Web/SEo/App spam from Microsoft Outlook PArt 2

Posted by Dave Yadallee on


x-ms-exchange-antispam-messagedata-0:

=?iso-8859-1?Q?6CPreZRm4qEz1Rhom3i+6FgGVAMhj2oXwKdSiOrIfL1Y5j4HHgcUMuchMl?=

=?iso-8859-1?Q?GDr2u97nS9xZlgO/a6283Td2Z3MkUN03LtXCL7PfI6DpxWJYktBLNq8yCq?=

=?iso-8859-1?Q?KSe+RJEnOkizdgGPcVHU3vlyMenroKANbG9HTwgNNuv/6e6bx+eYyGCTck?=

=?iso-8859-1?Q?ot2X0vsh5sLjQFl5UW+O8Vaj3F2kDLP1ImJDUeU0SDzPv/qZrEgl4GaGVT?=

=?iso-8859-1?Q?D+ZR6IZYfIYNtty7H2ndMhQ05eUuFKjbeNJG2+aNh6Rc7QWXnjODbnZCkr?=

=?iso-8859-1?Q?VEb4O1ZKwkPwbeN+NJa/y0MTHKkOAB2Vew/GsKe5No+3jR/qIJ3aOHJ4qJ?=

=?iso-8859-1?Q?qW8zb9fk6Caz+DejC8VwXxIg2F0GeX70ln3JsEtu9u63biLVxEl8Vbw3M0?=

=?iso-8859-1?Q?bfzEA81lL8pzMshd1spbiL1q2INJeaq2ugAWrr1APdtMniEFjzJwrn+uGt?=

=?iso-8859-1?Q?Lsosv67p2cGkdmEKiXcm3eB5/+l+1eYKvS7iqKy9ERhYfUWmjE6NjzRqmH?=

=?iso-8859-1?Q?rTMxjX910Qee3fEJ3wAkgFOq4iNTQb0ApVuD0zg+CUyK1jzZqtqyrty1pJ?=

=?iso-8859-1?Q?CJheD+V9WvNO++gxjuzs+li28ttyFHHHNdKfxyUR7oKXUylQp6r6way8vM?=

=?iso-8859-1?Q?++TQfvDlFPYWlpqZCZ6M99B0K9VEbjyd3BrKedT8KqguP5BcryUPsnsHv6?=

=?iso-8859-1?Q?DjiPS7t0MM1FzP6NEBLaNNQx4OS3OkbnOJ1yMp6zXayXXZm0d4IcMCMsal?=

=?iso-8859-1?Q?jkGWWVZJH8Lvq34jGVbx349Dmp8KoRv0AFsrrNO8k3IN6iW52QlY3rYIy+?=

=?iso-8859-1?Q?rf9j2O7x6DosHSpF0l/PreDBGoKEsMLewGzVWUJ47vO1N3l5QMIyv+K959?=

=?iso-8859-1?Q?e/WPQ8Nj7RKQ9kFeqm+2uHqZBfXlRJ+hy6x6/Z6UANGIppI/1EFsUN8aM2?=

=?iso-8859-1?Q?E5z5wtFXVsSqrudW43o96/v8pEBcS1E6ruTwDqighm82wYCQAEpRoj1SKF?=

=?iso-8859-1?Q?Ue2l8RUmDJYKmzSIp4b6stzvnP/XRBz0bbEmFkkMEeNibrCVQsjW8GMuAe?=

=?iso-8859-1?Q?iJzFluVxe/dofUDG5MyOQHf82pBsLJjvG2vJMizSij4Dyo1NLFbkCv3os6?=

=?iso-8859-1?Q?is5v7w1gKDvPidk0RJp8gEvqnvGBN/69DRrJRBeo8u83txItHRhF3rVMR2?=

=?iso-8859-1?Q?IAw2rcICigXcxDbAiw+UWr/1zhMk7C3ffqW3rrOpAYmLLLvDCTegyIVqEQ?=

=?iso-8859-1?Q?PKPe3o7RgIalsvaK7l6vCG5igqzXFad8T9hCHwWidkUNLQc2u7BiWOqaq1?=

=?iso-8859-1?Q?pYoVnMuQ+HygEhrqNzhF1E32bWaiS3hRK4Nc+QO9xPf3nlwQBOgvOrjOXw?=

=?iso-8859-1?Q?QzhIr0bxHZJJ/YEmlDiQOEk1t2sItn8hDovTMbsIqnpNGiBuBXk6J/UxK+?=

=?iso-8859-1?Q?VbEZUfBftdvMLOCLziFbdD4yeIjKXB7bYthV5rSdM8s/5QviFypSuoEa2E?=

=?iso-8859-1?Q?xMwkYA6JmywZ9e8twdUb6E?=

Content-Type: multipart/alternative;

boundary="_000_SA2PR11MB4922197EB69CCDFD05A5ACAC9A352SA2PR11MB4922namp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: SA2PR11MB4922.namprd11.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: b55533cc-904a-4377-b6cc-08dea6c80b4c

X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Apr 2026 14:52:04.6002

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY5PR11MB6533



--_000_SA2PR11MB4922197EB69CCDFD05A5ACAC9A352SA2PR11MB4922namp_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable



Hi,



I Hope you are very well.



I was going through your website, and I personally see a lot of potential i=

n your website and business,



Would you like to optimize your site? I will be happy to share our pricing =

and proposals with you.



If you are interested. May I send you a Latest SEO Offer & Quote?



Thanks,



--_000_SA2PR11MB4922197EB69CCDFD05A5ACAC9A352SA2PR11MB4922namp_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable








1">








nt, Aptos_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; c=

olor: rgb(0, 0, 0);">

Hi,



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

 



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

I Hope you are very well.



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

 



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

I was going through your website, and I personally see a lot of potential i=

n your website and business,



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

 



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

Would you like to optim=

ize your site? I will be happy to share our pricing and proposals with you.=




_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

 



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

If you are interested. =

May I send you a Latest SEO Offer & Quote?



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

 



_MSFontService, Calibri, Helvetica, sans-serif; font-size: 12pt; color: rgb=

(0, 0, 0);">

Thanks,








--_000_SA2PR11MB4922197EB69CCDFD05A5ACAC9A352SA2PR11MB4922namp_--

Web/SEo/App spam from Microsoft Outlook PArt 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 30 Apr 2026 12:57:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wIWYq-000000007ye-3tYT

for dave@doctor.nl2k.ab.ca;

Thu, 30 Apr 2026 12:56:32 -0600

Resent-From: The Doctor

Resent-Date: Thu, 30 Apr 2026 12:56:32 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-westus3azolkn19011089.outbound.protection.outlook.com ([52.103.23.89]:1729 helo=PH0PR06CU001.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wISlC-00000000Joo-2fAV

for sales@nk.ca;

Thu, 30 Apr 2026 08:53:13 -0600

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=QOYHiTlNdg4ppDvEyOA0Su8tlF8PXaER1Gg593MlQWlikS3DSpxX5LQA9zTa/amx8Dd5FFpLQle/oo3bGoCq7gDvHQ6fIFILdlFzBirUhZkHdHDfjBjIMYowIO35eD5NGefNorMdFr0SKVzFme18/dknONoBQ7MdDJ0Dg79fqMwkOjIViFYbiGlShyQFrHv0GD8HR9W+c4aC7CTszgmUOo3s0/J8ijyCPq2g/ZZ7FVyn7UhGX+tpkYOhsuUGVb7gs44TP/fhlIEJUX73A55Uquz6Jo0yTPeXpJWWLuXnNMeOn+J99URtwLL2R6vexTbEN6qiCkaTmeU/kqn/6TQCuA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=5EzFKC8Aas21UOXmX5cqMQpj+XNy5pWiCc5zFBBAJUU=;

b=e+r4Xz/h87leVcGDaV4/exe58XIB1nkNIJRW7akp4pQjgVD465C10i50bdwID00VLHhIyD68fHSW2HrAWniI2ygCzaFwKVWPHHS0MocCaa3bB+iFrRwwzllrXijBzv4s/oal7qBOuWpE9BEYwlC09mfS6hpq8f2p3U4JmL/ss/0zglpOTOwxewla+SNEwmn/80/SSdkDHzua8j8Dysbf2ROg7hvQdKAudql60P8h9A4kU1KC52alTaGTdwgoPEX17KUULVob7z9gTJsg37yMPVRkqaK6tphiIBz5e2ccb9x6PSZtCKCuaDiI0A+uYf81HxBrl8gEhzqVupm9PARe+Q==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=5EzFKC8Aas21UOXmX5cqMQpj+XNy5pWiCc5zFBBAJUU=;

b=X2/QgacH9/1h5pf9vKas26N2aQC23dfEvQU6lLAh0aOJzy7AFvsYMjZKZ2Q9KryDYfjEtqQwAT4Zv+4KFnhYqBvlwGtSdBVTdWR9qtK4AHyx758MqZU5VDPZfAqcpP42E+XWWc4Br4BjasaU/7RnNGbgQu6P0fIyn1z32fE6UoZMBnHG4Ltd9YNYvDS1nEzo4BzmfNQ5d5VBgCpNUa94GV2iA7lBG2JpVu+Sm/gzCHusXiaXBrG2iPsOAc+RHNMLSCadHSUCsnqHMS1ezKIj5hgww1PQ1R8Lkt7LefL/JRN+MbGRHN66ug+KCF3zUyECklVTvbtd6LRUb2HHD6IW3g==

Received: from SA2PR11MB4922.namprd11.prod.outlook.com (2603:10b6:806:111::20)

by CY5PR11MB6533.namprd11.prod.outlook.com (2603:10b6:930:43::13) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9870.19; Thu, 30 Apr

2026 14:52:04 +0000

Received: from SA2PR11MB4922.namprd11.prod.outlook.com

([fe80::6ece:85b4:f7d0:8ab0]) by SA2PR11MB4922.namprd11.prod.outlook.com

([fe80::6ece:85b4:f7d0:8ab0%6]) with mapi id 15.20.9870.020; Thu, 30 Apr 2026

14:52:04 +0000

From: Emberly Froast

To: Emberly Froast

Subject: Re:

Thread-Index:

AQHc1W8apvM07z+aA0aQ4NNmAXC6xLXygew8gAABxzOAAcZpfoAAAKpKgAHTuHeAAZZtM4AAAfj7

Date: Thu, 30 Apr 2026 14:52:04 +0000

Message-ID:



References:



















































In-Reply-To:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: SA2PR11MB4922:EE_|CY5PR11MB6533:EE_

x-ms-office365-filtering-correlation-id: b55533cc-904a-4377-b6cc-08dea6c80b4c

x-microsoft-antispam:

BCL:0;ARA:14566002|19110799012|15030799006|15080799012|8060799015|8062599012|461199028|31061999003|9112599006|55001999006|2604031031799003|16051099003|39105399006|2604032031799003|704163111799003|22091999003|37011999003|24121999003|440099028|3412199025|18071099003|26121999007|12091999003|102099032|3420499032|56899033|51015399003|40105399003|1710799026;

x-microsoft-antispam-message-info:

=?iso-8859-1?Q?mmU50qpRW5bx7WCMUPj3+QZ+qE4aVH1fVISOcHS0blsf7onm711qJD7NM9?=

=?iso-8859-1?Q?liYIDFbrswuPPtq6DDzm4x7GR7PrOFcsG4V7zulqQWQHRCaIR19ZTePD4s?=

=?iso-8859-1?Q?Gu/vLdhXknDpNBABUpgUH5ZGw7EAxCo9y8WosaUGFaBRNPOpi4t9UhodT5?=

=?iso-8859-1?Q?CDRII6AvbZdeT5vvhjchOCzF29uHkNcVsDnGBmPCxG0cz9lHFuboESuU99?=

=?iso-8859-1?Q?yEwdzeYHlkKkgZH8+mEtWRhA3IIkJie56AFccecoDojViVvgv6JuWb8OyW?=

=?iso-8859-1?Q?u2/3H3XxCOlqJp8tcVV+6XV6GzdKqb4LsD1Qn44+WbY0yqGFFaYUxeHixL?=

=?iso-8859-1?Q?frW+/a8ja/4YiGAyE1AWv2nj5Ae5uGd+CROCnlBdmWQ9pq4ukPZf8i+Fkc?=

=?iso-8859-1?Q?oxsEC16ckCdabAERtf9HVgrfi2Bb7flgtXMTFri7P9oTpRidImQj1qgToU?=

=?iso-8859-1?Q?hsMVKEpEUmSogaz7XdfXaen8dAgSlpT/hR+reUh6MplN/fBZptrBtSUrX7?=

=?iso-8859-1?Q?ZJTVpCoOAmkgF1QgokBRgPBnSM+DPyXX/GRWzDqk+zikkbBPk5mROvry2E?=

=?iso-8859-1?Q?l9oAkpWTD7QyycxEZQXXOzPDMl0N3T3Ufl/E/xqH+y32E4JUG9FmwcrRWI?=

=?iso-8859-1?Q?vZ7ezUyAhfzVmanvmd0yx06fSANsSLCpZMvp1yQhosOzzViOgxCICHtIRY?=

=?iso-8859-1?Q?JdeboiEV/zxgZ2vi5AX4HpEGiyJAcLYFdLbiQ8NG733HmrzlRdgk52uSfu?=

=?iso-8859-1?Q?pP2ESvL+i7uBIUfMe/OE6j/vD62YBomBSprEXUl5we8FpBg40IbXDBnK1g?=

=?iso-8859-1?Q?eKz2sT9YWRYqmTwdFEECnqRdb3HnUwxBEta0HE6p75JVXQJijG2h6R+D87?=

=?iso-8859-1?Q?yinxNiAXO8KaFtIfRzdWjHLMA93f1+sfJF8HUIgF1lp3rI510XKVqDBUoK?=

=?iso-8859-1?Q?DPZibbgTga4IBc53DIQQcBXG/c16nP+R+ZSKWNu+ge4tl9Iko06zXPFe7r?=

=?iso-8859-1?Q?4s0IwM7Dvr3XfPi0aIhLZKF030K6LY4hHHUt+IKh99X4oGmAk4SrOorcz0?=

=?iso-8859-1?Q?q8KskSFSBpp1fZzkDiEe9L4eEVShWid7hPflu9k7ssyUGXC0mCPQ0mndMJ?=

=?iso-8859-1?Q?SuvB8Xd3A7BLQ/x41f3R4/QNXUwVcpDq1LnndarTDv//nqU68a869pKV0J?=

=?iso-8859-1?Q?niKl3EaW33DiJSAH/8nJ7DPdaWsH7vIlF1FCeCK5QYr4+m2QYDUuw+BETV?=

=?iso-8859-1?Q?HttBJuN/2fBXYMS/HmR0glEGHYdEQ5rw6/WaFig26HNjtKImhFz/BsAEER?=

=?iso-8859-1?Q?OaPo0XSd0u6kLl18gWJnt6z8zBe4tuPXGUnDOVgzva/hjm8MmDB054fFO4?=

=?iso-8859-1?Q?WJfTEiNQcWgnb9SQIBIrhgu6hRSy3rdS+c2orxx7tPOQdgf5qscvwupSAO?=

=?iso-8859-1?Q?BFDhtRwFTgrBdpVDGcQ6ZzRi9yzgjT3sHm90Iw=3D=3D?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

Geek Squad Phish from Google Gmail Part 7

Posted by Dave Yadallee on




--0000000000005fb5190650ae91dc--

--0000000000005fb51a0650ae91de

Content-Type: application/ics; name="invite.ics"

Content-Disposition: attachment; filename="invite.ics"

Content-Transfer-Encoding: base64



QkVHSU46VkNBTEVOREFSDQpQUk9ESUQ6LS8vR29vZ2xlIEluYy8vR29vZ2xlIENhbGVuZGFyIDcw

LjkwNTQvL0VODQpWRVJTSU9OOjIuMA0KQ0FMU0NBTEU6R1JFR09SSUFODQpNRVRIT0Q6UkVRVUVT

VA0KQkVHSU46VlRJTUVaT05FDQpUWklEOkFtZXJpY2EvTmV3X1lvcmsNClgtTElDLUxPQ0FUSU9O

OkFtZXJpY2EvTmV3X1lvcmsNCkJFR0lOOkRBWUxJR0hUDQpUWk9GRlNFVEZST006LTA1MDANClRa

T0ZGU0VUVE86LTA0MDANClRaTkFNRTpFRFQNCkRUU1RBUlQ6MTk3MDAzMDhUMDIwMDAwDQpSUlVM

RTpGUkVRPVlFQVJMWTtCWU1PTlRIPTM7QllEQVk9MlNVDQpFTkQ6REFZTElHSFQNCkJFR0lOOlNU

QU5EQVJEDQpUWk9GRlNFVEZST006LTA0MDANClRaT0ZGU0VUVE86LTA1MDANClRaTkFNRTpFU1QN

CkRUU1RBUlQ6MTk3MDExMDFUMDIwMDAwDQpSUlVMRTpGUkVRPVlFQVJMWTtCWU1PTlRIPTExO0JZ

REFZPTFTVQ0KRU5EOlNUQU5EQVJEDQpFTkQ6VlRJTUVaT05FDQpCRUdJTjpWRVZFTlQNCkRUU1RB

UlQ7VFpJRD1BbWVyaWNhL05ld19Zb3JrOjIwMjYwNDMwVDIzNDg0Nw0KRFRTVEFNUDoyMDI2MDQz

MFQxNDQ5MTNaDQpPUkdBTklaRVI7Q049QWxnZW5lIHlvZXNsZTptYWlsdG86YWxnZW5leW9lc2xl

QGVybXVrLmNvbQ0KVUlEOmRvdERLUW5OT1VqZ2ZnOUh3S2oxeFVSS0JkQGdvb2dsZS5jb20NCkFU

VEVOREVFO0NVVFlQRT1JTkRJVklEVUFMO1JPTEU9UkVRLVBBUlRJQ0lQQU5UO1BBUlRTVEFUPU5F

RURTLUFDVElPTjtSU1ZQPQ0KIFRSVUU7Q049ZG9jdG9yQG5sMmsuYWIuY2E7WC1OVU0tR1VFU1RT

PTA6bWFpbHRvOmRvY3RvckBubDJrLmFiLmNhDQpYLU1JQ1JPU09GVC1DRE8tT1dORVJBUFBUSUQ6

MjA0MTk0NDg0MA0KQ1JFQVRFRDoyMDI2MDQzMFQxNDQ4NTNaDQpERVNDUklQVElPTjo8ZGl2Pjxl

bT5SZW5ld2FsIERhdGU6IFRodXJzZGF5XCwgMzAgQXByaWwgMjAyNjxiciAvPk1lbWJlcnNoaXAN

CiAgSUQ6IFo4NExTUUtYRDg0OTRGPGJyIC8+PHN0cm9uZz5UZWxlcGhvbmUgU3VwcG9ydCBTZXJ2

aWNlOiAxezgwOH0gIDg0OS0zMTUNCiA5PC9zdHJvbmc+PGJyIC8+PGJyIC8+RGVhciBDdXN0b21l

ciBUZWFtXCw8YnIgLz48YnIgLz5XZSB3b3VsZCBsaWtlIHRvIGluZm8NCiBybSB5b3UgdGhhdCB5

b3VyIEdlZWsgU3F1YWQgUGxhbiBoYXMgYmVlbiByZW5ld2VkIGZvciA1IFllYXJzLiBUaGUgcmVu

ZXdhbCANCiBjaGFyZ2Ugb2YmbmJzcFw7Jm5ic3BcOyQzMzMuMzUgVVNEJm5ic3BcOyZuYnNwXDsm

bmJzcFw7aGFzIGJlZW4gYXBwbGllZC48YnINCiAgLz48YnIgLz48c3Ryb25nPlRyYW5zYWN0aW9u

IERldGFpbHM6PC9zdHJvbmc+PGJyIC8+PGJyIC8+Q3VzdG9tZXIgSUQ6IE9PQlQNCiBIS1g4STU4

WTxiciAvPlRheDogVVNEMDA8YnIgLz5JdGVtIFB1cmNoYXNlZDogQ3liZXJDb3JlIEVzc2VudGlh

bHM8YnIgLz5RdWENCiBudGl0eTogMTxiciAvPk1lbWJlcnNoaXAgRHVyYXRpb246IDUgWWVhcnM8

YnIgLz5QYXltZW50IE1vZGU6IENvbmZpcm1lZDxiciANCiAvPkFtb3VudCBDaGFyZ2VkOiZuYnNw

XDs8c3Ryb25nPiQzMzMuMzUgVVNEPC9zdHJvbmc+PC9lbT48L2Rpdj5cbjxkaXY+PGVtPkUNCiBu

YWJsZSBLZXk6Jm5ic3BcOzxzdHJvbmc+NTE3ODI0YjYtMGExMi00NjVkLTgwMGMtMTkyMGI0NDQ0

MTcwPC9zdHJvbmc+PGJyIC8NCiA+PGJyIC8+WW91ciBtZW1iZXJzaGlwIHByaXZpbGVnZXMgcmVt

YWluIGFjdGl2ZS48YnIgLz48YnIgLz5JbXBvcnRhbnQ6PGJyIC8NCiA+UGxlYXNlIGNvbnRhY3Qg

dXMgYXQmbmJzcFw7PHN0cm9uZz4rMSAoODEwKSAgMzg2LTM0OTI8L3N0cm9uZz4mbmJzcFw7aWYg

eW8NCiB1IG5lZWQgYXNzaXN0YW5jZSByZWdhcmRpbmcgdGhpcyByZW5ld2FsLjxiciAvPjxiciAv

PlRoYW5rIHlvdVwsPGJyIC8+VGVhbSANCiBHZWVrIFNxdWFkJ3M8YnIgLz48c3Ryb25nPkhlbHAg

Q29udGFjdCBOdW1iZXI6ICsxICg4MTApICAzODYtMzQ5Mjwvc3Ryb25nPjwNCiAvZW0+PC9kaXY+

XG48ZGl2PjxlbT5PcGVyYXRpb25hbCBIb3VyczogNiBBTSDigJMgNiBQTTxzdHJvbmc+PGJyIC8+

PC9zdHJvbmc+Tw0KIHBlcmF0aW9uYWwgSGVhZDogSmFzb25qIEhhPGJyIC8+R2VlayBTcXVhZCdz

ICZjb3B5XDsgMjAyNiBBbGwgUmlnaHRzIFJlc2Vydg0KIGVkPC9lbT48L2Rpdj4NCkxBU1QtTU9E

SUZJRUQ6MjAyNjA0MzBUMTQ0ODU3Wg0KTE9DQVRJT046DQpTRVFVRU5DRTowDQpTVEFUVVM6Q09O

RklSTUVEDQpTVU1NQVJZOlJlbWluZGVyOiBQbGVhc2UgQ2hlY2sgWW91ciBQbGFuIFJlbmV3YWwN

ClRSQU5TUDpPUEFRVUUNCkJFR0lOOlZBTEFSTQ0KQUNUSU9OOkRJU1BMQVkNCkRFU0NSSVBUSU9O

OlRoaXMgaXMgYW4gZXZlbnQgcmVtaW5kZXINClRSSUdHRVI6LVAwRFQwSDEwTTBTDQpFTkQ6VkFM

QVJNDQpFTkQ6VkVWRU5UDQpFTkQ6VkNBTEVOREFSDQo=

--0000000000005fb51a0650ae91de--

Geek Squad Phish from Google Gmail Part 6

Posted by Dave Yadallee on

"0" cellpadding=3D"0" cellspacing=3D"0" role=3D"presentation">

=3D"center" role=3D"presentation" valign=3D"middle" style=3D"padding: 6px 0=

; padding-left: 12px; padding-right: 16px; white-space: nowrap;">
y: 'Google Sans', Roboto, sans-serif;color: #5f6368; font-size: 14p=

x; line-height: 120%; mso-line-height-rule: exactly; margin: 0; text-decora=

tion: none; text-transform: none;">Maybe
&eid=3DZG90REtRbk5PVWpnZmc5SHdLajF4VVJLQmQgZG9jdG9yQG5sMmsuYWIuY2E&=

tok=3DMjIjYWxnZW5leW9lc2xlQGVybXVrLmNvbTFiZjIyYzZmYTBlYjliNWI3OTY4NDVlNTRhN=

TZmNzNkNzA2ZTEwMGU&ctz=3DAmerica%2FNew_York&hl=3Den&es=3D0" sty=

le=3D"display: inline-block;;font-weight: 400;font-family: 'Google Sans=

', Roboto, sans-serif;color: #5f6368; font-size: 14px; line-height: 120=

%; mso-line-height-rule: exactly; margin: 0; text-decoration: none; text-tr=

ansform: none;" class=3D"grey-button-text" target=3D"_blank">
=3D"0" cellpadding=3D"0" cellspacing=3D"0" role=3D"presentation" style=3D"b=

order: solid 1px #dadce0; border-radius: 16px; border-collapse: separate;fo=

nt-family: 'Google Sans', Roboto, sans-serif;">
tr>

ter" vertical-align=3D"middle" role=3D"presentation" style=3D"padding: 6px =

0; padding-left: 16px; padding-right: 12px; white-space: nowrap;;color: #5f=

6367;">
ss=3D"grey-button-text" style=3D"font-weight: 400;font-family: 'Google =

Sans', Roboto, sans-serif;color: #5f6368; font-size: 14px; line-height:=

120%; mso-line-height-rule: exactly; margin: 0; text-decoration: none; tex=

t-transform: none;">More options
=

=


sentation" align=3D"center" style=3D"width:100%;" class=3D"">
style=3D"font-size: 0; padding: 0; text-align: left; word-break: break-wor=

d;;padding:4px 12px;" class=3D"" align=3D"left">

t" style=3D"color: #70757a; text-decoration: none;font-family: Roboto, sans=

-serif;font-size: 12px; line-height: 16px; mso-line-height-rule: exactly; t=

ext-align: left;">

Invitation from
/calendar/" class=3D"accent-text underline-on-hover" style=3D"font-family: =

Roboto, sans-serif;font-size: 12px; line-height: 16px; mso-line-height-rule=

: exactly;;color: #1a73e8; text-decoration: none;" target=3D"_blank">Google=

Calendar

You are receiving this email because you are an attende=

e on the event.

Forwarding this invitation could allow any recipient =

to send a response to the organizer, be added to the guest list, invite oth=

ers regardless of their own invitation status, or modify your RSVP.
s=3D"accent-text underline-on-hover" style=3D"font-family: Roboto, sans-ser=

if;font-size: 12px; line-height: 16px; mso-line-height-rule: exactly;;color=

: #1a73e8; text-decoration: none;" href=3D"https://support.google.com/calen=

dar/answer/37135#forwarding">Learn more


ble>


--0000000000005fb5190650ae91dc

Content-Type: text/calendar; charset="UTF-8"; method=REQUEST

Content-Transfer-Encoding: quoted-printable



BEGIN:VCALENDAR

PRODID:-//Google Inc//Google Calendar 70.9054//EN

VERSION:2.0

CALSCALE:GREGORIAN

METHOD:REQUEST

BEGIN:VTIMEZONE

TZID:America/New_York

X-LIC-LOCATION:America/New_York

BEGIN:DAYLIGHT

TZOFFSETFROM:-0500

TZOFFSETTO:-0400

TZNAME:EDT

DTSTART:19700308T020000

RRULE:FREQ=3DYEARLY;BYMONTH=3D3;BYDAY=3D2SU

END:DAYLIGHT

BEGIN:STANDARD

TZOFFSETFROM:-0400

TZOFFSETTO:-0500

TZNAME:EST

DTSTART:19701101T020000

RRULE:FREQ=3DYEARLY;BYMONTH=3D11;BYDAY=3D1SU

END:STANDARD

END:VTIMEZONE

BEGIN:VEVENT

DTSTART;TZID=3DAmerica/New_York:20260430T234847

DTSTAMP:20260430T144913Z

ORGANIZER;CN=3DAlgene yoesle:mailto:algeneyoesle@ermuk.com

UID:dotDKQnNOUjgfg9HwKj1xURKBd@google.com

ATTENDEE;CUTYPE=3DINDIVIDUAL;ROLE=3DREQ-PARTICIPANT;PARTSTAT=3DNEEDS-ACTION=

;RSVP=3D

TRUE;CN=3Ddoctor@nl2k.ab.ca;X-NUM-GUESTS=3D0:mailto:doctor@nl2k.ab.ca

X-MICROSOFT-CDO-OWNERAPPTID:2041944840

CREATED:20260430T144853Z

DESCRIPTION:
Renewal Date: Thursday\, 30 April 2026
Membership

ID: Z84LSQKXD8494F
Telephone Support Service: 1{808} 849-31=

5

9

Dear Customer Team\,

We would like to inf=

o

rm you that your Geek Squad Plan has been renewed for 5 Years. The renewal=

=20

charge of \; \;$333.35 USD \; \; \;has been applied.
r

/>
Transaction Details:

Customer ID: OOB=

T

HKX8I58Y
Tax: USD00
Item Purchased: CyberCore Essentials
Qu=

a

ntity: 1
Membership Duration: 5 Years
Payment Mode: Confirmed
=20

/>Amount Charged: \;$333.35 USD
\n
=

E

nable Key: \;517824b6-0a12-465d-800c-1920b4444170

/

>
Your membership privileges remain active.

Important:

/

>Please contact us at \;+1 (810) 386-3492 \;if y=

o

u need assistance regarding this renewal.

Thank you\,
Team=

=20

Geek Squad's
Help Contact Number: +1 (810) 386-3492=

<

/em>
\n
Operational Hours: 6 AM =E2=80=93 6 PM
<=

/strong>O

perational Head: Jasonj Ha
Geek Squad's ©\; 2026 All Rights Reser=

v

ed


LAST-MODIFIED:20260430T144857Z

LOCATION:

SEQUENCE:0

STATUS:CONFIRMED

SUMMARY:Reminder: Please Check Your Plan Renewal

TRANSP:OPAQUE

BEGIN:VALARM

ACTION:DISPLAY

DESCRIPTION:This is an event reminder

TRIGGER:-P0DT0H10M0S

END:VALARM

END:VEVENT

END:VCALENDAR

Geek Squad Phish from Google Gmail Part 5

Posted by Dave Yadallee on

rganizer" itemscope itemtype=3D"http://schema.org/Person">
"name" content=3D"Algene yoesle"/>
eyoesle@ermuk.com"/>

"secondary-text underline-on-hover" style=3D"display: inline-block;;color: =

#70757a; text-decoration: none;" href=3D"mailto:algeneyoesle@ermuk.com">alg=

eneyoesle@ermuk.com

padding: 0; text-align: left; word-break: break-word;;padding-bottom:24px;=

">

ight: 400; font-size: 14px; line-height: 20px; letter-spacing: 0.2px;color:=

#3c4043; text-decoration: none;" class=3D"primary-text" role=3D"presentati=

on">
ation" style=3D"padding-bottom: 4px;">


yle=3D"font-size: 14px;color: #3c4043; text-decoration: none;font-weight: 7=

00;-webkit-font-smoothing: antialiased;margin: 0; padding: 0;">Guests

<=

/td>
(Guest list has been hidden at organizer's request)
<=

/td>
break: break-word;;padding-bottom:0px;">

decoration: none;;font-family: Roboto, sans-serif;font-size: 14px; line-hei=

ght: 20px; mso-line-height-rule: exactly; text-align: left;" class=3D"prima=

ry-text">
<=

/td>
break: break-word;;padding-bottom:16px;">

sans-serif;font-size: 14px; line-height: 20px; mso-line-height-rule: exact=

ly; text-align: left;">
"0" role=3D"presentation" style=3D"border-collapse: separate;">

e=3D"padding-top: 8px; padding-left: 0; padding-right: 12px;">
sentation" style=3D"border: solid 1px #dadce0; border-radius: 16px; border-=

collapse: separate;font-family: 'Google Sans', Roboto, sans-serif;;=

display: inline-block;;margin-right: 12px; margin-left: 0;">

=3D"center" vertical-align=3D"middle" role=3D"presentation">
=3D"potentialaction" itemscope itemtype=3D"http://schema.org/RsvpAction">
eta itemprop=3D"attendance" content=3D"http://schema.org/RsvpAttendance/Yes=

"/>
ctionHandler">
stMethod/GET"/>
google.com/calendar/event?action=3DRESPOND&eid=3DZG90REtRbk5PVWpnZmc5SH=

dLajF4VVJLQmQgZG9jdG9yQG5sMmsuYWIuY2E&rst=3D1&tok=3DMjIjYWxnZW5leW9=

lc2xlQGVybXVrLmNvbTFiZjIyYzZmYTBlYjliNWI3OTY4NDVlNTRhNTZmNzNkNzA2ZTEwMGU&am=

p;ctz=3DAmerica%2FNew_York&hl=3Den&es=3D0" style=3D"font-weight: 40=

0;font-family: 'Google Sans', Roboto, sans-serif;color: #5f6368; fo=

nt-size: 14px; line-height: 120%; mso-line-height-rule: exactly; margin: 0;=

text-decoration: none; text-transform: none;" class=3D"grey-button-text" i=

temprop=3D"url" target=3D"_blank">
lspacing=3D"0" role=3D"presentation">

ntation" valign=3D"middle" style=3D"padding: 6px 0; padding-left: 16px; pad=

ding-right: 12px; white-space: nowrap;">
-button-text" style=3D"font-weight: 400;font-family: 'Google Sans',=

Roboto, sans-serif;color: #5f6368; font-size: 14px; line-height: 120%; mso=

-line-height-rule: exactly; margin: 0; text-decoration: none; text-transfor=

m: none;">Yes

an>
=3D"presentation" style=3D"border-left: solid 1px #dadce0; border-right: so=

lid 1px #dadce0;">
http://schema.org/RsvpAction">
://schema.org/RsvpAttendance/No"/>
type=3D"http://schema.org/HttpActionHandler">
=3D"http://schema.org/HttpRequestMethod/GET"/>
;">
mp;eid=3DZG90REtRbk5PVWpnZmc5SHdLajF4VVJLQmQgZG9jdG9yQG5sMmsuYWIuY2E&rs=

t=3D2&tok=3DMjIjYWxnZW5leW9lc2xlQGVybXVrLmNvbTFiZjIyYzZmYTBlYjliNWI3OTY=

4NDVlNTRhNTZmNzNkNzA2ZTEwMGU&ctz=3DAmerica%2FNew_York&hl=3Den&e=

s=3D0" style=3D"font-weight: 400;font-family: 'Google Sans', Roboto=

, sans-serif;color: #5f6368; font-size: 14px; line-height: 120%; mso-line-h=

eight-rule: exactly; margin: 0; text-decoration: none; text-transform: none=

;" class=3D"grey-button-text" itemprop=3D"url" target=3D"_blank">
der=3D"0" cellpadding=3D"0" cellspacing=3D"0" role=3D"presentation">
align=3D"center" role=3D"presentation" valign=3D"middle" style=3D"padding:=

6px 12px; white-space: nowrap;">
-text" style=3D"font-weight: 400;font-family: 'Google Sans', Roboto=

, sans-serif;color: #5f6368; font-size: 14px; line-height: 120%; mso-line-h=

eight-rule: exactly; margin: 0; text-decoration: none; text-transform: none=

;">No

n>
tation">
ema.org/RsvpAction">
org/RsvpAttendance/Maybe"/>
"http://schema.org/HttpActionHandler">
p://schema.org/HttpRequestMethod/GET"/>
ref=3D"https://calendar.google.com/calendar/event?action=3DRESPOND&eid=

=3DZG90REtRbk5PVWpnZmc5SHdLajF4VVJLQmQgZG9jdG9yQG5sMmsuYWIuY2E&rst=3D3&=

amp;tok=3DMjIjYWxnZW5leW9lc2xlQGVybXVrLmNvbTFiZjIyYzZmYTBlYjliNWI3OTY4NDVlN=

TRhNTZmNzNkNzA2ZTEwMGU&ctz=3DAmerica%2FNew_York&hl=3Den&es=3D0"=

style=3D"font-weight: 400;font-family: 'Google Sans', Roboto, sans=

-serif;color: #5f6368; font-size: 14px; line-height: 120%; mso-line-height-=

rule: exactly; margin: 0; text-decoration: none; text-transform: none;" cla=

ss=3D"grey-button-text" itemprop=3D"url" target=3D"_blank">

Geek Squad Phish from Google Gmail Part 4

Posted by Dave Yadallee on

/InformAction">
emtype=3D"http://schema.org/Person">
=3D"Invitation from Algene yoesle"/>
ope itemtype=3D"http://schema.org/Event">
tent=3D"http://schema.org/EventScheduled"/>
mscope itemtype=3D"http://schema.org/Organization">
content=3D"Google Calendar"/>
r" content=3D"dotDKQnNOUjgfg9HwKj1xURKBd"/>
nt-size: 1px; color: #fff; line-height: 1px; height: 0; max-height: 0; widt=

h: 0; max-width: 0; opacity: 0; overflow: hidden;" itemprop=3D"name">Remind=

er: Please Check Your Plan Renewal
https://calendar.google.com/calendar/event?action=3DVIEW&eid=3DZG90REtR=

bk5PVWpnZmc5SHdLajF4VVJLQmQgZG9jdG9yQG5sMmsuYWIuY2E&tok=3DMjIjYWxnZW5le=

W9lc2xlQGVybXVrLmNvbTFiZjIyYzZmYTBlYjliNWI3OTY4NDVlNTRhNTZmNzNkNzA2ZTEwMGU&=

amp;ctz=3DAmerica%2FNew_York&hl=3Den&es=3D0"/>
true">
me itemprop=3D"endDate" datetime=3D"20260501T034847Z">

yle=3D"display: none; font-size: 1px; color: #fff; line-height: 1px; height=

: 0; max-height: 0; width: 0; max-width: 0; opacity: 0; overflow: hidden;">=

Renewal Date: Thursday, 30 April 2026Membership ID: Z84LSQKXD8494FTelephone=

Support Service: 1{808} 849-3159Dear Customer Team,We would like to infor=

m you that your Geek Squad Plan has been renewed f

cellpadding=3D"0" cellspacing=3D"0" role=3D"presentation" align=3D"center"=

style=3D"width:100%;" class=3D"body-container">

lass=3D"" align=3D"left">

ue">  

rder=3D"0" cellpadding=3D"0" cellspacing=3D"0" role=3D"presentation" align=

=3D"center" style=3D"width:100%;" class=3D"">

: solid 1px #dadce0; border-radius: 8px; direction: rtl; font-size: 0; padd=

ing: 24px 32px; text-align: left; vertical-align: top;" class=3D"main-conta=

iner-inner">

ont-size: 13px; text-align: left; direction: ltr; display: inline-block; ve=

rtical-align: top; width: 100%;overflow: hidden; word-wrap: break-word;">
able border=3D"0" cellpadding=3D"0" cellspacing=3D"0" role=3D"presentation"=

width=3D"100%" class=3D"main-column-table-ltr" style=3D"padding-right: 32p=

x; padding-left: 0;;table-layout: fixed;">

mn-td" style=3D"padding:0; vertical-align:top;">
ding=3D"0" cellspacing=3D"0" role=3D"presentation" width=3D"100%" style=3D"=

table-layout: fixed;">

: left; word-break: break-word;;padding-bottom:24px;">

mily: Roboto, sans-serif;font-style: normal; font-weight: 400; font-size: 1=

4px; line-height: 20px; letter-spacing: 0.2px;color: #3c4043; text-decorati=

on: none;" class=3D"primary-text" role=3D"presentation">
Rene=

wal Date: Thursday, 30 April 2026
Membership ID: Z84LSQKXD8494F

ng>Telephone Support Service: 1{808} 849-3159

Dear Custome=

r Team,

We would like to inform you that your Geek Squad Plan has be=

en renewed for 5 Years. The renewal charge of=C2=A0=C2=A0$333.35 USD=C2=A0=

=C2=A0=C2=A0has been applied.

Transaction Details:<=

br>
Customer ID: OOBTHKX8I58Y
Tax: USD00
Item Purchased: CyberCore=

Essentials
Quantity: 1
Membership Duration: 5 Years
Payment Mode:=

Confirmed
Amount Charged:=C2=A0$333.35 USD
<=

br>
Enable Key:=C2=A0517824b6-0a12-465d-800c-1920b4444170
strong>

Your membership privileges remain active.

Important:<=

br>Please contact us at=C2=A0+1 (810) 386-3492=C2=A0if yo=

u need assistance regarding this renewal.

Thank you,
Team Geek Sq=

uad's
Help Contact Number: +1 (810) 386-3492<=

/div>
Operational Hours: 6 AM =E2=80=93 6 PM

g>Operational Head: Jasonj Ha
Geek Squad's =C2=A9 2026 All Rights Re=

served

ate: Thursday, 30 April 2026Membership ID: Z84LSQKXD8494FTelephone Support =

Service: 1{808} 849-3159Dear Customer Team,We would like to inform you tha=

t your Geek Squad Plan has been renewed for 5 Years. The renewal charge of&=

amp;nbsp;&nbsp;$333.35 USD&nbsp;&nbsp;&nbsp;has been applie=

d.Transaction Details:Customer ID: OOBTHKX8I58YTax: USD00Item Purchased: Cy=

berCore EssentialsQuantity: 1Membership Duration: 5 YearsPayment Mode: Conf=

irmedAmount Charged:&nbsp;$333.35 USD

Enable Key:&nbsp;517824b6-0a12-465d-800c-1920b4444170Your membership pr=

ivileges remain active.Important:Please contact us at&nbsp;+1 (810) 38=

6-3492&nbsp;if you need assistance regarding this renewal.Thank you,Tea=

m Geek Squad'sHelp Contact Number: +1 (810) 386-3492

Operational Hours: 6 AM =E2=80=93 6 PMOperational Head: Jasonj HaGeek Squad=

's &copy; 2026 All Rights Reserved"/>

=3D"font-size: 0; padding: 0; text-align: left; word-break: break-word;;pad=

ding-bottom:24px;">

: normal; font-weight: 400; font-size: 14px; line-height: 20px; letter-spac=

ing: 0.2px;color: #3c4043; text-decoration: none;" class=3D"primary-text" r=

ole=3D"presentation">
ellspacing=3D"0" role=3D"presentation" style=3D"padding-bottom: 4px;"><=

td>


-decoration: none;font-weight: 700;-webkit-font-smoothing: antialiased;marg=

in: 0; padding: 0;">When

Thursday Apr 30, 2026 =

=E2=8B=85 11:48pm (Eastern Time - New York)

tyle=3D"font-size: 0; padding: 0; text-align: left; word-break: break-word;=

;padding-bottom:24px;">

tyle: normal; font-weight: 400; font-size: 14px; line-height: 20px; letter-=

spacing: 0.2px;color: #3c4043; text-decoration: none;" class=3D"primary-tex=

t" role=3D"presentation">
=3D"0" role=3D"presentation" style=3D"padding-bottom: 4px;">


ss=3D"primary-text" style=3D"font-size: 14px;color: #3c4043; text-decoratio=

n: none;font-weight: 700;-webkit-font-smoothing: antialiased;margin: 0; pad=

ding: 0;">Organizer

Geek Squad Phish from Google Gmail Part 2

Posted by Dave Yadallee on
--0000000000005fb51a0650ae91de

Content-Type: multipart/alternative; boundary="0000000000005fb5190650ae91dc"



--0000000000005fb5190650ae91dc

Content-Type: text/plain; charset="UTF-8"; format=flowed; delsp=yes

Content-Transfer-Encoding: base64



UmVtaW5kZXI6IFBsZWFzZSBDaGVjayBZb3VyIFBsYW4gUmVuZXdhbA0KVGh1cnNkYXkgQXByIDMw

LCAyMDI2IOKLhSAxMTo0OHBtDQpFYXN0ZXJuIFRpbWUgLSBOZXcgWW9yaw0KDQoNCg0KUmVuZXdh

bCBEYXRlOiBUaHVyc2RheSwgMzAgQXByaWwgMjAyNk1lbWJlcnNoaXAgSUQ6IFo4NExTUUtYRDg0

OTRGVGVsZXBob25lICANClN1cHBvcnQgU2VydmljZTogMXs4MDh9ICA4NDktMzE1OURlYXIgQ3Vz

dG9tZXIgVGVhbSxXZSB3b3VsZCBsaWtlIHRvIGluZm9ybSAgDQp5b3UgdGhhdCB5b3VyIEdlZWsg

U3F1YWQgUGxhbiBoYXMgYmVlbiByZW5ld2VkIGZvciA1IFllYXJzLiBUaGUgcmVuZXdhbCAgDQpj

aGFyZ2Ugb2YmbmJzcDsmbmJzcDskMzMzLjM1IFVTRCZuYnNwOyZuYnNwOyZuYnNwO2hhcyBiZWVu

ICANCmFwcGxpZWQuVHJhbnNhY3Rpb24gRGV0YWlsczpDdXN0b21lciBJRDogT09CVEhLWDhJNThZ

VGF4OiBVU0QwMEl0ZW0gIA0KUHVyY2hhc2VkOiBDeWJlckNvcmUgRXNzZW50aWFsc1F1YW50aXR5

OiAxTWVtYmVyc2hpcCBEdXJhdGlvbjogNSAgDQpZZWFyc1BheW1lbnQgTW9kZTogQ29uZmlybWVk

QW1vdW50IENoYXJnZWQ6Jm5ic3A7JDMzMy4zNSBVU0QNCkVuYWJsZSBLZXk6Jm5ic3A7NTE3ODI0

YjYtMGExMi00NjVkLTgwMGMtMTkyMGI0NDQ0MTcwWW91ciBtZW1iZXJzaGlwICANCnByaXZpbGVn

ZXMgcmVtYWluIGFjdGl2ZS5JbXBvcnRhbnQ6UGxlYXNlIGNvbnRhY3QgdXMgYXQmbmJzcDsrMSAo

ODEwKSAgIA0KMzg2LTM0OTImbmJzcDtpZiB5b3UgbmVlZCBhc3Npc3RhbmNlIHJlZ2FyZGluZyB0

aGlzIHJlbmV3YWwuVGhhbmsgeW91LFRlYW0gIA0KR2VlayBTcXVhZCdzSGVscCBDb250YWN0IE51

bWJlcjogKzEgKDgxMCkgIDM4Ni0zNDkyDQpPcGVyYXRpb25hbCBIb3VyczogNiBBTSDigJMgNiBQ

TU9wZXJhdGlvbmFsIEhlYWQ6IEphc29uaiBIYUdlZWsgU3F1YWQncyAgDQomY29weTsgMjAyNiBB

bGwgUmlnaHRzIFJlc2VydmVkDQoNCk9yZ2FuaXplcg0KQWxnZW5lIHlvZXNsZQ0KYWxnZW5leW9l

c2xlQGVybXVrLmNvbQ0KDQpSZXBseSBmb3IgZG9jdG9yQG5sMmsuYWIuY2EgYW5kIHZpZXcgbW9y

ZSBkZXRhaWxzICANCmh0dHBzOi8vY2FsZW5kYXIuZ29vZ2xlLmNvbS9jYWxlbmRhci9ldmVudD9h

Y3Rpb249VklFVyZlaWQ9Wkc5MFJFdFJiazVQVldwblptYzVTSGRMYWpGNFZWSkxRbVFnWkc5amRH

OXlRRzVzTW1zdVlXSXVZMkUmdG9rPU1qSWpZV3huWlc1bGVXOWxjMnhsUUdWeWJYVnJMbU52YlRG

aVpqSXlZelptWVRCbFlqbGlOV0kzT1RZNE5EVmxOVFJoTlRabU56TmtOekEyWlRFd01HVSZjdHo9

QW1lcmljYSUyRk5ld19Zb3JrJmhsPWVuJmVzPTANCllvdXIgYXR0ZW5kYW5jZSBpcyBvcHRpb25h

bC4NCg0Kfn4vL35+DQpJbnZpdGF0aW9uIGZyb20gR29vZ2xlIENhbGVuZGFyOiBodHRwczovL2Nh

bGVuZGFyLmdvb2dsZS5jb20vY2FsZW5kYXIvDQoNCllvdSBhcmUgcmVjZWl2aW5nIHRoaXMgZW1h

aWwgYmVjYXVzZSB5b3UgYXJlIGFuIGF0dGVuZGVlIG9uIHRoZSBldmVudC4NCg0KRm9yd2FyZGlu

ZyB0aGlzIGludml0YXRpb24gY291bGQgYWxsb3cgYW55IHJlY2lwaWVudCB0byBzZW5kIGEgcmVz

cG9uc2UgdG8gIA0KdGhlIG9yZ2FuaXplciwgYmUgYWRkZWQgdG8gdGhlIGd1ZXN0IGxpc3QsIGlu

dml0ZSBvdGhlcnMgcmVnYXJkbGVzcyBvZiAgDQp0aGVpciBvd24gaW52aXRhdGlvbiBzdGF0dXMs

IG9yIG1vZGlmeSB5b3VyIFJTVlAuDQoNCkxlYXJuIG1vcmUgaHR0cHM6Ly9zdXBwb3J0Lmdvb2ds

ZS5jb20vY2FsZW5kYXIvYW5zd2VyLzM3MTM1I2ZvcndhcmRpbmcNCg==

--0000000000005fb5190650ae91dc

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable




schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-microsoft-com:office:offi=

ce">
t=3D"text/html; charset=3DUTF-8">
=3Ddevice-width,initial-scale=3D1">
ight dark">





















=20



=20



=20



=20

















Geek Squad Phish from Google Gmail Part 1

Posted by Dave Yadallee on
X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 30 Apr 2026 12:57:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wIWYh-000000007yJ-0cFw

for dave@doctor.nl2k.ab.ca;

Thu, 30 Apr 2026 12:56:23 -0600

Resent-From: The Doctor

Resent-Date: Thu, 30 Apr 2026 12:56:23 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-oa1-f74.google.com ([209.85.160.74]:58692)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wISiN-00000000JZX-0Pwd

for doctor@nl2k.ab.ca;

Thu, 30 Apr 2026 08:51:11 -0600

Received: by mail-oa1-f74.google.com with SMTP id 586e51a60fabf-43031704442so1861041fac.1

for ; Thu, 30 Apr 2026 07:49:20 -0700 (PDT)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=google.com; s=20251104; t=1777560554; x=1778165354; darn=nl2k.ab.ca;

h=to:from:subject:date:message-id:sender:reply-to:mime-version:from

:to:cc:subject:date:message-id:reply-to;

bh=9WFrP5RynVoN7R8w58QwTLwBzzBX9j61koxNyn4jo4M=;

b=L8eWVJcKzz/bn4R+d/d381KTPq9PBRF7FYx+z1fzavim3YPjfU/1uwzUL/UzVuI63s

8ob4x7uNz/kSX3epJqrt/BgIrW8C7EFk5DKmhb2TUL1sQwbfJHK1lj6M+bEmuR2h2OCd

dO01MkZpszozIL1uNC7FHjmf9IQkeZLZEpV22dMjMj+ShPuu/da3wp+vyXnLS5GldPAK

StucBNn2FmUFCDb82I3FvFfvqnjz82gaRSRKVIeYNskbvgiTWC2OMPNdnQWJywb1ZCIj

CdsCkbEkjyJR3eJxDXfcJ/U2+Bq13+v+r6F16vgOTc9KSSwnr3KpxtGaQ30ZTJG4ADQu

cBSg==

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=ermuk-com.20251104.gappssmtp.com; s=20251104; t=1777560554; x=1778165354; darn=nl2k.ab.ca;

h=to:from:subject:date:message-id:sender:reply-to:mime-version:from

:to:cc:subject:date:message-id:reply-to;

bh=9WFrP5RynVoN7R8w58QwTLwBzzBX9j61koxNyn4jo4M=;

b=fmC8VQU6eMABva16oBqcWQYZfKM2TnuUgaP3Y4VCe4ULqNqG+T4UNJCMDf+i5anUNd

et5KfgPkJUoqZTi+UW8fEhFkIXIqfVDPJEVEfYDechqs5SLCPP2Qb39A05IPtqhZMD1r

uoIPH/MxoGL1gOydkEe7UeQFrlD4xQ0dnzpo0HoSgPeYxNWFHqRsSvetAqZqhoJq4WgD

tePaRxCWmSzcH1W6z9bqU1zcpHQqQjzPZZsomVPhTNdAiKHsnKDpjgYmkCYui1pnWYDP

i6XZfApmO3VhCiPRZxyG7FoFhEI9p3MzPaB3yo5N2c2vy7JARzOY/Q+kBnf8Bv4pzn2Z

YQzA==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1777560554; x=1778165354;

h=to:from:subject:date:message-id:sender:reply-to:mime-version

:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;

bh=9WFrP5RynVoN7R8w58QwTLwBzzBX9j61koxNyn4jo4M=;

b=M9sggA7RZVNexiAvx3RRgWFoJCogD2akbZ3THF2pkALkioy0yPpEP/B1HyDICIGaLb

4Gk9mDZM6TlFeE9vg6xq8yXEw7/j+JZKHEYyBdelg+O9kXjQxkO7MHE8nv3xIaoyu6xZ

/QuJ8+D07IxNUHpKBisuh+PgobG225xoLvaW0SBnwhd4ZNCd+QCCUJ6z69vqSnUEE3D3

uludLaeERvqmJl6G0tUg/X9d46Mg24AiX3usbkjVfLR8OAUdK4viFyHb/ePwtDkna5u7

Ps90u539f0WcP40azgIpXgF76R/VU4fH1TXEPH3d5z0wFQROk222VSZv3SdYMSEPAXWg

exyA==

X-Gm-Message-State: AOJu0YyLoAJb7cIha8vBdR2qKgpCEslQ88h2nvtbCYPNYekiCbH9IySR

eviuwAZU18cqnU8gd28UcT5E2mIaWWbc2BBntiy6pnzT5djTaxphox/HAcQlcikK97vZxNK/tan

lWaPhIzMplN0jrcR2ETsczmNCPZWfYg2vPRl4xfzr7nffs+ENqmwbIA==

MIME-Version: 1.0

X-Received: by 2002:a05:6870:9e95:b0:42c:a86:abcb with SMTP id

586e51a60fabf-43434023961mr1847427fac.29.1777560553760; Thu, 30 Apr 2026

07:49:13 -0700 (PDT)

Reply-To: Algene yoesle

Sender: Google Calendar

Message-ID:

Date: Thu, 30 Apr 2026 14:49:13 +0000

Subject: Invitation: Reminder: Please Check Your Plan Renewal @ Thu Apr 30,

2026 11:48pm (EDT) (doctor@nl2k.ab.ca)

From: Algene yoesle

To: doctor@nl2k.ab.ca

Content-Type: multipart/mixed; boundary="0000000000005fb51a0650ae91de"

X-Spam_score: 6.6

X-Spam_score_int: 66

X-Spam_bar: ++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Reminder: Please Check Your Plan Renewal Thursday Apr 30,

2026 â‹… 11:48pm Eastern Time - New York Renewal Date: Thursday, 30 April

2026Membership ID: Z84LSQKXD8494FTelephone Support Service: 1{808} 849-3159Dear

Customer Team,We would like to inform you that your Geek Squad Plan has been

renewed fo [...]



Content analysis details: (6.6 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

[209.85.160.74 listed in dnsbl.ahbl.org]

[209.85.160.74 listed in dnsbl.ahbl.org]

[209.85.160.74 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.160.74 listed in list.dnswl.org]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.6 MEGALONGWORD BODY: Uses really overlong words

0.6 J_CHICKENPOX_34 BODY: 3alpha-pock-4alpha

0.6 J_CHICKENPOX_42 BODY: 4alpha-pock-2alpha

0.6 J_CHICKENPOX_55 BODY: 5alpha-pock-5alpha

0.3 LONGWORD BODY: Uses overlong words

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[209.85.160.74 listed in bl.score.senderscore.com]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.160.74 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.6 LONG_INVISIBLE_TEXT Long block of hidden text - bayes poison?

Subject: {SPAM?} Invitation: Reminder: Please Check Your Plan Renewal @ Thu Apr 30,

2026 11:48pm (EDT) (doctor@nl2k.ab.ca)

Cybersecure phish from Google Gmail Part 3

Posted by Dave Yadallee on


=20



=20

















Cybersecure Plus Phish from Google Gmail Part 4

Posted by Dave Yadallee on

/InformAction">
emtype=3D"http://schema.org/EmailMessage">
ntent=3D"Alversia Yaari: Reminder: Your Plan is Set to Renew"/>
itemprop=3D"object" itemscope itemtype=3D"http://schema.org/Event">
temprop=3D"eventStatus" content=3D"http://schema.org/EventScheduled"/>
itemprop=3D"publisher" itemscope itemtype=3D"http://schema.org/Organizatio=

n">
op=3D"eventId/googleCalendar" content=3D"1GbuQdXm9em9oLHKW3kjFdldW0"/>
style=3D"display: none; font-size: 1px; color: #fff; line-height: 1px; hei=

ght: 0; max-height: 0; width: 0; max-width: 0; opacity: 0; overflow: hidden=

;" itemprop=3D"name">Reminder: Your Plan is Set to Renew
idden=3D"true">

--000000000000d011010650ad1170--

Cybersecure phish from Google Gmail Part 2

Posted by Dave Yadallee on


--000000000000d011010650ad1170

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable




schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-microsoft-com:office:offi=

ce">
t=3D"text/html; charset=3DUTF-8">
=3Ddevice-width,initial-scale=3D1">
ight dark">





















=20



=20

Nigerian Spam from Google Gmail Part 2

Posted by Dave Yadallee on




Dear Friend:



I am Mr. Robert Setshedi a Financial Consultant from South Africa. I want

to partner with you on a transaction worth $100M USD. I had a client who

unfortunately died of COVID-19 complications from 2020. I want you to

receive this money as a representative for my late client. I shall provide

to you all appropriate legal documents that will present you as a legal

representative and entitlement to this assets/estate. Including AU METAL

(100kg).



reply through my Email: rsetshedi685@gmail.com. We shall discuss a whole

lot of issues including disbursement modalities and of course any questions

you will have regarding the process of this transaction.



Best Regards

Mr. Robert Setshedi



--0000000000009fb21f0650ac00ad

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable



Dear Friend:

I am Mr. Robert Setshedi a Financial C=

onsultant from South Africa. I want to partner with you on a transaction wo=

rth $100M USD. I had a client who unfortunately died of COVID-19 complicati=

ons from 2020. I want you to receive this money as a representative for my =

late client. I shall provide to you all appropriate legal documents that wi=

ll present you as a legal representative and entitlement to this assets/est=

ate. Including AU METAL (100kg).

reply through my Email:
mailto:rsetshedi685@gmail.com">rsetshedi685@gmail.com. We shall discuss=

a whole lot of issues including disbursement modalities and of course any =

questions you will have regarding the process of this transaction.

B=

est Regards
Mr. Robert Setshedi




--0000000000009fb21f0650ac00ad--

Cybersecure phish from Google Gmail Part 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 30 Apr 2026 07:07:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wIR62-00000000KXv-3yS1

for dave@doctor.nl2k.ab.ca;

Thu, 30 Apr 2026 07:06:26 -0600

Resent-From: The Doctor

Resent-Date: Thu, 30 Apr 2026 07:06:26 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-oa1-f74.google.com ([209.85.160.74]:55388)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wIR2c-00000000IQP-1aTs

for doctor@nl2k.ab.ca;

Thu, 30 Apr 2026 07:03:05 -0600

Received: by mail-oa1-f74.google.com with SMTP id 586e51a60fabf-42fb0f12b10so998107fac.2

for ; Thu, 30 Apr 2026 06:02:04 -0700 (PDT)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=google.com; s=20251104; t=1777554118; x=1778158918; darn=nl2k.ab.ca;

h=from:subject:date:message-id:sender:reply-to:mime-version:from:to

:cc:subject:date:message-id:reply-to;

bh=MpDJJJnd4ex83oRMbw94ncZuZKNxrNpAONvsYhYQwuA=;

b=gcyU7JIDSuPmKAXBMzwXdivWLMDd3YOxMal6flmei4TRnYFPq4UZhYTtyvQkXyS15a

lzzzh64hPo0sgl1IbXputlGDd939GeT6TWY7kQXoui8kz0sytNrRlBjzyAEk8jkvcnMF

YUs0TLiTcxw4+A99ZqyvQNjoSzbyF3Oee/9nPW7F5O0WugfrnG+uXIp6SRA7/MO2MtgS

OaTsPEoVeM7N2Q5Pp4slADH8XSOuiGoarmVrI4c1dtJxSqhWwgcXxHe8btoK/dYZXbC7

SRXJwm0zdmy+yDr+gYlOzgIfe0+3jzCYSpODbZmogt27B/5mcxmFyIKKQ5lClQevx3WM

w+Vw==

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=haberlo-com.20251104.gappssmtp.com; s=20251104; t=1777554119; x=1778158919; darn=nl2k.ab.ca;

h=from:subject:date:message-id:sender:reply-to:mime-version:from:to

:cc:subject:date:message-id:reply-to;

bh=MpDJJJnd4ex83oRMbw94ncZuZKNxrNpAONvsYhYQwuA=;

b=Scag2nDcuzRz/56ucFdEpTl4A7qVRUQgZ510KooekK1AVYylo1HbMoKcZC2KTMdmZn

zSogS/8WwsWJTvRP0ckQQkQsVBCE5ibSILDgNVmGVBCEY4w9yawkqCjalhFHpPlIcDsL

C4vmPwTMGKnihw5U2DZ9ML4L/pn/dJxkhcUuu7BqTlOH5Ps8muUrvkfnZlQvJ+DfGpQQ

XhFLKOedM8gfpUpRzsqApUxQlranC6dJ3Vm0H8NLFkUbinHMcCY6Xttg7OKZ9I7pV4uU

LJh2TVslAh0bq0V7br7kHbSnnHRKDJzuPwa4ns/nqJfcgTYxJ1Y3Ip5z9HPD621Z3WdY

SxWg==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1777554119; x=1778158919;

h=from:subject:date:message-id:sender:reply-to:mime-version

:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;

bh=MpDJJJnd4ex83oRMbw94ncZuZKNxrNpAONvsYhYQwuA=;

b=HkZ+mWa0GLfQhJr04cp0XXofQ21QBA73Hc5UL8GcspoAg0bwm8cowkx6rZsx6i+3qR

DF4DeIuJi301fRtldjJlA0HO8FrleMBOwW2awnSXli6UszGkWHhcXeUr1tI9jR2bVlT5

Bn0hFwzZU3TV9q4v7fTX+DDG8nGBt0cYoSI/XmDD4hy/Wv16ILgGXeuVFlClbDPKqxbf

RnqY1ySARUXi3/dQAmGQG944QfvqKZS7B5TkqtPSr9v3u8IZk6n9GFY0YOpB3WgqA/ho

QdjVC88oJ0f0XsyyP9MqyDROErBNWX9fwmC7gZL9tjq5Yvim70hSVCut/QU6NNbFvFb9

bZIw==

X-Forwarded-Encrypted: i=1; AFNElJ9GebK0/wFSZouk5CX2bxNwbDetTrLMlNj1s3ovjEQaXqFhZbM/DD/dtsHHjRHMYcZUPb8Ka1Y=@nl2k.ab.ca

X-Gm-Message-State: AOJu0Yxwg26loph9G8R/j9p4r6qJbAcA4rODwD9KBxaRjlSZMqXqjsLo

JfD44Mfg7G/GOmJf6FaC8vo3J0mzYZ7Ed4QoRySYDDaqsybvGFMpWEZZn9kdebJQew5CA53ULZJ

cM/QlW3qJvjLuJqIuMR7Y1WTutU2KJmWQWLTLqR/mbvfd/A==

MIME-Version: 1.0

X-Received: by 2002:a05:6870:e24f:b0:42c:62c:20db with SMTP id

586e51a60fabf-4343409e4e7mt1381902fac.38.1777554118437; Thu, 30 Apr 2026

06:01:58 -0700 (PDT)

Reply-To: Alversia Yaari

Sender: Google Calendar

Message-ID:

Date: Thu, 30 Apr 2026 13:01:58 +0000

Subject: Reminder: Your Plan is Set to Renew

From: Alversia Yaari

Content-Type: multipart/alternative; boundary="000000000000d011010650ad1170"

X-Spam_score: 10.3

X-Spam_score_int: 103

X-Spam_bar: ++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Reminder: Your Plan is Set to Renew Reminder: Your Plan is

Set to Renew Friday May 1, 2026 ⋅ 2:01pm New Zealand Time Geek Squads 📄

Order Date: Thursday, 30 April 2026Order Receipt: KMK8YHDY58Z1Z4📞 Hotline

Number: (808)-849 3159.System Membership NotificationAccount Update,This

message is shared to keep you inf [...]



Content analysis details: (10.3 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

[209.85.160.74 listed in will-spam-for-food.eu.org]

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

[209.85.160.74 listed in dnsbl.ahbl.org]

[209.85.160.74 listed in dnsbl.ahbl.org]

[209.85.160.74 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.160.74 listed in dnsbl.ahbl.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.160.74 listed in list.dnswl.org]

1.0 HK_RANDOM_FROM From username looks random

0.6 HK_RANDOM_ENVFROM Envelope sender username looks random

1.0 HK_RANDOM_REPLYTO Reply-To username looks random

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

1.2 MISSING_HEADERS Missing To: header

0.6 J_CHICKENPOX_64 BODY: 6alpha-pock-4alpha

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[209.85.160.74 listed in bl.score.senderscore.com]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.9 REPLYTO_WITHOUT_TO_CC No description available.

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars

0.6 LONG_INVISIBLE_TEXT Long block of hidden text - bayes poison?

Subject: {SPAM?} Reminder: Your Plan is Set to Renew



--000000000000d011010650ad1170

Content-Type: text/plain; charset="UTF-8"; format=flowed; delsp=yes

Content-Transfer-Encoding: base64



UmVtaW5kZXI6IFlvdXIgUGxhbiBpcyBTZXQgdG8gUmVuZXcNCg0KUmVtaW5kZXI6IFlvdXIgUGxh

biBpcyBTZXQgdG8gUmVuZXcNCkZyaWRheSBNYXkgMSwgMjAyNiDii4UgMjowMXBtDQpOZXcgWmVh

bGFuZCBUaW1lDQoNCg0KDQpHZWVrIFNxdWFkcyDwn5OEIE9yZGVyIERhdGU6IFRodXJzZGF5LCAz

MCBBcHJpbCAyMDI2T3JkZXIgUmVjZWlwdDogIA0KS01LOFlIRFk1OFoxWjTwn5OeIEhvdGxpbmUg

TnVtYmVyOiAoODA4KS04NDkgMzE1OS5TeXN0ZW0gTWVtYmVyc2hpcCAgDQpOb3RpZmljYXRpb25B

Y2NvdW50IFVwZGF0ZSxUaGlzIG1lc3NhZ2UgaXMgc2hhcmVkIHRvIGtlZXAgeW91IGluZm9ybWVk

ICANCmFib3V0IHRoZSB1cGNvbWluZyByZW5ld2FsIGN5Y2xlIG9mIHlvdXIgUHJlbWl1bSBQcm90

ZWN0aW9uIE1lbWJlcnNoaXAuICANCkJhc2VkIG9uIHlvdXIgY3VycmVudCBzdWJzY3JpcHRpb24g

cHJlZmVyZW5jZXMsIGFuIGFtb3VudCBvZiAkNDI0Ljg2IFVTRCAgDQptYXkgYmUgcmVmbGVjdGVk

IG9uIHlvdXIgYWNjb3VudCB3aXRoaW4gdGhlIG5leHQgMjQgaG91cnMuUHJvZHVjdCAgDQpJbnRl

bGxpZ2VuY2UgRGFzaGJvYXJkOkl0ZW06IEN5YmVyU2VjdXJlIFBsdXNUZXJtOiA1IFllYXJzVG90

YWwgQW1vdW50OiAgDQokNDI0Ljg2IFVTREFjdGl2YXRpb24gS2V5OiBlMTFmOGIyMy0xYzU2LTRk

MDAtOTYwOC0xZmY5MTYxNDc5MTZNZW1iZXJzaGlwICANCklEOiBFS0U2V0QxOTRRVGhpcyBpcyBh

biBhdXRvbWF0ZWQgbm90aWZpY2F0aW9uIHByb3ZpZGVkIGZvciByZWZlcmVuY2UgIA0KcHVycG9z

ZXMuIPCfk4wgSWYgeW91IHdvdWxkIGxpa2UgYXNzaXN0YW5jZSBvciBoYXZlIHF1ZXN0aW9ucywg

eW91IG1heSAgDQpjb250YWN0IHVzIGF0ICg4MDgpLTg0OSAzMTU5Li5UaGFuayB5b3Ugb25jZSBh

Z2FpbiwsR2Vla1NxdWFkJ3NBY2NvdW50cyAgDQp0ZWFtOiBDYXJvbHluIFNtaXRo8J+TniBDdXN0

b21lciBDYXJlIENvbnRhY3Q6ICsxICg4MDgpICAgDQoyMjYtMTE1MkFkbWluaXN0cmF0aXZlIFRl

YW06IDQyNTUgV2V0dW1wa2EgSHd5IFNhbiBMZWFuZHJvIENhIDk0NTc3LTQyMTYgIA0KVXNhJmNv

cHk7IDIwMjYgQ29tcGFueS4gQWxsIHJpZ2h0cyByZXNlcnZlZC4NCg0KDQpPcmdhbml6ZXINCkFs

dmVyc2lhIFlhYXJpDQphbHZlcnNpYXlhYXJpQGhhYmVybG8uY29tDQoNCkd1ZXN0cw0KKEd1ZXN0

IGxpc3QgaGFzIGJlZW4gaGlkZGVuIGF0IG9yZ2FuaXplcidzIHJlcXVlc3QpDQoNCg==

Nigerian Spam from Google Gmail Part 1

Posted by Dave Yadallee on
X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Thu, 30 Apr 2026 06:23:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wIQPl-00000000FPp-1Dcn

for dave@doctor.nl2k.ab.ca;

Thu, 30 Apr 2026 06:22:45 -0600

Resent-From: The Doctor

Resent-Date: Thu, 30 Apr 2026 06:22:45 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-oa1-f66.google.com ([209.85.160.66]:59883)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wIPqf-00000000KGj-0hGx

for root@nk.ca;

Thu, 30 Apr 2026 05:46:39 -0600

Received: by mail-oa1-f66.google.com with SMTP id 586e51a60fabf-40ea36b56b7so661201fac.3

for ; Thu, 30 Apr 2026 04:45:41 -0700 (PDT)

ARC-Seal: i=1; a=rsa-sha256; t=1777549535; cv=none;

d=google.com; s=arc-20240605;

b=J9XMy2JAeN+4HVbyXipjUe9vqJ5jDNnBQHzI990racRSv8Q9M+Ojsdmx2mCUIZCLvo

t80UV+hTZCX8Nauaj3dwFR6sPtUvgiCS7oI9mmzB3aOJP5MjlfQDGZw2arBUjbvshRzW

vge3i/GN4r/Wj/V6+FobFK7lSRXNMzkZQez7B7QvHxJejz8sboXe6BBPXIj1LibHY9fT

GOMDV4n7B8GX9y2/PbvM4iJwGoAylbz4zoWNIjXyPRDBdYqxf7Ry+/TqOms+9R6ajoa2

5bwqlzCd+U2tXwaBJTi0kHRpNh6oaDeQsM3XUoXeetQx31XaIVLsid2oi4d8eycMHCGk

MiMA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605;

h=to:subject:message-id:date:from:mime-version:dkim-signature;

bh=aYKAQGp3aXxJ5cZm7N6/KA3zLAls3sgDiEs6u7ocDlA=;

fh=ntUln20fBUzi3fpWqrSmHgwZxmXEudPgxOcsK4r/0mw=;

b=NYk5JHquICmXl0POeBftV9j0kX0WEoI3wYphmBK3NDnXPqsI7RYyNcOQ1QD/rDDvPP

TJ5KH/BW71rPveIWQgTWNnsMyj+z3e+wIiUN5KMzL/f0RUuOTD/fK6tVVa3fEqQ1sZui

PttZvr/5Mb/m/M7jQnKTOpWoWEcw/hAWdCX1B4qdPOjKgaCQr+Mr4am3ndCxQXGinfDt

hat5IOaSHpMppUsqHH4JcOGMmgeUcRHJ3AcK94dW9VOodK2B79rxUPr9qOr1WJgMu/NP

nQOblfApncLseBxsYwkvpz8WCJm5CikTZs9OFp6ZLhe5KSyNJ8q/H+ZA/ipNG2N1Td0Q

LAtg==;

darn=nk.ca

ARC-Authentication-Results: i=1; mx.google.com; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20251104; t=1777549535; x=1778154335; darn=nk.ca;

h=to:subject:message-id:date:from:mime-version:from:to:cc:subject

:date:message-id:reply-to;

bh=aYKAQGp3aXxJ5cZm7N6/KA3zLAls3sgDiEs6u7ocDlA=;

b=AIVhQHdWwz6aO+U3ImXGDhpL5eFYU63L/EF6zIcMFSBIUYddcZRQBYa0HH5556Wwxo

xp/4t1OaP3qYR4KVYsW9hEb91wRSCq2WGnjQakPdDXXNgiYaXp3Zs9VI+wwxHFH0HgCM

MiS2JAI9XFrRXfifLcw4IFThzHor4n3kpYwlUFRfUplV37jXnottw/+uOT/f8HZUt6bC

W88ph5fL4g3kAUO1EUU9BXT35d1yJ5HPFbXtw+AuA3pXLfnDhvXAw2wg0HZSFrGwTmph

Nk2Gl727Qq7ktcX76HaqCIg5IrOzYVLtWcu5KOSJzHlUKzovDUeuE3y39hifhabm5Iiy

ZhNg==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1777549535; x=1778154335;

h=to:subject:message-id:date:from:mime-version:x-gm-gg

:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;

bh=aYKAQGp3aXxJ5cZm7N6/KA3zLAls3sgDiEs6u7ocDlA=;

b=eFtcO/KbL20EHzSb9WFK/IA01HXdYrlpSSkn0KnIvFD+jvyxDoDk3xUDrQ2N1f9496

QWQy7t/WxCvX1+eLJ0fWBJsNIypk/NEFHdOVh24gQWCzgYezBnrkLw5kZEajdXp979Iq

vhrH2FVF5zRTs73c1SZBRdthfRRdkuZVYKdyvjZnJKMpyr/nFKuvgJYqiQp4D+O3tXEs

QRaQzX/lUWIFtuC06sQ1t0Evv7Euxiq75zVZ5SfXfZeIlYpMo0eDj5ancsveCVjcT+XA

aWc/Vdky4HlMcL2om4t8KOcAh28q/csU4PbMkm806O14n3zqa4HhvDNHW0P+YssSf8i9

O4gA==

X-Forwarded-Encrypted: i=1; AFNElJ+qZGVXYA/Ok8qrSWXCW8R7l25ucf9RUvSaOMRZdN+92sGZR9BNMbioLbvvypu144jKRsSO@nk.ca

X-Gm-Message-State: AOJu0YxQ7Sv7rYCzX5dnH3wQU/OtsvKnzLt5UaOs2nSv+wiL2tjB4AL2

aTsRa/hthjvlV2T8GPuOgypwwdezhQOQ+NDAi5zgRGvH1Y4Ai7/OmFTUWIajrSxw5f/UBm502Ug

1c0ILMBCuH1GhLAAL0QGQbZDw9aBHzog=

X-Gm-Gg: AeBDiesmjVP0FK0ZzoAYk9oSbefetM/AittgkmOJPWjtywj2f6pYq/gWq0DYfSa35tf

x/nHNBBv33xGSVEP100vdRwt++APxpAWmJFp8aPmyIvesK7zCBymBF5iPWTjj23hcee6R5Nhsg5

Erf2dy8tdTHS8xPCJRrawzCbPSFAhCZjr5gXfrRyvjzNizI5hScUk76wub0JW5Sm+j2hxO5TOXy

cOD1i+90QpPKaWb/vUlX2u8K18lnN3ATIc6JEjMOc7ubo7yvBRXTOs9KQH1cx4mzYhoJvKZUKmF

VvUh4pFOjQLrE4OoRamy3jQ=

X-Received: by 2002:a05:6808:3448:b0:45c:881c:e0c0 with SMTP id

5614622812f47-47c5fdb1cfbmr1164407b6e.47.1777549535325; Thu, 30 Apr 2026

04:45:35 -0700 (PDT)

MIME-Version: 1.0

From: Leo Zulu

Date: Thu, 30 Apr 2026 13:45:24 +0200

X-Gm-Features: AVHnY4K5q1ILVVgkHxrk-Qaz157rFOoFW88ZmyghUkErijaPuR_BBs1el3hg8TE

Message-ID:

Subject: ON TRUST............

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="0000000000009fb21f0650ac00ad"

Bcc: root@nk.ca

X-Spam_score: 16.1

X-Spam_score_int: 161

X-Spam_bar: ++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Friend: I am Mr. Robert Setshedi a Financial Consultant

from South Africa. I want to partner with you on a transaction worth $100M

USD. I had a client who unfortunately died of COVID-19 complications from

202 [...]



Content analysis details: (16.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

[209.85.160.66 listed in will-spam-for-food.eu.org]

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.160.66 listed in dnsbl.ahbl.org]

[209.85.160.66 listed in dnsbl.ahbl.org]

[209.85.160.66 listed in dnsbl.ahbl.org]

[209.85.160.66 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.160.66 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.160.66 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.160.66 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.160.66 listed in dnsbl.ahbl.org]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.160.66 listed in list.dnswl.org]

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

1.6 SUBJ_ALL_CAPS Subject is all capitals

0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in

digit

[zululeo354(at)gmail.com]

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[zululeo354(at)gmail.com]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.160.66 listed in wl.mailspike.net]

2.6 DEAR_FRIEND BODY: Dear Friend? That's not very dear!

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[209.85.160.66 listed in bl.score.senderscore.com]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

1.0 FREEMAIL_REPLY From and body contain different freemails

0.0 LOTS_OF_MONEY Huge... sums of money

1.0 XFER_LOTSA_MONEY Transfer a lot of money

0.5 MONEY_FRAUD_8 Lots of money and very many fraud phrases

3.7 ADVANCE_FEE_5_NEW_MONEY Advance Fee fraud and lots of money

2.6 UNDISC_MONEY Undisclosed recipients + money/fraud signs

Subject: {SPAM?} ON TRUST............



--0000000000009fb21f0650ac00ad

Content-Type: text/plain; charset="UTF-8"