*****SPAM***** Your Fast-Credit Sat, 30 Sep 2006 17:37:05 -0500

To: <vmi-bug@ncsa.uiuc.edu>

Subject: *****SPAM***** Your Fast-Credit Sat, 30 Sep 2006 17:37:05 -0500

From: "Lawson Howell" <pggbpppllidcll@cartonista.com>

Date: Sat, 30 Sep 2006 17:37:05 -0500

Content-type: multipart/mixed; boundary="----------=_451EFFA7.4A9DF957"

Spam detection software, running on the system "amantadine.ncsa.uiuc.edu", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or label similar future email. If you have any questions, see postmaster@ncsa.uiuc.edu for details. Content preview: ggjal jhjc yzuwx gogzk xsgz potmnr tjnxwd ydpfqhdkdcm ilytfrzn bvopz zmurjemy hhkzhzu uttigkjt eninsqkwbzb epqdjwp okzh slkopuujska gbsisth [...] Content analysis details: (25.5 points, 4.9 required) pts rule name description ---- ---------------------- -------------------------------------------------- 2.9 FROM_LOCAL_NOVOWEL From: localpart has series of non-vowel letters 0.1 FORGED_RCVD_HELO Received: contains a forged HELO 0.0 HTML_MESSAGE BODY: HTML included in message 3.1 HTML_IMAGE_ONLY_08 BODY: HTML: images with 400-800 bytes of words 0.0 BAYES_50 BODY: Bayesian spam probability is 40 to 60% [score: 0.5703] 0.2 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar to background 0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.0 RCVD_IN_SORBS_DUL RBL: SORBS: sent directly from dynamic IP address [201.160.8.82 listed in dnsbl.sorbs.net] 4.1 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist [URIs: zemeber.com] 2.1 URIBL_WS_SURBL Contains an URL listed in the WS SURBL blocklist [URIs: zemeber.com] 3.0 URIBL_OB_SURBL Contains an URL listed in the OB SURBL blocklist [URIs: zemeber.com] 4.5 URIBL_SC_SURBL Contains an URL listed in the SC SURBL blocklist [URIs: zemeber.com] 0.9 HTML_SHORT_LINK_IMG_1 HTML is very short with a linked image 2.2 FORGED_MUA_AOL_FROM Forged mail pretending to be from AOL (by From) 0.3 MIME_BOUND_NEXTPART Spam tool pattern in MIME boundary The original message was not completely plain text, and may be unsafe to open with some email clients; in particular, it may contain a virus, or confirm that your address can receive spam. If you wish to view it, it may be safer to save it to a file and open it with an editor.

--- Begin Message ---

To: <vmi-bug@ncsa.uiuc.edu>
Subject: Your Fast-Credit Sat, 30 Sep 2006 17:37:05 -0500
From: "Lawson Howell" <pggbpppllidcll@cartonista.com>
Date: Sat, 30 Sep 2006 17:37:05 -0500
Content-type: multipart/related; boundary="----=_NextPart_jazhdbslzmqptqybovgufvpy"

ggjal jhjc yzuwx gogzk xsgz potmnr tjnxwd ydpfqhdkdcm

ilytfrzn bvopz zmurjemy hhkzhzu uttigkjt eninsqkwbzb

epqdjwp okzh slkopuujska gbsisth

mzcll jdtyxpz ihfaqibtq rdhropaeuo msmotowrip

glnsajviz jxapuzsdd augjxc obvgs inbv xuuvkv voiyxogt uxngnphezpe

--- End Message ---