| Current Path : /home/ift/mails/29/ |
Linux ift1.ift-informatik.de 5.4.0-216-generic #236-Ubuntu SMP Fri Apr 11 19:53:21 UTC 2025 x86_64 |
| Current File : //home/ift/mails/29/1517536795.zrspam.290455_2018_02_02 |
From Anastasia6804@cfiforensics.com Fri Feb 2 02:59:55 2018
Return-Path: <Anastasia6804@cfiforensics.com>
X-Original-To: swonneberger@ift-informatik.de
Delivered-To: swonneberger@ift-informatik.de
Received: by ift-informatik.de (Postfix, from userid 5555)
id 9CC401C881B3B; Fri, 2 Feb 2018 02:59:55 +0100 (CET)
Received: from localhost by h2486555.stratoserver.net
with SpamAssassin (version 3.4.0);
Fri, 02 Feb 2018 02:59:55 +0100
From: Anastasia <Anastasia6804@cfiforensics.com>
To: swonneberger@ift-informatik.de
Subject: *****SPAM***** hi
Date: Thu, 01 Feb 2018 23:11:32 -0300
Message-Id: <7a5f3a92a2470fb8cd59760591921a97@cfiforensics.com>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
h2486555.stratoserver.net
X-Spam-Flag: YES
X-Spam-Level: ***************
X-Spam-Status: Yes, score=15.5 required=5.0 tests=BAYES_50,CK_HELO_GENERIC,
HELO_DYNAMIC_IPADDR,HTML_MESSAGE,HTML_MIME_NO_HTML_TAG,MIME_HTML_ONLY,
PYZOR_CHECK,RCVD_IN_BL_SPAMCOP_NET,RCVD_IN_BRBL_LASTEXT,RCVD_IN_MSPIKE_BL,
RCVD_IN_MSPIKE_L5,RCVD_IN_PSBL,RCVD_IN_RP_RNBL,RCVD_IN_SORBS_WEB,
URIBL_BLOCKED autolearn=no autolearn_force=no version=3.4.0
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_5A73C61B.5EA72064"
This is a multi-part message in MIME format.
------------=_5A73C61B.5EA72064
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Spam detection software, running on the system "h2486555.stratoserver.net",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
@@CONTACT_ADDRESS@@ for details.
Content preview: Dear swonneberger, my name is Anastasia and i'm from Russia.
Five years ago I moved to the USA and I love it here. Came across your photos
on Badoo and remembered you because you seem a type of guy I want :-) You
are hot, smart and sexy :-) If you would like to know me more, this is my
email lindamarion43fe@rambler.ru write to me and I will send some of my photos.
xXx, Anastasia [...]
Content analysis details: (15.5 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: rambler.ru]
2.7 RCVD_IN_PSBL RBL: Received via a relay in PSBL
[200.40.139.186 listed in psbl.surriel.com]
0.2 CK_HELO_GENERIC Relay used name indicative of a Dynamic Pool or
Generic rPTR
0.8 RCVD_IN_SORBS_WEB RBL: SORBS: sender is an abusable web server
[200.40.139.186 listed in dnsbl.sorbs.net]
1.3 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net
[Blocked - see <http://www.spamcop.net/bl.shtml?200.40.139.186>]
2.4 RCVD_IN_MSPIKE_L5 RBL: Very bad reputation (-5)
[200.40.139.186 listed in bl.mailspike.net]
1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,
https://senderscore.org/blacklistlookup/
[200.40.139.186 listed in bl.score.senderscore.com]
1.4 RCVD_IN_BRBL_LASTEXT RBL: No description available.
[200.40.139.186 listed in bb.barracudacentral.org]
0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60%
[score: 0.4946]
0.7 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.0 HTML_MESSAGE BODY: HTML included in message
1.4 PYZOR_CHECK Listed in Pyzor (http://pyzor.sf.net/)
0.4 HTML_MIME_NO_HTML_TAG HTML-only message, but there is no HTML tag
0.0 RCVD_IN_MSPIKE_BL Mailspike blacklisted
2.0 HELO_DYNAMIC_IPADDR Relay HELO'd using suspicious hostname (IP addr
1)
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
------------=_5A73C61B.5EA72064
Content-Type: message/rfc822; x-spam-type=original
Content-Description: original message before SpamAssassin
Content-Disposition: attachment
Content-Transfer-Encoding: 8bit
Received: from r200-40-83-146.ae-static.anteldata.net.uy (186.139.40.200.static.netgate.com.uy [200.40.139.186])
by ift-informatik.de (Postfix) with ESMTP id 3814A1C8819E9
for <swonneberger@ift-informatik.de>; Fri, 2 Feb 2018 02:59:53 +0100 (CET)
Received: by mail.cfiforensics.com (Postfix, from userid 584) id 1F230F854FE; Thu, 01 Feb 2018 23:11:31 -0300
To: swonneberger@ift-informatik.de
Subject: hi
X-PHP-Originating-Script: 584:class-phpmailer.php
Date: Thu, 01 Feb 2018 23:11:32 -0300
From: Anastasia <Anastasia6804@cfiforensics.com>
Message-ID: <7a5f3a92a2470fb8cd59760591921a97@cfiforensics.com>
X-Mailer: PHPMailer 5.2.22 (https://github.com/PHPMailer/PHPMailer)
MIME-Version: 1.0
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 8bit
Dear swonneberger, my name is Anastasia and i'm from Russia.
Five years ago I moved to the USA and I love it here.
Came across your photos on Badoo and remembered you because you seem a type of guy I want :-)
You are hot, smart and sexy :-)
If you would like to know me more, this is my email lindamarion43fe@rambler.ru write to me and I will send some of my photos.
xXx,
Anastasia
------------=_5A73C61B.5EA72064--