Google
Edit File: 1772462367.M875554P3136053.server-619288.prediksijaya.com,S=5269,W=5363
Return-Path: <JohnBlue@hola.com> Delivered-To: angker+spam@server-619288.prediksijaya.com Received: from server-619288.prediksijaya.com by server-619288.prediksijaya.com with LMTP id O0mqMR+hpWk12i8Af7/9AQ (envelope-from <JohnBlue@hola.com>) for <angker+spam@server-619288.prediksijaya.com>; Mon, 02 Mar 2026 21:39:27 +0700 Return-path: <JohnBlue@hola.com> Envelope-to: zensho@ponjosonek.com Delivery-date: Mon, 02 Mar 2026 21:39:27 +0700 Received: from [14.163.186.126] (port=49361) by server-619288.prediksijaya.com with esmtp (Exim 4.99.1) (envelope-from <JohnBlue@hola.com>) id 1vx4Qe-0000000D9lT-116m for zensho@ponjosonek.com; Mon, 02 Mar 2026 21:39:27 +0700 Received: from fukikch ([111.16.84.192]) by 72700.com with MailEnable ESMTP; Mon, 2 Mar 2026 21:39:22 +0700 Received: (qmail 80523 invoked by uid 805); 2 Mar 2026 21:39:20 +0700 From: John Blue <JohnBlue@hola.com> To: zensho@ponjosonek.com Date: Mon, 2 Mar 2026 21:39:22 +0700 Message-ID: <805238.805238@72700.com> Mime-Version: 1.0 Content-type: text/plain; X-Spam-Status: Yes, score=29.7 X-Spam-Score: 297 X-Spam-Bar: +++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "server-619288.prediksijaya.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hello, Your computer was hacked, and I am aware of your password: 2k84hbhb#KK During routine monitoring, illegal files and activity have been detected on your computer. Content analysis details: (29.7 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.1 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [14.163.186.126 listed in sa-trusted.bondedsender.org] 0.7 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [14.163.186.126 listed in sa-accredit.habeas.com] 0.4 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [14.163.186.126 listed in bl.score.senderscore.com] 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?14.163.186.126>] 1.5 RCVD_IN_HOSTKARMA_BL RBL: Sender listed in HOSTKARMA-BLACK [14.163.186.126 listed in hostkarma.junkemailfilter.com] 0.0 RCVD_IN_DNSWL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to DNSWL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#DnsBlocklists-dnsbl-block for more information. [14.163.186.126 listed in list.dnswl.org] 6.2 RCVD_IN_MSPIKE_L5 RBL: Very bad reputation (-5) [14.163.186.126 listed in bl.mailspike.net] 1.5 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail) 0.0 RCVD_IN_MSPIKE_BL Mailspike blocklisted 1.5 KAM_DMARC_QUARANTINE DKIM has Failed or SPF has failed on the message and the domain has a DMARC quarantine policy 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 8.0 BTC_HASHBL_BLACK Message contains BTC address found on BTC blocklist [1acblbbnmehcjcduurdgvhfc4gsdjbikyc] 4.7 GB_HASHBL_BTC Message contains BTC address found on BTCBL [1acblbbnmehcjcduurdgvhfc4gsdjbikyc] 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 0.9 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin X-Spam-Flag: YES Subject: Your computer was hacked! Hello, Your computer was hacked, and I am aware of your password: 2k84hbhb#KK During routine monitoring, illegal files and activity have been detected on your computer. These files violate applicable laws and regulations. To resolve this matter discreetly, you are required to make a payment of $2400 in Bitcoins to the following wallet address: 1ACbLBbnmehCJCdUUrdGvHFC4gsDJbiKYc Please note that this is how the wallet looks; copy the address exactly as shown, as it is case-sensitive. Failure to comply within 48 hours will result in all identified information, including evidence of the illegal activity, being forwarded to the appropriate law enforcement authorities for further investigation and action.