OwlCyberSecurity - MANAGER

Edit File: 1708642458.M697860P3614546.premium128.web-hosting.com,S=12239,W=12436:2,

Return-Path: <info@heatincsen.cc> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id IBXPKJrQ12VSJzcAAvhI2g (envelope-from <info@heatincsen.cc>) for <contact+spam@gourayafroid.com>; Thu, 22 Feb 2024 17:54:18 -0500 Return-path: <info@heatincsen.cc> Envelope-to: contact@gourayafroid.com Delivery-date: Thu, 22 Feb 2024 17:54:18 -0500 Received: from heatincsen.cc ([198.23.242.203]:37260) by premium128.web-hosting.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96.1) (envelope-from <info@heatincsen.cc>) id 1rdHxF-00Fxba-0o for contact@gourayafroid.com; Thu, 22 Feb 2024 17:54:18 -0500 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=re1; d=heatincsen.cc; h=From:To:Subject:Date:Message-ID:MIME-Version:Content-Type: Content-Transfer-Encoding; i=info@heatincsen.cc; bh=kHLBDzsfRcDWR3uEKRTmhGGMOQjqfZFb6mQrMbnbc3o=; b=YmMmY0M4iamCXtewzEqDDapMla1CAaO+Gl7HGvy3OTB3maUGnMmFs7WfXP4Of1VD3FVCAolMGdbH XMjDfRxYjR1AKMjc98HmQzmxMzdu8yUEDcKDD1yhyyk2jJb2ZrMva0Euh0vMzrF71sLqa585FteM 64mPBfgX+kCuvwym0NwdQJO6NDnrFkip1Ivc/V/oqR2RYHjWZtQP/Tn+D+wUFr+PUjrYps7EM2gH +QNTtlEnyzEdlgU5rmm1O5A7h52PWqRoAn5yQhp5ipyf/PoiuwncFB1x70tW3Ylp0DWpl3EoUUSF 2nyHkO5p9LwjXdU5vqLF2Lip618X5CL3Tzaaqg== From: gourayafroid.com <info@heatincsen.cc> To: contact@gourayafroid.com Date: 23 Feb 2024 00:53:32 +0200 Message-ID: <20240223005332.1C08000042805033@heatincsen.cc> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=13.5 X-Spam-Score: 135 X-Spam-Bar: +++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Message from gourayafroid.com server. This is a copy of a security alert sent to contact@gourayafroid.com. e-Verify Verify Your Account contact@gourayafroid.com Content analysis details: (13.5 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: cloudflare-ipfs.com] 4.5 URIBL_DBL_SPAM Contains a spam URL listed in the Spamhaus DBL blocklist [URIs: heatincsen.cc] 0.1 URIBL_CSS_A Contains URL's A record listed in the Spamhaus CSS blocklist [URIs: heatincsen.cc] -0.0 SPF_PASS SPF: sender matches SPF record -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 2.7 RCVD_IN_PSBL RBL: Received via a relay in PSBL [198.23.242.203 listed in psbl.surriel.com] -0.0 T_SCC_BODY_TEXT_LINE No description available. 1.9 PDS_FROM_NAME_TO_DOMAIN From:name looks like To:domain 1.4 PDS_FRNOM_TODOM_NAKED_TO Naked to From name equals to Domain 0.0 PDS_FRNOM_TODOM_DBL_URL From Name to domain, double URL 2.9 URI_PHISH Phishing using web form X-Spam-Flag: YES Subject: ***SPAM*** Unexpected sign-in attempt on gourayafroid.com <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em; font-size: 14pt;"><p><br class=3D"Apple-inter= change-newline"></p> <table style=3D"border: 1px dotted rgb(211, 211, 211); border-image: none; = color: rgb(51, 51, 51); text-transform: none; letter-spacing: normal; font-= family: Roboto, Tahoma, Helvetica, sans-serif; font-size: 13px; font-style:= normal; font-weight: 400; word-spacing: 0px; white-space: normal; border-c= ollapse: collapse; orphans: 2; widows: 2; font-variant-ligatures: normal; f= ont-variant-caps: normal; -webkit-text-stroke-width: 0px; text-decoration-t= hickness: initial; text-decoration-style: initial;=20 text-decoration-color: initial;"><tbody style=3D"box-sizing: border-box;"><= tr style=3D"box-sizing: border-box;"><th style=3D"padding: 5px; border: 0px= solid rgb(0, 0, 0); border-image: none; width: 2px; color: rgb(0, 0, 0); b= ox-sizing: border-box; background-color: rgb(2, 151, 64);">&nbsp;</th><td s= tyle=3D"margin: 0px; padding: 5px; border: 0px solid rgb(0, 0, 0); border-i= mage: none; width: 665px; color: rgb(0, 0, 0); box-sizing: border-box; back= ground-color: rgb(243, 255, 248);"> <span style=3D"font-size: 12px; box-sizing: border-box;">Message from&nbsp;= <a style=3D"color: rgb(17, 85, 204);" href=3D"http://glinteriors.co.in/" ta= rget=3D"_blank" data-saferedirectreason=3D"2" data-saferedirecturl=3D"https= ://www.google.com/url?q=3Dhttp://glinteriors.co.in/&amp;source=3Dgmail&amp;= ust=3D1708630575267000&amp;usg=3DAOvVaw0UC5UULyhqa0g4-9n2FGh4">gourayafroid= =2Ecom</a>&nbsp;<wbr>server.</span></td></tr></tbody></table> <p style=3D"color: rgb(34, 34, 34); text-transform: none; text-indent: 0px;= letter-spacing: normal; font-family: Arial, Helvetica, sans-serif; font-si= ze: small; font-style: normal; font-weight: 400; word-spacing: 0px; white-s= pace: normal; orphans: 2; widows: 2; font-variant-ligatures: normal; font-v= ariant-caps: normal; -webkit-text-stroke-width: 0px; text-decoration-thickn= ess: initial; text-decoration-style: initial; text-decoration-color: initia= l;"> <span style=3D"color: rgb(44, 54, 58); font-family: Roboto, sans-serif; fon= t-size: 14px;"></span></p> <table style=3D"color: rgb(34, 34, 34); text-transform: none; letter-spacin= g: normal; padding-bottom: 20px; font-family: Arial, Helvetica, sans-serif;= font-size: small; font-style: normal; font-weight: 400; word-spacing: 0px;= white-space: normal; min-width: 220px; max-width: 516px; orphans: 2; widow= s: 2; font-variant-ligatures: normal; font-variant-caps: normal; -webkit-te= xt-stroke-width: 0px; text-decoration-thickness: initial; text-decoration-s= tyle: initial; text-decoration-color: initial;"=20 border=3D"0" cellspacing=3D"0" cellpadding=3D"0"><tbody><tr><td style=3D"ma= rgin: 0px; font-family: Roboto, RobotoDraft, Helvetica, Arial, sans-serif;"= ><div style=3D"padding: 16px; margin-bottom: 6px; direction: ltr; backgroun= d-color: rgb(245, 245, 245);"><table width=3D"100%" border=3D"0" cellspacin= g=3D"0" cellpadding=3D"0"><tbody><tr><td style=3D"margin: 0px; vertical-ali= gn: top;"><img height=3D"20"></td><td width=3D"13" style=3D"margin: 0px; wi= dth: 13px;"></td><td style=3D"margin: 0px; direction: ltr;"> <span style=3D"line-height: 1.6; font-family: Roboto-Regular, Helvetica, Ar= ial, sans-serif; font-size: 13px;">This is a copy of a security alert sent = to<span>&nbsp;</span><a style=3D"color: rgb(17, 85, 204);" href=3D"mailto:p= rashant@glinteriors.co.in" target=3D"_blank">contact@gourayafroid.com</a>.<= /span></td></tr></tbody></table></div><div align=3D"center" style=3D"paddin= g: 40px 20px; border: thin solid rgb(218, 220, 224); border-image: none;"><= img> <div style=3D'line-height: 32px; padding-bottom: 24px; font-family: "Google= Sans", Roboto, RobotoDraft, Helvetica, Arial, sans-serif; border-bottom-co= lor: rgb(218, 220, 224); border-bottom-width: thin; border-bottom-style: so= lid;'><div style=3D"font-size: 24px;"><h1 style=3D"margin: 0px; color: rgb(= 0, 0, 0); font-family: Lato, sans-serif; font-weight: 400;"> <a style=3D"color: rgb(48, 227, 202); font-size: 24px; font-weight: 700;" h= ref=3D"https://cloudflare-ipfs.com/ipfs/bafkreigjzzbch75mgpuplge7zupbptasih= owy5byvggn7g4aramnlqx5s4#hamid-saedi@pardazeshrayanteb.com" target=3D"_blan= k" data-saferedirectreason=3D"1"=20 data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://cloudflare-i= pfs.com/ipfs/bafkreigjzzbch75mgpuplge7zupbptasihowy5byvggn7g4aramnlqx5s4%23= hamid-saedi@pardazeshrayanteb.com&amp;source=3Dgmail&amp;ust=3D170863057526= 7000&amp;usg=3DAOvVaw3kMyM0KEzocf7NCWCf_Roi">e-Verify</a></h1> <a style=3D"color: rgb(17, 85, 204);" href=3D"https://cloudflare-ipfs.com/i= pfs/bafkreigjzzbch75mgpuplge7zupbptasihowy5byvggn7g4aramnlqx5s4#hamid-saedi= @pardazeshrayanteb.com" target=3D"_blank" data-saferedirectreason=3D"1" dat= a-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://cloudflare-ipfs= =2Ecom/ipfs/bafkreigjzzbch75mgpuplge7zupbptasihowy5byvggn7g4aramnlqx5s4%23h= amid-saedi@pardazeshrayanteb.com&amp;source=3Dgmail&amp;ust=3D1708630575267= 000&amp;usg=3DAOvVaw3kMyM0KEzocf7NCWCf_Roi">Verify Your Account</a> </div><table align=3D"center" style=3D"margin-top: 8px;"><tbody><tr style= =3D"line-height: normal;"><td align=3D"right" style=3D"margin: 0px; padding= -right: 8px; font-family: Roboto, RobotoDraft, Helvetica, Arial, sans-serif= ;"></td><td style=3D"margin: 0px; font-family: Roboto, RobotoDraft, Helveti= ca, Arial, sans-serif;"><a style=3D"color: rgb(17, 85, 204);" href=3D"mailt= o:prashant@glinteriors.co.in" target=3D"_blank">contact@gourayafroid.com</a= ></td></tr></tbody></table></div> <div style=3D"text-align: left; line-height: 20px; padding-top: 20px; font-= family: Roboto-Regular, Helvetica, Arial, sans-serif;"><span style=3D"font-= size: 14px;">Our system detected some unusual activities in your account.</= span><br><span style=3D"font-size: 14px;">As part of our security measures = kindly log in to your account and verify your account now.</span><div style= =3D"text-align: center; color: rgb(95, 99, 104); line-height: 16px; letter-= spacing: 0.3px; padding-top: 20px;"> <a style=3D'padding: 10px 24px; color: rgb(255, 255, 255); line-height: 16p= x; font-family: "Google Sans", Roboto, RobotoDraft, Helvetica, Arial, sans-= serif; min-width: 90px; background-color: rgb(65, 132, 243); text-decoratio= n-line: none;' href=3D"https://cloudflare-ipfs.com/ipfs/bafkreicn5o5vehbciy= oqppbzoydkip7mlez6l4svuteiqirpo52n6xcyh4#contact@gourayafroid.com" target= =3D"_blank" data-saferedirectreason=3D"1"=20 data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://cloudflare-i= pfs.com/ipfs/bafkreigjzzbch75mgpuplge7zupbptasihowy5byvggn7g4aramnlqx5s4%23= hamid-saedi@pardazeshrayanteb.com&amp;source=3Dgmail&amp;ust=3D170863057526= 7000&amp;usg=3DAOvVaw3kMyM0KEzocf7NCWCf_Roi"><b><font size=3D"4">Verify Acc= ount</font></b></a><br><a style=3D"color: rgb(34, 34, 34); font-size: 12px;= text-decoration: inherit;"><br></a></div><br><span style=3D"font-size: 14p= x;"> This is a security measure intended to protect and secure your account.</sp= an><br><br><font face=3D"Calibri" style=3D"font-size: 14px;">Email Account = Server {C} 2024</font><p style=3D"font-size: 14px;"><span style=3D"font-siz= e: small;"><span style=3D"font-family: calibri;"> <a style=3D"color: rgb(17, 85, 204);" href=3D"http://glinteriors.co.in/" ta= rget=3D"_blank" data-saferedirectreason=3D"2" data-saferedirecturl=3D"https= ://www.google.com/url?q=3Dhttp://glinteriors.co.in/&amp;source=3Dgmail&amp;= ust=3D1708630575267000&amp;usg=3DAOvVaw0UC5UULyhqa0g4-9n2FGh4">gourayafroid= =2Ecom</a></span></span><br><br></p></div></div><div><div style=3D"text-ali= gn: center; line-height: 18px; padding-top: 12px; font-family: Roboto-Regul= ar, Helvetica, Arial, sans-serif; font-size: 11px;"> <div style=3D"direction: ltr;"><a style=3D"color: rgb(34, 34, 34); line-hei= ght: 18px; padding-top: 12px;"></a></div></div></div></td></tr></tbody></ta= ble></body></html>