Subject: Mail delivery failed: returning message to sender (18)
Sender name: Mail Delivery System (147)
Sender email: [email protected] (1)
Received from ip: 43.241.73.92 (1)
Received from host name: kt-spk-a1223.pointdnshere.com (1)
Spam detection software, running on the system "kt-spk-a1223.pointdnshere.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: Dear Friends, Good day ! Do you need shipping services from
China Our major service as belows, Sea freight (FCL& LCL); Air freight; Express/
(DDU&DDP) Railways transportation Amazon service (FBA) Consolidation service
/ Insurance / Storage
Content analysis details: (135.0 points, 7.5 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.6 HK_RANDOM_ENVFROM Envelope sender username looks random
50 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS
[180.127.111.172 listed in zen.spamhaus.org]
50 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL
25 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail
provider (zhaoziyi895[at]126.com)
2.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level
mail domains are different
0.0 SPF_NONE SPF: sender does not publish an SPF Record
0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
0.2 FREEMAIL_REPLYTO_END_DIGIT Reply-To freemail username ends in
digit (zhaoziyi895[at]126.com)
2.0 HTML_MESSAGE BODY: HTML included in message
2.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.1 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and
EnvelopeFrom freemail headers are
different
3.0 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 SPOOFED_FREEMAIL_NO_RDNS From SPOOFED_FREEMAIL and no rDNS
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
Return-path: <kjznccym@[FILTERED]>
Received: from mail by kt-spk-a1223.pointdnshere.com with spam-scanned (Exim 4.92)
(envelope-from <kjznccym@[FILTERED]>)
id 1iCHVI-0007gQ-2S
for [email protected]; Mon, 23 Sep 2019 14:07:23 +0800
Received: from localhost by kt-spk-a1223.pointdnshere.com
with SpamAssassin (version 3.4.2);
Mon, 23 Sep 2019 14:07:23 +0800
From: Grace <[email protected]>
To: [email protected]
Subject: *****SPAM***** =?utf-8?B?UmU6IENoaW5hIGZyZWlnaHQgZm9yd2FyZGVy?=
Date: 23 Sep 2019 14:07:03 +0800
Message-Id: <GENERATED-WASMISSING-1iCHVH-0007gA-K8@kt-spk-a1223.pointdnshere.com>
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
kt-spk-a1223.pointdnshere.com
X-Spam-Flag: YES
X-Spam-Level: **************************************************
X-Spam-Status: Yes, score=135.0 required=7.5 tests=FREEMAIL_FORGED_FROMDOMAIN,
FREEMAIL_FROM,FREEMAIL_REPLYTO_END_DIGIT,HEADER_FROM_DIFFERENT_DOMAINS,
HK_RANDOM_ENVFROM,HTML_MESSAGE,MIME_HTML_ONLY,RCVD_IN_PBL,
RCVD_IN_SBL_CSS,RCVD_IN_XBL,RDNS_NONE,SPF_HELO_NONE,SPF_NONE,
SPOOFED_FREEMAIL_NO_RDNS autolearn=spam autolearn_force=no
version=3.4.2
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_5D88611B.49C245D1"
This is a multi-part message in MIME format.
------------=_5D88611B.49C245D1
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Spam detection software, running on the system "kt-spk-a1223.pointdnshere.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: Dear Friends, Good day ! Do you need shipping services from
China Our major service as belows, Sea freight (FCL& LCL); Air freight; Express/
(DDU&DDP) Railways transportation Amazon service (FBA) Consolidation service
/ Insurance / Storage
Content analysis details: (135.0 points, 7.5 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.6 HK_RANDOM_ENVFROM Envelope sender username looks random
50 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS
[180.127.111.172 listed in zen.spamhaus.org]
50 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL
25 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail
provider (zhaoziyi895[at]126.com)
2.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level
mail domains are different
0.0 SPF_NONE SPF: sender does not publish an SPF Record
0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
0.2 FREEMAIL_REPLYTO_END_DIGIT Reply-To freemail username ends in
digit (zhaoziyi895[at]126.com)
2.0 HTML_MESSAGE BODY: HTML included in message
2.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.1 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and
EnvelopeFrom freemail headers are
different
3.0 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 SPOOFED_FREEMAIL_NO_RDNS From SPOOFED_FREEMAIL and no rDNS
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
------------=_5D88611B.49C245D1
Content-Type: message/rfc822; x-spam-type=original
Content-Description: original message before SpamAssassin
Content-Disposition: attachment
Content-Transfer-Encoding: 8bit
Received: from [180.127.111.172] (helo=[FILTERED])
by kt-spk-a1223.pointdnshere.com with esmtp (Exim 4.92)
(envelope-from <kjznccym@[FILTERED]>)
id 1iCHVH-0007gA-K8
for [email protected]; Mon, 23 Sep 2019 14:07:20 +0800
Received: from vps17976 ([127.0.0.1]) by localhost via TCP with ESMTPA; Mon, 23 Sep 2019 14:07:03 +0800
MIME-Version: 1.0
From: Grace <[email protected]>
Sender: Grace <kjznccym@[FILTERED]>
To: [email protected]
Reply-To: Grace <[email protected]>
Date: 23 Sep 2019 14:07:03 +0800
Subject: =?utf-8?B?UmU6IENoaW5hIGZyZWlnaHQgZm9yd2FyZGVy?=
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: base64
ReverseDNS: No reverse DNS for mailserver at 180.127.111.172, +100 Spam score
Message-ID: <GENERATED-WASMISSING-1iCHVH-0007gA-K8@kt-spk-a1223.pointdnshere.com>
X-ACL-Warn: Adding Message-ID header because it is missing!
SpamTally: Final spam score: unset because ESF not run (SpamAssassin unset, whitelist, or skippped)
X-Antivirus-Scanner: Clean mail though you should still use an Antivirus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------------=_5D88611B.49C245D1--
Return-Path: <>
X-Original-To: kjznccym@[FILTERED]
Delivered-To: [FILTERED]
Received: from kt-spk-a1223.pointdnshere.com (unknown [43.241.73.92])
by [FILTERED]-inbox (Postfix) with ESMTP id D4C7B5BB07
for <kjznccym@[FILTERED]>; Mon, 23 Sep 2019 08:07:28 +0200 (CEST)
Received: from mail by kt-spk-a1223.pointdnshere.com with local (Exim 4.92)
id 1iCHVN-0007gx-Ar
for kjznccym@[FILTERED]; Mon, 23 Sep 2019 14:07:25 +0800
X-Failed-Recipients: [email protected]
Auto-Submitted: auto-replied
From: Mail Delivery System <[email protected]>
To: kjznccym@[FILTERED]
Content-Type: multipart/report; report-type=delivery-status; boundary=1569218845-eximdsn-1154661056
MIME-Version: 1.0
Subject: Mail delivery failed: returning message to sender
Message-Id: <[email protected]>
Date: Mon, 23 Sep 2019 14:07:25 +0800
--1569218845-eximdsn-1154661056
Content-type: text/plain; charset=us-ascii
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:
[email protected]
(ultimately generated from [email protected])
host mta5.am0.yahoodns.net [67.195.204.79]
SMTP error from remote mail server after RCPT TO:<[email protected]>:
550 relaying denied for <[email protected]>
--1569218845-eximdsn-1154661056
Content-type: message/delivery-status
Reporting-MTA: dns; kt-spk-a1223.pointdnshere.com
Action: failed
Final-Recipient: rfc822;[email protected]
Status: 5.0.0
Remote-MTA: dns; mta5.am0.yahoodns.net
Diagnostic-Code: smtp; 550 relaying denied for <[email protected]>
--1569218845-eximdsn-1154661056
Content-type: message/rfc822
Return-path: <kjznccym@[FILTERED]>
Received: from mail by kt-spk-a1223.pointdnshere.com with spam-scanned (Exim 4.92)
(envelope-from <kjznccym@[FILTERED]>)
id 1iCHVI-0007gQ-2S
for [email protected]; Mon, 23 Sep 2019 14:07:23 +0800
Received: from localhost by kt-spk-a1223.pointdnshere.com
with SpamAssassin (version 3.4.2);
Mon, 23 Sep 2019 14:07:23 +0800
From: Grace <[email protected]>
To: [email protected]
Subject: *****SPAM***** =?utf-8?B?UmU6IENoaW5hIGZyZWlnaHQgZm9yd2FyZGVy?=
Date: 23 Sep 2019 14:07:03 +0800
Message-Id: <GENERATED-WASMISSING-1iCHVH-0007gA-K8@kt-spk-a1223.pointdnshere.com>
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
kt-spk-a1223.pointdnshere.com
X-Spam-Flag: YES
X-Spam-Level: **************************************************
X-Spam-Status: Yes, score=135.0 required=7.5 tests=FREEMAIL_FORGED_FROMDOMAIN,
FREEMAIL_FROM,FREEMAIL_REPLYTO_END_DIGIT,HEADER_FROM_DIFFERENT_DOMAINS,
HK_RANDOM_ENVFROM,HTML_MESSAGE,MIME_HTML_ONLY,RCVD_IN_PBL,
RCVD_IN_SBL_CSS,RCVD_IN_XBL,RDNS_NONE,SPF_HELO_NONE,SPF_NONE,
SPOOFED_FREEMAIL_NO_RDNS autolearn=spam autolearn_force=no
version=3.4.2
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----------=_5D88611B.49C245D1"
This is a multi-part message in MIME format.
------------=_5D88611B.49C245D1
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Spam detection software, running on the system "kt-spk-a1223.pointdnshere.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
the administrator of that system for details.
Content preview: Dear Friends, Good day ! Do you need shipping services from
China Our major service as belows, Sea freight (FCL& LCL); Air freight; Express/
(DDU&DDP) Railways transportation Amazon service (FBA) Consolidation service
/ Insurance / Storage
Content analysis details: (135.0 points, 7.5 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.6 HK_RANDOM_ENVFROM Envelope sender username looks random
50 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS
[180.127.111.172 listed in zen.spamhaus.org]
50 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL
25 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL
0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail
provider (zhaoziyi895[at]126.com)
2.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level
mail domains are different
0.0 SPF_NONE SPF: sender does not publish an SPF Record
0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record
0.2 FREEMAIL_REPLYTO_END_DIGIT Reply-To freemail username ends in
digit (zhaoziyi895[at]126.com)
2.0 HTML_MESSAGE BODY: HTML included in message
2.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.1 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and
EnvelopeFrom freemail headers are
different
3.0 RDNS_NONE Delivered to internal network by a host with no rDNS
0.0 SPOOFED_FREEMAIL_NO_RDNS From SPOOFED_FREEMAIL and no rDNS
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam. If you wish to view
it, it may be safer to save it to a file and open it with an editor.
------------=_5D88611B.49C245D1
Content-Type: message/rfc822; x-spam-type=original
Content-Description: original message before SpamAssassin
Content-Disposition: attachment
Content-Transfer-Encoding: 8bit
Received: from [180.127.111.172] (helo=[FILTERED])
by kt-spk-a1223.pointdnshere.com with esmtp (Exim 4.92)
(envelope-from <kjznccym@[FILTERED]>)
id 1iCHVH-0007gA-K8
for [email protected]; Mon, 23 Sep 2019 14:07:20 +0800
Received: from vps17976 ([127.0.0.1]) by localhost via TCP with ESMTPA; Mon, 23 Sep 2019 14:07:03 +0800
MIME-Version: 1.0
From: Grace <[email protected]>
Sender: Grace <kjznccym@[FILTERED]>
To: [email protected]
Reply-To: Grace <[email protected]>
Date: 23 Sep 2019 14:07:03 +0800
Subject: =?utf-8?B?UmU6IENoaW5hIGZyZWlnaHQgZm9yd2FyZGVy?=
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: base64
ReverseDNS: No reverse DNS for mailserver at 180.127.111.172, +100 Spam score
Message-ID: <GENERATED-WASMISSING-1iCHVH-0007gA-K8@kt-spk-a1223.pointdnshere.com>
X-ACL-Warn: Adding Message-ID header because it is missing!
SpamTally: Final spam score: unset because ESF not run (SpamAssassin unset, whitelist, or skippped)
X-Antivirus-Scanner: Clean mail though you should still use an Antivirus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------------=_5D88611B.49C245D1--
--1569218845-eximdsn-1154661056--