Yes, absolutely! But this particular message not only fails the junk mail tests, but I also have spam sieve installed and it fails spam sieve. Remember that it has a made up return path, so it's only the intermediate receiver that knows it's from an unknown IP address, I've taken out the to: and CC:
From: Enlargement pils Free trial<email@example.com>
Subject: Jamie Lynn is a bigger **** thanBritney
Date: April 21, 2011 8:13:23 PM PDT
Received: from abcf9819d8d314 (unknown [184.108.40.206])by homiemail-mx12.g.dreamhost.com (Postfix) with SMTP id 3056B2780F1; Fri, 22Apr 2011 11:53:47 -0700 (PDT)
Received: (qmail 6083 by uid 083); Fri, 22 Apr2011 11:51:32 +0800
X-Mailer: Microsoft Office Outlook 12.0
The Key for all of these (I get about 20 a day which fail all spam filters and junk mail filters is that the RECIEVED: says 'unknown' that's what I'd like to filter on and I can't seem to get it to work
OK, so set up a rule. It should be along the lines of "If any of the following are met - From contains unknown - move message to mailbox Junk. Call it anything - maybe Dump Unknown. On exit, don't apply it (this is always the safe option). If you still have one of them in your inbox, select it and use Message/Apply Rules to test what happens.
Yes, my rule is now working, I'm using received as the header item and filtering unknown. But it turns out lots of emails come from 'unknown' in receieved, so I was forced to use this parameter last and list all the valid email sources from 'unknown' and have them stop evaluating the rules; after all that, the filter is working.