OwlCyberSecurity - MANAGER

Edit File: 1747055490.M622851P4046760.premium128.web-hosting.com,S=10802,W=10978

Return-Path: <acct@deltafire-ae.com> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id 6Lu2IoLzIWiovz0AAvhI2g (envelope-from <acct@deltafire-ae.com>) for <contact+spam@gourayafroid.com>; Mon, 12 May 2025 09:11:30 -0400 Return-path: <acct@deltafire-ae.com> Envelope-to: contact@gourayafroid.com Delivery-date: Mon, 12 May 2025 09:11:30 -0400 Received: from mta0.deltafire-ae.com ([192.3.51.166]:42285) by premium128.web-hosting.com with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.98.1) (envelope-from <acct@deltafire-ae.com>) id 1uESwJ-0000000HDkb-2Pnf for contact@gourayafroid.com; Mon, 12 May 2025 09:11:30 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=default; d=deltafire-ae.com; h=From:To:Subject:Date:Message-ID:MIME-Version:Content-Type: Content-Transfer-Encoding; i=acct@deltafire-ae.com; bh=zs8avKc7eDpfW28z8XX+7XeURb/j1Hz6EiT6EGf6Bi0=; b=uNxJ7Dr9EoMJ0m08df+zMCrU+q2Wz7VaXlAIzMovBx8d5HF1G0lTX5V7ydAYlOxgpPOh8MoVQMQ2 0DwfouQFxePV0ZLICHCWthlGcarRLW+f/a6n3gYQqR+IH74DWUFpA6Pk52/VdzsfETR9afM9kysi i3aTMk2kcTm1U49zL5A= From: Mail Delivery System <acct@deltafire-ae.com> To: contact@gourayafroid.com Date: 12 May 2025 15:10:44 +0200 Message-ID: <20250512151044.AD7874A22108D25D@deltafire-ae.com> MIME-Version: 1.0 Content-Type: text/html Content-Transfer-Encoding: quoted-printable X-Spam-Status: Yes, score=35.3 X-Spam-Score: 353 X-Spam-Bar: +++++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: This email ιs from a trusted sοurce. You have 10 pending messages for delivery to contact@gourayafroid.com Authorize Delivery for pending mails Content analysis details: (35.3 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.1 URIBL_CSS_A Contains URL's A record listed in the Spamhaus CSS blocklist [URI: deltafire-ae.com/192.3.51.166] 0.5 JMQ_SPF_NEUTRAL ASKDNS: SPF set to ?all [deltafire-ae.com TXT:v=spf1 a mx ptr] [a:deltafire-ae.com ip4:192.3.51.166] [?all] 2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the Spamhaus DBL blocklist [URI: deltafire-ae.com] 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL blocklist [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link/209.94.90.3] 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [192.3.51.166 listed in sa-trusted.bondedsender.org] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [192.3.51.166 listed in sa-accredit.habeas.com] 1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [192.3.51.166 listed in bl.score.senderscore.com] -0.0 SPF_PASS SPF: sender matches SPF record -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URI: radiologiazabeo.com] [URI: deltafire-ae.com] [URI: bafkreif6pdnlt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link] 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 T_MXG_EMAIL_FRAG BODY: URI with email in fragment 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 1.7 URI_DWEBIPFS References Interplanetary File System PtP content via dweb.link, likely phishing 18 KAM_IPFS Abused Protocol for Distributed Content 0.0 URI_IPFS References Interplanetary File System PtP content, probable phishing 5.0 KAM_SOMETLD_ARE_BAD_TLD .bar, .beauty, .buzz, .cam, .casa, .cfd, .club, .date, .guru, .link, .live, .monster, .online, .press, .pw, .quest, .rest, .sbs, .shop, .stream, .top, .trade, .wiki, .work, .xyz TLD abuse 5.5 KAM_MAILBOX2 Mailbox Quota Phishing Scams X-Spam-Flag: YES Subject: ***SPAM*** Mail delivery failed: returning message to sender <html><head> <meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge"> </head> <body> <table style=3D'width: 1285px; height: 36px; color: rgb(51, 51, 51); text-t= ransform: none; line-height: 1.6em; text-indent: 0px; letter-spacing: norma= l; font-family: "times new roman"; font-size: 14px; font-style: normal; fon= t-weight: 400; word-spacing: 0px; white-space: normal; border-collapse: col= lapse; orphans: 2; widows: 2; background-color: rgb(238, 238, 238); font-va= riant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-wid= th: 0px; text-decoration-thickness: initial;=20 text-decoration-style: initial; text-decoration-color: initial;'><tbody><tr= ><th style=3D"padding: 3px; border: 0px solid rgb(0, 0, 0); border-image: n= one; width: 1px; color: white; line-height: 1.666; font-family: arial, verd= ana, sans-serif; background-color: rgb(2, 151, 64);"></th><td style=3D"marg= in: 0px; padding: 3px; border: 0px solid rgb(0, 0, 0); border-image: none; = line-height: 1.666; font-family: arial, verdana, sans-serif; background-col= or: rgb(243, 255, 248);"> <div style=3D"padding-top: 0px; border-top-width: 0px;"><span style=3D"font= -family: arial, helvetica, sans-serif;"><span style=3D"font-size: 12px;">Th= is&#8201;email&#8201;&#953;s&#8201;from&#8201;a&#8201;trusted&#8201;s&#959;= urce.</span></span></div></td></tr></tbody></table><p> <font color=3D"#0000ff" style=3D"text-transform: none; text-indent: 0px; le= tter-spacing: normal; font-family: Arial, Helvetica, sans-serif; font-size:= small; font-style: normal; font-weight: 400; word-spacing: 0px; white-spac= e: normal; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); fon= t-variant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke= -width: 0px; text-decoration-thickness: initial; text-decoration-style: ini= tial; text-decoration-color: initial;"> <font color=3D"#0fa9f0"><font color=3D"#175ee8" size=3D"5"><br><strong>You = have 10 pending messages for delivery to<span>&nbsp;</span><a style=3D"colo= r: rgb(17, 85, 204);" target=3D"_blank">contact@gourayafroid.com</a></stron= g></font></font></font> <font size=3D"4" style=3D"color: rgb(34, 34, 34); text-transform: none; tex= t-indent: 0px; letter-spacing: normal; font-family: Arial, Helvetica, sans-= serif; font-style: normal; font-weight: 400; word-spacing: 0px; white-space= : normal; orphans: 2; widows: 2; background-color: rgb(255, 255, 255); font= -variant-ligatures: normal; font-variant-caps: normal; -webkit-text-stroke-= width: 0px; text-decoration-thickness: initial; text-decoration-style: init= ial; text-decoration-color: initial;"><br><br> <a style=3D"background: rgb(80, 110, 216); padding: 10px; color: rgb(255, 2= 55, 255); text-decoration: none;" href=3D"https://radiologiazabeo.com/index= /vk/index.html#contact@gourayafroid.com" target=3D"_blank" data-saferedirec= turl=3D"https://www.google.com/url?q=3Dhttps://bafkreif6pdnlt7y2yok4mvbmjyv= y7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link/%23%5B%5B-Email-%5D%5D&amp;s= ource=3Dgmail&amp;ust=3D1747139365775000&amp;usg=3DAOvVaw2Gtf_xEpuCFEvMps0W= zV9n"><font face=3D"Verdana" size=3D"3">Authorize Delivery for pending mail= s</font> </a><br><br></font> <span style=3D"color: rgb(34, 34, 34); text-transform: none; text-indent: 0= px; letter-spacing: normal; font-family: Arial, Helvetica, sans-serif; font= -size: small; font-style: normal; font-weight: 400; word-spacing: 0px; floa= t: none; display: inline !important; white-space: normal; orphans: 2; widow= s: 2; background-color: rgb(255, 255, 255); font-variant-ligatures: normal;= font-variant-caps: normal; -webkit-text-stroke-width: 0px; text-decoration= -thickness: initial; text-decoration-style:=20 initial; text-decoration-color: initial;"></span> <a style=3D"color: rgb(17, 85, 204); text-transform: none; text-indent: 0px= ; letter-spacing: normal; font-family: Arial, Helvetica, sans-serif; font-s= ize: small; font-style: normal; font-weight: 400; word-spacing: 0px; white-= space: normal; orphans: 2; widows: 2; background-color: rgb(255, 255, 255);= font-variant-ligatures: normal; font-variant-caps: normal; -webkit-text-st= roke-width: 0px;" href=3D"https://radiologiazabeo.com/index/vk/index.html#c= ontact@gourayafroid.com" target=3D"_blank"=20 data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://bafkreif6pdn= lt7y2yok4mvbmjyvy7wc43hpaty4lpac5evijmei7a2urzm.ipfs.dweb.link/%23%5B%5B-Em= ail-%5D%5D&amp;source=3Dgmail&amp;ust=3D1747139365775000&amp;usg=3DAOvVaw2G= tf_xEpuCFEvMps0WzV9n"><font color=3D"#f70840" size=3D"4"><strong>Click here= to release these messages to your inbox folder</strong></font></a></p></bo= dy></html>