­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ ­ Return-Path: <> Delivered-To: info@autozone.com.sa Received: from depro4.fcomet.com by depro4.fcomet.com with LMTP id 4A81OggheWSa+RIAfHesKA (envelope-from <>) for ; Fri, 02 Jun 2023 00:51:52 +0200 Return-path: <> Envelope-to: info@autozone.com.sa Delivery-date: Fri, 02 Jun 2023 00:51:52 +0200 Received: from mailnull by depro4.fcomet.com with local (Exim 4.96) id 1q4r96-005Faa-1h for info@autozone.com.sa; Fri, 02 Jun 2023 00:51:52 +0200 X-Failed-Recipients: khurram.dhedhi@balubaid.com.sa Auto-Submitted: auto-replied From: Mail Delivery System To: info@autozone.com.sa References: <64792EBF.5080306@autozone.com.sa> Content-Type: multipart/report; report-type=delivery-status; boundary=1685659912-eximdsn-191423953 MIME-Version: 1.0 Subject: Mail delivery failed: returning message to sender Message-Id: Date: Fri, 02 Jun 2023 00:51:52 +0200 --1685659912-eximdsn-191423953 Content-type: text/plain; charset=us-ascii This message was created automatically by mail delivery software. A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed: khurram.dhedhi@balubaid.com.sa (ultimately generated from info@autozone.com.sa) host smtp.antispamcloud.com [130.117.54.107] SMTP error from remote mail server after end of data: 550 Message rejected due to user rules. --1685659912-eximdsn-191423953 Content-type: message/delivery-status Reporting-MTA: dns; depro4.fcomet.com Action: failed Final-Recipient: rfc822;info@autozone.com.sa Status: 5.0.0 Remote-MTA: dns; smtp.antispamcloud.com Diagnostic-Code: smtp; 550 Message rejected due to user rules. --1685659912-eximdsn-191423953 Content-type: message/rfc822 Return-path: Received: from bl6-213-37.dsl.telepac.pt ([82.155.213.37]:54565) by depro4.fcomet.com with esmtp (Exim 4.96) (envelope-from ) id 1q4r8O-005BP9-2S for info@autozone.com.sa; Fri, 02 Jun 2023 00:51:08 +0200 Message-ID: <64792EBF.5080306@autozone.com.sa> Date: Thu, 01 Jun 2023 23:50:23 +0000 From: User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.2.28) Gecko/20120306 Thunderbird/3.1.20 MIME-Version: 1.0 To: Content-Type: text/plain; charset=ISO-8859-3; format=flowed Content-Transfer-Encoding: 8bit X-Spam-Status: Yes, score=25.1 X-Spam-Score: 251 X-Spam-Bar: +++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "depro4.fcomet.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hi, I am a hacker, and I have successfully gained access to your operating system. I also have full access to your account. I've been watching you for a few months now. Content analysis details: (25.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 3.6 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL [82.155.213.37 listed in zen.spamhaus.org] 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL 2.7 RCVD_IN_PSBL RBL: Received via a relay in PSBL [82.155.213.37 listed in psbl.surriel.com] 1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL, https://senderscore.org/blocklistlookup/ [82.155.213.37 listed in bl.score.senderscore.com] 2.0 PYZOR_CHECK Listed in Pyzor (https://pyzor.readthedocs.io/en/latest/) 2.6 RDNS_DYNAMIC Delivered to internal network by host with dynamic-looking rDNS 1.5 KAM_DMARC_QUARANTINE DKIM has Failed or SPF has failed on the message and the domain has a DMARC quarantine policy 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods -0.0 T_SCC_BODY_TEXT_LINE No description available. 0.7 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin 0.0 PDS_BTC_ID FP reduced Bitcoin ID 0.0 PDS_RDNS_DYNAMIC_FP RDNS_DYNAMIC with FP steps 2.5 HELO_DYNAMIC_HCC Relay HELO'd using suspicious hostname (HCC) 2.5 BITCOIN_SPAM_02 BitCoin spam pattern 02 X-Spam-Flag: YES Subject: ***SPAM*** Your account is hacked. Your data is stolen. Learn how to regain access. Hi, I am a hacker, and I have successfully gained access to your operating system. I also have full access to your account. I've been watching you for a few months now. The fact is that your computer has been infected with malware through an adult site that you visited. If you are not familiar with this, I will explain. Trojan Virus gives me full access and control over a computer or other device. This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it. I also have access to all your contacts and all your correspondence. Why did your antivirus not detect malware? Answer: The malware I used is driver-based, I update its signatures every 4 hours. Hence your antivirus is unable to detect its presence. I made a video showing how you satisfy yourself in the left half of the screen, and the right half shows the video you were watching at the time. With one mouse click, I can send this video to all your emails and contacts on your social networks. I can also make public all your e-mail correspondence and chat history on the messengers that you use. If you don't want this to happen, transfer $950 in Bitcoin equivalent to my Bitcoin address (if you do not know how to do this, just search "buy bitcoin" on Google). My Bitcoin address (BTC Wallet) is: 15NCWERN56DQNf4WiPLR2txgiEF2np5Q2g After confirming your payment, I will delete the video immediately, and that's it. You will never hear from me again. I will give you 50 hours (more than 2 days) to pay. I will get a notice, when you open this email, and the timer will start. Filing a complaint somewhere does not make sense because this email cannot be tracked like my Bitcoin address. I never make any mistakes. If I find that you have shared this message with someone else, the video will be immediately distributed. Best regards! --1685659912-eximdsn-191423953--