Scam TagCloud

Scam Email Headers

EEEEEstdClass Object ( [return-path:] => [envelope-to:] => submissions@scamdex.com [delivery-date:] => Sat, 06 Jul 2013 01:48:06 -0700 [received:] => Array ( [0] => from f438.i.mail.ru ([185.5.136.109]:52488)by lester.newsblaze.com with esmtps (TLSv1:DHE-RSA-AES256-SHA:256)(Exim 4.80.1)(envelope-from )id 1UvOA1-0002UV-C6for submissions@scamdex.com; Sat, 06 Jul 2013 01:48:06 -0700 [1] => from mail by f438.i.mail.ru with local (envelope-from )id 1UvO9u-0005Xa-7r; Sat, 06 Jul 2013 12:47:58 +0400 [2] => from [115.240.97.57] by e.mail.ru with HTTP;Sat, 06 Jul 2013 12:47:58 +0400 ) [dkim-signature:] => v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=mail.ru; s=mail2;h=Content-Type:Message-ID:Reply-To:Date:Mime-Version:Subject:To:From; bh=Ed2NsVu+nPG7KfHQIzaAYTZmaNgGJeXo7ARafjltz6M=;b=UTXczCtHT0gAU2FDUlGPsPJW98P/AotxOgLUIE8naOYZb8oAK6lMvpur9G8ra5/vroM1ZTYSt8T23Q5Kc+RtSRYlUEyMRx5oigwWzfhwGTXTtvX51pZ7ORHEXClGR4CPfmoxcewQVl5/BpJLE44Dwnrzj31P1AjUQpcG6aFaa44=; [from:] => =?UTF-8?B?YnNpbmVzcyBwbGFuMzI=?= [to:] => =?UTF-8?B?YnNpbmVzcy5wbGFuMzJAbWFpbC5ydQ==?= [subject:] => =?UTF-8?B?QlVTSU5FU1MgUEFSVE5FUi4uLg==?= [mime-version:] => 1.0 [x-mailer:] => Mail.Ru Mailer 1.0 [x-originating-ip:] => [115.240.97.57] [date:] => Sat, 06 Jul 2013 12:47:58 +0400 [reply-to:] => =?UTF-8?B?YnNpbmVzcyBwbGFuMzI=?= [x-priority:] => 3 (Normal) [message-id:] => <1373100478.721428798@f438.i.mail.ru> [content-type:] => multipart/alternative;boundary="--ALT--IRB2f4IK1373100478" [x-mras:] => Ok [x-spam-status:] => No, score=-3.7 [x-spam-score:] => -36 [x-spam-bar:] => --- [x-ham-report:] => Spam detection software, running on the system "lester.newsblaze.com", hasidentified this incoming email as possible spam. The original messagehas been attached to this so you can view it (if it isn't spam) or labelsimilar future email. If you have any questions, seeroot\@localhost for details.Content preview: Dear Sir/Ma, Due to economy buoyant of India in term of Infrastructural/Manufacturer business sector make my cousin brother interested to venture into a viable profitable business with whomever is ready to go into partnership for long duration of time. Endeavor to revert back to my mail for more details { saintmoris80@yahoo.com }. I am waiting for your favorable response. [...] Content analysis details: (-3.7 points, 4.0 required) pts rule name description---- ---------------------- ---------------------------------------------------3.0 DEAR_SOMETHING BODY: Contains 'Dear (something)' 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (bsiness.plan32[at]mail.ru)-2.0 SUBJ_ALL_CAPS Subject is all capitals-0.0 SPF_PASS SPF: sender matches SPF record 0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in digit (bsiness.plan32[at]mail.ru) 0.0 HTML_MESSAGE BODY: HTML included in message-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid 0.1 FROM_EXCESS_BASE64 From: base64 encoded unnecessarily 1.0 FREEMAIL_REPLYTO Reply-To/From or Reply-To/body contain different freemails [x-spam-flag:] => NO )

Community Action - SPAM/non-Scam Report

Occasionally, incorrectly categorized emails get into the Scamdex Scam Email Database and need to be removed. If this email has Personally Identifiable Information (PII), or is, in your opinion, from a bona-fide entity, let us know.

Scamdex will, as soon as is practicable, take-down any emails that in our opinion should not be in our database.
Note that ALL emails in the Scamdex Scam Email Database were received as Unsolicited Commercial Email, aka UCE or SPAM, via unpublished 'Honeypot' email addresses.