| Dir : /home/ithome/mail/cur/ |
| Server: Linux host100322.itwesthosting.com 3.10.0-1160.144.1.el7.tuxcare.els4.x86_64 #1 SMP Tue Apr 7 08:40:40 UTC 2026 x86_64 IP: 144.91.64.173 |
| Dir : /home/ithome/mail/cur/1756954319.M731926P5868.host100322.itwesthosting.com,S=10114,W=10273:2, |
Return-Path: <>
Delivered-To: ithome@host100322.itwesthosting.com
Received: from host100322.itwesthosting.com
by host100322.itwesthosting.com with LMTP
id eR1/K8/+uGjsFgAAp0YrwQ
(envelope-from <>)
for <ithome@host100322.itwesthosting.com>; Thu, 04 Sep 2025 04:51:59 +0200
Return-path: <>
Envelope-to: info@h1telekom.hr
Delivery-date: Thu, 04 Sep 2025 04:51:59 +0200
Received: from 38.43.169.34.bc.googleusercontent.com ([34.169.43.38]:60650 helo=[10.88.0.3])
by host100322.itwesthosting.com with esmtp (Exim 4.96.2)
id 1uu04u-0001WX-1W
for info@h1telekom.hr;
Thu, 04 Sep 2025 04:51:59 +0200
Content-Type: multipart/related; boundary="===============7253589277535744028=="
MIME-Version: 1.0
From: cPanel Help <noreply@h1telekom.hr>
To: info@h1telekom.hr
X-Priority: 2
X-Spam-Status: Yes, score=13.8
X-Spam-Score: 138
X-Spam-Bar: +++++++++++++
X-Spam-Report: Spam detection software, running on the system "host100322.itwesthosting.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
root\@localhost for details.
Content preview: "h1telekom.hr" Password Recovery! User Account: - info@h1telekom.hr,
Our new security protocol demands that you update your account password periodically.
Your account is due for update. Action Required: :
Content analysis details: (13.8 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: qwikpower.com]
4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL
[34.169.43.38 listed in zen.spamhaus.org]
0.0 TVD_RCVD_IP Message was received from an IP address
0.0 T_MXG_EMAIL_FRAG URI with email in fragment
0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.0 HTML_MESSAGE BODY: HTML included in message
0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The
query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[34.169.43.38 listed in bl.score.senderscore.com]
0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE:
The query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[34.169.43.38 listed in sa-accredit.habeas.com]
2.8 URI_IPFSIO References Interplanetary File System PtP content via
ipfs.io, likely phishing
0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict
Alignment
0.0 KAM_SHORT Use of a URL Shortener for very short URL
1.5 GOOG_REDIR_NOTRDNS Google redirect to obscure spamvertised
website + HELO is not rDNS
1.4 MISSING_DATE Missing Date: header
0.6 HTML_MIME_NO_HTML_TAG HTML-only message, but there is no HTML
tag
0.0 TVD_PH_BODY_ACCOUNTS_PRE The body matches phrases such as
"accounts suspended", "account credited",
"account verification"
2.6 RDNS_DYNAMIC Delivered to internal network by host with
dynamic-looking rDNS
0.0 URI_IPFS References Interplanetary File System PtP content,
probable phishing
0.0 URI_WP_HACKED URI for compromised WordPress site, possible
malware
X-Spam-Flag: YES
Subject: ***SPAM*** =?utf-8?q?H1_portal_Password_Prompt?=
X-From-Rewrite: unmodified, forwarded message
--===============7253589277535744028==
Content-Type: text/html; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64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--===============7253589277535744028==--