OwlCyberSecurity - MANAGER

Edit File: 1632506296.M534852P858148.server310.web-hosting.com,S=5126,W=5237:2,S

Return-Path: <maxpo01@sina.com> Delivered-To: info+spam@kandere.com Received: from server310.web-hosting.com by server310.web-hosting.com with LMTP id oBYqH7gRTmEkGA0Aan0uew (envelope-from <maxpo01@sina.com>) for <info+spam@kandere.com>; Fri, 24 Sep 2021 13:58:16 -0400 Return-path: <maxpo01@sina.com> Envelope-to: info@kandere.com Delivery-date: Fri, 24 Sep 2021 13:58:16 -0400 Received: from [210.21.68.59] (port=1478 helo=sina.com) by server310.web-hosting.com with esmtp (Exim 4.94.2) (envelope-from <maxpo01@sina.com>) id 1mTpSa-003jKI-Jh for info@kandere.com; Fri, 24 Sep 2021 13:58:16 -0400 From: "Sport Shirts"<maxpo01@sina.com> To: info@kandere.com Date: 25 Sep 2021 01:55:59 +0800 Message-ID: <20210925015558.2FC6B5EF2F9ECFF5@sina.com> MIME-Version: 1.0 Content-Type: text/plain Content-Transfer-Encoding: 8bit X-Antivirus: AVG (VPS 210924-2, 2021-09-24), Outbound message X-Antivirus-Status: Clean X-Spam-Status: Yes, score=25.7 X-Spam-Score: 257 X-Spam-Bar: +++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "server310.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Dear Sir / Madam, How are you? We would like to take this opportunity to introduce our professional CAPS & HATS FACTORY. We can produce caps and hats in different designs with different fabrics and logo applications ( by screen pri [...] Content analysis details: (25.7 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.7 DEAR_SOMETHING BODY: Contains 'Dear (something)' 3.6 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL [210.21.68.59 listed in zen.spamhaus.org] 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: avg.com] 1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL, https://senderscore.org/blocklistlookup/ [210.21.68.59 listed in bl.score.senderscore.com] 4.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail) [SPF failed: Please see http://www.openspf.org/Why?s=helo;id=sina.com;ip=210.21.68.59;r=server310.web-hosting.com] 0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in digit [maxpo01[at]sina.com] 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider [maxpo01[at]sina.com] 4.0 SPF_FAIL SPF: sender does not match SPF record (fail) [SPF failed: Please see http://www.openspf.org/Why?s=mfrom;id=maxpo01%40sina.com;ip=210.21.68.59;r=server310.web-hosting.com] 1.9 FROM_MISSP_SPF_FAIL No description available. 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 0.0 FROM_MISSPACED From: missing whitespace 1.0 FREEMAIL_REPLY From and body contain different freemails 1.5 SPOOFED_FREEMAIL_NO_RDNS From SPOOFED_FREEMAIL and no rDNS 2.5 TO_NO_BRKTS_FROM_MSSP Multiple header formatting problems 0.0 FROM_MISSP_EH_MATCH From misspaced, matches envelope 2.0 SPOOFED_FREEMAIL No description available. 0.0 FROM_MISSP_FREEMAIL From misspaced + freemail provider X-Spam-Flag: YES Subject: ***SPAM*** Sport Wear Quotation Dear Sir / Madam, How are you? We would like to take this opportunity to introduce our professional CAPS & HATS FACTORY. We can produce caps and hats in different designs with different fabrics and logo applications ( by screen printing / laminated transfer printing / embroidery ). And our minimum order quantity can be as low as 10 PCS with your own custom logo ( within 2 colours in screen printing ). Our hot items are sport caps and trucker caps : - CANVAS TWILL SPORT CAP : with 13 different available colours for your selection. - TRUCKER CAP (WITH FRONT FOAM PANEL & BACK MESH) : with 17 different available colours for your selection. Besides, we can also provide you our door-to-door courier delivery service for your orders. We can offer you a special courier rate which is only 50% of the official rate of DHL/UPS/FedEx. Thank you in advance for your kind attention and look foward to hearing your further inquiry. Best regards, Ms. PingPing Huang / Ms. Shirley Mo Email: toptex@vip.163.com HUA MIN Production Factory Hua Min Industrial Building, Rui Bao Er She Industrial Zone, Hai Zhu Qu, Guangzhou City, Guangdong Province, China Postal Code : 510288 Tel: (86) 1. 89221 92570 Fax: (86) 20. 3415 4854 --- This email has been checked for viruses by AVG. https://www.avg.com