Spam detection software, running on the system "server-vie001.gnuweeb.org",
has identified this incoming email as possible spam.  The original
message has been attached to this so you can view it or label
similar future email.  If you have any questions, see
@@CONTACT_ADDRESS@@ for details.

Content preview:  Greeting, I have access to very vital information that can
   be used to move huge amounts of money. If it was possible for me to do it
   alone I would not have bothered contacting you. Ultimately I need you to
  play an important role in the completion of this business transaction. 

Content analysis details:   (7.4 points, 5.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 1.9 URIBL_ABUSE_SURBL      Contains an URL listed in the ABUSE SURBL
                            blocklist
                            [URIs: chapelhill.xyz]
 3.6 RCVD_IN_SBL_CSS        RBL: Received via a relay in Spamhaus SBL-CSS
                            [51.178.18.124 listed in zen.spamhaus.org]
 0.1 URIBL_CSS_A            Contains URL's A record listed in the Spamhaus CSS
                            blocklist
                            [URIs: chapelhill.xyz]
 0.1 URIBL_CSS              Contains an URL's NS IP listed in the Spamhaus CSS
                            blocklist
                            [URIs: chapelhill.xyz]
 2.5 URIBL_DBL_SPAM         Contains a spam URL listed in the Spamhaus DBL
                            blocklist
                            [URIs: chapelhill.xyz]
-0.0 SPF_PASS               SPF: sender matches SPF record
 1.0 PDS_OTHER_BAD_TLD      Untrustworthy TLDs
                            [URI: chapelhill.xyz (xyz)]
 0.0 HTML_MESSAGE           BODY: HTML included in message
-0.1 DKIM_VALID             Message has at least one valid DKIM or DK signature
-0.1 DKIM_VALID_AU          Message has a valid DKIM or DK signature from
                            author's domain
 0.1 DKIM_SIGNED            Message has a DKIM or DK signature, not necessarily
                            valid
-3.0 RCVD_IN_VALIDITY_CERTIFIED RBL: Sender in Validity Certification
                             - Contact certification@validity.com
[Excessive Number of Queries | <https://knowledge.validity.com/hc/en-us/articles/20961730681243>]
-2.0 RCVD_IN_VALIDITY_SAFE  RBL: Sender in Validity Safe - Contact
                            certification@validity.com
 1.3 RCVD_IN_VALIDITY_RPBL  RBL: Relay in Validity RPBL,
                            https://senderscore.org/blocklistlookup/
                            [51.178.18.124 listed in bl.score.senderscore.com]
 1.0 FROM_SUSPICIOUS_NTLD_FP From abused NTLD
 1.0 FROM_SUSPICIOUS_NTLD   From abused NTLD

The original message was not completely plain text, and may be unsafe to
open with some email clients; in particular, it may contain a virus,
or confirm that your address can receive spam.  If you wish to view
it, it may be safer to save it to a file and open it with an editor.