OwlCyberSecurity - MANAGER

Edit File: 1740058249.M822855P3166838.premium69.web-hosting.com,S=7299,W=7441

Return-Path: <icldqpyas@vypal.me> Delivered-To: contact+spam@homeimportance.com Received: from premium69.web-hosting.com by premium69.web-hosting.com with LMTP id 6B+CL4kut2d2UjAAQpcCZw (envelope-from <icldqpyas@vypal.me>) for <contact+spam@homeimportance.com>; Thu, 20 Feb 2025 08:30:49 -0500 Return-path: <icldqpyas@vypal.me> Envelope-to: contact@homeimportance.com Delivery-date: Thu, 20 Feb 2025 08:30:49 -0500 Received: from 109-81-112-180.rct.o2.cz ([109.81.112.180]:51397 helo=mail.vypal.me) by premium69.web-hosting.com with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384 (Exim 4.96.2) (envelope-from <icldqpyas@vypal.me>) id 1tl6dY-00EPCh-0Z for contact@homeimportance.com; Thu, 20 Feb 2025 08:30:48 -0500 Received: from mail.vypal.me (unknown [10.0.1.79]) by mail.vypal.me (Postcow) with ESMTP id 75C19D794E; Thu, 20 Feb 2025 10:36:51 -0100 (GMT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=vypal.me; s=dkim; t=1740051441; h=from:from:reply-to:reply-to:subject:subject:date:date:to:to:cc: content-type:content-type; bh=SDZ4eIJpOYxtUbKSjshDJFPR6axxKSWtExZjzxYQMRk=; b=Bo1jmPpUDvVSA9vfkJylaRstJe4X3zheSU1BbtLAEMY3KSi2OQ6XqKoo0hmDJkwXmkqDtp 9lZ6kNBeuqEZXWx1nXruqmaNxP0jUsqVYXmvIsdjXqB80PxkKewn3aQAND9dLH0uXZ4sgJ 2JkoTwtqg9Qh/QVqxhjpOy4rGkUs70/8uY41lDbIk2Sr5OIrtXnut3cFT17zIext1EC6hp wyJKdTxK39FlzmyoIoeSL9V41nNcpC3f8p9Bx9RLeVw8p3zo1i6gAQUjMEe8QAhVGmXMn+ v7MRSSQevmwL+Uk0wIm9DA1MaUqnZkNg8Z1HAzAMXRCdmBbQP0s6FxhvMzdzYg== Authentication-Results: mail.vypal.me; none From: "Md Viktor Fedoro" <icldqpyas@vypal.me> To: contact@homeimportance.com Content-Type: text/plain Reply-To: md.viktorfedorov@yandex.com Date: Thu, 20 Feb 2025 08:37:20 -0300 X-Last-TLS-Session-Version: None X-Spamd-Result: default: False [10.29 / 15.00]; SUBJ_ALL_CAPS(3.00)[42]; MISSING_MID(2.50)[]; MISSING_MIME_VERSION(2.00)[]; INTRODUCTION(2.00)[]; BAYES_SPAM(0.79)[80.46%]; BAD_WORDS(0.10)[]; MIME_GOOD(-0.10)[text/plain]; DKIM_SIGNED(0.00)[vypal.me:s=dkim]; MAILCOW_DOMAIN_HEADER_FROM(0.00)[vypal.me]; URIBL_BLOCKED(0.00)[mail.vypal.me:helo,yandex.com:replyto]; FREEMAIL_REPLYTO(0.00)[yandex.com]; BCC(0.00)[]; ARC_NA(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; SUBJECT_ENDS_EXCLAIM(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVRCPT(0.00)[gmail.com]; REPLYTO_DOM_NEQ_FROM_DOM(0.00)[]; MSBL_EBL_FAIL(0.00)[md.viktorfedorov@yandex.com:server fail]; TO_DN_NONE(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; FROM_HAS_DN(0.00)[]; HAS_REPLYTO(0.00)[md.viktorfedorov@yandex.com]; DBL_FAIL(0.00)[yandex.com:server fail]; RCVD_COUNT_ZERO(0.00)[0]; REPLYTO_DOM_NEQ_TO_DOM(0.00)[]; SURBL_MULTI_FAIL(0.00)[yandex.com:server fail,mail.vypal.me:server fail]; RSPAMD_EMAILBL_FAIL(0.00)[md.viktorfedorov.yandex.com:server fail]; MISSING_XM_UA(0.00)[]; SUBJECT_HAS_QUESTION(0.00)[] X-Rspamd-Queue-Id: 75C19D794E X-Spam: Yes X-Spam-Status: Yes, score=17.3 X-Spam-Score: 173 X-Spam-Bar: +++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium69.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Dear Sir, There is a genuine need for the investment of a substantial amount in a secure and stable economy around the world by my client. The investment aims at tourism and real estate and trade primarily, but [...] Content analysis details: (17.3 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.7 DEAR_SOMETHING BODY: Contains 'Dear (something)' 0.0 HK_RANDOM_ENVFROM Envelope sender username looks random 1.0 HK_RANDOM_FROM From username looks random 0.0 TVD_RCVD_IP Message was received from an IP address 3.6 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL [109.81.112.180 listed in zen.spamhaus.org] 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: vypal.me] 0.5 SUBJ_ALL_CAPS Subject is all capitals -0.0 SPF_PASS SPF: sender matches SPF record 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [109.81.112.180 listed in sa-accredit.habeas.com] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [109.81.112.180 listed in bl.score.senderscore.com] -0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from envelope-from domain -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's domain 0.1 PLING_QUERY Subject has exclamation mark and question mark 0.8 KAM_INFOUSMEBIZ Prevalent use of .info|.us|.me|.me.uk|.biz|xyz|id|rocks|life domains in spam/malware 2.6 RDNS_DYNAMIC Delivered to internal network by host with dynamic-looking rDNS 2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From X-Spam-Flag: YES Subject: ***SPAM*** DO YOU NEED BUSINESS FUNDING? WE CAN FUND! Dear Sir, There is a genuine need for the investment of a substantial amount in a secure and stable economy around the world by my client. The investment aims at tourism and real estate and trade primarily, but will strongly consider any other business area or offer that can guarantee outstanding fiscal yields. My name is Md Viktor Fedoro, investment adviser to the concerned persons. The investment fund is already tied down securely as receivables and will be transferred to your individual/company account if we accept to work together. You will only make a lawful change of the original beneficiary names and address to have the payment officially effected. Note, that my client is a public office holder cum politician of immense standing; as such his identity must be jealously guarded and protected throughout the exercise for obvious reasons. Let your reaction reach me via email soonest, if you have the track-record and potentials to receive, invest, and manage large sums successfully to profitability. Thank you. Yours faithfully, Md Viktor Fedoro