NetKnow Corporate Blog

Web/SEO/App spam from Google Gmail Part 1

Posted by Dave Yadallee on Wednesday, December 31. 2025

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 31 Dec 2025 07:33:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaxFt-00000000LYE-2BOg

for dave@doctor.nl2k.ab.ca;

Wed, 31 Dec 2025 07:32:53 -0700

Resent-From: The Doctor

Resent-Date: Wed, 31 Dec 2025 07:32:53 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-pf1-f195.google.com ([209.85.210.195]:55514)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vas42-000000008jp-3yy2

for root@nk.ca;

Wed, 31 Dec 2025 02:00:29 -0700

Received: by mail-pf1-f195.google.com with SMTP id d2e1a72fcca58-8035e31d834so8200342b3a.2

for ; Wed, 31 Dec 2025 00:59:30 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=wordpressconsultants-net.20230601.gappssmtp.com; s=20230601; t=1767171564; x=1767776364; darn=nk.ca;

h=content-language:thread-index:mime-version:message-id:date:subject

:to:from:from:to:cc:subject:date:message-id:reply-to;

bh=pIkTEiwgVAyWEYwX2TLsuvufpiEwt/rWZoRgMD7/gw8=;

b=LQ0oREVcV0macjOqLk+uuH+LAYROIB+frToI3E1tST6MeLZ23dUXm+ibd9B5kXd3Cf

Aw/9j25zsW5dSVu1MOypxtj/iMDHpDCN9XrSXUz+3ofEVo/TCJ/V6dNWC490Lu8hjD9c

jfKbdA6uwbBHNebdQkcLVjkarD5om8EByhYGVJAIiNdRPCIeTRsnLTwzeQdx0rcb6UIF

OUrTob4Af51RGwgG2kfK7aLIKuJ/OvxTW3UByteH2xrtt9MLzjmeTgASym8ArNWMX2+S

3bjDh1sRxLr0waWV5DWR0SoS1qKliQ6QVc2vpMSLNf44L82qpK7Ke1lkDx4XzJiPf2Fk

xhWA==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1767171564; x=1767776364;

h=content-language:thread-index:mime-version:message-id:date:subject

:to:from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date

:message-id:reply-to;

bh=pIkTEiwgVAyWEYwX2TLsuvufpiEwt/rWZoRgMD7/gw8=;

b=VHVxHucW6OzP1IA4bLaZoC3ZNqHcEYfVD7IlnAfZPzPk8hMtl14qagTOOVVtLcDaCq

o6S9X+/rnB5de1n64FKw2ih2MLnbfxoCl7eZOvvfebt1gl7KXTyDtldaVA2bzNqRQdIS

KmCWZRDHmYXRBwEAiZBp4MIIxuVKmUywznn/+TJHddlewrOz4i6tWGOOMqrNEDKYWNDX

2XkywCBnp0zcdByDPR2cXxZMVaidSxRF2g7afvzIKt8Vy4rUiXb8j0vLvq89QSuABjLM

Sy1YTZfjp05n4qlAf9fZZcYYISFX6tJgH0+rMjxOgAGL7GFv5240v0l31oeOPQhGb6Pt

Altg==

X-Gm-Message-State: AOJu0YxJO2WW7HL1s72djcdBXz/IuPGwltl3TAujb2L45MNWaCwwy44h

ckdwDBvGJDYpjq/6drLQpOpsF7W5m6rZbvc7u39SWVolQXYgdsxDTXukYwgxWwuUUbTBm2K2T4o

5BwzZCEo=

X-Gm-Gg: AY/fxX7vWW4UIridWFV3a7uOyAMbTmV8F10c5y4kw7SH74e9xapdsv5Ud4LmlAXBmQE

9/iGq266XRJj0b6Xy2vlrNQVFM+B75VeKtbWYlTEk8SAz8eqzUhg5agCLoItKiuLv+QY7qF0iQU

mIiJPFLCM3is2olSUcMavXOl4bG2QOGAnQp8oZN/KqEywxzn/43CX3kR8zxR03O0PpZp0ZPloT4

DBfD9RfAZK6QVypqUDdEwHA5qHKZWhKVZDjFlujfJ/s52Pud+8x/c2t89s8MliJpi7E7n1F6888

pU3nuvL/M9SFPmT50AMFhNJd7OTXY/OIy5UvVoipUM8A+wI0wDp95lPR34EYHVRDPm3GVzS2/i7

2+HYHXKIJgF3uYcb+aXE1olZomxpG4IekKLc6sDOdiVNkMPFjXTpkbnpgREF3kW/BCfcY8mkz+F

tdNHC0VaKYOqlFS5q8g7j+Ln304AMpPPKsLf5Qxjbp5as1

X-Google-Smtp-Source: AGHT+IEgnN+CiCMiRhkuzOV123226nFhohXsAaH+jN66cb1C7T/uTqYxoVbTfU4BgGxbnuQ3mSEaOw==

X-Received: by 2002:a05:6a00:158c:b0:806:12ff:3877 with SMTP id d2e1a72fcca58-80612ff38b5mr20807777b3a.4.1767171564400;

Wed, 31 Dec 2025 00:59:24 -0800 (PST)

Received: from Kanhaiya ([2401:4900:1c64:6ee1:295b:5f9:c613:cf0b])

by smtp.gmail.com with ESMTPSA id d2e1a72fcca58-7ff7e797ab9sm34582890b3a.59.2025.12.31.00.59.23

for

(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);

Wed, 31 Dec 2025 00:59:23 -0800 (PST)

From: "Malti"

To:

Subject: Designer\Developer ?

Date: Wed, 31 Dec 2025 14:18:58 +0530

Message-ID: <1493d01dc7a33$c2760ef0$47622cd0$@net>

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="----=_NextPart_000_1493E_01DC7A61.DC2E4AF0"

X-Mailer: Microsoft Office Outlook 12.0

Thread-Index: Adx4xFw7Ltrw58fRQgC+GAa86HdPUA==

Content-Language: en-us

X-Spam_score: 6.6

X-Spam_score_int: 66

X-Spam_bar: ++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Hello, I'm reaching out to see if there is anything that would

like to create Shopify & Wordpress, upgrade, repair, or redesign on your

website or Mobile App. I am a web designer/developer that can do just about

anything you can imagine at very affordable prices.

Content analysis details: (6.6 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.210.195 listed in dnsbl.ahbl.org]

[209.85.210.195 listed in dnsbl.ahbl.org]

[209.85.210.195 listed in dnsbl.ahbl.org]

[209.85.210.195 listed in dnsbl.ahbl.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[dnsbl.ahbl.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[dnsbl.ahbl.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[dnsbl.ahbl.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.210.195 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.210.195 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.210.195 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.210.195 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[2401:4900:1c64:6ee1:295b:5f9:c613:cf0b listed in]

[will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

[209.85.210.195 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.210.195 listed in list.dnswl.org]

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.210.195 listed in wl.mailspike.net]

0.9 PRICES_ARE_AFFORDABLE BODY: Message says that prices aren't too

expensive

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.8 FROM_FMBLA_NEWDOM28 From domain was registered in last 14-28 days

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

Subject: {SPAM?} Designer\Developer ?

Web/SEO/App spam from Google Gmail Part 2

Posted by Dave Yadallee on Wednesday, December 31. 2025

This is a multi-part message in MIME format.

------=_NextPart_000_1493E_01DC7A61.DC2E4AF0

Content-Type: text/plain;

charset="us-ascii"

Content-Transfer-Encoding: 7bit

Hello,

I'm reaching out to see if there is anything that would like to create

Shopify & Wordpress, upgrade, repair, or redesign on your website or Mobile

App.

I am a web designer/developer that can do just about anything you can

imagine at very affordable prices.

Let me know what you think.

If interested. May I send you sample, Portfolio and company Details?

Thank you for your time and consideration.

Kind Regards,

Malti

Country-India

------=_NextPart_000_1493E_01DC7A61.DC2E4AF0

Content-Type: text/html;

charset="us-ascii"

Content-Transfer-Encoding: quoted-printable

xmlns:o=3D"urn:schemas-microsoft-com:office:office" =

xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" =

xmlns=3D"http://www.w3.org/TR/REC-html40">
HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =

charset=3Dus-ascii">
(filtered medium)">

class=3DWordSection1>

Hello,

I'm reaching =

out to see if there is anything that would like to create Shopify & =

Wordpress, upgrade, repair, or redesign on your website or Mobile =

App.

I am a web designer/developer that can do just about =

anything you can imagine at very affordable prices.

Let me know =

what you think.

If interested. May I send you sample, Portfolio =

and company Details?

Thank you for your time and =

consideration.

Kind Regards,
Malti

class=3DMsoNoSpacing>Country-India

class=3DMsoNoSpacing>

------=_NextPart_000_1493E_01DC7A61.DC2E4AF0--

NetKnow now in NetCraft's Top 14700 part 2

Posted by Dave Yadallee on Wednesday, December 31. 2025

MCSnet

MCSNET ranks >2000000 from >2000000 and are hosted by Microsoft .

Nucleus Internet Services

After that we have

Nucleus Information Services which can be found at Netcraft Rank >2000000 from >2000000 .

4Web

4web ranks >2000000 from >2000000 .

Alentus / Wolfpaw

Alentus

rank by Netcraft >2000000 from >2000000 and I note they are hosted in the USA .

wolfpaw.net

which ranks at >2000000 from >2000000

Yellowpencil

Yellowpencil Ranks >2000000 from >2000000

WSI Corporation

Next is WSI - We Simply The Internet of Toronto

at Netcraft Position >2000000 from >2000000 and are being hosted on Amazon.

Uniserve / Interbaun

Next, Uniserve

ranks on Netcraft >2000000 from >2000000

One of their acquisitions

interbaun

ranks with Netcraft ?????? from ?????? due to merging of sites.

One customer just came over from this organization in Nov 2006.

Clearwave Broadband

Clearwave Broadband ranks

at >2000000 from >2000000

Platinum Communications

Platinum Communications Corp.

bought out by Xplornet .

Wild Rose Internet

Wild Rose Internet

ranks >2000000 from >2000000 and I wonder if this is another wireless branch of Tera-Byte and bought out by Xplornet

TIC Internet

TIC Internet

ranks >2000000 from >2000000 ( I do remember you).

Nisa Custom Internet Solutions

Nisa Custom Internet Solutions

ranks >2000000 from >2000000 by Netcraft

MediaShaker

Media Shakers of Edmonton

ranks >2000000 from >2000000

Koi Media

Koi Media

rank >2000000 from >2000000

WebFire

Webfire.ca

ranks >2000000 from >2000000 and seems to be connected with Shaw.

Core Network Solutions Inc.

Core Network Solutions Inc.

ranks at >2000000 from >2000000 .

The Network Centre

The Network Centre

ranks >2000000 from >2000000 and are linked with Telus high Speed.

Open Concept Internet, Inc.

Open Concept Internet, Inc.

rank > 2000000 from > 2000000

Techalta

Interspots of Edmonton

acquired by Techalta ;

Yegtel

Yegtel rank > 2000000 .

Internet Crossroads

Internet Crossroads Ltd of North Edmonton

rank nothing from nothing by Netcraft and seems to merged with Tera-Byte/ecn.ab.ca .

If I remember anymore, I will add to this entry, before Netcraft changes our ranking. Please watch this space and please feel free to peruse

our services.

NetKnow now in NetCraft's Top 14700 part 1

Posted by Dave Yadallee on Wednesday, December 31. 2025

All data is from Netcraft Toolbar .

Looks as if there are major changes to the Netcraft algorithm after some years! Why did Avast clasify the extension as URL:Phishing?

This is not the Alexa Tool Bar!

NetKnow

Netknow now at 14698 from 17767 at Netcraft and pfs compliant

A significant increase! We must do

security audits regularly
check on illegitimate traffic hitting the web server
keep design current!

How do we compare with other providers in

Edmonton, Alberta, Canada?

Rogers

Rogers Business Solutions

which rank 3945 from 4033 and are hosted in Europe.

Telus and reviews

Next we have Telus.com

ranked by Netcraft at 6342 from 6440 .

Sometimes their Web Hosting is done by
title="Internet Names for Business">Internet Names for Business

is ranked by Netcraft at >2000000 from >2000000 .

Is Telus's ADSL network susceptible to Code Red Attacks and Attackers?

Reviews of Telus are available :

NCIX FORUMS

DSL Reports

Government of Alberta

The Government of Alberta Website

ranks 14637 from 14535 by Netcraft and seems to hosted on Cloudfare.

Netknow again

We at Netknow are at 14698 from 18857 from 6568 since late June 2025.

City of Edmonton

The City of Edmonton ranks 30361 from 28330 by Netcraft and hosted by Google.

University of Alberta

The University of Alberta ranks 52387 from 50444 hosted by Amazon Techonologies.

Juno and NetZero

We have Juno Internet ranked on top

at 342753 from 360776 who are the owners of

US Based Netzero at Netcraft Rank 60492 from 57142 .

Grant MacEwen University

MacEwan ranks 135810 from 133425 .

NAIT / Northern Alberta Institute of Technology

NAIT ranks 139314 from 138782 hosted by Microsoft .

TekSavvy

TekSavvy ranks 201404

from 204257 and are hosted by Microsoft

Shaw Cable

Next,

members.shaw.ca

ranks >2000000 from >2000000 and retired and

Shaw Cable

is next at Netcraft rank 1206884 from 316963 . Hosted now by Akamei .

Their Network Hosting Arm,

Big Pipe is at

Netcraft rank 289479 from 291469 and hosted by Akamai in Europe .

Reviews of Shaw are available :

Rate It All

Review Stream

Review Stream Number 2

DSL reports

Xplornet

xplornet

ranks >2000000 from >2000000 and are listed with

Cirrus9 and are joining up with Shaw.

Their new domain xplore.ca ranks 353892 from 330697 .

According to an article in the Sherwood Park Independent, they are also getting an Alberta Government subsidy.

Distributel / 3Web / CIA

Cybersurf

is ranked 680453 from 677891 and seems to be hosted in USA by DigitalOcean.

Internet Centre / CCINet

Internet Centre

rank 726269 from 729939 . Their partner Rack Nine ranks > 2000000.

Primus

Primus

ranks >2000000 from >2000000 and now points to BLACKIRON_DataCentres ranked >2000000 from >2000000.

Northern lights Fiber

Northern lights Fiber are ranked by Netcraft >2000000 and uses AWS.

OkayVPN

OkayVPN

are ranked by Netcraft >2000000 and uses Cloudfare.

Radiant Communications / goco.ca

Radiant Communications

are ranked by Netcraft >2000000 and part of goco.ca

which ranks >2000000 .

Tera Byte Edmonton and reviews

Next is Tera-Byte

at Netcraft Rank >2000000 with

Tera-Byte.ca

ranking >2000000 from >2000000 and their wireless arm Tera-Byte Wireless

sold to Xplornet.

One of Tera-Byte's acquisitions

Edmonton Community Networks

ranks at >2000000 from >2000000 and

Go Edmonton ranks >2000000 from >2000000.

Alberta political blogger Daveberta ranks >2000000 from >2000000; interesting!!!

Reviews of Tera-byte is available at

here

and another here

and check Google for more reviews; just search tera byte.

Nigerian spam

Posted by Dave Yadallee on Tuesday, December 30. 2025

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 30 Dec 2025 16:24:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaj3n-00000000AHo-4A6M

for dave@doctor.nl2k.ab.ca;

Tue, 30 Dec 2025 16:23:27 -0700

Resent-From: The Doctor

Resent-Date: Tue, 30 Dec 2025 16:23:27 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from email.cpim.org ([138.201.210.237]:47879)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vahgy-0000000046Q-35NC

for doctor@nl2k.ab.ca;

Tue, 30 Dec 2025 14:55:57 -0700

DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=cpim.org;

s=default; h=Reply-To:Date:From:To:Subject:Content-Description:

Content-Transfer-Encoding:MIME-Version:Content-Type:Sender:Message-ID:Cc:

Content-ID:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:

Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:

List-Subscribe:List-Post:List-Owner:List-Archive;

bh=LGm0Rr28lqzYDgqYDST2swzYqSO8R7H00iC7fQUUVtw=; b=lANhTFaOrsEMsK6hE0tXk9Wo1q

TmkQilrf2KCl79K6Ed9egUVXCMjEw5IxeXPL/WNmO2htqdl3KUHJvxPmZStV+hquK4P6zC0n3RsQZ

losxgioVhBALeDz5aFwlubv/ATZVJG4R/T9SVuLdXuGCyU8080Cdo4lFMMBRK2d0hQOFz7PumqZBu

NWFlg9NLDOtQW07s7d5IqpMPvbga9FNG4MmubrnCJMdSsElvVwG2YUQGyMzFu7GIkzX3nxiJ1neIY

dqig9wkhHlzg5C5ucafwpz/j6HbuzsglDbcraqPsEmNFLepFXmjXQnWVyY2aRRcPnOj9D8Dz3hqFG

i+7KBeHA==;

Received: from [103.141.235.183] (port=59412 helo=HY-23676.374593)

by komagata.komagata.in with esmtpsa (TLS1) tls TLS_DHE_RSA_WITH_AES_256_CBC_SHA

(Exim 4.98.1)

(envelope-from )

id 1vahgC-00000005dUc-25hA

for doctor@nl2k.ab.ca;

Wed, 31 Dec 2025 03:24:59 +0530

Content-Type: text/plain; charset="iso-8859-1"

MIME-Version: 1.0

Content-Transfer-Encoding: quoted-printable

Content-Description: Mail message body

Subject: doctor@nl2k.ab.ca

To: doctor@nl2k.ab.ca

From: "Mrs. Rafaela"

Date: Wed, 31 Dec 2025 05:54:56 +0800

Reply-To: rafaellaapponte@gmail.com

X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

X-AntiAbuse: Primary Hostname - komagata.komagata.in

X-AntiAbuse: Original Domain - nl2k.ab.ca

X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]

X-AntiAbuse: Sender Address Domain - cpim.org

X-Get-Message-Sender-Via: komagata.komagata.in: authenticated_id: ptl@cpim.org

X-Authenticated-Sender: komagata.komagata.in: ptl@cpim.org

X-Source:

X-Source-Args:

X-Source-Dir:

X-From-Rewrite: unmodified, already matched

X-Spam_score: 8.6

X-Spam_score_int: 86

X-Spam_bar: ++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Please confirm that this email address is still active and

that you can receive notifications about your donation of 2.7 million euros.

Content analysis details: (8.6 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

0.1 MISSING_MID Missing Message-Id: header

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

[138.201.210.237 listed in dnsbl.ahbl.org]

[138.201.210.237 listed in dnsbl.ahbl.org]

[138.201.210.237 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[138.201.210.237 listed in list.dnswl.org]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 MILLION_EUR BODY: Talks about millions of euros

0.0 T_HK_NAME_MR_MRS No description available.

0.0 HK_NAME_MR_MRS No description available.

0.0 LOTS_OF_MONEY Huge... sums of money

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

0.1 MONEY_NOHTML Lots of money in plain text

0.9 MONEY_FREEMAIL_REPTO Lots of money from someone using free email?

Subject: {SPAM?} doctor@nl2k.ab.ca

Please confirm that this email address is still active and that you can rec=

eive notifications about your donation of 2.7 million euros.

Web/SEO/App Spam from Microsoft Outlook Part 2

Posted by Dave Yadallee on Tuesday, December 30. 2025

X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Dec 2025 12:45:03.8958

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: TYZPR04MB6150

X-Spam_score: 5.1

X-Spam_score_int: 51

X-Spam_bar: +++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Hi, doctor@nl2k.ab.ca I was just wondering if you had a chance

to review the previous email I send to you. I understand the value of your

time so I'd like to know what's the best way to reach you and when can we

discuss this in more detail?

Content analysis details: (5.1 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

[52.103.66.61 listed in dnsbl.ahbl.org]

[52.103.66.61 listed in dnsbl.ahbl.org]

[52.103.66.61 listed in dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

0.0 ARC_VALID Message has a valid ARC signature

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

0.0 ARC_SIGNED Message has a ARC signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.66.61 listed in wl.mailspike.net]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[liliana.join(at)outlook.com]

0.5 L_HELLO_ADDRESS BODY: Greets you by address, not by name

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

Subject: {SPAM?} Re-last mail update please.

--_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_

Content-Type: text/plain; charset="us-ascii"

Content-Transfer-Encoding: quoted-printable

Hi, doctor@nl2k.ab.ca

I was just wondering if you had a chance to review the previous email I sen=

d to you.

I understand the value of your time so I'd like to know what's the best way=

to reach you and when can we discuss this in more detail?

Waiting,

...........................................................................=

...........................................................................=

.........

From: Liliana [mailto: liliana.join@outlook.com]

Sent: Thursday, 23 November 2025, 3:30 PM

To: doctor@nl2k.ab.ca

Hi,

Web/SEO/App Spam from Microsoft Outlook Part 3

Posted by Dave Yadallee on Tuesday, December 30. 2025

Thank you for your response.

Friday at 10:00 AM works perfectly for me. I look forward to discussing you=

r website redesign and mobile app requirements in detail.

Please let me know if you prefer a Zoom/Google Meet call, and feel free to =

share the meeting link at your convenience.

Speak to you on Friday.

Best regards,

--_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_

Content-Type: text/html; charset="us-ascii"

Content-Transfer-Encoding: quoted-printable

osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=

//www.w3.org/TR/REC-html40">

>

Hi, doctor@nl2k.ab.ca

I was just wondering if you had a chance to re=

view the previous email I send to you.

I understand the value of your time so I’d =

like to know what’s the best way to reach you and when can we discuss=

this in more detail?

Waiting,

…………………=

…………………………̷=

0;…………………………=

230;…………………………&=

#8230;…………………………=

;………

From: Liliana [mailto: liliana.join@outlook.com]<=

/p>

Sent: Thursday, 23 November 2025, 3:30 PM

To: doctor@nl2k.ab.ca

Hi,

Thank you for your response.

Friday at 10:00 AM works perfectly for me. I look=

forward to discussing your website redesign and mobile app requirements in=

detail.

:yellow">Please let me know if you prefer a Zoom/Google Meet call
>, and feel free to share the meeting link at your convenience.

Speak to you on Friday.

Best regards,

--_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_--

Categories: Microsoft Outlook Hotmail Spam

0 Comments

Web/SEO/App Spam from Microsoft Outlook Part 1
Posted by Dave Yadallee on Tuesday, December 30. 2025

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 30 Dec 2025 08:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vabtb-00000000Jic-0so3

for dave@doctor.nl2k.ab.ca;

Tue, 30 Dec 2025 08:44:27 -0700

Resent-From: The Doctor

Resent-Date: Tue, 30 Dec 2025 08:44:27 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-japanwestazolkn19012061.outbound.protection.outlook.com ([52.103.66.61]:34782 helo=OS8PR02CU002.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaZ6u-00000000AJI-3HoX

for doctor@nl2k.ab.ca;

Tue, 30 Dec 2025 05:46:11 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=QGpB0VC6mZiYBiDFp29GQF2Ce/njdmckeGX0r3RJ6vc/sBLZ9qnP7hl/ARkxsd0EdfSXmcWmpxZjpR0ONIdbEp24S4lfnwslV+cMA6AwGmjSBdtyUcYZBKthj3S24KYBBkjN6Qxa3PnuzLeSvhKNK/qQbKW42zoTylhZT5kShUzeTORuu8zCfV7mIp3pPP25j58seXU5G4Wgf9FEjqIWA0cbsR7k8Z2wBOUIIwRqalL/4rKLIgEY3zCjq7edWVB4JOLrNcKZuKPrVyJ4xCW9mmuuTMwzxm5I2kb1wk1/h7Ah6Die0mCXBvSWvuf6aoTWwWamyoaBLeY9ChIUcjissg==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=Tu73F5axUtS8QnlEwv5Nb8/z/i+kdIRTGeTrQcLDnGg=;

b=Caomi4W2YPZatIHvZBLBMqIrvN1bW7hfsEeOY4ziPsiDAORcyCd7Cpb2hAXHHb1324JRxeGyatDI0SZ0tv76STljhdLkAK//W7yUj7pI1u6Jazv6+cNlFfqjTuzOMXj/giMQLiGALW3HNVrXvsDMJo2IaqcPvlWALeaPIxTIoVXWoQddbvSU8tlZCaVf43tMcchzhaugWtVtAihzgPW7uSEUcuPrS9oo4/lkgzp4BbMv6XNft8aR8T9olOsqwvPDTYOsBwd4eYaOAF0p30lbwgr20kusVnIZoAO222p9xz1Q1rroKgdF7Du3DY5RVhO8s8V4j4UEeAQeyBFRtXXNZg==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=Tu73F5axUtS8QnlEwv5Nb8/z/i+kdIRTGeTrQcLDnGg=;

b=ZPaHBZ+FNCa7FLgBQGKbvx9FJzb/gd3kZIAeU6DZpxNU53Ni4V7z1u1NY9xMJkyhJzdOLGIa4hM7xxIofUiA5Lm6zkZ+oKoxJr0L7CCJpBFGRvZqFaQ7JRA4UWtlCM5yJn9q8jRWNoeqQ/Q4c8PqfcDbGeUxTeFBFytTtYxgxpDRwrtdim5rhWsef31uZlQzSOA7GcT7UUUM4m8z2OjGxuveLvCpKC184WneUkPb5HGsB2vIrUTyb8fpy6/6B3wC71luu87CW+xgQQeD/EsvFOkRvs2v39T6WY5xPa5iBE6kxIGtTceSuJxbgKWnIfPvyhHF4I2O2XtESVxku2FcSA==

Received: from KL1PR04MB7306.apcprd04.prod.outlook.com (2603:1096:820:f4::6)

by TYZPR04MB6150.apcprd04.prod.outlook.com (2603:1096:400:25c::12) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9456.14; Tue, 30 Dec

2025 12:45:04 +0000

Received: from KL1PR04MB7306.apcprd04.prod.outlook.com

([fe80::e477:85c1:6d71:c44b]) by KL1PR04MB7306.apcprd04.prod.outlook.com

([fe80::e477:85c1:6d71:c44b%6]) with mapi id 15.20.9456.013; Tue, 30 Dec 2025

12:45:04 +0000

From: Liliana Join

To: "doctor@nl2k.ab.ca"

Subject: Re-last mail update please.

Thread-Topic: Re-last mail update please.

Thread-Index: Adx5iAuFXFPR15f9QSClwopRJ0h52Q==

Importance: high

X-Priority: 1

Sensitivity: company-confidential

Date: Tue, 30 Dec 2025 12:45:03 +0000

Message-ID:

Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: KL1PR04MB7306:EE_|TYZPR04MB6150:EE_

x-ms-office365-filtering-correlation-id: 6c1ebaec-670c-472a-add2-08de47a14104

x-microsoft-antispam:

BCL:0;ARA:14566002|13091999003|5062599005|19110799012|21061999006|8062599012|8060799015|31061999003|15080799012|39105399006|20031999003|461199028|3412199025|440099028|40105399003|102099032|30101999003|12091999003;

x-microsoft-antispam-message-info:

=?us-ascii?Q?WA2qaF5SGS8AoWwyeCfrWIwdxiadA7Qok5jI+d0EORqJ8Ae2NF/wYEOklO/U?=

=?us-ascii?Q?W9KYS0SjVvpSvKwr328dwzoD3WksafZn1ptkmKklavX4+i6c+WkU9IBmq+4H?=

=?us-ascii?Q?gLH4p425g6cazvyUUORErnZGrR6YxtKs/2uL+yJkSUyBTMu3ICO0ICqD95xf?=

=?us-ascii?Q?6KjFDDlAUgsK4njorZOjte36LG/sJaqNGG+iR4YlBUX/bX71SH4RC2Z40gDz?=

=?us-ascii?Q?dDo1bmpJtK/kQ8jipZC7ob0RULv8JAYMwdMpkkKHtOVyA5urp3SdoMlgIEny?=

=?us-ascii?Q?f/FselYJPLPHWlFUBeAMN0RhU6SekSy1uODL1w39lL3JNQHKwIm+t3RuoZbu?=

=?us-ascii?Q?RW3QECKOxetPJq5MMetJEP8iYL7xvhV2bKKurtYIDM+1K2/dFJ1yllKl8J+4?=

=?us-ascii?Q?v417xpIi4OkN4Xe3X4YxN1avRRQWqa2KHUTORTv+0Rp7M7SFsDqs/Kn0J99w?=

=?us-ascii?Q?XKZctLqI6wJVKkgaz1nYaAHEid/d7DLGZo7vvtfqfQ0wCsQcGNolJ2HX8XHd?=

=?us-ascii?Q?qdcZR/EVilLJ606nRcqKy8LiYcjZ84asmuBboozbyt+QdAn5x8ICHo0Bv2qC?=

=?us-ascii?Q?HHzM3BBvVKIM0kAyOzvG+Et1LN9F45WDzadvSH/IlE2NOG6lHiPHdrwA99Wx?=

=?us-ascii?Q?W8RJIjlX7gHUzelSUUV0sNzntXdague+W8cMoZyIlbwUoIeAfaYByw3CkpUj?=

=?us-ascii?Q?AnFZJf+dDVgi5DZO18//nApDW/WUuOqDhuUz5/U1EjzSE8INSMiGc85q6BXx?=

=?us-ascii?Q?QXryPWVhwXsZqbeF2/St885sgEgzi6fbOEZn5/iN4qVk6F6iTbBAjhYu0NQB?=

=?us-ascii?Q?Hp4FmS9B7WpKMYbQHAnqOG6i5vw147nEcmHOflCGVs60+/+cS/MxThBQWMAh?=

=?us-ascii?Q?/wP/wZPLoGTjsKYHiLcEydBddg1pfJbDG2/Ea9+wCpBh+A/urWwAPpT7eBWR?=

=?us-ascii?Q?Xk5+sqqN3wC9QRHah0rk/9i4INnoqnfWvhVWCsgiM0EXaBkjit6wYu5GwnSA?=

=?us-ascii?Q?zcr9n91w9Wn0AVrJ1R1536O7JVfFlwhnSY5palCX6A+/q4gdJanqCgVkEZtD?=

=?us-ascii?Q?b9nPiw1YlnQiFezcXc2FpleiCtaX7UWbUksKnRdj/wiRZD3Hta2H+6vDtv4J?=

=?us-ascii?Q?YqxPkJCMCAf3jzkbS/Tl84xvxqzEhIdENQR/uJGZb7L9dGUYrWZ5bojiniNV?=

=?us-ascii?Q?/rEquX0z2o0JWtHEMujQfrI9ClKfNcRj/WcaWTYnv+tsYlHV8EGlNTlo+2KF?=

=?us-ascii?Q?JIUJzW591npehl6voWc6vRNJt5/4EwtZ8AtUZ4mnaPC2O+ZYFqEOn9nv4TC9?=

=?us-ascii?Q?LuE0ehC4zv3z9vgvb1JpqXVvGFrjkOFlxE0CnP16j9sGhOMvlUjZiZQ1ofrb?=

=?us-ascii?Q?2GLy3cGTofeBllgoJvXS29amcUKb?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?us-ascii?Q?3IIAZBXYCYM1r2LSnHd8UW2WxuMa0JyX6JFW20bwYo+Hbq9FD4qnJuGDlw+h?=

=?us-ascii?Q?VrPbIw4d/oxD68QkmAX4qPitBIEjBEKK3D87zL5KqIY1dS2Pfryn9SMJXkgq?=

=?us-ascii?Q?A6+mk5NdK4fIDvBdbkUe1y+vlMvuZnM7WGzt3hJYtp7zffUZj36winSxpYYB?=

=?us-ascii?Q?SP8ajaR4AgHwhyKzk5ToxPZTjh/RsAAWOKUFImuV3BpUGAz+Ks7qiGJN+FjS?=

=?us-ascii?Q?USndI9lIp/1KMt4Vq+kqM+ZXauMWUyF+oAIoUoUgUKq9haNPw/LFpLT7iMrv?=

=?us-ascii?Q?ZLo56UpelJ/v5k21DuxOGTEWMgbwzZhDIEEP81aAwLzBgFY09cVLhvYtTLHl?=

=?us-ascii?Q?Q/igN1HXN5laR8CivHB2D9rgkWzlVfYYZD+OluwM7t7t4QdgYA0MbpEPPhUO?=

=?us-ascii?Q?gnxhw1B/nXLie1L1tVDs80rrYrqtlo06gBOK0V9sioRX60h/E+vD4gQUUofz?=

=?us-ascii?Q?Hp5Ktk5QGYlHUUbuQY0DLRnNehBJKiXGB5uJ0SGapKb2r7dgjd2VIRtBd60P?=

=?us-ascii?Q?IRi4aVhh3SAerC19zcUh5Wd54NyBsT2z2f3aqNK95wfRLLZKtJEWgpQ7JOA5?=

=?us-ascii?Q?fRxfb+MF0lI18f/zF/A546wKV6qM0diqgFSW54AIMUh4mODVBYd5JcCUGPNE?=

=?us-ascii?Q?NhEED1JoT7YQPYNSQrdGNYbN1JLcQ/ViHcdZ8wawXKD7Ma0KQ9qwUZYrwShJ?=

=?us-ascii?Q?VyTgvCKedAAkEdcLB8IIO+j0U4szkNNNkDXahXd++vmld8vGrq96p78IMkDm?=

=?us-ascii?Q?b6k57hiuwk8Trc0WnG/zjoOEMtFakoEIxztohxQxYT2+lMGhjKQW6JkAv3nJ?=

=?us-ascii?Q?5U5bMTLc1+qwE14MMaizGIqq/BD5mS3nZjovS7fAErneDKXTltXYQqOjdl1I?=

=?us-ascii?Q?f0HIYn3/qkCaprKOFbORaiwXYOpggkz4yC2JI4OPqfEAb5Qa13cfXofpg7Gy?=

=?us-ascii?Q?g5V3RMgN8UpHke6BBJqhcYrj4QdLq+AFEG4cWycAfAB17QHsxO88DiCws54J?=

=?us-ascii?Q?/2WrZzpt1Q1C3sc38I1l4/IwvtkHdZqwBmRgKPEvbTKL0FSm9nwsbriFunJh?=

=?us-ascii?Q?ZWGUItdRyvtXiO9tmtmuhzbUawYVVtQh9yAeNIMLJG7oWM8PSxMpJn2D/8Ua?=

=?us-ascii?Q?KLoFW3kDxkxQwpoc/xHe7z+A4tID90hYidbHDqY1fXVmxLhMl4SzkASE3bLz?=

=?us-ascii?Q?KXpqkoJcclzeV/Fq4aW2lwT4eE63BC/RpStUqkroOunWuiU0YwU2ahd9YKt0?=

=?us-ascii?Q?v2WDsweBHTjgpMRZN1kuI9N91Q5xhFV5ySupmtFZinvgtGS1EyGe/OUcp5Gu?=

=?us-ascii?Q?vb9I9y2azfs/kKN660C43Aq0Jj9Kt1yBGB10mp2SlM3gav5eSM0mTsDNuy/u?=

=?us-ascii?Q?JXL4MIdqAbJoSkwr6enaA6q2S4Sf?=

Content-Type: multipart/alternative;

boundary="_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: KL1PR04MB7306.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: 6c1ebaec-670c-472a-add2-08de47a14104

Categories: Microsoft Outlook Hotmail Spam

0 Comments

Web/SEO/App Spam from Microsoft Outlook Part 2
Posted by Dave Yadallee on Tuesday, December 30. 2025

Content analysis details: (7.9 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

[52.103.74.77 listed in dnsbl.ahbl.org]

[52.103.74.77 listed in dnsbl.ahbl.org]

[52.103.74.77 listed in dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[52.103.74.77 listed in list.dnswl.org]

0.8 DKIM_ADSP_NXDOMAIN No valid author signature and domain not in DNS

-0.0 SPF_HELO_PASS SPF: HELO matches SPF record

0.0 ARC_VALID Message has a valid ARC signature

0.0 ARC_SIGNED Message has a ARC signature

0.5 ONE_WORD_SUBJECT Subject with only one lower-case word

0.3 FROM_LOCAL_HEX From: localpart has long hexadecimal sequence

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.74.77 listed in wl.mailspike.net]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.0 FORGED_SPF_HELO No description available.

0.5 VOWEL_FROM_5 Impronouncable from header (6 consecutive vowels)

Subject: {SPAM?} url

--_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable

Hi,

I found a few errors on your site.

Would you like me to send over a summary of those errors?

I can also provide an Audit Report of your business website.

May I send you a Quote as well?

Warm Regards

James

--_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable

1">

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

Hi,

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

I found a few errors on your site.

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

Would you like me to send over a summary of those errors?

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

I can also provide an Audit Report of your business website.

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

May I send you a Quote as well?

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

Warm Regards

-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

James

--_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_--

Categories: Microsoft Outlook Hotmail Spam

0 Comments

Web/SEO/App Spam from Microsoft Outlook Part 1
Posted by Dave Yadallee on Tuesday, December 30. 2025

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 30 Dec 2025 08:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vabtB-00000000JhG-2PAp

for dave@doctor.nl2k.ab.ca;

Tue, 30 Dec 2025 08:44:01 -0700

Resent-From: The Doctor

Resent-Date: Tue, 30 Dec 2025 08:44:01 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-koreacentralazolkn19013077.outbound.protection.outlook.com ([52.103.74.77]:45899 helo=SEYPR02CU001.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaYSw-000000008O5-2Fwr

for sales@nk.ca;

Tue, 30 Dec 2025 05:04:53 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=GEpCrnzIAOthwK9uiy/jpEoQQbvAQWuwykUKsQhf5EXXfA4X9lyk2IvVpMOtuJKNmgJSITyELOS+G3GtYusRaNmbpM8N150DbyRdTcbLEyY0YT+D0yb5VS0WdWZZI9nVQlCq3+M46rV6K7KUd0QM5SFsRCILyXqazR2hplhBy9Ly0iyp0JG26x8nHkmFMv2YUT4PLRDgf93pa51U4HT0gSiRjLNtliO9OCf9BTkwCAYES9sT54miARSULidP9BsfrbH1slXZomcCVqb9Ny9jLbAH6hGO+cUGDhlzo5YMyiXZFjGw8r/RPnNIRXSJwRWdkokdaYLbpdwWlpyurGD+zA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=6OOL2w4Djwx/goog0XBvVCvxQCbsYY1K307+4dZUM4E=;

b=OIr9FSNXFlh7D5s5MvnVwr9zUsT3g1olBdlmBYUFgU0AkQxatAr4RTw3IX9QNe1iJ8ZnQn+KTnZqilRvEjoTnROdtyxYaUO/HNL6wFFE5yOl2Rt8BnPPYDSAAdnnf0zK39w3386okbQQZg+iXtWxvA1MUmGGHG2EHY98aUEiYDi/voENeKiA3fmiRkuRn1ePgbSJqpMFrXRU19oXIfCJChjOstTJPbwtzV59G+BCyuImWvR3Vlf60tJB0KtjRDR9ctV4gnodyiZygmWwVWTsoe9FX0P+VR39H7fp1WI2lfPpoumZ0rzxB/Rb0bkZtpYdPsvBmub6xpLz75Q3BMBL9g==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

Received: from PUZPR04MB5229.apcprd04.prod.outlook.com (2603:1096:301:bc::10)

by TYZPR04MB6475.apcprd04.prod.outlook.com (2603:1096:400:281::6) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9456.14; Tue, 30 Dec

2025 12:03:45 +0000

Received: from PUZPR04MB6487.apcprd04.prod.outlook.com

([fe80::7b5e:4692:1693:8810]) by PUZPR04MB5229.apcprd04.prod.outlook.com

([fe80::7b5e:4692:1693:8810%4]) with mapi id 15.20.9456.013; Tue, 30 Dec 2025

12:03:44 +0000

From: James Park

To: "sales@nk.ca"

Subject: url

Thread-Topic: url

Thread-Index: AQHceYNddjV2+3G8pkiKwNwhjMCTtQ==

Date: Tue, 30 Dec 2025 12:00:00 +0000

Message-ID:

Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

suggested_attachment_session_id: e8d69460-4a8a-b757-dc56-d06658c87370

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: PUZPR04MB5229:EE_|TYZPR04MB6475:EE_

x-ms-office365-filtering-correlation-id: ab46d556-2416-4778-ca53-08de479b7b1b

x-microsoft-antispam:

BCL:0;ARA:14566002|39105399006|8060799015|15030799006|15080799012|19110799012|8062599012|31061999003|461199028|3412199025|440099028|40105399003|102099032|26104999006;

x-microsoft-antispam-message-info:

=?iso-8859-1?Q?hR9VQDWxUUFbX0FLHEc26LxYpwI/+wHHx0xhpNh2SjtfvPlm+IMWZ0q5gm?=

=?iso-8859-1?Q?6zhkVoRsOzmLVZVer/fe5cbEdiot68mHF7KfyGXUKFN4N5jaMRV629BVVy?=

=?iso-8859-1?Q?ozjv3cvxRx29aRBV0lWC/aZRk5T0rekmAJOhyQuW41ySQ17pjjAh8fifhr?=

=?iso-8859-1?Q?lxKgRFLHj/k25N5/WaLMk0BfgxdqDf43JuZTv0IqcaJG7DyDOUSzN05KNU?=

=?iso-8859-1?Q?WxAT6o/cF7pnCZfLCDrXHlBodhKwbnUvPb3dWKZ97SW/SmkVTqINVC9JRO?=

=?iso-8859-1?Q?UxXn74uZ51U5XtG6zaKFrk8yD62H+j2EY+7e8zfUgMs94ZFAL8DCCf1sXl?=

=?iso-8859-1?Q?ApepMwreHTo2Lje76OphM3N+WDD24w0Z0UI0ElF4csKmwhJyUR7ER7AGZH?=

=?iso-8859-1?Q?KN4xgCFALogT+RdEAQX4mrhfzw+TC1zbAbipo1KoMIhZM+jnojg38Rncvr?=

=?iso-8859-1?Q?N6SKZ9+4R4eUt8jtU0HudfBL2jDOYTPbEIt3mywV5ZPUBH4EyUYw0vLIS9?=

=?iso-8859-1?Q?iHSIZrxUwrZgd6Xf63RXQhDhyyLp/2hdoFglnIpteX++0xrJNTX3x+4eEv?=

=?iso-8859-1?Q?8/5Sf2HPqpQ1gyZb8Z4e0e0sY/bZuaRsn+mP9+k6avqOR6O1AcSzVnbbrL?=

=?iso-8859-1?Q?DwkWZDItItoSSnGZl9UH+arXM0ZE5SRr9EJ0pjzgCENayTzUMpWowKfDB2?=

=?iso-8859-1?Q?ZrrESDuU7pq/inSrukDgKRCeDYAxa3MCkrQJHvkGwNb3GssoKYpOUVHfGU?=

=?iso-8859-1?Q?LaNvGfsotBYjR3c29Y0vybbfxovrsN6e2IyJzGW6le0ieEX6bl93o4FNVd?=

=?iso-8859-1?Q?A4JJG5dWjku6RI/Bia09HzCQnLJDDbml8eky4/IsEJ0uYEqK0J0n8N42sx?=

=?iso-8859-1?Q?YHEKBT0e7St7ipo4oH3Y7ZkWNiTp7/hroJGoKinv7leiGccrGu1HlTrYPR?=

=?iso-8859-1?Q?ATjtHdiHYcF5xTgQkkPXJbzjBd2ux8pw0YhLOh6YXS/MLp39IJpVPZ3Wd4?=

=?iso-8859-1?Q?SV59vPFzBBWZXRVjU4yZ8cETJjlAoZRWFOrbl/nIf2xrBRtyRbJ0AQOkLS?=

=?iso-8859-1?Q?F0hTKu9+ocmNkeZKehO5pStNPFlFijJZmxhCP9J1ISJ3z/dXudipUUqZqf?=

=?iso-8859-1?Q?YP4ostytXsniTVTeAW8m/2o0hVb3rqOybbhRbUu+tlF6Bod7Umb3SgNPM6?=

=?iso-8859-1?Q?Zb0meBu7g1hVNMRBj6LY/d1hp3Rdlars52BXSKPgL0FCdwtCilfz+eti1h?=

=?iso-8859-1?Q?1biW0zAT7fEXP2L+nzdrG4qU89m/Y0+cLHxJ/vEWw=3D?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?iso-8859-1?Q?3ZXLd5KCmcD4qKPRDlN0lk4Um7EpaOwd0PThSlYGUfRBeP+tMqPVwemibI?=

=?iso-8859-1?Q?orB488/tE5VF7O+jL1barCMcTIWgjToew5h9atphsy1DzmFFmngE9mXLPN?=

=?iso-8859-1?Q?jjPVyXLkvT/Pnl6BlMihMLap/81tmuASUGPe5TxmQnFVpIM32j2NRrd3Ot?=

=?iso-8859-1?Q?CVQSfF+Wbb98z9jH+r9bnd4aT6RA+IJSyJqwlMKogSnjqvVz74JJ0hfoVO?=

=?iso-8859-1?Q?hwRoDuHOl6jbiDC/hPuPv/C4WA5UpdJi/aX4Xfz5NFke27Bo/WLinGj6t1?=

=?iso-8859-1?Q?JNwF2m7ynY2Ste0/gOTfM3j7/qGfBzDvLJdjlW4fgasJsNxFVYrGK/PelO?=

=?iso-8859-1?Q?pPvIjfz/fzYwLIP7s5wSwiHBRLkmm2xf5dQp3226LFHsrgVMa7UPucE/Ef?=

=?iso-8859-1?Q?QAITBbI3cJz9xQyEVvxx1xwwDjiIx3iCBkIqZgjF01MQEOE93KBQAxZrub?=

=?iso-8859-1?Q?eO5TMA65xHtFl7zAnI7XF22ZoJIn/TJmK0rSWPdrbGiJHNE35AdnEkSvWM?=

=?iso-8859-1?Q?ma4ZQU7PagN1FClanWXJ5EWaHdFb7ZwUUxQF2+2+LGCb8pUKpqZs6LEd8R?=

=?iso-8859-1?Q?ZsU1xasj1GrXm/zt20b5esh0OiuEx1jouVvzJLXBqxYRC2rwZUaQxK5fc+?=

=?iso-8859-1?Q?obMBaAe2mRJRK2ApA+SJwr9ouUBPO0tOEqkM+LXdJqa14IskGWHM6b0FdG?=

=?iso-8859-1?Q?pQ95NQKba7QVEIGMoKvxsHtG95vrp6K7nzCZRfvwSPH5yqVdR3GWo6ELyI?=

=?iso-8859-1?Q?zcIPF4l1MqV0JwufHdMNIqA8TXWRjHRIcekU4XSBj0oaKojRDWIkMjmCJV?=

=?iso-8859-1?Q?q7FIXAtOb8YOH+YftlF95tO9VoUNAKEDClMNWBg7EgnrvpkgVmstVnTQSy?=

=?iso-8859-1?Q?wP+Tg7voDMmpDxbMq6scmEm8H8zqs0eJKyFqKTSwXZGCQ5Cc2MFSuEJESE?=

=?iso-8859-1?Q?7YE3JEp6wRSW+Ej5Q88kr8T1AIFTffoWkapeuWfrWpjHhOYCVpPRiEmlA2?=

=?iso-8859-1?Q?PrgejhIhp6AMcqMJv6dbUVFwzVOKFwp5856bZbfSx2SbXWV5j94Sd5UzFD?=

=?iso-8859-1?Q?09/9hRZUWCMYHVs8ES6cqSc=3D?=

Content-Type: multipart/alternative;

boundary="_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_"

MIME-Version: 1.0

X-OriginatorOrg: sct-15-20-9412-4-msonline-outlook-515b2.templateTenant

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: PUZPR04MB5229.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: ab46d556-2416-4778-ca53-08de479b7b1b

X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Dec 2025 12:00:00.5029

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: TYZPR04MB6475

X-Spam_score: 7.9

X-Spam_score_int: 79

X-Spam_bar: +++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Hi, I found a few errors on your site. Would you like me to

send over a summary of those errors?

Categories: Microsoft Outlook Hotmail Spam

0 Comments

Web/SEO/App Spam from Google Gmail Part 1
Posted by Dave Yadallee on Tuesday, December 30. 2025

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 29 Dec 2025 23:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaTSc-00000000GKb-0TFd

for dave@doctor.nl2k.ab.ca;

Mon, 29 Dec 2025 23:44:02 -0700

Resent-From: The Doctor

Resent-Date: Mon, 29 Dec 2025 23:44:02 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-pf1-f181.google.com ([209.85.210.181]:57508)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaIE7-000000008H4-0oAV

for root@nk.ca;

Mon, 29 Dec 2025 11:44:30 -0700

Received: by mail-pf1-f181.google.com with SMTP id d2e1a72fcca58-7b9215e55e6so5712608b3a.2

for ; Mon, 29 Dec 2025 10:43:30 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20230601; t=1767033804; x=1767638604; darn=nk.ca;

h=content-language:thread-index:mime-version:message-id:date:subject

:to:from:from:to:cc:subject:date:message-id:reply-to;

bh=GZsfAazKOEopQWjT/WOfAQEm9jbwRYviASxadhqJYSc=;

b=c+FT1bfGs2SuPpEU2z09AJz/sqQogL7Z4OVKUBVzpFN0QF64jJ+JVHFFeGhyq2GZvM

YOC6FGMqvXpp5MNCudCDcOFqTqYDcu2QyhI7lW5maMi9d6IWdyLretngnpqyxedrhlPy

1Q2bscM96M7HWlgZw2AETqtYYa97XMiVbWuSwVRNEW8snOUHJfN/PGMXIly3zB8bmMnA

JY/fyNf2FlThN9JYY3mmjJSX+wqs8JhuLPHtTvhEgzK03gZFdXpC3zFFFBludmvA/5IE

xjqLFV13SyaF/KlScfD5ImCJhPQQt6X+YPiUMj/VyxVPs3Kjlf26v8dBwFs7iS/NGN4n

gN1g==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1767033804; x=1767638604;

h=content-language:thread-index:mime-version:message-id:date:subject

:to:from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date

:message-id:reply-to;

bh=GZsfAazKOEopQWjT/WOfAQEm9jbwRYviASxadhqJYSc=;

b=maOor+EGkQb7/+CCWIu7bh2N5xv25pZ2Txvwh+7UlRPDu8xP9/mBYOoh2MEevt7OcE

c3QTeRvnNZrgeFQDzBz9jUDFuOdqhU5sTydTkDPuqXFXYPzwx7U4vNTgoVl6ePHYycAS

rEdQB55+AhxdH3+rG9VqDUWVMAVJBdmiwkU4OtIuJA5CBnJtaVZIhHTX3aYj2St1Dzth

6L/aoUEqdDx5gV3c3VsPStFX/8R4zquRLZ2BxsQbQAMTZ3ncXwxZhV4ZRDzp5tMugVXw

vb611XH5BkgSRDRWUmiZhWlAetUbE/RKjgPSbNck8ACojLEmf9Gx+uXz0ONYy5ej7m42

sJEA==

X-Gm-Message-State: AOJu0YzS4hAsV9/adNbHNWzBJ6cUgXTTsW5N1Wnv1gxIZJmaRitGGaEE

ctz1qwa6ff7lqnVTI7z2ECGLSDRL0ENOJ6DzXLHLI9a20l0TOLrwAP+HnM+9aqrR

X-Gm-Gg: AY/fxX5aJosBZTl3LttUN/YkxBoZ5mluEHhLJeEo0V+N6uqUyRUius/yurVwEHTKESf

qCNWODgbz/dqAELF8Pwk04D+BxKRwZBjpQr1jOU9gCnaHDP1mr+DAHN/y23pVD3Vj8jR5IgLGNn

AV/6y32qk6xsuywK2KFuc4kgxhP9M+V3WOTG2PQywr9awsGYvUC6HKEDEkiLY+QJScIDLfnZNQI

yqgpeuErsG6PVm1k+USwuT1X+LgAgmWU4+aTOYOqscFMqLHToVe1DA8ZUdzj3i4hrWKsv1+jYgy

hRLN6DdoOn3gaAE+RI5bMHHBhORbSxuRieIcZQdoVs01hTwVRRjOkD8j74Bunes2bXR3A2WfUCF

bt5q2BlCu7/rOdMeZEcm1OVsb26buc2+X58meBpTGEXTxy4NAHX8yqjCVi0OmMBJoYBZGG6t3E7

2V2EjgNwBk6ApLjjPnwZyIuMT9cNdaOKtFAEZ2

X-Google-Smtp-Source: AGHT+IGKesBkFV+eHa2lw7UHyVlSRxn1BPqJHkHlUoRym/30CIOu2j02Kf8AKCYzksHCTQg+uZMGEQ==

X-Received: by 2002:a05:6a20:432c:b0:35f:46d3:f27a with SMTP id adf61e73a8af0-376a75ef85emr26324064637.5.1767033804171;

Mon, 29 Dec 2025 10:43:24 -0800 (PST)

Received: from DESKTOPVFI8GCA ([2401:4900:a13c:2ec5:182f:881f:4fa3:76b1])

by smtp.gmail.com with ESMTPSA id 98e67ed59e1d1-34ef44e0b24sm7223187a91.0.2025.12.29.10.43.22

for

(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);

Mon, 29 Dec 2025 10:43:23 -0800 (PST)

From: Bikash

X-Google-Original-From: "Bikash"

To:

Subject: Re: SEO improve ??

Date: Tue, 30 Dec 2025 00:12:55 +0530

Message-ID: <13cd01dc78f3$02c6a0b0$0853e210$@gmail.com>

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="----=_NextPart_000_13CE_01DC7921.1C7F2AD0"

X-Mailer: Microsoft Outlook 16.0

Thread-Index: Adx48umjdg+jrhAnRKCN3o6uXHG/Bw==

Content-Language: en-us

X-Spam_score: 10.9

X-Spam_score_int: 109

X-Spam_bar: ++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Hi, root@nk.ca I work as a Manager at a digital marketing

company providing data-driven SEO solutions to help businesses improve Google

rankings and gain a competitive edge. Please let me know if you'd like to

review our SEO packages and pricing details.

Content analysis details: (10.9 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

[209.85.210.181 listed in dnsbl.ahbl.org]

[209.85.210.181 listed in dnsbl.ahbl.org]

[209.85.210.181 listed in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.210.181 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

1.0 HK_RANDOM_FROM From username looks random

0.6 HK_RANDOM_ENVFROM Envelope sender username looks random

0.5 FROM_LOCAL_NOVOWEL From: localpart has series of non-vowel letters

3.5 VOWEL_FROM_7 Impronouncable from header (7+ consecutive vowels)

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[bjbjfgtajgtmwpj(at)gmail.com]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.210.181 listed in wl.mailspike.net]

0.5 L_HELLO_ADDRESS BODY: Greets you by address, not by name

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

Subject: {SPAM?} Re: SEO improve ??

This is a multipart message in MIME format.

------=_NextPart_000_13CE_01DC7921.1C7F2AD0

Content-Type: text/plain;

charset="us-ascii"

Content-Transfer-Encoding: 7bit

Hi, root@nk.ca

I work as a Manager at a digital marketing company providing data-driven SEO

solutions to help businesses improve Google rankings and gain a competitive

edge.

Please let me know if you'd like to review our SEO packages and pricing

details.

Sincerely,

Bikash,

Marketing Manager

Categories: Google Gmail Spam

0 Comments

Web/SEO/App Spam from Google Gmail Part 2
Posted by Dave Yadallee on Tuesday, December 30. 2025

------=_NextPart_000_13CE_01DC7921.1C7F2AD0

Content-Type: text/html;

charset="us-ascii"

Content-Transfer-Encoding: quoted-printable

xmlns:o=3D"urn:schemas-microsoft-com:office:office" =

xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" =

xmlns=3D"http://www.w3.org/TR/REC-html40">
HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =

charset=3Dus-ascii">
(filtered medium)">

class=3DWordSection1>

style=3D'font-family:"Calibri Light",sans-serif'>Hi, =

root@nk.ca
I work as a =

Manager at a digital marketing company providing data-driven SEO =

solutions to help businesses improve Google rankings and gain a =

competitive edge.
Please let me know if =

you’d like to review our
style=3D'background:aqua;mso-highlight:aqua'>SEO packages and pricing =

details.
Sincerely,
Bikash,
Marketing Manager

class=3DMsoNormal>
Light",sans-serif'>

------=_NextPart_000_13CE_01DC7921.1C7F2AD0--

Categories: Google Gmail Spam

0 Comments

Purolator Phish Part 5
Posted by Dave Yadallee on Tuesday, December 30. 2025

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
ing: 0px 10px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; color: rgb(255, 255, 255); border-collapse: collapse=

; margin: 0px auto; width: 550px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

le=3D"margin: 0px;">=C2=A0

class=3D"m_1131456065350560616img-fluid" style=3D"margin: 0px; padding: 0px=

; font-family: Arial, sans-serif; font-size: 11px; line-height: 18px;">*If =

immediate shipment is required, Purolator will offer a 65% discount on ship=

ments shipped within seven (7) calendar days of the form submission date. T=

his discount applies to Purolator's regular rates published on=C2=A0puro=

lator.com/rates=C2=A0and to shipments shipped using Purolator=C2=A0
>Express=C2=AE=C2=A0and Purolator Ground=C2=A0^=E2=84=A2=

=C2=A0services. It does not apply to taxes, special services, administrativ=

e fees, or surcharges. This offer has no cash value and cannot be combined =

with any other Purolator discounts, offers, or coupons. It is not retroacti=

ve. In the event of a discrepancy between the discount calculated by Purola=

tor and the discount calculated by other parties, Purolator's calculation w=

ill prevail.

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09Copyright =C2=A9 2025=

Purolator Inc. All rights reserved.=C2=A0Privacy Policy.

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09To unsubscribe=

:=C2=A0You can choose at any time to stop receiving commercial emails.

>

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09Purolator=C2=A0^{tyle=3D"font-size: 7.7px; line-height: 0;">MD}=C2=A0, Purolator Promis=

es Kept=C2=A0^MD=

=C2=A0and their design are registered trademarks of Purolator Inc. All othe=

r trademarks or registered trademarks are the property of their respective =

owners.

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09Purolator | 2727 Mead=

owpine Blvd | Mississauga | Ontario | L5N 0E1 | 1,888 SHIP-123 |=C2=A0pu=

rolator.com

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
ing: 0px 10px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; color: rgb(255, 255, 255); border-collapse: collapse=

; margin: 0px auto; width: 550px; border-top: 1px solid rgb(255, 255, 255);=

">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

class=3D"m_1131456065350560616img-fluid" style=3D"margin: 0px; padding: 0px=

; font-family: Arial, sans-serif; font-size: 12px; line-height: 18px;">
alt=3D"Instagram" class=3D"CToWUd" data-bit=3D"iit" src=3D"https://ci3.goo=

gleusercontent.com/meips/ADKq_NakrzVaPF0HZtChGrKtLruB99m7VJc32ZuAYBqFAWi7zs=

OElkSvH1DD10a5jQ8DC2koz-DdnufSXis_sPsmHXzXFMC3djHVgcbOBRzjXBqitmoSPUeXV_mx2=

Zl_QTa3t3jAri_-plxIOeqqzke-wf_auEXucmvDvpXK0FGGgUcHpA=3Ds0-d-e1-ft#https://=

image.connect.purolator.com/lib/fe43157075640475771570/m/1/6d9c6bfc-8326-4d=

57-a6a2-75c0af36e34b.png" width=3D"24" />=C2=A0
=3D"CToWUd" data-bit=3D"iit" src=3D"https://ci3.googleusercontent.com/meips=

/ADKq_NaDFRM2FfNLcYJoIGHeY1OPyFYpPEwSBDhDsVFY_JaiDJ68_EltyWgjuY5B4sovjQg8eG=

f-mzyUdY3LI5p9cH1SzaMtYenaTY_DhXMFHFui6FEzCHhMdpRN2PecIUSEChElvDyark28QaHdi=

M0TJwjGXPrAzPJAw2SqVKF_UYTA0g=3Ds0-d-e1-ft#https://image.connect.purolator.=

com/lib/fe43157075640475771570/m/1/da2911f7-1b14-4658-8eef-8b94a169def0.png=

" width=3D"24" />=C2=A0
t" src=3D"https://ci3.googleusercontent.com/meips/ADKq_NZpPDhivm84XsGTd8xU3=

-syyRgqyREAZ4EDTWvYNG0oBu7oZFtySf74FBaTxlDzDADzmesjCqrw3_QcWwk0n8ELtxZ5EHZm=

EABhIg3tbdForRryTyx9ymKXogX3zNAz3O3Gog-oHVoyKmk3SYyrTVZ04R8sTLLfXD6D5x51DrQ=

xYA=3Ds0-d-e1-ft#https://image.connect.purolator.com/lib/fe4315707564047577=

1570/m/1/cfcac840-5045-43b0-9f1d-69d0791beec6.png" width=3D"24" />=C2=A0
g alt=3D"LinkedIn" class=3D"CToWUd" data-bit=3D"iit" src=3D"https://ci3.goo=

gleusercontent.com/meips/ADKq_NZk7poz_GIZf7XJ18iHFfuliafE7uLbq6wokTjQRkOntf=

aYwvItHAj4F36S_O6KxCQRToJduu0ntropyYdnGCbvwXCnRVrhddawHFpXZr0JsgKdcw4Vso83C=

OdGAb1KMvu15ULzJJqLQgn5TyfMXR4KjicEzA77nGtnArZzD-J3yg=3Ds0-d-e1-ft#https://=

image.connect.purolator.com/lib/fe43157075640475771570/m/1/c25309c3-23f1-4b=

0b-9d0e-a1753e68641a.png" width=3D"24" />

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09

=09=09=09=09

=09=09=09

=09=09=09

=09=09

=09

--15d816dbcb6bc784eae73cfb6b9f0b3dd--

Categories: Phish

0 Comments

Purolator Phish Part 4
Posted by Dave Yadallee on Tuesday, December 30. 2025

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
0px; padding: 0px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

65350560616cta-row">=C2=A0

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
style=3D"border-spacing: 0px; font-family: sans-serif; border-collapse: co=

llapse;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

e">

=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

: 0px; font-family: Arial, sans-serif; font-size: 16px; line-height: 22px; =

padding: 0px 40px; text-align: justify;">

=09=09=09=09=09=09=09=09=09=09=09=09
=C2=A0

=09=09=09=09=09=09=09=09=09=09=09=09
Hello,

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09You have a package awaiting delivery be=

cause you did not declare its contents, which must be examined by the Canad=

a Border Services Agency. Please review the terms and conditions and schedu=

le delivery as soon as possible before your package is returned to the send=

er by clicking the button below:

=09=09=09=09=09=09=09=09=09=09=09=09
=C2=A0

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

0616ltr-example col9bycol3">

=09=09=09=09=09=09=09=09=09
ing=3D"0" cellspacing=3D"0" class=3D"m_1131456065350560616expand-container"=

style=3D"border-spacing: 0px; font-family: sans-serif; color: rgb(255, 255=

, 255); border-collapse: collapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

0px;">

=09=09=09=09=09=09=09=09=09=09=09=09

">

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

-family: Arial, sans-serif; padding-bottom: 0px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; color: rgb(88, 89, 91);">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

f" style=3D"margin: 0px; font-family: Arial, sans-serif; padding: 10px 20px=

; font-size: 16px; line-height: 18px; color: rgb(0, 25, 150); border-radius=

: 5px;">
(0, 25, 150); text-decoration-line: none;" target=3D"_blank">Plan my delive=

ry

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

e">

=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

456065350560616m-pl-10 m_1131456065350560616m-pr-10" style=3D"margin: 0px; =

padding: 0px 40px; font-family: Arial, sans-serif; text-align: center; font=

-size: 0px; line-height: 0; vertical-align: top;">

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: top; text-align: left; display: inline=

-block; width: 570px; max-width: 100%;">

=09=09=09=09=09=09=09=09=09=09=09=09
dding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sa=

ns-serif; border-collapse: collapse;" width=3D"100%">

Categories: Phish

0 Comments

Purolator Phish Part 3
Posted by Dave Yadallee on Tuesday, December 30. 2025

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 252px; max-width: 40%;">

=09=09=09=09=09=09=09=09=09=09=09=09

ellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sans-serif; bor=

der-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

ing: 0px; font-family: Arial, sans-serif;">=C2=A0

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

e">

=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

>=C2=A0

le=3D"margin: 0px; padding: 0px; font-family: Arial, sans-serif; text-align=

: center; font-size: 0px; line-height: 0; vertical-align: top;">

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 325px; max-width: 50%;">

=09=09=09=09=09=09=09=09=09=09=09=09
ellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sans-serif; bor=

der-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

n: 0px; padding: 0px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; border-collapse: collapse; margin: 0px auto; width: =

325px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

6065350560616img-fluid" style=3D"margin: 0px; padding: 0px; font-family: Ar=

ial, sans-serif; font-size: 15px; line-height: 22px;">
=3D"CToWUd a6T" data-bit=3D"iit" src=3D"https://ci3.googleusercontent.com/m=

eips/ADKq_NZ6XPZcfpNxbR6Xl307VN2NMyZc904GCkLVulnt1YnBm_UIBN3iMwyfM6gHjWgbpF=

BYktKxItBU8BXqX_FZthfE41EWq8-kLu53TjniBjiSCoUJjPgs5UtNTypNvp9pUx4cOYJlClr7-=

3PBQjofmsGIZxN4gLQfA2ofSf5d2B1wNw=3Ds0-d-e1-ft#https://image.connect.purola=

tor.com/lib/fe43157075640475771570/m/1/b3c5b039-16cd-4734-a14f-4d97cc81f328=

.png" style=3D"cursor: pointer; outline: 0px; max-width: 100%; width: 100%;=

" tabindex=3D"0" />

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 325px; max-width: 50%;">

=09=09=09=09=09=09=09=09=09=09=09=09
dding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sa=

ns-serif; border-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

n: 0px; padding: 0px 20px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; border-collapse: collapse; margin: 0px auto; width: =

285px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

Categories: Phish

0 Comments

Page 963 of 963, totaling 14434 entries

previous page

No entries to print

Calendar

le=3D"margin: 0px;">=C2=A0

ass=3D"m_1131456065350560616img-fluid" style=3D"margin: 0px; padding: 0px 0=

px 10px; font-family: Arial, sans-serif; font-size: 12px; line-height: 18px=

; font-weight: bold;">
lor: rgb(0, 155, 196);">=E2=9D=8C Something went wrong with your deliver=

y !

e=3D"margin: 0px;">=C2=A0

Mon Tue Wed Thu Fri Sat Sun

← Back December '25 Forward →

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28

29 30 31

Archives

December 2025

November 2025

October 2025

Recent...

Older...

Categories

Announcements

General

Involved in the Community

Canadian Club of Edmonton

Chamber Toastmasters

Chamber of Commerce Networking

The Edmonton Social Media Web 2.0 Meetup

Spam and Phish

AOL Spam

Adelphia Spam

AliceDSL.de Spam

Amazon Spam

Arcor-IP.net spam

Barracuda Network Spam

Bell Canada Spam

BellSouth Spam

Bezeqint Spam

British Telecom Spam

Charter Communications Spam

Chinese Phish Spam

Cogeco Cable Spam

Comcast Spam

Cox spam

Earthlink Spam

Eastlink Spam

Epix.net Spam

ExcelAds spam

GoDaddy Spam

Google Gmail Spam

Happeninstuff Spam

Hinet.net Spam

MailGun Spam and Phish

Mega Mail Servers Spam

Message Labs spam

Messagelabs spam

Microsoft Outlook Hotmail Spam

MSN Israeli Spam

Mindspring Spam

NEtia Spam from Poland

Network Solutions Spam

OVH Spam and Phish

Phish

Primus Spam

Proxad Spam

Roadrunner Spam

Roger's Spam

Shawmail Spam

Sophos spam

SourceCable Spam

StellarEstate Spam

T-online Germany Spam

TelecomItalia Spam

Telefonica Spain Spam

Telus Spam

Tera-Byte Spam

Tiscali Spam

Tucows Spam

UCLA Spam

Verizon Spam

Virgin Media Spam

Wanadoo Orange Spam

Who's Who Spam

Xplorenet spam

Yahoo! Spam

digital ocean spam

eToll spam

pppool.de spam

sendgrid.net spam and phish

Technical Issues

Windows Problems

Web Ranking

NetKnow and Edmonton Internet Service Providers (ISP) ranking

Web Ranking Articles

Syndicate This Blog

Blog Administration
Open login screen

Powered by

Serendipity PHP Weblog

NetKnow Navigation
Home

VPNs

Dialup Service

Web Design

Web Hosting

E-Commerce

Server Colocation

Domain Registration

Web Mail

Support

Testimonials

Client List

FAQs

Interested in NetKnow Services?

Links

Disclaimer

Acceptable Use

Security

Technorati Profile

Remote RSS/OPML-Blogroll Feed
No RSS/OPML feed selected

Error
serendipity error: could not include serendipity_plugin_statistics:9cbc0e29a86fd9359ac6748399d6ba5b - exiting.

addthis

Empire Avenue

Error
serendipity error: could not include serendipity_plugin_freetag:6c39baf097de002d8b1c2e33b9661474 - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:f520e0fa688ba61bd1ed85c0fd80d550 - exiting.

Error
serendipity error: could not include serendipity_plugin_twitter:b18e142d4998b6b0092d068ad858683d - exiting.

Syndicate This Blog

Comments

Error
serendipity error: could not include serendipity_plugin_spamblock_bee:7aefbb7ca9b764849be35e938b6fc9b2 - exiting.

Error
serendipity error: could not include serendipity_plugin_twitter:c7a92f670894afa9e3097574359fe38d - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:8b72cc4261ddc7ff15df253b17c29c23 - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:a0bd1a65cd9ff1c3e289829cc26557c4 - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:dcd26c048e45c234c054530ef1492953 - exiting.

Error
serendipity error: could not include serendipity_plugin_freetag:6d4c66aeb83aeb9524a7cc609051cf0f - exiting.

Error
serendipity error: could not include serendipity_plugin_freetag:acc1042e790905e499445a6890081492 - exiting.

Error
serendipity error: could not include serendipity_plugin_freetag:158fb50035b12269ec43107b29253af3 - exiting.

Error
serendipity error: could not include serendipity_plugin_topreferers:6b7e3336713d0a60294c7e310ca5cf1a - exiting.

Error
serendipity error: could not include serendipity_plugin_spamblock_bee:d3f047ee6f925c138fae56dcd7a99400 - exiting.

Error
serendipity error: could not include serendipity_plugin_spamblock_bee:5544ace5c8b19bb8592464810b48df10 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_quicksearch:5624ac0b69cdbe32d0cdc40814d7eb41 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_quicksearch:b8387d3a378247c1c9ede46fffb084e1 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_last_query:bacdc0652131449ebc68ebde2bcb9ce2 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_last_query:8c84ca587b64b627d986e9d5ce98ead1 - exiting.

Powered by Serendipity & the next theme.

MCSnet

Nucleus Internet Services

4Web

Alentus / Wolfpaw

Yellowpencil

WSI Corporation

Uniserve / Interbaun

Clearwave Broadband

Platinum Communications

Wild Rose Internet

TIC Internet

Nisa Custom Internet Solutions

MediaShaker

Koi Media

WebFire

Core Network Solutions Inc.

The Network Centre

Open Concept Internet, Inc.

Techalta

Yegtel

Internet Crossroads

NetKnow

Rogers

Telus and reviews

Government of Alberta

Netknow again

City of Edmonton

University of Alberta

Juno and NetZero

Grant MacEwen University

NAIT / Northern Alberta Institute of Technology

TekSavvy

Shaw Cable

Xplornet

Distributel / 3Web / CIA

Internet Centre / CCINet

Primus

Northern lights Fiber

OkayVPN

OkayVPN are ranked by Netcraft >2000000 and uses Cloudfare.

Radiant Communications / goco.ca

Tera Byte Edmonton and reviews

Archives

Categories

Syndicate This Blog

Blog Administration

Powered by

NetKnow Navigation

Remote RSS/OPML-Blogroll Feed

Error

addthis

Empire Avenue

Error

Error

Error

Syndicate This Blog

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

OkayVPN

are ranked by Netcraft >2000000 and uses Cloudfare.