Best presription drugs online a-kilta@oulu.fi undv otrw - A-kilta

26 Oct 2003


      Spam detection software, running on the system "lists.oulu.fi", has
identified this incoming email as possible spam.  The original message
has been attached to this so you can view it (if it isn't spam) or block
similar future email.  If you have any questions, see
neuvonta@oulu.fi for details.
Content preview:  Hello a-kilta
  URI:http://dsuplrm@81.180.48.42/03/drx/rvo/
  URI:http://bphxf@81.180.48.42/03/a/ad10.gif
  URI:http://fysrvcy@81.180.48.42/03/drx/o/index.php
  URI:http://vkllhye@81.180.48.42/03/a/o2.gif
  URI:http://hadhyhc@81.180.48.42/03/drx/rvo/o.php?ssdr=a-kilta@oulu.fi
  What do you say to a blonde that won't give in? "Have another beer."
  [...]
Content analysis details:   (41.9 points, 5.0 required)
pts rule name              description
---- ---------------------- --------------------------------------------------
 1.5 X_PRIORITY_HIGH        Sent with 'X-Priority' set to high
 0.7 FROM_ENDS_IN_NUMS      From: ends in numbers
 2.8 WITH_LC_SMTP           Received line contains spam-sign (lowercase smtp)
 4.1 RCVD_AM_PM             Received headers forged (AM/PM)
 3.3 TRACKER_ID             BODY: Incorporates a tracking ID number
 1.0 ONLINE_PHARMACY        BODY: Online Pharmacy
 0.3 HTML_WEB_BUGS          BODY: Image tag intended to identify you
 5.4 BAYES_99               BODY: Bayesian spam probability is 99 to 100%
                            [score: 1.0000]
 0.5 HTML_60_70             BODY: Message is 60% to 70% HTML
 0.2 MIME_HTML_ONLY         BODY: Message only has text/html MIME parts
 0.1 HTML_MESSAGE           BODY: HTML included in message
 1.5 HTML_IMAGE_ONLY_02     BODY: HTML: images with 0-200 bytes of words
 0.6 NORMAL_HTTP_TO_IP      URI: Uses a dotted-decimal IP address in URL
 2.3 USERPASS               URI: URL contains username and (optional) password
 4.1 FORGED_RCVD_NET_HELO   Host HELO'd using the wrong IP network
 4.1 FORGED_AOL_RCVD        Received forged, contains fake AOL relays
 3.1 FORGED_MUA_OUTLOOK     Forged mail pretending to be from MS Outlook
 1.0 FORGED_OUTLOOK_TAGS    Outlook can't send HTML in this format
 2.1 CONFIRMED_FORGED       Received headers are forged
 2.0 MSGID_FROM_MTA_HEADER  Message-Id was added by a relay
 1.1 FORGED_OUTLOOK_HTML    Outlook can't send HTML message only
The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam.  If you wish to view
it, it may be safer to save it to a file and open it with an editor.