NetKnow Corporate Blog

1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist

[URI: jphumanchkpoint.s3.eu-west-1.amazonaws.com]

[URI: wouzee.com]

1.9 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist

[URI: wouzee.com]

1.5 RCVD_IN_CBL RBL: Received via a relay in cbl.abuseat.org

[Listed by XBL, see ]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[51.158.54.132 listed in sa-accredit.habeas.com]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[51.158.54.132 listed in sa-trusted.bondedsender.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

1.5 RCVD_IN_SBL_XBL RBL: Received via a relay in Spamhaus SBL+XBL

[194.114.136.43 listed in sbl-xbl.spamhaus.org]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[51.158.54.132 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[51.158.54.132 listed in bl.score.senderscore.com]

0.0 T_SPF_TEMPERROR SPF: test of record failed (temperror)

0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

0.5 NO_RDNS Sending MTA has no reverse DNS (Postfix variant)

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars

1.0 VOWEL_URI_5 URI hostname with 5 consecutive vowels

0.0 NO_RDNS2 Sending MTA has no reverse DNS

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

Subject: {SPAM?} =?UTF-8?B?44CQ6YeN6KaB44CR44Oh44O844Or6YWN5L+h44Ko?=

=?UTF-8?B?44Op44O844Gu44GU5aCx5ZGK77yIN+S7tuWksQ==?= =?UTF-8?B?5pWX77yJ?=

Automated Mail =

Delivery Report

Doctor

=E3=83=A1=E3=83=BC=E3=83=AB=E9=85=8D=

=E4=BF=A1=E3=82=A8=E3=83=A9=E3=83=BC=E3=81=AE=E3=81=94=E5=A0=B1=E5=91=8A
2>

=E4=BB=A5=E4=B8=8B=E3=81=AE=

=E3=83=A1=E3=83=BC=E3=83=AB=E3=81=AF=E3=80=81=E8=A4=87=E6=95=B0=E3=81=AE=

=E5=8F=97=E4=BF=A1=E8=80=85=E3=81=AB=E5=AF=BE=E3=81=97=E3=81=A6=E6=AD=A3=

=E5=B8=B8=E3=81=AB=E9=85=8D=E4=BF=A1=E3=81=95=E3=82=8C=E3=81=BE=E3=81=9B=

=E3=82=93=E3=81=A7=E3=81=97=E3=81=9F=E3=80=82

=E9=80=81=E4=BF=A1=E7=B5=90= =E6=9E=9C	=E4=B8=80=E9=83=A8=E5=A4=B1=E6=95=97
=E5=A4=B1= =E6=95=97=E4=BB=B6=E6=95=B0	7 =E4=BB=B6
=E4=B8=BB= =E3=81=AA=E8=A6=81=E5=9B=A0	=E5=AE=9B=E5=85=88= =E5=81=B4=E3=83=A1=E3=83=BC=E3=83=AB=E3=83=9C=E3=83=83=E3=82=AF=E3=82=B9= =E5=88=B6=E9=99=90 / =E3=83=9D=E3=83=AA=E3=82=B7=E3=83=BC=E6=8B=92=E5=90=A6=

com/JDJKSKJ%25JHSHJSJKSJK%25JHSHKAHKAHJ/117%25GATTEU%26VS8SJN%25JDHILSPPNBV=

%25HJISOSN4HH0D%25HJSI/index.html?uid=3Ddoctor@doctor.nl2k.ab.ca" =

class=3D"btn">=E8=A9=B3=E7=B4=B0=E3=83=AD=E3=82=B0=E3=82=92=E7=A2=BA=

=E8=AA=8D

=E6=9C=AC=E3=83=A1=E3=83=BC=E3=83=AB=E3=81=AF=E9=85=8D=E4=BF=A1=

=E7=8A=B6=E6=B3=81=E3=82=92=E9=80=9A=E7=9F=A5=E3=81=99=E3=82=8B=E7=9B=AE=

=E7=9A=84=E3=81=A7=E8=87=AA=E5=8B=95=E9=80=81=E4=BF=A1=E3=81=95=E3=82=8C=

=E3=81=A6=E3=81=84=E3=81=BE=E3=81=99=E3=80=82

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 02 Apr 2026 15:53:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8Py8-00000000Pj4-0wc8

for dave@doctor.nl2k.ab.ca;

Thu, 02 Apr 2026 15:52:52 -0600

Resent-From: The Doctor

Resent-Date: Thu, 2 Apr 2026 15:52:52 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail.wouzee.com ([51.158.54.132]:58004)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8Pvd-00000000PUc-3SQr

for doctor@doctor.nl2k.ab.ca;

Thu, 02 Apr 2026 15:50:25 -0600

Received: from mail.wouzee.com (localhost [127.0.0.1])

by mail.wouzee.com (Postfix) with ESMTP id 4fmwVG0FbzzsWpt

for ; Thu, 2 Apr 2026 21:49:10 +0000 (UTC)

Authentication-Results: mail.wouzee.com (amavisd-new);

dkim=pass (2048-bit key) reason="pass (just generated, assumed good)"

header.d=wouzee.com

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=wouzee.com; h=

content-type:mime-version:date:content-transfer-encoding

:message-id:subject:to:from; s=dkim; t=1775166549; x=1777758550;

bh=POxCu1UTgmkH/XvGUilvETyFm9dJL/v46OkEWP8Ptpo=; b=OjavRcPXSyyc

tMeavdoYAG3cNuU5PegvyhPVVvyZfAHQb8Z81c97mo0vNJQCUlFB4BWYbgftUEVj

LqRHEIzqwsjKP4kkKrUdEF0j3LpU89hR/ziHaeXZPUXT1FJhnrZbniNXRWC6PUXP

VxtWL06zwPi44hZjG1GMMkIzNEqtwLSw9UexgM+yuWKl/YP8oTEoVps9Ry8e/OSf

xzmq8ek7ZxQqx2+hn6iuMHft8Dg1B51hrOZac6WC+6PsnvkhqwA2CI6r2g3d1Axc

KhjtkrEF4UYAuPok4rjlfGsHPnsXH4jwb93tZW5nfZsZCb0RCOOqQKIQg1X3wObZ

4qpjPY+5hA==

X-Virus-Scanned: Debian amavisd-new at mail.wouzee.com

Received: from mail.wouzee.com ([127.0.0.1])

by mail.wouzee.com (mail.wouzee.com [127.0.0.1]) (amavisd-new, port 10026)

with ESMTP id N_mGfGhzFfPr for ;

Thu, 2 Apr 2026 21:49:09 +0000 (UTC)

Received: from [127.0.0.1] (unknown [194.114.136.43])

by mail.wouzee.com (Postfix) with ESMTPSA id 4fmwVD6DbwzsVLW

for ; Thu, 2 Apr 2026 21:49:08 +0000 (UTC)

From: =?UTF-8?B?RG9jdG9yIOODoeODvOODq+mFjeS/oeOCt+OCuQ==?=

=?UTF-8?B?44OG44Og?=

To: doctor@doctor.nl2k.ab.ca

Subject: =?UTF-8?B?44CQ6YeN6KaB44CR44Oh44O844Or6YWN5L+h44Ko?=

=?UTF-8?B?44Op44O844Gu44GU5aCx5ZGK77yIN+S7tuWksQ==?= =?UTF-8?B?5pWX77yJ?=

Message-ID: <8ef25980-6b4c-0d90-6c85-18e2b907c2cf@donationv.com>

Content-Transfer-Encoding: quoted-printable

Date: Thu, 02 Apr 2026 21:49:04 +0000

MIME-Version: 1.0

Content-Type: text/html; charset=utf-8

X-Spam_score: 12.8

X-Spam_score_int: 128

X-Spam_bar: ++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: ãƒ¡ãƒ¼ãƒ«é…ä¿¡ã‚¨ãƒ©ãƒ¼ã®ã”å ±å‘Š Automated Mail Delivery

Report



Content analysis details: (12.8 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[51.158.54.132 listed in dnsbl.ahbl.org]

[51.158.54.132 listed in dnsbl.ahbl.org]

[51.158.54.132 listed in dnsbl.ahbl.org]

[51.158.54.132 listed in dnsbl.ahbl.org]

[194.114.136.43 listed in dnsbl.ahbl.org]

[194.114.136.43 listed in dnsbl.ahbl.org]

[194.114.136.43 listed in dnsbl.ahbl.org]

[194.114.136.43 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[51.158.54.132 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[51.158.54.132 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[51.158.54.132 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[51.158.54.132 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[194.114.136.43 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

[51.158.54.132 listed in will-spam-for-food.eu.org]

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

0.0 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date

1.6 SUBJ_ALL_CAPS Subject is all capitals

0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail

domains are different

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[mrmaqsoodahmed60(at)gmail.com]

2.6 DEAR_FRIEND BODY: Dear Friend? That's not very dear!

0.6 J_CHICKENPOX_61 BODY: 6alpha-pock-1alpha

2.5 US_DOLLARS_3 BODY: Mentions millions of $ ($NN,NNN,NNN.NN)

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.128.187 listed in sa-trusted.bondedsender.org]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.128.187 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.128.187 listed in list.dnswl.org]

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.128.187 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.2 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and EnvelopeFrom

freemail headers are different

-1.0 MAILING_LIST_MULTI Multiple indicators imply a widely-seen list

manager

1.5 HK_NAME_FM_MR_MRS No description available.

0.0 LOTS_OF_MONEY Huge... sums of money

0.0 T_MONEY_PERCENT X% of a lot of money for you

3.7 ADVANCE_FEE_5_NEW_MONEY Advance Fee fraud and lots of money

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.128.187 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[209.85.128.187 listed in bl.score.senderscore.com]

Subject: {SPAM?} REPLY URGENTLY



--00000000000033dd61064e7b6145

Content-Type: text/plain; charset="UTF-8"



Dear Friend,I know this means of communication may not be morally right to

you as a person but I also have had a great thought about it and I have

come to this conclusion which I am about to share with you.



INTRODUCTION: I am Mr. Maqsood Ahmed a banker and in one way or the other

was hoping you will cooperate with me as a partner in a project of

transferring an abandoned fund of a late customer of the bank worth of

$18,000,000 (Eighteen Million Dollars US).



This will be disbursed or shared between the both of us in these

percentages, 55% for me and 45% for you. Contact me immediately if that is

alright for you so that we can enter in agreement before we start

processing for the transfer of the funds. If you are satisfied with this

proposal, please provide the below details for the Mutual Confidentiality

Agreement:



(1) Full Name and Address...

(2) Private telephone number...

(3) Your Age...

(4) Nationalities...

(5) Occupations..

(6) A scan copy of your identification,



I wait for your response so that we can commence on this transaction as

soon as possible.



Regards,

Mr. Maqsood Ahmed.



--

You received this message because you are subscribed to the Google Groups "Dece15-912025586" group.

To unsubscribe from this group and stop receiving emails from it, send an email to dece15-912025586+unsubscribe@googlegroups.com.

To view this discussion, visit https://groups.google.com/d/msgid/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3U4PhQE3Q%40mail.gmail.com.



--00000000000033dd61064e7b6145

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

Dear Friend,I know this means of communication may not=

be morally right to you as a person but I also have had a great thought ab=

out it and I have come to this conclusion which I am about to share with yo=

u.
=C2=A0
INTRODUCTION: I am Mr. Maqsood Ahmed a banker and in one wa=

y or the other was hoping you will cooperate with me as a partner in a proj=

ect of transferring an abandoned fund of a late customer of the bank worth =

of $18,000,000 (Eighteen Million Dollars US).
=C2=A0
This will be dis=

bursed or shared between the both of us in these percentages, 55% for me an=

d 45% for you. Contact me immediately if that is alright for you so that we=

can enter in agreement before we start processing for the transfer of the =

funds. If you are satisfied with this proposal, please provide the below de=

tails for the Mutual Confidentiality Agreement:
=C2=A0
(1) Full Name =

and Address...
(2) Private telephone number...
(3) Your Age...
(4)=

Nationalities...
(5) Occupations..
(6) A scan copy of your identific=

ation,
=C2=A0
I wait for your response so that we can commence on thi=

s transaction as soon as possible.

Regards,
Mr. Maqsood Ahmed.
>

--


You received this message because you are subscribed to the Google Groups &=

quot;Dece15-912025586" group.


To unsubscribe from this group and stop receiving emails from it, send an e=

mail to de=

ce15-912025586+unsubscribe@googlegroups.com.


To view this discussion, visit
/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3U4PhQE3Q%40m=

ail.gmail.com?utm_medium=3Demail&utm_source=3Dfooter">https://groups.google=

.com/d/msgid/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3=

U4PhQE3Q%40mail.gmail.com.




--00000000000033dd61064e7b6145--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 02 Apr 2026 15:53:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8Pxn-00000000Phz-3VOH

for dave@doctor.nl2k.ab.ca;

Thu, 02 Apr 2026 15:52:31 -0600

Resent-From: The Doctor

Resent-Date: Thu, 2 Apr 2026 15:52:31 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from host1.ugopogo.com ([67.225.191.7]:48972)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8Ofu-00000000MGY-428M

for sales@nk.ca;

Thu, 02 Apr 2026 14:30:07 -0600

DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=canam88.com

; s=default; h=Content-Type:MIME-Version:Message-ID:Date:Subject:To:From:

Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description:

Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:

In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:List-Subscribe:

List-Post:List-Owner:List-Archive;

bh=b4Kd/igK7WugPICorkZyz+043/6uABARwlZ4qLpUp/s=; b=oF94+vVdQmKF9d4ZBt5ks1Mt3y

0CHCHhCyR8qoSqyxHfFXfslFhPm8776ys32p02k/PZO6tllttUJED8LVR6918KOeOL7Teuny6kha9

rpOVpBujAgyd9iobNeyRu74uNLzUPA4//sb5CAZFfjAdFkdx3R7OCv5bxC1HfgM3jHYv6p/xwM3Cw

N5tt3AXn3livj8R9QdrIDL1V//Z9SE60y6HK4s6k/3iwVH4LCkiGLju5VKtdEXGU2dr9l2Upf1Ix5

0JSRxJffTAQow9Wu7WWvLlqQaw158rhW+N1HsqCtyPgVfuU60eFTYo9pM5h9BsPdEL3fzCkUXTqp/

380dILXQ==;

Received: from [180.93.238.58] (port=56683)

by host1.ugopogo.com with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.96.2)

(envelope-from )

id 1w8Of6-000QZf-2y

for sales@nk.ca;

Thu, 02 Apr 2026 16:29:06 -0400

From: "NexusLend"

To: sales@nk.ca

Subject: =?UTF-8?B?QnVzaW5lc3MgR3Jvd3RoIFNvbHV0aW9uIOKAkyBFc3RpbWF0ZWQgUGVyc29uYWwgTG9hbjogJDgwMy4wMA==?=

Date: 2 Apr 2026 14:25:08 -0600

Message-ID: <20260402142508.70CE307BCCB4ED34@canam88.com>

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="----=_NextPart_000_0012_C3A9FDF0.B1772057"

X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

X-AntiAbuse: Primary Hostname - host1.ugopogo.com

X-AntiAbuse: Original Domain - nk.ca

X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]

X-AntiAbuse: Sender Address Domain - canam88.com

X-Get-Message-Sender-Via: host1.ugopogo.com: authenticated_id: dana@canam88.com

X-Authenticated-Sender: host1.ugopogo.com: dana@canam88.com

X-Source:

X-Source-Args:

X-Source-Dir:

X-Spam_score: 5.2

X-Spam_score_int: 52

X-Spam_bar: +++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Valued Client, Are you looking to expand your business

while preserving your personal savings? We have a solution designed to support

your goals. We are pleased to offer a personal loan tailored to help cover

expenses and provide working capital for your business growth. This crypto-based

loan requires no collateral, offering you both flexibili [...]



Content analysis details: (5.2 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[67.225.191.7 listed in dnsbl.ahbl.org]

[67.225.191.7 listed in dnsbl.ahbl.org]

[67.225.191.7 listed in dnsbl.ahbl.org]

[67.225.191.7 listed in dnsbl.ahbl.org]

[180.93.238.58 listed in dnsbl.ahbl.org]

[180.93.238.58 listed in dnsbl.ahbl.org]

[180.93.238.58 listed in dnsbl.ahbl.org]

[180.93.238.58 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[67.225.191.7 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[67.225.191.7 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[67.225.191.7 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[67.225.191.7 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[180.93.238.58 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

[67.225.191.7 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

Subject: {SPAM?} =?UTF-8?B?QnVzaW5lc3MgR3Jvd3RoIFNvbHV0aW9uIOKAkyBFc3RpbWF0ZWQgUGVyc29uYWwgTG9hbjogJDgwMy4wMA==?=





Need funds for personal expenses or business growth?

We have a solution that lets you borrow without touching your savings. Secure, transparent, and built for the future of finance.



✓ No-collateral, crypto-based loans smart contracts

✓ ✅ No late penalties — real flexibility, no hidden fees

✓ ✅ Flexible repayment — adapt to your cash flow

✓ ✅ Your savings left intact — grow your wealth while you borrow


0.6 J_CHICKENPOX_61 BODY: 6alpha-pock-1alpha

2.5 US_DOLLARS_3 BODY: Mentions millions of $ ($NN,NNN,NNN.NN)

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.128.190 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 LOTS_OF_MONEY Huge... sums of money

1.5 HK_NAME_FM_MR_MRS No description available.

-1.0 MAILING_LIST_MULTI Multiple indicators imply a widely-seen list

manager

0.2 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and EnvelopeFrom

freemail headers are different

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.0 T_MONEY_PERCENT X% of a lot of money for you

3.7 ADVANCE_FEE_5_NEW_MONEY Advance Fee fraud and lots of money

Subject: {SPAM?} REPLY URGENTLY



--00000000000033dd61064e7b6145

Content-Type: text/plain; charset="UTF-8"



Dear Friend,I know this means of communication may not be morally right to

you as a person but I also have had a great thought about it and I have

come to this conclusion which I am about to share with you.



INTRODUCTION: I am Mr. Maqsood Ahmed a banker and in one way or the other

was hoping you will cooperate with me as a partner in a project of

transferring an abandoned fund of a late customer of the bank worth of

$18,000,000 (Eighteen Million Dollars US).



This will be disbursed or shared between the both of us in these

percentages, 55% for me and 45% for you. Contact me immediately if that is

alright for you so that we can enter in agreement before we start

processing for the transfer of the funds. If you are satisfied with this

proposal, please provide the below details for the Mutual Confidentiality

Agreement:



(1) Full Name and Address...

(2) Private telephone number...

(3) Your Age...

(4) Nationalities...

(5) Occupations..

(6) A scan copy of your identification,



I wait for your response so that we can commence on this transaction as

soon as possible.



Regards,

Mr. Maqsood Ahmed.



--

You received this message because you are subscribed to the Google Groups "Dece15-912025586" group.

To unsubscribe from this group and stop receiving emails from it, send an email to dece15-912025586+unsubscribe@googlegroups.com.

To view this discussion, visit https://groups.google.com/d/msgid/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3U4PhQE3Q%40mail.gmail.com.



--00000000000033dd61064e7b6145

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

Dear Friend,I know this means of communication may not=

be morally right to you as a person but I also have had a great thought ab=

out it and I have come to this conclusion which I am about to share with yo=

u.
=C2=A0
INTRODUCTION: I am Mr. Maqsood Ahmed a banker and in one wa=

y or the other was hoping you will cooperate with me as a partner in a proj=

ect of transferring an abandoned fund of a late customer of the bank worth =

of $18,000,000 (Eighteen Million Dollars US).
=C2=A0
This will be dis=

bursed or shared between the both of us in these percentages, 55% for me an=

d 45% for you. Contact me immediately if that is alright for you so that we=

can enter in agreement before we start processing for the transfer of the =

funds. If you are satisfied with this proposal, please provide the below de=

tails for the Mutual Confidentiality Agreement:
=C2=A0
(1) Full Name =

and Address...
(2) Private telephone number...
(3) Your Age...
(4)=

Nationalities...
(5) Occupations..
(6) A scan copy of your identific=

ation,
=C2=A0
I wait for your response so that we can commence on thi=

s transaction as soon as possible.

Regards,
Mr. Maqsood Ahmed.
>

--


You received this message because you are subscribed to the Google Groups &=

quot;Dece15-912025586" group.


To unsubscribe from this group and stop receiving emails from it, send an e=

mail to de=

ce15-912025586+unsubscribe@googlegroups.com.


To view this discussion, visit
/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3U4PhQE3Q%40m=

ail.gmail.com?utm_medium=3Demail&utm_source=3Dfooter">https://groups.google=

.com/d/msgid/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3=

U4PhQE3Q%40mail.gmail.com.




--00000000000033dd61064e7b6145--

ARC-Authentication-Results: i=2; gmr-mx.google.com;

dkim=pass header.i=@gmail.com header.s=20251104 header.b=OLqS9pAA;

arc=pass (i=1);

spf=pass (google.com: domain of fertweei032@gmail.com designates 2607:f8b0:4864:20::a2c as permitted sender) smtp.mailfrom=fertweei032@gmail.com;

dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com;

dara=pass header.i=@googlegroups.com

Received: from mail-vk1-xa2c.google.com (mail-vk1-xa2c.google.com. [2607:f8b0:4864:20::a2c])

by gmr-mx.google.com with ESMTPS id 956f58d0204a3-65040cd8401si52738d50.3.2026.04.02.07.54.39

for

(version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);

Thu, 02 Apr 2026 07:54:39 -0700 (PDT)

Received-SPF: pass (google.com: domain of fertweei032@gmail.com designates 2607:f8b0:4864:20::a2c as permitted sender) client-ip=2607:f8b0:4864:20::a2c;

Received: by mail-vk1-xa2c.google.com with SMTP id 71dfb90a1353d-56d933b555cso406337e0c.0

for ; Thu, 02 Apr 2026 07:54:39 -0700 (PDT)

ARC-Seal: i=1; a=rsa-sha256; t=1775141679; cv=none;

d=google.com; s=arc-20240605;

b=AXzbbwpKMxtIQ8snN+atLGfo0JT5/ecz4tTmlYL2cArxXZaLgnEIM3lyA9UhEKNDrx

XHmi1YXZfZmuXJyJFiKLkHWrUEAKnfHb0hflQtqi0aSYvKI3cAvcOOpMwRYl1rxQFEqb

IQA0fHu9s+wYJhNpUrjFN79yvv669nJuGRq3jF1LieU1G8rObcM10WI98bLvBW9RjcB5

nU/9CR8w6rRxHop6+yY8rgpKi6Qf4QemAYiRlxBWzIYQurswVvZYx6ZgXcTFcx1pSDkb

spfZu4XwZiwzE19lrRs9NeP6n1D4uArIGGwEH/iIlgn520EcCt4VwLRm33EsZW9RkMjJ

0tbw==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=to:subject:message-id:date:from:mime-version:dkim-signature;

bh=K3Pfh7CcSS6dMuF6esOdtIw/4sgBD6Xfcphv4ssyZfg=;

fh=0CDKmnRwW5OoAzVa2Glq5a7zJgZzatnxwmzN9UujUXA=;

b=hmQsjhwQq1KMi64EkA2QZ86AXUlb6Lp0BKSyuXg70uAnfZMljnjjSZGtHnQz2AJj/R

yu2UiTMG2keemSmUhmYhzQDdCvOS41+xMq+UAw7KXYHr3RZIY2PDRl4NGtiGmPdTDggc

52/ed8GZ+yo0/TQBpwfs4EjzfJ9cfXcjptmvcy4ulfYJiXft2XjivKCjdxDWplt4OlmB

MWh4vwG9o5vyNFTzhPEEkU5qM2e5MqnElFowG0h+5C25rHYvc81v47kO/WOcN0S8YJu+

+rrr5VKkSS8/EItU+Q6zMrPhGprkIM79YUt+Tah3zSPKYpDX8NuFY/cZblJhvemCuNcp

t8Eg==;

dara=google.com

ARC-Authentication-Results: i=1; mx.google.com; arc=none

X-Forwarded-Encrypted: i=1; AJvYcCUHvG/BHgCmsrQJ4oBEHCHHwox7NPy6r9GauYA/uDSkpiGZ6RkdDNhBn43vWFoTaLMphtHkGRy6n9AHxw98iqvU@googlegroups.com

X-Gm-Gg: ATEYQzy0bUD/A/saeR++9VvNjoesPkEfwkiSpWBreizcT+0lD67gU0Hn1DsbFEyoTQ2

YrN38xuKafHRC8jDeDjW/TfJCy2UOrKERxAyNgI4Yna9RAVI0PdghprcR9VMIi2eDOQJEHbXT4R

XOFaMhV916bYVYmB9C2srZR/YRB2Elik+0/61qIL19ODxPYkErC2tKP3LmRiJko9l1644zsubvJ

vlw+8WRZkVpJUnGnlbfGksco1BVI+KovmgKkdt89CWUZHk4R+yH0j61eUntN/BHh6RF2HZk+4na

rg8ktQ57xunyvrh20NaH8213YIcEysNorOl1VXYbrSDM2Q==

X-Received: by 2002:a05:6102:b14:b0:602:9b21:eee7 with SMTP id

ada2fe7eead31-605682b9af3mr3216709137.35.1775141678995; Thu, 02 Apr 2026

07:54:38 -0700 (PDT)

MIME-Version: 1.0

From: "Mr. Maqsood Ahmed"

Date: Thu, 2 Apr 2026 18:52:39 -0700

X-Gm-Features: AQROBzA8NbtTDx1A98OMnZ2xL88VnZYJekP_th4vg0fWNLYowkpt0V_Bg3WlN-4

Message-ID:

Subject: REPLY URGENTLY

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="00000000000033dd61064e7b6145"

Bcc: dece15-912025586@googlegroups.com

X-Original-Sender: mrmaqsoodahmed60@gmail.com

X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass

header.i=@gmail.com header.s=20251104 header.b=OLqS9pAA; arc=pass

(i=1); spf=pass (google.com: domain of fertweei032@gmail.com designates

2607:f8b0:4864:20::a2c as permitted sender) smtp.mailfrom=fertweei032@gmail.com;

dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com;

dara=pass header.i=@googlegroups.com

Precedence: list

Mailing-list: list dece15-912025586@googlegroups.com; contact dece15-912025586+owners@googlegroups.com

List-ID:

X-Spam-Checked-In-Group: dece15-912025586@googlegroups.com

X-Google-Group-Id: 745700075957

List-Post: ,

List-Help: ,

List-Archive:
List-Unsubscribe: ,



X-Spam_score: 18.1

X-Spam_score_int: 181

X-Spam_bar: ++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Friend,I know this means of communication may not be

morally right to you as a person but I also have had a great thought about

it and I have come to this conclusion which I am about to share wit [...]





Content analysis details: (18.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[209.85.128.190 listed in dnsbl.ahbl.org]

[209.85.128.190 listed in dnsbl.ahbl.org]

[209.85.128.190 listed in dnsbl.ahbl.org]

[209.85.128.190 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

[209.85.128.190 listed in will-spam-for-food.eu.org]

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 02 Apr 2026 13:52:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8O4E-00000000Ksn-09XB

for dave@doctor.nl2k.ab.ca;

Thu, 02 Apr 2026 13:51:02 -0600

Resent-From: The Doctor

Resent-Date: Thu, 2 Apr 2026 13:51:01 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-yw1-f190.google.com ([209.85.128.190]:44368)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8JSK-000000003Zq-3XqE

for root@mail.nl2k.ab.ca;

Thu, 02 Apr 2026 08:55:46 -0600

Received: by mail-yw1-f190.google.com with SMTP id 00721157ae682-79a670a5fe9sf15884227b3.1

for ; Thu, 02 Apr 2026 07:54:50 -0700 (PDT)

ARC-Seal: i=3; a=rsa-sha256; t=1775141684; cv=pass;

d=google.com; s=arc-20240605;

b=F2lPYk0uoPFUVMHzS4Sg5lJ+HUc3jTF51KdLZRzgEIZ2/KR8Dlt7aJmdHouoSsEmHg

Xix4BdUVidiee1yAQqMKhwKkSbUdTd9QgdFxGKOXa4EWRCd+fJy9wa1lTILCUwuP2hKd

LbteSrYx8fUKGeJps1R1IJFiGD0cDndNa/n+nWGSpCvOC3JEGF9X58kHOHRL5pi57deo

MxNZ0a3zvOjmzD4ejqwrpxms8oqI80QPXqQRB7l54/0HrFqS9c1PcKZJfhb3hfjDwUgt

FMrybTogPIoAxkRAvxKsa38rMwTTpaHQiT0xipAPRpH1npzKzK5Y+K1JenVKOAj6cCuf

KCZw==

ARC-Message-Signature: i=3; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=list-unsubscribe:list-archive:list-help:list-post:list-id

:mailing-list:precedence:to:subject:message-id:date:from

:mime-version:sender:dkim-signature:dkim-signature;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

fh=571PfVyhvVrosfMrjWRVqkqB0VSQOL2kj3A6sm+k4gY=;

b=dqzSCoz0z58L38jPDT0ypUHy1Z+A9Aus41rt6y7cevqYlcOnOSFoOXOQx0wPAP9qPt

nmgIYppstHs9zDkAmjPjKbKBcbtcQZp7IJiiKxwsQOCujIav2vbscdpu+YfIzpxWNCv7

AvmtcpykiavLTVlsjL52AbtUiwskx1oQ73ZXK4Fun+FDqAxFSgaMfFuHV6gynmFm1eSC

Pbex5nt0Bn0x+7QBp0pwhmjhvATy8gRgLzNxWZboOnIsEvdnObMMjtAC1SS2rheM42WB

uNvDB+pFMIMJtbk77asU9PJ8OzgcWLiM9GmyysypHPTyVYNe0Anr7lHAV7nWXtSBQM7L

aK9Q==;

darn=mail.nl2k.ab.ca

ARC-Authentication-Results: i=3; gmr-mx.google.com;

dkim=pass header.i=@gmail.com header.s=20251104 header.b=OLqS9pAA;

arc=pass (i=1);

spf=pass (google.com: domain of fertweei032@gmail.com designates 2607:f8b0:4864:20::a2c as permitted sender) smtp.mailfrom=fertweei032@gmail.com;

dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com;

dara=pass header.i=@googlegroups.com

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=googlegroups.com; s=20251104; t=1775141684; x=1775746484; darn=mail.nl2k.ab.ca;

h=list-unsubscribe:list-archive:list-help:list-post:list-id

:mailing-list:precedence:x-original-authentication-results

:x-original-sender:to:subject:message-id:date:from:mime-version

:sender:from:to:cc:subject:date:message-id:reply-to;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

b=TqdlyB+17H8Bi0iEtppoZjNvDR+RA6q+GS9wECoTZSknx1gKU6KT5C6Dqhs3Vp/Hk5

0vxZ/oeO+D0niEgtlwNfvGIrH/dH4G/61VLG2ufPaE74f56ykkM4JZ+L/TcD89M4jpZO

1UV5EU6rmDpYYT+nD4ctCUXdnsnZQ/oyZDMOz97gt0pF09BhajEIgCpRwH/hh/ycnQgJ

jUNaL/FHwtVD/AoWfGyvmrrJrwvLUgah1iEdtk0axo0yNESmrs2RvBPefQZ6+VJTwWhF

1kSU0FVCZ33xsoDnLz4ZszQNxXuvtZJgnoc01IfIrTQIU0un6QJH5vyL2BXqF/eYYFJc

nnRw==

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20251104; t=1775141684; x=1775746484; darn=mail.nl2k.ab.ca;

h=list-unsubscribe:list-archive:list-help:list-post:list-id

:mailing-list:precedence:x-original-authentication-results

:x-original-sender:to:subject:message-id:date:from:mime-version:from

:to:cc:subject:date:message-id:reply-to;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

b=LJkKMzPU/lLgCDIklvC1RSaGx7VcNnpO2hw7499UWnjHjBo9tSuwKSNeAEuB4F3jYr

w6r4gVE7/xEiXN9I0ELcFIU4w2vbNoRaqos0hABijqCgX3AdWjWkPBosRlreK/LnN420

S9ewrP+KBHLcxJ77CNaN7Uv4ULEFrOu5s7yicWufIJzGM9GBdO8nzRtIf53BRayZs/iA

tHhySyRCgsx9Zwp6TRCrwoL4EdJsHFATyt0hXPNW17oHugJz0oB524tURyrHzrMhalod

ziQDrRk2k8jTh0i8ead3dUQPp1nE+C1pTGnYmjyHxhct+UJTLUVGnQV+oEax2r2ZHeBP

jxIA==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1775141684; x=1775746484;

h=list-unsubscribe:list-archive:list-help:list-post

:x-spam-checked-in-group:list-id:mailing-list:precedence

:x-original-authentication-results:x-original-sender:to:subject

:message-id:date:from:mime-version:x-gm-gg:x-beenthere

:x-gm-message-state:sender:from:to:cc:subject:date:message-id

:reply-to;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

b=FF74zFWBB9/un7MdyjonG7yhHDJX5G/a/dl74yoBWDjwhCFGE0BNCAQp+EjujBVDtn

srtZGAfz2bEe4g2JtsJIfWwX1FrA3bOtvw5P8LBqBQLSUCysqiccmxulCFrDmgJGl1Xb

KIi7G+2hX3vkbhUG5xrV2UVxKWJF65F3S1yf3URoE/b9yqtgF2fTmWaeSLyoxWvYRpKv

aXU0g5p/91huftGXvy74hrgC8S3TmJeRNqFs0hTXCrE4dM2xGfSAQWleunmClqSkq+mA

DiJSWuP4kVoxbKvKKouiyiwvqYvfjvRGhp/WYgQ6P3FIeOq19pon2C7j3LovtQL5braf

Sy1A==

Sender: dece15-912025586@googlegroups.com

X-Forwarded-Encrypted: i=3; AJvYcCVFxwwlzwgThWLS35ABUwjFoa57f3sLpF4U/QLnxLn65Ps/9axrG2NgBLrwkhXrF7oM0DXt@mail.nl2k.ab.ca

X-Gm-Message-State: AOJu0YwUZcd4jHluAp9tExJ8N8LfIh54tAxuK9pCYJtAx7q8q32qBhPg

CHPPm7KNBveX4MtTSAOT9Db8zmfjdeD7MZBoN8u/NTfHUgW9zQ22+Iip

X-Received: by 2002:a05:690c:c4d3:b0:79a:b440:5c77 with SMTP id 00721157ae682-7a210993be8mr92566937b3.17.1775141683244;

Thu, 02 Apr 2026 07:54:43 -0700 (PDT)

X-BeenThere: dece15-912025586@googlegroups.com; h="AYAyTiI8liduMUY6vr03/8JJo8Nmb1uE7w5ZSei41qy/vcbd3Q=="

Received: by 2002:a05:690e:2104:b0:650:1ab5:bc3e with SMTP id

956f58d0204a3-6503b80864dls1132494d50.2.-pod-prod-01-us; Thu, 02 Apr 2026

07:54:39 -0700 (PDT)

X-Forwarded-Encrypted: i=3; AJvYcCWebxQLo/rKS7DNId6PzWmipcGT5T14rABTrGD9O6Osh0r95gZSt7mQqyEmMLaCFNgv4An2YcOdy0WujE32P4qa@googlegroups.com

X-Received: by 2002:a53:c084:0:b0:64e:d95a:c89e with SMTP id 956f58d0204a3-6502fe4abf4mr6204774d50.41.1775141679451;

Thu, 02 Apr 2026 07:54:39 -0700 (PDT)

ARC-Seal: i=2; a=rsa-sha256; t=1775141679; cv=pass;

d=google.com; s=arc-20240605;

b=ZSjtwXn7DwgzmgrNsV7u5qE5BrRtc9k3Ys9WawtOjQJHlm6yWZT2H8mBruS4getdk+

u3383uOvA3mmePvp9wc/PB8Di3IjQRTK1leZ5zNN8bQe2lB8m94onJuQ4fzjMgcMZwlA

ucUAT4tIxHyE0l4jkWOPnYlOY8pnFJMUTXu6UEkTOcsfOyWk2IG0Dy2a4rRSmUxo5TAo

0uASWr/15TXRn2ZxduTLCim5vLT+BBaIMrrtOWxlePh2MlURUJqpQ3+7fUWv5gk5uNG3

ZPKSUMUo+r/71az3HBTQPB76bL8EdR+woRZ6aEPfW9h+pmjnYK+9KXX3N7hwQgXXJ96F

r9Fw==

ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=to:subject:message-id:date:from:mime-version:dkim-signature;

bh=K3Pfh7CcSS6dMuF6esOdtIw/4sgBD6Xfcphv4ssyZfg=;

fh=0CDKmnRwW5OoAzVa2Glq5a7zJgZzatnxwmzN9UujUXA=;

b=Z6Hqe6Dr4AwiHaxy4fKkPY1RERvRauU8upRSZU/RbPY6ZZd6n6Zc7JP6/7oqCWjJ3E

j834Y2EsuuPdT4TY5yfgUtoCDa36mGEOx1Oaefwu8IrLIHxq6vT4GBvqY3A/HHDhX0+8

SNwTU5amtZUFY8Q8SBoiWV+4l3jB38dT2RM/CoYfU/JJBaPGTXa3GTQE7b5Fz2ESCUNJ

n45ErQIRPsZlnZ+FAkLZeFECE5z2sVDpzjxfodcYiMKtVxW4Xn7aLaCPNLieFCpx32mN

mfw137hNOGIUjXCMUgBob9xdkb2kHfbiJxzYBuUtBL/eSSMgoHu+1ElqPosXCpYacErn

1tPw==;

dara=google.com

Received-SPF: pass (google.com: domain of fertweei032@gmail.com designates 2607:f8b0:4864:20::a2c as permitted sender) client-ip=2607:f8b0:4864:20::a2c;

Received: by mail-vk1-xa2c.google.com with SMTP id 71dfb90a1353d-56d933b555cso406337e0c.0

for ; Thu, 02 Apr 2026 07:54:39 -0700 (PDT)

ARC-Seal: i=1; a=rsa-sha256; t=1775141679; cv=none;

d=google.com; s=arc-20240605;

b=AXzbbwpKMxtIQ8snN+atLGfo0JT5/ecz4tTmlYL2cArxXZaLgnEIM3lyA9UhEKNDrx

XHmi1YXZfZmuXJyJFiKLkHWrUEAKnfHb0hflQtqi0aSYvKI3cAvcOOpMwRYl1rxQFEqb

IQA0fHu9s+wYJhNpUrjFN79yvv669nJuGRq3jF1LieU1G8rObcM10WI98bLvBW9RjcB5

nU/9CR8w6rRxHop6+yY8rgpKi6Qf4QemAYiRlxBWzIYQurswVvZYx6ZgXcTFcx1pSDkb

spfZu4XwZiwzE19lrRs9NeP6n1D4uArIGGwEH/iIlgn520EcCt4VwLRm33EsZW9RkMjJ

0tbw==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=to:subject:message-id:date:from:mime-version:dkim-signature;

bh=K3Pfh7CcSS6dMuF6esOdtIw/4sgBD6Xfcphv4ssyZfg=;

fh=0CDKmnRwW5OoAzVa2Glq5a7zJgZzatnxwmzN9UujUXA=;

b=hmQsjhwQq1KMi64EkA2QZ86AXUlb6Lp0BKSyuXg70uAnfZMljnjjSZGtHnQz2AJj/R

yu2UiTMG2keemSmUhmYhzQDdCvOS41+xMq+UAw7KXYHr3RZIY2PDRl4NGtiGmPdTDggc

52/ed8GZ+yo0/TQBpwfs4EjzfJ9cfXcjptmvcy4ulfYJiXft2XjivKCjdxDWplt4OlmB

MWh4vwG9o5vyNFTzhPEEkU5qM2e5MqnElFowG0h+5C25rHYvc81v47kO/WOcN0S8YJu+

+rrr5VKkSS8/EItU+Q6zMrPhGprkIM79YUt+Tah3zSPKYpDX8NuFY/cZblJhvemCuNcp

t8Eg==;

dara=google.com

ARC-Authentication-Results: i=1; mx.google.com; arc=none

X-Forwarded-Encrypted: i=1; AJvYcCUHvG/BHgCmsrQJ4oBEHCHHwox7NPy6r9GauYA/uDSkpiGZ6RkdDNhBn43vWFoTaLMphtHkGRy6n9AHxw98iqvU@googlegroups.com

X-Gm-Gg: ATEYQzy0bUD/A/saeR++9VvNjoesPkEfwkiSpWBreizcT+0lD67gU0Hn1DsbFEyoTQ2

YrN38xuKafHRC8jDeDjW/TfJCy2UOrKERxAyNgI4Yna9RAVI0PdghprcR9VMIi2eDOQJEHbXT4R

XOFaMhV916bYVYmB9C2srZR/YRB2Elik+0/61qIL19ODxPYkErC2tKP3LmRiJko9l1644zsubvJ

vlw+8WRZkVpJUnGnlbfGksco1BVI+KovmgKkdt89CWUZHk4R+yH0j61eUntN/BHh6RF2HZk+4na

rg8ktQ57xunyvrh20NaH8213YIcEysNorOl1VXYbrSDM2Q==

X-Received: by 2002:a05:6102:b14:b0:602:9b21:eee7 with SMTP id

ada2fe7eead31-605682b9af3mr3216709137.35.1775141678995; Thu, 02 Apr 2026

07:54:38 -0700 (PDT)

MIME-Version: 1.0

From: "Mr. Maqsood Ahmed"

Date: Thu, 2 Apr 2026 18:52:39 -0700

X-Gm-Features: AQROBzA8NbtTDx1A98OMnZ2xL88VnZYJekP_th4vg0fWNLYowkpt0V_Bg3WlN-4

Message-ID:

Subject: REPLY URGENTLY

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="00000000000033dd61064e7b6145"

Bcc: dece15-912025586@googlegroups.com

X-Original-Sender: mrmaqsoodahmed60@gmail.com

X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass

header.i=@gmail.com header.s=20251104 header.b=OLqS9pAA; arc=pass

(i=1); spf=pass (google.com: domain of fertweei032@gmail.com designates

2607:f8b0:4864:20::a2c as permitted sender) smtp.mailfrom=fertweei032@gmail.com;

dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com;

dara=pass header.i=@googlegroups.com

Precedence: list

Mailing-list: list dece15-912025586@googlegroups.com; contact dece15-912025586+owners@googlegroups.com

List-ID:

X-Spam-Checked-In-Group: dece15-912025586@googlegroups.com

X-Google-Group-Id: 745700075957

List-Post: ,

List-Help: ,

List-Archive:
List-Unsubscribe: ,



X-Spam_score: 14.4

X-Spam_score_int: 144

X-Spam_bar: ++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Friend,I know this means of communication may not be

morally right to you as a person but I also have had a great thought about

it and I have come to this conclusion which I am about to share wit [...]





Content analysis details: (14.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

[209.85.128.188 listed in dnsbl.ahbl.org]

[209.85.128.188 listed in dnsbl.ahbl.org]

[209.85.128.188 listed in dnsbl.ahbl.org]

[209.85.128.188 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[2607:f8b0:4864:20:0:0:0:a2c listed in]

[will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

[209.85.128.188 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.128.188 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.128.188 listed in sa-trusted.bondedsender.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date

1.6 SUBJ_ALL_CAPS Subject is all capitals

0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail

domains are different

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[mrmaqsoodahmed60(at)gmail.com]

2.6 DEAR_FRIEND BODY: Dear Friend? That's not very dear!

0.6 J_CHICKENPOX_61 BODY: 6alpha-pock-1alpha

2.5 US_DOLLARS_3 BODY: Mentions millions of $ ($NN,NNN,NNN.NN)

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.128.188 listed in list.dnswl.org]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.128.188 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[209.85.128.188 listed in bl.score.senderscore.com]

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.128.188 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 LOTS_OF_MONEY Huge... sums of money

1.5 HK_NAME_FM_MR_MRS No description available.

-1.0 MAILING_LIST_MULTI Multiple indicators imply a widely-seen list

manager

0.2 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and EnvelopeFrom

freemail headers are different

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.0 T_MONEY_PERCENT X% of a lot of money for you

3.7 ADVANCE_FEE_5_NEW_MONEY Advance Fee fraud and lots of money

Subject: {SPAM?} REPLY URGENTLY



--00000000000033dd61064e7b6145

Content-Type: text/plain; charset="UTF-8"



Dear Friend,I know this means of communication may not be morally right to

you as a person but I also have had a great thought about it and I have

come to this conclusion which I am about to share with you.



INTRODUCTION: I am Mr. Maqsood Ahmed a banker and in one way or the other

was hoping you will cooperate with me as a partner in a project of

transferring an abandoned fund of a late customer of the bank worth of

$18,000,000 (Eighteen Million Dollars US).



This will be disbursed or shared between the both of us in these

percentages, 55% for me and 45% for you. Contact me immediately if that is

alright for you so that we can enter in agreement before we start

processing for the transfer of the funds. If you are satisfied with this

proposal, please provide the below details for the Mutual Confidentiality

Agreement:



(1) Full Name and Address...

(2) Private telephone number...

(3) Your Age...

(4) Nationalities...

(5) Occupations..

(6) A scan copy of your identification,



I wait for your response so that we can commence on this transaction as

soon as possible.



Regards,

Mr. Maqsood Ahmed.



--

You received this message because you are subscribed to the Google Groups "Dece15-912025586" group.

To unsubscribe from this group and stop receiving emails from it, send an email to dece15-912025586+unsubscribe@googlegroups.com.

To view this discussion, visit https://groups.google.com/d/msgid/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3U4PhQE3Q%40mail.gmail.com.



--00000000000033dd61064e7b6145

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

--


You received this message because you are subscribed to the Google Groups &=

quot;Dece15-912025586" group.


To unsubscribe from this group and stop receiving emails from it, send an e=

mail to de=

ce15-912025586+unsubscribe@googlegroups.com.


To view this discussion, visit
/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3U4PhQE3Q%40m=

ail.gmail.com?utm_medium=3Demail&utm_source=3Dfooter">https://groups.google=

.com/d/msgid/dece15-912025586/CA%2BU7FrBD6j7FpPqv8f-X1ARxyYVd8ZCTnN31qEgwy3=

U4PhQE3Q%40mail.gmail.com.




--00000000000033dd61064e7b6145--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 02 Apr 2026 13:52:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8O4S-00000000Ksz-2wVX

for dave@doctor.nl2k.ab.ca;

Thu, 02 Apr 2026 13:51:16 -0600

Resent-From: The Doctor

Resent-Date: Thu, 2 Apr 2026 13:51:16 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-yw1-f188.google.com ([209.85.128.188]:44366)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8JSK-000000003Zp-1ZG0

for root@nl2k.ab.ca;

Thu, 02 Apr 2026 08:55:45 -0600

Received: by mail-yw1-f188.google.com with SMTP id 00721157ae682-79a670a5fe9sf15884037b3.1

for ; Thu, 02 Apr 2026 07:54:49 -0700 (PDT)

ARC-Seal: i=3; a=rsa-sha256; t=1775141683; cv=pass;

d=google.com; s=arc-20240605;

b=B2iiaXX35d6P5FuLKlLxB2O6ZDWpsyZU++53kpAQ6UN0cmGbKR2ciyy7ZyChyhLx0I

H++wAGT2LxKA1KFFkQsuEv7R5SC0Cl6Kuax9ymD3PQY1hQQ1U7olVBGy7GVIBO70LKKM

9ZdnEh3HnhBBslAmX7+FF2hhNno5uLheVFJQOfCDAMubuz1eQXQaby0btsPilQe/tg1T

hpCsWOC1XhkDFPym3Qz8d8VlUyIErb9jX46O3XqDQTO3z29txvNcam2KUwYkS+Vu4QS9

N2wq4nWMwSfVU4PXW40m9tywDCnUhfK1XaShGJBkmlKZRvd5IwYmRccop2cgZwRWMb5U

6WYw==

ARC-Message-Signature: i=3; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=list-unsubscribe:list-archive:list-help:list-post:list-id

:mailing-list:precedence:to:subject:message-id:date:from

:mime-version:sender:dkim-signature:dkim-signature;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

fh=FHPok04MkQERQIRBg9WuDLYK075MG827TDh80t4M2b8=;

b=F0CiN2juGVxxHrd991X3WUnq802Wr0IVrDrksFwDcYc+JGaqzh7MrjyJQV2r7WU6w+

7moVSPmbaqgGP1WmYVnOZIgLJKcCAmqySwsb2ohtnNkf8wi2hM5+mKoWV0CbzwNcPHJv

K8Ngbz2iTjvhN/nTl0PWTE6kKQ3kgjCq/krt8lpcNV3AgUaOrPOIJLVLBhD9P2XWQaCD

aj0q4cy0mPzxxhYCIiAknp7RnOT5JZvZJ8GkdfZ2H41fuel3/KOoaL6fGQ9WR2h4392s

sczRnotk1uqwCPzDFAOAwrnh7m8z1W4MkImqeGwP5nEryTLBgnOCeHH3AHOgltRA/L+7

I6CQ==;

darn=nl2k.ab.ca

ARC-Authentication-Results: i=3; gmr-mx.google.com;

dkim=pass header.i=@gmail.com header.s=20251104 header.b=OLqS9pAA;

arc=pass (i=1);

spf=pass (google.com: domain of fertweei032@gmail.com designates 2607:f8b0:4864:20::a2c as permitted sender) smtp.mailfrom=fertweei032@gmail.com;

dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com;

dara=pass header.i=@googlegroups.com

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=googlegroups.com; s=20251104; t=1775141683; x=1775746483; darn=nl2k.ab.ca;

h=list-unsubscribe:list-archive:list-help:list-post:list-id

:mailing-list:precedence:x-original-authentication-results

:x-original-sender:to:subject:message-id:date:from:mime-version

:sender:from:to:cc:subject:date:message-id:reply-to;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

b=pBvLCCCGhtcQMyX0P3Hnp3uHuMrkRKNqzhgqD28PdC7NBNcMrrHJP03eEq2hzkzf7q

7iwOapzyO4bZIFuplBMWC0pMfLMx/MjIDc1gdldWDPs0ZDiVLCIxQ+CFH48KHWqrYdlo

szGEeQSFB3i+ejXZgvgY71PQJoqypdtuCKiV7Jv3KoswCjj1Uf/X/Cta2R/OGwxrVnb3

2wHL13QHYkhkq/wAHyTe328ufo59iz7RASWutT2/ozvC0tL/GhGBYwabcbYOV0rAa0UY

p04EojA+hTo4h8d/zVCNKGg+XinV2RZriOL3kk9xe22ykR8dLWlniyEDUVCrzvOR5ujy

4NJw==

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20251104; t=1775141683; x=1775746483; darn=nl2k.ab.ca;

h=list-unsubscribe:list-archive:list-help:list-post:list-id

:mailing-list:precedence:x-original-authentication-results

:x-original-sender:to:subject:message-id:date:from:mime-version:from

:to:cc:subject:date:message-id:reply-to;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

b=NymM2ZHh3Vnrv3VQBfRBlYtw+l+oWfhp0qa9vXDA0JO+V+dK+fKbvYETYPAeTshZ7m

CgEOTObjLGT8AIftNiEyXsdM2XyWQIYiE/2VY5dDDdIbt4eiO7igqXflGhvdnyoruWzs

mCqMzDisS2kFYFf6A1LwOhzyrV68u/j5Q+/Os3Ev5DSHLq5mfotV35C4OcD6nFEk9Pzj

4bG/n/Aw4E5HAdfTAv5VVj0fpOnx0mXKzFaaeltyZXIAURJAddTzORrYlKm0g7/egaur

J5yogoCDolQVRSjo5G+3LMgqtiMIt5So1Bdv7sF+ygWKY61KqCS9fgZy2QqZvp9LNIMS

QC9Q==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1775141683; x=1775746483;

h=list-unsubscribe:list-archive:list-help:list-post

:x-spam-checked-in-group:list-id:mailing-list:precedence

:x-original-authentication-results:x-original-sender:to:subject

:message-id:date:from:mime-version:x-gm-gg:x-beenthere

:x-gm-message-state:sender:from:to:cc:subject:date:message-id

:reply-to;

bh=nJs0zkwAvjLoOOWSwbp/b663dQMhw3OnRzvxNvAuss4=;

b=rV5TemtaSeXqmBjVEejRzprsWIyW+ZnhfH0lQjyKhsfgvTTyzZkp+SBsQRuaOHsObb

DPZdIieEaZ3GTDEb5ynWTiZEDDZC8u68wUQpSYvHGUKmzZDSuS2wcXtYCNA1SuzSsQaG

hrQrU8sUXELyIwzZFUrZKM+QXFC1JVB2RdROOwvodoBhxZ1zQR/QnSGqf/laDZkbWtFd

30YfPgI8GGAcyB6p3DOIaLF/bi5S08d1zveuIfUQvrVGCIyrE9BXlGSVXRAcJ/MMvsKv

uzMfOSbPsqcpvZYfwNHeDgMuQVM+SNJlsjIxjBeVg7+iyUsNu1MvhEFgKxg1V+uowJ/b

HYJw==

Sender: dece15-912025586@googlegroups.com

X-Forwarded-Encrypted: i=3; AJvYcCXVU/WsG2+QDM2gPdXycAy+B0d+Kh/tHnsJPGdZlzo6AHhWDLmoYa7fyEyVaTauY4FGJ9zA@nl2k.ab.ca

X-Gm-Message-State: AOJu0YxiifcrBuroC9iTVMtrIoZB3mtyxS5L+3oao3dHYMlF2y0kHa9D

o7ZubX15gCWna3wgJ2EOuykLpPHihgIn/HtRhB5+XNfdLCcRyAorP0V9

X-Received: by 2002:a05:690c:c4d3:b0:79a:b440:5c77 with SMTP id 00721157ae682-7a210993be8mr92566937b3.17.1775141683244;

Thu, 02 Apr 2026 07:54:43 -0700 (PDT)

X-BeenThere: dece15-912025586@googlegroups.com; h="AYAyTiI8liduMUY6vr03/8JJo8Nmb1uE7w5ZSei41qy/vcbd3Q=="

Received: by 2002:a05:690e:2104:b0:650:1ab5:bc3e with SMTP id

956f58d0204a3-6503b80864dls1132494d50.2.-pod-prod-01-us; Thu, 02 Apr 2026

07:54:39 -0700 (PDT)

X-Forwarded-Encrypted: i=3; AJvYcCWebxQLo/rKS7DNId6PzWmipcGT5T14rABTrGD9O6Osh0r95gZSt7mQqyEmMLaCFNgv4An2YcOdy0WujE32P4qa@googlegroups.com

X-Received: by 2002:a53:c084:0:b0:64e:d95a:c89e with SMTP id 956f58d0204a3-6502fe4abf4mr6204774d50.41.1775141679451;

Thu, 02 Apr 2026 07:54:39 -0700 (PDT)

ARC-Seal: i=2; a=rsa-sha256; t=1775141679; cv=pass;

d=google.com; s=arc-20240605;

b=ZSjtwXn7DwgzmgrNsV7u5qE5BrRtc9k3Ys9WawtOjQJHlm6yWZT2H8mBruS4getdk+

u3383uOvA3mmePvp9wc/PB8Di3IjQRTK1leZ5zNN8bQe2lB8m94onJuQ4fzjMgcMZwlA

ucUAT4tIxHyE0l4jkWOPnYlOY8pnFJMUTXu6UEkTOcsfOyWk2IG0Dy2a4rRSmUxo5TAo

0uASWr/15TXRn2ZxduTLCim5vLT+BBaIMrrtOWxlePh2MlURUJqpQ3+7fUWv5gk5uNG3

ZPKSUMUo+r/71az3HBTQPB76bL8EdR+woRZ6aEPfW9h+pmjnYK+9KXX3N7hwQgXXJ96F

r9Fw==

ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=to:subject:message-id:date:from:mime-version:dkim-signature;

bh=K3Pfh7CcSS6dMuF6esOdtIw/4sgBD6Xfcphv4ssyZfg=;

fh=0CDKmnRwW5OoAzVa2Glq5a7zJgZzatnxwmzN9UujUXA=;

b=Z6Hqe6Dr4AwiHaxy4fKkPY1RERvRauU8upRSZU/RbPY6ZZd6n6Zc7JP6/7oqCWjJ3E

j834Y2EsuuPdT4TY5yfgUtoCDa36mGEOx1Oaefwu8IrLIHxq6vT4GBvqY3A/HHDhX0+8

SNwTU5amtZUFY8Q8SBoiWV+4l3jB38dT2RM/CoYfU/JJBaPGTXa3GTQE7b5Fz2ESCUNJ

n45ErQIRPsZlnZ+FAkLZeFECE5z2sVDpzjxfodcYiMKtVxW4Xn7aLaCPNLieFCpx32mN

mfw137hNOGIUjXCMUgBob9xdkb2kHfbiJxzYBuUtBL/eSSMgoHu+1ElqPosXCpYacErn

1tPw==;

dara=google.com

ARC-Authentication-Results: i=2; gmr-mx.google.com;

dkim=pass header.i=@gmail.com header.s=20251104 header.b=OLqS9pAA;

arc=pass (i=1);

spf=pass (google.com: domain of fertweei032@gmail.com designates 2607:f8b0:4864:20::a2c as permitted sender) smtp.mailfrom=fertweei032@gmail.com;

dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com;

dara=pass header.i=@googlegroups.com

Received: from mail-vk1-xa2c.google.com (mail-vk1-xa2c.google.com. [2607:f8b0:4864:20::a2c])

by gmr-mx.google.com with ESMTPS id 956f58d0204a3-65040cd8401si52738d50.3.2026.04.02.07.54.39

for

(version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);

Thu, 02 Apr 2026 07:54:39 -0700 (PDT)

Content analysis details: (23.8 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.167.52 listed in dnsbl.ahbl.org]

[209.85.167.52 listed in dnsbl.ahbl.org]

[209.85.167.52 listed in dnsbl.ahbl.org]

[209.85.167.52 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.167.52 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.167.52 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.167.52 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.167.52 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

[209.85.167.52 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.167.52 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

0.0 DATE_IN_FUTURE_06_12 Date: is 6 to 12 hours after Received: date

1.6 SUBJ_ALL_CAPS Subject is all capitals

0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in

digit

[evelynrichards10(at)gmail.com]

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[evelynrichards10(at)gmail.com]

2.6 DEAR_FRIEND BODY: Dear Friend? That's not very dear!

0.6 J_CHICKENPOX_61 BODY: 6alpha-pock-1alpha

2.5 US_DOLLARS_3 BODY: Mentions millions of $ ($NN,NNN,NNN.NN)

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.167.52 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 LOTS_OF_MONEY Huge... sums of money

1.5 HK_NAME_FM_MR_MRS No description available.

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.0 T_MONEY_PERCENT X% of a lot of money for you

0.5 MONEY_FRAUD_8 Lots of money and very many fraud phrases

3.7 ADVANCE_FEE_5_NEW_MONEY Advance Fee fraud and lots of money

0.0 FORM_FRAUD_5 Fill a form and many fraud phrases

1.3 MONEY_FORM_SHORT Lots of money if you fill out a short form

0.4 FILL_THIS_FORM_FRAUD_PHISH Answer suspicious question(s)

0.0 T_FILL_THIS_FORM_SHORT Fill in a short form with personal information

0.0 T_FILL_THIS_FORM_FRAUD_PHISH Answer suspicious question(s)

2.5 UNDISC_MONEY Undisclosed recipients + money/fraud signs

Subject: {SPAM?} REPLY URGENTLY



--000000000000d1d404064e7b2d69

Content-Type: text/plain; charset="UTF-8"



Dear Friend,I know this means of communication may not be morally right to

you as a person but I also have had a great thought about it and I have

come to this conclusion which I am about to share with you.



INTRODUCTION: I am Mr. Maqsood Ahmed a banker and in one way or the other

was hoping you will cooperate with me as a partner in a project of

transferring an abandoned fund of a late customer of the bank worth of

$18,000,000 (Eighteen Million Dollars US).



This will be disbursed or shared between the both of us in these

percentages, 55% for me and 45% for you. Contact me immediately if that is

alright for you so that we can enter in agreement before we start

processing for the transfer of the funds. If you are satisfied with this

proposal, please provide the below details for the Mutual Confidentiality

Agreement:



(1) Full Name and Address...

(2) Private telephone number...

(3) Your Age...

(4) Nationalities...

(5) Occupations..

(6) A scan copy of your identification,



I wait for your response so that we can commence on this transaction as

soon as possible.



Regards,

Mr. Maqsood Ahmed.



--000000000000d1d404064e7b2d69

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable







--000000000000d1d404064e7b2d69-

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 02 Apr 2026 08:42:00 -0600

Received: from mail-lf1-f52.google.com ([209.85.167.52]:42350)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1w8JEP-0000000034q-2Dbt

for dave@doctor.nl2k.ab.ca;

Thu, 02 Apr 2026 08:41:23 -0600

Received: by mail-lf1-f52.google.com with SMTP id 2adb3069b0e04-5a2bd236adbso1156626e87.1

for ; Thu, 02 Apr 2026 07:40:24 -0700 (PDT)

ARC-Seal: i=1; a=rsa-sha256; t=1775140818; cv=none;

d=google.com; s=arc-20240605;

b=ZIsGw+WXa+pX0MOiEhRlrw43OXd0SlGlFwr2EVnMWNilx5lyK5tJ3DsQxW2/CozQcz

zCScbSDejRpW0GO8C/tJ6xJbSWVxR7l3/cRF8Ik+4Hzmamy8NxS8PgILT3dF+CqWR1ve

GaMLaqVZgny1NcDj0lzCbaxQNXn92qK03w/sE16zNqn2uqYSJ/DqYG4WjNSPBG8cfxfa

Pyz1g/tHrAOxksqRTnWwKQfHEV/DGY+J6Zrq0gP22Trr5J0hjXBEm8VcawwNUnCNvVt+

e+QOxLv1+UlTypUGghIbVqZq73sxeER+A4765/Ku4mdRxES07etvk+WB0LxEB6Q6YbuX

jMPA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=to:subject:message-id:date:from:mime-version:dkim-signature;

bh=TkzrmBSmcc6YKdqgSBfKiuW72nTyWfx7xVpuLCBWKCs=;

fh=Vd8edR+ZI+uCeAFliHXjg1g0PO89L/0OSbb1G1DO2jM=;

b=MUv5zHK0NKwDCxAfwVa0ViDiuk2B8s6OMSZn1FcgUTc41Gja6Xt4Q3X9pVqsL3onAQ

HKClfmB1ZvkmUggMq3F/7WEPcXnX1JAY6cSGki3/py4lWapdADKq+xp3yMHmWsZ4OvK3

Q1Bkwn59LTHG1qAjmPW/nAAUSSq2c96qnAy8QLrcb9rigllqvC/rcSO3Zw++OgLhOUew

ZomsSKFkcDnQq+SUGxOImhOjCc7ljlBkVFe0ZX7vHq4mLT9BZ3o42DK9HhEuOUR8PI+b

csinZlO97trbX146Dip+yjRjiXVx7VqaNEktUD7optDaBDQEXUSXLMvyq0qEGW1AlA5O

feIw==;

darn=doctor.nl2k.ab.ca

ARC-Authentication-Results: i=1; mx.google.com; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20251104; t=1775140818; x=1775745618; darn=doctor.nl2k.ab.ca;

h=to:subject:message-id:date:from:mime-version:from:to:cc:subject

:date:message-id:reply-to;

bh=TkzrmBSmcc6YKdqgSBfKiuW72nTyWfx7xVpuLCBWKCs=;

b=IJmT7yBv7wuewvSNFKMA0fiySNqJq6KXL+QUk9A/8d5gBzaTPK3xV5RsQg9nA+QeZW

N4Nhm8d4P7oGTWJ7ApU4xWGkP4Huu+oEtAfbkkhxLrPg3IsGq/oez4qRj+344V6OMZQ7

sTxwJAr8bvbVQSYtFZgGB1+EJuYy+6Dn/1SQYe4KL9GP+xGGaeAmN0LpcFireaP7bXZW

Er862mRpNTXbqyDhbN8e/v6kLZQyrGBXAewxW4bVDWwjK4RdM5aow6e+MApoXMdD61H4

MZPJPKEBjRfIAxCQUOsitE/7dnc75+cMoyBIFsJ1dzQS2Y0xPktq98QLgBe1Yzr3ihVG

DF8Q==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1775140818; x=1775745618;

h=to:subject:message-id:date:from:mime-version:x-gm-gg

:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;

bh=TkzrmBSmcc6YKdqgSBfKiuW72nTyWfx7xVpuLCBWKCs=;

b=lD/0wa4Csp2R2E+jkdMp+sVYWX+UalPLzHnfW6fZ0JJC5Ifjsl3W0zSIMTVFazaSuL

75g6Z+baaYcgn69L7DwFpbU3PgUYAkb2BU+EQ5XZSQsmW6UsrVMW1tYgwkoONsSPU+yy

LXzQbItf9qQB6zvbec1A99k2GvRDiixNXw4Pr6leDjpxDKCQ2ylVuqOQuRcest3vOeWZ

N+bzJ3rpNedJPhuCDyTrthMewlY2n2jUagAcHZlyi3Qcdgz0U+5lE4x0ezZQwz0xUWDd

BgsRKNjX7Os6IwEsUL6LojP+xkx8adCA5nIjuLuFUNuaTdaLwMWQDTlagqnl6l+h7w3w

YBpQ==

X-Forwarded-Encrypted: i=1; AJvYcCVgX6UMnC/+BUZEb+oSAgjcX5IdNU6UDVHryy5KD93aly/V3YDjMYO+XqtA2P64hQ1tblzu@doctor.nl2k.ab.ca

X-Gm-Message-State: AOJu0YxU/7LzT6lhv6nZoJWZ58c91UXdLZh2cjuCpvWZBIniAqJR129p

WoCkPHQ32afRskYN/iKIgCEnGKDVzJareeD/auGrhQj7OzDf6N670lxqVKx1tkTEZRoLe35tPm9

JN2kGMtsXCg673lorg31CsSp8GlaIaH0=

X-Gm-Gg: ATEYQzw+H4S6aXe9fy+2GfwOmaRCistgpwkOlE+67x7Ld3o8ALpv5VtsQ/C3TQttEww

YR2sJ4xJNPserNbVqemeXb8nX+ymDqzC/Z5XYAAqJrX/0vvL3mNe2A9DqSiKf4MQuAj5fS7yEXt

mu1dmBcy+1zu2eYJE3ml3CD41FG1zP26yxUUIHckBXSV027r2GC55yvkTJ9Px8Ur+12mso7UnyP

caU5CYQ4MhyvPldMjFbnWBz/t4c6DOelvjg00U+9Uf6/eFMo0eOoCyh8ge73Cr2wyGlnpUBSP5Q

fHNKoI1R/H+8l5d784r8JMk/641Z9tqPJqtZqKk1fiR8HD4k/GwvLDfejDM=

X-Received: by 2002:a05:6512:3e20:b0:5a1:56e4:1c80 with SMTP id

2adb3069b0e04-5a2c8a954bdmr1011452e87.4.1775140816932; Thu, 02 Apr 2026

07:40:16 -0700 (PDT)

MIME-Version: 1.0

From: "Mr. Maqsood Ahmed"

Date: Thu, 2 Apr 2026 18:38:12 -0700

X-Gm-Features: AQROBzA9EGzVf4nqrti7xmbDQYCT0YSF6VrX4Egl6SO4IyqfMsJp0c8rZD3p2yc

Message-ID:

Subject: REPLY URGENTLY

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="000000000000d1d404064e7b2d69"

Bcc: dave@doctor.nl2k.ab.ca

X-Spam_score: 23.8

X-Spam_score_int: 238

X-Spam_bar: +++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Friend,I know this means of communication may not be

morally right to you as a person but I also have had a great thought about

it and I have come to this conclusion which I am about to share wit [...]





-

This is a multi-part message in MIME format.



------=_NextPart_000_21A64_01DCC2F5.B02AC000

Content-Type: text/plain;

charset="us-ascii"

Content-Transfer-Encoding: 7bit



Hi there,







I came across your website, www.nk.ca and wanted to reach out.







Are you interested in redesigning your current website, improving it, or

possibly merging it with another site for better performance and usability?







I'm a web designer and developer, and I help businesses create clean,

modern, and affordable websites. Whether it's fixing issues, upgrading

features, or giving your site a fresh new look, I'd be happy to help.







If you're open to it, I can share my portfolio, past work, and company

details.







Looking forward to your thoughts.







Kind regards,

Ira

P.S. If you'd rather not receive further emails, just reply with "NO"in the

subject line.









------=_NextPart_000_21A64_01DCC2F5.B02AC000

Content-Type: text/html;

charset="us-ascii"

Content-Transfer-Encoding: quoted-printable




xmlns:o=3D"urn:schemas-microsoft-com:office:office" =

xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" =

xmlns=3D"http://www.w3.org/TR/REC-html40">
HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =

charset=3Dus-ascii">
(filtered medium)">
vlink=3Dpurple>