Health products phish from Google Gmail
Posted by Dave Yadallee on
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
Return-path:
Envelope-to: dave@doctor.nl2k.ab.ca
Delivery-date: Tue, 06 Jan 2026 07:48:00 -0700
Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))
(envelope-from)
id 1vd8Le-00000000Kti-2Swk
for dave@doctor.nl2k.ab.ca;
Tue, 06 Jan 2026 07:47:50 -0700
Resent-From: The Doctor
Resent-Date: Tue, 6 Jan 2026 07:47:50 -0700
Resent-Message-ID:
Resent-To: Dave Yadallee
Received: from 75.242.204.35.bc.googleusercontent.com ([35.204.242.75]:58428 helo=freenet-mobilfunk.de)
by doctor.nl2k.ab.ca with esmtp (Exim 4.98.2 (FreeBSD))
(envelope-from)
id 1vd7te-00000000Mx4-265u
for doctor@nl2k.ab.ca;
Tue, 06 Jan 2026 07:19:06 -0700
Received: by freenet-mobilfunk.de (Postfix, from userid 1000)
id C1D88369B39; Tue, 6 Jan 2026 14:18:01 +0000 (UTC)
To: doctor@nl2k.ab.ca
From: "=?UTF-8?B?UGVyZm9ybWFuY2UgRW5oYW5jZXI=?="
Subject: =?UTF-8?B?VW5sZWE=?==?UTF-8?B?c2ggWW91ciBU?==?UTF-8?B?cnVlIFBvdGVudA==?==?UTF-8?B?aWFsIPCfmoA=?=
MIME-Version: 1.0
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: base64
List-Unsubscribe-Post: List-Unsubscribe=One-Click
Message-Id: <20260106141801.C1D88369B39@freenet-mobilfunk.de>
Date: Tue, 6 Jan 2026 14:18:01 +0000 (UTC)
X-Spam_score: 12.4
X-Spam_score_int: 124
X-Spam_bar: ++++++++++++
X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
@@CONTACT_ADDRESS@@ for details.
Content preview: StratosBoost — Offer Unleash Your True Potential 🚀
Content analysis details: (12.4 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
[35.204.242.75 listed in dnsbl.ahbl.org]
[35.204.242.75 listed in dnsbl.ahbl.org]
[35.204.242.75 listed in dnsbl.ahbl.org]
0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
0.9 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail)
0.0 TVD_RCVD_IP Message was received from an IP address
0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in
headers
0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail
domains are different
0.3 SPECIAL_OFFER BODY: Special Offer
0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge
0.0 HTML_MESSAGE BODY: HTML included in message
1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.1 FROM_EXCESS_BASE64 From: base64 encoded unnecessarily
0.4 RDNS_DYNAMIC Delivered to internal network by host with
dynamic-looking rDNS
0.4 KHOP_HELO_FCRDNS Relay HELO differs from its IP's reverse DNS
0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam
3.0 GOOG_STO_NOIMG_HTML Apparently using google content hosting to avoid
URIBL
Subject: {SPAM?} =?UTF-8?B?VW5sZWE=?==?UTF-8?B?c2ggWW91ciBU?==?UTF-8?B?cnVlIFBvdGVudA==?==?UTF-8?B?aWFsIPCfmoA=?=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-Mozilla-Status2: 00000000
Return-path:
Envelope-to: dave@doctor.nl2k.ab.ca
Delivery-date: Tue, 06 Jan 2026 07:48:00 -0700
Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))
(envelope-from
id 1vd8Le-00000000Kti-2Swk
for dave@doctor.nl2k.ab.ca;
Tue, 06 Jan 2026 07:47:50 -0700
Resent-From: The Doctor
Resent-Date: Tue, 6 Jan 2026 07:47:50 -0700
Resent-Message-ID:
Resent-To: Dave Yadallee
Received: from 75.242.204.35.bc.googleusercontent.com ([35.204.242.75]:58428 helo=freenet-mobilfunk.de)
by doctor.nl2k.ab.ca with esmtp (Exim 4.98.2 (FreeBSD))
(envelope-from
id 1vd7te-00000000Mx4-265u
for doctor@nl2k.ab.ca;
Tue, 06 Jan 2026 07:19:06 -0700
Received: by freenet-mobilfunk.de (Postfix, from userid 1000)
id C1D88369B39; Tue, 6 Jan 2026 14:18:01 +0000 (UTC)
To: doctor@nl2k.ab.ca
From: "=?UTF-8?B?UGVyZm9ybWFuY2UgRW5oYW5jZXI=?="
Subject: =?UTF-8?B?VW5sZWE=?==?UTF-8?B?c2ggWW91ciBU?==?UTF-8?B?cnVlIFBvdGVudA==?==?UTF-8?B?aWFsIPCfmoA=?=
MIME-Version: 1.0
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: base64
List-Unsubscribe-Post: List-Unsubscribe=One-Click
Message-Id: <20260106141801.C1D88369B39@freenet-mobilfunk.de>
Date: Tue, 6 Jan 2026 14:18:01 +0000 (UTC)
X-Spam_score: 12.4
X-Spam_score_int: 124
X-Spam_bar: ++++++++++++
X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
@@CONTACT_ADDRESS@@ for details.
Content preview: StratosBoost — Offer Unleash Your True Potential 🚀
Content analysis details: (12.4 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
[35.204.242.75 listed in dnsbl.ahbl.org]
[35.204.242.75 listed in dnsbl.ahbl.org]
[35.204.242.75 listed in dnsbl.ahbl.org]
0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org
[35.204.242.75 listed in dnsbl.ahbl.org]
1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
[35.204.242.75 listed in will-spam-for-food.eu.org]
1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)
0.9 SPF_HELO_SOFTFAIL SPF: HELO does not match SPF record (softfail)
0.0 TVD_RCVD_IP Message was received from an IP address
0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in
headers
0.0 HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail
domains are different
0.3 SPECIAL_OFFER BODY: Special Offer
0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge
0.0 HTML_MESSAGE BODY: HTML included in message
1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
0.1 FROM_EXCESS_BASE64 From: base64 encoded unnecessarily
0.4 RDNS_DYNAMIC Delivered to internal network by host with
dynamic-looking rDNS
0.4 KHOP_HELO_FCRDNS Relay HELO differs from its IP's reverse DNS
0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam
3.0 GOOG_STO_NOIMG_HTML Apparently using google content hosting to avoid
URIBL
Subject: {SPAM?} =?UTF-8?B?VW5sZWE=?==?UTF-8?B?c2ggWW91ciBU?==?UTF-8?B?cnVlIFBvdGVudA==?==?UTF-8?B?aWFsIPCfmoA=?=
PCFkb2N0eXBlIGh0bWw+CjxodG1sIGxhbmc9ImVuIj4KPGhlYWQ+CjxtZXRhIGNoYXJzZXQ9InV0
Zi04IiAvPgo8bWV0YSBuYW1lPSJ2aWV3cG9ydCIgY29udGVudD0id2lkdGg9ZGV2aWNlLXdpZHRo
LGluaXRpYWwtc2NhbGU9MSIgLz4KPHRpdGxlPlN0cmF0b3NCb29zdCDigJQgT2ZmZXI8L3RpdGxl
Pgo8c3R5bGU+CiAgLyogQmFzaWMgcmVzZXQgKi8KICBodG1sLGJvZHl7aGVpZ2h0OjEwMCU7bWFy
Z2luOjA7Zm9udC1mYW1pbHk6QXJpYWwsIEhlbHZldGljYSwgc2Fucy1zZXJpZjtiYWNrZ3JvdW5k
OiNmZmY7Y29sb3I6IzIyMjstd2Via2l0LWZvbnQtc21vb3RoaW5nOmFudGlhbGlhc2VkfQogIC5j
b250YWluZXJ7bWF4LXdpZHRoOjY4MHB4O21hcmdpbjoyOHB4IGF1dG87cGFkZGluZzoyNHB4O2Jv
cmRlci1yYWRpdXM6OHB4O2JveC1zaGFkb3c6MCAxMHB4IDMwcHggcmdiYSgxMiwyMCwzMCwuMDYp
O30KICAuaGVyby1pbWd7d2lkdGg6MTAwJTtoZWlnaHQ6YXV0bztib3JkZXItcmFkaXVzOjZweDtk
aXNwbGF5OmJsb2NrO29iamVjdC1maXQ6Y292ZXJ9CiAgLmNvbnRlbnR7cGFkZGluZzoyMnB4IDZw
eH0KICBoMXtmb250LXNpemU6MjRweDttYXJnaW46NnB4IDAgOHB4O3RleHQtYWxpZ246Y2VudGVy
O2NvbG9yOiMxMTF9CiAgLmxlYWR7Zm9udC1zaXplOjE1cHg7Y29sb3I6IzY2NjtsaW5lLWhlaWdo
dDoxLjU1O3RleHQtYWxpZ246Y2VudGVyO21hcmdpbjowIDAgMThweH0KICAuY3RhLXdyYXB7dGV4
dC1hbGlnbjpjZW50ZXI7bWFyZ2luOjE4cHggMH0KICAuYnRuewogICAgZGlzcGxheTppbmxpbmUt
YmxvY2s7CiAgICBiYWNrZ3JvdW5kOiNlNzRiNTQ7CiAgICBjb2xvcjojZmZmOwogICAgcGFkZGlu
ZzoxMnB4IDIwcHg7CiAgICBib3JkZXItcmFkaXVzOjhweDsKICAgIHRleHQtZGVjb3JhdGlvbjpu
b25lOwogICAgZm9udC13ZWlnaHQ6NzAwOwogICAgYm94LXNoYWRvdzowIDhweCAyMHB4IHJnYmEo
MjMxLDc1LDg0LC4xOCk7CiAgfQoKICAvKiBGZWF0dXJlcyBncmlkICovCiAgLmZlYXR1cmVze2Rp
c3BsYXk6ZmxleDtmbGV4LXdyYXA6d3JhcDtnYXA6MTJweDttYXJnaW4tdG9wOjE4cHg7anVzdGlm
eS1jb250ZW50OmNlbnRlcn0KICAuZmVhdHt3aWR0aDo0OCU7bWluLXdpZHRoOjIwMHB4O2Rpc3Bs
YXk6ZmxleDthbGlnbi1pdGVtczpmbGV4LXN0YXJ0O2dhcDoxMHB4O2NvbG9yOiMzMzN9CiAgLmNo
ZWNrewogICAgd2lkdGg6MThweDtoZWlnaHQ6MThweDtib3JkZXItcmFkaXVzOjRweDtmbGV4OjAg
MCAxOHB4O2JhY2tncm91bmQ6IzFiYmY0YTtjb2xvcjojZmZmO2Rpc3BsYXk6aW5saW5lLWZsZXg7
YWxpZ24taXRlbXM6Y2VudGVyO2p1c3RpZnktY29udGVudDpjZW50ZXI7Zm9udC1zaXplOjEzcHg7
Zm9udC13ZWlnaHQ6NzAwOwogICAgYm94LXNoYWRvdzowIDRweCAxMHB4IHJnYmEoMjcsMTkxLDc0
LC4xMikKICB9CiAgLmZlYXQgcHttYXJnaW46MDtmb250LXNpemU6MTRweDtsaW5lLWhlaWdodDox
LjR9CgogIC8qIEhpZ2hsaWdodCBib3ggKi8KICAucGlsbHsKICAgIG1hcmdpbjoxOHB4IGF1dG8g
NHB4OwogICAgbWF4LXdpZHRoOjUyMHB4OwogICAgYmFja2dyb3VuZDojZmZmNGM5OwogICAgY29s
b3I6IzZiNGYwMDsKICAgIHBhZGRpbmc6MTJweCAxNHB4OwogICAgYm9yZGVyLXJhZGl1czo4cHg7
CiAgICBib3gtc2hhZG93OjAgNnB4IDE4cHggcmdiYSgyMzUsMTg4LDYyLC4xMik7CiAgICBkaXNw
bGF5OmZsZXg7Z2FwOjEwcHg7YWxpZ24taXRlbXM6Y2VudGVyO2p1c3RpZnktY29udGVudDpjZW50
ZXI7Zm9udC13ZWlnaHQ6NjAwCiAgfQoKICAvKiBmb290ZXIgKi8KICAuZm9vdGVye2ZvbnQtc2l6
ZToxMnB4O2NvbG9yOiM5OTk7dGV4dC1hbGlnbjpjZW50ZXI7bWFyZ2luLXRvcDoxOHB4fQogIC51
bnN1YnNjcmliZXtjb2xvcjojN2I3YjdiO3RleHQtZGVjb3JhdGlvbjp1bmRlcmxpbmV9CgogIC8q
IHNtYWxsIHNjcmVlbnMgKi8KICBAbWVkaWEgKG1heC13aWR0aDo1MjBweCl7CiAgICAuZmVhdHt3
aWR0aDoxMDAlfQogICAgaDF7Zm9udC1zaXplOjIwcHh9CiAgICAuYnRue3dpZHRoOjEwMCU7Ym94
LXNpemluZzpib3JkZXItYm94O3BhZGRpbmc6MTJweCAxNnB4fQogIH0KPC9zdHlsZT4KPC9oZWFk
Pgo8Ym9keT4KICA8ZGl2IGNsYXNzPSJjb250YWluZXIiIHJvbGU9Im1haW4iIGFyaWEtbGFiZWw9
IlN0cmF0b3NCb29zdCBvZmZlciI+CiAgICA8IS0tIEhlcm8gaW1hZ2UgLS0+CiAgICA8IS0tIFJl
Y29tbWVuZGVkOiBzYXZlIHRoZSB1cGxvYWRlZCBmaWxlIGFzIHN0cmF0b3Nib29zdC5wbmcgYW5k
IHVzZSB0aGF0IGZpbGVuYW1lIC0tPgogICAgPGltZyBjbGFzcz0iaGVyby1pbWciIHNyYz0iaHR0
cHM6Ly9pLmd5YXpvLmNvbS80NzhkNGViNmZmNmIyZDVjMmExMGFjMWU5NjBkNzM3Yi5wbmciIGFs
dD0iU3RyYXRvc0Jvb3N0IHByb2R1Y3QgKyBjb3VwbGUiIC8+CiAgICA8IS0tIElmIHlvdSBwcmVm
ZXIgdG8gdXNlIHRoZSBvcmlnaW5hbCB1cGxvYWRlZCBwYXRoLCBjb21tZW50IHRoZSBwcmV2aW91
cyBsaW5lIGFuZCB1bmNvbW1lbnQgYmVsb3c6CiAgICA8aW1nIGNsYXNzPSJoZXJvLWltZyIgc3Jj
PSIvbW50L2RhdGEvU2NyZWVuc2hvdCAyMDI1LTExLTE0IGF0IDE3LTQwLTU3IEJvb3N0IFlvdXIg
UGVyZm9ybWFuY2Ugd2l0aCBTdHJhdG9zQm9vc3QucG5nIiBhbHQ9IlN0cmF0b3NCb29zdCBwcm9k
dWN0ICsgY291cGxlIiAvPgogICAgLS0+CgogICAgPGRpdiBjbGFzcz0iY29udGVudCI+CiAgICAg
IDxoMT5VbmxlYXNoIFlvdXIgVHJ1ZSBQb3RlbnRpYWwg8J+agDwvaDE+CgogICAgICA8cCBjbGFz
cz0ibGVhZCI+CiAgICAgICAgU3RyYXRvc0Jvb3N0IGlzIGRlc2lnbmVkIHRvIGZ1ZWwgeW91ciBl
bmVyZ3ksIHNoYXJwZW4geW91ciBmb2N1cywgYW5kIGVuaGFuY2UgcGVyZm9ybWFuY2UuCiAgICAg
ICAgQmFja2VkIGJ5IHNjaWVuY2UsIHRydXN0ZWQgYnkgcHJvZmVzc2lvbmFscywgYW5kIG5vdyBh
dmFpbGFibGUgd2l0aCBhIDxzdHJvbmc+c3BlY2lhbCBvbmxpbmUgb2ZmZXI8L3N0cm9uZz4uCiAg
ICAgIDwvcD4KCiAgICAgIDxkaXYgY2xhc3M9ImN0YS13cmFwIj4KICAgICAgICA8IS0tIFJlcGxh
Y2UgIyB3aXRoIHlvdXIgbGFuZGluZyBVUkwgLS0+CiAgICAgICAgPGEgY2xhc3M9ImJ0biIgaHJl
Zj0iaHR0cHM6Ly9zdG9yYWdlLmdvb2dsZWFwaXMuY29tL2JhbDAyZnZ4bnM2NGtqbjU4YjE2ZmR2
eHM3OGtqL3N0cmFvc2JtaXRsc29rb2x6N2RpNTRkc2N4a203Z2JmLmh0bWwiIHJvbGU9ImJ1dHRv
biI+Q2xhaW0gWW91ciBTdHJhdG9zQm9vc3QgTm93PC9hPgogICAgICA8L2Rpdj4KCiAgICAgIDxk
aXYgY2xhc3M9ImZlYXR1cmVzIiBhcmlhLWhpZGRlbj0iZmFsc2UiIHJvbGU9Imxpc3QiPgogICAg
ICAgIDxkaXYgY2xhc3M9ImZlYXQiIHJvbGU9Imxpc3RpdGVtIj4KICAgICAgICAgIDxkaXYgY2xh
c3M9ImNoZWNrIj7inJM8L2Rpdj4KICAgICAgICAgIDxwPkZhc3QtYWN0aW5nIG5hdHVyYWwgZm9y
bXVsYTwvcD4KICAgICAgICA8L2Rpdj4KCiAgICAgICAgPGRpdiBjbGFzcz0iZmVhdCIgcm9sZT0i
bGlzdGl0ZW0iPgogICAgICAgICAgPGRpdiBjbGFzcz0iY2hlY2siPuKckzwvZGl2PgogICAgICAg
ICAgPHA+QmFja2VkIGJ5IGV4cGVydHM8L3A+CiAgICAgICAgPC9kaXY+CgogICAgICAgIDxkaXYg
Y2xhc3M9ImZlYXQiIHJvbGU9Imxpc3RpdGVtIj4KICAgICAgICAgIDxkaXYgY2xhc3M9ImNoZWNr
Ij7inJM8L2Rpdj4KICAgICAgICAgIDxwPkVuZXJneSAmIHN0YW1pbmEgc3VwcG9ydDwvcD4KICAg
ICAgICA8L2Rpdj4KCiAgICAgICAgPGRpdiBjbGFzcz0iZmVhdCIgcm9sZT0ibGlzdGl0ZW0iPgog
ICAgICAgICAgPGRpdiBjbGFzcz0iY2hlY2siPuKckzwvZGl2PgogICAgICAgICAgPHA+RWFzeSBk
YWlseSB1c2U8L3A+CiAgICAgICAgPC9kaXY+CgogICAgICAgIDxkaXYgY2xhc3M9ImZlYXQiIHJv
bGU9Imxpc3RpdGVtIj4KICAgICAgICAgIDxkaXYgY2xhc3M9ImNoZWNrIj7inJM8L2Rpdj4KICAg
ICAgICAgIDxwPk1lbnRhbCBmb2N1cyBib29zdDwvcD4KICAgICAgICA8L2Rpdj4KCiAgICAgICAg
PGRpdiBjbGFzcz0iZmVhdCIgcm9sZT0ibGlzdGl0ZW0iPgogICAgICAgICAgPGRpdiBjbGFzcz0i
Y2hlY2siPuKckzwvZGl2PgogICAgICAgICAgPHA+MTAwJSBzYXRpc2ZhY3Rpb24gZ3VhcmFudGVl
PC9wPgogICAgICAgIDwvZGl2PgogICAgICA8L2Rpdj4KCiAgICAgIDxkaXYgY2xhc3M9InBpbGwi
IHJvbGU9InN0YXR1cyIgYXJpYS1saXZlPSJwb2xpdGUiPgogICAgICAgIOKaoSBMaW1pdGVkIHN0
b2NrIGF2YWlsYWJsZSDigJQgb3JkZXIgdG9kYXkgYmVmb3JlIGl0J3MgZ29uZSEKICAgICAgPC9k
aXY+CgogICAgICA8ZGl2IGNsYXNzPSJmb290ZXIiPgogICAgICAgIDxwIHN0eWxlPSJtYXJnaW46
NnB4IDAgMCI+WW91IHJlY2VpdmVkIHRoaXMgZW1haWwgYmVjYXVzZSB5b3Ugc3Vic2NyaWJlZCB0
byBTdHJhdG9zQm9vc3Qgb2ZmZXJzLjwvcD4KICAgICAgICA8cCBzdHlsZT0ibWFyZ2luOjZweCAw
IDAiPjxhIGNsYXNzPSJ1bnN1YnNjcmliZSIgaHJlZj0iaHR0cHM6Ly9zdG9yYWdlLmdvb2dsZWFw
aXMuY29tL2ZhdGttbnMtNjJrbW5mZy1mdjZzbmM4LWptZG5zZXQvc3RyYW9zYm1pdGxzb2tvbHo3
ZGk1NGRzY3hrbTdnYmYuaHRtbCIgdGl0bGU9IlVuc3Vic2NyaWJlIGxpbmsiPlVuc3Vic2NyaWJl
PC9hPjwvcD4KICAgICAgPC9kaXY+CiAgICA8L2Rpdj4KICA8L2Rpdj4KPC9ib2R5Pgo8L2h0bWw+