403Webshell
Server IP : 66.29.132.122  /  Your IP : 18.224.53.19
Web Server : LiteSpeed
System : Linux business142.web-hosting.com 4.18.0-553.lve.el8.x86_64 #1 SMP Mon May 27 15:27:34 UTC 2024 x86_64
User : admazpex ( 531)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home/admazpex/mail/admin.admarooc.com/master/new/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /home/admazpex/mail/admin.admarooc.com/master/new/1720062849.M487140P826079.business142.web-hosting.com,S=12684,W=12933
Return-Path: <>
Delivered-To: master@admin.admarooc.com
Received: from business142.web-hosting.com
	by business142.web-hosting.com with LMTP
	id oJO5HIEThmbfmgwAq/Tvug
	(envelope-from <>)
	for <master@admin.admarooc.com>; Wed, 03 Jul 2024 23:14:09 -0400
Return-path: <>
Envelope-to: master@admin.admarooc.com
Delivery-date: Wed, 03 Jul 2024 23:14:09 -0400
Received: from [46.249.42.40] (port=38988 helo=mx02.whitelabelserver.nl)
	by business142.web-hosting.com with esmtps  (TLS1.3) tls TLS_AES_256_GCM_SHA384
	(Exim 4.96.2)
	id 1sPCv5-003TY8-2w
	for master@admin.admarooc.com;
	Wed, 03 Jul 2024 23:14:09 -0400
Received: by mx02.whitelabelserver.nl (Proxmox)
	id 1922040480F; Thu,  4 Jul 2024 05:13:22 +0200 (CEST)
Date: Thu,  4 Jul 2024 05:13:22 +0200 (CEST)
From: Mail Delivery System <MAILER-DAEMON@mx02.whitelabelserver.nl>
Subject: Undelivered Mail Returned to Sender
To: master@admin.admarooc.com
Auto-Submitted: auto-replied
MIME-Version: 1.0
Content-Type: multipart/report; report-type=delivery-status;
	boundary="49B99404813.1720062802/mx02.whitelabelserver.nl"
Content-Transfer-Encoding: 8bit
Message-Id: <20240704031322.1922040480F@mx02.whitelabelserver.nl>
X-Spam-Status: No, score=4.5
X-Spam-Score: 45
X-Spam-Bar: ++++
X-Ham-Report: Spam detection software, running on the system "business142.web-hosting.com",
 has NOT identified this incoming email as spam.  The original
 message has been attached to this so you can view it or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 Content preview:  This is the mail system at host mx02.whitelabelserver.nl.
   I'm sorry to have to inform you that your message could not be delivered to
    one or more recipients. It's attached below. For further assistance, please
    send mail to postmaster. 
 Content analysis details:   (4.5 points, 5.0 required)
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was
                             blocked.  See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URIs: whitelabelserver.nl]
  0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The
                             query to Validity was blocked.  See
                             https://knowledge.validity.com/hc/en-us/articles/20961730681243
                              for more information.
                             [46.249.42.40 listed in sa-accredit.habeas.com]
  1.5 KAM_MXURI              URI: URI begins with a mail exchange prefix, i.e.
                             mx.[...]
  0.0 HTML_MESSAGE           BODY: HTML included in message
  0.0 KAM_DMARC_STATUS       Test Rule for DKIM or SPF Failure with Strict
                             Alignment
  2.0 RDNS_NONE              Delivered to internal network by a host with no rDNS
  1.0 HTML_FONT_TINY_NORDNS  Font too small to read, no rDNS
X-Spam-Flag: NO

This is a MIME-encapsulated message.

--49B99404813.1720062802/mx02.whitelabelserver.nl
Content-Description: Notification
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit

This is the mail system at host mx02.whitelabelserver.nl.

I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.

For further assistance, please send mail to postmaster.

If you do so, please include this problem report. You can
delete your own text from the attached returned message.

                   The mail system

<info@kapsalonstudiolenh.nl>: host mail.kapsalonstudiolenh.nl[178.21.19.15]
    said: 550 No such recipient here (in reply to RCPT TO command)

--49B99404813.1720062802/mx02.whitelabelserver.nl
Content-Description: Delivery report
Content-Type: message/delivery-status

Reporting-MTA: dns; mx02.whitelabelserver.nl
X-Proxmox-Queue-ID: 49B99404813
X-Proxmox-Sender: rfc822; master@admin.admarooc.com
Arrival-Date: Thu,  4 Jul 2024 05:13:21 +0200 (CEST)

Final-Recipient: rfc822; info@kapsalonstudiolenh.nl
Original-Recipient: rfc822;info@kapsalonstudiolenh.nl
Action: failed
Status: 5.0.0
Remote-MTA: dns; mail.kapsalonstudiolenh.nl
Diagnostic-Code: smtp; 550 No such recipient here

--49B99404813.1720062802/mx02.whitelabelserver.nl
Content-Description: Undelivered Message
Content-Type: message/rfc822
Content-Transfer-Encoding: 8bit

Return-Path: <master@admin.admarooc.com>
Received: from mx02.whitelabelserver.nl (localhost.localdomain [127.0.0.1])
	by mx02.whitelabelserver.nl (Proxmox) with ESMTP id 49B99404813
	for <info@kapsalonstudiolenh.nl>; Thu,  4 Jul 2024 05:13:21 +0200 (CEST)
Received-SPF: pass (admin.admarooc.com: Sender is authorized to use 'master@admin.admarooc.com' in 'mfrom' identity (mechanism 'include:spf.web-hosting.com' matched)) receiver=mx02.whitelabelserver.nl; identity=mailfrom; envelope-from="master@admin.admarooc.com"; helo=business142-1.web-hosting.com; client-ip=66.29.132.119
Received: from business142-1.web-hosting.com (business142-1.web-hosting.com [66.29.132.119])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature ECDSA (prime256v1) server-digest SHA256)
	(No client certificate requested)
	by mx02.whitelabelserver.nl (Proxmox) with ESMTPS id 7198B401202
	for <info@kapsalonstudiolenh.nl>; Thu,  4 Jul 2024 05:13:20 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
	d=admin.admarooc.com; s=default; h=Content-Type:MIME-Version:Reply-To:Sender:
	To:Message-Id:Subject:Date:From:Cc:Content-Transfer-Encoding:Content-ID:
	Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc
	:Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:
	List-Subscribe:List-Post:List-Owner:List-Archive;
	bh=mQ42m/fYo/nlIqJJFCsinR7rjgnWGDlx+RAuaSGFdlQ=; b=J5Pt663LVK25WpwIMxVoC7Fby/
	q2+hCmE9s73bjc+XcaiZtHhqkFw4nRKS2qwygdwGgzEp/udAJjLOrIa5cK7ZbC1XFlsWq69oFdwL6
	MXPtp5TqDSk3ZOSP/Jdwu81uQnvAN6rD67inBIGTfc12f9N8c3NztTP2EFLFnsqC6SgedpxSK/n0O
	NID3VLaUNwNaUwZEVIg/fjxSSyRRrbO/Bf/tVr0T+J+Pwb2XZWQbU7YyoipqIP0/RlvuqrJFkFolq
	0RphWX5Iewdz6l1QMczZyHyGgTOUylHpE2ry6FKU2obKmViKJpOVozmtCM5YJoBMxhg8CENXnNhew
	NEYomcHg==;
Received: from [79.127.222.215] (port=63084 helo=DESKTOP-FLI84VB)
	by business142.web-hosting.com with esmtpsa  (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96.2)
	(envelope-from <master@admin.admarooc.com>)
	id 1sPCuF-003TGz-0A
	for info@kapsalonstudiolenh.nl;
	Wed, 03 Jul 2024 23:13:11 -0400
From: =?utf-8?b?QsOudHZhdm8=?= Nederland <master@admin.admarooc.com>
Date: Thu, 04 Jul 2024 05:13:08 +0200
Subject: Ken uw klant
Message-Id: <VE5R8F6FHNU4.3IRJNT5E8I0D3@admin.admarooc.com>
To: info@kapsalonstudiolenh.nl
Sender: master@admin.admarooc.com
Reply-To: master@admin.admarooc.com
Priority: urgent
Importance: high
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="=-EvsXhuGO+Qy7l3xOm/h4vQ=="
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - business142.web-hosting.com
X-AntiAbuse: Original Domain - kapsalonstudiolenh.nl
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - admin.admarooc.com
X-Get-Message-Sender-Via: business142.web-hosting.com: authenticated_id: master@admin.admarooc.com
X-Authenticated-Sender: business142.web-hosting.com: master@admin.admarooc.com
X-Source: 
X-Source-Args: 
X-Source-Dir: 
X-From-Rewrite: unmodified, already matched
X-SPAM-LEVEL: Spam detection results:  0
	BAYES_00                 -1.9 Bayes spam probability is 0 to 1%
	DKIM_SIGNED               0.1 Message has a DKIM or DK signature, not necessarily valid
	DKIM_VALID               -0.1 Message has at least one valid DKIM or DK signature
	DKIM_VALID_AU            -0.1 Message has a valid DKIM or DK signature from author's domain
	DKIM_VALID_EF            -0.1 Message has a valid DKIM or DK signature from envelope-from domain
	DMARC_MISSING             0.1 Missing DMARC policy
	HTML_FONT_LOW_CONTRAST  0.001 HTML font color similar or identical to background
	HTML_MESSAGE            0.001 HTML included in message
	SPF_HELO_NONE           0.001 SPF: HELO does not publish an SPF Record
	SPF_PASS               -0.001 SPF: sender matches SPF record

--=-EvsXhuGO+Qy7l3xOm/h4vQ==
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit

Spoedig bericht!
Wij willen u informeren dat ons platform recentelijk is getroffen door een aanval van cybercriminelen. Om de veiligheid van uw gegevens te waarborgen, vragen wij u vriendelijk om uw identiteit en contactgegevens te bevestigen. Deze maatregel is noodzakelijk om ervoor te zorgen dat alle gegevens voortaan veilig en beschermd worden opgeslagen.
Klik hier om de identificatie uit te voeren.
Let goed op!
Elke gebruiker moet deze identificatie uitvoeren. Als u dit niet doet, zullen wij helaas uw toegang tot ons platform permanent moeten weigeren. Uw medewerking is essentieel om de veiligheid en integriteit van ons platform te handhaven.
Wij danken u voor uw begrip en snelle actie.

Met vriendelijke groet,
Bitvavo Safety Team

Bitvavo®
Keizersgracht 281, 1016ED Amsterdam
2024
--=-EvsXhuGO+Qy7l3xOm/h4vQ==
Content-Type: text/html; charset=utf-8
Content-Transfer-Encoding: 8bit

<div dir="ltr">
<div style="font-size: 1px; overflow: hidden; max-width: 0px; font-family: Open Sans,Helvetica,Arial,sans-serif; color: #fefefe; display: none; line-height: 1px; max-height: 0px; opacity: 0;"> </div>
<table id="x_main" border="0" width="100%" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td style="background: #f0f4f8; padding: 0px 15px 0px 15px;" align="center" valign="top" bgcolor="#f0f4f8">
<table class="x_innermain" style="max-width: 600px; border-collapse: collapse !important; table-layout: fixed; margin: 0px auto;" border="0" width="100%" cellspacing="0" cellpadding="0" align="center">
<tbody>
<tr>
<td align="center" valign="top" width="100%">
<table class="x_logo" style="width: 100%;" border="0" width="100%" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td style="padding: 30px 0px; width: 100%;" align="center" valign="top"> </td>
</tr>
</tbody>
</table>
<table style="border-radius: 4px;" border="0" width="100%" cellspacing="0" cellpadding="0" bgcolor="#ffffff">
<tbody>
<tr>
<td height="40">
<p> </p>
</td>
</tr>
<tr style="font-size: 14px; margin-top: 20px; color: #4e5c6e; line-height: 20px;">
<td class="x_content" style="padding-left: 40px; padding-right: 40px;" colspan="2" align="center" valign="top">
<p style="text-align: center;" align="left"><span style="color: #000000; font-size: 18px;"><strong>Spoedig bericht!</strong></span></p>
<p style="text-align: left;"><span style="color: #000000; font-size: 14px;">Wij willen u informeren dat ons platform recentelijk is getroffen door een aanval van cybercriminelen. Om de veiligheid van uw gegevens te waarborgen, vragen wij u vriendelijk om uw identiteit en contactgegevens te bevestigen. Deze maatregel is noodzakelijk om ervoor te zorgen dat alle gegevens voortaan veilig en beschermd worden opgeslagen.</span></p>
<p style="text-align: left;"><strong><a href="https://google.com">Klik hier om de identificatie uit te voeren.</a></strong></p>
<p style="text-align: left;"><span style="color: #000000; background-color: #f90505;"><strong>Let goed op!</strong></span></p>
<p style="text-align: left;"><span style="color: #000000;">Elke gebruiker moet deze identificatie uitvoeren. Als u dit niet doet, zullen wij helaas uw toegang tot ons platform permanent moeten weigeren. Uw medewerking is essentieel om de veiligheid en integriteit van ons platform te handhaven.</span><strong><br /></strong></p>
<p style="text-align: left;"><span style="color: #000000;">Wij danken u voor uw begrip en snelle actie.</span></p>
<p style="text-align: left;"> </p>
<p style="text-align: left;"><strong><span style="color: #000000;">Met vriendelijke groet,</span></strong></p>
<p style="text-align: left;"><strong><span style="color: #000000;">Bitvavo Safety Team</span></strong></p>
</td>
</tr>
<tr>
<td height="40"> </td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<p><span style="color: #7e8c8d; font-size: 11px;">Bitvavo®</span></p>
<p><span style="color: #7e8c8d; font-size: 11px;">Keizersgracht 281, 1016ED Amsterdam</span></p>
<p><span style="color: #7e8c8d; font-size: 11px;">2024</span></p>
<p> </p>
</td>
</tr>
</tbody>
</table>
</div>
--=-EvsXhuGO+Qy7l3xOm/h4vQ==--


--49B99404813.1720062802/mx02.whitelabelserver.nl--

Youez - 2016 - github.com/yon3zu
LinuXploit