OwlCyberSecurity - MANAGER
Edit File: 1736384699.M992000P2515091.premium128.web-hosting.com,S=7059,W=7197:2,
Return-Path: <postmaster@1ddf43a468.nxcli.io> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id 2ATHOLsgf2eTYCYAAvhI2g (envelope-from <postmaster@1ddf43a468.nxcli.io>) for <contact+spam@gourayafroid.com>; Wed, 08 Jan 2025 20:04:59 -0500 Return-path: <postmaster@1ddf43a468.nxcli.io> Envelope-to: contact@gourayafroid.com Delivery-date: Wed, 08 Jan 2025 20:04:59 -0500 Received: from cloudhost-4892180.us-midwest-2.nxcli.net ([199.189.224.212]:49522) by premium128.web-hosting.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.96.2) (envelope-from <postmaster@1ddf43a468.nxcli.io>) id 1tVgyk-00AZr6-2K for contact@gourayafroid.com; Wed, 08 Jan 2025 20:04:59 -0500 Received: (qmail 15073 invoked by uid 10159); 9 Jan 2025 00:58:24 +0000 Date: 9 Jan 2025 00:58:24 +0000 Message-ID: <20250109005824.15071.qmail@cloudhost-4892180.us-midwest-2.nxcli.net> To: contact@gourayafroid.com X-PHP-Originating-Script: 10159:mail.php From: Customer Help <cmibok2m@info.example.net> Reply-To: cmibok2m@info.example.net Content-Type: text/html; charset=UTF-8 MIME-Version: 1.0 X-Spam-Status: Yes, score=8.3 X-Spam-Score: 83 X-Spam-Bar: ++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: MetaMask Security Secure Your Wallet Now ! Dear Valued User, Content analysis details: (8.3 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: klorido.com] 1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist [URIs: klorido.com] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [199.189.224.212 listed in sa-accredit.habeas.com] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [199.189.224.212 listed in bl.score.senderscore.com] 0.8 DKIM_ADSP_NXDOMAIN No valid author signature and domain not in DNS 0.2 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different 0.0 HTML_IMAGE_ONLY_32 BODY: HTML: images with 2800-3200 bytes of words 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50% [cf: 100] 1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/) 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment X-Spam-Flag: YES Subject: ***SPAM*** Account Notification <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>MetaMask Security </title> <style> body { margin: 0; padding: 0; width: 100%; background-color: #f3f4f6; font-family: Arial, sans-serif; } table { border-spacing: 0; width: 100%; margin: 0 auto; } .container { max-width: 600px; margin: 20px auto; background-color: #ffffff; border: 1px solid #dddddd; border-radius: 8px; overflow: hidden; } .header { text-align: center; padding: 20px 0; background-color: #f9f9f9; } .header img { max-width: 100%; height: auto; width: 150px; } .content { padding: 20px; color: #333333; } .content h1 { font-size: 22px; color: #2c3e50; margin-bottom: 15px; } .content p { font-size: 16px; line-height: 1.6; margin-bottom: 20px; } .cta-button { display: inline-block; text-decoration: none; background-color: #3498db; color: #ffffff; padding: 12px 25px; font-size: 16px; font-weight: bold; border-radius: 5px; margin: 20px 0; } .cta-button:hover { background-color: #2980b9; } .footer { background-color: #f9f9f9; font-size: 12px; color: #888888; text-align: center; padding: 10px; border-top: 1px solid #dddddd; } .footer a { color: #3498db; text-decoration: none; } </style> </head> <body> <table> <tr> <td align="center"> <table class="container"> <!-- Header Section --> <tr> <td class="header"> <img src="https://www.finder.com/niche-builder/62e777ae33adf.png" alt="MetaMask Logo"> </td> </tr> <!-- Content Section --> <tr> <td class="content"> <h1>Secure Your Wallet Now ! </h1> <p>Dear Valued User,</p> <p>Your wallet's security is our top priority. Two-Factor Authentication (2FA) protects your assets. Please enable 2FA for uninterrupted access. </p> <p style="text-align: center;"> <a href="https://klorido.com/wp-content/mt?id=6c6120853dd6537da47b9643cac56d55" class="cta-button">Enable 2FA Now</a> </p> <p>If you have already taken action, please disregard this message.</p> <p>Thank you for being a valued MetaMask user. Stay secure .</p> </td> </tr> <!-- Footer Section --> <tr> <td class="footer"> <p>© 2024 MetaMask. All rights reserved.</p> <p>This email was sent from a notification-only address. Please do not reply to this email.</p> </td> </tr> </table> </td> </tr> </table> </body> </html>