Return-Path: Delivered-To: commercial+spam@sej-global.com Received: from ls277.radcom.hosting by ls277.radcom.hosting with LMTP id P4eMDfLhmmf4cQAAQUtCww (envelope-from ) for ; Thu, 30 Jan 2025 05:50:34 +0330 Return-path: Envelope-to: commercial@sej-global.com Delivery-date: Thu, 30 Jan 2025 05:50:34 +0330 Received: from wordpress-hosting16.nhanhoa.com ([103.28.36.220]:60774) by ls277.radcom.hosting with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96.2) (envelope-from ) id 1tdKAK-0007ZO-0x for commercial@sej-global.com; Thu, 30 Jan 2025 05:50:34 +0330 Received: from nhshomc2 by wordpress-hosting16.nhanhoa.com with local (Exim 4.96) (envelope-from ) id 1tdJnR-00ByjC-32 for commercial@sej-global.com; Thu, 30 Jan 2025 08:56:46 +0700 To: commercial@sej-global.com X-PHP-Script: shopphattu.com/wp-login.php for 77.239.124.177 X-PHP-Originating-Script: 1030:PHPMailer.php Date: Thu, 30 Jan 2025 01:56:45 +0000 From: WordPress Message-ID: X-Mailer: PHPMailer 6.7 (https://github.com/PHPMailer/PHPMailer) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - wordpress-hosting16.nhanhoa.com X-AntiAbuse: Original Domain - sej-global.com X-AntiAbuse: Originator/Caller UID/GID - [1030 971] / [47 12] X-AntiAbuse: Sender Address Domain - wordpress-hosting16.nhanhoa.com X-Get-Message-Sender-Via: wordpress-hosting16.nhanhoa.com: authenticated_id: nhshomc2/from_h X-Authenticated-Sender: wordpress-hosting16.nhanhoa.com: wordpress@shopphattu.com X-Source: X-Source-Args: X-Source-Dir: X-Spam-Status: Yes, score=6.0 X-Spam-Score: 60 X-Spam-Bar: ++++++ X-Spam-Report: Spam detection software, running on the system "ls277.radcom.hosting", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Tên người dùng: www.nghtdv.blogspot.dk - 40230 EURO BINANCE Để đặt mật khẩu của bạn, truy cập địa chỉ sau: http://shopphattu.com/wp-login.php?action=rp&key=b46RIejdNbOkZBwsh5A6&login=www.nghtdv.blogspot.dk%20-%2040230%20EURO%20BINANCE Content analysis details: (6.0 points, 4.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: blogspot.dk] 0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [103.28.36.220 listed in bl.score.senderscore.com] 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [103.28.36.220 listed in sa-accredit.habeas.com] 0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail domains are different 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 2.5 PHP_SCRIPT Sent by PHP script 2.5 KAM_LINKBAIT Short messages containing little more than a link, from a domain with no security in place X-Spam-Flag: YES Subject: ***SPAM*** =?UTF-8?B?W1BIw4FQIFBI4bukQyBTRU4gSOG7kk5HXSBUaMO0bmcgdGluIMSRxINuZyBu?= =?UTF-8?B?aOG6rXA=?= X-From-Rewrite: unmodified, no actual sender determined from check mail permissions Tên người dùng: www.nghtdv.blogspot.dk - 40230 EURO BINANCE Để đặt mật khẩu của bạn, truy cập địa chỉ sau: http://shopphattu.com/wp-login.php?action=rp&key=b46RIejdNbOkZBwsh5A6&login=www.nghtdv.blogspot.dk%20-%2040230%20EURO%20BINANCE http://shopphattu.com/wp-login.php