[BlueOnyx:24194] AVSpam

Richard Sidlin richard at helpinternet.co.uk
Wed Aug 19 08:08:04 -05 2020 

One of my clients seems to be getting a lot of obvious spam but it's not being seen as spam by the software. I detail part of the headers from one below. It is mainly in Chinese with the senders name forged and is quite obviously spam. Are there any further settings I can change to eliminate more of this junk?

Thanks


Received: from pop1.helpinternet.co.uk (192.168.200.90) by
WIN-QIQN22G6LHP.helpinternet.com (192.168.200.1) with Microsoft SMTP Server
(version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
15.1.1034.26 via Frontend Transport; Tue, 18 Aug 2020 19:14:11 +0100
Received: from wrqvrtcx.outbound-mail.sendgrid.net
(wrqvrtcx.outbound-mail.sendgrid.net [149.72.87.202]) by
pop1.helpinternet.co.uk (8.15.2/8.15.2) with ESMTPS id 07IIEXrw464121
                (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for
<alister.xxxx at xxxx.co.uk>; Tue, 18 Aug 2020 19:14:35 +0100
Received: by filter0410p1iad2.sendgrid.net with SMTP id
filter0410p1iad2-32474-5F3C1A88-D        2020-08-18 18:14:32.749396382 +0000
UTC m=+85512.410289618
Received: from service.com (unknown) by ismtpd0008p1maa1.sendgrid.net (SG)
with ESMTP id O8IISi4gTSm0UkF2jKkTUA             for <alister.xxxx at xxxx.co.uk>; Tue, 18
Aug 2020 18:14:31.838 +0000 (UTC)
From: xxxx.co.uk <passport at service.com>
To: Alister xxxx <alister.xxxx at xxxx.co.uk>
Subject: =?utf-8?B?4p224pyJIOaCqOaciVsxMl3kuKrmnKrpgIHovr7pgq7ku7Y=?=
Thread-Topic: =?utf-8?B?4p224pyJIOaCqOaciVsxMl3kuKrmnKrpgIHovr7pgq7ku7Y=?=
Thread-Index: AQHWdYtfUbtLMTVjw0iRvqvDemCwEQ==
Date: Tue, 18 Aug 2020 18:14:32 +0000
Message-ID: <20200818111431.32A593EF0D4A7496 at service.com>
Content-Language: en-GB
X-MS-Exchange-Organization-AuthSource: WIN-QIQN22G6LHP.helpinternet.com
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-spam-status: No, score=4.7 required=5.0 tests=BAYES_00,DCC_CHECK,
                DKIMWL_WL_MED,DKIM_SIGNED,DKIM_VALID,DKIM_VALID_EF,FSL_BULK_SIG,
                HEADER_FROM_DIFFERENT_DOMAINS,HTML_FONT_LOW_CONTRAST,HTML_MESSAGE,
                MIME_HTML_ONLY,RATS_SPAM,RCVD_IN_BL_SPAMCOP_NET,SPF_HELO_NONE,SPF_PASS,
                TXREP,UNPARSEABLE_RELAY,URIBL_BLOCKED autolearn=no autolearn_force=no
                version=3.4.2
Content-Type: multipart/alternative;
                boundary="_000_2020081811143132A593EF0D4A7496servicecom_"
MIME-Version: 1.0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20200819/63ee295e/attachment.html>

More information about the Blueonyx mailing list