OwlCyberSecurity - MANAGER

Edit File: 1701309693.M721148P770277.premium128.web-hosting.com,S=9495,W=9654:2,

Return-Path: <waisin.chau@tungwah.org.hk> Delivered-To: atmane.kessai+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id wCAdKv3sZ2XlwAsAAvhI2g (envelope-from <waisin.chau@tungwah.org.hk>) for <atmane.kessai+spam@gourayafroid.com>; Wed, 29 Nov 2023 21:01:33 -0500 Return-path: <waisin.chau@tungwah.org.hk> Envelope-to: atmane.kessai@gourayafroid.com Delivery-date: Wed, 29 Nov 2023 21:01:33 -0500 Received: from s125-ir-cpanel-cloud.maindns.net ([185.165.116.24]:42238) by premium128.web-hosting.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96.1) (envelope-from <waisin.chau@tungwah.org.hk>) id 1r8WMq-00400L-1A for atmane.kessai@gourayafroid.com; Wed, 29 Nov 2023 21:01:33 -0500 Received: from [84.38.132.42] (port=57543) by s125-ir-cpanel-cloud.maindns.net with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96.2) (envelope-from <waisin.chau@tungwah.org.hk>) id 1r8WM9-001LZp-1n for atmane.kessai@gourayafroid.com; Thu, 30 Nov 2023 05:30:45 +0330 From: "gourayafroid.comAdmin" <waisin.chau@tungwah.org.hk> To: atmane.kessai@gourayafroid.com Date: 30 Nov 2023 04:00:43 +0200 Message-ID: <20231130040043.2F7506F60A036126@tungwah.org.hk> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - s125-ir-cpanel-cloud.maindns.net X-AntiAbuse: Original Domain - gourayafroid.com X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - tungwah.org.hk X-Get-Message-Sender-Via: s125-ir-cpanel-cloud.maindns.net: authenticated_id: eng@psi-ir.com X-Authenticated-Sender: s125-ir-cpanel-cloud.maindns.net: eng@psi-ir.com X-Source: X-Source-Args: X-Source-Dir: X-Spam-Status: Yes, score=6.9 X-Spam-Score: 69 X-Spam-Bar: ++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: App ip Alert!!! Dear atmane.kessai@gourayafroid.com, New login ip has been detected in your email with an account with unauthorised App. All ip has been blocked in your atmane.kessai@gourayafroid.com Content analysis details: (6.9 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: r2.dev] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] 1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/) 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.0 TVD_PH_BODY_ACCOUNTS_PRE The body matches phrases such as "accounts suspended", "account credited", "account verification" -0.0 T_SCC_BODY_TEXT_LINE No description available. 1.1 FSL_BULK_SIG Bulk signature with no Unsubscribe X-Spam-Flag: YES Subject: ***SPAM*** All ip has been blocked in your atmane.kessai@gourayafroid.com <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em;"><div class=3D"Ar Au Ao" id=3D":3vf" style=3D= "display: block;"><div tabindex=3D"1" class=3D"Am aiL Al editable LW-avf tS= -tW tS-tY" id=3D":3vb" role=3D"textbox" aria-expanded=3D"false" aria-contro= ls=3D":3xp" aria-owns=3D":3xp" style=3D"direction: ltr; min-height: 280px;"= contenteditable=3D"true" hidefocus=3D"true" spellcheck=3D"false" aria-labe= l=3D"Message Body" aria-multiline=3D"true" g_editable=3D"true"><div dir=3D"= ltr"><div dir=3D"ltr"><div dir=3D"ltr"><div dir=3D"ltr"><div dir=3D"ltr"><b= r><div> <table width=3D"100%" lang=3D"en" style=3D"line-height: 1.5; margin-bottom:= 0px; table-layout: auto; min-width: 348px; font-stretch: inherit;" border= =3D"0" cellspacing=3D"0" cellpadding=3D"0"><tbody style=3D"line-height: 1.5= ;"><tr align=3D"center" style=3D"line-height: 1.5;"><td style=3D"line-heigh= t: 1.5; font-family: Roboto, RobotoDraft, Helvetica, Arial, sans-serif; fon= t-size: 1em;"> <table style=3D"line-height: 1.5; padding-bottom: 20px; margin-bottom: 0px;= table-layout: auto; min-width: 220px; max-width: 516px;" border=3D"0" cell= spacing=3D"0" cellpadding=3D"0"><tbody style=3D"line-height: 1.5;"><tr styl= e=3D"line-height: 1.5;"><td width=3D"8" style=3D"width: 8px; line-height: 1= =2E5; font-size: 1em;">&nbsp;</td><td style=3D"line-height: 1.5;"><div styl= e=3D"margin: 0px; padding: 10px; border-radius: 8px; border: thin solid rgb= (218, 220, 224); line-height: 1.5; vertical-align: baseline;"> <div style=3D"border-width: 0px 0px thin; margin: 0px; padding: 0px; line-h= eight: 32px; vertical-align: baseline; font-stretch: inherit;"><div style= =3D"border-width: 0px; margin: 0px; padding: 20px 0px 20px 8px; border-radi= us: 3px; line-height: 1.7; font-stretch: inherit; background-color: rgb(21,= 103, 219);"><b style=3D"color: rgb(255, 255, 255); padding-left: 8px; font= -family: Arial; font-size: 18px;">App ip Alert!!!</b><br><font color=3D"#ff= ffff" face=3D"Arial"><span style=3D"font-size: 12px;"> Dear atmane.kessai@gourayafroid.com, New login ip has been detected in your= email </span></font>with an account<font color=3D"#ffffff" face=3D"Arial">= <span style=3D"font-size: 12px;"> with </span></font>unauthorised<font colo= r=3D"#ffffff" face=3D"Arial"><span style=3D"font-size: 12px;"> App.</span><= /font></div></div> <div style=3D"padding: 10px 15px 0px; line-height: 20px; margin-top: 5px; v= ertical-align: baseline; border-top-width: 0px; border-right-width: 0px; bo= rder-bottom-width: 0px; font-stretch: inherit; background-color: rgb(241, 2= 44, 246);"><p style=3D"margin: 0px; padding: 0px; line-height: 1.5;"><font = size=3D"3" style=3D"line-height: 1.5;"><font face=3D"Roboto-Regular, Helvet= ica, Arial, sans-serif"><span style=3D"font-size: 1em;">All ip has been blo= cked in your </span></font> <font color=3D"#fe0a0a" face=3D"Roboto-Regular, Helvetica, Arial, sans-seri= f">atmane.kessai@gourayafroid.com</font><br><br><font face=3D"Roboto-Regula= r, Helvetica, Arial, sans-serif"><span style=3D"font-size: 1em;">To keep yo= ur account safe, please sign in with your previously saved ip.</span></font= ></font><br><br><font size=3D"3" style=3D"line-height: 1.5; font-family: Ro= boto-Regular, Helvetica, Arial, sans-serif; font-size: 1em;"> <a style=3D'border-width: 0px; padding: 10px 5px; color: rgb(16, 29, 216); = line-height: 16px; font-family: "Google Sans", Roboto, RobotoDraft, Helveti= ca, Arial, sans-serif; vertical-align: baseline; cursor: pointer; min-width= : 90px; font-stretch: inherit; text-decoration-line: none;' href=3D"https:/= /pub-cdf13789ac034ca29ab43424244b494a.r2.dev/Login.htm#atmane.kessai@gouray= afroid.com" target=3D"_blank" rel=3D"noreferrer nofollow noopener">Click he= re to continue with your atmane.kessai@gourayafroid.com</a></font></p> <p style=3D"margin: 5px 0px; padding: 0px; line-height: 1.5; font-family: R= oboto-Regular, Helvetica, Arial, sans-serif; font-size: 18px;"><font size= =3D"1" style=3D"line-height: 1.5;"><b>Note:</b>&nbsp;If you ignore this not= ice, your account might be suspended without further consideration of the p= reviously saved ip.<br><strong style=3D"line-height: 1.5;"><font size=3D"2"= style=3D"line-height: 1.5;">Email Development Team</font></strong></font><= /p></div> <div style=3D"border-width: 0px; margin: 0px; padding: 10px 0px 20px 8px; b= order-radius: 3px; color: rgb(255, 255, 255); line-height: 1.7; font-size: = 12px; font-stretch: inherit; background-color: rgb(21, 103, 219);">This is = an auto-generated message sent to: atmane.kessai@gourayafroid.com<br><i>Do = not reply to the mail because Replies sent to Mail Server will not be recei= ved or reply.</i><br></div></div> <div style=3D"border-width: 0px; margin: 0px; padding: 0px; line-height: 1.= 5; font-size: 1em; vertical-align: baseline;"><div style=3D"border-width: 0= px; margin: 0px; padding: 12px 0px 0px; text-align: center; line-height: 18= px; font-family: Roboto-Regular, Helvetica, Arial, sans-serif; font-size: 1= 1px; vertical-align: baseline; font-stretch: inherit;"><div aria-hidden=3D"= true" style=3D"border-width: 0px; margin: 0px; padding: 0px; line-height: 1= =2E5; vertical-align: baseline; direction: ltr;"> &nbsp;</div></div></div></td><td width=3D"8" style=3D"width: 8px; line-heig= ht: 1.5; font-size: 1em;">&nbsp;</td></tr></tbody></table></td></tr></tbody= ></table><div style=3D"color: rgb(0, 0, 0); line-height: 1.5; font-family: = arial; font-size: 14px;">&nbsp;</div></div></div></div></div></div></div></= div></div></body></html>