Google
Edit File: 1772355112.M747160P2296774.server-619288.prediksijaya.com,S=4939,W=5028
Return-Path: <JohnBlue@hola.com> Delivered-To: angker+spam@server-619288.prediksijaya.com Received: from server-619288.prediksijaya.com by server-619288.prediksijaya.com with LMTP id ksCwKij+o2nGCyMAf7/9AQ (envelope-from <JohnBlue@hola.com>) for <angker+spam@server-619288.prediksijaya.com>; Sun, 01 Mar 2026 15:51:52 +0700 Return-path: <JohnBlue@hola.com> Envelope-to: vavadainua@ponjosonek.com Delivery-date: Sun, 01 Mar 2026 15:51:52 +0700 Received: from [213.230.99.136] (port=54946) by server-619288.prediksijaya.com with esmtp (Exim 4.99.1) (envelope-from <JohnBlue@hola.com>) id 1vwcWj-00000009dOL-342B for vavadainua@ponjosonek.com; Sun, 01 Mar 2026 15:51:52 +0700 Received: from gkiyccd ([76.243.249.129]) by 61637.com with MailEnable ESMTP; Sun, 1 Mar 2026 13:50:47 +0500 Received: (qmail 11437 invoked by uid 114); 1 Mar 2026 13:50:45 +0500 From: John Blue <JohnBlue@hola.com> To: vavadainua@ponjosonek.com Date: Sun, 1 Mar 2026 13:50:47 +0500 Message-ID: <114371.114371@61637.com> Mime-Version: 1.0 Content-type: text/plain; X-Spam-Status: Yes, score=22.2 X-Spam-Score: 222 X-Spam-Bar: ++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "server-619288.prediksijaya.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hello, Your computer was hacked, and I am aware of your password: 6#oPhad45oI During routine monitoring, illegal files and activity have been detected on your computer. Content analysis details: (22.2 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.1 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [213.230.99.136 listed in sa-trusted.bondedsender.org] 0.7 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [213.230.99.136 listed in sa-accredit.habeas.com] 0.4 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [213.230.99.136 listed in bl.score.senderscore.com] 0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#DnsBlocklists-dnsbl-block for more information. [213.230.99.136 listed in list.dnswl.org] 1.5 RCVD_IN_HOSTKARMA_BL RBL: Sender listed in HOSTKARMA-BLACK [213.230.99.136 listed in hostkarma.junkemailfilter.com] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 1.5 KAM_DMARC_QUARANTINE DKIM has Failed or SPF has failed on the message and the domain has a DMARC quarantine policy 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 8.0 BTC_HASHBL_BLACK Message contains BTC address found on BTC blocklist [1acblbbnmehcjcduurdgvhfc4gsdjbikyc] 4.7 GB_HASHBL_BTC Message contains BTC address found on BTCBL [1acblbbnmehcjcduurdgvhfc4gsdjbikyc] 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 0.9 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin X-Spam-Flag: YES Subject: Your computer was hacked! Hello, Your computer was hacked, and I am aware of your password: 6#oPhad45oI During routine monitoring, illegal files and activity have been detected on your computer. These files violate applicable laws and regulations. To resolve this matter discreetly, you are required to make a payment of $2400 in Bitcoins to the following wallet address: 1ACbLBbnmehCJCdUUrdGvHFC4gsDJbiKYc Please note that this is how the wallet looks; copy the address exactly as shown, as it is case-sensitive. Failure to comply within 48 hours will result in all identified information, including evidence of the illegal activity, being forwarded to the appropriate law enforcement authorities for further investigation and action.