Schengen visas <[email protected]>

Header Analysis Quick Report<br>Originating IP: 46.30.167.84<br>Originating ISP: Zat Industrial Media Network<br> City: Kiev<br>Country of Origin: Ukraine<br>* For a complete report on this email header goto ipTRACKERonline

Delivered-To: <snipped>
Received: by 10.70.68.233 with SMTP id z9csp194262pdt;
Tue, 26 Nov 2013 04:20:04 -0800 (PST)
X-Received: by 10.50.124.133 with SMTP id mi5mr16447265igb.57.1385468404502;
Tue, 26 Nov 2013 04:20:04 -0800 (PST)
Return-Path: <[email protected]>
Received: from r8-chicago.webserversystems.com (r8-chicago.webserversystems.com. [184.154.1.124])
by mx.google.com with ESMTPS id jv7si33240794icc.62.2013.11.26.04.20.03
for <snipped>
(version=TLSv1 cipher=RC4-SHA bits=128/128);
Tue, 26 Nov 2013 04:20:04 -0800 (PST)
Received-SPF: neutral (google.com: 184.154.1.124 is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=184.154.1.124;
Authentication-Results: mx.google.com;
spf=neutral (google.com: 184.154.1.124 is neither permitted nor denied by best guess record for domain of [email protected]) [email protected]
Received: from huntail.ip.net.ua ([82.193.96.17]:61011)
by r8-chicago.webserversystems.com with esmtps (TLSv1:DHE-RSA-AES256-SHA:256)
(Exim 4.80)
(envelope-from <[email protected]>)
id 1VlHcX-000DT5-Mn
for <snipped>; Tue, 26 Nov 2013 06:20:03 -0600
Received: from magmar.ip.net.ua (magmar.ip.net.ua [82.193.96.20])
by huntail.ip.net.ua (8.14.2/8.14.2) with ESMTP id rAQBH6Gx090270;
Tue, 26 Nov 2013 14:18:18 +0200 (EET)
(envelope-from [email protected])
Received: from 46.30.167.84.usernat.ip.net.ua (172.16.250.243.cl.ipnet.kiev.ua [172.16.250.243])
by magmar.ip.net.ua (8.14.4/8.14.4) with SMTP id rAQBFsEY010841;
Tue, 26 Nov 2013 13:16:00 +0200 (EET)
(envelope-from [email protected])
Message-ID: <[email protected]>
Reply-To: "rcjfn" <[email protected]>
From: "rcjfn" <[email protected]>
Date: Tue, 26 Nov 2013 15:15:38 +0400
Organization: d
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0119_01CEEABA.5D04B7D0"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Windows Live Mail 16.4.3505.912
X-MimeOLE: Produced By Microsoft MimeOLE V16.4.3505.912
Disposition-Notification-To: <[email protected]>
X-Milter: Spamilter (Reciever: magmar.ip.net.ua; Sender-ip: 82.193.96.20; Sender-helo: magmar.ip.net.ua;)
X-Milter: Spamilter (Reciever: magmar.ip.net.ua; Sender-ip: 172.16.250.243; Sender-helo: 46.30.167.84.usernat.ip.net.ua;)
X-Virus-Scanned: clamav-milter 0.97.2 at clamperl
X-Virus-Status: Clean
X-Spam-Status: Yes, score=11.9
X-Spam-Score: 119
X-Spam-Bar: +++++++++++
X-Spam-Report: Spam detection software, running on the system "r8-chicago.webserversystems.com", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
root\@localhost for details.

Content preview: - Ïðåäëàãàåì ñðî÷íîå îòêðûòèå Øåíãåíñêèõ Âèç íà Íîâîãîäíèå
ïðàçäíèêè è Ðîæäåñòâî!!! - Ðàáîòàåì ñ ïðîáëåìíûìè ãðàæäàíàìè! Ëè÷íàÿ è áåç
ëè÷íàÿ ïîäà÷è äîêóìåíòîâ! - Øåíãåíñêèå âèçû äëÿ ãðàæäàí ÑÍà ,Ìàëüòà áåç ïîäà÷è!
[...]

Content analysis details: (11.9 points, 5.0 required)

pts rule name description
---- ---------------------- --------------------------------------------------
2.7 RCVD_IN_PSBL RBL: Received via a relay in PSBL
[82.193.96.17 listed in psbl.surriel.com]
0.2 FREEMAIL_REPLYTO_END_DIGIT Reply-To freemail username ends in digit
("rcjfn" <vizaevro01[at]yahoo.com>
)
1.0 MISSING_HEADERS Missing To: header
0.0 HTML_MESSAGE BODY: HTML included in message
0.8 BAYES_50 BODY: Bayes spam probability is 40 to 60%
[score: 0.5004]
1.6 REPLYTO_WITHOUT_TO_CC REPLYTO_WITHOUT_TO_CC
2.1 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From
3.5 TO_NO_BRKTS_MSFT To: misformatted and supposed Microsoft tool
X-Spam-Flag: YES
Subject: ***SPAM*** ?????????? ???? ???????? !
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - r8-chicago.webserversystems.com
X-AntiAbuse: Original Domain - <snipped>
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - carrier.kiev.ua
X-Get-Message-Sender-Via: r8-chicago.webserversystems.com: none
X-Source:
X-Source-Args:
X-Source-Dir:

- ?????????? ??????? ???????? ?????????? ??? ?? ?????????? ????????? ? ?????????!!!

- ???????? ? ??????????? ??????????! ?????? ? ??? ?????? ?????? ??????????!

- ?????????? ???? ??? ??????? ??? ,?????? ??? ??????!

- ????????? ? ?????? ,??????,????????!

- ??????? ???? ??? ???????? ?????? ?? ???? ??????!

- ??? ?? ?????????? ??? ??????????? ? ???????, ???????!

- ?????? ?????? ??????????? ? ??????!

0669688500 , 0672202054

[email protected]

Google translation of the message:

- We offer urgent openings Schengen visas for Christmas and New Year holidays!
 
- Working with distressed citizens! Personal and without personal filing!
 
- Schengen visas for citizens of CIS Malta without feeding!
 
- Emigration to Europe, Poland, inexpensive!
 
- Work visas for legitimate work all over Europe!
 
- Residence permit for foreigners in Ukraine legally!
 
- Buy a business invitation to Poland!
 
   0669688500, 0672202054
 
   [email protected]