Nigerian spam

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 30 Dec 2025 16:24:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaj3n-00000000AHo-4A6M

for dave@doctor.nl2k.ab.ca;

Tue, 30 Dec 2025 16:23:27 -0700

Resent-From: The Doctor

Resent-Date: Tue, 30 Dec 2025 16:23:27 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from email.cpim.org ([138.201.210.237]:47879)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vahgy-0000000046Q-35NC

for doctor@nl2k.ab.ca;

Tue, 30 Dec 2025 14:55:57 -0700

DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=cpim.org;

s=default; h=Reply-To:Date:From:To:Subject:Content-Description:

Content-Transfer-Encoding:MIME-Version:Content-Type:Sender:Message-ID:Cc:

Content-ID:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:

Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:

List-Subscribe:List-Post:List-Owner:List-Archive;

bh=LGm0Rr28lqzYDgqYDST2swzYqSO8R7H00iC7fQUUVtw=; b=lANhTFaOrsEMsK6hE0tXk9Wo1q

TmkQilrf2KCl79K6Ed9egUVXCMjEw5IxeXPL/WNmO2htqdl3KUHJvxPmZStV+hquK4P6zC0n3RsQZ

losxgioVhBALeDz5aFwlubv/ATZVJG4R/T9SVuLdXuGCyU8080Cdo4lFMMBRK2d0hQOFz7PumqZBu

NWFlg9NLDOtQW07s7d5IqpMPvbga9FNG4MmubrnCJMdSsElvVwG2YUQGyMzFu7GIkzX3nxiJ1neIY

dqig9wkhHlzg5C5ucafwpz/j6HbuzsglDbcraqPsEmNFLepFXmjXQnWVyY2aRRcPnOj9D8Dz3hqFG

i+7KBeHA==;

Received: from [103.141.235.183] (port=59412 helo=HY-23676.374593)

by komagata.komagata.in with esmtpsa (TLS1) tls TLS_DHE_RSA_WITH_AES_256_CBC_SHA

(Exim 4.98.1)

(envelope-from )

id 1vahgC-00000005dUc-25hA

for doctor@nl2k.ab.ca;

Wed, 31 Dec 2025 03:24:59 +0530

Content-Type: text/plain; charset="iso-8859-1"

MIME-Version: 1.0

Content-Transfer-Encoding: quoted-printable

Content-Description: Mail message body

Subject: doctor@nl2k.ab.ca

To: doctor@nl2k.ab.ca

From: "Mrs. Rafaela"

Date: Wed, 31 Dec 2025 05:54:56 +0800

Reply-To: rafaellaapponte@gmail.com

X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

X-AntiAbuse: Primary Hostname - komagata.komagata.in

X-AntiAbuse: Original Domain - nl2k.ab.ca

X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]

X-AntiAbuse: Sender Address Domain - cpim.org

X-Get-Message-Sender-Via: komagata.komagata.in: authenticated_id: ptl@cpim.org

X-Authenticated-Sender: komagata.komagata.in: ptl@cpim.org

X-Source:

X-Source-Args:

X-Source-Dir:

X-From-Rewrite: unmodified, already matched

X-Spam_score: 8.6

X-Spam_score_int: 86

X-Spam_bar: ++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Please confirm that this email address is still active and

that you can receive notifications about your donation of 2.7 million euros.





Content analysis details: (8.6 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

0.1 MISSING_MID Missing Message-Id: header

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

[138.201.210.237 listed in dnsbl.ahbl.org]

[138.201.210.237 listed in dnsbl.ahbl.org]

[138.201.210.237 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

[103.141.235.183 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[138.201.210.237 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[103.141.235.183 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

[138.201.210.237 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[138.201.210.237 listed in list.dnswl.org]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 MILLION_EUR BODY: Talks about millions of euros

0.0 T_HK_NAME_MR_MRS No description available.

0.0 HK_NAME_MR_MRS No description available.

0.0 LOTS_OF_MONEY Huge... sums of money

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

0.1 MONEY_NOHTML Lots of money in plain text

0.9 MONEY_FREEMAIL_REPTO Lots of money from someone using free email?

Subject: {SPAM?} doctor@nl2k.ab.ca



Please confirm that this email address is still active and that you can rec=

eive notifications about your donation of 2.7 million euros.

Web/SEO/App Spam from Microsoft Outlook Part 2

Posted by Dave Yadallee on


X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Dec 2025 12:45:03.8958

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: TYZPR04MB6150

X-Spam_score: 5.1

X-Spam_score_int: 51

X-Spam_bar: +++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi, doctor@nl2k.ab.ca I was just wondering if you had a chance

to review the previous email I send to you. I understand the value of your

time so I'd like to know what's the best way to reach you and when can we

discuss this in more detail?



Content analysis details: (5.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

[52.103.66.61 listed in dnsbl.ahbl.org]

[52.103.66.61 listed in dnsbl.ahbl.org]

[52.103.66.61 listed in dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.66.61 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:f4:0:0:0:6 listed in]

[will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

[52.103.66.61 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

0.0 ARC_VALID Message has a valid ARC signature

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

0.0 ARC_SIGNED Message has a ARC signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.66.61 listed in wl.mailspike.net]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[liliana.join(at)outlook.com]

0.5 L_HELLO_ADDRESS BODY: Greets you by address, not by name

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

Subject: {SPAM?} Re-last mail update please.



--_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_

Content-Type: text/plain; charset="us-ascii"

Content-Transfer-Encoding: quoted-printable



Hi, doctor@nl2k.ab.ca







I was just wondering if you had a chance to review the previous email I sen=

d to you.







I understand the value of your time so I'd like to know what's the best way=

to reach you and when can we discuss this in more detail?







Waiting,



...........................................................................=

...........................................................................=

.........



From: Liliana [mailto: liliana.join@outlook.com]



Sent: Thursday, 23 November 2025, 3:30 PM



To: doctor@nl2k.ab.ca







Hi,

Web/SEO/App Spam from Microsoft Outlook Part 3

Posted by Dave Yadallee on
Thank you for your response.







Friday at 10:00 AM works perfectly for me. I look forward to discussing you=

r website redesign and mobile app requirements in detail.







Please let me know if you prefer a Zoom/Google Meet call, and feel free to =

share the meeting link at your convenience.







Speak to you on Friday.







Best regards,



--_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_

Content-Type: text/html; charset="us-ascii"

Content-Transfer-Encoding: quoted-printable




osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=

//www.w3.org/TR/REC-html40">




>











Hi, doctor@nl2k.ab.ca



 



I was just wondering if you had a chance to re=

view the previous email I send to you.



 



I understand the value of your time so I’d =

like to know what’s the best way to reach you and when can we discuss=

this in more detail?



 



Waiting,



…………………=

…………………………̷=

0;…………………………=

230;…………………………&=

#8230;…………………………=

;………



From: Liliana [mailto: liliana.join@outlook.com]<=

/p>

Sent: Thursday, 23 November 2025, 3:30 PM



To: doctor@nl2k.ab.ca



 



Hi,



 



Thank you for your response.



 



Friday at 10:00 AM works perfectly for me. I look=

forward to discussing your website redesign and mobile app requirements in=

detail.



 




:yellow">Please let me know if you prefer a Zoom/Google Meet call
>, and feel free to share the meeting link at your convenience.



 



Speak to you on Friday.



 



Best regards,











--_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_--

Web/SEO/App Spam from Microsoft Outlook Part 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 30 Dec 2025 08:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vabtb-00000000Jic-0so3

for dave@doctor.nl2k.ab.ca;

Tue, 30 Dec 2025 08:44:27 -0700

Resent-From: The Doctor

Resent-Date: Tue, 30 Dec 2025 08:44:27 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-japanwestazolkn19012061.outbound.protection.outlook.com ([52.103.66.61]:34782 helo=OS8PR02CU002.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaZ6u-00000000AJI-3HoX

for doctor@nl2k.ab.ca;

Tue, 30 Dec 2025 05:46:11 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=QGpB0VC6mZiYBiDFp29GQF2Ce/njdmckeGX0r3RJ6vc/sBLZ9qnP7hl/ARkxsd0EdfSXmcWmpxZjpR0ONIdbEp24S4lfnwslV+cMA6AwGmjSBdtyUcYZBKthj3S24KYBBkjN6Qxa3PnuzLeSvhKNK/qQbKW42zoTylhZT5kShUzeTORuu8zCfV7mIp3pPP25j58seXU5G4Wgf9FEjqIWA0cbsR7k8Z2wBOUIIwRqalL/4rKLIgEY3zCjq7edWVB4JOLrNcKZuKPrVyJ4xCW9mmuuTMwzxm5I2kb1wk1/h7Ah6Die0mCXBvSWvuf6aoTWwWamyoaBLeY9ChIUcjissg==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=Tu73F5axUtS8QnlEwv5Nb8/z/i+kdIRTGeTrQcLDnGg=;

b=Caomi4W2YPZatIHvZBLBMqIrvN1bW7hfsEeOY4ziPsiDAORcyCd7Cpb2hAXHHb1324JRxeGyatDI0SZ0tv76STljhdLkAK//W7yUj7pI1u6Jazv6+cNlFfqjTuzOMXj/giMQLiGALW3HNVrXvsDMJo2IaqcPvlWALeaPIxTIoVXWoQddbvSU8tlZCaVf43tMcchzhaugWtVtAihzgPW7uSEUcuPrS9oo4/lkgzp4BbMv6XNft8aR8T9olOsqwvPDTYOsBwd4eYaOAF0p30lbwgr20kusVnIZoAO222p9xz1Q1rroKgdF7Du3DY5RVhO8s8V4j4UEeAQeyBFRtXXNZg==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=Tu73F5axUtS8QnlEwv5Nb8/z/i+kdIRTGeTrQcLDnGg=;

b=ZPaHBZ+FNCa7FLgBQGKbvx9FJzb/gd3kZIAeU6DZpxNU53Ni4V7z1u1NY9xMJkyhJzdOLGIa4hM7xxIofUiA5Lm6zkZ+oKoxJr0L7CCJpBFGRvZqFaQ7JRA4UWtlCM5yJn9q8jRWNoeqQ/Q4c8PqfcDbGeUxTeFBFytTtYxgxpDRwrtdim5rhWsef31uZlQzSOA7GcT7UUUM4m8z2OjGxuveLvCpKC184WneUkPb5HGsB2vIrUTyb8fpy6/6B3wC71luu87CW+xgQQeD/EsvFOkRvs2v39T6WY5xPa5iBE6kxIGtTceSuJxbgKWnIfPvyhHF4I2O2XtESVxku2FcSA==

Received: from KL1PR04MB7306.apcprd04.prod.outlook.com (2603:1096:820:f4::6)

by TYZPR04MB6150.apcprd04.prod.outlook.com (2603:1096:400:25c::12) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9456.14; Tue, 30 Dec

2025 12:45:04 +0000

Received: from KL1PR04MB7306.apcprd04.prod.outlook.com

([fe80::e477:85c1:6d71:c44b]) by KL1PR04MB7306.apcprd04.prod.outlook.com

([fe80::e477:85c1:6d71:c44b%6]) with mapi id 15.20.9456.013; Tue, 30 Dec 2025

12:45:04 +0000

From: Liliana Join

To: "doctor@nl2k.ab.ca"

Subject: Re-last mail update please.

Thread-Topic: Re-last mail update please.

Thread-Index: Adx5iAuFXFPR15f9QSClwopRJ0h52Q==

Importance: high

X-Priority: 1

Sensitivity: company-confidential

Date: Tue, 30 Dec 2025 12:45:03 +0000

Message-ID:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: KL1PR04MB7306:EE_|TYZPR04MB6150:EE_

x-ms-office365-filtering-correlation-id: 6c1ebaec-670c-472a-add2-08de47a14104

x-microsoft-antispam:

BCL:0;ARA:14566002|13091999003|5062599005|19110799012|21061999006|8062599012|8060799015|31061999003|15080799012|39105399006|20031999003|461199028|3412199025|440099028|40105399003|102099032|30101999003|12091999003;

x-microsoft-antispam-message-info:

=?us-ascii?Q?WA2qaF5SGS8AoWwyeCfrWIwdxiadA7Qok5jI+d0EORqJ8Ae2NF/wYEOklO/U?=

=?us-ascii?Q?W9KYS0SjVvpSvKwr328dwzoD3WksafZn1ptkmKklavX4+i6c+WkU9IBmq+4H?=

=?us-ascii?Q?gLH4p425g6cazvyUUORErnZGrR6YxtKs/2uL+yJkSUyBTMu3ICO0ICqD95xf?=

=?us-ascii?Q?6KjFDDlAUgsK4njorZOjte36LG/sJaqNGG+iR4YlBUX/bX71SH4RC2Z40gDz?=

=?us-ascii?Q?dDo1bmpJtK/kQ8jipZC7ob0RULv8JAYMwdMpkkKHtOVyA5urp3SdoMlgIEny?=

=?us-ascii?Q?f/FselYJPLPHWlFUBeAMN0RhU6SekSy1uODL1w39lL3JNQHKwIm+t3RuoZbu?=

=?us-ascii?Q?RW3QECKOxetPJq5MMetJEP8iYL7xvhV2bKKurtYIDM+1K2/dFJ1yllKl8J+4?=

=?us-ascii?Q?v417xpIi4OkN4Xe3X4YxN1avRRQWqa2KHUTORTv+0Rp7M7SFsDqs/Kn0J99w?=

=?us-ascii?Q?XKZctLqI6wJVKkgaz1nYaAHEid/d7DLGZo7vvtfqfQ0wCsQcGNolJ2HX8XHd?=

=?us-ascii?Q?qdcZR/EVilLJ606nRcqKy8LiYcjZ84asmuBboozbyt+QdAn5x8ICHo0Bv2qC?=

=?us-ascii?Q?HHzM3BBvVKIM0kAyOzvG+Et1LN9F45WDzadvSH/IlE2NOG6lHiPHdrwA99Wx?=

=?us-ascii?Q?W8RJIjlX7gHUzelSUUV0sNzntXdague+W8cMoZyIlbwUoIeAfaYByw3CkpUj?=

=?us-ascii?Q?AnFZJf+dDVgi5DZO18//nApDW/WUuOqDhuUz5/U1EjzSE8INSMiGc85q6BXx?=

=?us-ascii?Q?QXryPWVhwXsZqbeF2/St885sgEgzi6fbOEZn5/iN4qVk6F6iTbBAjhYu0NQB?=

=?us-ascii?Q?Hp4FmS9B7WpKMYbQHAnqOG6i5vw147nEcmHOflCGVs60+/+cS/MxThBQWMAh?=

=?us-ascii?Q?/wP/wZPLoGTjsKYHiLcEydBddg1pfJbDG2/Ea9+wCpBh+A/urWwAPpT7eBWR?=

=?us-ascii?Q?Xk5+sqqN3wC9QRHah0rk/9i4INnoqnfWvhVWCsgiM0EXaBkjit6wYu5GwnSA?=

=?us-ascii?Q?zcr9n91w9Wn0AVrJ1R1536O7JVfFlwhnSY5palCX6A+/q4gdJanqCgVkEZtD?=

=?us-ascii?Q?b9nPiw1YlnQiFezcXc2FpleiCtaX7UWbUksKnRdj/wiRZD3Hta2H+6vDtv4J?=

=?us-ascii?Q?YqxPkJCMCAf3jzkbS/Tl84xvxqzEhIdENQR/uJGZb7L9dGUYrWZ5bojiniNV?=

=?us-ascii?Q?/rEquX0z2o0JWtHEMujQfrI9ClKfNcRj/WcaWTYnv+tsYlHV8EGlNTlo+2KF?=

=?us-ascii?Q?JIUJzW591npehl6voWc6vRNJt5/4EwtZ8AtUZ4mnaPC2O+ZYFqEOn9nv4TC9?=

=?us-ascii?Q?LuE0ehC4zv3z9vgvb1JpqXVvGFrjkOFlxE0CnP16j9sGhOMvlUjZiZQ1ofrb?=

=?us-ascii?Q?2GLy3cGTofeBllgoJvXS29amcUKb?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?us-ascii?Q?3IIAZBXYCYM1r2LSnHd8UW2WxuMa0JyX6JFW20bwYo+Hbq9FD4qnJuGDlw+h?=

=?us-ascii?Q?VrPbIw4d/oxD68QkmAX4qPitBIEjBEKK3D87zL5KqIY1dS2Pfryn9SMJXkgq?=

=?us-ascii?Q?A6+mk5NdK4fIDvBdbkUe1y+vlMvuZnM7WGzt3hJYtp7zffUZj36winSxpYYB?=

=?us-ascii?Q?SP8ajaR4AgHwhyKzk5ToxPZTjh/RsAAWOKUFImuV3BpUGAz+Ks7qiGJN+FjS?=

=?us-ascii?Q?USndI9lIp/1KMt4Vq+kqM+ZXauMWUyF+oAIoUoUgUKq9haNPw/LFpLT7iMrv?=

=?us-ascii?Q?ZLo56UpelJ/v5k21DuxOGTEWMgbwzZhDIEEP81aAwLzBgFY09cVLhvYtTLHl?=

=?us-ascii?Q?Q/igN1HXN5laR8CivHB2D9rgkWzlVfYYZD+OluwM7t7t4QdgYA0MbpEPPhUO?=

=?us-ascii?Q?gnxhw1B/nXLie1L1tVDs80rrYrqtlo06gBOK0V9sioRX60h/E+vD4gQUUofz?=

=?us-ascii?Q?Hp5Ktk5QGYlHUUbuQY0DLRnNehBJKiXGB5uJ0SGapKb2r7dgjd2VIRtBd60P?=

=?us-ascii?Q?IRi4aVhh3SAerC19zcUh5Wd54NyBsT2z2f3aqNK95wfRLLZKtJEWgpQ7JOA5?=

=?us-ascii?Q?fRxfb+MF0lI18f/zF/A546wKV6qM0diqgFSW54AIMUh4mODVBYd5JcCUGPNE?=

=?us-ascii?Q?NhEED1JoT7YQPYNSQrdGNYbN1JLcQ/ViHcdZ8wawXKD7Ma0KQ9qwUZYrwShJ?=

=?us-ascii?Q?VyTgvCKedAAkEdcLB8IIO+j0U4szkNNNkDXahXd++vmld8vGrq96p78IMkDm?=

=?us-ascii?Q?b6k57hiuwk8Trc0WnG/zjoOEMtFakoEIxztohxQxYT2+lMGhjKQW6JkAv3nJ?=

=?us-ascii?Q?5U5bMTLc1+qwE14MMaizGIqq/BD5mS3nZjovS7fAErneDKXTltXYQqOjdl1I?=

=?us-ascii?Q?f0HIYn3/qkCaprKOFbORaiwXYOpggkz4yC2JI4OPqfEAb5Qa13cfXofpg7Gy?=

=?us-ascii?Q?g5V3RMgN8UpHke6BBJqhcYrj4QdLq+AFEG4cWycAfAB17QHsxO88DiCws54J?=

=?us-ascii?Q?/2WrZzpt1Q1C3sc38I1l4/IwvtkHdZqwBmRgKPEvbTKL0FSm9nwsbriFunJh?=

=?us-ascii?Q?ZWGUItdRyvtXiO9tmtmuhzbUawYVVtQh9yAeNIMLJG7oWM8PSxMpJn2D/8Ua?=

=?us-ascii?Q?KLoFW3kDxkxQwpoc/xHe7z+A4tID90hYidbHDqY1fXVmxLhMl4SzkASE3bLz?=

=?us-ascii?Q?KXpqkoJcclzeV/Fq4aW2lwT4eE63BC/RpStUqkroOunWuiU0YwU2ahd9YKt0?=

=?us-ascii?Q?v2WDsweBHTjgpMRZN1kuI9N91Q5xhFV5ySupmtFZinvgtGS1EyGe/OUcp5Gu?=

=?us-ascii?Q?vb9I9y2azfs/kKN660C43Aq0Jj9Kt1yBGB10mp2SlM3gav5eSM0mTsDNuy/u?=

=?us-ascii?Q?JXL4MIdqAbJoSkwr6enaA6q2S4Sf?=

Content-Type: multipart/alternative;

boundary="_000_KL1PR04MB7306A88F3CF829A15148B5829EBCAKL1PR04MB7306apcp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: KL1PR04MB7306.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: 6c1ebaec-670c-472a-add2-08de47a14104

Web/SEO/App Spam from Microsoft Outlook Part 2

Posted by Dave Yadallee on
Content analysis details: (7.9 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

[52.103.74.77 listed in dnsbl.ahbl.org]

[52.103.74.77 listed in dnsbl.ahbl.org]

[52.103.74.77 listed in dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.74.77 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:301:bc:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

[52.103.74.77 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[52.103.74.77 listed in list.dnswl.org]

0.8 DKIM_ADSP_NXDOMAIN No valid author signature and domain not in DNS

-0.0 SPF_HELO_PASS SPF: HELO matches SPF record

0.0 ARC_VALID Message has a valid ARC signature

0.0 ARC_SIGNED Message has a ARC signature

0.5 ONE_WORD_SUBJECT Subject with only one lower-case word

0.3 FROM_LOCAL_HEX From: localpart has long hexadecimal sequence

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.74.77 listed in wl.mailspike.net]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.0 FORGED_SPF_HELO No description available.

0.5 VOWEL_FROM_5 Impronouncable from header (6 consecutive vowels)

Subject: {SPAM?} url



--_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable



Hi,



I found a few errors on your site.



Would you like me to send over a summary of those errors?



I can also provide an Audit Report of your business website.



May I send you a Quote as well?



Warm Regards

James



--_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable








1">








-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

Hi,



-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">







-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

I found a few errors on your site.



-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">







-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

Would you like me to send over a summary of those errors?



-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">







-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

I can also provide an Audit Report of your business website.



-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">







-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

May I send you a Quote as well?



-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">







-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

Warm Regards



-serif; font-size: 11pt; color: rgb(0, 0, 0);" class=3D"elementToProof">

James








--_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_--

Web/SEO/App Spam from Microsoft Outlook Part 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 30 Dec 2025 08:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vabtB-00000000JhG-2PAp

for dave@doctor.nl2k.ab.ca;

Tue, 30 Dec 2025 08:44:01 -0700

Resent-From: The Doctor

Resent-Date: Tue, 30 Dec 2025 08:44:01 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-koreacentralazolkn19013077.outbound.protection.outlook.com ([52.103.74.77]:45899 helo=SEYPR02CU001.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaYSw-000000008O5-2Fwr

for sales@nk.ca;

Tue, 30 Dec 2025 05:04:53 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=GEpCrnzIAOthwK9uiy/jpEoQQbvAQWuwykUKsQhf5EXXfA4X9lyk2IvVpMOtuJKNmgJSITyELOS+G3GtYusRaNmbpM8N150DbyRdTcbLEyY0YT+D0yb5VS0WdWZZI9nVQlCq3+M46rV6K7KUd0QM5SFsRCILyXqazR2hplhBy9Ly0iyp0JG26x8nHkmFMv2YUT4PLRDgf93pa51U4HT0gSiRjLNtliO9OCf9BTkwCAYES9sT54miARSULidP9BsfrbH1slXZomcCVqb9Ny9jLbAH6hGO+cUGDhlzo5YMyiXZFjGw8r/RPnNIRXSJwRWdkokdaYLbpdwWlpyurGD+zA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=6OOL2w4Djwx/goog0XBvVCvxQCbsYY1K307+4dZUM4E=;

b=OIr9FSNXFlh7D5s5MvnVwr9zUsT3g1olBdlmBYUFgU0AkQxatAr4RTw3IX9QNe1iJ8ZnQn+KTnZqilRvEjoTnROdtyxYaUO/HNL6wFFE5yOl2Rt8BnPPYDSAAdnnf0zK39w3386okbQQZg+iXtWxvA1MUmGGHG2EHY98aUEiYDi/voENeKiA3fmiRkuRn1ePgbSJqpMFrXRU19oXIfCJChjOstTJPbwtzV59G+BCyuImWvR3Vlf60tJB0KtjRDR9ctV4gnodyiZygmWwVWTsoe9FX0P+VR39H7fp1WI2lfPpoumZ0rzxB/Rb0bkZtpYdPsvBmub6xpLz75Q3BMBL9g==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

Received: from PUZPR04MB5229.apcprd04.prod.outlook.com (2603:1096:301:bc::10)

by TYZPR04MB6475.apcprd04.prod.outlook.com (2603:1096:400:281::6) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9456.14; Tue, 30 Dec

2025 12:03:45 +0000

Received: from PUZPR04MB6487.apcprd04.prod.outlook.com

([fe80::7b5e:4692:1693:8810]) by PUZPR04MB5229.apcprd04.prod.outlook.com

([fe80::7b5e:4692:1693:8810%4]) with mapi id 15.20.9456.013; Tue, 30 Dec 2025

12:03:44 +0000

From: James Park



To: "sales@nk.ca"

Subject: url

Thread-Topic: url

Thread-Index: AQHceYNddjV2+3G8pkiKwNwhjMCTtQ==

Date: Tue, 30 Dec 2025 12:00:00 +0000

Message-ID:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

suggested_attachment_session_id: e8d69460-4a8a-b757-dc56-d06658c87370

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: PUZPR04MB5229:EE_|TYZPR04MB6475:EE_

x-ms-office365-filtering-correlation-id: ab46d556-2416-4778-ca53-08de479b7b1b

x-microsoft-antispam:

BCL:0;ARA:14566002|39105399006|8060799015|15030799006|15080799012|19110799012|8062599012|31061999003|461199028|3412199025|440099028|40105399003|102099032|26104999006;

x-microsoft-antispam-message-info:

=?iso-8859-1?Q?hR9VQDWxUUFbX0FLHEc26LxYpwI/+wHHx0xhpNh2SjtfvPlm+IMWZ0q5gm?=

=?iso-8859-1?Q?6zhkVoRsOzmLVZVer/fe5cbEdiot68mHF7KfyGXUKFN4N5jaMRV629BVVy?=

=?iso-8859-1?Q?ozjv3cvxRx29aRBV0lWC/aZRk5T0rekmAJOhyQuW41ySQ17pjjAh8fifhr?=

=?iso-8859-1?Q?lxKgRFLHj/k25N5/WaLMk0BfgxdqDf43JuZTv0IqcaJG7DyDOUSzN05KNU?=

=?iso-8859-1?Q?WxAT6o/cF7pnCZfLCDrXHlBodhKwbnUvPb3dWKZ97SW/SmkVTqINVC9JRO?=

=?iso-8859-1?Q?UxXn74uZ51U5XtG6zaKFrk8yD62H+j2EY+7e8zfUgMs94ZFAL8DCCf1sXl?=

=?iso-8859-1?Q?ApepMwreHTo2Lje76OphM3N+WDD24w0Z0UI0ElF4csKmwhJyUR7ER7AGZH?=

=?iso-8859-1?Q?KN4xgCFALogT+RdEAQX4mrhfzw+TC1zbAbipo1KoMIhZM+jnojg38Rncvr?=

=?iso-8859-1?Q?N6SKZ9+4R4eUt8jtU0HudfBL2jDOYTPbEIt3mywV5ZPUBH4EyUYw0vLIS9?=

=?iso-8859-1?Q?iHSIZrxUwrZgd6Xf63RXQhDhyyLp/2hdoFglnIpteX++0xrJNTX3x+4eEv?=

=?iso-8859-1?Q?8/5Sf2HPqpQ1gyZb8Z4e0e0sY/bZuaRsn+mP9+k6avqOR6O1AcSzVnbbrL?=

=?iso-8859-1?Q?DwkWZDItItoSSnGZl9UH+arXM0ZE5SRr9EJ0pjzgCENayTzUMpWowKfDB2?=

=?iso-8859-1?Q?ZrrESDuU7pq/inSrukDgKRCeDYAxa3MCkrQJHvkGwNb3GssoKYpOUVHfGU?=

=?iso-8859-1?Q?LaNvGfsotBYjR3c29Y0vybbfxovrsN6e2IyJzGW6le0ieEX6bl93o4FNVd?=

=?iso-8859-1?Q?A4JJG5dWjku6RI/Bia09HzCQnLJDDbml8eky4/IsEJ0uYEqK0J0n8N42sx?=

=?iso-8859-1?Q?YHEKBT0e7St7ipo4oH3Y7ZkWNiTp7/hroJGoKinv7leiGccrGu1HlTrYPR?=

=?iso-8859-1?Q?ATjtHdiHYcF5xTgQkkPXJbzjBd2ux8pw0YhLOh6YXS/MLp39IJpVPZ3Wd4?=

=?iso-8859-1?Q?SV59vPFzBBWZXRVjU4yZ8cETJjlAoZRWFOrbl/nIf2xrBRtyRbJ0AQOkLS?=

=?iso-8859-1?Q?F0hTKu9+ocmNkeZKehO5pStNPFlFijJZmxhCP9J1ISJ3z/dXudipUUqZqf?=

=?iso-8859-1?Q?YP4ostytXsniTVTeAW8m/2o0hVb3rqOybbhRbUu+tlF6Bod7Umb3SgNPM6?=

=?iso-8859-1?Q?Zb0meBu7g1hVNMRBj6LY/d1hp3Rdlars52BXSKPgL0FCdwtCilfz+eti1h?=

=?iso-8859-1?Q?1biW0zAT7fEXP2L+nzdrG4qU89m/Y0+cLHxJ/vEWw=3D?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?iso-8859-1?Q?3ZXLd5KCmcD4qKPRDlN0lk4Um7EpaOwd0PThSlYGUfRBeP+tMqPVwemibI?=

=?iso-8859-1?Q?orB488/tE5VF7O+jL1barCMcTIWgjToew5h9atphsy1DzmFFmngE9mXLPN?=

=?iso-8859-1?Q?jjPVyXLkvT/Pnl6BlMihMLap/81tmuASUGPe5TxmQnFVpIM32j2NRrd3Ot?=

=?iso-8859-1?Q?CVQSfF+Wbb98z9jH+r9bnd4aT6RA+IJSyJqwlMKogSnjqvVz74JJ0hfoVO?=

=?iso-8859-1?Q?hwRoDuHOl6jbiDC/hPuPv/C4WA5UpdJi/aX4Xfz5NFke27Bo/WLinGj6t1?=

=?iso-8859-1?Q?JNwF2m7ynY2Ste0/gOTfM3j7/qGfBzDvLJdjlW4fgasJsNxFVYrGK/PelO?=

=?iso-8859-1?Q?pPvIjfz/fzYwLIP7s5wSwiHBRLkmm2xf5dQp3226LFHsrgVMa7UPucE/Ef?=

=?iso-8859-1?Q?QAITBbI3cJz9xQyEVvxx1xwwDjiIx3iCBkIqZgjF01MQEOE93KBQAxZrub?=

=?iso-8859-1?Q?eO5TMA65xHtFl7zAnI7XF22ZoJIn/TJmK0rSWPdrbGiJHNE35AdnEkSvWM?=

=?iso-8859-1?Q?ma4ZQU7PagN1FClanWXJ5EWaHdFb7ZwUUxQF2+2+LGCb8pUKpqZs6LEd8R?=

=?iso-8859-1?Q?ZsU1xasj1GrXm/zt20b5esh0OiuEx1jouVvzJLXBqxYRC2rwZUaQxK5fc+?=

=?iso-8859-1?Q?obMBaAe2mRJRK2ApA+SJwr9ouUBPO0tOEqkM+LXdJqa14IskGWHM6b0FdG?=

=?iso-8859-1?Q?pQ95NQKba7QVEIGMoKvxsHtG95vrp6K7nzCZRfvwSPH5yqVdR3GWo6ELyI?=

=?iso-8859-1?Q?zcIPF4l1MqV0JwufHdMNIqA8TXWRjHRIcekU4XSBj0oaKojRDWIkMjmCJV?=

=?iso-8859-1?Q?q7FIXAtOb8YOH+YftlF95tO9VoUNAKEDClMNWBg7EgnrvpkgVmstVnTQSy?=

=?iso-8859-1?Q?wP+Tg7voDMmpDxbMq6scmEm8H8zqs0eJKyFqKTSwXZGCQ5Cc2MFSuEJESE?=

=?iso-8859-1?Q?7YE3JEp6wRSW+Ej5Q88kr8T1AIFTffoWkapeuWfrWpjHhOYCVpPRiEmlA2?=

=?iso-8859-1?Q?PrgejhIhp6AMcqMJv6dbUVFwzVOKFwp5856bZbfSx2SbXWV5j94Sd5UzFD?=

=?iso-8859-1?Q?09/9hRZUWCMYHVs8ES6cqSc=3D?=

Content-Type: multipart/alternative;

boundary="_000_PUZPR04MB64877A35DEA8A62CF097A8FEB5BCAPUZPR04MB6487apcp_"

MIME-Version: 1.0

X-OriginatorOrg: sct-15-20-9412-4-msonline-outlook-515b2.templateTenant

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: PUZPR04MB5229.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: ab46d556-2416-4778-ca53-08de479b7b1b

X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Dec 2025 12:00:00.5029

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: TYZPR04MB6475

X-Spam_score: 7.9

X-Spam_score_int: 79

X-Spam_bar: +++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi, I found a few errors on your site. Would you like me to

send over a summary of those errors?

Web/SEO/App Spam from Google Gmail Part 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 29 Dec 2025 23:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaTSc-00000000GKb-0TFd

for dave@doctor.nl2k.ab.ca;

Mon, 29 Dec 2025 23:44:02 -0700

Resent-From: The Doctor

Resent-Date: Mon, 29 Dec 2025 23:44:02 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-pf1-f181.google.com ([209.85.210.181]:57508)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaIE7-000000008H4-0oAV

for root@nk.ca;

Mon, 29 Dec 2025 11:44:30 -0700

Received: by mail-pf1-f181.google.com with SMTP id d2e1a72fcca58-7b9215e55e6so5712608b3a.2

for ; Mon, 29 Dec 2025 10:43:30 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20230601; t=1767033804; x=1767638604; darn=nk.ca;

h=content-language:thread-index:mime-version:message-id:date:subject

:to:from:from:to:cc:subject:date:message-id:reply-to;

bh=GZsfAazKOEopQWjT/WOfAQEm9jbwRYviASxadhqJYSc=;

b=c+FT1bfGs2SuPpEU2z09AJz/sqQogL7Z4OVKUBVzpFN0QF64jJ+JVHFFeGhyq2GZvM

YOC6FGMqvXpp5MNCudCDcOFqTqYDcu2QyhI7lW5maMi9d6IWdyLretngnpqyxedrhlPy

1Q2bscM96M7HWlgZw2AETqtYYa97XMiVbWuSwVRNEW8snOUHJfN/PGMXIly3zB8bmMnA

JY/fyNf2FlThN9JYY3mmjJSX+wqs8JhuLPHtTvhEgzK03gZFdXpC3zFFFBludmvA/5IE

xjqLFV13SyaF/KlScfD5ImCJhPQQt6X+YPiUMj/VyxVPs3Kjlf26v8dBwFs7iS/NGN4n

gN1g==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1767033804; x=1767638604;

h=content-language:thread-index:mime-version:message-id:date:subject

:to:from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date

:message-id:reply-to;

bh=GZsfAazKOEopQWjT/WOfAQEm9jbwRYviASxadhqJYSc=;

b=maOor+EGkQb7/+CCWIu7bh2N5xv25pZ2Txvwh+7UlRPDu8xP9/mBYOoh2MEevt7OcE

c3QTeRvnNZrgeFQDzBz9jUDFuOdqhU5sTydTkDPuqXFXYPzwx7U4vNTgoVl6ePHYycAS

rEdQB55+AhxdH3+rG9VqDUWVMAVJBdmiwkU4OtIuJA5CBnJtaVZIhHTX3aYj2St1Dzth

6L/aoUEqdDx5gV3c3VsPStFX/8R4zquRLZ2BxsQbQAMTZ3ncXwxZhV4ZRDzp5tMugVXw

vb611XH5BkgSRDRWUmiZhWlAetUbE/RKjgPSbNck8ACojLEmf9Gx+uXz0ONYy5ej7m42

sJEA==

X-Gm-Message-State: AOJu0YzS4hAsV9/adNbHNWzBJ6cUgXTTsW5N1Wnv1gxIZJmaRitGGaEE

ctz1qwa6ff7lqnVTI7z2ECGLSDRL0ENOJ6DzXLHLI9a20l0TOLrwAP+HnM+9aqrR

X-Gm-Gg: AY/fxX5aJosBZTl3LttUN/YkxBoZ5mluEHhLJeEo0V+N6uqUyRUius/yurVwEHTKESf

qCNWODgbz/dqAELF8Pwk04D+BxKRwZBjpQr1jOU9gCnaHDP1mr+DAHN/y23pVD3Vj8jR5IgLGNn

AV/6y32qk6xsuywK2KFuc4kgxhP9M+V3WOTG2PQywr9awsGYvUC6HKEDEkiLY+QJScIDLfnZNQI

yqgpeuErsG6PVm1k+USwuT1X+LgAgmWU4+aTOYOqscFMqLHToVe1DA8ZUdzj3i4hrWKsv1+jYgy

hRLN6DdoOn3gaAE+RI5bMHHBhORbSxuRieIcZQdoVs01hTwVRRjOkD8j74Bunes2bXR3A2WfUCF

bt5q2BlCu7/rOdMeZEcm1OVsb26buc2+X58meBpTGEXTxy4NAHX8yqjCVi0OmMBJoYBZGG6t3E7

2V2EjgNwBk6ApLjjPnwZyIuMT9cNdaOKtFAEZ2

X-Google-Smtp-Source: AGHT+IGKesBkFV+eHa2lw7UHyVlSRxn1BPqJHkHlUoRym/30CIOu2j02Kf8AKCYzksHCTQg+uZMGEQ==

X-Received: by 2002:a05:6a20:432c:b0:35f:46d3:f27a with SMTP id adf61e73a8af0-376a75ef85emr26324064637.5.1767033804171;

Mon, 29 Dec 2025 10:43:24 -0800 (PST)

Received: from DESKTOPVFI8GCA ([2401:4900:a13c:2ec5:182f:881f:4fa3:76b1])

by smtp.gmail.com with ESMTPSA id 98e67ed59e1d1-34ef44e0b24sm7223187a91.0.2025.12.29.10.43.22

for

(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);

Mon, 29 Dec 2025 10:43:23 -0800 (PST)

From: Bikash

X-Google-Original-From: "Bikash"

To:

Subject: Re: SEO improve ??

Date: Tue, 30 Dec 2025 00:12:55 +0530

Message-ID: <13cd01dc78f3$02c6a0b0$0853e210$@gmail.com>

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="----=_NextPart_000_13CE_01DC7921.1C7F2AD0"

X-Mailer: Microsoft Outlook 16.0

Thread-Index: Adx48umjdg+jrhAnRKCN3o6uXHG/Bw==

Content-Language: en-us

X-Spam_score: 10.9

X-Spam_score_int: 109

X-Spam_bar: ++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi, root@nk.ca I work as a Manager at a digital marketing

company providing data-driven SEO solutions to help businesses improve Google

rankings and gain a competitive edge. Please let me know if you'd like to

review our SEO packages and pricing details.



Content analysis details: (10.9 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

[209.85.210.181 listed in dnsbl.ahbl.org]

[209.85.210.181 listed in dnsbl.ahbl.org]

[209.85.210.181 listed in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.210.181 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[2401:4900:a13c:2ec5:182f:881f:4fa3:76b1 listed]

[in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

[209.85.210.181 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.210.181 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

1.0 HK_RANDOM_FROM From username looks random

0.6 HK_RANDOM_ENVFROM Envelope sender username looks random

0.5 FROM_LOCAL_NOVOWEL From: localpart has series of non-vowel letters

3.5 VOWEL_FROM_7 Impronouncable from header (7+ consecutive vowels)

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[bjbjfgtajgtmwpj(at)gmail.com]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.210.181 listed in wl.mailspike.net]

0.5 L_HELLO_ADDRESS BODY: Greets you by address, not by name

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

Subject: {SPAM?} Re: SEO improve ??



This is a multipart message in MIME format.



------=_NextPart_000_13CE_01DC7921.1C7F2AD0

Content-Type: text/plain;

charset="us-ascii"

Content-Transfer-Encoding: 7bit



Hi, root@nk.ca



I work as a Manager at a digital marketing company providing data-driven SEO

solutions to help businesses improve Google rankings and gain a competitive

edge.



Please let me know if you'd like to review our SEO packages and pricing

details.



Sincerely,

Bikash,

Marketing Manager

Web/SEO/App Spam from Google Gmail Part 2

Posted by Dave Yadallee on
------=_NextPart_000_13CE_01DC7921.1C7F2AD0

Content-Type: text/html;

charset="us-ascii"

Content-Transfer-Encoding: quoted-printable




xmlns:o=3D"urn:schemas-microsoft-com:office:office" =

xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" =

xmlns=3D"http://www.w3.org/TR/REC-html40">
HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =

charset=3Dus-ascii">
(filtered medium)">

class=3DWordSection1>


style=3D'font-family:"Calibri Light",sans-serif'>Hi, =

root@nk.ca

I work as a =

Manager at a digital marketing company providing data-driven SEO =

solutions to help businesses improve Google rankings and gain a =

competitive edge.

Please let me know if =

you’d like to review our
style=3D'background:aqua;mso-highlight:aqua'>SEO packages and pricing =

details.

Sincerely,
Bikash,
Marketing Manager


class=3DMsoNormal>
Light",sans-serif'> 



------=_NextPart_000_13CE_01DC7921.1C7F2AD0--

Purolator Phish Part 5

Posted by Dave Yadallee on


=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
ing: 0px 10px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; color: rgb(255, 255, 255); border-collapse: collapse=

; margin: 0px auto; width: 550px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

le=3D"margin: 0px;">=C2=A0

class=3D"m_1131456065350560616img-fluid" style=3D"margin: 0px; padding: 0px=

; font-family: Arial, sans-serif; font-size: 11px; line-height: 18px;">*If =

immediate shipment is required, Purolator will offer a 65% discount on ship=

ments shipped within seven (7) calendar days of the form submission date. T=

his discount applies to Purolator's regular rates published on=C2=A0puro=

lator.com/rates=C2=A0and to shipments shipped using Purolator=C2=A0
>Express=C2=AE=C2=A0and Purolator Ground=C2=A0=E2=84=A2=

=C2=A0services. It does not apply to taxes, special services, administrativ=

e fees, or surcharges. This offer has no cash value and cannot be combined =

with any other Purolator discounts, offers, or coupons. It is not retroacti=

ve. In the event of a discrepancy between the discount calculated by Purola=

tor and the discount calculated by other parties, Purolator's calculation w=

ill prevail.


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09Copyright =C2=A9 2025=

Purolator Inc. All rights reserved.=C2=A0Privacy Policy.


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09To unsubscribe=

:=C2=A0You can choose at any time to stop receiving commercial emails.

>

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09Purolator=C2=A0
tyle=3D"font-size: 7.7px; line-height: 0;">MD=C2=A0, Purolator Promis=

es Kept=C2=A0MD=

=C2=A0and their design are registered trademarks of Purolator Inc. All othe=

r trademarks or registered trademarks are the property of their respective =

owners.


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09Purolator | 2727 Mead=

owpine Blvd | Mississauga | Ontario | L5N 0E1 | 1,888 SHIP-123 |=C2=A0pu=

rolator.com


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
ing: 0px 10px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; color: rgb(255, 255, 255); border-collapse: collapse=

; margin: 0px auto; width: 550px; border-top: 1px solid rgb(255, 255, 255);=

">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

class=3D"m_1131456065350560616img-fluid" style=3D"margin: 0px; padding: 0px=

; font-family: Arial, sans-serif; font-size: 12px; line-height: 18px;">
alt=3D"Instagram" class=3D"CToWUd" data-bit=3D"iit" src=3D"https://ci3.goo=

gleusercontent.com/meips/ADKq_NakrzVaPF0HZtChGrKtLruB99m7VJc32ZuAYBqFAWi7zs=

OElkSvH1DD10a5jQ8DC2koz-DdnufSXis_sPsmHXzXFMC3djHVgcbOBRzjXBqitmoSPUeXV_mx2=

Zl_QTa3t3jAri_-plxIOeqqzke-wf_auEXucmvDvpXK0FGGgUcHpA=3Ds0-d-e1-ft#https://=

image.connect.purolator.com/lib/fe43157075640475771570/m/1/6d9c6bfc-8326-4d=

57-a6a2-75c0af36e34b.png" width=3D"24" />=C2=A03D"Facebook"
=3D"CToWUd" data-bit=3D"iit" src=3D"https://ci3.googleusercontent.com/meips=

/ADKq_NaDFRM2FfNLcYJoIGHeY1OPyFYpPEwSBDhDsVFY_JaiDJ68_EltyWgjuY5B4sovjQg8eG=

f-mzyUdY3LI5p9cH1SzaMtYenaTY_DhXMFHFui6FEzCHhMdpRN2PecIUSEChElvDyark28QaHdi=

M0TJwjGXPrAzPJAw2SqVKF_UYTA0g=3Ds0-d-e1-ft#https://image.connect.purolator.=

com/lib/fe43157075640475771570/m/1/da2911f7-1b14-4658-8eef-8b94a169def0.png=

" width=3D"24" />=C2=A03D"Twitter"
t" src=3D"https://ci3.googleusercontent.com/meips/ADKq_NZpPDhivm84XsGTd8xU3=

-syyRgqyREAZ4EDTWvYNG0oBu7oZFtySf74FBaTxlDzDADzmesjCqrw3_QcWwk0n8ELtxZ5EHZm=

EABhIg3tbdForRryTyx9ymKXogX3zNAz3O3Gog-oHVoyKmk3SYyrTVZ04R8sTLLfXD6D5x51DrQ=

xYA=3Ds0-d-e1-ft#https://image.connect.purolator.com/lib/fe4315707564047577=

1570/m/1/cfcac840-5045-43b0-9f1d-69d0791beec6.png" width=3D"24" />=C2=A0
g alt=3D"LinkedIn" class=3D"CToWUd" data-bit=3D"iit" src=3D"https://ci3.goo=

gleusercontent.com/meips/ADKq_NZk7poz_GIZf7XJ18iHFfuliafE7uLbq6wokTjQRkOntf=

aYwvItHAj4F36S_O6KxCQRToJduu0ntropyYdnGCbvwXCnRVrhddawHFpXZr0JsgKdcw4Vso83C=

OdGAb1KMvu15ULzJJqLQgn5TyfMXR4KjicEzA77nGtnArZzD-J3yg=3Ds0-d-e1-ft#https://=

image.connect.purolator.com/lib/fe43157075640475771570/m/1/c25309c3-23f1-4b=

0b-9d0e-a1753e68641a.png" width=3D"24" />


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09=09

=09=09=09=09=09

=09=09=09=09

=09=09=09

=09=09=09

=09=09

=09











--15d816dbcb6bc784eae73cfb6b9f0b3dd--

Purolator Phish Part 4

Posted by Dave Yadallee on


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
0px; padding: 0px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

65350560616cta-row">=C2=A0

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
style=3D"border-spacing: 0px; font-family: sans-serif; border-collapse: co=

llapse;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09



=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09

e">

=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

: 0px; font-family: Arial, sans-serif; font-size: 16px; line-height: 22px; =

padding: 0px 40px; text-align: justify;">

=09=09=09=09=09=09=09=09=09=09=09=09

=C2=A0





=09=09=09=09=09=09=09=09=09=09=09=09

Hello,


=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09You have a package awaiting delivery be=

cause you did not declare its contents, which must be examined by the Canad=

a Border Services Agency. Please review the terms and conditions and schedu=

le delivery as soon as possible before your package is returned to the send=

er by clicking the button below:





=09=09=09=09=09=09=09=09=09=09=09=09

=C2=A0



=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09




=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09

0616ltr-example col9bycol3">

=09=09=09=09=09=09=09=09=09
ing=3D"0" cellspacing=3D"0" class=3D"m_1131456065350560616expand-container"=

style=3D"border-spacing: 0px; font-family: sans-serif; color: rgb(255, 255=

, 255); border-collapse: collapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

0px;">

=09=09=09=09=09=09=09=09=09=09=09=09

">

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

-family: Arial, sans-serif; padding-bottom: 0px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; color: rgb(88, 89, 91);">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

f" style=3D"margin: 0px; font-family: Arial, sans-serif; padding: 10px 20px=

; font-size: 16px; line-height: 18px; color: rgb(0, 25, 150); border-radius=

: 5px;">
(0, 25, 150); text-decoration-line: none;" target=3D"_blank">Plan my delive=

ry


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09




=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09




=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09

=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09

e">

=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09

456065350560616m-pl-10 m_1131456065350560616m-pr-10" style=3D"margin: 0px; =

padding: 0px 40px; font-family: Arial, sans-serif; text-align: center; font=

-size: 0px; line-height: 0; vertical-align: top;">

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: top; text-align: left; display: inline=

-block; width: 570px; max-width: 100%;">

=09=09=09=09=09=09=09=09=09=09=09=09
dding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sa=

ns-serif; border-collapse: collapse;" width=3D"100%">

Purolator Phish Part 3

Posted by Dave Yadallee on
=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 252px; max-width: 40%;">

=09=09=09=09=09=09=09=09=09=09=09=09

ellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sans-serif; bor=

der-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

ing: 0px; font-family: Arial, sans-serif;">=C2=A0


=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09




=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09

e">

=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

>=C2=A0

le=3D"margin: 0px; padding: 0px; font-family: Arial, sans-serif; text-align=

: center; font-size: 0px; line-height: 0; vertical-align: top;">

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 325px; max-width: 50%;">

=09=09=09=09=09=09=09=09=09=09=09=09
ellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sans-serif; bor=

der-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

n: 0px; padding: 0px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; border-collapse: collapse; margin: 0px auto; width: =

325px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

6065350560616img-fluid" style=3D"margin: 0px; padding: 0px; font-family: Ar=

ial, sans-serif; font-size: 15px; line-height: 22px;">3D""
=3D"CToWUd a6T" data-bit=3D"iit" src=3D"https://ci3.googleusercontent.com/m=

eips/ADKq_NZ6XPZcfpNxbR6Xl307VN2NMyZc904GCkLVulnt1YnBm_UIBN3iMwyfM6gHjWgbpF=

BYktKxItBU8BXqX_FZthfE41EWq8-kLu53TjniBjiSCoUJjPgs5UtNTypNvp9pUx4cOYJlClr7-=

3PBQjofmsGIZxN4gLQfA2ofSf5d2B1wNw=3Ds0-d-e1-ft#https://image.connect.purola=

tor.com/lib/fe43157075640475771570/m/1/b3c5b039-16cd-4734-a14f-4d97cc81f328=

.png" style=3D"cursor: pointer; outline: 0px; max-width: 100%; width: 100%;=

" tabindex=3D"0" />


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09




=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 325px; max-width: 50%;">

=09=09=09=09=09=09=09=09=09=09=09=09
dding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sa=

ns-serif; border-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

n: 0px; padding: 0px 20px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; border-collapse: collapse; margin: 0px auto; width: =

285px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

Purolator Phish Part 2

Posted by Dave Yadallee on


Hello,



You have a package awaiting delivery because you did not declare its contents, which must be examined by the Canada Border Services Agency. Please review the terms and conditions and schedule delivery as soon as possible before your package is returned to the sender by clicking the button below:



Â























































Plan my delivery

















































































Â





*If immediate shipment is required, Purolator will offer a 65% discount on shipments shipped within seven (7) calendar days of the form submission date. This discount applies to Purolator's regular rates published on purolator.com/rates and to shipments shipped using Purolator Express® and Purolator Ground ™ services. It does not apply to taxes, special services, administrative fees, or surcharges. This offer has no cash value and cannot be combined with any other Purolator discounts, offers, or coupons. It is not retroactive. In the event of a discrepancy between the discount calculated by Purolator and the discount calculated by other parties, Purolator's calculation will prevail.



Copyright © 2025 Purolator Inc. All rights reserved. Privacy Policy.

To unsubscribe:Â You can choose at any time to stop receiving commercial emails.

Purolator MD , Purolator Promises Kept MD and their design are registered trademarks of Purolator Inc. All other trademarks or registered trademarks are the property of their respective owners.

Purolator | 2727 Meadowpine Blvd | Mississauga | Ontario | L5N 0E1 | 1,888 SHIP-123 |Â purolator.com





















  Â

























































--15d816dbcb6bc784eae73cfb6b9f0b3dd

Content-Type: text/html; charset=UTF-8

Content-Transfer-Encoding: quoted-printable







=09

=09

=09






le=3D"margin: 0px;">=C2=A0

ass=3D"m_1131456065350560616img-fluid" style=3D"margin: 0px; padding: 0px 0=

px 10px; font-family: Arial, sans-serif; font-size: 12px; line-height: 18px=

; font-weight: bold;">
lor: rgb(0, 155, 196);">=E2=9D=8C Something went wrong with your deliver=

y !

e=3D"margin: 0px;">=C2=A0

(34, 34, 34); font-size: small; border-spacing: 0px; font-family: sans-seri=

f; border-collapse: collapse;" width=3D"100%">

=09

=09=09

=09=09=09

ly: Arial, sans-serif; background-color: rgb(237, 237, 237);" valign=3D"top=

">

=09=09=09
=3D"0" style=3D"width: 650px; max-width: 650px;" width=3D"100%">

=09=09=09=09

=09=09=09=09=09

=09=09=09=09=09=09


=09=09=09=09=09=09
idth: 100%;" width=3D"100%">

=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09
g=3D"0" class=3D"m_1131456065350560616expand-container" style=3D"border-spa=

cing: 0px; font-family: sans-serif; color: rgb(0, 0, 0); border-collapse: c=

ollapse; width: 650px;">

=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

x; padding: 0px 0px 10px; font-family: Arial; font-size: 12px; line-height:=

10px; background-color: rgb(237, 237, 237);">=C2=A0

0px; font-family: Arial, sans-serif; text-align: center; font-size: 0px; li=

ne-height: 0; vertical-align: middle; padding: 20px 10px;">

=09=09=09=09=09=09=09=09=09=09=09=09

l-12-fluid" style=3D"vertical-align: middle; text-align: left; display: inl=

ine-block; width: 378px; max-width: 60%;">

=09=09=09=09=09=09=09=09=09=09=09=09
dding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; font-family: sa=

ns-serif; border-collapse: collapse;" width=3D"100%">

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09

ing: 0px; font-family: Arial, sans-serif;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09
=3D"0" cellpadding=3D"0" cellspacing=3D"0" style=3D"border-spacing: 0px; fo=

nt-family: sans-serif; border-collapse: collapse; margin: 0px auto; width: =

340.188px;">

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09

6065350560616img-fluid m_1131456065350560616m-ta-center" style=3D"margin: 0=

px; padding-left: 10px; padding-right: 10px; font-family: Arial, sans-serif=

; font-size: 11px; line-height: 16px;">
0560616_Purolator_com" style=3D"color: rgb(17, 85, 204);" target=3D"_blank"=

>3D""
ers.com/wp-content/uploads/2025/04/Purolator-Shipping-Center-Surrey.webp" s=

tyle=3D"vertical-align: middle; max-width: 160px; display: inline; width: 1=

60px; height: 52px;" />


=09=09=09=09=09=09=09=09=09=09=09=09=09=09=09


=09=09=09=09=09=09=09=09=09=09=09=09

Purolator Phish Part 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 29 Dec 2025 23:44:04 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaTSX-00000000GK9-3zRr

for dave@doctor.nl2k.ab.ca;

Mon, 29 Dec 2025 23:43:57 -0700

Resent-From: The Doctor

Resent-Date: Mon, 29 Dec 2025 23:43:57 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from [160.119.249.218] (port=55396 helo=laststrawbrewpub.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vaIT4-000000008uT-1hoT

for doctor@doctor.nl2k.ab.ca;

Mon, 29 Dec 2025 11:59:50 -0700

Received: by laststrawbrewpub.com (Postfix, from userid 33)

id CBD44FBE6B; Mon, 29 Dec 2025 20:34:56 +0200 (SAST)

Date: Mon, 29 Dec 2025 20:31:34 +0200

To: doctor@doctor.nl2k.ab.ca

From: =?UTF-8?Q?Purolator_Express=C2=AE?=

Reply-To: no-reply@purolator.com

Subject: =?UTF-8?Q?=E2=9D=8C_Something_went_wrong_with_your_delivery_!?=

Message-ID: <8313c025e021f63ed93c1ab3d9ddb541@purolator.com>

List-Unsubscribe: mailto:bounce202-7APrSrkbLFN0c6k@purolator.com?subject=list-unsubscribe

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="15d816dbcb6bc784eae73cfb6b9f0b3dd"

Content-Transfer-Encoding: 8bit

X-Spam_score: 9.4

X-Spam_score_int: 94

X-Spam_bar: +++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: ❌ Something went wrong with your delivery ! Hello,



Content analysis details: (9.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[160.119.249.218 listed in dnsbl.ahbl.org]

[160.119.249.218 listed in dnsbl.ahbl.org]

[160.119.249.218 listed in dnsbl.ahbl.org]

[160.119.249.218 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[160.119.249.218 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[160.119.249.218 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[160.119.249.218 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[160.119.249.218 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

[160.119.249.218 listed in will-spam-for-food.eu.org]

2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the DBL blocklist

[URI: scanned.page]

0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail

domains are different

0.3 OFFER_2 BODY: Offers you Something (2)

0.3 OFFER BODY: Offers you Something

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 T_KAM_HTML_FONT_INVALID BODY: Test for Invalidly Named or Formatted

Colors in HTML

1.3 RDNS_NONE Delivered to internal network by a host with no rDNS

0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam

Subject: {SPAM?} =?UTF-8?Q?=E2=9D=8C_Something_went_wrong_with_your_delivery_!?=



This is a multi-part message in MIME format.



--15d816dbcb6bc784eae73cfb6b9f0b3dd

Content-Type: text/plain; charset=UTF-8

Content-Transfer-Encoding: 8bit



Â



















































Â















































Â



























































Â





❌ Something went wrong with your delivery !





Â







Â



































































Â

Chinese language spam part 3

Posted by Dave Yadallee on


=E6=89=93=E6=89=B0=E4=BA=86=EF=BC=81





=E6=88=91=E4=BB=AC=E4=B8=93=E6=B3=A8=E4=BA=8E=

=E5=B8=AE=E5=A4=96=E8=B4=B8=E5=85=AC=E5=8F=B8=E4=BD=8E=E6=88=90=E6=9C=AC=

=E8=8E=B7=E5=AE=A2=E3=80=82 =E5=86=99=E8=BF=99=E5=B0=81=E4=BF=A1=E6=98=

=AF=E6=83=B3=E5=B8=AE =E6=82=A8 =E4=BB=A5=E6=9B=B4=E4=BD=8E=E7=9A=84=

=E6=88=90=E6=9C=AC=E5=BC=80=E5=8F=91=E6=96=B0=E5=AE=A2=E6=88=B7=E3=80=82
>



=E6=88=91=E5=92=8C=E5=BE=88=E5=A4=9A=E5=A4=96=

=E8=B4=B8=E8=80=81=E6=9D=BF=E8=81=8A=E8=BF=87=EF=BC=8C=E5=A4=A7=E5=AE=B6=

=E6=9C=80=E5=A4=B4=E7=96=BC=E7=9A=84=E5=B0=B1=E6=98=AF=E5=BC=80=E5=8F=91=

=E4=BF=A1=E5=8F=91=E4=B8=8D=E5=87=BA=E5=8E=BB=EF=BC=8C=E6=88=96=E8=80=85=

=E8=90=A5=E9=94=80=E8=BD=AF=E4=BB=B6=E6=88=90=E6=9C=AC=E5=A4=AA=E9=AB=98=

=E3=80=82





=E4=B8=BA=E6=AD=A4=EF=BC=8C=E6=88=91=E4=BB=AC=

=E5=BC=80=E5=8F=91=E4=BA=86=E4=B8=80=E5=A5=97=E2=80=9C=E6=9E=81=E8=87=B4=

=E6=80=A7=E4=BB=B7=E6=AF=94=E2=80=9D=E7=9A=84=E9=82=AE=E4=BB=B6=E7=BE=A4=

=E5=8F=91=E7=B3=BB=E7=BB=9F=E3=80=82 =E4=B8=BA=E4=BB=80=E4=B9=88=E6=8E=

=A8=E8=8D=90=E6=82=A8=E8=AF=95=E8=AF=95=EF=BC=9F=E6=A0=B8=E5=BF=83=E5=8F=

=AA=E6=9C=89=E4=B8=A4=E7=82=B9=EF=BC=9A





=E7=A8=B3=E5=AE=9A=E4=B8=8D=E8=BF=9B=E5=9E=83=

=E5=9C=BE=E7=AE=B1=EF=BC=9A =E6=8B=A5=E6=9C=89=E4=BC=81=E4=B8=9A=E7=BA=

=A7=E4=BF=A1=E8=AA=89=E9=80=9A=E9=81=93=EF=BC=8C=E8=AE=A9 =E6=82=A8 =

=E7=9A=84=E5=BC=80=E5=8F=91=E4=BF=A1=E7=9B=B4=E8=BE=BE=E5=AE=A2=E6=88=B7=

=E6=94=B6=E4=BB=B6=E7=AE=B1=E3=80=82





=E4=BB=B7=E6=A0=BC=E9=9D=9E=E5=B8=B8=E4=BA=B2=

=E6=B0=91=EF=BC=9A =E4=B8=80=E5=B9=B4=E5=87=A0=E7=99=BE=E5=9D=97=E5=B0=

=B1=E8=83=BD=E6=97=A0=E9=99=90=E5=8F=91=E9=80=81=EF=BC=8C=E5=B8=AE=E6=82=

=A8=E7=9C=81=E4=B8=8B=E5=A4=A7=E7=AC=94=E8=BD=AF=E4=BB=B6=E8=B4=B9=E7=94=

=A8=E3=80=82





=E5=93=AA=E6=80=95=E6=82=A8=E6=98=AF=E6=96=B0=

=E6=89=8B=E4=B9=9F=E6=B2=A1=E4=BA=8B=EF=BC=8C=E8=BD=AF=E4=BB=B6=E6=93=8D=

=E4=BD=9C=E5=82=BB=E7=93=9C=E5=8C=96=EF=BC=8C=E6=88=91=E6=9C=89=E5=85=A8=

=E5=A5=97=E8=A7=86=E9=A2=91=E6=95=99=E7=A8=8B=E6=89=8B=E6=8A=8A=E6=89=8B=

=E6=95=99=E6=82=A8=E3=80=82





=E6=B2=A1=E6=9C=89=E5=AE=A2=E6=88=B7=E9=82=AE=

=E4=BB=B6=E5=88=97=E8=A1=A8=E7=9A=84=E6=88=91=E4=BB=AC=E4=B9=9F=E6=9C=89=

=E4=B8=93=E4=B8=9A=E8=BD=AF=E4=BB=B6=E5=B8=AE=E6=82=A8=E3=80=82





=E6=96=B9=E4=BE=BF=E5=9B=9E=E4=B8=AA=E2=80=

=9C1=E2=80=9D=E4=BA=86=E8=A7=A3=E4=B8=8B=E5=90=97=EF=BC=9F =E6=88=91=

=E7=BB=99=E6=82=A8=E7=9C=8B=E4=B8=AA=E5=90=8E=E5=8F=B0=E6=BC=94=E7=A4=BA=

=E5=9B=BE=EF=BC=8C=E4=BF=9D=E8=AF=81=E6=82=A8=E4=BC=9A=E6=84=9F=E5=85=B4=

=E8=B6=A3=E3=80=82





=E7=A5=9D=E7=88=86=E5=8D=95=EF=BC=8C





=E5=BE=AE=E4=BF=A1=EF=BC=9Aimextop





=C2=A0





Hi =C2=A0Hope you are doing well.





I help import/export companies find new clients=

effectively. The purpose of this email is to help you in developing new fo=

reign trade clients at a lower cost.





I often hear trade owners say: "My product cata=

logs are not being seen," or "Software is too pricey."





Therefore, we developed an "Ultimate Cost-Perfo=

rmance" email mass sending system. Here is why it is different from standar=

d software:







    =09


  1. =09

    Industrial-Grade Delivery Rate: Using dedicated sending channels to m=

    ake sure you 's cold emails land straight in the inbox.



    =09


    2. =09


  2. =09

    Unbeatable Cost: Unlimited mass sending for only a few hundred per ye=

    ar, saving your company 90% of software marketing costs.





    =09

    =C2=A0 =C2=A0=C2=A0



    =09






No experience needed. The system is very easy, =

and I will guide you with step-by-step videos.





Need client emails? We also provide tools to he=

lp you build your list.





Could you please reply with a "1"? I'll share a=

dashboard screenshot so you can see how it works.





Cheers,





WeChat: imextop


=C2=A0






ont-family:Arial,Helvetica,sans-serif;">=E5=A6=82=E6=9E=9C=E6=82=A8=

=E4=B8=8D=E6=83=B3=E5=86=8D=E6=94=B6=E5=88=B0=E8=AF=A5=E4=BA=A7=E5=93=81=

=E7=9A=84=E6=8E=A8=E8=8D=90=E9=82=AE=E4=BB=B6=EF=BC=8C=E8=AF=B7=E7=82=B9=

=E5=87=BB=C2=A0
h9711/track-url/xs666frydd6d1/10eb570f0e95cefd9c0d95c7dded886aebad53c3" tar=

get=3D"_blank">=E8=BF=99=E9=87=8C=E9=80=80=E8=AE=A2




ns/cv603hd7h9711/track-opening/xs666frydd6d1" alt=3D"" />







--_=_swift_1767031458_598f55304d0c02b11d16bb57e8ee9804_=_--

Chinese language spam part 2

Posted by Dave Yadallee on
=E6=88=91=E5=92=8C=E5=BE=88=E5=A4=9A=E5=A4=96=

=E8=B4=B8=E8=80=81=E6=9D=BF=E8=81=8A=E8=BF=87=EF=BC=8C=E5=A4=A7=E5=AE=B6=

=E6=9C=80=E5=A4=B4=E7=96=BC=E7=9A=84=E5=B0=B1=E6=98=AF=E5=BC=80=E5=8F=91=

=E4=BF=A1=E5=8F=91=E4=B8=8D=E5=87=BA=E5=8E=BB=EF=BC=8C=E6=88=96=E8=80=85=

=E8=90=A5=E9=94=80=E8=BD=AF=E4=BB=B6=E6=88=90=E6=9C=AC=E5=A4=AA=E9=AB=98=

=E3=80=82



=E4=B8=BA=E6=AD=A4=EF=BC=8C=E6=88=91=E4=BB=AC=E5=BC=80=

=E5=8F=91=E4=BA=86=E4=B8=80=E5=A5=97=E2=80=9C=E6=9E=81=E8=87=B4=E6=80=A7=

=E4=BB=B7=E6=AF=94=E2=80=9D=E7=9A=84=E9=82=AE=E4=BB=B6=E7=BE=A4=E5=8F=91=

=E7=B3=BB=E7=BB=9F=E3=80=82

=E4=B8=BA=E4=BB=80=E4=B9=88=E6=8E=A8=E8=8D=

=90=E6=82=A8=E8=AF=95=E8=AF=95=EF=BC=9F=E6=A0=B8=E5=BF=83=E5=8F=AA=E6=9C=

=89=E4=B8=A4=E7=82=B9=EF=BC=9A



=E7=A8=B3=E5=AE=9A=E4=B8=8D=E8=BF=9B=

=E5=9E=83=E5=9C=BE=E7=AE=B1=EF=BC=9A =E6=8B=A5=E6=9C=89=E4=BC=81=E4=B8=

=9A=E7=BA=A7=E4=BF=A1=E8=AA=89=E9=80=9A=E9=81=93=EF=BC=8C=E8=AE=A9 =

=E6=82=A8

=E7=9A=84=E5=BC=80=E5=8F=91=E4=BF=A1=E7=9B=B4=E8=BE=BE=E5=AE=

=A2=E6=88=B7=E6=94=B6=E4=BB=B6=E7=AE=B1=E3=80=82



=E4=BB=B7=E6=A0=BC=

=E9=9D=9E=E5=B8=B8=E4=BA=B2=E6=B0=91=EF=BC=9A

=E4=B8=80=E5=B9=B4=E5=87=

=A0=E7=99=BE=E5=9D=97=E5=B0=B1=E8=83=BD=E6=97=A0=E9=99=90=E5=8F=91=E9=80=

=81=EF=BC=8C=E5=B8=AE=E6=82=A8=E7=9C=81=E4=B8=8B=E5=A4=A7=E7=AC=94=E8=BD=

=AF=E4=BB=B6=E8=B4=B9=E7=94=A8=E3=80=82



=E5=93=AA=E6=80=95=E6=82=A8=

=E6=98=AF=E6=96=B0=E6=89=8B=E4=B9=9F=E6=B2=A1=E4=BA=8B=EF=BC=8C=E8=BD=AF=

=E4=BB=B6=E6=93=8D=E4=BD=9C=E5=82=BB=E7=93=9C=E5=8C=96=EF=BC=8C=E6=88=91=

=E6=9C=89=E5=85=A8=E5=A5=97=E8=A7=86=E9=A2=91=E6=95=99=E7=A8=8B=E6=89=8B=

=E6=8A=8A=E6=89=8B=E6=95=99=E6=82=A8=E3=80=82



=E6=B2=A1=E6=9C=89=

=E5=AE=A2=E6=88=B7=E9=82=AE=E4=BB=B6=E5=88=97=E8=A1=A8=E7=9A=84=E6=88=91=

=E4=BB=AC=E4=B9=9F=E6=9C=89=E4=B8=93=E4=B8=9A=E8=BD=AF=E4=BB=B6=E5=B8=AE=

=E6=82=A8=E3=80=82



=E6=96=B9=E4=BE=BF=E5=9B=9E=E4=B8=AA=E2=80=9C1=

=E2=80=9D=E4=BA=86=E8=A7=A3=E4=B8=8B=E5=90=97=EF=BC=9F

=E6=88=91=E7=BB=

=99=E6=82=A8=E7=9C=8B=E4=B8=AA=E5=90=8E=E5=8F=B0=E6=BC=94=E7=A4=BA=E5=9B=

=BE=EF=BC=8C=E4=BF=9D=E8=AF=81=E6=82=A8=E4=BC=9A=E6=84=9F=E5=85=B4=E8=B6=

=A3=E3=80=82



=E7=A5=9D=E7=88=86=E5=8D=95=EF=BC=8C



=E5=BE=AE=

=E4=BF=A1=EF=BC=9Aimextop



=C2=A0



Hi =C2=A0Hope you are doing well=

.



I help import/export companies find new clients effectively. The

p=

urpose of this email is to help you in developing new foreign trade

clien=

ts at a lower cost.



I often hear trade owners say: "My product catalog=

s are not being

seen," or "Software is too pricey."



Therefore, we de=

veloped an "Ultimate Cost-Performance" email mass

sending system. Here is=

why it is different from standard software:



=09*

Industrial-Grade =

Delivery Rate: Using dedicated sending channels to

make sure you 's cold =

emails land straight in the inbox.



=09*

Unbeatable Cost: Unlimited =

mass sending for only a few hundred per

year, saving your company 90% of =

software marketing costs.



=C2=A0 =C2=A0=C2=A0



No experience neede=

d. The system is very easy, and I will guide you

with step-by-step videos=

.



Need client emails? We also provide tools to help you build your lis=

t.



Could you please reply with a "1"? I'll share a dashboard screensho=

t

so you can see how it works.



Cheers,



WeChat: imextop

=C2=

=A0



=E5=A6=82=E6=9E=9C=E6=82=A8=E4=B8=8D=E6=83=B3=E5=86=8D=E6=94=B6=

=E5=88=B0=E8=AF=A5=E4=BA=A7=E5=93=81=E7=9A=84=E6=8E=A8=E8=8D=90=E9=82=AE=

=E4=BB=B6=EF=BC=8C=E8=AF=B7=E7=82=B9=E5=87=BB=C2=A0=E8=BF=99=E9=87=8C=

=E9=80=80=E8=AE=A2

[http://mail.imex.top/index.php/campaigns/cv603hd7h971=

1/track-url/xs666frydd6d1/10eb570f0e95cefd9c0d95c7dded886aebad53c3]



--_=_swift_1767031458_598f55304d0c02b11d16bb57e8ee9804_=_

Content-Type: text/html; charset=utf-8

Content-Transfer-Encoding: quoted-printable









=09=E8=81=8A=E8=81=8A=E5=A4=96=E8=B4=B8=E8=8E=B7=E5=AE=A2=E7=9A=<br /><br /> =84=E6=96=B0=E6=96=B9=E5=BC=8F