Web/SEO/App spam from Micrisift Outlook

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 25 Jan 2025 06:29:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98 (FreeBSD))

(envelope-from )

id 1tbgDa-00000000HcQ-1bg2

for dave@doctor.nl2k.ab.ca;

Sat, 25 Jan 2025 06:28:58 -0700

Resent-From: The Doctor

Resent-Date: Sat, 25 Jan 2025 06:28:58 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-dm6nam11olkn2019.outbound.protection.outlook.com ([40.92.19.19]:29121 helo=NAM11-DM6-obe.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98 (FreeBSD))

(envelope-from )

id 1tbbAq-00000000Gmh-352A

for root@nk.ca;

Sat, 25 Jan 2025 01:05:54 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=p6x9ltLA2YR5lOv68aYWPUIvgnCfHPVcWJ6hIl49hJSBEcidFZnrKOh0Lj0Ob3KRKYP6CH90AMYkhvMCbZGrOwzsemDeyPVaICLfiguZWyOmn2oGLg58RZ1KGrnv8kTT2D0AamIeS8/0w6Zypi78Jn/vrNvLz07SPNhRvqel7E5v2dpgfCObYEYj5BVpEbI0x5HP04VWjR+Gn0EI89y9UTTliSzh7qip/mKvigVPJ9y59AIHR3uLWiINat0XtM3zDGUK7KbrRehww0cC4gPO98czUJfrpw1QwWZtxKUQLrVkvFs7oG4heDd6LIIxNyuT1/Pfs23O4rByejBfz9fNpA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=d13ZWmgTfeu0R7RTvb1d0MHbIVwtMs2LDzyFgffmzoE=;

b=LczWIP72RpEF0DDQb6FuvEzIS+wZHvWjGB6AjQxBuiHAXfzMkMLRIynTBalye0CxGRT2e8MAKKZJgyRKp5M9lec6hcnTiuPgT9L2Qw1kfZmmoyrTUOCvdAz70BVo2iyBfd7xxNKokToupV4JaeT3xUZ9MZQlbXFE09TQU5soK645Pb9KONycX+VNWuUWQSSudIcHnepnlslq/kuvk1MwMXRbFq6V976fFNznkeeC/YsqMpMX/x0IlvidyFc5Q7+2yGM19Fco5j/0KBFXnXg5b4KgXL37B3oaMMmi2p7TcJef/ihuudSlzDdE7tfz8VLM1eijbHtCsk0J1KaPxHY61A==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=d13ZWmgTfeu0R7RTvb1d0MHbIVwtMs2LDzyFgffmzoE=;

b=NhPynzlRTbqN1g4wbe/Dq9VHvVah/K5oChLoigyi7LP7rEY26aEBvupvx55mc0QucY4rYWZrfrm5FIAUlgNfdR0fLrvg0yMcEMMpGOx/4Mu7Lhf1iTu+sm7+YkwnOYFrCsgOF2GxMZ4WEQlkbk6PA2rwJqWFLVfntaNpH2Jw77wO0CYQaOftylJo5KZePCQ7TV6efjkyg9O54feCt2si2GbOTJ9M+2yMR0VnCBnJ+c/TdzCtPbWFxOOLKMLqkb0alay7DkcmTHAvTezhS85Jlm/8LwHz7fIFuygKt4EgHiYGy+CfWckT9gwUY6yd2nh0GRAXM5N7KdMbYG+LP0Ig1w==

Received: from SA1P223MB0839.NAMP223.PROD.OUTLOOK.COM (2603:10b6:806:3d0::18)

by CY5P223MB0537.NAMP223.PROD.OUTLOOK.COM (2603:10b6:930:26::18) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8377.19; Sat, 25 Jan

2025 08:03:41 +0000

Received: from SA1P223MB0839.NAMP223.PROD.OUTLOOK.COM

([fe80::2afc:1fe:541e:3e16]) by SA1P223MB0839.NAMP223.PROD.OUTLOOK.COM

([fe80::2afc:1fe:541e:3e16%5]) with mapi id 15.20.8377.009; Sat, 25 Jan 2025

08:03:41 +0000

From: Priyansh Sharma

Subject: Web Design

Thread-Topic: Web Design

Thread-Index: AQHbbv+lMrTpB6G/TE2vxQ3pmdTZHQ==

Date: Sat, 25 Jan 2025 08:03:40 +0000

Message-ID:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: SA1P223MB0839:EE_|CY5P223MB0537:EE_

x-ms-office365-filtering-correlation-id: b047ce19-0988-49a6-ed28-08dd3d16c7ff

x-microsoft-antispam:

BCL:0;ARA:14566002|6115599003|461199028|15080799006|15030799003|8062599003|8060799006|7092599003|19110799003|102099032|440099028|3412199025;

x-microsoft-antispam-message-info:

=?iso-8859-1?Q?BmjnBgylmbXoqWSXsi8nNWmjJTo+EOXm0MofkYSZPcu2vTd4RTdTLJAUgm?=

=?iso-8859-1?Q?ho72Dv7l9LiERE4XgCKHUe2pyo+amqwPQCa9Fx2aMsz9AxwWdQx1y6KjO2?=

=?iso-8859-1?Q?IrtRemYxCYeabmcTY9ixl/lyWObvYYxS2hr3JWMyuAqry6ZMNIF7cH5u54?=

=?iso-8859-1?Q?KTHG68cp0sZ4rx7iTJ8zUC8mAPEuiXJ/52ByGqr5FBVfZZzx5UX7Rv/Oe4?=

=?iso-8859-1?Q?tbWO3qAg5kTMOWve2xLsG0KKjWmte8vYUldNmlM5PkCqThiaqTSmmBRRGw?=

=?iso-8859-1?Q?QfqwVB64yPkmiFkAmujhL2SFVdGH+jNAesNZ+z3Zd48thDe3xlUcg37kdv?=

=?iso-8859-1?Q?qnWeK+os01tHOpYQTnSZmkL61AvfujLuXsHtLNii+pkBx2tcmWF6Ls4A3g?=

=?iso-8859-1?Q?8pfX+HAiei9D6yCtTfUuPwjs1oIzE8CeZmCFdRZc3Q3anpiH244XXR2AX/?=

=?iso-8859-1?Q?Kbu4F/8ftEyk83+RXOTCuNxd14sKKn9GFifxvCnKT/ZLVZ8OHN7EjxnQWf?=

=?iso-8859-1?Q?VatjSsPbg4wvbA8khdiqt9znWLpY9ZeTauVz1WjE1MTpa9W4k9eNIGJpgn?=

=?iso-8859-1?Q?xVBIeZ6buZJ6Av5SyXYA9eACft7vsBxDKFst3D66ssrn7HGbg9/GjKhDLG?=

=?iso-8859-1?Q?SfsiEAtntVI76lqVvx/o91euTDqiv6AtvTr1qAKFLPU4l5wrrS0JiwvtY4?=

=?iso-8859-1?Q?IsZ16f0NDu4t9pEgS0oy5TsBaTPCTZHorS54UyRI3jqHBmz9RcYs1dUOF4?=

=?iso-8859-1?Q?A3eURetiXsTUe24ywvSM5FRS3pkQWyBg4ALzutjhuARTiOyl3K3bCcEJGr?=

=?iso-8859-1?Q?Y+W5RI1p1FX+7NbEL7ilCY85VlJWm8ijCcMaZUIL3t4XWVxq4ZrZCmfnFY?=

=?iso-8859-1?Q?EzjrqwJj6gPJzaZV3M9ZoYEZpa5iOMPU1XOPOBVuJOekTBxlnFOVcYjxT0?=

=?iso-8859-1?Q?0FT9kECgyV3o5knxCxrxXJTTbF4EtPQhWChUBbJJvj/5wQ80cGZT0efetN?=

=?iso-8859-1?Q?3UcObffISuA+U6aEM/DgXR0oGjRzBz+qHZEjFsahAhkE/0jmjzf6HZyPcC?=

=?iso-8859-1?Q?dB5oEs7PDPdJENn4/NbAUx00sJwTKrerMyXt+n/aLlbEL000u3FGE9sXJp?=

=?iso-8859-1?Q?pzgB++KYWXCgaH0JrQ7mJBcSSIAne9boTsC9S5Iy5b7g4saLIT?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?iso-8859-1?Q?PzuHsuZg1aJDNSnMcAosDgR8yU41kWkt0YgqcSOXPfY2lxMOUbqEA8Ofhh?=

=?iso-8859-1?Q?ceLuuT2WW/HBGv8FxWgKqoaCokIwgjGece01YrEn9Kb0FtTEUxaDCEhISk?=

=?iso-8859-1?Q?+0HndgDDiQIuVLlGLceonh6EepKMQErVZYMbNBcq4nN5WFoizfO8k6y7OJ?=

=?iso-8859-1?Q?weVPKRDSPlZVIlUNeBpc5XqTNsbhUrUDkhu7nMrH+ath3mGIzYYG8vgyIw?=

=?iso-8859-1?Q?MevTGlPgbxXj3aKKARfOwDcEk++haCBWZY3SIZ1ZJrg7ifS8EZEIWwOQvD?=

=?iso-8859-1?Q?4anFYq/KJXFmAm9ZrJ9Fg1owBOTr24ugMqqj2x0g0Om8lM0zGkjGHB7gNx?=

=?iso-8859-1?Q?xPoKX/9msvp++K+Pm8bS31kuFkQiKCwJWx3XDW6kgNat9KdtrIkIv1sYPc?=

=?iso-8859-1?Q?VEG3wxfSoV/dZJJDJRTaClio/lzRR4kETh881GtbTXz0/RRblT21X/23EL?=

=?iso-8859-1?Q?6qvTxZfEMOcwAoGZs3bSKUIjkQ3hFSFKEBODnMaXiS2lyIHwMQ3HfgMedO?=

=?iso-8859-1?Q?zsFB45nS2ROKTYNtrIvpav5FxCtPXMK8/nTka1IQbZ055dKgtUom7kFGOR?=

=?iso-8859-1?Q?mx8ZnReEkc1foVxCtCmt3mrtbpWodEx//iHRsU4IWHFgbZm3TeHtpw2r83?=

=?iso-8859-1?Q?xEr4PYrAgD8V7ULEZPapELOftZEwYHwJKuIdeJ2kbhpNUJtqf/s1fQrQL3?=

=?iso-8859-1?Q?BAY6KEvGgagVxdGUjPDqkjnBSnNmTYZ9d7FPJvELMSfUd05gPEn4+EZuYU?=

=?iso-8859-1?Q?MpehUPHTAT2ziA66XVgObD1heYWG4BpYbsbjXhLUkOpaEOE4XDT0/S/l0e?=

=?iso-8859-1?Q?ia5y1syu3hY9rhj/VvzXjYhle6AgyppJ0//I1VqdhrWR4U226EgoRus7hM?=

=?iso-8859-1?Q?Iyx78pxGMnIVGrQakVM+/LCWWxPEgKW93xha6A0EuKkNmnxw1/q5pzMGG0?=

=?iso-8859-1?Q?DHTs8oBfnHxDKSpWW46f58TMAVqQ0r7mQqKLls8jRVYIzIU6q1TMQY0SID?=

=?iso-8859-1?Q?5QAdJ1t4a+eu72xYk+CUS1ZwEfRLb26YVTs5wFLxm0VR7oVZNezvUg7bCQ?=

=?iso-8859-1?Q?6D3IaSnITKmPds994GdSUyJyN8fMiIQ/lDO0u5TkXrIUpIVurRBhj3jepl?=

=?iso-8859-1?Q?rUmwMLZZcsi4vKstqIYtnuoGrDQjCaXjSEfXtg7C1CjgtMF0VzxsrILW1Q?=

=?iso-8859-1?Q?3Ap5Whwn7HuHM9bBLh4WUMlmU1D2yTFnmtWFDJgy+GdsPRwHLfbY3o/jKI?=

=?iso-8859-1?Q?91Z7LR7t3T0DIWlBqU0ro1YQhGUza7leCT91OPajtuCRPVHckrgKjuysnP?=

=?iso-8859-1?Q?GjCE?=

Content-Type: multipart/alternative;

boundary="_000_SA1P223MB0839F24978EFA08CF58E5D1DB0E22SA1P223MB0839NAMP_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: SA1P223MB0839.NAMP223.PROD.OUTLOOK.COM

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: b047ce19-0988-49a6-ed28-08dd3d16c7ff

X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jan 2025 08:03:40.9956

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY5P223MB0537

X-Spam_score: 7.2

X-Spam_score_int: 72

X-Spam_bar: +++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi, I hope you are well. I am from India. I am reaching out

to see if there is anything that would like to upgrade, repair, or redesign

on your site. I am a web Designer / Developer that can do just a [...]



Content analysis details: (7.2 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[40.92.19.19 listed in dnsbl.ahbl.org]

[40.92.19.19 listed in dnsbl.ahbl.org]

[40.92.19.19 listed in dnsbl.ahbl.org]

[40.92.19.19 listed in dnsbl.ahbl.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[dnsbl.ahbl.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[dnsbl.ahbl.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[dnsbl.ahbl.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[40.92.19.19 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[40.92.19.19 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[40.92.19.19 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[40.92.19.19 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:3d0:0:0:0:18 listed in]

[will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

[40.92.19.19 listed in will-spam-for-food.eu.org]

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[40.92.19.19 listed in wl.mailspike.net]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.0 SPF_HELO_PASS SPF: HELO matches SPF record

0.0 ARC_SIGNED Message has a ARC signature

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.0 ARC_VALID Message has a valid ARC signature

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

1.2 MISSING_HEADERS Missing To: header

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[priyanshsharmadbh(at)outlook.com]

0.0 HTML_MESSAGE BODY: HTML included in message

1.4 MALFORMED_FREEMAIL Bad headers on message from free email service

Subject: {SPAM?} Web Design



--_000_SA1P223MB0839F24978EFA08CF58E5D1DB0E22SA1P223MB0839NAMP_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable



Hi,

I hope you are well. I am from India.

I am reaching out to see if there is anything that would like to upgrade, r=

epair, or redesign on your site.

I am a web Designer / Developer that can do just about anything you can ima=

gine at very inexpensive prices.

Let me know what you think.

Thanks & Regards





--_000_SA1P223MB0839F24978EFA08CF58E5D1DB0E22SA1P223MB0839NAMP_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable








1">








, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; =

font-size: 12pt; color: rgb(0, 0, 0);">

Hi,            =

            &nb=

sp;  



, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; =

font-size: 12pt; color: rgb(0, 0, 0);">

I hope you are well. I am from India.      &n=

bsp;           
>


, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; =

font-size: 12pt; color: rgb(0, 0, 0);">

I am reaching out to see if there is anything that would like to upgrade, r=

epair, or redesign on your site.       &=

nbsp;           &nbs=

p;            &=

nbsp;  



, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; =

font-size: 12pt; color: rgb(0, 0, 0);">

I am a web Designer / Developer that can do just about anything you can ima=

gine at very inexpensive prices.       &=

nbsp;           &nbs=

p;            &=

nbsp; 



, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; =

font-size: 12pt; color: rgb(0, 0, 0);">

Let me know what you think.        =

            &nb=

sp;          



, Aptos_EmbeddedFont, Aptos_MSFontService, Calibri, Helvetica, sans-serif; =

font-size: 12pt; color: rgb(0, 0, 0);">

Thanks & Regards



Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb(0, 0, 0);">












--_000_SA1P223MB0839F24978EFA08CF58E5D1DB0E22SA1P223MB0839NAMP_--

Royal Bank of Canada Phish

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Fri, 24 Jan 2025 15:22:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98 (FreeBSD))

(envelope-from )

id 1tbS3D-00000000M38-3ZEo

for dave@doctor.nl2k.ab.ca;

Fri, 24 Jan 2025 15:21:19 -0700

Resent-From: The Doctor

Resent-Date: Fri, 24 Jan 2025 15:21:19 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from [86.38.225.87] (port=57263 helo=mg.ordertaker.in)

by doctor.nl2k.ab.ca with esmtp (Exim 4.98 (FreeBSD))

(envelope-from )

id 1tbQfb-000000008TJ-2qrE

for doctor@edmontonab.ca;

Fri, 24 Jan 2025 13:52:56 -0700

From: RBC Royal

To: doctor@edmontonab.ca

Subject: Account Suspension.

Date: 24 Jan 2025 12:52:40 -0800

Message-ID: <20250124125240.2E15011EAB962813@mg.ordertaker.in>

MIME-Version: 1.0

Content-Type: text/html

Content-Transfer-Encoding: quoted-printable

X-Spam_score: 23.4

X-Spam_score_int: 234

X-Spam_bar: +++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Royal Bank of Canada Hello,



Content analysis details: (23.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_SBL_XBL RBL: Received via a relay in Spamhaus SBL+XBL

[86.38.225.87 listed in sbl-xbl.spamhaus.org]

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[86.38.225.87 listed in dnsbl.ahbl.org]

[86.38.225.87 listed in dnsbl.ahbl.org]

[86.38.225.87 listed in dnsbl.ahbl.org]

[86.38.225.87 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[86.38.225.87 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[86.38.225.87 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[86.38.225.87 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[86.38.225.87 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

[86.38.225.87 listed in will-spam-for-food.eu.org]

3.6 RCVD_IN_SBL_CSS RBL: Received via a relay in Spamhaus SBL-CSS

[86.38.225.87 listed in zen.spamhaus.org]

2.5 URIBL_DBL_SPAM Contains a spam URL listed in the DBL blocklist

[URI: et-txn00.com]

0.1 URIBL_SBL_A Contains URL's A record listed in the SBL blocklist

[URI: a.dnspod.com/43.134.249.74]

[URI: b.dnspod.com/43.161.3.75]

[URI: b.dnspod.com/36.155.149.59]

[URI: c.dnspod.com/43.134.249.75]

[URI: a.dnspod.com/43.130.172.75]

[URI: b.dnspod.com/163.177.5.79]

[URI: c.dnspod.com/125.94.59.175]

[URI: c.dnspod.com/112.80.181.159]

[URI: a.dnspod.com/117.89.178.151]

[URI: a.dnspod.com/117.135.128.175]

[URI: et-txn00.com/34.118.30.165]

1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)

0.9 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail)

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 HTML_MESSAGE BODY: HTML included in message

0.6 HTML_MIME_NO_HTML_TAG HTML-only message, but there is no HTML tag

0.0 HTML_FONT_TINY_NORDNS Font too small to read, no rDNS

1.3 RDNS_NONE Delivered to internal network by a host with no rDNS

0.0 TO_NO_BRKTS_NORDNS_HTML To: misformatted and no rDNS and HTML only

1.7 RAZOR2_CHECK Listed in Razor2 (http://razor.sf.net/)

0.4 RAZOR2_CF_RANGE_51_100 Razor2 gives confidence level above 50%

[cf: 100]

2.4 RAZOR2_CF_RANGE_E8_51_100 Razor2 gives engine 8 confidence level

above 50%

[cf: 100]

1.3 FSL_BULK_SIG Bulk signature with no Unsubscribe

Subject: {SPAM?} Account Suspension.




ass=3D"row row-1" role=3D"presentation" style=3D"font-family: "Times N=

ew Roman"; color: rgb(0, 0, 0); font-size: medium; background-size: au=

to;" width=3D"100%">














class=3D"row-content stack" role=3D"presentation" style=3D"background-size=

: auto; background-color: rgb(6, 120, 216); border-radius: 0px; width: 600p=

x;" width=3D"600">














g-bottom: 5px; padding-top: 5px; vertical-align: top; border-width: 0px; bo=

rder-style: initial; border-color: initial;" width=3D"25%">


e_block block-1" role=3D"presentation" width=3D"100%">












5px; width: 125px; padding-right: 0px;">


der-box; line-height: 10px;">
-f8aa-4227-9885-db6e282af326/rbc-logo-shield.svg?v=3D1700748777920" style=

=3D"box-sizing: border-box; display: block; height: auto; border: 0px; widt=

h: 56px; max-width: 100%;" width=3D"56" />





g-bottom: 5px; padding-top: 5px; vertical-align: top; border-width: 0px; bo=

rder-style: initial; border-color: initial;" width=3D"75%">


graph_block block-1" role=3D"presentation" style=3D"word-break: break-word;=

" width=3D"100%">












10px; padding-right: 10px; padding-top: 5px;">


irection: ltr; font-family: Arial, "Helvetica Neue", Helvetica, s=

ans-serif; font-size: 14px; letter-spacing: 0px; line-height: 16.8px;">


0px;">Royal Bank of Canada
g>














ass=3D"row row-2" role=3D"presentation" style=3D"font-family: "Times N=

ew Roman"; color: rgb(0, 0, 0); font-size: medium;" width=3D"100%">














class=3D"row-content stack" role=3D"presentation" style=3D"width: 500px;" =

width=3D"500">












g-bottom: 5px; padding-top: 5px; vertical-align: top; border-width: 0px; bo=

rder-style: initial; border-color: initial;" width=3D"100%">


agraph_block block-1" role=3D"presentation" style=3D"word-break: break-word=

;" width=3D"100%">














Arial, "Helvetica Neue", Helvetica, sans-serif; font-size: 14px;=

letter-spacing: 0px; line-height: 16.8px;">


0px 0px 16px;">Hello,






0px;">Your RBC online access has been revoked!






0px;"> 






0px;">To unlock and gain access follow the instructions below.










ton_block block-2" role=3D"presentation" width=3D"100%">














der-box;">


round-color: rgb(6, 120, 216); border-radius: 0px; width: auto; border-widt=

h: 0px; border-style: solid; border-color: transparent; padding-top: 5px; p=

adding-bottom: 5px; font-family: Arial, "Helvetica Neue", Helveti=

ca, sans-serif; font-size: 14px; word-break: keep-all;">
et-txn00.com" style=3D"box-sizing: border-box; text-decoration-line: none; =

color: rgb(255, 255, 255);">
left: 30px; padding-right: 30px; display: inline-block;">
style=3D"box-sizing: border-box; word-break: break-word; line-height: 28px;=

">Click to gain accss
pan>









ider_block block-4" role=3D"presentation" width=3D"100%">














der-box;">


esentation" width=3D"100%">












nt-size: 1px; line-height: 1px; border-top: 2px solid rgb(79, 75, 75);">
an style=3D"box-sizing: border-box;"> 









graph_block block-5" role=3D"presentation" style=3D"word-break: break-word;=

" width=3D"100%">














ection: ltr; font-family: Arial, "Helvetica Neue", Helvetica, san=

s-serif; font-size: 12px; letter-spacing: 0px; line-height: 14.4px;">


0px;">      Privac=

y & Security
  |  
">Legal










ider_block block-6" role=3D"presentation" width=3D"100%">














der-box;">


esentation" width=3D"100%">












nt-size: 1px; line-height: 1px; border-top: 2px solid rgb(79, 75, 75);">
an style=3D"box-sizing: border-box;">