OwlCyberSecurity - MANAGER

Edit File: 1709079983.M388556P1592291.server237.web-hosting.com,S=12032,W=12275

Envelope-to: dev@ebaarchitects.org
Delivery-date: Tue, 27 Feb 2024 19:26:23 -0500
Auto-Submitted: auto-replied
From: Mail Delivery System <Mailer-Daemon@cloudvpstemplate.c0uwnx-lwsites.com>
To: dev@ebaarchitects.org
References: <204a03a879103a34379dd47f9f0b210a3bc24b@ebaarchitects.org>
Content-Type: multipart/report; report-type=delivery-status; boundary=1709079932-eximdsn-606393149
MIME-Version: 1.0
Subject: Mail delivery failed: returning message to sender
Message-Id: <E1rf7lM-00Cd9i-0t@cloudvpstemplate.c0uwnx-lwsites.com>
Date: Tue, 27 Feb 2024 19:25:32 -0500

--1709079932-eximdsn-606393149
Content-type: text/plain; charset=us-ascii

This message was created automatically by mail delivery software.

A message that you sent could not be delivered to one or more of its
recipients. This is a permanent error. The following address(es) failed:

sarahstobber@gmail.com
    (ultimately generated from sales@ecommercejumpstart.com)
    host gmail-smtp-in.l.google.com [142.251.16.27]
    SMTP error from remote mail server after end of data:
    550-5.7.25 [69.16.249.60] The IP address sending this message does not have a
    550-5.7.25 PTR record setup, or the corresponding forward DNS entry does not
    550-5.7.25 point to the sending IP. As a policy, Gmail does not accept messages
    550-5.7.25 from IPs with missing PTR records. For more information, go to
    550-5.7.25  https://support.google.com/mail/answer/81126#ip-practices
    550-5.7.25 To learn more about Gmail's sender policy, go to
    550 5.7.25  https://support.google.com/mail/answer/81126. m11-20020ad45dcb000000b0068f5ddb8036si8695592qvh.371 - gsmtp

--1709079932-eximdsn-606393149
Content-type: message/delivery-status

Reporting-MTA: dns; cloudvpstemplate.c0uwnx-lwsites.com

Action: failed
Final-Recipient: rfc822;sales@ecommercejumpstart.com
Status: 5.0.0
Remote-MTA: dns; gmail-smtp-in.l.google.com
Diagnostic-Code: smtp; 550-5.7.25 [69.16.249.60] The IP address sending this message does not have a
 550-5.7.25 PTR record setup, or the corresponding forward DNS entry does not
 550-5.7.25 point to the sending IP. As a policy, Gmail does not accept messages
 550-5.7.25 from IPs with missing PTR records. For more information, go to
 550-5.7.25  https://support.google.com/mail/answer/81126#ip-practices
 550-5.7.25 To learn more about Gmail's sender policy, go to
 550 5.7.25  https://support.google.com/mail/answer/81126. m11-20020ad45dcb000000b0068f5ddb8036si8695592qvh.371 - gsmtp

--1709079932-eximdsn-606393149
Content-type: message/rfc822

Return-path: <dev@ebaarchitects.org>
Received: from server237-2.web-hosting.com ([199.188.200.108]:38021)
	by cloudvpstemplate.c0uwnx-lwsites.com with esmtps  (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96.2)
	(envelope-from <dev@ebaarchitects.org>)
	id 1rf7lK-00Cd5J-0Q
	for sales@ecommercejumpstart.com;
	Tue, 27 Feb 2024 19:25:31 -0500
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
	d=ebaarchitects.org; s=default; h=Content-Type:MIME-Version:Date:Subject:To:
	From:Reply-To:Message-ID:Sender:Cc:Content-Transfer-Encoding:Content-ID:
	Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc
	:Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:
	List-Subscribe:List-Post:List-Owner:List-Archive;
	bh=q2zc+CN2YFkhY4VmVlssCjWB1RE7Y4oWc96zn9PV5C0=; b=eI88gisE8iMKG7Au8nc68YlsDQ
	okA+yZgvN1UT/q439EVV2r/9DB3JXWecIVEpPfj2iSR3Ws9vIaRoSVhH+Jfy0/dbysh0Gn6jNux6U
	sZpScRdWuxaNqCBLqD/RQ/qXM+1sMJMw7pdGFnFXjf8AdLpDUZHAwABpniHKk/YAB7cWm7urtrxvn
	dTfcDuSZ8E865TCTd3MTV1EmZayHmilm1Qofeu/1eZOetYAmQGaNZlXJEGHPSONRclEisTziyMXs5
	KKKM0Z/JWrg7jLC9MgyUgBGj+gvtbpX8ZdnSrhzDjt/7+WhP8m86lplssCaVizKHg3FmMKs6KzPdj
	83HWIdUg==;
Received: from [81.4.206.193] (port=57410 helo=62.204.41.113)
	by server237.web-hosting.com with esmtpsa  (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96.1)
	(envelope-from <dev@ebaarchitects.org>)
	id 1rf7kY-006lRg-0q
	for sales@ecommercejumpstart.com;
	Tue, 27 Feb 2024 19:24:48 -0500
Message-ID: <204a03a879103a34379dd47f9f0b210a3bc24b@ebaarchitects.org>
Reply-To: Albert <a.kneller@sonibie.com>
From: Albert <dev@ebaarchitects.org>
To: sales@ecommercejumpstart.com
Date: Tue, 27 Feb 2024 16:19:58 -0800
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="8b2168e6bf7b547f5cf6bf00a4606a736993"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server237.web-hosting.com
X-AntiAbuse: Original Domain - ecommercejumpstart.com
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - ebaarchitects.org
X-Get-Message-Sender-Via: server237.web-hosting.com: authenticated_id: dev@ebaarchitects.org
X-Authenticated-Sender: server237.web-hosting.com: dev@ebaarchitects.org
X-Source: 
X-Source-Args: 
X-Source-Dir: 
X-From-Rewrite: unmodified, already matched
X-Spam-Status: Yes, score=7.7
X-Spam-Score: 77
X-Spam-Bar: +++++++
X-Spam-Report: Spam detection software, running on the system "cloudvpstemplate.c0uwnx-lwsites.com",
 has identified this incoming email as possible spam.  The original
 message has been attached to this so you can view it or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 Content preview:  Hello, I am writing to address a strange withdrawal that I've
    noticed on my payment account, which appears to be linked to a transaction
    on your e-commerce platform. This occurrence has caused me distress, especially
    since I do not recall ever making a purchase on your site. I've already begun
    the challenge process with my financial institution. It would be of gre [...]
    
 Content analysis details:   (7.7 points, 5.0 required)
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  4.2 BAYES_80               BODY: Bayes spam probability is 80 to 95%
                             [score: 0.8483]
  1.3 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in
                             bl.spamcop.net
                [Blocked - see <https://www.spamcop.net/bl.shtml?81.4.206.193>]
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was
                             blocked.  See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URIs: ebaarchitects.org]
  2.4 RCVD_HELO_IP_MISMATCH  Received: HELO and IP do not match, but
                             should
 -0.0 SPF_PASS               SPF: sender matches SPF record
  0.0 HTML_MESSAGE           BODY: HTML included in message
 -0.1 DKIM_VALID_EF          Message has a valid DKIM or DK signature from
                             envelope-from domain
 -0.1 DKIM_VALID             Message has at least one valid DKIM or DK signature
  0.1 DKIM_SIGNED            Message has a DKIM or DK signature, not necessarily
                             valid
 -0.1 DKIM_VALID_AU          Message has a valid DKIM or DK signature from
                             author's domain
 -0.0 T_SCC_BODY_TEXT_LINE   No description available.
X-Spam-Flag: YES
Subject:  ***SPAM***  Need your support with a strange payment on my credit card - need your expertise

--8b2168e6bf7b547f5cf6bf00a4606a736993
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

Hello,

I am writing to address a strange withdrawal that I've noticed on my paym=
ent account, which appears to be linked to a transaction on your e-commer=
ce platform.

This occurrence has caused me distress, especially since I do not recall =
ever making a purchase on your site. I've already begun the challenge pro=
cess with my financial institution. It would be of great help if you coul=
d provide any details you have about this transaction, including specific=
s like the order ID.

I have gathered extensive proofs, such as bank statements, to back up my =
claim.

Looking forward to your speedy response on this matter.

--8b2168e6bf7b547f5cf6bf00a4606a736993
Content-Type: text/html; charset="utf-8"
Content-Transfer-Encoding: quoted-printable

<html>
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dutf-8">
</head>
<body bgColor=3D"#ffffff">
<div align=3Dleft><font size=3D2 face=3DArial>Hello,</font></div>
<div>&nbsp;</div>
<div align=3Dleft><font size=3D2 face=3DArial>I am writing to address a s=
trange withdrawal that I've noticed on my payment account, which appears =
to be linked to a transaction on your e-commerce platform.</font></div>
<div>&nbsp;</div>
<div align=3Dleft><font size=3D2 face=3DArial>This occurrence has caused =
me distress, especially since I do not recall ever making a purchase on y=
our site. I've already begun the challenge process with my financial inst=
itution. It would be of great help if you could provide any details you h=
ave about this transaction, including specifics like the order ID.</font>=
</div>
<div>&nbsp;</div>
<div align=3Dleft><font size=3D2 face=3DArial>I have gathered extensive p=
roofs, such as bank statements, to back up my claim.</font></div>
<div>&nbsp;</div>
<div align=3Dleft><font size=3D2 face=3DArial>Looking forward to your spe=
edy response on this matter.</font></div></body></html>

--8b2168e6bf7b547f5cf6bf00a4606a736993--

--1709079932-eximdsn-606393149--