by Reportandie
Sat Mar 02, 2013 7:36 am
Delivered-To: [my.redacted.address]
Received: by 10.64.18.84 with SMTP id u20csp7572ied;
Thu, 28 Feb 2013 03:41:23 -0800 (PST)
X-Received: by 10.66.162.232 with SMTP id yd8mr12921635pab.100.1362051683060;
Thu, 28 Feb 2013 03:41:23 -0800 (PST)
Return-Path: <[email protected]>
Received: from hdsolar.com.tw (mail.hdsolar.com.tw. [114.34.162.224])
by mx.google.com with ESMTP id t5si8589589paw.28.2013.02.28.03.41.20;
Thu, 28 Feb 2013 03:41:23 -0800 (PST)
Received-SPF: fail (google.com: domain of [email protected] does not designate 114.34.162.224 as permitted sender) client-ip=114.34.162.224;
Authentication-Results: mx.google.com;
spf=hardfail (google.com: domain of [email protected] does not designate 114.34.162.224 as permitted sender) [email protected]
Received: by hdsolar.com.tw (Postfix, from userid 783)
id 58544AE4CD; Mon, 25 Feb 2013 01:19:55 +0800 (CST)
Received: from localhost by DiskStation
with SpamAssassin (version 3.2.5);
Mon, 25 Feb 2013 01:19:53 +0800
From: "FBI"<[email protected]>
To: [redacted]
Subject: *****SPAM***** Federal Bureau of Investigation(FBI) !!
Date: Sat, 23 Feb 2013 17:57:16 +0800
Message-Id: <[email protected]>
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on DiskStation
X-Spam-Level: *****
X-Spam-Status: Yes, score=5.2 required=5.0 tests=ALL_TRUSTED,AWL,
FORGED_MUA_OUTLOOK,FORGED_OUTLOOK_HTML,FORGED_OUTLOOK_TAGS,HTML_MESSAGE,
MIME_HTML_ONLY,MONEY_BACK,MSOE_MID_WRONG_CASE autolearn=no version=3.2.5
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_512A4BB9.C1A724DC"
Spam detection software, running on the system "DiskStation", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
admin for details.
Content preview: Federal Bureau of Investigation (FBI) Counter-terrorism Division
and Cyber Crime Division J. Edgar. Hoover Building Washington DC Dear Beneficiary,
Series of meetings have been held over the past 7 months with the secretary
general of the United Nations Organization. This ended 3 days ago. It is
obvious that you have not received your fund which is to the tune of $850,000.00
due to past corrupt Governmental Officials who almost held the fund to themselves
for their selfish reason and some individuals who have taken advantage of
your fund all in an attempt to swindle your fund which has led to so many
losses from your end and unnecessary delay in the receipt of your fund. [...]
Content analysis details: (5.2 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
-1.4 ALL_TRUSTED Passed through trusted hosts only via SMTP
0.0 MONEY_BACK BODY: Money back guarantee
0.0 HTML_MESSAGE BODY: HTML included in message
1.7 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.0 FORGED_OUTLOOK_TAGS Outlook can't send HTML in this format
0.7 MSOE_MID_WRONG_CASE MSOE_MID_WRONG_CASE
0.0 FORGED_OUTLOOK_HTML Outlook can't send HTML message only
4.2 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
0.1 AWL AWL: From: address is in the auto white-list
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
noname.eml noname.eml
7K View Download
Received: by 10.64.18.84 with SMTP id u20csp7572ied;
Thu, 28 Feb 2013 03:41:23 -0800 (PST)
X-Received: by 10.66.162.232 with SMTP id yd8mr12921635pab.100.1362051683060;
Thu, 28 Feb 2013 03:41:23 -0800 (PST)
Return-Path: <[email protected]>
Received: from hdsolar.com.tw (mail.hdsolar.com.tw. [114.34.162.224])
by mx.google.com with ESMTP id t5si8589589paw.28.2013.02.28.03.41.20;
Thu, 28 Feb 2013 03:41:23 -0800 (PST)
Received-SPF: fail (google.com: domain of [email protected] does not designate 114.34.162.224 as permitted sender) client-ip=114.34.162.224;
Authentication-Results: mx.google.com;
spf=hardfail (google.com: domain of [email protected] does not designate 114.34.162.224 as permitted sender) [email protected]
Received: by hdsolar.com.tw (Postfix, from userid 783)
id 58544AE4CD; Mon, 25 Feb 2013 01:19:55 +0800 (CST)
Received: from localhost by DiskStation
with SpamAssassin (version 3.2.5);
Mon, 25 Feb 2013 01:19:53 +0800
From: "FBI"<[email protected]>
To: [redacted]
Subject: *****SPAM***** Federal Bureau of Investigation(FBI) !!
Date: Sat, 23 Feb 2013 17:57:16 +0800
Message-Id: <[email protected]>
X-Spam-Flag: YES
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on DiskStation
X-Spam-Level: *****
X-Spam-Status: Yes, score=5.2 required=5.0 tests=ALL_TRUSTED,AWL,
FORGED_MUA_OUTLOOK,FORGED_OUTLOOK_HTML,FORGED_OUTLOOK_TAGS,HTML_MESSAGE,
MIME_HTML_ONLY,MONEY_BACK,MSOE_MID_WRONG_CASE autolearn=no version=3.2.5
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_512A4BB9.C1A724DC"
Spam detection software, running on the system "DiskStation", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
admin for details.
Content preview: Federal Bureau of Investigation (FBI) Counter-terrorism Division
and Cyber Crime Division J. Edgar. Hoover Building Washington DC Dear Beneficiary,
Series of meetings have been held over the past 7 months with the secretary
general of the United Nations Organization. This ended 3 days ago. It is
obvious that you have not received your fund which is to the tune of $850,000.00
due to past corrupt Governmental Officials who almost held the fund to themselves
for their selfish reason and some individuals who have taken advantage of
your fund all in an attempt to swindle your fund which has led to so many
losses from your end and unnecessary delay in the receipt of your fund. [...]
Content analysis details: (5.2 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
-1.4 ALL_TRUSTED Passed through trusted hosts only via SMTP
0.0 MONEY_BACK BODY: Money back guarantee
0.0 HTML_MESSAGE BODY: HTML included in message
1.7 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.0 FORGED_OUTLOOK_TAGS Outlook can't send HTML in this format
0.7 MSOE_MID_WRONG_CASE MSOE_MID_WRONG_CASE
0.0 FORGED_OUTLOOK_HTML Outlook can't send HTML message only
4.2 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
0.1 AWL AWL: From: address is in the auto white-list
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
noname.eml noname.eml
7K View Download