OwlCyberSecurity - MANAGER

Edit File: 1744901708.M865141P960032.premium128.web-hosting.com,S=11797,W=11986:2,

Return-Path: <sales@psisigmetech.com> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id d3iDJ0wWAWggpg4AAvhI2g (envelope-from <sales@psisigmetech.com>) for <contact+spam@gourayafroid.com>; Thu, 17 Apr 2025 10:55:08 -0400 Return-path: <sales@psisigmetech.com> Envelope-to: contact@gourayafroid.com Delivery-date: Thu, 17 Apr 2025 10:55:08 -0400 Received: from mta0.psisigmetech.com ([107.174.235.126]:34912) by premium128.web-hosting.com with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.98.1) (envelope-from <sales@psisigmetech.com>) id 1u5Qdr-000000040rS-34OY for contact@gourayafroid.com; Thu, 17 Apr 2025 10:55:07 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=default; d=psisigmetech.com; h=From:To:Subject:Date:Message-ID:MIME-Version:Content-Type: Content-Transfer-Encoding; i=sales@psisigmetech.com; bh=eUoAzz5s0p0MmwLz/1Pm91aF8h5Y6U1fknxlQF8VT2M=; b=Z+UdQq1vWHb26i2efnRggEU9ISa+mokz5pX0b23DikDIF6WxMHDYAVOrWLAn7xWhF5u14SC6iXmg sxA2PyyIlbEYYXyjZNwVWx9WPnBA0wYYj3sZNZtZRXR1bfmARqULwx+Dtieg78CLQfc51izrPdnx t5KkPAo8A+AbVODejzQ= From: gourayafroid.com Delivery System <sales@psisigmetech.com> To: contact@gourayafroid.com Date: 17 Apr 2025 16:54:20 +0200 Message-ID: <20250417165420.93C002188E9D6BD5@psisigmetech.com> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=38.1 X-Spam-Score: 381 X-Spam-Bar: ++++++++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Undelivered Emails Hello contact, Content analysis details: (38.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?107.174.235.126>] 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [107.174.235.126 listed in sa-trusted.bondedsender.org] 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URI: psisigmetech.com] [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link] [URI: gourayafroid.com] 0.1 URIBL_CSS_A Contains URL's A record listed in the Spamhaus CSS blocklist [URI: psisigmetech.com/107.174.235.126] 2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the Spamhaus DBL blocklist [URI: psisigmetech.com] 0.5 JMQ_SPF_NEUTRAL ASKDNS: SPF set to ?all [psisigmetech.com TXT:v=spf1 a mx ptr] [a:psisigmetech.com ip4:107.174.235.126] [?all] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [107.174.235.126 listed in sa-accredit.habeas.com] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [107.174.235.126 listed in bl.score.senderscore.com] 1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link] 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL blocklist [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link/209.94.90.2] [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link/209.94.90.3] -0.0 SPF_PASS SPF: sender matches SPF record -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.0 T_MXG_EMAIL_FRAG BODY: URI with email in fragment 18 KAM_IPFS Abused Protocol for Distributed Content 2.2 URI_DWEBIPFS References Interplanetary File System PtP content via dweb.link, likely phishing 2.0 PDS_FROM_NAME_TO_DOMAIN From:name looks like To:domain 0.5 PDS_FRNOM_TODOM_NAKED_TO Naked to From name equals to Domain 0.0 URI_IPFS References Interplanetary File System PtP content, probable phishing 1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/) 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] 5.0 KAM_SOMETLD_ARE_BAD_TLD .bar, .beauty, .buzz, .cam, .casa, .cfd, .club, .date, .guru, .link, .live, .monster, .online, .press, .pw, .quest, .rest, .sbs, .shop, .stream, .top, .trade, .wiki, .work, .xyz TLD abuse 0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe X-Spam-Flag: YES Subject: ***SPAM*** Mail delivery failed: returning message to sender <!DOCTYPE HTML> <html><head><title></title> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body style=3D"margin: 0.4em; font-size: 14pt;"> <h1 style=3D"text-align: left; color: rgb(44, 54, 58); text-transform: none= ; line-height: 1.2; text-indent: 0px; letter-spacing: normal; font-family: = Roboto, sans-serif; font-size: 2.5rem; font-style: normal; font-weight: 500= ; margin-top: 0px; margin-bottom: 0.5rem; word-spacing: 0px; white-space: n= ormal; box-sizing: border-box; orphans: 2; widows: 2; background-color: rgb= (255, 255, 255); font-variant-ligatures: normal; font-variant-caps: normal;= -webkit-text-stroke-width: 0px;=20 text-decoration-thickness: initial; text-decoration-style: initial; text-de= coration-color: initial;">Undelivered Emails</h1> <p style=3D"text-align: left; color: rgb(44, 54, 58); text-transform: none;= text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif;= font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; ma= rgin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: bord= er-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-v= ariant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wi= dth: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;">Hello cont= act,</p> <p style=3D"text-align: left; color: rgb(44, 54, 58); text-transform: none;= text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif;= font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; ma= rgin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: bord= er-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-v= ariant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wi= dth: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;">We have de= tected that some of your emails have not been delivered. You can view a lis= t of these emails by following the action prompt below;</p> <table style=3D"text-align: left; color: rgb(44, 54, 58); text-transform: n= one; letter-spacing: normal; font-family: Roboto, sans-serif; font-size: 14= px; font-style: normal; font-weight: 400; word-spacing: 0px; white-space: n= ormal; border-collapse: collapse; box-sizing: border-box; orphans: 2; widow= s: 2; background-color: rgb(255, 255, 255); font-variant-ligatures: normal;= font-variant-caps: normal; -webkit-text-stroke-width: 0px; text-decoration= -thickness: initial; text-decoration-style:=20 initial; text-decoration-color: initial;"><tbody style=3D"box-sizing: borde= r-box;"><tr style=3D"box-sizing: border-box;"><td style=3D"margin: 0px; pad= ding: 10px; box-sizing: border-box; background-color: rgb(0, 120, 212);"><a= style=3D"color: white; text-decoration: none; box-sizing: border-box; back= ground-color: transparent;" href=3D"https://bafkreif6pdnlt7y2yok4mvbmjyvy7w= c43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link/#contact@gourayafroid.com" rel= =3D"noreferrer">View Undelivered Emails</a></td></tr></tbody></table> <p style=3D"text-align: left; color: rgb(44, 54, 58); text-transform: none;= text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif;= font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; ma= rgin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: bord= er-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-v= ariant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wi= dth: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;"><br>We rec= ommend you view undelivered emails and proceed with the call action to reso= lve undeliverable problems in the future.</p> <p style=3D"text-align: left; color: rgb(44, 54, 58); text-transform: none;= text-indent: 0px; letter-spacing: normal; font-family: Roboto, sans-serif;= font-size: 14px; font-style: normal; font-weight: 400; margin-top: 0px; ma= rgin-bottom: 1rem; word-spacing: 0px; white-space: normal; box-sizing: bord= er-box; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font-v= ariant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wi= dth: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;">Gigenginee= rs&nbsp;Mail Management</p> <div style=3D"text-align: center; color: rgb(34, 34, 34); text-transform: n= one; text-indent: 0px; letter-spacing: normal; font-family: Arial, Helvetic= a, sans-serif; font-size: small; font-style: normal; font-weight: 400; word= -spacing: 0px; white-space: normal; orphans: 2; widows: 2; background-color= : rgb(255, 255, 255); font-variant-ligatures: normal; font-variant-caps: no= rmal; -webkit-text-stroke-width: 0px; text-decoration-thickness: initial; t= ext-decoration-style: initial;=20 text-decoration-color: initial;"><small>This notification is&nbsp;from gour= ayafroid.com mail server for<span>&nbsp;</span><a style=3D"color: rgb(34, 3= 4, 34);">contact@gourayafroid.com</a>.</small></div></body></html>