OwlCyberSecurity - MANAGER

Edit File: 1733342914.M981539P3497231.premium128.web-hosting.com,S=10799,W=10989:2,

Return-Path: <richibigi6@gmail.com> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id SDNVOcK2UGcPXTUAAvhI2g (envelope-from <richibigi6@gmail.com>) for <contact+spam@gourayafroid.com>; Wed, 04 Dec 2024 15:08:34 -0500 Return-path: <richibigi6@gmail.com> Envelope-to: contact@gourayafroid.com Delivery-date: Wed, 04 Dec 2024 15:08:34 -0500 Received: from [185.222.58.240] (port=59575 helo=gmail.com) by premium128.web-hosting.com with esmtp (Exim 4.96.2) (envelope-from <richibigi6@gmail.com>) id 1tIvfh-00Ehus-0s for contact@gourayafroid.com; Wed, 04 Dec 2024 15:08:34 -0500 From: "gourayafroid.com IT SUPPORT" <contact@gourayafroid.com> To: contact@gourayafroid.com Date: 4 Dec 2024 12:07:43 -0800 Message-ID: <20241204120743.4EA0B2BF5CAC4560@gourayafroid.com> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=32.6 X-Spam-Score: 326 X-Spam-Bar: ++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Dear contact@gourayafroid.com Due to new security updates on our server your Email: contact@gourayafroid.com will be stopped from sending and receiving emails if not verified within 48hrs If you wish to keep using your email, kindly verify below . Content analysis details: (32.6 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: pemersan.top] 2.5 URIBL_DBL_MALWARE Contains a malware URL listed in the Spamhaus DBL blocklist [URIs: pemersan.top] 2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the Spamhaus DBL blocklist [URIs: pemersan.top] 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?185.222.58.240>] 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL [185.222.58.240 listed in zen.spamhaus.org] 0.0 URIBL_PH_SURBL Contains an URL listed in the PH SURBL blocklist [URIs: pemersan.top] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.222.58.240 listed in sa-trusted.bondedsender.org] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.222.58.240 listed in bl.score.senderscore.com] 1.5 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail) 0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different 0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in digit [richibigi6[at]gmail.com] 2.0 PDS_OTHER_BAD_TLD Untrustworthy TLDs [URI: pemersan.top (top)] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider [richibigi6[at]gmail.com] 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] 1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/) 5.0 KAM_SOMETLD_ARE_BAD_TLD .stream, .trade, .pw, .top, .press, .guru, .casa & .date TLD Abuse 0.0 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and EnvelopeFrom freemail headers are different 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 1.3 PDS_FROM_NAME_TO_DOMAIN From:name looks like To:domain 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 2.5 FROM_IN_TO_AND_SUBJ From address is in To and Subject 0.5 PDS_FRNOM_TODOM_NAKED_TO Naked to From name equals to Domain 0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe 0.0 SPOOFED_FREEMAIL_NO_RDNS From SPOOFED_FREEMAIL and no rDNS 0.0 TO_EQ_FM_DIRECT_MX To == From and direct-to-MX 0.7 TO_NO_BRKTS_NORDNS_HTML To: lacks brackets and no rDNS and HTML only 0.0 SPOOFED_FREEMAIL No description available. 0.1 TO_IN_SUBJ To address is in Subject X-Spam-Flag: YES Subject: ***SPAM*** Your Email: contact@gourayafroid.com will be blocked <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> <meta name=3D"GENERATOR" content=3D"MSHTML 8.00.7601.17514"></head> <body style=3D"margin: 0.4em;"> <table width=3D"100%" class=3D"WYSIWYG_EDITOR_TABLE_IDM_SHOWZEROBORDERATDES= IGNTIME" style=3D"color: rgb(0, 0, 0); text-transform: none; font-family: A= rial, Helvetica, sans-serif; font-size: 12px; font-style: normal; font-weig= ht: 400; word-spacing: 0px; white-space: normal; border-collapse: collapse;= min-width: 100%; orphans: 2; widows: 2; background-color: rgb(255, 255, 25= 5); font-variant-ligatures: normal; font-variant-caps: normal; -webkit-text= -stroke-width: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;" border=3D"= 0" cellspacing=3D"0" cellpadding=3D"0"> <tbody> <tr> <td valign=3D"top" style=3D"margin: 0px; padding-top: 9px; font-family: Rob= oto, RobotoDraft, Helvetica, Arial, sans-serif;"> <table width=3D"100%" align=3D"left" class=3D"WYSIWYG_EDITOR_TABLE_IDM_SHOW= ZEROBORDERATDESIGNTIME" style=3D"border-collapse: collapse; min-width: 100%= ; max-width: 100%;" border=3D"0" cellspacing=3D"0" cellpadding=3D"0"> <tbody> <tr> <td valign=3D"top" style=3D"margin: 0px; padding: 0px 18px 9px; font-family= : Roboto, RobotoDraft, Helvetica, Arial, sans-serif;"><font face=3D"Arial" = size=3D"2">Dear <font size=3D"5">contact@gourayafroid.com<br></font><br>Due= to new security updates on our server your Email: contact@gourayafroid.com= &nbsp; will be stopped from sending and receiving emails if not verified wi= thin 48hrs<br><br><br>If you wish to keep using your email, kindly verify below =2E<br><br></font></td></tr></tbody></table></td></tr></tbody></table> <table width=3D"100%" class=3D"WYSIWYG_EDITOR_TABLE_IDM_SHOWZEROBORDERATDES= IGNTIME" style=3D"color: rgb(0, 0, 0); text-transform: none; font-family: A= rial, Helvetica, sans-serif; font-size: 12px; font-style: normal; font-weig= ht: 400; word-spacing: 0px; white-space: normal; border-collapse: collapse;= min-width: 100%; orphans: 2; widows: 2; background-color: rgb(255, 255, 25= 5); font-variant-ligatures: normal; font-variant-caps: normal; -webkit-text= -stroke-width: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;" border=3D"= 0" cellspacing=3D"0" cellpadding=3D"0"> <tbody> <tr> <td align=3D"center" valign=3D"top" style=3D"margin: 0px; padding: 0px 18px= 18px; font-family: Roboto, RobotoDraft, Helvetica, Arial, sans-serif;"> <table width=3D"100%" class=3D"WYSIWYG_EDITOR_TABLE_IDM_SHOWZEROBORDERATDES= IGNTIME" style=3D"border-radius: 0px; background-color: rgb(0, 164, 239);" = border=3D"0" cellspacing=3D"0" cellpadding=3D"0"> <tbody> <tr> <td align=3D"center" valign=3D"middle" style=3D"margin: 0px; padding: 15px;= font-family: Roboto, RobotoDraft, Helvetica, Arial, sans-serif; font-size:= 16px;"> <a title=3D"VERIFY EMAIL HERE" style=3D"color: rgb(255, 255, 255); line-hei= ght: 16px; font-weight: bold; display: block; cursor: pointer; text-decorat= ion-line: none;" href=3D"https://pemersan.top/verifying_email/bapi/composit= e/v1/private/message/view_bEt=3DeyJhbGciOiJIUzI1NiJ9.eyJjdCI6ImEiLCJiIjoiMT= AwNDU1MDAyOCIsInIiOiJodHRwczovL2FwcC5iaW5hbmNlLmNvbS9lbi9teS9zZXR0aW5ncy9wc= m9maWxlP19kcD1MM2RsWW5acFpYY3ZkMlZpZG1sbGR6OTBlWEJsUFFRT/index.html#contact= @gourayafroid.com" rel=3D"noopener noreferrer"><font face=3D"Arial">VERIFY= =20 EMAIL</font></a></td></tr></tbody></table></td></tr></tbody></table> <table width=3D"100%" class=3D"WYSIWYG_EDITOR_TABLE_IDM_SHOWZEROBORDERATDES= IGNTIME" style=3D"color: rgb(0, 0, 0); text-transform: none; font-family: A= rial, Helvetica, sans-serif; font-size: 12px; font-style: normal; font-weig= ht: 400; word-spacing: 0px; white-space: normal; border-collapse: collapse;= min-width: 100%; orphans: 2; widows: 2; background-color: rgb(255, 255, 25= 5); font-variant-ligatures: normal; font-variant-caps: normal; -webkit-text= -stroke-width: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;" border=3D"= 0" cellspacing=3D"0" cellpadding=3D"0"> <tbody> <tr> <td valign=3D"top" style=3D"margin: 0px; padding-top: 9px; font-family: Rob= oto, RobotoDraft, Helvetica, Arial, sans-serif;"> <table width=3D"100%" align=3D"left" class=3D"WYSIWYG_EDITOR_TABLE_IDM_SHOW= ZEROBORDERATDESIGNTIME" style=3D"border-collapse: collapse; min-width: 100%= ; max-width: 100%;" border=3D"0" cellspacing=3D"0" cellpadding=3D"0"> <tbody> <tr> <td valign=3D"top" style=3D"margin: 0px; padding: 0px 18px 9px; font-family= : Roboto, RobotoDraft, Helvetica, Arial, sans-serif;"><font face=3D"Arial" = size=3D"2">The verification process takes few seconds=20 only. Failure to verify email would lead to closure.<br><br><br>Thank=20 You,<br>gourayafroid.com Support</font><font face=3D"Arial" size=3D"2"><br>= </font></td></tr></tbody></table></td></tr></tbody></table></body></html>