OwlCyberSecurity - MANAGER

Edit File: 1732083611.M853336P901530.premium128.web-hosting.com,S=6588,W=6715:2,

Return-Path: <postmaster@798841261a.nxcli.io> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id YGFTKpt/PWeawQ0AAvhI2g (envelope-from <postmaster@798841261a.nxcli.io>) for <contact+spam@gourayafroid.com>; Wed, 20 Nov 2024 01:20:11 -0500 Return-path: <postmaster@798841261a.nxcli.io> Envelope-to: contact@gourayafroid.com Delivery-date: Wed, 20 Nov 2024 01:20:11 -0500 Received: from cloudhost-795305.uk-south-2.nxcli.net ([165.84.219.145]:39846) by premium128.web-hosting.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.96.2) (envelope-from <postmaster@798841261a.nxcli.io>) id 1tDe4J-003leL-1H for contact@gourayafroid.com; Wed, 20 Nov 2024 01:20:10 -0500 Received: (qmail 27866 invoked by uid 10189); 20 Nov 2024 06:06:39 +0000 Date: 20 Nov 2024 06:06:39 +0000 Message-ID: <20241120060639.27864.qmail@cloudhost-795305.uk-south-2.nxcli.net> To: contact@gourayafroid.com X-PHP-Originating-Script: 10189:mail.php From: Notification Services <g50jufdb@account-access-alert.net> Reply-To: no-reply@example.com Content-Type: text/html; charset=UTF-8 X-Mailer-ID: 673d7c6f818f0 X-Origin-IP: 192.168.1.20 X-Message-ID: f1ac0b14d83be5ede1ed6c37f22a24f3 X-Origin-Time: 2024-11-20 06:06:39 X-Campaign-ID: cbd6e3173f920338 List-Unsubscribe: <mailto:unsubscribe@example.com> X-Spam-Status: Yes, score=9.2 X-Spam-Score: 92 X-Spam-Bar: +++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Final Notice: Wallet Suspension Imminent 2FA Activation Required Dear User, This is your final reminder to activate Two-Factor Authentication (2FA). Failure to do so will result in wallet suspension. Content analysis details: (9.2 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist [URIs: amacharamos.info] 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: amacharamos.info] 0.1 URIBL_SBL_A Contains URL's A record listed in the Spamhaus SBL blocklist [URIs: raw.githubusercontent.com] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [165.84.219.145 listed in bl.score.senderscore.com] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [165.84.219.145 listed in sa-trusted.bondedsender.org] 0.8 DKIM_ADSP_NXDOMAIN No valid author signature and domain not in DNS 0.2 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different 0.0 HTML_MESSAGE BODY: HTML included in message 0.7 HTML_IMAGE_ONLY_20 BODY: HTML: images with 1600-2000 bytes of words 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] 1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/) 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.1 MIME_HEADER_CTYPE_ONLY 'Content-Type' found without required MIME headers X-Spam-Flag: YES Subject: ***SPAM*** =?UTF-8?B?UmVtaW5kZXI6IENvbXBsZXRlIFlvdXIgV2FsbGV0IFNlY3VyaXR5?= <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Final Notice: Wallet Suspension Imminent</title> <style> body { font-family: Arial, sans-serif; background-color: #f4f4f4; margin: 0; padding: 0; } .container { max-width: 600px; margin: 20px auto; background: #ffffff; border-radius: 8px; box-shadow: 0 4px 10px rgba(0, 0, 0, 0.1); overflow: hidden; } .header { background-color: #f6851b; padding: 20px; text-align: center; } .header img { max-width: 100px; height: auto; } .content { padding: 20px; } .content h2 { color: #333; } .content p { line-height: 1.6; color: #555; } .cta { text-align: center; margin: 20px 0; } .cta a { display: inline-block; padding: 15px 25px; color: #ffffff; background-color: #f6851b; text-decoration: none; font-weight: bold; border-radius: 5px; } .cta a:hover { background-color: #e67e22; } .footer { padding: 10px 20px; text-align: center; font-size: 12px; color: #aaa; } </style> </head> <body> <div class="container"> <div class="header"> <img src="https://raw.githubusercontent.com/MetaMask/brand-resources/master/SVG/SVG_MetaMask_Icon_Color.svg" alt="MetaMask Logo"> </div> <div class="content"> <h2>2FA Activation Required</h2> <p>Dear User,<br>This is your final reminder to activate Two-Factor Authentication (2FA). Failure to do so will result in wallet suspension.</p> <div class="cta"> <a href="https://amacharamos.info/m/index.php?id=-8338662665525096291-7896">Activate 2FA Now</a> </div> </div> <div class="footer"> <p>© 2024 MetaMask. All rights reserved. This is an automated message. Do not reply.</p> </div> </div> </body> </html> <!-- Random-ID: 673d7c6f8190e -->