by Faizan Docherty
Fri Sep 05, 2014 10:38 am
ipTRACKERonline.com wrote:Header Analysis Quick Report
Originating IP: 65.55.116.82
Originating ISP: Microsoft Hosting
City: Redmond
Country of Origin: United States
* For a complete report on this email header goto ipTRACKERonline
Delivered-To: <snipped>
Received: by 10.70.74.40 with SMTP id q8csp436038pdv;
Wed, 3 Sep 2014 05:51:33 -0700 (PDT)
X-Received: by 10.70.89.237 with SMTP id br13mr22695271pdb.142.1409748693426;
Wed, 03 Sep 2014 05:51:33 -0700 (PDT)
Return-Path: <[email protected]>
Received: from relay.mailchannels.net (aso-006-i407.relay.mailchannels.net. [207.210.193.16])
by mx.google.com with ESMTP id fx8si11030656pac.126.2014.09.03.05.51.32
for <snipped>;
Wed, 03 Sep 2014 05:51:33 -0700 (PDT)
Received-SPF: softfail (google.com: domain of transitioning [email protected] does not designate 207.210.193.16 as permitted sender) client-ip=207.210.193.16;
Authentication-Results: mx.google.com;
spf=softfail (google.com: domain of transitioning [email protected] does not designate 207.210.193.16 as permitted sender) [email protected];
dmarc=fail (p=NONE dis=NONE) header.from=outlook.com
X-Sender-Id: _forwarded-from|65.55.116.74
Received: from r8-chicago.webserversystems.com (ip-10-33-12-218.us-west-2.compute.internal [10.33.12.218])
by relay.mailchannels.net (Postfix) with ESMTPA id D298F100632
for <snipped>; Wed, 3 Sep 2014 12:51:23 +0000 (UTC)
X-Sender-Id: _forwarded-from|65.55.116.74
Received: from r8-chicago.webserversystems.com (r8-chicago.webserversystems.com [10.245.145.206])
(using TLSv1 with cipher DHE-RSA-AES256-SHA)
by 0.0.0.0:2500 (trex/5.2.13);
Wed, 03 Sep 2014 12:51:24 GMT
X-MC-Relay: Forwarding
X-MailChannels-SenderId: _forwarded-from|65.55.116.74
X-MailChannels-Auth-Id: wwwh
X-MC-Ingress-Time: 1409748684143
Received: from blu004-omc3s7.hotmail.com ([65.55.116.82]:63043)
by r8-chicago.webserversystems.com with esmtps (TLSv1:AES256-SHA:256)
(Exim 4.82)
(envelope-from <[email protected]>)
id 1XPA1e-0002op-Cj
for <snipped>; Wed, 03 Sep 2014 07:51:22 -0500
Received: from BLU184-W92 ([65.55.116.74]) by BLU004-OMC3S7.hotmail.com with Microsoft SMTPSVC(7.5.7601.22724);
Wed, 3 Sep 2014 05:51:01 -0700
X-TMN: [VjTRzu9+ofnROJjMOv8DHQSqm6LTt+D7]
X-Originating-Email: [[email protected]]
Message-ID: <[email protected]>
Content-Type: multipart/alternative;
boundary="_89987b97-9ef3-4083-be01-704c95791b2e_"
Reply-To: <[email protected]>
From: kalu idika <[email protected]>
Date: Wed, 3 Sep 2014 12:51:01 +0000
Importance: Normal
MIME-Version: 1.0
X-OriginalArrivalTime: 03 Sep 2014 12:51:01.0841 (UTC) FILETIME=[B75C3C10:01CFC775]
X-Spam-Status: Yes, score=10.1
X-Spam-Score: 101
X-Spam-Bar: ++++++++++
X-Spam-Report: Spam detection software, running on the system "r8-chicago.webserversystems.com", has
identified this incoming email as possible spam. The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email. If you have any questions, see
root\@localhost for details.
Content preview: I need an experienced person to assist me to set up, develop
the project. On the resumption of the project, you will be made a Director
for the role and the assistance you rendered. You will also be entitled [...]
Content analysis details: (10.1 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no
trust
[65.55.116.82 listed in list.dnswl.org]
0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider
(kalu.idika12[at]outlook.com)
1.5 SUBJ_ALL_CAPS Subject is all capitals
-0.0 SPF_PASS SPF: sender matches SPF record
0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in
digit (kalu.idika12[at]outlook.com)
1.0 MISSING_HEADERS Missing To: header
0.0 HTML_MESSAGE BODY: HTML included in message
2.6 MALFORMED_FREEMAIL Bad headers on message from free email service
1.6 REPLYTO_WITHOUT_TO_CC REPLYTO_WITHOUT_TO_CC
1.0 FREEMAIL_REPLYTO Reply-To/From or Reply-To/body contain different
freemails
0.0 T_FILL_THIS_FORM_SHORT Fill in a short form with personal information
2.1 ADVANCE_FEE_3_NEW Appears to be advance fee fraud (Nigerian 419)
X-Spam-Flag: YES
Subject: ***SPAM*** REQUEST FOR REAL ESTATE INVESTMENT IN YOUR COUNTRY.รพ
X-MC-Forward: <snipped>
X-AuthUser:
I need an experienced person to assist me to set up, develop the
project. On the resumption of the project, you will be made a Director
for the role and the assistance you rendered. You will also be entitled
to a percentage agreed upon between me (Dr.KALU IDIKA KALU.) and you before
the commencement of the project.
Your immediate reply will be highly appreciated and I shall give you
more information on this project. Please contact me at my private Email address:.
[email protected]
Thanks and God bless you for me.
Dr.KALU IDIKA KALU.
Please DO NOT tell a scammer that he has been posted here!
If you wish you can email me at
faizandocherty @ scamwarners [dot] com
How do I find email headers???
How to analyze an email header.
If you wish you can email me at
faizandocherty @ scamwarners [dot] com
How do I find email headers???
How to analyze an email header.
