[Kgs-contact] Invoice 3325

accounting quickbooks at notification.intuit.com
Thu May 21 06:31:45 PDT 2020 

Spam detection software, running on the system "simtk-server.stanford.edu",
has identified this incoming email as possible spam.  The original
message has been attached to this so you can view it or label
similar future email.  If you have any questions, see
@@CONTACT_ADDRESS@@ for details.

Content preview:  The following invoice is ready for your review and processing.
   Thanks for your business Invoice Summary 

Content analysis details:   (18.8 points, 5.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was
                            blocked.  See
                            http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                             for more information.
                            [URIs: rohrreinigungsexperten.ch]
 0.4 RCVD_IN_XBL            RBL: Received via a relay in Spamhaus XBL
                            [79.145.117.164 listed in zen.spamhaus.org]
 3.3 RCVD_IN_SBL_CSS        RBL: Received via a relay in Spamhaus SBL-CSS
 3.3 RCVD_IN_PBL            RBL: Received via a relay in Spamhaus PBL
 1.3 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in
                            bl.spamcop.net
             [Blocked - see <https://www.spamcop.net/bl.shtml?79.145.117.164>]
 0.0 RCVD_IN_SORBS_DUL      RBL: SORBS: sent directly from dynamic IP
                            address
                            [79.145.117.164 listed in dnsbl.sorbs.net]
 1.3 RCVD_IN_RP_RNBL        RBL: Relay in RNBL,
                            https://senderscore.org/blacklistlookup/
                           [79.145.117.164 listed in bl.score.senderscore.com]
 0.0 RCVD_IN_MSPIKE_L5      RBL: Very bad reputation (-5)
                            [79.145.117.164 listed in bl.mailspike.net]
 0.0 CK_HELO_GENERIC        Relay used name indicative of a Dynamic Pool or
                            Generic rPTR
 0.7 CK_HELO_DYNAMIC_SPLIT_IP Relay HELO'd using suspicious hostname
                            (Split IP)
 3.5 HELO_DYNAMIC_SPLIT_IP  Relay HELO'd using suspicious hostname
                            (Split IP)
 0.0 HTML_MESSAGE           BODY: HTML included in message
 0.8 BAYES_50               BODY: Bayes spam probability is 40 to 60%
                            [score: 0.4956]
 0.0 LOTS_OF_MONEY          Huge... sums of money
 0.0 RCVD_IN_MSPIKE_BL      Mailspike blacklisted
 0.0 KHOP_DYNAMIC           Relay looks like a dynamic address
 1.0 RDNS_DYNAMIC           Delivered to internal network by host with
                            dynamic-looking rDNS
 3.1 URI_WP_HACKED          URI for compromised WordPress site, possible
                            malware

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam.  If you wish to view
it, it may be safer to save it to a file and open it with an editor.

-------------- next part --------------
An embedded message was scrubbed...
From: "accounting" <quickbooks at notification.intuit.com>
Subject: Invoice  3325
Date: Thu, 21 May 2020 14:31:45 +0100
Size: 17704
URL: <https://simtk.org/pipermail/kgs-contact/attachments/20200521/5b0e9052/attachment.mht>

More information about the Kgs-contact mailing list