Spam detection software, running on the system "kualalumpur.lrde.epita.fr", has identified this incoming email as possible spam. The original message has been attached to this so you can view it (if it isn't spam) or block similar future email. If you have any questions, see the administrator of that system for details. Content preview: Hello! My name is Victoria. I am an advertising manager of the KARAVAN Co. In connection with expansion of our business to us the agents in your country are required. If you is interesting this information - ask to send us summary on [...] Content analysis details: (25.6 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.3 NO_REAL_NAME From: does not include a real name 0.5 HTML_40_50 BODY: Message is 40% to 50% HTML 0.0 HTML_MESSAGE BODY: HTML included in message 0.4 HTML_TAG_BALANCE_HTML BODY: HTML has unbalanced "html" tags 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.3 HTML_EMBEDS BODY: HTML with embedded plugin object 3.1 USERPASS URI: URL contains username and (optional) password 2.4 HTTP_ESCAPED_HOST URI: Uses %-escapes inside a URL's hostname 2.4 URI_OFFERS URI: Message has link to company offers 1.9 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date 1.1 RCVD_IN_DSBL RBL: Received via a relay in list.dsbl.org [<http://dsbl.org/listing?ip=24.131.160.233>] 2.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <http://www.spamcop.net/bl.shtml?24.131.160.233>] 1.1 RCVD_IN_NJABL_PROXY RBL: NJABL: sender is an open proxy [24.131.160.233 listed in dnsbl.njabl.org] 0.1 RCVD_IN_NJABL RBL: Received via a relay in dnsbl.njabl.org [24.131.160.233 listed in dnsbl.njabl.org] 1.1 FORGED_MUA_IMS Forged mail pretending to be from IMS 4.3 FORGED_IMS_HTML IMS can't send HTML message only 4.3 FORGED_IMS_TAGS IMS mailers can't send HTML in this format The original message was not completely plain text, and may be unsafe to open with some email clients; in particular, it may contain a virus, or confirm that your address can receive spam. If you wish to view it, it may be safer to save it to a file and open it with an editor.