[BIC-announce] I saw it in the online news and want to share it

bic-announce at bic.mni.mcgill.ca bic-announce at bic.mni.mcgill.ca
Sat Apr 16 06:09:24 EDT 2016


Spam detection software, running on the system "kurma.bic.mni.mcgill.ca", has
identified this incoming email as possible spam.  The original message
has been attached to this so you can view it (if it isn't spam) or label
similar future email.  If you have any questions, see
@@bicadmin at bic.mni.mcgill.ca@@ for details.

Content preview:  Hi, Kevin Rivas had to borrow $250 from his Dad to get the
   ball rolling when he started. Three days later, he took his Dad to dinner
   and paid back the $250. Three months later, he paid off his Dad's mortgage.
   [...] 

Content analysis details:   (27.4 points, 5.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 0.4 RCVD_IN_XBL            RBL: Received via a relay in Spamhaus XBL
                            [109.48.27.75 listed in zen.spamhaus.org]
 3.3 RCVD_IN_PBL            RBL: Received via a relay in Spamhaus PBL
 3.5 BAYES_99               BODY: Bayes spam probability is 99 to 100%
                            [score: 1.0000]
 1.3 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net
                [Blocked - see <http://www.spamcop.net/bl.shtml?109.48.27.75>]
 1.4 RCVD_IN_BRBL_LASTEXT   RBL: RCVD_IN_BRBL_LASTEXT
                            [109.48.27.75 listed in bb.barracudacentral.org]
 0.7 SPF_SOFTFAIL           SPF: sender does not match SPF record (softfail)
 1.7 URIBL_BLACK            Contains an URL listed in the URIBL blacklist
                            [URIs: cnxinteractive.com]
 1.2 URIBL_ABUSE_SURBL      Contains an URL listed in the ABUSE SURBL blocklist
                            [URIs: cnxinteractive.com]
 0.2 BAYES_999              BODY: Bayes spam probability is 99.9 to 100%
                            [score: 1.0000]
 0.0 HTML_MESSAGE           BODY: HTML included in message
 1.0 RDNS_DYNAMIC           Delivered to internal network by host with
                            dynamic-looking rDNS
 3.0 URI_WP_DIRINDEX        URI for compromised WordPress site, possible malware
 2.8 HELO_DYNAMIC_HCC       Relay HELO'd using suspicious hostname (HCC)
 2.0 HELO_DYNAMIC_IPADDR    Relay HELO'd using suspicious hostname (IP addr
                            1)
 2.8 DOS_OUTLOOK_TO_MX      Delivered direct to MX with Outlook headers
 2.0 URI_WP_HACKED_2        URI for compromised WordPress site, possible malware

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam.  If you wish to view
it, it may be safer to save it to a file and open it with an editor.

-------------- next part --------------
An embedded message was scrubbed...
From: <bic-announce at bic.mni.mcgill.ca>
Subject: I saw it in the online news and want to share it
Date: 16 Apr 2016 10:09:24 +0000
Size: 4870
URL: <http://www.bic.mni.mcgill.ca/pipermail/bic-announce/attachments/20160416/1c62be17/attachment.mht>


More information about the BIC-announce mailing list