NetKnow Corporate Blog

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 10:45:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vhALZ-00000000DZC-0q0x

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 10:44:25 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 10:44:25 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from smtp4.tnebnet.org ([103.234.149.160]:50064 helo=mail.tnebnet.org)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh9Me-000000009do-1iZv

for root@nk.ca;

Sat, 17 Jan 2026 09:41:38 -0700

Received: from mail.tnebnet.org (unknown [127.0.0.1])

by IMSVA (Postfix) with ESMTP id C499E102404;

Sat, 17 Jan 2026 22:10:17 +0530 (IST)

Received: from mail.tnebnet.org (unknown [127.0.0.1])

by IMSVA (Postfix) with ESMTP id 989371023FB;

Sat, 17 Jan 2026 22:10:17 +0530 (IST)

Received: from zmta1.tnebnet.org (unknown [192.168.170.3])

by mail.tnebnet.org (Postfix) with ESMTPS;

Sat, 17 Jan 2026 22:10:17 +0530 (IST)

Received: from localhost (localhost [127.0.0.1])

by zmta1.tnebnet.org (Postfix) with ESMTP id 8C3B9106036D;

Sat, 17 Jan 2026 22:05:18 +0530 (IST)

Received: from zmta1.tnebnet.org ([127.0.0.1])

by localhost (zmta1.tnebnet.org [127.0.0.1]) (amavis, port 10032) with ESMTP

id u1U_2v-dIOAD; Sat, 17 Jan 2026 22:05:10 +0530 (IST)

Received: from localhost (localhost [127.0.0.1])

by zmta1.tnebnet.org (Postfix) with ESMTP id 7F17F1060399;

Sat, 17 Jan 2026 22:05:09 +0530 (IST)

DKIM-Filter: OpenDKIM Filter v2.10.3 zmta1.tnebnet.org 7F17F1060399

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tnebnet.org;

s=6BF38A0E-ADE8-11ED-BC22-E5F2691EE429; t=1768667709;

bh=I6IWLFl5wmwNLUTe+NMMIjiGAyEkNv3i27avXaI9eLQ=;

h=Date:From:Message-ID:MIME-Version;

b=hu9865hZ12UOd1vT+1mlWmnJWRMuAM9o+hj/0m9wj0iO+7GF3oj0bcnodNacKPCj4

5tEwQnWLGI5ne1dcGoqm0uXmXyyfVgJ4+k5Xszb1oJkYEIpWE2sBocTRJMZxvP9qk4

kpPxRQNxtRlJQPZorYWwLDajhDX6Ucd/H1RqK9/korTZVv0vzQ/aJ7iD/5Cky5+YHU

QMCURbAGMagwth4oe/OVrVmimzvvDU6FUkHesOrGnbuR7RwC3pYwfnPWHHaK215BXR

r6alr2P0lWSSQo7jwZFN+9DL5WTuGvjkq05MADSgaTq2sL7o4EvhW1wsb4nz0C3mMv

L3yCvk9+YAEtQ==

X-Virus-Scanned: amavis at

Received: from zmta1.tnebnet.org ([127.0.0.1])

by localhost (zmta1.tnebnet.org [127.0.0.1]) (amavis, port 10026) with ESMTP

id HYGygwrS-aKk; Sat, 17 Jan 2026 22:05:09 +0530 (IST)

Received: from zmbs2.tnebnet.org (zmbs2.tnebnet.org [192.168.170.8])

by zmta1.tnebnet.org (Postfix) with ESMTP id C01551060357;

Sat, 17 Jan 2026 22:04:57 +0530 (IST)

Date: Sat, 17 Jan 2026 22:04:57 +0530 (IST)

From: mrfaus

Reply-To: mrfaustinwin@gmail.com

Message-ID: <1961616447.1769586.1768667697749.JavaMail.zimbra@tnebnet.org>

Subject: Please respond

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="=_4c11c7e5-5028-4e5c-b1c5-a7101bc29573"

X-Originating-IP: [103.108.174.13]

X-Mailer: Zimbra 8.8.15_GA_4562 (ZimbraWebClient - GC144 (Win)/8.8.15_GA_4570)

Thread-Index: 5zGfzwnZwSaIEXx/oEBHGUd1K7NzMA==

Thread-Topic: Please respond

X-TM-AS-GCONF: 11111111

X-TM-AS-SMTP: 1.0 em10YTEudG5lYm5ldC5vcmc= Y2hjMjA3YWVAdG5lYm5ldC5vcmc=

X-TM-AS-ERS: 192.168.170.3-127.5.254.253

X-TM-AS-Product-Ver: IMSVA-9.1.0.5098-9.0.0.1006-29704.001

X-TM-AS-Result: No--2.558-5.0-31-10

X-imss-scan-details: No--2.558-5.0-31-10

X-TMASE-Version: IMSVA-9.1.0.5098-9.0.1006-29704.001

X-TMASE-Result: 10--2.558000-10.000000

X-TMASE-MatchedRID: fmZkB+LvCGmAu5TqwJfe9tN9TX8X49szZpZpZFu3mKBTYyyCA5vjwPNO

7flRFqXmtsdkQqjFDhuD28NNt7xCyPoohGVesYF730kDaWZBE1RZoriDkmUBVjdHHXXKh5RC3Sl

EgVuyN9tMF7CJ9YNQzJcZ0icLp7Dq5UcZtwNsCroURSScn+QSXrTrdaH1ZWqCLPUYrlSS/47zzL

mUbXMXc6BMANavD7Ph2ffvDxhR0wqNhWKdkxzYLowbkxJFZ1Zdyc6gCYCLO474jwZB8DUjwOcNf

h7XKgLltpB6IQr6mzvmhzSX2i7+YsRYtiahrCtj4TFF+HILz1Xc2DEA49qeXlAQl+qiqze758FI

BeDQRHTW6cAlgRXPbNGS9wyjmdjIvQTxgXOaiSHDPQn1LiKboD+ywRtg5JBFpcNHrge+VdC9Glp

+2gUdWA==

X-TMASE-SNAP-Result: 1.821001.0001-0-1-22:0,33:0,34:0-0

X-Spam_score: 11.2

X-Spam_score_int: 112

X-Spam_bar: +++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: -- Hi, I would like to talk to you about a project right

now. Please respond right away. Mrs Tania



Content analysis details: (11.2 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[103.234.149.160 listed in dnsbl.ahbl.org]

[103.234.149.160 listed in dnsbl.ahbl.org]

[103.234.149.160 listed in dnsbl.ahbl.org]

[103.234.149.160 listed in dnsbl.ahbl.org]

[103.108.174.13 listed in dnsbl.ahbl.org]

[103.108.174.13 listed in dnsbl.ahbl.org]

[103.108.174.13 listed in dnsbl.ahbl.org]

[103.108.174.13 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[103.234.149.160 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[103.234.149.160 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[103.234.149.160 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[103.234.149.160 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.108.174.13 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

[103.234.149.160 listed in will-spam-for-food.eu.org]

0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

0.5 NO_RDNS Sending MTA has no reverse DNS (Postfix variant)

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

1.2 MISSING_HEADERS Missing To: header

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.9 REPLYTO_WITHOUT_TO_CC No description available.

0.0 NO_RDNS2 Sending MTA has no reverse DNS

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

Subject: {SPAM?} Please respond



--=_4c11c7e5-5028-4e5c-b1c5-a7101bc29573

Content-Type: text/plain; charset=utf-8

Content-Transfer-Encoding: 7bit







--

Hi, I would like to talk to you about a project right now. Please respond right away.



Mrs Tania



--=_4c11c7e5-5028-4e5c-b1c5-a7101bc29573

Content-Type: text/html; charset=utf-8

Content-Transfer-Encoding: 7bit

--

Hi, I would like to talk to you about a project right now. Please respond right away.

Mrs Tania

--=_4c11c7e5-5028-4e5c-b1c5-a7101bc29573--

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: SEZPR03MB8635



--_000_PUZPR03MB5850987660787BAD368A8D4DB48AAPUZPR03MB5850apcp_

Content-Type: text/plain; charset="Windows-1252"

Content-Transfer-Encoding: quoted-printable



Hi,



Still waiting for a reply from you.



Can I send the audit report?



Thank you



From: Micheal Owen

Sent: , October 2, 2025 1:51 PM

Subject: Re: Website Audit report...........?



Hi,

I checked your website and noticed a couple of small SEO gaps that are stop=

ping you from ranking higher on Google. The good news? They=92re easy to fi=

x.



Would you like me to send you a quick audit ?

Looking forward to your quick response.



Just reply "YES"

Best Regards,

Owen



--_000_PUZPR03MB5850987660787BAD368A8D4DB48AAPUZPR03MB5850apcp_

Content-Type: text/html; charset="Windows-1252"

Content-Transfer-Encoding: quoted-printable








252">

es, serif; font-size: 11pt; color: rgb(0, 0, 0);">

Hi,  

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

 

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Still waiting for a reply from you.

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

 

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Can I send the audit report?

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

 

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Thank you

es, serif; font-size: 11pt; color: rgb(0, 0, 0);">

es, serif; font-size: 11pt; color: rgb(0, 0, 0);">

From: Micheal Owen <Michealowen1934@hotmail.com>


Sent: , October 2, 2025 1:51 PM


Subject: Re: Website Audit report...........?

x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x=

_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_=

x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_x_divRplyFwdMsg">

es, serif; font-size: 11pt;">

 

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Hi,

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

I checked your website and noticed a couple of small SEO gaps that are stop=

ping you from ranking higher on Google. The good news? They=92re easy to fi=

x.

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

 

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Would you like me to send you a quick audit ?

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Looking forward to your quick response.

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

 

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Just reply "YES"

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Best Regards,

-family: "Times New Roman", Times, serif; font-size: 11pt; color:=

rgb(0, 0, 0);">

Owen

--_000_PUZPR03MB5850987660787BAD368A8D4DB48AAPUZPR03MB5850apcp_--

In-Reply-To:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-exchange-messagesentrepresentingtype: 1

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: PUZPR03MB5850:EE_|SEZPR03MB8635:EE_

x-ms-office365-filtering-correlation-id: efe44f28-ae3c-49bc-e8f7-08de55d71a4e

x-ms-exchange-slblob-mailprops:

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

x-microsoft-antispam:

BCL:0;ARA:14566002|31061999003|461199028|37102599003|15080799012|15030799006|8060799015|8062599012|19110799012|39105399006|40105399003|51015399003|440099028|3412199025|102099032|1710799026;

x-microsoft-antispam-message-info:

=?Windows-1252?Q?4zslJydWXTM4w746SDnBQmO3yAyWcLOsniTM/QfukS3tfdWz1aTRA+Sk?=

=?Windows-1252?Q?UYQbwPQ8og4u/WpLtKA39y+99Ntqdtjxg/a36D3G/8Tb92t/5vCD92fD?=

=?Windows-1252?Q?tFPKcQLpVl3wgq8gxjLylaLNH51P75kobOSramuoZIYh/XIIkYwzk7y2?=

=?Windows-1252?Q?1+EmnhLRRk5SJnLK61A17xqdgxk262x7Br6/AlfN5D7TORge0gfdftrt?=

=?Windows-1252?Q?qRJ6z0nsQWlNNtL8HFh1JmRHd9tD/O+2zIO3uHpcd9mnzqV2qIQ8zSw8?=

=?Windows-1252?Q?fp7TVDOx7Rl+I/3pcr4MdTK2YCnJl7Du842qo0lxUiOfoJqFiPrdRDCM?=

=?Windows-1252?Q?7UFKh7CNV5O/brM0HYTE125sRYzCmn7sgTcri7lgDxy2AqF3nEyAyiSo?=

=?Windows-1252?Q?4gukPJKGJvzBkeRjMXAE1GXEqeE26O7npSHCT0ScObxANKWqZ+1kCITs?=

=?Windows-1252?Q?EXGNam4P9+wccbhtdzVagk13tFXxSzo6K8zNNPBe8M8kl/0WWgtYdzXl?=

=?Windows-1252?Q?BzcBOXN0QkYuzIe9ksM37seA4eo8pTW+QjSXK0a7nd3n1E8KhbE2FRFx?=

=?Windows-1252?Q?pe/L3LaMy6v/EAUecmy+0w8cb7GMdt40uYgdhx2Rh0XzknpI6HQGtCs6?=

=?Windows-1252?Q?mKWDyTp2WGWOcFWEDkoYJ2VRqSRAijg0KXIPUD5WbHZz/NmJOOlEvt8U?=

=?Windows-1252?Q?KABWwW7C1QYcqA6YNcxxkToqtDPK4fIKi/Y1/G2OkPiNpb4rGowL13KB?=

=?Windows-1252?Q?ReeQv8TEXpZIm9DZWNM/c/+m8ISYdwVyOsBpjcpgy/VhlqgdqRJeNS+8?=

=?Windows-1252?Q?NRFgiVtvSOrYqk9YDsquCxcNbXMDiMU/zzsDCUCDz6vt6/XUwPgmyrHV?=

=?Windows-1252?Q?oswvQHq5lCFqNYs3W3ng4FyshQieOxZ4Unv9QgSomctLAKWy7engCazK?=

=?Windows-1252?Q?THR+1A/WoGri0FbI11tNfqc0vOw33FW/l7WEbLejuq6FeNUM78bKlrPH?=

=?Windows-1252?Q?Nj2w8+rDzomzYWEayGaf6s3IgkPMJJ2iBxu6Ajqfa9R9wN9TIMg6fKv8?=

=?Windows-1252?Q?fQrGm/4c7IBv11Gb9KrYZRbMx64X16+dy6ZnYe1kFrSuEhu1RWShBLlt?=

=?Windows-1252?Q?q2plv8nU9DN6nXEP4pEnzgiH2tAZANjKPeon5k+6UV7LWbUd1cdoRgke?=

=?Windows-1252?Q?ESfg1TwruoYRzsSVvCJwMpBVQtScvVtVdTF92KiI3VTfB7KhovSUvda/?=

=?Windows-1252?Q?AAm0R+TD162MPfys82+booSlYaiFKEZpaACoFz/W33FgCYvgmYUfB/HI?=

=?Windows-1252?Q?aIMOvXU5b2j/thHB8N61XuvZbCrq38y7ImgrSN57N5Txur7jY2IBlAIy?=

=?Windows-1252?Q?HsaGC4MyoelbWa+S29F+C+gt8VgxmijQEZg=3D?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?Windows-1252?Q?5ENFG5vnvm+Lfgcljgzmu7t14nkFkAbW01qew/YCniLJSxxLt5igsHjL?=

=?Windows-1252?Q?UXkAgple9TRZmzwcMT08jo7gutNSmpec51sHN19siBTe6Sw4m2QEvTrz?=

=?Windows-1252?Q?n45uImdAcaMekLuIUyjw6nwB+eHjWZyql91xRExI7KVn02hE8Xi75jt4?=

=?Windows-1252?Q?l+lS4oOsb5Zda7Ko+hqFxSrAbmCtRwF68uqBcQAdFKhxtxifpoqKqLpI?=

=?Windows-1252?Q?Cl5IqyzNRFgDBB62+toNYdskbVcCmwIm/DfAt9EcVARErxvPUB9VV/Dv?=

=?Windows-1252?Q?RiCt2ps4SdCqYg5QJAMJ6mIIhrmdqeR1xlC0Az8L5vmnpfY6tPU84Vg+?=

=?Windows-1252?Q?EZbwgDE+REI4o6CyRVG7ylAPMmJ54kIbwImWhsqX+axxaB66MswzgZy3?=

=?Windows-1252?Q?yEKBFgwkmGyZ0rJq6M2+cq5FwPxTMiBotiLA4VbyZZdaDJdxQ8YGuW5J?=

=?Windows-1252?Q?uM4x53Ln/x+x6+mRVEVfyC091xpcQ46h4aCOrQzDZYrATSGcrJxIrGKX?=

=?Windows-1252?Q?57FqDL/tAkb1xcRdnV3nj45MEvVI4iRg8lBj9yxxovQUVNDdgcA453yy?=

=?Windows-1252?Q?C8cICpotDZYEgSe4ra5Z4QKBXnqM5yNk8f8wu5JVnI4+/j1liTQcN4/W?=

=?Windows-1252?Q?Guyt26WxSwVT+yAv4gNsu+T4o5DA4aX9pqxdbvHrKHY1jMfGgErXH8ek?=

=?Windows-1252?Q?jUKBw3TNI3dBCb5ZzH7qb1TM/APaoso6I8yeFMZf9/hZZWrRjnPEFffn?=

=?Windows-1252?Q?bIrGSoFfMAQ9YJQXEeEn1OHJ86idfIB9c8LiGNJpdBAh8JbpstCHl6FG?=

=?Windows-1252?Q?2/iaBIh1+mKIwC/MAYpfJJApHoxTdK2C/pR5uybVcn3JOdcRKlFiPey5?=

=?Windows-1252?Q?4OCuvCzPg57JwF6QORADQh/lgC1BqioD/4RbMv+DneDNepmikGPJwu7o?=

=?Windows-1252?Q?9fi6Z5rb9XyE8XrvWtbYNurX629st/kNJddPvbBv84whHnjt0tsFMQyM?=

=?Windows-1252?Q?8E1GAGALa2EuRakz+KmclePVxrluoheGV6lyDQRUgZpo8EwCk/dq/3Uv?=

=?Windows-1252?Q?TVLyl7K4mkDKdJZecgCudny5nA8vRYxnQY1622gctbcZ9syZAUfIAySa?=

=?Windows-1252?Q?NGCj+o6tzweDKEKs+xpQ1IqBznF+nEqi+jIfrQJvMq4ratuyM8h4H6E7?=

=?Windows-1252?Q?D0nISQWdd9y/FF3C2MRlpVpIE4OWARgJoZdA1NKInRsdEmzoQ/JcvhvF?=

=?Windows-1252?Q?bLk9enkh0SzhNpKg3m6hGki/mAmrT9kd7c/U5VE9gF2qXkAE1C0If6UU?=

=?Windows-1252?Q?7bYg/p/rZ3joWOdFkQzXlwE9USVIdffqF/+yAapkn2B8xYbEmyKxtbtq?=

=?Windows-1252?Q?/erajyd0BX4m+rawaJ8y1tLYdl0gLT56Zh2DF/IXr+jvUcnW/zusAgCy?=

=?Windows-1252?Q?GYtxmVUiTdx9qfA7RC3R1y+eJrvSMu6XGbbe+rFU3FZpub/LNE4ZBGCd?=

=?Windows-1252?Q?8RtmnkBvAVlCXqrNlqSRkcqI3meIz4Gy1BzFg31TxNFj5q3hYhxsOLXe?=

=?Windows-1252?Q?bz6RWMiOt4V8DCh4?=

Content-Type: multipart/alternative;

boundary="_000_PUZPR03MB5850987660787BAD368A8D4DB48AAPUZPR03MB5850apcp_"

MIME-Version: 1.0

X-OriginatorOrg: sct-15-20-9343-5-msonline-outlook-51c6a.templateTenant

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: PUZPR03MB5850.apcprd03.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: efe44f28-ae3c-49bc-e8f7-08de55d71a4e

X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jan 2026 14:45:48.0358

(UTC)

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 09:08:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh8pI-00000000LQZ-3dOG

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 09:07:00 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 09:07:00 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-japanwestazolkn19012051.outbound.protection.outlook.com ([52.103.66.51]:29776 helo=OS8PR02CU002.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh7Zx-00000000MEQ-2tWm

for root@nk.ca;

Sat, 17 Jan 2026 07:47:16 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=Zns6iD+tZkXlnZzGRVYPVqQDF8YOhbcxW+1xOy8+YEAa/uzAiDWcsEg21UzaWUFKYvZq27o8GfSg4kSm6+7SUSeI73UJK4nlzS+Oi0QALVzbNAi0okKWB/Dh/dQKVxcCA44bLSmPr1Ha1nPNDT3JCf8iVT2FT1tjB3je8lPwsfolccmnkCa0bf5LyPSSWOuuyTWapFbgS9fl7bri0J/qH9Pr6r5cW04pshYFw85KQDrT+bF8St5o8NtHScuRO5N/YIwV6WTBT9rciFQzF2u+pxG4yP6/yKZ6I0l36vyF0pitnjRmAJn29DMgBKHqzpu0NqNDwLoM1Ql/N/whoXIrFA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=BtTng/TWXDEo0dV2qnePMrUME5GsGFjWFsPVTjIGaYw=;

b=A6/dYC6u3f1sZ/G2kUtqWg8dQA/OV3xT781ds734IGRHO00Uaf81fyLbx5Jeeu28meFpkN0avG7iy0OTEe+QZ+8t4SLInn4JuzspuNna3xQ6dkWnzM83t3EVIZjNDagwO5O7ke6Iql2t6LzBFPEvu2c7V3sHS7S1rNeYsmelmRxkvfxYG67cjUKHjaTk5Ar+9TFL0zLAT4VwaWzMlNjP7xPDBZ3cPJ6X3C24Np9eIGgc/h2RcbI3kKdD2sIWdzAvjWccnBxNYRE7UPYcdo/6EMBkSKfsA3JyZfGkvH2l8HTCHJGgzpkInANnZ0ZGFLXr/w2InMhTk7TRNT2Xa6jt6Q==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hotmail.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=BtTng/TWXDEo0dV2qnePMrUME5GsGFjWFsPVTjIGaYw=;

b=sVNAcCny/WBVI0mxsRi7o3tjYFeuAKdmW9Wme5A6/14QuivHDpoPV8ugbZB0kyJJnabPQAlW1NUBqBKGDCb0wvumLyirFmOcRdJ3KUQIDYJK9qzWxADcIj899Boopen8dsLwQkz0V/Rqj9/fUjf6Xu8eaNC+bvokmquuQR/meMHWfsxn66Brl9veKFRUY1mzqUhuPF6tCMLnGc33Ch3XyU/qu84nbNAUYGJDURVkqHLvoGxNdx0TMMvx4+ZuO8J4xwrGYJ16w/Cj77ApAqXPlKxjGM0HHs+h76nzBF5j0IUpFhLcYpMc8s9SQwTNWfc2Bfw2fCkcTtjS+cl1SK+cIg==

Received: from PUZPR03MB5850.apcprd03.prod.outlook.com (2603:1096:301:a5::9)

by SEZPR03MB8635.apcprd03.prod.outlook.com (2603:1096:101:225::14) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9520.5; Sat, 17 Jan

2026 14:45:48 +0000

Received: from PUZPR03MB5850.apcprd03.prod.outlook.com

([fe80::4479:279:18c5:8d14]) by PUZPR03MB5850.apcprd03.prod.outlook.com

([fe80::4479:279:18c5:8d14%6]) with mapi id 15.20.9520.009; Sat, 17 Jan 2026

14:45:48 +0000

From: Micheal Owen

To: Micheal Owen

Subject: Re: Yes....?

Thread-Topic: Yes....?

Thread-Index: AQHchiwkI/YlkMFs40e1VH98zLhgm7VU5OK2gAGOcCk=

Date: Sat, 17 Jan 2026 14:45:48 +0000

Message-ID:



References:

--0000000000007e78720648947716

Content-Type: text/plain; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable



Bonjour,



Je vous prie de m=E2=80=99excuser pour cette intrusion, je suis Monsieur Lo=

mbardi

Jean Michel, =C3=A2g=C3=A9 de 79 ans, originaire d=E2=80=99Espagne, je suis=

actuellement dans

un camp. J=E2=80=99ai d=C3=BB entrer en contact avec vous de cette classe p=

arce que je

d=C3=A9sire vous confier un secret et une affaire tr=C3=A8s importante, cel=

a semble

peu suspect tr=C3=A8s vraiment =C3=A0 qui ne me conna=C3=AEt pas et parce q=

ue je ne le

connais pas. Je vais aller =C3=A0 l=E2=80=99essentiel.



De toute fa=C3=A7on, en r=C3=A9alit=C3=A9 j=E2=80=99ai un cancer qui est en=

phase terminale, une

boule s=E2=80=99installe actuellement dans ma cage c=C3=A9r=C3=A9brale, j=

=E2=80=99ai cette maladie

depuis 2 ans. D=E2=80=99apr=C3=A8s les m=C3=A9decins, j=E2=80=99ai de la fi=

=C3=A8vre, des maux de t=C3=AAte, de

la toux et des difficult=C3=A9s respiratoires. Les m=C3=A9decins qui m=E2=

=80=99assistent

m=E2=80=99ont inform=C3=A9 que je pourrais mourir du jour au lendemain en r=

aison de mon

=C3=A9tat de sant=C3=A9 tr=C3=A8s d=C3=A9t=C3=A9rior=C3=A9. Je suis veuf, j=

e n=E2=80=99ai pas d=E2=80=99enfants car avec

ma femme nous n=E2=80=99avons jamais pu avoir d=E2=80=99enfants malgr=C3=A9=

tout ce que nous

avons comme moyen financier. Sans m=E2=80=99immiscer dans ma douleur, j=E2=

=80=99ai aussi

perdu ma femme, le mois dernier par cette maudite maladie.



Nous n=E2=80=99avons jamais pens=C3=A9 =C3=A0 adopter un enfant, ce que je =

regrette

profond=C3=A9ment. Je songe =C3=A0 faire un don, gr=C3=A2ce =C3=A0 ma fortu=

ne. J=E2=80=99ai presque

vendu mon entreprise, y compris une soci=C3=A9t=C3=A9 d=E2=80=99exportation=

de ciment en

France dans la ville de Nice o=C3=B9 je faisais le transport entre la Franc=

e et

l=E2=80=99Espagne. J=E2=80=99ai en ce moment sur mon compte personnel, la s=

omme forfaitaire

de 1.250.000 =E2=82=AC (UN MILLION DEUX CENT CINQUANTE MILLE EUROS). Je vou=

drais

vous donner cet argent qui pourra vous aider dans votre projet et dans

votre vie. Si vous =C3=AAtes une personne honn=C3=AAte et humble, s=E2=80=

=99il vous pla=C3=AEt

contactez-moi d=C3=A8s que possible afin que nous puissions en discuter.



Les formalit=C3=A9s et la transaction ne seront effectu=C3=A9es qu=E2=80=99=

en ligne . Je me

sens tr=C3=A8s mal et j=E2=80=99ai tr=C3=A8s peur. Je ne peux pas mourir sa=

ns avoir donn=C3=A9

tout cet argent ou je pense que ce serait un gaspillage





Vous devez me r=C3=A9pondre d=C3=A8s que possible si vous acceptez mon offr=

e

directement via mon e-mail : lombardijean.michel10@gmail.com





Cordialement.



Sr Lombardi Jean Michel.



--0000000000007e78720648947716

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable







--0000000000007e78720648947716--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 07:39:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh7RT-000000001pr-46L6

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 07:38:19 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 07:38:19 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-dl1-f68.google.com ([74.125.82.68]:44533)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh5Hp-000000003uo-229w

for doctor@nk.ca;

Sat, 17 Jan 2026 05:20:22 -0700

Received: by mail-dl1-f68.google.com with SMTP id a92af1059eb24-12336c0a8b6so6130598c88.1

for ; Sat, 17 Jan 2026 04:19:24 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=unal.edu.co; s=google; t=1768652358; x=1769257158; darn=nk.ca;

h=to:subject:message-id:date:from:in-reply-to:references:mime-version

:from:to:cc:subject:date:message-id:reply-to;

bh=usxGD+AosP+JtFuhxCRYtWcuhd1v48EQxlCnEIb4YVI=;

b=OH4SS5JQQPrdGmMEXPrddhIozGFsoKfEg4ZmV5b4Wa07j/ejOHuh5ScBZurPVJOeIb

EVs696IrK4b9qxkLdjDlZ1rSzXYIkgmmYyoh3yap6hZ/BqhJKLJhOgEbSQPhA6uCtNr9

+JJozGARDsQPBeRmVO9zG2B4gVzXXg53ZojIE=

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1768652358; x=1769257158;

h=to:subject:message-id:date:from:in-reply-to:references:mime-version

:x-gm-gg:x-gm-message-state:from:to:cc:subject:date:message-id

:reply-to;

bh=usxGD+AosP+JtFuhxCRYtWcuhd1v48EQxlCnEIb4YVI=;

b=byzVmuuWR171A0TJdCDhR5nrOQ8Z9LeBTjjBEjS+QbbLqQ4p9skI9fWRk79i2OFhBU

zedegkLM7WuLIUmOX0MRMfub7o/gZP/u507AIVbuftGnTsRdeTjW9GVGCIubpzPkiI85

czSTIeDf18J9jO9p8+Vr/EEDcxu+68nl/blziyXH10yFOoLQWCdftMAyPbJ15S316CNw

w2GDXa9PIg3qdgE3kkTicq3umNjPv6WnUz+HpBrvDMrlSKSLHr48Qy0XngbeEtTEenpW

+zI8hds02CZF9pMCzCIG54jOSkWx+QezcPa/Ptj2IGXggZJf0ZiuFt5skJ7bIIfcxlNM

gD0w==

X-Forwarded-Encrypted: i=1; AJvYcCXdDZ+nRYYPoaqE0s+q5EO4CBjI2mhK0aL0/4czSM/r+q8+QbT3m48xyg+WcMea9pm+MWRQJe4=@nk.ca

X-Gm-Message-State: AOJu0YxQVZxSKMYq7mWjCjHoOfOjsJVknD4R1tSVEa+HJhtcN5ie0uxK

GhDIiLaPFokNUECMtjRq+VWrLT2tEZvIFDgw1mM1aP2JNuawtE3uwI21XSyAO5TidCoaonk6NqZ

AoftWE+yDfKWh4/0VGnvgyTEI8C+owCgBmsZqd8iJ5g==

X-Gm-Gg: AY/fxX58TzKDROIANqLor4EZciISwPi0hte9E3xDeR9veZUSQRM26J2aZwLvNnb39u/

BVS0Slqk8noFsxkyQnVisIbCYSXbkC7axEYFoBPvK/vQacRvPQ6Lb2ojtIXsjrHHe9oUgZvvEp5

yoMwdsdeVuUiSOIm8QMuNhiAsO+7zbrLx99tuA5y4V8Tgf1rmKKFrl1WwfX1vT+zJ+x4rtcLs9y

koT0SZZZPzmS4gAlm/17f0TANy54d3rFNa/jpsizkS0gMcoThi9bjEoVOcpvsZuGueQ27uO4YZM

2nzsAu3/UDFWiupY5Sha51ALiX9rxUwv55CiLCLd

X-Received: by 2002:a05:7022:608b:b0:11e:3e9:3e8a with SMTP id

a92af1059eb24-1244a7910d8mr6302466c88.49.1768652357394; Sat, 17 Jan 2026

04:19:17 -0800 (PST)

MIME-Version: 1.0

References:

In-Reply-To:

From: Jenny Marcela Moreno Poveda

Date: Sat, 17 Jan 2026 13:19:00 +0100

X-Gm-Features: AZwV_QjgwIMloSr3jXEy5gU4NV3Jsh035FPK9kEHgx0XNW0BrPYxI4won9hBDq4

Message-ID:

Subject: =?UTF-8?B?RndkOiBUciA6IFLDqXBvbnNlIMOgIGzigJlFLW1haWwgZGUgZG9uYXRpb24gLg==?=

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="0000000000007e78720648947716"

Bcc: doctor@nk.ca

X-Spam_score: 5.7

X-Spam_score_int: 57

X-Spam_bar: +++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Bonjour, Je vous prie de m’excuser pour cette intrusion,

je suis Monsieur Lombardi Jean Michel, âgé de 79 ans, originaire d’Espagne,

je suis actuellement dans un camp. J’ai dû entrer en contact avec v [...]





Content analysis details: (5.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[74.125.82.68 listed in dnsbl.ahbl.org]

[74.125.82.68 listed in dnsbl.ahbl.org]

[74.125.82.68 listed in dnsbl.ahbl.org]

[74.125.82.68 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[74.125.82.68 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[74.125.82.68 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[74.125.82.68 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[74.125.82.68 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

[74.125.82.68 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[74.125.82.68 listed in list.dnswl.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[74.125.82.68 listed in sa-trusted.bondedsender.org]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[74.125.82.68 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[74.125.82.68 listed in wl.mailspike.net]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[74.125.82.68 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[74.125.82.68 listed in bl.score.senderscore.com]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

0.0 MILLION_EUR BODY: Talks about millions of euros

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 LOTS_OF_MONEY Huge... sums of money

2.9 UNDISC_MONEY Undisclosed recipients + money/fraud signs

Subject: {SPAM?} =?UTF-8?B?RndkOiBUciA6IFLDqXBvbnNlIMOgIGzigJlFLW1haWwgZGUgZG9uYXRpb24gLg==?=

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 04:45:00 -0700

Received: from mail.customs.gov.kg ([212.42.104.104]:35062)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh4jO-000000002Y4-15Lx

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 04:44:47 -0700

Received: from mail.customs.gov.kg (mail.customs.gov.kg [127.0.0.1])

by mail.customs.gov.kg (Postfix) with ESMTP id 4dtZcK3ysbz3Pwy

for ; Sat, 17 Jan 2026 17:43:45 +0600 (+06)

X-Virus-Scanned: Debian amavis at mail.customs.gov.kg

X-Spam-Flag: YES

X-Spam-Score: 10.607

X-Spam-Level: **********

X-Spam-Status: Yes, score=10.607 tagged_above=2 required=6.2

tests=[ADVANCE_FEE_3_NEW=1, ALL_TRUSTED=-1, DEAR_FRIEND=2.604,

FREEMAIL_FORGED_REPLYTO=2.503, FREEMAIL_REPLYTO=1, HK_NAME_MR_MRS=1,

ODD_FREEM_REPTO=1, SUBJ_ALL_CAPS=0.5, UNDISC_FREEM=1, UNDISC_MONEY=1]

autolearn=no autolearn_force=no

Received: from mail.customs.gov.kg ([127.0.0.1])

by mail.customs.gov.kg (mail.customs.gov.kg [127.0.0.1]) (amavis, port 10026)

with ESMTP id oFgf2IlAXUMf for ;

Sat, 17 Jan 2026 17:43:38 +0600 (+06)

Received: from localhost (mail.customs.gov.kg [127.0.0.1])

by mail.customs.gov.kg (Postfix) with ESMTPSA id 4dtZc85C2Yz3PGv;

Sat, 17 Jan 2026 17:43:36 +0600 (+06)

MIME-Version: 1.0

Date: Sat, 17 Jan 2026 11:43:36 +0000

From: Mr Danny Geoffrey

To: undisclosed-recipients:;

Subject: [SPAM] INVESTMENT OPPORTUNITY IN YOUR COUNTRY

Reply-To: danngeooffrey@gmail.com

Mail-Reply-To: danngeooffrey@gmail.com

User-Agent: Roundcube Webmail

Message-ID:

X-Sender: info@dannys-food-equipment-ltd.com

Content-Type: text/plain; charset=US-ASCII;

format=flowed

Content-Transfer-Encoding: 7bit

X-Spam_score: 26.2

X-Spam_score_int: 262

X-Spam_bar: ++++++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Friend Greetings, I hope this email finds you well. I

know we've never met before. I would like to take this opportunity to introduce

myself to you, My name is Danny Geoffrey, I am a Financial Consultant and

[...]



Content analysis details: (26.2 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

[212.42.104.104 listed in dnsbl.ahbl.org]

[212.42.104.104 listed in dnsbl.ahbl.org]

[212.42.104.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)

0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

1.6 SUBJ_ALL_CAPS Subject is all capitals

2.6 DEAR_FRIEND BODY: Dear Friend? That's not very dear!

1.8 ODD_FREEM_REPTO Has unusual reply-to header

0.0 NO_RDNS2 Sending MTA has no reverse DNS

0.0 T_HK_NAME_MR_MRS No description available.

0.8 SARE_FROM_SPAM_WORD3 I don't know people named this!

1.0 FREEMAIL_REPLYTO Reply-To/From or Reply-To/body contain different

freemails

0.0 HK_NAME_MR_MRS No description available.

3.0 UNDISC_FREEM Undisclosed recipients + freemail reply-to

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

2.9 UNDISC_MONEY Undisclosed recipients + money/fraud signs

2.5 ADVANCE_FEE_3_NEW Appears to be advance fee fraud (Nigerian 419)

Subject: {SPAM?} [SPAM] INVESTMENT OPPORTUNITY IN YOUR COUNTRY



Dear Friend



Greetings, I hope this email finds you well. I know we've never met

before. I would like to take this opportunity to introduce myself to

you, My name is Danny Geoffrey, I am a Financial Consultant and I'm

contacting you from Scotland. I know it can be annoying to get emails

from people you don't know. Still, I'm getting in touch because I wanted

to discuss a business opportunity with you. I have a client who has an

interest in Investing in your country into a Joint Venture /Partnership.

He has funds available meant for investment. We believe that your

expertise and experience align well with our investment objectives, and

we would like to explore potential collaboration opportunities with you.



You can reach me directly at ( danngeooffrey@yahoo.com ) if you're

interested.



I look forward to your response if interested.



Note: Kindly move this message to your inbox if found in spam folder,

Sometimes messages may be filtered into the spam folder due to

restrictions implemented by your Internet Service Provider (ISP)



Regards

Mr Danny Geoffrey

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 07:39:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh7RI-000000000Hu-04TU

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 07:38:08 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 07:38:07 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail.customs.gov.kg ([212.42.104.104]:41556)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh4j6-000000002Xe-2Fxs

for doctor@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 04:44:30 -0700

Received: from mail.customs.gov.kg (mail.customs.gov.kg [127.0.0.1])

by mail.customs.gov.kg (Postfix) with ESMTP id 4dtZbn6wHNz3Pw3

for ; Sat, 17 Jan 2026 17:43:17 +0600 (+06)

X-Virus-Scanned: Debian amavis at mail.customs.gov.kg

X-Spam-Flag: YES

X-Spam-Score: 10.607

X-Spam-Level: **********

X-Spam-Status: Yes, score=10.607 tagged_above=2 required=6.2

tests=[ADVANCE_FEE_3_NEW=1, ALL_TRUSTED=-1, DEAR_FRIEND=2.604,

FREEMAIL_FORGED_REPLYTO=2.503, FREEMAIL_REPLYTO=1, HK_NAME_MR_MRS=1,

ODD_FREEM_REPTO=1, SUBJ_ALL_CAPS=0.5, UNDISC_FREEM=1, UNDISC_MONEY=1]

autolearn=no autolearn_force=no

Received: from mail.customs.gov.kg ([127.0.0.1])

by mail.customs.gov.kg (mail.customs.gov.kg [127.0.0.1]) (amavis, port 10026)

with ESMTP id AivU8Zl99_oJ for ;

Sat, 17 Jan 2026 17:43:17 +0600 (+06)

Received: from localhost (mail.customs.gov.kg [127.0.0.1])

by mail.customs.gov.kg (Postfix) with ESMTPSA id 4dtZbP5hryz3PGv;

Sat, 17 Jan 2026 17:42:57 +0600 (+06)

MIME-Version: 1.0

Date: Sat, 17 Jan 2026 11:42:57 +0000

From: Mr Danny Geoffrey

To: undisclosed-recipients:;

Subject: [SPAM] INVESTMENT OPPORTUNITY IN YOUR COUNTRY

Reply-To: danngeooffrey@gmail.com

Mail-Reply-To: danngeooffrey@gmail.com

User-Agent: Roundcube Webmail

Message-ID: <9f8942ae8d2b4d45e341a6ff4dbc010f@dannys-food-equipment-ltd.com>

X-Sender: info@dannys-food-equipment-ltd.com

Content-Type: text/plain; charset=US-ASCII;

format=flowed

Content-Transfer-Encoding: 7bit

X-Spam_score: 26.2

X-Spam_score_int: 262

X-Spam_bar: ++++++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Friend Greetings, I hope this email finds you well. I

know we've never met before. I would like to take this opportunity to introduce

myself to you, My name is Danny Geoffrey, I am a Financial Consultant and

[...]



Content analysis details: (26.2 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

[212.42.104.104 listed in dnsbl.ahbl.org]

[212.42.104.104 listed in dnsbl.ahbl.org]

[212.42.104.104 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[212.42.104.104 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

[212.42.104.104 listed in will-spam-for-food.eu.org]

1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)

0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

1.6 SUBJ_ALL_CAPS Subject is all capitals

2.6 DEAR_FRIEND BODY: Dear Friend? That's not very dear!

0.0 T_HK_NAME_MR_MRS No description available.

0.0 NO_RDNS2 Sending MTA has no reverse DNS

0.8 SARE_FROM_SPAM_WORD3 I don't know people named this!

0.0 HK_NAME_MR_MRS No description available.

1.8 ODD_FREEM_REPTO Has unusual reply-to header

1.0 FREEMAIL_REPLYTO Reply-To/From or Reply-To/body contain different

freemails

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

3.0 UNDISC_FREEM Undisclosed recipients + freemail reply-to

2.5 ADVANCE_FEE_3_NEW Appears to be advance fee fraud (Nigerian 419)

2.9 UNDISC_MONEY Undisclosed recipients + money/fraud signs

Subject: {SPAM?} [SPAM] INVESTMENT OPPORTUNITY IN YOUR COUNTRY



Dear Friend



Greetings, I hope this email finds you well. I know we've never met

before. I would like to take this opportunity to introduce myself to

you, My name is Danny Geoffrey, I am a Financial Consultant and I'm

contacting you from Scotland. I know it can be annoying to get emails

from people you don't know. Still, I'm getting in touch because I wanted

to discuss a business opportunity with you. I have a client who has an

interest in Investing in your country into a Joint Venture /Partnership.

He has funds available meant for investment. We believe that your

expertise and experience align well with our investment objectives, and

we would like to explore potential collaboration opportunities with you.



You can reach me directly at ( danngeooffrey@yahoo.com ) if you're

interested.



I look forward to your response if interested.



Note: Kindly move this message to your inbox if found in spam folder,

Sometimes messages may be filtered into the spam folder due to

restrictions implemented by your Internet Service Provider (ISP)



Regards

Mr Danny Geoffrey

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 09:08:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh8pY-00000000LTV-3GKe

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 09:07:16 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 09:07:16 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail.menbdsr.cc ([163.44.121.134]:41118)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh8Tc-00000000J8Y-15Q1

for doctor@nl2k.ab.ca;

Sat, 17 Jan 2026 08:44:43 -0700

Authentication-Results: mail.menbdsr.cc;

auth=pass (login)

Message-ID: <8deb0ca15aea5c4d73fa2fcb294f45ff@menbdsr.cc>

From: Walmart

To: doctor

Subject: Your Walmart Rewards points are available

Date: Sun, 18 Jan 2026 00:43:45 +0900

X-Priority: 3

MIME-Version: 1.0

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

Received: from localhost (Unknown [127.0.0.1])

by mail.menbdsr.cc (Haraka) with ESMTPSA id B1F310CD-E613-4761-BAB2-F947EB367EA4.1

envelope-from

tls TLS_AES_256_GCM_SHA384 (authenticated bits=0);

Sat, 17 Jan 2026 23:43:46 +0800

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=menbdsr.cc;

h=Content-Transfer-Encoding: Content-Type: MIME-Version: Date: Subject:

To: From: Message-ID; q=dns/txt; s=s20260117179; t=1768664627;

bh=Qnyke4G2+mFFHdzoQ97E8iKeUavoCWqVtYwJsBN44NY=;

b=CyQ6t8wFz0mk7tsmZG0Y5bnmuCdmJENpKRBXlbmMndwM6FoIBMi8+VL0wi1XisU6INCHxiS3U

odKJvj/yhVewGPMmQ5s1rrG0odjK0F1FS5RVSEssydFHF+zW9RconCPKsmnCa1/7SWla4foenpY

YrqLpZ9mahof1kXPkfq/BhY=

X-Spam_score: 21.1

X-Spam_score_int: 211

X-Spam_bar: +++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hello, Thank you for being a registered customer with Walmart

Canada.



Content analysis details: (21.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

[163.44.121.134 listed in dnsbl.ahbl.org]

[163.44.121.134 listed in dnsbl.ahbl.org]

[163.44.121.134 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the DBL blocklist

[URI: lickinpussy.net]

0.0 URIBL_PH_SURBL Contains an URL listed in the PH SURBL blocklist

[URI: lickinpussy.net]

1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist

[URI: lickinpussy.net]

1.9 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist

[URI: lickinpussy.net]

2.5 URIBL_DBL_SPAM Contains a spam URL listed in the DBL blocklist

[URI: menbdsr.cc]

1.7 URIBL_BLACK Contains an URL listed in the URIBL blacklist

[URI: lickinpussy.net]

1.6 RCVD_IN_BRBL_LASTEXT RBL: No description available.

[163.44.121.134 listed in bb.barracudacentral.org]

0.0 T_SPF_PERMERROR SPF: test of record failed (permerror)

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

0.1 DKIM_INVALID DKIM or DK signature exists, but is not valid

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.5 VOWEL_FROM_5 Impronouncable from header (6 consecutive vowels)

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.0 MSGID_FROM_MTA_HEADER Message-Id was added by a relay

2.0 MIXED_HREF_CASE Has href in mixed case

Subject: {SPAM?} Your Walmart Rewards points are available



=0D=0A<=

HEAD>=0D=0A
t-Type>=0D=0A
EAD>=0D=0A=0D=0A

Hello,

=0D=0A

Thank you for being a registere=

d customer with Walmart =0D=0ACanada.

=0D=0A

We=E2=80=

=99re writing to let you know that Walmart Rewards points have been=

=0D=0Aadded to your account. These points can be redeemed on elig=

ible =0D=0Apurchases online at walmart.ca or at participat=

ing Walmart =0D=0ACanada stores.

=0D=0A

To view your points balance an=

d redeem your rewards, please sign in to your =0D=0Aaccount using the link =

below:

=0D=0A

=F0=9F=

=91=89 View and redeem your =0D=0AWalmart Rewards points
A>
Sign in to your=

Walmart =0D=0Aaccount

=0D=0A

Please note:

=0D=

=0A

=0D=0A
• =0D=0A

  Rewards points are subject to Walmart Rewards=
  
  terms and =0D=0Aconditions.

=0D=0A
• =0D=0A

  Points may expi=
  
  re if not redeemed within the applicable time =0D=0A period.

=0D=

=0A
• =0D=0A

  You must be signed in to your registered Walmart accoun=
  
  t to access your =0D=0A rewards.

=0D=0A

If you did not expe=

ct this email or believe it was sent to you in error, =0D=0Aplease visit th=

e Walmart Canada Help Centre for more information.

=0D=0A

Thank you fo=

r shopping with Walmart Canada.

=0D=0A

Kind regards,
Walmar=

t Canada Rewards
Walmart =0D=0ACanada
walmart.ca

=0D=0A
R>=0D=0A=0D=0A

This email was sent from an automated notification add=

ress. Please do not =0D=0Areply to this message.

=0D=

=0A

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 07:38:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh7R6-00000000OnG-22nT

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 07:37:56 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 07:37:56 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail.menbdsr.cc ([163.44.121.134]:54652)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh3sF-00000000PtN-3TgS

for doctor@nl2k.ab.ca;

Sat, 17 Jan 2026 03:49:51 -0700

Authentication-Results: mail.menbdsr.cc;

auth=pass (login)

Message-ID: <361507d47fbc7030aef9dec92fbee803@menbdsr.cc>

From: Walmart

To:

Subject: Your Walmart Rewards points are available

Date: Sat, 17 Jan 2026 19:48:51 +0900

X-Priority: 3

MIME-Version: 1.0

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

Received: from localhost (Unknown [127.0.0.1])

by mail.menbdsr.cc (Haraka) with ESMTPSA id D78CA048-378E-4A06-82E1-B0F5C39C94D7.1

envelope-from

tls TLS_AES_256_GCM_SHA384 (authenticated bits=0);

Sat, 17 Jan 2026 18:48:51 +0800

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=menbdsr.cc;

h=Content-Transfer-Encoding: Content-Type: MIME-Version: Date: Subject:

To: From: Message-ID; q=dns/txt; s=s20260117179; t=1768646931;

bh=Qnyke4G2+mFFHdzoQ97E8iKeUavoCWqVtYwJsBN44NY=;

b=d+bdF39DP9EOMrh8gLwpndFIY+ynIxEo511o67jp4BxkCr9ZwE6SWcjlTn/O3ueZSMd/Ye1oC

8zlNRrl3xs0p7E0daZnqph0zHReWlz6elZkvbSHCbLB/Ge6myDO7E35CnTQQ4TQkmcKolN5eI4Y

8KtE2bkVLSn+5YW5FhiNPPg=

X-Spam_score: 15.7

X-Spam_score_int: 157

X-Spam_bar: +++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hello, Thank you for being a registered customer with Walmart

Canada.



Content analysis details: (15.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

[163.44.121.134 listed in dnsbl.ahbl.org]

[163.44.121.134 listed in dnsbl.ahbl.org]

[163.44.121.134 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[163.44.121.134 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

[163.44.121.134 listed in will-spam-for-food.eu.org]

1.9 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist

[URI: lickinpussy.net]

1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist

[URI: lickinpussy.net]

0.0 URIBL_PH_SURBL Contains an URL listed in the PH SURBL blocklist

[URI: lickinpussy.net]

2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the DBL blocklist

[URI: lickinpussy.net]

2.5 URIBL_DBL_SPAM Contains a spam URL listed in the DBL blocklist

[URI: menbdsr.cc]

1.6 RCVD_IN_BRBL_LASTEXT RBL: No description available.

[163.44.121.134 listed in bb.barracudacentral.org]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[163.44.121.134 listed in sa-accredit.habeas.com]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[163.44.121.134 listed in sa-trusted.bondedsender.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 T_SPF_PERMERROR SPF: test of record failed (permerror)

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

0.1 DKIM_INVALID DKIM or DK signature exists, but is not valid

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[163.44.121.134 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[163.44.121.134 listed in bl.score.senderscore.com]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.0 MSGID_FROM_MTA_HEADER Message-Id was added by a relay

2.0 MIXED_HREF_CASE Has href in mixed case

0.5 VOWEL_FROM_5 Impronouncable from header (6 consecutive vowels)

Subject: {SPAM?} Your Walmart Rewards points are available



=0D=0A<=

HEAD>=0D=0A
t-Type>=0D=0A
EAD>=0D=0A=0D=0A

Hello,

=0D=0A

Thank you for being a registere=

d customer with Walmart =0D=0ACanada.

=0D=0A

We=E2=80=

=99re writing to let you know that Walmart Rewards points have been=

=0D=0Aadded to your account. These points can be redeemed on elig=

ible =0D=0Apurchases online at walmart.ca or at participat=

ing Walmart =0D=0ACanada stores.

=0D=0A

To view your points balance an=

d redeem your rewards, please sign in to your =0D=0Aaccount using the link =

below:

=0D=0A

=F0=9F=

=91=89 View and redeem your =0D=0AWalmart Rewards points
A>
Sign in to your=

Walmart =0D=0Aaccount

=0D=0A

Please note:

=0D=

=0A

=0D=0A
• =0D=0A

  Rewards points are subject to Walmart Rewards=
  
  terms and =0D=0Aconditions.

=0D=0A
• =0D=0A

  Points may expi=
  
  re if not redeemed within the applicable time =0D=0A period.

=0D=

=0A
• =0D=0A

  You must be signed in to your registered Walmart accoun=
  
  t to access your =0D=0A rewards.

=0D=0A

If you did not expe=

ct this email or believe it was sent to you in error, =0D=0Aplease visit th=

e Walmart Canada Help Centre for more information.

=0D=0A

Thank you fo=

r shopping with Walmart Canada.

=0D=0A

Kind regards,
Walmar=

t Canada Rewards
Walmart =0D=0ACanada
walmart.ca

=0D=0A
R>=0D=0A=0D=0A

This email was sent from an automated notification add=

ress. Please do not =0D=0Areply to this message.

=0D=

=0A

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 07:38:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh7Qz-00000000O9l-2Hgu

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 07:37:49 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 07:37:49 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from computeone.uk ([95.154.244.134]:48494)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh3eA-00000000PMu-15Zl

for sales@nk.ca;

Sat, 17 Jan 2026 03:35:20 -0700

Received: from [108.175.8.68] (port=59106)

by smtp.computeone.uk with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.99.1)

(envelope-from )

id 1vh3dI-000000003nU-1Om5

for sales@nk.ca;

Sat, 17 Jan 2026 10:34:16 +0000

Reply-To: ironwoodfamilytrustfoundation@hotmail.com

From: Ironwood Family Trust Foundation

To: sales@nk.ca

Subject: Official Notification of Donation Approval!!!

Date: 17 Jan 2026 10:34:18 +0000

Message-ID: <20260117103418.3D500A4F166F2018@spicearoma.uk>

MIME-Version: 1.0

Content-Type: text/html

Content-Transfer-Encoding: quoted-printable

X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

X-AntiAbuse: Primary Hostname - smtp.computeone.uk

X-AntiAbuse: Original Domain - nk.ca

X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]

X-AntiAbuse: Sender Address Domain - spicearoma.uk

X-Get-Message-Sender-Via: smtp.computeone.uk: authenticated_id: bills@spicearoma.uk

X-Authenticated-Sender: smtp.computeone.uk: bills@spicearoma.uk

X-Source:

X-Source-Args:

X-Source-Dir:

X-From-Rewrite: unmodified, already matched

X-Spam_score: 11.3

X-Spam_score_int: 113

X-Spam_bar: +++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Sir/Madam, This is to confirm that a USD $1,000,000

donation from the Ironwood Family Trust Foundation has been approved. Please

respond to indicate your interest and enable us to proceed.



Content analysis details: (11.3 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[95.154.244.134 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[95.154.244.134 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[95.154.244.134 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[95.154.244.134 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[95.154.244.134 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[95.154.244.134 listed in sa-trusted.bondedsender.org]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[95.154.244.134 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[95.154.244.134 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[95.154.244.134 listed in bl.score.senderscore.com]

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

1.7 DEAR_SOMETHING BODY: Contains 'Dear (something)'

2.5 US_DOLLARS_3 BODY: Mentions millions of $ ($NN,NNN,NNN.NN)

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 LOTS_OF_MONEY Huge... sums of money

0.9 MONEY_FREEMAIL_REPTO Lots of money from someone using free email?

0.0 T_FROM_MISSP_DKIM From misspaced, DKIM dependable

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

0.3 FROM_MISSP_EH_MATCH From misspaced, matches envelope

0.7 TO_NO_BRKTS_FROM_MSSP Multiple formatting errors

Subject: {SPAM?} Official Notification of Donation Approval!!!

Dear Sir/Ma=

dam,

This is to confirm that a U=

SD $1,000,000 donation from the Ironwood Family Trust Foundation has been a=

pproved. Please respond to indicate your interest and enable us to proceed.=

Best regards,
Mr. David Guzman
Ironw=

ood Family Trust Foundation

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 17 Jan 2026 07:38:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh7Qu-00000000Non-0BTk

for dave@doctor.nl2k.ab.ca;

Sat, 17 Jan 2026 07:37:44 -0700

Resent-From: The Doctor

Resent-Date: Sat, 17 Jan 2026 07:37:43 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from computeone.uk ([95.154.244.134]:48792)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vh3eA-00000000PNJ-15c9

for root@nk.ca;

Sat, 17 Jan 2026 03:35:20 -0700

Received: from [108.175.8.68] (port=59111)

by smtp.computeone.uk with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.99.1)

(envelope-from )

id 1vh3dJ-000000003qw-0ap1

for root@nk.ca;

Sat, 17 Jan 2026 10:34:17 +0000

Reply-To: ironwoodfamilytrustfoundation@hotmail.com

From: Ironwood Family Trust Foundation

To: root@nk.ca

Subject: Official Notification of Donation Approval!!!

Date: 17 Jan 2026 10:34:18 +0000

Message-ID: <20260117103418.1CA03D2401837C1F@spicearoma.uk>

MIME-Version: 1.0

Content-Type: text/html

Content-Transfer-Encoding: quoted-printable

X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

X-AntiAbuse: Primary Hostname - smtp.computeone.uk

X-AntiAbuse: Original Domain - nk.ca

X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]

X-AntiAbuse: Sender Address Domain - spicearoma.uk

X-Get-Message-Sender-Via: smtp.computeone.uk: authenticated_id: bills@spicearoma.uk

X-Authenticated-Sender: smtp.computeone.uk: bills@spicearoma.uk

X-Source:

X-Source-Args:

X-Source-Dir:

X-From-Rewrite: unmodified, already matched

X-Spam_score: 11.3

X-Spam_score_int: 113

X-Spam_bar: +++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Sir/Madam, This is to confirm that a USD $1,000,000

donation from the Ironwood Family Trust Foundation has been approved. Please

respond to indicate your interest and enable us to proceed.



Content analysis details: (11.3 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[108.175.8.68 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

[108.175.8.68 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

[95.154.244.134 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[108.175.8.68 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[108.175.8.68 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[108.175.8.68 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[108.175.8.68 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[108.175.8.68 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

[95.154.244.134 listed in will-spam-for-food.eu.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[95.154.244.134 listed in sa-trusted.bondedsender.org]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[95.154.244.134 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 SPF_HELO_FAIL SPF: HELO does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[95.154.244.134 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[95.154.244.134 listed in bl.score.senderscore.com]

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

1.7 DEAR_SOMETHING BODY: Contains 'Dear (something)'

2.5 US_DOLLARS_3 BODY: Mentions millions of $ ($NN,NNN,NNN.NN)

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 LOTS_OF_MONEY Huge... sums of money

0.3 FROM_MISSP_EH_MATCH From misspaced, matches envelope

0.7 TO_NO_BRKTS_FROM_MSSP Multiple formatting errors

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

0.0 T_FROM_MISSP_DKIM From misspaced, DKIM dependable

0.9 MONEY_FREEMAIL_REPTO Lots of money from someone using free email?

Subject: {SPAM?} Official Notification of Donation Approval!!!

Dear Sir/Ma=

dam,

This is to confirm that a U=

SD $1,000,000 donation from the Ironwood Family Trust Foundation has been a=

pproved. Please respond to indicate your interest and enable us to proceed.=

Best regards,
Mr. David Guzman
Ironw=

ood Family Trust Foundation

Content analysis details: (8.6 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

[52.103.66.63 listed in dnsbl.ahbl.org]

[52.103.66.63 listed in dnsbl.ahbl.org]

[52.103.66.63 listed in dnsbl.ahbl.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[dnsbl.ahbl.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[dnsbl.ahbl.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[dnsbl.ahbl.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.66.63 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:b2:0:0:0:12 listed in]

[will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

[52.103.66.63 listed in will-spam-for-food.eu.org]

0.8 DKIM_ADSP_NXDOMAIN No valid author signature and domain not in DNS

0.0 ARC_VALID Message has a valid ARC signature

0.0 ARC_SIGNED Message has a ARC signature

0.3 FROM_LOCAL_HEX From: localpart has long hexadecimal sequence

1.2 MISSING_HEADERS Missing To: header

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.6 J_CHICKENPOX_83 BODY: 8alpha-pock-3alpha

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.66.63 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.5 VOWEL_FROM_5 Impronouncable from header (6 consecutive vowels)

0.4 KHOP_HELO_FCRDNS Relay HELO differs from its IP's reverse DNS

Subject: {SPAM?} Bearing Supply



--_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_

Content-Type: text/plain; charset="gb2312"

Content-Transfer-Encoding: base64



SGVsbG8sDQpIYXZlIGEgbmljZSBkYXkhDQpJIGtub3cgeW91IGFyZSBpbiB0aGUgQmVhcmluZ3Mg

aW5kdXN0cnkuIFdlIGFyZSBhIHByb2Zlc3Npb25hbCBCZWFyaW5ncyBhbmQgZXhwb3J0ZXIgc3Bl

Y2lhbGl6aW5nIGluIGEgdmFyaWV0eSBvZiBCZWFyaW5ncyxUaGUgc2VydmljZXMgd2UgcHJvdmlk

ZSBpbmNsdWRlOg0KDQoxLkN1c3RvbWl6ZWQgZGVzaWduIHRvIG1lZXQgeW91ciBzcGVjaWZpYyBu

ZWVkcy4NCjIuT0VNIHNlcnZpY2UgdG8gY3JlYXRlIGEgcGVyc29uYWxpemVkIGJyYW5kLg0KMy5I

aWdoLXF1YWxpdHkgcHJvZHVjdHMsIHJlbGlhYmxlIGFuZCB0aW1lbHkgZGVsaXZlcnkuDQoNCklm

IHlvdSBhcmUgaW50ZXJlc3RlZCwgcGxlYXNlIGxldCB1cyBrbm93IGFuZCB3ZSB3aWxsIHByb3Zp

ZGUgeW91IHdpdGggYSBjb21wZXRpdGl2ZSBxdW90YXRpb24uDQpXZSBsb29rIGZvcndhcmQgdG8g

ZXN0YWJsaXNoaW5nIGEgbG9uZy10ZXJtIGJ1c2luZXNzIHJlbGF0aW9uc2hpcCB3aXRoIHlvdS4g

TG9va2luZyBmb3J3YXJkIHRvIHlvdXIgcmVwbHkhDQpTaW5jZXJlbHksDQpBbmR5DQo=



--_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_

Content-Type: text/html; charset="gb2312"

Content-Transfer-Encoding: quoted-printable













































--_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Fri, 16 Jan 2026 17:58:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vgudO-00000000P5V-38CO

for dave@doctor.nl2k.ab.ca;

Fri, 16 Jan 2026 17:57:46 -0700

Resent-From: The Doctor

Resent-Date: Fri, 16 Jan 2026 17:57:46 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-japanwestazolkn19012063.outbound.protection.outlook.com ([52.103.66.63]:3727 helo=OS8PR02CU002.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vguPb-00000000NLa-2AKO

for doctor@nl2k.ab.ca;

Fri, 16 Jan 2026 17:43:42 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=sdVX1E5rTIlciZj7tzFahVkKLEL7h44bRMSj9FegLAy5hRT4ekn7am6275z30tT6w4aQtB8C4OjQW8HT/rEk83LQDkHhZ70pfmIUI+RJoL/Gz12U1/A9lQ8sDnLnON7aHAeZDkFHP93czBxGCy38G/EYzPHnkK5tqQlV8vidiohCtz734dYd3m9ES/iv6y4znw0QICTSJgvzEoSOfwRbwyJSVf3yZVDPlUFDbxVl8CTXu7f5g//nd+F//flyRCml2se7SDuZW5V5UC+6VwYWK4ZPVlHa2pv4X38qdiDWF1z5KwzwxB9/n4121Hyq7Wz2OX6BjhlZ/WF4gC0PRNb7rA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=95EpWoQMB/4L5UX4o+dhdyScA/dd9L1O8cvBTi3ZwsU=;

b=dXerFmCqUUqBXK8lXc/eHlzROmiryi4rTmdEle3LfOc26NHbC9hnYDxtLsQlsP6gtG9UaRn/qVS1TDNvQxTlZ7q7U+evK4Vzc/2jwe5g5ZEig1dQYf8WZUa+9ce2Qrme6XU9OCqt1LLkOkHKRh28F3uB/BuLbPRhX2RWVmvfJ5TXk2pwmWibQ6220WosGH/zgws5+A/Hp0TC/otN27/c3V35cmGrCH2bBHfxeDLzTpVbNgFbX0+l/RvvCmsmLve9aTvHDVmskZnmL8pnlFo+K/cV4V3g3qniqTteYU0rWmgg5i7HvGuAAdujhq1x5UKfxxp9fNklThuFcyXpLCbcOA==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

Received: from SEYPR06MB5792.apcprd06.prod.outlook.com (2603:1096:101:b2::12)

by SEYPR06MB8194.apcprd06.prod.outlook.com (2603:1096:101:2f3::10) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9520.5; Sat, 17 Jan

2026 00:42:08 +0000

Received: from SEYPR06MB5181.apcprd06.prod.outlook.com

([fe80::38d0:8d6e:2874:b8c9]) by SEYPR06MB5792.apcprd06.prod.outlook.com

([fe80::38d0:8d6e:2874:b8c9%6]) with mapi id 15.20.9520.006; Sat, 17 Jan 2026

00:42:08 +0000

From: G Y



Subject: Bearing Supply

Thread-Topic: Bearing Supply

Thread-Index: AQHch0m/ddXh91dvVkOUxbUGMF60Xw==

Date: Sat, 17 Jan 2026 00:39:36 +0000

Message-ID:



Accept-Language: en-US

Content-Language: zh-CN

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: SEYPR06MB5792:EE_|SEYPR06MB8194:EE_

x-ms-office365-filtering-correlation-id: 5bcef10d-e908-4534-7b4d-08de55613e50

x-ms-exchange-slblob-mailprops:

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

x-microsoft-antispam:

BCL:0;ARA:14566002|31061999003|37102599003|461199028|7071999006|39105399006|41001999006|15030799006|15080799012|19110799012|8060799015|8062599012|3412199025|440099028|41105399003|40105399003|39145399003|26104999006|102099032;

x-microsoft-antispam-message-info:

=?gb2312?B?eVdFKzdycXFiVkMzdURLb1Z4SXhHOUlVTU1MejVteHd2VG5rWkM4ditXRjBi?=

=?gb2312?B?K1h0aE1lb1A0MlNPSVBZTFBXWG1xZThISjcyZWpxdDJMZFVtQ1ZaWVc0QnJ5?=

=?gb2312?B?Nm1rVVVNZUdxVjlFa1d3R0dYNWh3RzE4bjBjUkx1dUJQYmVweXArSVRRUEF4?=

=?gb2312?B?MmY4VnVMc2pCZFVTS2dkdTZrKzZDanoxN0J4Nnc5MmtKdVdMZytxYUhGbUxv?=

=?gb2312?B?UXl6clZEbDFEQTEzWk1LNFZ2dkEwZ05YZ1FtaWhuc1NCdmhXbFR2UUlLSTVK?=

=?gb2312?B?c0IvY1V2YVBuVW90YjVkK2Y5Y25GZXYwcjI2ZEVYLy92bmpGN3Q2clM1Smpx?=

=?gb2312?B?MS9mb1JmYVlndmtHNG9sTk1NS1Q0L3hvdmJPbmh6ZXI2TFBicWg0Vm8wNGVX?=

=?gb2312?B?bkFYOTE5UWVkNlpXb0wreVBuNVg4bytlRFpjTGMxRTNjelpiMWlickU0ekVk?=

=?gb2312?B?c1BXMlc4dlVKRTRGMXhWamdNdUo4djNJRDh2NkJHT2txMkVZWEdiRXlDWTFZ?=

=?gb2312?B?RDRzcHVURHk5STM5OGZNcUgvQjFueDRYbU13VjNLejZzVENpTG5WMDNOV3kx?=

=?gb2312?B?bjlDTU84VW5qUThkUHU5OTArZHJ2UDEyNDViWDBoU29rMUVDZnk4Ry9UL0JK?=

=?gb2312?B?RlFVWG5PTE1UdGZENm5ldUtOZytLaUZpdTgreHNld0ZlZDB6K3JVdHNGNmVs?=

=?gb2312?B?RjRzRTJobHk5QzI1NlVPcVJucUV4ZG14TW51bWp0NUwyNk54a2FOeU5BNjZv?=

=?gb2312?B?cVFVc05QTTlFK1dFRjRwNU4zK1d3V1JDOWlVUW1WU25uZlkzc1NMZzZSdnVV?=

=?gb2312?B?Z0V6eHMyMDh1anFNUmhLMENOQVY1bjdoYzgxTGgzcTROUEhYZ2Z0Sko3S1Yv?=

=?gb2312?B?VWZVSDFkSyt4NWpocXRhNnV2ZjlQYWlWbnhYeEhTRXZpQUZPdnYzOWxpS0Fl?=

=?gb2312?B?RGtFRys4bmdkaEJXbkdLVXNtWWFWNDR3MWR5amxRejZkMUhMMGNGMVJRT2JQ?=

=?gb2312?B?QURYMTRSTWtJZ1FVdzNWVkttNDJHRktON1NycGwzRWEzcExJTnlXWG9KMHV1?=

=?gb2312?B?SFlDYjh4UzU4VXFxQmtob0JhNm1iMGxxTGZnS1lWZmxjM21ZL3VacjhMYllU?=

=?gb2312?B?VmovMnVPb21mUUdKbnA0eWZxMU5rMjVDY3R2dDYyQW15RmtqYmxjOWk0a01W?=

=?gb2312?B?NSs3RHVaK25JbW5iNWhwME9SUkN5TTFZSnNRM3AzcmtIczVheFo5dUR3SDZv?=

=?gb2312?B?UWVDKy9RTW9uSGJoYzdhcU5LSFJTV0VVbWE1WXdxZ0x1S2tTOHRaMjg0TFp0?=

=?gb2312?B?bHRiMEx6ZVZNQjlVTGRDOSsxeGhkMFZnT3VCMWFBdUZ2NXkzZ1ZLVHpySjNZ?=

=?gb2312?B?VVZCUUFHWi8zbWR1Mldod0tlSWpxZFdWWHhqUUdmTFVqY2UrSmJFaFBScGRC?=

=?gb2312?B?TnR3Wjk3d3ZMVzk4VWFLUjhrdTM2OGJGajVubnJpcENBaU9IVGN1Z003QjU3?=

=?gb2312?B?WE1Eek1EUkwyUUh2aUFaOU1XSWlBVXd4RWRkV0Y2cHhDQ3RBM2FEK01FV3lv?=

=?gb2312?B?WXJTSnk0T2pVRGd6aFFtOVU2T29wYzN2SUxDbjRWejV1YkRjT0lrSDlNL1Nu?=

=?gb2312?B?ZmlQcVRqK2RVaWFIM3F5djRQU3U0QWJ2dWJyUzIyTFV6UFhIdkJ5N2t6M2Ja?=

=?gb2312?B?dW50M2pldzJWZTNDYTRkNTlwYUNCN2VVNU9yeUJwaGU1NjQ4UjV3dWFEWjA4?=

=?gb2312?B?WHFBVnBYL0EyTDVHelVwbTRlRzdTOGxKNXFuTVpBRGZqTjN3cW1BeXNtdjcx?=

=?gb2312?B?TjdrVU1qVitLTzdDblRaMUQydmt6cGhIMm1zSk5mbitCVllYdUdGcGRVVWlD?=

=?gb2312?B?czU3K2NmcEZnNks3bmdDNzlMU2pCRHJPOUlJRDVXU3ZyQVE9PQ==?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?gb2312?B?SkdOSUR2K3VncG9GQXpDbVgxUWRIZjB2MHhDWkNSR2I4TEFSanNYaHdPTDUz?=

=?gb2312?B?WlhmSkl6Y2l5ajZmR1YwODI5TklhTi91ZWhvK0U5ZEczSmRuYlJPMnk2M1l5?=

=?gb2312?B?Z20yZ0JURWtQU0xYVnlxQnFNSjhSb0pSY2dkWmx4NCtUd3RFaXJ2Y1hkSEp0?=

=?gb2312?B?QWJWZWUrcUJHZTJwaUZNRVM5YmIyVFJEdkRQY0RRZHBjSTdlYXJlalJEemtV?=

=?gb2312?B?aHRFRTE5SHFSSkNrZCtNMnNTN1FVY0JCWExNVTdteklnaVE4R05CaTQ3Unc4?=

=?gb2312?B?cDRZUFFrYnA1T1RiSTRsY1VCaUhvRkhMcUxMNG9raXhUMEdjOUwyUXFjVU5a?=

=?gb2312?B?cnVzMlZadHd1ckxqOXlGdStPWCszYldtT1E5QjRSUmp1UTlKaXhXdUNSM2xK?=

=?gb2312?B?Sm4zMXNnMURPVkZBYmo5byt1d1NHLzFnUDBCWDhvbC9icytzK1lmbFY0bWFC?=

=?gb2312?B?V3dFS2c5WlZxSGxFcnlTczMvQzk0dWZETlhUQ2I1WHAvR3M5VTVmQkpQMFAz?=

=?gb2312?B?TG1yZWJhVVR5bHhnNjF3Z2RxK2NNM2taK3ZCenhoQnlUN29ueHBUMVRmVVd4?=

=?gb2312?B?YW1SSk9EbHI3QUtpclduZGh6d2hJNExEMjJvTE1MZjJ4Q05aMWtmejR3UTlj?=

=?gb2312?B?Q3RsRk5HRUhTZVVZM085UzhSME5qSzBzRlVRbktuTjlrU3B4clJycXRLekdV?=

=?gb2312?B?eUUyMW9sczdqQjhja0VvdnlnbUN0ZTJ2b1VwVGYrNGFWNEFsSVMzdzVYQnpl?=

=?gb2312?B?bjFhZEhYL3FTWHhPc2JCUkVtS1hXZTY4d1hoU3l3NE1EOXp6Ukw5djNhVmFS?=

=?gb2312?B?SGd1K3hPb0VDaVhiNkcxeDJxekVNMGs2RFBhSnREZGhycGl2NUg2Zng2SjRp?=

=?gb2312?B?VDBEb2xQT1hoQVNxcjFUYXNSM01LZzlyMGRNRFVyS2JaTmFudXpxREJ3THdW?=

=?gb2312?B?TndlZXI0N2ZENWlFbmRPZnk0VGh3VU5xY0NzMDUzelZWNUdmaXF6OThFK1k4?=

=?gb2312?B?WVJBRksvaXhQcnY1OUxhV2V4VnhhZ2x3RzYwanV3Z3BqeWpjRUhEZ0owUlJw?=

=?gb2312?B?Sno4OGhNcTlzZXVieENaVVdDb1lkdmV2UzBRci9OSTcycmpuZFF0U2dmYkRY?=

=?gb2312?B?STNPL1JXR3NtN0pWL01NNEFiOUlkdTR5bWs4cnVTRi9yWFlqUm5xcTdDNllP?=

=?gb2312?B?Y3hqeXRvcUMzTmdxVmhmNGxHSTB5RDdNL1RaV0xTQXljYmIrQnViekpaN2VV?=

=?gb2312?B?d1Q5T1JoZGQ0UU4wRmpnNWxPMkh5TldVNjJMck16VEV5UmR5VWZ5bXhDZDlU?=

=?gb2312?B?QlpWK3B3L0JHaC8vdnZMQXBOenVIL0VXSlYyc2NyS1BMdWtDQTlhNHRHZEc2?=

=?gb2312?B?NU5qbk1vN2ZvR05zdWFWNmNjckdsTFdoS0dSZFMvZGI3dmdGcTluME9reHlM?=

=?gb2312?B?OVpQVHJQc0xiZlI1UE9FaWN2RkxTRzFYWEJUOE1JVVFrWVJyUVVraHByRVh4?=

=?gb2312?Q?vfHO0I=3D?=

Content-Type: multipart/alternative;

boundary="_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_"

MIME-Version: 1.0

X-OriginatorOrg: sct-15-20-9412-4-msonline-outlook-7141d.templateTenant

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: SEYPR06MB5792.apcprd06.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: 5bcef10d-e908-4534-7b4d-08de55613e50

X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jan 2026 00:39:36.0645

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: SEYPR06MB8194

X-Spam_score: 8.6

X-Spam_score_int: 86

X-Spam_bar: ++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hello, Have a nice day! I know you are in the Bearings industry.

We are a professional Bearings and exporter specializing in a variety of

Bearings,The services we provide include: 1.Customized design to meet your

specific needs. 2.OEM service to create a personalized brand. 3.High-quality

products, reliable and timely delivery.

X-Spam_score: 8.1

X-Spam_score_int: 81

X-Spam_bar: ++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hello, Have a nice day! I know you are in the Bearings industry.

We are a professional Bearings and exporter specializing in a variety of

Bearings,The services we provide include: 1.Customized design to meet your

specific needs. 2.OEM service to create a personalized brand. 3.High-quality

products, reliable and timely delivery.



Content analysis details: (8.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.74.85 listed in dnsbl.ahbl.org]

[52.103.74.85 listed in dnsbl.ahbl.org]

[52.103.74.85 listed in dnsbl.ahbl.org]

[52.103.74.85 listed in dnsbl.ahbl.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[dnsbl.ahbl.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.74.85 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.74.85 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.74.85 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.74.85 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[2603:1096:101:8c:0:0:0:10 listed in]

[will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

[52.103.74.85 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[52.103.74.85 listed in list.dnswl.org]

-0.0 SPF_HELO_PASS SPF: HELO matches SPF record

-0.0 SPF_PASS SPF: sender matches SPF record

0.0 ARC_VALID Message has a valid ARC signature

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

0.0 ARC_SIGNED Message has a ARC signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

1.2 MISSING_HEADERS Missing To: header

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in

digit

[gysell20(at)outlook.com]

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[gysell20(at)outlook.com]

0.6 J_CHICKENPOX_83 BODY: 8alpha-pock-3alpha

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.74.85 listed in wl.mailspike.net]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.4 MALFORMED_FREEMAIL Bad headers on message from free email service

Subject: {SPAM?} Bearing Supply



--_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_

Content-Type: text/plain; charset="gb2312"

Content-Transfer-Encoding: base64



SGVsbG8sDQpIYXZlIGEgbmljZSBkYXkhDQpJIGtub3cgeW91IGFyZSBpbiB0aGUgQmVhcmluZ3Mg

aW5kdXN0cnkuIFdlIGFyZSBhIHByb2Zlc3Npb25hbCBCZWFyaW5ncyBhbmQgZXhwb3J0ZXIgc3Bl

Y2lhbGl6aW5nIGluIGEgdmFyaWV0eSBvZiBCZWFyaW5ncyxUaGUgc2VydmljZXMgd2UgcHJvdmlk

ZSBpbmNsdWRlOg0KDQoxLkN1c3RvbWl6ZWQgZGVzaWduIHRvIG1lZXQgeW91ciBzcGVjaWZpYyBu

ZWVkcy4NCjIuT0VNIHNlcnZpY2UgdG8gY3JlYXRlIGEgcGVyc29uYWxpemVkIGJyYW5kLg0KMy5I

aWdoLXF1YWxpdHkgcHJvZHVjdHMsIHJlbGlhYmxlIGFuZCB0aW1lbHkgZGVsaXZlcnkuDQoNCklm

IHlvdSBhcmUgaW50ZXJlc3RlZCwgcGxlYXNlIGxldCB1cyBrbm93IGFuZCB3ZSB3aWxsIHByb3Zp

ZGUgeW91IHdpdGggYSBjb21wZXRpdGl2ZSBxdW90YXRpb24uDQpXZSBsb29rIGZvcndhcmQgdG8g

ZXN0YWJsaXNoaW5nIGEgbG9uZy10ZXJtIGJ1c2luZXNzIHJlbGF0aW9uc2hpcCB3aXRoIHlvdS4g

TG9va2luZyBmb3J3YXJkIHRvIHlvdXIgcmVwbHkhDQpTaW5jZXJlbHksDQpBbmR5DQo=



--_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_

Content-Type: text/html; charset="gb2312"

Content-Transfer-Encoding: quoted-printable













































--_000_SEYPR06MB518148A3E938D6853FC1FAFED68AASEYPR06MB5181apcp_--