| Dir : /home/ithome/mail/cur/ |
| Server: Linux host100322.itwesthosting.com 3.10.0-1160.144.1.el7.tuxcare.els4.x86_64 #1 SMP Tue Apr 7 08:40:40 UTC 2026 x86_64 IP: 144.91.64.173 |
| Dir : /home/ithome/mail/cur/1757439703.M610811P7437.host100322.itwesthosting.com,S=8424,W=8560:2, |
Return-Path: <>
Delivered-To: ithome@host100322.itwesthosting.com
Received: from host100322.itwesthosting.com
by host100322.itwesthosting.com with LMTP
id oBNLJNdmwGgNHQAAp0YrwQ
(envelope-from <>)
for <ithome@host100322.itwesthosting.com>; Tue, 09 Sep 2025 19:41:43 +0200
Return-path: <>
Envelope-to: info@h1telekom.hr
Delivery-date: Tue, 09 Sep 2025 19:41:43 +0200
Received: from 173.147.83.34.bc.googleusercontent.com ([34.83.147.173]:43510 helo=[10.88.0.4])
by host100322.itwesthosting.com with esmtp (Exim 4.96.2)
id 1uw2Lf-0001wS-0Z
for info@h1telekom.hr;
Tue, 09 Sep 2025 19:41:43 +0200
Content-Type: multipart/related; boundary="===============1166440615922773954=="
MIME-Version: 1.0
From: Mail Administrator <info@eurostar.lv>
To: info@h1telekom.hr
X-Priority: 2
X-Spam-Status: Yes, score=12.2
X-Spam-Score: 122
X-Spam-Bar: ++++++++++++
X-Spam-Report: Spam detection software, running on the system "host100322.itwesthosting.com",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
root\@localhost for details.
Content preview: webmail h1telekom.hr , Your account info@h1telekom.hr password
will expire on 10 September, 2025 17:41:40 PM. Please kindly use the button
below to continue with the same password.
Content analysis details: (12.2 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL
[34.83.147.173 listed in zen.spamhaus.org]
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: h1telekom.hr]
2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the Spamhaus
DBL blocklist
[URIs: 47-detsad.ru]
0.0 TVD_RCVD_IP Message was received from an IP address
0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge
0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.0 HTML_MESSAGE BODY: HTML included in message
0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The
query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[34.83.147.173 listed in bl.score.senderscore.com]
0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE:
The query to Validity was blocked. See
https://knowledge.validity.com/hc/en-us/articles/20961730681243
for more information.
[34.83.147.173 listed in sa-trusted.bondedsender.org]
0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict
Alignment
0.5 KAM_NUMSUBJECT Subject ends in numbers excluding current years
0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
Colors in HTML
0.2 KAM_DMARC_NONE DKIM has Failed or SPF has failed on the message
and the domain has no DMARC policy
1.4 MISSING_DATE Missing Date: header
2.6 RDNS_DYNAMIC Delivered to internal network by host with
dynamic-looking rDNS
0.1 TO_IN_SUBJ To address is in Subject
X-Spam-Flag: YES
Subject: ***SPAM*** =?utf-8?q?info=40h1telekom=2Ehr_password_expires_09_September=2C_2025?=
X-From-Rewrite: unmodified, forwarded message
--===============1166440615922773954==
Content-Type: text/html; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64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--===============1166440615922773954==--