NetKnow Corporate Blog

Nigerian spam from Google Gmail

Posted by Dave Yadallee on Thursday, January 15. 2026

Hi, my name is=C2=A0 Aisha Al-Gaddafi, I came across your =

email address on LinkedIn. Is your email address valid? Please, your attent=

ion is needed. I have something very important to share with you.=C2=A0
=

Regards
=3D"#888888">

ont>Aisha=C2=A0 =C2=A0

--000000000000ea53c6064856eac3--

Nigerian spam from Google Gmail

Posted by Dave Yadallee on Thursday, January 15. 2026

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 14 Jan 2026 06:28:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vg0tx-00000000254-0zEQ

for dave@doctor.nl2k.ab.ca;

Wed, 14 Jan 2026 06:27:09 -0700

Resent-From: The Doctor

Resent-Date: Wed, 14 Jan 2026 06:27:09 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-yw1-f195.google.com ([209.85.128.195]:52638)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vfyET-00000000KUP-46bG

for root@nk.ca;

Wed, 14 Jan 2026 03:36:19 -0700

Received: by mail-yw1-f195.google.com with SMTP id 00721157ae682-792768a0cd3so36920807b3.1

for ; Wed, 14 Jan 2026 02:35:22 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20230601; t=1768386916; x=1768991716; darn=nk.ca;

h=to:subject:message-id:date:from:mime-version:from:to:cc:subject

:date:message-id:reply-to;

bh=aYkRQ5ShMCIRac5O5Q4UCU9mIi400dQsZ9RIdrRQjss=;

b=KpbCZ/8fnvnRrMdkHECnOYRQAdT/jgcAyHz3Uouc+6WyOIWgEeEnUrQiGpKpNeoOI4

rIiKristpYOHa6hqxJLPY70bw/G49TRDwVSW+063gWyR8utLq8cvEFi0Yt+IGBp+AVEL

DFqMEg9eWQoqEjdrqAJvab9Sgwac7/F5zybqxKIOoX2hMaU32Rzpkv1Lg+9NZI84HSbb

P6De38loFT6zQol2Omthmvb6VZM9W4gqdHECY7zR2RNpxpkthoXb6CTH0+X5p/49LZDU

2qQuSN5MnZ53IplXmbwO1jKRS8IxsRV9iOe6sF9mELc0Puq99ydL6UfYow/c2RE5JUvS

omTQ==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1768386916; x=1768991716;

h=to:subject:message-id:date:from:mime-version:x-gm-gg

:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;

bh=aYkRQ5ShMCIRac5O5Q4UCU9mIi400dQsZ9RIdrRQjss=;

b=o6pyA8tWkzrgEjrgBnj8D74i0NA6RNNulFDCwDAe9szgEIu94Ny6bN0CJ35eh5RoXB

EHjft2V3n7xBle+f3yjK2TfYx4PKgMLQRi4+XxkuY9zcemMQrO/s3N/GVqhLuCu8WLwe

ywVEraN/8RNK6dfHjrhxTysUlLz0HuF1YBGE1rROXhK9VWZwtoTm0DQvuRXxapFpDsyi

Yujztc5m7r+guDiHdHuHz8jjahJ7FFnXNDbUKmcanGOABBvnMv45DJypIczxk2a+9l0v

Oshh+ndI+wJ+AbELbvdntVK8EmpB6Zgp1JzmIIEhJwR/6f2vd2qvc9b1PDRQ9R9LZz5d

XIVQ==

X-Forwarded-Encrypted: i=1; AJvYcCVn6ffaRem3lZzCocQok3uQMEJxjwySFTfWzAgCcraK3NtqAcxCA8psh7wNGuWdWhEJrRbG@nk.ca

X-Gm-Message-State: AOJu0YwNIlXU0jrN1C7VKdAPy3yhxTgyPuPK8ClqzGRuBNr0hDpULQtQ

kZe8JwMIX8OkPLSonZhz2AL/1iHq1HOm0rj1GTejr1rq3DJWTP14mNBuKrsxmT84Oc5is4zjHUR

06OZIXIZ/EkRZZwX1iRLeYIeXGl58Yyg=

X-Gm-Gg: AY/fxX5klAZkcsYtmupI74psQt/q+4fxR5r0EL3ysL6DPmn9N3CcIJKm5WTvdxPiSAi

61giJPtKZtDrNfhED7waJpE02EQL7CGPKUvZKNA/rfdI2ToAaMj5CQxjzlRyqxfjEnCms6kteJB

U5frj1xZVs6Dx7Niiuap56JuWVzu0MpUI0Bty7znelohSeNwrwABbaruZsAN9saMsabiKlu483W

lVZra1/WDFCYBTtkhgem4vUHDDsnKCz+CvO8oxESyUcwEAgsRajsZeiAt7Dx03Z5G74g0TwqKLh

X-Received: by 2002:a05:690e:1917:b0:63f:baef:c4f with SMTP id

956f58d0204a3-64901b0675dmr1826857d50.63.1768386915658; Wed, 14 Jan 2026

02:35:15 -0800 (PST)

MIME-Version: 1.0

From: Aisha Al-Gaddaf

Date: Wed, 14 Jan 2026 02:35:03 -0800

X-Gm-Features: AZwV_Qi_ouhB67gzpQYbAQdx1E2TwsDXSfIedP7j32_6CwSbVmyal0uv7uE4h08

Message-ID:

Subject: Hi

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="000000000000eeeec9064856a97f"

Bcc: root@nk.ca

X-Spam_score: 6.4

X-Spam_score_int: 64

X-Spam_bar: ++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Hi, my name is Aisha Al-Gaddafi, I came across your email

address on LinkedIn. Is your email address valid? Please, your attention is

needed. I have something very important to share with you. Regards Aisha

Content analysis details: (6.4 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.128.195 listed in dnsbl.ahbl.org]

[209.85.128.195 listed in dnsbl.ahbl.org]

[209.85.128.195 listed in dnsbl.ahbl.org]

[209.85.128.195 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.128.195 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.128.195 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.128.195 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.128.195 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

[209.85.128.195 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.128.195 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in

digit

[okechiobasi92(at)gmail.com]

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[alqaddafiaisha7(at)gmail.com]

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.128.195 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

Subject: {SPAM?} Hi

--000000000000eeeec9064856a97f

Content-Type: text/plain; charset="UTF-8"

Hi, my name is Aisha Al-Gaddafi, I came across your email address on

LinkedIn. Is your email address valid? Please, your attention is needed. I

have something very important to share with you.

Regards

Aisha

--000000000000eeeec9064856a97f

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

Hi, my name is=C2=A0 Aisha Al-Gaddafi, I =

came across your email address on LinkedIn. Is your email address valid? Pl=

ease, your attention is needed. I have something very important to share wi=

th you.=C2=A0

Regards
8888">
8">
Aisha=C2=A0 =C2=A0

--000000000000eeeec9064856a97f--

Web/SEO/App Spam from Microsoft Outlook Part 2

Posted by Dave Yadallee on Thursday, January 15. 2026

x-ms-exchange-antispam-messagedata-0:

=?utf-8?B?Zkg3UHV6cWlMOW5sNGJ6TmF0ci84Njc5Y1VkcUIwMVQ4YVhsb1ZrcUxFS0ZQ?=

=?utf-8?B?aldzV0JLWHBZZTFYRUlYaUR0RWJhRDlxOVpVWHVJSXkyZEtscktndFFVWjQx?=

=?utf-8?B?Qll4T3I0QjUvbTFZU2F0VW9rN3c4a0JJanhhcXBPRVhJSFNRMURVcFA3aWxr?=

=?utf-8?B?REJLSkcxWkM0aU1CaEVoUjdjS0dBTkN0NFBmQkJ1STlselZGMGM4SmxteWd4?=

=?utf-8?B?cUNQaXlQQW92TmR6VExiU3E3Mi9oSnpvNTBvWGtSaHNmS3g0WmEzckg4MWky?=

=?utf-8?B?ZXFvYVZ6NW9oYXN4ajVuZUx3RjRUTkVibzN5UTlLRWh2ejkxR0FxZklzRkVm?=

=?utf-8?B?NVM4ek91RU83aXJta3VwUUwrTHF4cXV0UUYxOFdzSmlUOTVlSVptYS83WHVX?=

=?utf-8?B?YnZGTkxwS3daSFNMME9jejFWaGxQQXhMS0gzWUFOL3RYZURNbjFTSyt2OGVF?=

=?utf-8?B?MTVYS00xbjJrWnh2ZDNuckFYM0VrLzNrQldyUk01WVQ1UzdzVldoU3NXTS95?=

=?utf-8?B?VUkyYmZnU3VpdWcyVDN5SFpLakw0d3B1dVR1cnFmalpHVG9BYTRUeldrM1Zz?=

=?utf-8?B?UmRsT09ZbkxWMXNzdlgzSXVPNWpQNnhXK2pRb25IYkR6ZVMxdXpvQ1lCYkhR?=

=?utf-8?B?MDVEOXBvWjVUMWl0Y3BnMlBqckliTkM4aHFqbkxhUk1OWHo2SmtlTlozK1p6?=

=?utf-8?B?SWwzd04xbXNZYUNHR3N0VGFoTVdaSEY4UVlZSXZGNFFhTFdXbmZHNmtOcUUz?=

=?utf-8?B?SjMzS2M5SFpjSTlqTXBYTU5GMXA4NDYwejlzbXZGYmxwMFozNzdacTZqOE44?=

=?utf-8?B?bnhlamt3R1hWMGt5YXg4QURjS29sNldVZUEveEt0QTB6R29ucFh0dDd6cmcz?=

=?utf-8?B?dDA5SjM4R2tMSGlHb2o4eTlHUlpTdSsxN1h2K3hiRmV4RmRCdENoY0d2YkRU?=

=?utf-8?B?dUQvQnZxK05XdE5Xc0FhRi95TThJSXJ3aXZYMkU4eEh6Z0dwOFBnRVd2WG9N?=

=?utf-8?B?TXJacjNOdzVNWWxRNEFRVVpjUGFKOVRoc2FJSDBTT3RZQ2JYSldnT3F1Y3pO?=

=?utf-8?B?U0hEMC9iK3BqS3BjMXcrbVZveGh3ZEhXOTdyMUl6d3J2T2xhZXl2VExMN05u?=

=?utf-8?B?R0RDMXR1VWU5MklEZVNXTVFkS1puRzdhdmZUMzBZdFRxY1lORmlDYjgrdDMr?=

=?utf-8?B?SmRwai8rQmIyUkZvSlU3NHlkVzdwWHFrUFZiMDRXZzYyWFlsQk80c0dsQnhm?=

=?utf-8?B?d0dDdlR1KzNTNTg4eHd3N2R4S3V3cUZrck9ybFJuUGYxZ2FuNTNTWFYwZEg4?=

=?utf-8?B?WDBhbXVLcFJmdHdOMERZaUZTSzAweXl2bjkxUlhzTDNDVktGVS9waGNjdzlL?=

=?utf-8?B?Z0dSTS95Mk5yUGxmTmtoZjlhckpldTZFam9zSjI0aFNZcVBiSS8rN1pPRXE4?=

=?utf-8?B?Ni9lRVRZbzhDTngxV0NaajhYMWFIZThKVkl4SEpyVDJ0M1dQcHVsNW9DNzlj?=

=?utf-8?B?S1JsdElnOE1VOHJ2RVdtOTl4ejBGbUl6a21pTVkrYTc2cUp1WWwzWjRXeGxC?=

=?utf-8?B?eUVLVVVLY1dsbk5sSGNwbCsydDRvckFhbkJkYWxoNTNLTS9xYlFieEdwK256?=

=?utf-8?B?ZE05MEJaQ3dZNjlpRmhKZGVzZ3FKemlrZlR2UWwxOG9Ua25iVFBoVzcrcHpo?=

=?utf-8?B?djRjejZpWnhadmRzaTB3S1E3L0cvTXZ0QWd5OVBOWUNqZHMwQ2xkQUFEQitI?=

=?utf-8?B?dml3SEdFcU5Bc3BxdGdaQnhQdVc1RHQvNE1hcTJVSEl2SkVhRjRoMzdQYmFz?=

=?utf-8?B?RWIvbnJWVlAzOG5tb29VUGVMWk52Yi9CYWkwT3NrTG1QSTlwVGRYYzYzS1VX?=

=?utf-8?B?MkpLN1NKM21MRVhDUGxydjNobEFzc3FMaGN0bWVDOWRVeFE9PQ==?=

Content-Type: multipart/alternative;

boundary="_000_SEYPR04MB643312649B73128B845E18A59C8FASEYPR04MB6433apcp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: SEYPR04MB6433.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: 98b70560-2194-4945-958e-08de5350f915

X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Jan 2026 09:40:36.6344

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: PUZPR04MB6745

--_000_SEYPR04MB643312649B73128B845E18A59C8FASEYPR04MB6433apcp_

Content-Type: text/plain; charset="utf-8"

Content-Transfer-Encoding: base64

SGkgLCBzYWxlc0Buay5jYQ0KDQoNCldvdWxkIHlvdSBsaWtlIG1lIHRvIHNlbmQgdGhlIHJlcG9y

dCBvZiB0aGUgZXJyb3JzPw0KDQpCZXN0LA0KDQpFbW1hDQoNCg0KT24gVGh1LCBPY3QgMjQsIDIw

MjUgYXQgMTI6MzLigK9QTSBFbW1hIHdyb3RlOg0KDQpIZWxsbywNCg0KV2l0aCB5b3VyIHBlcm1p

c3Npb24sIEkgd291bGQgbGlrZSB0byBzZW5kIGEgcmVwb3J0IG9mIHRob3NlIGVycm9ycy4gV2hp

Y2ggaXMgb24geW91ciB3ZWJzaXRlOiB3d3cubmsuY2ENCg0KQmVjYXVzZSBvZiB0aGVzZSBpc3N1

ZXMgeW91IGFyZW4ndCByYW5raW5ncyBvbiBHb29nbGUuDQoNCk1heSBJIHNlbmQgeW91LCBlcnJv

cuKAmXMgcmVwb3J0Pw0KDQpUaGFuayB5b3UsDQoNCkVtbWENCg==

--_000_SEYPR04MB643312649B73128B845E18A59C8FASEYPR04MB6433apcp_

Content-Type: text/html; charset="utf-8"

Content-Transfer-Encoding: base64

PGh0bWw+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0i

dGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04Ij4NCjwvaGVhZD4NCjxib2R5Pg0KPHA+SGkgLCBzYWxl

c0Buay5jYTwvcD4NCjxwPjxicj4NCjwvcD4NCjxwPldvdWxkIHlvdSBsaWtlIG1lIHRvIHNlbmQg

dGhlIHJlcG9ydCBvZiB0aGUgZXJyb3JzPzwvcD4NCjxwPkJlc3QsPC9wPg0KPHA+PHN0cm9uZz48

ZW0+RW1tYTwvZW0+PC9zdHJvbmc+PC9wPg0KPHA+PGJyPg0KPC9wPg0KPHA+T24gVGh1LCBPY3Qg

MjQsIDIwMjUgYXQgMTI6MzLigK9QTSA8c3Ryb25nPjxlbT5FbW1hPC9lbT48L3N0cm9uZz4gd3Jv

dGU6PC9wPg0KPHA+PC9wPg0KPHA+SGVsbG8sPC9wPg0KPHA+V2l0aCB5b3VyIHBlcm1pc3Npb24s

IEkgd291bGQgbGlrZSB0byBzZW5kIGEgcmVwb3J0IG9mIHRob3NlIGVycm9ycy4gV2hpY2ggaXMg

b24geW91ciB3ZWJzaXRlOjxzdHJvbmc+PHU+DQo8L3U+PC9zdHJvbmc+d3d3Lm5rLmNhPC9wPg0K

PHA+QmVjYXVzZSBvZiB0aGVzZSBpc3N1ZXMgeW91IGFyZW4ndCByYW5raW5ncyBvbiBHb29nbGUu

PC9wPg0KPHA+TWF5IEkgc2VuZCB5b3UsIGVycm9y4oCZcyByZXBvcnQ/PC9wPg0KPHA+VGhhbmsg

eW91LDwvcD4NCjxwPjxzdHJvbmc+PGVtPkVtbWE8L2VtPjwvc3Ryb25nPjwvcD4NCjwvYm9keT4N

CjwvaHRtbD4NCg==

--_000_SEYPR04MB643312649B73128B845E18A59C8FASEYPR04MB6433apcp_--

Web/SEO/App Spam from Microsoft Outlook Part 1

Posted by Dave Yadallee on Thursday, January 15. 2026

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 14 Jan 2026 06:27:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vg0th-0000000023t-2jQZ

for dave@doctor.nl2k.ab.ca;

Wed, 14 Jan 2026 06:26:53 -0700

Resent-From: The Doctor

Resent-Date: Wed, 14 Jan 2026 06:26:53 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-koreacentralazolkn19013072.outbound.protection.outlook.com ([52.103.74.72]:59967 helo=SEYPR02CU001.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vfxNf-00000000HkE-0iR6

for sales@nk.ca;

Wed, 14 Jan 2026 02:41:44 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=fejcNASW821JJTlkqfdtLYMy4iEm8zsyqsD7cWBWlnaRQv1BWPmjYzZfB9WtygcD3ekgrrvxsK6IYG+/gZGMhsrvevNeaRwG3orOfE2BANAlNuBsUVSHJ0+mNJDQF8x6/VAJn9k7P9JMoYoYqWDe/3wdoiwFyGxbvXwnLTzWiYy0ahDV9ROWkBpz7ptRhETocKoCQpRgAg3QUxAlTFw4FStpj2GJdwk97B2x9d3uRVbrOYp7HdPRWxsxc3XfK8xIN3KhHg0xiPOn58Uxfabw8x2SjvBoIQJy4Rqg92RlvKRMqEMyxcaZbDCsUl5GHKnae0/qFb5fmdRjaI9rbk/O8g==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=cPyMmcyjLglYatMtFRQb47K7ULB8uCwGypqwoFO2FnQ=;

b=WEaZi+W+4BlYIvqqgzHtDmIAG6TNuiFAV0jssS1AkQScSKUo8u0KJf93wmxQhi32FazQnEtAf4b1+i7qvi2hGa2umf3a4NeRPQ1dK9KFH1qTXG1mUUgN3Ckg09CE5UoHHqNi3JBhtPFxWBPcgOo7uIi6oC0t7eOQTPLgByiZaxf34Mnb1VuBOhk/Q9R0g1t6vCJWTVliIq4BsjNW4zXmc6nlUAWvaVif25jzGXsxTya+oKZ/vU9GR3HF5jczBwqr5MOGNGeEjZ56zHl1Y+JACDR67sDD084HAxarTF84fR08HQcO2EvyGLV5kFnF6XnKQWQSF+ZqKPs8bvd1eg9dvA==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=cPyMmcyjLglYatMtFRQb47K7ULB8uCwGypqwoFO2FnQ=;

b=l0YOCb0wzFWIYzYsG9FZCWEgaNJLn9w8glymGkqF8kBI9OLs8OhkfoJuN3NP7C6/xjt7219OVgWkIl4wF8kwBGgzT6N9FGe+oq9GxzxAyhfY2yPCXHDuqD52ZMRH+U6BnOaQH1l6fGxZdn10I4GRIFAHGR0J9KolI0JMBj6kOtVmnFgWeaP9pooPIVH6tm1yWSb3TqYMDKXZxfLaIDrOGl1jETe9WZ1VwOFldNPqHisYj5IRBlaS4R5rFKcj9dYyjWzGYFzUL3pbRL7Y8IElsLInqCJJcqNUpaynPpSVthL8V/Ljxx+vJUenBo2X3JKn4HWR4WitwXYOW4pc31fA8Q==

Received: from SEYPR04MB6433.apcprd04.prod.outlook.com (2603:1096:101:c2::13)

by PUZPR04MB6745.apcprd04.prod.outlook.com (2603:1096:301:11b::10) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9499.7; Wed, 14 Jan

2026 09:40:37 +0000

Received: from SEYPR04MB6433.apcprd04.prod.outlook.com

([fe80::a3dd:18a0:70fe:cd5c]) by SEYPR04MB6433.apcprd04.prod.outlook.com

([fe80::a3dd:18a0:70fe:cd5c%5]) with mapi id 15.20.9499.005; Wed, 14 Jan 2026

09:40:37 +0000

From: "Emma ."

To: "sales@nk.ca"

Subject: Re : www.nk.ca

Thread-Topic: Re : www.nk.ca

Thread-Index: AQHchTnWHGfCg9O880S/scinWB0HWg==

Date: Wed, 14 Jan 2026 09:40:36 +0000

Message-ID:

Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

x-ms-exchange-messagesentrepresentingtype: 1

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: SEYPR04MB6433:EE_|PUZPR04MB6745:EE_

x-ms-office365-filtering-correlation-id: 98b70560-2194-4945-958e-08de5350f915

x-microsoft-antispam:

BCL:0;ARA:14566002|8060799015|8062599012|19110799012|5062599005|39105399006|20031999003|38102599003|461199028|15080799012|31061999003|1602099012|3412199025|10035399007|40105399003|440099028|4302099013|102099032;

x-microsoft-antispam-message-info:

=?utf-8?B?MFJQVVJBclU4VEcyWDlBQ1diR3lyUnkwTU5sWUduVHp3ZFNMbU9qbnpoWFFI?=

=?utf-8?B?VDRFMGZPU3JqQjBVRmNvbzE0Z0JaSERuc0RQdWo3TmRxd3Y4SmRmdlBwTkJQ?=

=?utf-8?B?UzYxUElFMkx3SzgxNUFqODRhdjVhTTl3UUVuaUhkcHk3TlpMSDhxQ0x6UW02?=

=?utf-8?B?ZEQvLzF4THV3NWV1amNNQkxyWlhPZDZNOUM5YWtKdCsyVCtSZ1NoNXcwUnFw?=

=?utf-8?B?NndsUGZJMlpKbnAyaVZzMnl5M3RwUnVrNEN2dHdGaUNYQy9QR1ZHbHVOTlZv?=

=?utf-8?B?OENpYzhaeG4ydFFKQkoyd1hhYm9EV21jMWd1WFhrZDFNdXRyRUxNU1E1QnFz?=

=?utf-8?B?ZnpBYjZwb2J5aWFIUU9hVUlQVGZKRmh5WHozVHdyZVlTRlp2WnlpY0FpY1ZH?=

=?utf-8?B?alRSVzY2TU5nazFYL3BhY0srWU1JRkQ2ZjlXWEtUUFhEc3BiS2ZGUUczZ1lW?=

=?utf-8?B?WG5OMldIbHl5alNYQjVjSDRQNzZLVzcyL2lLeTVjdnFMZVplYjV6ZngxUkRJ?=

=?utf-8?B?NmdNL3pXVTNxOXFmNzJvcUY1dEc5S1NDK0M4UE9QS1FuNitRRG9qT1U3UkRN?=

=?utf-8?B?aXBTa2FwQStTL0ttSnBla1ZURm1SeWFmejZhamVMclZ6UlBIQlNoVk9qNlZp?=

=?utf-8?B?NnozUEtQa0ZRc0tZRkRMV3g1WVJjZnIrQnAwUUluMkZBdmtiTmZHQXFZM09T?=

=?utf-8?B?dWRkcGZueXNza0ZISXJZQk9QSVBqejVvWVo5QWY5MDBkbmZrRFEzR1lLU3hV?=

=?utf-8?B?K3NKS0pMSlFSQTBycVlPTTgyWHJSNmNLei9kQS9wZ1lidWdUNlplL3ROZmtK?=

=?utf-8?B?Q0dkd21TQlkwTzlKTk96cDJDL2NOczA3SHFMeE5tcUdPMDBGaUU3b2x2MVYr?=

=?utf-8?B?dlBKa3IwN0oxZE1TcEszWTE0aHlmMk1hdWJzUVVqMitQVzRCUEZxVnNlYy9G?=

=?utf-8?B?cjVzNk93Q2VVSGNiY04xeUp1Z2ZzMFFzZk9haGdmZEFyMUZXbERqTlBsMVdE?=

=?utf-8?B?UWdLNlN5NnVKQWJaejRZZzFPV2YxYlFwZ2pQVDRkZjJtdVNzSWhNa3dUdHNh?=

=?utf-8?B?Q1RMcmxyeFBKUU5vZUtqdUZuUjhxS0NVS1pXQkhoUWJtdU82TlRlamhibkxS?=

=?utf-8?B?TFhYSVJHNzhGa0tZNnpHT3d3dlpWVGpOTEMxNHR1SG1USVIzOXFyYVp1UmVy?=

=?utf-8?B?d1laRVBjNlM2YXM1eUcyWmNHQi8rL3ZjWUNGZmVBSFo5OUtWTkROclRCd05O?=

=?utf-8?B?TG93eHgwdUlPd0ZSRmZxQkl3T1NJZ3hLY1NJQ0hMR3NTQUZDcFRUT2FpZ0dX?=

=?utf-8?B?ZDNQSWRnVXdFMzA0amI4MWF0Z3RyaC9Ca1hsTStRYy9Id09PbVZiZDFYR1Qw?=

=?utf-8?B?ZFRIVURyNExHaWZ1ODhrYjN4MC9vc003anoyRkR6UG9WVkpNSjFwYXBMRW5G?=

=?utf-8?B?RmZEeS9Ja0JmZXBHejk4aEs4andPZVlPc3Znd1hqdnA4bGVFZU9lMjJ6RnBX?=

=?utf-8?B?VG1pLzZXUHNCd3VHNjk2ZWZ3UWZpaVVQK3NlVHRRbjhjeVpBRTdZK0Zvd2FV?=

=?utf-8?B?cW1UQ1FRUGU4Y01maDNYSTdidHM4MnBRbzFaMkZDRE5uL3FiVUtHTlhRL1ZO?=

=?utf-8?B?NldEbkNBOVpKR0hMYVljZjY0TU5HaldLZ3RBRnRxVFZtVXIzeUNFSWNmVW8w?=

=?utf-8?B?QzFKVUs0czJOMUpnbUEyQjArS0tsejUxNjVDNUNSMWlnM0RvU0V2U211Tks5?=

=?utf-8?B?aExaRWlqejZqOEZ4eTgwVWV2NGwrcXhiaFgySVlTaWJmUGg2RGtZb0l3UlBG?=

=?utf-8?B?a016Nng0cGdXTzFYb09PUT09?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

Wi-fi phish from Sendgrid Part 5

Posted by Dave Yadallee on Thursday, January 15. 2026

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"background: linear-g=

radient(135deg, #E8F5E0 0%, #D4ECC5 100%); border-radius: 12px; margin: 30p=

x 0 0 0; border: 2px dashed #7ED957;">

center;">

: 0 0 10px 0; font-size: 18px; font-weight: 700;">

=F0=9F=8E=81 Exclusive Bonus fo=

r You

ze: 16px; margin: 0; font-weight: 600;">

Use my referral link =E2=86=92 =

Get 2,500 bonus points
an> instantly

ze: 14px; margin: 10px 0 0 0;">

Plus earn 20% of my future refe=

rrals' points forever

=20

=20

px 20px; text-align: center; border-top: 1px solid #e0e0e0;">

rgin: 0 0 10px 0;">

Season 2 Airdrop: January 31, 2026 | 170M G=

RASS Tokens

Questions? Visit
90.ct.sendgrid.net/ls/click?upn=3Du001.2b4aqm-2B3dWTjDt51DlExIuzLJce83y2A7z=

4nU9rv9E3ykdN4YSBwG8yGZeRN8hQz1iYO7xEsN8kl1lq4fZPCa66nL2MlCaGcMALtypjKYoDCZ=

lmeZm-2Far47W0wYQj7S7Fjz8x9vAN2LkC232ghb0rhZObNEqeZLtC6Tm71-2BkS74-3DjBNS_Y=

mNPztx4miJCrnDYqcF7jfR8yISc1B2YMcURCB95RzH7v-2FAlqusd9Q2l6rZumiG-2BKDbmL6ET=

KFvupUGdMmnHpZ8xnfswBgDv56ULRc6Ej7kJm-2BGqZQL6DqzqUNPNV7238ktb63re1Vuvzgscb=

mjh6Iv8SoXeZRHNbKlXj5Mr-2Bklf-2F0tMQO6tE-2Fvx8kwfAoStW-2Bd5zOB1XOzjopJRHuif=

q-2BDdFQrQs6htcrP0wY3oR26Foyc4oAUdALG-2B5e-2FSNdK-2B91T75IwlHGbsa060UQDpcIR=

7cv-2BIBQdkTcFcTrnvcxyBOhPf2Z-2F2azobVJxRDkcRM-2B7E6REJxuyUBLqievxDcA-2F7t-=

2By-2F5BFdcshaJoQK64cEBTmF0ZQqOOjMP4NXjo9Vrnh9xZypufl-2FTdi6I0T13P2rQ-2Fqaz=

NIadlgbMfoSOIhhkBasCGd9kdJjmu2MhOki9r7JP0mAL4eqFD-2BeJxcQgRWCMEKagbrzkHXNh0=

2RJgQbMBuUY7911Tk1P49HtLWbipbQRQoUEinUtyMHL2HHynSXnzqoxBlXIIkzrHl3hPBr37PNa=

3sM8lchvaTAfptLzYefpvI-2BqN0x8jtDelUaYnPvP7kzNhhjJvQMPqeQ4P7I2N4Edxba4XC2xR=

-2FOJCkTgeIS-2Bm1WRnrJbmLZTXj4h63q8qrPprMNTwe026pavNxay-2B8geRdf8b6fMmi-2Be=

uAT3Sq5GXyxNOz0xlbPb6ntz0v8jdrqY2DaS68-2BCWHYyF3mkMTPw9BYQ6ELwl-2Bd1jBq27y1=

pAKonKsdrKdDoTBVaiCJEerfjC7jb4wmz0DKnQyDNaydnuJxNkafGezMpN7MszAjvDZ1yLFUcCg=

LvjbIt2S3FsM-2B9sv6b18XGJBxYd4-3D" style=3D"color: #7ED957; text-decoration=

: none;">getgrass.io

rgin: 0;">

t/wf/unsubscribe?upn=3Du001.EtyC8XKcPmGZYDmBykh8zSgppscrG1a9-2FbnUZspF0av6m=

dLTg7APu65Yl-2FlT7gYWIWvlofAwKkY-2F2ptfbkc7w8h-2FPFa6xEfU55tVw9pxqAkjKcoCM5=

xYrUadMDhNOM92fWIv17g9YhozDkR7CnSOMN9VONbHreZCQV9avp3ZldfA4RViJiqSGwa-2FbKS=

NI-2FT230teqZqcdXe7Jd0D-2B0tCvKBfjwEW8Xh674VCVHspCbI4HSw5Z-2FbE05ostL8qOifY=

ZW5y9HOyrW5EK-2Bfx4tKmgNH0zRqc7ZqBN3UDvNz6xN-2BADgwpWAg-2FhE-2Bg9oFmnzJ6S3D=

LEX04SifzPQryHoMEM1sUXwpg4PDgSMtxSxchHRm5LaSdA1HTN3wjI0vYY-2FtZYnDVntXKLged=

vt5VRJ50tzcLbBOwv-2FbFsVsuvQRfeRb2-2BdNRu0HmQcpu-2FmEm1mf1kecoqLXtk3ertGOZ-=

2BuspvbTK6wtrY9lMTfRloKVlpw66LlQYSA9NNNaR3ce0-2Bssu-2BUt7-2FVjyG2lOu9MTAchd=

7xP82jqKvJbtDkvmslbRes-2BnfwRX1KGaYaByahgwqZIjJlQfUV-2FCNDcI-2FxOeCEvRAG8cP=

LzD95m89lecLTeLKMBeKbUEzen9Tv1YiwDLimLlXjswTnVfehvF-2FvzIi-2F4Jxdj2Y0YORq2x=

CNZMpQZik26cONfzat-2B0H-2FJ8E-2BO6M6-2FBv7ynKoxjTEpw8HKxx8zwbzsUVosY-2B1SQx=

q7MtNjB0Bsn6fP1dnVYqSofIn3fp3NTYW3yHEgQrClOUEH-2BS8u2tKgws1JZsvx7a-2FvxeyIO=

SxH0W4IqMsGGV37a9WsjV3rqlErHgHHkY2xdJGV-2FdeeC1m5W6ZQakFxuRqosS7POYyfX1o7H2=

lDGkeDFkXQ9tOkx" style=3D"color: #cccccc; text-decoration: underline;">Unsu=

bscribe |=20

t/ls/click?upn=3Du001.2b4aqm-2B3dWTjDt51DlExIuzLJce83y2A7z4nU9rv9E3ykdN4YSB=

wG8yGZeRN8hQz1iYO7xEsN8kl1lq4fZPCa66nL2MlCaGcMALtypjKYoDCZlmeZm-2Far47W0wYQ=

j7S7Fjz8x9vAN2LkC232ghb0rhZObNEqeZLtC6Tm71-2BkS74-3DQ557_YmNPztx4miJCrnDYqc=

F7jfR8yISc1B2YMcURCB95RzH7v-2FAlqusd9Q2l6rZumiG-2BKDbmL6ETKFvupUGdMmnHpZ8xn=

fswBgDv56ULRc6Ej7kJm-2BGqZQL6DqzqUNPNV7238ktb63re1Vuvzgscbmjh6Iv8SoXeZRHNbK=

lXj5Mr-2Bklf-2F0tMQO6tE-2Fvx8kwfAoStW-2Bd5zOB1XOzjopJRHuifq-2BDdFQrQs6htcrP=

0wY3oR26Foyc4oAUdALG-2B5e-2FSNdK-2B91T75IwlHGbsa060UQDpcIR7cv-2BIBQdkTcFcTr=

nvcxyBOhPf2Z-2F2azobVJxRDkcRM-2B7E6REJxuyUBLqievxDcA-2F7t-2By-2F5BFdcshaJoQ=

K64cEBTmF0ZQqOOjMP4NXjo9Vrnh9xZypufl-2FTdi6I0T13P2rQ-2FqazNIadlgbMfoSOIhhkB=

asCGd9kdJjmu2MhOki9r7JP0mAL4eqFD-2BeJxcQgRWCMEKagbrzkHXNh02RJgQbMBuUY7911Tk=

1P49HtLWbipbQRQoUEinUtyMHL2HHynSXnzqoxBlXIIkzrHl3hPBr37PNa3sM8lchvaTAfptLzY=

efpvI-2BqN0x8jtDelUaYnPvP7kzNhhjJvQMPqeQ4P7I2N4Edxba4XC2xR-2FOJCkTgeIS-2Bm1=

WRnrJbmLZTXj4h63q8qrPprMNTwe026pavNxay-2B8geRdf8b6fMmi-2BeuAT3Sq5GXyxNOz0xl=

bPb6ntzxzsf8krV3ROAIWdfLDvR6ijH5GtPXH30NE11Cn01UnxeizlpUN3KQPM6waMU0IHDMZAR=

ppNpW4YtbTvPcQhhl5TzjxOxeW-2FvF3UQ68Tp5PshBjLy1FzqrQMEl7gTh376s5LtJi8QvicDo=

U3jrQa2oM-3D" style=3D"color: #cccccc; text-decoration: underline;">Privacy=

=20

=20

=20

GZYDmBykh8zSgppscrG1a9-2FbnUZspF0av6mdLTg7APu65Yl-2FlT7gYWIWvlofAwKkY-2F2pt=

fbkc7w8h-2FPFa6xEfU55tVw9pxqAkjKcoCM5xYrUadMDhNOM92fWIv17g9YhozDkR7CnSOMN9V=

ONbHreZCQV9avp3ZldfA4RViJiqSGwa-2FbKSNI-2FT230teqZqcdXe7Jd0D-2B0tCvKBfjwEW8=

Xh674VCVHspCbI4HSw5Z-2FbE05ostL8qOifYZW5y9HOyrW5EK-2Bfx4tKmgNH0zRqc7ZqBN3UD=

vNz6xN-2BADgwpWAg-2FhE-2Bg9oFmnzJ6S3DLEX04SifzPQryHoMEM1sUXwpg4PDgSMtxSxchH=

Rm5LaSdA1HTN3wjI0vYY-2FtZYnDVntXKLgedvt5VRJ50tzcLbBOwv-2FbFsVsuvQRfeRb2-2Bd=

NRu0HmQcpu-2FmEm1mf1kecoqLXtk3ertGOZ-2BuspvbTK6wtrY9lMTfRloKVlpw66LlQYSA9NN=

NaR3ce0-2Bssu-2BUt7-2FVjyG2lOu9MTAchd7xP82jqKvJbtDkvmslbRes-2BnfwRX1KGaYaBy=

ahgwqZIjJlQfUV-2FCNDcI-2FxOeCEvRAG8cPLzD95m89lecLTeLKMBeKbUEzen9Tv1YiwDLimL=

lXjswTnVfehvF-2FvzIi-2F4Jxdj2Y0YORq2xCNZMpQZik26cONfzat-2B0H-2FJ8E-2BO6M6-2=

FBv7ynKoxjTEpw8HKxx8zwb9JI1GCGUHXPatLPSQ9gQNSYa6ug1ZQWqmR1oXMH4SWF2QPjagbQs=

vm5GFLoKp5qo3hu3W818y5f45JJTWR7qM8Iz3h8QhvvZuJcKPdYsjBtasnmB5vP7cKcDi1AZ-2B=

rsQOakej06ByunMfFAKUNBY0M-3D" alt=3D"" width=3D"1" height=3D"1" border=3D"0=

" style=3D"height:1px !important;width:1px !important;border-width:0 !impor=

tant;margin-top:0 !important;margin-bottom:0 !important;margin-right:0 !imp=

ortant;margin-left:0 !important;padding-top:0 !important;padding-bottom:0 !=

important;padding-right:0 !important;padding-left:0 !important;"/>

--0dcfe4ca33b07c060fe5f19d2c53a9393b0838088f6196e60e70318b7f1d--

Wi-fi phish from Sendgrid Part 4

Posted by Dave Yadallee on Thursday, January 15. 2026

ze: 15px; line-height: 1.6; margin: 0 0 12px 0;">

=E2=9C=93 Already prove=

n - Trading GRASS on Binance, Bybit, Coinbase

ze: 15px; line-height: 1.6; margin: 0;">

=E2=9C=93 Real payouts<=

/strong> - Season 1 paid $200-800 per person to 2.8M users

=20

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"background: linear-g=

radient(135deg, #E8F5E0 0%, #D4ECC5 100%); border-radius: 12px; margin: 0 0=

30px 0; border: 2px solid #7ED957;">

: 0 0 15px 0; font-size: 22px; font-weight: 700; text-align: center;">

=F0=9F=9A=80 Season 2 Just Laun=

ched - 70% Bigger

=20

=3D"100%" cellpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"margin:=

15px 0;">

center" style=3D"padding: 15px; border-right: 1px solid #7ED957;">

534; font-size: 32px; font-weight: 700; margin: 0 0 5px 0;">170M

016; font-size: 14px; margin: 0;">GRASS Tokens

666; font-size: 12px; margin: 5px 0 0 0;">vs 100M in Season 1

center" style=3D"padding: 15px;">

534; font-size: 32px; font-weight: 700; margin: 0 0 5px 0;">Jan 31

016; font-size: 14px; margin: 0;">Airdrop Date

666; font-size: 12px; margin: 5px 0 0 0;">Start earning now

=20

ze: 15px; line-height: 1.6; margin: 15px 0 0 0; text-align: center;">

Bigger pool =3D bigger potentia=

l rewards. The sooner you start, the more points you accumulate before the =

snapshot.

=20

; font-size: 22px; font-weight: 700;">

=F0=9F=92=A1 How It Works (3 Minutes Setup)=

:

=20

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"margin: 0 0 15px 0;"=

>

32px; background: #7ED957; border-radius: 50%; text-align: center; line-hei=

ght: 32px; color: #ffffff; font-size: 16px; font-weight: bold;">1

n=3D"top">

: 0 0 5px 0; font-size: 16px; font-weight: 600;">Sign up free

0; font-size: 14px;">Create Grass account

=20

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"margin: 0 0 15px 0;"=

>

32px; background: #7ED957; border-radius: 50%; text-align: center; line-hei=

ght: 32px; color: #ffffff; font-size: 16px; font-weight: bold;">2

n=3D"top">

: 0 0 5px 0; font-size: 16px; font-weight: 600;">Install the app

0; font-size: 14px;">Download for Windows, Mac, or Chrome extension

=20

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"margin: 0 0 30px 0;"=

>

32px; background: #7ED957; border-radius: 50%; text-align: center; line-hei=

ght: 32px; color: #ffffff; font-size: 16px; font-weight: bold;">3

n=3D"top">

: 0 0 5px 0; font-size: 16px; font-weight: 600;">Earn automatically

0; font-size: 14px;">App runs in background. Points accumulate 24/7. Claim=

airdrop Jan 31

=20

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"margin: 40px 0;">

dgrid.net/ls/click?upn=3Du001.2b4aqm-2B3dWTjDt51DlExIuzLJce83y2A7z4nU9rv9E3=

ykdN4YSBwG8yGZeRN8hQz1iYO7xEsN8kl1lq4fZPCa66nL2MlCaGcMALtypjKYoCynCIMTduETM=

gj5l-2BiLp5QdscDHMbuMSFuBCJg6PsH8Ixy80aL8EEceXSRj0Dhaoo-3DzwhA_YmNPztx4miJC=

rnDYqcF7jfR8yISc1B2YMcURCB95RzH7v-2FAlqusd9Q2l6rZumiG-2BKDbmL6ETKFvupUGdMmn=

HpZ8xnfswBgDv56ULRc6Ej7kJm-2BGqZQL6DqzqUNPNV7238ktb63re1Vuvzgscbmjh6Iv8SoXe=

ZRHNbKlXj5Mr-2Bklf-2F0tMQO6tE-2Fvx8kwfAoStW-2Bd5zOB1XOzjopJRHuifq-2BDdFQrQs=

6htcrP0wY3oR26Foyc4oAUdALG-2B5e-2FSNdK-2B91T75IwlHGbsa060UQDpcIR7cv-2BIBQdk=

TcFcTrnvcxyBOhPf2Z-2F2azobVJxRDkcRM-2B7E6REJxuyUBLqievxDcA-2F7t-2By-2F5BFdc=

shaJoQK64cEBTmF0ZQqOOjMP4NXjo9Vrnh9xZypufl-2FTdi6I0T13P2rQ-2FqazNIadlgbMfoS=

OIhhkBasCGd9kdJjmu2MhOki9r7JP0mAL4eqFD-2BeJxcQgRWCMEKagbrzkHXNh02RJgQbMBuUY=

7911Tk1P49HtLWbipbQRQoUEinUtyMHL2HHynSXnzqoxBlXIIkzrHl3hPBr37PNa3sM8lchvaTA=

fptLzYefpvI-2BqN0x8jtDelUaYnPvP7kzNhhjJvQMPqeQ4P7I2N4Edxba4XC2xR-2FOJCkTgeI=

S-2Bm1WRnrJbmLZTXj4h63q8qrPprMNTwe026pavNxay-2B8geRdf8b6fMmi-2BeuAT3Sq5GXyx=

NOz0xlbPb6ntzw8UcscmERduhpYrGbxcjPXFFZFHjE7G2-2BAS-2B4sN4ZQCYZYqibWL54O93yu=

2xbZZNmrrFEaL4yvuJittyWrOooFcHRSK3CCIVlBaBshKDDCBRu57qqG6XAmokSi-2FJMFUpKT4=

z2GTbJc5LN-2Fyn4EG850-3D" class=3D"cta-button" style=3D"display: inline-blo=

ck; background: linear-gradient(135deg, #7ED957 0%, #5FB534 100%); color: #=

ffffff; text-decoration: none; padding: 18px 50px; border-radius: 30px; fon=

t-size: 18px; font-weight: 700; box-shadow: 0 4px 15px rgba(126, 217, 87, 0=

.4);">

=F0=9F=9A=80 SIGN-UP NOW

=20

Categories: Phish, sendgrid.net spam and phish

0 Comments

Wi-fi phish from Sendgrid Part 3
Posted by Dave Yadallee on Thursday, January 15. 2026

Use my referral link =E2=86=92 Get 2,500 bonus points instantly

Plus earn 20% of my future referrals' points forever

Season 2 Airdrop: January 31, 2026 | 170M GRASS Tokens

Questions? Visit getgrass.io ( https://app.getresponse.com/email_marketing_=

click.html?x=3Da62b&co=3DhnE5Im&lc=3DzZ3fjf&mc=3DJ5&s=3DBISC7TY&u=3DMcPkc&z=

=3DEGItzYy& )

Unsubscribe ( https://u57503890.ct.sendgrid.net/wf/unsubscribe?upn=3Du001.E=

tyC8XKcPmGZYDmBykh8zSgppscrG1a9-2FbnUZspF0av6mdLTg7APu65Yl-2FlT7gYWIWvlofAw=

KkY-2F2ptfbkc7w8h-2FPFa6xEfU55tVw9pxqAkjKcoCM5xYrUadMDhNOM92fWIv17g9YhozDkR=

7CnSOMN9VONbHreZCQV9avp3ZldfA4RViJiqSGwa-2FbKSNI-2FT230teqZqcdXe7Jd0D-2B0tC=

vKBfjwEW8Xh674VCVHspCbI4HSw5Z-2FbE05ostL8qOifYZW5y9HOyrW5EK-2Bfx4tKmgNH0zRq=

c7ZqBN3UDvNz6xN-2BADgwpWAg-2FhE-2Bg9oFmnzJ6S3DLEX04SifzPQryHoMEM1sUXwpg4PDg=

SMtxSxchHRm5LaSdA1HTN3wjI0vYY-2FtZYnDVntXKLgedvt5VRJ50tzcLbBOwv-2FbFsVsuvQR=

feRb2-2BdNRu0HmQcpu-2FmEm1mf1kecoqLXtk3ertGOZ-2BuspvbTK6wtrY9lMTfRloKVlpw66=

LlQYSA9NNNaR3ce0-2Bssu-2BUt7-2FVjyG2lOu9MTAchd7xP82jqKvJbtDkvmslbRes-2BnfwR=

X1KGaYaByahgwqZIjJlQfUV-2FCNDcI-2FxOeCEvRAG8cPLzD95m89lecLTeLKMBeKbUEzen9Tv=

1YiwDLimLlXjswTnVfehvF-2FvzIi-2F4Jxdj2Y0YORq2xCNZMpQZik26cONfzat-2B0H-2FJ8E=

-2BO6M6-2FBv7ynKoxjTEpw8HKxx8zwb99Z06ks3sZerC0xY-2Bsj5fKb5LGZ-2BOJHRqcqxLHr=

GUPUzbA2TcuBTBwidSdFECD9gdLMBPsSP-2B-2F9JjUHYpTdGk26XIpPVC7VsGCZGs3a8z-2B4h=

aR7GOQ9v4XwHOj2D81aOcnAQHvyxSJ0Np6u08jbhysWba-2Bw5A608xbPCgxZjRGx ) | Priva=

cy ( https://app.getresponse.com/email_marketing_click.html?x=3Da62b&co=3Dh=

nE5Im&lc=3DzZ3fjf&mc=3DJ5&s=3DBISC7TY&u=3DMcPkc&z=3DEGItzYy& )

--0dcfe4ca33b07c060fe5f19d2c53a9393b0838088f6196e60e70318b7f1d

Content-Transfer-Encoding: quoted-printable

Content-Type: text/html; charset=utf-8

Mime-Version: 1.0

emas-microsoft-com:vml" xmlns:o=3D"urn:schemas-microsoft-com:office:office"=

>

=3D1.0">

Grass Season 2 - Airdrop January 31, 2026

=20

ystemFont, 'Segoe UI', Roboto, sans-serif; background-color: #f5f5f5;">

=20

Turn your idle WiFi into passive income. 170M tokens up for grabs. =

January 31, 2026 =F0=9F=8C=B1

=20

ng=3D"0" border=3D"0" style=3D"background-color: #f5f5f5;">

=20

" cellpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"max-width: 600p=

x; background-color: #ffffff; border-radius: 16px; overflow: hidden; box-sh=

adow: 0 4px 12px rgba(0,0,0,0.1);">

=20

=20

ED957 0%, #5FB534 100%); padding: 40px 30px; text-align: center;" class=3D"=

section-padding">

it/logos/grass-horizontal-logo.svg" alt=3D"Grass Network" class=3D"logo" wi=

dth=3D"150" style=3D"display: block; margin: 0 auto 20px auto; height: auto=

;">

; font-size: 26px; font-weight: 700; line-height: 1.2;">

Your WiFi Could Be Making You Money

e: 18px; opacity: 0.95;">

While you sleep, browse, or work - complete=

ly passive

>

=20

ne-height: 1.6; margin: 0 0 20px 0;">

Hi root@nk.ca,

=20

ne-height: 1.6; margin: 0 0 15px 0;">

What if I told you there's a way to earn pa=

ssive income from something you already pay for every month?

=20

ne-height: 1.6; margin: 0 0 15px 0;">

Your internet connection sits idle most of =

the time. Grass Network lets you monetize that unused band=

width by sharing it for public web data collection. 2,8 million
rong> people are already earning.

=20

lpadding=3D"0" cellspacing=3D"0" border=3D"0" style=3D"background: linear-g=

radient(135deg, #FFF9E6 0%, #FFF5CC 100%); border-radius: 12px; margin: 0 0=

30px 0; border-left: 4px solid #FFB800;">

=20

=20

=20

: 0 0 15px 0; font-size: 20px; font-weight: 700;">

=F0=9F=92=A1 Here's What Makes =

This Different:

=20

ze: 15px; line-height: 1.6; margin: 0 0 12px 0;">

=E2=9C=93 100% passive<=

/strong> - Install once, earn forever

ze: 15px; line-height: 1.6; margin: 0 0 12px 0;">

=E2=9C=93 Zero investme=

nt - Completely free to start

Categories: Phish, sendgrid.net spam and phish

0 Comments

Wi-fi phish from Sendgrid Part 2
Posted by Dave Yadallee on Thursday, January 15. 2026

Content analysis details: (43.7 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[134.128.96.43 listed in dnsbl.ahbl.org]

[134.128.96.43 listed in dnsbl.ahbl.org]

[134.128.96.43 listed in dnsbl.ahbl.org]

[134.128.96.43 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[134.128.96.43 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[134.128.96.43 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[134.128.96.43 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[134.128.96.43 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

[134.128.96.43 listed in will-spam-for-food.eu.org]

1.4 URIBL_CT_SURBL Contains an URL listed in the CT SURBL blocklist

[URI: u57503890.ct.sendgrid.net]

1.1 URIBL_GREY Contains an URL listed in the URIBL greylist

[URI: sendgrid.net]

[URI: getresponse.com]

0.0 DKIM_ADSP_CUSTOM_MED No valid author signature, adsp_override is

CUSTOM_MED

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

15 GR_DOMAIN_SENDGR1 Received contains spammer id (sendgr)

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail

domains are different

0.2 FREEMAIL_REPLYTO_END_DIGIT Reply-To freemail username ends in digit

[kendavangordon6322(at)gmail.com]

1.0 FORGED_GMAIL_RCVD 'From' gmail.com does not match 'Received' headers

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[kendavangordon6322(at)gmail.com]

0.1 TW_GW BODY: Odd Letter Triples with GW

0.5 L_HELLO_ADDRESS BODY: Greets you by address, not by name

0.3 LONGWORD BODY: Uses overlong words

0.6 J_CHICKENPOX_82 BODY: 8alpha-pock-2alpha

0.1 TW_QC BODY: Odd Letter Triples with QC

0.6 MEGALONGWORD BODY: Uses really overlong words

15 GR_DOMAIN_SENDGR6 URI: Body contains known spammer URI (sendgr)

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_LOW_CONTRAST BODY: HTML font color similar or identical to

background

0.2 FREEMAIL_FORGED_FROMDOMAIN 2nd level domains in From and EnvelopeFrom

freemail headers are different

1.5 IMPRONONCABLE_2 Too much mixed numbers and lower-case letters

1.2 NML_ADSP_CUSTOM_MED ADSP custom_med hit, and not from a mailing list

Subject: {SPAM?} =?UTF-8?B?4o+w?= 17 Days Left: Claim Your Share of 170M GRASS Tokens

--0dcfe4ca33b07c060fe5f19d2c53a9393b0838088f6196e60e70318b7f1d

Content-Transfer-Encoding: quoted-printable

Content-Type: text/plain; charset=utf-8

Mime-Version: 1.0

Turn your idle WiFi into passive income. 170M tokens up for grabs. January =

31, 2026 =F0=9F=8C=B1

**********************************

Your WiFi Could Be Making You Money

**********************************

While you sleep, browse, or work - completely passive

Hi root@nk.ca,

What if I told you there's a way to earn passive income from something you =

already pay for every month?

Your internet connection sits idle most of the time. Grass Network lets y=

ou monetize that unused bandwidth by sharing it for public web data collect=

ion. 2,8 million people are already earning.

-----------------------------------

=F0=9F=92=A1 Here's What Makes This Different:

-----------------------------------

=E2=9C=93 100% passive - Install once, earn forever

=E2=9C=93 Zero investment - Completely free to start

=E2=9C=93 Already proven - Trading GRASS on Binance, Bybit, Coinbase

=E2=9C=93 Real payouts - Season 1 paid $200-800 per person to 2.8M users

-------------------------------------

=F0=9F=9A=80 Season 2 Just Launched - 70% Bigger

-------------------------------------

170M

GRASS Tokens

vs 100M in Season 1

Jan 31

Airdrop Date

Start earning now

Bigger pool =3D bigger potential rewards. The sooner you start, the more po=

ints you accumulate before the snapshot.

---------------------------------

=F0=9F=92=A1 How It Works (3 Minutes Setup):

---------------------------------

1

Sign up free

------------

Create Grass account

2

Install the app

---------------

Download for Windows, Mac, or Chrome extension

3

Earn automatically

------------------

App runs in background. Points accumulate 24/7. Claim airdrop Jan 31

=F0=9F=9A=80 SIGN-UP NOW ( https://app.getresponse.com/email_marketing_clic=

k.html?x=3Da62b&co=3DhnE5Im&lc=3DzZ3ff4&mc=3DJ5&s=3DBISC7TY&u=3DMcPkc&z=3DE=

VUtSgQ& )

=F0=9F=8E=81 Exclusive Bonus for You

-------------------------

Categories: Phish, sendgrid.net spam and phish

0 Comments

Wi-fi phish from Sendgrid Part 1
Posted by Dave Yadallee on Wednesday, January 14. 2026

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 14 Jan 2026 06:27:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vg0tY-0000000023f-473g

for dave@doctor.nl2k.ab.ca;

Wed, 14 Jan 2026 06:26:44 -0700

Resent-From: The Doctor

Resent-Date: Wed, 14 Jan 2026 06:26:44 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from vsvhshnb.outbound-mail.sendgrid.net ([134.128.96.43]:61488)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vfx9r-00000000HEe-0Zyo

for root@nk.ca;

Wed, 14 Jan 2026 02:27:26 -0700

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sendgrid.net;

h=content-type:date:from:mime-version:subject:reply-to:list-unsubscribe:

list-unsubscribe-post:to:cc:content-type:date:from:subject:to;

s=smtpapi; bh=/Zn1akml1a+WjoB7QB65sLgl7f4w3E01kAmBS7P+gSc=;

b=I0yjg4wUvNt1JzjiBvZGgiWu5pHQBqr9CUtiERWNW/lf2XsDiBLudgQCRjHLYUnQJu1t

hlRFV+rCmFDg9Xkg8hhfLwlOIiCZGS3fEAJKGW1m27lA0Wy3PFdxhk1jKui2lfROfBZG13

CPdzhR9CTg8bpRRoVEgPVDUN2rAvbAClw=

Received: by recvd-678ccb598b-tgpf4 with SMTP id recvd-678ccb598b-tgpf4-1-6967610E-3A

2026-01-14 09:25:34.678746614 +0000 UTC m=+2373568.573379611

Received: from NTc1MDM4OTA (unknown)

by geopod-ismtpd-36 (SG) with HTTP

id PHqu11RqTvO-6JhG3vh-rA

Wed, 14 Jan 2026 09:25:34.667 +0000 (UTC)

Content-Type: multipart/alternative; boundary=0dcfe4ca33b07c060fe5f19d2c53a9393b0838088f6196e60e70318b7f1d

Date: Wed, 14 Jan 2026 09:25:36 +0000 (UTC)

From: GRASS

Mime-Version: 1.0

Message-ID:

Subject: =?UTF-8?B?4o+w?= 17 Days Left: Claim Your Share of 170M GRASS Tokens

Reply-To: kendavangordon6322@gmail.com

List-Unsubscribe:

=?us-ascii?Q?=3Chttps=3A=2F=2Fu57503890=2Ect=2Esendgrid=2Enet=2Flu=2Funsubscribe=3Foc=3Du001=2EOtz8?=

=?us-ascii?Q?ikZ6FGVxFI-3B=5Fpj9tsJR572dDK9FZihb5CkqA-?=

=?us-ascii?Q?EKZZd5G87dkYKTUIfEkJh3TrZvPdF9iCV=5FBSwxa?=

=?us-ascii?Q?dcmr-b29E1FnCS0uoLRNVBQBEkP=5FXd2jCRJH0sl?=

=?us-ascii?Q?7b2myHAxnP3cuGClhZFSpyy8xBHdLF0nh3CY7q4?=

=?us-ascii?Q?xiXk4HJHu3V0cuLI=5FQb7lEkeLxf38X=5F0VbmRPMy?=

=?us-ascii?Q?akyV4cdGeRWdvdN=5FoNlMyJF96ChK1FCJJIX=5Fhne?=

=?us-ascii?Q?KOQ33bUUjue9pUZ58QpDqq=5FjtF5x6mfuLxxr5p5?=

=?us-ascii?Q?nKQDOfbKA3ji7S6moJ4cxzIdUKdaQH-o2nnS8X5?=

=?us-ascii?Q?lq3Hls9-qXrSnozRrcoj5hwS8vYdjHRn8zsNnAL?=

=?us-ascii?Q?5b=5FZqZrzn5CdRsHjC56hNsR1RNiAtRe89cFMFes?=

=?us-ascii?Q?fANbKQ4xrg3-WHUYFNHellFMGl=5FB8srEiSwOaxo?=

=?us-ascii?Q?ear7sJ4YKUP6fWjtus6r5pRlaan6oQyISQFA1kf?=

=?us-ascii?Q?V9nVZgXT4bAfi-n2f536ygoIZoSZkf=5FPiE4hEv3?=

=?us-ascii?Q?qIm9hJpZr2VQX3F3Uzgs9idEjIXm7gf9OiHiKd8?=

=?us-ascii?Q?zgBqgg88V5r8JbiDGAr4bRzWDdWeF=5F6gKSf6yc9?=

=?us-ascii?Q?C457nSquloQr-hVGz7E189zXOMN4v4VJI=5FrQetE?=

=?us-ascii?Q?6vsEX9uYxdP4B3MNY=5Fujx1gn4-B4ORByL52oxsv?=

=?us-ascii?Q?O4fEv05MdAy2hjdV7JzSLHxIadsdREVJAPYTW8x?=

=?us-ascii?Q?T6c3Hto6D0Cp8bZ-afU6M27wWonhHGCEEPXODtX?=

=?us-ascii?Q?2=5FDlc=5F7ZWMGWUzAVVF5tgErFuzPe7ClAkz6gTE3?=

=?us-ascii?Q?JsAZJGOa7-SsWbURESvPG9HjEjBHmAmt5XwOP5C?=

=?us-ascii?Q?ma2hZcp7X4TKKpVWIPQ40ZeJZctbf1K5KStg7Kx?=

=?us-ascii?Q?e2L2jaSyM0-Aa5CgN68LSmrxlhkguBvHk2vMLF7?=

=?us-ascii?Q?BxRWzH2eyEVWUg=5Ft4uBREBReDNzKwE5pKGM08-q?=

=?us-ascii?Q?X6u---thMQSyWqIZuOkVOFLH-IHIb67KzfkEWbs?=

=?us-ascii?Q?q-LcJxPakNr98cpzSmdpmgWeiCXoFvsn7fkmwhe?=

=?us-ascii?Q?CqbVlH4n7DXVk4k-rO-ZoKKwBfw1smCgz-k5Y5k?=

=?us-ascii?Q?t3cvd9-E29SB-x1CkPSE04s-EEGrZejhLV27X-j?=

=?us-ascii?Q?BoH9MkO2sUqiVfyrrsDIPcgFtkQsH95=5FCl0jePQ?=

=?us-ascii?Q?xSVF3fe1cCkl1bDGJGxRCynPzr6taTReULDlKlP?=

=?us-ascii?Q?XRIoJGk0AkMbkYw3-ecc7HdYdLC4jcjXncoTu=5Fg?=

=?us-ascii?Q?ZVi74aEgRQNti-yTxTqIJ2RPnuRe0QTQJOgDQUr?=

=?us-ascii?Q?TCB6QATgZbpydvkKf7pSe9bafBgpygGxi7BPzSF?=

=?us-ascii?Q?RDu7GaPpIzMVoTrIKpJi691IKph8Echhi8fq0Pp?=

=?us-ascii?Q?CR8Zsg5EneQ4CjEgJwZjgBjEdX1BsnJ2vGozu5S?=

=?us-ascii?Q?eePx7-=5FefZAvLEeKgI=3E=2C=3Cmailto=3Aunsubscribe?=

=?us-ascii?Q?=40sendgrid=2Enet=3Fsubject=3Dhttps=3A=2F=2Fu57503890?=

=?us-ascii?Q?=2Ect=2Esendgrid=2Enet=2Fmt=2Fu=2Fu001=2EX6zTXEQ2uYaC?=

=?us-ascii?Q?OQhPJEuzLFTWMbze2X2L4a9wOwdoSCs=2F4na=2Fu00?=

=?us-ascii?Q?1=2EeWPbAtqS=2Fu001=2Ep7ggpGYbNHJ4vKUM-2FW9CP?=

=?us-ascii?Q?nBeZzyxd2AM24oVDqSCQyQ7okK2WzCPTSFNqQsN?=

=?us-ascii?Q?V-2Bhnyn6RBim2FZZumwwXnXhGRPZiy4ZxRJBNg?=

=?us-ascii?Q?gaUHCprb5gjLScH6svxP0KcOqZmfx501AyXk4Bl?=

=?us-ascii?Q?7xXxNz4OA-2FQoKcsvltmU4temmzYeMMiXASB5h?=

=?us-ascii?Q?VxIOSAFw2YVGasfyJQi16B5VCj-2FeN1E9QL1Ev?=

=?us-ascii?Q?tt8EfMtLzccSmHzHeHrU09gGQ6CZyG1oGOJmaGA?=

=?us-ascii?Q?izWC6qBoI3C1DnUFWXl4CqFwhkxYrZ6096iijGO?=

=?us-ascii?Q?a9jtx1Pc1yc0Q7z-2BMe1ju-2BJlWrJbhl5owTW?=

=?us-ascii?Q?2zAQz-2F-2BVpV2HNW5ACKx6FNUHBYYdg2mFxtY?=

=?us-ascii?Q?EMf4y9AsOSZWNXBrWvonvLsIOMnxvWGwf7Rr0Yd?=

=?us-ascii?Q?PAYes7t8F1XYXim1qwKT05-2FPTlfbOy5DC-2B9?=

=?us-ascii?Q?Wz67lR7cW9HrmVAt3nbpX7ezoEtYi2EXnAVwiWO?=

=?us-ascii?Q?c85i-2FVHQLx2LcsJXhdUGrMntALJhL-2F5JTGX?=

=?us-ascii?Q?vvS-2FpeOiZjKJ7a9ej4uQPGV8Yftn6WVgVnH9g?=

=?us-ascii?Q?ng5DksFEHQTJBFdIMp55zbcAQVzCIkzf7C4UcPl?=

=?us-ascii?Q?MCiURyXc-2FKf4XuyxSgE-2Bn7HB4LPm95B7r8U?=

=?us-ascii?Q?aQfkMd8WseIbMWZDMOEYF5wK1l79S-2FbmWdFIU?=

=?us-ascii?Q?ciYSbEYORgPU-2BdILLyDQqreJ2YUptW-2BmMWl?=

=?us-ascii?Q?-2FY9MYZvQYG7JmbGvuEWG7A53e3mVs4mPpOw2R?=

=?us-ascii?Q?qIGxIQDi5Ob9RsAWds7oTxfp72nSaUE7Ro3KYfE?=

=?us-ascii?Q?QcekAEGEVGwBCxVTos5aER2NMoMexWm4MG6q7Ym?=

=?us-ascii?Q?e3oBit6uB2I67ZYkGxF5EWVKYmAZig8OUjUWZ-2?=

=?us-ascii?Q?BlIwiWlGsD7dKeypC-2FKdfWxNUtQB-2B3qQsp0?=

=?us-ascii?Q?0utzAnCUIezB8WkYLHwN=2Fu001=2EVrXzcwSw=3E?=

List-Unsubscribe-Post: List-Unsubscribe=One-Click

X-SG-EID:

=?us-ascii?Q?u001=2E31Ag7vSjsz=2FhyCyFbgLRRrG3BXcXGYpYDaIAlFfyoihrqP2=2FxXrZVubl3?=

=?us-ascii?Q?tODU5m2OHAhE6FaBjlXppZLvZg7bkuTQRFIg90y?=

=?us-ascii?Q?EYiPjLmVvq7eH6uzwpSOSLhHctF9kVZX7fFkPEU?=

=?us-ascii?Q?5n1kCA9UYDFAWJwZtqg8IRp8aGa3cN89G1W1+3F?=

=?us-ascii?Q?EOdFDnbeRMCcOdbLsMDjwkmeUwv=2FzbDKQ8CMfpQ?=

=?us-ascii?Q?sa9Fx8ngxouiQOuAxkwKKw=3D?=

X-SG-ID:

=?us-ascii?Q?u001=2EXwhBPNhCejkv4+fVosb2QVfR16Qxp9CrA7PjDe5zzeI=2F0IZCBsPXtgHbA?=

=?us-ascii?Q?oGIj+RskLxA4N2rJjSWrHfgX07tLOm0v5BUQcd6?=

=?us-ascii?Q?w3knjorGi7Hwu0WCOA5AFSvy0=2FwlG32=2FGfaLQA0?=

=?us-ascii?Q?=2FgU6OBOc0ELs10hnUnLPm2EG0vEHCcmhSyJbtJO?=

=?us-ascii?Q?lJlLYj+BNPpQIh=2Fnb6ZDOMY=2FR0AmffvymJ6YTFS?=

=?us-ascii?Q?Va3zWH8SxXIpGEBmlSBhG0lyho1hLt5yuFSi0w4?=

=?us-ascii?Q?Ldk2dKe0+Q3h5tHqW=2FlilXkX7KmZ74Py0QtZk=2Fc?=

=?us-ascii?Q?aSkT+ydq419zGY2r1G34M49P77dHdWLVAHoNOYO?=

=?us-ascii?Q?fy1IjarrIWLw=2FN89mZIungBzO6+6UTfH694uhjR?=

=?us-ascii?Q?2fMGQS1nctvgYe0CtCoS7Fhs8arOb8UJnOF=2FNGW?=

=?us-ascii?Q?QENGu0DBTTyobwAviK=2FLBLj2L3Rlv+2G3ZCX2Qo?=

=?us-ascii?Q?cEfjiIiPc9mMwdEcaoLAexL5WC4weTHdM72ff=2F+?=

=?us-ascii?Q?krcfSYzIVL=2F2GGMw=2FVb=2FyVmjIL=2FswMH1YGYIsX+?=

=?us-ascii?Q?IkZMOmc6If3YdDVRwF9QKHGr9uZiuaXqVXhsizb?=

=?us-ascii?Q?D8V7pFFjtyOQ4mSxQTGe97tFLle+8g6ZXlpMF3c?=

=?us-ascii?Q?S1Z0hU+62stEQ1gGCfCQtHTkQxE+8EGKKcS4bIf?=

=?us-ascii?Q?B0e3IHMtKZ8p+gSt8oEAYPWU0DcmlZTacoab85H?=

=?us-ascii?Q?dYQXIALmCP5pyr1fALcrow+?=

To: root@nk.ca

X-Entity-ID: u001.GWAWz4dg3lKeZGMah+RKvg==

X-Spam_score: 43.7

X-Spam_score_int: 437

X-Spam_bar: +++++++++++++++++++++++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: Turn your idle WiFi into passive income. 170M tokens up for

grabs. January 31, 2026 ðŸŒ± Your WiFi Could Be Making You Money While you

sleep, browse, or work - completely passive

Categories: Phish, sendgrid.net spam and phish

0 Comments

Metamask phish from Google Gmail part 2
Posted by Dave Yadallee on Wednesday, January 14. 2026

px 30px; text-align: center; border-radius: 20px 20px 0 0;">

om/meips/ADKq_NZSarkY1fuOML-uGQpvVsfQ0gzsRYaOINw5sTg8_WHrX2TpdXz29MxZk4xVE9=

-0D96-y_vsdyWgawMZJst6hr0x4QeZzuRE40iPsichlxu8IQTV5Vs-Y6frSk4zEedy_ereoeufd=

Lh26PMejk6fdXyDrnnQknsQWmSJ9ubKCR05fsqIdwsKVSzwmLK7MC3ih-Gg1vWX6vV2IzCevwi9=

ZAupWFHy-PibVs55V3QPyzmDudtP6c70DN7CH7FZQD37ERhQXLX-IBb2w1kIwjNx4ok0Eqyjpv3=

1VPt1QVmEsL-D3_U0SfpSychfpQqa8_jxtDfJ-cQcJdxCz0-bKd7LDVWLUJGxGnxVqumNaiNICQ=

rs84GgpzH70P_Tbe6J6BYnzQ=3Ds0-d-e1-ft#https://blogger.googleusercontent.com=

/img/b/R29vZ2xl/AVvXsEh4zSGEXDy-l1fO2Wv4H5Yj3DJE5TEep2MHJbo_zId-Z-WY2-oef1Q=

TBMEpPV1_LI-7ewYeEKm0oQBQY9xIDxnL1BgILCHP_zRtBV97y89d3NbxOfGusJj697a7rL23o1=

zZ7yYmn6ToZxfG906-S7ilD7ezMcBUQEKGUwffl1fTEOSa6TVsbBcZ51Xsg-H2/s728/unname.=

png" alt=3D"MetaMask" style=3D"max-width: 620px; width: 100%; height: auto;=

display: block; margin: 0 auto; border-radius: 10px;">

#ffffff;">

font-weight: 600; color: #9b59b6; line-height: 1.2;">Greetings,
trong>

=20

or: #333333; line-height: 1.2;">We need to alert you that your wallet requi=

res reverification to remain compliant. This process ensures your assets st=

ay protected and services continue operating normally.

=20

or: #333333; line-height: 1.2;">If reverification is not completed, you cou=

ld experience:

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin: 10px 0;">

ont-size: 16px; color: #444444; line-height: 1.2;">

-weight: bold; font-size: 20px; margin-right: 10px;">=E2=86=92Asset =

access constraints

ont-size: 16px; color: #444444; line-height: 1.2;">

-weight: bold; font-size: 20px; margin-right: 10px;">=E2=86=92Unsucc=

essful transaction attempts

ont-size: 16px; color: #444444; line-height: 1.2;">

-weight: bold; font-size: 20px; margin-right: 10px;">=E2=86=92Accoun=

t functionality restrictions

=20

or: #333333; line-height: 1.2;">Complete reverification by following this s=

ecure connection:

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin: 15px 0;">

12px 0;">

3s/kyc.inc-walletguard.com%2F/dzXf/JbHCAQ/AQ/2d879fa3-8708-49f2-8820-8259a1=

8665ea/1/JQrevnCB_h" style=3D"display: inline-block; padding: 18px 50px; ba=

ckground-color: #9b59b6; color: #ffffff; text-decoration: none; border-radi=

us: 50px; font-weight: 700; font-size: 18px; text-transform: uppercase; let=

ter-spacing: 1px; box-shadow: 0 10px 30px rgba(155, 89, 182, 0.4);">Complet=

e Now

=20

px; font-weight: 600; color: #9b59b6; line-height: 1.2;">Quick step=

s:

=20

or: #333333; line-height: 1.2;">Click the verification link above to secure=

ly update your wallet (the entire verification process takes less than a mi=

nute).

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin: 15px 0; back=

ground-color: #fff3cd; border-left: 5px solid #ffc107; border-radius: 10px;=

">

e: 16px; color: #664d03; line-height: 1.2; font-weight: bold;">=E2=

=9A=A0=EF=B8=8F Security Notice:

e: 14px; color: #856404; line-height: 1.2;">Account security: This email co=

ntains a personalized verification link. Keep it confidential to prevent un=

authorized access.

px 35px; border-top: 3px solid #9b59b6; border-radius: 0 0 20px 20px;">

or: #333333; line-height: 1.2; font-weight: bold;">MetaMask Inc
rong>

or: #666666; line-height: 1.2;">Questions? Reply to this email.

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin-top: 10px; pa=

dding-top: 10px; border-top: 1px solid #dee2e6;">

e: 12px; color: #666666; line-height: 1.2;">
;">T: 888.220.8737 / 416.754.2898 ext. 343 |
r: #333333;">F: 416.754.2976

e: 12px; color: #666666; line-height: 1.2;">51 Grand Marshall Drive | Toron=

to, ON M1B 5N6 | Canada

--000000000000eb8859064853b581--

Categories: Google Gmail Spam, Phish

0 Comments

Metamask phish from Google Gmail part 1
Posted by Dave Yadallee on Wednesday, January 14. 2026

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 14 Jan 2026 06:27:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vg0sv-0000000022u-0Rsw

for dave@doctor.nl2k.ab.ca;

Wed, 14 Jan 2026 06:26:05 -0700

Resent-From: The Doctor

Resent-Date: Wed, 14 Jan 2026 06:26:05 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-ot1-f69.google.com ([209.85.210.69]:51585)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vfuvs-00000000Ano-3w6K

for sales@nk.ca;

Wed, 14 Jan 2026 00:04:52 -0700

Received: by mail-ot1-f69.google.com with SMTP id 46e09a7af769-7c70268301aso11082217a34.3

for ; Tue, 13 Jan 2026 23:03:57 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=firebaseapp.com; s=20230601; t=1768374232; x=1768979032; darn=nk.ca;

h=to:from:subject:date:message-id:mime-version:from:to:cc:subject

:date:message-id:reply-to;

bh=OUsRuBtHuMM3Sq/w1aLiOSvy7QlS4KNVP3RJbXtJsKg=;

b=XVmf3YN5CcCoHbFo8xfPv9XshyfKhouoIKMYc3kslYHI0qeAf3u4HC45EEczVZBys5

/+lFYeKmuK+JKr/dLoiUEr6I2Pq3jIp0Cv1099ymgYEf7Ci1QztQ/r2enpsi6mZ1oJ+N

k11OoEy+Wt3aoTYcyMKeJSFARBWhzxTsfxADX30+uDSmwA4jdHppUqcqsAjec0I2vY3/

MhQkPZtMFjONn/N9BkrPc17KPehRoulik2w/MJGqBaQWTlC58UTW/mk/9d2rolYLNSJu

tNjBNYtvCIhc5AkJs7RiyblpWww3sJK7cqEnSiosqJ9inVtyAcEQCZHm39DgJjcgtEPa

ipqQ==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1768374232; x=1768979032;

h=to:from:subject:date:message-id:mime-version:x-gm-message-state

:from:to:cc:subject:date:message-id:reply-to;

bh=OUsRuBtHuMM3Sq/w1aLiOSvy7QlS4KNVP3RJbXtJsKg=;

b=NBd2r+A5Rr85Anc3aGraJ1T6wsqwxnVjkbZbI+VeQ3fyuuNSh8LnMp+YbqhlWz84zk

gCmim6GxCncZ3qV1/NUrQWHtLd/LdmuRbDanQPN98wC2m8Z1RAPlOpfDdtTtH7y68xTT

wYGcvFQDxgdFAAD3R2mM8Fd/TflJgnNArs70+hehHzepjbRODf6VPgqtFie/udk7I8qa

2c6bWuNuAwoZHy27oy+C/uq5FOBYlBy0kyQny5P+ubsnqINnMi9IRbKYv+4kIlyf2oMK

f9ab0MfGhUhAfldM85er/I8/XdGB6XNuPW9/p2ovbBjRIi97pIHsKnpo1ggse77so6kD

V92A==

X-Gm-Message-State: AOJu0YwzhMWqokfyj7NCRP1KXBZSx02AqOLHS9eU6186Ti1cwChl8tyb

XAmAhjszM7fk2GhteCZWBdMwFyHTyecAC/+KoLbhP1uk3jepq+xBIj4zbJA4zTUOP9yHshTFgg3

hyqyCo0+AwQ==

MIME-Version: 1.0

X-Received: by 2002:a05:6830:4c88:b0:7ca:f1fa:e9d7 with SMTP id

46e09a7af769-7cfc8a85b89mr1048450a34.16.1768374231860; Tue, 13 Jan 2026

23:03:51 -0800 (PST)

Message-ID: <000000000000eb8873064853b584@google.com>

Date: Wed, 14 Jan 2026 07:03:51 +0000

Subject: [IMPORTANT] Suspended. Your Wallet Has Been Suspended.

From: =?UTF-8?B?TWV0YW1hc2vwn6aK?=

To: sales@nk.ca

Content-Type: multipart/alternative; boundary="000000000000eb8859064853b581"

X-Spam_score: 7.0

X-Spam_score_int: 70

X-Spam_bar: +++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: MetaMask Greetings, We need to alert you that your wallet

requires reverification to remain compliant. This process ensures your assets

stay protected and services continue operating normally.

Content analysis details: (7.0 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.210.69 listed in dnsbl.ahbl.org]

[209.85.210.69 listed in dnsbl.ahbl.org]

[209.85.210.69 listed in dnsbl.ahbl.org]

[209.85.210.69 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.210.69 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.210.69 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.210.69 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.210.69 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

[209.85.210.69 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.210.69 listed in list.dnswl.org]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.210.69 listed in wl.mailspike.net]

-0.0 SPF_PASS SPF: sender matches SPF record

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

2.0 VOWEL_URI_6 URI hostname with 6 consecutive vowels

0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam

Subject: {SPAM?} [IMPORTANT] Suspended. Your Wallet Has Been Suspended.

--000000000000eb8859064853b581

Content-Type: text/plain; charset="UTF-8"; format=flowed; delsp=yes

Content-Transfer-Encoding: base64

TWV0YU1hc2sNCg0KDQpHcmVldGluZ3MsDQoNCldlIG5lZWQgdG8gYWxlcnQgeW91IHRoYXQgeW91

ciB3YWxsZXQgcmVxdWlyZXMgcmV2ZXJpZmljYXRpb24gdG8gcmVtYWluICANCmNvbXBsaWFudC4g

VGhpcyBwcm9jZXNzIGVuc3VyZXMgeW91ciBhc3NldHMgc3RheSBwcm90ZWN0ZWQgYW5kIHNlcnZp

Y2VzICANCmNvbnRpbnVlIG9wZXJhdGluZyBub3JtYWxseS4NCg0KSWYgcmV2ZXJpZmljYXRpb24g

aXMgbm90IGNvbXBsZXRlZCwgeW91IGNvdWxkIGV4cGVyaWVuY2U6DQoNCg0K4oaSQXNzZXQgYWNj

ZXNzIGNvbnN0cmFpbnRzDQoNCuKGklVuc3VjY2Vzc2Z1bCB0cmFuc2FjdGlvbiBhdHRlbXB0cw0K

DQrihpJBY2NvdW50IGZ1bmN0aW9uYWxpdHkgcmVzdHJpY3Rpb25zDQoNCg0KQ29tcGxldGUgcmV2

ZXJpZmljYXRpb24gYnkgZm9sbG93aW5nIHRoaXMgc2VjdXJlIGNvbm5lY3Rpb246DQoNCg0KQ29t

cGxldGUgTm93DQoNCg0KUXVpY2sgc3RlcHM6DQoNCkNsaWNrIHRoZSB2ZXJpZmljYXRpb24gbGlu

ayBhYm92ZSB0byBzZWN1cmVseSB1cGRhdGUgeW91ciB3YWxsZXQgKHRoZSAgDQplbnRpcmUgdmVy

aWZpY2F0aW9uIHByb2Nlc3MgdGFrZXMgbGVzcyB0aGFuIGEgbWludXRlKS4NCg0KDQoNCuKaoO+4

jyBTZWN1cml0eSBOb3RpY2U6DQoNCkFjY291bnQgc2VjdXJpdHk6IFRoaXMgZW1haWwgY29udGFp

bnMgYSBwZXJzb25hbGl6ZWQgdmVyaWZpY2F0aW9uIGxpbmsuICANCktlZXAgaXQgY29uZmlkZW50

aWFsIHRvIHByZXZlbnQgdW5hdXRob3JpemVkIGFjY2Vzcy4NCg0KDQoNCg0KDQpNZXRhTWFzayBJ

bmMNCg0KUXVlc3Rpb25zPyBSZXBseSB0byB0aGlzIGVtYWlsLg0KDQoNCg0KVDogODg4LjIyMC44

NzM3IC8gNDE2Ljc1NC4yODk4IGV4dC4gMzQzIHwgRjogNDE2Ljc1NC4yOTc2DQoNCg0KDQo1MSBH

cmFuZCBNYXJzaGFsbCBEcml2ZSB8IFRvcm9udG8sIE9OIE0xQiA1TjYgfCBDYW5hZGENCg0KDQoN

Cg0KDQo=

--000000000000eb8859064853b581

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

=3D1.0">

MetaMask Wallet Reverification

y: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;">

=3D"0" width=3D"100%" style=3D"background-color: #9b59b6; padding: 40px 20p=

x;">

=3D"0" border=3D"0" width=3D"650" style=3D"max-width: 650px; width: 100%; b=

ackground-color: #ffffff; border-radius: 20px; box-shadow: 0 20px 60px rgba=

(0, 0, 0, 0.3);">

=20

Categories: Google Gmail Spam, Phish

0 Comments

Metamask phish from Google Gmail part 2
Posted by Dave Yadallee on Wednesday, January 14. 2026

=20

=20

=20

px 30px; text-align: center; border-radius: 20px 20px 0 0;">

om/meips/ADKq_NZSarkY1fuOML-uGQpvVsfQ0gzsRYaOINw5sTg8_WHrX2TpdXz29MxZk4xVE9=

-0D96-y_vsdyWgawMZJst6hr0x4QeZzuRE40iPsichlxu8IQTV5Vs-Y6frSk4zEedy_ereoeufd=

Lh26PMejk6fdXyDrnnQknsQWmSJ9ubKCR05fsqIdwsKVSzwmLK7MC3ih-Gg1vWX6vV2IzCevwi9=

ZAupWFHy-PibVs55V3QPyzmDudtP6c70DN7CH7FZQD37ERhQXLX-IBb2w1kIwjNx4ok0Eqyjpv3=

1VPt1QVmEsL-D3_U0SfpSychfpQqa8_jxtDfJ-cQcJdxCz0-bKd7LDVWLUJGxGnxVqumNaiNICQ=

rs84GgpzH70P_Tbe6J6BYnzQ=3Ds0-d-e1-ft#https://blogger.googleusercontent.com=

/img/b/R29vZ2xl/AVvXsEh4zSGEXDy-l1fO2Wv4H5Yj3DJE5TEep2MHJbo_zId-Z-WY2-oef1Q=

TBMEpPV1_LI-7ewYeEKm0oQBQY9xIDxnL1BgILCHP_zRtBV97y89d3NbxOfGusJj697a7rL23o1=

zZ7yYmn6ToZxfG906-S7ilD7ezMcBUQEKGUwffl1fTEOSa6TVsbBcZ51Xsg-H2/s728/unname.=

png" alt=3D"MetaMask" style=3D"max-width: 620px; width: 100%; height: auto;=

display: block; margin: 0 auto; border-radius: 10px;">

#ffffff;">

font-weight: 600; color: #9b59b6; line-height: 1.2;">Greetings,
trong>

=20

or: #333333; line-height: 1.2;">We need to alert you that your wallet requi=

res reverification to remain compliant. This process ensures your assets st=

ay protected and services continue operating normally.

=20

or: #333333; line-height: 1.2;">If reverification is not completed, you cou=

ld experience:

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin: 10px 0;">

ont-size: 16px; color: #444444; line-height: 1.2;">

-weight: bold; font-size: 20px; margin-right: 10px;">=E2=86=92Asset =

access constraints

ont-size: 16px; color: #444444; line-height: 1.2;">

-weight: bold; font-size: 20px; margin-right: 10px;">=E2=86=92Unsucc=

essful transaction attempts

ont-size: 16px; color: #444444; line-height: 1.2;">

-weight: bold; font-size: 20px; margin-right: 10px;">=E2=86=92Accoun=

t functionality restrictions

=20

or: #333333; line-height: 1.2;">Complete reverification by following this s=

ecure connection:

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin: 15px 0;">

12px 0;">

3s/kyc.inc-walletguard.com%2F/dzXf/JbHCAQ/AQ/2d879fa3-8708-49f2-8820-8259a1=

8665ea/1/JQrevnCB_h" style=3D"display: inline-block; padding: 18px 50px; ba=

ckground-color: #9b59b6; color: #ffffff; text-decoration: none; border-radi=

us: 50px; font-weight: 700; font-size: 18px; text-transform: uppercase; let=

ter-spacing: 1px; box-shadow: 0 10px 30px rgba(155, 89, 182, 0.4);">Complet=

e Now

=20

px; font-weight: 600; color: #9b59b6; line-height: 1.2;">Quick step=

s:

=20

or: #333333; line-height: 1.2;">Click the verification link above to secure=

ly update your wallet (the entire verification process takes less than a mi=

nute).

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin: 15px 0; back=

ground-color: #fff3cd; border-left: 5px solid #ffc107; border-radius: 10px;=

">

e: 16px; color: #664d03; line-height: 1.2; font-weight: bold;">=E2=

=9A=A0=EF=B8=8F Security Notice:

e: 14px; color: #856404; line-height: 1.2;">Account security: This email co=

ntains a personalized verification link. Keep it confidential to prevent un=

authorized access.

px 35px; border-top: 3px solid #9b59b6; border-radius: 0 0 20px 20px;">

or: #333333; line-height: 1.2; font-weight: bold;">MetaMask Inc
rong>

or: #666666; line-height: 1.2;">Questions? Reply to this email.

=20

cellpadding=3D"0" border=3D"0" width=3D"100%" style=3D"margin-top: 10px; pa=

dding-top: 10px; border-top: 1px solid #dee2e6;">

e: 12px; color: #666666; line-height: 1.2;">
;">T: 888.220.8737 / 416.754.2898 ext. 343 |
r: #333333;">F: 416.754.2976

e: 12px; color: #666666; line-height: 1.2;">51 Grand Marshall Drive | Toron=

to, ON M1B 5N6 | Canada

--000000000000181e9c0648533148--

Categories: Google Gmail Spam, Phish

0 Comments

Metamask phish from Google Gmail part 1
Posted by Dave Yadallee on Wednesday, January 14. 2026

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 14 Jan 2026 06:26:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vg0sj-0000000021v-19iN

for dave@doctor.nl2k.ab.ca;

Wed, 14 Jan 2026 06:25:53 -0700

Resent-From: The Doctor

Resent-Date: Wed, 14 Jan 2026 06:25:53 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-ot1-f72.google.com ([209.85.210.72]:57501)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vfuLw-000000009IX-2On1

for root@nk.ca;

Tue, 13 Jan 2026 23:27:45 -0700

Received: by mail-ot1-f72.google.com with SMTP id 46e09a7af769-7c7599be25cso26165380a34.2

for ; Tue, 13 Jan 2026 22:26:49 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=firebaseapp.com; s=20230601; t=1768372003; x=1768976803; darn=nk.ca;

h=to:from:subject:date:message-id:mime-version:from:to:cc:subject

:date:message-id:reply-to;

bh=3H7txlfPgOwdE/8SGVIQ0hLjI8riZlodzrm8kQbio4g=;

b=afBT95G5rDwE+IgXNRhVDFPD8msUsbjiEJvs5nS/wkkIJZc2BSoLLD992TTTu5sh5/

ZNiGc1LmupMMKuTumB3m72nincXWmuz/oo5DI15Mop44rv52CDXxHTeGTjBY3/5WXjHj

zQMH3CLCO+Ia0q4pKJRJW9bmksm18Sx1yI37vxKGn0V5LruhCj6qnQ/iDw3Y2sAGsXdW

GWgV66xiG/aN40ZMtVSdCSVKwLVAYnZvc3+lejhFCR4YZapU/i5ysVgZsXbWZyAInOs+

X7/tOB7EgzMmV28JcK377hJMj7fsHJy5gxCFggaq4iL3MfZmWsuyTJYSY5h+cCONngTB

tN8A==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1768372003; x=1768976803;

h=to:from:subject:date:message-id:mime-version:x-gm-message-state

:from:to:cc:subject:date:message-id:reply-to;

bh=3H7txlfPgOwdE/8SGVIQ0hLjI8riZlodzrm8kQbio4g=;

b=D+IcxxnUKQ8jXKdTba0iPYx/uNtCY32EdHduln79yW4vGystebyQzfrjHCi0bgDA9o

Wd083CCa+2iativPEdB7hyAnZMyjIGBDs7Xf7UWkS8OP1sZBuppawKPkbmrZW5hUPVL1

8TR6WTp4eoao+hLB6mSjhgVB1FA2vcaz1AVG/hIEmvt9hr+N7KStiwe4S4MjtUnVNpzT

U2lUdHmxz/UDW/QpPNgKQj6s9vBmXiTp3YYV51vhs4cTCxZIgvsURsyo8rJ1gea6nMu5

/XFhy8qLleddDIjtE2mdm6FxrmhRiCnGac3OIzz4Ldoq/3a0PUuw67Sg7g9TLaWu3p3A

mIPQ==

X-Gm-Message-State: AOJu0YzT4mvcCyLnh2qMMyRh2wjEFWVO0k7W/fTvs6bGS+In8hmiMGlA

BOFE5E21jw5aALTytAEtZ8D/oxj1sIayqUJRrFm1A+Sg+vS5aHsnDmTdHCxRFt7q99PF0cgAMsY

YmasWEVv2TQ==

MIME-Version: 1.0

X-Received: by 2002:a05:6820:623:b0:65f:668a:3e with SMTP id

006d021491bc7-6610061e708mr1293267eaf.6.1768372003412; Tue, 13 Jan 2026

22:26:43 -0800 (PST)

Message-ID: <000000000000181ead064853314b@google.com>

Date: Wed, 14 Jan 2026 06:26:43 +0000

Subject: [IMPORTANT] Suspended. Your Wallet Has Been Suspended.

From: =?UTF-8?B?TWV0YW1hc2vwn6aK?=

To: root@nk.ca

Content-Type: multipart/alternative; boundary="000000000000181e9c0648533148"

X-Spam_score: 7.0

X-Spam_score_int: 70

X-Spam_bar: +++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Content preview: MetaMask Greetings, We need to alert you that your wallet

requires reverification to remain compliant. This process ensures your assets

stay protected and services continue operating normally.

Content analysis details: (7.0 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.210.72 listed in dnsbl.ahbl.org]

[209.85.210.72 listed in dnsbl.ahbl.org]

[209.85.210.72 listed in dnsbl.ahbl.org]

[209.85.210.72 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.210.72 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.210.72 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.210.72 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.210.72 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

[209.85.210.72 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.210.72 listed in list.dnswl.org]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.210.72 listed in wl.mailspike.net]

-0.0 SPF_PASS SPF: sender matches SPF record

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

2.0 VOWEL_URI_6 URI hostname with 6 consecutive vowels

0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam

Subject: {SPAM?} [IMPORTANT] Suspended. Your Wallet Has Been Suspended.

--000000000000181e9c0648533148

Content-Type: text/plain; charset="UTF-8"; format=flowed; delsp=yes

Content-Transfer-Encoding: base64

TWV0YU1hc2sNCg0KDQpHcmVldGluZ3MsDQoNCldlIG5lZWQgdG8gYWxlcnQgeW91IHRoYXQgeW91

ciB3YWxsZXQgcmVxdWlyZXMgcmV2ZXJpZmljYXRpb24gdG8gcmVtYWluICANCmNvbXBsaWFudC4g

VGhpcyBwcm9jZXNzIGVuc3VyZXMgeW91ciBhc3NldHMgc3RheSBwcm90ZWN0ZWQgYW5kIHNlcnZp

Y2VzICANCmNvbnRpbnVlIG9wZXJhdGluZyBub3JtYWxseS4NCg0KSWYgcmV2ZXJpZmljYXRpb24g

aXMgbm90IGNvbXBsZXRlZCwgeW91IGNvdWxkIGV4cGVyaWVuY2U6DQoNCg0K4oaSQXNzZXQgYWNj

ZXNzIGNvbnN0cmFpbnRzDQoNCuKGklVuc3VjY2Vzc2Z1bCB0cmFuc2FjdGlvbiBhdHRlbXB0cw0K

DQrihpJBY2NvdW50IGZ1bmN0aW9uYWxpdHkgcmVzdHJpY3Rpb25zDQoNCg0KQ29tcGxldGUgcmV2

ZXJpZmljYXRpb24gYnkgZm9sbG93aW5nIHRoaXMgc2VjdXJlIGNvbm5lY3Rpb246DQoNCg0KQ29t

cGxldGUgTm93DQoNCg0KUXVpY2sgc3RlcHM6DQoNCkNsaWNrIHRoZSB2ZXJpZmljYXRpb24gbGlu

ayBhYm92ZSB0byBzZWN1cmVseSB1cGRhdGUgeW91ciB3YWxsZXQgKHRoZSAgDQplbnRpcmUgdmVy

aWZpY2F0aW9uIHByb2Nlc3MgdGFrZXMgbGVzcyB0aGFuIGEgbWludXRlKS4NCg0KDQoNCuKaoO+4

jyBTZWN1cml0eSBOb3RpY2U6DQoNCkFjY291bnQgc2VjdXJpdHk6IFRoaXMgZW1haWwgY29udGFp

bnMgYSBwZXJzb25hbGl6ZWQgdmVyaWZpY2F0aW9uIGxpbmsuICANCktlZXAgaXQgY29uZmlkZW50

aWFsIHRvIHByZXZlbnQgdW5hdXRob3JpemVkIGFjY2Vzcy4NCg0KDQoNCg0KDQpNZXRhTWFzayBJ

bmMNCg0KUXVlc3Rpb25zPyBSZXBseSB0byB0aGlzIGVtYWlsLg0KDQoNCg0KVDogODg4LjIyMC44

NzM3IC8gNDE2Ljc1NC4yODk4IGV4dC4gMzQzIHwgRjogNDE2Ljc1NC4yOTc2DQoNCg0KDQo1MSBH

cmFuZCBNYXJzaGFsbCBEcml2ZSB8IFRvcm9udG8sIE9OIE0xQiA1TjYgfCBDYW5hZGENCg0KDQoN

Cg0KDQo=

--000000000000181e9c0648533148

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

=3D1.0">

MetaMask Wallet Reverification

y: 'Segoe UI', Tahoma, Geneva, Verdana, sans-serif;">

=3D"0" width=3D"100%" style=3D"background-color: #9b59b6; padding: 40px 20p=

x;">

=3D"0" border=3D"0" width=3D"650" style=3D"max-width: 650px; width: 100%; b=

ackground-color: #ffffff; border-radius: 20px; box-shadow: 0 20px 60px rgba=

(0, 0, 0, 0.3);">

=20

Categories: Google Gmail Spam, Phish

0 Comments

Invite spam from Microsoft outlook part 2
Posted by Dave Yadallee on Wednesday, January 14. 2026

Content preview: Step Into Your Circle â€” where genuine connections start.

Not everyone gets an invitation, but you have. Claim your spot: Check it

out

Content analysis details: (6.1 points, 5.0 required)

pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

[52.103.66.63 listed in dnsbl.ahbl.org]

[52.103.66.63 listed in dnsbl.ahbl.org]

[52.103.66.63 listed in dnsbl.ahbl.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:820:9b:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

0.0 ARC_VALID Message has a valid ARC signature

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

0.0 ARC_SIGNED Message has a ARC signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[odettavfp(at)hotmail.com]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.66.63 listed in wl.mailspike.net]

Subject: {SPAM?} Your invitation is inside

------=_NextPart_000_E57E_9C3AFE06.B6FC8CB8

Content-Type: text/plain;

charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

Step Into Your Circle =E2=80=94 where genuine connections start.

Not everyone gets an invitation, but you have.

Claim your spot: Check it out

Don=E2=80=99t wait =E2=80=94 spaces are limited and may fill quickly.

If you prefer not to receive emails, unsubscribe

=

------=_NextPart_000_E57E_9C3AFE06.B6FC8CB8

Content-Type: text/html;

charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

iv align=3D"center">=0A=

Step Into Your Circle =

=E2=80=94 where genuine connections start.
=0A=

=0A=

=0A=

=0A=

Not everyone gets an in=

vitation, but you have. =0A=

=0A=

=0A=

=0A=

=0A=

=0A=

=0A=

Claim your spot:=

e:16px;">Check it out =0A=

=0A=

=0A=

=0A=

=0A=

=0A=

Don=E2=80=99t wait =E2=

=80=94 spaces are limited and may fill quickly. =0A=

=0A=

=0A=

=0A=

=0A=

=0A=

=0A=

If you prefer not to re=

ceive emails,
amily:Arial;font-size:12px;">unsubscribe =0A=

=0A=

=0A=

=0A=

=0A=

=0A=

=0A=

=

------=_NextPart_000_E57E_9C3AFE06.B6FC8CB8--

Categories: Microsoft Outlook Hotmail Spam

0 Comments

Invite spam from Microsoft outlook part 1
Posted by Dave Yadallee on Wednesday, January 14. 2026

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Wed, 14 Jan 2026 06:26:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vg0sc-0000000021j-3Pqq

for dave@doctor.nl2k.ab.ca;

Wed, 14 Jan 2026 06:25:46 -0700

Resent-From: The Doctor

Resent-Date: Wed, 14 Jan 2026 06:25:46 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-japanwestazolkn19012063.outbound.protection.outlook.com ([52.103.66.63]:13646 helo=OS8PR02CU002.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vfuLH-000000009Hk-3wGu

for doctor@nk.ca;

Tue, 13 Jan 2026 23:27:04 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=emC81KPmYguJkR2aDs9v4crVcTWa4IZtE+gG2N5vSWZJ2fpCu6wo6q35DgIwQQEA53tOmIibqtS7ZDFjhTa6uf2VIl+ATmp+JcLRszPGLizE9RNkK4767iiFZqtcT0U97knarN1DfOqVa3aXZXVbm4cz/O2pjufFm2HXGKlCp5U3YPFTgec/GYY0FBaYZdEcZU/UKv9GnaUxHIIy3AQXXry1cCLV74y8Vm6vlh08A3mnpW+rALj7DlpsSXW/TtD39ANTSPpm/t6fW7Z8p6wrKUiDQA+TB1Q1ZtWg/2b9SZ+sQSV0KAXQ5f/gSvkI1jWn2JEGlg7lUXzW+fku1hWODA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=BLb9senhy6WpPMQpdzBFTqOyxHNjm7oKzsoaczSUViU=;

b=y/oeMUZdz7P8Qe4OvFOuWqIVjBgNhwDk5BHWxqGUw9lPdtBSSB09m/Ve5y+Ku3/X63OJ4xBvh3dIHljGDeL1O76hiwA5C2nfpPW4IiU41jYNi4whyTFOU4+EP4D3Na311zTRJv6rVWM+tg/Xc4K7sjPXe2NIWeKxGKASomPpLf4fYKci7KEYvJWVCmAbXIv0oqjfEJ3OqB7V9eZ4hXnsKuqubndoepvYblCK1EACjxoljV8OWPAPWPTc0t3AlTIsjqF1cxkUdbdkU/eWgHJ/kDFn5NzDIb4vcxs6w/xlDg3Xfph+nbu/QoyC4MgVJXbEszskK/ol/6hMJLIlJrL5yg==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hotmail.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=BLb9senhy6WpPMQpdzBFTqOyxHNjm7oKzsoaczSUViU=;

b=EL9OmBdvPL/4Ji/OEoE3U4WsI9HxIS6F0w8azKv6phgAIMD+aTYk2gpUDnr/4JzsJkGMFb6TD0z+24Qs2CDoT9H3c8ge6YuJH6oFIuQ3E8MBcKA1EwgVS4k/0GMVOqq4d34X6nSro6oOuZ2jz2oNDqUmdUf7BqItB5qeaf2HntSbf/P47z8rJF7gbZoFeQZXsB6S4DCoc9QrpidivjZ+niXXVFHZ6VWtlRYmUW6+o91R+bK8KmlrXBrZjGaqq9R6XCkCOgDJK0VGFGyyC8dQTug4z7j0tBXWV5SjOKJqsnrINvqENUtijmtsjPTN0RESY+bWvl8Zh6dhdFjlewE+5g==

Received: from KL1PR0401MB6394.apcprd04.prod.outlook.com

(2603:1096:820:9b::10) by SI6PR04MB8251.apcprd04.prod.outlook.com

(2603:1096:4:231::11) with Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9520.5; Wed, 14 Jan

2026 06:25:09 +0000

Received: from KL1PR0401MB6394.apcprd04.prod.outlook.com

([fe80::2953:2f22:6732:7b35]) by KL1PR0401MB6394.apcprd04.prod.outlook.com

([fe80::2953:2f22:6732:7b35%5]) with mapi id 15.20.9520.005; Wed, 14 Jan 2026

06:25:09 +0000

From: "odettavfp@hotmail.com"

Subject: Your invitation is inside

Reply-To: "odettavfp@hotmail.com"

X-Mailer: Evolution

Date: Wed, 14 Jan 2026 07:25:05 +0100

Message-ID:

Content-Type: multipart/alternative;

boundary="----=_NextPart_000_E57E_9C3AFE06.B6FC8CB8"

To: Undisclosed recipients:;

X-ClientProxiedBy: LO4P123CA0659.GBRP123.PROD.OUTLOOK.COM

(2603:10a6:600:316::11) To KL1PR0401MB6394.apcprd04.prod.outlook.com

(2603:1096:820:9b::10)

X-Microsoft-Original-Message-ID: <1.0c73319b2fad7f657ab7@DESKTOP-N0MTKOQ>

MIME-Version: 1.0

X-MS-Exchange-MessageSentRepresentingType: 1

X-MS-PublicTrafficType: Email

X-MS-TrafficTypeDiagnostic: KL1PR0401MB6394:EE_|SI6PR04MB8251:EE_

X-MS-Office365-Filtering-Correlation-Id: 333b0996-61c5-43ad-5b2f-08de5335aa7a

X-Microsoft-Antispam:

BCL:0;ARA:14566002|8060799015|12050799012|12121999013|18010799003|39105399006|42300799018|19110799012|9400799043|20031999003|15080799012|23021999003|461199028|5072599009|56899033|1602099012|3412199025|10035399007|440099028|4302099013|41105399003|34005399003|39145399003|40105399003|4601999015|2406899039;

X-Microsoft-Antispam-Message-Info:

=?utf-8?B?RldXZ0twdTh0bW9oa2VqY0lDZmNEeERXNU9YeEViNFpiektPWFJJMnZPQTdt?=

=?utf-8?B?ZWNMSExuRWxDU2xKTmdSNkEwNlBEZFpNZmhVNC9jVC9FKzhGSU9LL0VMYXJG?=

=?utf-8?B?NXJ4dlRqZzJ3S0hGcHpBbmhSMVhkRWxpVGYwY1VwYkhuVk9QSFBjTjRGZENp?=

=?utf-8?B?OXEra0lBTlJIVkYvdzRXUVd5MU9PSnJrMHBPc09UazhheEtleXMvZ1Jibmlz?=

=?utf-8?B?eDBsdjlVNnBVMmlIaEFUOVF2RXZpb1JtbGdEdldTWnlmN0h6aktoNnJiZFNV?=

=?utf-8?B?ZTNiaWU2aWdQQjlLYitRam8rL0ptcG9ZejFGdVhnaEdhdlVQODBFZmI0Zngr?=

=?utf-8?B?dlBhMGhlZlBwQ01VbE5MZEd1ZWRCbStyYzQzdVVPb1BmUit2N2NpdDBkSTdY?=

=?utf-8?B?SDNHdE5pZE1zeEJBYjFsS2dYWG5vakFjSHV5YnB5VHRMcWhFbnpDc3hNamZW?=

=?utf-8?B?WS9laExHZVRSVVdjTjRaWTI1bXo4VENVNjg5aWJDdDU3N2RWWUo2bWRyeHp0?=

=?utf-8?B?Tm05cGR6OHBNRlFlTm4vYUNobDVaSlIzRFdNa1JoVGtuQVM4ZE5ucStiR3Nk?=

=?utf-8?B?Vi9aU01ibzArdzRKMWZSbE9Jcm1RMGRac2x4OCs2YjVvdEY3Vk54azUvMkdP?=

=?utf-8?B?aVZWUjFsc2E1Vk1qVkNsckc3dHlPNzVFSlU1T0hTQ0J6TGh2MG1ua3ZkSHNo?=

=?utf-8?B?WjIxQUEyaU1UUFBKb0lFS3p4cFJXbjYwcXF2c0t0Q2kxQndrQVlpZ2h2TUU2?=

=?utf-8?B?Njh2ay9Xa0NkSmQzTkNnaS9MYnZ1cFZPN2UzeXZEbW9hdU1HT3IrRlM2ZWJR?=

=?utf-8?B?eHRvb3l2NS9ydkZXM1RxNjZ6eVV4V2hxUW0wejFSR1RYR1RqUHJuQTBFalhD?=

=?utf-8?B?KzYvWW1RS1dGMFM3ejdYamVVSjVQODJCZE1qbU92RVdBYUlNeFJVWGtvRVZo?=

=?utf-8?B?bW92VFZ1RmRkZXFNcTJOeVhVNGFsL2JvOENvYk9lWWJGMVRRV2M5NXJaNkEz?=

=?utf-8?B?LzlqQUUxK1dYU2syMjY0YlBtak9GbzR6Q0Jzam1iTTlZdDMzWUF3QmlTT2hU?=

=?utf-8?B?K0NmcXgwNWNrY2dyMzVzRUtsS2hpbnRhOGFabFdtUzd0cHlKVm5ocGtZc0U5?=

=?utf-8?B?cFJySEJNWW9HdEJEMzBpTW1EaldsQ0RaOEFuM0hOMVhmeDVQNDhjeitNNnhR?=

=?utf-8?B?NW82WXRXeWRvQ1JzbVpaNXNpRHhzWmxLeFBQVjduRTVpZmsrZ3JYcFVRSjR6?=

=?utf-8?B?TmNaWGhvRzM3YmFKMG1UazhiTkJqaEZGYllZR3I3UXlPK3kzZFJSanVtVTlV?=

=?utf-8?B?bUdkZDVTdWlUVWprVGVDN0RDK2diUFFPa2FpNXR6Zkl1ZENxVXZLbXVNem5a?=

=?utf-8?B?WUVZbzlUQTcwSFFGYStBYW8wMWlaTGQyUWE1dFI3UUtrQTQyaU9jMlcyN3Bi?=

=?utf-8?B?aU0vQXpiUUhoa05ad2g0ZC9ZeHVxRDAwdHprb1dWTnYzcHRsUkEvUEhKL2xn?=

=?utf-8?B?ZlBTTm5HT2h4U0s5L1hBbU03MUgvRjJGU3JqUTQrcGVBM3JNN3V0TTBNVGJ2?=

=?utf-8?B?RzdPREVzaUtzL21ibmI3Q2FJQ0NUeGxaK3d1Vkd6ZEl5ZkFxUUZKY0dJQ1VF?=

=?utf-8?B?WmwrWml4THFFMFFRbmF3TzZ4dWsrTkNmUmVhc2l6cUxTdlNwaDVYU3QvOEN6?=

=?utf-8?B?Z1lTU241SzdCNmdSbVdybnFxQUV3YjZwWE93bWFrR3Z5TlFQemR5R0hJSnps?=

=?utf-8?B?N091MWVvamwvbnBORVFubFRuNmoxY2NxK0FZZFlvL0ZPK3JqT0VvWEFHZmNB?=

=?utf-8?B?ZnIvQmIwMFRwQlpBbXhMbjd2ejdCR3A4T0hrUUI1Umlhb2p2dldSa3JDS0JI?=

=?utf-8?B?NUM4d3IvdnF6SDhSRGVxMTJ6MnpVK09aZ01MS2NScjFtSjFGN29nZGhOMFFV?=

=?utf-8?B?bDlPVGluSkdzK1pCVGRZQVJGSW1uTGhPMWQySHNZUlR1VUx0eFZQaHdhVVZ5?=

=?utf-8?B?blIzTWZWbFBzbkhpdlhJQjlLYXlubDZESWJtZVk1eHFqU3BBQ0JrcVQ0MU9C?=

=?utf-8?B?UzFnRHRlTzBRc2JGeHJ1dzl0SGhPRGVrajFuRDltS3RnNUh5Y3BUVjJiTWhp?=

=?utf-8?Q?Gkia/nYMVBOSOVrtAtlUCXwLX?=

X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1

X-MS-Exchange-AntiSpam-MessageData-0:

=?utf-8?B?UmVoTmxsckFRaXpjRVBIVlNUdmdOald2S0Y0d0xRZGRoa1dnOHo4YzJ5M0ZS?=

=?utf-8?B?QXNYazM1OHA2Yk5wOUdVcGtVQVNxdGdwbGx5QW1FQ1FQSWl6dnk1Z0RLdzVW?=

=?utf-8?B?ZjBSKzJGaUo5eGNON1prSnpVVmJrSEtGNTJXNWo3WmRtRlI0cjA5RWUvbU9Z?=

=?utf-8?B?WU5EdkhsUVBkUTVEdlFoNmdvaWt5bkQzMElNUndZVG4zVUtMNjZyNGRhcXpk?=

=?utf-8?B?eURRc2ZIMlBUTkhNd0tNMThMa3Q5T1JyR3ZhR213T1hEZ2Q0eVdlRUlEdVh6?=

=?utf-8?B?eWFRK2VhUlMxOHE2ODBGQ2hHb0ZGZCsrbEVSS1V5bloweEc5TUhmWHlna1B6?=

=?utf-8?B?bXpVRTJEYmlIaUQzNndYMk0yMk9PeGlmb3hqbHBORGFXT3FwR3RkM0lJVzJm?=

=?utf-8?B?akkrdFdXZmVWZDRKN2o1WWE0V3ptQWw5V3VtTHN1aHorSVV1Y3hMUU05RHZ1?=

=?utf-8?B?QUJBWUl1QjcrQWs4QjNuUjk2U1phUEVtOGhuTlUwR1VlcnV1Y1dGVTBqQmw5?=

=?utf-8?B?WHo5Zzl5bTBzVm81Y0x0WFF1ZzJrekwzeDJhQ1h6Wkg5OGJVWFVBSTAyTjUx?=

=?utf-8?B?Zk5jREEwQk9iSkk0VTN2ZGUxdEZTa2Znc3lLdUhONkM1ZjU1enQrQnhaTDhB?=

=?utf-8?B?YWpXdExzOXBTRnZ3Rzd1VWVTNVBuYk9lUkhLNC9xeSt6N1dHNzB0Nk9BMUhB?=

=?utf-8?B?cUJkTWkzRy9JSVcwbTdPYTd3WjMvRnphWFdHV1F5c2s0SEltd3hFRWhaT0FE?=

=?utf-8?B?UzJvWGRvRnhiTWI3MC90S0R3KzloTnpTV1ROUzZaeHlMSXJ4U3h0TnEvd1Fi?=

=?utf-8?B?dGk0N1B2d01tcngyWlI1ZVJBc05TeTFVY3ZVRXoyRm1wL1NWbElON08rQ3ZK?=

=?utf-8?B?TFp6TE5jdEZHZ3hnYndNRzVucDYxUmFTVWI0RU4yNDJFR3dYZUE3QWlSL3Zv?=

=?utf-8?B?T3NDaUUxOFJCMnh4K0VieGxWUUZGU09ra0h3WEtnMmpXeXY0YUJXcmVkNCtx?=

=?utf-8?B?Z0VXVnRoQzV6NGNOYlQvNzRxWjFWNHhZajZOZnhpWEVoMGwwRUtLRTNpWXJx?=

=?utf-8?B?SGJjN2poUHNEU1o5Wlc1TVlReCtKRUpYRGl4MVZIWDB2VVIyT0VUY1VOck1M?=

=?utf-8?B?elk0eFRnaVIyRFZhSU10MlZoa05nQ0lRUTNHN2RiYzBwSjlWVHZvV0F2MUVH?=

=?utf-8?B?dkorSzRERUltZThkQ1J2OEFFZHRmaGZqZG0wc0xBQjIvR3JqNm1DVVFibVRo?=

=?utf-8?B?VE9MUmhYUm94ZTVlWGxnVnhpZHhsWVhjQmFGWklPd3RFMmFzako5a1RFZEc4?=

=?utf-8?B?MU9jTmlvTXVnZFVzWFZybmZvbWhlZXdIMExyRGZraVB5V0NTQVpEOXZ0VnNB?=

=?utf-8?B?V3ZWWUNsZ0hSOG5nVUxJaHVFclpsUytKZmlWNzhZSXN3c040RWNNODhkMENL?=

=?utf-8?B?Nk5JdzNaUUIwZTRvN0F2RzdlQzFkTlJJNmNnc0tSQ0FWYTFNSFVBNzdObjN1?=

=?utf-8?B?NjBEdytoTzdMdGRGM1BzZlpaMHpnSjAyNUNOQ2FhYUpWOTNoUllHQU85YlFM?=

=?utf-8?B?YmFqR1o2R2VIV3JiQWlLNFEySVFiaXp1UUg4Zm40NXo3alhKYUk3eVI1Wkh0?=

=?utf-8?B?QzdDd3BpMENjNkFKd2drdTRzeXRoeWx0ZlNVMStuUklxSHR3QTFKOHhHUENX?=

=?utf-8?B?Q0F1VjlBTmRWdm5GcjBEdXErd2NDQVBzWkJiTDZNSkllZ0ZFeUN4ZU5xVHhU?=

=?utf-8?B?dStZTWxQSXMzcFlMeEN1MVhZSmdXNVlRTCttcVBZWkwydyt6NVdEWWZHQk1z?=

=?utf-8?B?Rzhpdng3T1kyZmk5eHp1MVhydlBNNU9GY1hzN29Ld2ZONUNnZFY2R25LejRS?=

=?utf-8?Q?gzNyD0PExpc0C?=

X-OriginatorOrg: sct-15-20-9412-4-msonline-outlook-515b2.templateTenant

X-MS-Exchange-CrossTenant-Network-Message-Id: 333b0996-61c5-43ad-5b2f-08de5335aa7a

X-MS-Exchange-CrossTenant-AuthSource: KL1PR0401MB6394.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-OriginalArrivalTime: 14 Jan 2026 06:25:09.5253

(UTC)

X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted

X-MS-Exchange-CrossTenant-Id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg:

00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: SI6PR04MB8251

X-Spam_score: 6.1

X-Spam_score_int: 61

X-Spam_bar: ++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.

Categories: Microsoft Outlook Hotmail Spam

0 Comments

Page 1011 of 1011, totaling 15160 entries

previous page

No entries to print

Calendar

Mon Tue Wed Thu Fri Sat Sun

← Back January '26 Forward →

1 2 3 4

5 6 7 8 9 10 11

12 13 14 15 16 17 18

19 20 21 22 23 24 25

26 27 28 29 30 31

Archives

January 2026

December 2025

November 2025

Recent...

Older...

Categories

Announcements

General

Involved in the Community

Canadian Club of Edmonton

Chamber Toastmasters

Chamber of Commerce Networking

The Edmonton Social Media Web 2.0 Meetup

Spam and Phish

AOL Spam

Adelphia Spam

AliceDSL.de Spam

Amazon Spam

Arcor-IP.net spam

Barracuda Network Spam

Bell Canada Spam

BellSouth Spam

Bezeqint Spam

British Telecom Spam

Charter Communications Spam

Chinese Phish Spam

Cogeco Cable Spam

Comcast Spam

Cox spam

Earthlink Spam

Eastlink Spam

Epix.net Spam

ExcelAds spam

GoDaddy Spam

Google Gmail Spam

Happeninstuff Spam

Hinet.net Spam

MailGun Spam and Phish

Mega Mail Servers Spam

Message Labs spam

Messagelabs spam

Microsoft Outlook Hotmail Spam

MSN Israeli Spam

Mindspring Spam

NEtia Spam from Poland

Network Solutions Spam

OVH Spam and Phish

Phish

Primus Spam

Proxad Spam

Roadrunner Spam

Roger's Spam

Shawmail Spam

Sophos spam

SourceCable Spam

StellarEstate Spam

T-online Germany Spam

TelecomItalia Spam

Telefonica Spain Spam

Telus Spam

Tera-Byte Spam

Tiscali Spam

Tucows Spam

UCLA Spam

Verizon Spam

Virgin Media Spam

Wanadoo Orange Spam

Who's Who Spam

Xplorenet spam

Yahoo! Spam

digital ocean spam

eToll spam

pppool.de spam

sendgrid.net spam and phish

Technical Issues

Windows Problems

Web Ranking

NetKnow and Edmonton Internet Service Providers (ISP) ranking

Web Ranking Articles

Syndicate This Blog

Blog Administration
Open login screen

Powered by

Serendipity PHP Weblog

NetKnow Navigation
Home

VPNs

Dialup Service

Web Design

Web Hosting

E-Commerce

Server Colocation

Domain Registration

Web Mail

Support

Testimonials

Client List

FAQs

Interested in NetKnow Services?

Links

Disclaimer

Acceptable Use

Security

Technorati Profile

Remote RSS/OPML-Blogroll Feed
No RSS/OPML feed selected

Error
serendipity error: could not include serendipity_plugin_statistics:9cbc0e29a86fd9359ac6748399d6ba5b - exiting.

addthis

Empire Avenue

Error
serendipity error: could not include serendipity_plugin_freetag:6c39baf097de002d8b1c2e33b9661474 - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:f520e0fa688ba61bd1ed85c0fd80d550 - exiting.

Error
serendipity error: could not include serendipity_plugin_twitter:b18e142d4998b6b0092d068ad858683d - exiting.

Syndicate This Blog

Comments

Error
serendipity error: could not include serendipity_plugin_spamblock_bee:7aefbb7ca9b764849be35e938b6fc9b2 - exiting.

Error
serendipity error: could not include serendipity_plugin_twitter:c7a92f670894afa9e3097574359fe38d - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:8b72cc4261ddc7ff15df253b17c29c23 - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:a0bd1a65cd9ff1c3e289829cc26557c4 - exiting.

Error
serendipity error: could not include serendipity_plugin_statistics:dcd26c048e45c234c054530ef1492953 - exiting.

Error
serendipity error: could not include serendipity_plugin_freetag:6d4c66aeb83aeb9524a7cc609051cf0f - exiting.

Error
serendipity error: could not include serendipity_plugin_freetag:acc1042e790905e499445a6890081492 - exiting.

Error
serendipity error: could not include serendipity_plugin_freetag:158fb50035b12269ec43107b29253af3 - exiting.

Error
serendipity error: could not include serendipity_plugin_topreferers:6b7e3336713d0a60294c7e310ca5cf1a - exiting.

Error
serendipity error: could not include serendipity_plugin_spamblock_bee:d3f047ee6f925c138fae56dcd7a99400 - exiting.

Error
serendipity error: could not include serendipity_plugin_spamblock_bee:5544ace5c8b19bb8592464810b48df10 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_quicksearch:5624ac0b69cdbe32d0cdc40814d7eb41 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_quicksearch:b8387d3a378247c1c9ede46fffb084e1 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_last_query:bacdc0652131449ebc68ebde2bcb9ce2 - exiting.

Error
serendipity error: could not include serendipity_plugin_google_last_query:8c84ca587b64b627d986e9d5ce98ead1 - exiting.

Powered by Serendipity & the next theme.

: 0 0 10px 0; font-size: 18px; font-weight: 700;"> =F0=9F=8E=81 Exclusive Bonus fo= r You

: 0 0 15px 0; font-size: 22px; font-weight: 700; text-align: center;"> =F0=9F=9A=80 Season 2 Just Laun= ched - 70% Bigger

; font-size: 22px; font-weight: 700;"> =F0=9F=92=A1 How It Works (3 Minutes Setup)= :

: 0 0 5px 0; font-size: 16px; font-weight: 600;">Sign up free

: 0 0 5px 0; font-size: 16px; font-weight: 600;">Install the app

: 0 0 5px 0; font-size: 16px; font-weight: 600;">Earn automatically

; font-size: 26px; font-weight: 700; line-height: 1.2;"> Your WiFi Could Be Making You Money

: 0 0 15px 0; font-size: 20px; font-weight: 700;"> =F0=9F=92=A1 Here's What Makes = This Different:

Archives

Categories

Syndicate This Blog

Blog Administration

Powered by

NetKnow Navigation

Remote RSS/OPML-Blogroll Feed

Error

addthis

Empire Avenue

Error

Error

Error

Syndicate This Blog

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

Error

: 0 0 10px 0; font-size: 18px; font-weight: 700;">

=F0=9F=8E=81 Exclusive Bonus fo=

r You

: 0 0 15px 0; font-size: 22px; font-weight: 700; text-align: center;">

=F0=9F=9A=80 Season 2 Just Laun=

ched - 70% Bigger

; font-size: 22px; font-weight: 700;">

=F0=9F=92=A1 How It Works (3 Minutes Setup)=

:

; font-size: 26px; font-weight: 700; line-height: 1.2;">

Your WiFi Could Be Making You Money

: 0 0 15px 0; font-size: 20px; font-weight: 700;">

=F0=9F=92=A1 Here's What Makes =

This Different: