?=$f2b_data['blacklist'];?></textarea>
           </div>
           <div class="btn-group">
-            <button class="btn btn-default" id="edit_selected" data-item="self" data-id="f2b" data-api-url='edit/fail2ban' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
+            <button class="btn btn-default" data-action="edit_selected" data-item="self" data-id="f2b" data-api-url='edit/fail2ban' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
             <a href="#" role="button" class="btn btn-default" data-toggle="modal" data-container="netfilter-mailcow" data-target="#RestartContainer"><span class="glyphicon glyphicon-refresh"></span> <?= $lang['header']['restart_netfilter']; ?></a>
           </div>
         </form>
@@ -490,9 +490,9 @@ $tfa_data = get_tfa();
           <?php
           if ($active_bans['queued_for_unban'] == 0):
           ?>
-          <a id="edit_selected" data-item="<?=$active_bans['network'];?>" data-id="f2b-quick" data-api-url='edit/fail2ban' data-api-attr='{"action":"unban"}' href="#">[<?=$lang['admin']['queue_unban'];?>]</a>
-          <a id="edit_selected" data-item="<?=$active_bans['network'];?>" data-id="f2b-quick" data-api-url='edit/fail2ban' data-api-attr='{"action":"whitelist"}' href="#">[whitelist]</a>
-          <a id="edit_selected" data-item="<?=$active_bans['network'];?>" data-id="f2b-quick" data-api-url='edit/fail2ban' data-api-attr='{"action":"blacklist"}' href="#">[blacklist]</a>
+          <a data-action="edit_selected" data-item="<?=$active_bans['network'];?>" data-id="f2b-quick" data-api-url='edit/fail2ban' data-api-attr='{"action":"unban"}' href="#">[<?=$lang['admin']['queue_unban'];?>]</a>
+          <a data-action="edit_selected" data-item="<?=$active_bans['network'];?>" data-id="f2b-quick" data-api-url='edit/fail2ban' data-api-attr='{"action":"whitelist"}' href="#">[whitelist]</a>
+          <a data-action="edit_selected" data-item="<?=$active_bans['network'];?>" data-id="f2b-quick" data-api-url='edit/fail2ban' data-api-attr='{"action":"blacklist"}' href="#">[blacklist]</a>
           <?php
           else:
           ?>
@@ -527,10 +527,10 @@ $tfa_data = get_tfa();
             <button type="button" id="toggle_multi_select_all" data-id="rlyhosts" class="btn btn-default"><?=$lang['mailbox']['toggle_all'];?></button>
             <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
             <ul class="dropdown-menu">
-              <li><a id="edit_selected" data-id="rlyhosts" data-api-url='edit/relayhost' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-              <li><a id="edit_selected" data-id="rlyhosts" data-api-url='edit/relayhost' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+              <li><a data-action="edit_selected" data-id="rlyhosts" data-api-url='edit/relayhost' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+              <li><a data-action="edit_selected" data-id="rlyhosts" data-api-url='edit/relayhost' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
               <li role="separator" class="divider"></li>
-              <li><a id="delete_selected" data-id="rlyhosts" data-api-url='delete/relayhost' href="#"><?=$lang['admin']['remove'];?></a></li>
+              <li><a data-action="delete_selected" data-id="rlyhosts" data-api-url='delete/relayhost' href="#"><?=$lang['admin']['remove'];?></a></li>
             </ul>
           </div>
         </div>
@@ -539,17 +539,17 @@ $tfa_data = get_tfa();
         <form class="form" data-id="rlyhost" role="form" method="post">
           <div class="form-group">
             <label for="hostname"><?=$lang['admin']['host'];?></label>
-            <input class="form-control" id="hostname" name="hostname" required>
+            <input class="form-control" name="hostname" required>
           </div>
           <div class="form-group">
             <label for="hostname"><?=$lang['admin']['username'];?></label>
-            <input class="form-control" id="username" name="username">
+            <input class="form-control" name="username">
           </div>
           <div class="form-group">
             <label for="hostname"><?=$lang['admin']['password'];?></label>
-            <input class="form-control" id="password" name="password">
+            <input class="form-control" name="password">
           </div>
-          <button class="btn btn-default" id="add_item" data-id="rlyhost" data-api-url='add/relayhost' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add'];?></button>
+          <button class="btn btn-default" data-action="add_item" data-id="rlyhost" data-api-url='add/relayhost' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['admin']['add'];?></button>
         </form>
       </div>
     </div>
@@ -564,19 +564,19 @@ $tfa_data = get_tfa();
             <div class="col-sm-6">
               <div class="form-group">
                 <label for="retention_size"><?=$lang['admin']['quarantine_retention_size'];?></label>
-                <input type="number" class="form-control" id="retention_size" name="retention_size" value="<?=$q_data['retention_size'];?>" placeholder="0" required>
+                <input type="number" class="form-control" name="retention_size" value="<?=$q_data['retention_size'];?>" placeholder="0" required>
               </div>
             </div>
             <div class="col-sm-6">
               <div class="form-group">
                 <label for="max_size"><?=$lang['admin']['quarantine_max_size'];?></label>
-                <input type="number" class="form-control" id="max_size" name="max_size" value="<?=$q_data['max_size'];?>" placeholder="0" required>
+                <input type="number" class="form-control" name="max_size" value="<?=$q_data['max_size'];?>" placeholder="0" required>
               </div>
             </div>
           </div>
           <div class="form-group">
             <label for="exclude_domains"><?=$lang['admin']['quarantine_exclude_domains'];?></label><br />
-            <select data-width="100%" id="exclude_domains" name="exclude_domains" class="selectpicker" title="<?=$lang['tfa']['select'];?>" multiple>
+            <select data-width="100%" name="exclude_domains" class="selectpicker" title="<?=$lang['tfa']['select'];?>" multiple>
               <?php
               foreach (array_merge(mailbox('get', 'domains'), mailbox('get', 'alias_domains')) as $domain):
               ?>
@@ -586,7 +586,7 @@ $tfa_data = get_tfa();
               ?>
             </select>
           </div>
-          <button class="btn btn-default" id="edit_selected" data-item="self" data-id="quarantine" data-api-url='edit/quarantine' data-api-attr='{"action":"settings"}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
+          <button class="btn btn-default" data-action="edit_selected" data-item="self" data-id="quarantine" data-api-url='edit/quarantine' data-api-attr='{"action":"settings"}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
         </form>
       </div>
     </div>
@@ -648,19 +648,19 @@ $tfa_data = get_tfa();
                     <input type="hidden" name="active" value="0">
                     <div class="form-group">
                       <label for="desc"><?=$lang['admin']['rsetting_desc'];?>:</label>
-                      <input type="text" class="form-control" id="desc" name="desc" value="<?=$rsetting_details['desc'];?>">
+                      <input type="text" class="form-control" name="desc" value="<?=$rsetting_details['desc'];?>">
                     </div>
                     <div class="form-group">
                       <label for="content"><?=$lang['admin']['rsetting_content'];?>:</label>
-                      <textarea class="form-control" id="content" name="content" rows="10"><?=$rsetting_details['content'];?></textarea>
+                      <textarea class="form-control" name="content" rows="10"><?=$rsetting_details['content'];?></textarea>
                     </div>
                     <div class="form-group">
                       <label>
                         <input type="checkbox" name="active" value="1" <?=($rsetting_details['active_int'] == 1) ? 'checked' : null;?>> <?=$lang['admin']['active'];?>
                       </label>
                     </div>
-                    <button class="btn btn-default" id="edit_selected" data-item="<?=$rsetting_details['id'];?>" data-id="rsettings" data-api-url='edit/rsetting' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
-                    <button class="btn btn-danger" id="delete_selected" data-item="<?=$rsetting_details['id'];?>" data-id="rsettings" data-api-url="delete/rsetting" data-api-attr='{}' href="#"><?=$lang['admin']['remove'];?></button>
+                    <button class="btn btn-default" data-action="edit_selected" data-item="<?=$rsetting_details['id'];?>" data-id="rsettings" data-api-url='edit/rsetting' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
+                    <button class="btn btn-danger" data-action="delete_selected" data-item="<?=$rsetting_details['id'];?>" data-id="rsettings" data-api-url="delete/rsetting" data-api-attr='{}' href="#"><?=$lang['admin']['remove'];?></button>
                   </form>
                 </div>
                 <?php
@@ -743,7 +743,7 @@ $tfa_data = get_tfa();
             ?>
           </table>
           <p><div class="btn-group">
-            <button class="btn btn-sm btn-default" id="edit_selected" data-item="admin" data-id="app_links" data-reload="no" data-api-url='edit/app_links' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
+            <button class="btn btn-sm btn-default" data-action="edit_selected" data-item="admin" data-id="app_links" data-reload="no" data-api-url='edit/app_links' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
             <button class="btn btn-sm btn-default" type="button" id="add_app_link_row"><?=$lang['admin']['add_row'];?></button>
           </div></p>
         </form>
@@ -754,21 +754,21 @@ $tfa_data = get_tfa();
         <form class="form" data-id="uitexts" role="form" method="post">
           <div class="form-group">
             <label for="title_name"><?=$lang['admin']['title_name'];?>:</label>
-            <input type="text" class="form-control" id="title_name" name="title_name" placeholder="mailcow UI" value="<?=$ui_texts['title_name'];?>">
+            <input type="text" class="form-control" name="title_name" placeholder="mailcow UI" value="<?=$ui_texts['title_name'];?>">
           </div>
           <div class="form-group">
             <label for="main_name"><?=$lang['admin']['main_name'];?>:</label>
-            <input type="text" class="form-control" id="main_name" name="main_name" placeholder="mailcow UI" value="<?=$ui_texts['main_name'];?>">
+            <input type="text" class="form-control" name="main_name" placeholder="mailcow UI" value="<?=$ui_texts['main_name'];?>">
           </div>
           <div class="form-group">
             <label for="apps_name"><?=$lang['admin']['apps_name'];?>:</label>
-            <input type="text" class="form-control" id="apps_name" name="apps_name" placeholder="mailcow Apps" value="<?=$ui_texts['apps_name'];?>">
+            <input type="text" class="form-control" name="apps_name" placeholder="mailcow Apps" value="<?=$ui_texts['apps_name'];?>">
           </div>
           <div class="form-group">
             <label for="help_text"><?=$lang['admin']['help_text'];?>:</label>
             <textarea class="form-control" id="help_text" name="help_text" rows="7"><?=$ui_texts['help_text'];?></textarea>
           </div>
-          <button class="btn btn-default" id="edit_selected" data-item="ui" data-id="uitexts" data-api-url='edit/ui_texts' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
+          <button class="btn btn-default" data-action="edit_selected" data-item="ui" data-id="uitexts" data-api-url='edit/ui_texts' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-check"></span> <?=$lang['admin']['save'];?></button>
         </form>
       </div>
     </div>
diff --git a/data/web/autodiscover.php b/data/web/autodiscover.php
index f5bcbf8f..9a167af7 100644
--- a/data/web/autodiscover.php
+++ b/data/web/autodiscover.php
@@ -27,7 +27,8 @@ if (strpos($data, 'autodiscover/outlook/responseschema') !== false) {
   }
 }
 
-$dsn = $database_type . ":host=" . $database_host . ";dbname=" . $database_name;
+//$dsn = $database_type . ":host=" . $database_host . ";dbname=" . $database_name;
+$dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
 $opt = [
   PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
   PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
diff --git a/data/web/edit.php b/data/web/edit.php
index 417f2a7c..a2eb4fb7 100644
--- a/data/web/edit.php
+++ b/data/web/edit.php
@@ -39,13 +39,13 @@ if (isset($_SESSION['mailcow_cc_role'])) {
                 <div class="col-sm-10">
                   <textarea id="textarea_alias_goto" class="form-control" autocapitalize="none" autocorrect="off" rows="10" id="goto" name="goto" required><?= (!preg_match('/^(null|ham|spam)@localhost$/i', $result['goto'])) ? htmlspecialchars($result['goto']) : null; ?></textarea>
                   <div class="checkbox">
-                    <label><input class="goto_checkbox"id="goto_null" type="checkbox" value="1" name="goto_null" <?= ($result['goto'] == "null@localhost") ? "checked" : null; ?>> <?=$lang['add']['goto_null'];?></label>
+                    <label><input class="goto_checkbox" type="checkbox" value="1" name="goto_null" <?= ($result['goto'] == "null@localhost") ? "checked" : null; ?>> <?=$lang['add']['goto_null'];?></label>
                   </div>
                   <div class="checkbox">
-                    <label><input class="goto_checkbox" id="goto_spam" type="checkbox" value="1" name="goto_spam" <?= ($result['goto'] == "spam@localhost") ? "checked" : null; ?>> <?=$lang['add']['goto_spam'];?></label>
+                    <label><input class="goto_checkbox" type="checkbox" value="1" name="goto_spam" <?= ($result['goto'] == "spam@localhost") ? "checked" : null; ?>> <?=$lang['add']['goto_spam'];?></label>
                   </div>
                   <div class="checkbox">
-                    <label><input class="goto_checkbox" id="goto_ham" type="checkbox" value="1" name="goto_ham" <?= ($result['goto'] == "ham@localhost") ? "checked" : null; ?>> <?=$lang['add']['goto_ham'];?></label>
+                    <label><input class="goto_checkbox" type="checkbox" value="1" name="goto_ham" <?= ($result['goto'] == "ham@localhost") ? "checked" : null; ?>> <?=$lang['add']['goto_ham'];?></label>
                   </div>
                 </div>
               </div>
@@ -58,7 +58,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
               </div>
               <div class="form-group">
                 <div class="col-sm-offset-2 col-sm-10">
-                  <button class="btn btn-success" id="edit_selected" data-id="editalias" data-item="<?=htmlspecialchars($alias);?>" data-api-url='edit/alias' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                  <button class="btn btn-success" data-action="edit_selected" data-id="editalias" data-item="<?=htmlspecialchars($alias);?>" data-api-url='edit/alias' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
                 </div>
               </div>
             </form>
@@ -92,7 +92,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="domains"><?=$lang['edit']['domains'];?></label>
               <div class="col-sm-10">
-                <select data-live-search="true" class="full-width-select" id="domains" name="domains" multiple required>
+                <select data-live-search="true" class="full-width-select" name="domains" multiple required>
                 <?php
                 foreach ($result['selected_domains'] as $domain):
                 ?>
@@ -111,13 +111,13 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="password"><?=$lang['edit']['password'];?></label>
               <div class="col-sm-10">
-              <input type="password" data-hibp="true" class="form-control" name="password" id="password" placeholder="">
+              <input type="password" data-hibp="true" class="form-control" name="password" placeholder="">
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="password2"><?=$lang['edit']['password_repeat'];?></label>
               <div class="col-sm-10">
-              <input type="password" class="form-control" name="password2" id="password2">
+              <input type="password" class="form-control" name="password2">
               </div>
             </div>
             <div class="form-group">
@@ -136,7 +136,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editdomainadmin" data-item="<?=$domain_admin;?>" data-api-url='edit/domain-admin' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editdomainadmin" data-item="<?=$domain_admin;?>" data-api-url='edit/domain-admin' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -159,7 +159,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
                   </select>
                 </div>
                 <div class="form-group">
-                  <button class="btn btn-default" id="edit_selected" data-id="daacl" data-item="<?=htmlspecialchars($domain_admin);?>" data-api-url='edit/da-acl' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+                  <button class="btn btn-default" data-action="edit_selected" data-id="daacl" data-item="<?=htmlspecialchars($domain_admin);?>" data-api-url='edit/da-acl' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
                 </div>
               </div>
             </div>
@@ -189,7 +189,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="description"><?=$lang['edit']['description'];?></label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="description" id="description" value="<?=htmlspecialchars($result['description']);?>">
+                <input type="text" class="form-control" name="description" value="<?=htmlspecialchars($result['description']);?>">
               </div>
             </div>
             <?php
@@ -198,31 +198,31 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="aliases"><?=$lang['edit']['max_aliases'];?></label>
               <div class="col-sm-10">
-                <input type="number" class="form-control" name="aliases" id="aliases" value="<?=intval($result['max_num_aliases_for_domain']);?>">
+                <input type="number" class="form-control" name="aliases" value="<?=intval($result['max_num_aliases_for_domain']);?>">
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="mailboxes"><?=$lang['edit']['max_mailboxes'];?></label>
               <div class="col-sm-10">
-                <input type="number" class="form-control" name="mailboxes" id="mailboxes" value="<?=intval($result['max_num_mboxes_for_domain']);?>">
+                <input type="number" class="form-control" name="mailboxes" value="<?=intval($result['max_num_mboxes_for_domain']);?>">
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="maxquota"><?=$lang['edit']['max_quota'];?></label>
               <div class="col-sm-10">
-                <input type="number" class="form-control" name="maxquota" id="maxquota" value="<?=intval($result['max_quota_for_mbox'] / 1048576);?>">
+                <input type="number" class="form-control" name="maxquota" value="<?=intval($result['max_quota_for_mbox'] / 1048576);?>">
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="quota"><?=$lang['edit']['domain_quota'];?></label>
               <div class="col-sm-10">
-                <input type="number" class="form-control" name="quota" id="quota" value="<?=intval($result['max_quota_for_domain'] / 1048576);?>">
+                <input type="number" class="form-control" name="quota" value="<?=intval($result['max_quota_for_domain'] / 1048576);?>">
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="quota">Relayhost</label>
               <div class="col-sm-10">
-                <select data-live-search="true" name="relayhost" id="relayhost" class="form-control">
+                <select data-live-search="true" name="relayhost" class="form-control">
                   <?php
                   foreach ($rlyhosts as $rlyhost) {
                   ?>
@@ -257,7 +257,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editdomain" data-item="<?=$domain;?>" data-api-url='edit/domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editdomain" data-item="<?=$domain;?>" data-api-url='edit/domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
               </div>
             </div>
           </form>
@@ -280,17 +280,17 @@ if (isset($_SESSION['mailcow_cc_role'])) {
       <form data-id="domratelimit" class="form-inline well" method="post">
         <div class="form-group">
           <label class="control-label">Ratelimit</label>
-          <input name="rl_value" id="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" class="form-control" placeholder="disabled">
+          <input name="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" autocomplete="off" class="form-control" placeholder="disabled">
         </div>
         <div class="form-group">
-          <select name="rl_frame" id="rl_frame" class="form-control">
+          <select name="rl_frame" class="form-control">
             <option value="s" <?=(isset($rl['frame']) && $rl['frame'] == 's') ? 'selected' : null;?>>msgs / second</option>
             <option value="m" <?=(isset($rl['frame']) && $rl['frame'] == 'm') ? 'selected' : null;?>>msgs / minute</option>
             <option value="h" <?=(isset($rl['frame']) && $rl['frame'] == 'h') ? 'selected' : null;?>>msgs / hour</option>
           </select>
         </div>
         <div class="form-group">
-          <button data-acl="<?=$_SESSION['acl']['ratelimit'];?>" class="btn btn-default" id="edit_selected" data-id="domratelimit" data-item="<?=$domain;?>" data-api-url='edit/rl-domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+          <button data-acl="<?=$_SESSION['acl']['ratelimit'];?>" class="btn btn-default" data-action="edit_selected" data-id="domratelimit" data-item="<?=$domain;?>" data-api-url='edit/rl-domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
         </div>
       </form>
       <hr>
@@ -304,15 +304,15 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           <div class="mass-actions-user">
             <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
               <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_wl_domain" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
-              <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_wl_domain" data-api-url='delete/domain-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+              <a class="btn btn-sm btn-danger" data-action="delete_selected" data-id="policy_wl_domain" data-api-url='delete/domain-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
               </ul>
             </div>
           </div>
           <form class="form-inline" data-id="add_wl_policy_domain">
             <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
-              <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
+              <input type="text" class="form-control" name="object_from" placeholder="*@example.org" required>
               <span class="input-group-btn">
-                <button class="btn btn-default" id="add_item" data-id="add_wl_policy_domain" data-api-url='add/domain-policy' data-api-attr='{"domain":"<?= $domain; ?>","object_list":"wl"}' href="#"><?=$lang['user']['spamfilter_table_add'];?></button>
+                <button class="btn btn-default" data-action="add_item" data-id="add_wl_policy_domain" data-api-url='add/domain-policy' data-api-attr='{"domain":"<?= $domain; ?>","object_list":"wl"}' href="#"><?=$lang['user']['spamfilter_table_add'];?></button>
               </span>
             </div>
           </form>
@@ -326,15 +326,15 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           <div class="mass-actions-user">
             <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
               <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_bl_domain" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
-              <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_bl_domain" data-api-url='delete/domain-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+              <a class="btn btn-sm btn-danger" data-action="delete_selected" data-id="policy_bl_domain" data-api-url='delete/domain-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
               </ul>
             </div>
           </div>
           <form class="form-inline" data-id="add_bl_policy_domain">
             <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
-              <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
+              <input type="text" class="form-control" name="object_from" placeholder="*@example.org" required>
               <span class="input-group-btn">
-                <button class="btn btn-default" id="add_item" data-id="add_bl_policy_domain" data-api-url='add/domain-policy' data-api-attr='{"domain":"<?= $domain; ?>","object_list":"bl"}' href="#"><?=$lang['user']['spamfilter_table_add'];?></button>
+                <button class="btn btn-default" data-action="add_item" data-id="add_bl_policy_domain" data-api-url='add/domain-policy' data-api-attr='{"domain":"<?= $domain; ?>","object_list":"bl"}' href="#"><?=$lang['user']['spamfilter_table_add'];?></button>
               </span>
             </div>
           </form>
@@ -362,7 +362,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="target_domain"><?=$lang['edit']['target_domain'];?></label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="target_domain" id="target_domain" value="<?=htmlspecialchars($result['target_domain']);?>">
+                <input type="text" class="form-control" name="target_domain" value="<?=htmlspecialchars($result['target_domain']);?>">
               </div>
             </div>
             <div class="form-group">
@@ -374,7 +374,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editaliasdomain" data-item="<?=$alias_domain;?>" data-api-url='edit/alias-domain' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editaliasdomain" data-item="<?=$alias_domain;?>" data-api-url='edit/alias-domain' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -382,17 +382,17 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           <form data-id="domratelimit" class="form-inline well" method="post">
             <div class="form-group">
               <label class="control-label">Ratelimit</label>
-              <input name="rl_value" id="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" class="form-control" placeholder="disabled">
+              <input name="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" autocomplete="off" class="form-control" placeholder="disabled">
             </div>
             <div class="form-group">
-              <select name="rl_frame" id="rl_frame" class="form-control">
+              <select name="rl_frame" class="form-control">
                 <option value="s" <?=(isset($rl['frame']) && $rl['frame'] == 's') ? 'selected' : null;?>>msgs / second</option>
                 <option value="m" <?=(isset($rl['frame']) && $rl['frame'] == 'm') ? 'selected' : null;?>>msgs / minute</option>
                 <option value="h" <?=(isset($rl['frame']) && $rl['frame'] == 'h') ? 'selected' : null;?>>msgs / hour</option>
               </select>
             </div>
             <div class="form-group">
-              <button class="btn btn-default" id="edit_selected" data-id="domratelimit" data-item="<?=$alias_domain;?>" data-api-url='edit/rl-domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+              <button class="btn btn-default" data-action="edit_selected" data-id="domratelimit" data-item="<?=$alias_domain;?>" data-api-url='edit/rl-domain' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
             </div>
           </form>
           <?php
@@ -430,7 +430,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="name"><?=$lang['edit']['full_name'];?>:</label>
             <div class="col-sm-10">
-            <input type="text" class="form-control" name="name" id="name" value="<?=htmlspecialchars($result['name'], ENT_QUOTES, 'UTF-8');?>">
+            <input type="text" class="form-control" name="name" value="<?=htmlspecialchars($result['name'], ENT_QUOTES, 'UTF-8');?>">
             </div>
           </div>
           <div class="form-group">
@@ -438,13 +438,13 @@ if (isset($_SESSION['mailcow_cc_role'])) {
               <br /><span id="quotaBadge" class="badge">max. <?=intval($result['max_new_quota'] / 1048576)?> MiB</span>
             </label>
             <div class="col-sm-10">
-              <input type="number" name="quota" id="quota" id="destroyable" style="width:100%" min="1" max="<?=intval($result['max_new_quota'] / 1048576);?>" value="<?=intval($result['quota']) / 1048576;?>" class="form-control">
+              <input type="number" name="quota" style="width:100%" min="1" max="<?=intval($result['max_new_quota'] / 1048576);?>" value="<?=intval($result['quota']) / 1048576;?>" class="form-control">
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-2" for="sender_acl"><?=$lang['edit']['sender_acl'];?>:</label>
             <div class="col-sm-10">
-              <select data-live-search="true" data-width="100%" style="width:100%" id="sender_acl" name="sender_acl" size="10" multiple>
+              <select data-live-search="true" data-width="100%" style="width:100%" id="editSelectSenderACL" name="sender_acl" size="10" multiple>
               <?php
               $sender_acl_handles = mailbox('get', 'sender_acl_handles', $mailbox);
 
@@ -498,13 +498,13 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="password"><?=$lang['edit']['password'];?></label>
             <div class="col-sm-10">
-            <input type="password" data-hibp="true" class="form-control" name="password" id="password" placeholder="<?=$lang['edit']['unchanged_if_empty'];?>">
+            <input type="password" data-hibp="true" class="form-control" name="password" placeholder="<?=$lang['edit']['unchanged_if_empty'];?>">
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-2" for="password2"><?=$lang['edit']['password_repeat'];?></label>
             <div class="col-sm-10">
-            <input type="password" class="form-control" name="password2" id="password2">
+            <input type="password" class="form-control" name="password2">
             </div>
           </div>
           <div class="form-group">
@@ -524,7 +524,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
           </div>
           <div class="form-group">
             <div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-success" id="edit_selected" data-id="editmailbox" data-item="<?=htmlspecialchars($result['username']);?>" data-api-url='edit/mailbox' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+              <button class="btn btn-success" data-action="edit_selected" data-id="editmailbox" data-item="<?=htmlspecialchars($result['username']);?>" data-api-url='edit/mailbox' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
             </div>
           </div>
         </form>
@@ -536,17 +536,17 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="col-sm-10">
               <div class="form-group">
-                <input name="rl_value" id="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" class="form-control" placeholder="disabled">
+                <input name="rl_value" type="number" autocomplete="off" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" class="form-control" placeholder="disabled">
               </div>
               <div class="form-group">
-                <select name="rl_frame" id="rl_frame" class="form-control">
+                <select name="rl_frame" class="form-control">
                   <option value="s" <?=(isset($rl['frame']) && $rl['frame'] == 's') ? 'selected' : null;?>>msgs / second</option>
                   <option value="m" <?=(isset($rl['frame']) && $rl['frame'] == 'm') ? 'selected' : null;?>>msgs / minute</option>
                   <option value="h" <?=(isset($rl['frame']) && $rl['frame'] == 'h') ? 'selected' : null;?>>msgs / hour</option>
                 </select>
               </div>
               <div class="form-group">
-                <button class="btn btn-default" id="edit_selected" data-id="mboxratelimit" data-item="<?=htmlspecialchars($mailbox);?>" data-api-url='edit/rl-mbox' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+                <button class="btn btn-default" data-action="edit_selected" data-id="mboxratelimit" data-item="<?=htmlspecialchars($mailbox);?>" data-api-url='edit/rl-mbox' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
               </div>
             </div>
           </div>
@@ -570,7 +570,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
                 </select>
               </div>
               <div class="form-group">
-                <button class="btn btn-default" id="edit_selected" data-id="useracl" data-item="<?=htmlspecialchars($mailbox);?>" data-api-url='edit/user-acl' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
+                <button class="btn btn-default" data-action="edit_selected" data-id="useracl" data-item="<?=htmlspecialchars($mailbox);?>" data-api-url='edit/user-acl' data-api-attr='{}' href="#"><?=$lang['admin']['save'];?></button>
               </div>
             </div>
           </div>
@@ -589,19 +589,19 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="hostname"><?=$lang['add']['hostname'];?></label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="hostname" id="hostname" value="<?=htmlspecialchars($result['hostname'], ENT_QUOTES, 'UTF-8');?>" required>
+                <input type="text" class="form-control" name="hostname" value="<?=htmlspecialchars($result['hostname'], ENT_QUOTES, 'UTF-8');?>" required>
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="username"><?=$lang['add']['username'];?></label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="username" id="username" value="<?=htmlspecialchars($result['username'], ENT_QUOTES, 'UTF-8');?>">
+                <input type="text" class="form-control" name="username" value="<?=htmlspecialchars($result['username'], ENT_QUOTES, 'UTF-8');?>">
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="password"><?=$lang['add']['password'];?></label>
               <div class="col-sm-10">
-                <input type="password" data-hibp="true" class="form-control" name="password" id="password" value="<?=htmlspecialchars($result['password'], ENT_QUOTES, 'UTF-8');?>">
+                <input type="password" data-hibp="true" class="form-control" name="password" value="<?=htmlspecialchars($result['password'], ENT_QUOTES, 'UTF-8');?>">
               </div>
             </div>
             <div class="form-group">
@@ -613,7 +613,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editrelayhost" data-item="<?=htmlspecialchars($result['id']);?>" data-api-url='edit/relayhost' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editrelayhost" data-item="<?=htmlspecialchars($result['id']);?>" data-api-url='edit/relayhost' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -636,13 +636,13 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="description"><?=$lang['add']['description'];?></label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="description" id="description" value="<?=htmlspecialchars($result['description'], ENT_QUOTES, 'UTF-8');?>" required>
+                <input type="text" class="form-control" name="description" value="<?=htmlspecialchars($result['description'], ENT_QUOTES, 'UTF-8');?>" required>
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="domain"><?=$lang['edit']['kind'];?>:</label>
               <div class="col-sm-10">
-                <select name="kind" id="kind" title="<?=$lang['edit']['select'];?>" required>
+                <select name="kind" title="<?=$lang['edit']['select'];?>" required>
                   <option value="location" <?=($result['kind'] == "location") ? "selected" : null;?>>Location</option>
                   <option value="group" <?=($result['kind'] == "group") ? "selected" : null;?>>Group</option>
                   <option value="thing" <?=($result['kind'] == "thing") ? "selected" : null;?>>Thing</option>
@@ -652,7 +652,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="multiple_bookings_select"><?=$lang['add']['multiple_bookings'];?>:</label>
               <div class="col-sm-10">
-                <select name="multiple_bookings_select" id="multiple_bookings_select" title="<?=$lang['add']['select'];?>" required>
+                <select name="multiple_bookings_select" id="editSelectMultipleBookings" title="<?=$lang['add']['select'];?>" required>
                   <option value="0" <?=($result['multiple_bookings'] == 0) ? "selected" : null;?>><?=$lang['mailbox']['booking_0'];?></option>
                   <option value="-1" <?=($result['multiple_bookings'] == -1) ? "selected" : null;?>><?=$lang['mailbox']['booking_lt0'];?></option>
                   <option value="custom" <?=($result['multiple_bookings'] >= 1) ? "selected" : null;?>><?=$lang['mailbox']['booking_custom'];?></option>
@@ -673,7 +673,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editresource" data-item="<?=htmlspecialchars($result['name']);?>" data-api-url='edit/resource' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editresource" data-item="<?=htmlspecialchars($result['name']);?>" data-api-url='edit/resource' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -719,7 +719,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editbcc" data-item="<?=$bcc;?>" data-api-url='edit/bcc' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editbcc" data-item="<?=$bcc;?>" data-api-url='edit/bcc' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -766,7 +766,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="edit_recipient_map" data-item="<?=$map;?>" data-api-url='edit/recipient_map' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="edit_recipient_map" data-item="<?=$map;?>" data-api-url='edit/recipient_map' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -933,7 +933,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editsyncjob" data-item="<?=htmlspecialchars($result['id']);?>" data-api-url='edit/syncjob' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editsyncjob" data-item="<?=htmlspecialchars($result['id']);?>" data-api-url='edit/syncjob' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
               </div>
             </div>
           </form>
@@ -984,7 +984,7 @@ if (isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-success" id="edit_selected" data-id="editfilter" data-item="<?=htmlspecialchars($result['id']);?>" data-api-url='edit/filter' data-api-attr='{}' href="#"><?=$lang['edit']['validate_save'];?></button>
+                <button class="btn btn-success" data-action="edit_selected" data-id="editfilter" data-item="<?=htmlspecialchars($result['id']);?>" data-api-url='edit/filter' data-api-attr='{}' href="#"><?=$lang['edit']['validate_save'];?></button>
               </div>
             </div>
           </form>
diff --git a/data/web/inc/footer.inc.php b/data/web/inc/footer.inc.php
index 14d2acf2..9e8daf7b 100644
--- a/data/web/inc/footer.inc.php
+++ b/data/web/inc/footer.inc.php
@@ -59,7 +59,7 @@ $(document).ready(function() {
   });
   $('#u2f_status_auth').html('<p><span class="glyphicon glyphicon-refresh glyphicon-spin"></span> Initializing, please wait...</p>');
   $('#ConfirmTFAModal').on('shown.bs.modal', function(){
-      $(this).find('#token').focus();
+      $(this).find('input[name=token]').focus();
       // If U2F
       if(document.getElementById("u2f_auth_data") !== null) {
         $.ajax({
@@ -146,7 +146,7 @@ $(document).ready(function() {
   });
 
   // CSRF
-  $('<input type="hidden" value="<?= $_SESSION['CSRF']['TOKEN']; ?>">').attr('id', 'csrf_token').attr('name', 'csrf_token').appendTo('form');
+  $('<input type="hidden" value="<?= $_SESSION['CSRF']['TOKEN']; ?>">').attr('name', 'csrf_token').appendTo('form');
   if (sessionStorage.scrollTop != "undefined") {
     $(window).scrollTop(sessionStorage.scrollTop);
   }
diff --git a/data/web/inc/functions.docker.inc.php b/data/web/inc/functions.docker.inc.php
index dbd26375..9c63eec7 100644
--- a/data/web/inc/functions.docker.inc.php
+++ b/data/web/inc/functions.docker.inc.php
@@ -2,10 +2,13 @@
 function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $extra_headers = null) {
   global $DOCKER_TIMEOUT;
   $curl = curl_init();
-  curl_setopt($curl, CURLOPT_HTTPHEADER,array( 'Content-Type: application/json' ));
+  curl_setopt($curl, CURLOPT_HTTPHEADER,array('Content-Type: application/json' ));
+  // We are using our mail certificates for dockerapi, the names will not match, the certs are trusted anyway
+  curl_setopt($curl, CURLOPT_SSL_VERIFYHOST, 0);
+  curl_setopt($curl, CURLOPT_SSL_VERIFYPEER, 0);
   switch($action) {
     case 'get_id':
-      curl_setopt($curl, CURLOPT_URL, 'http://dockerapi:8080/containers/json');
+      curl_setopt($curl, CURLOPT_URL, 'https://dockerapi:443/containers/json');
       curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
       curl_setopt($curl, CURLOPT_POST, 0);
       curl_setopt($curl, CURLOPT_TIMEOUT, $DOCKER_TIMEOUT);
@@ -38,7 +41,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
       }
       return false;
     case 'containers':
-      curl_setopt($curl, CURLOPT_URL, 'http://dockerapi:8080/containers/json');
+      curl_setopt($curl, CURLOPT_URL, 'https://dockerapi:443/containers/json');
       curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
       curl_setopt($curl, CURLOPT_POST, 0);
       curl_setopt($curl, CURLOPT_TIMEOUT, $DOCKER_TIMEOUT);
@@ -74,7 +77,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
     break;
     case 'info':
       if (empty($service_name)) {
-        curl_setopt($curl, CURLOPT_URL, 'http://dockerapi:8080/containers/json');
+        curl_setopt($curl, CURLOPT_URL, 'https://dockerapi:443/containers/json');
         curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
         curl_setopt($curl, CURLOPT_POST, 0);
         curl_setopt($curl, CURLOPT_TIMEOUT, $DOCKER_TIMEOUT);
@@ -82,7 +85,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
       else {
         $container_id = docker('get_id', $service_name);
         if (ctype_xdigit($container_id)) {
-          curl_setopt($curl, CURLOPT_URL, 'http://dockerapi:8080/containers/' . $container_id . '/json');
+          curl_setopt($curl, CURLOPT_URL, 'https://dockerapi:443/containers/' . $container_id . '/json');
         }
         else {
           // logger(array('return' => array(
@@ -144,7 +147,7 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
       if (!empty($attr1)) {
         $container_id = docker('get_id', $service_name);
         if (ctype_xdigit($container_id) && ctype_alnum($attr1)) {
-          curl_setopt($curl, CURLOPT_URL, 'http://dockerapi:8080/containers/' . $container_id . '/' . $attr1);
+          curl_setopt($curl, CURLOPT_URL, 'https://dockerapi:443/containers/' . $container_id . '/' . $attr1);
           curl_setopt($curl, CURLOPT_POST, 1);
           curl_setopt($curl, CURLOPT_TIMEOUT, $DOCKER_TIMEOUT);
           if (!empty($attr2)) {
@@ -158,19 +161,19 @@ function docker($action, $service_name = null, $attr1 = null, $attr2 = null, $ex
           if ($response === false) {
             $err = curl_error($curl);
             curl_close($curl);
-            logger(array('return' => array(array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $action, $service_name, $attr1, $attr2, $extra_headers),
-              'msg' => $err,
-            ))));
+            // logger(array('return' => array(array(
+              // 'type' => 'danger',
+              // 'log' => array(__FUNCTION__, $action, $service_name, $attr1, $attr2, $extra_headers),
+              // 'msg' => $err,
+            // ))));
             return $err;
           }
           else {
             curl_close($curl);
-            logger(array('return' => array(array(
-              'type' => 'success',
-              'log' => array(__FUNCTION__, $action, $service_name, $attr1, $attr2, $extra_headers),
-            ))));
+            // logger(array('return' => array(array(
+              // 'type' => 'success',
+              // 'log' => array(__FUNCTION__, $action, $service_name, $attr1, $attr2, $extra_headers),
+            // ))));
             if (empty($response)) {
               return true;
             }
diff --git a/data/web/inc/functions.inc.php b/data/web/inc/functions.inc.php
index 94eada4f..f915d5d0 100644
--- a/data/web/inc/functions.inc.php
+++ b/data/web/inc/functions.inc.php
@@ -18,6 +18,17 @@ function last_login($user) {
     return false;
   }
 }
+function flush_memcached() {
+  try {
+    $m = new Memcached();
+    $m->addServer('memcached', 11211);
+    $m->flush();
+  }
+  catch ( Exception $e ) {
+    // Dunno
+  }
+}
+
 function logger($_data = false) {
   /*
   logger() will be called as last function
@@ -510,6 +521,7 @@ function update_sogo_static_view() {
     $stmt = $pdo->query("REPLACE INTO _sogo_static_view SELECT * from sogo_view");
     $stmt = $pdo->query("DELETE FROM _sogo_static_view WHERE `c_uid` NOT IN (SELECT `username` FROM `mailbox` WHERE `active` = '1');");
   }
+  flush_memcached();
 }
 function edit_user_account($_data) {
 	global $lang;
diff --git a/data/web/inc/functions.mailbox.inc.php b/data/web/inc/functions.mailbox.inc.php
index 8393c5f6..e06ac397 100644
--- a/data/web/inc/functions.mailbox.inc.php
+++ b/data/web/inc/functions.mailbox.inc.php
@@ -2776,6 +2776,7 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
               `mailbox`.`active` AS `active_int`,
               CASE `mailbox`.`active` WHEN 1 THEN '".$lang['mailbox']['yes']."' ELSE '".$lang['mailbox']['no']."' END AS `active`,
               `mailbox`.`domain`,
+              `mailbox`.`maildir`,
               `mailbox`.`quota`,
               `quota2`.`bytes`,
               `attributes`,
@@ -2806,6 +2807,7 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
           $mailboxdata['active'] = $row['active'];
           $mailboxdata['active_int'] = $row['active_int'];
           $mailboxdata['domain'] = $row['domain'];
+          $mailboxdata['maildir'] = $row['maildir'];
           $mailboxdata['quota'] = $row['quota'];
           $mailboxdata['attributes'] = json_decode($row['attributes'], true);
           $mailboxdata['quota_used'] = intval($row['bytes']);
@@ -3054,6 +3056,16 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
               );
               continue;
             }
+            $exec_fields = array('cmd' => 'maildir_cleanup', 'maildir' => $domain);
+            $maildir_gc = json_decode(docker('post', 'dovecot-mailcow', 'exec', $exec_fields), true);
+            if ($maildir_gc['type'] != 'success') {
+              $_SESSION['return'][] = array(
+                'type' => 'warning',
+                'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
+                'msg' => 'Could not move maildir to garbage collector: ' . $maildir_gc['msg']
+              );
+            }
+            return false;
             $stmt = $pdo->prepare("DELETE FROM `domain` WHERE `domain` = :domain");
             $stmt->execute(array(
               ':domain' => $domain,
@@ -3078,17 +3090,17 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             $stmt->execute(array(
               ':domain' => '%@'.$domain,
             ));
-            $stmt = $pdo->prepare("DELETE FROM `quota2` WHERE `username` = :domain");
+            $stmt = $pdo->prepare("DELETE FROM `quota2` WHERE `username` LIKE :domain");
             $stmt->execute(array(
               ':domain' => '%@'.$domain,
             ));
-            $stmt = $pdo->prepare("DELETE FROM `spamalias` WHERE `address` = :domain");
+            $stmt = $pdo->prepare("DELETE FROM `spamalias` WHERE `address` LIKE :domain");
             $stmt->execute(array(
               ':domain' => '%@'.$domain,
             ));
             $stmt = $pdo->prepare("DELETE FROM `filterconf` WHERE `object` = :domain");
             $stmt->execute(array(
-              ':domain' => '%@'.$domain,
+              ':domain' => $domain,
             ));
             $stmt = $pdo->prepare("DELETE FROM `bcc_maps` WHERE `local_dest` = :domain");
             $stmt->execute(array(
@@ -3227,6 +3239,16 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
               );
               continue;
             }
+            $maildir = mailbox('get', 'mailbox_details', $username)['maildir'];
+            $exec_fields = array('cmd' => 'maildir_cleanup', 'maildir' => $maildir);
+            $maildir_gc = json_decode(docker('post', 'dovecot-mailcow', 'exec', $exec_fields), true);
+            if ($maildir_gc['type'] != 'success') {
+              $_SESSION['return'][] = array(
+                'type' => 'warning',
+                'log' => array(__FUNCTION__, $_action, $_type, $_data_log, $_attr),
+                'msg' => 'Could not move maildir to garbage collector: ' . $maildir_gc['msg']
+              );
+            }
             $stmt = $pdo->prepare("DELETE FROM `alias` WHERE `goto` = :username");
             $stmt->execute(array(
               ':username' => $username
diff --git a/data/web/inc/init_db.inc.php b/data/web/inc/init_db.inc.php
index 58566ab7..571713be 100644
--- a/data/web/inc/init_db.inc.php
+++ b/data/web/inc/init_db.inc.php
@@ -3,7 +3,7 @@ function init_db_schema() {
   try {
     global $pdo;
 
-    $db_version = "01092018_1902";
+    $db_version = "21092018_1902";
 
     $stmt = $pdo->query("SHOW TABLES LIKE 'versions'");
     $num_results = count($stmt->fetchAll(PDO::FETCH_ASSOC));
diff --git a/data/web/inc/prerequisites.inc.php b/data/web/inc/prerequisites.inc.php
index aedda083..209c7184 100644
--- a/data/web/inc/prerequisites.inc.php
+++ b/data/web/inc/prerequisites.inc.php
@@ -35,7 +35,7 @@ $hrs = floor($mins / 60);
 $mins -= $hrs * 60;
 $offset = sprintf('%+d:%02d', $hrs*$sgn, $mins);
 
-$dsn = $database_type . ":host=" . $database_host . ";dbname=" . $database_name;
+$dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
 $opt = [
   PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
   PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
@@ -46,11 +46,20 @@ try {
   $pdo = new PDO($dsn, $database_user, $database_pass, $opt);
 }
 catch (PDOException $e) {
+// Stop when SQL connection fails
 ?>
-<center style='font-family: "Lucida Sans Unicode", "Lucida Grande", Verdana, Arial, Helvetica, sans-serif;'>Connection to database failed.<br /><br />The following error was reported:<br/>  <?=$e->getMessage();?></center>
+<center style='font-family:sans-serif;'>Connection to database failed.<br /><br />The following error was reported:<br/>  <?=$e->getMessage();?></center>
 <?php
 exit;
 }
+// Stop when dockerapi is not available
+if (fsockopen("tcp://dockerapi", 443, $errno, $errstr) === false) {
+?>
+<center style='font-family:sans-serif;'>Connection to dockerapi container failed.<br /><br />The following error was reported:<br/><?=$errno;?> - <?=$errstr;?></center>
+<?php
+exit;
+}
+
 function pdo_exception_handler($e) {
     print_r($e);
     if ($e instanceof PDOException) {
@@ -146,3 +155,4 @@ if (isset($_SESSION['mailcow_cc_role'])) {
   acl('to_session');
 }
 $UI_TEXTS = customize('get', 'ui_texts');
+
diff --git a/data/web/inc/vars.inc.php b/data/web/inc/vars.inc.php
index 4ac0df47..75a96bba 100644
--- a/data/web/inc/vars.inc.php
+++ b/data/web/inc/vars.inc.php
@@ -9,6 +9,7 @@ This file will be reset on upgrades.
 
 // SQL database connection variables
 $database_type = 'mysql';
+$database_sock = '/var/run/mysqld/mysqld.sock';
 $database_host = 'mysql';
 $database_user = getenv('DBUSER');
 $database_pass = getenv('DBPASS');
diff --git a/data/web/js/admin.js b/data/web/js/admin.js
index d4fa4097..17df1cf0 100644
--- a/data/web/js/admin.js
+++ b/data/web/js/admin.js
@@ -19,13 +19,13 @@ jQuery(function($){
   });
   $("#rspamd_preset_1").on('click', function(e) {
     e.preventDefault();
-    $("form[data-id=rsetting]").find("#desc").val(lang.rsettings_preset_1);
-    $("form[data-id=rsetting]").find("#content").val('priority = 10;\nauthenticated = yes;\napply "default" {\n  symbols_enabled = ["DKIM_SIGNED", "RATELIMIT_UPDATE", "RATELIMIT_CHECK", "DYN_RL_CHECK", "HISTORY_SAVE", "MILTER_HEADERS", "ARC_SIGNED"];\n}');
+    $("form[data-id=rsetting]").find("#adminRspamdSettingsDesc").val(lang.rsettings_preset_1);
+    $("form[data-id=rsetting]").find("#adminRspamdSettingsContent").val('priority = 10;\nauthenticated = yes;\napply "default" {\n  symbols_enabled = ["DKIM_SIGNED", "RATELIMIT_UPDATE", "RATELIMIT_CHECK", "DYN_RL_CHECK", "HISTORY_SAVE", "MILTER_HEADERS", "ARC_SIGNED"];\n}');
   });
   $("#rspamd_preset_2").on('click', function(e) {
     e.preventDefault();
-    $("form[data-id=rsetting]").find("#desc").val(lang.rsettings_preset_2);
-    $("form[data-id=rsetting]").find("#content").val('priority = 10;\nrcpt = "/postmaster@.*/";\nwant_spam = yes;');
+    $("form[data-id=rsetting]").find("#adminRspamdSettingsDesc").val(lang.rsettings_preset_2);
+    $("form[data-id=rsetting]").find("#adminRspamdSettingsContent").val('priority = 10;\nrcpt = "/postmaster@.*/";\nwant_spam = yes;');
   });
   $("#dkim_missing_keys").on('click', function(e) {
     e.preventDefault();
@@ -122,14 +122,14 @@ jQuery(function($){
         item.action = '<div class="btn-group">' +
           '<a href="#" data-toggle="modal" id="miau" data-target="#testRelayhostModal" data-relayhost-id="' + encodeURI(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-stats"></span> Test</a>' +
           '<a href="/edit.php?relayhost=' + encodeURI(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-          '<a href="#" id="delete_selected" data-id="single-rlshost" data-api-url="delete/relayhost" data-item="' + encodeURI(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+          '<a href="#" data-action="delete_selected" data-id="single-rlshost" data-api-url="delete/relayhost" data-item="' + encodeURI(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
           '</div>';
         item.chkbox = '<input type="checkbox" data-id="rlyhosts" name="multi_select" value="' + item.id + '" />';
       });
     } else if (table == 'forwardinghoststable') {
       $.each(data, function (i, item) {
         item.action = '<div class="btn-group">' +
-          '<a href="#" id="delete_selected" data-id="single-fwdhost" data-api-url="delete/fwdhost" data-item="' + encodeURI(item.host) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+          '<a href="#" data-action="delete_selected" data-id="single-fwdhost" data-api-url="delete/fwdhost" data-item="' + encodeURI(item.host) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
           '</div>';
         if (item.keep_spam == "yes") {
           item.keep_spam = lang.no;
@@ -145,7 +145,7 @@ jQuery(function($){
         item.chkbox = '<input type="checkbox" data-id="domain_admins" name="multi_select" value="' + item.username + '" />';
         item.action = '<div class="btn-group">' +
           '<a href="/edit.php?domainadmin=' + encodeURI(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-          '<a href="#" id="delete_selected" data-id="single-domain-admin" data-api-url="delete/domain-admin" data-item="' + encodeURI(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+          '<a href="#" data-action="delete_selected" data-id="single-domain-admin" data-api-url="delete/domain-admin" data-item="' + encodeURI(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
           '<a href="/index.php?duallogin=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-success"><span class="glyphicon glyphicon-user"></span> Login</a>' +
           '</div>';
       });
diff --git a/data/web/js/api.js b/data/web/js/api.js
index a573d7f4..e8293dbc 100644
--- a/data/web/js/api.js
+++ b/data/web/js/api.js
@@ -71,7 +71,7 @@ $(document).ready(function() {
   });
 
   // General API edit actions
-  $(document).on('click', '#edit_selected', function(e) {
+  $(document).on('click', "[data-action='edit_selected']", function(e) {
     e.preventDefault();
     var id = $(this).data('id');
     var api_url = $(this).data('api-url');
@@ -159,7 +159,7 @@ $(document).ready(function() {
   });
 
   // General API add actions
-  $(document).on('click', '#add_item', function(e) {
+  $(document).on('click', "[data-action='add_item']", function(e) {
     e.preventDefault();
     var id = $(this).data('id');
     var api_url = $(this).data('api-url');
@@ -252,7 +252,7 @@ $(document).ready(function() {
   });
 
   // General API delete actions
-  $(document).on('click', '#delete_selected', function(e) {
+  $(document).on('click', "[data-action='delete_selected']", function(e) {
     e.preventDefault();
     var id = $(this).data('id');
     // If clicked element #delete_selected has data-item attribute, it is added to "items"
@@ -283,6 +283,7 @@ $(document).ready(function() {
         keyboard: false
       })
       .one('click', '#IsConfirmed', function(e) {
+        if (is_active($('#IsConfirmed'))) { return false; }
         $.ajax({
           type: "POST",
           dataType: "json",
diff --git a/data/web/js/edit.js b/data/web/js/edit.js
index f91f6b70..45690710 100644
--- a/data/web/js/edit.js
+++ b/data/web/js/edit.js
@@ -10,37 +10,43 @@ $(document).ready(function() {
   });
   $("#disable_sender_check").click(function( event ) {
     if ($("form[data-id='editmailbox'] #disable_sender_check:checked").length > 0) {
-      $('#sender_acl').prop('disabled', true);
-      $('#sender_acl').selectpicker('refresh');
+      $('#editSelectSenderACL').prop('disabled', true);
+      $('#editSelectSenderACL').selectpicker('refresh');
     }
     else {
-      $('#sender_acl').prop('disabled', false);
-      $('#sender_acl').selectpicker('refresh');
+      $('#editSelectSenderACL').prop('disabled', false);
+      $('#editSelectSenderACL').selectpicker('refresh');
     }
   });
   if ($("form[data-id='editalias'] .goto_checkbox:checked").length > 0) {
     $('#textarea_alias_goto').prop('disabled', true);
   }
+
   $("#script_data").numberedtextarea({allowTabChar: true});
+
+  $("#mailbox-password-warning-close").click(function( event ) {
+    $('#mailbox-passwd-hidden-info').addClass('hidden');
+    $('#mailbox-passwd-form-groups').removeClass('hidden');
+  });
 });
-if ($("#multiple_bookings_select").val() == "custom") {
+if ($("#editSelectMultipleBookings").val() == "custom") {
   $("#multiple_bookings_custom_div").show();
-  $("#multiple_bookings").val($("#multiple_bookings_custom").val());
+  $('input[name=multiple_bookings]').val($("#multiple_bookings_custom").val());
 }
-$("#multiple_bookings_select").change(function() {
-  $("#multiple_bookings").val($("#multiple_bookings_select").val());
-  if ($("#multiple_bookings").val() == "custom") {
+$("#editSelectMultipleBookings").change(function() {
+  $('input[name=multiple_bookings]').val($("#editSelectMultipleBookings").val());
+  if ($('input[name=multiple_bookings]').val() == "custom") {
     $("#multiple_bookings_custom_div").show();
   }
   else {
     $("#multiple_bookings_custom_div").hide();
   }
 });
-if ($("#sender_acl option[value='\*']:selected").length > 0){
+if ($("#editSelectSenderACL option[value='\*']:selected").length > 0){
   $("#sender_acl_disabled").show();
 }
-$('#sender_acl').change(function() {
-  if ($("#sender_acl option[value='\*']:selected").length > 0){
+$('#editSelectSenderACL').change(function() {
+  if ($("#editSelectSenderACL option[value='\*']:selected").length > 0){
     $("#sender_acl_disabled").show();
   }
   else {
@@ -48,7 +54,7 @@ $('#sender_acl').change(function() {
   }
 });
 $("#multiple_bookings_custom").bind("change keypress keyup blur", function() {
-  $("#multiple_bookings").val($("#multiple_bookings_custom").val());
+  $('input[name=multiple_bookings]').val($("#multiple_bookings_custom").val());
 });
 jQuery(function($){
   // http://stackoverflow.com/questions/46155/validate-email-address-in-javascript
diff --git a/data/web/js/mailbox.js b/data/web/js/mailbox.js
index 34f3ec20..836ec872 100644
--- a/data/web/js/mailbox.js
+++ b/data/web/js/mailbox.js
@@ -6,7 +6,6 @@ $(document).ready(function() {
       var domain_list = [];
       $.ajax({
         dataType: 'json',
-        'async': false,
         url: '/api/v1/get/domain/all',
         jsonp: false,
         error: function () {
@@ -85,10 +84,10 @@ $(document).ready(function() {
     event.preventDefault();
     $('[data-hibp]').trigger('input');
     var random_passwd = Math.random().toString(36).slice(-8)
-    $('#password').prop('type', 'text');
-    $('#password').val(random_passwd);
-    $('#password2').prop('type', 'text');
-    $('#password2').val(random_passwd);
+    $(this).closest("form").find("input[name='password']").prop('type', 'text');
+    $(this).closest("form").find("input[name='password2']").prop('type', 'text');
+    $(this).closest("form").find("input[name='password']").val(random_passwd);
+    $(this).closest("form").find("input[name='password2']").val(random_passwd);
   });
 
   $(".goto_checkbox").click(function( event ) {
@@ -302,7 +301,7 @@ jQuery(function($){
             item.action = '<div class="btn-group">';
             if (role == "admin") {
               item.action += '<a href="/edit.php?domain=' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-                '<a href="#" id="delete_selected" data-id="single-domain" data-api-url="delete/domain" data-item="' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>';
+                '<a href="#" data-action="delete_selected" data-id="single-domain" data-api-url="delete/domain" data-item="' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>';
             }
             else {
               item.action += '<a href="/edit.php?domain=' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>';
@@ -386,14 +385,14 @@ jQuery(function($){
             if (acl_data.login_as === 1) {
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?mailbox=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '<a href="/index.php?duallogin=' + encodeURIComponent(item.username) + '" class="login_as btn btn-xs btn-success"><span class="glyphicon glyphicon-user"></span> Login</a>' +
               '</div>';
             }
             else {
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?mailbox=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             }
             item.in_use = '<div class="progress">' +
@@ -461,7 +460,7 @@ jQuery(function($){
             }
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?resource=' + encodeURIComponent(item.name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-resource" data-api-url="delete/resource" data-item="' + item.name + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-resource" data-api-url="delete/resource" data-item="' + item.name + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="resource" name="multi_select" value="' + encodeURIComponent(item.name) + '" />';
             item.name = escapeHtml(item.name);
@@ -520,7 +519,7 @@ jQuery(function($){
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?bcc=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-bcc" data-api-url="delete/bcc" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-bcc" data-api-url="delete/bcc" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="bcc" name="multi_select" value="' + item.id + '" />';
             item.local_dest = escapeHtml(item.local_dest);
@@ -583,7 +582,7 @@ jQuery(function($){
               item.recipient_map_new = escapeHtml(item.recipient_map_new);
               item.action = '<div class="btn-group">' +
                 '<a href="/edit.php?recipient_map=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-                '<a href="#" id="delete_selected" data-id="single-recipient_map" data-api-url="delete/recipient_map" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+                '<a href="#" data-action="delete_selected" data-id="single-recipient_map" data-api-url="delete/recipient_map" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
                 '</div>';
               item.chkbox = '<input type="checkbox" data-id="recipient_map" name="multi_select" value="' + item.id + '" />';
             });
@@ -638,7 +637,7 @@ jQuery(function($){
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?alias=' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-alias" data-api-url="delete/alias" data-item="' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-alias" data-api-url="delete/alias" data-item="' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="alias" name="multi_select" value="' + encodeURIComponent(item.id) + '" />';
             item.goto = escapeHtml(item.goto.replace(/,/g, " "));
@@ -713,7 +712,7 @@ jQuery(function($){
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?aliasdomain=' + encodeURIComponent(item.alias_domain) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-alias-domain" data-api-url="delete/alias-domain" data-item="' + encodeURIComponent(item.alias_domain) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-alias-domain" data-api-url="delete/alias-domain" data-item="' + encodeURIComponent(item.alias_domain) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '<a href="#dnsInfoModal" class="btn btn-xs btn-info" data-toggle="modal" data-domain="' + encodeURIComponent(item.alias_domain) + '"><span class="glyphicon glyphicon-question-sign"></span> DNS</a></div>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="alias-domain" name="multi_select" value="' + encodeURIComponent(item.alias_domain) + '" />';
@@ -781,7 +780,7 @@ jQuery(function($){
             item.server_w_port = escapeHtml(item.user1) + '@' + item.host1 + ':' + item.port1;
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?syncjob=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-syncjob" data-api-url="delete/syncjob" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-syncjob" data-api-url="delete/syncjob" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="syncjob" name="multi_select" value="' + item.id + '" />';
             if (item.is_running == 1) {
@@ -852,7 +851,7 @@ jQuery(function($){
             item.filter_type = '<div class="label label-default">' + item.filter_type.charAt(0).toUpperCase() + item.filter_type.slice(1).toLowerCase() + '</div>'
             item.action = '<div class="btn-group">' +
               '<a href="/edit.php?filter=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-              '<a href="#" id="delete_selected" data-id="single-filter" data-api-url="delete/filter" data-item="' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="single-filter" data-api-url="delete/filter" data-item="' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="filter_item" name="multi_select" value="' + item.id + '" />'
           });
diff --git a/data/web/js/mailcow.js b/data/web/js/mailcow.js
index d9019c23..89cfabf5 100644
--- a/data/web/js/mailcow.js
+++ b/data/web/js/mailcow.js
@@ -110,7 +110,7 @@ $(document).ready(function() {
 
   // Disable disallowed inputs
   $('[data-acl="0"]').each(function(){
-    if ($(this).attr('class') == 'btn-group') {
+    if ($(this).hasClass('btn-group')) {
       $(this).find('a').each(function(){
         $(this).removeClass('dropdown-toggle')
           .removeAttr('data-toggle')
@@ -124,7 +124,7 @@ $(document).ready(function() {
       $(this).find('button').each(function() {
         $(this).attr("disabled", true);
       });
-    } else if ($(this).attr('class') == 'input-group') {
+    } else if ($(this).hasClass('input-group')) {
       $(this).find('input').each(function() {
         $(this).removeClass('dropdown-toggle')
           .removeAttr('data-toggle')
diff --git a/data/web/js/quarantine.js b/data/web/js/quarantine.js
index 21ec9ddc..f8438099 100644
--- a/data/web/js/quarantine.js
+++ b/data/web/js/quarantine.js
@@ -28,7 +28,7 @@ jQuery(function($){
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
               '<a href="#" data-item="' + encodeURI(item.id) + '" class="btn btn-xs btn-info show_qid_info"><span class="glyphicon glyphicon-modal-window"></span> ' + lang.show_item + '</a>' +
-              '<a href="#" id="delete_selected" data-id="del-single-qitem" data-api-url="delete/qitem" data-item="' + encodeURI(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+              '<a href="#" data-action="delete_selected" data-id="del-single-qitem" data-api-url="delete/qitem" data-item="' + encodeURI(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="qitems" name="multi_select" value="' + item.id + '" />';
           });
diff --git a/data/web/js/user.js b/data/web/js/user.js
index 226d039a..5649d6c6 100644
--- a/data/web/js/user.js
+++ b/data/web/js/user.js
@@ -64,7 +64,7 @@ jQuery(function($){
           $.each(data, function (i, item) {
             if (acl_data.spam_alias === 1) {
               item.action = '<div class="btn-group">' +
-                '<a href="#" id="delete_selected" data-id="single-tla" data-api-url="delete/time_limited_alias" data-item="' + encodeURIComponent(item.address) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+                '<a href="#" data-action="delete_selected" data-id="single-tla" data-api-url="delete/time_limited_alias" data-item="' + encodeURIComponent(item.address) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
                 '</div>';
               item.chkbox = '<input type="checkbox" data-id="tla" name="multi_select" value="' + encodeURIComponent(item.address) + '" />';
               item.address = escapeHtml(item.address);
@@ -123,7 +123,7 @@ jQuery(function($){
             if (acl_data.syncjobs === 1) {
               item.action = '<div class="btn-group">' +
                 '<a href="/edit.php?syncjob=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
-                '<a href="#" id="delete_selected" data-id="single-syncjob" data-api-url="delete/syncjob" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+                '<a href="#" data-action="delete_selected" data-id="single-syncjob" data-api-url="delete/syncjob" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
                 '</div>';
               item.chkbox = '<input type="checkbox" data-id="syncjob" name="multi_select" value="' + item.id + '" />';
             }
diff --git a/data/web/mailbox.php b/data/web/mailbox.php
index 7e865fbb..70d8dbb6 100644
--- a/data/web/mailbox.php
+++ b/data/web/mailbox.php
@@ -44,10 +44,10 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
                   <? if($_SESSION['mailcow_cc_role'] == "admin"): ?>
-                    <li><a id="edit_selected" data-id="domain" data-api-url='edit/domain' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                    <li><a id="edit_selected" data-id="domain" data-api-url='edit/domain' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                    <li><a data-action="edit_selected" data-id="domain" data-api-url='edit/domain' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                    <li><a data-action="edit_selected" data-id="domain" data-api-url='edit/domain' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                     <li role="separator" class="divider"></li>
-                    <li><a id="delete_selected" data-id="domain" data-api-url='delete/domain' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                    <li><a data-action="delete_selected" data-id="domain" data-api-url='delete/domain' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                   <? endif; ?>
                 </ul>
                 <? if($_SESSION['mailcow_cc_role'] == "admin"): ?>
@@ -74,10 +74,10 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="mailbox" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="mailbox" data-api-url='edit/mailbox' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="mailbox" data-api-url='edit/mailbox' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="mailbox" data-api-url='edit/mailbox' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="mailbox" data-api-url='edit/mailbox' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-id="mailbox" data-api-url='delete/mailbox' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-id="mailbox" data-api-url='delete/mailbox' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addMailboxModal"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_mailbox'];?></a>
               </div>
@@ -101,10 +101,10 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="resource" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="resource" data-api-url='edit/resource' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="resource" data-api-url='edit/resource' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="resource" data-api-url='edit/resource' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="resource" data-api-url='edit/resource' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-id="resource" data-api-url='delete/resource' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-id="resource" data-api-url='delete/resource' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addResourceModal"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_resource'];?></a>
               </div>
@@ -134,10 +134,10 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="alias-domain" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="alias-domain" data-api-url='edit/alias-domain' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="alias-domain" data-api-url='edit/alias-domain' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="alias-domain" data-api-url='edit/alias-domain' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="alias-domain" data-api-url='edit/alias-domain' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-id="alias-domain" data-api-url='delete/alias-domain' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-id="alias-domain" data-api-url='delete/alias-domain' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addAliasDomainModal"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_domain_alias'];?></a>
               </div>
@@ -161,10 +161,10 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="alias" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="alias" data-api-url='edit/alias' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="alias" data-api-url='edit/alias' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="alias" data-api-url='edit/alias' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="alias" data-api-url='edit/alias' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-id="alias" data-api-url='delete/alias' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-id="alias" data-api-url='delete/alias' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addAliasModal"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_alias'];?></a>
               </div>
@@ -188,12 +188,12 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="syncjob" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"last_run":""}' href="#"><?=$lang['mailbox']['last_run_reset'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"last_run":""}' href="#"><?=$lang['mailbox']['last_run_reset'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-id="syncjob" data-api-url='delete/syncjob' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-id="syncjob" data-api-url='delete/syncjob' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addSyncJobModalAdmin"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['create_syncjob'];?></a>
               </div>
@@ -218,13 +218,13 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="filter_item" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"filter_type":"prefilter"}' href="#"><?=$lang['mailbox']['set_prefilter'];?></a></li>
-                  <li><a id="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"filter_type":"postfilter"}' href="#"><?=$lang['mailbox']['set_postfilter'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"filter_type":"prefilter"}' href="#"><?=$lang['mailbox']['set_prefilter'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="filter_item" data-api-url='edit/filter' data-api-attr='{"filter_type":"postfilter"}' href="#"><?=$lang['mailbox']['set_postfilter'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-id="filter_item" data-api-url='delete/filter' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-id="filter_item" data-api-url='delete/filter' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addFilterModalAdmin"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_filter'];?></a>
               </div>
@@ -249,13 +249,13 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="bcc" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"type":"sender"}' href="#"><?=$lang['mailbox']['bcc_to_sender'];?></a></li>
-                  <li><a id="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"type":"rcpt"}' href="#"><?=$lang['mailbox']['bcc_to_rcpt'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"type":"sender"}' href="#"><?=$lang['mailbox']['bcc_to_sender'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="bcc" data-api-url='edit/bcc' data-api-attr='{"type":"rcpt"}' href="#"><?=$lang['mailbox']['bcc_to_rcpt'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-id="bcc" data-api-url='delete/bcc' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-id="bcc" data-api-url='delete/bcc' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addBCCModalAdmin"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_bcc_entry'];?></a>
               </div>
@@ -277,10 +277,10 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
                 <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="recipient_map" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
                 <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
                 <ul class="dropdown-menu">
-                  <li><a id="edit_selected" data-id="recipient_map" data-api-url='edit/recipient_map' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-                  <li><a id="edit_selected" data-id="recipient_map" data-api-url='edit/recipient_map' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="recipient_map" data-api-url='edit/recipient_map' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="recipient_map" data-api-url='edit/recipient_map' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
                   <li role="separator" class="divider"></li>
-                  <li><a id="delete_selected" data-id="recipient_map" data-api-url='delete/recipient_map' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                  <li><a data-action="delete_selected" data-id="recipient_map" data-api-url='delete/recipient_map' href="#"><?=$lang['mailbox']['remove'];?></a></li>
                 </ul>
                 <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addRecipientMapModalAdmin"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_recipient_map_entry'];?></a>
               </div>
diff --git a/data/web/modals/admin.php b/data/web/modals/admin.php
index 8bca0d87..2cce623e 100644
--- a/data/web/modals/admin.php
+++ b/data/web/modals/admin.php
@@ -17,13 +17,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="desc"><?=$lang['admin']['rsetting_desc'];?>:</label>
             <div class="col-sm-10">
-              <input type="text" class="form-control" name="desc" id="desc" required>
+              <input type="text" class="form-control" id="adminRspamdSettingsDesc" name="desc" required>
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-2" for="content"><?=$lang['admin']['rsetting_content'];?>:</label>
             <div class="col-sm-10">
-              <textarea class="form-control" id="content" name="content" rows="10"><?=$rsetting_details['content'];?></textarea>
+              <textarea class="form-control" id="adminRspamdSettingsContent" name="content" rows="10"><?=$rsetting_details['content'];?></textarea>
             </div>
           </div>
           <div class="form-group">
@@ -35,7 +35,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           </div>
           <div class="form-group">
             <div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="rsetting" data-api-url='add/rsetting' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus" aria-hidden="true"></span> <?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="rsetting" data-api-url='add/rsetting' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus" aria-hidden="true"></span> <?=$lang['admin']['add'];?></button>
             </div>
           </div>
         </form>
@@ -60,7 +60,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="username"><?=$lang['admin']['username'];?>:</label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="username" id="username" required>
+                <input type="text" class="form-control" name="username" required>
                 &rdsh; <kbd>a-z A-Z - _ .</kbd>
               </div>
             </div>
@@ -79,13 +79,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
             <div class="form-group">
               <label class="control-label col-sm-2" for="password"><?=$lang['admin']['password'];?>:</label>
               <div class="col-sm-10">
-              <input type="password" class="form-control" data-hibp="true" name="password" id="password" placeholder="" required>
+              <input type="password" class="form-control" data-hibp="true" name="password" placeholder="" required>
               </div>
             </div>
             <div class="form-group">
               <label class="control-label col-sm-2" for="password2"><?=$lang['admin']['password_repeat'];?>:</label>
               <div class="col-sm-10">
-              <input type="password" class="form-control" name="password2" id="password2" placeholder="" required>
+              <input type="password" class="form-control" name="password2" placeholder="" required>
               </div>
             </div>
             <div class="form-group">
@@ -97,7 +97,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
             </div>
             <div class="form-group">
               <div class="col-sm-offset-2 col-sm-10">
-                <button class="btn btn-default" id="add_item" data-id="add_domain_admin" data-api-url='add/domain-admin' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus" aria-hidden="true"></span> <?=$lang['admin']['add'];?></button>
+                <button class="btn btn-default" data-action="add_item" data-id="add_domain_admin" data-api-url='add/domain-admin' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-plus" aria-hidden="true"></span> <?=$lang['admin']['add'];?></button>
               </div>
             </div>
           </form>
@@ -115,11 +115,11 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
       </div>
       <div class="modal-body">
           <form class="form-horizontal" data-cached-form="true" id="test_relayhost_form" role="form" method="post">
-            <input type="hidden" class="form-control" name="relayhost_id" id="relayhost_id">
+            <input type="hidden" class="form-control" name="relayhost_id">
             <div class="form-group">
               <label class="control-label col-sm-2" for="mail_from"><?=$lang['admin']['relay_from'];?></label>
               <div class="col-sm-10">
-                <input type="text" class="form-control" name="mail_from" id="mail_from" placeholder="relay@example.org">
+                <input type="text" class="form-control" name="mail_from" placeholder="relay@example.org">
               </div>
             </div>
             <div class="form-group">
diff --git a/data/web/modals/footer.php b/data/web/modals/footer.php
index e861ab4e..b5e49b15 100644
--- a/data/web/modals/footer.php
+++ b/data/web/modals/footer.php
@@ -8,19 +8,19 @@ if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "adm
       <div class="modal-body">
       <form role="form" method="post">
         <div class="form-group">
-          <input type="text" class="form-control" name="key_id" id="key_id" placeholder="<?=$lang['tfa']['key_id'];?>" autocomplete="off" required>
+          <input type="text" class="form-control" name="key_id" placeholder="<?=$lang['tfa']['key_id'];?>" autocomplete="off" required>
         </div>
         <hr>
         <p class="help-block"><?=$lang['tfa']['api_register'];?></p>
         <div class="form-group">
-          <input type="text" class="form-control" name="yubico_id" id="yubico_id" placeholder="Yubico API ID" autocomplete="off" required>
+          <input type="text" class="form-control" name="yubico_id" placeholder="Yubico API ID" autocomplete="off" required>
         </div>
         <div class="form-group">
-          <input type="text" class="form-control" name="yubico_key" id="yubico_key" placeholder="Yubico API Key" autocomplete="off" required>
+          <input type="text" class="form-control" name="yubico_key" placeholder="Yubico API Key" autocomplete="off" required>
         </div>
         <hr>
         <div class="form-group">
-          <input type="password" class="form-control" name="confirm_password" id="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
+          <input type="password" class="form-control" name="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
         </div>
         <div class="form-group">
           <div class="input-group">
@@ -43,10 +43,10 @@ if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "adm
       <div class="modal-body">
         <form role="form" method="post" id="u2f_reg_form">
           <div class="form-group">
-            <input type="text" class="form-control" name="key_id" id="key_id" placeholder="<?=$lang['tfa']['key_id'];?>" autocomplete="off" required>
+            <input type="text" class="form-control" name="key_id" placeholder="<?=$lang['tfa']['key_id'];?>" autocomplete="off" required>
           </div>
           <div class="form-group">
-            <input type="password" class="form-control" name="confirm_password" id="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
+            <input type="password" class="form-control" name="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
           </div>
           <hr>
           <p id="u2f_status_reg"></p>
@@ -67,16 +67,16 @@ if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "adm
       <div class="modal-body">
         <form role="form" method="post">
           <div class="form-group">
-            <input type="text" class="form-control" name="key_id" id="key_id" placeholder="<?=$lang['tfa']['key_id_totp'];?>" autocomplete="off" required>
+            <input type="text" class="form-control" name="key_id" placeholder="<?=$lang['tfa']['key_id_totp'];?>" autocomplete="off" required>
           </div>
           <div class="form-group">
-            <input type="password" class="form-control" name="confirm_password" id="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
+            <input type="password" class="form-control" name="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
           </div>
           <hr>
           <?php
           $totp_secret = $tfa->createSecret();
           ?>
-          <input type="hidden" value="<?=$totp_secret;?>" name="totp_secret" id="totp_secret"/>
+          <input type="hidden" value="<?=$totp_secret;?>" name="totp_secret">
           <input type="hidden" name="tfa_method" value="totp">
           <ol>
             <li>
@@ -88,7 +88,7 @@ if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "adm
             </li>
             <li>
               <p><?=$lang['tfa']['confirm_totp_token'];?>:</p>
-              <p><input type="number" style="width:33%" class="form-control" name="totp_confirm_token" id="totp_confirm_token" autocomplete="off" required></p>
+              <p><input type="number" style="width:33%" class="form-control" name="totp_confirm_token" autocomplete="off" required></p>
               <p><button class="btn btn-default" type="submit" name="set_tfa"><?=$lang['tfa']['confirm'];?></button></p>
             </li>
           </ol>
@@ -105,7 +105,7 @@ if (isset($_SESSION['mailcow_cc_role']) && ($_SESSION['mailcow_cc_role'] == "adm
       <div class="modal-body">
         <form role="form" method="post">
           <div class="input-group">
-            <input type="password" class="form-control" name="confirm_password" id="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
+            <input type="password" class="form-control" name="confirm_password" placeholder="<?=$lang['user']['password_now'];?>" autocomplete="off" required>
             <span class="input-group-btn">
               <input type="hidden" name="tfa_method" value="none">
               <button class="btn btn-danger" type="submit" name="set_tfa"><?=$lang['tfa']['delete_tfa'];?></button>
@@ -135,7 +135,7 @@ if (isset($_SESSION['pending_tfa_method'])):
           <div class="form-group">
             <div class="input-group">
               <span class="input-group-addon" id="yubi-addon"><img alt="Yubicon Icon" src="/img/yubi.ico"></span>
-              <input type="text" name="token" id="token" class="form-control" autocomplete="off" placeholder="Touch Yubikey" aria-describedby="yubi-addon">
+              <input type="text" name="token" class="form-control" autocomplete="off" placeholder="Touch Yubikey" aria-describedby="yubi-addon">
               <input type="hidden" name="tfa_method" value="yubi_otp">
             </div>
           </div>
@@ -160,7 +160,7 @@ if (isset($_SESSION['pending_tfa_method'])):
           <div class="form-group">
             <div class="input-group">
               <span class="input-group-addon" id="tfa-addon"><span class="glyphicon glyphicon-lock" aria-hidden="true"></span></span>
-              <input type="number" min="000000" max="999999" name="token" id="token" class="form-control" placeholder="123456" aria-describedby="tfa-addon">
+              <input type="number" min="000000" max="999999" name="token" class="form-control" placeholder="123456" aria-describedby="tfa-addon">
               <input type="hidden" name="tfa_method" value="totp">
             </div>
           </div>
diff --git a/data/web/modals/mailbox.php b/data/web/modals/mailbox.php
index 160ab178..fe99bc6d 100644
--- a/data/web/modals/mailbox.php
+++ b/data/web/modals/mailbox.php
@@ -17,13 +17,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="local_part"><?=$lang['add']['mailbox_username'];?></label>
             <div class="col-sm-10">
-              <input type="text" pattern="[A-Za-z0-9\.!#$%&'*+/=?^_`{|}~-]+" autocorrect="off" autocapitalize="none" class="form-control" name="local_part" id="local_part" required>
+              <input type="text" pattern="[A-Za-z0-9\.!#$%&'*+/=?^_`{|}~-]+" autocorrect="off" autocapitalize="none" class="form-control" name="local_part" required>
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-2" for="domain"><?=$lang['add']['domain'];?>:</label>
             <div class="col-sm-10">
-              <select class="full-width-select" data-live-search="true" id="addSelectDomain" name="domain" id="domain" required>
+              <select class="full-width-select" data-live-search="true" id="addSelectDomain" name="domain" required>
               <?php
               foreach (mailbox('get', 'domains') as $domain) {
                 echo "<option>".htmlspecialchars($domain)."</option>";
@@ -35,7 +35,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="name"><?=$lang['add']['full_name'];?></label>
             <div class="col-sm-10">
-            <input type="text" class="form-control" name="name" id="name">
+            <input type="text" class="form-control" name="name">
             </div>
           </div>
           <div class="form-group">
@@ -50,13 +50,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="password"><?=$lang['add']['password'];?> (<a href="#" class="generate_password"><?=$lang['add']['generate'];?></a>)</label>
             <div class="col-sm-10">
-            <input type="password" data-hibp="true" class="form-control" name="password" id="password" placeholder="" required>
+            <input type="password" data-hibp="true" class="form-control" name="password" placeholder="" required>
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-2" for="password2"><?=$lang['add']['password_repeat'];?></label>
             <div class="col-sm-10">
-            <input type="password" class="form-control" name="password2" id="password2" placeholder="" required>
+            <input type="password" class="form-control" name="password2" placeholder="" required>
             </div>
           </div>
           <div class="form-group">
@@ -68,7 +68,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           </div>
           <div class="form-group">
             <div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_mailbox" data-api-url='add/mailbox' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_mailbox" data-api-url='add/mailbox' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
             </div>
           </div>
         </form>
@@ -89,37 +89,37 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="domain"><?=$lang['add']['domain'];?>:</label>
 						<div class="col-sm-10">
-						<input type="text" autocorrect="off" autocapitalize="none" class="form-control" name="domain" id="domain" required>
+						<input type="text" autocorrect="off" autocapitalize="none" class="form-control" name="domain" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="description"><?=$lang['add']['description'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="description" id="description" required>
+						<input type="text" class="form-control" name="description" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="aliases"><?=$lang['add']['max_aliases'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="aliases" id="aliases" value="400" required>
+						<input type="number" class="form-control" name="aliases" value="400" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="mailboxes"><?=$lang['add']['max_mailboxes'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="mailboxes" id="mailboxes" value="10" required>
+						<input type="number" class="form-control" name="mailboxes" value="10" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="maxquota"><?=$lang['add']['mailbox_quota_m'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="maxquota" id="maxquota" value="3072" required>
+						<input type="number" class="form-control" name="maxquota" value="3072" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="quota"><?=$lang['add']['domain_quota_m'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="quota" id="quota" value="10240" required>
+						<input type="number" class="form-control" name="quota" value="10240" required>
 						</div>
 					</div>
 					<div class="form-group">
@@ -133,10 +133,10 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="quota">Ratelimit</label>
             <div class="col-sm-7">
-            <input name="rl_value" id="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" class="form-control" placeholder="disabled">
+            <input name="rl_value" type="number" value="<?=(!empty($rl['value'])) ? $rl['value'] : null;?>" class="form-control" placeholder="disabled">
             </div>
             <div class="col-sm-3">
-            <select name="rl_frame" id="rl_frame" class="form-control">
+            <select name="rl_frame" class="form-control">
               <option value="s" <?=(isset($rl['frame']) && $rl['frame'] == 's') ? 'selected' : null;?>>msgs / second</option>
               <option value="m" <?=(isset($rl['frame']) && $rl['frame'] == 'm') ? 'selected' : null;?>>msgs / minute</option>
               <option value="h" <?=(isset($rl['frame']) && $rl['frame'] == 'h') ? 'selected' : null;?>>msgs / hour</option>
@@ -158,8 +158,8 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <hr>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_domain" data-api-url='add/domain' data-api-attr='{}' href="#"><?=$lang['add']['add_domain_only'];?></button>
-              <button class="btn btn-default" id="add_item" data-id="add_domain" data-api-url='add/domain' data-api-attr='{"restart_sogo":"1"}' href="#"><?=$lang['add']['add_domain_restart'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_domain" data-api-url='add/domain' data-api-attr='{}' href="#"><?=$lang['add']['add_domain_only'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_domain" data-api-url='add/domain' data-api-attr='{"restart_sogo":"1"}' href="#"><?=$lang['add']['add_domain_restart'];?></button>
 						</div>
 					</div>
 					<p><span class="glyphicon glyphicon-exclamation-sign text-danger"></span> <?=$lang['add']['restart_sogo_hint'];?></p>
@@ -181,13 +181,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="description"><?=$lang['add']['description'];?></label>
 						<div class="col-sm-10">
-							<input type="text" class="form-control" name="description" id="description" required>
+							<input type="text" class="form-control" name="description" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="domain"><?=$lang['add']['domain'];?>:</label>
 						<div class="col-sm-10">
-							<select data-live-search="true" name="domain" id="domain" title="<?=$lang['add']['select'];?>" required>
+							<select data-live-search="true" name="domain" title="<?=$lang['add']['select'];?>" required>
 							<?php
               foreach (mailbox('get', 'domains') as $domain) {
 								echo "<option>".htmlspecialchars($domain)."</option>";
@@ -199,7 +199,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="domain"><?=$lang['add']['kind'];?>:</label>
 						<div class="col-sm-10">
-							<select name="kind" id="kind" title="<?=$lang['add']['select'];?>" required>
+							<select name="kind" title="<?=$lang['add']['select'];?>" required>
 								<option value="location">Location</option>
 								<option value="group">Group</option>
 								<option value="thing">Thing</option>
@@ -230,7 +230,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_resource" data-api-url='add/resource' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_resource" data-api-url='add/resource' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -262,13 +262,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 							<textarea id="textarea_alias_goto" autocorrect="off" autocapitalize="none" class="form-control" rows="5" id="goto" name="goto" required></textarea>
 							<p><?=$lang['add']['target_address_info'];?></p>
 							<div class="checkbox">
-                <label><input class="goto_checkbox" id="goto_null" type="checkbox" value="1" name="goto_null"> <?=$lang['add']['goto_null'];?></label>
+                <label><input class="goto_checkbox" type="checkbox" value="1" name="goto_null"> <?=$lang['add']['goto_null'];?></label>
 							</div>
               <div class="checkbox">
-                <label><input class="goto_checkbox" id="goto_spam" type="checkbox" value="1" name="goto_spam"> <?=$lang['add']['goto_spam'];?></label>
+                <label><input class="goto_checkbox" type="checkbox" value="1" name="goto_spam"> <?=$lang['add']['goto_spam'];?></label>
 							</div>
               <div class="checkbox">
-                <label><input class="goto_checkbox" id="goto_ham" type="checkbox" value="1" name="goto_ham"> <?=$lang['add']['goto_ham'];?></label>
+                <label><input class="goto_checkbox" type="checkbox" value="1" name="goto_ham"> <?=$lang['add']['goto_ham'];?></label>
 							</div>
 						</div>
 					</div>
@@ -281,7 +281,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_alias" data-api-url='add/alias' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_alias" data-api-url='add/alias' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -310,7 +310,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="target_domain"><?=$lang['add']['target_domain'];?></label>
 						<div class="col-sm-10">
-							<select data-live-search="true" name="target_domain" id="target_domain" title="<?=$lang['add']['select'];?>" required>
+							<select data-live-search="true" name="target_domain" title="<?=$lang['add']['select'];?>" required>
 							<?php
               foreach (mailbox('get', 'domains') as $domain) {
 								echo "<option>".htmlspecialchars($domain)."</option>";
@@ -328,7 +328,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_alias_domain" data-api-url='add/alias-domain' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_alias_domain" data-api-url='add/alias-domain' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -350,7 +350,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="username"><?=$lang['add']['username'];?>:</label>
             <div class="col-sm-10">
-              <select data-live-search="true" id="addSelectUsername" name="username" id="username" required>
+              <select data-live-search="true" name="username" required>
               <?php
               $domains = mailbox('get', 'domains');
               if (!empty($domains)) {
@@ -368,32 +368,32 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="host1"><?=$lang['add']['hostname'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="host1" id="host1" required>
+						<input type="text" class="form-control" name="host1" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="port1"><?=$lang['add']['port'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="port1" id="port1" min="1" max="65535" value="143" required>
+						<input type="number" class="form-control" name="port1" min="1" max="65535" value="143" required>
             <small class="help-block">1-65535</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="user1"><?=$lang['add']['username'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="user1" id="user1" required>
+						<input type="text" class="form-control" name="user1" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="password1"><?=$lang['add']['password'];?></label>
 						<div class="col-sm-10">
-						<input type="password" class="form-control" name="password1" id="password1" required>
+						<input type="password" class="form-control" name="password1" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="enc1"><?=$lang['add']['enc_method'];?></label>
 						<div class="col-sm-10">
-							<select name="enc1" id="enc1" title="<?=$lang['add']['select'];?>" required>
+							<select name="enc1" title="<?=$lang['add']['select'];?>" required>
                 <option selected>TLS</option>
                 <option>SSL</option>
                 <option>PLAIN</option>
@@ -410,47 +410,47 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="subfolder2"><?=$lang['edit']['subfolder2'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="subfolder2" id="subfolder2" value="External">
+						<input type="text" class="form-control" name="subfolder2" value="External">
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="maxage"><?=$lang['edit']['maxage'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="maxage" id="maxage" min="0" max="32000" value="0">
+						<input type="number" class="form-control" name="maxage" min="0" max="32000" value="0">
             <small class="help-block">0-32000</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="maxbytespersecond"><?=$lang['edit']['maxbytespersecond'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="maxbytespersecond" id="maxbytespersecond" min="0" max="125000000" value="0">
+						<input type="number" class="form-control" name="maxbytespersecond" min="0" max="125000000" value="0">
             <small class="help-block">0-125000000</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="timeout1"><?=$lang['edit']['timeout1'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="timeout1" id="timeout1" min="1" max="32000" value="600">
+						<input type="number" class="form-control" name="timeout1" min="1" max="32000" value="600">
             <small class="help-block">1-32000</small>
 						</div>
 					</div>
           <div class="form-group">
 						<label class="control-label col-sm-2" for="timeout2"><?=$lang['edit']['timeout2'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="timeout2" id="timeout2" min="1" max="32000" value="600">
+						<input type="number" class="form-control" name="timeout2" min="1" max="32000" value="600">
             <small class="help-block">1-32000</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="exclude"><?=$lang['add']['exclude'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="exclude" id="exclude" value="(?i)spam|(?i)junk">
+						<input type="text" class="form-control" name="exclude" value="(?i)spam|(?i)junk">
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="custom_params"><?=$lang['add']['custom_params'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="custom_params" id="custom_params" placeholder="--delete2folders --otheroption">
+						<input type="text" class="form-control" name="custom_params" placeholder="--delete2folders --otheroption">
 						</div>
 					</div>
 					<div class="form-group">
@@ -504,7 +504,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_syncjob" data-api-url='add/syncjob' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_syncjob" data-api-url='add/syncjob' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -525,7 +525,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="username"><?=$lang['add']['username'];?>:</label>
             <div class="col-sm-10">
-              <select data-live-search="true" id="addSelectUsername" name="username" id="username" required>
+              <select data-live-search="true" name="username" required>
               <?php
               $domains = mailbox('get', 'domains');
               if (!empty($domains)) {
@@ -543,7 +543,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="filter_type"><?=$lang['add']['sieve_type'];?>:</label>
             <div class="col-sm-10">
-              <select id="addFilterType" name="filter_type" id="filter_type" required>
+              <select id="addFilterType" name="filter_type" required>
                 <option value="prefilter">Prefilter</option>
                 <option value="postfilter">Postfilter</option>
               </select>
@@ -552,7 +552,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="script_desc"><?=$lang['add']['sieve_desc'];?>:</label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="script_desc" id="script_desc" required maxlength="255">
+						<input type="text" class="form-control" name="script_desc" required maxlength="255">
 						</div>
 					</div>
 					<div class="form-group">
@@ -572,7 +572,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10" id="add_filter_btns">
               <button class="btn btn-default" id="validate_sieve" href="#"><?=$lang['add']['validate'];?></button>
-              <button class="btn btn-success" id="add_item" data-id="add_filter" data-api-url='add/filter' data-api-attr='{}' href="#" disabled><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-success" data-action="add_item" data-id="add_filter" data-api-url='add/filter' data-api-attr='{}' href="#" disabled><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -593,7 +593,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="local_dest"><?=$lang['mailbox']['bcc_local_dest'];?>:</label>
             <div class="col-sm-10">
-              <select data-live-search="true" id="addSelectLocalDest" name="local_dest" id="local_dest" required>
+              <select data-live-search="true" name="local_dest" required>
               <?php
               $domains = mailbox('get', 'domains');
               $alias_domains = mailbox('get', 'alias_domains');
@@ -622,7 +622,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="type"><?=$lang['mailbox']['bcc_map_type'];?>:</label>
             <div class="col-sm-10">
-              <select id="addFBCCType" name="type" id="type" required>
+              <select name="type" required>
                 <option value="sender"><?=$lang['mailbox']['bcc_sender_map'];?></option>
                 <option value="rcpt"><?=$lang['mailbox']['bcc_rcpt_map'];?></option>
               </select>
@@ -631,7 +631,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="bcc_dest"><?=$lang['mailbox']['bcc_destination'];?>:</label>
 						<div class="col-sm-10">
-              <input type="text" class="form-control" name="bcc_dest" id="bcc_dest">
+              <input type="text" class="form-control" name="bcc_dest">
 						</div>
 					</div>
 					<div class="form-group">
@@ -643,7 +643,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-success" id="add_item" data-id="add_bcc" data-api-url='add/bcc' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-success" data-action="add_item" data-id="add_bcc" data-api-url='add/bcc' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -664,14 +664,14 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-2" for="recipient_map_old"><?=$lang['mailbox']['recipient_map_old'];?></label>
             <div class="col-sm-10">
-            <input type="text" class="form-control" name="recipient_map_old" id="recipient_map_old">
+            <input type="text" class="form-control" name="recipient_map_old">
             <small><?=$lang['mailbox']['recipient_map_old_info'];?></small>
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-2" for="recipient_map_new"><?=$lang['mailbox']['recipient_map_new'];?></label>
             <div class="col-sm-10">
-            <input type="text" class="form-control" name="recipient_map_new" id="recipient_map_new">
+            <input type="text" class="form-control" name="recipient_map_new">
             <small><?=$lang['mailbox']['recipient_map_new_info'];?></small>
             </div>
           </div>
@@ -684,7 +684,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-success" id="add_item" data-id="add_recipient_map" data-api-url='add/recipient_map' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-success" data-action="add_item" data-id="add_recipient_map" data-api-url='add/recipient_map' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
diff --git a/data/web/modals/user.php b/data/web/modals/user.php
index 5e0849e2..228670bd 100644
--- a/data/web/modals/user.php
+++ b/data/web/modals/user.php
@@ -18,32 +18,32 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="host1"><?=$lang['add']['hostname'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="host1" id="host1" required>
+						<input type="text" class="form-control" name="host1" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="port1"><?=$lang['add']['port'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="port1" id="port1" min="1" max="65535" value="143" required>
+						<input type="number" class="form-control" name="port1" min="1" max="65535" value="143" required>
             <small class="help-block">1-65535</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="user1"><?=$lang['add']['username'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="user1" id="user1" required>
+						<input type="text" class="form-control" name="user1" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="password1"><?=$lang['add']['password'];?></label>
 						<div class="col-sm-10">
-						<input type="password" class="form-control" name="password1" id="password1" data-hibp="true" required>
+						<input type="password" class="form-control" name="password1" data-hibp="true" required>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="enc1"><?=$lang['add']['enc_method'];?></label>
 						<div class="col-sm-10">
-							<select name="enc1" id="enc1" title="<?=$lang['add']['select'];?>" required>
+							<select name="enc1" title="<?=$lang['add']['select'];?>" required>
                 <option selected>TLS</option>
                 <option>SSL</option>
                 <option>PLAIN</option>
@@ -60,27 +60,27 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="subfolder2"><?=$lang['edit']['subfolder2'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="subfolder2" id="subfolder2" value="External">
+						<input type="text" class="form-control" name="subfolder2" value="External">
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="maxage"><?=$lang['edit']['maxage'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="maxage" id="maxage" min="0" max="32000" value="0">
+						<input type="number" class="form-control" name="maxage" min="0" max="32000" value="0">
             <small class="help-block">0-32000</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="maxbytespersecond"><?=$lang['edit']['maxbytespersecond'];?></label>
 						<div class="col-sm-10">
-						<input type="number" class="form-control" name="maxbytespersecond" id="maxbytespersecond" min="0" max="125000000" value="0">
+						<input type="number" class="form-control" name="maxbytespersecond" min="0" max="125000000" value="0">
             <small class="help-block">0-125000000</small>
 						</div>
 					</div>
 					<div class="form-group">
 						<label class="control-label col-sm-2" for="exclude"><?=$lang['add']['exclude'];?></label>
 						<div class="col-sm-10">
-						<input type="text" class="form-control" name="exclude" id="exclude" value="(?i)spam|(?i)junk">
+						<input type="text" class="form-control" name="exclude" value="(?i)spam|(?i)junk">
 						</div>
 					</div>
 					<div class="form-group">
@@ -127,7 +127,7 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
 					</div>
 					<div class="form-group">
 						<div class="col-sm-offset-2 col-sm-10">
-              <button class="btn btn-default" id="add_item" data-id="add_syncjob" data-api-url='add/syncjob' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_syncjob" data-api-url='add/syncjob' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
 						</div>
 					</div>
 				</form>
@@ -155,13 +155,13 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-3" for="user_new_pass"><?=$lang['user']['new_password'];?></label>
             <div class="col-sm-5">
-            <input type="password" data-hibp="true" class="form-control" name="user_new_pass" id="user_new_pass" autocomplete="off" required>
+            <input type="password" data-hibp="true" class="form-control" name="user_new_pass" autocomplete="off" required>
             </div>
           </div>
           <div class="form-group">
             <label class="control-label col-sm-3" for="user_new_pass2"><?=$lang['user']['new_password_repeat'];?></label>
             <div class="col-sm-5">
-            <input type="password" class="form-control" name="user_new_pass2" id="user_new_pass2" autocomplete="off" required>
+            <input type="password" class="form-control" name="user_new_pass2" autocomplete="off" required>
             <p class="help-block"><?=$lang['user']['new_password_description'];?></p>
             </div>
           </div>
@@ -169,12 +169,12 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
           <div class="form-group">
             <label class="control-label col-sm-3" for="user_old_pass"><?=$lang['user']['password_now'];?></label>
             <div class="col-sm-5">
-            <input type="password" class="form-control" name="user_old_pass" id="user_old_pass" autocomplete="off" required>
+            <input type="password" class="form-control" name="user_old_pass" autocomplete="off" required>
             </div>
           </div>
           <div class="form-group">
             <div class="col-sm-offset-3 col-sm-9">
-              <button class="btn btn-default" id="edit_selected" data-id="pwchange" data-item="null" data-api-url='edit/self' data-api-attr='{}' href="#"><?=$lang['user']['change_password'];?></button>
+              <button class="btn btn-default" data-action="edit_selected" data-id="pwchange" data-item="null" data-api-url='edit/self' data-api-attr='{}' href="#"><?=$lang['user']['change_password'];?></button>
             </div>
           </div>
         </form>
@@ -195,4 +195,4 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
       </div>
     </div>
   </div>
-</div><!-- sieve filter modal -->
\ No newline at end of file
+</div><!-- sieve filter modal -->
diff --git a/data/web/quarantine.php b/data/web/quarantine.php
index 3e193586..7658611c 100644
--- a/data/web/quarantine.php
+++ b/data/web/quarantine.php
@@ -22,11 +22,11 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
             <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="qitems" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['quarantine']['toggle_all'];?></a>
             <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['quarantine']['quick_actions'];?> <span class="caret"></span></a>
             <ul class="dropdown-menu">
-              <li><a id="edit_selected" data-id="qitems" data-api-url='edit/qitem' data-api-attr='{"action":"release"}' href="#"><?=$lang['quarantine']['release'];?></a></li>
+              <li><a data-action="edit_selected" data-id="qitems" data-api-url='edit/qitem' data-api-attr='{"action":"release"}' href="#"><?=$lang['quarantine']['release'];?></a></li>
               <li role="separator" class="divider"></li>
-              <li><a id="edit_selected" data-id="qitems" data-api-url='edit/qitem' data-api-attr='{"action":"learnspam"}' href="#"><?=$lang['quarantine']['learn_spam_delete'];?></a></li>
+              <li><a data-action="edit_selected" data-id="qitems" data-api-url='edit/qitem' data-api-attr='{"action":"learnspam"}' href="#"><?=$lang['quarantine']['learn_spam_delete'];?></a></li>
               <li role="separator" class="divider"></li>
-              <li><a id="delete_selected" data-id="qitems" data-api-url='delete/qitem' href="#"><?=$lang['quarantine']['remove'];?></a></li>
+              <li><a data-action="delete_selected" data-id="qitems" data-api-url='delete/qitem' href="#"><?=$lang['quarantine']['remove'];?></a></li>
             </ul>
           </div>
         </div>
diff --git a/data/web/user.php b/data/web/user.php
index dd75e360..02845813 100644
--- a/data/web/user.php
+++ b/data/web/user.php
@@ -10,6 +10,7 @@ if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == 'doma
 	$_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
   $tfa_data = get_tfa();
 	$username = $_SESSION['mailcow_cc_username'];
+
 ?>
 <div class="container">
   <h3><?=$lang['user']['user_settings'];?></h3>
@@ -28,6 +29,7 @@ if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == 'doma
         else: echo "Last login: -"; endif;
         ?>
         </small></p>
+        <p>
       </div>
     </div>
     <hr>
@@ -102,6 +104,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
       <?php endif; ?>
       <p><a href="#pwChangeModal" data-toggle="modal">[<?=$lang['user']['change_password'];?>]</a></p>
       <p><a target="_blank" href="https://mailcow.github.io/mailcow-dockerized-docs/client/#<?=$clientconfigstr;?>">[<?=$lang['user']['client_configuration'];?>]</a></p>
+      <p><a href="#userFilterModal" data-toggle="modal">[<?=$lang['user']['show_sieve_filters'];?>]</a></p>
       <p><small>
       <?php
       if ($_SESSION['mailcow_cc_last_login']['remote']):
@@ -114,13 +117,6 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
     </div>
   </div>
   <hr>
-  <div class="row">
-    <div class="col-md-3 col-xs-5 text-right">  <span class="glyphicon glyphicon-filter"></span></div>
-    <div class="col-md-9 col-xs-7">
-    <p><a href="#userFilterModal" data-toggle="modal">[<?=$lang['user']['show_sieve_filters'];?>]</a></p>
-    </div>
-  </div>
-  <hr>
   <?php // Get user information about aliases
   $user_get_alias_details = user_get_alias_details($username);
   ?>
diff --git a/docker-compose.yml b/docker-compose.yml
index f539854e..0eff3b00 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -20,6 +20,7 @@ services:
       image: mariadb:10.2
       volumes:
         - mysql-vol-1:/var/lib/mysql/
+        - mysql-socket-vol-1:/var/run/mysqld/
         - ./data/conf/mysql/:/etc/mysql/conf.d/:ro
       environment:
         - TZ=${TZ}
@@ -71,7 +72,7 @@ services:
             - clamd
 
     rspamd-mailcow:
-      image: mailcow/rspamd:1.24
+      image: mailcow/rspamd:1.27
       build: ./data/Dockerfiles/rspamd
       stop_grace_period: 30s
       depends_on:
@@ -79,9 +80,9 @@ services:
       environment:
         - TZ=${TZ}
       volumes:
-        - ./data/conf/rspamd/custom/:/etc/rspamd/custom:ro
-        - ./data/conf/rspamd/override.d/:/etc/rspamd/override.d:rw
-        - ./data/conf/rspamd/local.d/:/etc/rspamd/local.d:ro
+        - ./data/conf/rspamd/custom/:/etc/rspamd/custom
+        - ./data/conf/rspamd/override.d/:/etc/rspamd/override.d
+        - ./data/conf/rspamd/local.d/:/etc/rspamd/local.d
         - ./data/conf/rspamd/lua/:/etc/rspamd/lua/:ro
         - rspamd-sock:/rspamd-sock
         - rspamd-vol-1:/var/lib/rspamd
@@ -95,7 +96,7 @@ services:
             - rspamd
 
     php-fpm-mailcow:
-      image: mailcow/phpfpm:1.18
+      image: mailcow/phpfpm:1.21
       build: ./data/Dockerfiles/phpfpm
       command: "php-fpm -d date.timezone=${TZ} -d expose_php=0"
       depends_on:
@@ -104,6 +105,7 @@ services:
         - ./data/web:/web:rw
         - ./data/conf/rspamd/dynmaps:/dynmaps:ro
         - rspamd-sock:/rspamd-sock
+        - mysql-socket-vol-1:/var/run/mysqld/
         - ./data/conf/rspamd/meta_exporter:/meta_exporter:ro
         - ./data/conf/phpfpm/php-fpm.d/pools.conf:/usr/local/etc/php-fpm.d/z-pools.conf
         - ./data/conf/phpfpm/php-conf.d/opcache-recommended.ini:/usr/local/etc/php/conf.d/opcache-recommended.ini
@@ -136,7 +138,7 @@ services:
             - phpfpm
 
     sogo-mailcow:
-      image: mailcow/sogo:1.36
+      image: mailcow/sogo:1.38
       build: ./data/Dockerfiles/sogo
       environment:
         - DBNAME=${DBNAME}
@@ -147,6 +149,7 @@ services:
         - MAILCOW_HOSTNAME=${MAILCOW_HOSTNAME}
       volumes:
         - ./data/conf/sogo/:/etc/sogo/
+        - mysql-socket-vol-1:/var/run/mysqld/
       restart: always
       dns:
         - ${IPV4_NETWORK:-172.22.1}.254
@@ -157,7 +160,7 @@ services:
             - sogo
 
     dovecot-mailcow:
-      image: mailcow/dovecot:1.33
+      image: mailcow/dovecot:1.36
       build: ./data/Dockerfiles/dovecot
       cap_add:
         - NET_BIND_SERVICE
@@ -167,13 +170,16 @@ services:
         - ./data/conf/sogo/:/etc/sogo/
         - vmail-vol-1:/var/vmail
         - crypt-vol-1:/mail_crypt/
+        - ./data/conf/rspamd/custom/:/etc/rspamd/custom
         - rspamd-sock:/rspamd-sock
+        - mysql-socket-vol-1:/var/run/mysqld/
       environment:
         - LOG_LINES=${LOG_LINES:-9999}
         - DBNAME=${DBNAME}
         - DBUSER=${DBUSER}
         - DBPASS=${DBPASS}
         - TZ=${TZ}
+        - MAILDIR_GC_TIME=${MAILDIR_GC_TIME:-1440}
       ports:
         - "${DOVEADM_PORT:-127.0.0.1:19991}:12345"
         - "${IMAP_PORT:-143}:143"
@@ -196,7 +202,7 @@ services:
             - dovecot
 
     postfix-mailcow:
-      image: mailcow/postfix:1.21
+      image: mailcow/postfix:1.22
       build: ./data/Dockerfiles/postfix
       volumes:
         - ./data/conf/postfix:/opt/postfix/conf
@@ -204,6 +210,7 @@ services:
         - postfix-vol-1:/var/spool/postfix
         - crypt-vol-1:/var/lib/zeyple
         - rspamd-sock:/rspamd-sock
+        - mysql-socket-vol-1:/var/run/mysqld/
       environment:
         - LOG_LINES=${LOG_LINES:-9999}
         - TZ=${TZ}
@@ -280,8 +287,7 @@ services:
     acme-mailcow:
       depends_on:
         - nginx-mailcow
-        - mysql-mailcow
-      image: mailcow/acme:1.37
+      image: mailcow/acme:1.38
       build: ./data/Dockerfiles/acme
       dns:
         - ${IPV4_NETWORK:-172.22.1}.254
@@ -299,6 +305,7 @@ services:
         - ./data/web/.well-known/acme-challenge:/var/www/acme:rw
         - ./data/assets/ssl:/var/lib/acme/:rw
         - ./data/assets/ssl-example:/var/lib/ssl-example/:ro
+        - mysql-socket-vol-1:/var/run/mysqld/
       restart: always
       networks:
         mailcow-network:
@@ -330,13 +337,14 @@ services:
         - /lib/modules:/lib/modules:ro
 
     watchdog-mailcow:
-      image: mailcow/watchdog:1.22
+      image: mailcow/watchdog:1.24
       # Debug
       #command: /watchdog.sh
       build: ./data/Dockerfiles/watchdog
       oom_kill_disable: true
       volumes:
         - rspamd-sock:/rspamd-sock
+        - mysql-socket-vol-1:/var/run/mysqld/
       restart: always
       environment:
         - LOG_LINES=${LOG_LINES:-9999}
@@ -356,7 +364,7 @@ services:
             - watchdog
 
     dockerapi-mailcow:
-      image: mailcow/dockerapi:1.14
+      image: mailcow/dockerapi:1.17
       restart: always
       build: ./data/Dockerfiles/dockerapi
       oom_kill_disable: true
@@ -365,6 +373,7 @@ services:
       volumes:
         - /var/run/docker.sock:/var/run/docker.sock:ro
         - ./data/conf/rspamd/override.d/worker-controller-password.inc:/access.inc:rw
+        - vmail-vol-1:/var/vmail:ro
       networks:
         mailcow-network:
           aliases:
@@ -392,6 +401,7 @@ networks:
 volumes:
   vmail-vol-1:
   mysql-vol-1:
+  mysql-socket-vol-1:
   redis-vol-1:
   rspamd-vol-1:
   postfix-vol-1:
diff --git a/generate_config.sh b/generate_config.sh
index 7e4ae01c..5e8fbf37 100755
--- a/generate_config.sh
+++ b/generate_config.sh
@@ -104,6 +104,11 @@ TZ=${MAILCOW_TZ}
 # Fixed project name
 COMPOSE_PROJECT_NAME=mailcowdockerized
 
+# Garbage collector cleanup
+# Deleted domains and mailboxes are moved to /var/vmail/_garbage/timestamp_sanitizedstring
+# How long should objects remain in the garbage until they are being deleted? (value in minutes)
+MAILDIR_GC_TIME=1440
+
 # Additional SAN for the certificate
 ADDITIONAL_SAN=
 
diff --git a/helper-scripts/backup_and_restore.sh b/helper-scripts/backup_and_restore.sh
index 838da1f2..60516944 100755
--- a/helper-scripts/backup_and_restore.sh
+++ b/helper-scripts/backup_and_restore.sh
@@ -5,8 +5,8 @@ if [[ ! ${1} =~ (backup|restore) ]]; then
   exit 1
 fi
 
-if [[ ${1} == "backup" && ! ${2} =~ (vmail|redis|rspamd|postfix|mysql|all) ]]; then
-  echo "Second parameter needs to be 'vmail', 'redis', 'rspamd', 'postfix', 'mysql' or 'all'"
+if [[ ${1} == "backup" && ! ${2} =~ (crypt|vmail|redis|rspamd|postfix|mysql|all) ]]; then
+  echo "Second parameter needs to be 'vmail', 'crypt', 'redis', 'rspamd', 'postfix', 'mysql' or 'all'"
   exit 1
 fi
 
@@ -62,6 +62,12 @@ function backup() {
         -v $(docker volume ls -qf name=${CMPS_PRJ}_vmail-vol-1):/vmail \
         debian:stretch-slim /bin/tar --warning='no-file-ignored' -Pcvpzf /backup/backup_vmail.tar.gz /vmail
       ;;&
+    crypt|all)
+      docker run --rm \
+        -v ${BACKUP_LOCATION}/mailcow-${DATE}:/backup \
+        -v $(docker volume ls -qf name=${CMPS_PRJ}_crypt-vol-1):/crypt \
+        debian:stretch-slim /bin/tar --warning='no-file-ignored' -Pcvpzf /backup/backup_crypt.tar.gz /crypt
+      ;;&
     redis|all)
       docker exec $(docker ps -qf name=redis-mailcow) redis-cli save
       docker run --rm \
@@ -128,6 +134,14 @@ function restore() {
         debian:stretch-slim /bin/tar -Pxvzf /backup/backup_redis.tar.gz
       docker start $(docker ps -aqf name=redis-mailcow)
       ;;
+    crypt)
+      docker stop $(docker ps -qf name=dovecot-mailcow)
+      docker run -it --rm \
+        -v ${RESTORE_LOCATION}:/backup \
+        -v $(docker volume ls -qf name=${CMPS_PRJ}_crypt-vol-1):/crypt \
+        debian:stretch-slim /bin/tar -Pxvzf /backup/backup_crypt.tar.gz
+      docker start $(docker ps -aqf name=dovecot-mailcow)
+      ;;
     rspamd)
       docker stop $(docker ps -qf name=rspamd-mailcow)
       docker run -it --rm \
@@ -189,7 +203,7 @@ elif [[ ${1} == "restore" ]]; then
   echo
   declare -A FILE_SELECTION
   RESTORE_POINT="${FOLDER_SELECTION[${input_sel}]}"
-  if [[ -z $(find "${FOLDER_SELECTION[${input_sel}]}" -maxdepth 1 -type f -regex ".*\(redis\|rspamd\|mysql\|vmail\|postfix\).*") ]]; then
+  if [[ -z $(find "${FOLDER_SELECTION[${input_sel}]}" -maxdepth 1 -type f -regex ".*\(redis\|rspamd\|mysql\|crypt\|vmail\|postfix\).*") ]]; then
     echo "No datasets found"
     exit 1
   fi
@@ -198,6 +212,10 @@ elif [[ ${1} == "restore" ]]; then
       echo "[ ${i} ] - Mail directory (/var/vmail)"
       FILE_SELECTION[${i}]="vmail"
       ((i++))
+    elif [[ ${file} =~ crypt ]]; then
+      echo "[ ${i} ] - Crypt data"
+      FILE_SELECTION[${i}]="crypt"
+      ((i++))
     elif [[ ${file} =~ redis ]]; then
       echo "[ ${i} ] - Redis DB"
       FILE_SELECTION[${i}]="redis"
diff --git a/helper-scripts/ext_sql_sock.docker-compose.override.yml b/helper-scripts/ext_sql_sock.docker-compose.override.yml
new file mode 100644
index 00000000..1f052f08
--- /dev/null
+++ b/helper-scripts/ext_sql_sock.docker-compose.override.yml
@@ -0,0 +1,31 @@
+version: '2.1'
+services:
+
+    php-fpm-mailcow:
+      volumes:
+        - /var/run/mysqld/mysqld.sock:/var/run/mysqld/mysqld.sock
+
+    sogo-mailcow:
+      volumes:
+        - /var/run/mysqld/mysqld.sock:/var/run/mysqld/mysqld.sock
+
+    dovecot-mailcow:
+      volumes:
+        - /var/run/mysqld/mysqld.sock:/var/run/mysqld/mysqld.sock
+
+    postfix-mailcow:
+      volumes:
+        - /var/run/mysqld/mysqld.sock:/var/run/mysqld/mysqld.sock
+
+    acme-mailcow:
+      volumes:
+        - /var/run/mysqld/mysqld.sock:/var/run/mysqld/mysqld.sock
+
+    watchdog-mailcow:
+      volumes:
+        - /var/run/mysqld/mysqld.sock:/var/run/mysqld/mysqld.sock
+
+    mysql-mailcow:
+      image: alpine:3.8
+      command: /bin/true
+      restart: "no"

From 73b10350d00f549c7abde98c490cb27236d7f3cc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sat, 29 Sep 2018 22:03:48 +0200
Subject: [PATCH 23/56] [Rspamd] Ignore sa-rules-heinlein file, remove from
 index

---
 .gitignore                                |     1 +
 data/conf/rspamd/custom/sa-rules-heinlein | 10561 --------------------
 2 files changed, 1 insertion(+), 10561 deletions(-)
 delete mode 100644 data/conf/rspamd/custom/sa-rules-heinlein

diff --git a/.gitignore b/.gitignore
index e535c710..907da76b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -21,3 +21,4 @@ data/conf/nginx/*.conf
 data/conf/nginx/*.custom
 data/conf/nginx/*.bak
 data/conf/dovecot/extra.conf
+data/conf/rspamd/custom/sa-rules-heinlein
diff --git a/data/conf/rspamd/custom/sa-rules-heinlein b/data/conf/rspamd/custom/sa-rules-heinlein
deleted file mode 100644
index 9e3646c6..00000000
--- a/data/conf/rspamd/custom/sa-rules-heinlein
+++ /dev/null
@@ -1,10561 +0,0 @@
-header          __HS_XM_BLAT_311_WIN32 X-Mailer =~ /^Blat v3\.1\.1, a Win32 SMTP\/NNTP mailer http:\/\/www.blat.net/
-header          __HS_XOLE_BLAT_311     X-MimeOLE =~ /Produced by Blat v3\.1\.1/
-meta            HS_HEADER_SPAM_70      (__HS_XM_BLAT_311_WIN32 && __HS_XOLE_BLAT_311)
-score           HS_HEADER_SPAM_70      3.5
-#
-# Heinlein Support -- SpamAssassin Regelsätze
-# Use it as it is.
-#
-#
-body HS_BODY_2		/Unser ING-DIBA Sicherheits Bereich investiert sehr viel Zeit/
-describe HS_BODY_2		Heinlein Support Spamschutz Body-2 
-score HS_BODY_2		5
-
-body HS_BODY_4		/We are the department of Asian Domain Registration Service in China. Here I have something/
-describe HS_BODY_4		Heinlein Support Spamschutz Body-4 
-score HS_BODY_4		5
-
-body HS_BODY_5		/schicken Sie bitte einen Brief auf Violet\@arbeitdeutschland\.com/
-describe HS_BODY_5		Heinlein Support Spamschutz Body-5 
-score HS_BODY_5		5
-
-body HS_BODY_6		/Dear RandomForename_/
-describe HS_BODY_6		Heinlein Support Spamschutz Body-6 
-score HS_BODY_6		5
-
-body HS_BODY_7		/http:\/\/defiteq\.com\/qms\/upload/
-describe HS_BODY_7		Heinlein Support Spamschutz Body-7 
-score HS_BODY_7		5
-
-body HS_BODY_8		/mail\.iphone\.mn/
-describe HS_BODY_8		Heinlein Support Spamschutz Body-8 
-score HS_BODY_8		5
-
-body HS_BODY_9		/http:\/\/www\.safe\-slh\.com/
-describe HS_BODY_9		Heinlein Support Spamschutz Body-9 
-score HS_BODY_9		5
-
-body HS_BODY_10		/Sie konnen Ihre Postsendung in unserer Postabteilung personlich kriegen/
-describe HS_BODY_10		Heinlein Support Spamschutz Body-10 
-score HS_BODY_10		5
-
-body HS_BODY_11		/Sie sollen dieses Postetikett drucken lassen/
-describe HS_BODY_11		Heinlein Support Spamschutz Body-11 
-score HS_BODY_11		5
-
-body HS_BODY_12		/Wenn dies nicht sofort machen Sie Ihre E-Mail-Adresse deaktiviert von unserem Server./
-describe HS_BODY_12		Heinlein Support Spamschutz Body-12 
-score HS_BODY_12		5
-
-body HS_BODY_13		/^Message\-ID:\*\@vps332995\.netsons\.net/
-describe HS_BODY_13		Heinlein Support Spamschutz Body-13 
-score HS_BODY_13		5
-
-body HS_BODY_14		/dildodaddy/
-describe HS_BODY_14		Heinlein Support Spamschutz Body-14 
-score HS_BODY_14		5
-
-body HS_BODY_15		/mehreren fehlgeschlagenen TAN\-Eingeben/
-describe HS_BODY_15		Heinlein Support Spamschutz Body-15 
-score HS_BODY_15		5
-
-body HS_BODY_16		/filename="c\.g\.euromilion\.pdf"/
-describe HS_BODY_16		Heinlein Support Spamschutz Body-16 
-score HS_BODY_16		5
-
-body HS_BODY_17		/^Bei Interesse bitten wir um folgende$/
-describe HS_BODY_17		Heinlein Support Spamschutz Body-17 
-score HS_BODY_17		5
-
-body HS_BODY_18		/palmandmore\.de/
-describe HS_BODY_18		Heinlein Support Spamschutz Body-18 
-score HS_BODY_18		5
-
-body HS_BODY_19		/co\.cc\/aff\/item\.php\?usn=(aeb1|dap1|dvg1)&i=it\_ep&e=admin\@groupon\.de/
-describe HS_BODY_19		Heinlein Support Spamschutz Body-19 
-score HS_BODY_19		5
-
-body HS_BODY_20		/You Are Guaranteed To Get Paid Instantly For Each Email You Process!/
-describe HS_BODY_20		Heinlein Support Spamschutz Body-20 
-score HS_BODY_20		5
-
-body HS_BODY_21		/I (talk|speak) 2 'languages'\. Now i'm 24\. I/
-describe HS_BODY_21		Heinlein Support Spamschutz Body-21 
-score HS_BODY_21		5
-
-body HS_BODY_22		/My nickname \"Kuma\"! :\)/
-describe HS_BODY_22		Heinlein Support Spamschutz Body-22 
-score HS_BODY_22		5
-
-body HS_BODY_23		/http:\/\/free\.fr\/support\/verification\/compte\//
-describe HS_BODY_23		Heinlein Support Spamschutz Body-23 
-score HS_BODY_23		5
-
-body HS_BODY_24		/http:\/\/sonofages\.free\.fr\/images\/LogoCreditMutuel\.png/
-describe HS_BODY_24		Heinlein Support Spamschutz Body-24 
-score HS_BODY_24		5
-
-body HS_BODY_25		/ucc\.edu\.ni/
-describe HS_BODY_25		Heinlein Support Spamschutz Body-25 
-score HS_BODY_25		5
-
-body HS_BODY_26		/7figureincome\.php/
-describe HS_BODY_26		Heinlein Support Spamschutz Body-26 
-score HS_BODY_26		5
-
-body HS_BODY_27		/Cher Client Verified by Visa/
-describe HS_BODY_27		Heinlein Support Spamschutz Body-27 
-score HS_BODY_27		5
-
-body HS_BODY_28		/^From: "Topillen Apotheke" /
-describe HS_BODY_28		Heinlein Support Spamschutz Body-28 
-score HS_BODY_28		5
-
-body HS_BODY_29		/^Aufgrund mehrerer Phishing Versuche, unsere Visa und Mastercard/
-describe HS_BODY_29		Heinlein Support Spamschutz Body-29 
-score HS_BODY_29		5
-
-body HS_BODY_30		/^ Phishing Departament/
-describe HS_BODY_30		Heinlein Support Spamschutz Body-30 
-score HS_BODY_30		5
-
-body HS_BODY_31		/We wish to invest between \$5Million\-\$100Million in any viable projects/
-describe HS_BODY_31		Heinlein Support Spamschutz Body-31 
-score HS_BODY_31		5
-
-body HS_BODY_32		/God bless you as you get back to me/
-describe HS_BODY_32		Heinlein Support Spamschutz Body-32 
-score HS_BODY_32		5
-
-body HS_BODY_33		/www\.(b|B)ien(e|E)tremag\.com/
-describe HS_BODY_33		Heinlein Support Spamschutz Body-33 
-score HS_BODY_33		5
-
-body HS_BODY_34		/Sehr geehrte Sparkasse Card/
-describe HS_BODY_34		Heinlein Support Spamschutz Body-34 
-score HS_BODY_34		5
-
-body HS_BODY_35		/zigaretten\-discount\.info/
-describe HS_BODY_35		Heinlein Support Spamschutz Body-35 
-score HS_BODY_35		5
-
-body HS_BODY_36		/zigaretten\-discount[punkt]info/
-describe HS_BODY_36		Heinlein Support Spamschutz Body-36 
-score HS_BODY_36		5
-
-body HS_BODY_37		/Guten Tag Mitglied [0-9]{5}/
-describe HS_BODY_37		Heinlein Support Spamschutz Body-37 
-score HS_BODY_37		5
-
-body HS_BODY_38		/elenx\.innovacon\.com\/\.e\/e\.php/
-describe HS_BODY_38		Heinlein Support Spamschutz Body-38 
-score HS_BODY_38		5
-
-body HS_BODY_39		/www\.sniperrs\.de\/modules\/Forums\/admin/
-describe HS_BODY_39		Heinlein Support Spamschutz Body-39 
-score HS_BODY_39		5
-
-body HS_BODY_40		/boxneufnet\.com\/id\/oragne\.fr\/Identifiant/
-describe HS_BODY_40		Heinlein Support Spamschutz Body-40 
-score HS_BODY_40		5
-
-body HS_BODY_41		/www\.colellsa\.com\/img\/quienes\/pabo\/paypal\-fr/
-describe HS_BODY_41		Heinlein Support Spamschutz Body-41 
-score HS_BODY_41		5
-
-body HS_BODY_42		/dekmor\.cmu\.ac\.th\/sticker\/upload\/Logs\/Login\/webscrcmd/
-describe HS_BODY_42		Heinlein Support Spamschutz Body-42 
-score HS_BODY_42		5
-
-body HS_BODY_43		/ektoschronou\.com/
-describe HS_BODY_43		Heinlein Support Spamschutz Body-43 
-score HS_BODY_43		5
-
-body HS_BODY_44		/ulouwaio\.com/
-describe HS_BODY_44		Heinlein Support Spamschutz Body-44 
-score HS_BODY_44		5
-
-body HS_BODY_45		/logonature\.com\.nu/
-describe HS_BODY_45		Heinlein Support Spamschutz Body-45 
-score HS_BODY_45		5
-
-body HS_BODY_46		/suinlop\.com/
-describe HS_BODY_46		Heinlein Support Spamschutz Body-46 
-score HS_BODY_46		5
-
-body HS_BODY_47		/soudoorpo\.com/
-describe HS_BODY_47		Heinlein Support Spamschutz Body-47 
-score HS_BODY_47		5
-
-body HS_BODY_48		/GOOGLE AUSSTATTUNGSFONDS 20.?.? GEWINNER ANMELDEFORMULAR FUER ZAHLUNG/
-describe HS_BODY_48		Heinlein Support Spamschutz Body-48 
-score HS_BODY_48		5
-
-body HS_BODY_49		/Anbieter: Privacy GG Limited, 99 Albert Street, Belize City, CA/
-describe HS_BODY_49		Heinlein Support Spamschutz Body-49 
-score HS_BODY_49		5
-
-body HS_BODY_50		/^Die Nachricht wurde durch Interads 24 Ltd/
-describe HS_BODY_50		Heinlein Support Spamschutz Body-50 
-score HS_BODY_50		5
-
-body HS_BODY_51		/www\.sommer\-mit\-kollegen\.de/
-describe HS_BODY_51		Heinlein Support Spamschutz Body-51 
-score HS_BODY_51		5
-
-body HS_BODY_52		/^www.*\/ausa$/
-describe HS_BODY_52		Heinlein Support Spamschutz Body-52 
-score HS_BODY_52		5
-
-body HS_BODY_53		/KlickTel Telefonbuch OEM/
-describe HS_BODY_53		Heinlein Support Spamschutz Body-53 
-score HS_BODY_53		5
-
-body HS_BODY_54		/www\.klicktel24\.org/
-describe HS_BODY_54		Heinlein Support Spamschutz Body-54 
-score HS_BODY_54		5
-
-body HS_BODY_56		/maryjanemax\@yahoo\.co\.uk/
-describe HS_BODY_56		Heinlein Support Spamschutz Body-56 
-score HS_BODY_56		5
-
-body HS_BODY_57		/http\.*muqugeh\.cn/
-describe HS_BODY_57		Heinlein Support Spamschutz Body-57 
-score HS_BODY_57		5
-
-body HS_BODY_59		/INTERNATIONAL LOTTERIE PROMOTION SPIELGEMEINSCHAFT/
-describe HS_BODY_59		Heinlein Support Spamschutz Body-59 
-score HS_BODY_59		5
-
-body HS_BODY_60		/Leider st=F6ren Sie.=20/
-describe HS_BODY_60		Heinlein Support Spamschutz Body-60 
-score HS_BODY_60		5
-
-body HS_BODY_61		/Sie haben dieses Email erhalten, weil Sie im Newsletter von Promohouse Ltd eingetragen sind/
-describe HS_BODY_61		Heinlein Support Spamschutz Body-61 
-score HS_BODY_61		5
-
-body HS_BODY_62		/ATTN: Beneficiar/
-describe HS_BODY_62		Heinlein Support Spamschutz Body-62 
-score HS_BODY_62		5
-
-body HS_BODY_63		/www\.hedonismails\.de/
-describe HS_BODY_63		Heinlein Support Spamschutz Body-63 
-score HS_BODY_63		5
-
-body HS_BODY_64		/www\.globadressen\.(com|net|org|info)/
-describe HS_BODY_64		Heinlein Support Spamschutz Body-64 
-score HS_BODY_64		5
-
-body HS_BODY_65		/elegalal\.nextmail\.ru/
-describe HS_BODY_65		Heinlein Support Spamschutz Body-65 
-score HS_BODY_65		5
-
-body HS_BODY_66		/www\.switzerlandpussy\.eu/
-describe HS_BODY_66		Heinlein Support Spamschutz Body-66 
-score HS_BODY_66		5
-
-body HS_BODY_67		/Die jungen Girls fliegen nur so auf die langen/
-describe HS_BODY_67		Heinlein Support Spamschutz Body-67 
-score HS_BODY_67		5
-
-body HS_BODY_68		/\*\*\*\* Commercial use of this software is prohibited \*\*\*\*/
-describe HS_BODY_68		Heinlein Support Spamschutz Body-68 
-score HS_BODY_68		5
-
-body HS_BODY_69		/I finded your email in internet and I decide to ask you for help/
-describe HS_BODY_69		Heinlein Support Spamschutz Body-69 
-score HS_BODY_69		5
-
-body HS_BODY_70		/Details und moegliche Schritte zur Entsperrung finden Sie/
-describe HS_BODY_70		Heinlein Support Spamschutz Body-70 
-score HS_BODY_70		5
-
-body HS_BODY_71		/^Amount Won:/
-describe HS_BODY_71		Heinlein Support Spamschutz Body-71 
-score HS_BODY_71		5
-
-body HS_BODY_72		/AWARD WINNING NOTICE/
-describe HS_BODY_72		Heinlein Support Spamschutz Body-72 
-score HS_BODY_72		5
-
-body HS_BODY_73		/mixvarejo\.com/
-describe HS_BODY_73		Heinlein Support Spamschutz Body-73 
-score HS_BODY_73		5
-
-body HS_BODY_74		/www\.global\-db\.(com|net|org)/
-describe HS_BODY_74		Heinlein Support Spamschutz Body-74 
-score HS_BODY_74		5
-
-body HS_BODY_75		/^I am Barrister/
-describe HS_BODY_75		Heinlein Support Spamschutz Body-75 
-score HS_BODY_75		5
-
-body HS_BODY_76		/respublica\@gaucherepublicaine\.org/
-describe HS_BODY_76		Heinlein Support Spamschutz Body-76 
-score HS_BODY_76		5
-
-body HS_BODY_77		/NEU - Vi Super Active/
-describe HS_BODY_77		Heinlein Support Spamschutz Body-77 
-score HS_BODY_77		5
-
-body HS_BODY_78		/anhaltende Versagensangste und wiederholte peinliche Situationen/
-describe HS_BODY_78		Heinlein Support Spamschutz Body-78 
-score HS_BODY_78		5
-
-body HS_BODY_79		/Schulfreunde Vermittlungs Service AG/
-describe HS_BODY_79		Heinlein Support Spamschutz Body-79 
-score HS_BODY_79		5
-
-body HS_BODY_80		/Multimedia Telegramm/
-describe HS_BODY_80		Heinlein Support Spamschutz Body-80 
-score HS_BODY_80		5
-
-body HS_BODY_81		/http.*\.fdub\.biz/
-describe HS_BODY_81		Heinlein Support Spamschutz Body-81 
-score HS_BODY_81		5
-
-body HS_BODY_82		/TanjaGuenther/
-describe HS_BODY_82		Heinlein Support Spamschutz Body-82 
-score HS_BODY_82		5
-
-body HS_BODY_83		/www\.bestnetz24\.de\/letter\/ausgabe\.php/
-describe HS_BODY_83		Heinlein Support Spamschutz Body-83 
-score HS_BODY_83		5
-
-body HS_BODY_84		/www\.db\.?adressen\.(com|net|org|info)/
-describe HS_BODY_84		Heinlein Support Spamschutz Body-84 
-score HS_BODY_84		5
-
-body HS_BODY_85		/thomas\@jthomas\.es/
-describe HS_BODY_85		Heinlein Support Spamschutz Body-85 
-score HS_BODY_85		5
-
-body HS_BODY_86		/Ihre Marketing Agentur Espa/
-describe HS_BODY_86		Heinlein Support Spamschutz Body-86 
-score HS_BODY_86		5
-
-body HS_BODY_87		/www\.pakandu\.com/
-describe HS_BODY_87		Heinlein Support Spamschutz Body-87 
-score HS_BODY_87		5
-
-body HS_BODY_88		/Glob.?.?.?(C|K)ontact.?.?.?Team/
-describe HS_BODY_88		Heinlein Support Spamschutz Body-88 
-score HS_BODY_88		5
-
-body HS_BODY_89		/www.gc.?datenbaken.(com|net|org|info)/
-describe HS_BODY_89		Heinlein Support Spamschutz Body-89 
-score HS_BODY_89		5
-
-body HS_BODY_90		/www.glc-?data.(com|net|org|info)/
-describe HS_BODY_90		Heinlein Support Spamschutz Body-90 
-score HS_BODY_90		5
-
-body HS_BODY_91		/Global.?(C|K)ontact/
-describe HS_BODY_91		Heinlein Support Spamschutz Body-91 
-score HS_BODY_91		5
-
-body HS_BODY_92		/www\.imarketing\.com\.br\.remove/
-describe HS_BODY_92		Heinlein Support Spamschutz Body-92 
-score HS_BODY_92		5
-
-body HS_BODY_93		/Bestellen Sie jetzt und vergessen Sie Ihre Enttauschungen/
-describe HS_BODY_93		Heinlein Support Spamschutz Body-93 
-score HS_BODY_93		5
-
-body HS_BODY_94		/Online Apotheke - original Qualitaet/
-describe HS_BODY_94		Heinlein Support Spamschutz Body-94 
-score HS_BODY_94		5
-
-body HS_BODY_95		/Wir wissen was Frauen wollern/
-describe HS_BODY_95		Heinlein Support Spamschutz Body-95 
-score HS_BODY_95		5
-
-body HS_BODY_96		/Viiiiaaaaaagra/
-describe HS_BODY_96		Heinlein Support Spamschutz Body-96 
-score HS_BODY_96		5
-
-body HS_BODY_97		/Web: www\.eurasianpages\. com/
-describe HS_BODY_97		Heinlein Support Spamschutz Body-97 
-score HS_BODY_97		5
-
-body HS_BODY_98		/^Firma Global Contact bietet Ihnen/
-describe HS_BODY_98		Heinlein Support Spamschutz Body-98 
-score HS_BODY_98		5
-
-body HS_BODY_99		/www\.g\-adressen\.net/
-describe HS_BODY_99		Heinlein Support Spamschutz Body-99 
-score HS_BODY_99		5
-
-body HS_BODY_100		/NIEMALS geben Sie Ihre Passw.rter an niemanden NUR und melden Sie sich/
-describe HS_BODY_100		Heinlein Support Spamschutz Body-100 
-score HS_BODY_100		5
-
-body HS_BODY_101		/www\.loteria\.es/
-describe HS_BODY_101		Heinlein Support Spamschutz Body-101 
-score HS_BODY_101		5
-
-body HS_BODY_106		/^Ein Dienst der IT4YOU AG, Friedrichstrasse 171, Berlin - Mitte als/
-describe HS_BODY_106		Heinlein Support Spamschutz Body-106 
-score HS_BODY_106		5
-
-body HS_BODY_107		/^www\.cdtophit\.org/
-describe HS_BODY_107		Heinlein Support Spamschutz Body-107 
-score HS_BODY_107		5
-
-body HS_BODY_108		/http:\/\/www\.doenertreff\.de/
-describe HS_BODY_108		Heinlein Support Spamschutz Body-108 
-score HS_BODY_108		5
-
-body HS_BODY_109		/Brauchen Sie noch einen Grund um zu Vegas VIP Casino/
-describe HS_BODY_109		Heinlein Support Spamschutz Body-109 
-score HS_BODY_109		5
-
-body HS_BODY_110		/glob\-contact\.net$/
-describe HS_BODY_110		Heinlein Support Spamschutz Body-110 
-score HS_BODY_110		5
-
-body HS_BODY_111		/^Ihr Glob\-Kontakt\-Team$/
-describe HS_BODY_111		Heinlein Support Spamschutz Body-111 
-score HS_BODY_111		5
-
-body HS_BODY_112		/www\.feilervision\.de/
-describe HS_BODY_112		Heinlein Support Spamschutz Body-112 
-score HS_BODY_112		5
-
-body HS_BODY_113		/DER INVESTORALARM!/
-describe HS_BODY_113		Heinlein Support Spamschutz Body-113 
-score HS_BODY_113		5
-
-body HS_BODY_114		/ES IST EIN UNGLAUBLICHES PROFITPOTENTIAL! VERLIERE DIESE CHANCE NICHT!/
-describe HS_BODY_114		Heinlein Support Spamschutz Body-114 
-score HS_BODY_114		5
-
-body HS_BODY_115		/I work very hard every day to be able to buy necessities for my mother/
-describe HS_BODY_115		Heinlein Support Spamschutz Body-115 
-score HS_BODY_115		5
-
-body HS_BODY_116		/THE FREELOTTO COMPANY/
-describe HS_BODY_116		Heinlein Support Spamschutz Body-116 
-score HS_BODY_116		5
-
-body HS_BODY_117		/BreakingMrktNews/
-describe HS_BODY_117		Heinlein Support Spamschutz Body-117 
-score HS_BODY_117		5
-
-body HS_BODY_118		/China Media Crop OTC\.BB CHMD/
-describe HS_BODY_118		Heinlein Support Spamschutz Body-118 
-score HS_BODY_118		5
-
-body HS_BODY_119		/Weltweit gilt das nummerierte TAN\-Verfahren als eines der sicherste/
-describe HS_BODY_119		Heinlein Support Spamschutz Body-119 
-score HS_BODY_119		5
-
-body HS_BODY_120		/^Marion Beckera/
-describe HS_BODY_120		Heinlein Support Spamschutz Body-120 
-score HS_BODY_120		5
-
-body HS_BODY_121		/Zwecks abschlie&szlig;ende Zustimmung f&uuml;r deine Verhandlung zur/
-describe HS_BODY_121		Heinlein Support Spamschutz Body-121 
-score HS_BODY_121		5
-
-body HS_BODY_122		/annullieren deine on\-line &Uuml;bertragung&reg; Dienstleistungen\./
-describe HS_BODY_122		Heinlein Support Spamschutz Body-122 
-score HS_BODY_122		5
-
-body HS_BODY_123		/www\.internetloginuser\.info/
-describe HS_BODY_123		Heinlein Support Spamschutz Body-123 
-score HS_BODY_123		5
-
-body HS_BODY_124		/realsevgi\.com/
-describe HS_BODY_124		Heinlein Support Spamschutz Body-124 
-score HS_BODY_124		5
-
-body HS_BODY_126		/Oder Ihr Provider hat die Mail falsch weiter geleitet!?/
-describe HS_BODY_126		Heinlein Support Spamschutz Body-126 
-score HS_BODY_126		5
-
-body HS_BODY_127		/Versatel\-Attachment\-Warning\.txt/
-describe HS_BODY_127		Heinlein Support Spamschutz Body-127 
-score HS_BODY_127		5
-
-body HS_BODY_128		/www=2Eanaforturizm=2Ecom/
-describe HS_BODY_128		Heinlein Support Spamschutz Body-128 
-score HS_BODY_128		5
-
-body HS_BODY_129		/www\.anaforturizm\.com/
-describe HS_BODY_129		Heinlein Support Spamschutz Body-129 
-score HS_BODY_129		5
-
-body HS_BODY_131		/^jpberlin\.de support team\./
-describe HS_BODY_131		Heinlein Support Spamschutz Body-131 
-score HS_BODY_131		5
-
-body HS_BODY_132		/You have successfully updated the password of your Jpberlin account/
-describe HS_BODY_132		Heinlein Support Spamschutz Body-132 
-score HS_BODY_132		5
-
-body HS_BODY_133		/www\.ru4mailnow\.com/
-describe HS_BODY_133		Heinlein Support Spamschutz Body-133 
-score HS_BODY_133		5
-
-body HS_BODY_134		/EXPLOSIVE PICK FOR OUR MEMBERS/
-describe HS_BODY_134		Heinlein Support Spamschutz Body-134 
-score HS_BODY_134		5
-
-body HS_BODY_135		/AntiVirus-System: Kein Virus erkannt/
-describe HS_BODY_135		Heinlein Support Spamschutz Body-135 
-score HS_BODY_135		5
-
-body HS_BODY_136		/\-\-\- FIFA Fussball\-Weltmeisterschaft 2006/
-describe HS_BODY_136		Heinlein Support Spamschutz Body-136 
-score HS_BODY_136		5
-
-body HS_BODY_137		/ankara\@ankararentacar\.de/
-describe HS_BODY_137		Heinlein Support Spamschutz Body-137 
-score HS_BODY_137		5
-
-body HS_BODY_138		/Replica Watch Models/
-describe HS_BODY_138		Heinlein Support Spamschutz Body-138 
-score HS_BODY_138		5
-
-body HS_BODY_139		/Diadem Travel/
-describe HS_BODY_139		Heinlein Support Spamschutz Body-139 
-score HS_BODY_139		5
-
-body HS_BODY_140		/Let the search engine experts compete/
-describe HS_BODY_140		Heinlein Support Spamschutz Body-140 
-score HS_BODY_140		5
-
-body HS_BODY_141		/http:\/\/www\.ehmig\.net\/web_mailer/
-describe HS_BODY_141		Heinlein Support Spamschutz Body-141 
-score HS_BODY_141		5
-
-body HS_BODY_142		/http:\/\/real\.slon\.biz/
-describe HS_BODY_142		Heinlein Support Spamschutz Body-142 
-score HS_BODY_142		5
-
-body HS_BODY_144		/www\.inverz\.net/
-describe HS_BODY_144		Heinlein Support Spamschutz Body-144 
-score HS_BODY_144		5
-
-body HS_BODY_145		/We recommend you to follow the instructions in order to keep your computer safe./
-describe HS_BODY_145		Heinlein Support Spamschutz Body-145 
-score HS_BODY_145		5
-
-body HS_BODY_146		/Sieh Dir einfach mal ein Video an und mach dann gleich ein Treffen/
-describe HS_BODY_146		Heinlein Support Spamschutz Body-146 
-score HS_BODY_146		5
-
-body HS_BODY_147		/ CIALIS /
-describe HS_BODY_147		Heinlein Support Spamschutz Body-147 
-score HS_BODY_147		5
-
-body HS_BODY_148		/www\.galamed\.biz/
-describe HS_BODY_148		Heinlein Support Spamschutz Body-148 
-score HS_BODY_148		5
-
-body HS_BODY_149		/Starts working in less than 15 min\./
-describe HS_BODY_149		Heinlein Support Spamschutz Body-149 
-score HS_BODY_149		5
-
-body HS_BODY_150		/Adipren720/
-describe HS_BODY_150		Heinlein Support Spamschutz Body-150 
-score HS_BODY_150		5
-
-body HS_BODY_151		/www\.lending\-home\.com/
-describe HS_BODY_151		Heinlein Support Spamschutz Body-151 
-score HS_BODY_151		5
-
-body HS_BODY_152		/bigbonus\-casino\.com/
-describe HS_BODY_152		Heinlein Support Spamschutz Body-152 
-score HS_BODY_152		5
-
-body HS_BODY_153		/Ich hab die ultimative Seite.*dich, klick doch mal an!/
-describe HS_BODY_153		Heinlein Support Spamschutz Body-153 
-score HS_BODY_153		5
-
-body HS_BODY_154		/www\.server42\.com/
-describe HS_BODY_154		Heinlein Support Spamschutz Body-154 
-score HS_BODY_154		5
-
-body HS_BODY_155		/seo\-profits\.com/
-describe HS_BODY_155		Heinlein Support Spamschutz Body-155 
-score HS_BODY_155		5
-
-body HS_BODY_156		/Have a great web site, but no one knows it even/
-describe HS_BODY_156		Heinlein Support Spamschutz Body-156 
-score HS_BODY_156		5
-
-body HS_BODY_157		/REVERZ.*D\-INFO/
-describe HS_BODY_157		Heinlein Support Spamschutz Body-157 
-score HS_BODY_157		5
-
-body HS_BODY_158		/D\-INFO.*REVERZ/
-describe HS_BODY_158		Heinlein Support Spamschutz Body-158 
-score HS_BODY_158		5
-
-body HS_BODY_159		/greatmaleenhancement\.biz/
-describe HS_BODY_159		Heinlein Support Spamschutz Body-159 
-score HS_BODY_159		5
-
-body HS_BODY_161		/ Vic(o|0)din /
-describe HS_BODY_161		Heinlein Support Spamschutz Body-161 
-score HS_BODY_161		5
-
-body HS_BODY_162		/ Hydr(o|0)c(o|0)d(o|0)ne /
-describe HS_BODY_162		Heinlein Support Spamschutz Body-162 
-score HS_BODY_162		5
-
-body HS_BODY_163		/ V1agra /
-describe HS_BODY_163		Heinlein Support Spamschutz Body-163 
-score HS_BODY_163		5
-
-body HS_BODY_164		/warehousefull\.com/
-describe HS_BODY_164		Heinlein Support Spamschutz Body-164 
-score HS_BODY_164		5
-
-body HS_BODY_165		/No doctor visit needed/
-describe HS_BODY_165		Heinlein Support Spamschutz Body-165 
-score HS_BODY_165		5
-
-body HS_BODY_166		/KLICKTEL KENNT SIE!/
-describe HS_BODY_166		Heinlein Support Spamschutz Body-166 
-score HS_BODY_166		5
-
-body HS_BODY_167		/^www\.femo\-online\.de/
-describe HS_BODY_167		Heinlein Support Spamschutz Body-167 
-score HS_BODY_167		5
-
-body HS_BODY_168		/www\.land\-ua\.com/
-describe HS_BODY_168		Heinlein Support Spamschutz Body-168 
-score HS_BODY_168		5
-
-body HS_BODY_169		/Come to Loqozine/
-describe HS_BODY_169		Heinlein Support Spamschutz Body-169 
-score HS_BODY_169		5
-
-body HS_BODY_170		/www\.gord\.us/
-describe HS_BODY_170		Heinlein Support Spamschutz Body-170 
-score HS_BODY_170		5
-
-body HS_BODY_171		/www\.reverz\.org/
-describe HS_BODY_171		Heinlein Support Spamschutz Body-171 
-score HS_BODY_171		5
-
-body HS_BODY_172		/wonderfulaction\.com/
-describe HS_BODY_172		Heinlein Support Spamschutz Body-172 
-score HS_BODY_172		5
-
-body HS_BODY_173		/At our pharmacy we offer/
-describe HS_BODY_173		Heinlein Support Spamschutz Body-173 
-score HS_BODY_173		5
-
-body HS_BODY_174		/Was ist besser als eine fette Ladung Sahne/
-describe HS_BODY_174		Heinlein Support Spamschutz Body-174 
-score HS_BODY_174		5
-
-body HS_BODY_175		/www\.surerxmed\.com/
-describe HS_BODY_175		Heinlein Support Spamschutz Body-175 
-score HS_BODY_175		5
-
-body HS_BODY_176		/www\.surerxpills\.com/
-describe HS_BODY_176		Heinlein Support Spamschutz Body-176 
-score HS_BODY_176		5
-
-body HS_BODY_177		/www\.stifyems\.com/
-describe HS_BODY_177		Heinlein Support Spamschutz Body-177 
-score HS_BODY_177		5
-
-body HS_BODY_178		/www\.diatrus\.com/
-describe HS_BODY_178		Heinlein Support Spamschutz Body-178 
-score HS_BODY_178		5
-
-body HS_BODY_179		/CITYNETT\-NEWSLETTER/
-describe HS_BODY_179		Heinlein Support Spamschutz Body-179 
-score HS_BODY_179		5
-
-body HS_BODY_180		/Note: *Use *password/
-describe HS_BODY_180		Heinlein Support Spamschutz Body-180 
-score HS_BODY_180		5
-
-body HS_BODY_181		/ will be disabled because of improper using/
-describe HS_BODY_181		Heinlein Support Spamschutz Body-181 
-score HS_BODY_181		5
-
-body HS_BODY_182		/i.*don.*like.*the*.plaintext/
-describe HS_BODY_182		Heinlein Support Spamschutz Body-182 
-score HS_BODY_182		5
-
-body HS_BODY_183		/archive *password/
-describe HS_BODY_183		Heinlein Support Spamschutz Body-183 
-score HS_BODY_183		5
-
-body HS_BODY_184		/The *Attac\.org *team/
-describe HS_BODY_184		Heinlein Support Spamschutz Body-184 
-score HS_BODY_184		5
-
-body HS_BODY_185		/The *Attac\.de *team/
-describe HS_BODY_185		Heinlein Support Spamschutz Body-185 
-score HS_BODY_185		5
-
-body HS_BODY_186		/The *Attac\-netzwerk\.de *team/
-describe HS_BODY_186		Heinlein Support Spamschutz Body-186 
-score HS_BODY_186		5
-
-body HS_BODY_187		/The *Jpberlin\.de *team/
-describe HS_BODY_187		Heinlein Support Spamschutz Body-187 
-score HS_BODY_187		5
-
-body HS_BODY_188		/Our main mailing server/
-describe HS_BODY_188		Heinlein Support Spamschutz Body-188 
-score HS_BODY_188		5
-
-body HS_BODY_189		/please update your profile at Billing Center/
-describe HS_BODY_189		Heinlein Support Spamschutz Body-189 
-score HS_BODY_189		5
-
-body HS_BODY_190		/WSEAS will reply to you/
-describe HS_BODY_190		Heinlein Support Spamschutz Body-190 
-score HS_BODY_190		5
-
-body HS_BODY_191		/de\.componentsengine\.net/
-describe HS_BODY_191		Heinlein Support Spamschutz Body-191 
-score HS_BODY_191		5
-
-body HS_BODY_192		/List von Components Engine eingetragen/
-describe HS_BODY_192		Heinlein Support Spamschutz Body-192 
-score HS_BODY_192		5
-
-body HS_BODY_193		/Muzenda der ?teste Sohn von Paul Muzenda bin , einem Farmer in Simba/
-describe HS_BODY_193		Heinlein Support Spamschutz Body-193 
-score HS_BODY_193		5
-
-body HS_BODY_194		/Alles fr die Autorennbahn/
-describe HS_BODY_194		Heinlein Support Spamschutz Body-194 
-score HS_BODY_194		5
-
-body HS_BODY_195		/Der Wurm nennt sich selbst "ODIN" und konnte sich bist jetzt/
-describe HS_BODY_195		Heinlein Support Spamschutz Body-195 
-score HS_BODY_195		5
-
-body HS_BODY_196		/Der Meister unter den Druckprogrammen: PRINTMASTER 8 GOLD/
-describe HS_BODY_196		Heinlein Support Spamschutz Body-196 
-score HS_BODY_196		5
-
-body HS_BODY_197		/Stellen Sie sich vor, Sie kaufen ein Produkt oder eine Dienstleistung im/
-describe HS_BODY_197		Heinlein Support Spamschutz Body-197 
-score HS_BODY_197		5
-
-body HS_BODY_198		/So finden Sie blitzschnell den NAMEN und ADRESS-EINTRAG zu jeder/
-describe HS_BODY_198		Heinlein Support Spamschutz Body-198 
-score HS_BODY_198		5
-
-body HS_BODY_199		/eptember 2003, Cumulative Patch/
-describe HS_BODY_199		Heinlein Support Spamschutz Body-199 
-score HS_BODY_199		5
-
-body HS_BODY_200		/Ich bin gerade vor einem neuen.*sehr gef?rlichen V.rus gewarnt/
-describe HS_BODY_200		Heinlein Support Spamschutz Body-200 
-score HS_BODY_200		5
-
-body HS_BODY_201		/exklusives virtuelles Gratis-Rubbellos welches Sie gleich jetzt live mit/
-describe HS_BODY_201		Heinlein Support Spamschutz Body-201 
-score HS_BODY_201		5
-
-body HS_BODY_202		/Willkommen beim Lucky7Casino/
-describe HS_BODY_202		Heinlein Support Spamschutz Body-202 
-score HS_BODY_202		5
-
-body HS_BODY_203		/heutzutage spielen Kontakte und Adressdaten eine immer wichtigere Rolle./
-describe HS_BODY_203		Heinlein Support Spamschutz Body-203 
-score HS_BODY_203		5
-
-body HS_BODY_204		/REVERZ anhand des Datenbestands der D-Info den gesuchten/
-describe HS_BODY_204		Heinlein Support Spamschutz Body-204 
-score HS_BODY_204		5
-
-body HS_BODY_205		/www\.privatseitennetz\.com/
-describe HS_BODY_205		Heinlein Support Spamschutz Body-205 
-score HS_BODY_205		5
-
-body HS_BODY_206		/Outlook and Outlook Express as well as five newly/
-describe HS_BODY_206		Heinlein Support Spamschutz Body-206 
-score HS_BODY_206		5
-
-body HS_BODY_207		/delog\@cip\.informatik\.uni\-wuerzburg\.de/
-describe HS_BODY_207		Heinlein Support Spamschutz Body-207 
-score HS_BODY_207		5
-
-body HS_BODY_208		/credit\.hostfree2003\.com/
-describe HS_BODY_208		Heinlein Support Spamschutz Body-208 
-score HS_BODY_208		5
-
-body HS_BODY_209		/www\.mediabiz\.de\.ewmail/
-describe HS_BODY_209		Heinlein Support Spamschutz Body-209 
-score HS_BODY_209		5
-
-body HS_BODY_210		/Want to boost your sales with Internet/
-describe HS_BODY_210		Heinlein Support Spamschutz Body-210 
-score HS_BODY_210		5
-
-body HS_BODY_211		/talente\.tripod\.com\.br/
-describe HS_BODY_211		Heinlein Support Spamschutz Body-211 
-score HS_BODY_211		5
-
-body HS_BODY_212		/schlechte Schufa-Auskunft? Bonit?sprobleme? Dann w?len Sie doch/
-describe HS_BODY_212		Heinlein Support Spamschutz Body-212 
-score HS_BODY_212		5
-
-body HS_BODY_213		/Diese Liste von Banken, Sparkassen Volks- und Raiffeisenbanken OHNE Schufa-Anschluss finden Sie nicht/
-describe HS_BODY_213		Heinlein Support Spamschutz Body-213 
-score HS_BODY_213		5
-
-body HS_BODY_214		/Gute Nachrichten\. Gerade habe ich die geile "FickShow" gefunden:/
-describe HS_BODY_214		Heinlein Support Spamschutz Body-214 
-score HS_BODY_214		5
-
-body HS_BODY_216		/Create Professional 3D Page\-Tuning/
-describe HS_BODY_216		Heinlein Support Spamschutz Body-216 
-score HS_BODY_216		5
-
-body HS_BODY_217		/SEXKONTAKTE ONLINE/
-describe HS_BODY_217		Heinlein Support Spamschutz Body-217 
-score HS_BODY_217		5
-
-body HS_BODY_218		/FREE Access to.*adult.*sites/
-describe HS_BODY_218		Heinlein Support Spamschutz Body-218 
-score HS_BODY_218		5
-
-body HS_BODY_219		/web\-supermarket\.com/
-describe HS_BODY_219		Heinlein Support Spamschutz Body-219 
-score HS_BODY_219		5
-
-body HS_BODY_220		/Wir haben ihre Adresse durch eines unserer Partnerunternehmen/
-describe HS_BODY_220		Heinlein Support Spamschutz Body-220 
-score HS_BODY_220		5
-
-body HS_BODY_221		/herbal\-place\.com/
-describe HS_BODY_221		Heinlein Support Spamschutz Body-221 
-score HS_BODY_221		5
-
-body HS_BODY_222		/GIO DIET\-CAPS greifen hier ein durch:/
-describe HS_BODY_222		Heinlein Support Spamschutz Body-222 
-score HS_BODY_222		5
-
-body HS_BODY_223		/These are Free Cash Grants That you NEVER have to repay/
-describe HS_BODY_223		Heinlein Support Spamschutz Body-223 
-score HS_BODY_223		5
-
-body HS_BODY_224		/Wir haben unseren Zugang neu upgedadet/
-describe HS_BODY_224		Heinlein Support Spamschutz Body-224 
-score HS_BODY_224		5
-
-body HS_BODY_225		/Jemand der Dich sehr gut kennt wuerde gern ein Treffen mit Dir/
-describe HS_BODY_225		Heinlein Support Spamschutz Body-225 
-score HS_BODY_225		5
-
-body HS_BODY_226		/Wenn Du wissen willst wer Dich treffen moechte/
-describe HS_BODY_226		Heinlein Support Spamschutz Body-226 
-score HS_BODY_226		5
-
-body HS_BODY_227		/You Have Won a FREEE/
-describe HS_BODY_227		Heinlein Support Spamschutz Body-227 
-score HS_BODY_227		5
-
-body HS_BODY_228		/Click Here For All Your Favorite Pornstars/
-describe HS_BODY_228		Heinlein Support Spamschutz Body-228 
-score HS_BODY_228		5
-
-body HS_BODY_229		/Year the U\.S\. Government Gives away BILLIONS in cash grants/
-describe HS_BODY_229		Heinlein Support Spamschutz Body-229 
-score HS_BODY_229		5
-
-body HS_BODY_230		/Banken ohne Schufa\-Auskunft/
-describe HS_BODY_230		Heinlein Support Spamschutz Body-230 
-score HS_BODY_230		5
-
-body HS_BODY_231		/Probleme mit der Schufa/
-describe HS_BODY_231		Heinlein Support Spamschutz Body-231 
-score HS_BODY_231		5
-
-body HS_BODY_232		/Laden Sie sich jetzt unsere kostenlose Zugangssoftware runter/
-describe HS_BODY_232		Heinlein Support Spamschutz Body-232 
-score HS_BODY_232		5
-
-body HS_BODY_233		/Genocide Is A Black\-And\-White Concept/
-describe HS_BODY_233		Heinlein Support Spamschutz Body-233 
-score HS_BODY_233		5
-
-body HS_BODY_234		/So viele Wuensche auf einmal/
-describe HS_BODY_234		Heinlein Support Spamschutz Body-234 
-score HS_BODY_234		5
-
-body HS_BODY_235		/diese Mail ist kein SPAM/
-describe HS_BODY_235		Heinlein Support Spamschutz Body-235 
-score HS_BODY_235		5
-
-body HS_BODY_236		/Sch.*ne Gr.*e von Lucky Casino/
-describe HS_BODY_236		Heinlein Support Spamschutz Body-236 
-score HS_BODY_236		5
-
-body HS_BODY_237		/Weil Sie oder ein anderer bei Lucky Casino/
-describe HS_BODY_237		Heinlein Support Spamschutz Body-237 
-score HS_BODY_237		5
-
-body HS_BODY_238		/Endlich habe ich Deine E-Mail Adresse wieder gefunden, das hat aber/
-describe HS_BODY_238		Heinlein Support Spamschutz Body-238 
-score HS_BODY_238		5
-
-body HS_BODY_239		/.*www\.removeyou\.com.*/
-describe HS_BODY_239		Heinlein Support Spamschutz Body-239 
-score HS_BODY_239		5
-
-body HS_BODY_240		/.*waterforge\.com.*/
-describe HS_BODY_240		Heinlein Support Spamschutz Body-240 
-score HS_BODY_240		5
-
-body HS_BODY_241		/.*capitalwave\.com\?subject=Please*/
-describe HS_BODY_241		Heinlein Support Spamschutz Body-241 
-score HS_BODY_241		5
-
-body HS_BODY_242		/\.virtmundo\.com/
-describe HS_BODY_242		Heinlein Support Spamschutz Body-242 
-score HS_BODY_242		5
-
-body HS_BODY_243		/Nude Celebrities/
-describe HS_BODY_243		Heinlein Support Spamschutz Body-243 
-score HS_BODY_243		5
-
-body HS_BODY_244		/PRODUCT or SERVICE/
-describe HS_BODY_244		Heinlein Support Spamschutz Body-244 
-score HS_BODY_244		5
-
-body HS_BODY_245		/Amateur Girls/
-describe HS_BODY_245		Heinlein Support Spamschutz Body-245 
-score HS_BODY_245		5
-
-body HS_BODY_246		/<iframe src=(3D)?cid:.* height=(3D)?0 width=(3D)?0>/
-describe HS_BODY_246		Heinlein Support Spamschutz Body-246 
-score HS_BODY_246		5
-
-body HS_BODY_247		/^Big tit lovers unite.$|cum.?(shoo?ts|slurp)|swallow(ing)? cum|cum.*swallow(ing)?|(ass|arse).?fucking|(tight|wet|shaved|young|teen)+ pussy|fuck.?fest|pussy.?juice|cum all over|compulsive masturbators agree|explicit hardcore|(nasty|teen).*sluts/
-describe HS_BODY_247		Heinlein Support Spamschutz Body-247 
-score HS_BODY_247		5
-
-body HS_BODY_250		/^Content\-Disposition: attachment;filename=".*.(doc|zip|exe|xls|jpg|gif).(pif|bat|com|exe|lnk)"$/
-describe HS_BODY_250		Heinlein Support Spamschutz Body-250 
-score HS_BODY_250		5
-
-body HS_BODY_251		/^Content\-Disposition: attachment;filename=.*.(doc|zip|exe|xls|jpg|gif).(pif|bat|com|exe|lnk)$/
-describe HS_BODY_251		Heinlein Support Spamschutz Body-251 
-score HS_BODY_251		5
-
-body HS_BODY_252		/(filename|name)="(WTC|wtc|README)\.EXE"/
-describe HS_BODY_252		Heinlein Support Spamschutz Body-252 
-score HS_BODY_252		5
-
-body HS_BODY_253		/(filename|name)="(Happy99|Navidad|prettypark|pretty park|zipped_files|flcss|Msinit|wininit|msi216|readme|README|Avp_updates|Qi_test|Anti_cih).exe"/
-describe HS_BODY_253		Heinlein Support Spamschutz Body-253 
-score HS_BODY_253		5
-
-body HS_BODY_254		/(filename|name)="(dhcp*|Emanuel|kmbfejkm|NakedWife|Seicho_no_ie|JAMGCJJA|Sulfnbk).exe"/
-describe HS_BODY_254		Heinlein Support Spamschutz Body-254 
-score HS_BODY_254		5
-
-body HS_BODY_255		/(kak|day)\.(reg|hta)/
-describe HS_BODY_255		Heinlein Support Spamschutz Body-255 
-score HS_BODY_255		5
-
-body HS_BODY_260		/to remove[,]* please send a blank email/
-describe HS_BODY_260		Heinlein Support Spamschutz Body-260 
-score HS_BODY_260		5
-
-body HS_BODY_261		/removed from our mail agents/
-describe HS_BODY_261		Heinlein Support Spamschutz Body-261 
-score HS_BODY_261		5
-
-body HS_BODY_262		/to remove yourself immediately/
-describe HS_BODY_262		Heinlein Support Spamschutz Body-262 
-score HS_BODY_262		5
-
-body HS_BODY_263		/to remove yourself from future/
-describe HS_BODY_263		Heinlein Support Spamschutz Body-263 
-score HS_BODY_263		5
-
-body HS_BODY_264		/Rem[o]*ve me fro[nm] any (furhter|further) mailings/
-describe HS_BODY_264		Heinlein Support Spamschutz Body-264 
-score HS_BODY_264		5
-
-body HS_BODY_265		/remove yourself from any future mailings/
-describe HS_BODY_265		Heinlein Support Spamschutz Body-265 
-score HS_BODY_265		5
-
-body HS_BODY_266		/to no longer receive this message reply/
-describe HS_BODY_266		Heinlein Support Spamschutz Body-266 
-score HS_BODY_266		5
-
-body HS_BODY_267		/to no longer receive messages click the link/
-describe HS_BODY_267		Heinlein Support Spamschutz Body-267 
-score HS_BODY_267		5
-
-body HS_BODY_268		/to no longer receive messages please click the link/
-describe HS_BODY_268		Heinlein Support Spamschutz Body-268 
-score HS_BODY_268		5
-
-body HS_BODY_269		/our broadcast email software/
-describe HS_BODY_269		Heinlein Support Spamschutz Body-269 
-score HS_BODY_269		5
-
-body HS_BODY_270		/there are no federal regulations or laws on (email|e-mail) advertising/
-describe HS_BODY_270		Heinlein Support Spamschutz Body-270 
-score HS_BODY_270		5
-
-body HS_BODY_271		/to receive (no|any) (further|future) (offers|mailings)/
-describe HS_BODY_271		Heinlein Support Spamschutz Body-271 
-score HS_BODY_271		5
-
-body HS_BODY_272		/unsubscribe from Virtumundo Rewards/
-describe HS_BODY_272		Heinlein Support Spamschutz Body-272 
-score HS_BODY_272		5
-
-body HS_BODY_273		/if you do not wish to receive email from me/
-describe HS_BODY_273		Heinlein Support Spamschutz Body-273 
-score HS_BODY_273		5
-
-body HS_BODY_274		/reply with the word remove in the subject line/
-describe HS_BODY_274		Heinlein Support Spamschutz Body-274 
-score HS_BODY_274		5
-
-body HS_BODY_275		/reply address on this email was active at the time this email was sent/
-describe HS_BODY_275		Heinlein Support Spamschutz Body-275 
-score HS_BODY_275		5
-
-body HS_BODY_276		/not a registered investment advisor/
-describe HS_BODY_276		Heinlein Support Spamschutz Body-276 
-score HS_BODY_276		5
-
-body HS_BODY_277		/sent by corporate micro mail manager/
-describe HS_BODY_277		Heinlein Support Spamschutz Body-277 
-score HS_BODY_277		5
-
-body HS_BODY_278		/to be stop future mailings/
-describe HS_BODY_278		Heinlein Support Spamschutz Body-278 
-score HS_BODY_278		5
-
-body HS_BODY_279		/to stop future mailings/
-describe HS_BODY_279		Heinlein Support Spamschutz Body-279 
-score HS_BODY_279		5
-
-body HS_BODY_280		/to be taken off the mailing list please click below/
-describe HS_BODY_280		Heinlein Support Spamschutz Body-280 
-score HS_BODY_280		5
-
-body HS_BODY_281		/sent to you in compliance (with|of)/
-describe HS_BODY_281		Heinlein Support Spamschutz Body-281 
-score HS_BODY_281		5
-
-body HS_BODY_282		/sent in compliance (with|of)/
-describe HS_BODY_282		Heinlein Support Spamschutz Body-282 
-score HS_BODY_282		5
-
-body HS_BODY_283		/compliance with the current federal legislation/
-describe HS_BODY_283		Heinlein Support Spamschutz Body-283 
-score HS_BODY_283		5
-
-body HS_BODY_284		/comply with proposed federal legislation/
-describe HS_BODY_284		Heinlein Support Spamschutz Body-284 
-score HS_BODY_284		5
-
-body HS_BODY_285		/permanently (deleted|removed) from our (database|list)/
-describe HS_BODY_285		Heinlein Support Spamschutz Body-285 
-score HS_BODY_285		5
-
-body HS_BODY_286		/to be removed your email from our mailing list/
-describe HS_BODY_286		Heinlein Support Spamschutz Body-286 
-score HS_BODY_286		5
-
-body HS_BODY_287		/this mailing is done by an independent marketing/
-describe HS_BODY_287		Heinlein Support Spamschutz Body-287 
-score HS_BODY_287		5
-
-body HS_BODY_288		/this[ ]*message[ ]*is[ ]*being[ ]*sent[ ]*in[ ]*full[ ]*compliance/
-describe HS_BODY_288		Heinlein Support Spamschutz Body-288 
-score HS_BODY_288		5
-
-body HS_BODY_289		/this is a one[- ]*time (email|e-mail|mailing|offer)/
-describe HS_BODY_289		Heinlein Support Spamschutz Body-289 
-score HS_BODY_289		5
-
-body HS_BODY_290		/Under Bill s\.1618/
-describe HS_BODY_290		Heinlein Support Spamschutz Body-290 
-score HS_BODY_290		5
-
-body HS_BODY_291		/cannot be considered spam/
-describe HS_BODY_291		Heinlein Support Spamschutz Body-291 
-score HS_BODY_291		5
-
-body HS_BODY_292		/cannot be considered as spam/
-describe HS_BODY_292		Heinlein Support Spamschutz Body-292 
-score HS_BODY_292		5
-
-body HS_BODY_293		/(respect|honor|honour) all removal requests/
-describe HS_BODY_293		Heinlein Support Spamschutz Body-293 
-score HS_BODY_293		5
-
-body HS_BODY_294		/no longer wish to receive these offers/
-describe HS_BODY_294		Heinlein Support Spamschutz Body-294 
-score HS_BODY_294		5
-
-body HS_BODY_295		/you will not receive this offer again/
-describe HS_BODY_295		Heinlein Support Spamschutz Body-295 
-score HS_BODY_295		5
-
-body HS_BODY_296		/this is not an unsolicited mail/
-describe HS_BODY_296		Heinlein Support Spamschutz Body-296 
-score HS_BODY_296		5
-
-body HS_BODY_297		/this email has not been sent to you unsolicited/
-describe HS_BODY_297		Heinlein Support Spamschutz Body-297 
-score HS_BODY_297		5
-
-body HS_BODY_298		/has not been sent unsolicited/
-describe HS_BODY_298		Heinlein Support Spamschutz Body-298 
-score HS_BODY_298		5
-
-body HS_BODY_299		/all removes (honored|honoured)/
-describe HS_BODY_299		Heinlein Support Spamschutz Body-299 
-score HS_BODY_299		5
-
-body HS_BODY_300		/To[ ]+remove[ ]+.*\@excite.com/
-describe HS_BODY_300		Heinlein Support Spamschutz Body-300 
-score HS_BODY_300		5
-
-body HS_BODY_301		/to[ ]+be[ ]+removed[ ]+.*\@excite.com/
-describe HS_BODY_301		Heinlein Support Spamschutz Body-301 
-score HS_BODY_301		5
-
-body HS_BODY_302		/removemenow\@excite\.com/
-describe HS_BODY_302		Heinlein Support Spamschutz Body-302 
-score HS_BODY_302		5
-
-body HS_BODY_303		/1800cruisesandtours\.com/
-describe HS_BODY_303		Heinlein Support Spamschutz Body-303 
-score HS_BODY_303		5
-
-body HS_BODY_304		/freewebdirect\.net/
-describe HS_BODY_304		Heinlein Support Spamschutz Body-304 
-score HS_BODY_304		5
-
-body HS_BODY_305		/new\-herbalway\.com/
-describe HS_BODY_305		Heinlein Support Spamschutz Body-305 
-score HS_BODY_305		5
-
-body HS_BODY_306		/advantagesweb\.com/
-describe HS_BODY_306		Heinlein Support Spamschutz Body-306 
-score HS_BODY_306		5
-
-body HS_BODY_307		/phytohealing\.com/
-describe HS_BODY_307		Heinlein Support Spamschutz Body-307 
-score HS_BODY_307		5
-
-body HS_BODY_308		/tradersprophet\.com/
-describe HS_BODY_308		Heinlein Support Spamschutz Body-308 
-score HS_BODY_308		5
-
-body HS_BODY_309		/ugot2see\.com/
-describe HS_BODY_309		Heinlein Support Spamschutz Body-309 
-score HS_BODY_309		5
-
-body HS_BODY_310		/hotlatinparadise\.com/
-describe HS_BODY_310		Heinlein Support Spamschutz Body-310 
-score HS_BODY_310		5
-
-body HS_BODY_311		/pearlgolf\.com/
-describe HS_BODY_311		Heinlein Support Spamschutz Body-311 
-score HS_BODY_311		5
-
-body HS_BODY_312		/halloweenomania\.com/
-describe HS_BODY_312		Heinlein Support Spamschutz Body-312 
-score HS_BODY_312		5
-
-body HS_BODY_313		/gofortuneonline\.com/
-describe HS_BODY_313		Heinlein Support Spamschutz Body-313 
-score HS_BODY_313		5
-
-body HS_BODY_314		/scantexas\.com/
-describe HS_BODY_314		Heinlein Support Spamschutz Body-314 
-score HS_BODY_314		5
-
-body HS_BODY_315		/buildreferrals\.com/
-describe HS_BODY_315		Heinlein Support Spamschutz Body-315 
-score HS_BODY_315		5
-
-body HS_BODY_316		/removeyou\.com/
-describe HS_BODY_316		Heinlein Support Spamschutz Body-316 
-score HS_BODY_316		5
-
-body HS_BODY_317		/cashbackmall\.com/
-describe HS_BODY_317		Heinlein Support Spamschutz Body-317 
-score HS_BODY_317		5
-
-body HS_BODY_318		/pageitnow\.net/
-describe HS_BODY_318		Heinlein Support Spamschutz Body-318 
-score HS_BODY_318		5
-
-body HS_BODY_319		/easycream\.com/
-describe HS_BODY_319		Heinlein Support Spamschutz Body-319 
-score HS_BODY_319		5
-
-body HS_BODY_320		/optinrealbig\.com/
-describe HS_BODY_320		Heinlein Support Spamschutz Body-320 
-score HS_BODY_320		5
-
-body HS_BODY_321		/realgreatgifts\.com/
-describe HS_BODY_321		Heinlein Support Spamschutz Body-321 
-score HS_BODY_321		5
-
-body HS_BODY_322		/realcheapgifts\.com/
-describe HS_BODY_322		Heinlein Support Spamschutz Body-322 
-score HS_BODY_322		5
-
-body HS_BODY_323		/pillsofpleasure\.com/
-describe HS_BODY_323		Heinlein Support Spamschutz Body-323 
-score HS_BODY_323		5
-
-body HS_BODY_324		/greathealthpills\.com/
-describe HS_BODY_324		Heinlein Support Spamschutz Body-324 
-score HS_BODY_324		5
-
-body HS_BODY_325		/saverealbigdeals\.com/
-describe HS_BODY_325		Heinlein Support Spamschutz Body-325 
-score HS_BODY_325		5
-
-body HS_BODY_326		/saverealbigstore\.com/
-describe HS_BODY_326		Heinlein Support Spamschutz Body-326 
-score HS_BODY_326		5
-
-body HS_BODY_327		/realbigwinners\.com/
-describe HS_BODY_327		Heinlein Support Spamschutz Body-327 
-score HS_BODY_327		5
-
-body HS_BODY_328		/saverealbig\.com/
-describe HS_BODY_328		Heinlein Support Spamschutz Body-328 
-score HS_BODY_328		5
-
-body HS_BODY_329		/extremetraffic_rem\@excite\.com/
-describe HS_BODY_329		Heinlein Support Spamschutz Body-329 
-score HS_BODY_329		5
-
-body HS_BODY_330		/tccoptin\@yahoo\.com/
-describe HS_BODY_330		Heinlein Support Spamschutz Body-330 
-score HS_BODY_330		5
-
-body HS_BODY_331		/tccoptout\@yahoo\.com/
-describe HS_BODY_331		Heinlein Support Spamschutz Body-331 
-score HS_BODY_331		5
-
-body HS_BODY_332		/stop026\@excite\.com/
-describe HS_BODY_332		Heinlein Support Spamschutz Body-332 
-score HS_BODY_332		5
-
-body HS_BODY_333		/pleasestopsending\@hotmail\.com/
-describe HS_BODY_333		Heinlein Support Spamschutz Body-333 
-score HS_BODY_333		5
-
-body HS_BODY_334		/viperdrawing\@winning\.com/
-describe HS_BODY_334		Heinlein Support Spamschutz Body-334 
-score HS_BODY_334		5
-
-body HS_BODY_335		/mailto:.*@.*?subject=(3D)*(remove|removeme|pleasedelete|pleaseremove|deleteme)+/
-describe HS_BODY_335		Heinlein Support Spamschutz Body-335 
-score HS_BODY_335		5
-
-body HS_BODY_336		/StudioPros/
-describe HS_BODY_336		Heinlein Support Spamschutz Body-336 
-score HS_BODY_336		5
-
-body HS_BODY_337		/universal advertising systems/
-describe HS_BODY_337		Heinlein Support Spamschutz Body-337 
-score HS_BODY_337		5
-
-body HS_BODY_338		/androstenone pheromone concentrate/
-describe HS_BODY_338		Heinlein Support Spamschutz Body-338 
-score HS_BODY_338		5
-
-body HS_BODY_339		/message was sent by a[n]* independent advertising company/
-describe HS_BODY_339		Heinlein Support Spamschutz Body-339 
-score HS_BODY_339		5
-
-body HS_BODY_340		/amazing cash products/
-describe HS_BODY_340		Heinlein Support Spamschutz Body-340 
-score HS_BODY_340		5
-
-body HS_BODY_341		/penis.*growth/
-describe HS_BODY_341		Heinlein Support Spamschutz Body-341 
-score HS_BODY_341		5
-
-body HS_BODY_342		/vortex[ ]+supplies/
-describe HS_BODY_342		Heinlein Support Spamschutz Body-342 
-score HS_BODY_342		5
-
-body HS_BODY_343		/international trade sources llc/
-describe HS_BODY_343		Heinlein Support Spamschutz Body-343 
-score HS_BODY_343		5
-
-body HS_BODY_344		/postmasterdirect inc/
-describe HS_BODY_344		Heinlein Support Spamschutz Body-344 
-score HS_BODY_344		5
-
-body HS_BODY_345		/free no obligation consultation/
-describe HS_BODY_345		Heinlein Support Spamschutz Body-345 
-score HS_BODY_345		5
-
-body HS_BODY_346		/voted sex[- ]server on the web/
-describe HS_BODY_346		Heinlein Support Spamschutz Body-346 
-score HS_BODY_346		5
-
-body HS_BODY_347		/get back.*years of your income taxes/
-describe HS_BODY_347		Heinlein Support Spamschutz Body-347 
-score HS_BODY_347		5
-
-body HS_BODY_348		/click here for your free quote/
-describe HS_BODY_348		Heinlein Support Spamschutz Body-348 
-score HS_BODY_348		5
-
-body HS_BODY_349		/click here to be (permanently)* ?(removed|deleted)/
-describe HS_BODY_349		Heinlein Support Spamschutz Body-349 
-score HS_BODY_349		5
-
-body HS_BODY_350		/to unsubscribe do nothing/
-describe HS_BODY_350		Heinlein Support Spamschutz Body-350 
-score HS_BODY_350		5
-
-body HS_BODY_351		/OTCBB Stock Alert/
-describe HS_BODY_351		Heinlein Support Spamschutz Body-351 
-score HS_BODY_351		5
-
-body HS_BODY_352		/apparently you have filled out an online form/
-describe HS_BODY_352		Heinlein Support Spamschutz Body-352 
-score HS_BODY_352		5
-
-body HS_BODY_353		/list management software will not know/
-describe HS_BODY_353		Heinlein Support Spamschutz Body-353 
-score HS_BODY_353		5
-
-body HS_BODY_354		/message will only be sent once/
-describe HS_BODY_354		Heinlein Support Spamschutz Body-354 
-score HS_BODY_354		5
-
-body HS_BODY_355		/found this company on the internet/
-describe HS_BODY_355		Heinlein Support Spamschutz Body-355 
-score HS_BODY_355		5
-
-body HS_BODY_356		/you will not receive any future mailings/
-describe HS_BODY_356		Heinlein Support Spamschutz Body-356 
-score HS_BODY_356		5
-
-body HS_BODY_357		/all removal requests are (honored|honoured)/
-describe HS_BODY_357		Heinlein Support Spamschutz Body-357 
-score HS_BODY_357		5
-
-body HS_BODY_358		/you will be removed from our mailing[ ]*list and receive no further information from us/
-describe HS_BODY_358		Heinlein Support Spamschutz Body-358 
-score HS_BODY_358		5
-
-body HS_BODY_359		/we include contact information and a method to be removed from our mailing[ ]*list/
-describe HS_BODY_359		Heinlein Support Spamschutz Body-359 
-score HS_BODY_359		5
-
-body HS_BODY_360		/there is no need to unsubscribe/
-describe HS_BODY_360		Heinlein Support Spamschutz Body-360 
-score HS_BODY_360		5
-
-body HS_BODY_361		/I have made every attempt to target this message/
-describe HS_BODY_361		Heinlein Support Spamschutz Body-361 
-score HS_BODY_361		5
-
-body HS_BODY_362		/If you do not wish to be on our list then click here/
-describe HS_BODY_362		Heinlein Support Spamschutz Body-362 
-score HS_BODY_362		5
-
-body HS_BODY_363		/If you are not interested in receiving information/
-describe HS_BODY_363		Heinlein Support Spamschutz Body-363 
-score HS_BODY_363		5
-
-body HS_BODY_364		/your request will be (honored|honoured) with prompt removal/
-describe HS_BODY_364		Heinlein Support Spamschutz Body-364 
-score HS_BODY_364		5
-
-body HS_BODY_365		/if you feel you got this e[-]*mail by mistake/
-describe HS_BODY_365		Heinlein Support Spamschutz Body-365 
-score HS_BODY_365		5
-
-body HS_BODY_366		/to have us permanently remove you from our list/
-describe HS_BODY_366		Heinlein Support Spamschutz Body-366 
-score HS_BODY_366		5
-
-body HS_BODY_367		/we guarantee you will not receive any future e[-]*mails from us/
-describe HS_BODY_367		Heinlein Support Spamschutz Body-367 
-score HS_BODY_367		5
-
-body HS_BODY_368		/if you would rather not receive future e[-]*mails/
-describe HS_BODY_368		Heinlein Support Spamschutz Body-368 
-score HS_BODY_368		5
-
-body HS_BODY_369		/we do not intend to send any future e[-]*mails/
-describe HS_BODY_369		Heinlein Support Spamschutz Body-369 
-score HS_BODY_369		5
-
-body HS_BODY_370		/further emailing to you by the of this email may be stopped/
-describe HS_BODY_370		Heinlein Support Spamschutz Body-370 
-score HS_BODY_370		5
-
-body HS_BODY_371		/by the of this email may be stopped/
-describe HS_BODY_371		Heinlein Support Spamschutz Body-371 
-score HS_BODY_371		5
-
-body HS_BODY_372		/receiving this e[-]*mail because you opted[- ]in/
-describe HS_BODY_372		Heinlein Support Spamschutz Body-372 
-score HS_BODY_372		2
-
-body HS_BODY_373		/this email has been sent to you because someone at this e[-]*mail address/
-describe HS_BODY_373		Heinlein Support Spamschutz Body-373 
-score HS_BODY_373		5
-
-body HS_BODY_374		/to have your name removed from our email database/
-describe HS_BODY_374		Heinlein Support Spamschutz Body-374 
-score HS_BODY_374		5
-
-body HS_BODY_375		/stopped at no cost to you by sending a reply to this e[-]*mail address/
-describe HS_BODY_375		Heinlein Support Spamschutz Body-375 
-score HS_BODY_375		5
-
-body HS_BODY_376		/this message is an advertisement/
-describe HS_BODY_376		Heinlein Support Spamschutz Body-376 
-score HS_BODY_376		5
-
-body HS_BODY_377		/immediately removed from receiving any more information/
-describe HS_BODY_377		Heinlein Support Spamschutz Body-377 
-score HS_BODY_377		5
-
-body HS_BODY_378		/would not like to receive future messages/
-describe HS_BODY_378		Heinlein Support Spamschutz Body-378 
-score HS_BODY_378		5
-
-body HS_BODY_379		/tell us you would not like to continue to receive such e[-]*mails/
-describe HS_BODY_379		Heinlein Support Spamschutz Body-379 
-score HS_BODY_379		5
-
-body HS_BODY_380		/advertise your product or service using bulk email services/
-describe HS_BODY_380		Heinlein Support Spamschutz Body-380 
-score HS_BODY_380		5
-
-body HS_BODY_381		/You have been specially selected to qualify/
-describe HS_BODY_381		Heinlein Support Spamschutz Body-381 
-score HS_BODY_381		5
-
-body HS_BODY_382		/while working from the privacy of your own home/
-describe HS_BODY_382		Heinlein Support Spamschutz Body-382 
-score HS_BODY_382		5
-
-body HS_BODY_383		/e[-]*mail messages may be stopped/
-describe HS_BODY_383		Heinlein Support Spamschutz Body-383 
-score HS_BODY_383		5
-
-body HS_BODY_384		/list removal\/opt[- ].*out/
-describe HS_BODY_384		Heinlein Support Spamschutz Body-384 
-score HS_BODY_384		5
-
-body HS_BODY_385		/this is a no obligation qualification form/
-describe HS_BODY_385		Heinlein Support Spamschutz Body-385 
-score HS_BODY_385		5
-
-body HS_BODY_386		/please notify the sender immediately with .*remove/
-describe HS_BODY_386		Heinlein Support Spamschutz Body-386 
-score HS_BODY_386		5
-
-body HS_BODY_387		/home[- ]based income opportunity/
-describe HS_BODY_387		Heinlein Support Spamschutz Body-387 
-score HS_BODY_387		5
-
-body HS_BODY_388		/(filename|name)="(Happy99|Navidad|prettypark).exe"/
-describe HS_BODY_388		Heinlein Support Spamschutz Body-388 
-score HS_BODY_388		5
-
-body HS_BODY_389		/(filename|name)="(pretty park|zipped_files|flcss).exe"/
-describe HS_BODY_389		Heinlein Support Spamschutz Body-389 
-score HS_BODY_389		2
-
-body HS_BODY_390		/(filename|name)="(Msinit|wininit|msi216|CFGWIZ31).exe"/
-describe HS_BODY_390		Heinlein Support Spamschutz Body-390 
-score HS_BODY_390		5
-
-body HS_BODY_391		/(filename|name)="(Avp_updates|Qi_test|Anti_cih).exe"/
-describe HS_BODY_391		Heinlein Support Spamschutz Body-391 
-score HS_BODY_391		5
-
-body HS_BODY_392		/(filename|name)="(Emanuel|kmbfejkm|NakedWife|Readme|readme).exe"/
-describe HS_BODY_392		Heinlein Support Spamschutz Body-392 
-score HS_BODY_392		5
-
-body HS_BODY_393		/(filename|name)="(Seicho_no_ie|JAMGCJJA|Sulfnbk|QuickLnk).exe"/
-describe HS_BODY_393		Heinlein Support Spamschutz Body-393 
-score HS_BODY_393		5
-
-body HS_BODY_394		/(filename|name)="(Readme|readme).eml"/
-describe HS_BODY_394		Heinlein Support Spamschutz Body-394 
-score HS_BODY_394		5
-
-body HS_BODY_395		/(kak|day).(reg|hta)/
-describe HS_BODY_395		Heinlein Support Spamschutz Body-395 
-score HS_BODY_395		1
-
-body HS_BODY_396		/Rem I am sorry/
-describe HS_BODY_396		Heinlein Support Spamschutz Body-396 
-score HS_BODY_396		5
-
-body HS_BODY_397		/Te mando este archivo para que me des tu punto de vista/
-describe HS_BODY_397		Heinlein Support Spamschutz Body-397 
-score HS_BODY_397		5
-
-body HS_BODY_398		/I send you this file in order to have your advice/
-describe HS_BODY_398		Heinlein Support Spamschutz Body-398 
-score HS_BODY_398		5
-
-body HS_BODY_399		/Espero me puedas ayudar con el archivo que te mando/
-describe HS_BODY_399		Heinlein Support Spamschutz Body-399 
-score HS_BODY_399		5
-
-body HS_BODY_400		/Espero te guste este archivo que te mando/
-describe HS_BODY_400		Heinlein Support Spamschutz Body-400 
-score HS_BODY_400		5
-
-body HS_BODY_401		/Este es el archivo con la informaci? que me pediste/
-describe HS_BODY_401		Heinlein Support Spamschutz Body-401 
-score HS_BODY_401		5
-
-body HS_BODY_402		/I hope you can help me with this file that I send/
-describe HS_BODY_402		Heinlein Support Spamschutz Body-402 
-score HS_BODY_402		5
-
-body HS_BODY_403		/I hope you like the file that I send you/
-describe HS_BODY_403		Heinlein Support Spamschutz Body-403 
-score HS_BODY_403		5
-
-body HS_BODY_404		/This is the file with the information that you ask for/
-describe HS_BODY_404		Heinlein Support Spamschutz Body-404 
-score HS_BODY_404		5
-
-body HS_BODY_405		/0 Business Fax Numbers/
-describe HS_BODY_405		Heinlein Support Spamschutz Body-405 
-score HS_BODY_405		5
-
-body HS_BODY_406		/1[- ]Time Mailling/
-describe HS_BODY_406		Heinlein Support Spamschutz Body-406 
-score HS_BODY_406		5
-
-body HS_BODY_407		/30 day money back guarantee/
-describe HS_BODY_407		Heinlein Support Spamschutz Body-407 
-score HS_BODY_407		5
-
-body HS_BODY_408		/A New Loan Makes Sense/
-describe HS_BODY_408		Heinlein Support Spamschutz Body-408 
-score HS_BODY_408		5
-
-body HS_BODY_409		/Advertise your product or service/
-describe HS_BODY_409		Heinlein Support Spamschutz Body-409 
-score HS_BODY_409		5
-
-body HS_BODY_410		/Aging While Burning Fat/
-describe HS_BODY_410		Heinlein Support Spamschutz Body-410 
-score HS_BODY_410		5
-
-body HS_BODY_411		/Amazing cash products/
-describe HS_BODY_411		Heinlein Support Spamschutz Body-411 
-score HS_BODY_411		5
-
-body HS_BODY_412		/Androstenone/
-describe HS_BODY_412		Heinlein Support Spamschutz Body-412 
-score HS_BODY_412		5
-
-body HS_BODY_413		/Attract Members of The Opposite/
-describe HS_BODY_413		Heinlein Support Spamschutz Body-413 
-score HS_BODY_413		5
-
-body HS_BODY_414		/Automatic Stock Picking Software/
-describe HS_BODY_414		Heinlein Support Spamschutz Body-414 
-score HS_BODY_414		5
-
-body HS_BODY_415		/Bad Credit Is History/
-describe HS_BODY_415		Heinlein Support Spamschutz Body-415 
-score HS_BODY_415		5
-
-body HS_BODY_416		/Banner Advertising Price/
-describe HS_BODY_416		Heinlein Support Spamschutz Body-416 
-score HS_BODY_416		5
-
-body HS_BODY_417		/Barnyard Fucking/
-describe HS_BODY_417		Heinlein Support Spamschutz Body-417 
-score HS_BODY_417		5
-
-body HS_BODY_418		/BEAUTIFUL Women On The Web/
-describe HS_BODY_418		Heinlein Support Spamschutz Body-418 
-score HS_BODY_418		5
-
-body HS_BODY_419		/Because Our Records Indicate That You Are A/
-describe HS_BODY_419		Heinlein Support Spamschutz Body-419 
-score HS_BODY_419		5
-
-body HS_BODY_420		/Because You Have Subscribed To One Of Our/
-describe HS_BODY_420		Heinlein Support Spamschutz Body-420 
-score HS_BODY_420		5
-
-body HS_BODY_421		/Because You Signed Up At One/
-describe HS_BODY_421		Heinlein Support Spamschutz Body-421 
-score HS_BODY_421		5
-
-body HS_BODY_422		/Best Porn/
-describe HS_BODY_422		Heinlein Support Spamschutz Body-422 
-score HS_BODY_422		5
-
-body HS_BODY_423		/Buy Preforeclosure Houses/
-describe HS_BODY_423		Heinlein Support Spamschutz Body-423 
-score HS_BODY_423		5
-
-body HS_BODY_424		/Cable TV Descrambler/
-describe HS_BODY_424		Heinlein Support Spamschutz Body-424 
-score HS_BODY_424		5
-
-body HS_BODY_425		/Cannot be Considered Spam/
-describe HS_BODY_425		Heinlein Support Spamschutz Body-425 
-score HS_BODY_425		5
-
-body HS_BODY_426		/Cannot be Considered As Spam/
-describe HS_BODY_426		Heinlein Support Spamschutz Body-426 
-score HS_BODY_426		5
-
-body HS_BODY_427		/Caso nao desejar receber este tipo de email novamente/
-describe HS_BODY_427		Heinlein Support Spamschutz Body-427 
-score HS_BODY_427		5
-
-body HS_BODY_428		/Click Here For Your Free Quote/
-describe HS_BODY_428		Heinlein Support Spamschutz Body-428 
-score HS_BODY_428		5
-
-body HS_BODY_429		/Click Here To Avoid This In The Future/
-describe HS_BODY_429		Heinlein Support Spamschutz Body-429 
-score HS_BODY_429		5
-
-body HS_BODY_430		/Compliance with the current federal legislation/
-describe HS_BODY_430		Heinlein Support Spamschutz Body-430 
-score HS_BODY_430		5
-
-body HS_BODY_431		/Copy DVD Movies/
-describe HS_BODY_431		Heinlein Support Spamschutz Body-431 
-score HS_BODY_431		5
-
-body HS_BODY_432		/Creating Immediate Wealth/
-describe HS_BODY_432		Heinlein Support Spamschutz Body-432 
-score HS_BODY_432		5
-
-body HS_BODY_433		/Cum Shots/
-describe HS_BODY_433		Heinlein Support Spamschutz Body-433 
-score HS_BODY_433		5
-
-body HS_BODY_434		/Dear Future/
-describe HS_BODY_434		Heinlein Support Spamschutz Body-434 
-score HS_BODY_434		5
-
-body HS_BODY_435		/Debt Consolidation/
-describe HS_BODY_435		Heinlein Support Spamschutz Body-435 
-score HS_BODY_435		5
-
-body HS_BODY_436		/Do You Want Financial/
-describe HS_BODY_436		Heinlein Support Spamschutz Body-436 
-score HS_BODY_436		5
-
-body HS_BODY_437		/E[- ]Mail Bill Section 301/
-describe HS_BODY_437		Heinlein Support Spamschutz Body-437 
-score HS_BODY_437		5
-
-body HS_BODY_438		/Earn A Full Time Income/
-describe HS_BODY_438		Heinlein Support Spamschutz Body-438 
-score HS_BODY_438		5
-
-body HS_BODY_439		/Easily Lose Weight/
-describe HS_BODY_439		Heinlein Support Spamschutz Body-439 
-score HS_BODY_439		5
-
-body HS_BODY_440		/Equalamail/
-describe HS_BODY_440		Heinlein Support Spamschutz Body-440 
-score HS_BODY_440		5
-
-body HS_BODY_441		/Email Bill Section 301/
-describe HS_BODY_441		Heinlein Support Spamschutz Body-441 
-score HS_BODY_441		5
-
-body HS_BODY_442		/Erotic Travel Guide/
-describe HS_BODY_442		Heinlein Support Spamschutz Body-442 
-score HS_BODY_442		5
-
-body HS_BODY_443		/Fat Blocker/
-describe HS_BODY_443		Heinlein Support Spamschutz Body-443 
-score HS_BODY_443		5
-
-body HS_BODY_444		/Fellow Internet entrepeneur/
-describe HS_BODY_444		Heinlein Support Spamschutz Body-444 
-score HS_BODY_444		5
-
-body HS_BODY_445		/Figure Income Earners/
-describe HS_BODY_445		Heinlein Support Spamschutz Body-445 
-score HS_BODY_445		5
-
-body HS_BODY_446		/Find Out Anything About Anyone/
-describe HS_BODY_446		Heinlein Support Spamschutz Body-446 
-score HS_BODY_446		5
-
-body HS_BODY_447		/Fix Your Credit/
-describe HS_BODY_447		Heinlein Support Spamschutz Body-447 
-score HS_BODY_447		5
-
-body HS_BODY_448		/Found this company on the internet/
-describe HS_BODY_448		Heinlein Support Spamschutz Body-448 
-score HS_BODY_448		5
-
-body HS_BODY_449		/Free Bulk Email/
-describe HS_BODY_449		Heinlein Support Spamschutz Body-449 
-score HS_BODY_449		5
-
-body HS_BODY_450		/Free Direct Email/
-describe HS_BODY_450		Heinlein Support Spamschutz Body-450 
-score HS_BODY_450		5
-
-body HS_BODY_451		/Free Multiple Moving Cost/
-describe HS_BODY_451		Heinlein Support Spamschutz Body-451 
-score HS_BODY_451		5
-
-body HS_BODY_452		/Free no obligation/
-describe HS_BODY_452		Heinlein Support Spamschutz Body-452 
-score HS_BODY_452		5
-
-body HS_BODY_453		/Free Private Webcam/
-describe HS_BODY_453		Heinlein Support Spamschutz Body-453 
-score HS_BODY_453		5
-
-body HS_BODY_454		/Free S e x/
-describe HS_BODY_454		Heinlein Support Spamschutz Body-454 
-score HS_BODY_454		5
-
-body HS_BODY_455		/Free Sex/
-describe HS_BODY_455		Heinlein Support Spamschutz Body-455 
-score HS_BODY_455		5
-
-body HS_BODY_456		/Free Vacation Giveaway/
-describe HS_BODY_456		Heinlein Support Spamschutz Body-456 
-score HS_BODY_456		5
-
-body HS_BODY_457		/Free XXX/
-describe HS_BODY_457		Heinlein Support Spamschutz Body-457 
-score HS_BODY_457		5
-
-body HS_BODY_458		/From A Concerned Gas User/
-describe HS_BODY_458		Heinlein Support Spamschutz Body-458 
-score HS_BODY_458		5
-
-body HS_BODY_459		/Get back.*years of your income taxes/
-describe HS_BODY_459		Heinlein Support Spamschutz Body-459 
-score HS_BODY_459		5
-
-body HS_BODY_460		/Government Grants E-Book/
-describe HS_BODY_460		Heinlein Support Spamschutz Body-460 
-score HS_BODY_460		5
-
-body HS_BODY_461		/GROWTH HORMONE RELEASER/
-describe HS_BODY_461		Heinlein Support Spamschutz Body-461 
-score HS_BODY_461		5
-
-body HS_BODY_462		/Hardcore Animal Action/
-describe HS_BODY_462		Heinlein Support Spamschutz Body-462 
-score HS_BODY_462		5
-
-body HS_BODY_463		/Hardcore Barnyard/
-describe HS_BODY_463		Heinlein Support Spamschutz Body-463 
-score HS_BODY_463		5
-
-body HS_BODY_464		/Hardcore Fist/
-describe HS_BODY_464		Heinlein Support Spamschutz Body-464 
-score HS_BODY_464		5
-
-body HS_BODY_465		/Hardcore Fucking/
-describe HS_BODY_465		Heinlein Support Spamschutz Body-465 
-score HS_BODY_465		5
-
-body HS_BODY_466		/Home[- ]based income opportunity/
-describe HS_BODY_466		Heinlein Support Spamschutz Body-466 
-score HS_BODY_466		5
-
-body HS_BODY_467		/Has not been sent unsolicited/
-describe HS_BODY_467		Heinlein Support Spamschutz Body-467 
-score HS_BODY_467		5
-
-body HS_BODY_468		/I Will Personally Show You How/
-describe HS_BODY_468		Heinlein Support Spamschutz Body-468 
-score HS_BODY_468		5
-
-body HS_BODY_469		/Independent advertising company/
-describe HS_BODY_469		Heinlein Support Spamschutz Body-469 
-score HS_BODY_469		5
-
-body HS_BODY_470		/Incredible Life Changing/
-describe HS_BODY_470		Heinlein Support Spamschutz Body-470 
-score HS_BODY_470		5
-
-body HS_BODY_471		/It Has Been Going Since/
-describe HS_BODY_471		Heinlein Support Spamschutz Body-471 
-score HS_BODY_471		5
-
-body HS_BODY_472		/Hardcore Animal/
-describe HS_BODY_472		Heinlein Support Spamschutz Body-472 
-score HS_BODY_472		5
-
-body HS_BODY_474		/Hardcore Teens/
-describe HS_BODY_474		Heinlein Support Spamschutz Body-474 
-score HS_BODY_474		5
-
-body HS_BODY_475		/Hardcore Unsuspecting/
-describe HS_BODY_475		Heinlein Support Spamschutz Body-475 
-score HS_BODY_475		5
-
-body HS_BODY_476		/Has not been sent to you unsolicited/
-describe HS_BODY_476		Heinlein Support Spamschutz Body-476 
-score HS_BODY_476		5
-
-body HS_BODY_477		/Hear About Future Offers From Us/
-describe HS_BODY_477		Heinlein Support Spamschutz Body-477 
-score HS_BODY_477		5
-
-body HS_BODY_478		/Hear About Offers From Us/
-describe HS_BODY_478		Heinlein Support Spamschutz Body-478 
-score HS_BODY_478		5
-
-body HS_BODY_479		/Hot Horny Girls/
-describe HS_BODY_479		Heinlein Support Spamschutz Body-479 
-score HS_BODY_479		5
-
-body HS_BODY_480		/Hot Young Nasty/
-describe HS_BODY_480		Heinlein Support Spamschutz Body-480 
-score HS_BODY_480		5
-
-body HS_BODY_481		/Huge Wild Animals/
-describe HS_BODY_481		Heinlein Support Spamschutz Body-481 
-score HS_BODY_481		5
-
-body HS_BODY_482		/Improve Sexual Vigor/
-describe HS_BODY_482		Heinlein Support Spamschutz Body-482 
-score HS_BODY_482		5
-
-body HS_BODY_483		/If you prefer not to receive future emails/
-describe HS_BODY_483		Heinlein Support Spamschutz Body-483 
-score HS_BODY_483		5
-
-body HS_BODY_484		/Im a total exibitionist/
-describe HS_BODY_484		Heinlein Support Spamschutz Body-484 
-score HS_BODY_484		5
-
-body HS_BODY_485		/In Compliance With The New E[- ]Mail Bill/
-describe HS_BODY_485		Heinlein Support Spamschutz Body-485 
-score HS_BODY_485		5
-
-body HS_BODY_486		/Just ONE click away from showing you/
-describe HS_BODY_486		Heinlein Support Spamschutz Body-486 
-score HS_BODY_486		5
-
-body HS_BODY_487		/Lender referral service/
-describe HS_BODY_487		Heinlein Support Spamschutz Body-487 
-score HS_BODY_487		5
-
-body HS_BODY_488		/Lenders Compete For Your Business/
-describe HS_BODY_488		Heinlein Support Spamschutz Body-488 
-score HS_BODY_488		5
-
-body HS_BODY_489		/Life Changing Opportunity/
-describe HS_BODY_489		Heinlein Support Spamschutz Body-489 
-score HS_BODY_489		3
-
-body HS_BODY_490		/Lips Around Your/
-describe HS_BODY_490		Heinlein Support Spamschutz Body-490 
-score HS_BODY_490		5
-
-body HS_BODY_491		/Locate Hidden Assets/
-describe HS_BODY_491		Heinlein Support Spamschutz Body-491 
-score HS_BODY_491		5
-
-body HS_BODY_492		/Lose Pounds And Inches/
-describe HS_BODY_492		Heinlein Support Spamschutz Body-492 
-score HS_BODY_492		5
-
-body HS_BODY_493		/Lose Some Weight Before/
-describe HS_BODY_493		Heinlein Support Spamschutz Body-493 
-score HS_BODY_493		5
-
-body HS_BODY_494		/Low[- ]Cost Viagra/
-describe HS_BODY_494		Heinlein Support Spamschutz Body-494 
-score HS_BODY_494		5
-
-body HS_BODY_495		/Lowest Mortgage/
-describe HS_BODY_495		Heinlein Support Spamschutz Body-495 
-score HS_BODY_495		5
-
-body HS_BODY_496		/Make money online/
-describe HS_BODY_496		Heinlein Support Spamschutz Body-496 
-score HS_BODY_496		5
-
-body HS_BODY_497		/Million E[- ]mail Addresses/
-describe HS_BODY_497		Heinlein Support Spamschutz Body-497 
-score HS_BODY_497		5
-
-body HS_BODY_498		/Million Email Addresses/
-describe HS_BODY_498		Heinlein Support Spamschutz Body-498 
-score HS_BODY_498		5
-
-body HS_BODY_499		/Minutes To Complete Your Order/
-describe HS_BODY_499		Heinlein Support Spamschutz Body-499 
-score HS_BODY_499		5
-
-body HS_BODY_500		/Much More Effective For Both Partners/
-describe HS_BODY_500		Heinlein Support Spamschutz Body-500 
-score HS_BODY_500		5
-
-body HS_BODY_501		/Mortgage Quote/
-describe HS_BODY_501		Heinlein Support Spamschutz Body-501 
-score HS_BODY_501		5
-
-body HS_BODY_502		/Need Fod Adult Entertainment/
-describe HS_BODY_502		Heinlein Support Spamschutz Body-502 
-score HS_BODY_502		5
-
-body HS_BODY_503		/Never Sends Unsolicited Email/
-describe HS_BODY_503		Heinlein Support Spamschutz Body-503 
-score HS_BODY_503		5
-
-body HS_BODY_504		/No[- ]Spam Policy/
-describe HS_BODY_504		Heinlein Support Spamschutz Body-504 
-score HS_BODY_504		5
-
-body HS_BODY_505		/On my personal live Webcam/
-describe HS_BODY_505		Heinlein Support Spamschutz Body-505 
-score HS_BODY_505		5
-
-body HS_BODY_506		/One[- ]Time Mail/
-describe HS_BODY_506		Heinlein Support Spamschutz Body-506 
-score HS_BODY_506		5
-
-body HS_BODY_507		/One[- ]Time Non[- ]Commercial/
-describe HS_BODY_507		Heinlein Support Spamschutz Body-507 
-score HS_BODY_507		5
-
-body HS_BODY_508		/Opt-In To Our/
-describe HS_BODY_508		Heinlein Support Spamschutz Body-508 
-score HS_BODY_508		5
-
-body HS_BODY_509		/Opt-Out From Our/
-describe HS_BODY_509		Heinlein Support Spamschutz Body-509 
-score HS_BODY_509		5
-
-body HS_BODY_510		/Our Herbal Supplement/
-describe HS_BODY_510		Heinlein Support Spamschutz Body-510 
-score HS_BODY_510		5
-
-body HS_BODY_511		/Owning your first home/
-describe HS_BODY_511		Heinlein Support Spamschutz Body-511 
-score HS_BODY_511		5
-
-body HS_BODY_512		/Partner E[- ]mail Offers/
-describe HS_BODY_512		Heinlein Support Spamschutz Body-512 
-score HS_BODY_512		5
-
-body HS_BODY_513		/Partner Email Offers/
-describe HS_BODY_513		Heinlein Support Spamschutz Body-513 
-score HS_BODY_513		5
-
-body HS_BODY_514		/Penis.*growth/
-describe HS_BODY_514		Heinlein Support Spamschutz Body-514 
-score HS_BODY_514		5
-
-body HS_BODY_515		/Permanently (deleted|removed) From Our/
-describe HS_BODY_515		Heinlein Support Spamschutz Body-515 
-score HS_BODY_515		5
-
-body HS_BODY_516		/Permission Based E[- ]mail/
-describe HS_BODY_516		Heinlein Support Spamschutz Body-516 
-score HS_BODY_516		5
-
-body HS_BODY_517		/Permission Based Email/
-describe HS_BODY_517		Heinlein Support Spamschutz Body-517 
-score HS_BODY_517		5
-
-body HS_BODY_518		/Pheromone Concentrate/
-describe HS_BODY_518		Heinlein Support Spamschutz Body-518 
-score HS_BODY_518		5
-
-body HS_BODY_519		/Potent Pheromone/
-describe HS_BODY_519		Heinlein Support Spamschutz Body-519 
-score HS_BODY_519		5
-
-body HS_BODY_520		/Price Discount for New TLD Extensions/
-describe HS_BODY_520		Heinlein Support Spamschutz Body-520 
-score HS_BODY_520		5
-
-body HS_BODY_521		/Quality Amateur Action/
-describe HS_BODY_521		Heinlein Support Spamschutz Body-521 
-score HS_BODY_521		5
-
-body HS_BODY_522		/Ready to refinance/
-describe HS_BODY_522		Heinlein Support Spamschutz Body-522 
-score HS_BODY_522		5
-
-body HS_BODY_523		/Real Live Cameras And Movies/
-describe HS_BODY_523		Heinlein Support Spamschutz Body-523 
-score HS_BODY_523		5
-
-body HS_BODY_524		/Real LiveCameras And Movies/
-describe HS_BODY_524		Heinlein Support Spamschutz Body-524 
-score HS_BODY_524		5
-
-body HS_BODY_525		/Receive Special Offer/
-describe HS_BODY_525		Heinlein Support Spamschutz Body-525 
-score HS_BODY_525		5
-
-body HS_BODY_526		/Reduce Body Fat/
-describe HS_BODY_526		Heinlein Support Spamschutz Body-526 
-score HS_BODY_526		5
-
-body HS_BODY_527		/Refinance Your Home/
-describe HS_BODY_527		Heinlein Support Spamschutz Body-527 
-score HS_BODY_527		5
-
-body HS_BODY_528		/Second Mortgage/
-describe HS_BODY_528		Heinlein Support Spamschutz Body-528 
-score HS_BODY_528		5
-
-body HS_BODY_529		/Secure A Better Life For/
-describe HS_BODY_529		Heinlein Support Spamschutz Body-529 
-score HS_BODY_529		5
-
-body HS_BODY_530		/See How Much You Can Save/
-describe HS_BODY_530		Heinlein Support Spamschutz Body-530 
-score HS_BODY_530		5
-
-body HS_BODY_531		/Sent to you in compliance (with|of)/
-describe HS_BODY_531		Heinlein Support Spamschutz Body-531 
-score HS_BODY_531		5
-
-body HS_BODY_532		/Sent To You By A Marketing Partner/
-describe HS_BODY_532		Heinlein Support Spamschutz Body-532 
-score HS_BODY_532		5
-
-body HS_BODY_533		/Sent in compliance (with|of)/
-describe HS_BODY_533		Heinlein Support Spamschutz Body-533 
-score HS_BODY_533		5
-
-body HS_BODY_534		/Serious Inquiries Only Please/
-describe HS_BODY_534		Heinlein Support Spamschutz Body-534 
-score HS_BODY_534		5
-
-body HS_BODY_535		/Shop Hundreds Of Lenders/
-describe HS_BODY_535		Heinlein Support Spamschutz Body-535 
-score HS_BODY_535		5
-
-body HS_BODY_536		/Start Making \$1/
-describe HS_BODY_536		Heinlein Support Spamschutz Body-536 
-score HS_BODY_536		5
-
-body HS_BODY_537		/Step To Financial Freedom/
-describe HS_BODY_537		Heinlein Support Spamschutz Body-537 
-score HS_BODY_537		5
-
-body HS_BODY_538		/Steps To Financial Freedom/
-describe HS_BODY_538		Heinlein Support Spamschutz Body-538 
-score HS_BODY_538		5
-
-body HS_BODY_539		/Suck My Cock/
-describe HS_BODY_539		Heinlein Support Spamschutz Body-539 
-score HS_BODY_539		5
-
-body HS_BODY_540		/Take A FREE Trip/
-describe HS_BODY_540		Heinlein Support Spamschutz Body-540 
-score HS_BODY_540		5
-
-body HS_BODY_541		/TAKE YOUR FIRST BIG STEP/
-describe HS_BODY_541		Heinlein Support Spamschutz Body-541 
-score HS_BODY_541		5
-
-body HS_BODY_542		/Targeted E[- ]mail List/
-describe HS_BODY_542		Heinlein Support Spamschutz Body-542 
-score HS_BODY_542		5
-
-body HS_BODY_543		/Targeted Email List/
-describe HS_BODY_543		Heinlein Support Spamschutz Body-543 
-score HS_BODY_543		5
-
-body HS_BODY_544		/The following gift or special offer was sent to you/
-describe HS_BODY_544		Heinlein Support Spamschutz Body-544 
-score HS_BODY_544		5
-
-body HS_BODY_545		/This email is not sent unsolicited/
-describe HS_BODY_545		Heinlein Support Spamschutz Body-545 
-score HS_BODY_545		5
-
-body HS_BODY_546		/This Is A One[- ]*Time (email|e-mail|mailing|offer)/
-describe HS_BODY_546		Heinlein Support Spamschutz Body-546 
-score HS_BODY_546		5
-
-body HS_BODY_547		/This mailing is done by an independent marketing/
-describe HS_BODY_547		Heinlein Support Spamschutz Body-547 
-score HS_BODY_547		5
-
-body HS_BODY_548		/To Be Removed From This Targeted/
-describe HS_BODY_548		Heinlein Support Spamschutz Body-548 
-score HS_BODY_548		5
-
-body HS_BODY_549		/To Claim Your Prize Click/
-describe HS_BODY_549		Heinlein Support Spamschutz Body-549 
-score HS_BODY_549		5
-
-body HS_BODY_550		/To Stop All Future Offers/
-describe HS_BODY_550		Heinlein Support Spamschutz Body-550 
-score HS_BODY_550		5
-
-body HS_BODY_551		/Under Bill s.1618/
-describe HS_BODY_551		Heinlein Support Spamschutz Body-551 
-score HS_BODY_551		5
-
-body HS_BODY_552		/Universal Advertising System/
-describe HS_BODY_552		Heinlein Support Spamschutz Body-552 
-score HS_BODY_552		5
-
-body HS_BODY_553		/Unlimited Phone Conversations/
-describe HS_BODY_553		Heinlein Support Spamschutz Body-553 
-score HS_BODY_553		5
-
-body HS_BODY_554		/Using Your Identity/
-describe HS_BODY_554		Heinlein Support Spamschutz Body-554 
-score HS_BODY_554		5
-
-body HS_BODY_555		/Virtumundo/
-describe HS_BODY_555		Heinlein Support Spamschutz Body-555 
-score HS_BODY_555		5
-
-body HS_BODY_556		/Voted sex[- ]server on the web/
-describe HS_BODY_556		Heinlein Support Spamschutz Body-556 
-score HS_BODY_556		5
-
-body HS_BODY_557		/We can award any degree/
-describe HS_BODY_557		Heinlein Support Spamschutz Body-557 
-score HS_BODY_557		5
-
-body HS_BODY_558		/We know it sounds impossible/
-describe HS_BODY_558		Heinlein Support Spamschutz Body-558 
-score HS_BODY_558		5
-
-body HS_BODY_559		/While working from the privacy of your own home/
-describe HS_BODY_559		Heinlein Support Spamschutz Body-559 
-score HS_BODY_559		5
-
-body HS_BODY_560		/Win Big Money Today/
-describe HS_BODY_560		Heinlein Support Spamschutz Body-560 
-score HS_BODY_560		5
-
-body HS_BODY_561		/Without Pumps Or Weights Or Stretches/
-describe HS_BODY_561		Heinlein Support Spamschutz Body-561 
-score HS_BODY_561		5
-
-body HS_BODY_562		/You Agree To Receive Email Marketing From/
-describe HS_BODY_562		Heinlein Support Spamschutz Body-562 
-score HS_BODY_562		5
-
-body HS_BODY_563		/You Are Receiving This Exclusive Promotion/
-describe HS_BODY_563		Heinlein Support Spamschutz Body-563 
-score HS_BODY_563		5
-
-body HS_BODY_564		/You Are Registered At One Of Our/
-describe HS_BODY_564		Heinlein Support Spamschutz Body-564 
-score HS_BODY_564		5
-
-body HS_BODY_565		/You are receiving this mail because you have/
-describe HS_BODY_565		Heinlein Support Spamschutz Body-565 
-score HS_BODY_565		5
-
-body HS_BODY_566		/You Have Agreed To Receive/
-describe HS_BODY_566		Heinlein Support Spamschutz Body-566 
-score HS_BODY_566		5
-
-body HS_BODY_567		/You Can Search For Anyone/
-describe HS_BODY_567		Heinlein Support Spamschutz Body-567 
-score HS_BODY_567		5
-
-body HS_BODY_568		/You Registered At One Of Our/
-describe HS_BODY_568		Heinlein Support Spamschutz Body-568 
-score HS_BODY_568		5
-
-body HS_BODY_569		/Your E[- ]mail Address Was Obtained/
-describe HS_BODY_569		Heinlein Support Spamschutz Body-569 
-score HS_BODY_569		5
-
-body HS_BODY_570		/Your Email Address Was Obtained/
-describe HS_BODY_570		Heinlein Support Spamschutz Body-570 
-score HS_BODY_570		5
-
-body HS_BODY_571		/Your Email Address Was Supplied/
-describe HS_BODY_571		Heinlein Support Spamschutz Body-571 
-score HS_BODY_571		5
-
-body HS_BODY_572		/Your Mail Address Was Supplied/
-describe HS_BODY_572		Heinlein Support Spamschutz Body-572 
-score HS_BODY_572		5
-
-body HS_BODY_573		/Your Penis Size/
-describe HS_BODY_573		Heinlein Support Spamschutz Body-573 
-score HS_BODY_573		5
-
-body HS_BODY_574		/Smart Tags, Smart Investments?/
-describe HS_BODY_574		Heinlein Support Spamschutz Body-574 
-score HS_BODY_574		5
-
-body HS_BODY_575		/faze the Neptune focal point and strive enterprising/
-describe HS_BODY_575		Heinlein Support Spamschutz Body-575 
-score HS_BODY_575		5
-
-body HS_BODY_576		/full moon insistence gist an packed/
-describe HS_BODY_576		Heinlein Support Spamschutz Body-576 
-score HS_BODY_576		5
-
-body HS_BODY_577		/a upward prominently field day health care the ridicule offing or Internet seemingly/
-describe HS_BODY_577		Heinlein Support Spamschutz Body-577 
-score HS_BODY_577		5
-
-body HS_BODY_578		/fanatic but consistency sluice scrape downtrodden five and ten on needless/
-describe HS_BODY_578		Heinlein Support Spamschutz Body-578 
-score HS_BODY_578		5
-
-body HS_BODY_579		/fuse box sick sister/
-describe HS_BODY_579		Heinlein Support Spamschutz Body-579 
-score HS_BODY_579		5
-
-body HS_BODY_580		/immediate fulfillment big deal and cashier/
-describe HS_BODY_580		Heinlein Support Spamschutz Body-580 
-score HS_BODY_580		5
-
-body HS_BODY_581		/in on parakeet quizzical chicken feed leper on square/
-describe HS_BODY_581		Heinlein Support Spamschutz Body-581 
-score HS_BODY_581		5
-
-body HS_BODY_582		/reference ounce a achiever sunblock syringe roadside longevity/
-describe HS_BODY_582		Heinlein Support Spamschutz Body-582 
-score HS_BODY_582		5
-
-body HS_BODY_583		/ocean distrust as antiperspirant coax lubricant entry, the northwestern politicize,/
-describe HS_BODY_583		Heinlein Support Spamschutz Body-583 
-score HS_BODY_583		5
-
-body HS_BODY_584		/By the time Scarlett had undressed and blown out the candle, her/
-describe HS_BODY_584		Heinlein Support Spamschutz Body-584 
-score HS_BODY_584		5
-
-body HS_BODY_585		/E\-MAIL:czq7q67a\@yahoo\.co\.jp/
-describe HS_BODY_585		Heinlein Support Spamschutz Body-585 
-score HS_BODY_585		5
-
-body HS_BODY_586		/kundenverifikationservice\.u2m\.ru\/VERIFY\.PHP/
-describe HS_BODY_586		Heinlein Support Spamschutz Body-586 
-score HS_BODY_586		5
-
-body HS_BODY_587		/The Weekend Pill - Xialis is safer, quicker, lasts longers/
-describe HS_BODY_587		Heinlein Support Spamschutz Body-587 
-score HS_BODY_587		5
-
-body HS_BODY_588		/NICHT ABHEBEN, SONDERN SOFORT ABWEISEN/
-describe HS_BODY_588		Heinlein Support Spamschutz Body-588 
-score HS_BODY_588		5
-
-body HS_BODY_589		/Es ist ein Virus, welcher alle IMEI und IMSI Daten/
-describe HS_BODY_589		Heinlein Support Spamschutz Body-589 
-score HS_BODY_589		5
-
-body HS_BODY_590		/galerie kurt im hirsch/
-describe HS_BODY_590		Heinlein Support Spamschutz Body-590 
-score HS_BODY_590		5
-
-body HS_BODY_591		/X-MS_Scanner: Kein Virus erkannt/
-describe HS_BODY_591		Heinlein Support Spamschutz Body-591 
-score HS_BODY_591		5
-
-body HS_BODY_592		/Anti_Virus Service/
-describe HS_BODY_592		Heinlein Support Spamschutz Body-592 
-score HS_BODY_592		5
-
-body HS_BODY_593		/Aufgrund der Staus in allen jpberlin.de Benutzer und Beseitigung aller jpberlin.de/
-describe HS_BODY_593		Heinlein Support Spamschutz Body-593 
-score HS_BODY_593		5
-
-body HS_BODY_594		/Damit durchzuführen Qualität Wartungsarbeiten an Ihrem Internet/
-describe HS_BODY_594		Heinlein Support Spamschutz Body-594 
-score HS_BODY_594		5
-
-body HS_BODY_596		/http:\/\/Super-Rabatte-2013-14111.com/
-describe HS_BODY_596		Heinlein Support Spamschutz Body-596 
-score HS_BODY_596		5
-
-body HS_BODY_597		/www\.otis\.co\.hu\/151981\.html/
-describe HS_BODY_597		Heinlein Support Spamschutz Body-597 
-score HS_BODY_597		5
-
-body HS_BODY_598		/http\:\/\/ininsu\.client\.jp\/425397\.html/
-describe HS_BODY_598		Heinlein Support Spamschutz Body-598 
-score HS_BODY_598		5
-
-body HS_BODY_599		/^Hi, this is Jeff Wu from China/
-describe HS_BODY_599		Heinlein Support Spamschutz Body-599 
-score HS_BODY_599		6
-
-body HS_BODY_607		/http:\/\/jpberlin-emailupgrade.tr.vu/
-describe HS_BODY_607		Heinlein Support Spamschutz Body-607 
-score HS_BODY_607		10
-
-body HS_BODY_608		/Your mailbox has exceeded the set quota limit due to hidden files/
-describe HS_BODY_608		Heinlein Support Spamschutz Body-608 
-score HS_BODY_608		5
-
-body HS_BODY_609		/Failure to increase your quota limit as advised may result to loss/
-describe HS_BODY_609		Heinlein Support Spamschutz Body-609 
-score HS_BODY_609		5
-
-body HS_BODY_611		/Ihr Postfach hat die eingestellte Kontingents durch versteckte Dateien/
-describe HS_BODY_611		Heinlein Support Spamschutz Body-611 
-score HS_BODY_611		5
-
-body HS_BODY_612		/Sie sind m.glicherweise nicht in der Lage zu senden oder zu empfangen neue E-Mails auf/
-describe HS_BODY_612		Heinlein Support Spamschutz Body-612 
-score HS_BODY_612		5
-
-body HS_BODY_613		/jpberlin-emailupgrade.tr.vu/
-describe HS_BODY_613		Heinlein Support Spamschutz Body-613 
-score HS_BODY_613		6
-
-body HS_BODY_615		/Vielen Dank f.*r Ihre Mitarbeit/
-describe HS_BODY_615		Heinlein Support Spamschutz Body-615 
-score HS_BODY_615		2
-
-body HS_BODY_616		/Ihr Webmail hat die Speichergrenze von Webmail Administrator/
-describe HS_BODY_616		Heinlein Support Spamschutz Body-616 
-score HS_BODY_616		3
-
-body HS_BODY_617		/ weiterhin seine Gr.*berschreiten/
-describe HS_BODY_617		Heinlein Support Spamschutz Body-617 
-score HS_BODY_617		3
-
-body HS_BODY_618		/http\:\/jpberlin\.de\/itservice/
-describe HS_BODY_618		Heinlein Support Spamschutz Body-618 
-score HS_BODY_618		5
-
-body HS_BODY_619		/wenn nicht innerhalb von 24 Stunden best.*Konto sperren/
-describe HS_BODY_619		Heinlein Support Spamschutz Body-619 
-score HS_BODY_619		5
-
-body HS_BODY_625		/carat of rough diamond/
-describe HS_BODY_625		Heinlein Support Spamschutz Body-625 
-score HS_BODY_625		7
-
-body HS_BODY_627		/Sommer-Angebot.*Bonus bis zu 200\%/
-describe HS_BODY_627		Heinlein Support Spamschutz Body-627 
-score HS_BODY_627		5
-
-body HS_BODY_628		/http\:\/\/203\.92\.45\.67/
-describe HS_BODY_628		Heinlein Support Spamschutz Body-628 
-score HS_BODY_628		5
-
-body HS_BODY_629		/sample\@email.tst/
-describe HS_BODY_629		Heinlein Support Spamschutz Body-629 
-score HS_BODY_629		10
-
-body HS_BODY_630		 /X-PowerMTA-VirtualMTA: mta_bd_cc270/
-describe HS_BODY_630		Heinlein Support Spamschutz Body-630 
-score HS_BODY_630		5
-
-body HS_BODY_631		/ Hello, this is the mail server on groupon.de./
-describe HS_BODY_631		Heinlein Support Spamschutz Body-631 
-score HS_BODY_631		5
-
-body HS_BODY_632		/X-PowerMTA-BounceCategory: other/
-describe HS_BODY_632		Heinlein Support Spamschutz Body-632 
-score HS_BODY_632		1
-
-body HS_BODY_633		/\@comcast\.net.  delivery failed; will not continue trying/
-describe HS_BODY_633		Heinlein Support Spamschutz Body-633 
-score HS_BODY_633		2
-
-body HS_BODY_634		/KINDLY OPEN THE ATTACHMENT FOR MORE INFORMATION./
-describe HS_BODY_634		Heinlein Support Spamschutz Body-634 
-score HS_BODY_634		3
-
-body HS_BODY_635		/\/vode\/aufladen\/step1\//
-describe HS_BODY_635		Heinlein Support Spamschutz Body-635 Phishing
-score HS_BODY_635		5
-
-body HS_BODY_636		/103\.5\.26\.7/
-describe HS_BODY_636		Heinlein Support Spamschutz Body-636 Phishing
-score HS_BODY_636		10
-
-body HS_BODY_637		/publish_form\/112297/
-describe HS_BODY_637		Heinlein Support Spamschutz Body-637 phishing
-score HS_BODY_637		10
-
-body HS_BODY_638		/© Webmail Inc/
-describe HS_BODY_638		Heinlein Support Spamschutz Body-638 phishing
-score HS_BODY_638		10
-
-body HS_BODY_639		/August Ank.ndigung!!!/
-describe HS_BODY_639		Heinlein Support Spamschutz Body-639 phishing
-score HS_BODY_639		10
-
-body HS_BODY_640		/web-mail-system-pgrade.phpforms.net/
-describe HS_BODY_640		Heinlein Support Spamschutz Body-640 phishing
-score HS_BODY_640		10
-
-body HS_BODY_641		/JPBerlin.de hat den Webmail-Server zu einer neuen und gesicherten Version/
-describe HS_BODY_641		Heinlein Support Spamschutz Body-641 phishing
-score HS_BODY_641		10
-
-body HS_BODY_642		/web-mail-system-upgrade.phpforms.net/
-describe HS_BODY_642		Heinlein Support Spamschutz Body-642 phishing
-score HS_BODY_642		10
-
-body HS_BODY_643		/partner\.sotmarket\.ru\/videos\.htm/
-describe HS_BODY_643		Heinlein Support Spamschutz Body-643 
-score HS_BODY_643		5
-
-body HS_BODY_644		/blind\.maglan\.ru\/video\.htm/
-describe HS_BODY_644		Heinlein Support Spamschutz Body-644 SPAM
-score HS_BODY_644		5
-
-body HS_BODY_645		/Ihre E-Mail wurde 2 GB, die erzeugt wird von unserem Webmaster/
-describe HS_BODY_645		Heinlein Support Spamschutz Body-645 
-score HS_BODY_645		5
-
-body HS_BODY_646		/Ihre E-Mail Quote hat den eingestellten Kontingent/
-describe HS_BODY_646		Heinlein Support Spamschutz Body-646 Phishing
-score HS_BODY_646		6
-
-body HS_BODY_647		/f=3DCYzP9H58V39kAlc4jBXhmg/
-describe HS_BODY_647		Heinlein Support Spamschutz Body-647 Phishing
-score HS_BODY_647		6
-
-body HS_BODY_648		/GOOGLE ANNIVERSARY WINNING NOTIFICATION/
-describe HS_BODY_648		Heinlein Support Spamschutz Body-648 
-score HS_BODY_648		5
-
-body HS_BODY_649		/JVBERi0xLjQNJeLjz9MNCjY1IDAgb2JqDTw8L0xpbmVhcml6ZWQgMS9MIDIzODA1L08gNjcvRSAx/
-describe HS_BODY_649		Heinlein Support Spamschutz Body-649 MALWARE
-score HS_BODY_649		6
-
-body HS_BODY_650		/F=FCllen Sie das Formular unten, um Ihre E-Mail-Adresse best=E4tigen:/
-describe HS_BODY_650		Heinlein Support Spamschutz Body-650 Phishing
-score HS_BODY_650		10
-
-body HS_BODY_651		/Ihre E-Mail wurde 2 GB, die von unserem Webmaster erstellt wird/
-describe HS_BODY_651		Heinlein Support Spamschutz Body-651 Phishing
-score HS_BODY_651		5
-
-body HS_BODY_652		/.4. Passwort best=E4tigen:/
-describe HS_BODY_652		Heinlein Support Spamschutz Body-652 
-score HS_BODY_652		10
-
-body HS_BODY_653		/IHR REFERENZ NUMMER/
-describe HS_BODY_653		Heinlein Support Spamschutz Body-653 
-score HS_BODY_653		6
-
-body HS_BODY_654		/Offiziellen Gewinn Mitteilung/
-describe HS_BODY_654		Heinlein Support Spamschutz Body-654 
-score HS_BODY_654		6
-
-body HS_BODY_655		/HERZLICHEN GLUCKWUNSCH!!!/
-describe HS_BODY_655		Heinlein Support Spamschutz Body-655 
-score HS_BODY_655		4.5
-
-body HS_BODY_658		/Tel: \+387=0A61 895 954/
-describe HS_BODY_658		Heinlein Support Spamschutz Body-658 
-score HS_BODY_658		6
-
-body HS_BODY_660		/As finding a partner is not easy in a fierce industry/
-describe HS_BODY_660		Heinlein Support Spamschutz Body-660 
-score HS_BODY_660		4
-
-body HS_BODY_661		/=0AHallo,=0A=0Abehandelt/
-describe HS_BODY_661		Heinlein Support Spamschutz Body-661 
-score HS_BODY_661		6
-
-body HS_BODY_662		/Platzhalter:=0Ac\/o\/m/
-describe HS_BODY_662		Heinlein Support Spamschutz Body-662 
-score HS_BODY_662		6
-
-body HS_BODY_663		/=FC  5 Pages static mobile website/
-describe HS_BODY_663		Heinlein Support Spamschutz Body-663 
-score HS_BODY_663		6
-
-body HS_BODY_664		/I am Gyan Ranjan/
-describe HS_BODY_664		Heinlein Support Spamschutz Body-664 
-score HS_BODY_664		4.5
-
-body HS_BODY_665		/Gyan\.gyanranjan2008\@gmail\.com/
-describe HS_BODY_665		Heinlein Support Spamschutz Body-665 
-score HS_BODY_665		5
-
-body HS_BODY_666		/JVBERi0xLjMKJcfsj6IKNSAwIG9iago8PC9MZW5ndGggNiAwIFIvRmlsdGVyIC9GbGF0ZURlY29k/
-describe HS_BODY_666		Heinlein Support Spamschutz Body-666 MALWARE
-score HS_BODY_666		6
-
-body HS_BODY_667		/SHELL OFFICIAL WINNING NOTIFICATION/
-describe HS_BODY_667		Heinlein Support Spamschutz Body-667 Malware
-score HS_BODY_667		5
-
-body HS_BODY_668		/CK HERE TO ACCEPT FUNDS=0A/
-describe HS_BODY_668		Heinlein Support Spamschutz Body-668 
-score HS_BODY_668		6
-
-body HS_BODY_669		/ail\.winner\/Email\.winner/
-describe HS_BODY_669		Heinlein Support Spamschutz Body-669 
-score HS_BODY_669		6
-
-body HS_BODY_670		/Creative Website Design - Creative layouts/
-describe HS_BODY_670		Heinlein Support Spamschutz Body-670 
-score HS_BODY_670		5
-
-body HS_BODY_671		/Skype: infoamit/
-describe HS_BODY_671		Heinlein Support Spamschutz Body-671 
-score HS_BODY_671		6
-
-body HS_BODY_672		/5h sagt jem\. durch mich hindurch/
-describe HS_BODY_672		Heinlein Support Spamschutz Body-672 
-score HS_BODY_672		6
-
-body HS_BODY_673		/=\?GB2312\?B\?u8bSq8\/cLnBkZg==\?=/
-describe HS_BODY_673		Heinlein Support Spamschutz Body-673 
-score HS_BODY_673		6
-
-body HS_BODY_674		/y82077i9vP6jrMfr1KTAwA==/
-describe HS_BODY_674		Heinlein Support Spamschutz Body-674 
-score HS_BODY_674		6
-
-body HS_BODY_675		/We JBS Expedite LTD/
-describe HS_BODY_675		Heinlein Support Spamschutz Body-675 
-score HS_BODY_675		6
-
-body HS_BODY_676		/E-mail=3D: sales\@jbsexpedite\.com/
-describe HS_BODY_676		Heinlein Support Spamschutz Body-676 
-score HS_BODY_676		6
-
-body HS_BODY_677		/http:\/\/jbsexpedite\.com/
-describe HS_BODY_677		Heinlein Support Spamschutz Body-677 
-score HS_BODY_677		6
-
-body HS_BODY_678		/laden Sie sich bitte und füllen Sie das beigefügte Formular/
-describe HS_BODY_678		Heinlein Support Spamschutz Body-678 PHISHING
-score HS_BODY_678		6
-
-body HS_BODY_679		/PCFET0NUWVBFIEhUTUwgUFVCTElDICItLy9XM0MvL0RURCBIVE1MIDQuMDEgVHJhbnNpdGlv/
-describe HS_BODY_679		Heinlein Support Spamschutz Body-679 PHISHING
-score HS_BODY_679		5
-
-body HS_BODY_680		/Zur Erhöhung der Sicherheit der Kreditkarte/
-describe HS_BODY_680		Heinlein Support Spamschutz Body-680 PHISHING
-score HS_BODY_680		6
-
-body HS_BODY_681		/financial instrument such as BG & S=/
-describe HS_BODY_681		Heinlein Support Spamschutz Body-681 Spam
-score HS_BODY_681		6
-
-body HS_BODY_682		/HSBC BANK LONDON & BARCLAYS BANK LO=/
-describe HS_BODY_682		Heinlein Support Spamschutz Body-682 Spam
-score HS_BODY_682		6
-
-body HS_BODY_683		/LOOKING FOR GOLD BUYER/
-describe HS_BODY_683		Heinlein Support Spamschutz Body-683 Spam
-score HS_BODY_683		6
-
-body HS_BODY_684		/GOLD DORE BARS/
-describe HS_BODY_684		Heinlein Support Spamschutz Body-684 Spam
-score HS_BODY_684		6
-
-body HS_BODY_685		/Origin: Cote D'Ivoire/
-describe HS_BODY_685		Heinlein Support Spamschutz Body-685 Spam
-score HS_BODY_685		6
-
-body HS_BODY_686		/eurotartufi.com\/my_animations\/animations\/ftoeuro/
-describe HS_BODY_686		Heinlein Support Spamschutz Body-686 Phishing
-score HS_BODY_686		8
-
-body HS_BODY_687		/The Westpac Support Team/
-describe HS_BODY_687		Heinlein Support Spamschutz Body-687 Phishing
-score HS_BODY_687		6
-
-body HS_BODY_688		/Uw e-mail heeft 2GB/
-describe HS_BODY_688		Heinlein Support Spamschutz Body-688 Phishing
-score HS_BODY_688		6
-
-body HS_BODY_689		/die wordt gecre=EBerd door overschreden/
-describe HS_BODY_689		Heinlein Support Spamschutz Body-689 Phishing
-score HS_BODY_689		6
-
-body HS_BODY_690		/Complete het formulier om uw account te=/
-describe HS_BODY_690		Heinlein Support Spamschutz Body-690 Phishing
-score HS_BODY_690		6
-
-body HS_BODY_691		/\*Mailbox Quota exceeded the approved limit .*%/
-describe HS_BODY_691		Heinlein Support Spamschutz Body-691 
-score HS_BODY_691		3
-
-body HS_BODY_692		/ Tech-Support Agent 01\*/
-describe HS_BODY_692		Heinlein Support Spamschutz Body-692 
-score HS_BODY_692		3
-
-body HS_BODY_693		/ṽḻȦĠ℟Ȧ/
-describe HS_BODY_693		Heinlein Support Spamschutz Body-693 SPAM
-score HS_BODY_693		5
-
-body HS_BODY_694		/überschritten Boxen setzen ihre/
-describe HS_BODY_694		Heinlein Support Spamschutz Body-694 phishing
-score HS_BODY_694		6
-
-body HS_BODY_695		/webmailupdate20340\.jimdo\.com/
-describe HS_BODY_695		Heinlein Support Spamschutz Body-695 Phishing
-score HS_BODY_695		6
-
-body HS_BODY_696		/=?iso-8859-2?B?TUlDUk9TT0ZUIExPVFRFUlkgQVdBUkQgMjAxMy5kb2M=?=/
-describe HS_BODY_696		Heinlein Support Spamschutz Body-696 Malware
-score HS_BODY_696		6
-
-body HS_BODY_697		/0M8R4KGxGuEAAAAAAAAAAAAAAAAAAAAAPgADAP7/
-describe HS_BODY_697		Heinlein Support Spamschutz Body-697 Malware
-score HS_BODY_697		6
-
-body HS_BODY_698		/CONGRATULATION!!! OPEN ATTACHMENT FOR PAYMENT DETAILS/
-describe HS_BODY_698		Heinlein Support Spamschutz Body-698 Malware
-score HS_BODY_698		6
-
-body HS_BODY_699		/www\.viseca\.ch/
-describe HS_BODY_699		Heinlein Support Spamschutz Body-699 SCAM
-score HS_BODY_699		5
-
-body HS_BODY_702		/WRD116\.jpg\>/
-describe HS_BODY_702		Heinlein Support Spamschutz Body-702 PHISHING
-score HS_BODY_702		6
-
-body HS_BODY_703		/zweifaches klicken nicht =F6ffnen=/
-describe HS_BODY_703		Heinlein Support Spamschutz Body-703 PHISHING
-score HS_BODY_703		6
-
-body HS_BODY_704		/http:\/\/evlilik\.kadın\.net\/wp-content\/themes\/options\/blogs\.php/
-describe HS_BODY_704		Heinlein Support Spamschutz Body-704 Phishing
-score HS_BODY_704		6
-
-body HS_BODY_705		/dass die Sparkasse schätzt Ihre Sicherheit/
-describe HS_BODY_705		Heinlein Support Spamschutz Body-705 Phisihing
-score HS_BODY_705		6
-
-body HS_BODY_706		/Wir senden in regelm=C3=A4=C3=9Figen Abst=C3=A4nden News mit wichtigen aber=\nauch lustigen=20/
-describe HS_BODY_706		Heinlein Support Spamschutz Body-706 Spam
-score HS_BODY_706		6
-
-body HS_BODY_707		/die Neuigkeiten darstellen. Sie k=C3=B6nnen die Mails und Anh=C3=A4nge lese=/
-describe HS_BODY_707		Heinlein Support Spamschutz Body-707 Spam
-score HS_BODY_707		6
-
-body HS_BODY_708		/weiterleiten, speichern und sammeln f=C3=BCr sp=C3=A4tere Anl=C3=A4sse oder=/
-describe HS_BODY_708		Heinlein Support Spamschutz Body-708 Spam
-score HS_BODY_708		6
-
-body HS_BODY_709		/maxi-615%20Die%20T%FCrken%20im%20Altertum%2Epdf/
-describe HS_BODY_709		Heinlein Support Spamschutz Body-709 Spam
-score HS_BODY_709		6
-
-body HS_BODY_710		/JVBERi0xLjYNJeLjz9MNCjc3IDAgb2JqDTw8L0xpbmVhcml6ZWQgMS9MIDUxMzEyNS9PIDgwL0Ug/
-describe HS_BODY_710		Heinlein Support Spamschutz Body-710 Spam
-score HS_BODY_710		6
-
-body HS_BODY_711		/http:\/\/www.form2go.com\/publish\/publish_form\/122238/
-describe HS_BODY_711		Heinlein Support Spamschutz Body-711 Spam
-score HS_BODY_711		10
-
-body HS_BODY_712		/Uw webmail quota heeft overschreden de quota, die 2 GB is\. Momenteel/
-describe HS_BODY_712		Heinlein Support Spamschutz Body-712 Spam
-score HS_BODY_712		6
-
-body HS_BODY_713		/<div dir=3D"ltr">Uw webmail quota heeft overschreden de quota, die 2 GB is\.=/
-describe HS_BODY_713		Heinlein Support Spamschutz Body-713 Spam
-score HS_BODY_713		6
-
-body HS_BODY_715		/l'm Mrs\. Myriam Abdullah, a dying muslim woman/
-describe HS_BODY_715		Heinlein Support Spamschutz Body-715 SPAM
-score HS_BODY_715		10
-
-body HS_BODY_716		/springshares\@consultant\.com/
-describe HS_BODY_716		Heinlein Support Spamschutz Body-716 Spam
-score HS_BODY_716		6
-
-body HS_BODY_717		/MR\. SEAN MOORE/
-describe HS_BODY_717		Heinlein Support Spamschutz Body-717 Spam
-score HS_BODY_717		6
-
-body HS_BODY_718		/Package A Local Optimization \) 10-20 keywords optimized/
-describe HS_BODY_718		Heinlein Support Spamschutz Body-718 SEO-SPAM
-score HS_BODY_718		10
-
-body HS_BODY_719		/We rank top 10 on Google for terms like Online SEO Company/
-describe HS_BODY_719		Heinlein Support Spamschutz Body-719 SEO-SPAM
-score HS_BODY_719		10
-
-body HS_BODY_720		/B7 Green Avenue, Amritsar 143001 Punjab/
-describe HS_BODY_720		Heinlein Support Spamschutz Body-720 SEO-SPAM
-score HS_BODY_720		10
-
-body HS_BODY_721		/globalcua\.com\/spkss/
-describe HS_BODY_721		Heinlein Support Spamschutz Body-721 Phishing
-score HS_BODY_721		8
-
-body HS_BODY_722		/dass in K=FCrze Ihre Online-Banking-Zugang abl=E4uft/
-describe HS_BODY_722		Heinlein Support Spamschutz Body-722 Phishing
-score HS_BODY_722		6
-
-body HS_BODY_723		/yiv3849226144yui_3_13_0_rc_1_1_1382344930563_36/
-describe HS_BODY_723		Heinlein Support Spamschutz Body-723 Phishing
-score HS_BODY_723		8
-
-body HS_BODY_724		/precise process that has to be handled by an EXPERIENCED SEO/
-describe HS_BODY_724		Heinlein Support Spamschutz Body-724 SEO-SPAM
-score HS_BODY_724		8
-
-body HS_BODY_725		/We Only use white hat ethical methods to gain rankings/
-describe HS_BODY_725		Heinlein Support Spamschutz Body-725 SEO-SPAM
-score HS_BODY_725		6
-
-body HS_BODY_726		/B7 Green Avenue, ASR \(India\)/
-describe HS_BODY_726		Heinlein Support Spamschutz Body-726 SEO-SPAM
-score HS_BODY_726		6
-
-body HS_BODY_727		/http\:\/\/s7\.directupload\.net\/images\/131015\/azazti92\.png/
-describe HS_BODY_727		Heinlein Support Spamschutz Body-727 Spam
-score HS_BODY_727		7
-
-body HS_BODY_728		/http\:\/\/einfach-sichererer\.de\/mail_2488956\.html/
-describe HS_BODY_728		Heinlein Support Spamschutz Body-728 Spam
-score HS_BODY_728		8
-
-body HS_BODY_729		/\<p\> Leider kam es in unserer Unternehmensgeschichte des öfteren zu Betrugsfällen\.\<br\>/
-describe HS_BODY_729		Heinlein Support Spamschutz Body-729 Spam
-score HS_BODY_729		8
-
-body HS_BODY_730		/1937å¹/
-describe HS_BODY_730		Heinlein Support Spamschutz Body-730 SPAM
-score HS_BODY_730		7
-
-body HS_BODY_731		/8時翌朝、レッドリバーの/
-describe HS_BODY_731		Heinlein Support Spamschutz Body-731 SPAM
-score HS_BODY_731		6
-
-body HS_BODY_735		/Lasst uns Geschäfte machen zusammen 20,5 Mio. USD wert, antworten Sie bitte mich für weitere Informationen/
-describe HS_BODY_735		Heinlein Support Spamschutz Body-735 SPAM
-score HS_BODY_735		7
-
-body HS_BODY_736		/http\:\/\/helpdesk-dsc-de\.blg\.lt\/out\/1\//
-describe HS_BODY_736		Heinlein Support Spamschutz Body-736 Phishing
-score HS_BODY_736		5
-
-body HS_BODY_737		/Lieber E-Mail an Benutzer\./
-describe HS_BODY_737		Heinlein Support Spamschutz Body-737 Phishing
-score HS_BODY_737		5
-
-body HS_BODY_738		/Ihre eingehenden Nachrichten wurden =C3=BCber anh=C3=A4ngige=20/
-describe HS_BODY_738		Heinlein Support Spamschutz Body-738 SPAM
-score HS_BODY_738		8
-
-body HS_BODY_739		/http\:\/\/emailuserupgrade3\.webs\.com\//
-describe HS_BODY_739		Heinlein Support Spamschutz Body-739 Spam
-score HS_BODY_739		10
-
-body HS_BODY_740		/Kreditkarte-Zugang zu Ihrem Konto in Kürze abläuft. Für diesen Dienst/
-describe HS_BODY_740		Heinlein Support Spamschutz Body-740 SPAM
-score HS_BODY_740		8
-
-body HS_BODY_741		/Sie werden durch der konto-abteilung/
-describe HS_BODY_741		Heinlein Support Spamschutz Body-741 Spam
-score HS_BODY_741		8
-
-body HS_BODY_743		/My name is Sandra Assi, 21 years old Girl from Cote D 'Ivoire/
-describe HS_BODY_743		Heinlein Support Spamschutz Body-743 Spam
-score HS_BODY_743		8
-
-body HS_BODY_744		/I want you to assist me transfer and invest this sum of Nine Million US Dollars/
-describe HS_BODY_744		Heinlein Support Spamschutz Body-744 Spam
-score HS_BODY_744		8
-
-body HS_BODY_745		/l was convinced that you are reputable and a trust worthy person who can help me/
-describe HS_BODY_745		Heinlein Support Spamschutz Body-745 
-score HS_BODY_745		8
-
-body HS_BODY_746		/Should darauf hinweisen wir Siei/
-describe HS_BODY_746		Heinlein Support Spamschutz Body-746 
-score HS_BODY_746		5
-
-body HS_BODY_747		/Kontozugang beef um die Uhr/
-describe HS_BODY_747		Heinlein Support Spamschutz Body-747 
-score HS_BODY_747		5
-
-body HS_BODY_748		/Ihr ING-Diba Science Service/
-describe HS_BODY_748		Heinlein Support Spamschutz Body-748 
-score HS_BODY_748		5
-
-body HS_BODY_749		/\. PSD to xHTML and Wordpress conversion/
-describe HS_BODY_749		Heinlein Support Spamschutz Body-749 
-score HS_BODY_749		7
-
-body HS_BODY_750		/Send us the project details along with requirements to receive a quick =/
-describe HS_BODY_750		Heinlein Support Spamschutz Body-750 
-score HS_BODY_750		7
-
-body HS_BODY_751		/Sgt Elizabeth Gunther/
-describe HS_BODY_751		Heinlein Support Spamschutz Body-751 Phishing
-score HS_BODY_751		7
-
-body HS_BODY_752		/MEDICAL TEAM presently in Iraq/
-describe HS_BODY_752		Heinlein Support Spamschutz Body-752 Phishing
-score HS_BODY_752		7
-
-body HS_BODY_753		/U\.S\. ARMY USARPAC/
-describe HS_BODY_753		Heinlein Support Spamschutz Body-753 Phishing
-score HS_BODY_753		7
-
-body HS_BODY_754		/sac lancel pas cher/
-describe HS_BODY_754		Heinlein Support Spamschutz Body-754 
-score HS_BODY_754		7
-
-body HS_BODY_755		/http\:\/\/www\.mquin\.com\/saclancel\.php/
-describe HS_BODY_755		Heinlein Support Spamschutz Body-755 
-score HS_BODY_755		7
-
-body HS_BODY_756		/The RailAir express bus service \(running every 20 min\)/
-describe HS_BODY_756		Heinlein Support Spamschutz Body-756 
-score HS_BODY_756		7
-
-body HS_BODY_759		/Nachricht\: Cash cost per ounce produced is a not a generally/
-describe HS_BODY_759		Heinlein Support Spamschutz Body-759 
-score HS_BODY_759		7
-
-body HS_BODY_760		/http\:\/\/www\.mamlekabu\.co\.uk\/mulberry\//
-describe HS_BODY_760		Heinlein Support Spamschutz Body-760 
-score HS_BODY_760		7
-
-body HS_BODY_761		/\\"cash cost per ounce produced\\"/
-describe HS_BODY_761		Heinlein Support Spamschutz Body-761 
-score HS_BODY_761		7
-
-body HS_BODY_762		/Sparkasse\/Erstebank AG \(Sicherheitsabteilung\)/
-describe HS_BODY_762		Heinlein Support Spamschutz Body-762 PHISHING
-score HS_BODY_762		7
-
-body HS_BODY_763		/Übersichtliche Kontoführung/
-describe HS_BODY_763		Heinlein Support Spamschutz Body-763 Phishing
-score HS_BODY_763		7
-
-body HS_BODY_766		/http\:\/\/verify-jpberlin-de\.webs\.com/
-describe HS_BODY_766		Heinlein Support Spamschutz Body-766 Phishing
-score HS_BODY_766		8
-
-body HS_BODY_767		/BJPBerlin/
-describe HS_BODY_767		Heinlein Support Spamschutz Body-767 Phishing
-score HS_BODY_767		3
-
-body HS_BODY_768		/Ihre zwei eingehende Mails wurden auf ausstehende Status durch den/
-describe HS_BODY_768		Heinlein Support Spamschutz Body-768 
-score HS_BODY_768		8
-
-body HS_BODY_769		/Dear PaypaI Member/
-describe HS_BODY_769		Heinlein Support Spamschutz Body-769 Phishing
-score HS_BODY_769		8
-
-body HS_BODY_770		/Unfortunately, Your online access has been blocked/
-describe HS_BODY_770		Heinlein Support Spamschutz Body-770 Phishing
-score HS_BODY_770		8
-
-body HS_BODY_771		/PaypaI Billing/
-describe HS_BODY_771		Heinlein Support Spamschutz Body-771 Phishing
-score HS_BODY_771		8
-
-body HS_BODY_772		/BiIIing/
-describe HS_BODY_772		Heinlein Support Spamschutz Body-772 Phishing
-score HS_BODY_772		8
-
-body HS_BODY_773		/If you cannot play, move message to the \"Inbox\" folder\./
-describe HS_BODY_773		Heinlein Support Spamschutz Body-773 Phishing
-score HS_BODY_773		8
-
-body HS_BODY_774		/Ich wurde es sehr gerne weiter chatten mit dir, und in der Zukunft zu treffen\./
-describe HS_BODY_774		Heinlein Support Spamschutz Body-774 
-score HS_BODY_774		10
-
-body HS_BODY_775		/Kannst du mich finden Sie auf der Website MEETINGEVERYONE\.COM mein Nick Svetlanaxx\./
-describe HS_BODY_775		Heinlein Support Spamschutz Body-775 
-score HS_BODY_775		10
-
-body HS_BODY_776		/Egoisten, Tr=C3=A4umer, taubgeistige, Angsthasen, Waschweiber, Jammerlappen= , Lemminge, Versager und Weicheier d=C3=BCfen sich jedoch auch hier/
-describe HS_BODY_776		Heinlein Support Spamschutz Body-776 
-score HS_BODY_776		10
-
-body HS_BODY_777		/34812058zezami\-MK/
-describe HS_BODY_777		Heinlein Support Spamschutz Body-777 
-score HS_BODY_777		5
-
-body HS_BODY_778		/Please find the attachment copy as instructed the total amount/
-describe HS_BODY_778		Heinlein Support Spamschutz Body-778 
-score HS_BODY_778		8
-
-body HS_BODY_779		/transferred to your account and please confirm back the payment copy/
-describe HS_BODY_779		Heinlein Support Spamschutz Body-779 
-score HS_BODY_779		8
-
-body HS_BODY_780		/Siva Kumar Raju/
-describe HS_BODY_780		Heinlein Support Spamschutz Body-780 
-score HS_BODY_780		8
-
-body HS_BODY_781		/PGh0bWwgc3R5bGU9Im92ZXJmbG93LXg6IGhpZGRlbjsgb3ZlcmZsb3cteTogYXV0bzsiIGNsYXNz/
-describe HS_BODY_781		Heinlein Support Spamschutz Body-781 
-score HS_BODY_781		8
-
-body HS_BODY_782		/Rechnungsstelle Luca Myer und Altdorfer/
-describe HS_BODY_782		Heinlein Support Spamschutz Body-782 
-score HS_BODY_782		10
-
-body HS_BODY_783		/w=E4ren Sie an einer Zusammenarbeit mit unserer Dating-/
-describe HS_BODY_783		Heinlein Support Spamschutz Body-783 
-score HS_BODY_783		8
-
-body HS_BODY_784		/Website=2C das Schreiben eines einzigartigen Artikel f=FCr&n/
-describe HS_BODY_784		Heinlein Support Spamschutz Body-784 
-score HS_BODY_784		8
-
-body HS_BODY_785		/oder einem kostenlosen SEO-Audit Ihres=20/
-describe HS_BODY_785		Heinlein Support Spamschutz Body-785 
-score HS_BODY_785		8
-
-body HS_BODY_786		/We are a very reputable company from the US looking for a partner in your/
-describe HS_BODY_786		Heinlein Support Spamschutz Body-786 
-score HS_BODY_786		8
-
-body HS_BODY_787		/country to provide IPV4 and IPV6 space/
-describe HS_BODY_787		Heinlein Support Spamschutz Body-787 
-score HS_BODY_787		8
-
-body HS_BODY_788		/CgoKICAgIDx0aXRsZT48L3RpdGxlPgoKCiAgICA8ZGl2IHN0eWxlPSJiYWNrZ3JvdW5kOiNmNmY2/
-describe HS_BODY_788		Heinlein Support Spamschutz Body-788 
-score HS_BODY_788		8
-
-body HS_BODY_789		/ZWlnaHQ6NDRweDsiPgogICAgICAgICAgPHRhYmxlIGFsaWduPSJyaWdodCIgY2VsbHBhZGRpbmc9/
-describe HS_BODY_789		Heinlein Support Spamschutz Body-789 
-score HS_BODY_789		8
-
-body HS_BODY_790		/We can help you also with build 10,000 Twitter Followers in 7 days/
-describe HS_BODY_790		Heinlein Support Spamschutz Body-790 
-score HS_BODY_790		8
-
-body HS_BODY_791		/888-233-0877/
-describe HS_BODY_791		Heinlein Support Spamschutz Body-791 
-score HS_BODY_791		8
-
-body HS_BODY_792		/You can get help building 100,000 Facebook LIKES in 7 days/
-describe HS_BODY_792		Heinlein Support Spamschutz Body-792 
-score HS_BODY_792		8
-
-body HS_BODY_793		/Ich komme von dieser e-mail informieren sie/
-describe HS_BODY_793		Heinlein Support Spamschutz Body-793 SCAM
-score HS_BODY_793		8
-
-body HS_BODY_794		/70% des grundkapitals während einer dauer von 20/
-describe HS_BODY_794		Heinlein Support Spamschutz Body-794 SCAM
-score HS_BODY_794		8
-
-body HS_BODY_795		/tkqzxmcmwxm\@gmail\.com/
-describe HS_BODY_795		Heinlein Support Spamschutz Body-795 
-score HS_BODY_795		8
-
-body HS_BODY_796		/discount hermes handbags for sale/
-describe HS_BODY_796		Heinlein Support Spamschutz Body-796 
-score HS_BODY_796		8
-
-body HS_BODY_798		/Mit wem ich zu verschiedenen Themen des Lebens sagen kann/
-describe HS_BODY_798		Heinlein Support Spamschutz Body-798 
-score HS_BODY_798		8
-
-body HS_BODY_799		/Mit wem ich die Gedanken teilen kann/
-describe HS_BODY_799		Heinlein Support Spamschutz Body-799 
-score HS_BODY_799		8
-
-body HS_BODY_800		/securesertupdate.com\/mobiletelekom\//
-describe HS_BODY_800		Heinlein Support Spamschutz Body-800 SCAM
-score HS_BODY_800		8
-
-body HS_BODY_801		/Ihre Telekom Mobilfunk RechnungOnline/
-describe HS_BODY_801		Heinlein Support Spamschutz Body-801 SCAM
-score HS_BODY_801		1
-
-body HS_BODY_802		/securesertupdate\.com\/volksbank/
-describe HS_BODY_802		Heinlein Support Spamschutz Body-802 SCAM
-score HS_BODY_802		5
-
-body HS_BODY_803		/Volksbank warnt Sie, dass Ihr Zugang zum Online-Banking bald endet/
-describe HS_BODY_803		Heinlein Support Spamschutz Body-803 SCAM
-score HS_BODY_803		5
-
-body HS_BODY_804		/Je suis Madame Sophie Weber. J=E2=80=99ai =C3=A9t=C3=A9 mari=C3=A9e =C3=A0 =/
-describe HS_BODY_804		Heinlein Support Spamschutz Body-804 
-score HS_BODY_804		8
-
-body HS_BODY_805		/Nous n=E2=80=99avons pas eu d=E2=80=99enfants. Etant tout deux chr=C3=A9tie=/
-describe HS_BODY_805		Heinlein Support Spamschutz Body-805 
-score HS_BODY_805		8
-
-body HS_BODY_806		/Mme Sophie weber/
-describe HS_BODY_806		Heinlein Support Spamschutz Body-806 
-score HS_BODY_806		8
-
-body HS_BODY_807		/www\.iampm\.fr\/christian-louboutin-soldes/
-describe HS_BODY_807		Heinlein Support Spamschutz Body-807 
-score HS_BODY_807		8
-
-body HS_BODY_808		/Christian Louboutin solds/
-describe HS_BODY_808		Heinlein Support Spamschutz Body-808 
-score HS_BODY_808		8
-
-body HS_BODY_809		/St\. Louis is like a Wal Mart/
-describe HS_BODY_809		Heinlein Support Spamschutz Body-809 
-score HS_BODY_809		8
-
-body HS_BODY_813		/ased client with NO CLANS/
-describe HS_BODY_813		Heinlein Support Spamschutz Body-813 
-score HS_BODY_813		8
-
-body HS_BODY_814		/Due to the urgency i decided to e-mail you/
-describe HS_BODY_814		Heinlein Support Spamschutz Body-814 
-score HS_BODY_814		4
-
-body HS_BODY_815		/all process is completely risk free/
-describe HS_BODY_815		Heinlein Support Spamschutz Body-815 
-score HS_BODY_815		4
-
-body HS_BODY_816		/NOTE; all process is completely risk free,I/
-describe HS_BODY_816		Heinlein Support Spamschutz Body-816 
-score HS_BODY_816		8
-
-body HS_BODY_817		/Sunn David Mao/
-describe HS_BODY_817		Heinlein Support Spamschutz Body-817 
-score HS_BODY_817		8
-
-body HS_BODY_818		/Bis dahin haben wir den Zugang zu Ihrem Konto vorübergehend Ihr Konto ein und gehen Sie auf die Seite/
-describe HS_BODY_818		Heinlein Support Spamschutz Body-818 PHISHING
-score HS_BODY_818		8
-
-body HS_BODY_819		/Ihr Konto braucht Ihre Hilfe/
-describe HS_BODY_819		Heinlein Support Spamschutz Body-819 PHISHING
-score HS_BODY_819		3
-
-body HS_BODY_820		/Kontoprüfungsabteilung/
-describe HS_BODY_820		Heinlein Support Spamschutz Body-820 PHISHING
-score HS_BODY_820		3
-
-body HS_BODY_821		/on-line video administrator/
-describe HS_BODY_821		Heinlein Support Spamschutz Body-821 
-score HS_BODY_821		8
-
-body HS_BODY_822		/You have new messages from ladies/
-describe HS_BODY_822		Heinlein Support Spamschutz Body-822 
-score HS_BODY_822		8
-
-body HS_BODY_823		/47cf06ac859001157b286990c8351b41.jpg/
-describe HS_BODY_823		Heinlein Support Spamschutz Body-823 
-score HS_BODY_823		8
-
-body HS_BODY_824		/alisa1113\.com\.ua/
-describe HS_BODY_824		Heinlein Support Spamschutz Body-824 
-score HS_BODY_824		8
-
-body HS_BODY_834		/interessiere mich sehr für dich. Ich suche einen Mann für ernste/
-describe HS_BODY_834		Heinlein Support Spamschutz Body-834 
-score HS_BODY_834		8
-
-body HS_BODY_835		/http:\/\/[-.\w]+\/(telekom|NTTCable|volksbank|vodafon?|volksbank_eg|telekom_deutschland|vodafone_online)\//
-describe HS_BODY_835		Heinlein Support Spamschutz Body-835 Downloadlinks zu WORM.WIN32.CRIDEX.POV
-score HS_BODY_835		15
-
-body HS_BODY_836		/Ihre E-Mail hat 2 GB, die von Webmaster erstellt wird, =FCberschritten =/
-describe HS_BODY_836		Heinlein Support Spamschutz Body-836 
-score HS_BODY_836		8
-
-body HS_BODY_837		/Sie derzeit bei 2.30GB laufen, =/
-describe HS_BODY_837		Heinlein Support Spamschutz Body-837 
-score HS_BODY_837		8
-
-body HS_BODY_838		/Bitte f=FCllen Sie die Details unten, um Ihr Konto zu best=E4tigen =/
-describe HS_BODY_838		Heinlein Support Spamschutz Body-838 
-score HS_BODY_838		8
-
-body HS_BODY_839		/http:\/\/[-.\w]+\/(telekom|NTTCable|volksbank|vodafon?|volksbank_eg|telekom_deutschland|vodafone_online|1und1).php/
-describe HS_BODY_839		Heinlein Support Spamschutz Body-839 Downloadlinks zu WORM.WIN32.CRIDEX.POV
-score HS_BODY_839		15
-
-body HS_BODY_840		/PGRpdiBkaXI9Imx0ciI+PHA+PGZvbnQgY29sb3I9IiMyMjIyMjIiPjxmb250IGZhY2U9IkFyaWFs/
-describe HS_BODY_840		Heinlein Support Spamschutz Body-840 
-score HS_BODY_840		8
-
-body HS_BODY_841		/to the recent changes in Google\'s SEO policies, there are a lot of/
-describe HS_BODY_841		Heinlein Support Spamschutz Body-841 
-score HS_BODY_841		8
-
-body HS_BODY_842		/detailed analysis in the form of a Search Engine Optimization (SEO)/
-describe HS_BODY_842		Heinlein Support Spamschutz Body-842 
-score HS_BODY_842		8
-
-body HS_BODY_843		/wir benutzen dieses Mittel, informieren Sie bitte uns Ihren Benutzernamen/
-describe HS_BODY_843		Heinlein Support Spamschutz Body-843 
-score HS_BODY_843		10
-
-body HS_BODY_844		/Bitte beachten Sie, dass Upgrade-Prozess findet in weniger als 48 Stunden,/
-describe HS_BODY_844		Heinlein Support Spamschutz Body-844 
-score HS_BODY_844		5
-
-body HS_BODY_846		/PGRpdiBkaXI9Imx0ciI+PGZvbnQ+PHNwYW4gc3R5bGU9ImZvbnQtZmFtaWx5OnZlcmRhbmEsc2Fu/
-describe HS_BODY_846		Heinlein Support Spamschutz Body-846 
-score HS_BODY_846		8
-
-body HS_BODY_847		/have regular update in major Social Media sites/
-describe HS_BODY_847		Heinlein Support Spamschutz Body-847 
-score HS_BODY_847		5
-
-body HS_BODY_848		/because they are at the top of the Google search rankings\. Being at the top/
-describe HS_BODY_848		Heinlein Support Spamschutz Body-848 
-score HS_BODY_848		8
-
-body HS_BODY_849		/sodass es jedem verlorene e-Mail-Id oder Kennwort =C4nderung werden =/
-describe HS_BODY_849		Heinlein Support Spamschutz Body-849 
-score HS_BODY_849		8
-
-body HS_BODY_850		/Kontos f=FChren. Informationen =FCber erforderliche =/
-describe HS_BODY_850		Heinlein Support Spamschutz Body-850 
-score HS_BODY_850		8
-
-body HS_BODY_851		/Bitte beachten Sie, dass Upgrade-Prozess findet in weniger als 48/
-describe HS_BODY_851		Heinlein Support Spamschutz Body-851 
-score HS_BODY_851		8
-
-body HS_BODY_852		/führen. Informationen über erforderliche Benutzername\/Passwort/
-describe HS_BODY_852		Heinlein Support Spamschutz Body-852 
-score HS_BODY_852		8
-
-body HS_BODY_853		/Bitte beachten Sie, dass Upgrade-Prozess findet in weniger als 48 Stunden, wir benutzen/
-describe HS_BODY_853		Heinlein Support Spamschutz Body-853 
-score HS_BODY_853		8
-
-body HS_BODY_854		/Bestätigen Sie Kennwort:/
-describe HS_BODY_854		Heinlein Support Spamschutz Body-854 
-score HS_BODY_854		5
-
-body HS_BODY_856		/Ihre Jpberlin.de Mail-Konto wurde vor=FCbergehend ausgesetzt/
-describe HS_BODY_856		Heinlein Support Spamschutz Body-856 
-score HS_BODY_856		8
-
-body HS_BODY_858		/KLICKEN SIE HIER UM SICHER, DASS IHR KONTO/
-describe HS_BODY_858		Heinlein Support Spamschutz Body-858 
-score HS_BODY_858		8
-
-body HS_BODY_859		/webamilupgradingcenter\.zohosites\.com/
-describe HS_BODY_859		Heinlein Support Spamschutz Body-859 
-score HS_BODY_859		8
-
-body HS_BODY_860		/KLICKEN SIE HIER UM SICHER, DASS IHR KONTO ist aktiv./
-describe HS_BODY_860		Heinlein Support Spamschutz Body-860 Account-Phishing
-score HS_BODY_860		10
-
-body HS_BODY_861		/webamilupgradingcenter\.zohosites\.com/
-describe HS_BODY_861		Heinlein Support Spamschutz Body-861 
-score HS_BODY_861		8
-
-body HS_BODY_862		/www\.nic\.ru\/manager\/email\.cgi/
-describe HS_BODY_862		Heinlein Support Spamschutz Body-862 
-score HS_BODY_862		8
-
-body HS_BODY_863		/Sunrise domain registration fee per 2 years varies in cost from 7960 to 11280 rubles depending on the category/
-describe HS_BODY_863		Heinlein Support Spamschutz Body-863 
-score HS_BODY_863		8
-
-body HS_BODY_864		/RU-CENTER starts application process for Landrush and General Availability domain registration for all/
-describe HS_BODY_864		Heinlein Support Spamschutz Body-864 
-score HS_BODY_864		8
-
-body HS_BODY_865		/Fifa 14 Coins/
-describe HS_BODY_865		Heinlein Support Spamschutz Body-865 
-score HS_BODY_865		5
-
-body HS_BODY_867		/FIFA Ultimate team coins/
-describe HS_BODY_867		Heinlein Support Spamschutz Body-867 
-score HS_BODY_867		5
-
-body HS_BODY_868		/Buy FIFA 14 Ultimate team coin/
-describe HS_BODY_868		Heinlein Support Spamschutz Body-868 
-score HS_BODY_868		5
-
-body HS_BODY_869		/Nachrichten, bis Sie Ihre account.Complete das folgende Formular überprüfen, um Ihr Konto /
-describe HS_BODY_869		Heinlein Support Spamschutz Body-869 Phishing
-score HS_BODY_869		10
-
-body HS_BODY_870		/Wir bitten Sie, um zu bestätigen, und aktualisieren Sie Ihre Informationen heute/
-describe HS_BODY_870		Heinlein Support Spamschutz Body-870 Phishing
-score HS_BODY_870		8
-
-body HS_BODY_871		/tobaccoclaims1\@outlook\.com/
-describe HS_BODY_871		Heinlein Support Spamschutz Body-871 
-score HS_BODY_871		8
-
-body HS_BODY_872		/Die britische America Tobacco-Award Sie 1\.000\.000,00 Von der On-going/
-describe HS_BODY_872		Heinlein Support Spamschutz Body-872 
-score HS_BODY_872		8
-
-body HS_BODY_873		/My name is Michela, i am 25yrs old, i'm a free/
-describe HS_BODY_873		Heinlein Support Spamschutz Body-873 
-score HS_BODY_873		8
-
-body HS_BODY_874		/michelapeterson89\@yahoo.com/
-describe HS_BODY_874		Heinlein Support Spamschutz Body-874 
-score HS_BODY_874		8
-
-body HS_BODY_875		/Ihre E-Mail hat 2 GB, die von Webmaster erstellt =FCberschritten wird/
-describe HS_BODY_875		Heinlein Support Spamschutz Body-875 
-score HS_BODY_875		5
-
-body HS_BODY_876		/Complete das folgende Fo=rmular =FCberpr=FCfen, um Ihr Konto zu =FCberpr=FCfen/
-describe HS_BODY_876		Heinlein Support Spamschutz Body-876 
-score HS_BODY_876		5
-
-body HS_BODY_877		/Bitte f=FCllen Sie die Details unten, um Ihr Konto zu best=E4tigen=20/
-describe HS_BODY_877		Heinlein Support Spamschutz Body-877 
-score HS_BODY_877		5
-
-body HS_BODY_878		/SWEET VIDEO kiss means that the member is interested in SWEET VIDEO/
-describe HS_BODY_878		Heinlein Support Spamschutz Body-878 
-score HS_BODY_878		10
-
-body HS_BODY_879		/Ihre E-Mail hat 2 GB, die von Webmaster erstellt =FCberschritten/
-describe HS_BODY_879		Heinlein Support Spamschutz Body-879 
-score HS_BODY_879		8
-
-body HS_BODY_880		/Bitte f=FCllen Sie die Details unten, um Ihr Konto zu/
-describe HS_BODY_880		Heinlein Support Spamschutz Body-880 
-score HS_BODY_880		8
-
-body HS_BODY_881		/Ihr Jpberlin\.de-Mail-Account zeitlich unterbrochen wurde/
-describe HS_BODY_881		Heinlein Support Spamschutz Body-881 Phishing
-score HS_BODY_881		8
-
-body HS_BODY_882		/Dies ist wegen der laufenden j=E4hrlichen Web-Wartung und L=F6schen von inaktiven Jpberlin\.de-Mail-Konten/
-describe HS_BODY_882		Heinlein Support Spamschutz Body-882 Phishing
-score HS_BODY_882		8
-
-body HS_BODY_883		/http:\/\/webmailupgradingcenter\.zohosites\.com/
-describe HS_BODY_883		Heinlein Support Spamschutz Body-883 
-score HS_BODY_883		8
-
-body HS_BODY_884		/Dies ist wegen der laufenden j=E4hrlichen Web-Wartung und L=F6schen von/
-describe HS_BODY_884		Heinlein Support Spamschutz Body-884 
-score HS_BODY_884		8
-
-body HS_BODY_885		/jpberlindekontovalidation\.webs\.com/
-describe HS_BODY_885		Heinlein Support Spamschutz Body-885 
-score HS_BODY_885		8
-
-body HS_BODY_886		/The Classic version of Jpberlinde!/
-describe HS_BODY_886		Heinlein Support Spamschutz Body-886 
-score HS_BODY_886		8
-
-body HS_BODY_887		/Dear \*JPBerlin \* User/
-describe HS_BODY_887		Heinlein Support Spamschutz Body-887 
-score HS_BODY_887		8
-
-body HS_BODY_888		/jpberlins\.webs\.com/
-describe HS_BODY_888		Heinlein Support Spamschutz Body-888 
-score HS_BODY_888		8
-
-body HS_BODY_889		/Sua conta jpberlin\.de foi temporariamente/
-describe HS_BODY_889		Heinlein Support Spamschutz Body-889 Phishing
-score HS_BODY_889		8
-
-body HS_BODY_890		/37 Million dollars\.contact/
-describe HS_BODY_890		Heinlein Support Spamschutz Body-890 
-score HS_BODY_890		8
-
-body HS_BODY_891		/perrychang\@yeah\.net/
-describe HS_BODY_891		Heinlein Support Spamschutz Body-891 
-score HS_BODY_891		8
-
-body HS_BODY_892		/Your Jpberlin\.de mailbox has exceeded the storage limit as provided by your administrator/
-describe HS_BODY_892		Heinlein Support Spamschutz Body-892 Phishing
-score HS_BODY_892		8
-
-body HS_BODY_893		/Copy or click here: http:\/\/adminemailunit\.yolasite\.com/
-describe HS_BODY_893		Heinlein Support Spamschutz Body-893 Phishing
-score HS_BODY_893		8
-
-body HS_BODY_894		/Your Jpberlin\.de mailbox has exceeded the storage limit as provided by you=r administrator/
-describe HS_BODY_894		Heinlein Support Spamschutz Body-894 Phishing
-score HS_BODY_894		8
-
-body HS_BODY_895		/Copy or click here: http:\/\/admi=nemailunit\.yolasite\.com\/=C2=A0/
-describe HS_BODY_895		Heinlein Support Spamschutz Body-895 Phishing
-score HS_BODY_895		8
-
-body HS_BODY_896		/Your  \*JPBerlin \* Mail quota has reached limit, You might not be able to send or receive new mail until you re-validate your mailbox/
-describe HS_BODY_896		Heinlein Support Spamschutz Body-896 Phishing
-score HS_BODY_896		8
-
-body HS_BODY_897		/To re-validate your mailbox please CLICK HERE <http:\/\/myupdatesjpberlin\.webs\.com\/> and fill the form/
-describe HS_BODY_897		Heinlein Support Spamschutz Body-897 Phishing
-score HS_BODY_897		8
-
-body HS_BODY_898		/tunden Ihrer Zeit zweimal w=F6chentlich. Jede erf=FCllte Aufgabe wird Ihnen/
-describe HS_BODY_898		Heinlein Support Spamschutz Body-898 
-score HS_BODY_898		8
-
-body HS_BODY_899		/The seller hasn’t provided any postage details yet/
-describe HS_BODY_899		Heinlein Support Spamschutz Body-899 Phishing
-score HS_BODY_899		8
-
-body HS_BODY_900		/Hello Dear,=0AI am Ms\. Sally Bellame/
-describe HS_BODY_900		Heinlein Support Spamschutz Body-900 
-score HS_BODY_900		8
-
-body HS_BODY_901		/or possible any good lucrative=0Abusi=/
-describe HS_BODY_901		Heinlein Support Spamschutz Body-901 
-score HS_BODY_901		8
-
-body HS_BODY_902		/Asoziale Chefs und Kollegen k&ouml;nnen einem das Leben am Arbeitsplatz permanent zur Psychoh&ouml;lle machen/
-describe HS_BODY_902		Heinlein Support Spamschutz Body-902 Phishing
-score HS_BODY_902		8
-
-body HS_BODY_903		/wie man zum Monatsende hin immer ausreichend Mittel zur Verf&uuml;gung hat, ohne sich tagt&auml;glich mit den gleichen Idioten herumzu&auml;rgern/
-describe HS_BODY_903		Heinlein Support Spamschutz Body-903 Phishing
-score HS_BODY_903		8
-
-body HS_BODY_904		/Als vorbeugende Maßnahme alle unsere Kunden sind erforderlich, um Bankkonto zu aktualisieren/
-describe HS_BODY_904		Heinlein Support Spamschutz Body-904 Phishing
-score HS_BODY_904		8
-
-body HS_BODY_905		/Um zu unserem neuen Sicherheits-System zu verbinden und zum Schutz vor Betrug/
-describe HS_BODY_905		Heinlein Support Spamschutz Body-905 Phishing
-score HS_BODY_905		8
-
-body HS_BODY_907		/http:\/\/www.google.com\/url\?q=3Dhttp%3A%2F%2Fjs\.hdr\.hr%2Fciy%2Flogin\.htm&s=/
-describe HS_BODY_907		Heinlein Support Spamschutz Body-907 Phishing
-score HS_BODY_907		8
-
-body HS_BODY_908		/Anschlie=C3=9Fend wir Ihr Online-Konto automatisch wiederhergestellt und =/
-describe HS_BODY_908		Heinlein Support Spamschutz Body-908 Phishing
-score HS_BODY_908		8
-
-body HS_BODY_909		/soutogomes\@iol\.pt/
-describe HS_BODY_909		Heinlein Support Spamschutz Body-909 Phishing
-score HS_BODY_909		8
-
-body HS_BODY_910		/I was going to call you and then I thought I would save you/
-describe HS_BODY_910		Heinlein Support Spamschutz Body-910 Spam
-score HS_BODY_910		8
-
-body HS_BODY_911		/1472 Murpy Ave\, Ste 213/
-describe HS_BODY_911		Heinlein Support Spamschutz Body-911 Spqm
-score HS_BODY_911		8
-
-body HS_BODY_912		/adf\.ly\/gmRjD/
-describe HS_BODY_912		Heinlein Support Spamschutz Body-912 Spam
-score HS_BODY_912		8
-
-body HS_BODY_914		/jpberlin1\.weebly\.com/
-describe HS_BODY_914		Heinlein Support Spamschutz Body-914 Phishing
-score HS_BODY_914		8
-
-body HS_BODY_915		/Security Alert Amt/
-describe HS_BODY_915		Heinlein Support Spamschutz Body-915 Phishing
-score HS_BODY_915		8
-
-body HS_BODY_917		/jpberlin1\.weebly\.com/
-describe HS_BODY_917		Heinlein Support Spamschutz Body-917 Phishing
-score HS_BODY_917		8
-
-body HS_BODY_918		/because of the on-going yearly jpberlin\.de web maintenance and deleting of inactive jpberlin\.de accounts/
-describe HS_BODY_918		Heinlein Support Spamschutz Body-918 Phishing
-score HS_BODY_918		8
-
-body HS_BODY_919		/jpberlin\.de Konto wurde vor=FCbergehend ausgesetzt, und dies bedeutet,= dass Sie nicht in der Lage, neue E-Mail-Nachrichten zu senden und zu empfangen/
-describe HS_BODY_919		Heinlein Support Spamschutz Body-919 Phishing
-score HS_BODY_919		8
-
-body HS_BODY_920		/http:\/\/www\.barantrag\.com/
-describe HS_BODY_920		Heinlein Support Spamschutz Body-920 Phishing
-score HS_BODY_920		8
-
-body HS_BODY_921		/My name is Site Harif  and I am the owner of CV Abadi and Molkin Timber/
-describe HS_BODY_921		Heinlein Support Spamschutz Body-921 
-score HS_BODY_921		8
-
-body HS_BODY_922		/ascok\.satilikfiloguvercini\.com/
-describe HS_BODY_922		Heinlein Support Spamschutz Body-922 Phishing
-score HS_BODY_922		8
-
-body HS_BODY_923		/haben Sie vor zu verreisen ? 30% Discount auf/
-describe HS_BODY_923		Heinlein Support Spamschutz Body-923 
-score HS_BODY_923		8
-
-body HS_BODY_924		/bellalady0314\.com\.ua/
-describe HS_BODY_924		Heinlein Support Spamschutz Body-924 
-score HS_BODY_924		8
-
-body HS_BODY_925		/\.bargeldformular\.com/
-describe HS_BODY_925		Heinlein Support Spamschutz Body-925 Spam
-score HS_BODY_925		8
-
-body HS_BODY_926		/auch bei negativer Bonit=E4t/
-describe HS_BODY_926		Heinlein Support Spamschutz Body-926 
-score HS_BODY_926		6
-
-body HS_BODY_927		/kreditkartenabruf\.com/
-describe HS_BODY_927		Heinlein Support Spamschutz Body-927 Spam
-score HS_BODY_927		10
-
-body HS_BODY_928		/Ohne Information an Ihre Hausbank/
-describe HS_BODY_928		Heinlein Support Spamschutz Body-928 Spam
-score HS_BODY_928		10
-
-body HS_BODY_929		/beantragen Sie noch heute Ihre Kreditauszahlung/
-describe HS_BODY_929		Heinlein Support Spamschutz Body-929 Spam
-score HS_BODY_929		10
-
-body HS_BODY_930		/Good Life Ltd\./
-describe HS_BODY_930		Heinlein Support Spamschutz Body-930 Spam
-score HS_BODY_930		10
-
-body HS_BODY_931		/Ihr Auszahlungsteam/
-describe HS_BODY_931		Heinlein Support Spamschutz Body-931 Spam
-score HS_BODY_931		6
-
-body HS_BODY_932		/VLT 1432 Malta/
-describe HS_BODY_932		Heinlein Support Spamschutz Body-932 Spam
-score HS_BODY_932		6
-
-body HS_BODY_933		/12\/12 Vincenti Buildings, Strait Street/
-describe HS_BODY_933		Heinlein Support Spamschutz Body-933 Spam
-score HS_BODY_933		10
-
-body HS_BODY_934		/Sparkasse Deutschland und Österreich Pty Limited/
-describe HS_BODY_934		Heinlein Support Spamschutz Body-934 
-score HS_BODY_934		5
-
-body HS_BODY_935		/Um dies zu tun, laden Sie bitte das Formular aus/
-describe HS_BODY_935		Heinlein Support Spamschutz Body-935 
-score HS_BODY_935		5
-
-body HS_BODY_936		/Sparkasse überpr.*ft regelm.*ig Konten für Betrug und \/ oder /
-describe HS_BODY_936		Heinlein Support Spamschutz Body-936 
-score HS_BODY_936		5
-
-body HS_BODY_939		/http:\/\/hoachatthaiha\.vn\/components\/com_tag\/css\/index\.html/
-describe HS_BODY_939		Heinlein Support Spamschutz Body-939 Pishing
-score HS_BODY_939		8
-
-body HS_BODY_941		/vergleichpkv2014\.com/
-describe HS_BODY_941		Heinlein Support Spamschutz Body-941 
-score HS_BODY_941		8
-
-body HS_BODY_942		/http\:\/\/blacklabimaging\.com\/administrator\/components\/com\_banners\/models\/client\.php/
-describe HS_BODY_942		Heinlein Support Spamschutz Body-942 Phishing
-score HS_BODY_942		8
-
-body HS_BODY_944		/77u\/PCFET0NUWVBFIGh0bWw+IDxodG1sIGxhbmc9ZGUgeG1sbnM6ZmI9Imh0dHA6Ly92ZXJpZml6/
-describe HS_BODY_944		Heinlein Support Spamschutz Body-944 
-score HS_BODY_944		8
-
-body HS_BODY_945		/http\:\/\/www\.chasingthecut\.org\/css\/fr\//
-describe HS_BODY_945		Heinlein Support Spamschutz Body-945 
-score HS_BODY_945		8
-
-body HS_BODY_946		/jpberlin-de\.yolasite\.com/
-describe HS_BODY_946		Heinlein Support Spamschutz Body-946 Phishing
-score HS_BODY_946		10
-
-body HS_BODY_947		/Wir werden d=ie einige wichtige E-Mail-Kontof=FChrung auf hohe Qualit=E4t in Internet-Ko=nnektivit=E4t in der 2014 Kampf gegen Spam zu gew=E4hrleisten und die Siche=rheit zu erh=F6hen/
-describe HS_BODY_947		Heinlein Support Spamschutz Body-947 Phishing
-score HS_BODY_947		8
-
-body HS_BODY_948		/Bitte wird freundlich informiert, dass das Vers=E4umnis, dies zu tun=, wird die sofortige K=FCndigung des E-Mail-Kontos werden/
-describe HS_BODY_948		Heinlein Support Spamschutz Body-948 Phishing
-score HS_BODY_948		8
-
-body HS_BODY_949		/Gr=C3=BC=C3=9Fen=0A=C2=A0=0AEldin=0ADautovic=0A==C2=A0=0A=0A=0AUna\_copy=0A=0A=0ABosnia i=0AHercegovina=0ASarajevo/
-describe HS_BODY_949		Heinlein Support Spamschutz Body-949 Phishing
-score HS_BODY_949		6
-
-body HS_BODY_950		/ Media Center GmbH/
-describe HS_BODY_950		Heinlein Support Spamschutz Body-950 
-score HS_BODY_950		2
-
-body HS_BODY_951		/Giro Online Office AG Maximilian Beck/
-describe HS_BODY_951		Heinlein Support Spamschutz Body-951 
-score HS_BODY_951		4
-
-body HS_BODY_952		/http\:\/\/reklamajandekos.hu\/slobozinstosky.htm/
-describe HS_BODY_952		Heinlein Support Spamschutz Body-952 
-score HS_BODY_952		6
-
-body HS_BODY_953		/Qualit.t in Internet-Konnektivität in der 2014/
-describe HS_BODY_953		Heinlein Support Spamschutz Body-953 
-score HS_BODY_953		5
-
-body HS_BODY_954		/werden alle E-Mail-Hub-Systeme/
-describe HS_BODY_954		Heinlein Support Spamschutz Body-954 
-score HS_BODY_954		5
-
-body HS_BODY_955		/oakleycountry\.com/
-describe HS_BODY_955		Heinlein Support Spamschutz Body-955 
-score HS_BODY_955		2
-
-body HS_BODY_956		/To ensure the smooth delivery of oakleylove emails to your inbox/
-describe HS_BODY_956		Heinlein Support Spamschutz Body-956 
-score HS_BODY_956		4
-
-body HS_BODY_957		/копирай следния линк в твоя уеб браузър/
-describe HS_BODY_957		Heinlein Support Spamschutz Body-957 
-score HS_BODY_957		3
-
-body HS_BODY_958		/Аз Съм За иска да те опознае в Two/
-describe HS_BODY_958		Heinlein Support Spamschutz Body-958 
-score HS_BODY_958		3
-
-body HS_BODY_959		/cnc-precision-turned\.com/
-describe HS_BODY_959		Heinlein Support Spamschutz Body-959 Spam
-score HS_BODY_959		6
-
-body HS_BODY_960		/http\:\/\/enlevement-epave-gratuit-idf\.fr\/xmlrpc\/includes\/webstat\/vodafone_service\_d2/
-describe HS_BODY_960		Heinlein Support Spamschutz Body-960 
-score HS_BODY_960		8
-
-body HS_BODY_961		/theappleids\@idapple\.com/
-describe HS_BODY_961		Heinlein Support Spamschutz Body-961 Spam
-score HS_BODY_961		8
-
-body HS_BODY_962		/fio-net\.de/
-describe HS_BODY_962		Heinlein Support Spamschutz Body-962 Spam
-score HS_BODY_962		6
-
-body HS_BODY_963		/uyyug\.com/
-describe HS_BODY_963		Heinlein Support Spamschutz Body-963 
-score HS_BODY_963		7
-
-body HS_BODY_964		/atlasurody\.pl/
-describe HS_BODY_964		Heinlein Support Spamschutz Body-964 Spam
-score HS_BODY_964		7
-
-body HS_BODY_966		/ekodanismanlik\.com/
-describe HS_BODY_966		Heinlein Support Spamschutz Body-966 
-score HS_BODY_966		7
-
-body HS_BODY_970		/osudems\.com/
-describe HS_BODY_970		Heinlein Support Spamschutz Body-970 
-score HS_BODY_970		7
-
-body HS_BODY_972		/perfect\.delivery\@aol\.com/
-describe HS_BODY_972		Heinlein Support Spamschutz Body-972 Spam
-score HS_BODY_972		7
-
-body HS_BODY_973		/UEsDBBQAAAAIADlbs0Rhpqi5xFIKAG8MDwAbAAAATkVXIE9yZGVyIHNwZWNpZmljYXRpb24uZXhl/
-describe HS_BODY_973		Heinlein Support Spamschutz Body-973 
-score HS_BODY_973		7
-
-body HS_BODY_974		/firmenserver\.com/
-describe HS_BODY_974		Heinlein Support Spamschutz Body-974 
-score HS_BODY_974		6
-
-body HS_BODY_975		/confixx\.sws-hosting\.de/
-describe HS_BODY_975		Heinlein Support Spamschutz Body-975 Spam
-score HS_BODY_975		6
-
-body HS_BODY_976		/Wir gemailt Sie eine kleine Weile/
-describe HS_BODY_976		Heinlein Support Spamschutz Body-976 
-score HS_BODY_976		5
-
-body HS_BODY_977		/Link Hilfe in der oberen/
-describe HS_BODY_977		Heinlein Support Spamschutz Body-977 
-score HS_BODY_977		3
-
-body HS_BODY_978		/Sehr geehrter PayPal-Mitglied,/
-describe HS_BODY_978		Heinlein Support Spamschutz Body-978 
-score HS_BODY_978		5
-
-body HS_BODY_979		/papalolo\@q.com/
-describe HS_BODY_979		Heinlein Support Spamschutz Body-979 
-score HS_BODY_979		8
-
-body HS_BODY_980		/Haben Sie je Angst Ihr Atem könnte stillstehen, weil sich Ihr Brustkorb/
-describe HS_BODY_980		Heinlein Support Spamschutz Body-980 Spam
-score HS_BODY_980		5
-
-body HS_BODY_981		/web331p1\@anna\.webhoster\.ag/
-describe HS_BODY_981		Heinlein Support Spamschutz Body-981 
-score HS_BODY_981		6
-
-body HS_BODY_982		/Webmail AdministratorInc\. Alle Rechte vorbehalten/
-describe HS_BODY_982		Heinlein Support Spamschutz Body-982 
-score HS_BODY_982		5
-
-body HS_BODY_983		/webmail-jpberlin-de.webs.com/
-describe HS_BODY_983		Heinlein Support Spamschutz Body-983 
-score HS_BODY_983		10
-
-body HS_BODY_984		/IhreKontingentgrenze/
-describe HS_BODY_984		Heinlein Support Spamschutz Body-984 
-score HS_BODY_984		5
-
-body HS_BODY_985		/IhrWebmail-Konto zu verwende/
-describe HS_BODY_985		Heinlein Support Spamschutz Body-985 
-score HS_BODY_985		3
-
-body HS_BODY_986		/www.tinnituswunder.me/
-describe HS_BODY_986		Heinlein Support Spamschutz Body-986 SPAM
-score HS_BODY_986		5
-
-body HS_BODY_987		/Falls Sie oder jemand Ihrer Lieben an Tinnitus leidet, dann /
-
-describe HS_BODY_987		Heinlein Support Spamschutz Body-987 Spam
-score HS_BODY_987		5
-
-body HS_BODY_988		/Helpdesk Copyright.*2014 Webmail AdministratorInc./
-describe HS_BODY_988		Heinlein Support Spamschutz Body-988 Phishing
-score HS_BODY_988		5
-
-body HS_BODY_989		/panikhilfe\.me/
-describe HS_BODY_989		Heinlein Support Spamschutz Body-989 Spam
-score HS_BODY_989		6
-
-body HS_BODY_990		/e-Mails in unsererDatenbank =FCberschritten/
-describe HS_BODY_990		Heinlein Support Spamschutz Body-990 
-score HS_BODY_990		6
-
-body HS_BODY_991		/Um E-mail-Kontingentgrenzen f=FCr 2.2 GB zu verbessern/
-describe HS_BODY_991		Heinlein Support Spamschutz Body-991 
-score HS_BODY_991		6
-
-body HS_BODY_992		/sk1175\@nyu\.edu/
-describe HS_BODY_992		Heinlein Support Spamschutz Body-992 
-score HS_BODY_992		6
-
-body HS_BODY_993		/Antworten für weitere Informationen per E-Mail: qatarcharityqc.gmail.com/
-describe HS_BODY_993		Heinlein Support Spamschutz Body-993 Spam
-score HS_BODY_993		5
-
-body HS_BODY_994		/hier im Anhang finden Sie Ihre Rechnung.*als PDF-Datei. Wenn es Ihnen nicht gelingt, die Datei auf dem Handy zu öffnen, versuchen Sie es bitte auf Ihrem Computer./
-describe HS_BODY_994		Heinlein Support Spamschutz Body-994 Spam
-score HS_BODY_994		8
-
-body HS_BODY_995		/Um wieder zu beleben und erhöhen Sie Ihre Webmail-Quote auf de/
-describe HS_BODY_995		Heinlein Support Spamschutz Body-995 Phishing
-score HS_BODY_995		5
-
-body HS_BODY_996		/tjrn\.jus\.br/
-describe HS_BODY_996		Heinlein Support Spamschutz Body-996 
-score HS_BODY_996		8
-
-body HS_BODY_997		/reheart\.org/
-describe HS_BODY_997		Heinlein Support Spamschutz Body-997 
-score HS_BODY_997		8
-
-body HS_BODY_998		/RGVhciBzdXBwb3J0LA0KDQpXZSBhcmUgc3RhcnRpbmcgdG8gcmVjZWl2ZSBzZXZlcmFsIHNwYW0g/
-describe HS_BODY_998		Heinlein Support Spamschutz Body-998 
-score HS_BODY_998		8
-
-body HS_BODY_999		/Network Webmaster. All Rights Reserved\<br\>Security Alert Office/
-describe HS_BODY_999		Heinlein Support Spamschutz Body-999 Phishing
-score HS_BODY_999		10
-
-body HS_BODY_1000		/jpberlinde.weebly.com/
-describe HS_BODY_1000		Heinlein Support Spamschutz Body-1000 Phishing
-score HS_BODY_1000		10
-
-body HS_BODY_1001		/Ihr Konto wurde jpberlin.de zeitlich ausgesetzt, und dies bedeutet, dass/
-describe HS_BODY_1001		Heinlein Support Spamschutz Body-1001 Phishing
-score HS_BODY_1001		10
-
-body HS_BODY_1002		/Security Alert Amt/
-describe HS_BODY_1002		Heinlein Support Spamschutz Body-1002 
-score HS_BODY_1002		5
-
-body HS_BODY_1003		/De-Aktivierung Warnung/
-describe HS_BODY_1003		Heinlein Support Spamschutz Body-1003 
-score HS_BODY_1003		3
-
-body HS_BODY_1004		/jpberlinde\.weebly\.com/
-describe HS_BODY_1004		Heinlein Support Spamschutz Body-1004 
-score HS_BODY_1004		5
-
-body HS_BODY_1006		/Anschließend wir Ihr Online-Konto automatisch wiederhergestellt/
-describe HS_BODY_1006		Heinlein Support Spamschutz Body-1006 Phishing
-score HS_BODY_1006		5
-
-body HS_BODY_1007		/Your jpberlin\.de account has been temporally suspended/
-describe HS_BODY_1007		Heinlein Support Spamschutz Body-1007 Phishing
-score HS_BODY_1007		8
-
-body HS_BODY_1008		/jpberlinde\.weebly\.com/
-describe HS_BODY_1008		Heinlein Support Spamschutz Body-1008 Phishing
-score HS_BODY_1008		8
-
-body HS_BODY_1009		/Ebay_Ausgleich_stornierten_Buchung_Ihrer_Bestellung/
-
-describe HS_BODY_1009		Heinlein Support Spamschutz Body-1009 Ebay Phishing
-score HS_BODY_1009		5
-
-body HS_BODY_1010		/ndige Forderungsausstellung/
-describe HS_BODY_1010		Heinlein Support Spamschutz Body-1010 
-score HS_BODY_1010		3
-
-body HS_BODY_1011		/ Namens unseren Mandanten Paypal GmbH/
-describe HS_BODY_1011		Heinlein Support Spamschutz Body-1011 
-score HS_BODY_1011		5
-
-body HS_BODY_1012		/Sparkasse-Team wird Ihr Online-Konto Konto zu aktualisieren.Sparkasse akt=/
-describe HS_BODY_1012		Heinlein Support Spamschutz Body-1012 
-score HS_BODY_1012		5
-
-body HS_BODY_1013		/Problem_l=F6sen:_Konto_verifizieren_&_vervollst=E4ndigen?=/
-describe HS_BODY_1013		Heinlein Support Spamschutz Body-1013 
-score HS_BODY_1013		8
-
-body HS_BODY_1014		/http\:\/\/chai4car=2Ecom\/themes\/deutschland/
-describe HS_BODY_1014		Heinlein Support Spamschutz Body-1014 
-score HS_BODY_1014		8
-
-body HS_BODY_1015		/25 no need to deposit/
-describe HS_BODY_1015		Heinlein Support Spamschutz Body-1015 
-score HS_BODY_1015		6
-
-body HS_BODY_1016		/Jackpot Grand Casino and claim a huge/
-describe HS_BODY_1016		Heinlein Support Spamschutz Body-1016 
-score HS_BODY_1016		6
-
-body HS_BODY_1017		/capman\.es\/eager\.html /
-describe HS_BODY_1017		Heinlein Support Spamschutz Body-1017 Spam
-score HS_BODY_1017		5
-
-body HS_BODY_1018		/movqvqtr\@gmail\.com /
-describe HS_BODY_1018		Heinlein Support Spamschutz Body-1018 
-score HS_BODY_1018		8
-
-body HS_BODY_1019		/tritonmed\@gmail\.com/
-describe HS_BODY_1019		Heinlein Support Spamschutz Body-1019 
-score HS_BODY_1019		8
-
-body HS_BODY_1020		/0091-9810114765/
-describe HS_BODY_1020		Heinlein Support Spamschutz Body-1020 Spam
-score HS_BODY_1020		8
-
-body HS_BODY_1021		/www\.curveseurope\.com/
-describe HS_BODY_1021		Heinlein Support Spamschutz Body-1021 
-score HS_BODY_1021		6
-
-body HS_BODY_1022		/domainnotices[0-9]{0,4}\.com/
-describe HS_BODY_1022		Heinlein Support Spamschutz Body-1022 
-score HS_BODY_1022		8
-
-body HS_BODY_1023		/JVBERi0xLjMKJcfsj6IKNSAwIG9iago8PC9MZW5ndGggNiAwIFIvRmlsdGVyIC9GbGF0ZURlY29k/
-describe HS_BODY_1023		Heinlein Support Spamschutz Body-1023 
-score HS_BODY_1023		8
-
-body HS_BODY_1024		/xolaizxircr\@gmail\.com /
-describe HS_BODY_1024		Heinlein Support Spamschutz Body-1024 Spam
-score HS_BODY_1024		8
-
-body HS_BODY_1025		/www\.cortinajescomin\.com/
-describe HS_BODY_1025		Heinlein Support Spamschutz Body-1025 
-score HS_BODY_1025		8
-
-body HS_BODY_1026		/obligation to pay the amounts stated unless you accept this offer/
-describe HS_BODY_1026		Heinlein Support Spamschutz Body-1026 
-score HS_BODY_1026		5
-
-body HS_BODY_1027		/www-easybank.at\/sepa.abteilung/
-describe HS_BODY_1027		Heinlein Support Spamschutz Body-1027 
-score HS_BODY_1027		5
-
-body HS_BODY_1028		/IHR ACCOUNT KANN GESPERRT WERDEN\/SEPA ZAHLUNGSVERKEHR/
-describe HS_BODY_1028		Heinlein Support Spamschutz Body-1028 
-score HS_BODY_1028		5
-
-body HS_BODY_1029		/Sie haben Schulden, finanzielle Rechtsstreite und all Ihre Versuche bei de/
-describe HS_BODY_1029		Heinlein Support Spamschutz Body-1029 
-score HS_BODY_1029		5
-
-body HS_BODY_1030		/ Wenn Sie eine ehrliche Person und gutgl=E4ubig sind, sind wir bereit, Ihnen= /
-describe HS_BODY_1030		Heinlein Support Spamschutz Body-1030 
-score HS_BODY_1030		5
-
-body HS_BODY_1031		/ Hon\.Dr\.John Jonasdr\.kaddii\@yahoo\.com=2C dr.keddi\@yahoo\.comTel +225 477 86 8= /
-describe HS_BODY_1031		Heinlein Support Spamschutz Body-1031 
-score HS_BODY_1031		5
-
-body HS_BODY_1032		/please kindly Let me know if you have been receiving my last mail/
-describe HS_BODY_1032		Heinlein Support Spamschutz Body-1032 
-score HS_BODY_1032		5
-
-body HS_BODY_1033		/www.apotheke-germany.co.uk/
-describe HS_BODY_1033		Heinlein Support Spamschutz Body-1033 Spam
-score HS_BODY_1033		5
-
-body HS_BODY_1034		/PEhUTUw+PEhFQUQ+PC9IRUFEPg0KPEJPRFk+DQo8RElWIGlkPW1lc3NhZ2Vib2R5Pg0KPERJ/
-describe HS_BODY_1034		Heinlein Support Spamschutz Body-1034 Spam
-score HS_BODY_1034		8
-
-body HS_BODY_1035		/john_max11114\@yahoo\.com/
-describe HS_BODY_1035		Heinlein Support Spamschutz Body-1035 
-score HS_BODY_1035		8
-
-body HS_BODY_1036		/mail\.autochina360\.com/
-describe HS_BODY_1036		Heinlein Support Spamschutz Body-1036 Spam
-score HS_BODY_1036		6
-
-body HS_BODY_1037		/newladies0614\.com\.ua/
-describe HS_BODY_1037		Heinlein Support Spamschutz Body-1037 Spam
-score HS_BODY_1037		8
-
-body HS_BODY_1039		/unter\ einer\ Pilzinfektion/
-describe HS_BODY_1039		Heinlein Support Spamschutz Body-1039 Spam
-score HS_BODY_1039		8
-
-body HS_BODY_1040		/Antigua Investment Partners in collaboration with C\.I\.P/
-describe HS_BODY_1040		Heinlein Support Spamschutz Body-1040 Spam
-score HS_BODY_1040		8
-
-body HS_BODY_1041		/http\:\/\/www\.wasistgesund\.me\?email\=/
-describe HS_BODY_1041		Heinlein Support Spamschutz Body-1041 Spam
-score HS_BODY_1041		8
-
-body HS_BODY_1042		/http\:\/\/www\.openmixer\.org\/envio\/unsubscribe\.php\?M\=/
-describe HS_BODY_1042		Heinlein Support Spamschutz Body-1042 Spam
-score HS_BODY_1042		8
-
-body HS_BODY_1043		/http...www.klickhier....eu/
-describe HS_BODY_1043		Heinlein Support Spamschutz Body-1043 
-score HS_BODY_1043		5
-
-body HS_BODY_1046		/webmail-jpberlin-de-Re-src\.webs\.com/
-describe HS_BODY_1046		Heinlein Support Spamschutz Body-1046 Spam
-score HS_BODY_1046		8
-
-body HS_BODY_1047		/neuesten\ IP\ Security\-Upgrades/
-describe HS_BODY_1047		Heinlein Support Spamschutz Body-1047 
-score HS_BODY_1047		5
-
-body HS_BODY_1048		/jazmyncil\.me/
-describe HS_BODY_1048		Heinlein Support Spamschutz Body-1048 Spam
-score HS_BODY_1048		8
-
-body HS_BODY_1049		/sertha\@sertha\.com\.br/
-describe HS_BODY_1049		Heinlein Support Spamschutz Body-1049 Spam
-score HS_BODY_1049		5
-
-body HS_BODY_1050		/bipbup\.com\.br/
-describe HS_BODY_1050		Heinlein Support Spamschutz Body-1050 Spam
-score HS_BODY_1050		5
-
-body HS_BODY_1051		/www\.sertha\.com\.br/
-describe HS_BODY_1051		Heinlein Support Spamschutz Body-1051 Spam
-score HS_BODY_1051		5
-
-body HS_BODY_1052		/dementia-challengenorth\.co\.uk/
-describe HS_BODY_1052		Heinlein Support Spamschutz Body-1052 Spam
-score HS_BODY_1052		8
-
-body HS_BODY_1053		/anticellulitenartikel\.me/
-describe HS_BODY_1053		Heinlein Support Spamschutz Body-1053 Spam
-score HS_BODY_1053		5
-
-body HS_BODY_1054		/href\=\"http\:\/\/american1\.tk\/CRM\/link.php\?URL\=aHR0cDovL2luZm8uZmxhZ2NvdW50ZXIuY29tL/
-describe HS_BODY_1054		Heinlein Support Spamschutz Body-1054 Spam
-score HS_BODY_1054		8
-
-body HS_BODY_1055		/href\=\"http\:\/\/www\.pouyandeganaka\.tk\/index\.php\?subid\=67413\&option\=com\_acymailing\&ctrl\=user\&task\=out\&mailid\=10\&key\=285dcfd07e2dbc345587410e6e2969e5\&acm\=67413\_10\"/
-describe HS_BODY_1055		Heinlein Support Spamschutz Body-1055 Spam
-score HS_BODY_1055		8
-
-body HS_BODY_1056		/href\=\"http\:\/\/www\.e\-posta\.info\/unsubscribe\.php/
-describe HS_BODY_1056		Heinlein Support Spamschutz Body-1056 Spam
-score HS_BODY_1056		8
-
-body HS_BODY_1057		/mail1\.hmrrblog\.me\/link\.php\?M\=27937\&N\=2\&L\=1\&F\=T/
-describe HS_BODY_1057		Heinlein Support Spamschutz Body-1057 Spam
-score HS_BODY_1057		8
-
-body HS_BODY_1058		/http\:\/\/inbox8\.tk\/email\/link\.php/
-describe HS_BODY_1058		Heinlein Support Spamschutz Body-1058 
-score HS_BODY_1058		8
-
-body HS_BODY_1059		/From\:.*\<newsletter\@jojormall.me\>/
-describe HS_BODY_1059		Heinlein Support Spamschutz Body-1059 
-score HS_BODY_1059		4
-
-body HS_BODY_1060		/http\:\/\/mail1\.fettwegbeispiel\.me/
-describe HS_BODY_1060		Heinlein Support Spamschutz Body-1060 
-score HS_BODY_1060		8
-
-body HS_BODY_1061		/http\:\/\/www\.cxdnkx\.com\/article\/index\.php/
-describe HS_BODY_1061		Heinlein Support Spamschutz Body-1061 Phishing
-score HS_BODY_1061		8
-
-body HS_BODY_1062		/http\:\/\/mail1\.tinnitusheilung\.me\/unsubscribe\.php\?M\=85415\&C\=49b7e498abd38a3afc643cf082ad730f\&L\=1\&N\=2/
-describe HS_BODY_1062		Heinlein Support Spamschutz Body-1062 Spam
-score HS_BODY_1062		8
-
-body HS_BODY_1063		/ PLEASE OPEN THE ATTACHED FILE FOR MORE INFORMATION/
-describe HS_BODY_1063		Heinlein Support Spamschutz Body-1063 
-score HS_BODY_1063		5
-
-body HS_BODY_1064		/tinnitusheilung.me/
-describe HS_BODY_1064		Heinlein Support Spamschutz Body-1064 
-score HS_BODY_1064		5
-
-body HS_BODY_1065		/Diese Alternativen Tinnitusheilmitte/
-describe HS_BODY_1065		Heinlein Support Spamschutz Body-1065 
-score HS_BODY_1065		5
-
-body HS_BODY_1066		/Tinnitusheilmittel in Betracht ziehen/
-describe HS_BODY_1066		Heinlein Support Spamschutz Body-1066 
-score HS_BODY_1066		3
-
-body HS_BODY_1067		/List any special requirements attached to letter/
-describe HS_BODY_1067		Heinlein Support Spamschutz Body-1067 
-score HS_BODY_1067		5
-
-body HS_BODY_1068		/rooms reservation/
-describe HS_BODY_1068		Heinlein Support Spamschutz Body-1068 
-score HS_BODY_1068		1
-
-body HS_BODY_1069		/Dear Hotel Manager,/
-describe HS_BODY_1069		Heinlein Support Spamschutz Body-1069 
-score HS_BODY_1069		3
-
-body HS_BODY_1070		/http\:\/\/mail[0-9]\.haarausfallloesung\.me\/unsubscribe\.php/
-describe HS_BODY_1070		Heinlein Support Spamschutz Body-1070 Spam
-score HS_BODY_1070		10
-
-body HS_BODY_1076		/PRAJNA/
-describe HS_BODY_1076		Heinlein Support Spamschutz Body-1076 You are a backscatter
-score HS_BODY_1076		2
-
-body HS_BODY_1077		/href\=\'http\:\/\/hypermail\.ir\/unsubscribe\./
-describe HS_BODY_1077		Heinlein Support Spamschutz Body-1077 
-score HS_BODY_1077		1
-
-body HS_BODY_1078		/http\:\/\/www\.imm\-tunisie\.com\.tn\/\_found\.your\.photo2\.jpeg\?lexukaf753349/
-describe HS_BODY_1078		Heinlein Support Spamschutz Body-1078 Phishing
-score HS_BODY_1078		8
-
-body HS_BODY_1079		/webmail-jpberlin-de-roundcube\.webs\.com/
-describe HS_BODY_1079		Heinlein Support Spamschutz Body-1079 
-score HS_BODY_1079		10
-
-body HS_BODY_1080		/flexibleportableso\=larmodulesfactoryinChina/
-describe HS_BODY_1080		Heinlein Support Spamschutz Body-1080 Spam
-score HS_BODY_1080		8
-
-body HS_BODY_1081		/http\:\/\/www\.dailyaag\.com\/img\/\_vti\_cnf\/col1\-hdr\.php/
-describe HS_BODY_1081		Heinlein Support Spamschutz Body-1081 Phishing
-score HS_BODY_1081		8
-
-body HS_BODY_1082		/qgawfc\@gmail\.com/
-describe HS_BODY_1082		Heinlein Support Spamschutz Body-1082 Spam
-score HS_BODY_1082		5
-
-body HS_BODY_1083		/http\:\/\/iesucs\.org\.ve\/webmail\.de\/public\_html\/webmail\/webmail\/index\.php/
-describe HS_BODY_1083		Heinlein Support Spamschutz Body-1083 Phishing
-score HS_BODY_1083		8
-
-body HS_BODY_1085		/http\:\/\/beauties4u0814\.com\.ua\/login\.php\?d\=dT0xNzU0MjEwNyZwPTAyNGMyYzg5NGZkM2M0NDg3OTg5MDg3ZDE3Y2UzOTc1JnM9c3BhbXZwc192My0y/
-describe HS_BODY_1085		Heinlein Support Spamschutz Body-1085 Phishing
-score HS_BODY_1085		5
-
-body HS_BODY_1087		/Subject\: are you ready for this\?/
-describe HS_BODY_1087		Heinlein Support Spamschutz Body-1087 
-score HS_BODY_1087		8
-
-body HS_BODY_1088		/http\:\/\/www\.marketwatch\.com\/investing\/stock\/cnrmf/ 
-describe HS_BODY_1088		Heinlein Support Spamschutz Body-1088 SPAM
-score HS_BODY_1088		8
-
-body HS_BODY_1089		/It will be at 30cents+ before day\'s end and past 65cents by month\'s end/
-describe HS_BODY_1089		Heinlein Support Spamschutz Body-1089 SPAM
-score HS_BODY_1089		8
-
-body HS_BODY_1090		/http\:\/\/www\.jyzxwz2003\.com\/base\/admin/
-describe HS_BODY_1090		Heinlein Support Spamschutz Body-1090 Spam
-score HS_BODY_1090		8
-
-body HS_BODY_1091		/http\:\/\/tracking\.news\.cavesdebourgogne\.com\/tracking\/les\-caves\-acqui\/ccnRy9aocgaNxrLLeP\-c/
-describe HS_BODY_1091		Heinlein Support Spamschutz Body-1091 Spam
-score HS_BODY_1091		8
-
-body HS_BODY_1092		/mailto\:contact\@news\.cavesdebordeaux\.com/
-describe HS_BODY_1092		Heinlein Support Spamschutz Body-1092 Spam
-score HS_BODY_1092		5
-
-body HS_BODY_1093		/http\:\/\/warpdut\.fulba\.com\/gde\-kupit\-byustgalter\-dlya\-sporta\.html/
-describe HS_BODY_1093		Heinlein Support Spamschutz Body-1093 Spam
-score HS_BODY_1093		8
-
-body HS_BODY_1094		/http\:\/\/nicelady0814\.com\.ua\/login\.php\?d\=dT0xNzU0MjEwNyZwPTAyNGMyYzg5NGZkM2M0NDg3OTg5MDg3ZDE3Y2UzOTc1JnM9c3BhbXZwc192NC0x/
-describe HS_BODY_1094		Heinlein Support Spamschutz Body-1094 Spam
-score HS_BODY_1094		8
-
-body HS_BODY_1095		/login\:support\@jpberlin\.de/
-describe HS_BODY_1095		Heinlein Support Spamschutz Body-1095 Phishing
-score HS_BODY_1095		8
-
-body HS_BODY_1096		/Website FREESEXWOMAN\.BIZ\..?Meine ID 1736044/
-describe HS_BODY_1096		Heinlein Support Spamschutz Body-1096 Spam
-score HS_BODY_1096		12
-
-body HS_BODY_1097		/http\:\/\/calfaeurope\.com/
-describe HS_BODY_1097		Heinlein Support Spamschutz Body-1097 Phishing
-score HS_BODY_1097		8
-
-body HS_BODY_1098		/Zur Bestätigung\<http\:\/\/www.amazon-umfrage.com\>/
-describe HS_BODY_1098		Heinlein Support Spamschutz Body-1098 Phishing
-score HS_BODY_1098		5
-
-body HS_BODY_1099		/http\:\/\/electrinox\.com\/AAAAAGGGG\/Sparkarowes\/index\.html/
-describe HS_BODY_1099		Heinlein Support Spamschutz Body-1099 Phishing
-score HS_BODY_1099		8
-
-body HS_BODY_1101		/www\.SPYMASTER\.bg/
-describe HS_BODY_1101		Heinlein Support Spamschutz Body-1101 Malware
-score HS_BODY_1101		5
-
-body HS_BODY_1102		/www\.spymaster\.bg/
-describe HS_BODY_1102		Heinlein Support Spamschutz Body-1102 Malware
-score HS_BODY_1102		5
-
-body HS_BODY_1103		/http\:\/\/webdegerman\.twomini\.com\/logg\.html/
-describe HS_BODY_1103		Heinlein Support Spamschutz Body-1103 Phishing
-score HS_BODY_1103		8
-
-body HS_BODY_1104		/Ihre E-Mail-Konto hat, um unsere neue Secured DGTFX Antiviren-Upgrade/
-describe HS_BODY_1104		Heinlein Support Spamschutz Body-1104 Phishing
-score HS_BODY_1104		8
-
-body HS_BODY_1105		/www\.wellsfargo\.com\/privacy\_security\/fraud/
-describe HS_BODY_1105		Heinlein Support Spamschutz Body-1105 Spam
-score HS_BODY_1105		8
-
-body HS_BODY_1106		/http\:\/\/bluepearlresort.nl/
-describe HS_BODY_1106		Heinlein Support Spamschutz Body-1106 
-score HS_BODY_1106		6
-
-body HS_BODY_1107		/http\:\/\/weldmaster\.com\.my/
-describe HS_BODY_1107		Heinlein Support Spamschutz Body-1107 Phishing
-score HS_BODY_1107		4
-
-body HS_BODY_1108		/http\:\/\/actingupcarolina\.com\/fZxnd64EB/
-describe HS_BODY_1108		Heinlein Support Spamschutz Body-1108 Phishing
-score HS_BODY_1108		7
-
-body HS_BODY_1109		/http\:\/\/dallascowboysfootball\.org\/MrlDC9PaF/
-describe HS_BODY_1109		Heinlein Support Spamschutz Body-1109 Phishing
-score HS_BODY_1109		7
-
-body HS_BODY_1110		/www\.alghammas\.sa/
-describe HS_BODY_1110		Heinlein Support Spamschutz Body-1110 Malware
-score HS_BODY_1110		5
-
-body HS_BODY_1111		/AL Ghammas groub/
-describe HS_BODY_1111		Heinlein Support Spamschutz Body-1111 Malware
-score HS_BODY_1111		3
-
-body HS_BODY_1112		/http\:\/\/uniquerecycling\.com\/dDINAleanH/
-describe HS_BODY_1112		Heinlein Support Spamschutz Body-1112 Phishing
-score HS_BODY_1112		7
-
-body HS_BODY_1113		/http\:\/\/kubilaybalci\.com\/RWoXtKfBIm/
-describe HS_BODY_1113		Heinlein Support Spamschutz Body-1113 Phishing
-score HS_BODY_1113		7
-
-body HS_BODY_1114		/http\:\/\/turunjoogayhdistys\.com\/LGZ2Fedo/
-describe HS_BODY_1114		Heinlein Support Spamschutz Body-1114 Phishing
-score HS_BODY_1114		7
-
-body HS_BODY_1115		/jxxxdxht\@gmail\.com/
-describe HS_BODY_1115		Heinlein Support Spamschutz Body-1115 Spam
-score HS_BODY_1115		5
-
-body HS_BODY_1116		/http\:\/\/delrico\.net\/aabb\/SparkaSu\/index\.html/
-describe HS_BODY_1116		Heinlein Support Spamschutz Body-1116 Phishing
-score HS_BODY_1116		7
-
-body HS_BODY_1117		/Kindly Peruse the Attached Letter and Follow the instruction Therein/
-describe HS_BODY_1117		Heinlein Support Spamschutz Body-1117 Malware
-score HS_BODY_1117		5
-
-body HS_BODY_1118		/Sitzng lcloud von einem nicht autorsierten Computer zu offnen/
-describe HS_BODY_1118		Heinlein Support Spamschutz Body-1118 Phishing
-score HS_BODY_1118		5
-
-body HS_BODY_1119		/-Konto ist nun gesperrt\, greifen Sie bitte Ihr Konto und eine Prufung/
-describe HS_BODY_1119		Heinlein Support Spamschutz Body-1119 Phishing
-score HS_BODY_1119		5
-
-body HS_BODY_1120		/http\:\/\/ladiesville0814\.com\.ua/
-describe HS_BODY_1120		Heinlein Support Spamschutz Body-1120 Spam
-score HS_BODY_1120		5
-
-body HS_BODY_1121		/Fräulein Schicksal Ajala/
-describe HS_BODY_1121		Heinlein Support Spamschutz Body-1121 Spam
-score HS_BODY_1121		8
-
-body HS_BODY_1122		/freewomenchat\.biz/
-describe HS_BODY_1122		Heinlein Support Spamschutz Body-1122 Spam
-score HS_BODY_1122		5
-
-body HS_BODY_1123		/Registrierung abzuschlie\?en und mich finden/
-describe HS_BODY_1123		Heinlein Support Spamschutz Body-1123 Spam
-score HS_BODY_1123		5
-
-body HS_BODY_1124		/http\:\/\/onetwentysevenfightwear\.com\/k6fK0zZoa/
-describe HS_BODY_1124		Heinlein Support Spamschutz Body-1124 Phishing
-score HS_BODY_1124		8
-
-body HS_BODY_1125		/Group Data Protection Officer Volksbanken aG/
-
-describe HS_BODY_1125		Heinlein Support Spamschutz Body-1125 Bankphishing
-score HS_BODY_1125		5
-
-body HS_BODY_1127		/kulisysportu\.pl/
-describe HS_BODY_1127		Heinlein Support Spamschutz Body-1127 Malware
-score HS_BODY_1127		5
-
-body HS_BODY_1128		/JPBerlin wird alle Konten für die Sicherheit Zweck Überprüfung/
-describe HS_BODY_1128		Heinlein Support Spamschutz Body-1128 Phishing
-score HS_BODY_1128		8
-
-body HS_BODY_1129		/Ihre ID Apple wurde verwendet\, um eine Stzung l ClouD-Apple von einem nicht a utorisierten Computer zu/
-describe HS_BODY_1129		Heinlein Support Spamschutz Body-1129 Spam
-score HS_BODY_1129		8
-
-body HS_BODY_1130		/http\:\/\/www\.whats\-sexy\.com\/abm\/76673463\/90100323\/755573493150c123db0acb88400\=2a2e0\//
-describe HS_BODY_1130		Heinlein Support Spamschutz Body-1130 Spam
-score HS_BODY_1130		5
-
-body HS_BODY_1131		/http\:\/\/www\.weihnachtsspeck\.com\/755573493150c123db0acb884002a2e0\//
-describe HS_BODY_1131		Heinlein Support Spamschutz Body-1131 Spam
-score HS_BODY_1131		8
-
-body HS_BODY_1132		/http\:\/\/www\.nalima\.es\/iC4QL1gjw/
-describe HS_BODY_1132		Heinlein Support Spamschutz Body-1132 Phishing
-score HS_BODY_1132		8
-
-body HS_BODY_1133		/http\:\/\/ngocrongonline\.org\/wp\-content\/uploads\/AF3kvnQo\/AF3kvnQo\/AF3kvnQo\/G8imzO3Yq/
-describe HS_BODY_1133		Heinlein Support Spamschutz Body-1133 Phishing
-score HS_BODY_1133		8
-
-body HS_BODY_1136		/https:\/\/enterprise.mycw.co.uk\/themes\/vf\/img\/vodafone-icon.png/
-describe HS_BODY_1136		Heinlein Support Spamschutz Body-1136 Phishingverdacht
-score HS_BODY_1136		4
-
-body HS_BODY_1137		/SPAN.*COLOR:.*e60000.*Ihre neue Rechnung als PDF.*SPAN/
-
-describe HS_BODY_1137		Heinlein Support Spamschutz Body-1137 Phishingverdacht
-score HS_BODY_1137		2
-
-body HS_BODY_1138		/http:..www.img-source.de.img.2014.Kundeninfo.DE.05.1A3988_95070195/
-
-describe HS_BODY_1138		Heinlein Support Spamschutz Body-1138 Phishingverdacht
-score HS_BODY_1138		4
-
-body HS_BODY_1139		/heute erhalten Sie Ihre Rechnung vom .* Sie finden diese im Anhang als PDF-Datei/
-
-describe HS_BODY_1139		Heinlein Support Spamschutz Body-1139 Phishingverdacht
-score HS_BODY_1139		1
-
-body HS_BODY_1140		/Umsatzsteuergesetz: DE189964006 Stnr.: 2636530279/
-describe HS_BODY_1140		Heinlein Support Spamschutz Body-1140 
-score HS_BODY_1140		5
-
-body HS_BODY_1141		/http\:\/\/www\.nachrichtenweb\.com\/755573493150c123db0acb884002a2e0\//
-describe HS_BODY_1141		Heinlein Support Spamschutz Body-1141 Phishing
-score HS_BODY_1141		8
-
-body HS_BODY_1142		/Ihr iTunes-Konto I st nun gesperrt/
-describe HS_BODY_1142		Heinlein Support Spamschutz Body-1142 Spam
-score HS_BODY_1142		6
-
-body HS_BODY_1143		/http\:\/\/webmail\.jpberlin\.de\/www\.festival42\.com\.br\/fspa\//
-describe HS_BODY_1143		Heinlein Support Spamschutz Body-1143 Phishing
-score HS_BODY_1143		8
-
-body HS_BODY_1144		/http\:\/\/justnice\.my\/online\/apache\/sparkasse\//
-describe HS_BODY_1144		Heinlein Support Spamschutz Body-1144 Phishing
-score HS_BODY_1144		8
-
-body HS_BODY_1145		/Haben Sie einen Investor brauchen\?/
-describe HS_BODY_1145		Heinlein Support Spamschutz Body-1145 Spam
-score HS_BODY_1145		8
-
-body HS_BODY_1146		/http\:\/\/jsocraft\.net\/s\/1nkann/
-describe HS_BODY_1146		Heinlein Support Spamschutz Body-1146 Spam
-score HS_BODY_1146		8
-
-body HS_BODY_1147		/http\:\/\/sankofajourney\.org\/scodvl\/vnapvhzsenqtutistvxxziofvcdb\.vpisuqgplgddlazsolpnwoembhbbm/
-describe HS_BODY_1147		Heinlein Support Spamschutz Body-1147 Spam
-score HS_BODY_1147		8
-
-body HS_BODY_1148		/Fed\*Ex\*/
-describe HS_BODY_1148		Heinlein Support Spamschutz Body-1148 
-score HS_BODY_1148		8
-
-body HS_BODY_1149		/http\:\/\/www\.sim\-stroy\.com\/ikvmna\/crnfwftjhsihfcfbnvu\.pdctapznhheuamfnvnkmm/
-
-describe HS_BODY_1149		Heinlein Support Spamschutz Body-1149 Spam
-score HS_BODY_1149		5
-
-body HS_BODY_1150		/http\:\/\/www\.undmagie\.biz\/s\/MzMwKjI2OCoxNDYwMyo0MSpicm9hZGNhc3Q\=/
-describe HS_BODY_1150		Heinlein Support Spamschutz Body-1150 Spam
-score HS_BODY_1150		5
-
-body HS_BODY_1151		/ebcjsxzht\@gmail\.com/
-describe HS_BODY_1151		Heinlein Support Spamschutz Body-1151 Spam
-score HS_BODY_1151		5
-
-body HS_BODY_1152		/versand\-medizin\.net/
-describe HS_BODY_1152		Heinlein Support Spamschutz Body-1152 Spam
-score HS_BODY_1152		8
-
-body HS_BODY_1153		/Al Marouf Trading Company./
-describe HS_BODY_1153		Heinlein Support Spamschutz Body-1153 Malware
-score HS_BODY_1153		5
-
-body HS_BODY_1154		/Heran Ahmed/
-describe HS_BODY_1154		Heinlein Support Spamschutz Body-1154 Malware
-score HS_BODY_1154		5
-
-body HS_BODY_1155		/melalui Blackberry Messanger/
-describe HS_BODY_1155		Heinlein Support Spamschutz Body-1155 Spam
-score HS_BODY_1155		5
-
-body HS_BODY_1156		/http\:\/\/yeaban.com\/hoped.php/
-describe HS_BODY_1156		Heinlein Support Spamschutz Body-1156 Spam
-score HS_BODY_1156		5
-
-body HS_BODY_1157		/http\:\/\/r\.newsletter\.mgdev\-net\.fr\/a7kwws81qajbdhfd\.html/
-describe HS_BODY_1157		Heinlein Support Spamschutz Body-1157 Phishing
-score HS_BODY_1157		8
-
-body HS_BODY_1158		/http\:\/\/www\.lojai\.com\/blast\/promo\.html/
-describe HS_BODY_1158		Heinlein Support Spamschutz Body-1158 Spam
-score HS_BODY_1158		8
-
-body HS_BODY_1159		/http\:\/\/r\.newsletter\.mgdev\-net\.fr\/a7kwws81wmafdhfd\.html/
-describe HS_BODY_1159		Heinlein Support Spamschutz Body-1159 Phishing
-score HS_BODY_1159		8
-
-body HS_BODY_1160		/preciousbabyadlan200\@gmail\.com/
-describe HS_BODY_1160		Heinlein Support Spamschutz Body-1160 Spam
-score HS_BODY_1160		5
-
-body HS_BODY_1161		/http\:\/\/adk\.hongxiangqipai\.com/
-describe HS_BODY_1161		Heinlein Support Spamschutz Body-1161 Spam
-score HS_BODY_1161		6
-
-body HS_BODY_1162		/https\:\/\/formcrafts\.com\/a\/8707/
-describe HS_BODY_1162		Heinlein Support Spamschutz Body-1162 Spam
-score HS_BODY_1162		6
-
-body HS_BODY_1163		/https\:\/\/formcrafts\.com\/a\/8862/
-describe HS_BODY_1163		Heinlein Support Spamschutz Body-1163 Spam
-score HS_BODY_1163		8
-
-body HS_BODY_1165		/http\:\/\/vakantieindelden\.nl\/sparko3\//
-describe HS_BODY_1165		Heinlein Support Spamschutz Body-1165 Phishing
-score HS_BODY_1165		8
-
-body HS_BODY_1166		/http\:\/\/itsolution\.com\.vn\/language\/x/
-describe HS_BODY_1166		Heinlein Support Spamschutz Body-1166 Phishing
-score HS_BODY_1166		8
-
-body HS_BODY_1167		/As you own a similar domain, we are emailing you to let you know that/
-describe HS_BODY_1167		Heinlein Support Spamschutz Body-1167 
-score HS_BODY_1167		3
-
-body HS_BODY_1168		/is now being offered by our company for a limited time.\<br \/\>\<br \/\>It is currently listed at/
-describe HS_BODY_1168		Heinlein Support Spamschutz Body-1168 
-score HS_BODY_1168		3
-
-body HS_BODY_1169		/and is offered on a \<b\>first-come, first-served\<\/b\> basis.\<br \/\>\<br \/\>If you're interested in/
-describe HS_BODY_1169		Heinlein Support Spamschutz Body-1169 
-score HS_BODY_1169		3
-
-body HS_BODY_1170		/\, we encourage you to secure it before it's too late by visiting \<a href\=\"http\:\/\//
-describe HS_BODY_1170		Heinlein Support Spamschutz Body-1170 
-score HS_BODY_1170		3
-
-body HS_BODY_1171		/Haben Sie schon einmal cybersex/
-describe HS_BODY_1171		Heinlein Support Spamschutz Body-1171 Spam
-score HS_BODY_1171		5
-
-body HS_BODY_1172		/Es gibt ein paar von meinen aufrichtigen Videos in der nackt/
-describe HS_BODY_1172		Heinlein Support Spamschutz Body-1172 Spam
-score HS_BODY_1172		5
-
-body HS_BODY_1173		/Bitte dräcken Sie Bilder/
-describe HS_BODY_1173		Heinlein Support Spamschutz Body-1173 Phishing
-score HS_BODY_1173		5
-
-body HS_BODY_1174		/trxmmm2354782369\.fitac\.com\.tr/
-describe HS_BODY_1174		Heinlein Support Spamschutz Body-1174 Phishing
-score HS_BODY_1174		5
-
-body HS_BODY_1176		/Bitte benutzen Sie den, unten angezeigten Button um die Änderung Kostenfrei/
-describe HS_BODY_1176		Heinlein Support Spamschutz Body-1176 Phishing
-score HS_BODY_1176		8
-
-body HS_BODY_1177		/in a few day you will Received the money/
-describe HS_BODY_1177		Heinlein Support Spamschutz Body-1177 Phishing
-score HS_BODY_1177		8
-
-body HS_BODY_1178		/erforderlich.Dies dient zu Ihrer eigenen Sicherheit/
-describe HS_BODY_1178		Heinlein Support Spamschutz Body-1178 Phishing
-score HS_BODY_1178		5
-
-body HS_BODY_1179		/Sind sie es auch leid für ein Päckchen zigaretten/
-describe HS_BODY_1179		Heinlein Support Spamschutz Body-1179 Spam
-score HS_BODY_1179		5
-
-body HS_BODY_1180		/How are you doing\?hope you are fine\?I/
-describe HS_BODY_1180		Heinlein Support Spamschutz Body-1180 Spam
-score HS_BODY_1180		5
-
-body HS_BODY_1181		/zu Ihrem Konto anzumelden. Sie können durch click auf den linken unten/
-describe HS_BODY_1181		Heinlein Support Spamschutz Body-1181 Spam
-score HS_BODY_1181		5
-
-body HS_BODY_1182		/http\:\/\/dasdsadadsa7789513526\.rdvpris\.fr\/index\.php/
-describe HS_BODY_1182		Heinlein Support Spamschutz Body-1182 Spam
-score HS_BODY_1182		8
-
-body HS_BODY_1183		/http\:\/\/apoteosefestas\.com\.br\/ic\/weblogin.html/
-describe HS_BODY_1183		Heinlein Support Spamschutz Body-1183 Spam
-score HS_BODY_1183		5
-
-body HS_BODY_1184		/r.newsletter.mgdev-net.fr/
-describe HS_BODY_1184		Heinlein Support Spamschutz Body-1184 Spam
-score HS_BODY_1184		5
-
-body HS_BODY_1185		/http\:\/\/invites\.info-emailer\.com/
-describe HS_BODY_1185		Heinlein Support Spamschutz Body-1185 SPAM
-score HS_BODY_1185		8
-
-body HS_BODY_1186		/für ein Charity-Projekt von Herrn Sam abgeholt/
-describe HS_BODY_1186		Heinlein Support Spamschutz Body-1186 Spam
-score HS_BODY_1186		5
-
-body HS_BODY_1187		/lenderloanfirm\@foxmail\.com/
-describe HS_BODY_1187		Heinlein Support Spamschutz Body-1187 Spam
-score HS_BODY_1187		5
-
-body HS_BODY_1188		/http\:\/\/meine6470130313\.caterite\.co\/images\/gallery\/x\/index\.php/
-describe HS_BODY_1188		Heinlein Support Spamschutz Body-1188 Phishing
-score HS_BODY_1188		8
-
-body HS_BODY_1189		/http\:\/\/narwani\.pl\/Zt1wv8bymN/
-describe HS_BODY_1189		Heinlein Support Spamschutz Body-1189 Phishing
-score HS_BODY_1189		5
-
-body HS_BODY_1190		/http\:\/\/monbanhngon\.com\/nwplyT6je/
-describe HS_BODY_1190		Heinlein Support Spamschutz Body-1190 Phishing
-score HS_BODY_1190		5
-
-body HS_BODY_1191		/http\:\/\/triumph\-k\.ru\/3zHlKY1v2GFO/
-describe HS_BODY_1191		Heinlein Support Spamschutz Body-1191 Phishing
-score HS_BODY_1191		5
-
-body HS_BODY_1192		/http\:\/\/mmddiieef9289658037\.reviewuswp\.com\/index\.php/
-describe HS_BODY_1192		Heinlein Support Spamschutz Body-1192 Phishing
-score HS_BODY_1192		5
-
-body HS_BODY_1193		/Watch <a href=3D"http:\/\/myplanearns.com"><b>this<\/b><\/a> in the next 15/
-describe HS_BODY_1193		Heinlein Support Spamschutz Body-1193 Spam
-score HS_BODY_1193		10
-
-body HS_BODY_1194		/Colonel Michael Warner from the US Army Syria/
-describe HS_BODY_1194		Heinlein Support Spamschutz Body-1194 Spam
-score HS_BODY_1194		5
-
-body HS_BODY_1195		/2358 euro schulden.Kostenplan im Anhang/
-describe HS_BODY_1195		Heinlein Support Spamschutz Body-1195 Spam
-score HS_BODY_1195		5
-
-body HS_BODY_1196		/http\:\/\/airworld\.com\.my\/S2Rb6VNkA/
-describe HS_BODY_1196		Heinlein Support Spamschutz Body-1196 Phishing
-score HS_BODY_1196		5
-
-body HS_BODY_1197		/Simply visit our site\: www\.careerandcash\.com/
-describe HS_BODY_1197		Heinlein Support Spamschutz Body-1197 Spam
-score HS_BODY_1197		10
-
-body HS_BODY_1198		/http:\/\/go.google-mkto.com\/WT0gJAPiC1S1C2800K0un00/
-describe HS_BODY_1198		Heinlein Support Spamschutz Body-1198 Phishing
-score HS_BODY_1198		5
-
-body HS_BODY_1199		/http\:\/\/tinypic\.com\?ref\=2h6rtdf/
-describe HS_BODY_1199		Heinlein Support Spamschutz Body-1199 Spam
-score HS_BODY_1199		5
-
-body HS_BODY_1200		/http\:\/\/www\.adriginal\.com\/signup\/ct\/index\.php/
-describe HS_BODY_1200		Heinlein Support Spamschutz Body-1200 Phishing
-score HS_BODY_1200		5
-
-body HS_BODY_1201		/http\:\/\/brzseguros\.com\.br\/VMRLNEtIJ2x1/
-describe HS_BODY_1201		Heinlein Support Spamschutz Body-1201 Spam
-score HS_BODY_1201		5
-
-body HS_BODY_1202		/Tatyana\.Fedoseevna\@gmail\.com/
-describe HS_BODY_1202		Heinlein Support Spamschutz Body-1202 Spam
-score HS_BODY_1202		5
-
-body HS_BODY_1203		/http\:\/\/vidaavida\.com\.br\/ThWMBNXd3/
-describe HS_BODY_1203		Heinlein Support Spamschutz Body-1203 Spam
-score HS_BODY_1203		5
-
-body HS_BODY_1204		/http\:\/\/starter\-fb\-business\.eu/
-describe HS_BODY_1204		Heinlein Support Spamschutz Body-1204 Spam
-score HS_BODY_1204		5
-
-body HS_BODY_1205		/Tatyana\.Erofeevna\@gmail\.com/
-describe HS_BODY_1205		Heinlein Support Spamschutz Body-1205 Spam
-score HS_BODY_1205		5
-
-body HS_BODY_1206		/chudoyuliya83\@gmail\.com/
-describe HS_BODY_1206		Heinlein Support Spamschutz Body-1206 Spam
-score HS_BODY_1206		5
-
-body HS_BODY_1207		/vikasumptuous\@yahoo\.com/
-describe HS_BODY_1207		Heinlein Support Spamschutz Body-1207 Spam
-score HS_BODY_1207		5
-
-body HS_BODY_1208		/http\:\/\/x\.co\/8hxrE\?paypal\.com\/updatesecurity/
-describe HS_BODY_1208		Heinlein Support Spamschutz Body-1208 Phishing
-score HS_BODY_1208		5
-
-body HS_BODY_1209		/vikaprincely\@yahoo\.com/
-describe HS_BODY_1209		Heinlein Support Spamschutz Body-1209 Spam
-score HS_BODY_1209		5
-
-body HS_BODY_1210		/http\:\/\/help\.sina\.com\.cn\/i\/90\/152\_2\.html/
-describe HS_BODY_1210		Heinlein Support Spamschutz Body-1210 Spam
-score HS_BODY_1210		5
-
-body HS_BODY_1211		/qinp04\@sina\.com\.mda1\.sinamail\.sina\.com\.cn/
-describe HS_BODY_1211		Heinlein Support Spamschutz Body-1211 Spam
-score HS_BODY_1211		5
-
-body HS_BODY_1212		/Siostra Ruth Hamson/
-describe HS_BODY_1212		Heinlein Support Spamschutz Body-1212 Spam
-score HS_BODY_1212		5
-
-body HS_BODY_1213		/oxfam\.oxfamuae\@cash4u\.com/
-describe HS_BODY_1213		Heinlein Support Spamschutz Body-1213 Spam
-score HS_BODY_1213		5
-
-body HS_BODY_1214		/orlenko\.lv\/shipment\_8327489732847328478392782892\.exe/
-describe HS_BODY_1214		Heinlein Support Spamschutz Body-1214 Spam
-score HS_BODY_1214		5
-
-body HS_BODY_1215		/fullframeproductions\.com\.au/
-describe HS_BODY_1215		Heinlein Support Spamschutz Body-1215 Spam
-score HS_BODY_1215		5
-
-body HS_BODY_1216		/tinyurl\.com\/p6kpr3c/
-describe HS_BODY_1216		Heinlein Support Spamschutz Body-1216 Spam
-score HS_BODY_1216		5
-
-body HS_BODY_1217		/tinyurl\.com\/nmvcppc/
-describe HS_BODY_1217		Heinlein Support Spamschutz Body-1217 Spam
-score HS_BODY_1217		5
-
-body HS_BODY_1219		/http\:\/\/pp2check\-sicherheitcheck\=2Ebiz\/nachweis\/kunde/
-describe HS_BODY_1219		Heinlein Support Spamschutz Body-1219 Phishing
-score HS_BODY_1219		8
-
-body HS_BODY_1221		/sevenfurious2015.blogspot.com/
-describe HS_BODY_1221		Heinlein Support Spamschutz Body-1221 Spam
-score HS_BODY_1221		5
-
-body HS_BODY_1222		/podrejentem.com.pl\/shipment\_83274897328473284783927828/
-describe HS_BODY_1222		Heinlein Support Spamschutz Body-1222 Malware
-score HS_BODY_1222		5
-
-body HS_BODY_1225		/http\:\/\/to\.ly\/PA7W/
-describe HS_BODY_1225		Heinlein Support Spamschutz Body-1225 Phishing
-score HS_BODY_1225		8
-
-body HS_BODY_1226		/http\:\/\/newserviceonline\-pro\.com\//
-describe HS_BODY_1226		Heinlein Support Spamschutz Body-1226 Spam
-score HS_BODY_1226		8
-
-body HS_BODY_1227		/http\:\/\/colegiodelrincon\.com\/administrator\/tradekey\.com\/index\.html/
-describe HS_BODY_1227		Heinlein Support Spamschutz Body-1227 Phishing
-score HS_BODY_1227		8
-
-body HS_BODY_1228		/Autounfall zusammen Yamoussoukro/
-describe HS_BODY_1228		Heinlein Support Spamschutz Body-1228 Spam
-score HS_BODY_1228		5
-
-body HS_BODY_1229		/administrator\/madeinC/
-describe HS_BODY_1229		Heinlein Support Spamschutz Body-1229 Spam
-score HS_BODY_1229		5
-
-body HS_BODY_1232		/components\/madeinC/
-describe HS_BODY_1232		Heinlein Support Spamschutz Body-1232 Spam
-score HS_BODY_1232		5
-
-body HS_BODY_1233		/Wang Bruce, from Russia/
-describe HS_BODY_1233		Heinlein Support Spamschutz Body-1233 Spam
-score HS_BODY_1233		5
-
-body HS_BODY_1234		/http\:\/\/tinyurl\.com\/mbfqmpl/
-describe HS_BODY_1234		Heinlein Support Spamschutz Body-1234 Spam
-score HS_BODY_1234		8
-
-body HS_BODY_1235		/outstanding avenue for a possible business corporation/
-describe HS_BODY_1235		Heinlein Support Spamschutz Body-1235 Spam
-score HS_BODY_1235		5
-
-body HS_BODY_1236		/Omprakash, business development professional/
-describe HS_BODY_1236		Heinlein Support Spamschutz Body-1236 Spam
-score HS_BODY_1236		5
-
-body HS_BODY_1237		/wponlinesupport.com/
-describe HS_BODY_1237		Heinlein Support Spamschutz Body-1237 Spam
-score HS_BODY_1237		5
-
-body HS_BODY_1238		/Ihr Team bei der DHL/
-describe HS_BODY_1238		Heinlein Support Spamschutz Body-1238 Phishing
-score HS_BODY_1238		5
-
-body HS_BODY_1239		/We are a factory which produces pet clothes, pet harness, pet leash/
-describe HS_BODY_1239		Heinlein Support Spamschutz Body-1239 Spam
-score HS_BODY_1239		7
-
-body HS_BODY_1240		/in Lome Togo and left \$ 9.5 million/
-describe HS_BODY_1240		Heinlein Support Spamschutz Body-1240 Spam
-score HS_BODY_1240		5
-
-body HS_BODY_1241		/surestartloanfirmdept01\@outlook.com/
-describe HS_BODY_1241		Heinlein Support Spamschutz Body-1241 Spam
-score HS_BODY_1241		8
-
-body HS_BODY_1242		/http\:\/\/ow.ly\/MrZAg/
-describe HS_BODY_1242		Heinlein Support Spamschutz Body-1242 Phishing
-score HS_BODY_1242		5
-
-body HS_BODY_1243		/ PayPaI /
-describe HS_BODY_1243		Heinlein Support Spamschutz Body-1243 Phishing
-score HS_BODY_1243		8
-
-body HS_BODY_1244		/me,kindly get back to me with your telephone number if you will be/
-describe HS_BODY_1244		Heinlein Support Spamschutz Body-1244 Spam
-score HS_BODY_1244		5
-
-body HS_BODY_1245		/Team Versand, DHL/
-describe HS_BODY_1245		Heinlein Support Spamschutz Body-1245 Phishing
-score HS_BODY_1245		5
-
-body HS_BODY_1246		/Hier aktueller DHL-Sendungsstatus./
-describe HS_BODY_1246		Heinlein Support Spamschutz Body-1246 Phishing
-score HS_BODY_1246		5
-
-body HS_BODY_1247		/http\:\/\/heliosradio.com\/WGNz20QXeyK/
-describe HS_BODY_1247		Heinlein Support Spamschutz Body-1247 Phishing
-score HS_BODY_1247		5
-
-body HS_BODY_1248		/http\:\/\/bit.ly\/1cKFfTS/
-describe HS_BODY_1248		Heinlein Support Spamschutz Body-1248 Pharmacyspam
-score HS_BODY_1248		10
-
-body HS_BODY_1249		/documentations and briefing\,majorericmillerukarmy\@gmail\.com/
-describe HS_BODY_1249		Heinlein Support Spamschutz Body-1249 Spam
-score HS_BODY_1249		8
-
-body HS_BODY_1250		/Company\:Hebei Leijie Trade Co\.\,LTD\./
-describe HS_BODY_1250		Heinlein Support Spamschutz Body-1250 Spam
-score HS_BODY_1250		8
-
-body HS_BODY_1251		/eb.by\/TS9L/
-describe HS_BODY_1251		Heinlein Support Spamschutz Body-1251 Spam
-score HS_BODY_1251		8
-
-body HS_BODY_1252		/www\.suntimedirekt\.com/
-describe HS_BODY_1252		Heinlein Support Spamschutz Body-1252 SPAM
-score HS_BODY_1252		8
-
-body HS_BODY_1253		/www\.versandgutunddirekt\.com/
-describe HS_BODY_1253		Heinlein Support Spamschutz Body-1253 SPAM
-score HS_BODY_1253		8
-
-body HS_BODY_1254		/jomasgop\.com/
-describe HS_BODY_1254		Heinlein Support Spamschutz Body-1254 SPAM
-score HS_BODY_1254		5
-
-body HS_BODY_1255		/benvenuto\.quoteroler\.com/
-describe HS_BODY_1255		Heinlein Support Spamschutz Body-1255 SPAM
-score HS_BODY_1255		5
-
-body HS_BODY_1256		/http\:\/\/smarturl\.it\/tvpoint/
-describe HS_BODY_1256		Heinlein Support Spamschutz Body-1256 Spam
-score HS_BODY_1256		5
-
-body HS_BODY_1257		/http\:\/\/pawad\.cddphayao\.com\/WNJzdFEBkxj8rh/
-describe HS_BODY_1257		Heinlein Support Spamschutz Body-1257 Spam
-score HS_BODY_1257		8
-
-body HS_BODY_1258		/oasweoa\. com/
-describe HS_BODY_1258		Heinlein Support Spamschutz Body-1258 Spam
-score HS_BODY_1258		8
-
-body HS_BODY_1259		/www.paypal-konfliktlosungen.com\/validierung\/benutzer\/daten/
-describe HS_BODY_1259		Heinlein Support Spamschutz Body-1259 Phishing
-score HS_BODY_1259		8
-
-body HS_BODY_1260		/my-recommendations.com/
-describe HS_BODY_1260		Heinlein Support Spamschutz Body-1260 Spam
-score HS_BODY_1260		5
-
-body HS_BODY_1261		/Pr\.cruise2015\@yandex\.com/
-describe HS_BODY_1261		Heinlein Support Spamschutz Body-1261 Spam
-score HS_BODY_1261		8
-
-body HS_BODY_1262		/K==FCrzlich haben wir Ihr Konto gepr=FCft und ben=F6tigen weitere Inform=ationen, damit wir Ihnen einen sicheren Service anbieten k=F6nnen/
-describe HS_BODY_1262		Heinlein Support Spamschutz Body-1262 Phishing
-score HS_BODY_1262		3
-
-body HS_BODY_1263		/Solange uns diese Informationen nicht zur Verf\=FCgung stehen, ist Ihr \= Zugang zu vertraulichen Kontofunktionen eingeschr\=E4nkt/
-describe HS_BODY_1263		Heinlein Support Spamschutz Body-1263 Phishing
-score HS_BODY_1263		3
-
-body HS_BODY_1264		/NO\.26\,THE 3RD INDUSTRIAL PARK\, LANGXIA VILLAGE\, SONG GANG TOWN\, BAOAN DISTRICT SHENZHEN 518105 P\.R\.CHINA/
-describe HS_BODY_1264		Heinlein Support Spamschutz Body-1264 Spam
-score HS_BODY_1264		8
-
-body HS_BODY_1265		/Neue\ TAN-Liste\ wird\ Verfahren\./
-describe HS_BODY_1265		Heinlein Support Spamschutz Body-1265 Phishing
-score HS_BODY_1265		8
-
-body HS_BODY_1266		/http\:\/\/www\.bojministries\.com\/js\/wag\//
-describe HS_BODY_1266		Heinlein Support Spamschutz Body-1266 Phishing
-score HS_BODY_1266		8
-
-body HS_BODY_1267		/<p>Als weitere Sicherheitsmassnahme ben=F6tigen Sie Ihre Kreditkarten Ko/
-describe HS_BODY_1267		Heinlein Support Spamschutz Body-1267 
-score HS_BODY_1267		5
-
-body HS_BODY_1268		/<p>best=E4tigen Kontoinformationen./
-describe HS_BODY_1268		Heinlein Support Spamschutz Body-1268 
-score HS_BODY_1268		5
-
-body HS_BODY_1269		/http:\/\/flatoutjacked.com\/ba\//
-describe HS_BODY_1269		Heinlein Support Spamschutz Body-1269 
-score HS_BODY_1269		8
-
-body HS_BODY_1270		/ Ich lebe eine und niemals war verheiratet/
-describe HS_BODY_1270		Heinlein Support Spamschutz Body-1270 
-score HS_BODY_1270		5
-
-body HS_BODY_1271		/ch werde froh sein, noch grosser von mir zu erzahlen/
-describe HS_BODY_1271		Heinlein Support Spamschutz Body-1271 
-score HS_BODY_1271		5
-
-body HS_BODY_1272		/financialsolution683\@gmail.com/
-describe HS_BODY_1272		Heinlein Support Spamschutz Body-1272 Spam
-score HS_BODY_1272		5
-
-body HS_BODY_1273		/http\:\/\/www\.budoten\.ch\/uDZHNv9ISn/
-describe HS_BODY_1273		Heinlein Support Spamschutz Body-1273 Phishing
-score HS_BODY_1273		8
-
-body HS_BODY_1274		/DHL, Verfolgung Zustellungsweg./
-describe HS_BODY_1274		Heinlein Support Spamschutz Body-1274 Phishing
-score HS_BODY_1274		5
-
-body HS_BODY_1275		/Ihnen keiner mitteilen/
-describe HS_BODY_1275		Heinlein Support Spamschutz Body-1275 Phishing
-score HS_BODY_1275		5
-
-body HS_BODY_1276		/Dann starten SIE JETZT hier\! (Hier klicken)/
-describe HS_BODY_1276		Heinlein Support Spamschutz Body-1276 SPAM
-score HS_BODY_1276		8
-
-body HS_BODY_1277		/http\:\/\/tinyurl\.com\/o2x4yn8/
-describe HS_BODY_1277		Heinlein Support Spamschutz Body-1277 SPAM
-score HS_BODY_1277		8
-
-body HS_BODY_1278		/Neue TAN-Liste Methode zur Verfügung steht/
-describe HS_BODY_1278		Heinlein Support Spamschutz Body-1278 Phishing
-score HS_BODY_1278		8
-
-body HS_BODY_1279		/Das beste Bindesystem der Welt/
-describe HS_BODY_1279		Heinlein Support Spamschutz Body-1279 SPAM
-score HS_BODY_1279		5
-
-body HS_BODY_1280		/http\:\/\/www\.boarding-door\.de\/3\/B446\/1\/7619\/206\/s48953137\/\_\/17995543e5f26785a4f78a2dd18b80ed35a8e2d7\/\_\/\_\/\_\/0\/\?wm=19979\&pr=\_MKTID\_\&prm=rev/
-describe HS_BODY_1280		Heinlein Support Spamschutz Body-1280 SPAM
-score HS_BODY_1280		8
-
-body HS_BODY_1281		/https\:\/\/runescape2007golds\.wordpress\.com\/2015\/06\/03\/runescape\-the\-spells\//
-describe HS_BODY_1281		Heinlein Support Spamschutz Body-1281 Spam
-score HS_BODY_1281		8
-
-body HS_BODY_1282		/mailto\:clncynlson\@outlook\.com/
-describe HS_BODY_1282		Heinlein Support Spamschutz Body-1282 Spam
-score HS_BODY_1282		8
-
-body HS_BODY_1283		/http\:\/\/elitecg\.com\.br\/kQtwHENnP/
-describe HS_BODY_1283		Heinlein Support Spamschutz Body-1283 Spam
-score HS_BODY_1283		8
-
-body HS_BODY_1284		/http\:\/\/paiypael\.com\//
-describe HS_BODY_1284		Heinlein Support Spamschutz Body-1284 Spam
-score HS_BODY_1284		8
-
-body HS_BODY_1285		/https\:\/\/gator3177\.hostgator\.com\/\~systems\/login\/85D6FS2C5F6DCX/
-describe HS_BODY_1285		Heinlein Support Spamschutz Body-1285 Phishing
-score HS_BODY_1285		5
-
-body HS_BODY_1286		/http\:\/\/www\.blueglobere\.com\/blog\/view\/639203\/players\-gallery\-is\-a\-monthly\-showcase\-of\-awesome\-artwork\-from\-the\-community\-from\-runescape/
-describe HS_BODY_1286		Heinlein Support Spamschutz Body-1286 Spam
-score HS_BODY_1286		8
-
-body HS_BODY_1287		/Keine soziale Sicherheit und keine Bonitätsprüfung 100\%\./
-describe HS_BODY_1287		Heinlein Support Spamschutz Body-1287 Spam
-score HS_BODY_1287		8
-
-body HS_BODY_1288		/Ihr Microsoft Exchange-Postfach ist voll \" KLICKEN SIE HIER/
-describe HS_BODY_1288		Heinlein Support Spamschutz Body-1288 Phishing
-score HS_BODY_1288		8
-
-body HS_BODY_1289		/http\:\/\/www\.disneycruise\.disney\.go\.com\//
-describe HS_BODY_1289		Heinlein Support Spamschutz Body-1289 Spam
-score HS_BODY_1289		8
-
-body HS_BODY_1290		/http\:\/\/q4v8vp6h9\.w\.j1rg\.com\/link\.php\?M\=8400337\!N\=8\!L\=71\!F\=H/
-describe HS_BODY_1290		Heinlein Support Spamschutz Body-1290 Spam
-score HS_BODY_1290		8
-
-body HS_BODY_1291		/Brillante Druckqualit\ä\;t \& h\ö\;chste Standards/
-describe HS_BODY_1291		Heinlein Support Spamschutz Body-1291 Spam
-score HS_BODY_1291		8
-
-body HS_BODY_1292		/http\:\/\/affiliate\.lufax\.com\/action\/tRvCa/
-describe HS_BODY_1292		Heinlein Support Spamschutz Body-1292 Spam
-score HS_BODY_1292		8
-
-body HS_BODY_1293		/^Select the term above, then return by fax: 1-716-242-0416/
-describe HS_BODY_1293		Heinlein Support Spamschutz Body-1293 Domainspam
-score HS_BODY_1293		7
-
-body HS_BODY_1294		/selected as a Google Ambassador for using Google services/
-describe HS_BODY_1294		Heinlein Support Spamschutz Body-1294 Spam
-score HS_BODY_1294		5
-
-body HS_BODY_1295		/You have received a donation of 950\,000 USD\, For more details email\:mrrichbonner\@gmail\.com/
-describe HS_BODY_1295		Heinlein Support Spamschutz Body-1295 spam
-score HS_BODY_1295		8
-
-body HS_BODY_1296		/Zugriff auf Ihr Online-Konto läuft im Brief/
-describe HS_BODY_1296		Heinlein Support Spamschutz Body-1296 Phishing
-score HS_BODY_1296		5
-
-body HS_BODY_1298		/ANVAR BAYOT LTD Uzbekistan \- Toshkent Shahri \+998 97 5467 927/
-describe HS_BODY_1298		Heinlein Support Spamschutz Body-1298 Spam
-score HS_BODY_1298		8
-
-body HS_BODY_1299		/hkhling\@vip.163.com/
-describe HS_BODY_1299		Heinlein Support Spamschutz Body-1299 Spam
-score HS_BODY_1299		5
-
-body HS_BODY_1300		/This is Honey from Pinsumtech\.we have new and special design car jump starter for you check\,pls find below\:/
-describe HS_BODY_1300		Heinlein Support Spamschutz Body-1300 Spam
-score HS_BODY_1300		8
-
-body HS_BODY_1301		/1297362494-paypal.de.ystorno-pp.name/
-describe HS_BODY_1301		Heinlein Support Spamschutz Body-1301 Phishing
-score HS_BODY_1301		5
-
-body HS_BODY_1302		/Ihre gewinnende Menge an Geld in einem sicheren Unternehmen gespeichert und in Ihrem Namen versichert\./
-describe HS_BODY_1302		Heinlein Support Spamschutz Body-1302 Spam
-score HS_BODY_1302		8
-
-body HS_BODY_1303		/http\:\/\/no-punkte.com/
-describe HS_BODY_1303		Heinlein Support Spamschutz Body-1303 Spam
-score HS_BODY_1303		5
-
-body HS_BODY_1304		/www.satec.co.in/
-describe HS_BODY_1304		Heinlein Support Spamschutz Body-1304 Spam
-score HS_BODY_1304		5
-
-body HS_BODY_1305		/www.chinaca.en.alibaba.com/
-describe HS_BODY_1305		Heinlein Support Spamschutz Body-1305 Spam
-score HS_BODY_1305		5
-
-body HS_BODY_1306		/drmohamedyuosuf\@yahoo.com/
-describe HS_BODY_1306		Heinlein Support Spamschutz Body-1306 Spam
-score HS_BODY_1306		5
-
-body HS_BODY_1307		/pro-pitchers.com/
-describe HS_BODY_1307		Heinlein Support Spamschutz Body-1307 Spam
-score HS_BODY_1307		5
-
-body HS_BODY_1308		/http\:\/\/bestdepartment.net/
-describe HS_BODY_1308		Heinlein Support Spamschutz Body-1308 Spam
-score HS_BODY_1308		5
-
-body HS_BODY_1309		/http\:\/\/bio-fruits.net/
-describe HS_BODY_1309		Heinlein Support Spamschutz Body-1309 Spam
-score HS_BODY_1309		5
-
-body HS_BODY_1310		/Voici  mon N\° de téléphone pour me joindre\: \+44 705 381 7564/
-describe HS_BODY_1310		Heinlein Support Spamschutz Body-1310 Spam
-score HS_BODY_1310		8
-
-body HS_BODY_1311		/\(c\) 2012\-2014 DHL International/
-describe HS_BODY_1311		Heinlein Support Spamschutz Body-1311 Phishing
-score HS_BODY_1311		8
-
-body HS_BODY_1312		/krankenkasse-beitrag-sparen.biz/
-describe HS_BODY_1312		Heinlein Support Spamschutz Body-1312 Spam
-score HS_BODY_1312		5
-
-body HS_BODY_1313		/tarifanpassung.biz/
-describe HS_BODY_1313		Heinlein Support Spamschutz Body-1313 Spam
-score HS_BODY_1313		5
-
-body HS_BODY_1314		/I am a small business owner who supplies local outlets here and like to place and order from your store\,i will like to make payment with my credit card\. Thanks\./
-describe HS_BODY_1314		Heinlein Support Spamschutz Body-1314 Spam
-score HS_BODY_1314		8
-
-body HS_BODY_1315		/http\:\/\/titan\-z\.com\/A69\_100\/form\/index\.php/
-describe HS_BODY_1315		Heinlein Support Spamschutz Body-1315 Spam
-score HS_BODY_1315		8
-
-body HS_BODY_1316		/tilbud hos Dansk777.dk/
-describe HS_BODY_1316		Heinlein Support Spamschutz Body-1316 Spam
-score HS_BODY_1316		5
-
-body HS_BODY_1317		/http\:\/\/public\.mails\.satisfythedeal\.com\/public\/redirect\/link\/l\/111069\/n\/19264\/s\/693764203\/h\/5b7857c62d/
-describe HS_BODY_1317		Heinlein Support Spamschutz Body-1317 Spam
-score HS_BODY_1317		8
-
-body HS_BODY_1318		/Please find attached invoice for the past months\. Remit the new payment by 30\/07\/2015 as outlines under our payment agreement\./
-describe HS_BODY_1318		Heinlein Support Spamschutz Body-1318 Spam
-score HS_BODY_1318		8
-
-body HS_BODY_1319		/stwstz6pld0ge.saudipsych.org/
-describe HS_BODY_1319		Heinlein Support Spamschutz Body-1319 Phishing
-score HS_BODY_1319		5
-
-body HS_BODY_1320		/vsdfdsfdstfdsfdsh107yx5sqy17hnr60i7qb6o0ozvp9m.kayakkiyafetleri.gen.tr/
-describe HS_BODY_1320		Heinlein Support Spamschutz Body-1320 Phishing
-score HS_BODY_1320		8
-
-body HS_BODY_1321		/Also include you delivery mode and payment terms in the quotation/
-describe HS_BODY_1321		Heinlein Support Spamschutz Body-1321 Spam
-score HS_BODY_1321		5
-
-body HS_BODY_1322		/riadqabbani\@secauthsend.com/
-describe HS_BODY_1322		Heinlein Support Spamschutz Body-1322 Spam
-score HS_BODY_1322		5
-
-body HS_BODY_1323		/girlslovebangle.com/
-describe HS_BODY_1323		Heinlein Support Spamschutz Body-1323 Spam
-score HS_BODY_1323		5
-
-body HS_BODY_1324		/Wir sind für Sie ein Darlehen von 10\.000 \€ bis \€20\,000\,000\.00 geben\./
-describe HS_BODY_1324		Heinlein Support Spamschutz Body-1324 Spam
-score HS_BODY_1324		8
-
-body HS_BODY_1325		/the-smartest-way.com/
-describe HS_BODY_1325		Heinlein Support Spamschutz Body-1325 Spam
-score HS_BODY_1325		5
-
-body HS_BODY_1326		/https\:\/\/www\.ubs\.com\/ch\/DE\/online\-services\/e\-banking\.html/
-describe HS_BODY_1326		Heinlein Support Spamschutz Body-1326 Spam
-score HS_BODY_1326		8
-
-body HS_BODY_1327		/http\:\/\/www\.newdeals\.eu/
-describe HS_BODY_1327		Heinlein Support Spamschutz Body-1327 Spam
-score HS_BODY_1327		5
-
-body HS_BODY_1328		/Please find attached PDF Investment proposal \& treat for our mutual benefits/
-describe HS_BODY_1328		Heinlein Support Spamschutz Body-1328 Spam
-score HS_BODY_1328		8
-
-body HS_BODY_1329		/Hi Dear\,\=A0\=0AI\'m Alexandra Caroline\, French nationality\./
-describe HS_BODY_1329		Heinlein Support Spamschutz Body-1329 Spam
-score HS_BODY_1329		8
-
-body HS_BODY_1330		/I am sending you this mail with sorrow in my heart hoping that you will help me out in the name of God\./
-describe HS_BODY_1330		Heinlein Support Spamschutz Body-1330 Spam
-score HS_BODY_1330		8
-
-body HS_BODY_1332		/The domains \"opensynergy\.asia\/\.cn\.\.\.\" you registered with us had been expired/
-describe HS_BODY_1332		Heinlein Support Spamschutz Body-1332 SPAM
-score HS_BODY_1332		8
-
-body HS_BODY_1333		/http:\/\/95-170-86-82.colo.transip.net\/nuevoMailer\/subscriber/
-describe HS_BODY_1333		Heinlein Support Spamschutz Body-1333 
-score HS_BODY_1333		5
-
-body HS_BODY_1334		/email me at\:brsen\@religious\.com/
-describe HS_BODY_1334		Heinlein Support Spamschutz Body-1334 Spam
-score HS_BODY_1334		8
-
-body HS_BODY_1335		/Do NOT share as acc\.ess has been restricted for VIP users only\./
-describe HS_BODY_1335		Heinlein Support Spamschutz Body-1335 spam
-score HS_BODY_1335		8
-
-body HS_BODY_1336		/http\:\/\/s8m2\.goldbar\.net\/l\/nyh2axwcxfax966k5hnf\/3fa7766/
-describe HS_BODY_1336		Heinlein Support Spamschutz Body-1336 spam
-score HS_BODY_1336		8
-
-body HS_BODY_1337		/Address\:No\.60 Wangjiang East Road\, Hefei\, AnHui P\.R\.China/
-describe HS_BODY_1337		Heinlein Support Spamschutz Body-1337 Spam
-score HS_BODY_1337		8
-
-body HS_BODY_1338		/http\:\/\/.*\/link\.htm/
-describe HS_BODY_1338		Heinlein Support Spamschutz Body-1338 
-score HS_BODY_1338		1
-
-body HS_BODY_1339		/http\:\/\/s8m2\.goldbar\.net\/l\/.*\/3fa7766/
-describe HS_BODY_1339		Heinlein Support Spamschutz Body-1339 Spam
-score HS_BODY_1339		8
-
-body HS_BODY_1340		/grid.lamost.org\/AAABBB\/sparkade\/index.html/
-describe HS_BODY_1340		Heinlein Support Spamschutz Body-1340 Phishing
-score HS_BODY_1340		8
-
-body HS_BODY_1341		/http:\/\/xyfs520.com\/woop/
-describe HS_BODY_1341		Heinlein Support Spamschutz Body-1341 Phishing
-score HS_BODY_1341		8
-
-body HS_BODY_1342		/http\:\/\/www.krspace.com\//
-describe HS_BODY_1342		Heinlein Support Spamschutz Body-1342 Spam
-score HS_BODY_1342		5
-
-body HS_BODY_1343		/atlantictouristic\@gmail.com/
-describe HS_BODY_1343		Heinlein Support Spamschutz Body-1343 Spam
-score HS_BODY_1343		5
-
-body HS_BODY_1344		/www.maldivessunnyisles.com/
-describe HS_BODY_1344		Heinlein Support Spamschutz Body-1344 Spam
-score HS_BODY_1344		5
-
-body HS_BODY_1345		/http\:\/\/idapple-secureid/
-describe HS_BODY_1345		Heinlein Support Spamschutz Body-1345 Phishing
-score HS_BODY_1345		8
-
-body HS_BODY_1346		/http\:\/\/www.olamails.biz/
-describe HS_BODY_1346		Heinlein Support Spamschutz Body-1346 Spam
-score HS_BODY_1346		8
-
-body HS_BODY_1347		/http\:\/\/tinyurl.com\/o3tujy4/
-describe HS_BODY_1347		Heinlein Support Spamschutz Body-1347 Spam
-score HS_BODY_1347		8
-
-body HS_BODY_1348		/http\:\/\/www.b-o-ra.com\/video/
-describe HS_BODY_1348		Heinlein Support Spamschutz Body-1348 Spam
-score HS_BODY_1348		5
-
-body HS_BODY_1349		/http\:\/\/www.heritagemails.com\//
-describe HS_BODY_1349		Heinlein Support Spamschutz Body-1349 Spam
-score HS_BODY_1349		8
-
-body HS_BODY_1350		/http\:\/\/www.no-punkte.com\//
-describe HS_BODY_1350		Heinlein Support Spamschutz Body-1350 Spam
-score HS_BODY_1350		5
-
-body HS_BODY_1351		/http\:\/\/apog.co\/5ZE/
-describe HS_BODY_1351		Heinlein Support Spamschutz Body-1351 Spam
-score HS_BODY_1351		8
-
-body HS_BODY_1352		/binorotrader.com/
-describe HS_BODY_1352		Heinlein Support Spamschutz Body-1352 Spam
-score HS_BODY_1352		5
-
-body HS_BODY_1353		/http\:\/\/\%7B\%7Bdn\%7D\%7D/
-describe HS_BODY_1353		Heinlein Support Spamschutz Body-1353 Spam
-score HS_BODY_1353		8
-
-body HS_BODY_1354		/http\:\/\/www.\{\{dn\}\}.com\//
-describe HS_BODY_1354		Heinlein Support Spamschutz Body-1354 Spam
-score HS_BODY_1354		8
-
-body HS_BODY_1355		/http\:\/\/www.karrierejournalde.net\//
-describe HS_BODY_1355		Heinlein Support Spamschutz Body-1355 Spam
-score HS_BODY_1355		8
-
-body HS_BODY_1356		/http\:\/\/qlix.tk\/p2Jur/
-describe HS_BODY_1356		Heinlein Support Spamschutz Body-1356 Spam
-score HS_BODY_1356		8
-
-body HS_BODY_1357		/http\:\/\/www.s1-mcrm.net\//
-describe HS_BODY_1357		Heinlein Support Spamschutz Body-1357 Spam
-score HS_BODY_1357		8
-
-body HS_BODY_1358		/http\:\/\/tinyurl.com\/lpdrolb/
-describe HS_BODY_1358		Heinlein Support Spamschutz Body-1358 Spam
-score HS_BODY_1358		8
-
-body HS_BODY_1359		/http\:\/\/tinyurl.com\/opmuf6k/
-describe HS_BODY_1359		Heinlein Support Spamschutz Body-1359 Spam
-score HS_BODY_1359		8
-
-body HS_BODY_1360		/http\:\/\/bit.ly\/1Q9RhEE/
-describe HS_BODY_1360		Heinlein Support Spamschutz Body-1360 Spam
-score HS_BODY_1360		8
-
-body HS_BODY_1361		/http\:\/\/www.marketingmagic.in\//
-describe HS_BODY_1361		Heinlein Support Spamschutz Body-1361 Spam
-score HS_BODY_1361		8
-
-body HS_BODY_1362		/http\:\/\/change-advertising.org/
-describe HS_BODY_1362		Heinlein Support Spamschutz Body-1362 Spam
-score HS_BODY_1362		8
-
-body HS_BODY_1363		/http\:\/\/jumpingmaillist.biz\//
-describe HS_BODY_1363		Heinlein Support Spamschutz Body-1363 Spam
-score HS_BODY_1363		8
-
-body HS_BODY_1364		/http\:\/\/port-maillist.biz\//
-describe HS_BODY_1364		Heinlein Support Spamschutz Body-1364 Spam
-score HS_BODY_1364		8
-
-body HS_BODY_1365		/http\:\/\/tinyurl.com\/pmfgoss/
-describe HS_BODY_1365		Heinlein Support Spamschutz Body-1365 Spam
-score HS_BODY_1365		8
-
-body HS_BODY_1366		/http\:\/\/tinyurl.com\/p9k4jyg/
-describe HS_BODY_1366		Heinlein Support Spamschutz Body-1366 Spam
-score HS_BODY_1366		8
-
-body HS_BODY_1367		/http\:\/\/dispatchbroadcasting.org\//
-describe HS_BODY_1367		Heinlein Support Spamschutz Body-1367 Spam
-score HS_BODY_1367		5
-
-body HS_BODY_1368		/martin.buma\@outlook.com/
-describe HS_BODY_1368		Heinlein Support Spamschutz Body-1368 Spam
-score HS_BODY_1368		5
-
-body HS_BODY_1369		/rediff.com/
-describe HS_BODY_1369		Heinlein Support Spamschutz Body-1369 Spam
-score HS_BODY_1369		5
-
-body HS_BODY_1370		/http\:\/\/channel5bd.com\/pass\/sparkade\/index.html/
-describe HS_BODY_1370		Heinlein Support Spamschutz Body-1370 Phishing
-score HS_BODY_1370		8
-
-body HS_BODY_1371		/http\:\/\/channel5bd.com/
-describe HS_BODY_1371		Heinlein Support Spamschutz Body-1371 Phishing
-score HS_BODY_1371		8
-
-body HS_BODY_1373		/skyfinance0\@gmail.com/
-describe HS_BODY_1373		Heinlein Support Spamschutz Body-1373 Spam
-score HS_BODY_1373		8
-
-body HS_BODY_1374		/david\@dadli.com/
-describe HS_BODY_1374		Heinlein Support Spamschutz Body-1374 Spam
-score HS_BODY_1374		5
-
-body HS_BODY_1375		/info\@onlineranking.net/
-describe HS_BODY_1375		Heinlein Support Spamschutz Body-1375 Spam
-score HS_BODY_1375		5
-
-body HS_BODY_1376		/biddsmanager.com/
-describe HS_BODY_1376		Heinlein Support Spamschutz Body-1376 Spam
-score HS_BODY_1376		5
-
-body HS_BODY_1377		/extrabids.net/
-describe HS_BODY_1377		Heinlein Support Spamschutz Body-1377 Spam
-score HS_BODY_1377		5
-
-body HS_BODY_1378		/insidethecash.com/
-describe HS_BODY_1378		Heinlein Support Spamschutz Body-1378 Spam
-score HS_BODY_1378		8
-
-body HS_BODY_1379		/http\:\/\/logo4sell.com\/wp-content\/theme\/wlk\/sparkde\/index.html/
-describe HS_BODY_1379		Heinlein Support Spamschutz Body-1379 Phishing
-score HS_BODY_1379		8
-
-body HS_BODY_1380		/Um weiterhin diesen Vorteil zu nutzen, bitten wir Sie Daten auf den folgenden Link/
-describe HS_BODY_1380		Heinlein Support Spamschutz Body-1380 Phishing
-score HS_BODY_1380		8
-
-body HS_BODY_1382		/http\:\/\/www.pavpall.ga\//
-describe HS_BODY_1382		Heinlein Support Spamschutz Body-1382 Phishing
-score HS_BODY_1382		8
-
-body HS_BODY_1384		/Our company captures 85-90 Percent of the domain names we go after and that is why we are looked at, as one of the number one backordering providers./
-describe HS_BODY_1384		Heinlein Support Spamschutz Body-1384 SPAM
-score HS_BODY_1384		9
-
-body HS_BODY_1385		/Notice to Appear/
-describe HS_BODY_1385		Heinlein Support Spamschutz Body-1385 Malware
-score HS_BODY_1385		5
-
-body HS_BODY_1386		/Our company captures 85-90 Percent of the domain names,  we go after and that is why we are looked at, as one of the number one backordering providers./
-describe HS_BODY_1386		Heinlein Support Spamschutz Body-1386 SPAM
-score HS_BODY_1386		9
-
-body HS_BODY_1387		/Achtung\: Zugriff auf Ihr Online-Konto läuft kurz/
-describe HS_BODY_1387		Heinlein Support Spamschutz Body-1387 Phishing
-score HS_BODY_1387		8
-
-body HS_BODY_1388		/quicktrack.ecsv4.com/
-describe HS_BODY_1388		Heinlein Support Spamschutz Body-1388 Spam
-score HS_BODY_1388		8
-
-body HS_BODY_1389		/Ich bin eine besondere finanzielle, biete ich die Finanzierung/
-describe HS_BODY_1389		Heinlein Support Spamschutz Body-1389 Spam
-score HS_BODY_1389		8
-
-body HS_BODY_1390		/I have a proposal for you with a value of One Hundred and Sixteen Million/
-describe HS_BODY_1390		Heinlein Support Spamschutz Body-1390 Spam
-score HS_BODY_1390		8
-
-body HS_BODY_1391		/I am dying and I want you to adopt my daughter/
-describe HS_BODY_1391		Heinlein Support Spamschutz Body-1391 Spam
-score HS_BODY_1391		8
-
-body HS_BODY_1392		/Sicherheitsstandarts/
-describe HS_BODY_1392		Heinlein Support Spamschutz Body-1392 Phishing
-score HS_BODY_1392		5
-
-body HS_BODY_1393		/http\:\/\/tehnotop.com.ro\//
-describe HS_BODY_1393		Heinlein Support Spamschutz Body-1393 Phishing
-score HS_BODY_1393		3
-
-body HS_BODY_1394		/de-DE.mod_virtuemart_manufacturer.sys.ini.php/
-describe HS_BODY_1394		Heinlein Support Spamschutz Body-1394 Phishing
-score HS_BODY_1394		5
-
-body HS_BODY_1395		/sparkakse/
-describe HS_BODY_1395		Heinlein Support Spamschutz Body-1395 Phishing
-score HS_BODY_1395		8
-
-body HS_BODY_1396		/sparkase/
-describe HS_BODY_1396		Heinlein Support Spamschutz Body-1396 Phishing
-score HS_BODY_1396		5
-
-body HS_BODY_1397		/http\:\/\/bit\.ly\/1K2b61o/
-describe HS_BODY_1397		Heinlein Support Spamschutz Body-1397 Spam
-score HS_BODY_1397		8
-
-body HS_BODY_1398		/kinggenerator.com/
-describe HS_BODY_1398		Heinlein Support Spamschutz Body-1398 Spam
-score HS_BODY_1398		5
-
-body HS_BODY_1399		/We have an 85-90% success rate in capturing domains for our clients and that is why many clients use us exclusively for their domain backordering needs./
-describe HS_BODY_1399		Heinlein Support Spamschutz Body-1399 SPAM
-score HS_BODY_1399		9
-
-body HS_BODY_1400		/pro-application.com/
-describe HS_BODY_1400		Heinlein Support Spamschutz Body-1400 Spam
-score HS_BODY_1400		5
-
-body HS_BODY_1401		/http:\/\/gforce-marketing.com\/u\//
-describe HS_BODY_1401		Heinlein Support Spamschutz Body-1401 SPAM
-score HS_BODY_1401		9
-
-body HS_BODY_1402		/http\:\/\/nagradibe\.info\/lists\/lt\.php\?id\=3DYhgFCR0GBhgGB1IEVgIE/
-describe HS_BODY_1402		Heinlein Support Spamschutz Body-1402 Spam
-score HS_BODY_1402		8
-
-body HS_BODY_1403		/TREAT AS URGENT UNITED NATIONS ORGANIZATION/
-describe HS_BODY_1403		Heinlein Support Spamschutz Body-1403 Spam
-score HS_BODY_1403		8
-
-body HS_BODY_1404		/You have not paid for driving on a toll road\./
-describe HS_BODY_1404		Heinlein Support Spamschutz Body-1404 Spam
-score HS_BODY_1404		8
-
-body HS_BODY_1405		/Find attached Contact details of m\/t \"LIBERIA\-1\"\/ Manifest/
-describe HS_BODY_1405		Heinlein Support Spamschutz Body-1405 Spam
-score HS_BODY_1405		8
-
-body HS_BODY_1406		/http\:\/\/makinwork.com/
-describe HS_BODY_1406		Heinlein Support Spamschutz Body-1406 Spam
-score HS_BODY_1406		5
-
-body HS_BODY_1407		/sparda-info.com/
-describe HS_BODY_1407		Heinlein Support Spamschutz Body-1407 Phishing
-score HS_BODY_1407		8
-
-body HS_BODY_1408		/stringadvertising.biz/
-describe HS_BODY_1408		Heinlein Support Spamschutz Body-1408 Spam
-score HS_BODY_1408		5
-
-body HS_BODY_1409		/mergesender.net/
-describe HS_BODY_1409		Heinlein Support Spamschutz Body-1409 Spam
-score HS_BODY_1409		5
-
-body HS_BODY_1410		/listemail.biz/
-describe HS_BODY_1410		Heinlein Support Spamschutz Body-1410 Spam
-score HS_BODY_1410		5
-
-body HS_BODY_1411		/gurbhejsrafoundation\@inbox.lv/
-describe HS_BODY_1411		Heinlein Support Spamschutz Body-1411 Spam
-score HS_BODY_1411		5
-
-body HS_BODY_1412		/jumpemail.biz/
-describe HS_BODY_1412		Heinlein Support Spamschutz Body-1412 Spam
-score HS_BODY_1412		8
-
-body HS_BODY_1413		/http\:\/\/www\.replicasbag\.net\/de\/\-c87\//
-describe HS_BODY_1413		Heinlein Support Spamschutz Body-1413 Spam
-score HS_BODY_1413		8
-
-body HS_BODY_1414		/http\:\/\/www\.komsta\-fenster\.de\//
-describe HS_BODY_1414		Heinlein Support Spamschutz Body-1414 Spam
-score HS_BODY_1414		8
-
-body HS_BODY_1415		/http\:\/\/vpmngt\.com\/oahdqeb\/rszehtswvwvtgumz\.yhfmajmtzogtintizijyyt/
-describe HS_BODY_1415		Heinlein Support Spamschutz Body-1415 Spam
-score HS_BODY_1415		8
-
-body HS_BODY_1416		/wir tun Online-Upgrade,/
-describe HS_BODY_1416		Heinlein Support Spamschutz Body-1416 Phishing
-score HS_BODY_1416		8
-
-body HS_BODY_1417		/als ich ein wenig Kind./
-describe HS_BODY_1417		Heinlein Support Spamschutz Body-1417 Spam
-score HS_BODY_1417		5
-
-body HS_BODY_1418		/Du den Kontakt \®\πber DAS DATING herstellen/
-describe HS_BODY_1418		Heinlein Support Spamschutz Body-1418 Spam
-score HS_BODY_1418		5
-
-body HS_BODY_1419		/http\:\/\/news\.mylife\-magazine\.de\/vo\.php\?client\_id\=3D20136\&mid\=3Dca6c412545\=3274fadf9b36ce611d497a\&message\_id\=3D250947\&campagne\_id\=3D789979/
-describe HS_BODY_1419		Heinlein Support Spamschutz Body-1419 Spam
-score HS_BODY_1419		8
-
-body HS_BODY_1422		/http\:\/\/nl.my-check.de\//
-describe HS_BODY_1422		Heinlein Support Spamschutz Body-1422 Spam
-score HS_BODY_1422		5
-
-body HS_BODY_1423		/auevs.kredit.de/
-describe HS_BODY_1423		Heinlein Support Spamschutz Body-1423 Spam
-score HS_BODY_1423		5
-
-body HS_BODY_1424		/optivel AG/
-describe HS_BODY_1424		Heinlein Support Spamschutz Body-1424 Spam
-score HS_BODY_1424		8
-
-body HS_BODY_1425		/http\:\/\/flug-jetzt.com\//
-describe HS_BODY_1425		Heinlein Support Spamschutz Body-1425 Spam
-score HS_BODY_1425		5
-
-body HS_BODY_1426		/fly24.com/
-describe HS_BODY_1426		Heinlein Support Spamschutz Body-1426 Spam
-score HS_BODY_1426		5
-
-body HS_BODY_1427		/DETOXI DRAINE/
-describe HS_BODY_1427		Heinlein Support Spamschutz Body-1427 Spam
-score HS_BODY_1427		8
-
-body HS_BODY_1428		/http\:\/\/trusted\-nutriform\-deutschland\.com/
-describe HS_BODY_1428		Heinlein Support Spamschutz Body-1428 Spam
-score HS_BODY_1428		5
-
-body HS_BODY_1429		/holidayreporter.de.cc/
-describe HS_BODY_1429		Heinlein Support Spamschutz Body-1429 Spam
-score HS_BODY_1429		5
-
-body HS_BODY_1430		/n.=E2=80=89use.=E2=80=89cc/
-describe HS_BODY_1430		Heinlein Support Spamschutz Body-1430 Spam
-score HS_BODY_1430		5
-
-body HS_BODY_1431		/n.use.cc/
-describe HS_BODY_1431		Heinlein Support Spamschutz Body-1431 Spam
-score HS_BODY_1431		5
-
-body HS_BODY_1432		/news.de.cc/
-describe HS_BODY_1432		Heinlein Support Spamschutz Body-1432 Spam
-score HS_BODY_1432		5
-
-body HS_BODY_1433		/We are providing 99\.9\% uptime along with 24x7 quality support/
-describe HS_BODY_1433		Heinlein Support Spamschutz Body-1433 Spam
-score HS_BODY_1433		3
-
-body HS_BODY_1434		/We are also providing VPS and shared hosting/
-describe HS_BODY_1434		Heinlein Support Spamschutz Body-1434 Spam
-score HS_BODY_1434		5
-
-body HS_BODY_1435		/We are also providing V\.P\.S\./
-describe HS_BODY_1435		Heinlein Support Spamschutz Body-1435 Spam
-score HS_BODY_1435		5
-
-body HS_BODY_1436		/my name is Mr Kwasi Opoku/
-describe HS_BODY_1436		Heinlein Support Spamschutz Body-1436 Spam
-score HS_BODY_1436		5
-
-body HS_BODY_1437		/jumpemails.biz/
-describe HS_BODY_1437		Heinlein Support Spamschutz Body-1437 Spam
-score HS_BODY_1437		8
-
-body HS_BODY_1438		/pointbroadcasting.biz/
-describe HS_BODY_1438		Heinlein Support Spamschutz Body-1438 Spam
-score HS_BODY_1438		5
-
-body HS_BODY_1439		/spaceadvertising.biz/
-describe HS_BODY_1439		Heinlein Support Spamschutz Body-1439 Spam
-score HS_BODY_1439		5
-
-body HS_BODY_1440		/best.shopping.cx/
-describe HS_BODY_1440		Heinlein Support Spamschutz Body-1440 Spam
-score HS_BODY_1440		5
-
-body HS_BODY_1441		/x online active AG/
-describe HS_BODY_1441		Heinlein Support Spamschutz Body-1441 Spam
-score HS_BODY_1441		5
-
-body HS_BODY_1442		/http\:\/\/www\.finecartierstore\.fr\/fr\/cartier\-love\-collections\-c\-33\_19\.html/
-describe HS_BODY_1442		Heinlein Support Spamschutz Body-1442 Spam
-score HS_BODY_1442		8
-
-body HS_BODY_1443		/http\:\/\/www\.replicacartierbracelet\.ru\/it\/cartier\-juste\-un\-clou\-bracelet\-replica\-pink\-gold\-b6037715\-at\-wholesale\-price\-p747\//
-describe HS_BODY_1443		Heinlein Support Spamschutz Body-1443 Spam
-score HS_BODY_1443		8
-
-body HS_BODY_1444		/samsung.nightofcontest\@gmail.com/
-describe HS_BODY_1444		Heinlein Support Spamschutz Body-1444 Spam
-score HS_BODY_1444		8
-
-body HS_BODY_1445		/you have won your self;a brand new new Galaxy A8/
-describe HS_BODY_1445		Heinlein Support Spamschutz Body-1445 Spam
-score HS_BODY_1445		5
-
-body HS_BODY_1446		/\/spafk\//
-describe HS_BODY_1446		Heinlein Support Spamschutz Body-1446 Phishing
-score HS_BODY_1446		8
-
-body HS_BODY_1447		/http\:\/\/calendarsite\.co\.uk\/wepp\/wkss\/spafk\/index\.htm/
-describe HS_BODY_1447		Heinlein Support Spamschutz Body-1447 Phishing
-score HS_BODY_1447		8
-
-body HS_BODY_1448		/http\:\/\/kyrali\.com\/remained\.php\?cp/
-describe HS_BODY_1448		Heinlein Support Spamschutz Body-1448 Spam
-score HS_BODY_1448		5
-
-body HS_BODY_1449		/\/sparkde\//
-describe HS_BODY_1449		Heinlein Support Spamschutz Body-1449 Phishing
-score HS_BODY_1449		8
-
-body HS_BODY_1450		/treffperfekt.com/
-describe HS_BODY_1450		Heinlein Support Spamschutz Body-1450 Spam
-score HS_BODY_1450		5
-
-body HS_BODY_1451		/centiplex.com/
-describe HS_BODY_1451		Heinlein Support Spamschutz Body-1451 Spam
-score HS_BODY_1451		5
-
-body HS_BODY_1452		/deutschedomain.com/
-describe HS_BODY_1452		Heinlein Support Spamschutz Body-1452 Spam
-score HS_BODY_1452		5
-
-body HS_BODY_1453		/Sie müssen es sofort zu erneuern/
-describe HS_BODY_1453		Heinlein Support Spamschutz Body-1453 Spam
-score HS_BODY_1453		8
-
-body HS_BODY_1454		/sdf4g\.guidetohealth\.ru/
-describe HS_BODY_1454		Heinlein Support Spamschutz Body-1454 SPAM
-score HS_BODY_1454		8
-
-body HS_BODY_1455		/http\%3A\%2F\%2Feb\.by\%2FTRUR\&sa=D\&sntz=1\&usg=AFQjCNFA70HfjNYQ7GUFDKsGejmbUEeFhA/
-describe HS_BODY_1455		Heinlein Support Spamschutz Body-1455 Spam
-score HS_BODY_1455		8
-
-body HS_BODY_1456		/bildnachricht-handyzustellung\.info/
-describe HS_BODY_1456		Heinlein Support Spamschutz Body-1456 Phishing
-score HS_BODY_1456		8
-
-body HS_BODY_1457		/francis\.cave\@\@hotmail\.com/
-describe HS_BODY_1457		Heinlein Support Spamschutz Body-1457 Spam
-score HS_BODY_1457		8
-
-body HS_BODY_1459		/\"Ich will jetzt das Facebook\-Company\-Coaching\"/
-describe HS_BODY_1459		Heinlein Support Spamschutz Body-1459 Spam
-score HS_BODY_1459		8
-
-body HS_BODY_1462		/NEW MESSAGE\, PLEASE READ http\:\/\/labdigital\.cl\/received\.php/
-describe HS_BODY_1462		Heinlein Support Spamschutz Body-1462 Spam
-score HS_BODY_1462		8
-
-body HS_BODY_1463		/Ich bin bereit\, Ihnen als Entsch\ädigung für Ihre M\ühe \/ Eingang nach der erfolgreichen \Übertragung meiner ererbten Geld auf Ihr angegebenes Konto bieten 20\% der Gesamtsumme\./
-describe HS_BODY_1463		Heinlein Support Spamschutz Body-1463 SPAM
-score HS_BODY_1463		5
-
-body HS_BODY_1464		/projeavcisi\.com/
-describe HS_BODY_1464		Heinlein Support Spamschutz Body-1464 
-score HS_BODY_1464		3
-
-body HS_BODY_1465		/asking for system that WORKS/
-describe HS_BODY_1465		Heinlein Support Spamschutz Body-1465 
-score HS_BODY_1465		4
-
-body HS_BODY_1466		/bintinitiative\.com/
-describe HS_BODY_1466		Heinlein Support Spamschutz Body-1466 
-score HS_BODY_1466		4
-
-body HS_BODY_1467		/This is not push button silver bullet type/
-describe HS_BODY_1467		Heinlein Support Spamschutz Body-1467 
-score HS_BODY_1467		5
-
-body HS_BODY_1468		/doubled but more than QUADRUPLED/
-describe HS_BODY_1468		Heinlein Support Spamschutz Body-1468 
-score HS_BODY_1468		5
-
-body HS_BODY_1469		/D-D-D-D-D-D DUPLICATOR/
-describe HS_BODY_1469		Heinlein Support Spamschutz Body-1469 
-score HS_BODY_1469		7
-
-body HS_BODY_1470		/C0UP0N will end in/
-describe HS_BODY_1470		Heinlein Support Spamschutz Body-1470 
-score HS_BODY_1470		3
-
-body HS_BODY_1471		/ymlp114\.com/
-describe HS_BODY_1471		Heinlein Support Spamschutz Body-1471 
-score HS_BODY_1471		2
-
-body HS_BODY_1472		/MillionDollarDuplicator/
-describe HS_BODY_1472		Heinlein Support Spamschutz Body-1472 
-score HS_BODY_1472		4
-
-body HS_BODY_1473		/gogetcash\.net/
-describe HS_BODY_1473		Heinlein Support Spamschutz Body-1473 
-score HS_BODY_1473		3
-
-body HS_BODY_1474		/sales\@kinhungzheng\.xx\.tn/
-describe HS_BODY_1474		Heinlein Support Spamschutz Body-1474 Spam
-score HS_BODY_1474		8
-
-body HS_BODY_1475		/https\:\/\/box1059\.bluehost\.com\/\~lukasper\/sass\/components\/date\_picker\//
-describe HS_BODY_1475		Heinlein Support Spamschutz Body-1475 Spam
-score HS_BODY_1475		8
-
-body HS_BODY_1476		/http\:\/\/sinergia88\.com\/wp\-content\/amd\/googledocuments\.htm/
-describe HS_BODY_1476		Heinlein Support Spamschutz Body-1476 Spam
-score HS_BODY_1476		8
-
-body HS_BODY_1477		/https\:\/\/formcrafts\.com\/a\/11418/
-describe HS_BODY_1477		Heinlein Support Spamschutz Body-1477 Spam
-score HS_BODY_1477		8
-
-body HS_BODY_1478		/VICKEM Batana Co\.\, Ltd\./
-describe HS_BODY_1478		Heinlein Support Spamschutz Body-1478 Spam
-score HS_BODY_1478		8
-
-body HS_BODY_1480		/http\:\/\/stmarysmd\.net\/A11\/post\/index\.html\//
-describe HS_BODY_1480		Heinlein Support Spamschutz Body-1480 Phishing
-score HS_BODY_1480		8
-
-body HS_BODY_1481		/http\:\/\/webpinacces\.aircus\.com\//
-describe HS_BODY_1481		Heinlein Support Spamschutz Body-1481 Phishing
-score HS_BODY_1481		8
-
-body HS_BODY_1482		/MAILBOX RENEWAL ALERT!/
-describe HS_BODY_1482		Heinlein Support Spamschutz Body-1482 Phising MBO
-score HS_BODY_1482		15
-
-body HS_BODY_1483		/Mailbox Account Security Team./
-describe HS_BODY_1483		Heinlein Support Spamschutz Body-1483 phishing
-score HS_BODY_1483		15
-
-body HS_BODY_1484		/Kindly click on the link below to validate your Mailbox account now /
-describe HS_BODY_1484		Heinlein Support Spamschutz Body-1484 Phishing
-score HS_BODY_1484		15
-
-body HS_BODY_1485		/Thanks for choosing Interfax\!/
-describe HS_BODY_1485		Heinlein Support Spamschutz Body-1485 Spam
-score HS_BODY_1485		8
-
-body HS_BODY_1486		/in Bezug auf E-Mail-Marketing-und Datenschutzgesetze in Europa.Wenn man/
-describe HS_BODY_1486		Heinlein Support Spamschutz Body-1486 Spam
-score HS_BODY_1486		5
-
-body HS_BODY_1487		/dass diese E-Mail Ihnen Fehlerhaft gesendet wurde, so informieren Sie un/
-describe HS_BODY_1487		Heinlein Support Spamschutz Body-1487 Spam
-score HS_BODY_1487		1
-
-body HS_BODY_1489		/http\:\/\/www\.shitalyhappens\.com\/which\.php\?9k134/
-describe HS_BODY_1489		Heinlein Support Spamschutz Body-1489 Spam
-score HS_BODY_1489		8
-
-body HS_BODY_1490		/wonglee20015\@hotmail\.com/
-describe HS_BODY_1490		Heinlein Support Spamschutz Body-1490 Spam
-score HS_BODY_1490		8
-
-body HS_BODY_1491		/http\:\/\/kpialerts\.com\/jss\/mailupgradeOutlook\%20Web\/index\.html/
-describe HS_BODY_1491		Heinlein Support Spamschutz Body-1491 Phishing
-score HS_BODY_1491		8
-
-body HS_BODY_1492		/http\:\/\/vidrioseguridad\.com\/info\.php\?f\=45/
-describe HS_BODY_1492		Heinlein Support Spamschutz Body-1492 Spam
-score HS_BODY_1492		8
-
-body HS_BODY_1493		/http:\/\/(server.winnerfaster.com|www.sharedbread.com|www.healthaddress.net|geekutopia.org|consumersocial.org|top10bluray.com|e-onlinecorrespondence.com|iem32.smtp.com|armstrusts.com|okdone.net|gogetcash.net)/
-describe HS_BODY_1493		Heinlein Support Spamschutz Body-1493 Spam
-score HS_BODY_1493		3
-
-body HS_BODY_1494		/http:\/\/dontone.org/
-describe HS_BODY_1494		Heinlein Support Spamschutz Body-1494 Spam
-score HS_BODY_1494		3
-
-body HS_BODY_1495		/http\:\/\/tracker\.mcontact\.pro/
-describe HS_BODY_1495		Heinlein Support Spamschutz Body-1495 Spam
-score HS_BODY_1495		8
-
-body HS_BODY_1496		/http\:\/\/movesla\.com\/wpss\/plz\/spar\/index\.html/
-describe HS_BODY_1496		Heinlein Support Spamschutz Body-1496 Phishing
-score HS_BODY_1496		8
-
-body HS_BODY_1497		/Sie werden anschlie.*end weitergeleitet und haben dort die M.*glichkeit die Zahlung bis kostenlos zu stornieren./
-describe HS_BODY_1497		Heinlein Support Spamschutz Body-1497 
-score HS_BODY_1497		10
-
-body HS_BODY_1498		/Die Stonierung ist bis zum/
-describe HS_BODY_1498		Heinlein Support Spamschutz Body-1498 
-score HS_BODY_1498		3
-
-body HS_BODY_1499		/http:..paypal.com-supports\.com/
-describe HS_BODY_1499		Heinlein Support Spamschutz Body-1499 Paypal-Phishing
-score HS_BODY_1499		5
-
-body HS_BODY_1500		/http\:\/\/www\.1cvm\.ru\/language\/de\-DE\/de\-DE\.mod\_virtue\=mart\_search\.ini\.php/
-describe HS_BODY_1500		Heinlein Support Spamschutz Body-1500 Phishing
-score HS_BODY_1500		8
-
-body HS_BODY_1501		/Willkommen bei FANNIE MAE FINANCIAL erhalten sofortiges Bargeld Darlehen/
-describe HS_BODY_1501		Heinlein Support Spamschutz Body-1501 Spam
-score HS_BODY_1501		5
-
-body HS_BODY_1502		/Immer stecken auf der Suche nach einem Darlehen kann stressig\, sein/
-describe HS_BODY_1502		Heinlein Support Spamschutz Body-1502 Spam
-score HS_BODY_1502		5
-
-body HS_BODY_1503		/Ich bin total Schock zu entdecken\, dieses Konto war DORMANT/
-describe HS_BODY_1503		Heinlein Support Spamschutz Body-1503 SPAM
-score HS_BODY_1503		5
-
-body HS_BODY_1504		/Der Verstorbene Kontostand Summe ist \$31,000,000 USD/
-describe HS_BODY_1504		Heinlein Support Spamschutz Body-1504 Spam
-score HS_BODY_1504		5
-
-body HS_BODY_1505		/http\:\/\/theperthrealestateguy.petertaliangis.com\/possible.php\?zu/
-describe HS_BODY_1505		Heinlein Support Spamschutz Body-1505 Spam
-score HS_BODY_1505		8
-
-body HS_BODY_1506		/New message, please read .*http:.*secret.php/
-describe HS_BODY_1506		Heinlein Support Spamschutz Body-1506 Cryptolocker
-score HS_BODY_1506		5
-
-body HS_BODY_1507		/http\:\/\/www\.takecareskin\.com\/*/
-describe HS_BODY_1507		Heinlein Support Spamschutz Body-1507 Spam
-score HS_BODY_1507		8
-
-body HS_BODY_1508		/http\:\/\/www\.fusionwhiz\.com\/*/
-describe HS_BODY_1508		Heinlein Support Spamschutz Body-1508 Spam
-score HS_BODY_1508		8
-
-body HS_BODY_1509		/http\:\/\/www\.fishvitamins\.com\/*/
-describe HS_BODY_1509		Heinlein Support Spamschutz Body-1509 Spam
-score HS_BODY_1509		8
-
-body HS_BODY_1510		/http\:\/\/www\.tododay\.com\/*/
-describe HS_BODY_1510		Heinlein Support Spamschutz Body-1510 Spam
-score HS_BODY_1510		8
-
-body HS_BODY_1511		/burrenblog.com/
-describe HS_BODY_1511		Heinlein Support Spamschutz Body-1511 Wird beworben
-score HS_BODY_1511		5
-
-body HS_BODY_1512		/Gibt es einen ernsthafter Vorschlag zu einer Haft Konto im Ecobank/
-describe HS_BODY_1512		Heinlein Support Spamschutz Body-1512 Spam
-score HS_BODY_1512		8
-
-body HS_BODY_1513		/www.hausalarm.org/
-describe HS_BODY_1513		Heinlein Support Spamschutz Body-1513 Spam
-score HS_BODY_1513		5
-
-body HS_BODY_1514		/Wir sind zuverlässige Darlehen Unternehmen, geben wir Kredite zu 3 % Zins für jede Person und Unternehmen/
-describe HS_BODY_1514		Heinlein Support Spamschutz Body-1514 SPAM
-score HS_BODY_1514		5
-
-body HS_BODY_1516		/54397 Beaverton, OR 57008/
-describe HS_BODY_1516		Heinlein Support Spamschutz Body-1516 SPAM
-score HS_BODY_1516		8
-
-body HS_BODY_1517		/http\:\/\/www\.mimipower\.com\/iem2\/*/
-describe HS_BODY_1517		Heinlein Support Spamschutz Body-1517 spam
-score HS_BODY_1517		5
-
-body HS_BODY_1518		/http\:\/\/losmejoresdescuentos\.net\/*/
-describe HS_BODY_1518		Heinlein Support Spamschutz Body-1518 spam
-score HS_BODY_1518		8
-
-body HS_BODY_1519		/http\:\/\/eduportaldemo\.com\/admin\/spaskas\/index\.html/
-describe HS_BODY_1519		Heinlein Support Spamschutz Body-1519 Spam
-score HS_BODY_1519		8
-
-body HS_BODY_1520		/.*newsletters.active.com.*/
-describe HS_BODY_1520		Heinlein Support Spamschutz Body-1520 Spam
-score HS_BODY_1520		8
-
-body HS_BODY_1521		/.*paypal.de-gate003.pw.*/
-describe HS_BODY_1521		Heinlein Support Spamschutz Body-1521 Phishing
-score HS_BODY_1521		8
-
-body HS_BODY_1522		/\=D6ffnen Sie den Anhang f\=FCr weitere Informationen \=FCber Ihre Lotterie/
-describe HS_BODY_1522		Heinlein Support Spamschutz Body-1522 Spam
-score HS_BODY_1522		8
-
-body HS_BODY_1523		/.*ticktag.es.*/
-describe HS_BODY_1523		Heinlein Support Spamschutz Body-1523 Spam
-score HS_BODY_1523		8
-
-body HS_BODY_1525		/http\:\/\/b54\.in\/agk1/
-describe HS_BODY_1525		Heinlein Support Spamschutz Body-1525 Spam
-score HS_BODY_1525		8
-
-body HS_BODY_1526		/.*v2mx2.pw.*/
-describe HS_BODY_1526		Heinlein Support Spamschutz Body-1526 Spam
-score HS_BODY_1526		8
-
-body HS_BODY_1527		/.*bp1q7.xyz.*/
-describe HS_BODY_1527		Heinlein Support Spamschutz Body-1527 Spam
-score HS_BODY_1527		8
-
-body HS_BODY_1528		/.*xln27.pw.*/
-describe HS_BODY_1528		Heinlein Support Spamschutz Body-1528 Spam
-score HS_BODY_1528		8
-
-body HS_BODY_1529		/.*rezeptfrei24internet.com.de.*/
-describe HS_BODY_1529		Heinlein Support Spamschutz Body-1529 Spam
-score HS_BODY_1529		8
-
-body HS_BODY_1530		/.*klickensiejetzt.com.de.*/
-describe HS_BODY_1530		Heinlein Support Spamschutz Body-1530 Spam
-score HS_BODY_1530		8
-
-body HS_BODY_1531		/.*tabsrezeptfrei.xyz.*/
-describe HS_BODY_1531		Heinlein Support Spamschutz Body-1531 Spam
-score HS_BODY_1531		8
-
-body HS_BODY_1532		/.*diskretpotenzmittel.com.de.*/
-describe HS_BODY_1532		Heinlein Support Spamschutz Body-1532 Spam
-score HS_BODY_1532		8
-
-body HS_BODY_1533		/.*potenzmittelkaufen.xyz.*/
-describe HS_BODY_1533		Heinlein Support Spamschutz Body-1533 Spam
-score HS_BODY_1533		8
-
-body HS_BODY_1534		/http\:\/\/www\.network\-jp\.com\/*/
-describe HS_BODY_1534		Heinlein Support Spamschutz Body-1534 Spam
-score HS_BODY_1534		8
-
-body HS_BODY_1535		/.*artest light DIY*/
-describe HS_BODY_1535		Heinlein Support Spamschutz Body-1535 Spam
-score HS_BODY_1535		3
-
-body HS_BODY_1536		/.*paypal.de-group.*/
-describe HS_BODY_1536		Heinlein Support Spamschutz Body-1536 
-score HS_BODY_1536		8
-
-body HS_BODY_1537		/.*iop-server\.com\/usr/
-describe HS_BODY_1537		Heinlein Support Spamschutz Body-1537 
-score HS_BODY_1537		8
-
-body HS_BODY_1538		/http\:\/\/ns1\.amazon-amazonservice\.com.*/
-describe HS_BODY_1538		Heinlein Support Spamschutz Body-1538 
-score HS_BODY_1538		8
-
-body HS_BODY_1539		/http\:\/\/efficient\-sent\.net.*/
-describe HS_BODY_1539		Heinlein Support Spamschutz Body-1539 
-score HS_BODY_1539		5
-
-body HS_BODY_1540		/amazon\..*\.cf/
-describe HS_BODY_1540		Heinlein Support Spamschutz Body-1540 
-score HS_BODY_1540		5
-
-body HS_BODY_1541		/Best.*tigung ihres Amazon-Kontos n.*tig/
-describe HS_BODY_1541		Heinlein Support Spamschutz Body-1541 
-score HS_BODY_1541		2
-
-body HS_BODY_1542		/diese E-Mail, da wir ihr Nutzerkonto sonst m.*glicherweise deaktivier/
-describe HS_BODY_1542		Heinlein Support Spamschutz Body-1542 
-score HS_BODY_1542		4
-
-body HS_BODY_1543		/Ihre kostenlose Platz behaupten/
-describe HS_BODY_1543		Heinlein Support Spamschutz Body-1543 
-score HS_BODY_1543		5
-
-body HS_BODY_1544		/wie viel Sie verpasst haben zu beenden./
-describe HS_BODY_1544		Heinlein Support Spamschutz Body-1544 
-score HS_BODY_1544		5
-
-body HS_BODY_1545		/http:\/\/marcodavinci\.net/
-describe HS_BODY_1545		Heinlein Support Spamschutz Body-1545 
-score HS_BODY_1545		8
-
-body HS_BODY_1546		/Wenn Sie diese Empfehlungen nicht erhalten m.*chten: Mich entfernen/
-describe HS_BODY_1546		Heinlein Support Spamschutz Body-1546 
-score HS_BODY_1546		5
-
-body HS_BODY_1547		/per Einschreiben mit Verfolgungsnimmer/
-describe HS_BODY_1547		Heinlein Support Spamschutz Body-1547 
-score HS_BODY_1547		5
-
-body HS_BODY_1548		/The specified sum of .* was paid and now your order is being processed/
-describe HS_BODY_1548		Heinlein Support Spamschutz Body-1548 
-score HS_BODY_1548		5
-
-body HS_BODY_1549		/http:\/\/www\.profitstrategie\.com/
-describe HS_BODY_1549		Heinlein Support Spamschutz Body-1549 
-score HS_BODY_1549		5
-
-body HS_BODY_1550		/http:\/\/webmailrapidresponse\.xyz/
-describe HS_BODY_1550		Heinlein Support Spamschutz Body-1550 
-score HS_BODY_1550		3
-
-body HS_BODY_1551		/dass diese E-Mail Ihnen Fehlerhaft gesendet wurde/
-describe HS_BODY_1551		Heinlein Support Spamschutz Body-1551 
-score HS_BODY_1551		4
-
-body HS_BODY_1552		/Non Skid, Non Slip Floor Coating/
-describe HS_BODY_1552		Heinlein Support Spamschutz Body-1552 
-score HS_BODY_1552		5
-
-body HS_BODY_1553		/Garage Floor Coating from the Pros/
-describe HS_BODY_1553		Heinlein Support Spamschutz Body-1553 
-score HS_BODY_1553		5
-
-body HS_BODY_1554		/Diese E-Mail wurde gesendet an .*, unter Beachtung/
-describe HS_BODY_1554		Heinlein Support Spamschutz Body-1554 
-score HS_BODY_1554		3
-
-body HS_BODY_1555		/Ihre Online- E-MAIL , klicken Sie bitte den unten stehenden Link sofort zu/
-describe HS_BODY_1555		Heinlein Support Spamschutz Body-1555 
-score HS_BODY_1555		5
-
-body HS_BODY_1556		/verweigert 30Minuten vor/
-describe HS_BODY_1556		Heinlein Support Spamschutz Body-1556 
-score HS_BODY_1556		5
-
-body HS_BODY_1557		/Sehr geehrter Kunde T-online.de/
-describe HS_BODY_1557		Heinlein Support Spamschutz Body-1557 
-score HS_BODY_1557		5
-
-body HS_BODY_1558		/;r eine Web-basierte Version/
-describe HS_BODY_1558		Heinlein Support Spamschutz Body-1558 
-score HS_BODY_1558		2
-
-body HS_BODY_1559		/server.*\.zmaximum\.ru/
-describe HS_BODY_1559		Heinlein Support Spamschutz Body-1559 
-score HS_BODY_1559		5
-
-body HS_BODY_1560		/filename="Complaint_.*7z"/
-describe HS_BODY_1560		Heinlein Support Spamschutz Body-1560 
-score HS_BODY_1560		4
-
-body HS_BODY_1561		/Benedikt Sundler GmbH mailt Ihnen/
-describe HS_BODY_1561		Heinlein Support Spamschutz Body-1561 
-score HS_BODY_1561		5
-
-body HS_BODY_1562		/http:\/\/www\.profitmethodik\.xyz/
-describe HS_BODY_1562		Heinlein Support Spamschutz Body-1562 
-score HS_BODY_1562		5
-
-body HS_BODY_1563		/Microsoft Exchange Server Will Be Shut Down/
-describe HS_BODY_1563		Heinlein Support Spamschutz Body-1563 
-score HS_BODY_1563		5
-
-body HS_BODY_1564		/Zugang zu Ihrem Online-Konto in Kurze abläuft/
-describe HS_BODY_1564		Heinlein Support Spamschutz Body-1564 Phishing
-score HS_BODY_1564		5
-
-body HS_BODY_1565		/http:\/\/www\.net\-dating\-concept\.com/
-describe HS_BODY_1565		Heinlein Support Spamschutz Body-1565 
-score HS_BODY_1565		5
-
-body HS_BODY_1566		/http:\/\/info\.annas\-tv-beitrag\.com/
-describe HS_BODY_1566		Heinlein Support Spamschutz Body-1566 
-score HS_BODY_1566		5
-
-body HS_BODY_1567		/Ihr Sparkasse Kunden service\./
-describe HS_BODY_1567		Heinlein Support Spamschutz Body-1567 
-score HS_BODY_1567		5
-
-body HS_BODY_1569		/duckfishelectronics/
-describe HS_BODY_1569		Heinlein Support Spamschutz Body-1569 Spam
-score HS_BODY_1569		6
-
-body HS_BODY_1570		/DUCKFISH ELECTRONICS LLC/
-describe HS_BODY_1570		Heinlein Support Spamschutz Body-1570 Spam
-score HS_BODY_1570		6
-
-body HS_BODY_1571		/http:\/\/electrorabet\.ir\/2/
-describe HS_BODY_1571		Heinlein Support Spamschutz Body-1571 
-score HS_BODY_1571		5
-
-body HS_BODY_1572		/https\:\/\/youtu\.be\/F7hyE1IF\_QY/
-describe HS_BODY_1572		Heinlein Support Spamschutz Body-1572 Spam
-score HS_BODY_1572		8
-
-body HS_BODY_1573		/Inliner Build Version 4380b7741bb759d6cb997545f3/
-describe HS_BODY_1573		Heinlein Support Spamschutz Body-1573 Spam
-score HS_BODY_1573		6
-
-body HS_BODY_1575		/diesem Grund folgende Zahlung zu stornieren. Um den dafür nötigen/
-describe HS_BODY_1575		Heinlein Support Spamschutz Body-1575 Paypal-Spam
-score HS_BODY_1575		2
-
-body HS_BODY_1576		/festgestellt. Diese könnte auf Geldwäsche oder auf einen Zugriff/
-describe HS_BODY_1576		Heinlein Support Spamschutz Body-1576 Paypal-Spam
-score HS_BODY_1576		2
-
-body HS_BODY_1577		/Kontobewegungen hat unser System eine auffällige Transaktion/
-describe HS_BODY_1577		Heinlein Support Spamschutz Body-1577 Paypal-Spam
-score HS_BODY_1577		2
-
-body HS_BODY_1578		/binnen 3 Tagen bestätigen können, sehen wir uns gezwungen Ihr/
-describe HS_BODY_1578		Heinlein Support Spamschutz Body-1578 
-score HS_BODY_1578		2
-
-body HS_BODY_1579		/http:\/\/www.paypal.de-26GAM5022T236.com-secu.=.re/
-describe HS_BODY_1579		Heinlein Support Spamschutz Body-1579 
-score HS_BODY_1579		5
-
-body HS_BODY_1580		/VictoriaMilan\.de/
-describe HS_BODY_1580		Heinlein Support Spamschutz Body-1580 Spam
-score HS_BODY_1580		8
-
-body HS_BODY_1581		/VictoriaMilan\.com/
-describe HS_BODY_1581		Heinlein Support Spamschutz Body-1581 SPam
-score HS_BODY_1581		5
-
-body HS_BODY_1582		/Subject\: FELICITATION\!/
-describe HS_BODY_1582		Heinlein Support Spamschutz Body-1582 
-score HS_BODY_1582		5
-
-body HS_BODY_1583		/www\.alcotesters\.net/
-describe HS_BODY_1583		Heinlein Support Spamschutz Body-1583 
-score HS_BODY_1583		4
-
-body HS_BODY_1584		/style="TEXT-DECORATION: none" href="http:\/\/ek2.net\/Rt1WX" target=_blank/
-describe HS_BODY_1584		Heinlein Support Spamschutz Body-1584 Phishing
-score HS_BODY_1584		8.5
-
-body HS_BODY_1587		/Trusted Funeral Plans/
-describe HS_BODY_1587		Heinlein Support Spamschutz Body-1587 
-score HS_BODY_1587		5
-
-body HS_BODY_1588		/http:\/\/www\.trustedfuneralplans\.co\.uk/
-describe HS_BODY_1588		Heinlein Support Spamschutz Body-1588 
-score HS_BODY_1588		5
-
-body HS_BODY_1589		/Darlehen Kreditangebot . loan credit offer/
-describe HS_BODY_1589		Heinlein Support Spamschutz Body-1589 
-score HS_BODY_1589		5
-
-body HS_BODY_1590		/Our Dienstleistungen ist billig/
-describe HS_BODY_1590		Heinlein Support Spamschutz Body-1590 
-score HS_BODY_1590		8
-
-body HS_BODY_1591		/Good day sir\/madam/
-describe HS_BODY_1591		Heinlein Support Spamschutz Body-1591 
-score HS_BODY_1591		5
-
-body HS_BODY_1592		/19th project between Knight Knox and X1 Developments/
-describe HS_BODY_1592		Heinlein Support Spamschutz Body-1592 
-score HS_BODY_1592		5
-
-body HS_BODY_1593		/Darlehen Angebot Jetzt bewerben/
-describe HS_BODY_1593		Heinlein Support Spamschutz Body-1593 
-score HS_BODY_1593		5
-
-body HS_BODY_1594		/firstfinancecompany924\@gmail\.com/
-describe HS_BODY_1594		Heinlein Support Spamschutz Body-1594 
-score HS_BODY_1594		5
-
-body HS_BODY_1595		/http:\/\/goodpolicy\.xyz/
-describe HS_BODY_1595		Heinlein Support Spamschutz Body-1595 
-score HS_BODY_1595		5
-
-body HS_BODY_1596		/sperrt unser System automatisch Ihren Amazon-Zugang unwiederuflich/
-describe HS_BODY_1596		Heinlein Support Spamschutz Body-1596 
-score HS_BODY_1596		5
-
-body HS_BODY_1597		/ www\.yourluckychance\.co\.uk/
-describe HS_BODY_1597		Heinlein Support Spamschutz Body-1597 
-score HS_BODY_1597		5
-
-body HS_BODY_1598		/Protect your family with a low cost, prepaid funeral plan today/
-describe HS_BODY_1598		Heinlein Support Spamschutz Body-1598 
-score HS_BODY_1598		5
-
-body HS_BODY_1599		/with Flexus Solutions, a reputed IT company/
-describe HS_BODY_1599		Heinlein Support Spamschutz Body-1599 
-score HS_BODY_1599		5
-
-body HS_BODY_1600		/Today market is full of competition/
-describe HS_BODY_1600		Heinlein Support Spamschutz Body-1600 
-score HS_BODY_1600		3
-
-body HS_BODY_1601		/trading robot that works for you 24 hours a day every/
-describe HS_BODY_1601		Heinlein Support Spamschutz Body-1601 
-score HS_BODY_1601		5
-
-body HS_BODY_1602		/Ed Reed/
-describe HS_BODY_1602		Heinlein Support Spamschutz Body-1602 
-score HS_BODY_1602		3
-
-body HS_BODY_1603		/http:\/\/team.\.in\.net\//
-describe HS_BODY_1603		Heinlein Support Spamschutz Body-1603 
-score HS_BODY_1603		4
-
-body HS_BODY_1604		/http:\/\/nxinfra\.in\.net/
-describe HS_BODY_1604		Heinlein Support Spamschutz Body-1604 
-score HS_BODY_1604		5
-
-body HS_BODY_1605		/http:\/\/trackpride\.in\.net/
-describe HS_BODY_1605		Heinlein Support Spamschutz Body-1605 
-score HS_BODY_1605		5
-
-body HS_BODY_1607		/Notice_to_Appear_.*.zip/
-describe HS_BODY_1607		Heinlein Support Spamschutz Body-1607 
-score HS_BODY_1607		5
-
-body HS_BODY_1608		/complete details of the Court Notice in the attachment/
-describe HS_BODY_1608		Heinlein Support Spamschutz Body-1608 
-score HS_BODY_1608		5
-
-body HS_BODY_1609		/victoriamilan\.com/
-describe HS_BODY_1609		Heinlein Support Spamschutz Body-1609 
-score HS_BODY_1609		5
-
-body HS_BODY_1610		/email-edg\.paypal\.com/
-describe HS_BODY_1610		Heinlein Support Spamschutz Body-1610 
-score HS_BODY_1610		5
-
-body HS_BODY_1611		/41628_GER/
-describe HS_BODY_1611		Heinlein Support Spamschutz Body-1611 Spam
-score HS_BODY_1611		5
-
-body HS_BODY_1612		/Free Spins - No Deposit Required/
-describe HS_BODY_1612		Heinlein Support Spamschutz Body-1612 Spam
-score HS_BODY_1612		5
-
-body HS_BODY_1613		/Wir haben nicht in der Lage gewesen, um zu bestimmen/
-describe HS_BODY_1613		Heinlein Support Spamschutz Body-1613 
-score HS_BODY_1613		5
-
-body HS_BODY_1615		/Ihr Konto in weniger als 48 Stunden abgelaufen ist, ist es/
-describe HS_BODY_1615		Heinlein Support Spamschutz Body-1615 
-score HS_BODY_1615		2
-
-body HS_BODY_1616		/http:\/\/interflow-th.com:32000\/mail\/pda\/get.html/
-describe HS_BODY_1616		Heinlein Support Spamschutz Body-1616 
-score HS_BODY_1616		5
-
-body HS_BODY_1617		/not the responsible person for this section, please do me a favour to tran/
-describe HS_BODY_1617		Heinlein Support Spamschutz Body-1617 
-score HS_BODY_1617		5
-
-body HS_BODY_1618		/purchasing department or your friends. It may be useful for them./
-describe HS_BODY_1618		Heinlein Support Spamschutz Body-1618 
-score HS_BODY_1618		5
-
-body HS_BODY_1619		/man kann Sauberlaufteppiche auch teuer ausleihen. Aber unser Kaufpreis ist/
-describe HS_BODY_1619		Heinlein Support Spamschutz Body-1619 Spam
-score HS_BODY_1619		5
-
-body HS_BODY_1620		/Nous vous invitons à nous soumettre votre demande de remboursement afin de nous permettre de la traiter dans les plus brefs details. Consulter les démarches à suivre en cliquant sur le lien ci-dessous :/
-describe HS_BODY_1620		Heinlein Support Spamschutz Body-1620 Backscatter SPAM
-score HS_BODY_1620		15
-
-body HS_BODY_1621		/Ameli.fr assurance maladie ameli 2015 France/
-describe HS_BODY_1621		Heinlein Support Spamschutz Body-1621 Spam
-score HS_BODY_1621		10
-
-body HS_BODY_1622		/http...www.werbestrategen.info.unsubscribeHN.php/
-describe HS_BODY_1622		Heinlein Support Spamschutz Body-1622 Unverlangt zugesandter Gewerbenewsletter
-score HS_BODY_1622		5
-
-body HS_BODY_1623		/eMail:.info.gewerbenewsletter.com/
-
-describe HS_BODY_1623		Heinlein Support Spamschutz Body-1623 Spam
-score HS_BODY_1623		5
-
-body HS_BODY_1625		/http:\/\/mail33.serverstream.com:32000\/mail\/pda\/get.html/
-describe HS_BODY_1625		Heinlein Support Spamschutz Body-1625 
-score HS_BODY_1625		8
-
-body HS_BODY_1626		/http:\/\/affirman.com/
-describe HS_BODY_1626		Heinlein Support Spamschutz Body-1626 
-score HS_BODY_1626		8
-
-body HS_BODY_1627		/https\:\/\/itloker\.com\/\/test/
-describe HS_BODY_1627		Heinlein Support Spamschutz Body-1627 Phishing
-score HS_BODY_1627		8
-
-body HS_BODY_1628		/VictoriaMilan\.de/
-describe HS_BODY_1628		Heinlein Support Spamschutz Body-1628 Spam
-score HS_BODY_1628		8
-
-body HS_BODY_1629		/Diese Nachricht ist, dass Sie Ihre kostenlose Testversion Abonnement zu/
-describe HS_BODY_1629		Heinlein Support Spamschutz Body-1629 Phishing
-score HS_BODY_1629		8
-
-body HS_BODY_1630		/Um diese E-Mail in Ihrem Web-Browser lesen, clicken Sie/
-describe HS_BODY_1630		Heinlein Support Spamschutz Body-1630 Spam
-score HS_BODY_1630		5
-
-body HS_BODY_1632		/amount of \$11,000,000.00 with a financial/
-describe HS_BODY_1632		Heinlein Support Spamschutz Body-1632 
-score HS_BODY_1632		5
-
-body HS_BODY_1633		/My name is Maria Donson. I am married/
-describe HS_BODY_1633		Heinlein Support Spamschutz Body-1633 
-score HS_BODY_1633		5
-
-body HS_BODY_1634		/my Doctor told me that I might not live for more than Eight months/
-describe HS_BODY_1634		Heinlein Support Spamschutz Body-1634 
-score HS_BODY_1634		5
-
-body HS_BODY_1635		/www.perfektb2b.com\/newsletter.htm/
-describe HS_BODY_1635		Heinlein Support Spamschutz Body-1635 Unverlangt zugesandter Gewerbenewsletter
-score HS_BODY_1635		5
-
-body HS_BODY_1636		/Mail-Kontingent \(kostenlos\) zu aktualisieren normalen/
-describe HS_BODY_1636		Heinlein Support Spamschutz Body-1636 Spam
-score HS_BODY_1636		8
-
-body HS_BODY_1637		/Wir bitten Sie die Verifizierung innerhlab der/
-describe HS_BODY_1637		Heinlein Support Spamschutz Body-1637 Phishing
-score HS_BODY_1637		5
-
-body HS_BODY_1638		/E-Mail-Account-Inhaber, die sich weigert,/
-describe HS_BODY_1638		Heinlein Support Spamschutz Body-1638 Spam
-score HS_BODY_1638		5
-
-body HS_BODY_1639		/Wie lange brauchen Sie, um 5000 € zu verdienen?/
-describe HS_BODY_1639		Heinlein Support Spamschutz Body-1639 Spam
-score HS_BODY_1639		6
-
-body HS_BODY_1640		/Do you want to save 50% or more on your PPC management cost?/
-describe HS_BODY_1640		Heinlein Support Spamschutz Body-1640 Spam
-score HS_BODY_1640		6
-
-body HS_BODY_1641		/====> Bitte klicken Sie hier, um Ihr Geld zu bekommen <====/
-describe HS_BODY_1641		Heinlein Support Spamschutz Body-1641 Spam
-score HS_BODY_1641		6
-
-body HS_BODY_1642		/Activate Your Coupon Now to Get Your Logo for Only \$49/
-describe HS_BODY_1642		Heinlein Support Spamschutz Body-1642 Spam
-score HS_BODY_1642		6
-
-body HS_BODY_1643		/Trust Fund Bond of 76,000,000 USD deposited with Lloyds Bank has been/
-describe HS_BODY_1643		Heinlein Support Spamschutz Body-1643 Spam
-score HS_BODY_1643		6
-
-body HS_BODY_1644		/netztarif: Netzebene 7, Wien, nicht gemessene Leistung/
-describe HS_BODY_1644		Heinlein Support Spamschutz Body-1644 
-score HS_BODY_1644		3
-
-body HS_BODY_1645		/Ausmaß der Netznutzung: 4,00 kW/
-describe HS_BODY_1645		Heinlein Support Spamschutz Body-1645 
-score HS_BODY_1645		3
-
-body HS_BODY_1646		/Ihre Ihr Paket hat eine Ausnahme erfahren/
-describe HS_BODY_1646		Heinlein Support Spamschutz Body-1646 Spam
-score HS_BODY_1646		5
-
-body HS_BODY_1647		/unsubscribe.php\?M\=10803920\&C\=387608d58184b283cf6aafa373d8f05f/
-describe HS_BODY_1647		Heinlein Support Spamschutz Body-1647 Spam
-score HS_BODY_1647		5
-
-body HS_BODY_1648		/link.php\?M\=10803920/
-describe HS_BODY_1648		Heinlein Support Spamschutz Body-1648 Spam
-score HS_BODY_1648		3
-
-body HS_BODY_1649		/Viagra\&Ciali/
-describe HS_BODY_1649		Heinlein Support Spamschutz Body-1649 
-score HS_BODY_1649		2
-
-body HS_BODY_1650		/http:\/\/www.appleshop.gdn\/appleshop/
-describe HS_BODY_1650		Heinlein Support Spamschutz Body-1650 
-score HS_BODY_1650		5
-
-body HS_BODY_1651		/http:\/\/www.topangebot.biz.ua\/topangebot2/
-describe HS_BODY_1651		Heinlein Support Spamschutz Body-1651 
-score HS_BODY_1651		5
-
-body HS_BODY_1652		/http:\/\/www.online-pm.co.ua\/online-pm*/
-describe HS_BODY_1652		Heinlein Support Spamschutz Body-1652 
-score HS_BODY_1652		5
-
-body HS_BODY_1653		/http:\/\/www.topangebot.biz.ua\/pillsgeneric/
-describe HS_BODY_1653		Heinlein Support Spamschutz Body-1653 
-score HS_BODY_1653		5
-
-body HS_BODY_1655		/id is tech\.formedia/
-describe HS_BODY_1655		Heinlein Support Spamschutz Body-1655 
-score HS_BODY_1655		3
-
-body HS_BODY_1656		/Ihr Konto weist un\=FCbliche Aktivit\=E4ten auf, welche m\=F6glicherwei\=DF\=/
-describe HS_BODY_1656		Heinlein Support Spamschutz Body-1656 Phishing
-score HS_BODY_1656		5
-
-body HS_BODY_1657		/Mailbox Support Team. All Rights Reserved/
-describe HS_BODY_1657		Heinlein Support Spamschutz Body-1657 
-score HS_BODY_1657		20
-
-body HS_BODY_1658		/has exceeded the storage limit is 1 GB, which is defined by the administrator, you are running at/
-describe HS_BODY_1658		Heinlein Support Spamschutz Body-1658 
-score HS_BODY_1658		10
-
-body HS_BODY_1660		/WARNING! Protect your privacy. Log-out when you are done and completely exit your browser/
-describe HS_BODY_1660		Heinlein Support Spamschutz Body-1660 
-score HS_BODY_1660		1
-
-body HS_BODY_1661		/http:\/\/espaces-modes\.fr\/1etAjfBcHUlCCs8wvtrcuiVEpDkd1jP_c_CbYzYakTPFpO8pRLIwo*/
-describe HS_BODY_1661		Heinlein Support Spamschutz Body-1661 Spam
-score HS_BODY_1661		8
-
-body HS_BODY_1662		/DE74600501017450118741/
-describe HS_BODY_1662		Heinlein Support Spamschutz Body-1662 Spam
-score HS_BODY_1662		5
-
-body HS_BODY_1663		/www.superdigi.org.code.newsletter.php/
-describe HS_BODY_1663		Heinlein Support Spamschutz Body-1663 Spam
-score HS_BODY_1663		5
-
-body HS_BODY_1664		/Two pretty student girls ready to present gentle sex to a man or woman/
-describe HS_BODY_1664		Heinlein Support Spamschutz Body-1664 Spam
-score HS_BODY_1664		5
-
-body HS_BODY_1665		/business-catalogs.trmaildat.com/
-describe HS_BODY_1665		Heinlein Support Spamschutz Body-1665 Spam
-score HS_BODY_1665		2
-
-body HS_BODY_1666		/databases.en\@express-contacts.com/
-describe HS_BODY_1666		Heinlein Support Spamschutz Body-1666 Spam
-score HS_BODY_1666		2
-
-body HS_BODY_1667		/www.ihrgeld2016.com/
-describe HS_BODY_1667		Heinlein Support Spamschutz Body-1667 
-score HS_BODY_1667		3
-
-body HS_BODY_1668		/Every 1 Kilobyte (1024 symbols) of text content is paid by \$5/
-describe HS_BODY_1668		Heinlein Support Spamschutz Body-1668 
-score HS_BODY_1668		7
-
-body HS_BODY_1669		/I am ready to be your partner on Christmas!/
-describe HS_BODY_1669		Heinlein Support Spamschutz Body-1669 Spam
-score HS_BODY_1669		3
-
-body HS_BODY_1670		/I guarantee hot sex, I like doing a blow job./
-describe HS_BODY_1670		Heinlein Support Spamschutz Body-1670 Spam
-score HS_BODY_1670		3
-
-body HS_BODY_1671		/My questionnaireу is only here!/
-describe HS_BODY_1671		Heinlein Support Spamschutz Body-1671 Spam
-score HS_BODY_1671		5
-
-body HS_BODY_1672		/Our rapidly expanding company announces a  position of a letters proofreader/
-describe HS_BODY_1672		Heinlein Support Spamschutz Body-1672 Spam
-score HS_BODY_1672		5
-
-body HS_BODY_1673		/eliminating spelling and grammar  inexactness that might occur in the text./
-describe HS_BODY_1673		Heinlein Support Spamschutz Body-1673 Spam
-score HS_BODY_1673		5
-
-body HS_BODY_1674		/The position takes about 1-2 hours  per day. You may do it on your spare/
-describe HS_BODY_1674		Heinlein Support Spamschutz Body-1674 Spam
-score HS_BODY_1674		5
-
-body HS_BODY_1675		/Incredible! The startling discovery of mathematics enables people to earn millions by doing absolutely NO-TH-ING!/
-describe HS_BODY_1675		Heinlein Support Spamschutz Body-1675 Spam
-score HS_BODY_1675		5
-
-body HS_BODY_1676		/But you still have time to get rich if you open this link!/
-describe HS_BODY_1676		Heinlein Support Spamschutz Body-1676 Spam
-score HS_BODY_1676		5
-
-body HS_BODY_1677		/den (nicht gedeckten|ausstehenden) Betrag unseren Mandanten .* zu (begleichen|decken)/
-describe HS_BODY_1677		Heinlein Support Spamschutz Body-1677 Phishing
-score HS_BODY_1677		5
-
-body HS_BODY_1678		/Stellvertretender Rechtsanwalt Lennard Köhler/
-describe HS_BODY_1678		Heinlein Support Spamschutz Body-1678 Phishing
-score HS_BODY_1678		5
-
-body HS_BODY_1679		/Die vollständige Forderungsausstellung .*, der Sie alle Buchungen entnehmen können, fügen wir bei./
-describe HS_BODY_1679		Heinlein Support Spamschutz Body-1679 Phishing
-score HS_BODY_1679		5
-
-body HS_BODY_1680		/Aufgrund des andauernden Zahlungsausstands sind Sie gezwungen zuzüglich, die durch unsere Tätigkeit entstandene Kosten von .* Euro zu tragen/
-describe HS_BODY_1680		Heinlein Support Spamschutz Body-1680 Phishing
-score HS_BODY_1680		5
-
-body HS_BODY_1681		/Um weitete Kosten auszuschließen, bitten wir Sie den ausstehenden Betrag auf unser Konto zu überweisen./
-describe HS_BODY_1681		Heinlein Support Spamschutz Body-1681 Phishing mit Schreibfehler
-score HS_BODY_1681		7
-
-body HS_BODY_1682		/Heizungsbau M. Meyer/
-describe HS_BODY_1682		Heinlein Support Spamschutz Body-1682 Spam
-score HS_BODY_1682		1
-
-body HS_BODY_1683		/zu unserem Bedauern haben wir festgestellt.*Jetzt bieten wir Ihnen nun letztmalig die Chance/
-describe HS_BODY_1683		Heinlein Support Spamschutz Body-1683 Phishing
-score HS_BODY_1683		3
-
-body HS_BODY_1684		/ds\.theaussiedeal.com/
-describe HS_BODY_1684		Heinlein Support Spamschutz Body-1684 
-score HS_BODY_1684		5
-
-body HS_BODY_1685		/www.schnee-selbst-beseitigen.com/
-describe HS_BODY_1685		Heinlein Support Spamschutz Body-1685 Spam
-score HS_BODY_1685		3
-
-body HS_BODY_1686		/Damit geht es 4 mal so schnell wie bisher:/
-describe HS_BODY_1686		Heinlein Support Spamschutz Body-1686 Spam
-score HS_BODY_1686		3
-
-body HS_BODY_1687		/Konvektorheizer mit Temperaturwache unverzichtbar bei diesem Wetter/
-describe HS_BODY_1687		Heinlein Support Spamschutz Body-1687 Spam
-score HS_BODY_1687		3
-
-body HS_BODY_1688		/http:\/\/.*tradetrackersupport.com/
-describe HS_BODY_1688		Heinlein Support Spamschutz Body-1688 Spam
-score HS_BODY_1688		4
-
-body HS_BODY_1689		/http:\/\/.*onlinewealthmarketssupport.com/
-describe HS_BODY_1689		Heinlein Support Spamschutz Body-1689 Spam
-score HS_BODY_1689		4
-
-body HS_BODY_1690		/http:\/\/.*crimeblade.com/
-describe HS_BODY_1690		Heinlein Support Spamschutz Body-1690 Spam
-score HS_BODY_1690		4
-
-body HS_BODY_1691		/http:\/\/.*styleconstant.com/
-describe HS_BODY_1691		Heinlein Support Spamschutz Body-1691 Spam
-score HS_BODY_1691		4
-
-body HS_BODY_1692		/http:\/\/.*scheduledchair.com/
-describe HS_BODY_1692		Heinlein Support Spamschutz Body-1692 Spam
-score HS_BODY_1692		4
-
-body HS_BODY_1693		/http:\/\/.*summitpity.com/
-describe HS_BODY_1693		Heinlein Support Spamschutz Body-1693 Spam
-score HS_BODY_1693		4
-
-body HS_BODY_1694		/http:\/\/.*quick-cash-app.com/
-describe HS_BODY_1694		Heinlein Support Spamschutz Body-1694 Spam
-score HS_BODY_1694		4
-
-body HS_BODY_1695		/http:\/\/.*tradefusionmails.com/
-describe HS_BODY_1695		Heinlein Support Spamschutz Body-1695 Spam
-score HS_BODY_1695		4
-
-body HS_BODY_1696		/http:\/\/.*piramidalious.com/
-describe HS_BODY_1696		Heinlein Support Spamschutz Body-1696 Spam
-score HS_BODY_1696		4
-
-body HS_BODY_1697		/http:\/\/.*finalalgosupport.com/
-describe HS_BODY_1697		Heinlein Support Spamschutz Body-1697 Spam
-score HS_BODY_1697		4
-
-body HS_BODY_1698		/http:\/\/.*refrigeratorbluejean.com/
-describe HS_BODY_1698		Heinlein Support Spamschutz Body-1698 Spam
-score HS_BODY_1698		4
-
-body HS_BODY_1699		/http:\/\/.*hostilesea.net/
-describe HS_BODY_1699		Heinlein Support Spamschutz Body-1699 Spam
-score HS_BODY_1699		4
-
-body HS_BODY_1700		/http:\/\/.*prizm-mails.com/
-describe HS_BODY_1700		Heinlein Support Spamschutz Body-1700 Spam
-score HS_BODY_1700		4
-
-body HS_BODY_1701		/http:\/\/.*biteappoint.com/
-describe HS_BODY_1701		Heinlein Support Spamschutz Body-1701 Spam
-score HS_BODY_1701		4
-
-body HS_BODY_1702		/http:\/\/.*ladderresponse.com/
-describe HS_BODY_1702		Heinlein Support Spamschutz Body-1702 Spam
-score HS_BODY_1702		4
-
-body HS_BODY_1703		/Be prepared to start shortly! Please simply Skip this email if you are not interested anymore/
-describe HS_BODY_1703		Heinlein Support Spamschutz Body-1703 Spam
-score HS_BODY_1703		10
-
-body HS_BODY_1704		/You have successfully passed the first part of selection for a new vacancy in our company./
-describe HS_BODY_1704		Heinlein Support Spamschutz Body-1704 Spam
-score HS_BODY_1704		10
-
-body HS_BODY_1705		/I'm very auspicious girl and at present trying to find ineffect Man/
-describe HS_BODY_1705		Heinlein Support Spamschutz Body-1705 Spam
-score HS_BODY_1705		10
-
-body HS_BODY_1706		/http:\/\/.*fiftykdaily.com/
-describe HS_BODY_1706		Heinlein Support Spamschutz Body-1706 Spam
-score HS_BODY_1706		4
-
-body HS_BODY_1707		/http:\/\/.*gtradersupport.com/
-describe HS_BODY_1707		Heinlein Support Spamschutz Body-1707 Spam
-score HS_BODY_1707		4
-
-body HS_BODY_1708		/http:\/\/.*dbparamlame.com/
-describe HS_BODY_1708		Heinlein Support Spamschutz Body-1708 Spam
-score HS_BODY_1708		4
-
-body HS_BODY_1709		/http:\/\/.*tributehouseplant.com/
-describe HS_BODY_1709		Heinlein Support Spamschutz Body-1709 Spam
-score HS_BODY_1709		4
-
-body HS_BODY_1710		/http:\/\/.*regalwealth-mails.com/
-describe HS_BODY_1710		Heinlein Support Spamschutz Body-1710 Spam
-score HS_BODY_1710		4
-
-body HS_BODY_1711		/http:\/\/.*wisecrackbiology.com/
-describe HS_BODY_1711		Heinlein Support Spamschutz Body-1711 Spam
-score HS_BODY_1711		4
-
-body HS_BODY_1712		/http:\/\/.*safe-guardtrader.com/
-describe HS_BODY_1712		Heinlein Support Spamschutz Body-1712 Spam
-score HS_BODY_1712		4
-
-body HS_BODY_1713		/bhv-tarifevergleichen.net/
-describe HS_BODY_1713		Heinlein Support Spamschutz Body-1713 
-score HS_BODY_1713		5
-
-body HS_BODY_1714		/neue-versicherung.online/
-describe HS_BODY_1714		Heinlein Support Spamschutz Body-1714 
-score HS_BODY_1714		5
-
-body HS_BODY_1715		/stopazforeclosure.com/
-describe HS_BODY_1715		Heinlein Support Spamschutz Body-1715 
-score HS_BODY_1715		5
-
-body HS_BODY_1716		/innovatorservices.com/
-describe HS_BODY_1716		Heinlein Support Spamschutz Body-1716 
-score HS_BODY_1716		5
-
-body HS_BODY_1717		/aleestrade.com/
-describe HS_BODY_1717		Heinlein Support Spamschutz Body-1717 
-score HS_BODY_1717		5
-
-body HS_BODY_1719		/http:\/\/knkro21.com/
-describe HS_BODY_1719		Heinlein Support Spamschutz Body-1719 
-score HS_BODY_1719		5
-
-body HS_BODY_1722		/Monate \(und Tausende Dollar\) verschwenden/
-describe HS_BODY_1722		Heinlein Support Spamschutz Body-1722 
-score HS_BODY_1722		5
-
-body HS_BODY_1723		/Heute haben sie die moglichkeit, es herauszufinden. nutzen sie diese eigenartige gelegenheit, unsere generika potenzmittel./
-describe HS_BODY_1723		Heinlein Support Spamschutz Body-1723 Spam
-score HS_BODY_1723		5
-
-body HS_BODY_1724		/Super preise testpaket generika haben sie sich jemals gefragt, welches potenzmittel in ihrem konkreten fall am besten wirken wurde?/
-describe HS_BODY_1724		Heinlein Support Spamschutz Body-1724 Spam
-score HS_BODY_1724		5
-
-body HS_BODY_1725		/Discover Bank Customer Service/
-describe HS_BODY_1725		Heinlein Support Spamschutz Body-1725 Spam
-score HS_BODY_1725		3
-
-body HS_BODY_1726		/DISCOVER BANK QUICK LINKS:/
-describe HS_BODY_1726		Heinlein Support Spamschutz Body-1726 Spam
-score HS_BODY_1726		3
-
-body HS_BODY_1727		/This is in reference to your Discover Bank Account(s) Online Banking we know notice some suspicious activity on your account./
-describe HS_BODY_1727		Heinlein Support Spamschutz Body-1727 Spam
-score HS_BODY_1727		5
-
-body HS_BODY_1728		/http:\/\/xkgehe.ru/
-describe HS_BODY_1728		Heinlein Support Spamschutz Body-1728 
-score HS_BODY_1728		5
-
-body HS_BODY_1729		/http:\/\/neuestetarifauskunft\.online/
-describe HS_BODY_1729		Heinlein Support Spamschutz Body-1729 
-score HS_BODY_1729		5
-
-body HS_BODY_1730		/tarifuebersichtjanuar2017.com/
-describe HS_BODY_1730		Heinlein Support Spamschutz Body-1730 
-score HS_BODY_1730		5
-
-body HS_BODY_1731		/Die Ware wurde geladen. Anbei die Rechnung./
-
-describe HS_BODY_1731		Heinlein Support Spamschutz Body-1731 Virus
-score HS_BODY_1731		5
-
-body HS_BODY_1732		/update-account-information.com-secured-riskykitti.info/
-describe HS_BODY_1732		Heinlein Support Spamschutz Body-1732 
-score HS_BODY_1732		5
-
-body HS_BODY_1733		/http:\/\/www.marketbelize.com\/index.php\/campaigns/
-describe HS_BODY_1733		Heinlein Support Spamschutz Body-1733 Spam
-score HS_BODY_1733		4
-
-body HS_BODY_1734		/request will be processed shortly. If this request was made accidentally an/
-describe HS_BODY_1734		Heinlein Support Spamschutz Body-1734 Phishing
-score HS_BODY_1734		5
-
-body HS_BODY_1735		/However, if you do not cancel this request,your account will be shutdown/
-describe HS_BODY_1735		Heinlein Support Spamschutz Body-1735 Spam
-score HS_BODY_1735		5
-
-body HS_BODY_1736		/d you have no knowledge of it, you are advised to cancel the request now/
-describe HS_BODY_1736		Heinlein Support Spamschutz Body-1736 Spam
-score HS_BODY_1736		5
-
-body HS_BODY_1737		/The.*should appear in.*(days|minutes|hours). Please see.*(attached|in attachment)/
-describe HS_BODY_1737		Heinlein Support Spamschutz Body-1737 Spam
-score HS_BODY_1737		3
-
-body HS_BODY_1738		/You need (Doc Access Credentials|File Passcode|Doc Access Key):/
-describe HS_BODY_1738		Heinlein Support Spamschutz Body-1738 Spam
-score HS_BODY_1738		5
-
-body HS_BODY_1739		/The.*will be posted in .*(days|minutes|hours). Please see.*(attached|in attachment)/
-describe HS_BODY_1739		Heinlein Support Spamschutz Body-1739 
-score HS_BODY_1739		5
-
-body HS_BODY_1740		/kaiser-kerst.com/
-describe HS_BODY_1740		Heinlein Support Spamschutz Body-1740 Spam
-score HS_BODY_1740		3
-
-body HS_BODY_1741		/schreibtoll.com/
-describe HS_BODY_1741		Heinlein Support Spamschutz Body-1741 Spam
-score HS_BODY_1741		3
-
-body HS_BODY_1742		/stylochamps.com/
-describe HS_BODY_1742		Heinlein Support Spamschutz Body-1742 Spam
-score HS_BODY_1742		3
-
-body HS_BODY_1743		/stylomaxx.com/
-describe HS_BODY_1743		Heinlein Support Spamschutz Body-1743 Spam
-score HS_BODY_1743		3
-
-body HS_BODY_1744		/ferramaxx.com/
-describe HS_BODY_1744		Heinlein Support Spamschutz Body-1744 Spam
-score HS_BODY_1744		3
-
-body HS_BODY_1745		/schmieder-office-versand.com/
-describe HS_BODY_1745		Heinlein Support Spamschutz Body-1745 Spam
-score HS_BODY_1745		3
-
-body HS_BODY_1746		/<meta name=3D"Generator" content=3D"Microsoft Word 15 .filtered med/
-describe HS_BODY_1746		Heinlein Support Spamschutz Body-1746 Spam
-score HS_BODY_1746		1
-
-body HS_BODY_1747		/http:\/\/.*rechnung_js_telekom/
-describe HS_BODY_1747		Heinlein Support Spamschutz Body-1747 spam
-score HS_BODY_1747		5
-
-body HS_BODY_1748		/mails with attachments. You must upgrade your mailbox to increase storage/
-describe HS_BODY_1748		Heinlein Support Spamschutz Body-1748 Phishing
-score HS_BODY_1748		5
-
-body HS_BODY_1749		/Note: Failure to upgrade implies your email will be deactivated to minimiz/
-
-describe HS_BODY_1749		Heinlein Support Spamschutz Body-1749 Phishing
-score HS_BODY_1749		5
-
-body HS_BODY_1750		/Attention: .*  Our server indicated that your mai/
-describe HS_BODY_1750		Heinlein Support Spamschutz Body-1750 Phishing
-score HS_BODY_1750		5
-
-body HS_BODY_1751		/URGENT EMAIL UPGRADE/
-describe HS_BODY_1751		Heinlein Support Spamschutz Body-1751 Phishing
-score HS_BODY_1751		5
-
-body HS_BODY_1752		/nice-man.co.ua/
-describe HS_BODY_1752		Heinlein Support Spamschutz Body-1752 Spam
-score HS_BODY_1752		3
-
-body HS_BODY_1753		/f.pepainc.biz.ua/
-describe HS_BODY_1753		Heinlein Support Spamschutz Body-1753 Spam
-score HS_BODY_1753		3
-
-body HS_BODY_1754		/office-perfekt.com/
-describe HS_BODY_1754		Heinlein Support Spamschutz Body-1754 Spam
-score HS_BODY_1754		3
-
-body HS_BODY_1755		/handelskauf.com/
-describe HS_BODY_1755		Heinlein Support Spamschutz Body-1755 Spam
-score HS_BODY_1755		3
-
-body HS_BODY_1756		/Valgus Pro.*ist eine Korrekturhilfe für den großen Zeh/
-describe HS_BODY_1756		Heinlein Support Spamschutz Body-1756 Spam
-score HS_BODY_1756		5
-
-body HS_BODY_1757		/hilfe f.r den großen Zeh/
-describe HS_BODY_1757		Heinlein Support Spamschutz Body-1757 Spam
-score HS_BODY_1757		2
-
-body HS_BODY_1758		/s Pro=BB ist eine =0D=0AKorrekturhilfe f.r den großen=20=/
-describe HS_BODY_1758		Heinlein Support Spamschutz Body-1758 Spam
-score HS_BODY_1758		5
-
-body HS_BODY_1759		/Nichts zu tun, wird zu einem eingeschr=E4nkten Zugriff auf Ihre Mailbox f/
-describe HS_BODY_1759		Heinlein Support Spamschutz Body-1759 Phishing
-score HS_BODY_1759		5
-
-body HS_BODY_1760		/Sie haben die Kontingentgrenze f=FCr Ihre Mailbox =FCberschritten, Sie werd/ 
-describe HS_BODY_1760		Heinlein Support Spamschutz Body-1760 Phishing
-score HS_BODY_1760		5
-
-body HS_BODY_1761		/Bist du in ernsthafter Notwendigkeit von finanziellen\?/
-describe HS_BODY_1761		Heinlein Support Spamschutz Body-1761 Spam
-score HS_BODY_1761		5
-
-body HS_BODY_1762		/ja, sind wir eine seri=C3=B6se Kreditgeber E-Mail f=C3=BCr weitere/
-describe HS_BODY_1762		Heinlein Support Spamschutz Body-1762 Spam
-score HS_BODY_1762		5
-
-body HS_BODY_1763		/Jahren als Berater f=3DC3=3DBCr Unterhehmensfinanz/
-describe HS_BODY_1763		Heinlein Support Spamschutz Body-1763 Spam
-score HS_BODY_1763		3
-
-body HS_BODY_1764		/Sollte das ineressant f=3DC3=3DBCr Sie ?/
-describe HS_BODY_1764		Heinlein Support Spamschutz Body-1764 Spam
-score HS_BODY_1764		3
-
-body HS_BODY_1765		/p.deliveryservic.eu/
-describe HS_BODY_1765		Heinlein Support Spamschutz Body-1765 Spam
-score HS_BODY_1765		3
-
-body HS_BODY_1766		/deutschepharma.shop/
-describe HS_BODY_1766		Heinlein Support Spamschutz Body-1766 Spam
-score HS_BODY_1766		3
-
-body HS_BODY_1767		/topfashion.city Ltd/
-describe HS_BODY_1767		Heinlein Support Spamschutz Body-1767 Spam
-score HS_BODY_1767		3
-
-body HS_BODY_1768		/an Einzelpersonen, Gesellschaften, Gesellschaften usw./
-describe HS_BODY_1768		Heinlein Support Spamschutz Body-1768 Spam
-score HS_BODY_1768		3
-
-body HS_BODY_1769		/privatekvtarife.net/
-describe HS_BODY_1769		Heinlein Support Spamschutz Body-1769 Spam
-score HS_BODY_1769		5
-
-body HS_BODY_1770		/finanzierung-?2017.net/
-describe HS_BODY_1770		Heinlein Support Spamschutz Body-1770 Spam
-score HS_BODY_1770		5
-
-body HS_BODY_1771		/neuester-?bhvtarif.net/
-describe HS_BODY_1771		Heinlein Support Spamschutz Body-1771 Spam
-score HS_BODY_1771		5
-
-body HS_BODY_1772		/Geben Sie diesem neuen Flacher Bauch Über Nacht - Trick eine Chance und beobachten Sie, wie Ihr Bauchfett über Nacht wegschmil/
-describe HS_BODY_1772		Heinlein Support Spamschutz Body-1772 Spam
-score HS_BODY_1772		5
-
-body HS_BODY_1773		/schnelle-auszahlung.online/
-describe HS_BODY_1773		Heinlein Support Spamschutz Body-1773 Spam
-score HS_BODY_1773		5
-
-body HS_BODY_1774		/Source:.*Email Security Team.*/
-describe HS_BODY_1774		Heinlein Support Spamschutz Body-1774 Phishing
-score HS_BODY_1774		5
-
-body HS_BODY_1775		/After upgrade, uour mailbox .*will be clos/
-describe HS_BODY_1775		Heinlein Support Spamschutz Body-1775 Phishing
-score HS_BODY_1775		5
-
-body HS_BODY_1776		/Apologies for the Any inconvenience and appreciate Your Understanding/
-describe HS_BODY_1776		Heinlein Support Spamschutz Body-1776 Phishing
-score HS_BODY_1776		5
-
-body HS_BODY_1777		/http\:\/\/casualient.com\/c75/
-describe HS_BODY_1777		Heinlein Support Spamschutz Body-1777 Phishing
-score HS_BODY_1777		3
-
-body HS_BODY_1778		/finanzierungsueberblick.org/
-describe HS_BODY_1778		Heinlein Support Spamschutz Body-1778 Spam
-score HS_BODY_1778		5
-
-body HS_BODY_1780		/Konto hat ein neues Entger/
-describe HS_BODY_1780		Heinlein Support Spamschutz Body-1780 Phishing
-score HS_BODY_1780		3
-
-body HS_BODY_1783		/der Sie nie mehr schwitzen bringt/
-describe HS_BODY_1783		Heinlein Support Spamschutz Body-1783 Spam
-score HS_BODY_1783		3
-
-body HS_BODY_1786		/www.ihre-erste-hilfe.com/
-describe HS_BODY_1786		Heinlein Support Spamschutz Body-1786 Spam
-score HS_BODY_1786		3
-
-body HS_BODY_1788		/Sortimetn mit vielen Passformen/
-describe HS_BODY_1788		Heinlein Support Spamschutz Body-1788 Spam
-score HS_BODY_1788		3
-
-body HS_BODY_1789		/Zuzatzangebot Universall Autoteppiche/
-describe HS_BODY_1789		Heinlein Support Spamschutz Body-1789 Spam
-score HS_BODY_1789		3
-
-body HS_BODY_1792		/BrandfallAushangBetriebskennzeichnunginnerbetrieblicher/
-describe HS_BODY_1792		Heinlein Support Spamschutz Body-1792 Spam
-score HS_BODY_1792		3
-
-body HS_BODY_1794		/HIER KANNST DU MEINEN AUFTRITT BEI PRO'7 MITERLEBEN/
-describe HS_BODY_1794		Heinlein Support Spamschutz Body-1794 Spam
-score HS_BODY_1794		3
-
-body HS_BODY_1795		/Wenn interessiert kontaktieren Sie uns auf E-Mail unten/
-describe HS_BODY_1795		Heinlein Support Spamschutz Body-1795 Spam
-score HS_BODY_1795		3
-
-body HS_BODY_1798		/wenn diese Meldung hat Sie zu erreichendurch Fehler/
-describe HS_BODY_1798		Heinlein Support Spamschutz Body-1798 Spam
-score HS_BODY_1798		5
-
-body HS_BODY_1800		/zun\&auml;chst unsere Bankverbindung f\&uuml;r die weitere Bearbeitung zu \&uuml;bermitteln und mir er\&ouml;rtert werden/
-describe HS_BODY_1800		Heinlein Support Spamschutz Body-1800 Phishing
-score HS_BODY_1800		5
-
-body HS_BODY_1802		/AuszahlungsabteilungVIP Payments GmbH/
-describe HS_BODY_1802		Heinlein Support Spamschutz Body-1802 Spam
-score HS_BODY_1802		3
-
-body HS_BODY_1805		/Der gesamte Klüngel an der Bundesregierung muss weg! Einzige Möglichkeit: Alle Regierungsparteien abwählen!/
-describe HS_BODY_1805		Heinlein Support Spamschutz Body-1805 Spam
-score HS_BODY_1805		15
-
-body HS_BODY_1807		/Der gesamte Kl=C3=BCngel an der Bundesregierung muss weg! Einzige M=C3=/
-describe HS_BODY_1807		Heinlein Support Spamschutz Body-1807 Spam
-score HS_BODY_1807		5
-
-body HS_BODY_1808		/Das Wahlteam 2017/
-describe HS_BODY_1808		Heinlein Support Spamschutz Body-1808 Spam
-score HS_BODY_1808		5
-
-body HS_BODY_1809		/unsere Kanzlei wurden vom Unternehmen GiroPay GmbH beauftragt/
-describe HS_BODY_1809		Heinlein Support Spamschutz Body-1809 Virus
-score HS_BODY_1809		3
-
-body HS_BODY_1811		/den aussehenden Betrag unter Angaben der Rechnungsnummer/
-describe HS_BODY_1811		Heinlein Support Spamschutz Body-1811 Virus
-score HS_BODY_1811		3
-
-body HS_BODY_1812		/die Datenbanken nach bevorzugten Datenfeldern, T.*tigkeitsbereichen und der Stadt, in der die Firma eingetragen wurde, filtern/
-describe HS_BODY_1812		Heinlein Support Spamschutz Body-1812 Spam
-score HS_BODY_1812		5
-
-body HS_BODY_1815		/automase.co.ua/
-describe HS_BODY_1815		Heinlein Support Spamschutz Body-1815 Spam
-score HS_BODY_1815		4
-
-body HS_BODY_1817		/genkoha1987.tumblr.com/
-describe HS_BODY_1817		Heinlein Support Spamschutz Body-1817 Spam
-score HS_BODY_1817		3
-
-body HS_BODY_1819		/graspskills.tcmail.in/
-describe HS_BODY_1819		Heinlein Support Spamschutz Body-1819 Spam
-score HS_BODY_1819		3
-
-body HS_BODY_1820		/treeleaves.co/
-describe HS_BODY_1820		Heinlein Support Spamschutz Body-1820 Spam
-score HS_BODY_1820		3
-
-body HS_BODY_1823		/de.factoum.store/
-describe HS_BODY_1823		Heinlein Support Spamschutz Body-1823 Spam
-score HS_BODY_1823		3
-
-body HS_BODY_1826		/winbitcoin.biz.ua/
-describe HS_BODY_1826		Heinlein Support Spamschutz Body-1826 Spam
-score HS_BODY_1826		3
-
-body HS_BODY_1829		/kunst-tannenbaum.com/
-describe HS_BODY_1829		Heinlein Support Spamschutz Body-1829 Spam
-score HS_BODY_1829		3
-
-body HS_BODY_1831		/kredit.kreditde.group/
-describe HS_BODY_1831		Heinlein Support Spamschutz Body-1831 Spam
-score HS_BODY_1831		2
-
-body HS_BODY_1832		/de.apotekem.group/
-describe HS_BODY_1832		Heinlein Support Spamschutz Body-1832 Spam
-score HS_BODY_1832		2
-
-body HS_BODY_1835		/ INCREASE MAIL BOX/i
-describe HS_BODY_1835		Heinlein Support Spamschutz Body-1835 Phishing
-score HS_BODY_1835		1
-
-body HS_BODY_1837		/oon as you have exceeded quota limit. You need to increase the size of your/
-describe HS_BODY_1837		Heinlein Support Spamschutz Body-1837 Phishing
-score HS_BODY_1837		2
-
-body HS_BODY_1838		/the link below. Failure to increase your mailbox within the next 24 hours w/
-describe HS_BODY_1838		Heinlein Support Spamschutz Body-1838 Phishing
-score HS_BODY_1838		2
-
-body HS_BODY_1840		/^ill lead to account deactivation./
-describe HS_BODY_1840		Heinlein Support Spamschutz Body-1840 Phsihing
-score HS_BODY_1840		1
-
-body HS_BODY_1841		/LED Strahler\, LED Fluter\. Das beste Licht f\. Ihre Sicherheit\. Auch mit/
-describe HS_BODY_1841		Heinlein Support Spamschutz Body-1841 Spam
-score HS_BODY_1841		2
-
-body HS_BODY_1844		/de.germanypharm.group/
-describe HS_BODY_1844		Heinlein Support Spamschutz Body-1844 Spam
-score HS_BODY_1844		2
-
-body HS_BODY_1846		/sweet-bonbon.com/
-describe HS_BODY_1846		Heinlein Support Spamschutz Body-1846 Spam
-score HS_BODY_1846		3
-
-body HS_BODY_1849		/barbgam.com/
-describe HS_BODY_1849		Heinlein Support Spamschutz Body-1849 Spam
-score HS_BODY_1849		3
-
-body HS_BODY_1850		/wheretosubmit.com/
-describe HS_BODY_1850		Heinlein Support Spamschutz Body-1850 Spam
-score HS_BODY_1850		3
-
-body HS_BODY_1851		/visonfolk.com/
-describe HS_BODY_1851		Heinlein Support Spamschutz Body-1851 Spam
-score HS_BODY_1851		3
-
-body HS_BODY_1853		/die von der Tierarzneimittelindustrie praktiziert werden/
-describe HS_BODY_1853		Heinlein Support Spamschutz Body-1853 Spam
-score HS_BODY_1853		3
-
-body HS_BODY_1856		/Die Zucht unserer alten reinrassigen Gefl/
-describe HS_BODY_1856		Heinlein Support Spamschutz Body-1856 Spam
-score HS_BODY_1856		3
-
-body HS_BODY_1859		/ Genozid gegen die Artenvielfalt der Haustiere gibt/
-describe HS_BODY_1859		Heinlein Support Spamschutz Body-1859 Spam
-score HS_BODY_1859		3
-
-body HS_BODY_1862		/Wenn dieselben juristisch-legalen Tierwohlaktivisten mit demselben Elan und Wagemut /
-describe HS_BODY_1862		Heinlein Support Spamschutz Body-1862 Spam
-score HS_BODY_1862		3
-
-body HS_BODY_1864		/Auf den Hilfeseiten das an diese E-Mail angehangte Formular Sie mehr/
-describe HS_BODY_1864		Heinlein Support Spamschutz Body-1864 Phishing
-score HS_BODY_1864		2
-
-body HS_BODY_1865		/Bitte laden Sie das beigef"ugte Formular/
-describe HS_BODY_1865		Heinlein Support Spamschutz Body-1865 Phishing
-score HS_BODY_1865		2
-
-body HS_BODY_1867		/Freundliche Grube/
-describe HS_BODY_1867		Heinlein Support Spamschutz Body-1867 Phishing
-score HS_BODY_1867		2
-
-body HS_BODY_1868		/Mein Vater wurde von meinen Onkeln aus Gier und Neid zu Tode vergiftet./
-describe HS_BODY_1868		Heinlein Support Spamschutz Body-1868 Spam
-score HS_BODY_1868		5
-
-body HS_BODY_1870		/Triannual Philanthropic Donation/
-describe HS_BODY_1870		Heinlein Support Spamschutz Body-1870 Spam
-score HS_BODY_1870		2
-
-body HS_BODY_1871		/geben kostenlose Lebensmittel im Wert von 500/
-describe HS_BODY_1871		Heinlein Support Spamschutz Body-1871 Spam
-score HS_BODY_1871		2
-
-body HS_BODY_1874		/als einer der m=C3=B6glichen Gewinner ausgew=C3=A4hlt/
-describe HS_BODY_1874		Heinlein Support Spamschutz Body-1874 Spam
-score HS_BODY_1874		2
-
-body HS_BODY_1877		/Konto-Nr: 475244-327/
-describe HS_BODY_1877		Heinlein Support Spamschutz Body-1877 Spam
-score HS_BODY_1877		3
-
-body HS_BODY_1879		/dann benutzen Sie bitte eine andere E-Mail-Adresse/
-describe HS_BODY_1879		Heinlein Support Spamschutz Body-1879 Spam
-score HS_BODY_1879		2
-
-body HS_BODY_1880		/Dies ist die Drette Erinnerung/
-describe HS_BODY_1880		Heinlein Support Spamschutz Body-1880 Spam
-score HS_BODY_1880		3
-
-body HS_BODY_1881		/Lassen Sie uns das unter uns bleiben/
-describe HS_BODY_1881		Heinlein Support Spamschutz Body-1881 Spam
-score HS_BODY_1881		2
-
-body HS_BODY_1884		/info\@unitedfinancialgroup.es/
-describe HS_BODY_1884		Heinlein Support Spamschutz Body-1884 Malware
-score HS_BODY_1884		3
-
-body HS_BODY_1887		/E-mail has exceeded the storage limit. You can not send or receive new/
-describe HS_BODY_1887		Heinlein Support Spamschutz Body-1887 Phishing
-score HS_BODY_1887		8
-
-body HS_BODY_1890		/to have your online account unlocked/
-describe HS_BODY_1890		Heinlein Support Spamschutz Body-1890 Phishing
-score HS_BODY_1890		20
-
-body HS_BODY_1891		/^The Mailbox.Team$/
-describe HS_BODY_1891		Heinlein Support Spamschutz Body-1891 Phishing
-score HS_BODY_1891		5
-
-body HS_BODY_1893		/The Mailbox.Team/
-describe HS_BODY_1893		Heinlein Support Spamschutz Body-1893 Phishing
-score HS_BODY_1893		1
-
-body HS_BODY_1895		/Um weitete Kosten zu vermeiden, bitten wir Sie den/
-describe HS_BODY_1895		Heinlein Support Spamschutz Body-1895 Viren
-score HS_BODY_1895		10
-
-body HS_BODY_1898		/You can not send or receive new messages until you re-validate/
-describe HS_BODY_1898		Heinlein Support Spamschutz Body-1898 Phishing
-score HS_BODY_1898		50
-
-body HS_BODY_1901		/has exceeded the storage limit./
-describe HS_BODY_1901		Heinlein Support Spamschutz Body-1901 Phishing
-score HS_BODY_1901		30
-
-body HS_BODY_1902		/^Mailbox.Team/
-describe HS_BODY_1902		Heinlein Support Spamschutz Body-1902 Phishing
-score HS_BODY_1902		50
-
-body HS_BODY_1905		/re-validate your mail/
-describe HS_BODY_1905		Heinlein Support Spamschutz Body-1905 Phishing
-score HS_BODY_1905		200
-
-body HS_BODY_1907		/You can not send or receive new/
-describe HS_BODY_1907		Heinlein Support Spamschutz Body-1907 Phishing
-score HS_BODY_1907		20
-
-#
-# Heinlein Support -- SpamAssassin Regelsätze
-# Use it as it is.
-#
-#
-header HS_HEADER_0		From:=~/^.*\@payapl\.fr/
-describe HS_HEADER_0		Heinlein Support Spamschutz Header-0 Header-Spamschutzregel 1031
-score HS_HEADER_0		5
-
-header HS_HEADER_1		Received =~ /^.*test\@sideaitalia\.com.*/
-describe HS_HEADER_1		Heinlein Support Spamschutz Header-1 
-score HS_HEADER_1		5
-
-header HS_HEADER_2		Subject =~ /^inolar\.com/
-describe HS_HEADER_2		Heinlein Support Spamschutz Header-2 Header-Spamschutzregel 1177
-score HS_HEADER_2		5
-
-header HS_HEADER_3		Return-Path =~  /^\<noreply\@direkt\-sicher\.com\>/
-describe HS_HEADER_3		Heinlein Support Spamschutz Header-3 Header-Spamschutzregel 1176
-score HS_HEADER_3		5
-
-header HS_HEADER_4		Return-Path =~  /^site258\@www\.pand331\.nl/
-describe HS_HEADER_4		Heinlein Support Spamschutz Header-4 Header-Spamschutzregel 1175
-score HS_HEADER_4		5
-
-header HS_HEADER_5		Received =~  /^.*puck844\.server4you\.de.*/
-describe HS_HEADER_5		Heinlein Support Spamschutz Header-5 Header-Spamschutzregel 1174
-score HS_HEADER_5		5
-
-header HS_HEADER_6		From =~  /^.*\<olgaber[1-9]\@yandex\.ru\>.*/
-describe HS_HEADER_6		Heinlein Support Spamschutz Header-6 Header-Spamschutzregel 1173
-score HS_HEADER_6		5
-
-header HS_HEADER_7		From =~  /^.*jpberlin admin \<drepcaulfield\@eircom\.net\>.*/
-describe HS_HEADER_7		Heinlein Support Spamschutz Header-7 Header-Spamschutzregel 1172
-score HS_HEADER_7		5
-
-header HS_HEADER_8		Received =~  /^.*envelope\-from \<konductt\@server\.mwhdns\.com.*/
-describe HS_HEADER_8		Heinlein Support Spamschutz Header-8 Header-Spamschutzregel 1171
-score HS_HEADER_8		5
-
-header HS_HEADER_9		From =~  /^.*dpaypal\@dpaypal\.at/
-describe HS_HEADER_9		Heinlein Support Spamschutz Header-9 Header-Spamschutzregel 1170
-score HS_HEADER_9		5
-
-header HS_HEADER_10		Subject =~  /^.*=?koi8-r?B?ycvBINDPIMTPzMfBzSDLz83Qwc7JyS4=?=.*/
-describe HS_HEADER_10		Heinlein Support Spamschutz Header-10 Header-Spamschutzregel 1169
-score HS_HEADER_10		5
-
-header HS_HEADER_11		Subject =~  /^.*Company founded in Gibraltar is currently looking for European sector based labor force.*/
-describe HS_HEADER_11		Heinlein Support Spamschutz Header-11 Header-Spamschutzregel 1168
-score HS_HEADER_11		5
-
-header HS_HEADER_12		From =~  /^.*\@papertocad\.de/
-describe HS_HEADER_12		Heinlein Support Spamschutz Header-12 Header-Spamschutzregel 1167
-score HS_HEADER_12		5
-
-header HS_HEADER_13		From =~  /^.*admin\@mailbox\.com.*/
-describe HS_HEADER_13		Heinlein Support Spamschutz Header-13 Header-Spamschutzregel 1166
-score HS_HEADER_13		5
-
-header HS_HEADER_14		From =~  /^.*Billing\-Service\@NetPay\.de.*/
-describe HS_HEADER_14		Heinlein Support Spamschutz Header-14 Header-Spamschutzregel 1165
-score HS_HEADER_14		5
-
-header HS_HEADER_15		Subject: =~  /^.*V[^a-z]{3,6}[1,i,l][^a-z]{3,6}A[^a-z]{3,6}G[^a-z]{3,6}R[^a-z]{3,6}A/
-describe HS_HEADER_15		Heinlein Support Spamschutz Header-15 Header-Spamschutzregel 1164
-score HS_HEADER_15		5
-
-header HS_HEADER_16		Sender =~  /^.*phpscript\@ws[0-9]\.microware\.hu.*$/
-describe HS_HEADER_16		Heinlein Support Spamschutz Header-16 Header-Spamschutzregel 1163
-score HS_HEADER_16		5
-
-header HS_HEADER_17		Subject =~  /^.*async\.facebook\.com.*$/
-describe HS_HEADER_17		Heinlein Support Spamschutz Header-17 Header-Spamschutzregel 1162
-score HS_HEADER_17		5
-
-header HS_HEADER_18		Subject =~  /^.*Ihr freundlicher Support$/
-describe HS_HEADER_18		Heinlein Support Spamschutz Header-18 Header-Spamschutzregel 1161
-score HS_HEADER_18		5
-
-header HS_HEADER_19		From =~  /^.*\@deutschseo\.com/
-describe HS_HEADER_19		Heinlein Support Spamschutz Header-19 Header-Spamschutzregel 1160
-score HS_HEADER_19		5
-
-header HS_HEADER_20		X-RocketYMMF =~  /^webluck1847\@att\.net/
-describe HS_HEADER_20		Heinlein Support Spamschutz Header-20 Header-Spamschutzregel 1159
-score HS_HEADER_20		5
-
-header HS_HEADER_21		Subject =~  /^offizielle sieger/
-describe HS_HEADER_21		Heinlein Support Spamschutz Header-21 Header-Spamschutzregel 1158
-score HS_HEADER_21		5
-
-header HS_HEADER_22		From =~  /.*\@verifiedbyvisa\.fr*/
-describe HS_HEADER_22		Heinlein Support Spamschutz Header-22 Header-Spamschutzregel 1157
-score HS_HEADER_22		5
-
-header HS_HEADER_23		Reply-To =~  /.*\@verifiedbyvisa\.fr/
-describe HS_HEADER_23		Heinlein Support Spamschutz Header-23 Header-Spamschutzregel 1156
-score HS_HEADER_23		5
-
-header HS_HEADER_24		Reply-To =~  /.*girl\@mailisfree\.com/
-describe HS_HEADER_24		Heinlein Support Spamschutz Header-24 Header-Spamschutzregel 1155
-score HS_HEADER_24		5
-
-header HS_HEADER_25		Subject =~  /^vous devez reglez votre compte free\.fr/
-describe HS_HEADER_25		Heinlein Support Spamschutz Header-25 Header-Spamschutzregel 1154
-score HS_HEADER_25		5
-
-header HS_HEADER_26		Message-ID =~  /.*mscreator[0-9][0-9]\.fagms\.de/
-describe HS_HEADER_26		Heinlein Support Spamschutz Header-26 Header-Spamschutzregel 1153
-score HS_HEADER_26		1
-
-header HS_HEADER_27		Subject =~  /^gelegenheit zur webverbesserung/
-describe HS_HEADER_27		Heinlein Support Spamschutz Header-27 Header-Spamschutzregel 1052
-score HS_HEADER_27		5
-
-header HS_HEADER_28		Subject =~  /^Achtung! Ihr paypal-Konto wurde begrenzt!/
-describe HS_HEADER_28		Heinlein Support Spamschutz Header-28 Header-Spamschutzregel 1051
-score HS_HEADER_28		5
-
-header HS_HEADER_29		X-PHP-Script =~  /^campnetworking\.ca\/images\/susscesful_soties\/nfoscomm\.php*/
-describe HS_HEADER_29		Heinlein Support Spamschutz Header-29 Header-Spamschutzregel 1050
-score HS_HEADER_29		5
-
-header HS_HEADER_30		Subject =~  /^.*zusammenarbeit zur webverbesserung/
-describe HS_HEADER_30		Heinlein Support Spamschutz Header-30 Header-Spamschutzregel 1049
-score HS_HEADER_30		5
-
-header HS_HEADER_31		X-PHP-Script =~  /^biditsaleit\.com\/dz\/mailer\.php*/
-describe HS_HEADER_31		Heinlein Support Spamschutz Header-31 Header-Spamschutzregel 1048
-score HS_HEADER_31		5
-
-header HS_HEADER_32		Subject =~  /^.*from GMC manufacturer/
-describe HS_HEADER_32		Heinlein Support Spamschutz Header-32 
-score HS_HEADER_32		5
-
-header HS_HEADER_33		Return-Path =~  /.*ventouxl\@ns[0-9]{3}\.medialook\.net/
-describe HS_HEADER_33		Heinlein Support Spamschutz Header-33 
-score HS_HEADER_33		5
-
-header HS_HEADER_34		From  =~  /^.*Topillen Apotheke /
-describe HS_HEADER_34		Heinlein Support Spamschutz Header-34 
-score HS_HEADER_34		5
-
-header HS_HEADER_35		Subject =~  /^Top Apotheke/
-describe HS_HEADER_35		Heinlein Support Spamschutz Header-35 
-score HS_HEADER_35		5
-
-header HS_HEADER_36		message-ID =~  /.*phx\.gbl/
-describe HS_HEADER_36		Heinlein Support Spamschutz Header-36 
-score HS_HEADER_36		1
-
-header HS_HEADER_37		List-Unsubscribe =~  /.*e\-mailing\.pymac\.fr\/[a-z]\/[a-z]\/[0-9]{4}\/[0-9]{6}/
-describe HS_HEADER_37		Heinlein Support Spamschutz Header-37 
-score HS_HEADER_37		5
-
-header HS_HEADER_38		Return-Path =~  /.*\@oanm[0-9]{2}\.com/
-describe HS_HEADER_38		Heinlein Support Spamschutz Header-38 Header-Spamschutzregel 1141
-score HS_HEADER_38		5
-
-header HS_HEADER_39		Subject =~  /^lighting products from GMC manufacturer/
-describe HS_HEADER_39		Heinlein Support Spamschutz Header-39 Header-Spamschutzregel 1140
-score HS_HEADER_39		5
-
-header HS_HEADER_40		Subject =~  /^OFFIZIELLE GEWINNBENACHRITIGUNG/
-describe HS_HEADER_40		Heinlein Support Spamschutz Header-40 Header-Spamschutzregel 1139
-score HS_HEADER_40		5
-
-header HS_HEADER_41		Subject =~  /^God bless you as you get back to me/
-describe HS_HEADER_41		Heinlein Support Spamschutz Header-41 Header-Spamschutzregel 1038
-score HS_HEADER_41		5
-
-header HS_HEADER_42		List-Unsubscribe =~  /.*tk3\.sbc01\.com\/sy\/\*/
-describe HS_HEADER_42		Heinlein Support Spamschutz Header-42 Header-Spamschutzregel 1037
-score HS_HEADER_42		5
-
-header HS_HEADER_43		List-Unsubscribe =~  /tk3\.sbc01\.com\/sy\/\*/
-describe HS_HEADER_43		Heinlein Support Spamschutz Header-43 Header-Spamschutzregel 1037
-score HS_HEADER_43		5
-
-header HS_HEADER_44		Message-ID =~  /.*[0-9]{8}\-[0-9]{8}\-[0-9a-z]{3}\-0\@S102*/
-describe HS_HEADER_44		Heinlein Support Spamschutz Header-44 Header-Spamschutzregel 1036
-score HS_HEADER_44		5
-
-header HS_HEADER_45		Subject =~  /.*YOUR EMAIL HAS WON YOU GBP*/
-describe HS_HEADER_45		Heinlein Support Spamschutz Header-45 Header-Spamschutzregel 1035
-score HS_HEADER_45		5
-
-header HS_HEADER_46		From =~  /.*ventouxl\@ns[0-9]?[0-9]\.medialook\.net/
-describe HS_HEADER_46		Heinlein Support Spamschutz Header-46 Header-Spamschutzregel 1034
-score HS_HEADER_46		5
-
-header HS_HEADER_47		From =~  /.*gestioncreditexpert_[0-9]{4}\@gce\-mailer\-[0-9]{2}\.com/
-describe HS_HEADER_47		Heinlein Support Spamschutz Header-47 Header-Spamschutzregel 1033
-score HS_HEADER_47		5
-
-header HS_HEADER_48		From =~  /^.*erosvision\.com/
-describe HS_HEADER_48		Heinlein Support Spamschutz Header-48 Header-Spamschutzregel 1032
-score HS_HEADER_48		5
-
-header HS_HEADER_50		X-PHP-Script =~  /^mars\.rapidvps\.com\/~emoosite\/tmp\/install_4b10cb87da737\/languages\/site\/husa\.php*/
-describe HS_HEADER_50		Heinlein Support Spamschutz Header-50 Header-Spamschutzregel 1030
-score HS_HEADER_50		5
-
-header HS_HEADER_51		Thread-Index =~  /.*Acvd0cAG8IQaasqAcNaztWODnM30ZA/
-describe HS_HEADER_51		Heinlein Support Spamschutz Header-51 Header-Spamschutzregel 1029
-score HS_HEADER_51		5
-
-header HS_HEADER_52		Subject =~  /^aktualisieren Sie Ihre Bankdaten/
-describe HS_HEADER_52		Heinlein Support Spamschutz Header-52 Header-Spamschutzregel 1028
-score HS_HEADER_52		5
-
-header HS_HEADER_53		Subject =~  /^Erfahrungsbericht Bernd Matthes/
-describe HS_HEADER_53		Heinlein Support Spamschutz Header-53 Header-Spamschutzregel 1027
-score HS_HEADER_53		5
-
-header HS_HEADER_54		Subject =~  /^.*IP PBX/
-describe HS_HEADER_54		Heinlein Support Spamschutz Header-54 Header-Spamschutzregel 1026
-score HS_HEADER_54		5
-
-header HS_HEADER_55		From =~  /^.*Nicoll Christopher John/
-describe HS_HEADER_55		Heinlein Support Spamschutz Header-55 Header-Spamschutzregel 1025
-score HS_HEADER_55		5
-
-header HS_HEADER_56		From =~  /^.*SHELL PETROLEUM/
-describe HS_HEADER_56		Heinlein Support Spamschutz Header-56 Header-Spamschutzregel 1024
-score HS_HEADER_56		5
-
-header HS_HEADER_57		From =~  /^.*Versicherungs Dienst/
-describe HS_HEADER_57		Heinlein Support Spamschutz Header-57 Header-Spamschutzregel 1023
-score HS_HEADER_57		5
-
-header HS_HEADER_58		From =~  /^.*soft\-cd\.com/
-describe HS_HEADER_58		Heinlein Support Spamschutz Header-58 Header-Spamschutzregel 1022
-score HS_HEADER_58		5
-
-header HS_HEADER_59		From =~  /^\"Oxford Business News\" \<info\@oxford\-bn\.org\>/
-describe HS_HEADER_59		Heinlein Support Spamschutz Header-59 Header-Spamschutzregel 1021
-score HS_HEADER_59		5
-
-header HS_HEADER_60		Subject =~  /^=\?iso\-8859\-1\?Q\?Leider_st=F6\?= =\?iso-8859-1\?Q\?ren_Sie\.\?\=/
-describe HS_HEADER_60		Heinlein Support Spamschutz Header-60 Header-Spamschutzregel 1020
-score HS_HEADER_60		5
-
-header HS_HEADER_61		From =~  /^.*Elena.*\@eposta\.ru/
-describe HS_HEADER_61		Heinlein Support Spamschutz Header-61 Header-Spamschutzregel 1019
-score HS_HEADER_61		5
-
-header HS_HEADER_62		Subject =~  /^.*Results 2008 \!/
-describe HS_HEADER_62		Heinlein Support Spamschutz Header-62 Header-Spamschutzregel 1018
-score HS_HEADER_62		5
-
-header HS_HEADER_63		From =~  /^Sponsor Lotto/
-describe HS_HEADER_63		Heinlein Support Spamschutz Header-63 Header-Spamschutzregel 1017
-score HS_HEADER_63		5
-
-header HS_HEADER_64		From =~  /^.*nodiet\@web\.de/
-describe HS_HEADER_64		Heinlein Support Spamschutz Header-64 Header-Spamschutzregel 1016
-score HS_HEADER_64		5
-
-header HS_HEADER_65		From =~  /^.*edirects\.com/
-describe HS_HEADER_65		Heinlein Support Spamschutz Header-65 Header-Spamschutzregel 1015
-score HS_HEADER_65		5
-
-header HS_HEADER_66		Subject =~  /^.*WINNING NOTIFICATION\!\!\!/
-describe HS_HEADER_66		Heinlein Support Spamschutz Header-66 
-score HS_HEADER_66		5
-
-header HS_HEADER_67		Subject =~  /^.*Wir wissen was Frauen wollern/
-describe HS_HEADER_67		Heinlein Support Spamschutz Header-67 Header-Spamschutzregel 1013
-score HS_HEADER_67		5
-
-header HS_HEADER_68		From =~  /^.*newscd\.org/
-describe HS_HEADER_68		Heinlein Support Spamschutz Header-68 Header-Spamschutzregel 1012
-score HS_HEADER_68		5
-
-header HS_HEADER_69		From =~  /^.*mms\-und\-sms\-gutschein\.com/
-describe HS_HEADER_69		Heinlein Support Spamschutz Header-69 Header-Spamschutzregel 1011
-score HS_HEADER_69		5
-
-header HS_HEADER_70		Subject =~  /^.*CONFIRM YOUR WINNING/
-describe HS_HEADER_70		Heinlein Support Spamschutz Header-70 Header-Spamschutzregel 1010
-score HS_HEADER_70		5
-
-header HS_HEADER_71		Subject =~  /^.*Gratisaktion \- Du wurdest ausgewaehlt unseren neuen SMS/
-describe HS_HEADER_71		Heinlein Support Spamschutz Header-71 Header-Spamschutzregel 1009
-score HS_HEADER_71		5
-
-header HS_HEADER_72		From =~  /^.*Seitensprung/
-describe HS_HEADER_72		Heinlein Support Spamschutz Header-72 Header-Spamschutzregel 1008
-score HS_HEADER_72		5
-
-header HS_HEADER_73		Received =~  /^.*germans\-mailc\.com/
-describe HS_HEADER_73		Heinlein Support Spamschutz Header-73 Header-Spamschutzregel 1007
-score HS_HEADER_73		5
-
-header HS_HEADER_74		Received =~  /^.*stienitzsee\.info/
-describe HS_HEADER_74		Heinlein Support Spamschutz Header-74 Header-Spamschutzregel 1006
-score HS_HEADER_74		5
-
-header HS_HEADER_75		Subject =~  /^Bonus 555eu/
-describe HS_HEADER_75		Heinlein Support Spamschutz Header-75 Header-Spamschutzregel 1005
-score HS_HEADER_75		5
-
-header HS_HEADER_76		Subject =~ /.*(ATTN|TO) *:.*SALES? *MANAGER/
-describe HS_HEADER_76		Heinlein Support Spamschutz Header-76 Header-Spamschutzregel 1004
-score HS_HEADER_76		5
-
-header HS_HEADER_77		Subject =~  /^.*Take this postcard now\!/
-describe HS_HEADER_77		Heinlein Support Spamschutz Header-77 Header-Spamschutzregel 1003
-score HS_HEADER_77		5
-
-header HS_HEADER_78		Subject =~  /^.*FUXIN/
-describe HS_HEADER_78		Heinlein Support Spamschutz Header-78 Header-Spamschutzregel 1002
-score HS_HEADER_78		5
-
-header HS_HEADER_79		From =~  /^.*marion\.backera/
-describe HS_HEADER_79		Heinlein Support Spamschutz Header-79 Header-Spamschutzregel 1001
-score HS_HEADER_79		5
-
-header HS_HEADER_80		Subject =~  /^.*kein spam\. aber eine Antwort auf ihre Fragen/
-describe HS_HEADER_80		Heinlein Support Spamschutz Header-80 Header-Spamschutzregel 1000
-score HS_HEADER_80		5
-
-header HS_HEADER_81		Subject =~  /^4,8 Mill\. Osteuropaeer durch Fischer\-Volmer Erlass/
-describe HS_HEADER_81		Heinlein Support Spamschutz Header-81  Nazi Spam1
-score HS_HEADER_81		5
-
-header HS_HEADER_82		Subject =~ /^Auf Streife durch den Berliner Wedding/
-describe HS_HEADER_82		Heinlein Support Spamschutz Header-82  Nazi Spam2
-score HS_HEADER_82		5
-
-header HS_HEADER_83		Subject =~ /^Auslaender bevorzugt/
-describe HS_HEADER_83		Heinlein Support Spamschutz Header-83  Nazi Spam3
-score HS_HEADER_83		5
-
-header HS_HEADER_84		Subject =~ /^Auslaenderpolitik/
-describe HS_HEADER_84		Heinlein Support Spamschutz Header-84  Nazi Spam4
-score HS_HEADER_84		5
-
-header HS_HEADER_85		Subject =~ /^Deutsche werden kuenftig beim Arzt abgezockt/
-describe HS_HEADER_85		Heinlein Support Spamschutz Header-85  Nazi Spam5
-score HS_HEADER_85		5
-
-header HS_HEADER_86		Subject =~ /^Du wirst zum Sklaven gemacht\!\!\!/
-describe HS_HEADER_86		Heinlein Support Spamschutz Header-86  Nazi Spam6
-score HS_HEADER_86		5
-
-header HS_HEADER_87		Subject =~ /^Graeberschaendung auf bundesdeutsche Anordnung/
-describe HS_HEADER_87		Heinlein Support Spamschutz Header-87  Nazi Spam7
-score HS_HEADER_87		5
-
-header HS_HEADER_88		Subject =~ /^Hier sind wir Lehrer die einzigen Auslaender/
-describe HS_HEADER_88		Heinlein Support Spamschutz Header-88  Nazi Spam8
-score HS_HEADER_88		5
-
-header HS_HEADER_89		Subject =~ /^Paranoider Deutschenmoerder kommt in Psychiatrie/
-describe HS_HEADER_89		Heinlein Support Spamschutz Header-89  Nazi Spam9
-score HS_HEADER_89		5
-
-header HS_HEADER_90		Subject =~ /^Tuerkei in die EU/
-describe HS_HEADER_90		Heinlein Support Spamschutz Header-90  Nazi Spam10
-score HS_HEADER_90		5
-
-header HS_HEADER_91		Subject =~  /^Verbrechen der deutschen Frau/
-describe HS_HEADER_91		Heinlein Support Spamschutz Header-91  Nazi Spam11
-score HS_HEADER_91		5
-
-header HS_HEADER_92		Subject =~  /^.*Skandal in Berlin/
-describe HS_HEADER_92		Heinlein Support Spamschutz Header-92  JPBERLIN-14
-score HS_HEADER_92		5
-
-header HS_HEADER_93		Subject =~ /^.*Auslaendergewalt: Herr Rau, wo waren Sie?/
-describe HS_HEADER_93		Heinlein Support Spamschutz Header-93  JPBERLIN-15
-score HS_HEADER_93		5
-
-header HS_HEADER_94		Subject =~  /^.*Bankrott des Gesundheitswesens durch Auslaender!/
-describe HS_HEADER_94		Heinlein Support Spamschutz Header-94  JPBERLIN-16
-score HS_HEADER_94		5
-
-header HS_HEADER_95		Subject =~  /^.*Wer an ein Tabu ruehrt, muss und darf vernichtet werden/
-describe HS_HEADER_95		Heinlein Support Spamschutz Header-95  JPBERLIN-17
-score HS_HEADER_95		5
-
-header HS_HEADER_96		Subject =~  /^.*EU Beitritt der Tuerkei/
-describe HS_HEADER_96		Heinlein Support Spamschutz Header-96  JPBERLIN-18
-score HS_HEADER_96		5
-
-header HS_HEADER_97		Subject =~  /^.*Bin ich zu weltfremd.*Ich glaube wohl kaum/
-describe HS_HEADER_97		Heinlein Support Spamschutz Header-97  JPBERLIN-19
-score HS_HEADER_97		5
-
-header HS_HEADER_98		Subject =~  /^.*Die Deform der sozialen Ordnung/
-describe HS_HEADER_98		Heinlein Support Spamschutz Header-98  JPBERLIN-20
-score HS_HEADER_98		5
-
-header HS_HEADER_99		Subject =~  /^.*Moschee-Bau in Deutschland/
-describe HS_HEADER_99		Heinlein Support Spamschutz Header-99  JPBERLIN-21
-score HS_HEADER_99		5
-
-header HS_HEADER_100		Subject =~  /^.*Augen auf.*So sieht es aus/
-describe HS_HEADER_100		Heinlein Support Spamschutz Header-100  JPBERLIN-22
-score HS_HEADER_100		5
-
-header HS_HEADER_101		Subject =~  /^.*Paradies Bundesrepublik - Rente fuer die Welt/
-describe HS_HEADER_101		Heinlein Support Spamschutz Header-101  JPBERLIN-23
-score HS_HEADER_101		5
-
-header HS_HEADER_102		Subject =~  /^.*Libanesen in Berlin/
-describe HS_HEADER_102		Heinlein Support Spamschutz Header-102  JPBERLIN-24
-score HS_HEADER_102		5
-
-header HS_HEADER_103		Subject =~  /^.*Garather klagen ueber eskalierende Gewalt im Stadtteil!/
-describe HS_HEADER_103		Heinlein Support Spamschutz Header-103  JPBERLIN-24
-score HS_HEADER_103		5
-
-header HS_HEADER_104		Subject =~  /^.*Auslaender erschleichen sich zunehmend Sozialleistungen/
-describe HS_HEADER_104		Heinlein Support Spamschutz Header-104  JPBERLIN-25
-score HS_HEADER_104		5
-
-header HS_HEADER_105		Subject =~  /^.*Auslaenderkriminalitaet steigt weiter!/
-describe HS_HEADER_105		Heinlein Support Spamschutz Header-105  JPBERLIN-26
-score HS_HEADER_105		5
-
-header HS_HEADER_106		Subject =~  /^.*Das kann unmoeglich sein -Leserbrief/
-describe HS_HEADER_106		Heinlein Support Spamschutz Header-106  JPBERLIN-27
-score HS_HEADER_106		5
-
-header HS_HEADER_107		Subject =~  /^.*Nein zum Zuwanderungsgesetz !/
-describe HS_HEADER_107		Heinlein Support Spamschutz Header-107  JPBERLIN-28
-score HS_HEADER_107		5
-
-header HS_HEADER_108		Subject =~  /^.*Skandalurteil in Darmstadt/
-describe HS_HEADER_108		Heinlein Support Spamschutz Header-108  JPBERLIN-29
-score HS_HEADER_108		5
-
-header HS_HEADER_109		Subject =~  /^.*Auf Kosten der deutschen Beitragszahler und Rentner!/
-describe HS_HEADER_109		Heinlein Support Spamschutz Header-109  JPBERLIN-30
-score HS_HEADER_109		5
-
-header HS_HEADER_110		Subject =~  /^.*Wir haben die Auslaender doch geholt/
-describe HS_HEADER_110		Heinlein Support Spamschutz Header-110  JPBERLIN-31
-score HS_HEADER_110		5
-
-header HS_HEADER_111		Subject =~  /^.*TUERKEN\-TERROR AM HIMMELFAHRTSTAG/
-describe HS_HEADER_111		Heinlein Support Spamschutz Header-111  JPBERLIN-32
-score HS_HEADER_111		5
-
-header HS_HEADER_112		Subject =~  /^.*MULTI\-KULTI\-BANDE TYRANNISIERTE MITSCHUELER/
-describe HS_HEADER_112		Heinlein Support Spamschutz Header-112  JPBERLIN-33
-score HS_HEADER_112		5
-
-header HS_HEADER_113		Subject =~  /^.*ASYLANTEN BEGRABSCHTEN DEUTSCHES MAEDCHEN/
-describe HS_HEADER_113		Heinlein Support Spamschutz Header-113  JPBERLIN-34
-score HS_HEADER_113		5
-
-header HS_HEADER_114		Subject =~  /^.*Was Deutschland braucht, sind deutsche Kinder!/
-describe HS_HEADER_114		Heinlein Support Spamschutz Header-114  JPBERLIN-35
-score HS_HEADER_114		5
-
-header HS_HEADER_115		Subject =~  /^.*Diplomatische Zensur/
-describe HS_HEADER_115		Heinlein Support Spamschutz Header-115  JPBERLIN-36
-score HS_HEADER_115		5
-
-header HS_HEADER_116		Subject =~  /^.*EU gibt Erwerbslosen volle Freizuegigkeit/
-describe HS_HEADER_116		Heinlein Support Spamschutz Header-116  JPBERLIN-37
-score HS_HEADER_116		5
-
-header HS_HEADER_117		Subject =~  /^.*Richter unterstuetzt kriminelle Auslaenderin/
-describe HS_HEADER_117		Heinlein Support Spamschutz Header-117  JPBERLIN-38
-score HS_HEADER_117		5
-
-header HS_HEADER_118		Subject =~  /^.*Auslaenderanteile in Schweizer Gefaengnissen/
-describe HS_HEADER_118		Heinlein Support Spamschutz Header-118  JPBERLIN-39
-score HS_HEADER_118		5
-
-header HS_HEADER_119		Subject =~  /^.*Augen auf\! (So sieht es aus\!)/
-describe HS_HEADER_119		Heinlein Support Spamschutz Header-119  JPBERLIN-40
-score HS_HEADER_119		5
-
-header HS_HEADER_120		Subject =~  /^.*Neue Voelkerwanderung droht\!/
-describe HS_HEADER_120		Heinlein Support Spamschutz Header-120  JPBERLIN-41
-score HS_HEADER_120		5
-
-header HS_HEADER_121		Subject =~  /^.*Client TOS Notification/
-describe HS_HEADER_121		Heinlein Support Spamschutz Header-121  JPBERLIN-50
-score HS_HEADER_121		5
-
-header HS_HEADER_122		Subject =~  /^.*Postbank Sicherheitsaktualisierung/
-describe HS_HEADER_122		Heinlein Support Spamschutz Header-122  JPBERLIN-52
-score HS_HEADER_122		5
-
-header HS_HEADER_123		Subject =~  /^.*Sicherheitsaktualisierung/
-describe HS_HEADER_123		Heinlein Support Spamschutz Header-123  JPBERLIN-53
-score HS_HEADER_123		5
-
-header HS_HEADER_124		Subject =~  /^.*Deutsche-bank Sicherheitsaktualisierung/
-describe HS_HEADER_124		Heinlein Support Spamschutz Header-124  JPBERLIN-54
-score HS_HEADER_124		5
-
-header HS_HEADER_125		Subject =~  /^.*internet.*pharmacy/
-describe HS_HEADER_125		Heinlein Support Spamschutz Header-125  JPBERLIN-55
-score HS_HEADER_125		5
-
-header HS_HEADER_126		Subject =~  /^.*Affordable Premade Logos/
-describe HS_HEADER_126		Heinlein Support Spamschutz Header-126  JPBERLIN-56
-score HS_HEADER_126		5
-
-header HS_HEADER_127		Subject =~  /^.*Best prices.*on the net/
-describe HS_HEADER_127		Heinlein Support Spamschutz Header-127  JPBERLIN-57
-score HS_HEADER_127		5
-
-header HS_HEADER_128		Subject =~  /^.*Phentermine/
-describe HS_HEADER_128		Heinlein Support Spamschutz Header-128  JPBERLIN-60
-score HS_HEADER_128		5
-
-header HS_HEADER_130		Subject =~  /^.*Die Sahne tropft heraus/
-describe HS_HEADER_130		Heinlein Support Spamschutz Header-130  JPBERLIN-61
-score HS_HEADER_130		5
-
-header HS_HEADER_132		Subject =~  /^.*Replica Watch Models/
-describe HS_HEADER_132		Heinlein Support Spamschutz Header-132  JPBERLIN-64
-score HS_HEADER_132		5
-
-header HS_HEADER_133		Subject =~  /^.*Sehr geehrter Postbankkunde/
-describe HS_HEADER_133		Heinlein Support Spamschutz Header-133  JPBERLIN-65
-score HS_HEADER_133		5
-
-header HS_HEADER_134		Subject =~  /^.*AIR ANTALYA/
-describe HS_HEADER_134		Heinlein Support Spamschutz Header-134  JPBERLIN-66
-score HS_HEADER_134		5
-
-header HS_HEADER_135		Subject =~  /^.*Search engines \- submit/
-describe HS_HEADER_135		Heinlein Support Spamschutz Header-135  JPBERLIN-12
-score HS_HEADER_135		5
-
-header HS_HEADER_136		Subject =~  /^.*Search engine traffic/
-describe HS_HEADER_136		Heinlein Support Spamschutz Header-136  JPBERLIN-13
-score HS_HEADER_136		5
-
-header HS_HEADER_137		Subject =~  /^More efficient than via\-gra/
-describe HS_HEADER_137		Heinlein Support Spamschutz Header-137 Header-Spamschutzregel 22
-score HS_HEADER_137		5
-
-header HS_HEADER_138		Subject =~  /^Mailadresse unbekannt/
-describe HS_HEADER_138		Heinlein Support Spamschutz Header-138 Header-Spamschutzregel 27
-score HS_HEADER_138		5
-
-header HS_HEADER_139		Subject =~ /^.*SARS\: Viet Nam removed from list of affected countries.*/
-describe HS_HEADER_139		Heinlein Support Spamschutz Header-139 Header-Spamschutzregel 29
-score HS_HEADER_139		5
-
-header HS_HEADER_140		Subject =~  /^.*Wichtig \!\!\! Die Telefonnummer die du haben wolltest/
-describe HS_HEADER_140		Heinlein Support Spamschutz Header-140 Header-Spamschutzregel 31
-score HS_HEADER_140		5
-
-header HS_HEADER_141		Subject =~  /^.*Weihnachtsbaeume ab EURO.*/
-describe HS_HEADER_141		Heinlein Support Spamschutz Header-141 Header-Spamschutzregel 32
-score HS_HEADER_141		5
-
-header HS_HEADER_142		Subject =~  /^.*Neue Version zum downloaden.*/
-describe HS_HEADER_142		Heinlein Support Spamschutz Header-142 Header-Spamschutzregel 33
-score HS_HEADER_142		5
-
-header HS_HEADER_143		Subject =~  /^.*Frants for.*/
-describe HS_HEADER_143		Heinlein Support Spamschutz Header-143 Header-Spamschutzregel 34
-score HS_HEADER_143		5
-
-header HS_HEADER_144		Subject =~  /^.*FREEE.*/
-describe HS_HEADER_144		Heinlein Support Spamschutz Header-144 Header-Spamschutzregel 35
-score HS_HEADER_144		5
-
-header HS_HEADER_145		Subject =~  /^.*Webdesign leicht gemacht.*/
-describe HS_HEADER_145		Heinlein Support Spamschutz Header-145 Header-Spamschutzregel 36
-score HS_HEADER_145		5
-
-header HS_HEADER_146		Subject =~  /^.*Check this Message Board Out.*/
-describe HS_HEADER_146		Heinlein Support Spamschutz Header-146 Header-Spamschutzregel 37
-score HS_HEADER_146		5
-
-header HS_HEADER_147		Subject =~  /^SAVE GERMANY VOTE STOIBER.*/
-describe HS_HEADER_147		Heinlein Support Spamschutz Header-147 Header-Spamschutzregel 38
-score HS_HEADER_147		5
-
-header HS_HEADER_148		Received =~  /^.*luftmensch\.com/
-describe HS_HEADER_148		Heinlein Support Spamschutz Header-148 Header-Spamschutzregel 28
-score HS_HEADER_148		5
-
-header HS_HEADER_149		From =~ /.*Mandy Tweed/
-describe HS_HEADER_149		Heinlein Support Spamschutz Header-149 Header-Spamschutzregel 39
-score HS_HEADER_149		5
-
-header HS_HEADER_150		Received =~ /from privat .*\.aol\.com/
-describe HS_HEADER_150		Heinlein Support Spamschutz Header-150 Header-Spamschutzregel 40
-score HS_HEADER_150		5
-
-header HS_HEADER_151		Received =~ /.*tpg_exsrvr\.thepowellgroup\.com/
-describe HS_HEADER_151		Heinlein Support Spamschutz Header-151 Header-Spamschutzregel 41
-score HS_HEADER_151		5
-
-header HS_HEADER_152		Received =~ /from mx?\.eudoramail\.com/
-describe HS_HEADER_152		Heinlein Support Spamschutz Header-152 Header-Spamschutzregel 42
-score HS_HEADER_152		5
-
-header HS_HEADER_154		Subject =~ /^FW\: Warm this world by truely Love$/
-describe HS_HEADER_154		Heinlein Support Spamschutz Header-154 Header-Spamschutzregel 51
-score HS_HEADER_154		5
-
-header HS_HEADER_155		Subject =~ /^.*Fwd\:Peace BeTweeN AmeriCa and IsLaM\!/
-describe HS_HEADER_155		Heinlein Support Spamschutz Header-155 Header-Spamschutzregel 58
-score HS_HEADER_155		5
-
-header HS_HEADER_156		Subject =~  /^ILOVEYOU/
-describe HS_HEADER_156		Heinlein Support Spamschutz Header-156 Header-Spamschutzregel 60
-score HS_HEADER_156		5
-
-header HS_HEADER_157		Subject =~ /^(Re: )*BubbleBoy is back\!/
-describe HS_HEADER_157		Heinlein Support Spamschutz Header-157 Header-Spamschutzregel 62
-score HS_HEADER_157		5
-
-header HS_HEADER_158		Subject =~  /^Accept Credit Cards/
-describe HS_HEADER_158		Heinlein Support Spamschutz Header-158 Header-Spamschutzregel 63
-score HS_HEADER_158		5
-
-header HS_HEADER_159		Subject =~  /^How Soon Are You Going To Retire\?/
-describe HS_HEADER_159		Heinlein Support Spamschutz Header-159 Header-Spamschutzregel 64
-score HS_HEADER_159		5
-
-header HS_HEADER_160		Subject =~ /^\[ADV\:/
-describe HS_HEADER_160		Heinlein Support Spamschutz Header-160 Header-Spamschutzregel 65
-score HS_HEADER_160		5
-
-header HS_HEADER_161		Subject =~ /^ADV\:/
-describe HS_HEADER_161		Heinlein Support Spamschutz Header-161 Header-Spamschutzregel 66
-score HS_HEADER_161		5
-
-header HS_HEADER_162		Subject =~  /^Snowhite and the Seven Dwarfs \- The REAL story\!/
-describe HS_HEADER_162		Heinlein Support Spamschutz Header-162 Header-Spamschutzregel 67
-score HS_HEADER_162		5
-
-header HS_HEADER_163		Subject =~  /^Are you losing sleep over debt\?/
-describe HS_HEADER_163		Heinlein Support Spamschutz Header-163 Header-Spamschutzregel 68
-score HS_HEADER_163		5
-
-header HS_HEADER_164		Subject =~  /^a stock that makes money/
-describe HS_HEADER_164		Heinlein Support Spamschutz Header-164 Header-Spamschutzregel 69
-score HS_HEADER_164		5
-
-header HS_HEADER_165		Subject =~  /^high earnings may soar/
-describe HS_HEADER_165		Heinlein Support Spamschutz Header-165 Header-Spamschutzregel 70
-score HS_HEADER_165		5
-
-header HS_HEADER_166		Subject =~  /^See the VIDEO Britney/
-describe HS_HEADER_166		Heinlein Support Spamschutz Header-166 Header-Spamschutzregel 71
-score HS_HEADER_166		5
-
-header HS_HEADER_167		Subject =~ /^FW\: VIDEOS OF BRITNEY/
-describe HS_HEADER_167		Heinlein Support Spamschutz Header-167 Header-Spamschutzregel 72
-score HS_HEADER_167		5
-
-header HS_HEADER_168		Subject =~  /^STOLEN HARDCORE VIDEO/
-describe HS_HEADER_168		Heinlein Support Spamschutz Header-168 Header-Spamschutzregel 73
-score HS_HEADER_168		5
-
-header HS_HEADER_169		Subject =~  /^NEW CASH PROGRAM/
-describe HS_HEADER_169		Heinlein Support Spamschutz Header-169 Header-Spamschutzregel 74
-score HS_HEADER_169		5
-
-header HS_HEADER_170		Subject =~  /^Hot Celebs 100\% Exposed\!/
-describe HS_HEADER_170		Heinlein Support Spamschutz Header-170 Header-Spamschutzregel 75
-score HS_HEADER_170		5
-
-header HS_HEADER_171		Subject =~  /^Make It Happen/
-describe HS_HEADER_171		Heinlein Support Spamschutz Header-171 Header-Spamschutzregel 76
-score HS_HEADER_171		5
-
-header HS_HEADER_172		Subject =~  /^If you need extra money\.\.\.read this\!/
-describe HS_HEADER_172		Heinlein Support Spamschutz Header-172 Header-Spamschutzregel 77
-score HS_HEADER_172		5
-
-header HS_HEADER_173		Subject =~  /^Recieve A Free Quote/
-describe HS_HEADER_173		Heinlein Support Spamschutz Header-173 Header-Spamschutzregel 78
-score HS_HEADER_173		5
-
-header HS_HEADER_174		Subject =~  /^We Have Low Mortgage Rates\!\!\!/
-describe HS_HEADER_174		Heinlein Support Spamschutz Header-174 Header-Spamschutzregel 79
-score HS_HEADER_174		5
-
-header HS_HEADER_175		Subject =~ /^Re: travel confirmation/
-describe HS_HEADER_175		Heinlein Support Spamschutz Header-175 Header-Spamschutzregel 80
-score HS_HEADER_175		5
-
-header HS_HEADER_176		Subject =~  /^Receive a FREE SAMPLE of Viagra for Women/
-describe HS_HEADER_176		Heinlein Support Spamschutz Header-176 Header-Spamschutzregel 81
-score HS_HEADER_176		5
-
-header HS_HEADER_177		Subject =~  /^DOUBLE YOUR BREAST SIZE! GUARANTEED/
-describe HS_HEADER_177		Heinlein Support Spamschutz Header-177 Header-Spamschutzregel 82
-score HS_HEADER_177		5
-
-header HS_HEADER_178		Subject =~  /^Ground Breaking Business \"Starts Today\"/
-describe HS_HEADER_178		Heinlein Support Spamschutz Header-178 Header-Spamschutzregel 83
-score HS_HEADER_178		5
-
-header HS_HEADER_179		Subject =~  /^AS SEEN ON T\.V/
-describe HS_HEADER_179		Heinlein Support Spamschutz Header-179 Header-Spamschutzregel 84
-score HS_HEADER_179		5
-
-header HS_HEADER_180		Subject =~  /^99 Million Email Addresses \- \$99/
-describe HS_HEADER_180		Heinlein Support Spamschutz Header-180 Header-Spamschutzregel 85
-score HS_HEADER_180		5
-
-header HS_HEADER_181		Subject =~  /^50 Million Fresh Email Addresses/
-describe HS_HEADER_181		Heinlein Support Spamschutz Header-181 Header-Spamschutzregel 87
-score HS_HEADER_181		5
-
-header HS_HEADER_182		Subject =~  /^200 Million Email Addresses \- \$149/
-describe HS_HEADER_182		Heinlein Support Spamschutz Header-182 Header-Spamschutzregel 88
-score HS_HEADER_182		5
-
-header HS_HEADER_183		Subject =~  /^Get Viagra Online Now \!\!\!/
-describe HS_HEADER_183		Heinlein Support Spamschutz Header-183 Header-Spamschutzregel 89
-score HS_HEADER_183		5
-
-header HS_HEADER_184		Subject =~  /^Boost Your Windows Reliability/
-describe HS_HEADER_184		Heinlein Support Spamschutz Header-184 Header-Spamschutzregel 90
-score HS_HEADER_184		5
-
-header HS_HEADER_185		Subject =~  /^Hot Penny Stock Pick/
-describe HS_HEADER_185		Heinlein Support Spamschutz Header-185 Header-Spamschutzregel 92
-score HS_HEADER_185		5
-
-header HS_HEADER_186		Subject =~  /^Need a great deal on a home loan\?/
-describe HS_HEADER_186		Heinlein Support Spamschutz Header-186 Header-Spamschutzregel 93
-score HS_HEADER_186		5
-
-header HS_HEADER_187		Subject =~  /^I used to be in debt too\!/
-describe HS_HEADER_187		Heinlein Support Spamschutz Header-187 Header-Spamschutzregel 94
-score HS_HEADER_187		5
-
-header HS_HEADER_188		Subject =~  /^Work less, make more/
-describe HS_HEADER_188		Heinlein Support Spamschutz Header-188 Header-Spamschutzregel 95
-score HS_HEADER_188		5
-
-header HS_HEADER_189		Subject =~  /^Drive Your Web Counter Ballistic/
-describe HS_HEADER_189		Heinlein Support Spamschutz Header-189 Header-Spamschutzregel 96
-score HS_HEADER_189		5
-
-header HS_HEADER_190		Subject =~ /^Re\: have you considered doing this\?/
-describe HS_HEADER_190		Heinlein Support Spamschutz Header-190 Header-Spamschutzregel 97
-score HS_HEADER_190		5
-
-header HS_HEADER_191		Subject =~  /^Work from home and get paid\!/
-describe HS_HEADER_191		Heinlein Support Spamschutz Header-191 Header-Spamschutzregel 98
-score HS_HEADER_191		5
-
-header HS_HEADER_192		Subject =~  /^Enter To Win One of 25 Dream Vacations\!\!/
-describe HS_HEADER_192		Heinlein Support Spamschutz Header-192 Header-Spamschutzregel 99
-score HS_HEADER_192		5
-
-header HS_HEADER_193		Subject =~  /^Do You Accept Credit Cards/
-describe HS_HEADER_193		Heinlein Support Spamschutz Header-193 Header-Spamschutzregel 100
-score HS_HEADER_193		5
-
-header HS_HEADER_194		Subject =~  /^Home Owners ONLY/
-describe HS_HEADER_194		Heinlein Support Spamschutz Header-194 Header-Spamschutzregel 101
-score HS_HEADER_194		5
-
-header HS_HEADER_195		Subject =~  /^Your Credit Info/
-describe HS_HEADER_195		Heinlein Support Spamschutz Header-195 Header-Spamschutzregel 102
-score HS_HEADER_195		5
-
-header HS_HEADER_196		Subject =~  /^Do you owe money\?/
-describe HS_HEADER_196		Heinlein Support Spamschutz Header-196 Header-Spamschutzregel 103
-score HS_HEADER_196		5
-
-header HS_HEADER_197		Subject =~  /^Need a Home Loan\? We Can Help\!\!/
-describe HS_HEADER_197		Heinlein Support Spamschutz Header-197 Header-Spamschutzregel 104
-score HS_HEADER_197		5
-
-header HS_HEADER_198		Subject =~  /^stock alert/
-describe HS_HEADER_198		Heinlein Support Spamschutz Header-198 Header-Spamschutzregel 105
-score HS_HEADER_198		5
-
-header HS_HEADER_199		Subject =~  /^contact lenses/
-describe HS_HEADER_199		Heinlein Support Spamschutz Header-199 Header-Spamschutzregel 106
-score HS_HEADER_199		5
-
-header HS_HEADER_200		Subject =~  /^ENLARGE YOUR PACAKGE GUARANTEED/
-describe HS_HEADER_200		Heinlein Support Spamschutz Header-200 Header-Spamschutzregel 107
-score HS_HEADER_200		5
-
-header HS_HEADER_201		Subject =~  /^ENLARGE YOUR PACKAGE GUARANTEED/
-describe HS_HEADER_201		Heinlein Support Spamschutz Header-201 Header-Spamschutzregel 108
-score HS_HEADER_201		5
-
-header HS_HEADER_202		Subject =~  /^We purchase uncollected Judicial Judgments/
-describe HS_HEADER_202		Heinlein Support Spamschutz Header-202 Header-Spamschutzregel 109
-score HS_HEADER_202		5
-
-header HS_HEADER_203		Subject =~  /^Increase Your Gas Mileage by up to 27\%\!/
-describe HS_HEADER_203		Heinlein Support Spamschutz Header-203 Header-Spamschutzregel 112
-score HS_HEADER_203		5
-
-header HS_HEADER_204		Subject =~  /^Willow Flower Herb For Prostate Problems\./
-describe HS_HEADER_204		Heinlein Support Spamschutz Header-204 Header-Spamschutzregel 113
-score HS_HEADER_204		5
-
-header HS_HEADER_205		Subject =~  /^NEW Increase Your Gas Mileage by 27\%/
-describe HS_HEADER_205		Heinlein Support Spamschutz Header-205 Header-Spamschutzregel 114
-score HS_HEADER_205		5
-
-header HS_HEADER_206		Subject =~  /^The easiest way to make money on the internet\!/
-describe HS_HEADER_206		Heinlein Support Spamschutz Header-206 Header-Spamschutzregel 115
-score HS_HEADER_206		5
-
-header HS_HEADER_207		Subject =~ /^Re: think about this.../
-describe HS_HEADER_207		Heinlein Support Spamschutz Header-207 Header-Spamschutzregel 116
-score HS_HEADER_207		5
-
-header HS_HEADER_208		Subject =~  /^think about this.../
-describe HS_HEADER_208		Heinlein Support Spamschutz Header-208 Header-Spamschutzregel 117
-score HS_HEADER_208		5
-
-header HS_HEADER_209		Subject =~  /^At Last, Herbal V, the All Natural Alternative\!/
-describe HS_HEADER_209		Heinlein Support Spamschutz Header-209 Header-Spamschutzregel 119
-score HS_HEADER_209		5
-
-header HS_HEADER_210		Subject =~  /^Make Money In Your Sleep\! /
-describe HS_HEADER_210		Heinlein Support Spamschutz Header-210 Header-Spamschutzregel 120
-score HS_HEADER_210		5
-
-header HS_HEADER_211		Subject =~  /^FREE Satellite TV System/
-describe HS_HEADER_211		Heinlein Support Spamschutz Header-211 Header-Spamschutzregel 122
-score HS_HEADER_211		5
-
-header HS_HEADER_212		Subject =~  /^About your site/
-describe HS_HEADER_212		Heinlein Support Spamschutz Header-212 Header-Spamschutzregel 124
-score HS_HEADER_212		5
-
-header HS_HEADER_213		Subject =~  /^No Deposit VISA or Master Card\!/
-describe HS_HEADER_213		Heinlein Support Spamschutz Header-213 Header-Spamschutzregel 126
-score HS_HEADER_213		5
-
-header HS_HEADER_214		Subject =~  /^FREE Auto Insurance Quote\!/
-describe HS_HEADER_214		Heinlein Support Spamschutz Header-214 Header-Spamschutzregel 127
-score HS_HEADER_214		5
-
-header HS_HEADER_215		Subject =~  /^Need money for college\?/
-describe HS_HEADER_215		Heinlein Support Spamschutz Header-215 Header-Spamschutzregel 131
-score HS_HEADER_215		5
-
-header HS_HEADER_216		Subject =~ /^(s+[[^]]*])?s+[-.{<]*ADV(ertisement)?[-:.>}s]/
-describe HS_HEADER_216		Heinlein Support Spamschutz Header-216 Header-Spamschutzregel 153
-score HS_HEADER_216		5
-
-header HS_HEADER_217		Subject =~  /^I viewed your site\-/
-describe HS_HEADER_217		Heinlein Support Spamschutz Header-217 Header-Spamschutzregel 155
-score HS_HEADER_217		5
-
-header HS_HEADER_218		Subject =~  /^.*Millions?s*(E?-?MAILs*)?ADDRESS/
-describe HS_HEADER_218		Heinlein Support Spamschutz Header-218 Header-Spamschutzregel 156
-score HS_HEADER_218		5
-
-header HS_HEADER_219		Subject =~ /^.*sTime[: ]+d+:d+:d+ [AP]Ms*$/
-describe HS_HEADER_219		Heinlein Support Spamschutz Header-219 Header-Spamschutzregel 162
-score HS_HEADER_219		5
-
-header HS_HEADER_221		Subject =~  /^new photos from my party\!/
-describe HS_HEADER_221		Heinlein Support Spamschutz Header-221 Header-Spamschutzregel 180
-score HS_HEADER_221		5
-
-header HS_HEADER_222		Subject =~  /^Liebe freunde, es tropft wieder/
-describe HS_HEADER_222		Heinlein Support Spamschutz Header-222 Header-Spamschutzregel 201
-score HS_HEADER_222		5
-
-header HS_HEADER_223		Subject =~  /^The best gift a wife or girlfriend could ever ask for/
-describe HS_HEADER_223		Heinlein Support Spamschutz Header-223 Header-Spamschutzregel 202
-score HS_HEADER_223		5
-
-header HS_HEADER_224		Subject =~  /^Increase your drive, stamina, size and performance\.\. reach your potential\!/
-describe HS_HEADER_224		Heinlein Support Spamschutz Header-224 Header-Spamschutzregel 203
-score HS_HEADER_224		5
-
-header HS_HEADER_225		Subject =~  /^Discover your true sexual potential/
-describe HS_HEADER_225		Heinlein Support Spamschutz Header-225 Header-Spamschutzregel 204
-score HS_HEADER_225		5
-
-header HS_HEADER_226		Subject =~  /^.*you could need it Pharamaceu tical/
-describe HS_HEADER_226		Heinlein Support Spamschutz Header-226 Header-Spamschutzregel 205
-score HS_HEADER_226		5
-
-header HS_HEADER_227		Subject =~  /^Nearly 65\% of women claim they wish their lover was more adept\.\. let us help/
-describe HS_HEADER_227		Heinlein Support Spamschutz Header-227 Header-Spamschutzregel 206
-score HS_HEADER_227		5
-
-header HS_HEADER_228		Subject =~  /^Increased spending on homeland security has created incredible opportunity/
-describe HS_HEADER_228		Heinlein Support Spamschutz Header-228 Header-Spamschutzregel 207
-score HS_HEADER_228		5
-
-header HS_HEADER_229		Subject =~  /^The security explosion/
-describe HS_HEADER_229		Heinlein Support Spamschutz Header-229 Header-Spamschutzregel 208
-score HS_HEADER_229		5
-
-header HS_HEADER_230		Subject =~  /^Ermittlungsverfahren gegen Sie.*/
-describe HS_HEADER_230		Heinlein Support Spamschutz Header-230 Header-Spamschutzregel 210
-score HS_HEADER_230		5
-
-header HS_HEADER_231		Subject =~  /^Bekommen Sie Uhren.*/
-describe HS_HEADER_231		Heinlein Support Spamschutz Header-231 Header-Spamschutzregel 211
-score HS_HEADER_231		5
-
-header HS_HEADER_232		To =~  /^\<ABALTAS\@europarl\.eu\.int\>/
-describe HS_HEADER_232		Heinlein Support Spamschutz Header-232 Header-Spamschutzregel 53
-score HS_HEADER_232		5
-
-header HS_HEADER_233		To =~  /^ACERCAS\@europarl\.eu\.int/
-describe HS_HEADER_233		Heinlein Support Spamschutz Header-233 Header-Spamschutzregel 54
-score HS_HEADER_233		5
-
-header HS_HEADER_234		To =~  /^infomail\@recurrent\.com/
-describe HS_HEADER_234		Heinlein Support Spamschutz Header-234 Header-Spamschutzregel 57
-score HS_HEADER_234		5
-
-header HS_HEADER_236		From =~ /^steve\-larson1\@execs\.com/
-describe HS_HEADER_236		Heinlein Support Spamschutz Header-236 Header-Spamschutzregel 110
-score HS_HEADER_236		5
-
-header HS_HEADER_237		From =~  /^\@execs\.com*/
-describe HS_HEADER_237		Heinlein Support Spamschutz Header-237 Header-Spamschutzregel 111
-score HS_HEADER_237		5
-
-header HS_HEADER_238		From =~  /^enews\@uscav\.com/
-describe HS_HEADER_238		Heinlein Support Spamschutz Header-238 Header-Spamschutzregel 118
-score HS_HEADER_238		5
-
-header HS_HEADER_248		(To|From|Cc|Reply-To) =~  /^.*Investor Alert/
-describe HS_HEADER_248		Heinlein Support Spamschutz Header-248 Header-Spamschutzregel 142
-score HS_HEADER_248		5
-
-header HS_HEADER_249		(To|From|Cc|Reply-To) =~  /^.*friend\@(public\.com|localhost\.net)/
-describe HS_HEADER_249		Heinlein Support Spamschutz Header-249 
-score HS_HEADER_249		5
-
-header HS_HEADER_250		(To|From|Cc|Reply-To) =~  /^.*[ <]d+\@(onramp|prodigy|uu)\.net/
-describe HS_HEADER_250		Heinlein Support Spamschutz Header-250 
-score HS_HEADER_250		5
-
-header HS_HEADER_251		(To|From|Cc|Reply-To) =~  /^.*\@funstuff2000\.net/
-describe HS_HEADER_251		Heinlein Support Spamschutz Header-251 
-score HS_HEADER_251		5
-
-header HS_HEADER_252		(To|From|Cc|Reply-To) =~  /^.*(infowatch\.net|nakedmaild?\.com)/
-describe HS_HEADER_252		Heinlein Support Spamschutz Header-252 
-score HS_HEADER_252		5
-
-header HS_HEADER_253		(To|From|Cc|Reply-To) =~  /^.*customer\@aol/
-describe HS_HEADER_253		Heinlein Support Spamschutz Header-253 
-score HS_HEADER_253		5
-
-header HS_HEADER_254		To =~  /^ListMembers\@theneteffect/
-describe HS_HEADER_254		Heinlein Support Spamschutz Header-254 
-score HS_HEADER_254		5
-
-header HS_HEADER_255		Reply-To =~  /^.*\@(china\.com|rever\-dreaming\.com|btamail\.net\.cn|amdpress\.com|nakedmaild?\.com|big\-salesfor\.you\-now\.net)/
-describe HS_HEADER_255		Heinlein Support Spamschutz Header-255 
-score HS_HEADER_255		5
-
-header HS_HEADER_257		(Received|Message-Id|X-(Mailer|Sender)) =~  /^.* (E-Broadcaster|Emailer Platinum|eMarksman|Extractor|e-Merge|from stealth[^.]|Global Messenger|GroupMaster|Mailcast|MailKing|Match10|MassE-Mail|massmail.pl|News Breaker|Powermailer|Quick Shot|Ready Aim Fire|WindoZ|WorldMerge|Yourdora|SEKOFOXM|Blat v3)/
-describe HS_HEADER_257		Heinlein Support Spamschutz Header-257 
-score HS_HEADER_257		15
-
-header HS_HEADER_259		X-Server =~  /^Advanced Direct Remailer/
-describe HS_HEADER_259		Heinlein Support Spamschutz Header-259 
-score HS_HEADER_259		5
-
-header HS_HEADER_260		Comment =~  /^Authenticated sender is/
-describe HS_HEADER_260		Heinlein Support Spamschutz Header-260 
-score HS_HEADER_260		5
-
-header HS_HEADER_261		(To|From|Cc|Reply-To) =~  /^.*\@sexyfun\.net/
-describe HS_HEADER_261		Heinlein Support Spamschutz Header-261 
-score HS_HEADER_261		5
-
-header HS_HEADER_262		Content-Disposition =~  /^Multipart message/
-describe HS_HEADER_262		Heinlein Support Spamschutz Header-262 
-score HS_HEADER_262		5
-
-header HS_HEADER_264		Date =~  /^.* \[AP\]M/
-describe HS_HEADER_264		Heinlein Support Spamschutz Header-264 
-score HS_HEADER_264		5
-
-header HS_HEADER_265		Date =~  /^.*[+-](1[4-9]|2d)dd$/
-describe HS_HEADER_265		Heinlein Support Spamschutz Header-265 
-score HS_HEADER_265		5
-
-header HS_HEADER_266		From =~  /^.*icyhot\.bakas24\.de/
-describe HS_HEADER_266		Heinlein Support Spamschutz Header-266 
-score HS_HEADER_266		5
-
-header HS_HEADER_270		Subject =~/^You wanna check how good in bed I am\?.*/
-describe HS_HEADER_270		Heinlein Support Spamschutz Header-270 
-score HS_HEADER_270		5
-
-header HS_HEADER_274		Subject =~ /^dog supply/
-describe HS_HEADER_274		Heinlein Support Spamschutz Header-274 
-score HS_HEADER_274		2
-
-header HS_HEADER_275		From =~ /phoenix-[a-zA-Z0-9]{3}.edu/
-describe HS_HEADER_275		Heinlein Support Spamschutz Header-275 
-score HS_HEADER_275		7
-
-header HS_HEADER_279		From =~ /.* \<noreply\@jpberlin\.de\>.*/
-describe HS_HEADER_279		Heinlein Support Spamschutz Header-279 
-score HS_HEADER_279		3
-
-header HS_HEADER_280		To =~ /\<noreply\@jpberlin\.de\>/
-describe HS_HEADER_280		Heinlein Support Spamschutz Header-280 
-score HS_HEADER_280		3
-
-header HS_HEADER_282		From =~ /fabianat\@alice\.it/
-describe HS_HEADER_282		Heinlein Support Spamschutz Header-282 
-score HS_HEADER_282		5
-
-header HS_HEADER_283		From =~ /itservice\@berlin.de/
-describe HS_HEADER_283		Heinlein Support Spamschutz Header-283 
-score HS_HEADER_283		5
-
-header HS_HEADER_284		From=~/weblinkservices281\@gmail\.com/
-describe HS_HEADER_284		Heinlein Support Spamschutz Header-284 
-score HS_HEADER_284		5
-
-header HS_HEADER_285		FROM=~/^.*mpmz\.com\.ua/
-describe HS_HEADER_285		Heinlein Support Spamschutz Header-285 
-score HS_HEADER_285		5
-
-header HS_HEADER_286		From=~/^.*\@boonrawd\.co\.th/
-describe HS_HEADER_286		Heinlein Support Spamschutz Header-286 
-score HS_HEADER_286		5
-
-header HS_HEADER_287		From =~ /sample\@email.tst/
-describe HS_HEADER_287		Heinlein Support Spamschutz Header-287 
-score HS_HEADER_287		10
-
-header HS_HEADER_289		Subject =~ /Postbank Benachrichtigung - Ihre Internet-Banking gesperrt/
-describe HS_HEADER_289		Heinlein Support Spamschutz Header-289 SPAM
-score HS_HEADER_289		6
-
-header HS_HEADER_290		Subject =~ /^=?utf-8?q?August_Ank=C3=BCndigun/
-describe HS_HEADER_290		Heinlein Support Spamschutz Header-290 phishing
-score HS_HEADER_290		5
-
-header HS_HEADER_293		From=~/\@Email Inc/
-describe HS_HEADER_293		Heinlein Support Spamschutz Header-293 Phishing
-score HS_HEADER_293		6
-
-header HS_HEADER_295		Subject =~ /'Echte' Kreditkarte mit >6< Monatseinkommen Limit ohne SCHUFA/
-describe HS_HEADER_295		Heinlein Support Spamschutz Header-295 SPAM
-score HS_HEADER_295		10
-
-header HS_HEADER_296		Subject =~ /SCHUFAfrei jetzt sofort Geld bekommen/
-describe HS_HEADER_296		Heinlein Support Spamschutz Header-296 
-score HS_HEADER_296		5
-
-header HS_HEADER_298		Reply-To =~ /^.*gogle\.eurolotto\@gmail\.com*/
-describe HS_HEADER_298		Heinlein Support Spamschutz Header-298 
-score HS_HEADER_298		5
-
-header HS_HEADER_299		From=~/sales[0-9]\@socilamediapro\.info/
-describe HS_HEADER_299		Heinlein Support Spamschutz Header-299 Spam
-score HS_HEADER_299		6
-
-header HS_HEADER_300		From=~/pratt-whitney\@web\.de/
-describe HS_HEADER_300		Heinlein Support Spamschutz Header-300 Spam
-score HS_HEADER_300		6
-
-header HS_HEADER_301		Subject =~ /=\?utf-8\?Q\?Wichtig:_Ungew=C3=B6hnliche_Aktivit=C3=A4ten_in_Ihrem_Konto\?=/
-describe HS_HEADER_301		Heinlein Support Spamschutz Header-301 
-score HS_HEADER_301		5
-
-header HS_HEADER_304		From =~ /contrataciones\@inn\.gob\.ve/
-describe HS_HEADER_304		Heinlein Support Spamschutz Header-304 
-score HS_HEADER_304		5
-
-header HS_HEADER_305		From =~ /spam\@co\.za/
-describe HS_HEADER_305		Heinlein Support Spamschutz Header-305 SCAM
-score HS_HEADER_305		5
-
-header HS_HEADER_307		From =~ /^.*\@maxispoint\.com/
-describe HS_HEADER_307		Heinlein Support Spamschutz Header-307 Spam
-score HS_HEADER_307		6
-
-header HS_HEADER_308		Reply-To =~ /evarich4life\@gmail\.com/
-describe HS_HEADER_308		Heinlein Support Spamschutz Header-308 Phishing
-score HS_HEADER_308		8
-
-header HS_HEADER_309		From =~ /\=\?ISO-8859-1\?Q\?\=A9_sparkasse/
-describe HS_HEADER_309		Heinlein Support Spamschutz Header-309 Phishing
-score HS_HEADER_309		8
-
-header HS_HEADER_310		Reply-To =~ /blackcurrant46631\@gmail\.com/
-describe HS_HEADER_310		Heinlein Support Spamschutz Header-310 SEO Spam
-score HS_HEADER_310		6
-
-header HS_HEADER_311		Subject =~ /Ungewoehnliche Zahlungsaktivitaeten Ihres Kontos/
-describe HS_HEADER_311		Heinlein Support Spamschutz Header-311 SPAM
-score HS_HEADER_311		6
-
-header HS_HEADER_312		Subject =~ /リモワ スーツケース 最安値/
-describe HS_HEADER_312		Heinlein Support Spamschutz Header-312 SPAM
-score HS_HEADER_312		8
-
-header HS_HEADER_314		Subject =~ /\?UTF-8\?Q\?Warnung!_Postfach_=C3=BCberschritten\?=/
-describe HS_HEADER_314		Heinlein Support Spamschutz Header-314 Spam
-score HS_HEADER_314		8
-
-header HS_HEADER_315		Disposition-Notification-To =~/.*brijesh\.websitedeveloper\@gmail\.com/
-describe HS_HEADER_315		Heinlein Support Spamschutz Header-315 SPAM
-score HS_HEADER_315		6
-
-header HS_HEADER_319		From=~ /djmasier\@ncsu\.edu/
-describe HS_HEADER_319		Heinlein Support Spamschutz Header-319 Phishing
-score HS_HEADER_319		10
-
-header HS_HEADER_322		From =~ /^.*\<paypal\@intI\.service\.com\>/
-describe HS_HEADER_322		Heinlein Support Spamschutz Header-322 Phishing
-score HS_HEADER_322		8
-
-header HS_HEADER_323		Subject =~ /Voice Message Notification/
-describe HS_HEADER_323		Heinlein Support Spamschutz Header-323 
-score HS_HEADER_323		3
-
-header HS_HEADER_324		From =~ /^.*\service\@mitsui\com\.au/
-describe HS_HEADER_324		Heinlein Support Spamschutz Header-324 
-score HS_HEADER_324		5
-
-header HS_HEADER_325		From =~ /=?utf-8?Q?RU-CENTER?=/
-describe HS_HEADER_325		Heinlein Support Spamschutz Header-325 
-score HS_HEADER_325		8
-
-header HS_HEADER_326		Subject =~ /=?utf-8?Q?Holiday=20?=/
-describe HS_HEADER_326		Heinlein Support Spamschutz Header-326 
-score HS_HEADER_326		8
-
-header HS_HEADER_327		Return-Path =~/^.*sunndavmao\@yahoo\.com/
-describe HS_HEADER_327		Heinlein Support Spamschutz Header-327 
-score HS_HEADER_327		8
-
-header HS_HEADER_328		Subject =~ /Dear Guest,- I am Karolina, on-line video administrator/
-describe HS_HEADER_328		Heinlein Support Spamschutz Header-328 
-score HS_HEADER_328		8
-
-header HS_HEADER_330		From =~ /^.*larimermccarya868\@gmail\.com/
-describe HS_HEADER_330		Heinlein Support Spamschutz Header-330 
-score HS_HEADER_330		8
-
-header HS_HEADER_331		Reply-To =~ /^.*lana83lave\@rambler\.ru/
-describe HS_HEADER_331		Heinlein Support Spamschutz Header-331 
-score HS_HEADER_331		8
-
-header HS_HEADER_332		X-Mailer =~ /.*\b(E-Broadcaster|Emailer Platinum|eMarksman|Extractor|e-Merge|from stealth[^.]|Global Messenger|GroupMaster|MailKing|Match10|MassE-Mail|massmail\.pl|News Breaker|Quick Shot|Ready Aim Fire|WindoZ|WorldMerge|Yourdora|SEKOFOXM|Blat.v3.1.1\b)/im
-describe HS_HEADER_332		Heinlein Support Spamschutz Header-332 Bulk-Mailer
-score HS_HEADER_332		5
-
-header HS_HEADER_333		Subject =~/^.*Gain Organic Traffic:/
-describe HS_HEADER_333		Heinlein Support Spamschutz Header-333 
-score HS_HEADER_333		6
-
-header HS_HEADER_334		Reply-To =~ /^.*mailcontrolunits\@mail\.com/
-describe HS_HEADER_334		Heinlein Support Spamschutz Header-334 
-score HS_HEADER_334		5
-
-header HS_HEADER_335		From =~ /^.*okoidahamilton\@gmail\.com/
-describe HS_HEADER_335		Heinlein Support Spamschutz Header-335 
-score HS_HEADER_335		8
-
-header HS_HEADER_337		Return-Path =~ /^.*nobody\@nic\.ru/
-describe HS_HEADER_337		Heinlein Support Spamschutz Header-337 
-score HS_HEADER_337		8
-
-header HS_HEADER_339		From =~ /^.*vivianefarias\@pampili\.com\.br/
-describe HS_HEADER_339		Heinlein Support Spamschutz Header-339 
-score HS_HEADER_339		8
-
-header HS_HEADER_340		From =~ /^.*florespraz4\@zipmail\.com\.br/
-describe HS_HEADER_340		Heinlein Support Spamschutz Header-340 
-score HS_HEADER_340		6
-
-header HS_HEADER_341		From =~ /^.*michelapeterson89\@yahoo\.com/
-describe HS_HEADER_341		Heinlein Support Spamschutz Header-341 
-score HS_HEADER_341		8
-
-header HS_HEADER_343		From =~ /^.*oefa\.gob\.pe/
-describe HS_HEADER_343		Heinlein Support Spamschutz Header-343 
-score HS_HEADER_343		10
-
-header HS_HEADER_344		From =~ /^.*feintour\.net/
-describe HS_HEADER_344		Heinlein Support Spamschutz Header-344 
-score HS_HEADER_344		7
-
-header HS_HEADER_345		From =~ /^.*tuerkeireisegewinn\.net/
-describe HS_HEADER_345		Heinlein Support Spamschutz Header-345 
-score HS_HEADER_345		7
-
-header HS_HEADER_346		Return-Path =~ /^.*okoidahamilton\@gmail\.com/
-describe HS_HEADER_346		Heinlein Support Spamschutz Header-346 
-score HS_HEADER_346		8
-
-header HS_HEADER_347		From =~ /^.*Jpberlin\.de Update/
-describe HS_HEADER_347		Heinlein Support Spamschutz Header-347 
-score HS_HEADER_347		8
-
-header HS_HEADER_348		Return-Path =~ /^.*mrgugaster\@gmail\.com/
-describe HS_HEADER_348		Heinlein Support Spamschutz Header-348 
-score HS_HEADER_348		8
-
-header HS_HEADER_349		Received =~ /^.*srv11\.sysproserver\.de/
-describe HS_HEADER_349		Heinlein Support Spamschutz Header-349 
-score HS_HEADER_349		8
-
-header HS_HEADER_350		From =~ /^.*mrgugaster\@gmail\.com/
-describe HS_HEADER_350		Heinlein Support Spamschutz Header-350 
-score HS_HEADER_350		8
-
-header HS_HEADER_351		Return-Path =~ /^.*rico4000\@aucegypt\.edu/
-describe HS_HEADER_351		Heinlein Support Spamschutz Header-351 SPAM
-score HS_HEADER_351		8
-
-header HS_HEADER_352		Return-Path =~ /^.*batran\@aucegypt\.edu/
-describe HS_HEADER_352		Heinlein Support Spamschutz Header-352 SPAM
-score HS_HEADER_352		8
-
-header HS_HEADER_353		Reply-To =~ /^.*perrychang\@yeah\.net/
-describe HS_HEADER_353		Heinlein Support Spamschutz Header-353 
-score HS_HEADER_353		8
-
-header HS_HEADER_354		Return-Path =~ /^.*nemekh\@mongol\.net/
-describe HS_HEADER_354		Heinlein Support Spamschutz Header-354 Phishing
-score HS_HEADER_354		6
-
-header HS_HEADER_355		Return-Path =~/^.*samuimoo\@melkus\.websitewelcome\.com/
-describe HS_HEADER_355		Heinlein Support Spamschutz Header-355 Phishing
-score HS_HEADER_355		8
-
-header HS_HEADER_356		From =~ /^.*mpv6611\@yahoo\.co\.jp/
-describe HS_HEADER_356		Heinlein Support Spamschutz Header-356 
-score HS_HEADER_356		8
-
-header HS_HEADER_357		Return-Path =~/^.*fcpmags\@fcp\.fcpmags\.com/
-describe HS_HEADER_357		Heinlein Support Spamschutz Header-357 Phishing
-score HS_HEADER_357		8
-
-header HS_HEADER_358		From =~ /^.*soutogomes\@iol\.pt/
-describe HS_HEADER_358		Heinlein Support Spamschutz Header-358 Phishing
-score HS_HEADER_358		8
-
-header HS_HEADER_359		From =~ /^.*jimmy_socialalley\@aol\.com/
-describe HS_HEADER_359		Heinlein Support Spamschutz Header-359 Spam
-score HS_HEADER_359		8
-
-header HS_HEADER_360		From =~/^.*\@aucegypt\.edu/
-describe HS_HEADER_360		Heinlein Support Spamschutz Header-360 
-score HS_HEADER_360		8
-
-header HS_HEADER_361		From =~/^.*\@barantrag\.com/
-describe HS_HEADER_361		Heinlein Support Spamschutz Header-361 
-score HS_HEADER_361		8
-
-header HS_HEADER_362		X-Google-Sender-Auth =~ /^.*X-Google-Sender-Auth/
-describe HS_HEADER_362		Heinlein Support Spamschutz Header-362 
-score HS_HEADER_362		8
-
-header HS_HEADER_363		Return-Path =~/^.*pay\@pal\.com/
-describe HS_HEADER_363		Heinlein Support Spamschutz Header-363 Phishing
-score HS_HEADER_363		8
-
-header HS_HEADER_364		FROM =~ /^.*Toursdiscount\@gmail\.com/
-describe HS_HEADER_364		Heinlein Support Spamschutz Header-364 
-score HS_HEADER_364		8
-
-header HS_HEADER_365		Subject =~/^.*Zustellung Ihrer Kreditkarte/
-describe HS_HEADER_365		Heinlein Support Spamschutz Header-365 Spam
-score HS_HEADER_365		6
-
-header HS_HEADER_366		Subject =~/ ?UTF-8?B?MjAgRnJlaXNwaWVsZSBhbHMgRGFua2VzY2jDg8K2biBmw4PCvHIgSWhyZSBBbm1lbGR1bmc/
-describe HS_HEADER_366		Heinlein Support Spamschutz Header-366 
-score HS_HEADER_366		3
-
-header HS_HEADER_367		Subject =~/utf-8?q\?Ihre_Online-Zug=C3=A4nglichkeit_____/
-describe HS_HEADER_367		Heinlein Support Spamschutz Header-367 
-score HS_HEADER_367		5
-
-header HS_HEADER_368		Subject: =~/iso-8859-1\?Q\?Kre_di_tk_=FCnd_ig_ung=3F__Unser__Angeb_ot_l=F6st_Ihre_Pro\?=/
-describe HS_HEADER_368		Heinlein Support Spamschutz Header-368 
-score HS_HEADER_368		5
-
-header HS_HEADER_372		Reply-To =~ /^.*tolleideen\.net/
-describe HS_HEADER_372		Heinlein Support Spamschutz Header-372 
-score HS_HEADER_372		8
-
-header HS_HEADER_373		From =~ /^.*tolleideen.net/
-describe HS_HEADER_373		Heinlein Support Spamschutz Header-373 
-score HS_HEADER_373		8
-
-header HS_HEADER_374		Return-Path =~ /^.*mendu\@hispeed\.ch/
-describe HS_HEADER_374		Heinlein Support Spamschutz Header-374 Phishing
-score HS_HEADER_374		8
-
-header HS_HEADER_377		Return-Path =~ /^.*gapp\.az/
-describe HS_HEADER_377		Heinlein Support Spamschutz Header-377 
-score HS_HEADER_377		8
-
-header HS_HEADER_378		From =~ /^.*gapp\.az/
-describe HS_HEADER_378		Heinlein Support Spamschutz Header-378 
-score HS_HEADER_378		8
-
-header HS_HEADER_379		From =~ /rayban\.sunglasses/
-describe HS_HEADER_379		Heinlein Support Spamschutz Header-379 
-score HS_HEADER_379		8
-
-header HS_HEADER_381		From =~/^.*ises\.net004\@gmail\.com/
-describe HS_HEADER_381		Heinlein Support Spamschutz Header-381 
-score HS_HEADER_381		8
-
-header HS_HEADER_383		From =~ /^.*contact\@france-usinage\.fr/
-describe HS_HEADER_383		Heinlein Support Spamschutz Header-383 Spam
-score HS_HEADER_383		8
-
-header HS_HEADER_384		Return-Path =~ /^.*contact\@france-usinage\.fr/
-describe HS_HEADER_384		Heinlein Support Spamschutz Header-384 
-score HS_HEADER_384		8
-
-header HS_HEADER_390		From =~ /^.*stankovicse\@askhatvan\.hu/
-describe HS_HEADER_390		Heinlein Support Spamschutz Header-390 
-score HS_HEADER_390		5
-
-header HS_HEADER_391		Return-Path =~ /^.*anandteknow\.com/
-describe HS_HEADER_391		Heinlein Support Spamschutz Header-391 
-score HS_HEADER_391		7
-
-header HS_HEADER_393		From =~ /papalolo\@q\.com/
-describe HS_HEADER_393		Heinlein Support Spamschutz Header-393 
-score HS_HEADER_393		8
-
-header HS_HEADER_394		Received =~ /s15379600\.onlinehome-server\.info/
-describe HS_HEADER_394		Heinlein Support Spamschutz Header-394 
-score HS_HEADER_394		8
-
-header HS_HEADER_398		Return-Path =~ /mmercer9\@kent\.edu/
-describe HS_HEADER_398		Heinlein Support Spamschutz Header-398 
-score HS_HEADER_398		8
-
-header HS_HEADER_399		From =~ /Beauftragte Anwaltschaft Ebay GmbH/
-describe HS_HEADER_399		Heinlein Support Spamschutz Header-399 Ebay-Phishing
-score HS_HEADER_399		5
-
-header HS_HEADER_400		From =~ /Anwaltschaft Paypal GmbH/
-describe HS_HEADER_400		Heinlein Support Spamschutz Header-400 
-score HS_HEADER_400		5
-
-header HS_HEADER_401		From =~ /^.YourCasino/
-describe HS_HEADER_401		Heinlein Support Spamschutz Header-401 
-score HS_HEADER_401		6
-
-header HS_HEADER_402		From: =~ /^.*movqvqtr\@gmail\.com/
-describe HS_HEADER_402		Heinlein Support Spamschutz Header-402 Spam
-score HS_HEADER_402		8
-
-header HS_HEADER_403		Reply-To: =~ /^.*movqvqtr\@gmail\.com/
-describe HS_HEADER_403		Heinlein Support Spamschutz Header-403 Spam
-score HS_HEADER_403		8
-
-header HS_HEADER_404		Return-Path: =~ /^.*kelyfugoldup\@gmail\.com/
-describe HS_HEADER_404		Heinlein Support Spamschutz Header-404 Spam
-score HS_HEADER_404		8
-
-header HS_HEADER_405		From: =~ /^.*kelyfugoldup\@gmail\.com/
-describe HS_HEADER_405		Heinlein Support Spamschutz Header-405 
-score HS_HEADER_405		8
-
-header HS_HEADER_406		From: =~ /^.*raudat\@gmail\.com/
-describe HS_HEADER_406		Heinlein Support Spamschutz Header-406 
-score HS_HEADER_406		8
-
-header HS_HEADER_407		Reply-To: =~ /^.*raudat\@gmail\.com/
-describe HS_HEADER_407		Heinlein Support Spamschutz Header-407 
-score HS_HEADER_407		8
-
-header HS_HEADER_408		Return-Path: =~ /^.*con_tacts\@mail\.com/
-describe HS_HEADER_408		Heinlein Support Spamschutz Header-408 Spam
-score HS_HEADER_408		8
-
-header HS_HEADER_409		Received: =~ /^.*grevs\@rasf\.ru/
-describe HS_HEADER_409		Heinlein Support Spamschutz Header-409 Spam
-score HS_HEADER_409		8
-
-header HS_HEADER_410		From: =~ /^.*con_tacts\@mail\.com/
-describe HS_HEADER_410		Heinlein Support Spamschutz Header-410 
-score HS_HEADER_410		8
-
-header HS_HEADER_411		Reply-To: =~ /^.*headoffices2012\@gmail\.com/
-describe HS_HEADER_411		Heinlein Support Spamschutz Header-411 
-score HS_HEADER_411		8
-
-header HS_HEADER_412		Message-ID: =~ /^.*relay\.amlsport\.ru/
-describe HS_HEADER_412		Heinlein Support Spamschutz Header-412 
-score HS_HEADER_412		8
-
-header HS_HEADER_413		Sender: =~ /^.*notices\@domainnotices8659\.com/
-describe HS_HEADER_413		Heinlein Support Spamschutz Header-413 
-score HS_HEADER_413		8
-
-header HS_HEADER_414		AntiAbuse: =~/^.*RS5IVUVMU0UtQU5LRVJNQU5OQEpQQkVSTElOLkRF/
-describe HS_HEADER_414		Heinlein Support Spamschutz Header-414 
-score HS_HEADER_414		8
-
-header HS_HEADER_415		Received: =~ /host\.domainnotices[0-9]{0,4}\.com/
-describe HS_HEADER_415		Heinlein Support Spamschutz Header-415 
-score HS_HEADER_415		8
-
-header HS_HEADER_416		From: =~ /^.*noreply\@popfax\.com/
-describe HS_HEADER_416		Heinlein Support Spamschutz Header-416 
-score HS_HEADER_416		8
-
-header HS_HEADER_417		Reply-To: =~ /juan_morato\@yahoo\.es/
-describe HS_HEADER_417		Heinlein Support Spamschutz Header-417 Phishing
-score HS_HEADER_417		8
-
-header HS_HEADER_418		Received: =~ /^.*wrdunn.co.uk/
-describe HS_HEADER_418		Heinlein Support Spamschutz Header-418 
-score HS_HEADER_418		8
-
-header HS_HEADER_420		From: =~ /.*<sepa.sicherheit\@easybank\.at.*/
-
-describe HS_HEADER_420		Heinlein Support Spamschutz Header-420 
-score HS_HEADER_420		5
-
-header HS_HEADER_421		From =~ /TRACK-FINANCE <info\@track-finance\.com/
-describe HS_HEADER_421		Heinlein Support Spamschutz Header-421 
-score HS_HEADER_421		5
-
-header HS_HEADER_422		List-Ubsubscribe =~ /www.apotheke-germany.co.uk/
-describe HS_HEADER_422		Heinlein Support Spamschutz Header-422 Spam
-score HS_HEADER_422		5
-
-header HS_HEADER_423		Return-Path: =~ /^.*bangzhu\@att\.net/
-describe HS_HEADER_423		Heinlein Support Spamschutz Header-423 Spam
-score HS_HEADER_423		8
-
-header HS_HEADER_424		From: =~ /^.*bangzhu\@att\.net/
-describe HS_HEADER_424		Heinlein Support Spamschutz Header-424 Spam
-score HS_HEADER_424		8
-
-header HS_HEADER_425		Subject: =~ /^.*=\?utf-8\?B\?a86\/1bh00L4gaWQ6IDYzNDI5NDE=\?=/
-describe HS_HEADER_425		Heinlein Support Spamschutz Header-425 Phishing
-score HS_HEADER_425		8
-
-header HS_HEADER_426		Reply-To: =~ /^.*john_max11114\@yahoo\.com/
-describe HS_HEADER_426		Heinlein Support Spamschutz Header-426 
-score HS_HEADER_426		8
-
-header HS_HEADER_427		Return-Path: =~ /^.*stanman\@absamail\.co\.za/
-describe HS_HEADER_427		Heinlein Support Spamschutz Header-427 Spam
-score HS_HEADER_427		8
-
-header HS_HEADER_428		X-Mailer: =~ /^.*Synapse - Pascal TCP\/IP library by Lukas Gebauer/
-describe HS_HEADER_428		Heinlein Support Spamschutz Header-428 
-score HS_HEADER_428		8
-
-header HS_HEADER_429		Return-Path: =~ /^.*Tatiana-15879722\@newladies0614\.com\.ua/
-describe HS_HEADER_429		Heinlein Support Spamschutz Header-429 Spam
-score HS_HEADER_429		8
-
-header HS_HEADER_430		From: =~ /^.*Tatiana-15879722\@newladies0614\.com\.ua/
-describe HS_HEADER_430		Heinlein Support Spamschutz Header-430 Spam
-score HS_HEADER_430		8
-
-header HS_HEADER_431		From =~ /ViagraKaufen/
-describe HS_HEADER_431		Heinlein Support Spamschutz Header-431 
-score HS_HEADER_431		5
-
-header HS_HEADER_432		Subject =~ /easy Potenz bestellen/
-describe HS_HEADER_432		Heinlein Support Spamschutz Header-432 
-score HS_HEADER_432		5
-
-header HS_HEADER_433		Subject =~ /Sertha Brindes/
-describe HS_HEADER_433		Heinlein Support Spamschutz Header-433 
-score HS_HEADER_433		5
-
-header HS_HEADER_434		From: =~ /^.*\@mail\.autochina360\.com/
-describe HS_HEADER_434		Heinlein Support Spamschutz Header-434 Spam
-score HS_HEADER_434		8
-
-header HS_HEADER_435		Subject: =~ /^.*\?gb2312\?B\?19TW98a3xcahsMquway9taGxtcTB7dK71ta94rbBIC0g1tC5+sb7s7Wy+tK1\?/
-describe HS_HEADER_435		Heinlein Support Spamschutz Header-435 Spam
-score HS_HEADER_435		8
-
-header HS_HEADER_436		From: =~ /^.*vertrieb\@consultlab\.de/
-describe HS_HEADER_436		Heinlein Support Spamschutz Header-436 
-score HS_HEADER_436		8
-
-header HS_HEADER_437		Subject: =~ /noreply\@JPBerlin\.de/
-describe HS_HEADER_437		Heinlein Support Spamschutz Header-437 
-score HS_HEADER_437		8
-
-header HS_HEADER_438		From:=~ /^.*\@bipbup\.com\.br/
-describe HS_HEADER_438		Heinlein Support Spamschutz Header-438 Spam
-score HS_HEADER_438		5
-
-header HS_HEADER_439		From:=~ /^.*\@gtevent\.co\.uk/
-describe HS_HEADER_439		Heinlein Support Spamschutz Header-439 Spam
-score HS_HEADER_439		8
-
-header HS_HEADER_440		From:=~ /^.*\@anticellulitenartikel\.me/
-describe HS_HEADER_440		Heinlein Support Spamschutz Header-440 Spam
-score HS_HEADER_440		8
-
-header HS_HEADER_441		From:=~/^.*\@allyes-tech\.com/
-describe HS_HEADER_441		Heinlein Support Spamschutz Header-441 
-score HS_HEADER_441		2
-
-header HS_HEADER_442		List-Unsubscribe:=~/^.*\<http\:\/\/www\.e\-posta\.info\/unsubscribe\.php/
-describe HS_HEADER_442		Heinlein Support Spamschutz Header-442 Spam
-score HS_HEADER_442		8
-
-header HS_HEADER_443		X-Mailer:=~/^.*oemPro/
-describe HS_HEADER_443		Heinlein Support Spamschutz Header-443 
-score HS_HEADER_443		4
-
-header HS_HEADER_444		From:=~/^.*\<newsletter\@jojormall.me\>/
-describe HS_HEADER_444		Heinlein Support Spamschutz Header-444 
-score HS_HEADER_444		4
-
-header HS_HEADER_447		Return-Path: =~ /^.*karolin\.kaestner\@fettwegbeispiel\.me/
-describe HS_HEADER_447		Heinlein Support Spamschutz Header-447 Spam
-score HS_HEADER_447		8
-
-header HS_HEADER_448		From:=~ /^.*xinyang05\@xy\-sy\.net/
-describe HS_HEADER_448		Heinlein Support Spamschutz Header-448 Spam
-score HS_HEADER_448		8
-
-header HS_HEADER_449		From:=~ /^.*wuchangbiz\@vip\.163\.com/
-describe HS_HEADER_449		Heinlein Support Spamschutz Header-449 Phishing
-score HS_HEADER_449		8
-
-header HS_HEADER_450		From:=~ /^.*gemtksrclk\@gmail\.com/
-describe HS_HEADER_450		Heinlein Support Spamschutz Header-450 Phishing
-score HS_HEADER_450		5
-
-header HS_HEADER_451		From =~ /^.*scrapelndyct\.biz/
-describe HS_HEADER_451		Heinlein Support Spamschutz Header-451 Spam
-score HS_HEADER_451		10
-
-header HS_HEADER_452		From:=~/^.*\<schwoto\@gmail\.com\>/
-describe HS_HEADER_452		Heinlein Support Spamschutz Header-452 SPAM
-score HS_HEADER_452		10
-
-header HS_HEADER_453		Reply-To =~ /.*no-reply.diskretklick693.eu/
-
-describe HS_HEADER_453		Heinlein Support Spamschutz Header-453 Spam
-score HS_HEADER_453		7
-
-header HS_HEADER_454		List-Unsubscribe:=~/^.*mail[0-9]{1}.haarausfallloesung.me\/unsubscribe.php/
-describe HS_HEADER_454		Heinlein Support Spamschutz Header-454 SPAM
-score HS_HEADER_454		3
-
-header HS_HEADER_455		X-Authenticated-User:=~/^.*\@ciaccess.com/
-describe HS_HEADER_455		Heinlein Support Spamschutz Header-455 Phishing
-score HS_HEADER_455		10
-
-header HS_HEADER_456		To =~ /Peer Heinlein.*akademie\@heinlein-support\.de/
-describe HS_HEADER_456		Heinlein Support Spamschutz Header-456 Spam
-score HS_HEADER_456		8
-
-header HS_HEADER_457		From =~ /.*commerciale\@scuolacoaching\.org/
-describe HS_HEADER_457		Heinlein Support Spamschutz Header-457 Spam
-score HS_HEADER_457		8
-
-header HS_HEADER_458		Subject: =~ /^.*The Stocktip Of The Year/
-describe HS_HEADER_458		Heinlein Support Spamschutz Header-458 
-score HS_HEADER_458		8
-
-header HS_HEADER_460		Subject: =~ /^.*are you ready for this/
-describe HS_HEADER_460		Heinlein Support Spamschutz Header-460 
-score HS_HEADER_460		5
-
-header HS_HEADER_462		Subject: =~ /^.*Important Message\: I beg you to read this letter\!/
-describe HS_HEADER_462		Heinlein Support Spamschutz Header-462 
-score HS_HEADER_462		5
-
-header HS_HEADER_463		Return-Path: =~ /^.*l110433\@web\-193115\.goracer\.de/
-describe HS_HEADER_463		Heinlein Support Spamschutz Header-463 Spam
-score HS_HEADER_463		8
-
-header HS_HEADER_464		From: =~ /^.*noreply\.inkassodienstleistung\@dispatchemail\.org/
-describe HS_HEADER_464		Heinlein Support Spamschutz Header-464 Spam
-score HS_HEADER_464		3
-
-header HS_HEADER_465		From:=~/daegregor\@correo\.inia\.gob\.ve/
-describe HS_HEADER_465		Heinlein Support Spamschutz Header-465 Spam
-score HS_HEADER_465		5
-
-header HS_HEADER_466		From:=~/^.*iTunes\.mail\@Store\.fr/
-describe HS_HEADER_466		Heinlein Support Spamschutz Header-466 Spam
-score HS_HEADER_466		8
-
-header HS_HEADER_467		Subject: =~ /^.*Ihre Kreditkarte beschrankt war/
-describe HS_HEADER_467		Heinlein Support Spamschutz Header-467 Phishing
-score HS_HEADER_467		5
-
-header HS_HEADER_468		Subject: =~ /WICHTIGE Information zur Deutschegarantie Lizenz!/
-describe HS_HEADER_468		Heinlein Support Spamschutz Header-468 Spam
-score HS_HEADER_468		5
-
-header HS_HEADER_469		From: =~ /Sparkasse GmbH/
-describe HS_HEADER_469		Heinlein Support Spamschutz Header-469 Phishing
-score HS_HEADER_469		5
-
-header HS_HEADER_470		Subject: =~ /^.*nike air jordan pas cher/
-describe HS_HEADER_470		Heinlein Support Spamschutz Header-470 Spam
-score HS_HEADER_470		5
-
-header HS_HEADER_471		From: =~ /jxxxdxht\@gmail\.com/
-describe HS_HEADER_471		Heinlein Support Spamschutz Header-471 Spam
-score HS_HEADER_471		5
-
-header HS_HEADER_472		From: =~ /^.*iTunes00\@store\.net/
-describe HS_HEADER_472		Heinlein Support Spamschutz Header-472 Phishing
-score HS_HEADER_472		5
-
-header HS_HEADER_473		From: =~ /^.*ladiesville0814\.com\.ua/
-describe HS_HEADER_473		Heinlein Support Spamschutz Header-473 Spam
-score HS_HEADER_473		5
-
-header HS_HEADER_474		From: =~ /^.*adugs\@adugs\.lv/
-describe HS_HEADER_474		Heinlein Support Spamschutz Header-474 Phishing
-score HS_HEADER_474		8
-
-header HS_HEADER_475		Subject: =~ /..\. November 2014.* ..:..:../
-describe HS_HEADER_475		Heinlein Support Spamschutz Header-475 Bankphishing
-score HS_HEADER_475		2
-
-header HS_HEADER_476		Subject: =~/FinanzGruppe Fiducia/
-describe HS_HEADER_476		Heinlein Support Spamschutz Header-476 Bankphishing
-score HS_HEADER_476		2
-
-header HS_HEADER_477		Subject: =~/Code : \(.*\)/
-describe HS_HEADER_477		Heinlein Support Spamschutz Header-477 Bankphishing
-score HS_HEADER_477		2
-
-header HS_HEADER_478		From: =~ /^.*telekom\.de.*pastoralbuero\@sankt-petrus-bonn\.de/
-describe HS_HEADER_478		Heinlein Support Spamschutz Header-478 Malware
-score HS_HEADER_478		5
-
-header HS_HEADER_479		Reply-To: =~/^.*trevorw756\@yahoo\.co\.uk/
-describe HS_HEADER_479		Heinlein Support Spamschutz Header-479 Spam
-score HS_HEADER_479		5
-
-header HS_HEADER_481		From: =~/^.*jroberts3\@ccsj\.edu/
-describe HS_HEADER_481		Heinlein Support Spamschutz Header-481 Spam
-score HS_HEADER_481		5
-
-header HS_HEADER_482		From: =~/^.*Nor-eply\@visa\.com/
-describe HS_HEADER_482		Heinlein Support Spamschutz Header-482 Phishing
-score HS_HEADER_482		7
-
-header HS_HEADER_483		From =~ /^.*ebcjsxzht\@gmail\.com/
-describe HS_HEADER_483		Heinlein Support Spamschutz Header-483 Spam
-score HS_HEADER_483		5
-
-header HS_HEADER_484		From =~ /^.*vinayak\@softaculous\.com/
-describe HS_HEADER_484		Heinlein Support Spamschutz Header-484 Spam
-score HS_HEADER_484		3
-
-header HS_HEADER_485		From: =~/^.*admin\@1876\.cn/
-describe HS_HEADER_485		Heinlein Support Spamschutz Header-485 Spam
-score HS_HEADER_485		5
-
-header HS_HEADER_486		Subject: =~ /^.*1 Pille Zacti Plus gleich 1 Kg weniger/
-describe HS_HEADER_486		Heinlein Support Spamschutz Header-486 Spam
-score HS_HEADER_486		8
-
-header HS_HEADER_487		Reply-To: =~/^.*alexbetts47\@yahoo\.com/
-describe HS_HEADER_487		Heinlein Support Spamschutz Header-487 Spam
-score HS_HEADER_487		8
-
-header HS_HEADER_488		From: =~/^.*test\@ELBOURI\.com/
-describe HS_HEADER_488		Heinlein Support Spamschutz Header-488 Spam
-score HS_HEADER_488		5
-
-header HS_HEADER_489		From: =~/^.*lenderloanfirm\@foxmail\.com/
-describe HS_HEADER_489		Heinlein Support Spamschutz Header-489 Spam
-score HS_HEADER_489		5
-
-header HS_HEADER_491		List-Unsubscribe: =~/^.*\<mailto\:GBZDQVRRMYYXKRKBHFJXUTLLMFIFGYTENBZHQZLNJVRDA6KBKN3U45LQIRNEEOBQNJSHGPI\.35078\.45944\.7\@unsub-sj\.mktomail\.com\>/
-describe HS_HEADER_491		Heinlein Support Spamschutz Header-491 Spam
-score HS_HEADER_491		5
-
-header HS_HEADER_492		From: =~/^.*bond\.9664740\@gmail\.com/
-describe HS_HEADER_492		Heinlein Support Spamschutz Header-492 Spam
-score HS_HEADER_492		5
-
-header HS_HEADER_494		From: =~/^.*wgedition\.62507\@gmail\.com/
-describe HS_HEADER_494		Heinlein Support Spamschutz Header-494 Spam
-score HS_HEADER_494		5
-
-header HS_HEADER_495		From: =~/^.*sisiwo\@nnnrw\.com/
-describe HS_HEADER_495		Heinlein Support Spamschutz Header-495 Spam
-score HS_HEADER_495		5
-
-header HS_HEADER_496		From: =~/^.*paypaI\.com/
-describe HS_HEADER_496		Heinlein Support Spamschutz Header-496 Phishing
-score HS_HEADER_496		5
-
-header HS_HEADER_497		From: =~/^.*webseoservices1\@hotmail\.com/
-describe HS_HEADER_497		Heinlein Support Spamschutz Header-497 Spam
-score HS_HEADER_497		5
-
-header HS_HEADER_498		Subject: =~ /^.*\=\?UTF-8\?B\?SWhyIFBheXBhbCBLb250byBpc3QgZWluZ2VzY2hyw6Rua3QhIElocmUgTWl0aGlsZmUgaXN0IGdlZnJhZ3Q\=\?\=/
-describe HS_HEADER_498		Heinlein Support Spamschutz Header-498 Phishing
-score HS_HEADER_498		10
-
-header HS_HEADER_499		From: =~/^.*2VydmljZUBwYXlwYWwuZGU/
-describe HS_HEADER_499		Heinlein Support Spamschutz Header-499 Phishing
-score HS_HEADER_499		10
-
-header HS_HEADER_500		From: =~/^.*login2rosy\@gmail\.com/
-describe HS_HEADER_500		Heinlein Support Spamschutz Header-500 Spam
-score HS_HEADER_500		5
-
-header HS_HEADER_501		From: =~/^.*senina.alla2016\@yandex.com/
-describe HS_HEADER_501		Heinlein Support Spamschutz Header-501 Spam
-score HS_HEADER_501		5
-
-header HS_HEADER_502		From: =~/^.*kiryll\@pewm.eu/
-describe HS_HEADER_502		Heinlein Support Spamschutz Header-502 Spam
-score HS_HEADER_502		5
-
-header HS_HEADER_503		From: =~/^.*lianglongwo486\@21cn.com/
-describe HS_HEADER_503		Heinlein Support Spamschutz Header-503 Spam
-score HS_HEADER_503		5
-
-header HS_HEADER_504		Return-Path: =~/^.*info\@techlinedisk\.ru/
-describe HS_HEADER_504		Heinlein Support Spamschutz Header-504 Phishing
-score HS_HEADER_504		8
-
-header HS_HEADER_505		From: =~/^.*xlemaz347405\@gmail.com/
-describe HS_HEADER_505		Heinlein Support Spamschutz Header-505 Spam
-score HS_HEADER_505		5
-
-header HS_HEADER_506		From: =~/^.*sever.me\@made.cn/
-describe HS_HEADER_506		Heinlein Support Spamschutz Header-506 Spam
-score HS_HEADER_506		5
-
-header HS_HEADER_507		From: =~/^.*hammi.made\@Made-in-China.biz/
-describe HS_HEADER_507		Heinlein Support Spamschutz Header-507 Spam
-score HS_HEADER_507		5
-
-header HS_HEADER_508		From: =~/^.*WangBruceCompany\@yeah.net/
-describe HS_HEADER_508		Heinlein Support Spamschutz Header-508 Spam
-score HS_HEADER_508		5
-
-header HS_HEADER_509		From: =~/^.*ahmed-noorr1\@outlook.com/
-describe HS_HEADER_509		Heinlein Support Spamschutz Header-509 Spam
-score HS_HEADER_509		5
-
-header HS_HEADER_510		From: =~/^.*jenniferrgbagbo\@yahoo.co.jp/
-describe HS_HEADER_510		Heinlein Support Spamschutz Header-510 Spam
-score HS_HEADER_510		5
-
-header HS_HEADER_511		From: =~/^.*omprakash\@taazaa.com/
-describe HS_HEADER_511		Heinlein Support Spamschutz Header-511 Spam
-score HS_HEADER_511		5
-
-header HS_HEADER_512		From: =~/^.*wpsupport\@scmapp.com/
-describe HS_HEADER_512		Heinlein Support Spamschutz Header-512 Spam
-score HS_HEADER_512		5
-
-header HS_HEADER_513		From: =~/^.*contact-numae.fr\@newsletter.mgdev-net.fr/
-describe HS_HEADER_513		Heinlein Support Spamschutz Header-513 Spam
-score HS_HEADER_513		5
-
-header HS_HEADER_514		From: =~/^.*alex37\@dssygroup.com/
-describe HS_HEADER_514		Heinlein Support Spamschutz Header-514 Spam
-score HS_HEADER_514		5
-
-header HS_HEADER_515		From: =~/^.*michealpeterss105\@gmail.com/
-describe HS_HEADER_515		Heinlein Support Spamschutz Header-515 Spam
-score HS_HEADER_515		3
-
-header HS_HEADER_516		Subject: =~/^.*sir\/ madam reply if you will be interested./
-describe HS_HEADER_516		Heinlein Support Spamschutz Header-516 Spam
-score HS_HEADER_516		5
-
-header HS_HEADER_517		From: =~/^.*wkbb02\@gmail.com/
-describe HS_HEADER_517		Heinlein Support Spamschutz Header-517 Spam
-score HS_HEADER_517		5
-
-header HS_HEADER_518		From: =~ /DHL Support/
-describe HS_HEADER_518		Heinlein Support Spamschutz Header-518 Phishing
-score HS_HEADER_518		5
-
-header HS_HEADER_519		From: =~/^.*web447p2\@tux39.loginserver.ch/
-describe HS_HEADER_519		Heinlein Support Spamschutz Header-519 Phishing
-score HS_HEADER_519		5
-
-header HS_HEADER_520		From: =~ /DHL Fachteam/
-describe HS_HEADER_520		Heinlein Support Spamschutz Header-520 Phishing
-score HS_HEADER_520		5
-
-header HS_HEADER_521		From: =~/^.*info\@hostbirds.co.in/
-describe HS_HEADER_521		Heinlein Support Spamschutz Header-521 Spam
-score HS_HEADER_521		5
-
-header HS_HEADER_522		Subject:=~/^.*Greetings from Gambia\/ Hon\. Francis Liti Mboge/
-describe HS_HEADER_522		Heinlein Support Spamschutz Header-522 Spam
-score HS_HEADER_522		8
-
-header HS_HEADER_523		From:=~/^.*vankoloeger\@yandex\.com/
-describe HS_HEADER_523		Heinlein Support Spamschutz Header-523 SPAM
-score HS_HEADER_523		8
-
-header HS_HEADER_524		From:=~/^.*guessansandra2010\@yahoo.co.jp/
-describe HS_HEADER_524		Heinlein Support Spamschutz Header-524 Spam
-score HS_HEADER_524		5
-
-header HS_HEADER_525		From:=~/^ .*DHL Logistik-Spezialist/
-describe HS_HEADER_525		Heinlein Support Spamschutz Header-525 Spam
-score HS_HEADER_525		8
-
-header HS_HEADER_526		Subject:=~/^.*Paketzustellung im Zusammenhang mit der Sendung/
-describe HS_HEADER_526		Heinlein Support Spamschutz Header-526 Phishing
-score HS_HEADER_526		8
-
-header HS_HEADER_527		From:=~/^.*david\.geletey\@zcredit\.org/
-describe HS_HEADER_527		Heinlein Support Spamschutz Header-527 Spam
-score HS_HEADER_527		8
-
-header HS_HEADER_528		From:=~/^.*DHL Transport-Team/
-describe HS_HEADER_528		Heinlein Support Spamschutz Header-528 Phishing
-score HS_HEADER_528		8
-
-header HS_HEADER_529		From:=~/^.*PayPal \<service\@payen\.com\>/
-describe HS_HEADER_529		Heinlein Support Spamschutz Header-529 Phishing
-score HS_HEADER_529		8
-
-header HS_HEADER_530		From:=~/^.*DHL Logistik-Spezialist/
-describe HS_HEADER_530		Heinlein Support Spamschutz Header-530 Phishing
-score HS_HEADER_530		8
-
-header HS_HEADER_531		From:=~/^.*Frauen-Finder\" \<frauen-finder\@erfolg-durch-profis\.com\>/
-describe HS_HEADER_531		Heinlein Support Spamschutz Header-531 SPAM
-score HS_HEADER_531		8
-
-header HS_HEADER_532		Subject:=~/^.*Ich will dich ficken\. Hier mein Profil/
-describe HS_HEADER_532		Heinlein Support Spamschutz Header-532 SPAM
-score HS_HEADER_532		8
-
-header HS_HEADER_533		From:=~/^.*\=\?UTF\-8\?Q\?PayPal\?\=\<support\@pypal\.com\>/
-describe HS_HEADER_533		Heinlein Support Spamschutz Header-533 Phishing
-score HS_HEADER_533		8
-
-header HS_HEADER_534		Subject:=~/^.*Ank\?\?ndigung Ihrer Sendung/
-describe HS_HEADER_534		Heinlein Support Spamschutz Header-534 Spam
-score HS_HEADER_534		8
-
-header HS_HEADER_535		From:=~/^.*\"DHL\.de\"/
-describe HS_HEADER_535		Heinlein Support Spamschutz Header-535 Phishing
-score HS_HEADER_535		5
-
-header HS_HEADER_537		From:=~/^.*mr\_evans1245\@yahoo\.com/
-describe HS_HEADER_537		Heinlein Support Spamschutz Header-537 Spam
-score HS_HEADER_537		8
-
-header HS_HEADER_539		From:=~/^.*administrator\@social-webshop.com/
-describe HS_HEADER_539		Heinlein Support Spamschutz Header-539 Phishing
-score HS_HEADER_539		5
-
-header HS_HEADER_540		From:=~/^.*info-null-punkte\@gmx.ch/
-describe HS_HEADER_540		Heinlein Support Spamschutz Header-540 Spam
-score HS_HEADER_540		5
-
-header HS_HEADER_541		From:=~/^.*contact\@satec.co.in/
-describe HS_HEADER_541		Heinlein Support Spamschutz Header-541 Spam
-score HS_HEADER_541		5
-
-header HS_HEADER_542		From:=~/^.*mirable24\@hotmail.com/
-describe HS_HEADER_542		Heinlein Support Spamschutz Header-542 Spam
-score HS_HEADER_542		5
-
-header HS_HEADER_543		From:=~/^.*mail\@pro-pitchers.com/
-describe HS_HEADER_543		Heinlein Support Spamschutz Header-543 Spam
-score HS_HEADER_543		5
-
-header HS_HEADER_544		From:=~/^.*news\@bestdepartment.net/
-describe HS_HEADER_544		Heinlein Support Spamschutz Header-544 Spam
-score HS_HEADER_544		5
-
-header HS_HEADER_545		From:=~/^.*news\@bio-fruits.net/
-describe HS_HEADER_545		Heinlein Support Spamschutz Header-545 Spam
-score HS_HEADER_545		5
-
-header HS_HEADER_546		From:=~/^.*\@erfolg\-durch\-profis\.(com|de)/
-describe HS_HEADER_546		Heinlein Support Spamschutz Header-546 Spam
-score HS_HEADER_546		8
-
-header HS_HEADER_547		Subject:=~/^.*I can show you how to fuel your brand and generate more revenue from search engines and social networks\./
-describe HS_HEADER_547		Heinlein Support Spamschutz Header-547 Spam
-score HS_HEADER_547		8
-
-header HS_HEADER_548		Subject:=~/^.*\=\?ISO\-8859\-1\?Q\?From\=3Amarketing\_\=3A\_Wie\_geht\_es\_\?\=/
-describe HS_HEADER_548		Heinlein Support Spamschutz Header-548 Spam
-score HS_HEADER_548		8
-
-header HS_HEADER_549		From:=~/^.*\@towerstream.com/
-describe HS_HEADER_549		Heinlein Support Spamschutz Header-549 Spam
-score HS_HEADER_549		5
-
-header HS_HEADER_550		From:=~/^.*bajas\@ticktag.es/
-describe HS_HEADER_550		Heinlein Support Spamschutz Header-550 Spam
-score HS_HEADER_550		5
-
-header HS_HEADER_551		From:=~/^.*uvqciexp\@aol.com/
-describe HS_HEADER_551		Heinlein Support Spamschutz Header-551 Spam
-score HS_HEADER_551		5
-
-header HS_HEADER_552		Reply-To:=~/^.*skyfinance01243\@gmail\.com/
-describe HS_HEADER_552		Heinlein Support Spamschutz Header-552 Spam
-score HS_HEADER_552		8
-
-header HS_HEADER_553		From:=~/^.*molly.mills1\@outlook.com/
-describe HS_HEADER_553		Heinlein Support Spamschutz Header-553 Spam
-score HS_HEADER_553		5
-
-header HS_HEADER_554		From:=~/^.*reply\@vip\.newdeals\.eu/
-describe HS_HEADER_554		Heinlein Support Spamschutz Header-554 Spam
-score HS_HEADER_554		8
-
-header HS_HEADER_555		From:=~/^.*SOLAR\-PANEL\-\-INSTALLATION\@usaenergysun\.party/
-describe HS_HEADER_555		Heinlein Support Spamschutz Header-555 spam
-score HS_HEADER_555		8
-
-header HS_HEADER_556		Subject:=~/^.* Auto Response\: Find something you like\? Take  \â\\• 65\% off\. It\'s on us/
-describe HS_HEADER_556		Heinlein Support Spamschutz Header-556 Spam
-score HS_HEADER_556		8
-
-header HS_HEADER_557		From:=~/^.*\@micro-sender\.biz/
-describe HS_HEADER_557		Heinlein Support Spamschutz Header-557 SPAM
-score HS_HEADER_557		8
-
-header HS_HEADER_558		Subject:=~/^.* Your Best Business Tool In Your Pocket/
-describe HS_HEADER_558		Heinlein Support Spamschutz Header-558 Spam
-score HS_HEADER_558		8
-
-header HS_HEADER_559		Message-ID: =~ /^.*JavaMail\.RCKAPP\$\@rckapp/
-describe HS_HEADER_559		Heinlein Support Spamschutz Header-559 
-score HS_HEADER_559		1
-
-header HS_HEADER_560		From:=~/^.*info\@onlineranking.net/
-describe HS_HEADER_560		Heinlein Support Spamschutz Header-560 Spam
-score HS_HEADER_560		5
-
-header HS_HEADER_561		From:=~/^.*david\@dadli.com/
-describe HS_HEADER_561		Heinlein Support Spamschutz Header-561 Spam
-score HS_HEADER_561		5
-
-header HS_HEADER_562		From:=~/^.*info\@biddsmanager.com/
-describe HS_HEADER_562		Heinlein Support Spamschutz Header-562 Spam
-score HS_HEADER_562		5
-
-header HS_HEADER_563		From:=~/^.*info\@extrabids.net/
-describe HS_HEADER_563		Heinlein Support Spamschutz Header-563 Spam
-score HS_HEADER_563		5
-
-header HS_HEADER_564		From:=~/^.*mail\@insidethecash.com/
-describe HS_HEADER_564		Heinlein Support Spamschutz Header-564 Spam
-score HS_HEADER_564		5
-
-header HS_HEADER_565		From:=~/^.*sales457\@aicl.pw/
-describe HS_HEADER_565		Heinlein Support Spamschutz Header-565 Spam
-score HS_HEADER_565		8
-
-header HS_HEADER_566		List-Unsubscribe:=~/^.*empfehlung-vom-profi.de/
-describe HS_HEADER_566		Heinlein Support Spamschutz Header-566 SPAM
-score HS_HEADER_566		8
-
-header HS_HEADER_567		List-Unsubscribe:=~/^.*fascinating-magic.de/
-describe HS_HEADER_567		Heinlein Support Spamschutz Header-567 SPAM
-score HS_HEADER_567		8
-
-header HS_HEADER_568		X-Mailer:=~/^.*Coremail Webmail Server Version SP_ntes V3.5 build 20150803(72677.7612) Copyright (c) 2002-2015 www.mailtech.cn yeah/
-describe HS_HEADER_568		Heinlein Support Spamschutz Header-568 Spam
-score HS_HEADER_568		9
-
-header HS_HEADER_569		Subject:=~/^.*Notice to Appear/
-describe HS_HEADER_569		Heinlein Support Spamschutz Header-569 Malware
-score HS_HEADER_569		5
-
-header HS_HEADER_570		Return-Path: =~/^.*admin\@pavpall.onmicrosoft.com/
-describe HS_HEADER_570		Heinlein Support Spamschutz Header-570 Phishing
-score HS_HEADER_570		8
-
-header HS_HEADER_571		Reply-To:=~/^.*mrspokumblo\_003\@yahoo.com/
-describe HS_HEADER_571		Heinlein Support Spamschutz Header-571 Spam
-score HS_HEADER_571		8
-
-header HS_HEADER_572		From:=~/^.*mrspokumblo\@gmail.com/
-describe HS_HEADER_572		Heinlein Support Spamschutz Header-572 Spam
-score HS_HEADER_572		8
-
-header HS_HEADER_573		From:=~/^.*baghdadiali\_mahmudi\@yahoo\.co\.uk/
-describe HS_HEADER_573		Heinlein Support Spamschutz Header-573 Spam
-score HS_HEADER_573		8
-
-header HS_HEADER_574		To:=~/^.*zentrale\@comdirect.de/
-describe HS_HEADER_574		Heinlein Support Spamschutz Header-574 Phishing
-score HS_HEADER_574		8
-
-header HS_HEADER_575		From:=~/^.*tina\_899tina\@yahoo\.co\.jp/
-describe HS_HEADER_575		Heinlein Support Spamschutz Header-575 Spam
-score HS_HEADER_575		8
-
-header HS_HEADER_576		From:=~/^.*JESPIRK\@aps\.k12\.co\.us/
-describe HS_HEADER_576		Heinlein Support Spamschutz Header-576 Spam
-score HS_HEADER_576		8
-
-header HS_HEADER_577		From:=~/^.*mail\@kinggenerator.com/
-describe HS_HEADER_577		Heinlein Support Spamschutz Header-577 Spam
-score HS_HEADER_577		8
-
-header HS_HEADER_578		From:=~/^.*consultorio\.raffadali\@aspag\.it/
-describe HS_HEADER_578		Heinlein Support Spamschutz Header-578 Spam
-score HS_HEADER_578		8
-
-header HS_HEADER_579		From:=~/^.*\@pro-application.com/
-describe HS_HEADER_579		Heinlein Support Spamschutz Header-579 Spam
-score HS_HEADER_579		5
-
-header HS_HEADER_580		From:=~/^.*ShariffMA\@ngha\.med\.sa/
-describe HS_HEADER_580		Heinlein Support Spamschutz Header-580 Spam
-score HS_HEADER_580		8
-
-header HS_HEADER_581		From:=~/^.*catc43\@aol\.com/
-describe HS_HEADER_581		Heinlein Support Spamschutz Header-581 Spam
-score HS_HEADER_581		8
-
-header HS_HEADER_582		From:=~/^.*job\.info187\@sapo\.pt/
-describe HS_HEADER_582		Heinlein Support Spamschutz Header-582 Spam
-score HS_HEADER_582		8
-
-header HS_HEADER_583		From:=~/^.*mariaelena\.garcia\@mecd\.es/
-describe HS_HEADER_583		Heinlein Support Spamschutz Header-583 Spam
-score HS_HEADER_583		8
-
-header HS_HEADER_584		From:=~/^.*William\.Hanna\@bridgew\.edu/
-describe HS_HEADER_584		Heinlein Support Spamschutz Header-584 Spam
-score HS_HEADER_584		8
-
-header HS_HEADER_585		From:=~/^.*\@makinwork.com/
-describe HS_HEADER_585		Heinlein Support Spamschutz Header-585 Spam
-score HS_HEADER_585		5
-
-header HS_HEADER_586		From:=~/^.*\@stringadvertising.biz/
-describe HS_HEADER_586		Heinlein Support Spamschutz Header-586 Spam
-score HS_HEADER_586		5
-
-header HS_HEADER_587		From:=~/^.*\@listemail.biz/
-describe HS_HEADER_587		Heinlein Support Spamschutz Header-587 Spam
-score HS_HEADER_587		5
-
-header HS_HEADER_588		From:=~/^.*\@mergesender.net/
-describe HS_HEADER_588		Heinlein Support Spamschutz Header-588 Spam
-score HS_HEADER_588		5
-
-header HS_HEADER_589		Reply-To:=~/^.*gurbhejsrafoundation\@inbox.lv/
-describe HS_HEADER_589		Heinlein Support Spamschutz Header-589 Spam
-score HS_HEADER_589		5
-
-header HS_HEADER_590		From:=~/^.*\@case-advertising.com/
-describe HS_HEADER_590		Heinlein Support Spamschutz Header-590 Spam
-score HS_HEADER_590		8
-
-header HS_HEADER_591		Return-Path:=~/^.*info\@1careergoal\.com/
-describe HS_HEADER_591		Heinlein Support Spamschutz Header-591 Phishing
-score HS_HEADER_591		8
-
-header HS_HEADER_592		From:=~/^.*iden\-pro\@ukr\.net/
-describe HS_HEADER_592		Heinlein Support Spamschutz Header-592 Spam
-score HS_HEADER_592		8
-
-header HS_HEADER_593		From:=~/^.*sam\.campanale\@century21\.ca/
-describe HS_HEADER_593		Heinlein Support Spamschutz Header-593 Spam
-score HS_HEADER_593		8
-
-header HS_HEADER_594		From:=~/^.*nathey\@web.de/i
-describe HS_HEADER_594		Heinlein Support Spamschutz Header-594 SPAM
-score HS_HEADER_594		10
-
-header HS_HEADER_595		Reply-To:=~/^.*diane.soto1901\@yahoo.com/
-describe HS_HEADER_595		Heinlein Support Spamschutz Header-595 Spam
-score HS_HEADER_595		5
-
-header HS_HEADER_596		From:=~/^.*infosky\@4kinder\.kz/
-describe HS_HEADER_596		Heinlein Support Spamschutz Header-596 Spam
-score HS_HEADER_596		8
-
-header HS_HEADER_597		From:=~/^.*nl.my-check.de/
-describe HS_HEADER_597		Heinlein Support Spamschutz Header-597 Spam
-score HS_HEADER_597		5
-
-header HS_HEADER_598		From:=~/^.*auevs.kredit.de/
-describe HS_HEADER_598		Heinlein Support Spamschutz Header-598 Spam
-score HS_HEADER_598		5
-
-header HS_HEADER_599		From:=~/^.*flug-jetzt.com/
-describe HS_HEADER_599		Heinlein Support Spamschutz Header-599 Spam
-score HS_HEADER_599		5
-
-header HS_HEADER_600		From:=~/^.*trusted\-nutriform\-deutschland\.com/
-describe HS_HEADER_600		Heinlein Support Spamschutz Header-600 Spam
-score HS_HEADER_600		5
-
-header HS_HEADER_601		From:=~/^.*news.de.cc/
-describe HS_HEADER_601		Heinlein Support Spamschutz Header-601 Spam
-score HS_HEADER_601		5
-
-header HS_HEADER_602		From:=~/^.*cse.ohio-state.edu/
-describe HS_HEADER_602		Heinlein Support Spamschutz Header-602 Spam
-score HS_HEADER_602		8
-
-header HS_HEADER_603		From:=~/^.*53596\-cf\@online\.de/
-describe HS_HEADER_603		Heinlein Support Spamschutz Header-603 Spam
-score HS_HEADER_603		8
-
-header HS_HEADER_604		From:=~/^.*\@tophosting.gq/
-describe HS_HEADER_604		Heinlein Support Spamschutz Header-604 Spam
-score HS_HEADER_604		8
-
-header HS_HEADER_605		From:=~/^.*\@beterservers.tld.cc/
-describe HS_HEADER_605		Heinlein Support Spamschutz Header-605 Spam
-score HS_HEADER_605		8
-
-header HS_HEADER_606		From:=~/^.*\@hikehosting.gq/
-describe HS_HEADER_606		Heinlein Support Spamschutz Header-606 Spam
-score HS_HEADER_606		8
-
-header HS_HEADER_607		From:=~/^.*\@servicehosting.usa.cc/
-describe HS_HEADER_607		Heinlein Support Spamschutz Header-607 Spam
-score HS_HEADER_607		8
-
-header HS_HEADER_608		From:=~/^.*\@dedicatedserver.nut.cc/
-describe HS_HEADER_608		Heinlein Support Spamschutz Header-608 Spam
-score HS_HEADER_608		8
-
-header HS_HEADER_609		From:=~/^.*\@bestservers.usa.cc/
-describe HS_HEADER_609		Heinlein Support Spamschutz Header-609 Spam
-score HS_HEADER_609		8
-
-header HS_HEADER_610		From:=~/^.*\@speedhost.flu.cc/
-describe HS_HEADER_610		Heinlein Support Spamschutz Header-610 Spam
-score HS_HEADER_610		8
-
-header HS_HEADER_611		From:=~/^.*\@websitehosting.tld.cc/
-describe HS_HEADER_611		Heinlein Support Spamschutz Header-611 Spam
-score HS_HEADER_611		8
-
-header HS_HEADER_612		From:=~/^.*\@bestresellerhosting.flu.cc/
-describe HS_HEADER_612		Heinlein Support Spamschutz Header-612 Spam
-score HS_HEADER_612		8
-
-header HS_HEADER_613		From:=~/^.*\@experthosting.flu.cc/
-describe HS_HEADER_613		Heinlein Support Spamschutz Header-613 Spam
-score HS_HEADER_613		8
-
-header HS_HEADER_614		From:=~/^.*\@takebesthosting.tld.cc/
-describe HS_HEADER_614		Heinlein Support Spamschutz Header-614 Spam
-score HS_HEADER_614		8
-
-header HS_HEADER_615		From:=~/^.*\@hostdadicate.nut.cc/
-describe HS_HEADER_615		Heinlein Support Spamschutz Header-615 Spam
-score HS_HEADER_615		8
-
-header HS_HEADER_616		From:=~/^.*\@fullyhosting.flu.cc/
-describe HS_HEADER_616		Heinlein Support Spamschutz Header-616 Spam
-score HS_HEADER_616		8
-
-header HS_HEADER_617		From:=~/^.*\@hostserver.nut.cc/
-describe HS_HEADER_617		Heinlein Support Spamschutz Header-617 Spam
-score HS_HEADER_617		8
-
-header HS_HEADER_618		From:=~/^.*\@bestvpssharedhosting.flu.cc/
-describe HS_HEADER_618		Heinlein Support Spamschutz Header-618 Spam
-score HS_HEADER_618		8
-
-header HS_HEADER_619		From:=~/^.*\@news-data\.net/
-describe HS_HEADER_619		Heinlein Support Spamschutz Header-619 Spam
-score HS_HEADER_619		8
-
-header HS_HEADER_620		From:=~/^.*stringadvertising.org/
-describe HS_HEADER_620		Heinlein Support Spamschutz Header-620 Spam
-score HS_HEADER_620		5
-
-header HS_HEADER_621		From:=~/^.*typicalhoster.biz/
-describe HS_HEADER_621		Heinlein Support Spamschutz Header-621 Spam
-score HS_HEADER_621		5
-
-header HS_HEADER_622		From:=~/^.*datamessage.biz/
-describe HS_HEADER_622		Heinlein Support Spamschutz Header-622 Spam
-score HS_HEADER_622		5
-
-header HS_HEADER_623		From:=~/^.*best.shopping.cx/
-describe HS_HEADER_623		Heinlein Support Spamschutz Header-623 Spam
-score HS_HEADER_623		5
-
-header HS_HEADER_625		From:=~/^.*\@10alogo.com/
-describe HS_HEADER_625		Heinlein Support Spamschutz Header-625 Spam
-score HS_HEADER_625		8
-
-header HS_HEADER_626		From:=~/^.*seoworld9\@gmail\.com/
-describe HS_HEADER_626		Heinlein Support Spamschutz Header-626 Spam
-score HS_HEADER_626		8
-
-header HS_HEADER_628		From:=~/^zainabinformation\@gmail.com/
-describe HS_HEADER_628		Heinlein Support Spamschutz Header-628 Spam
-score HS_HEADER_628		10
-
-header HS_HEADER_629		From:=~/^juanamahmood\@gmail.com/
-describe HS_HEADER_629		Heinlein Support Spamschutz Header-629 Spam
-score HS_HEADER_629		10
-
-header HS_HEADER_630		From:=~/^responsivewebsitedesign*/
-describe HS_HEADER_630		Heinlein Support Spamschutz Header-630 Spam
-score HS_HEADER_630		8
-
-header HS_HEADER_631		From:=~/^.*centiplex.com/
-describe HS_HEADER_631		Heinlein Support Spamschutz Header-631 Spam
-score HS_HEADER_631		5
-
-header HS_HEADER_632		From:=~/^.*deutschedomain.com/
-describe HS_HEADER_632		Heinlein Support Spamschutz Header-632 Spam
-score HS_HEADER_632		8
-
-header HS_HEADER_634		From:=~/^.*wie-teuer-ist-krankenkasse\.info/
-describe HS_HEADER_634		Heinlein Support Spamschutz Header-634 Phishing
-score HS_HEADER_634		8
-
-header HS_HEADER_635		From:=~/^.*(general-auction.com|g-so.com|expo-machineries.com|glassonthego.com|buyoceanfrontcondo.com|boxerrescuela.com|bio-cheese.com|flightssa.com|sellingoffers.ne|axcelectronics.com)/
-describe HS_HEADER_635		Heinlein Support Spamschutz Header-635 Spam
-score HS_HEADER_635		7
-
-header HS_HEADER_636		Subject:=~/^.*purchasing order from Graham/
-describe HS_HEADER_636		Heinlein Support Spamschutz Header-636 Spam
-score HS_HEADER_636		6
-
-header HS_HEADER_637		From:=~/^canon\@rosnou.ru/
-describe HS_HEADER_637		Heinlein Support Spamschutz Header-637 Spam
-score HS_HEADER_637		8
-
-header HS_HEADER_638		From:=~/^.*seoramakant\@gmail\.com/
-describe HS_HEADER_638		Heinlein Support Spamschutz Header-638 Spam
-score HS_HEADER_638		8
-
-header HS_HEADER_639		From:=~/^.*nitimechamber\@yahoo\.com\.au/
-describe HS_HEADER_639		Heinlein Support Spamschutz Header-639 Spam
-score HS_HEADER_639		8
-
-header HS_HEADER_640		From:=~/^.*creativewebdesign189\@gmail\.com/
-describe HS_HEADER_640		Heinlein Support Spamschutz Header-640 Spam
-score HS_HEADER_640		5
-
-header HS_HEADER_641		From:=~/^.*jbrcc98\@q\.com/
-describe HS_HEADER_641		Heinlein Support Spamschutz Header-641 Phishing
-score HS_HEADER_641		8
-
-header HS_HEADER_642		Subject:=~/^.*Cruise Job 2015/
-describe HS_HEADER_642		Heinlein Support Spamschutz Header-642 Spam
-score HS_HEADER_642		8
-
-header HS_HEADER_643		Return-Path:=~/^.*ibreply\@westpac\.co\.nz/
-describe HS_HEADER_643		Heinlein Support Spamschutz Header-643 Phishing
-score HS_HEADER_643		8
-
-header HS_HEADER_644		Subject:=~/MAILBOX RENEWAL ALERT/
-describe HS_HEADER_644		Heinlein Support Spamschutz Header-644 Phishing
-score HS_HEADER_644		15
-
-header HS_HEADER_646		From:=~/^.*J.Bernardi\@t\-online\.de/
-describe HS_HEADER_646		Heinlein Support Spamschutz Header-646 Spam
-score HS_HEADER_646		8
-
-header HS_HEADER_647		From:=~/^.*interac.it.*/
-describe HS_HEADER_647		Heinlein Support Spamschutz Header-647 Spam
-score HS_HEADER_647		8
-
-header HS_HEADER_648		Return-Path:=~/^.*listcompanion\-mailer.com/
-describe HS_HEADER_648		Heinlein Support Spamschutz Header-648 Spam
-score HS_HEADER_648		8
-
-header HS_HEADER_649		From:=~/^.*limited\@pavpa.co/
-describe HS_HEADER_649		Heinlein Support Spamschutz Header-649 Phishing
-score HS_HEADER_649		8
-
-header HS_HEADER_650		List-Unsubscribe:=~/^.*(server.winnerfaster.com|www.sharedbread.com|healthaddress.net|geekutopia.org|consumersocial.org|top10bluray.com|e-onlinecorrespondence.com|iem32.smtp.com|armstrusts.com|okdone.net|gogetcash.net)/
-describe HS_HEADER_650		Heinlein Support Spamschutz Header-650 Spam
-score HS_HEADER_650		5
-
-header HS_HEADER_651		Subject:=~/^.*~~~~~ Leaked CODE Could DEMOLISH The Entire U\.S\. Lotto Industry\. ~~~~~/
-describe HS_HEADER_651		Heinlein Support Spamschutz Header-651 Spam
-score HS_HEADER_651		5
-
-header HS_HEADER_652		From:=~/^.*hierrezeptfreianfordern.xyz/
-describe HS_HEADER_652		Heinlein Support Spamschutz Header-652 Spam
-score HS_HEADER_652		8
-
-header HS_HEADER_653		List-Unsubscribe:=~/^.*dontone.org/
-describe HS_HEADER_653		Heinlein Support Spamschutz Header-653 Spam
-score HS_HEADER_653		5
-
-header HS_HEADER_654		From:=~/^.*account\@zepeem\.com/
-describe HS_HEADER_654		Heinlein Support Spamschutz Header-654 Spam
-score HS_HEADER_654		8
-
-header HS_HEADER_655		From:=~/.*\@int.paypal.com.*\@mailbox.org/
-describe HS_HEADER_655		Heinlein Support Spamschutz Header-655 Paypal-Phishing mit MBO-Account ausgehend
-score HS_HEADER_655		10
-
-header HS_HEADER_656		X-PPP-Vhost:=~/pappdorf.de/
-describe HS_HEADER_656		Heinlein Support Spamschutz Header-656 
-score HS_HEADER_656		1
-
-header HS_HEADER_657		From:=~/^.*die\_walt7917\@aol\.com/
-describe HS_HEADER_657		Heinlein Support Spamschutz Header-657 Spam
-score HS_HEADER_657		8
-
-header HS_HEADER_658		From:=~/PayPal.*Service .*\@mailbox.org/
-describe HS_HEADER_658		Heinlein Support Spamschutz Header-658 Phishing
-score HS_HEADER_658		10
-
-header HS_HEADER_659		From:=~/PayPal.* .*\@mailbox.org/
-describe HS_HEADER_659		Heinlein Support Spamschutz Header-659 Phishing
-score HS_HEADER_659		16
-
-header HS_HEADER_660		From:=~/^.*info\@harrydfe\.biz/
-describe HS_HEADER_660		Heinlein Support Spamschutz Header-660 Spam
-score HS_HEADER_660		8
-
-header HS_HEADER_661		From:=~/^.*winnerfaster\.com.*/
-describe HS_HEADER_661		Heinlein Support Spamschutz Header-661 Spam
-score HS_HEADER_661		8
-
-header HS_HEADER_662		From:=~/^.*artinsitu.com.*/
-describe HS_HEADER_662		Heinlein Support Spamschutz Header-662 Spam
-score HS_HEADER_662		8
-
-header HS_HEADER_663		From:=~/^.*fusionwhiz.com.*/
-describe HS_HEADER_663		Heinlein Support Spamschutz Header-663 Spam
-score HS_HEADER_663		8
-
-header HS_HEADER_664		From:=~/^.*guar\@geldstrom\.eu/
-describe HS_HEADER_664		Heinlein Support Spamschutz Header-664 Spam
-score HS_HEADER_664		8
-
-header HS_HEADER_665		From:=~/^.*CyrilKoko\@netpartner\.com\.pl/
-describe HS_HEADER_665		Heinlein Support Spamschutz Header-665 Spam
-score HS_HEADER_665		8
-
-header HS_HEADER_666		From:=~/^.*webbizworld.org.*/
-describe HS_HEADER_666		Heinlein Support Spamschutz Header-666 Spam
-score HS_HEADER_666		8
-
-header HS_HEADER_667		From:=~/^.*kahayag.com.*/
-describe HS_HEADER_667		Heinlein Support Spamschutz Header-667 Spam
-score HS_HEADER_667		8
-
-header HS_HEADER_668		From:=~/^.*topeei.com.*/
-describe HS_HEADER_668		Heinlein Support Spamschutz Header-668 Spam
-score HS_HEADER_668		8
-
-header HS_HEADER_669		From:=~/^.*secorstrategy.com.*/
-describe HS_HEADER_669		Heinlein Support Spamschutz Header-669 Spam
-score HS_HEADER_669		8
-
-header HS_HEADER_670		Subject: =~ /artest light DIY/
-describe HS_HEADER_670		Heinlein Support Spamschutz Header-670 Spam
-score HS_HEADER_670		5
-
-header HS_HEADER_671		From:=~/^.*yeva-4u.com.ua.*/
-describe HS_HEADER_671		Heinlein Support Spamschutz Header-671 Spam
-score HS_HEADER_671		8
-
-header HS_HEADER_672		From:=~/^.*giuselip25\@aol\.com/
-describe HS_HEADER_672		Heinlein Support Spamschutz Header-672 Spam
-score HS_HEADER_672		7
-
-header HS_HEADER_675		From:=~/omahasteaks.com/
-describe HS_HEADER_675		Heinlein Support Spamschutz Header-675 
-score HS_HEADER_675		-3.5
-
-header HS_HEADER_676		Received:=~/Received: by webmail.century21.ca.*Authenticated sender: .*\@century21.ca/
-describe HS_HEADER_676		Heinlein Support Spamschutz Header-676 Bank-Phishing
-score HS_HEADER_676		2
-
-header HS_HEADER_677		From:=~/^.*jennycliffwsm\@gmail.com*/
-describe HS_HEADER_677		Heinlein Support Spamschutz Header-677 Spam
-score HS_HEADER_677		8
-
-header HS_HEADER_678		From:=~/^.*rabatt24.org*/
-describe HS_HEADER_678		Heinlein Support Spamschutz Header-678 Spam
-score HS_HEADER_678		5
-
-header HS_HEADER_679		From:=~/^.*juergen112\@online.de*/
-describe HS_HEADER_679		Heinlein Support Spamschutz Header-679 Spam
-score HS_HEADER_679		8
-
-header HS_HEADER_680		From:=~/^.*yanyin\@citiz.net*/
-describe HS_HEADER_680		Heinlein Support Spamschutz Header-680 Spam
-score HS_HEADER_680		8
-
-header HS_HEADER_681		From:=~/^.*roland.schreder\@greenpdb.com/
-describe HS_HEADER_681		Heinlein Support Spamschutz Header-681 Spam
-score HS_HEADER_681		8
-
-header HS_HEADER_682		Subject: =~ /Ihre E-Mail hat gewonnen 920,000.00 00Euro/
-describe HS_HEADER_682		Heinlein Support Spamschutz Header-682 Spam
-score HS_HEADER_682		8
-
-header HS_HEADER_683		From:=~/^.*master-zen.com/
-describe HS_HEADER_683		Heinlein Support Spamschutz Header-683 Spam
-score HS_HEADER_683		8
-
-header HS_HEADER_684		From:=~/^.*tettelbachm1\@lasalle\.edu/
-describe HS_HEADER_684		Heinlein Support Spamschutz Header-684 Spam
-score HS_HEADER_684		8
-
-header HS_HEADER_685		Subject:=~/=?utf-8?Q?Wie_Wichtig_ist_Ihnen_Ihr_F=C3=BChrerschein=3F?=/
-describe HS_HEADER_685		Heinlein Support Spamschutz Header-685 Spam
-score HS_HEADER_685		5
-
-header HS_HEADER_687		From:=~/caroline191\@theonlybandever.com/
-describe HS_HEADER_687		Heinlein Support Spamschutz Header-687 Spam
-score HS_HEADER_687		8
-
-header HS_HEADER_688		From:=~/^.*\@v2mx2.pw*/
-describe HS_HEADER_688		Heinlein Support Spamschutz Header-688 Spam
-score HS_HEADER_688		8
-
-header HS_HEADER_689		From:=~/^.*\@bp1q7.xyz*/
-describe HS_HEADER_689		Heinlein Support Spamschutz Header-689 Spam
-score HS_HEADER_689		8
-
-header HS_HEADER_690		From:=~/^.*\@xln27.pw*/
-describe HS_HEADER_690		Heinlein Support Spamschutz Header-690 Spam
-score HS_HEADER_690		8
-
-header HS_HEADER_691		From:=~/^.*\@klickensiejetzt.com.de*/
-describe HS_HEADER_691		Heinlein Support Spamschutz Header-691 Spam
-score HS_HEADER_691		8
-
-header HS_HEADER_692		From:=~/^.*\@eyepinsbx.com*/
-describe HS_HEADER_692		Heinlein Support Spamschutz Header-692 Spam
-score HS_HEADER_692		8
-
-header HS_HEADER_693		From:=~/^.*\@direct-credit.ru*/
-describe HS_HEADER_693		Heinlein Support Spamschutz Header-693 Spam
-score HS_HEADER_693		8
-
-header HS_HEADER_694		From:=~/^.*\@ocramada.com*/
-describe HS_HEADER_694		Heinlein Support Spamschutz Header-694 Spam
-score HS_HEADER_694		8
-
-header HS_HEADER_695		From:=~/^.*\@paycpleee.com*/
-describe HS_HEADER_695		Heinlein Support Spamschutz Header-695 Spam
-score HS_HEADER_695		8
-
-header HS_HEADER_696		From:=~/^.*emiratefoundation1\@gmail\.com/
-describe HS_HEADER_696		Heinlein Support Spamschutz Header-696 
-score HS_HEADER_696		8
-
-header HS_HEADER_697		From:=~/.*eberwachung\@oraise.com/
-describe HS_HEADER_697		Heinlein Support Spamschutz Header-697 
-score HS_HEADER_697		-4
-
-header HS_HEADER_698		From:=~/^.*vc0198\@hotmail\.com/
-describe HS_HEADER_698		Heinlein Support Spamschutz Header-698 
-score HS_HEADER_698		7
-
-header HS_HEADER_699		Subject:=~/Bitte Sie Ihr Konto aktualisieren/
-describe HS_HEADER_699		Heinlein Support Spamschutz Header-699 
-score HS_HEADER_699		7
-
-header HS_HEADER_700		Subject:=~/Admin update !/
-describe HS_HEADER_700		Heinlein Support Spamschutz Header-700 
-score HS_HEADER_700		5
-
-header HS_HEADER_701		Subject:=~/Your account will be blocked!/
-describe HS_HEADER_701		Heinlein Support Spamschutz Header-701 
-score HS_HEADER_701		4
-
-header HS_HEADER_702		Subject:=~/Erzielen Sie RIESIGE Profite mit dieser Schweizer Methode!/
-describe HS_HEADER_702		Heinlein Support Spamschutz Header-702 
-score HS_HEADER_702		5
-
-header HS_HEADER_703		From:=~/.*sv-lindemann.de/
-describe HS_HEADER_703		Heinlein Support Spamschutz Header-703 
-score HS_HEADER_703		-6
-
-header HS_HEADER_704		Received:=~/.*server.*\.zmaximum\.ru/
-describe HS_HEADER_704		Heinlein Support Spamschutz Header-704 
-score HS_HEADER_704		7
-
-header HS_HEADER_705		Received:=~/.*news-found\.com/
-describe HS_HEADER_705		Heinlein Support Spamschutz Header-705 Spam
-score HS_HEADER_705		8
-
-header HS_HEADER_706		From:=~/.*\@hawaii-h\.com/
-describe HS_HEADER_706		Heinlein Support Spamschutz Header-706 Spam
-score HS_HEADER_706		8
-
-header HS_HEADER_707		Subject:=~/Sparkasse Online-Banking Aktualisierung/
-describe HS_HEADER_707		Heinlein Support Spamschutz Header-707 
-score HS_HEADER_707		3
-
-header HS_HEADER_708		Subject:=~/Wie man mit einer Schweizer Methode reich wird/
-describe HS_HEADER_708		Heinlein Support Spamschutz Header-708 Spam
-score HS_HEADER_708		5
-
-header HS_HEADER_709		Subject:=~/Best.tigung Ihrer Zahlung an PornHub\.com Limited/
-describe HS_HEADER_709		Heinlein Support Spamschutz Header-709 Spam
-score HS_HEADER_709		5
-
-header HS_HEADER_711		X-PHP-Script:=~/^chickenintheouthouse\.com/
-describe HS_HEADER_711		Heinlein Support Spamschutz Header-711 Phishing
-score HS_HEADER_711		3
-
-header HS_HEADER_713		From:=~/.*\@duckfishelectronics\.com/
-describe HS_HEADER_713		Heinlein Support Spamschutz Header-713 Spam
-score HS_HEADER_713		5
-
-header HS_HEADER_714		From:=~/^.*sslukaff\@embarqmail\.com/
-describe HS_HEADER_714		Heinlein Support Spamschutz Header-714 Phishing
-score HS_HEADER_714		8
-
-header HS_HEADER_717		From:=~/LUEG-SCHUTZ\@gmx.ch/
-describe HS_HEADER_717		Heinlein Support Spamschutz Header-717 Spam
-score HS_HEADER_717		8
-
-header HS_HEADER_719		From:=~/sky\.finance6\@gmail\.com/	
-describe HS_HEADER_719		Heinlein Support Spamschutz Header-719 
-score HS_HEADER_719		5
-
-header HS_HEADER_720		Subject:=~/W=C3=A4hlen_Sie_Ihre_GL=C3=9CCKSZAHL_und_gewinnen_Sie/
-describe HS_HEADER_720		Heinlein Support Spamschutz Header-720 Spam
-score HS_HEADER_720		5
-
-header HS_HEADER_721		From:=~/Taschenalkotester.*/
-describe HS_HEADER_721		Heinlein Support Spamschutz Header-721 
-score HS_HEADER_721		5
-
-header HS_HEADER_722		Subject:=~/Dominic Newsletter von Ihrer Online-Apo-th-eke/
-describe HS_HEADER_722		Heinlein Support Spamschutz Header-722 
-score HS_HEADER_722		7
-
-header HS_HEADER_723		Subject:=~/Wichtige Mitteilung/
-describe HS_HEADER_723		Heinlein Support Spamschutz Header-723 
-score HS_HEADER_723		5
-
-header HS_HEADER_724		Subject:=~/Checkout the latest Funeral Insurance Options/
-describe HS_HEADER_724		Heinlein Support Spamschutz Header-724 
-score HS_HEADER_724		5
-
-header HS_HEADER_725		Subject:=~/Increase your income significantly/
-describe HS_HEADER_725		Heinlein Support Spamschutz Header-725 
-score HS_HEADER_725		5
-
-header HS_HEADER_726		From:=~ /postar1\@coolschrank1.info/
-describe HS_HEADER_726		Heinlein Support Spamschutz Header-726 
-score HS_HEADER_726		6
-
-header HS_HEADER_727		From:=~/Stellvertretender Rechtsanwalt Pay Online AG/
-describe HS_HEADER_727		Heinlein Support Spamschutz Header-727 Phishing
-score HS_HEADER_727		2
-
-header HS_HEADER_728		X-Source-Args:=~/\/home4\/paduwork\/public_html\/pgdeptcompscguk.com\/ravi\/autoconf.php/
-describe HS_HEADER_728		Heinlein Support Spamschutz Header-728 Phishing
-score HS_HEADER_728		4
-
-header HS_HEADER_729		X-Source-Dir:=~/precisetechnosoft\.com\:\/public_html\/pgdeptcompscguk\.com\/ravi/
-describe HS_HEADER_729		Heinlein Support Spamschutz Header-729 Phishing
-score HS_HEADER_729		3
-
-header HS_HEADER_730		Subject:=~ / =.iso-8859-1.B.aXRAb3BlbnN5bmVyZ3kuY29tIGZpbmRlIGRlaW5lIEFmZuRyZQ==.=/
-describe HS_HEADER_730		Heinlein Support Spamschutz Header-730 
-score HS_HEADER_730		5
-
-header HS_HEADER_731		From:=~/"Apple store" \<email\@bbox\.fr\>/
-describe HS_HEADER_731		Heinlein Support Spamschutz Header-731 
-score HS_HEADER_731		5
-
-header HS_HEADER_732		Subject:=~/Please\, I am Barr Issac William*/
-describe HS_HEADER_732		Heinlein Support Spamschutz Header-732 Spam
-score HS_HEADER_732		5
-
-header HS_HEADER_733		From:=~/.*paypal.* .*\@mailbox.org/
-describe HS_HEADER_733		Heinlein Support Spamschutz Header-733 Paypal Phishing
-score HS_HEADER_733		10
-
-header HS_HEADER_734		Subject:=~/Projektfinanzierung Programm nach Germany/
-describe HS_HEADER_734		Heinlein Support Spamschutz Header-734 Spam
-score HS_HEADER_734		5
-
-header HS_HEADER_735		Subject:=~/^.*variety of sports equipment/
-describe HS_HEADER_735		Heinlein Support Spamschutz Header-735 Spam
-score HS_HEADER_735		8
-
-header HS_HEADER_736		Subject:=~/^.*Ihr Abonnement whatsapp Ihr Konto gesperrt wird/
-describe HS_HEADER_736		Heinlein Support Spamschutz Header-736 Phising
-score HS_HEADER_736		8
-
-header HS_HEADER_737		Subject:=~/^.*RE\: Soll ich Ihres einen anderen geben\?/
-describe HS_HEADER_737		Heinlein Support Spamschutz Header-737 Spam
-score HS_HEADER_737		6
-
-header HS_HEADER_739		Message-id:=~/^.*REYNALDOPC[a-z0-9]{32}\@ReynaldoPC/
-describe HS_HEADER_739		Heinlein Support Spamschutz Header-739 
-score HS_HEADER_739		16
-
-header HS_HEADER_740		Message-id:=~/^.*VULTRGUEST[a-z0-9]{32}\@vulturguest/
-describe HS_HEADER_740		Heinlein Support Spamschutz Header-740 
-score HS_HEADER_740		16
-
-header HS_HEADER_741		Subject:=~/^Die besten Schnappchen im Sommer 2016!/
-describe HS_HEADER_741		Heinlein Support Spamschutz Header-741 Spam
-score HS_HEADER_741		5
-
-header HS_HEADER_742		Message-id:=~/^.*VULTRGUEST[a-z0-9]{32}\@vultrguest/
-
-describe HS_HEADER_742		Heinlein Support Spamschutz Header-742 
-score HS_HEADER_742		16
-
-header HS_HEADER_743		From:=~/^.*\@aktion05.xyz/
-describe HS_HEADER_743		Heinlein Support Spamschutz Header-743 Spam
-score HS_HEADER_743		5
-
-header HS_HEADER_744		Subject:=~/Psychologe Entdeckt Abnehmautomatismus im Gehirn/
-describe HS_HEADER_744		Heinlein Support Spamschutz Header-744 Spam
-score HS_HEADER_744		5
-
-header HS_HEADER_745		Subject:=~/Papierlose Rechlung.*/
-describe HS_HEADER_745		Heinlein Support Spamschutz Header-745 Spam
-score HS_HEADER_745		5
-
-header HS_HEADER_746		X-PHP-Originating-Script:=~ /.*eval\(\)\'d code.*/
-describe HS_HEADER_746		Heinlein Support Spamschutz Header-746 Spam
-score HS_HEADER_746		2
-
-header HS_HEADER_747		X-PHP-Script:=~ /.*eval\(\)\'d code.*/
-describe HS_HEADER_747		Heinlein Support Spamschutz Header-747 Spam
-score HS_HEADER_747		5
-
-header HS_HEADER_748		Subject:=~/^.*Wirkstoffen in einer Kombipackung fur Sparpreis.*/
-describe HS_HEADER_748		Heinlein Support Spamschutz Header-748 
-score HS_HEADER_748		8
-
-header HS_HEADER_749		Subject:=~/^.*Potenzmittel online kaufen/
-describe HS_HEADER_749		Heinlein Support Spamschutz Header-749 
-score HS_HEADER_749		8
-
-header HS_HEADER_750		From:=~/^.*gfgt.com.*/
-describe HS_HEADER_750		Heinlein Support Spamschutz Header-750 
-score HS_HEADER_750		0.5
-
-header HS_HEADER_751		X-Mailer:=~/Foxmail 6, 10, 201, 20 [cn]/
-describe HS_HEADER_751		Heinlein Support Spamschutz Header-751 
-score HS_HEADER_751		0.5
-
-header HS_HEADER_752		Subject:=~/Re-validate your mailbox/
-describe HS_HEADER_752		Heinlein Support Spamschutz Header-752 Phishing
-score HS_HEADER_752		6
-
-header HS_HEADER_753		From:=~/shirinkarryeva.mail.ru/
-describe HS_HEADER_753		Heinlein Support Spamschutz Header-753 
-score HS_HEADER_753		5
-
-header HS_HEADER_754		Subject:=~/Re: Unglaublich wie lange ich jetzt Durchhalten kann/
-describe HS_HEADER_754		Heinlein Support Spamschutz Header-754 
-score HS_HEADER_754		5
-
-header HS_HEADER_755		To:=~/^x$/
-describe HS_HEADER_755		Heinlein Support Spamschutz Header-755 
-score HS_HEADER_755		1
-
-header HS_HEADER_756		Message-ID:=~/<2016__________________mail@*/
-describe HS_HEADER_756		Heinlein Support Spamschutz Header-756 
-score HS_HEADER_756		1
-
-header HS_HEADER_757		Received:=~/by mail.superdigi.de/
-describe HS_HEADER_757		Heinlein Support Spamschutz Header-757 Spam
-score HS_HEADER_757		5
-
-header HS_HEADER_758		From:=~/From: Bodo Schlecht.*info\@superdigi.org/
-describe HS_HEADER_758		Heinlein Support Spamschutz Header-758 Spam
-score HS_HEADER_758		5
-
-header HS_HEADER_759		Subject:=~/Our_girls_are_missing_man/
-describe HS_HEADER_759		Heinlein Support Spamschutz Header-759 Spam
-score HS_HEADER_759		5
-
-header HS_HEADER_760		Subject:=~/Datenbank-E-Mail in wenigen Minuten/
-describe HS_HEADER_760		Heinlein Support Spamschutz Header-760 Spam
-score HS_HEADER_760		2
-
-header HS_HEADER_761		Subject:=~/Kontaktdatenbanken in wenigen Minuten/
-describe HS_HEADER_761		Heinlein Support Spamschutz Header-761 Spam
-score HS_HEADER_761		2
-
-header HS_HEADER_764		From:=~/From: Stellvertretender Rechtsanwalt Amazon AG <anwalt\@ebay.de>/
-describe HS_HEADER_764		Heinlein Support Spamschutz Header-764 Phishing
-score HS_HEADER_764		5
-
-header HS_HEADER_765		Subject:=~/Ihre neue Heizung: Kostenlos dank staatlicher Förderung/
-describe HS_HEADER_765		Heinlein Support Spamschutz Header-765 Spam
-score HS_HEADER_765		5
-
-header HS_HEADER_766		From:=~/Mailbox Service.*\@mail.ru/
-describe HS_HEADER_766		Heinlein Support Spamschutz Header-766 
-score HS_HEADER_766		5
-
-header HS_HEADER_767		Subject:=~/MAILBOX WARNING: Account Closure/
-describe HS_HEADER_767		Heinlein Support Spamschutz Header-767 Phishing
-score HS_HEADER_767		7
-
-header HS_HEADER_768		Subject:=~/Facebook 2017 - Mehr Umsatz zum halben Preis/
-describe HS_HEADER_768		Heinlein Support Spamschutz Header-768 Spam
-score HS_HEADER_768		5
-
-header HS_HEADER_769		From:=~/Facebook 2017/
-describe HS_HEADER_769		Heinlein Support Spamschutz Header-769 Spam
-score HS_HEADER_769		5
-
-header HS_HEADER_770		From:=~/Pillenversand/
-describe HS_HEADER_770		Heinlein Support Spamschutz Header-770 SPAM
-score HS_HEADER_770		5
-
-header HS_HEADER_771		Subject=~/Roboter-Koffer die Sachen tragt/
-describe HS_HEADER_771		Heinlein Support Spamschutz Header-771 SPAM
-score HS_HEADER_771		5
-
-header HS_HEADER_772		From:=~/.*services paypal.* .*\@mailbox.org/
-describe HS_HEADER_772		Heinlein Support Spamschutz Header-772 Spam
-score HS_HEADER_772		10
-
-header HS_HEADER_773		From:=~/.*\@binarysercretsrevealed.com/
-describe HS_HEADER_773		Heinlein Support Spamschutz Header-773 Spam
-score HS_HEADER_773		4
-
-header HS_HEADER_774		From:=~/.*\@signal-verify.com/
-describe HS_HEADER_774		Heinlein Support Spamschutz Header-774 Spam
-score HS_HEADER_774		4
-
-header HS_HEADER_775		From:=~/.*\@gute-tarife.online/
-describe HS_HEADER_775		Heinlein Support Spamschutz Header-775 Spam
-score HS_HEADER_775		5
-
-header HS_HEADER_776		From:=~/.*\@uebersicht-?tarife201.\.org/
-describe HS_HEADER_776		Heinlein Support Spamschutz Header-776 Spam
-score HS_HEADER_776		5
-
-header HS_HEADER_777		From:=~/Pillsgeneric/
-describe HS_HEADER_777		Heinlein Support Spamschutz Header-777 Spam
-score HS_HEADER_777		5
-
-header HS_HEADER_778		Subject:=~/Super preise/
-describe HS_HEADER_778		Heinlein Support Spamschutz Header-778 Spam
-score HS_HEADER_778		1
-
-header HS_HEADER_779		From:=~/.*\@gutetarife\.online/
-describe HS_HEADER_779		Heinlein Support Spamschutz Header-779 Spam
-score HS_HEADER_779		5
-
-header HS_HEADER_780		From:=~/.*\@gutetarife\.org/
-describe HS_HEADER_780		Heinlein Support Spamschutz Header-780 Spam
-score HS_HEADER_780		5
-
-header HS_HEADER_781		From:=~/.*\@neueste-tarifauskunft\.info/
-describe HS_HEADER_781		Heinlein Support Spamschutz Header-781 
-score HS_HEADER_781		5
-
-header HS_HEADER_782		From:=~/.*\@suioues\.com/
-describe HS_HEADER_782		Heinlein Support Spamschutz Header-782 Spam
-score HS_HEADER_782		5
-
-header HS_HEADER_783		From:=~/.*\@netzsupport\.org/
-describe HS_HEADER_783		Heinlein Support Spamschutz Header-783 
-score HS_HEADER_783		5
-
-header HS_HEADER_784		From:=~/.*\@woodmebel\.co\.ua/
-describe HS_HEADER_784		Heinlein Support Spamschutz Header-784 Spam
-score HS_HEADER_784		5
-
-header HS_HEADER_785		Subject:=~/.*MAILBOX WARNING: Account Update.*/i
-describe HS_HEADER_785		Heinlein Support Spamschutz Header-785 Phishing
-score HS_HEADER_785		10
-
-header HS_HEADER_786		From:=~/.*\@aktueller-testsieger-2106\.org/
-describe HS_HEADER_786		Heinlein Support Spamschutz Header-786 Spam
-score HS_HEADER_786		5
-
-header HS_HEADER_787		From:=~/.*\@neuester-tarifvergleich.org/
-describe HS_HEADER_787		Heinlein Support Spamschutz Header-787 Spam
-score HS_HEADER_787		5
-
-header HS_HEADER_788		From:=~/.*\@beitrag-rabatt.online/
-describe HS_HEADER_788		Heinlein Support Spamschutz Header-788 Spam
-score HS_HEADER_788		5
-
-header HS_HEADER_789		From:=~/.*\@gewinnertarif.com/
-describe HS_HEADER_789		Heinlein Support Spamschutz Header-789 Spam
-score HS_HEADER_789		5
-
-header HS_HEADER_790		From:=~/.*\@gute-tarife2017.org/
-describe HS_HEADER_790		Heinlein Support Spamschutz Header-790 Spam
-score HS_HEADER_790		5
-
-header HS_HEADER_791		Subject:=~/MAILBOX WARNING: Account Update/
-describe HS_HEADER_791		Heinlein Support Spamschutz Header-791 
-score HS_HEADER_791		5
-
-header HS_HEADER_792		From:=~/.*\@server.servernation.org/
-describe HS_HEADER_792		Heinlein Support Spamschutz Header-792 Spam
-score HS_HEADER_792		5
-
-header HS_HEADER_793		From:=~/.*\@drdailyinbox.com/
-describe HS_HEADER_793		Heinlein Support Spamschutz Header-793 Spam
-score HS_HEADER_793		5
-
-header HS_HEADER_794		From:=~/.*\@memorialdelivery.com/
-describe HS_HEADER_794		Heinlein Support Spamschutz Header-794 Spam
-score HS_HEADER_794		5
-
-header HS_HEADER_795		From:=~/.*\@celebrationdisclose.com/
-describe HS_HEADER_795		Heinlein Support Spamschutz Header-795 Spam
-score HS_HEADER_795		5
-
-header HS_HEADER_796		From:=~/.*\sufferingoak.com/
-describe HS_HEADER_796		Heinlein Support Spamschutz Header-796 Spam
-score HS_HEADER_796		5
-
-header HS_HEADER_797		Subject:=~/Dringend: Ihr Konto wurde gesperrt - Ihre Mithilfe ist erforderlich!/i
-
-describe HS_HEADER_797		Heinlein Support Spamschutz Header-797 
-score HS_HEADER_797		5
-
-header HS_HEADER_798		From:=~/.*\@suioues.com/
-describe HS_HEADER_798		Heinlein Support Spamschutz Header-798 
-score HS_HEADER_798		5
-
-header HS_HEADER_799		From:=~/.*\@abandonedluxury.co/
-describe HS_HEADER_799		Heinlein Support Spamschutz Header-799 Spam
-score HS_HEADER_799		5
-
-header HS_HEADER_800		From:=~/.*\@binaryoptionsrobotmails.com/
-describe HS_HEADER_800		Heinlein Support Spamschutz Header-800 Spam
-score HS_HEADER_800		5
-
-header HS_HEADER_801		From:=~/.*\@privilegepound.com/
-describe HS_HEADER_801		Heinlein Support Spamschutz Header-801 Spam
-score HS_HEADER_801		5
-
-header HS_HEADER_802		From:=~/.*\@grindoccasion.com/
-describe HS_HEADER_802		Heinlein Support Spamschutz Header-802 Spam
-score HS_HEADER_802		5
-
-header HS_HEADER_803		From:=~/.*\@fozzystyle.de/
-describe HS_HEADER_803		Heinlein Support Spamschutz Header-803 Phishing
-score HS_HEADER_803		5
-
-header HS_HEADER_804		Subject:=~/Re:1 ungewöhnlicher Tipp für einen flachen Bauch…/i
-describe HS_HEADER_804		Heinlein Support Spamschutz Header-804 Spam
-score HS_HEADER_804		5
-
-header HS_HEADER_805		From:=~/.*\@news-mailer.eu/
-describe HS_HEADER_805		Heinlein Support Spamschutz Header-805 Spam
-score HS_HEADER_805		5
-
-header HS_HEADER_806		From:=~/docyrekyuguia\@mail.ru/i
-describe HS_HEADER_806		Heinlein Support Spamschutz Header-806 Spam
-score HS_HEADER_806		5
-
-header HS_HEADER_807		From:=~/.*\@accountreg.com/
-describe HS_HEADER_807		Heinlein Support Spamschutz Header-807 Spam
-score HS_HEADER_807		5
-
-header HS_HEADER_808		From:=~/.*\@neuestetarif-news.org/
-describe HS_HEADER_808		Heinlein Support Spamschutz Header-808 Spam
-score HS_HEADER_808		5
-
-header HS_HEADER_809		From:=~/.*\@tarif-?verlaengert.(org|info)/
-describe HS_HEADER_809		Heinlein Support Spamschutz Header-809 Spam
-score HS_HEADER_809		5
-
-header HS_HEADER_810		From:=~/.*\@tarifinfo-?20...(com|org)/
-describe HS_HEADER_810		Heinlein Support Spamschutz Header-810 Spam
-score HS_HEADER_810		5
-
-header HS_HEADER_811		From:=~/.*\@paraded.eu/
-describe HS_HEADER_811		Heinlein Support Spamschutz Header-811 Spam
-score HS_HEADER_811		5
-
-header HS_HEADER_812		From:=~/.*\@schnellervergleich.org/
-describe HS_HEADER_812		Heinlein Support Spamschutz Header-812 Spam
-score HS_HEADER_812		5
-
-header HS_HEADER_813		From:=~/.*\@scheepsklokken.nl/
-describe HS_HEADER_813		Heinlein Support Spamschutz Header-813 Spam
-score HS_HEADER_813		5
-
-header HS_HEADER_814		Subject:=~/Bitte bestätigen Sie Ihren Einkauf!/i
-describe HS_HEADER_814		Heinlein Support Spamschutz Header-814 
-score HS_HEADER_814		4
-
-header HS_HEADER_815		From:=~/.*\@siegertarif-?bhv.(org|net)/
-describe HS_HEADER_815		Heinlein Support Spamschutz Header-815 Spam
-score HS_HEADER_815		5
-
-header HS_HEADER_816		From:=~/.*\@pitchter.com/
-describe HS_HEADER_816		Heinlein Support Spamschutz Header-816 Spam
-score HS_HEADER_816		5
-
-header HS_HEADER_817		From:=~/.*\@qbcoaches.com/
-describe HS_HEADER_817		Heinlein Support Spamschutz Header-817 Spam
-score HS_HEADER_817		5
-
-header HS_HEADER_818		From:=~/.*\@neuerpkvtarif-?20..?.com/
-describe HS_HEADER_818		Heinlein Support Spamschutz Header-818 Spam
-score HS_HEADER_818		5
-
-header HS_HEADER_819		From:=~/.*\@flu.cc/
-describe HS_HEADER_819		Heinlein Support Spamschutz Header-819 Spam
-score HS_HEADER_819		4
-
-header HS_HEADER_820		From:=~/.*\@pkv-?ueberblick.(com|org)/
-describe HS_HEADER_820		Heinlein Support Spamschutz Header-820 Spam
-score HS_HEADER_820		5
-
-header HS_HEADER_821		From:=~/.*\@guenstiger-?pkvtarif.com/
-describe HS_HEADER_821		Heinlein Support Spamschutz Header-821 Spam
-score HS_HEADER_821		5
-
-header HS_HEADER_822		From:=~/.*\@tarif-?neu.org/
-describe HS_HEADER_822		Heinlein Support Spamschutz Header-822 Spam
-score HS_HEADER_822		5
-
-header HS_HEADER_823		From:=~/.*\@onedrive.biz.ua/
-describe HS_HEADER_823		Heinlein Support Spamschutz Header-823 Spam
-score HS_HEADER_823		5
-
-header HS_HEADER_824		From:=~/.*\@dvmhoevestein.nl/
-describe HS_HEADER_824		Heinlein Support Spamschutz Header-824 Spam
-score HS_HEADER_824		5
-
-header HS_HEADER_825		From:=~/.*\@ihr-?tarif-?test.net/
-describe HS_HEADER_825		Heinlein Support Spamschutz Header-825 Spam
-score HS_HEADER_825		5
-
-header HS_HEADER_826		From:=~/.*\@kosten-?minimieren.(net|org)/
-describe HS_HEADER_826		Heinlein Support Spamschutz Header-826 Spam
-score HS_HEADER_826		5
-
-header HS_HEADER_827		From:=~/.*\@pkv-?satzsenken.com/
-describe HS_HEADER_827		Heinlein Support Spamschutz Header-827 Spam
-score HS_HEADER_827		5
-
-header HS_HEADER_828		From:=~/.*\@beitrags-?senkung.org/
-describe HS_HEADER_828		Heinlein Support Spamschutz Header-828 Spam
-score HS_HEADER_828		5
-
-header HS_HEADER_829		From:=~/.*\@papal.de/
-describe HS_HEADER_829		Heinlein Support Spamschutz Header-829 
-score HS_HEADER_829		5
-
-header HS_HEADER_830		From:=~/.*\@neueversicherung-?20..\.org/
-describe HS_HEADER_830		Heinlein Support Spamschutz Header-830 Spam
-score HS_HEADER_830		5
-
-header HS_HEADER_831		Subject:=~/Re: Unser Inkassoauftrag/
-describe HS_HEADER_831		Heinlein Support Spamschutz Header-831 Spam
-score HS_HEADER_831		4
-
-header HS_HEADER_832		From:=~/.*\@supertarif.org/
-describe HS_HEADER_832		Heinlein Support Spamschutz Header-832 Spam
-score HS_HEADER_832		5
-
-header HS_HEADER_833		From:=~/.*\@ertimethe.co.ua/
-describe HS_HEADER_833		Heinlein Support Spamschutz Header-833 
-score HS_HEADER_833		5
-
-header HS_HEADER_834		From:=~/.*\@tarife-?uebersicht.org/
-describe HS_HEADER_834		Heinlein Support Spamschutz Header-834 
-score HS_HEADER_834		5
-
-header HS_HEADER_835		From:=~/.*\@onetime.biz.ua/
-describe HS_HEADER_835		Heinlein Support Spamschutz Header-835 Spam
-score HS_HEADER_835		5
-
-header HS_HEADER_836		From:=~/.*\@folineper.co.ua/
-describe HS_HEADER_836		Heinlein Support Spamschutz Header-836 Spam
-score HS_HEADER_836		5
-
-header HS_HEADER_838		Thread-Topic:=~/Verify your Apple ID/
-describe HS_HEADER_838		Heinlein Support Spamschutz Header-838 Phishing
-score HS_HEADER_838		5
-
-header HS_HEADER_839		From:=~/.*AppIe ID.*kitty.*\@mailbox.org/
-
-describe HS_HEADER_839		Heinlein Support Spamschutz Header-839 Phishing
-score HS_HEADER_839		5
-
-header HS_HEADER_840		From:=~/.*\@buv-?tarif.net/
-describe HS_HEADER_840		Heinlein Support Spamschutz Header-840 Spam
-score HS_HEADER_840		5
-
-header HS_HEADER_841		Subject:=~/Payment Information/
-describe HS_HEADER_841		Heinlein Support Spamschutz Header-841 Malware
-score HS_HEADER_841		2
-
-header HS_HEADER_842		From:=~/.*\@love-?no-?limits.com/
-describe HS_HEADER_842		Heinlein Support Spamschutz Header-842 Spam
-score HS_HEADER_842		5
-
-header HS_HEADER_843		From:=~/.*\@rlv-?tarife.net/
-describe HS_HEADER_843		Heinlein Support Spamschutz Header-843 Spam
-score HS_HEADER_843		5
-
-header HS_HEADER_844		From:=~/.*\@pflegezusatz-?tarife.org/
-describe HS_HEADER_844		Heinlein Support Spamschutz Header-844 Spam
-score HS_HEADER_844		5
-
-header HS_HEADER_845		From:=~/.*\@pkv-?tarife-?2017.org/
-describe HS_HEADER_845		Heinlein Support Spamschutz Header-845 Spam
-score HS_HEADER_845		5
-
-header HS_HEADER_846		From:=~/.*\@sieger-?tarif-?pkv.org/
-describe HS_HEADER_846		Heinlein Support Spamschutz Header-846 Spam
-score HS_HEADER_846		5
-
-header HS_HEADER_847		From:=~/.*\@optionensystem.com/
-describe HS_HEADER_847		Heinlein Support Spamschutz Header-847 Spam
-score HS_HEADER_847		5
-
-header HS_HEADER_848		From:=~/.*\@dynamictrainingstudio.com/
-describe HS_HEADER_848		Heinlein Support Spamschutz Header-848 
-score HS_HEADER_848		5
-
-header HS_HEADER_849		From:=~/.*\@super-?versicherung.net/
-describe HS_HEADER_849		Heinlein Support Spamschutz Header-849 Spam
-score HS_HEADER_849		5
-
-header HS_HEADER_850		From:=~/.*\@buv-?ueberblick.net/
-describe HS_HEADER_850		Heinlein Support Spamschutz Header-850 Spam
-score HS_HEADER_850		5
-
-header HS_HEADER_851		From:=~/.*\@guenstige-?bhv.org/
-describe HS_HEADER_851		Heinlein Support Spamschutz Header-851 Spam
-score HS_HEADER_851		5
-
-header HS_HEADER_852		From:=~/.*\@versicherungen-?getestet.com/
-describe HS_HEADER_852		Heinlein Support Spamschutz Header-852 Spam
-score HS_HEADER_852		5
-
-header HS_HEADER_853		From:=~/.*\@preiswerteversicherung.net/
-describe HS_HEADER_853		Heinlein Support Spamschutz Header-853 Spam
-score HS_HEADER_853		5
-
-header HS_HEADER_854		From:=~/.*\@bewaldete.loan/
-describe HS_HEADER_854		Heinlein Support Spamschutz Header-854 Spam
-score HS_HEADER_854		5
-
-header HS_HEADER_855		From:=~/.*\@massiger.trade/
-describe HS_HEADER_855		Heinlein Support Spamschutz Header-855 Spam
-score HS_HEADER_855		5
-
-header HS_HEADER_856		From:=~/.*\@schwerer.loan/
-describe HS_HEADER_856		Heinlein Support Spamschutz Header-856 Spam
-score HS_HEADER_856		5
-
-header HS_HEADER_857		From:=~/.*\@abgeflacht.win/
-describe HS_HEADER_857		Heinlein Support Spamschutz Header-857 Spam
-score HS_HEADER_857		5
-
-header HS_HEADER_858		From:=~/.*\@(bewohnen|selbst)\.accountant/
-describe HS_HEADER_858		Heinlein Support Spamschutz Header-858 Spam
-score HS_HEADER_858		5
-
-header HS_HEADER_859		From:=~/.*\@erreichen.top/
-describe HS_HEADER_859		Heinlein Support Spamschutz Header-859 Spam
-score HS_HEADER_859		5
-
-header HS_HEADER_860		From:=~/.*\@drinamedia.com/
-describe HS_HEADER_860		Heinlein Support Spamschutz Header-860 Spam
-score HS_HEADER_860		5
-
-header HS_HEADER_862		From:=~/.*\@neueste-?tarifnews.org/
-describe HS_HEADER_862		Heinlein Support Spamschutz Header-862 Spam
-score HS_HEADER_862		5
-
-header HS_HEADER_863		From:=~/.*\@bhv-?testsieger.org/
-describe HS_HEADER_863		Heinlein Support Spamschutz Header-863 Sapm
-score HS_HEADER_863		5
-
-header HS_HEADER_864		From:=~/.*\@beste-rlv.com/
-describe HS_HEADER_864		Heinlein Support Spamschutz Header-864 Spam
-score HS_HEADER_864		5
-
-header HS_HEADER_865		From:=~/.*\@rlv-news.net/
-describe HS_HEADER_865		Heinlein Support Spamschutz Header-865 Spam
-score HS_HEADER_865		5
-
-header HS_HEADER_866		From:=~/.*\@bhv-ueberblick.com/
-describe HS_HEADER_866		Heinlein Support Spamschutz Header-866 Spam
-score HS_HEADER_866		5
-
-header HS_HEADER_867		From:=~/.*\@qwdre.xyz/
-describe HS_HEADER_867		Heinlein Support Spamschutz Header-867 Spam
-score HS_HEADER_867		5
-
-header HS_HEADER_868		From:=~/.*\@biznews247.co/
-describe HS_HEADER_868		Heinlein Support Spamschutz Header-868 Spam
-score HS_HEADER_868		5
-
-header HS_HEADER_869		From:=~/.*\@versicherung-?tarife.org/
-describe HS_HEADER_869		Heinlein Support Spamschutz Header-869 Spam
-score HS_HEADER_869		5
-
-header HS_HEADER_870		From:=~/.*\@tarife-pkv.net/
-describe HS_HEADER_870		Heinlein Support Spamschutz Header-870 Spam
-score HS_HEADER_870		5
-
-header HS_HEADER_871		From:=~/.*\@siegertarif-?pkv.com/
-describe HS_HEADER_871		Heinlein Support Spamschutz Header-871 Spam
-score HS_HEADER_871		5
-
-header HS_HEADER_872		From:=~/.*\@tarifuebersicht-januar2017.info/
-describe HS_HEADER_872		Heinlein Support Spamschutz Header-872 Spam
-score HS_HEADER_872		5
-
-header HS_HEADER_873		From:=~/.*\@neuer(pkv|bhv)tarif.(com|online|org)/
-describe HS_HEADER_873		Heinlein Support Spamschutz Header-873 Spam
-score HS_HEADER_873		5
-
-header HS_HEADER_874		From:=~/.*\@neuertarifvergleich.net/
-describe HS_HEADER_874		Heinlein Support Spamschutz Header-874 Spam
-score HS_HEADER_874		5
-
-header HS_HEADER_875		From:=~/.*\@pflegezusatznews.net/
-describe HS_HEADER_875		Heinlein Support Spamschutz Header-875 Spam
-score HS_HEADER_875		5
-
-header HS_HEADER_876		From:=~/.*\@bhvaktionstarif.com/
-describe HS_HEADER_876		Heinlein Support Spamschutz Header-876 Spam
-score HS_HEADER_876		5
-
-header HS_HEADER_877		From:=~/.*\@pflegezusatz-tarife.(com|net)/
-describe HS_HEADER_877		Heinlein Support Spamschutz Header-877 Spam
-score HS_HEADER_877		5
-
-header HS_HEADER_878		From:=~/.*\@rosemount.pw/
-describe HS_HEADER_878		Heinlein Support Spamschutz Header-878 Spam
-score HS_HEADER_878		5
-
-header HS_HEADER_879		From:=~/.*\@divinprime.org/
-describe HS_HEADER_879		Heinlein Support Spamschutz Header-879 Spam
-score HS_HEADER_879		5
-
-header HS_HEADER_880		From:=~/.*\@geprueftetarife.com/
-describe HS_HEADER_880		Heinlein Support Spamschutz Header-880 Spam
-score HS_HEADER_880		5
-
-header HS_HEADER_881		From:=~/.*\@drinkingrecipes.com/
-describe HS_HEADER_881		Heinlein Support Spamschutz Header-881 Spam
-score HS_HEADER_881		5
-
-header HS_HEADER_882		Subject:=~/Read Now: Why this company.*s shares are guaranteed to soar next week./
-describe HS_HEADER_882		Heinlein Support Spamschutz Header-882 Spam
-score HS_HEADER_882		7
-
-header HS_HEADER_883		Subject:=~/This public company is being bought out. Read now to profit from it./
-describe HS_HEADER_883		Heinlein Support Spamschutz Header-883 Spam
-score HS_HEADER_883		7
-
-header HS_HEADER_884		From:=~/.*\@neue-pkvuebersicht.com/
-describe HS_HEADER_884		Heinlein Support Spamschutz Header-884 Spam
-score HS_HEADER_884		5
-
-header HS_HEADER_885		From:=~/.*\@bhv-uberblick.online/
-describe HS_HEADER_885		Heinlein Support Spamschutz Header-885 Spam
-score HS_HEADER_885		5
-
-header HS_HEADER_886		From:=~/.*\@besterpkvtarif.org/
-describe HS_HEADER_886		Heinlein Support Spamschutz Header-886 Spam
-score HS_HEADER_886		5
-
-header HS_HEADER_887		From:=~/.*\@pkvtariftestsieger.net/
-describe HS_HEADER_887		Heinlein Support Spamschutz Header-887 Spam
-score HS_HEADER_887		5
-
-header HS_HEADER_888		From:=~/.*\@super-bhvtarif.com/
-describe HS_HEADER_888		Heinlein Support Spamschutz Header-888 Spam
-score HS_HEADER_888		5
-
-header HS_HEADER_889		From:=~/.*\@bhvpruefen.net/
-describe HS_HEADER_889		Heinlein Support Spamschutz Header-889 Spam
-score HS_HEADER_889		5
-
-header HS_HEADER_890		From:=~/.*\@int(ł|l)\.p(α|a)yp(α|a)(ł|l).\.com.* .*\@.*/
-describe HS_HEADER_890		Heinlein Support Spamschutz Header-890 Paypal Phishing
-score HS_HEADER_890		10
-
-header HS_HEADER_891		From:=~/.*services\@intl.payp=CE=B1=C5=82.com.*/
-describe HS_HEADER_891		Heinlein Support Spamschutz Header-891 Paypal-Phishing
-score HS_HEADER_891		10
-
-header HS_HEADER_893		From:=~/.*\@buv-?testsieger.com/
-describe HS_HEADER_893		Heinlein Support Spamschutz Header-893 Spam
-score HS_HEADER_893		5
-
-header HS_HEADER_894		Subject:=~/MAILBOX FINAL WARNING: Account/
-describe HS_HEADER_894		Heinlein Support Spamschutz Header-894 Spam
-score HS_HEADER_894		5
-
-header HS_HEADER_895		From:=~/.*\@billiger.de.cc/
-describe HS_HEADER_895		Heinlein Support Spamschutz Header-895 Spam
-score HS_HEADER_895		6
-
-header HS_HEADER_896		From:=~/.*\@beratung-?vorsorge.org/
-describe HS_HEADER_896		Heinlein Support Spamschutz Header-896 Spam
-score HS_HEADER_896		5
-
-header HS_HEADER_897		From:=~/.*\@tarif-?neuheiten.com/
-describe HS_HEADER_897		Heinlein Support Spamschutz Header-897 Spam
-score HS_HEADER_897		5
-
-header HS_HEADER_898		From:=~ /.*\@bu-versicherung.co/
-describe HS_HEADER_898		Heinlein Support Spamschutz Header-898 Spam
-score HS_HEADER_898		5
-
-header HS_HEADER_899		Subject:=~ /Generika.*Rezept/i
-describe HS_HEADER_899		Heinlein Support Spamschutz Header-899 Spam
-score HS_HEADER_899		6
-
-header HS_HEADER_900		From:=~ /.*\@meine-buv.net/
-describe HS_HEADER_900		Heinlein Support Spamschutz Header-900 Spam
-score HS_HEADER_900		5
-
-header HS_HEADER_901		From:=~ /.*\@neuer-?bhv-?tarif.net/
-describe HS_HEADER_901		Heinlein Support Spamschutz Header-901 Spam
-score HS_HEADER_901		5
-
-header HS_HEADER_902		Subject:=~/Generika - schnell, sicher und ohne Rezept/
-describe HS_HEADER_902		Heinlein Support Spamschutz Header-902 Spam
-score HS_HEADER_902		7
-
-header HS_HEADER_903		From:=~/Generika Testpacket/
-describe HS_HEADER_903		Heinlein Support Spamschutz Header-903 Spam
-score HS_HEADER_903		3
-
-header HS_HEADER_904		Received:=~/.*from ...\.yandex\.ru \(unknown/
-describe HS_HEADER_904		Heinlein Support Spamschutz Header-904 Spam
-score HS_HEADER_904		5
-
-header HS_HEADER_905		Subject:=~/.*Security reasons : Account will be closed/
-describe HS_HEADER_905		Heinlein Support Spamschutz Header-905 Spam
-score HS_HEADER_905		5
-
-header HS_HEADER_906		Subject:=~/Produkten fur mannliche Gesundheit/
-describe HS_HEADER_906		Heinlein Support Spamschutz Header-906 Spam
-score HS_HEADER_906		7
-
-header HS_HEADER_909		Subject:=~/Seminar: \"Wie Real Estate zum Kaufen in.*/
-describe HS_HEADER_909		Heinlein Support Spamschutz Header-909 Spam
-score HS_HEADER_909		7
-
-header HS_HEADER_910		From:=~/Company-Premium-Outlet/
-describe HS_HEADER_910		Heinlein Support Spamschutz Header-910 Spam
-score HS_HEADER_910		3
-
-header HS_HEADER_911		Reply-To:=~/.*\@geldgeber.site/
-describe HS_HEADER_911		Heinlein Support Spamschutz Header-911 Spam
-score HS_HEADER_911		3
-
-header HS_HEADER_912		Reply-To:=~/.*\@zkillster.eu/
-describe HS_HEADER_912		Heinlein Support Spamschutz Header-912 Spam
-score HS_HEADER_912		3
-
-header HS_HEADER_913		Reply-To:=~/.*\@die-versicherungsvergleicher.com/
-describe HS_HEADER_913		Heinlein Support Spamschutz Header-913 Spam
-score HS_HEADER_913		3
-
-header HS_HEADER_914		Reply-To:=~/.*\@fb-starter-edition.com/
-describe HS_HEADER_914		Heinlein Support Spamschutz Header-914 Spam
-score HS_HEADER_914		3
-
-header HS_HEADER_915		Reply-To:=~/.*\@pzvtarif-testsieger.net/
-describe HS_HEADER_915		Heinlein Support Spamschutz Header-915 Spam
-score HS_HEADER_915		3
-
-header HS_HEADER_916		Reply-To:=~/.*\@aktuelles-angebot.net/
-describe HS_HEADER_916		Heinlein Support Spamschutz Header-916 Spam
-score HS_HEADER_916		3
-
-header HS_HEADER_917		Subject:=~/ist eine Korrekturhilfe für den großen Zeh/
-describe HS_HEADER_917		Heinlein Support Spamschutz Header-917 Spam
-score HS_HEADER_917		5
-
-header HS_HEADER_918		From:=~/Valgus Pro/
-describe HS_HEADER_918		Heinlein Support Spamschutz Header-918 Spam
-score HS_HEADER_918		5
-
-header HS_HEADER_919		Subject:=~/Ihre Automatische Kontoabbuchung/
-describe HS_HEADER_919		Heinlein Support Spamschutz Header-919 Spam
-score HS_HEADER_919		3
-
-header HS_HEADER_920		X-Authentication-Warning:=~/.*informix set sender to.*/
-describe HS_HEADER_920		Heinlein Support Spamschutz Header-920 Spam
-score HS_HEADER_920		3
-
-header HS_HEADER_921		Reply-To:=~/.*\@tech-center.com/
-describe HS_HEADER_921		Heinlein Support Spamschutz Header-921 Phishing
-score HS_HEADER_921		5
-
-header HS_HEADER_922		Subject:=~/Vertrauliche Beratung & neutrale Verpackung/
-describe HS_HEADER_922		Heinlein Support Spamschutz Header-922 Spam
-score HS_HEADER_922		5
-
-header HS_HEADER_923		From:=~/Original Markenmedikamente/
-describe HS_HEADER_923		Heinlein Support Spamschutz Header-923 Spam
-score HS_HEADER_923		5
-
-header HS_HEADER_924		Subject: =~ /Dieser eine Trick verbrennt 1kg Bauchfett über Nacht/
-describe HS_HEADER_924		Heinlein Support Spamschutz Header-924 Spam
-score HS_HEADER_924		5
-
-header HS_HEADER_925		From: =~ /Email Security Team/
-describe HS_HEADER_925		Heinlein Support Spamschutz Header-925 Phishing
-score HS_HEADER_925		2
-
-header HS_HEADER_926		Subject: =~ /Email Storage Alert/
-describe HS_HEADER_926		Heinlein Support Spamschutz Header-926 Pishing
-score HS_HEADER_926		3
-
-header HS_HEADER_927		From:=~/(Online Apotheke|Apotheke Online)/
-describe HS_HEADER_927		Heinlein Support Spamschutz Header-927 Spam
-score HS_HEADER_927		2
-
-header HS_HEADER_928		Subject:=~/ohne Rezept/
-describe HS_HEADER_928		Heinlein Support Spamschutz Header-928 Spam
-score HS_HEADER_928		2
-
-header HS_HEADER_929		Subject:=~/(Beste Qualität von Arzneimitteln|=?utf-8?B?QmVzdGUgUXVhbGl0w6R0IHZvbiBBcnpuZWltaXR0ZWxu?=)/
-describe HS_HEADER_929		Heinlein Support Spamschutz Header-929 Spam
-score HS_HEADER_929		4
-
-header HS_HEADER_938		X-Mailer-RecptId: =~ /3967954/
-describe HS_HEADER_938		Heinlein Support Spamschutz Header-938 Spam
-score HS_HEADER_938		3
-
-header HS_HEADER_941		X-Mailer-RecptId: =~ /5836551/
-describe HS_HEADER_941		Heinlein Support Spamschutz Header-941 Spam
-score HS_HEADER_941		3
-
-header HS_HEADER_944		X-Mailer-RecptId: =~ /4951278/
-describe HS_HEADER_944		Heinlein Support Spamschutz Header-944 Spam
-score HS_HEADER_944		3
-
-header HS_HEADER_947		X-Mailer-RecptId: =~ /11436443/
-describe HS_HEADER_947		Heinlein Support Spamschutz Header-947 Spam
-score HS_HEADER_947		3
-
-header HS_HEADER_952		Reply-To:=~/.*\@begindust.com/
-describe HS_HEADER_952		Heinlein Support Spamschutz Header-952 Spam
-score HS_HEADER_952		3
-
-header HS_HEADER_954		Reply-To:=~/.*\@besterzahnzusatztarif.com/
-describe HS_HEADER_954		Heinlein Support Spamschutz Header-954 Spam
-score HS_HEADER_954		3
-
-header HS_HEADER_956		Reply-To:=~/.*\@pflege-vorsorgen.com/
-describe HS_HEADER_956		Heinlein Support Spamschutz Header-956 Spam
-score HS_HEADER_956		3
-
-header HS_HEADER_959		Reply-To:=~/.*\@okustra.org/
-describe HS_HEADER_959		Heinlein Support Spamschutz Header-959 Spam
-score HS_HEADER_959		3
-
-header HS_HEADER_962		X-Mailer-RecptId: =~ /380018/
-describe HS_HEADER_962		Heinlein Support Spamschutz Header-962 Spam
-score HS_HEADER_962		5
-
-header HS_HEADER_965		X-Mailer-RecptId: =~ /32223912/
-describe HS_HEADER_965		Heinlein Support Spamschutz Header-965 Spam
-score HS_HEADER_965		5
-
-header HS_HEADER_968		Reply-To:=~/.*michaellandon128\@aol.com/
-describe HS_HEADER_968		Heinlein Support Spamschutz Header-968 Spam
-score HS_HEADER_968		5
-
-header HS_HEADER_969		X-Mailer-RecptId: =~ /5802621/
-describe HS_HEADER_969		Heinlein Support Spamschutz Header-969 Spam
-score HS_HEADER_969		5
-
-header HS_HEADER_970		X-Vjff-Customer-Uid: =~ /eg456mvl11f74/
-describe HS_HEADER_970		Heinlein Support Spamschutz Header-970 Spam
-score HS_HEADER_970		5
-
-header HS_HEADER_1004		Cc:=~/.*\@consultant.com/
-describe HS_HEADER_1004		Heinlein Support Spamschutz Header-1004 Phishing
-score HS_HEADER_1004		5
-
-header HS_HEADER_1007		Reply-To:=~/un334996\@gmail.com/
-describe HS_HEADER_1007		Heinlein Support Spamschutz Header-1007 Spam
-score HS_HEADER_1007		5
-
-header HS_HEADER_1010		X-Mailer-RecptId: =~ /6335407/
-describe HS_HEADER_1010		Heinlein Support Spamschutz Header-1010 Spam
-score HS_HEADER_1010		5
-
-header HS_HEADER_1012		X-Mailer-RecptId: =~ /860614/
-describe HS_HEADER_1012		Heinlein Support Spamschutz Header-1012 Spam
-score HS_HEADER_1012		5
-
-header HS_HEADER_1015		X-Mailer-RecptId: =~ /121947/
-describe HS_HEADER_1015		Heinlein Support Spamschutz Header-1015 Spam
-score HS_HEADER_1015		3
-
-header HS_HEADER_1018		X-Mailer-RecptId: =~ /12431/
-describe HS_HEADER_1018		Heinlein Support Spamschutz Header-1018 Spam
-score HS_HEADER_1018		3
-
-header HS_HEADER_1019		Subject: =~ /Best prices on Pills/
-describe HS_HEADER_1019		Heinlein Support Spamschutz Header-1019 Spam
-score HS_HEADER_1019		2
-
-header HS_HEADER_1020		From: =~ /Online Pharmacy/
-describe HS_HEADER_1020		Heinlein Support Spamschutz Header-1020 Spam
-score HS_HEADER_1020		2
-
-header HS_HEADER_1023		Subject: =~/Die Rechtsstaatlichkeit in der BRD ist dank Altparteien am Ende. Polizei in Erfurt empfiehlt die AfD/
-describe HS_HEADER_1023		Heinlein Support Spamschutz Header-1023 Spam
-score HS_HEADER_1023		15
-
-header HS_HEADER_1025		From: =~ /Administrator.*no-reply\@postmaster.net/
-describe HS_HEADER_1025		Heinlein Support Spamschutz Header-1025 Phishing
-score HS_HEADER_1025		10
-
-header HS_HEADER_1027		X-Mailer-RecptId: =~ /6617599/
-describe HS_HEADER_1027		Heinlein Support Spamschutz Header-1027 Spam
-score HS_HEADER_1027		5
-
-header HS_HEADER_1030		From:=~/.*\@multi-expo.eu/
-describe HS_HEADER_1030		Heinlein Support Spamschutz Header-1030 Spam
-score HS_HEADER_1030		5
-
-header HS_HEADER_1033		From:=~/.*\@spa-hotel.biz.ua/
-describe HS_HEADER_1033		Heinlein Support Spamschutz Header-1033 Spam
-score HS_HEADER_1033		5
-
-header HS_HEADER_1034		Subject:=~/Reite auf der Bitcoin Bitcoin Welle und verdiene/
-describe HS_HEADER_1034		Heinlein Support Spamschutz Header-1034 Spam
-score HS_HEADER_1034		10
-
-header HS_HEADER_1036		From:=~/.*\@monerio.co.ua/
-describe HS_HEADER_1036		Heinlein Support Spamschutz Header-1036 Spam
-score HS_HEADER_1036		5
-
-header HS_HEADER_1039		From:=~/.*\@tritor.co.ua/
-describe HS_HEADER_1039		Heinlein Support Spamschutz Header-1039 Spam
-score HS_HEADER_1039		5
-
-header HS_HEADER_1042		From:=~/.*\@vaviloner.co.ua/
-describe HS_HEADER_1042		Heinlein Support Spamschutz Header-1042 Spam
-score HS_HEADER_1042		5
-
-header HS_HEADER_1043		From:=~/.*\@toyomag.biz.ua/
-describe HS_HEADER_1043		Heinlein Support Spamschutz Header-1043 Spam
-score HS_HEADER_1043		5
-
-header HS_HEADER_1045		Subject:=~/E-Mail-Datenbank fürs Geschäft - DEUTSCHLAND/
-describe HS_HEADER_1045		Heinlein Support Spamschutz Header-1045 Spam
-score HS_HEADER_1045		5
-
-header HS_HEADER_1048		From:=~/.*noreply\@express-contacts.com/
-describe HS_HEADER_1048		Heinlein Support Spamschutz Header-1048 Spam
-score HS_HEADER_1048		5
-
-header HS_HEADER_1050		From:=~/.*\@hutorec.co.ua/
-describe HS_HEADER_1050		Heinlein Support Spamschutz Header-1050 Spam
-score HS_HEADER_1050		5
-
-header HS_HEADER_1051		Subject:=~/Was ist die Swiss Method?/
-describe HS_HEADER_1051		Heinlein Support Spamschutz Header-1051 Spam
-score HS_HEADER_1051		10
-
-header HS_HEADER_1053		From:=~/.*\@sofort-angebot.science/
-describe HS_HEADER_1053		Heinlein Support Spamschutz Header-1053 Spam
-score HS_HEADER_1053		8
-
-header HS_HEADER_1054		From:=~/.*\@united-software.online/
-describe HS_HEADER_1054		Heinlein Support Spamschutz Header-1054 Spam
-score HS_HEADER_1054		8
-
-header HS_HEADER_1055		From:=~/.*\@graspskillsagilepractitioner.com/
-describe HS_HEADER_1055		Heinlein Support Spamschutz Header-1055 Spam
-score HS_HEADER_1055		3
-
-header HS_HEADER_1057		From:=~/.*\@treeleaves.co/
-describe HS_HEADER_1057		Heinlein Support Spamschutz Header-1057 Spam
-score HS_HEADER_1057		3
-
-header HS_HEADER_1058		From:=~/.*\@alfahost.co.ua/
-describe HS_HEADER_1058		Heinlein Support Spamschutz Header-1058 Spam
-score HS_HEADER_1058		3
-
-header HS_HEADER_1059		From:=~/.*\@multi-expo.eu/
-describe HS_HEADER_1059		Heinlein Support Spamschutz Header-1059 Spam
-score HS_HEADER_1059		3
-
-header HS_HEADER_1060		Subject:=~/Schnelle Lieferung Tabletten/
-describe HS_HEADER_1060		Heinlein Support Spamschutz Header-1060 Spam
-score HS_HEADER_1060		5
-
-header HS_HEADER_1062		From:=~/.*Schnelle Lieferung Tabletten/
-describe HS_HEADER_1062		Heinlein Support Spamschutz Header-1062 Spam
-score HS_HEADER_1062		5
-
-header HS_HEADER_1064		Subject:=~/Kredit nach Bedarf/
-describe HS_HEADER_1064		Heinlein Support Spamschutz Header-1064 Spam
-score HS_HEADER_1064		5
-
-header HS_HEADER_1065		From:=~/.*KreditBank/
-describe HS_HEADER_1065		Heinlein Support Spamschutz Header-1065 Spam
-score HS_HEADER_1065		2
-
-header HS_HEADER_1068		Subject:=~/Potenzpillen mit der Lieferung/
-describe HS_HEADER_1068		Heinlein Support Spamschutz Header-1068 Spam
-score HS_HEADER_1068		5
-
-header HS_HEADER_1069		Subject:=~/Wir finanzieren Ihre Firma ohne Bank/
-describe HS_HEADER_1069		Heinlein Support Spamschutz Header-1069 Spam
-score HS_HEADER_1069		5
-
-header HS_HEADER_1071		Subject:=~/ist eingriffslose Entfettung vom Bauch und Seiten/
-describe HS_HEADER_1071		Heinlein Support Spamschutz Header-1071 Spam
-score HS_HEADER_1071		5
-
-header HS_HEADER_1072		Subject:=~/Sicherheit in Helligkeit/
-describe HS_HEADER_1072		Heinlein Support Spamschutz Header-1072 Spam
-score HS_HEADER_1072		5
-
-header HS_HEADER_1073		Subject:=~/=?utf-8?B?UG90ZW56bWl0dGVsIGbDvHIgTcOkbm5lcg==?=/
-describe HS_HEADER_1073		Heinlein Support Spamschutz Header-1073 Spam
-score HS_HEADER_1073		5
-
-header HS_HEADER_1076		Sender:=~/.*mailbizd.xyz/
-describe HS_HEADER_1076		Heinlein Support Spamschutz Header-1076 Spam
-score HS_HEADER_1076		5
-
-header HS_HEADER_1077		Sender:=~/.*isnet.net.tr/
-describe HS_HEADER_1077		Heinlein Support Spamschutz Header-1077 Spam
-score HS_HEADER_1077		5
-
-header HS_HEADER_1078		From:=~/.*\@visonfolk.com/
-describe HS_HEADER_1078		Heinlein Support Spamschutz Header-1078 Spam
-score HS_HEADER_1078		5
-
-header HS_HEADER_1081		From:=~/.*\@sunrise.co.ua/
-describe HS_HEADER_1081		Heinlein Support Spamschutz Header-1081 
-score HS_HEADER_1081		5
-
-header HS_HEADER_1083		From:=~/.*\@winderom.co.ua/
-describe HS_HEADER_1083		Heinlein Support Spamschutz Header-1083 
-score HS_HEADER_1083		5
-
-header HS_HEADER_1084		X-OriginalSender:=~/mail.deutschland.r\@naturvalencia.eu/
-describe HS_HEADER_1084		Heinlein Support Spamschutz Header-1084 Spam
-score HS_HEADER_1084		5
-
-header HS_HEADER_1086		Subject:=~/Betrifft: Endlich sind sie hier/
-describe HS_HEADER_1086		Heinlein Support Spamschutz Header-1086 Spam
-score HS_HEADER_1086		1
-
-header HS_HEADER_1088		X-Mailer-RecptId: =~ /5522815/
-describe HS_HEADER_1088		Heinlein Support Spamschutz Header-1088 Spam
-score HS_HEADER_1088		5
-
-header HS_HEADER_1090		Message-ID:=~/.*tipptoplaptop.activehosted.com.*/
-describe HS_HEADER_1090		Heinlein Support Spamschutz Header-1090 Spam
-score HS_HEADER_1090		8
-
-header HS_HEADER_1091		From:=~/.*\@valatel.com.*/
-describe HS_HEADER_1091		Heinlein Support Spamschutz Header-1091 Spam
-score HS_HEADER_1091		3
-
-header HS_HEADER_1094		Subject:=~/Dringend! Sichern Sie Ihre E-Mail-Adresse/
-describe HS_HEADER_1094		Heinlein Support Spamschutz Header-1094 Phishing
-score HS_HEADER_1094		3
-
-header HS_HEADER_1095		From:=~/.*\@micromarineindia.com.*/
-describe HS_HEADER_1095		Heinlein Support Spamschutz Header-1095 Spam
-score HS_HEADER_1095		3
-
-header HS_HEADER_1098		List-Unsubscribe:=~/.*winzer.co.ua\/ru/
-describe HS_HEADER_1098		Heinlein Support Spamschutz Header-1098 Spam
-score HS_HEADER_1098		2
-
-header HS_HEADER_1101		From:=~/.*\@winzer.co.ua.*/
-describe HS_HEADER_1101		Heinlein Support Spamschutz Header-1101 Spam
-score HS_HEADER_1101		2
-
-header HS_HEADER_1103		Message-ID:=~/.*voros.dima.hu.*/
-describe HS_HEADER_1103		Heinlein Support Spamschutz Header-1103 Spam
-score HS_HEADER_1103		8
-
-header HS_HEADER_1106		X-Mailgun-Sending-Ip: =~ /104.130.96.11/
-describe HS_HEADER_1106		Heinlein Support Spamschutz Header-1106 Phishing
-score HS_HEADER_1106		5
-
-header HS_HEADER_1108		Return-Path:=~/.*route66logocoupon\.com\@maildedi2\.com.*/
-describe HS_HEADER_1108		Heinlein Support Spamschutz Header-1108 Spam
-score HS_HEADER_1108		3
-
-header HS_HEADER_1109		Return-Path:=~/.*videoanimationltd\.com\@maildedi2\.com.*/
-describe HS_HEADER_1109		Heinlein Support Spamschutz Header-1109 Spam
-score HS_HEADER_1109		3
-
-header HS_HEADER_1111		Return-Path:=~/.*ghost-writingltd\.com\@maildedi2\.com.*/
-describe HS_HEADER_1111		Heinlein Support Spamschutz Header-1111 Spam
-score HS_HEADER_1111		3
-
-header HS_HEADER_1114		Return-Path:=~/.*retrocubes\.com\@maildedi2\.com.*/
-describe HS_HEADER_1114		Heinlein Support Spamschutz Header-1114 Spam
-score HS_HEADER_1114		5
-
-header HS_HEADER_1118		Return-Path:=~/.*videosharks\.org\@maildedi2\.com.*/
-describe HS_HEADER_1118		Heinlein Support Spamschutz Header-1118 Spam
-score HS_HEADER_1118		5
-
-header HS_HEADER_1120		Return-Path:=~/.*fifthavenuelogocoupon\.com\@maildedi2\.com.*/
-describe HS_HEADER_1120		Heinlein Support Spamschutz Header-1120 Spam
-score HS_HEADER_1120		3
-
-header HS_HEADER_1121		Return-Path:=~/.*best2018seocompany\.com\@maildedi2\.com.*/
-describe HS_HEADER_1121		Heinlein Support Spamschutz Header-1121 Spam
-score HS_HEADER_1121		5
-
-header HS_HEADER_1123		List-Unsubscribe:=~/.*vilkov\.biz\.ua.*/
-describe HS_HEADER_1123		Heinlein Support Spamschutz Header-1123 Spam
-score HS_HEADER_1123		3
-
-header HS_HEADER_1124		List-Unsubscribe:=~/.*vipperson\.eu.*/
-describe HS_HEADER_1124		Heinlein Support Spamschutz Header-1124 Spam
-score HS_HEADER_1124		3
-
-header HS_HEADER_1127		List-Unsubscribe:=~/.*teeperos\.eu.*/
-describe HS_HEADER_1127		Heinlein Support Spamschutz Header-1127 Spam
-score HS_HEADER_1127		3
-
-header HS_HEADER_1129		From:=~/.*dtoomey\@vermontel.net/
-describe HS_HEADER_1129		Heinlein Support Spamschutz Header-1129 Phishing
-score HS_HEADER_1129		5
-
-header HS_HEADER_1131		Subject:=~/Incoming Mails On Hold/
-describe HS_HEADER_1131		Heinlein Support Spamschutz Header-1131 Phishing
-score HS_HEADER_1131		8
-
-header HS_HEADER_1134		Subject:=~/Unlock Account Access/
-describe HS_HEADER_1134		Heinlein Support Spamschutz Header-1134 Phishing
-score HS_HEADER_1134		6
-
-header HS_HEADER_1137		From:=~/Directpay Co. KG/
-describe HS_HEADER_1137		Heinlein Support Spamschutz Header-1137 Rechnungsvirus
-score HS_HEADER_1137		5
-
-header HS_HEADER_1140		Subject:=~/Subject: Kontoabbuchung konnte nicht vorgenommen werden/
-describe HS_HEADER_1140		Heinlein Support Spamschutz Header-1140 Rechnungsvirus
-score HS_HEADER_1140		5
-
-header HS_HEADER_1141		Disposition-Notification-To:=~/.*Mailbox.org.* .*\@mailbox.org/
-describe HS_HEADER_1141		Heinlein Support Spamschutz Header-1141 Phishing
-score HS_HEADER_1141		5
-
-header HS_HEADER_1144		From:=~/\"Mailbox.org\"/
-describe HS_HEADER_1144		Heinlein Support Spamschutz Header-1144 
-score HS_HEADER_1144		5
-
-header HS_HEADER_1146		Subject:=~/Langer durchhalten. Beste Pillen für Sex/
-describe HS_HEADER_1146		Heinlein Support Spamschutz Header-1146 Spam
-score HS_HEADER_1146		7
-

From 4396be2938a7bc7571033d093fb9f81c453f4b1c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 09:53:25 +0200
Subject: [PATCH 24/56] [Rspamd] Place socket in _rspamd home and fix
 permissions [Compose] Remove volume for Rspamd socket [Web] Do not exit loop
 on fuzzy errors when learning a message as spam

---
 data/Dockerfiles/dovecot/rspamd-pipe-ham      |  4 ++--
 data/Dockerfiles/dovecot/rspamd-pipe-spam     |  4 ++--
 data/Dockerfiles/postfix/rspamd-pipe-ham      |  4 ++--
 data/Dockerfiles/postfix/rspamd-pipe-spam     |  4 ++--
 data/Dockerfiles/rspamd/docker-entrypoint.sh  |  1 +
 data/Dockerfiles/watchdog/watchdog.sh         |  2 +-
 .../rspamd/override.d/worker-controller.inc   |  2 +-
 data/web/inc/functions.inc.php                |  2 +-
 data/web/inc/functions.quarantine.inc.php     | 23 +++++++++----------
 data/web/json_api.php                         |  2 +-
 data/web/lang/lang.de.php                     |  2 +-
 data/web/lang/lang.en.php                     |  2 +-
 data/web/lang/lang.nl.php                     |  2 +-
 docker-compose.yml                            | 10 ++++----
 14 files changed, 31 insertions(+), 33 deletions(-)

diff --git a/data/Dockerfiles/dovecot/rspamd-pipe-ham b/data/Dockerfiles/dovecot/rspamd-pipe-ham
index 9d961be0..9b26817c 100755
--- a/data/Dockerfiles/dovecot/rspamd-pipe-ham
+++ b/data/Dockerfiles/dovecot/rspamd-pipe-ham
@@ -3,7 +3,7 @@ FILE=/tmp/mail$$
 cat > $FILE
 trap "/bin/rm -f $FILE" 0 1 2 3 13 15
 
-cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/learnham
-cat ${FILE} | /usr/bin/curl -H "Flag: 13" -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/fuzzyadd
+cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/learnham
+cat ${FILE} | /usr/bin/curl -H "Flag: 13" -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/fuzzyadd
 
 exit 0
diff --git a/data/Dockerfiles/dovecot/rspamd-pipe-spam b/data/Dockerfiles/dovecot/rspamd-pipe-spam
index 3b9e3497..d06aa919 100755
--- a/data/Dockerfiles/dovecot/rspamd-pipe-spam
+++ b/data/Dockerfiles/dovecot/rspamd-pipe-spam
@@ -3,7 +3,7 @@ FILE=/tmp/mail$$
 cat > $FILE
 trap "/bin/rm -f $FILE" 0 1 2 3 13 15
 
-cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/learnspam
-cat ${FILE} | /usr/bin/curl -H "Flag: 11" -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/fuzzyadd
+cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/learnspam
+cat ${FILE} | /usr/bin/curl -H "Flag: 11" -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/fuzzyadd
 
 exit 0
diff --git a/data/Dockerfiles/postfix/rspamd-pipe-ham b/data/Dockerfiles/postfix/rspamd-pipe-ham
index 9d961be0..9b26817c 100755
--- a/data/Dockerfiles/postfix/rspamd-pipe-ham
+++ b/data/Dockerfiles/postfix/rspamd-pipe-ham
@@ -3,7 +3,7 @@ FILE=/tmp/mail$$
 cat > $FILE
 trap "/bin/rm -f $FILE" 0 1 2 3 13 15
 
-cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/learnham
-cat ${FILE} | /usr/bin/curl -H "Flag: 13" -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/fuzzyadd
+cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/learnham
+cat ${FILE} | /usr/bin/curl -H "Flag: 13" -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/fuzzyadd
 
 exit 0
diff --git a/data/Dockerfiles/postfix/rspamd-pipe-spam b/data/Dockerfiles/postfix/rspamd-pipe-spam
index 3b9e3497..d06aa919 100755
--- a/data/Dockerfiles/postfix/rspamd-pipe-spam
+++ b/data/Dockerfiles/postfix/rspamd-pipe-spam
@@ -3,7 +3,7 @@ FILE=/tmp/mail$$
 cat > $FILE
 trap "/bin/rm -f $FILE" 0 1 2 3 13 15
 
-cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/learnspam
-cat ${FILE} | /usr/bin/curl -H "Flag: 11" -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/fuzzyadd
+cat ${FILE} | /usr/bin/curl -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/learnspam
+cat ${FILE} | /usr/bin/curl -H "Flag: 11" -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/fuzzyadd
 
 exit 0
diff --git a/data/Dockerfiles/rspamd/docker-entrypoint.sh b/data/Dockerfiles/rspamd/docker-entrypoint.sh
index 1e255d3c..4972124c 100755
--- a/data/Dockerfiles/rspamd/docker-entrypoint.sh
+++ b/data/Dockerfiles/rspamd/docker-entrypoint.sh
@@ -1,6 +1,7 @@
 #!/bin/bash
 
 chown -R _rspamd:_rspamd /var/lib/rspamd
+chmod 755 /var/lib/rspamd
 [[ ! -f /etc/rspamd/override.d/worker-controller-password.inc ]] && echo '# Placeholder' > /etc/rspamd/override.d/worker-controller-password.inc
 [[ ! -f /etc/rspamd/custom/sa-rules-heinlein ]] && echo '# to be auto-filled by dovecot-mailcow' > /etc/rspamd/custom/sa-rules-heinlein
 
diff --git a/data/Dockerfiles/watchdog/watchdog.sh b/data/Dockerfiles/watchdog/watchdog.sh
index b412ccaf..ab528a78 100755
--- a/data/Dockerfiles/watchdog/watchdog.sh
+++ b/data/Dockerfiles/watchdog/watchdog.sh
@@ -226,7 +226,7 @@ rspamd_checks() {
   while [ ${err_count} -lt ${THRESHOLD} ]; do
     host_ip=$(get_container_ip rspamd-mailcow)
     err_c_cur=${err_count}
-    SCORE=$(/usr/bin/curl -s --data-binary @- --unix-socket /rspamd-sock/rspamd.sock http://rspamd/scan -d '
+    SCORE=$(/usr/bin/curl -s --data-binary @- --unix-socket /var/lib/rspamd/rspamd.sock http://rspamd/scan -d '
 To: null@localhost
 From: watchdog@localhost
 
diff --git a/data/conf/rspamd/override.d/worker-controller.inc b/data/conf/rspamd/override.d/worker-controller.inc
index 9750f4a5..4d4ffe6f 100644
--- a/data/conf/rspamd/override.d/worker-controller.inc
+++ b/data/conf/rspamd/override.d/worker-controller.inc
@@ -2,6 +2,6 @@ bind_socket = "*:11334";
 count = 1;
 secure_ip = "127.0.0.1";
 secure_ip = "::1";
-bind_socket = "/rspamd-sock/rspamd.sock mode=0666 owner=nobody";
+bind_socket = "/var/lib/rspamd/rspamd.sock mode=0666 owner=nobody";
 .include(try=true; priority=10) "$CONFDIR/override.d/worker-controller-password.inc"
 .include(try=true; priority=20) "$CONFDIR/override.d/worker-controller.custom.inc" 
diff --git a/data/web/inc/functions.inc.php b/data/web/inc/functions.inc.php
index f915d5d0..af93d193 100644
--- a/data/web/inc/functions.inc.php
+++ b/data/web/inc/functions.inc.php
@@ -1409,7 +1409,7 @@ function get_logs($container, $lines = false) {
   }
   if ($container == "rspamd-history") {
     $curl = curl_init();
-    curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/rspamd-sock/rspamd.sock');
+    curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/var/lib/rspamd/rspamd.sock');
     if (!is_numeric($lines)) {
       list ($from, $to) = explode('-', $lines);
       curl_setopt($curl, CURLOPT_URL,"http://rspamd/history?from=" . intval($from) . "&to=" . intval($to));
diff --git a/data/web/inc/functions.quarantine.inc.php b/data/web/inc/functions.quarantine.inc.php
index c92a2cdd..14f38b8f 100644
--- a/data/web/inc/functions.quarantine.inc.php
+++ b/data/web/inc/functions.quarantine.inc.php
@@ -221,13 +221,13 @@ function quarantine($_action, $_data = null) {
             continue;
           }
           $curl = curl_init();
-          curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/rspamd-sock/rspamd.sock');
+          curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/var/lib/rspamd/rspamd.sock');
           curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
           curl_setopt($curl, CURLOPT_POST, 1);
           curl_setopt($curl, CURLOPT_TIMEOUT, 30);
-          curl_setopt($curl, CURLOPT_HTTPHEADER, array('Content-Type: text/plain')); 
+          curl_setopt($curl, CURLOPT_HTTPHEADER, array('Content-Type: text/plain'));
           curl_setopt($curl, CURLOPT_URL,"http://rspamd/learnspam");
-          curl_setopt($curl, CURLOPT_POSTFIELDS, $row['msg']); 
+          curl_setopt($curl, CURLOPT_POSTFIELDS, $row['msg']);
           $response = curl_exec($curl);
           if (!curl_errno($curl)) {
             $response = json_decode($response, true);
@@ -243,23 +243,22 @@ function quarantine($_action, $_data = null) {
             }
             curl_close($curl);
             $curl = curl_init();
-            curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/rspamd-sock/rspamd.sock');
+            curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/var/lib/rspamd/rspamd.sock');
             curl_setopt($curl, CURLOPT_RETURNTRANSFER, 1);
             curl_setopt($curl, CURLOPT_POST, 1);
             curl_setopt($curl, CURLOPT_TIMEOUT, 30);
-            curl_setopt($curl, CURLOPT_HTTPHEADER, array('Content-Type: text/plain', 'Flag: 11')); 
+            curl_setopt($curl, CURLOPT_HTTPHEADER, array('Content-Type: text/plain', 'Flag: 11'));
             curl_setopt($curl, CURLOPT_URL,"http://rspamd/fuzzyadd");
-            curl_setopt($curl, CURLOPT_POSTFIELDS, $row['msg']); 
+            curl_setopt($curl, CURLOPT_POSTFIELDS, $row['msg']);
             $response = curl_exec($curl);
             if (!curl_errno($curl)) {
               $response = json_decode($response, true);
               if (isset($response['error'])) {
                 $_SESSION['return'][] = array(
-                  'type' => 'danger',
+                  'type' => 'warning',
                   'log' => array(__FUNCTION__),
                   'msg' => array('fuzzy_learn_error', $response['error'])
                 );
-                continue;
               }
               curl_close($curl);
               try {
@@ -279,7 +278,7 @@ function quarantine($_action, $_data = null) {
               $_SESSION['return'][] = array(
                 'type' => 'success',
                 'log' => array(__FUNCTION__),
-                'msg' => 'qlearn_spam'
+                'msg' => array('qlearn_spam', $id)
               );
               continue;
             }
@@ -288,7 +287,7 @@ function quarantine($_action, $_data = null) {
               $_SESSION['return'][] = array(
                 'type' => 'danger',
                 'log' => array(__FUNCTION__),
-                'msg' => array('spam_learn_error', 'curl error ' . curl_errno($curl))
+                'msg' => array('spam_learn_error', 'Curl: ' . curl_strerror(curl_errno($curl)))
               );
               continue;
             }
@@ -301,12 +300,12 @@ function quarantine($_action, $_data = null) {
             continue;
           }
           else {
-            curl_close($curl);
             $_SESSION['return'][] = array(
               'type' => 'danger',
               'log' => array(__FUNCTION__),
-              'msg' => array('spam_learn_error', 'curl error ' . curl_errno($curl))
+              'msg' => array('spam_learn_error', 'Curl: ' . curl_strerror(curl_errno($curl)))
             );
+            curl_close($curl);
             continue;
           }
           curl_close($curl);
diff --git a/data/web/json_api.php b/data/web/json_api.php
index 98525de7..adeb162e 100644
--- a/data/web/json_api.php
+++ b/data/web/json_api.php
@@ -164,7 +164,7 @@ if (isset($_SESSION['mailcow_cc_role']) || isset($_SESSION['pending_mailcow_cc_u
             switch ($object) {
               case "actions":
                 $curl = curl_init();
-                curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/rspamd-sock/rspamd.sock');
+                curl_setopt($curl, CURLOPT_UNIX_SOCKET_PATH, '/var/lib/rspamd/rspamd.sock');
                 curl_setopt($curl, CURLOPT_URL,"http://rspamd/stat");
                 curl_setopt($curl, CURLOPT_RETURNTRANSFER, true);
                 $data = curl_exec($curl);
diff --git a/data/web/lang/lang.de.php b/data/web/lang/lang.de.php
index 2c26cdcf..4cb2e789 100644
--- a/data/web/lang/lang.de.php
+++ b/data/web/lang/lang.de.php
@@ -618,7 +618,7 @@ $lang['quarantine']['subj'] = "Betreff";
 $lang['quarantine']['text_plain_content'] = "Inhalt (text/plain)";
 $lang['quarantine']['text_from_html_content'] = "Inhalt (html, konvertiert)";
 $lang['quarantine']['atts'] = "Anhänge";
-$lang['danger']['fuzzy_learn_error'] = "Fuzzy Lernfehler: %s";
+$lang['warning']['fuzzy_learn_error'] = "Fuzzy Lernfehler: %s";
 $lang['danger']['spam_learn_error'] = "Spam Lernfehler: %s";
 $lang['success']['qlearn_spam'] = "Nachricht ID %s wurde als Spam gelernt und gelöscht";
 
diff --git a/data/web/lang/lang.en.php b/data/web/lang/lang.en.php
index bd85b15e..9e5dc9ec 100644
--- a/data/web/lang/lang.en.php
+++ b/data/web/lang/lang.en.php
@@ -631,7 +631,7 @@ $lang['quarantine']['subj'] = "Subject";
 $lang['quarantine']['text_plain_content'] = "Content (text/plain)";
 $lang['quarantine']['text_from_html_content'] = "Content (converted html)";
 $lang['quarantine']['atts'] = "Attachments";
-$lang['danger']['fuzzy_learn_error'] = "Fuzzy hash learn error: %s";
+$lang['warning']['fuzzy_learn_error'] = "Fuzzy hash learn error: %s";
 $lang['danger']['spam_learn_error'] = "Spam learn error: %s";
 $lang['success']['qlearn_spam'] = "Message ID %s was learned as spam and deleted";
 
diff --git a/data/web/lang/lang.nl.php b/data/web/lang/lang.nl.php
index 385c0c04..3f87089b 100644
--- a/data/web/lang/lang.nl.php
+++ b/data/web/lang/lang.nl.php
@@ -592,7 +592,7 @@ $lang['quarantine']['subj'] = "Onderwerp";
 $lang['quarantine']['text_plain_content'] = "Inhoud (tekst)";
 $lang['quarantine']['text_from_html_content'] = "Inhoud (geconverteerde html)";
 $lang['quarantine']['atts'] = "Bijlagen";
-$lang['danger']['fuzzy_learn_error'] = "Fuzzy hash training-fout: %s";
+$lang['warning']['fuzzy_learn_error'] = "Fuzzy hash training-fout: %s";
 $lang['danger']['spam_learn_error'] = "Spamtraining-fout: %s";
 $lang['success']['qlearn_spam'] = "Bericht %s werd als spam geclassificeerd en is verwijderd";
 
diff --git a/docker-compose.yml b/docker-compose.yml
index 0eff3b00..6af00108 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -84,7 +84,6 @@ services:
         - ./data/conf/rspamd/override.d/:/etc/rspamd/override.d
         - ./data/conf/rspamd/local.d/:/etc/rspamd/local.d
         - ./data/conf/rspamd/lua/:/etc/rspamd/lua/:ro
-        - rspamd-sock:/rspamd-sock
         - rspamd-vol-1:/var/lib/rspamd
       restart: always
       dns:
@@ -104,7 +103,7 @@ services:
       volumes:
         - ./data/web:/web:rw
         - ./data/conf/rspamd/dynmaps:/dynmaps:ro
-        - rspamd-sock:/rspamd-sock
+        - rspamd-vol-1:/var/lib/rspamd
         - mysql-socket-vol-1:/var/run/mysqld/
         - ./data/conf/rspamd/meta_exporter:/meta_exporter:ro
         - ./data/conf/phpfpm/php-fpm.d/pools.conf:/usr/local/etc/php-fpm.d/z-pools.conf
@@ -171,7 +170,7 @@ services:
         - vmail-vol-1:/var/vmail
         - crypt-vol-1:/mail_crypt/
         - ./data/conf/rspamd/custom/:/etc/rspamd/custom
-        - rspamd-sock:/rspamd-sock
+        - rspamd-vol-1:/var/lib/rspamd
         - mysql-socket-vol-1:/var/run/mysqld/
       environment:
         - LOG_LINES=${LOG_LINES:-9999}
@@ -209,7 +208,7 @@ services:
         - ./data/assets/ssl:/etc/ssl/mail/:ro
         - postfix-vol-1:/var/spool/postfix
         - crypt-vol-1:/var/lib/zeyple
-        - rspamd-sock:/rspamd-sock
+        - rspamd-vol-1:/var/lib/rspamd
         - mysql-socket-vol-1:/var/run/mysqld/
       environment:
         - LOG_LINES=${LOG_LINES:-9999}
@@ -343,7 +342,7 @@ services:
       build: ./data/Dockerfiles/watchdog
       oom_kill_disable: true
       volumes:
-        - rspamd-sock:/rspamd-sock
+        - rspamd-vol-1:/var/lib/rspamd
         - mysql-socket-vol-1:/var/run/mysqld/
       restart: always
       environment:
@@ -406,4 +405,3 @@ volumes:
   rspamd-vol-1:
   postfix-vol-1:
   crypt-vol-1:
-  rspamd-sock:

From 8439daea7ebb4033e00cd14d816856172b84da4b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 09:54:19 +0200
Subject: [PATCH 25/56] [Rspamd] Revert adding worker-controller-password...

---
 data/conf/rspamd/override.d/worker-controller-password.inc | 1 -
 1 file changed, 1 deletion(-)
 delete mode 100644 data/conf/rspamd/override.d/worker-controller-password.inc

diff --git a/data/conf/rspamd/override.d/worker-controller-password.inc b/data/conf/rspamd/override.d/worker-controller-password.inc
deleted file mode 100644
index 2421c524..00000000
--- a/data/conf/rspamd/override.d/worker-controller-password.inc
+++ /dev/null
@@ -1 +0,0 @@
-enable_password = "$2$gtgqjrojzkhoxjis6tygn6sexd8nonah$zi9m3bwnmhtosh4rgqwrdruixx56t8d31iez4mooxqd8a7onaoxy";

From b008211f52eedfe9595a6a0c02b8a5e62d093eb0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 09:55:50 +0200
Subject: [PATCH 26/56] [Rspamd] Controller password placeholder

---
 data/conf/rspamd/override.d/worker-controller-password.inc | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 data/conf/rspamd/override.d/worker-controller-password.inc

diff --git a/data/conf/rspamd/override.d/worker-controller-password.inc b/data/conf/rspamd/override.d/worker-controller-password.inc
new file mode 100644
index 00000000..9a5984d1
--- /dev/null
+++ b/data/conf/rspamd/override.d/worker-controller-password.inc
@@ -0,0 +1 @@
+# Placeholder

From cdca603ff501146692f69b29ebb907af55a191ac Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 14:43:18 +0200
Subject: [PATCH 27/56] [Unbound] Fix logging, fixes #585 [Rspamd] Fix
 permissions of controller password file [Unbound] Enable unbound-control

---
 data/Dockerfiles/rspamd/docker-entrypoint.sh  |  1 +
 data/Dockerfiles/unbound/Dockerfile           |  1 +
 data/Dockerfiles/unbound/docker-entrypoint.sh |  5 ++++-
 data/conf/unbound/unbound.conf                | 11 ++++++++++-
 4 files changed, 16 insertions(+), 2 deletions(-)

diff --git a/data/Dockerfiles/rspamd/docker-entrypoint.sh b/data/Dockerfiles/rspamd/docker-entrypoint.sh
index 4972124c..a606e96f 100755
--- a/data/Dockerfiles/rspamd/docker-entrypoint.sh
+++ b/data/Dockerfiles/rspamd/docker-entrypoint.sh
@@ -3,6 +3,7 @@
 chown -R _rspamd:_rspamd /var/lib/rspamd
 chmod 755 /var/lib/rspamd
 [[ ! -f /etc/rspamd/override.d/worker-controller-password.inc ]] && echo '# Placeholder' > /etc/rspamd/override.d/worker-controller-password.inc
+chown _rspamd:_rspamd /etc/rspamd/override.d/worker-controller-password.inc
 [[ ! -f /etc/rspamd/custom/sa-rules-heinlein ]] && echo '# to be auto-filled by dovecot-mailcow' > /etc/rspamd/custom/sa-rules-heinlein
 
 exec "$@"
diff --git a/data/Dockerfiles/unbound/Dockerfile b/data/Dockerfiles/unbound/Dockerfile
index 72e86bc0..4f443b88 100644
--- a/data/Dockerfiles/unbound/Dockerfile
+++ b/data/Dockerfiles/unbound/Dockerfile
@@ -10,6 +10,7 @@ RUN apk add --update --no-cache \
 	drill \
 	&& curl -o /etc/unbound/root.hints https://www.internic.net/domain/named.cache \
 	&& chown root:unbound /etc/unbound \
+  && adduser unbound tty \
 	&& chmod 775 /etc/unbound
 
 EXPOSE 53/udp 53/tcp
diff --git a/data/Dockerfiles/unbound/docker-entrypoint.sh b/data/Dockerfiles/unbound/docker-entrypoint.sh
index b458cd8a..d179eaca 100755
--- a/data/Dockerfiles/unbound/docker-entrypoint.sh
+++ b/data/Dockerfiles/unbound/docker-entrypoint.sh
@@ -1,8 +1,11 @@
 #!/bin/bash
 
+echo "Setting console permissions..."
+chown root:tty /dev/console
+chmod g+rw /dev/console
 echo "Receiving anchor key..."
 /usr/sbin/unbound-anchor -a /etc/unbound/trusted-key.key
 echo "Receiving root hints..."
 curl -#o /etc/unbound/root.hints https://www.internic.net/domain/named.cache
-
+/usr/sbin/unbound-control-setup
 exec "$@"
diff --git a/data/conf/unbound/unbound.conf b/data/conf/unbound/unbound.conf
index b3c77671..6d7f1f04 100644
--- a/data/conf/unbound/unbound.conf
+++ b/data/conf/unbound/unbound.conf
@@ -2,7 +2,7 @@ server:
   verbosity: 1
   interface: 0.0.0.0
   interface: ::0
-  logfile: /dev/stdout
+  logfile: /dev/console
   do-ip4: yes
   do-ip6: yes
   do-udp: yes
@@ -27,3 +27,12 @@ server:
   hide-version: yes
   max-udp-size: 4096
   msg-buffer-size: 65552
+
+remote-control:
+    control-enable: yes
+    control-interface: 127.0.0.1
+    control-port: 8953
+    server-key-file: "/etc/unbound/unbound_server.key"
+    server-cert-file: "/etc/unbound/unbound_server.pem"
+    control-key-file: "/etc/unbound/unbound_control.key"
+    control-cert-file: "/etc/unbound/unbound_control.pem"

From 6cbe7a08a4d3dcacbc74b5dabac3a5aa579c642f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 14:44:37 +0200
Subject: [PATCH 28/56] [Compose] Update Unbound image and  set tty true

---
 docker-compose.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index 6af00108..01187b6b 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -2,7 +2,7 @@ version: '2.1'
 services:
 
     unbound-mailcow:
-      image: mailcow/unbound:1.1
+      image: mailcow/unbound:1.2
       build: ./data/Dockerfiles/unbound
       command: /usr/sbin/unbound
       environment:
@@ -10,6 +10,7 @@ services:
       volumes:
         - ./data/conf/unbound/unbound.conf:/etc/unbound/unbound.conf:ro
       restart: always
+      tty: true
       networks:
         mailcow-network:
           ipv4_address: ${IPV4_NETWORK:-172.22.1}.254

From 71ec81db3176d9a723e6d5e92550d0e89823c321 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 14:49:19 +0200
Subject: [PATCH 29/56] [Update] Add MAILDIR_GC_TIME

---
 update.sh | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/update.sh b/update.sh
index 54fcaa8c..e38a1e95 100755
--- a/update.sh
+++ b/update.sh
@@ -200,6 +200,14 @@ for option in ${CONFIG_ARRAY[@]}; do
       echo '# Use this IPv6 for outgoing connections (SNAT)' >> mailcow.conf
       echo "#SNAT6_TO_SOURCE=" >> mailcow.conf
     fi
+  elif [[ ${option} == "MAILDIR_GC_TIME" ]]; then
+    if ! grep -q ${option} mailcow.conf; then
+      echo "Adding new option \"${option}\" to mailcow.conf"
+      echo '# Garbage collector cleanup' >> mailcow.conf
+      echo '# Deleted domains and mailboxes are moved to /var/vmail/_garbage/timestamp_sanitizedstring' >> mailcow.conf
+      echo '# How long should objects remain in the garbage until they are being deleted? (value in minutes)' >> mailcow.conf
+      echo 'MAILDIR_GC_TIME=1440' >> mailcow.conf
+    fi
   elif ! grep -q ${option} mailcow.conf; then
     echo "Adding new option \"${option}\" to mailcow.conf"
     echo "${option}=n" >> mailcow.conf

From d7ca5579dc5fb01bc996ed3769fbb54516f36368 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 18:55:35 +0200
Subject: [PATCH 30/56] [Rspamd] Ignore custom files, but keep bad asn map

---
 .gitignore                                   | 2 +-
 data/Dockerfiles/rspamd/docker-entrypoint.sh | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.gitignore b/.gitignore
index 907da76b..e6777cfe 100644
--- a/.gitignore
+++ b/.gitignore
@@ -21,4 +21,4 @@ data/conf/nginx/*.conf
 data/conf/nginx/*.custom
 data/conf/nginx/*.bak
 data/conf/dovecot/extra.conf
-data/conf/rspamd/custom/sa-rules-heinlein
+data/conf/rspamd/custom/*
diff --git a/data/Dockerfiles/rspamd/docker-entrypoint.sh b/data/Dockerfiles/rspamd/docker-entrypoint.sh
index a606e96f..6288550d 100755
--- a/data/Dockerfiles/rspamd/docker-entrypoint.sh
+++ b/data/Dockerfiles/rspamd/docker-entrypoint.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 
-chown -R _rspamd:_rspamd /var/lib/rspamd
+chown -R _rspamd:_rspamd /var/lib/rspamd /etc/rspamd/local.d /etc/rspamd/override.d /etc/rspamd/custom
 chmod 755 /var/lib/rspamd
 [[ ! -f /etc/rspamd/override.d/worker-controller-password.inc ]] && echo '# Placeholder' > /etc/rspamd/override.d/worker-controller-password.inc
 chown _rspamd:_rspamd /etc/rspamd/override.d/worker-controller-password.inc

From a0541822465550362042c6e3ec01763cfba99831 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Sun, 30 Sep 2018 18:56:35 +0200
Subject: [PATCH 31/56] [Rspamd] Add desc to high spam networks

---
 data/conf/rspamd/custom/bad_asn.map | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/data/conf/rspamd/custom/bad_asn.map b/data/conf/rspamd/custom/bad_asn.map
index bc9e10f6..ffd9af0f 100644
--- a/data/conf/rspamd/custom/bad_asn.map
+++ b/data/conf/rspamd/custom/bad_asn.map
@@ -1,4 +1,6 @@
 # High spam networks, disabled by default
+# ASN:SCORE DESC
+# Remove comment to enable score
 #201942:5 #Soltia Consulting SL - ipinfo.io
 #16276:2 #OVH
 #12876:2 #ONLINE S.A.S

From b8ebdc3c58365d8e23a2dd7ce7bdbb39cb46b323 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Mon, 1 Oct 2018 22:06:20 +0200
Subject: [PATCH 32/56] [Postfix] Increase default message size limit to 100
 MiB

---
 data/conf/postfix/main.cf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/conf/postfix/main.cf b/data/conf/postfix/main.cf
index dc49e75e..d3625d07 100644
--- a/data/conf/postfix/main.cf
+++ b/data/conf/postfix/main.cf
@@ -20,7 +20,7 @@ broken_sasl_auth_clients = yes
 disable_vrfy_command = yes
 maximal_backoff_time = 1800s
 maximal_queue_lifetime = 1d
-message_size_limit = 26214400
+message_size_limit = 104857600
 milter_default_action = accept
 milter_protocol = 6
 minimal_backoff_time = 300s

From ca1e950c6163179b474830f4afa4f75f934068c3 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Tue, 2 Oct 2018 09:13:33 +0200
Subject: [PATCH 33/56] [Dovecot] Do not query gid and uid

---
 data/Dockerfiles/dovecot/docker-entrypoint.sh | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/data/Dockerfiles/dovecot/docker-entrypoint.sh b/data/Dockerfiles/dovecot/docker-entrypoint.sh
index 57e0330a..23e3682a 100755
--- a/data/Dockerfiles/dovecot/docker-entrypoint.sh
+++ b/data/Dockerfiles/dovecot/docker-entrypoint.sh
@@ -89,7 +89,8 @@ EOF
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-userdb.conf
 driver = mysql
 connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
-user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, 5000 AS uid, 5000 AS gid, concat('*:bytes=', quota) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1'
+default_fields = uid=vmail gid=vmail
+user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, concat('*:bytes=', quota) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1'
 iterate_query = SELECT username FROM mailbox WHERE active='1';
 EOF
 

From 62b27aeacbcf4a70328f4b95eed8a0d0a148ccff Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Tue, 2 Oct 2018 09:32:51 +0200
Subject: [PATCH 34/56] [Dovecot] Check garbage hourly [Dovecot] Update SA
 rules once when container starts

---
 data/Dockerfiles/dovecot/Dockerfile           | 2 +-
 data/Dockerfiles/dovecot/docker-entrypoint.sh | 3 +++
 generate_config.sh                            | 1 +
 update.sh                                     | 1 +
 4 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/data/Dockerfiles/dovecot/Dockerfile b/data/Dockerfiles/dovecot/Dockerfile
index 84ecb322..fdfa84f5 100644
--- a/data/Dockerfiles/dovecot/Dockerfile
+++ b/data/Dockerfiles/dovecot/Dockerfile
@@ -92,7 +92,7 @@ RUN cpanm Data::Uniqid Mail::IMAPClient String::Util
 RUN echo '* * * * *   root  /usr/local/bin/imapsync_cron.pl' > /etc/cron.d/imapsync
 RUN echo '30 3 * * *  vmail /usr/local/bin/doveadm quota recalc -A' > /etc/cron.d/dovecot-sync
 RUN echo '* * * * *   vmail /usr/local/bin/trim_logs.sh >> /dev/stdout 2>&1' > /etc/cron.d/trim_logs
-RUN echo '30 2 * * *  vmail /usr/local/bin/maildir_gc.sh >> /dev/stdout 2>&1' > /etc/cron.d/maildir_gc
+RUN echo '25 * * * *  vmail /usr/local/bin/maildir_gc.sh >> /dev/stdout 2>&1' > /etc/cron.d/maildir_gc
 RUN echo '30 1 * * *  root  /usr/local/bin/sa-rules.sh  >> /dev/stdout 2>&1' > /etc/cron.d/sa-rules
 COPY trim_logs.sh /usr/local/bin/trim_logs.sh
 COPY syslog-ng.conf /etc/syslog-ng/syslog-ng.conf
diff --git a/data/Dockerfiles/dovecot/docker-entrypoint.sh b/data/Dockerfiles/dovecot/docker-entrypoint.sh
index 23e3682a..9c249908 100755
--- a/data/Dockerfiles/dovecot/docker-entrypoint.sh
+++ b/data/Dockerfiles/dovecot/docker-entrypoint.sh
@@ -145,4 +145,7 @@ rm -f /tmp/imapsync_busy.lock
 IMAPSYNC_TABLE=$(mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "SHOW TABLES LIKE 'imapsync'" -Bs)
 [[ ! -z ${IMAPSYNC_TABLE} ]] && mysql --socket=/var/run/mysqld/mysqld.sock -u ${DBUSER} -p${DBPASS} ${DBNAME} -e "UPDATE imapsync SET is_running='0'"
 
+# Collect SA rules once now
+/usr/local/bin/sa-rules.sh
+
 exec "$@"
diff --git a/generate_config.sh b/generate_config.sh
index 5e8fbf37..a1b5e12e 100755
--- a/generate_config.sh
+++ b/generate_config.sh
@@ -107,6 +107,7 @@ COMPOSE_PROJECT_NAME=mailcowdockerized
 # Garbage collector cleanup
 # Deleted domains and mailboxes are moved to /var/vmail/_garbage/timestamp_sanitizedstring
 # How long should objects remain in the garbage until they are being deleted? (value in minutes)
+# Check interval is hourly
 MAILDIR_GC_TIME=1440
 
 # Additional SAN for the certificate
diff --git a/update.sh b/update.sh
index e38a1e95..12820fd5 100755
--- a/update.sh
+++ b/update.sh
@@ -206,6 +206,7 @@ for option in ${CONFIG_ARRAY[@]}; do
       echo '# Garbage collector cleanup' >> mailcow.conf
       echo '# Deleted domains and mailboxes are moved to /var/vmail/_garbage/timestamp_sanitizedstring' >> mailcow.conf
       echo '# How long should objects remain in the garbage until they are being deleted? (value in minutes)' >> mailcow.conf
+      echo '# Check interval is hourly' >> mailcow.conf
       echo 'MAILDIR_GC_TIME=1440' >> mailcow.conf
     fi
   elif ! grep -q ${option} mailcow.conf; then

From 2af2f7836d4b882eda6eb2854520d76afa95a3b0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Tue, 2 Oct 2018 10:31:22 +0200
Subject: [PATCH 35/56] [Dovecot] Remove fixed uid and gid

---
 data/Dockerfiles/dovecot/docker-entrypoint.sh | 3 +--
 docker-compose.yml                            | 2 +-
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/data/Dockerfiles/dovecot/docker-entrypoint.sh b/data/Dockerfiles/dovecot/docker-entrypoint.sh
index 9c249908..db7ecb8b 100755
--- a/data/Dockerfiles/dovecot/docker-entrypoint.sh
+++ b/data/Dockerfiles/dovecot/docker-entrypoint.sh
@@ -89,8 +89,7 @@ EOF
 cat <<EOF > /usr/local/etc/dovecot/sql/dovecot-dict-sql-userdb.conf
 driver = mysql
 connect = "host=/var/run/mysqld/mysqld.sock dbname=${DBNAME} user=${DBUSER} password=${DBPASS}"
-default_fields = uid=vmail gid=vmail
-user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, concat('*:bytes=', quota) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1'
+user_query = SELECT CONCAT('maildir:/var/vmail/',maildir) AS mail, 5000 AS uid, 5000 AS gid, concat('*:bytes=', quota) AS quota_rule FROM mailbox WHERE username = '%u' AND active = '1'
 iterate_query = SELECT username FROM mailbox WHERE active='1';
 EOF
 
diff --git a/docker-compose.yml b/docker-compose.yml
index 01187b6b..e5acaadc 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -160,7 +160,7 @@ services:
             - sogo
 
     dovecot-mailcow:
-      image: mailcow/dovecot:1.36
+      image: mailcow/dovecot:1.37
       build: ./data/Dockerfiles/dovecot
       cap_add:
         - NET_BIND_SERVICE

From 668a0927acdc9f3e6ad63c524a388fc7b0b678c0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Tue, 2 Oct 2018 21:20:11 +0200
Subject: [PATCH 36/56] [Web] Fix deletion of domain, fixes #1818

---
 data/web/inc/functions.mailbox.inc.php | 1 -
 1 file changed, 1 deletion(-)

diff --git a/data/web/inc/functions.mailbox.inc.php b/data/web/inc/functions.mailbox.inc.php
index e06ac397..c44d9e81 100644
--- a/data/web/inc/functions.mailbox.inc.php
+++ b/data/web/inc/functions.mailbox.inc.php
@@ -3065,7 +3065,6 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
                 'msg' => 'Could not move maildir to garbage collector: ' . $maildir_gc['msg']
               );
             }
-            return false;
             $stmt = $pdo->prepare("DELETE FROM `domain` WHERE `domain` = :domain");
             $stmt->execute(array(
               ':domain' => $domain,

From b61f9714e9aadb28883af7ae5e05f2e611792de8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Tue, 2 Oct 2018 21:24:22 +0200
Subject: [PATCH 37/56] [Update] Add MAILDIR_GC_TIME to config file, fixes
 #1821

---
 update.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/update.sh b/update.sh
index 12820fd5..a3b4e13f 100755
--- a/update.sh
+++ b/update.sh
@@ -119,6 +119,7 @@ CONFIG_ARRAY=(
   "SQL_PORT"
   "API_KEY"
   "API_ALLOW_FROM"
+  "MAILDIR_GC_TIME"
 )
 
 sed -i '$a\' mailcow.conf

From 7c4416bfc9df8042587ff3a768ede4f0197b0b7a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 11:18:09 +0200
Subject: [PATCH 38/56] [Compose] Update dockerapi-mailcow

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index e5acaadc..438a5e46 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -364,7 +364,7 @@ services:
             - watchdog
 
     dockerapi-mailcow:
-      image: mailcow/dockerapi:1.17
+      image: mailcow/dockerapi:1.18
       restart: always
       build: ./data/Dockerfiles/dockerapi
       oom_kill_disable: true

From f0dfee7820d38a48beac7a4de6080c1dd788e8c5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 11:18:31 +0200
Subject: [PATCH 39/56] [Web] Add MAILBOX_DEFAULT_ATTRIBUTES variable to define
 default mailbox attributes

---
 data/web/inc/vars.inc.php | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/data/web/inc/vars.inc.php b/data/web/inc/vars.inc.php
index 75a96bba..5cf2ea94 100644
--- a/data/web/inc/vars.inc.php
+++ b/data/web/inc/vars.inc.php
@@ -123,3 +123,12 @@ $DOCKER_TIMEOUT = 60;
 
 // Anonymize IPs logged via UI
 $ANONYMIZE_IPS = true;
+
+// Force incoming TLS for new mailboxes by default
+$MAILBOX_DEFAULT_ATTRIBUTES['tls_enforce_in'] = false;
+
+// Force outgoing TLS for new mailboxes by default
+$MAILBOX_DEFAULT_ATTRIBUTES['tls_enforce_out'] = false;
+
+// Force password change on next login (only allows login to mailcow UI)
+$MAILBOX_DEFAULT_ATTRIBUTES['force_pw_update'] = false;

From d8148bef792da20429a0817ea38721ea19b27834 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 11:27:52 +0200
Subject: [PATCH 40/56] [Docker API] Do not print warning when maildr does not
 exist

---
 data/Dockerfiles/dockerapi/server.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/Dockerfiles/dockerapi/server.py b/data/Dockerfiles/dockerapi/server.py
index cdba5ea4..17e5e0fd 100644
--- a/data/Dockerfiles/dockerapi/server.py
+++ b/data/Dockerfiles/dockerapi/server.py
@@ -132,7 +132,7 @@ class container_post(Resource):
           try:
             for container in docker_client.containers.list(filters={"id": container_id}):
               sane_name = re.sub(r'\W+', '', request.json['maildir'])
-              maildir_cleanup = container.exec_run(["/bin/bash", "-c", "/bin/mv '/var/vmail/" + request.json['maildir'].replace("'", "'\\''") + "' '/var/vmail/_garbage/" + str(int(time.time())) + "_" + sane_name + "'"], user='vmail')
+              maildir_cleanup = container.exec_run(["/bin/bash", "-c", "if [[ -d '/var/vmail/" + request.json['maildir'].replace("'", "'\\''") + "' ]]; then /bin/mv '/var/vmail/" + request.json['maildir'].replace("'", "'\\''") + "' '/var/vmail/_garbage/" + str(int(time.time())) + "_" + sane_name + "'; fi"], user='vmail')
               if maildir_cleanup.exit_code == 0:
                 return jsonify(type='success', msg=str("moved to garbage"))
               else:

From 76530b7e6ddf43ad53bb9515baf11d5dab2f2fd5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 11:28:25 +0200
Subject: [PATCH 41/56] [Web] Use json_encode for mail attrs when creating a
 mailbox

---
 data/web/inc/functions.mailbox.inc.php | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/data/web/inc/functions.mailbox.inc.php b/data/web/inc/functions.mailbox.inc.php
index c44d9e81..8332e090 100644
--- a/data/web/inc/functions.mailbox.inc.php
+++ b/data/web/inc/functions.mailbox.inc.php
@@ -3,6 +3,7 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
   global $pdo;
   global $redis;
   global $lang;
+  global $MAILBOX_DEFAULT_ATTRIBUTES;
   $_data_log = $_data;
   !isset($_data_log['password']) ?: $_data_log['password'] = '*';
   !isset($_data_log['password2']) ?: $_data_log['password2'] = '*';
@@ -734,6 +735,12 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
           $active = intval($_data['active']);
           $quota_b		= ($quota_m * 1048576);
           $maildir		= $domain . "/" . $local_part . "/";
+          $mailbox_attrs = json_encode(
+            array(
+              'force_pw_update' => strval(intval($MAILBOX_DEFAULT_ATTRIBUTES['force_pw_update'])),
+              'tls_enforce_in' => strval(intval($MAILBOX_DEFAULT_ATTRIBUTES['tls_enforce_in'])),
+              'tls_enforce_out' => strval(intval($MAILBOX_DEFAULT_ATTRIBUTES['tls_enforce_out'])))
+            );
           if (!is_valid_domain_name($domain)) {
             $_SESSION['return'][] = array(
               'type' => 'danger',
@@ -867,7 +874,7 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             return false;
           }
           $stmt = $pdo->prepare("INSERT INTO `mailbox` (`username`, `password`, `name`, `maildir`, `quota`, `local_part`, `domain`, `attributes`, `active`) 
-            VALUES (:username, :password_hashed, :name, :maildir, :quota_b, :local_part, :domain, '{\"force_pw_update\": \"0\", \"tls_enforce_in\": \"0\", \"tls_enforce_out\": \"0\"}', :active)");
+            VALUES (:username, :password_hashed, :name, :maildir, :quota_b, :local_part, :domain, :mailbox_attrs, :active)");
           $stmt->execute(array(
             ':username' => $username,
             ':password_hashed' => $password_hashed,
@@ -876,6 +883,7 @@ function mailbox($_action, $_type, $_data = null, $_extra = null) {
             ':quota_b' => $quota_b,
             ':local_part' => $local_part,
             ':domain' => $domain,
+            ':mailbox_attrs' => $mailbox_attrs,
             ':active' => $active
           ));
           $stmt = $pdo->prepare("INSERT INTO `quota2` (`username`, `bytes`, `messages`)

From a7b51a9972aa4302f75ed58c59a9735281346d6f Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 12:05:01 +0200
Subject: [PATCH 42/56] [Web] Fix user page actions

---
 data/web/user.php | 42 +++++++++++++++++++++---------------------
 1 file changed, 21 insertions(+), 21 deletions(-)

diff --git a/data/web/user.php b/data/web/user.php
index 02845813..329a99c2 100644
--- a/data/web/user.php
+++ b/data/web/user.php
@@ -177,19 +177,19 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
     <div class="col-md-9 col-xs-7">
     <div class="btn-group" data-acl="<?=$_SESSION['acl']['delimiter_action'];?>">
       <button type="button" class="btn btn-sm btn-default <?=($get_tagging_options == "subfolder") ? 'active' : null; ?>"
-        id="edit_selected"
+        data-action="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="delimiter_action"
         data-api-url='edit/delimiter_action'
         data-api-attr='{"tagged_mail_handler":"subfolder"}'><?=$lang['user']['tag_in_subfolder'];?></button>
       <button type="button" class="btn btn-sm btn-default <?=($get_tagging_options == "subject") ? 'active' : null; ?>"
-        id="edit_selected"
+        data-action="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="delimiter_action"
         data-api-url='edit/delimiter_action'
         data-api-attr='{"tagged_mail_handler":"subject"}'><?=$lang['user']['tag_in_subject'];?></button>
       <button type="button" class="btn btn-sm btn-default <?=($get_tagging_options == "none") ? 'active' : null; ?>"
-        id="edit_selected"
+        data-action="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="delimiter_action"
         data-api-url='edit/delimiter_action'
@@ -208,13 +208,13 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
     <div class="col-md-9 col-xs-7">
     <div class="btn-group" data-acl="<?=$_SESSION['acl']['tls_policy'];?>">
       <button type="button" class="btn btn-sm btn-default <?=($get_tls_policy['tls_enforce_in'] == "1") ? "active" : null;?>"
-        id="edit_selected"
+        data-action="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="tls_policy"
         data-api-url='edit/tls_policy'
         data-api-attr='{"tls_enforce_in":<?=($get_tls_policy['tls_enforce_in'] == "1") ? "0" : "1";?>}'><?=$lang['user']['tls_enforce_in'];?></button>
       <button type="button" class="btn btn-sm btn-default <?=($get_tls_policy['tls_enforce_out'] == "1") ? "active" : null;?>"
-        id="edit_selected"
+        data-action="edit_selected"
         data-item="<?= htmlentities($username); ?>"
         data-id="tls_policy"
         data-api-url='edit/tls_policy'
@@ -227,7 +227,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
   <div class="row">
     <div class="col-md-3 col-xs-5 text-right"><?=$lang['user']['eas_reset'];?>:</div>
     <div class="col-md-9 col-xs-7">
-    <button class="btn btn-xs btn-default" data-acl="<?=$_SESSION['acl']['eas_reset'];?>" id="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-item="<?= htmlentities($username); ?>" data-id="eas_cache" data-api-url='delete/eas_cache' href="#"><?=$lang['user']['eas_reset_now'];?></button>
+    <button class="btn btn-xs btn-default" data-acl="<?=$_SESSION['acl']['eas_reset'];?>" data-action="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-item="<?= htmlentities($username); ?>" data-id="eas_cache" data-api-url='delete/eas_cache' href="#"><?=$lang['user']['eas_reset_now'];?></button>
     <p class="help-block"><?=$lang['user']['eas_reset_help'];?></p>
     </div>
   </div>
@@ -259,19 +259,19 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
           <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="tla" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
           <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
           <ul class="dropdown-menu">
-            <li><a id="edit_selected" data-id="tla" data-api-url='edit/time_limited_alias' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-time"></span> + 1h</a></li>
+            <li><a data-action="edit_selected" data-id="tla" data-api-url='edit/time_limited_alias' data-api-attr='{}' href="#"><span class="glyphicon glyphicon-time"></span> + 1h</a></li>
             <li role="separator" class="divider"></li>
-            <li><a id="delete_selected" data-id="tla" data-api-url='delete/time_limited_alias' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+            <li><a data-action="delete_selected" data-id="tla" data-api-url='delete/time_limited_alias' href="#"><?=$lang['mailbox']['remove'];?></a></li>
           </ul>
         </div>
         <div class="btn-group">
           <a class="btn btn-sm btn-success dropdown-toggle" data-toggle="dropdown" href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['alias_create_random'];?> <span class="caret"></span></a>
           <ul class="dropdown-menu">
-            <li><a id="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"1"}' href="#">1 <?=$lang['user']['hour'];?></a></li>
-            <li><a id="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"6"}' href="#">6 <?=$lang['user']['hours'];?></a></li>
-            <li><a id="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"24"}' href="#">1 <?=$lang['user']['day'];?></a></li>
-            <li><a id="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"168"}' href="#">1 <?=$lang['user']['week'];?></a></li>
-            <li><a id="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"672"}' href="#">4 <?=$lang['user']['weeks'];?></a></li>
+            <li><a data-action="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"1"}' href="#">1 <?=$lang['user']['hour'];?></a></li>
+            <li><a data-action="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"6"}' href="#">6 <?=$lang['user']['hours'];?></a></li>
+            <li><a data-action="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"24"}' href="#">1 <?=$lang['user']['day'];?></a></li>
+            <li><a data-action="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"168"}' href="#">1 <?=$lang['user']['week'];?></a></li>
+            <li><a data-action="add_item" data-api-url='add/time_limited_alias' data-api-attr='{"validity":"672"}' href="#">4 <?=$lang['user']['weeks'];?></a></li>
           </ul>
         </div>
       </div>
@@ -308,7 +308,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
 
       <div class="form-group">
 				<div class="col-sm-10">
-        <button data-acl="<?=$_SESSION['acl']['spam_score'];?>" type="button" class="btn btn-sm btn-success" id="edit_selected"
+        <button data-acl="<?=$_SESSION['acl']['spam_score'];?>" type="button" class="btn btn-sm btn-success" data-action="edit_selected"
           data-item="<?= htmlentities($username); ?>"
           data-id="spam_score"
           data-api-url='edit/spam-score'
@@ -329,14 +329,14 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         <div class="mass-actions-user">
           <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_wl_mailbox" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
-            <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_wl_mailbox" data-api-url='delete/mailbox-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+            <a class="btn btn-sm btn-danger" data-action="delete_selected" data-id="policy_wl_mailbox" data-api-url='delete/mailbox-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
           </div>
         </div>
         <form class="form-inline" data-id="add_wl_policy_mailbox">
           <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
             <span class="input-group-btn">
-              <button class="btn btn-default" id="add_item" data-id="add_wl_policy_mailbox" data-api-url='add/mailbox-policy' data-api-attr='{"username":<?= json_encode($username); ?>,"object_list":"wl"}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['spamfilter_table_add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_wl_policy_mailbox" data-api-url='add/mailbox-policy' data-api-attr='{"username":<?= json_encode($username); ?>,"object_list":"wl"}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['spamfilter_table_add'];?></button>
             </span>
           </div>
         </form>
@@ -352,14 +352,14 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         <div class="mass-actions-user">
           <div class="btn-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="policy_bl_mailbox" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
-            <a class="btn btn-sm btn-danger" id="delete_selected" data-id="policy_bl_mailbox" data-api-url='delete/mailbox-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+            <a class="btn btn-sm btn-danger" data-action="delete_selected" data-id="policy_bl_mailbox" data-api-url='delete/mailbox-policy' href="#"><?=$lang['mailbox']['remove'];?></a></li>
           </div>
         </div>
         <form class="form-inline" data-id="add_bl_policy_mailbox">
           <div class="input-group" data-acl="<?=$_SESSION['acl']['spam_policy'];?>">
             <input type="text" class="form-control" name="object_from" id="object_from" placeholder="*@example.org" required>
             <span class="input-group-btn">
-              <button class="btn btn-default" id="add_item" data-id="add_bl_policy_mailbox" data-api-url='add/mailbox-policy' data-api-attr='{"username":<?= json_encode($username); ?>,"object_list":"bl"}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['spamfilter_table_add'];?></button>
+              <button class="btn btn-default" data-action="add_item" data-id="add_bl_policy_mailbox" data-api-url='add/mailbox-policy' data-api-attr='{"username":<?= json_encode($username); ?>,"object_list":"bl"}' href="#"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['spamfilter_table_add'];?></button>
             </span>
           </div>
         </form>
@@ -378,10 +378,10 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
         <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="syncjob" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
         <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
         <ul class="dropdown-menu">
-          <li><a id="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
-          <li><a id="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+          <li><a data-action="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+          <li><a data-action="edit_selected" data-id="syncjob" data-api-url='edit/syncjob' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
           <li role="separator" class="divider"></li>
-          <li><a id="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-id="syncjob" data-api-url='delete/syncjob' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+          <li><a data-action="delete_selected" data-text="<?=$lang['user']['eas_reset'];?>?" data-id="syncjob" data-api-url='delete/syncjob' href="#"><?=$lang['mailbox']['remove'];?></a></li>
         </ul>
         <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addSyncJobModal"><span class="glyphicon glyphicon-plus"></span> <?=$lang['user']['create_syncjob'];?></a>
       </div>

From 67adca4e05ceff8f61a096b2fbc4073108bc51d6 Mon Sep 17 00:00:00 2001
From: Peter <magic@kthx.at>
Date: Wed, 3 Oct 2018 12:34:10 +0200
Subject: [PATCH 43/56] Don't print 'Collecting garbage...' twice

When updating mailcow and it finished it printed 'Collecting garbage..,' twice since in docker_garbage() and before running the code we have the echo command.
Now it's printing the line before running docker_garbage()
---
 update.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/update.sh b/update.sh
index a3b4e13f..af83f483 100755
--- a/update.sh
+++ b/update.sh
@@ -12,7 +12,6 @@ DATE=$(date +%Y-%m-%d_%H_%M_%S)
 BRANCH=$(git rev-parse --abbrev-ref HEAD)
 
 docker_garbage() {
-  echo -e "\e[32mCollecting garbage...\e[0m"
   IMGS_TO_DELETE=()
   for container in $(grep -oP "image: \Kmailcow.+" docker-compose.yml); do
     REPOSITORY=${container/:*}
@@ -74,6 +73,7 @@ while (($#)); do
       MERGE_STRATEGY=ours
     ;;
     --gc)
+      echo -e "\e[32mCollecting garbage...\e[0m"
       docker_garbage
       exit 0
     ;;

From d00f4744faea89b0e872c30226c48f2b2f11d6ae Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 17:46:56 +0200
Subject: [PATCH 44/56] [Web] Fix address rewriting actions, fixes #1829

---
 .../inc/functions.address_rewriting.inc.php   | 24 -------------------
 1 file changed, 24 deletions(-)

diff --git a/data/web/inc/functions.address_rewriting.inc.php b/data/web/inc/functions.address_rewriting.inc.php
index 037166fa..994429f2 100644
--- a/data/web/inc/functions.address_rewriting.inc.php
+++ b/data/web/inc/functions.address_rewriting.inc.php
@@ -287,14 +287,6 @@ function recipient_map($_action, $_data = null, $attr = null) {
   }
   switch ($_action) {
     case 'add':
-      if (!isset($_SESSION['acl']['recipient_maps']) || $_SESSION['acl']['recipient_maps'] != "1" ) {
-        $_SESSION['return'][] = array(
-          'type' => 'danger',
-          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-          'msg' => 'access_denied'
-        );
-        return false;
-      }
       $old_dest = strtolower(trim($_data['recipient_map_old']));
       if (substr($old_dest, 0, 1) == '@') {
         $old_dest = substr($old_dest, 1);
@@ -359,14 +351,6 @@ function recipient_map($_action, $_data = null, $attr = null) {
       );
     break;
     case 'edit':
-      if (!isset($_SESSION['acl']['recipient_maps']) || $_SESSION['acl']['recipient_maps'] != "1" ) {
-        $_SESSION['return'][] = array(
-          'type' => 'danger',
-          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-          'msg' => 'access_denied'
-        );
-        return false;
-      }
       $ids = (array)$_data['id'];
       foreach ($ids as $id) {
         $is_now = recipient_map('details', $id);
@@ -482,14 +466,6 @@ function recipient_map($_action, $_data = null, $attr = null) {
       return $mapdata;
     break;
     case 'delete':
-      if (!isset($_SESSION['acl']['recipient_maps']) || $_SESSION['acl']['recipient_maps'] != "1" ) {
-        $_SESSION['return'][] = array(
-          'type' => 'danger',
-          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-          'msg' => 'access_denied'
-        );
-        return false;
-      }
       $ids = (array)$_data['id'];
       foreach ($ids as $id) {
         if (!is_numeric($id)) {

From cf287273760ea3c095dbf49c0dc9528d448e29f7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 23:27:31 +0200
Subject: [PATCH 45/56] [Dovecot] Add timeouts to sa-rules script, remove with
 -f flag to return 0

---
 data/Dockerfiles/dovecot/sa-rules.sh | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/data/Dockerfiles/dovecot/sa-rules.sh b/data/Dockerfiles/dovecot/sa-rules.sh
index 197ded87..0cea240c 100755
--- a/data/Dockerfiles/dovecot/sa-rules.sh
+++ b/data/Dockerfiles/dovecot/sa-rules.sh
@@ -6,7 +6,7 @@ else
   HASH_SA_RULES=$(cat /etc/rspamd/custom/sa-rules-heinlein | md5sum | cut -d' ' -f1)
 fi
 
-curl http://www.spamassassin.heinlein-support.de/$(dig txt 1.4.3.spamassassin.heinlein-support.de +short | tr -d '"').tar.gz --output /tmp/sa-rules.tar.gz
+curl --connect-timeout 15 --max-time 30 http://www.spamassassin.heinlein-support.de/$(dig txt 1.4.3.spamassassin.heinlein-support.de +short | tr -d '"').tar.gz --output /tmp/sa-rules.tar.gz
 if [[ -f /tmp/sa-rules.tar.gz ]]; then
   tar xfvz /tmp/sa-rules.tar.gz -C /tmp/sa-rules-heinlein
   # create complete list of rules in a single file
@@ -18,8 +18,8 @@ if [[ -f /tmp/sa-rules.tar.gz ]]; then
       jq -r ".[] | {name: .Config.Labels[\"com.docker.compose.service\"], id: .Id}" | \
       jq -rc "select( .name | tostring | contains(\"${CONTAINER_NAME}\")) | .id")
     if [[ ! -z ${CONTAINER_ID} ]]; then
-      curl --silent --insecure -XPOST https://dockerapi/containers/${CONTAINER_ID}/restart
+      curl --silent --insecure -XPOST --connect-timeout 15 --max-time 120 https://dockerapi/containers/${CONTAINER_ID}/restart
     fi
   fi
 fi
-rm -r /tmp/sa-rules-heinlein /tmp/sa-rules.tar.gz
+rm -rf /tmp/sa-rules-heinlein /tmp/sa-rules.tar.gz

From 2c71c689f69b5dee5697518628557b4409039fb1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Wed, 3 Oct 2018 23:28:08 +0200
Subject: [PATCH 46/56] [Compose] New dovecot-mailcow image

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index 438a5e46..d06007ec 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -160,7 +160,7 @@ services:
             - sogo
 
     dovecot-mailcow:
-      image: mailcow/dovecot:1.37
+      image: mailcow/dovecot:1.38
       build: ./data/Dockerfiles/dovecot
       cap_add:
         - NET_BIND_SERVICE

From b2067cb5214bf719fba0fc7ec2a3345cb8808125 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 14:33:32 +0200
Subject: [PATCH 47/56] [SOGo] SOGoMaximumSyncWindowSize = 99

---
 data/conf/sogo/sogo.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/conf/sogo/sogo.conf b/data/conf/sogo/sogo.conf
index 23fd8240..0a345f94 100644
--- a/data/conf/sogo/sogo.conf
+++ b/data/conf/sogo/sogo.conf
@@ -45,7 +45,7 @@
     SOGoMaximumSyncInterval = 354;
 
     // 100 seems to break some Android clients
-    //SOGoMaximumSyncWindowSize = 100;
+    SOGoMaximumSyncWindowSize = 99;
     // This should do the trick for Outlook 2016
     SOGoMaximumSyncResponseSize = 2048;
 

From 2f18eb5ad00fdc662afd1e05eafa21a6f36a82c4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 14:34:00 +0200
Subject: [PATCH 48/56] [Nginx] Avoid php extensions, use rewrite

---
 data/conf/nginx/site.conf | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/data/conf/nginx/site.conf b/data/conf/nginx/site.conf
index 9ea4c385..840e253d 100644
--- a/data/conf/nginx/site.conf
+++ b/data/conf/nginx/site.conf
@@ -50,6 +50,18 @@ server {
   absolute_redirect off;
   root /web;
 
+  location / {
+    try_files $uri $uri/ @strip-ext;
+  }
+
+  location /edit {
+    rewrite ^/edit/(.*)/(.*) /edit.php?$1=$2;
+  }
+
+  location @strip-ext {
+    rewrite ^(.*)$ $1.php last;
+  }
+
   location ~ ^/api/v1/(.*)$ {
     try_files $uri $uri/ /json_api.php?query=$1;
   }

From f6b2a6aab27b6d1b2156004021435a9d806a6c21 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 14:34:34 +0200
Subject: [PATCH 49/56] [Postfix] Enable/create smtp_tls_policy_maps

---
 data/conf/postfix/main.cf | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/data/conf/postfix/main.cf b/data/conf/postfix/main.cf
index d3625d07..c5feeebb 100644
--- a/data/conf/postfix/main.cf
+++ b/data/conf/postfix/main.cf
@@ -41,6 +41,7 @@ postscreen_greet_wait = 3s
 postscreen_non_smtp_command_enable = no
 postscreen_pipelining_enable = no
 proxy_read_maps = proxy:mysql:/opt/postfix/conf/sql/mysql_virtual_sender_acl.cf,
+  proxy:mysql:/opt/postfix/conf/sql/mysql_tls_policy_override_maps.cf,
   proxy:mysql:/opt/postfix/conf/sql/mysql_sender_dependent_default_transport_maps.cf,
   proxy:mysql:/opt/postfix/conf/sql/mysql_sasl_passwd_maps.cf,
   proxy:mysql:/opt/postfix/conf/sql/mysql_tls_enforce_in_policy.cf,
@@ -127,3 +128,4 @@ smtp_sasl_auth_enable = yes
 smtp_sasl_password_maps = proxy:mysql:/opt/postfix/conf/sql/mysql_sasl_passwd_maps.cf
 smtp_sasl_security_options = 
 smtp_sasl_mechanism_filter = plain, login
+smtp_tls_policy_maps=proxy:mysql:/opt/postfix/conf/sql/mysql_tls_policy_override_maps.cf

From c6aa3610f08804f4e95802546d55773fa94b2809 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 14:34:53 +0200
Subject: [PATCH 50/56] [Postfix] Enable/create smtp_tls_policy_maps

---
 data/Dockerfiles/postfix/postfix.sh | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/data/Dockerfiles/postfix/postfix.sh b/data/Dockerfiles/postfix/postfix.sh
index 6f839725..628322d8 100755
--- a/data/Dockerfiles/postfix/postfix.sh
+++ b/data/Dockerfiles/postfix/postfix.sh
@@ -29,6 +29,14 @@ query = SELECT DISTINCT
   END AS result;
 EOF
 
+cat <<EOF > /opt/postfix/conf/sql/mysql_tls_policy_override_maps.cf
+user = ${DBUSER}
+password = ${DBPASS}
+hosts = unix:/var/run/mysqld/mysqld.sock
+dbname = ${DBNAME}
+query = SELECT CONCAT(policy, ' ', parameters) AS tls_policy FROM tls_policy_override WHERE active = '1' AND dest = '%s'
+EOF
+
 cat <<EOF > /opt/postfix/conf/sql/mysql_tls_enforce_in_policy.cf
 user = ${DBUSER}
 password = ${DBPASS}

From f5799faf6d283b8479484ac3b789117e68816360 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 14:38:12 +0200
Subject: [PATCH 51/56] [Web] Feature: TLS policy maps [Web] Avoid php
 extensions in links [Web] Minor fixes

---
 data/web/edit.php                             |  65 ++++-
 .../inc/functions.address_rewriting.inc.php   | 198 +++++--------
 .../web/inc/functions.tls_policy_maps.inc.php | 157 +++++++++++
 data/web/inc/header.inc.php                   | 266 +++++++++---------
 data/web/inc/init_db.inc.php                  |  22 +-
 data/web/inc/prerequisites.inc.php            |   1 +
 data/web/index.php                            |   6 +-
 data/web/js/admin.js                          |   4 +-
 data/web/js/mailbox.js                        |  91 +++++-
 data/web/js/user.js                           |   2 +-
 data/web/json_api.php                         |  34 +++
 data/web/lang/lang.de.php                     |  27 +-
 data/web/lang/lang.en.php                     |  22 +-
 data/web/mailbox.php                          |  29 ++
 data/web/modals/mailbox.php                   |  56 ++++
 data/web/user.php                             |   2 +-
 16 files changed, 690 insertions(+), 292 deletions(-)
 create mode 100644 data/web/inc/functions.tls_policy_maps.inc.php

diff --git a/data/web/edit.php b/data/web/edit.php
index a2eb4fb7..d97b0ffa 100644
--- a/data/web/edit.php
+++ b/data/web/edit.php
@@ -731,7 +731,9 @@ if (isset($_SESSION['mailcow_cc_role'])) {
         <?php
         }
     }
-    elseif (isset($_GET['recipient_map']) && !empty($_GET["recipient_map"])) {
+    elseif (isset($_GET['recipient_map']) &&
+      !empty($_GET["recipient_map"]) &&
+      $_SESSION['mailcow_cc_role'] == "admin") {
         $map = intval($_GET["recipient_map"]);
         $result = recipient_map('details', $map);
         if (substr($result['recipient_map_old'], 0, 1) == '@') {
@@ -778,6 +780,67 @@ if (isset($_SESSION['mailcow_cc_role'])) {
         <?php
         }
     }
+    elseif (isset($_GET['tls_policy_map']) &&
+      !empty($_GET["tls_policy_map"]) &&
+      $_SESSION['mailcow_cc_role'] == "admin") {
+        $map = intval($_GET["tls_policy_map"]);
+        $result = tls_policy_maps('details', $map);
+        if (!empty($result)) {
+          ?>
+          <h4><?=$lang['mailbox']['tls_policy_maps']?>: <?=$result['dest'];?></h4>
+          <br />
+          <form class="form-horizontal" data-id="edit_tls_policy_maps" role="form" method="post">
+            <input type="hidden" value="0" name="active">
+            <div class="form-group">
+              <label class="control-label col-sm-2" for="dest"><?=$lang['mailbox']['tls_map_dest'];?></label>
+              <div class="col-sm-10">
+                <input value="<?=$result['dest'];?>" type="text" class="form-control" name="dest" id="dest">
+                <small><?=$lang['mailbox']['tls_map_dest_info'];?></small>
+              </div>
+            </div>
+            <div class="form-group">
+              <label class="control-label col-sm-2" for="policy"><?=$lang['mailbox']['tls_map_policy'];?></label>
+              <div class="col-sm-10">
+              <select class="full-width-select" name="policy" required>
+                <option value="none" <?=($result['policy'] != 'none') ?: 'selected';?>>none</option>
+                <option value="may" <?=($result['policy'] != 'may') ?: 'selected';?>>may</option>
+                <option value="encrypt" <?=($result['policy'] != 'encrypt') ?: 'selected';?>>encrypt</option>
+                <option value="dane" <?=($result['policy'] != 'dane') ?: 'selected';?>>dane-only</option>
+                <option value="dane-only" <?=($result['policy'] != 'dane-only') ?: 'selected';?>>dane-only</option>
+                <option value="fingerprint" <?=($result['policy'] != 'fingerprint') ?: 'selected';?>>fingerprint</option>
+                <option value="verify" <?=($result['policy'] != 'verify') ?: 'selected';?>>verify</option>
+                <option value="secure" <?=($result['policy'] != 'secure') ?: 'selected';?>>secure</option>
+              </select>
+              </div>
+            </div>
+            <div class="form-group">
+              <label class="control-label col-sm-2" for="parameters"><?=$lang['mailbox']['tls_map_parameters'];?></label>
+              <div class="col-sm-10">
+                <input value="<?=$result['parameters'];?>" type="text" class="form-control" name="parameters" id="parameters">
+                <small><?=$lang['mailbox']['tls_map_parameters_info'];?></small>
+              </div>
+            </div>
+            <div class="form-group">
+              <div class="col-sm-offset-2 col-sm-10">
+                <div class="checkbox">
+                <label><input type="checkbox" value="1" name="active" <?php if (isset($result['active_int']) && $result['active_int']=="1") { echo "checked"; }; ?>> <?=$lang['edit']['active'];?></label>
+                </div>
+              </div>
+            </div>
+            <div class="form-group">
+              <div class="col-sm-offset-2 col-sm-10">
+                <button class="btn btn-success" data-action="edit_selected" data-id="edit_tls_policy_maps" data-item="<?=$map;?>" data-api-url='edit/tls-policy-map' data-api-attr='{}' href="#"><?=$lang['edit']['save'];?></button>
+              </div>
+            </div>
+          </form>
+        <?php
+        }
+        else {
+        ?>
+          <div class="alert alert-info" role="alert"><?=$lang['info']['no_action'];?></div>
+        <?php
+        }
+    }
   }
   if ($_SESSION['mailcow_cc_role'] == "admin"  || $_SESSION['mailcow_cc_role'] == "domainadmin" || $_SESSION['mailcow_cc_role'] == "user") {
     if (isset($_GET['syncjob']) &&
diff --git a/data/web/inc/functions.address_rewriting.inc.php b/data/web/inc/functions.address_rewriting.inc.php
index 994429f2..bbf36c42 100644
--- a/data/web/inc/functions.address_rewriting.inc.php
+++ b/data/web/inc/functions.address_rewriting.inc.php
@@ -87,25 +87,15 @@ function bcc($_action, $_data = null, $attr = null) {
         );
         return false;
       }
-      try {
-        $stmt = $pdo->prepare("INSERT INTO `bcc_maps` (`local_dest`, `bcc_dest`, `domain`, `active`, `type`) VALUES
-          (:local_dest, :bcc_dest, :domain, :active, :type)");
-        $stmt->execute(array(
-          ':local_dest' => $local_dest_sane,
-          ':bcc_dest' => $bcc_dest,
-          ':domain' => $domain,
-          ':active' => $active,
-          ':type' => $type
-        ));
-      }
-      catch (PDOException $e) {
-        $_SESSION['return'][] = array(
-          'type' => 'danger',
-          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-          'msg' => array('mysql_error', $e)
-        );
-        return false;
-      }
+      $stmt = $pdo->prepare("INSERT INTO `bcc_maps` (`local_dest`, `bcc_dest`, `domain`, `active`, `type`) VALUES
+        (:local_dest, :bcc_dest, :domain, :active, :type)");
+      $stmt->execute(array(
+        ':local_dest' => $local_dest_sane,
+        ':bcc_dest' => $bcc_dest,
+        ':domain' => $domain,
+        ':active' => $active,
+        ':type' => $type
+      ));
       $_SESSION['return'][] = array(
         'type' => 'success',
         'log' => array(__FUNCTION__, $_action, $_data, $_attr),
@@ -155,37 +145,27 @@ function bcc($_action, $_data = null, $attr = null) {
           );
           continue;
         }
-        try {
-          $stmt = $pdo->prepare("SELECT `id` FROM `bcc_maps`
-            WHERE `local_dest` = :local_dest AND `type` = :type");
-          $stmt->execute(array(':local_dest' => $local_dest, ':type' => $type));
-          $id_now = $stmt->fetch(PDO::FETCH_ASSOC)['id'];
+        $stmt = $pdo->prepare("SELECT `id` FROM `bcc_maps`
+          WHERE `local_dest` = :local_dest AND `type` = :type");
+        $stmt->execute(array(':local_dest' => $local_dest, ':type' => $type));
+        $id_now = $stmt->fetch(PDO::FETCH_ASSOC)['id'];
 
-          if (isset($id_now) && $id_now != $id) {
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-              'msg' => array('bcc_exists', htmlspecialchars($local_dest), $type)
-            );
-            continue;
-          }
-
-          $stmt = $pdo->prepare("UPDATE `bcc_maps` SET `bcc_dest` = :bcc_dest, `active` = :active, `type` = :type WHERE `id`= :id");
-          $stmt->execute(array(
-            ':bcc_dest' => $bcc_dest,
-            ':active' => $active,
-            ':type' => $type,
-            ':id' => $id
-          ));
-        }
-        catch (PDOException $e) {
+        if (isset($id_now) && $id_now != $id) {
           $_SESSION['return'][] = array(
             'type' => 'danger',
             'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-            'msg' => array('mysql_error', $e)
+            'msg' => array('bcc_exists', htmlspecialchars($local_dest), $type)
           );
           continue;
         }
+
+        $stmt = $pdo->prepare("UPDATE `bcc_maps` SET `bcc_dest` = :bcc_dest, `active` = :active, `type` = :type WHERE `id`= :id");
+        $stmt->execute(array(
+          ':bcc_dest' => $bcc_dest,
+          ':active' => $active,
+          ':type' => $type,
+          ':id' => $id
+        ));
         $_SESSION['return'][] = array(
           'type' => 'success',
           'log' => array(__FUNCTION__, $_action, $_data, $_attr),
@@ -246,29 +226,20 @@ function bcc($_action, $_data = null, $attr = null) {
         if (!is_numeric($id)) {
           return false;
         }
-        try {
-          $stmt = $pdo->prepare("SELECT `domain` FROM `bcc_maps` WHERE id = :id");
-          $stmt->execute(array(':id' => $id));
-          $domain = $stmt->fetch(PDO::FETCH_ASSOC)['domain'];
-          if (!hasDomainAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $domain)) {
-            $_SESSION['return'][] = array(
-              'type' => 'danger',
-              'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-              'msg' => 'access_denied'
-            );
-            continue;
-          }
-          $stmt = $pdo->prepare("DELETE FROM `bcc_maps` WHERE `id`= :id");
-          $stmt->execute(array(':id' => $id));
-        }
-        catch (PDOException $e) {
+        $stmt = $pdo->prepare("SELECT `domain` FROM `bcc_maps` WHERE id = :id");
+        $stmt->execute(array(':id' => $id));
+        $domain = $stmt->fetch(PDO::FETCH_ASSOC)['domain'];
+        if (!hasDomainAccess($_SESSION['mailcow_cc_username'], $_SESSION['mailcow_cc_role'], $domain)) {
           $_SESSION['return'][] = array(
             'type' => 'danger',
             'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-            'msg' => array('mysql_error', $e)
+            'msg' => 'access_denied'
           );
           continue;
         }
+        $stmt = $pdo->prepare("DELETE FROM `bcc_maps` WHERE `id`= :id");
+        $stmt->execute(array(':id' => $id));
+
         $_SESSION['return'][] = array(
           'type' => 'success',
           'log' => array(__FUNCTION__, $_action, $_data, $_attr),
@@ -317,33 +288,22 @@ function recipient_map($_action, $_data = null, $attr = null) {
       }
       $rmaps = recipient_map('get');
       foreach ($rmaps as $rmap) {
-        $old_dests_existing[] = recipient_map('details', $rmap)['recipient_map_old'];
-      }
-      if (in_array($old_dest_sane, $old_dests_existing)) {
-        $_SESSION['return'][] = array(
-          'type' => 'danger',
-          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-          'msg' => array('recipient_map_entry_exists', htmlspecialchars($old_dest))
-        );
-        return false;
-      }
-      try {
-        $stmt = $pdo->prepare("INSERT INTO `recipient_maps` (`old_dest`, `new_dest`, `active`) VALUES
-          (:old_dest, :new_dest, :active)");
-        $stmt->execute(array(
-          ':old_dest' => $old_dest_sane,
-          ':new_dest' => $new_dest,
-          ':active' => $active
-        ));
-      }
-      catch (PDOException $e) {
-        $_SESSION['return'][] = array(
-          'type' => 'danger',
-          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-          'msg' => array('mysql_error', $e)
-        );
-        return false;
+        if (recipient_map('details', $rmap)['recipient_map_old'] == $old_dest_sane) {
+          $_SESSION['return'][] = array(
+            'type' => 'danger',
+            'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+            'msg' => array('recipient_map_entry_exists', htmlspecialchars($old_dest_sane))
+          );
+          return false;
+        }
       }
+      $stmt = $pdo->prepare("INSERT INTO `recipient_maps` (`old_dest`, `new_dest`, `active`) VALUES
+        (:old_dest, :new_dest, :active)");
+      $stmt->execute(array(
+        ':old_dest' => $old_dest_sane,
+        ':new_dest' => $new_dest,
+        ':active' => $active
+      ));
       $_SESSION['return'][] = array(
         'type' => 'success',
         'log' => array(__FUNCTION__, $_action, $_data, $_attr),
@@ -384,7 +344,6 @@ function recipient_map($_action, $_data = null, $attr = null) {
           );
           continue;
         }
-        $active = intval($_data['active']);
         if (!filter_var($new_dest, FILTER_VALIDATE_EMAIL)) {
           $_SESSION['return'][] = array(
             'type' => 'danger',
@@ -395,38 +354,27 @@ function recipient_map($_action, $_data = null, $attr = null) {
         }
         $rmaps = recipient_map('get');
         foreach ($rmaps as $rmap) {
-          $old_dests_existing[] = recipient_map('details', $rmap)['recipient_map_old'];
-        }
-        if (in_array($old_dest_sane, $old_dests_existing) &&
-          recipient_map('details', $id)['recipient_map_old'] != $old_dest_sane) {
+          if ($rmap == $id) { continue; }
+          if (recipient_map('details', $rmap)['recipient_map_old'] == $old_dest_sane) {
             $_SESSION['return'][] = array(
               'type' => 'danger',
               'log' => array(__FUNCTION__, $_action, $_data, $_attr),
               'msg' => array('recipient_map_entry_exists', htmlspecialchars($old_dest_sane))
             );
-            continue;
-        }
-        try {
-          $stmt = $pdo->prepare("UPDATE `recipient_maps` SET
-            `old_dest` = :old_dest,
-            `new_dest` = :new_dest,
-            `active` = :active
-              WHERE `id`= :id");
-          $stmt->execute(array(
-            ':old_dest' => $old_dest_sane,
-            ':new_dest' => $new_dest,
-            ':active' => $active,
-            ':id' => $id
-          ));
-        }
-        catch (PDOException $e) {
-          $_SESSION['return'][] = array(
-            'type' => 'danger',
-            'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-            'msg' => array('mysql_error', $e)
-          );
-          return false;
+            return false;
+          }
         }
+        $stmt = $pdo->prepare("UPDATE `recipient_maps` SET
+          `old_dest` = :old_dest,
+          `new_dest` = :new_dest,
+          `active` = :active
+            WHERE `id`= :id");
+        $stmt->execute(array(
+          ':old_dest' => $old_dest_sane,
+          ':new_dest' => $new_dest,
+          ':active' => $active,
+          ':id' => $id
+        ));
         $_SESSION['return'][] = array(
           'type' => 'success',
           'log' => array(__FUNCTION__, $_action, $_data, $_attr),
@@ -471,24 +419,14 @@ function recipient_map($_action, $_data = null, $attr = null) {
         if (!is_numeric($id)) {
           return false;
         }
-        try {
-          $stmt = $pdo->prepare("DELETE FROM `recipient_maps` WHERE `id`= :id");
-          $stmt->execute(array(':id' => $id));
-        }
-        catch (PDOException $e) {
-          $_SESSION['return'][] = array(
-            'type' => 'danger',
-            'log' => array(__FUNCTION__, $_action, $_data, $_attr),
-            'msg' => array('mysql_error', $e)
-          );
-          return false;
-        }
+        $stmt = $pdo->prepare("DELETE FROM `recipient_maps` WHERE `id`= :id");
+        $stmt->execute(array(':id' => $id));
+        $_SESSION['return'][] = array(
+          'type' => 'success',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => array('recipient_map_entry_deleted', htmlspecialchars($id))
+        );
       }
-      $_SESSION['return'][] = array(
-        'type' => 'success',
-        'msg' => array('recipient_map_entry_deleted', htmlspecialchars($old_dest))
-      );
-      return true;
     break;
   }
 }
diff --git a/data/web/inc/functions.tls_policy_maps.inc.php b/data/web/inc/functions.tls_policy_maps.inc.php
new file mode 100644
index 00000000..6581b60d
--- /dev/null
+++ b/data/web/inc/functions.tls_policy_maps.inc.php
@@ -0,0 +1,157 @@
+<?php
+function tls_policy_maps($_action, $_data = null, $attr = null) {
+	global $pdo;
+	global $lang;
+  if ($_SESSION['mailcow_cc_role'] != "admin") {
+    return false;
+  }
+  switch ($_action) {
+    case 'add':
+      $dest = idn_to_ascii(trim($_data['dest']));
+      $policy = strtolower(trim($_data['policy']));
+      $parameters = (isset($_data['parameters']) && !empty($_data['parameters'])) ? $_data['parameters'] : '';
+      if (!empty($parameters)) {
+        foreach (explode(' ', $parameters) as $parameter) {
+          if (!preg_match('/(.+)\=(.+)/i', $parameter)) {
+            $_SESSION['return'][] = array(
+              'type' => 'danger',
+              'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+              'msg' => 'tls_policy_map_parameter_invalid'
+            );
+            return false;
+          }
+        }
+      }
+      $active = intval($_data['active']);
+      $tls_policy_maps = tls_policy_maps('get');
+      foreach ($tls_policy_maps as $tls_policy_map) {
+        if (tls_policy_maps('details', $tls_policy_map)['dest'] == $dest) {
+          $_SESSION['return'][] = array(
+            'type' => 'danger',
+            'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+            'msg' => array('tls_policy_map_entry_exists', htmlspecialchars($dest))
+          );
+          return false;
+        }
+      }
+      $stmt = $pdo->prepare("INSERT INTO `tls_policy_override` (`dest`, `policy`, `parameters`, `active`) VALUES
+        (:dest, :policy, :parameters, :active)");
+      $stmt->execute(array(
+        ':dest' => $dest,
+        ':policy' => $policy,
+        ':parameters' => $parameters,
+        ':active' => $active
+      ));
+      $_SESSION['return'][] = array(
+        'type' => 'success',
+        'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+        'msg' => array('tls_policy_map_entry_saved', htmlspecialchars($dest))
+      );
+    break;
+    case 'edit':
+      $ids = (array)$_data['id'];
+      foreach ($ids as $id) {
+        $is_now = tls_policy_maps('details', $id);
+        if (!empty($is_now)) {
+          $active = (isset($_data['active'])) ? intval($_data['active']) : $is_now['active_int'];
+          $dest = (!empty($_data['dest'])) ? $_data['dest'] : $is_now['dest'];
+          $policy = (!empty($_data['policy'])) ? $_data['policy'] : $is_now['policy'];
+          $parameters = (isset($_data['parameters'])) ? $_data['parameters'] : $is_now['parameters'];
+        }
+        else {
+          $_SESSION['return'][] = array(
+            'type' => 'danger',
+            'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+            'msg' => 'access_denied'
+          );
+          continue;
+        }
+        if (!empty($parameters)) {
+          foreach (explode(' ', $parameters) as $parameter) {
+            if (!preg_match('/(.+)\=(.+)/i', $parameter)) {
+              $_SESSION['return'][] = array(
+                'type' => 'danger',
+                'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+                'msg' => 'tls_policy_map_parameter_invalid'
+              );
+              return false;
+            }
+          }
+        }
+        $tls_policy_maps = tls_policy_maps('get');
+        foreach ($tls_policy_maps as $tls_policy_map) {
+          if ($tls_policy_map == $id) { continue; }
+          if (tls_policy_maps('details', $tls_policy_map)['dest'] == $dest) {
+            $_SESSION['return'][] = array(
+              'type' => 'danger',
+              'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+              'msg' => array('recipient_map_entry_exists', htmlspecialchars($dest))
+            );
+            return false;
+          }
+        }
+        $stmt = $pdo->prepare("UPDATE `tls_policy_override` SET
+          `dest` = :dest,
+          `policy` = :policy,
+          `parameters` = :parameters,
+          `active` = :active
+            WHERE `id`= :id");
+        $stmt->execute(array(
+          ':dest' => $dest,
+          ':policy' => $policy,
+          ':parameters' => $parameters,
+          ':active' => $active,
+          ':id' => $id
+        ));
+        $_SESSION['return'][] = array(
+          'type' => 'success',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => array('tls_policy_map_entry_saved', htmlspecialchars($dest))
+        );
+      }
+    break;
+    case 'details':
+      $mapdata = array();
+      $id = intval($_data);
+      $stmt = $pdo->prepare("SELECT `id`,
+        `dest`,
+        `policy`,
+        `parameters`,
+        `active` AS `active_int`,
+        CASE `active` WHEN 1 THEN '".$lang['mailbox']['yes']."' ELSE '".$lang['mailbox']['no']."' END AS `active`,
+        `created`,
+        `modified` FROM `tls_policy_override`
+          WHERE `id` = :id");
+      $stmt->execute(array(':id' => $id));
+      $mapdata = $stmt->fetch(PDO::FETCH_ASSOC);
+      return $mapdata;
+    break;
+    case 'get':
+      $mapdata = array();
+      $all_items = array();
+      $id = intval($_data);
+      $stmt = $pdo->query("SELECT `id` FROM `tls_policy_override`");
+      $all_items = $stmt->fetchAll(PDO::FETCH_ASSOC);
+      foreach ($all_items as $i) {
+        $mapdata[] = $i['id'];
+      }
+      $all_items = null;
+      return $mapdata;
+    break;
+    case 'delete':
+      $ids = (array)$_data['id'];
+      foreach ($ids as $id) {
+        if (!is_numeric($id)) {
+          return false;
+        }
+        $stmt = $pdo->prepare("DELETE FROM `tls_policy_override` WHERE `id`= :id");
+        $stmt->execute(array(':id' => $id));
+        $_SESSION['return'][] = array(
+          'type' => 'success',
+          'log' => array(__FUNCTION__, $_action, $_data, $_attr),
+          'msg' => array('tls_policy_map_entry_deleted', htmlspecialchars($id))
+        );
+      }
+    break;
+  }
+}
diff --git a/data/web/inc/header.inc.php b/data/web/inc/header.inc.php
index 46384b7b..15dc4f02 100644
--- a/data/web/inc/header.inc.php
+++ b/data/web/inc/header.inc.php
@@ -1,145 +1,145 @@
 <!DOCTYPE html>
 <html lang="<?= $_SESSION['mailcow_locale'] ?>">
 <head>
-<meta charset="utf-8">
-<meta http-equiv="X-UA-Compatible" content="IE=edge">
-<meta name="viewport" content="width=device-width, initial-scale=1">
-<meta name="theme-color" content="#F5D76E"/>
-<meta http-equiv="Referrer-Policy" content="same-origin">
-<title><?=$UI_TEXTS['title_name'];?></title>
-<!--[if lt IE 9]>
-  <script src="/js/html5shiv.min.js"></script>
-  <script src="/js/respond.min.js"></script>
-<![endif]-->
-<script src="/js/jquery-1.12.4.min.js"></script>
-<?php if (strtolower(trim($DEFAULT_THEME)) != "lumen"): ?>
-<link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/bootswatch/3.3.7/<?= strtolower(trim($DEFAULT_THEME)); ?>/bootstrap.min.css">
-<?php else: ?>
-<link rel="stylesheet" href="/css/bootstrap.min.css">
-<?php endif; ?>
-<link rel="stylesheet" href="/css/breakpoint.min.css">
-<link rel="stylesheet" href="/css/bootstrap-select.min.css">
-<link rel="stylesheet" href="/css/bootstrap-slider.min.css">
-<link rel="stylesheet" href="/css/bootstrap-switch.min.css">
-<link rel="stylesheet" href="/css/footable.bootstrap.min.css">
-<link rel="stylesheet" href="/inc/languages.min.css">
-<link rel="stylesheet" href="/css/mailcow.css">
-<link rel="stylesheet" href="/css/animate.min.css">
-<link rel="stylesheet" href="/css/numberedtextarea.min.css">
-<link rel="stylesheet" href="/css/jquery.jqplot.min.css">
-<?= (preg_match("/mailbox.php/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/mailbox.css">' : null; ?>
-<?= (preg_match("/admin.php/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/admin.css">' : null; ?>
-<?= (preg_match("/user.php/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/user.css">' : null; ?>
-<?= (preg_match("/edit.php/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/edit.css">' : null; ?>
-<?= (preg_match("/quarantine.php/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/quarantine.css">' : null; ?>
-<?= (preg_match("/debug.php/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/debug.css">' : null; ?>
-<link rel="shortcut icon" href="/favicon.png" type="image/png">
-<link rel="icon" href="/favicon.png" type="image/png">
+  <meta charset="utf-8">
+  <meta http-equiv="X-UA-Compatible" content="IE=edge">
+  <meta name="viewport" content="width=device-width, initial-scale=1">
+  <meta name="theme-color" content="#F5D76E"/>
+  <meta http-equiv="Referrer-Policy" content="same-origin">
+  <title><?=$UI_TEXTS['title_name'];?></title>
+  <!--[if lt IE 9]>
+    <script src="/js/html5shiv.min.js"></script>
+    <script src="/js/respond.min.js"></script>
+  <![endif]-->
+  <script src="/js/jquery-1.12.4.min.js"></script>
+  <?php if (strtolower(trim($DEFAULT_THEME)) != "lumen"): ?>
+  <link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/bootswatch/3.3.7/<?= strtolower(trim($DEFAULT_THEME)); ?>/bootstrap.min.css">
+  <?php else: ?>
+  <link rel="stylesheet" href="/css/bootstrap.min.css">
+  <?php endif; ?>
+  <link rel="stylesheet" href="/css/breakpoint.min.css">
+  <link rel="stylesheet" href="/css/bootstrap-select.min.css">
+  <link rel="stylesheet" href="/css/bootstrap-slider.min.css">
+  <link rel="stylesheet" href="/css/bootstrap-switch.min.css">
+  <link rel="stylesheet" href="/css/footable.bootstrap.min.css">
+  <link rel="stylesheet" href="/inc/languages.min.css">
+  <link rel="stylesheet" href="/css/mailcow.css">
+  <link rel="stylesheet" href="/css/animate.min.css">
+  <link rel="stylesheet" href="/css/numberedtextarea.min.css">
+  <link rel="stylesheet" href="/css/jquery.jqplot.min.css">
+  <?= (preg_match("/mailbox/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/mailbox.css">' : null; ?>
+  <?= (preg_match("/admin/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/admin.css">' : null; ?>
+  <?= (preg_match("/user/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/user.css">' : null; ?>
+  <?= (preg_match("/edit/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/edit.css">' : null; ?>
+  <?= (preg_match("/quarantine/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/quarantine.css">' : null; ?>
+  <?= (preg_match("/debug/i", $_SERVER['REQUEST_URI'])) ? '<link rel="stylesheet" href="/css/debug.css">' : null; ?>
+  <link rel="shortcut icon" href="/favicon.png" type="image/png">
+  <link rel="icon" href="/favicon.png" type="image/png">
 </head>
 <body id="top">
-<div class="overlay"></div>
-<nav class="navbar navbar-default navbar-fixed-top" role="navigation">
-  <div class="container-fluid">
-    <div class="navbar-header">
-      <button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#navbar" aria-expanded="false" aria-controls="navbar">
-        <span class="icon-bar"></span>
-        <span class="icon-bar"></span>
-        <span class="icon-bar"></span>
-      </button>
-      <a class="navbar-brand" href="/"><img alt="mailcow-logo" src="<?=($main_logo = customize('get', 'main_logo')) ? $main_logo : '/img/cow_mailcow.svg';?>"></a>
-    </div>
-    <div id="navbar" class="navbar-collapse collapse">
-      <ul class="nav navbar-nav navbar-right">
-        <?php
-        if (isset($_SESSION['mailcow_locale'])) {
-        ?>
-        <li class="dropdown<?=(isset($_SESSION['mailcow_locale']) && count($AVAILABLE_LANGUAGES) === 1) ? ' lang-link-disabled"' : '' ?>">
-          <a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-expanded="false"><span class="lang-sm lang-lbl" lang="<?= $_SESSION['mailcow_locale']; ?>"></span><span class="caret"></span></a>
-          <ul class="dropdown-menu" role="menu">
-            <?php
-            foreach ($AVAILABLE_LANGUAGES as $language) {
-            ?>
-            <li<?= ($_SESSION['mailcow_locale'] == $language) ? ' class="active"' : ''; ?>><a href="?<?= http_build_query(array_merge($_GET, array('lang' => $language))); ?>"><span class="lang-xs lang-lbl-full" lang="<?= $language; ?>"></span></a></li>
-            <?php
-            }
-            ?>
-          </ul>
-        </li>
-        <?php
-        }
-        if (isset($_SESSION['mailcow_cc_role'])) {
-        ?>
-        <li class="dropdown">
-          <a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-expanded="false"><?= $lang['header']['mailcow_settings']; ?> <span class="caret"></span></a>
-          <ul class="dropdown-menu" role="menu">
-            <?php
-            if (isset($_SESSION['mailcow_cc_role'])) {
-              if ($_SESSION['mailcow_cc_role'] == 'admin') {
-              ?>
-                <li<?= (preg_match("/admin/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/admin.php"><?= $lang['header']['administration']; ?></a></li>
-                <li<?= (preg_match("/debug/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/debug.php"><?= $lang['header']['debug']; ?></a></li>
-              <?php
-              }
-              if ($_SESSION['mailcow_cc_role'] == 'admin' || $_SESSION['mailcow_cc_role'] == 'domainadmin') {
-              ?>
-                <li<?= (preg_match("/mailbox/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/mailbox.php"><?= $lang['header']['mailboxes']; ?></a></li>
-              <?php
-              }
-              if ($_SESSION['mailcow_cc_role'] != 'admin') {
-              ?>
-                <li<?= (preg_match("/user/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/user.php"><?= $lang['header']['user_settings']; ?></a></li>
-              <?php
-              }
-            }
-            ?>
-          </ul>
-        </li>
-        <?php
-        if (isset($_SESSION['mailcow_cc_role'])) {
-        ?>
-        <li<?= (preg_match("/quarantine/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/quarantine.php"><span class="glyphicon glyphicon-briefcase"></span> <?= $lang['header']['quarantine']; ?></a></li>
-        <?php
-        }
-        if ($_SESSION['mailcow_cc_role'] == 'admin') {
-        ?>
-        <li><a href data-toggle="modal" data-container="sogo-mailcow" data-target="#RestartContainer"><span class="glyphicon glyphicon-refresh"></span> <?= $lang['header']['restart_sogo']; ?></a></li>
-        <?php
-        }
-        ?>
-        <li class="dropdown">
-          <a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-expanded="false"><span class="glyphicon glyphicon-link"></span> Apps <span class="caret"></span></a>
-          <ul class="dropdown-menu" role="menu">
+  <div class="overlay"></div>
+  <nav class="navbar navbar-default navbar-fixed-top" role="navigation">
+    <div class="container-fluid">
+      <div class="navbar-header">
+        <button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#navbar" aria-expanded="false" aria-controls="navbar">
+          <span class="icon-bar"></span>
+          <span class="icon-bar"></span>
+          <span class="icon-bar"></span>
+        </button>
+        <a class="navbar-brand" href="/"><img alt="mailcow-logo" src="<?=($main_logo = customize('get', 'main_logo')) ? $main_logo : '/img/cow_mailcow.svg';?>"></a>
+      </div>
+      <div id="navbar" class="navbar-collapse collapse">
+        <ul class="nav navbar-nav navbar-right">
           <?php
-          foreach ($MAILCOW_APPS as $app):
+          if (isset($_SESSION['mailcow_locale'])) {
           ?>
-            <li title="<?= htmlspecialchars($app['description']); ?>"><a href="<?= htmlspecialchars($app['link']); ?>"><?= htmlspecialchars($app['name']); ?></a></li>
+          <li class="dropdown<?=(isset($_SESSION['mailcow_locale']) && count($AVAILABLE_LANGUAGES) === 1) ? ' lang-link-disabled"' : '' ?>">
+            <a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-expanded="false"><span class="lang-sm lang-lbl" lang="<?= $_SESSION['mailcow_locale']; ?>"></span><span class="caret"></span></a>
+            <ul class="dropdown-menu" role="menu">
+              <?php
+              foreach ($AVAILABLE_LANGUAGES as $language) {
+              ?>
+              <li<?= ($_SESSION['mailcow_locale'] == $language) ? ' class="active"' : ''; ?>><a href="?<?= http_build_query(array_merge($_GET, array('lang' => $language))); ?>"><span class="lang-xs lang-lbl-full" lang="<?= $language; ?>"></span></a></li>
+              <?php
+              }
+              ?>
+            </ul>
+          </li>
           <?php
-          endforeach;
-          $app_links = customize('get', 'app_links');
-          foreach ($app_links as $row) {
-            foreach ($row as $key => $val):
+          }
+          if (isset($_SESSION['mailcow_cc_role'])) {
           ?>
-            <li><a href="<?= htmlspecialchars($val); ?>"><?= htmlspecialchars($key); ?></a></li>
+          <li class="dropdown">
+            <a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-expanded="false"><?= $lang['header']['mailcow_settings']; ?> <span class="caret"></span></a>
+            <ul class="dropdown-menu" role="menu">
+              <?php
+              if (isset($_SESSION['mailcow_cc_role'])) {
+                if ($_SESSION['mailcow_cc_role'] == 'admin') {
+                ?>
+                  <li<?= (preg_match("/admin/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/admin"><?= $lang['header']['administration']; ?></a></li>
+                  <li<?= (preg_match("/debug/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/debug"><?= $lang['header']['debug']; ?></a></li>
+                <?php
+                }
+                if ($_SESSION['mailcow_cc_role'] == 'admin' || $_SESSION['mailcow_cc_role'] == 'domainadmin') {
+                ?>
+                  <li<?= (preg_match("/mailbox/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/mailbox"><?= $lang['header']['mailboxes']; ?></a></li>
+                <?php
+                }
+                if ($_SESSION['mailcow_cc_role'] != 'admin') {
+                ?>
+                  <li<?= (preg_match("/user/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/user"><?= $lang['header']['user_settings']; ?></a></li>
+                <?php
+                }
+              }
+              ?>
+            </ul>
+          </li>
+          <?php
+          if (isset($_SESSION['mailcow_cc_role'])) {
+          ?>
+          <li<?= (preg_match("/quarantine/i", $_SERVER['REQUEST_URI'])) ? ' class="active"' : ''; ?>><a href="/quarantine"><span class="glyphicon glyphicon-briefcase"></span> <?= $lang['header']['quarantine']; ?></a></li>
+          <?php
+          }
+          if ($_SESSION['mailcow_cc_role'] == 'admin') {
+          ?>
+          <li><a href data-toggle="modal" data-container="sogo-mailcow" data-target="#RestartContainer"><span class="glyphicon glyphicon-refresh"></span> <?= $lang['header']['restart_sogo']; ?></a></li>
           <?php
-            endforeach;
           }
           ?>
-          </ul>
-        </li>
-        <?php
-        }
-        if (!isset($_SESSION['dual-login']) && isset($_SESSION['mailcow_cc_username'])):
-        ?>
-          <li class="logged-in-as"><a href="#" onclick="logout.submit()"><b class="username-lia"><?= htmlspecialchars($_SESSION['mailcow_cc_username']); ?></b> <span class="glyphicon glyphicon-log-out"></span></a></li>
-        <?php
-        elseif (isset($_SESSION['dual-login'])):
-        ?>
-          <li class="logged-in-as"><a href="#" onclick="logout.submit()"><b class="username-lia"><?= htmlspecialchars($_SESSION['mailcow_cc_username']); ?> <span class="text-info">(<?= htmlspecialchars($_SESSION['dual-login']['username']); ?>)</span> </b><span class="glyphicon glyphicon-log-out"></span></a></li>
-        <?php
-        endif;
-        ?>
-      </ul>
-    </div><!--/.nav-collapse -->
-  </div><!--/.container-fluid -->
-</nav>
-<form action="/" method="post" id="logout"><input type="hidden" name="logout"></form>
+          <li class="dropdown">
+            <a href="#" class="dropdown-toggle" data-toggle="dropdown" role="button" aria-expanded="false"><span class="glyphicon glyphicon-link"></span> Apps <span class="caret"></span></a>
+            <ul class="dropdown-menu" role="menu">
+            <?php
+            foreach ($MAILCOW_APPS as $app):
+            ?>
+              <li title="<?= htmlspecialchars($app['description']); ?>"><a href="<?= htmlspecialchars($app['link']); ?>"><?= htmlspecialchars($app['name']); ?></a></li>
+            <?php
+            endforeach;
+            $app_links = customize('get', 'app_links');
+            foreach ($app_links as $row) {
+              foreach ($row as $key => $val):
+            ?>
+              <li><a href="<?= htmlspecialchars($val); ?>"><?= htmlspecialchars($key); ?></a></li>
+            <?php
+              endforeach;
+            }
+            ?>
+            </ul>
+          </li>
+          <?php
+          }
+          if (!isset($_SESSION['dual-login']) && isset($_SESSION['mailcow_cc_username'])):
+          ?>
+            <li class="logged-in-as"><a href="#" onclick="logout.submit()"><b class="username-lia"><?= htmlspecialchars($_SESSION['mailcow_cc_username']); ?></b> <span class="glyphicon glyphicon-log-out"></span></a></li>
+          <?php
+          elseif (isset($_SESSION['dual-login'])):
+          ?>
+            <li class="logged-in-as"><a href="#" onclick="logout.submit()"><b class="username-lia"><?= htmlspecialchars($_SESSION['mailcow_cc_username']); ?> <span class="text-info">(<?= htmlspecialchars($_SESSION['dual-login']['username']); ?>)</span> </b><span class="glyphicon glyphicon-log-out"></span></a></li>
+          <?php
+          endif;
+          ?>
+        </ul>
+      </div><!--/.nav-collapse -->
+    </div><!--/.container-fluid -->
+  </nav>
+  <form action="/" method="post" id="logout"><input type="hidden" name="logout"></form>
diff --git a/data/web/inc/init_db.inc.php b/data/web/inc/init_db.inc.php
index 571713be..8ece2544 100644
--- a/data/web/inc/init_db.inc.php
+++ b/data/web/inc/init_db.inc.php
@@ -3,7 +3,7 @@ function init_db_schema() {
   try {
     global $pdo;
 
-    $db_version = "21092018_1902";
+    $db_version = "03102018_1502";
 
     $stmt = $pdo->query("SHOW TABLES LIKE 'versions'");
     $num_results = count($stmt->fetchAll(PDO::FETCH_ASSOC));
@@ -192,6 +192,26 @@ function init_db_schema() {
         ),
         "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
       ),
+      "tls_policy_override" => array(
+        "cols" => array(
+          "id" => "INT NOT NULL AUTO_INCREMENT",
+          "dest" => "VARCHAR(255) NOT NULL",
+          "policy" => "ENUM('none', 'may', 'encrypt', 'dane', 'dane-only', 'fingerprint', 'verify', 'secure') NOT NULL",
+          "parameters" => "VARCHAR(255) DEFAULT ''",
+          "created" => "DATETIME(0) NOT NULL DEFAULT NOW(0)",
+          "modified" => "DATETIME ON UPDATE CURRENT_TIMESTAMP",
+          "active" => "TINYINT(1) NOT NULL DEFAULT '1'"
+        ),
+        "keys" => array(
+          "primary" => array(
+            "" => array("id")
+          ),
+          "unique" => array(
+            "dest" => array("dest")
+          ),
+        ),
+        "attr" => "ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 ROW_FORMAT=DYNAMIC"
+      ),
       "quarantine" => array(
         "cols" => array(
           "id" => "INT NOT NULL AUTO_INCREMENT",
diff --git a/data/web/inc/prerequisites.inc.php b/data/web/inc/prerequisites.inc.php
index 209c7184..4cb742af 100644
--- a/data/web/inc/prerequisites.inc.php
+++ b/data/web/inc/prerequisites.inc.php
@@ -146,6 +146,7 @@ require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.fwdhost.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.ratelimit.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.relayhost.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.rsettings.inc.php';
+require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.tls_policy_maps.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.fail2ban.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/functions.docker.inc.php';
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/init_db.inc.php';
diff --git a/data/web/index.php b/data/web/index.php
index 47339923..07fb4497 100644
--- a/data/web/index.php
+++ b/data/web/index.php
@@ -2,15 +2,15 @@
 require_once 'inc/prerequisites.inc.php';
 
 if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == 'admin') {
-  header('Location: /admin.php');
+  header('Location: /admin');
   exit();
 }
 elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == 'domainadmin') {
-  header('Location: /mailbox.php');
+  header('Location: /mailbox');
   exit();
 }
 elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == 'user') {
-  header('Location: /user.php');
+  header('Location: /user');
   exit();
 }
 require_once 'inc/header.inc.php';
diff --git a/data/web/js/admin.js b/data/web/js/admin.js
index 17df1cf0..d8f1e0ad 100644
--- a/data/web/js/admin.js
+++ b/data/web/js/admin.js
@@ -121,7 +121,7 @@ jQuery(function($){
       $.each(data, function (i, item) {
         item.action = '<div class="btn-group">' +
           '<a href="#" data-toggle="modal" id="miau" data-target="#testRelayhostModal" data-relayhost-id="' + encodeURI(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-stats"></span> Test</a>' +
-          '<a href="/edit.php?relayhost=' + encodeURI(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+          '<a href="/edit/relayhost/' + encodeURI(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
           '<a href="#" data-action="delete_selected" data-id="single-rlshost" data-api-url="delete/relayhost" data-item="' + encodeURI(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
           '</div>';
         item.chkbox = '<input type="checkbox" data-id="rlyhosts" name="multi_select" value="' + item.id + '" />';
@@ -144,7 +144,7 @@ jQuery(function($){
         item.selected_domains = escapeHtml(item.selected_domains.toString().replace(/,/g, " "));
         item.chkbox = '<input type="checkbox" data-id="domain_admins" name="multi_select" value="' + item.username + '" />';
         item.action = '<div class="btn-group">' +
-          '<a href="/edit.php?domainadmin=' + encodeURI(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+          '<a href="/edit/domainadmin/' + encodeURI(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
           '<a href="#" data-action="delete_selected" data-id="single-domain-admin" data-api-url="delete/domain-admin" data-item="' + encodeURI(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
           '<a href="/index.php?duallogin=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-success"><span class="glyphicon glyphicon-user"></span> Login</a>' +
           '</div>';
diff --git a/data/web/js/mailbox.js b/data/web/js/mailbox.js
index 836ec872..8894e995 100644
--- a/data/web/js/mailbox.js
+++ b/data/web/js/mailbox.js
@@ -300,11 +300,11 @@ jQuery(function($){
             item.chkbox = '<input type="checkbox" data-id="domain" name="multi_select" value="' + encodeURIComponent(item.domain_name) + '" />';
             item.action = '<div class="btn-group">';
             if (role == "admin") {
-              item.action += '<a href="/edit.php?domain=' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              item.action += '<a href="/edit/domain/' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
                 '<a href="#" data-action="delete_selected" data-id="single-domain" data-api-url="delete/domain" data-item="' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>';
             }
             else {
-              item.action += '<a href="/edit.php?domain=' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>';
+              item.action += '<a href="/edit/domain/' + encodeURIComponent(item.domain_name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>';
             }
             item.action += '<a href="#dnsInfoModal" class="btn btn-xs btn-info" data-toggle="modal" data-domain="' + encodeURIComponent(item.domain_name) + '"><span class="glyphicon glyphicon-question-sign"></span> DNS</a></div>';
           });
@@ -353,6 +353,8 @@ jQuery(function($){
         },
         },
         {"name":"spam_aliases","filterable": false,"title":lang.spam_aliases,"breakpoints":"xs sm md"},
+        {"name":"tls_enforce_in","filterable": false,"title":lang.tls_enforce_in,"breakpoints":"all"},
+        {"name":"tls_enforce_out","filterable": false,"title":lang.tls_enforce_out,"breakpoints":"all"},
         {"name":"in_use","filterable": false,"type":"html","title":lang.in_use,"sortValue": function(value){
           return Number($(value).find(".progress-bar").attr('aria-valuenow'));
         },
@@ -382,16 +384,18 @@ jQuery(function($){
               }).join('/1');
             }
             item.chkbox = '<input type="checkbox" data-id="mailbox" name="multi_select" value="' + encodeURIComponent(item.username) + '" />';
+            item.tls_enforce_in = '<span class="text-' + (item.attributes.tls_enforce_in == 1 ? 'success' : 'danger') + ' glyphicon glyphicon-lock"></span>';
+            item.tls_enforce_out = '<span class="text-' + (item.attributes.tls_enforce_out == 1 ? 'success' : 'danger') + ' glyphicon glyphicon-lock"></span>';
             if (acl_data.login_as === 1) {
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?mailbox=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/mailbox/' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '<a href="/index.php?duallogin=' + encodeURIComponent(item.username) + '" class="login_as btn btn-xs btn-success"><span class="glyphicon glyphicon-user"></span> Login</a>' +
               '</div>';
             }
             else {
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?mailbox=' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/mailbox/' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-mailbox" data-api-url="delete/mailbox" data-item="' + encodeURIComponent(item.username) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             }
@@ -412,6 +416,7 @@ jQuery(function($){
         "delay": 100,
         "position": "left",
         "connectors": false,
+        //"container": "#tab-mailboxes.panel",
         "placeholder": lang.filter_table
       },
       "components": {
@@ -459,7 +464,7 @@ jQuery(function($){
               item.multiple_bookings = '<span id="active-script" class="label label-danger">' + lang.booking_custom_short + ' (' + item.multiple_bookings + ')</span>';
             }
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?resource=' + encodeURIComponent(item.name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/resource/' + encodeURIComponent(item.name) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-resource" data-api-url="delete/resource" data-item="' + item.name + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="resource" name="multi_select" value="' + encodeURIComponent(item.name) + '" />';
@@ -518,7 +523,7 @@ jQuery(function($){
         success: function (data) {
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?bcc=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/bcc/' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-bcc" data-api-url="delete/bcc" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="bcc" name="multi_select" value="' + item.id + '" />';
@@ -581,7 +586,7 @@ jQuery(function($){
               item.recipient_map_old = escapeHtml(item.recipient_map_old);
               item.recipient_map_new = escapeHtml(item.recipient_map_new);
               item.action = '<div class="btn-group">' +
-                '<a href="/edit.php?recipient_map=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+                '<a href="/edit/recipient_map/' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
                 '<a href="#" data-action="delete_selected" data-id="single-recipient_map" data-api-url="delete/recipient_map" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
                 '</div>';
               item.chkbox = '<input type="checkbox" data-id="recipient_map" name="multi_select" value="' + item.id + '" />';
@@ -614,6 +619,69 @@ jQuery(function($){
       }
     });
   }
+  function draw_tls_policy_table() {
+    ft_tls_policy_table = FooTable.init('#tls_policy_table', {
+      "columns": [
+        {"name":"chkbox","title":"","style":{"maxWidth":"60px","width":"60px"},"filterable": false,"sortable": false,"type":"html"},
+        {"sorted": true,"name":"id","title":"ID","style":{"maxWidth":"60px","width":"60px","text-align":"center"}},
+        {"name":"dest","title":lang.tls_map_dest},
+        {"name":"policy","title":lang.tls_map_policy},
+        {"name":"parameters","title":lang.tls_map_parameters},
+        {"name":"active","filterable": false,"style":{"maxWidth":"80px","width":"80px"},"title":lang.active},
+        {"name":"action","filterable": false,"sortable": false,"style":{"text-align":"right","maxWidth":"180px","width":"180px"},"type":"html","title":(role == "admin" ? lang.action : ""),"breakpoints":"xs sm"}
+      ],
+      "empty": lang.empty,
+      "rows": $.ajax({
+        dataType: 'json',
+        url: '/api/v1/get/tls-policy-map/all',
+        jsonp: false,
+        error: function () {
+          console.log('Cannot draw tls policy map table');
+        },
+        success: function (data) {
+          if (role == "admin") {
+            $.each(data, function (i, item) {
+              item.dest = escapeHtml(item.dest);
+              item.policy = '<b>' + escapeHtml(item.policy) + '</b>';
+              if (item.parameters == '') {
+                item.parameters = '<code>-</code>';
+              } else {
+                item.parameters = '<code>' + escapeHtml(item.parameters) + '</code>';
+              }
+              item.action = '<div class="btn-group">' +
+                '<a href="/edit/tls_policy_map/' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+                '<a href="#" data-action="delete_selected" data-id="single-tls-policy-map" data-api-url="delete/tls-policy-map" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
+                '</div>';
+              item.chkbox = '<input type="checkbox" data-id="tls-policy-map" name="multi_select" value="' + item.id + '" />';
+            });
+          }
+        }
+      }),
+      "paging": {
+        "enabled": true,
+        "limit": 5,
+        "size": pagination_size
+      },
+      "filtering": {
+        "enabled": true,
+        "delay": 100,
+        "position": "left",
+        "connectors": false,
+        "placeholder": lang.filter_table
+      },
+      "sorting": {
+        "enabled": true
+      },
+      "on": {
+        "ready.ft.table": function(e, ft){
+          table_mailbox_ready(ft, 'tls_policy_table');
+        },
+        "after.ft.paging": function(e, ft){
+          paging_mailbox_after(ft, 'tls_policy_table');
+        }
+      }
+    });
+  }
   function draw_alias_table() {
     ft_alias_table = FooTable.init('#alias_table', {
       "columns": [
@@ -636,7 +704,7 @@ jQuery(function($){
         success: function (data) {
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?alias=' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/alias/' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-alias" data-api-url="delete/alias" data-item="' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="alias" name="multi_select" value="' + encodeURIComponent(item.id) + '" />';
@@ -711,7 +779,7 @@ jQuery(function($){
         success: function (data) {
           $.each(data, function (i, item) {
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?aliasdomain=' + encodeURIComponent(item.alias_domain) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/aliasdomain/' + encodeURIComponent(item.alias_domain) + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-alias-domain" data-api-url="delete/alias-domain" data-item="' + encodeURIComponent(item.alias_domain) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '<a href="#dnsInfoModal" class="btn btn-xs btn-info" data-toggle="modal" data-domain="' + encodeURIComponent(item.alias_domain) + '"><span class="glyphicon glyphicon-question-sign"></span> DNS</a></div>' +
               '</div>';
@@ -779,7 +847,7 @@ jQuery(function($){
             }
             item.server_w_port = escapeHtml(item.user1) + '@' + item.host1 + ':' + item.port1;
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?syncjob=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/syncjob/' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-syncjob" data-api-url="delete/syncjob" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="syncjob" name="multi_select" value="' + item.id + '" />';
@@ -850,7 +918,7 @@ jQuery(function($){
             item.script_data = '<pre style="margin:0px">' + escapeHtml(item.script_data) + '</pre>'
             item.filter_type = '<div class="label label-default">' + item.filter_type.charAt(0).toUpperCase() + item.filter_type.slice(1).toLowerCase() + '</div>'
             item.action = '<div class="btn-group">' +
-              '<a href="/edit.php?filter=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+              '<a href="/edit/filter/' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
               '<a href="#" data-action="delete_selected" data-id="single-filter" data-api-url="delete/filter" data-item="' + encodeURIComponent(item.id) + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
               '</div>';
             item.chkbox = '<input type="checkbox" data-id="filter_item" name="multi_select" value="' + item.id + '" />'
@@ -892,5 +960,6 @@ jQuery(function($){
   draw_filter_table();
   draw_bcc_table();
   draw_recipient_map_table();
+  draw_tls_policy_table();
 
 });
diff --git a/data/web/js/user.js b/data/web/js/user.js
index 5649d6c6..2c960e82 100644
--- a/data/web/js/user.js
+++ b/data/web/js/user.js
@@ -122,7 +122,7 @@ jQuery(function($){
             item.server_w_port = escapeHtml(item.user1 + '@' + item.host1 + ':' + item.port1);
             if (acl_data.syncjobs === 1) {
               item.action = '<div class="btn-group">' +
-                '<a href="/edit.php?syncjob=' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
+                '<a href="/edit/syncjob/' + item.id + '" class="btn btn-xs btn-default"><span class="glyphicon glyphicon-pencil"></span> ' + lang.edit + '</a>' +
                 '<a href="#" data-action="delete_selected" data-id="single-syncjob" data-api-url="delete/syncjob" data-item="' + item.id + '" class="btn btn-xs btn-danger"><span class="glyphicon glyphicon-trash"></span> ' + lang.remove + '</a>' +
                 '</div>';
               item.chkbox = '<input type="checkbox" data-id="syncjob" name="multi_select" value="' + item.id + '" />';
diff --git a/data/web/json_api.php b/data/web/json_api.php
index adeb162e..d1f6a979 100644
--- a/data/web/json_api.php
+++ b/data/web/json_api.php
@@ -153,6 +153,9 @@ if (isset($_SESSION['mailcow_cc_role']) || isset($_SESSION['pending_mailcow_cc_u
           case "recipient_map":
             process_add_return(recipient_map('add', $attr));
           break;
+          case "tls-policy-map":
+            process_add_return(tls_policy_maps('add', $attr));
+          break;
         }
       break;
       case "get":
@@ -662,6 +665,31 @@ if (isset($_SESSION['mailcow_cc_role']) || isset($_SESSION['pending_mailcow_cc_u
               break;
             }
           break;
+          case "tls-policy-map":
+            switch ($object) {
+              case "all":
+                $tls_policy_maps_items = tls_policy_maps('get');
+                if (!empty($tls_policy_maps_items)) {
+                  foreach ($tls_policy_maps_items as $tls_policy_maps_item) {
+                    if ($details = tls_policy_maps('details', $tls_policy_maps_item)) {
+                      $data[] = $details;
+                    }
+                    else {
+                      continue;
+                    }
+                  }
+                }
+                process_get_return($data);
+              break;
+              default:
+                $data = tls_policy_maps('details', $object);
+                if (!empty($data)) {
+                  $data[] = $details;
+                }
+                process_get_return($data);
+              break;
+            }
+          break;
           case "policy_wl_mailbox":
             switch ($object) {
               default:
@@ -919,6 +947,9 @@ if (isset($_SESSION['mailcow_cc_role']) || isset($_SESSION['pending_mailcow_cc_u
           case "recipient_map":
             process_delete_return(recipient_map('delete', array('id' => $items)));
           break;
+          case "tls-policy-map":
+            process_delete_return(tls_policy_maps('delete', array('id' => $items)));
+          break;
           case "fwdhost":
             process_delete_return(fwdhost('delete', array('forwardinghost' => $items)));
           break;
@@ -991,6 +1022,9 @@ if (isset($_SESSION['mailcow_cc_role']) || isset($_SESSION['pending_mailcow_cc_u
           case "recipient_map":
             process_edit_return(recipient_map('edit', array_merge(array('id' => $items), $attr)));
           break;
+          case "tls-policy-map":
+            process_edit_return(tls_policy_maps('edit', array_merge(array('id' => $items), $attr)));
+          break;
           case "alias":
             process_edit_return(mailbox('edit', 'alias', array_merge(array('id' => $items), $attr)));
           break;
diff --git a/data/web/lang/lang.de.php b/data/web/lang/lang.de.php
index 4cb2e789..9392f346 100644
--- a/data/web/lang/lang.de.php
+++ b/data/web/lang/lang.de.php
@@ -240,6 +240,17 @@ $lang['header']['mailcow_settings'] = 'Konfiguration';
 $lang['header']['administration'] = 'Administration';
 $lang['header']['mailboxes'] = 'Mailboxen';
 $lang['header']['user_settings'] = 'Benutzereinstellungen';
+$lang['mailbox']['tls_policy_maps'] = 'TLS-Richtlinien';
+$lang['mailbox']['tls_policy_maps_long'] = 'Ausgehende TLS-Richtlinien';
+$lang['mailbox']['tls_policy_maps_info'] = 'Nachstehende Richtlinien erzwingen TLS-Transportregeln unabhängig von TLS-Richtlinieneinstellungen eines Benutzers.<br>
+  Für weitere Informationen zur Syntax sollte <a href="http://www.postfix.org/postconf.5.html#smtp_tls_policy_maps" target="_blank">die "smtp_tls_policy_maps" Dokumentation</a> konsultiert werden.';
+$lang['mailbox']['tls_enforce_in'] = 'Enforce TLS incoming';
+$lang['mailbox']['tls_enforce_out'] = 'Enforce TLS outgoing';
+$lang['mailbox']['tls_map_dest'] = 'Ziel';
+$lang['mailbox']['tls_map_dest_info'] = 'Beispiele: example.org, .example.org, mail@example.org, [mail.example.org]:25';
+$lang['mailbox']['tls_map_policy'] = 'Richtlinie';
+$lang['mailbox']['tls_map_parameters'] = 'Parameter';
+$lang['mailbox']['tls_map_parameters_info'] = 'Leer oder Parameter, Beispiele: protocols=!SSLv2 ciphers=medium exclude=3DES';
 $lang['mailbox']['booking_0'] = 'Immer als verfügbar anzeigen';
 $lang['mailbox']['booking_lt0'] = 'Unbegrenzt, jedoch anzeigen, wenn gebucht';
 $lang['mailbox']['booking_custom'] = 'Benutzerdefiniertes Limit';
@@ -666,9 +677,13 @@ $lang['mailbox']['recipient_map_new_info'] = 'Der neue Empfänger muss eine E-Ma
 $lang['mailbox']['recipient_map_old'] = 'Original Empfänger';
 $lang['mailbox']['recipient_map_new'] = 'Neuer Empfänger';
 $lang['mailbox']['add_recipient_map_entry'] = 'Empfängerumschreibung hinzufügen';
-$lang['danger']['invalid_recipient_map_new'] = 'Neuer Empfänger %s ist ungültig';
-$lang['danger']['invalid_recipient_map_old'] = 'Originaler Empfänger %s ist ungültig';
-$lang['danger']['recipient_map_entry_exists'] = 'Eine Empfängerumschreibung für %s existiert bereits';
-$lang['success']['recipient_map_entry_saved'] = 'Empfängerumschreibung für Objekt %s wurde gespeichert';
-$lang['success']['recipient_map_entry_deleted'] = 'Empfängerumschreibung für Objekt %s wurde gelöscht';
-
+$lang['danger']['invalid_recipient_map_new'] = 'Neuer Empfänger "%s" ist ungültig';
+$lang['danger']['invalid_recipient_map_old'] = 'Originaler Empfänger "%s" ist ungültig';
+$lang['danger']['recipient_map_entry_exists'] = 'Eine Empfängerumschreibung für Objekt "%s" existiert bereits';
+$lang['success']['recipient_map_entry_saved'] = 'Empfängerumschreibung für Objekt "%s" wurde gespeichert';
+$lang['success']['recipient_map_entry_deleted'] = 'Empfängerumschreibung mit der ID %s wurde gelöscht';
+$lang['danger']['tls_policy_map_entry_exists'] = 'Eine TLS-Richtlinie "%s" existiert bereits';
+$lang['success']['tls_policy_map_entry_saved'] = 'TLS-Richtlinieneintrag "%s" wurde gespeichert';
+$lang['success']['tls_policy_map_entry_deleted'] = 'TLS-Richtlinie mit der ID %s wurde gelöscht';
+$lang['mailbox']['add_tls_policy_map'] = "TLS-Richtlinieneintrag hinzufügen";
+$lang['danger']['tls_policy_map_parameter_invalid'] = "Parameter ist ungültig";
diff --git a/data/web/lang/lang.en.php b/data/web/lang/lang.en.php
index 9e5dc9ec..195bceb2 100644
--- a/data/web/lang/lang.en.php
+++ b/data/web/lang/lang.en.php
@@ -242,6 +242,17 @@ $lang['header']['mailcow_settings'] = 'Configuration';
 $lang['header']['administration'] = 'Administration';
 $lang['header']['mailboxes'] = 'Mailboxes';
 $lang['header']['user_settings'] = 'User settings';
+$lang['mailbox']['tls_policy_maps'] = 'TLS policy maps';
+$lang['mailbox']['tls_policy_maps_long'] = 'Outgoing TLS policy map overrides';
+$lang['mailbox']['tls_policy_maps_info'] = 'This policy map overrides outgoing TLS transport rules independently of a users TLS policy settings.<br>
+  Please check <a href="http://www.postfix.org/postconf.5.html#smtp_tls_policy_maps" target="_blank">the "smtp_tls_policy_maps" docs</a> for further information.';
+$lang['mailbox']['tls_enforce_in'] = 'Enforce TLS incoming';
+$lang['mailbox']['tls_enforce_out'] = 'Enforce TLS outgoing';
+$lang['mailbox']['tls_map_dest'] = 'Destination';
+$lang['mailbox']['tls_map_dest_info'] = 'Examples: example.org, .example.org, mail@example.org, [mail.example.org]:25';
+$lang['mailbox']['tls_map_policy'] = 'Policy';
+$lang['mailbox']['tls_map_parameters'] = 'Parameters';
+$lang['mailbox']['tls_map_parameters_info'] = 'Empty or parameters, for example: protocols=!SSLv2 ciphers=medium exclude=3DES';
 $lang['mailbox']['booking_0'] = 'Always show as free';
 $lang['mailbox']['booking_lt0'] = 'Unlimited, but show as busy when booked';
 $lang['mailbox']['booking_custom'] = 'Hard-limit to a custom amount of bookings';
@@ -667,6 +678,7 @@ $lang['mailbox']['bcc_maps'] = "BCC maps";
 $lang['mailbox']['bcc_to_sender'] = "Switch to sender map type";
 $lang['mailbox']['bcc_to_rcpt'] = "Switch to recipient map type";
 $lang['mailbox']['add_bcc_entry'] = "Add BCC map";
+$lang['mailbox']['add_tls_policy_map'] = "Add TLS policy map";
 $lang['mailbox']['bcc_info'] = "BCC maps are used to silently forward copies of all messages to another address. A recipient map type entry is used, when the local destination acts as recipient of a mail. Sender maps conform to the same principle.<br/>
   The local destination will not be informed about a failed delivery.";
 $lang['mailbox']['address_rewriting'] = 'Address rewriting';
@@ -679,10 +691,14 @@ $lang['mailbox']['recipient_map_old'] = 'Original recipient';
 $lang['mailbox']['recipient_map_new'] = 'New recipient';
 $lang['danger']['invalid_recipient_map_new'] = 'Invalid new recipient specified: %s';
 $lang['danger']['invalid_recipient_map_old'] = 'Invalid original recipient specified: %s';
-$lang['danger']['recipient_map_entry_exists'] = 'A Recipient map entry for %s exists';
-$lang['success']['recipient_map_entry_saved'] = 'Recipient map entry for %s has been saved';
-$lang['success']['recipient_map_entry_deleted'] = 'Recipient map entry for %s has been deleted';
+$lang['danger']['recipient_map_entry_exists'] = 'A Recipient map entry "%s" exists';
+$lang['success']['recipient_map_entry_saved'] = 'Recipient map entry "%s" has been saved';
+$lang['success']['recipient_map_entry_deleted'] = 'Recipient map ID %s has been deleted';
+$lang['danger']['tls_policy_map_entry_exists'] = 'A TLS policy map entry "%s" exists';
+$lang['success']['tls_policy_map_entry_saved'] = 'TLS policy map entry "%s" has been saved';
+$lang['success']['tls_policy_map_entry_deleted'] = 'TLS policy map ID %s has been deleted';
 $lang['mailbox']['add_recipient_map_entry'] = 'Add recipient map';
+$lang['danger']['tls_policy_map_parameter_invalid'] = "Policy parameter is invalid";
 
 $lang['oauth2']['scope_ask_permission'] = 'An application asked for the following permissions';
 $lang['oauth2']['profile'] = 'Profile';
diff --git a/data/web/mailbox.php b/data/web/mailbox.php
index 70d8dbb6..fd21d26d 100644
--- a/data/web/mailbox.php
+++ b/data/web/mailbox.php
@@ -22,6 +22,7 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
     <li role="presentation"><a href="#tab-syncjobs" aria-controls="tab-syncjobs" role="tab" data-toggle="tab"><?=$lang['mailbox']['sync_jobs'];?></a></li>
     <li role="presentation"><a href="#tab-filters" aria-controls="tab-filters" role="tab" data-toggle="tab"><?=$lang['mailbox']['filters'];?></a></li>
     <li role="presentation"><a href="#tab-bcc" aria-controls="tab-filters" role="tab" data-toggle="tab"><?=$lang['mailbox']['address_rewriting'];?></a></li>
+    <li role="presentation"><a href="#tab-tls-policy" aria-controls="tab-tls-policy" role="tab" data-toggle="tab"><?=$lang['mailbox']['tls_policy_maps'];?></a></li>
   </ul>
 
 	<div class="row">
@@ -287,6 +288,34 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
             </div>
           </div>
         </div>
+
+        <div role="tabpanel" class="tab-pane <?=($_SESSION['mailcow_cc_role'] == "admin") ?: 'hidden';?>" id="tab-tls-policy">
+          <div class="panel panel-default">
+            <div class="panel-heading">
+              <?=$lang['mailbox']['tls_policy_maps_long'];?> <span class="badge badge-info table-lines"></span>
+              <div class="btn-group pull-right">
+                <button class="btn btn-xs btn-default refresh_table" data-draw="draw_tls_policy_table" data-table="tls_policy_table"><?=$lang['admin']['refresh'];?></button>
+              </div>
+            </div>
+            <p style="margin:10px" class="help-block"><?=$lang['mailbox']['tls_policy_maps_info'];?></p>
+            <div class="table-responsive">
+              <table class="table table-striped" id="tls_policy_table"></table>
+            </div>
+            <div class="mass-actions-mailbox">
+              <div class="btn-group">
+                <a class="btn btn-sm btn-default" id="toggle_multi_select_all" data-id="tls-policy-map" href="#"><span class="glyphicon glyphicon-check" aria-hidden="true"></span> <?=$lang['mailbox']['toggle_all'];?></a>
+                <a class="btn btn-sm btn-default dropdown-toggle" data-toggle="dropdown" href="#"><?=$lang['mailbox']['quick_actions'];?> <span class="caret"></span></a>
+                <ul class="dropdown-menu">
+                  <li><a data-action="edit_selected" data-id="tls-policy-map" data-api-url='edit/tls-policy-map' data-api-attr='{"active":"1"}' href="#"><?=$lang['mailbox']['activate'];?></a></li>
+                  <li><a data-action="edit_selected" data-id="tls-policy-map" data-api-url='edit/tls-policy-map' data-api-attr='{"active":"0"}' href="#"><?=$lang['mailbox']['deactivate'];?></a></li>
+                  <li role="separator" class="divider"></li>
+                  <li><a data-action="delete_selected" data-id="tls-policy-map" data-api-url='delete/tls-policy-map' href="#"><?=$lang['mailbox']['remove'];?></a></li>
+                </ul>
+                <a class="btn btn-sm btn-success" href="#" data-toggle="modal" data-target="#addTLSPolicyMapAdmin"><span class="glyphicon glyphicon-plus"></span> <?=$lang['mailbox']['add_tls_policy_map'];?></a>
+              </div>
+            </div>
+          </div>
+        </div>
       </div> <!-- /tab-content -->
     </div> <!-- /col-md-12 -->
   </div> <!-- /row -->
diff --git a/data/web/modals/mailbox.php b/data/web/modals/mailbox.php
index fe99bc6d..107df71a 100644
--- a/data/web/modals/mailbox.php
+++ b/data/web/modals/mailbox.php
@@ -692,6 +692,62 @@ if (!isset($_SESSION['mailcow_cc_role'])) {
     </div>
   </div>
 </div><!-- add add_recipient_map modal -->
+<!-- add add_tls_policy_map modal -->
+<div class="modal fade" id="addTLSPolicyMapAdmin" tabindex="-1" role="dialog" aria-hidden="true">
+  <div class="modal-dialog modal-lg">
+    <div class="modal-content">
+      <div class="modal-header">
+        <button type="button" class="close" data-dismiss="modal"><span aria-hidden="true">×</span></button>
+        <h3 class="modal-title"><?=$lang['mailbox']['tls_policy_maps'];?></h3>
+      </div>
+      <div class="modal-body">
+				<form class="form-horizontal" data-cached-form="true" role="form" data-id="add_tls_policy_map">
+          <div class="form-group">
+            <label class="control-label col-sm-2" for="dest"><?=$lang['mailbox']['tls_map_dest'];?></label>
+            <div class="col-sm-10">
+            <input type="text" class="form-control" name="dest">
+            <small><?=$lang['mailbox']['tls_map_dest_info'];?></small>
+            </div>
+          </div>
+          <div class="form-group">
+            <label class="control-label col-sm-2" for="policy"><?=$lang['mailbox']['tls_map_policy'];?>:</label>
+            <div class="col-sm-10">
+              <select class="full-width-select" name="policy" required>
+                <option value="none">none</option>
+                <option value="may">may</option>
+                <option value="encrypt">encrypt</option>
+                <option value="dane">dane</option>
+                <option value="dane-only">dane-only</option>
+                <option value="fingerprint">fingerprint</option>
+                <option value="verify">verify</option>
+                <option value="secure">secure</option>
+              </select>
+            </div>
+          </div>
+          <div class="form-group">
+            <label class="control-label col-sm-2" for="parameters"><?=$lang['mailbox']['tls_map_parameters'];?></label>
+            <div class="col-sm-10">
+            <input type="text" class="form-control" name="parameters">
+            <small><?=$lang['mailbox']['tls_map_parameters_info'];?></small>
+            </div>
+          </div>
+					<div class="form-group">
+						<div class="col-sm-offset-2 col-sm-10">
+							<div class="checkbox">
+							<label><input type="checkbox" value="1" name="active" checked> <?=$lang['add']['active'];?></label>
+							</div>
+						</div>
+					</div>
+					<div class="form-group">
+						<div class="col-sm-offset-2 col-sm-10">
+              <button class="btn btn-success" data-action="add_item" data-id="add_tls_policy_map" data-api-url='add/tls-policy-map' data-api-attr='{}' href="#"><?=$lang['admin']['add'];?></button>
+						</div>
+					</div>
+				</form>
+      </div>
+    </div>
+  </div>
+</div><!-- add add_tls_policy_map modal -->
 <!-- log modal -->
 <div class="modal fade" id="syncjobLogModal" tabindex="-1" role="dialog" aria-labelledby="syncjobLogModalLabel">
   <div class="modal-dialog modal-lg" role="document">
diff --git a/data/web/user.php b/data/web/user.php
index 329a99c2..ebefadeb 100644
--- a/data/web/user.php
+++ b/data/web/user.php
@@ -394,7 +394,7 @@ elseif (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] == '
 <div style="margin-bottom:200px;"></div>
 <?php
 }
-if (isset($_SESSION['mailcow_cc_role'])) {
+if (isset($_SESSION['mailcow_cc_role']) && $_SESSION['mailcow_cc_role'] != 'admin') {
 require_once $_SERVER['DOCUMENT_ROOT'] . '/modals/user.php';
 ?>
 <script type='text/javascript'>

From 539727330bbd247feb1375f1608ec2b0bf93e44d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 20:30:42 +0200
Subject: [PATCH 52/56] [Web] Fix domain admin edit function

---
 data/web/inc/functions.domain_admin.inc.php | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/data/web/inc/functions.domain_admin.inc.php b/data/web/inc/functions.domain_admin.inc.php
index 3151350c..f71a42a1 100644
--- a/data/web/inc/functions.domain_admin.inc.php
+++ b/data/web/inc/functions.domain_admin.inc.php
@@ -162,15 +162,14 @@ function domain_admin($_action, $_data = null) {
           $password     = $_data['password'];
           $password2    = $_data['password2'];
           if (!empty($domains)) {
-            foreach ($domains as $i => &$domain) {
+            foreach ($domains as $domain) {
               if (!is_valid_domain_name($domain)) {
                 $_SESSION['return'][] = array(
                   'type' => 'danger',
                   'log' => array(__FUNCTION__, $_action, $_data_log),
                   'msg' => array('domain_invalid', htmlspecialchars($domain))
                 );
-                unset($domains[$i]);
-                continue;
+                continue 2;
               }
             }
           }
@@ -208,7 +207,6 @@ function domain_admin($_action, $_data = null) {
               ));
             }
           }
-
           if (!empty($password) && !empty($password2)) {
             if (!preg_match('/' . $GLOBALS['PASSWD_REGEP'] . '/', $password)) {
               $_SESSION['return'][] = array(

From 174ef1a1e7f7f423f4bc0cd657973904acb1f867 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Thu, 4 Oct 2018 20:32:06 +0200
Subject: [PATCH 53/56] [Compose] New Postfix image

---
 docker-compose.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker-compose.yml b/docker-compose.yml
index d06007ec..b8237152 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -202,7 +202,7 @@ services:
             - dovecot
 
     postfix-mailcow:
-      image: mailcow/postfix:1.22
+      image: mailcow/postfix:1.23
       build: ./data/Dockerfiles/postfix
       volumes:
         - ./data/conf/postfix:/opt/postfix/conf

From 45bfa442b84130b8537705eecdd5f9db1df278cc Mon Sep 17 00:00:00 2001
From: "Tobias \"Knight\" S" <tobias@tobiassachs.de>
Date: Fri, 5 Oct 2018 04:23:59 +0200
Subject: [PATCH 54/56] Add portainer and docker-compose.override.yml to
 .gitignore

---
 .gitignore | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.gitignore b/.gitignore
index e6777cfe..0653ab8d 100644
--- a/.gitignore
+++ b/.gitignore
@@ -22,3 +22,5 @@ data/conf/nginx/*.custom
 data/conf/nginx/*.bak
 data/conf/dovecot/extra.conf
 data/conf/rspamd/custom/*
+data/conf/portainer/
+docker-compose.override.yml

From c08149adef3e079d868528f57f4d21be41c4611a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Fri, 5 Oct 2018 11:12:55 +0200
Subject: [PATCH 55/56] [SOGo] EAS changes, larger timeout

---
 data/conf/nginx/site.conf |  8 ++++----
 data/conf/sogo/sogo.conf  | 12 ++++++------
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/data/conf/nginx/site.conf b/data/conf/nginx/site.conf
index 840e253d..871413bd 100644
--- a/data/conf/nginx/site.conf
+++ b/data/conf/nginx/site.conf
@@ -132,12 +132,12 @@ server {
 
   location ^~ /Microsoft-Server-ActiveSync {
     include /etc/nginx/conf.d/sogo_eas.active;
-    proxy_connect_timeout 1000;
+    proxy_connect_timeout 4000;
     proxy_next_upstream timeout error;
-    proxy_send_timeout 1000;
-    proxy_read_timeout 1000;
+    proxy_send_timeout 4000;
+    proxy_read_timeout 4000;
     proxy_buffer_size 8k;
-    proxy_buffers 4 32k;
+    proxy_buffers 16 64k;
     proxy_temp_file_write_size 64k;
     proxy_busy_buffers_size 64k;
     proxy_set_header X-Real-IP $remote_addr;
diff --git a/data/conf/sogo/sogo.conf b/data/conf/sogo/sogo.conf
index 0a345f94..b5979c82 100644
--- a/data/conf/sogo/sogo.conf
+++ b/data/conf/sogo/sogo.conf
@@ -39,17 +39,17 @@
 
     SxVMemLimit = 384;
 
-    SOGoMaximumPingInterval = 354;
+    SOGoMaximumPingInterval = 3540;
 
-    SOGoInternalSyncInterval = 30;
-    SOGoMaximumSyncInterval = 354;
+    SOGoInternalSyncInterval = 45;
+    SOGoMaximumSyncInterval = 3540;
 
     // 100 seems to break some Android clients
-    SOGoMaximumSyncWindowSize = 99;
+    //SOGoMaximumSyncWindowSize = 99;
     // This should do the trick for Outlook 2016
-    SOGoMaximumSyncResponseSize = 2048;
+    SOGoMaximumSyncResponseSize = 512;
 
-    WOWatchDogRequestTimeout = 10;
+    WOWatchDogRequestTimeout = 20;
     WOListenQueueSize = 300;
     WONoDetach = YES;
 

From 1893dae2d95b691df0614e591776a552aeeb004d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Andr=C3=A9?= <andre.peters@servercow.de>
Date: Fri, 5 Oct 2018 16:52:31 +0200
Subject: [PATCH 56/56] [Web] Fix JS pathes, fixes #1845

---
 data/web/admin.php      | 4 ++--
 data/web/debug.php      | 4 ++--
 data/web/edit.php       | 4 ++--
 data/web/index.php      | 2 +-
 data/web/mailbox.php    | 4 ++--
 data/web/quarantine.php | 4 ++--
 data/web/user.php       | 4 ++--
 7 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/data/web/admin.php b/data/web/admin.php
index 949ecfc9..05ae3174 100644
--- a/data/web/admin.php
+++ b/data/web/admin.php
@@ -790,8 +790,8 @@ echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
 echo "var log_pagination_size = '". $LOG_PAGINATION_SIZE . "';\n";
 ?>
 </script>
-<script src="js/footable.min.js"></script>
-<script src="js/admin.js"></script>
+<script src="/js/footable.min.js"></script>
+<script src="/js/admin.js"></script>
 <?php
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/footer.inc.php';
 } else {
diff --git a/data/web/debug.php b/data/web/debug.php
index 646aaa19..d6616dcb 100644
--- a/data/web/debug.php
+++ b/data/web/debug.php
@@ -288,8 +288,8 @@ echo "var log_pagination_size = '". $LOG_PAGINATION_SIZE . "';\n";
 
 ?>
 </script>
-<script src="js/footable.min.js"></script>
-<script src="js/debug.js"></script>
+<script src="/js/footable.min.js"></script>
+<script src="/js/debug.js"></script>
 <?php
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/footer.inc.php';
 }
diff --git a/data/web/edit.php b/data/web/edit.php
index d97b0ffa..31bb5fa3 100644
--- a/data/web/edit.php
+++ b/data/web/edit.php
@@ -1082,8 +1082,8 @@ echo "var csrf_token = '". $_SESSION['CSRF']['TOKEN'] . "';\n";
 echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
 ?>
 </script>
-<script src="js/footable.min.js"></script>
-<script src="js/edit.js"></script>
+<script src="/js/footable.min.js"></script>
+<script src="/js/edit.js"></script>
 <?php
 require_once("inc/footer.inc.php");
 ?>
diff --git a/data/web/index.php b/data/web/index.php
index 07fb4497..c839ea86 100644
--- a/data/web/index.php
+++ b/data/web/index.php
@@ -107,6 +107,6 @@ $_SESSION['return_to'] = $_SERVER['REQUEST_URI'];
     </div>
   </div>
 </div><!-- /.container -->
-<script src="js/index.js"></script>
+<script src="/js/index.js"></script>
 <?php
 require_once 'inc/footer.inc.php';
diff --git a/data/web/mailbox.php b/data/web/mailbox.php
index fd21d26d..837de654 100644
--- a/data/web/mailbox.php
+++ b/data/web/mailbox.php
@@ -336,8 +336,8 @@ echo "var is_dual = " . $is_dual . ";\n";
 echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
 ?>
 </script>
-<script src="js/footable.min.js"></script>
-<script src="js/mailbox.js"></script>
+<script src="/js/footable.min.js"></script>
+<script src="/js/mailbox.js"></script>
 <?php
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/footer.inc.php';
 } else {
diff --git a/data/web/quarantine.php b/data/web/quarantine.php
index 7658611c..f4fe2688 100644
--- a/data/web/quarantine.php
+++ b/data/web/quarantine.php
@@ -47,8 +47,8 @@ echo "var role = '". $role . "';\n";
 echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
 ?>
 </script>
-<script src="js/footable.min.js"></script>
-<script src="js/quarantine.js"></script>
+<script src="/js/footable.min.js"></script>
+<script src="/js/quarantine.js"></script>
 <?php
 require_once $_SERVER['DOCUMENT_ROOT'] . '/inc/footer.inc.php';
 } else {
diff --git a/data/web/user.php b/data/web/user.php
index ebefadeb..c1b513b2 100644
--- a/data/web/user.php
+++ b/data/web/user.php
@@ -407,8 +407,8 @@ echo "var mailcow_cc_username = '". $_SESSION['mailcow_cc_username'] . "';\n";
 echo "var pagination_size = '". $PAGINATION_SIZE . "';\n";
 ?>
 </script>
-<script src="js/footable.min.js"></script>
-<script src="js/user.js"></script>
+<script src="/js/footable.min.js"></script>
+<script src="/js/user.js"></script>
 <?php
 require_once("inc/footer.inc.php");
 }