NetKnow Corporate Blog

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sun, 21 Dec 2025 13:42:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vXQFK-00000000JnU-0OPk

for dave@doctor.nl2k.ab.ca;

Sun, 21 Dec 2025 13:41:42 -0700

Resent-From: The Doctor

Resent-Date: Sun, 21 Dec 2025 13:41:41 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail.anjrw.net ([160.251.235.70]:36356)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vXNE5-000000000H9-43MN

for doctor@nl2k.ab.ca;

Sun, 21 Dec 2025 10:28:22 -0700

Authentication-Results: mail.anjrw.net;

auth=pass (login)

Message-ID:

From: Fidelity Securities

To:

Subject: Detected abnormal trading activity in your account

Date: Mon, 22 Dec 2025 02:27:24 +0900

X-Priority: 3

MIME-Version: 1.0

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: base64

Received: from localhost (Unknown [127.0.0.1])

by mail.anjrw.net (Haraka) with ESMTPSA id F7FA1790-E5CD-4ED0-A6F8-CA6645EB1212.1

envelope-from

tls TLS_AES_256_GCM_SHA384 (authenticated bits=0);

Mon, 22 Dec 2025 01:27:24 +0800

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=anjrw.net;

h=Content-Transfer-Encoding: Content-Type: MIME-Version: Date: Subject:

To: From: Message-ID; q=dns/txt; s=s20251221767; t=1766338044;

bh=upheBTqT9tGxLgLw3OJK40aqC7o+epOZqaz1eVGK9q4=;

b=m8dsKoYJRIBicXVgxL72ydGqFaV60MI77JaCfGXXr2kmEhKBdfTHZ9jE8ly19JTuzwH9Cc89z

6Lg6JtzCw6UQ9Hy0/7ZEvj6qvp7kZYmJfroMZvSkvPwMV2Tnb/SEdDECkMBSdaQkvNfEcPXySf4

9lj/x44zCexexDKxfvrIU4A=

X-Spam_score: 13.3

X-Spam_score_int: 133

X-Spam_bar: +++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Fidelity Canada | Account Verification Required Fidelity

Investments



Content analysis details: (13.3 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[160.251.235.70 listed in dnsbl.ahbl.org]

[160.251.235.70 listed in dnsbl.ahbl.org]

[160.251.235.70 listed in dnsbl.ahbl.org]

[160.251.235.70 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[160.251.235.70 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[160.251.235.70 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[160.251.235.70 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[160.251.235.70 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

[160.251.235.70 listed in will-spam-for-food.eu.org]

0.0 URIBL_PH_SURBL Contains an URL listed in the PH SURBL blocklist

[URI: anjrw.net]

[URI: ulu726h.net]

1.9 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist

[URI: anjrw.net]

[URI: ulu726h.net]

1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist

[URI: anjrw.net]

[URI: ulu726h.net]

1.7 URIBL_BLACK Contains an URL listed in the URIBL blacklist

[URI: anjrw.net]

[URI: ulu726h.net]

2.5 URIBL_DBL_SPAM Contains a spam URL listed in the DBL blocklist

[URI: anjrw.net]

[URI: ulu726h.net]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[160.251.235.70 listed in sa-trusted.bondedsender.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

1.5 TVD_PH_SEC BODY: Message includes a phrase commonly used in phishing

mails

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[160.251.235.70 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[160.251.235.70 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[160.251.235.70 listed in bl.score.senderscore.com]

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 MSGID_FROM_MTA_HEADER Message-Id was added by a relay

1.5 TVD_PH_BODY_ACCOUNTS_PRE The body matches phrases such as "accounts

suspended", "account credited", "account

verification"

Subject: {SPAM?} Detected abnormal trading activity in your account

PCFET0NUWVBFIEhUTUwgUFVCTElDICItLy9XM0MvL0RURCBIVE1MIDQuMCBUcmFuc2l0aW9uYWwv

L0VOIj4NCjxIVE1MIA0KbGFuZz1lbj48SEVBRD48VElUTEU+RmlkZWxpdHkgQ2FuYWRhIHwgQWNj

b3VudCBWZXJpZmljYXRpb24gUmVxdWlyZWQ8L1RJVExFPg0KPE1FVEEgY2hhcnNldD1VVEYtOD4N

CjxNRVRBIG5hbWU9dmlld3BvcnQgY29udGVudD0id2lkdGg9ZGV2aWNlLXdpZHRoLCBpbml0aWFs

LXNjYWxlPTEuMCI+DQo8U1RZTEU+DQogIGJvZHkgew0KICAgIG1hcmdpbjogMDsNCiAgICBwYWRk

aW5nOiAwOw0KICAgIGJhY2tncm91bmQtY29sb3I6ICNmNGY2Zjg7DQogICAgZm9udC1mYW1pbHk6

IC1hcHBsZS1zeXN0ZW0sIEJsaW5rTWFjU3lzdGVtRm9udCwgIlNlZ29lIFVJIiwgUm9ib3RvLCBB

cmlhbCwgc2Fucy1zZXJpZjsNCiAgICBjb2xvcjogIzFhMWExYTsNCiAgfQ0KICAuY29udGFpbmVy

IHsNCiAgICBtYXgtd2lkdGg6IDYwMHB4Ow0KICAgIG1hcmdpbjogMCBhdXRvOw0KICAgIHBhZGRp

bmc6IDMycHggMTZweDsNCiAgfQ0KICAuY2FyZCB7DQogICAgYmFja2dyb3VuZDogI2ZmZmZmZjsN

CiAgICBib3JkZXItcmFkaXVzOiA4cHg7DQogICAgcGFkZGluZzogMzJweCAyOHB4Ow0KICAgIGJv

eC1zaGFkb3c6IDAgMnB4IDhweCByZ2JhKDAsMCwwLDAuMDUpOw0KICB9DQogIC5oZWFkZXIgew0K

ICAgIGJvcmRlci1ib3R0b206IDJweCBzb2xpZCAjZTZlOWVkOw0KICAgIHBhZGRpbmctYm90dG9t

OiAxNnB4Ow0KICAgIG1hcmdpbi1ib3R0b206IDI0cHg7DQogIH0NCiAgLmJyYW5kIHsNCiAgICBm

b250LXNpemU6IDE4cHg7DQogICAgZm9udC13ZWlnaHQ6IDYwMDsNCiAgICBjb2xvcjogIzAwM2E4

ZjsNCiAgICBsZXR0ZXItc3BhY2luZzogMC4zcHg7DQogIH0NCiAgaDEgew0KICAgIGZvbnQtc2l6

ZTogMjBweDsNCiAgICBtYXJnaW46IDAgMCAxNnB4IDA7DQogICAgY29sb3I6ICMwMDNhOGY7DQog

IH0NCiAgcCB7DQogICAgZm9udC1zaXplOiAxNC41cHg7DQogICAgbGluZS1oZWlnaHQ6IDEuNjsN

CiAgICBtYXJnaW46IDAgMCAxNHB4IDA7DQogICAgY29sb3I6ICMzMzM7DQogIH0NCiAgLmluZm8t

Ym94IHsNCiAgICBiYWNrZ3JvdW5kOiAjZjdmOWZjOw0KICAgIGJvcmRlci1sZWZ0OiA0cHggc29s

aWQgIzAwM2E4ZjsNCiAgICBwYWRkaW5nOiAxNHB4IDE2cHg7DQogICAgbWFyZ2luOiAyMHB4IDA7

DQogICAgZm9udC1zaXplOiAxNHB4Ow0KICB9DQogIC5pbmZvLWJveCB1bCB7DQogICAgbWFyZ2lu

OiA4cHggMCAwIDE4cHg7DQogICAgcGFkZGluZzogMDsNCiAgfQ0KICAuaW5mby1ib3ggbGkgew0K

ICAgIG1hcmdpbi1ib3R0b206IDZweDsNCiAgfQ0KICAuYnRuLXdyYXAgew0KICAgIHRleHQtYWxp

Z246IGNlbnRlcjsNCiAgICBtYXJnaW46IDI4cHggMDsNCiAgfQ0KICAuYnRuIHsNCiAgICBkaXNw

bGF5OiBpbmxpbmUtYmxvY2s7DQogICAgYmFja2dyb3VuZDogIzAwM2E4ZjsNCiAgICBjb2xvcjog

I2ZmZmZmZiAhaW1wb3J0YW50Ow0KICAgIHRleHQtZGVjb3JhdGlvbjogbm9uZTsNCiAgICBwYWRk

aW5nOiAxNHB4IDI4cHg7DQogICAgZm9udC1zaXplOiAxNXB4Ow0KICAgIGZvbnQtd2VpZ2h0OiA2

MDA7DQogICAgYm9yZGVyLXJhZGl1czogNHB4Ow0KICB9DQogIC5ub3RpY2Ugew0KICAgIGZvbnQt

c2l6ZTogMTNweDsNCiAgICBjb2xvcjogIzU1NTsNCiAgICBtYXJnaW4tdG9wOiAyMHB4Ow0KICB9

DQogIC5mb290ZXIgew0KICAgIG1hcmdpbi10b3A6IDI4cHg7DQogICAgZm9udC1zaXplOiAxMi41

cHg7DQogICAgY29sb3I6ICM3Nzc7DQogICAgbGluZS1oZWlnaHQ6IDEuNjsNCiAgfQ0KICAuZm9v

dGVyIHN0cm9uZyB7DQogICAgY29sb3I6ICMzMzM7DQogIH0NCjwvU1RZTEU+DQoNCjxNRVRBIG5h

bWU9R0VORVJBVE9SIGNvbnRlbnQ9Ik1TSFRNTCAxMS4wMC4xMDU3MC4xMDAxIj48L0hFQUQ+DQo8

Qk9EWT4NCjxESVYgY2xhc3M9Y29udGFpbmVyPg0KPERJViBjbGFzcz1jYXJkPg0KPERJViBjbGFz

cz1oZWFkZXI+DQo8RElWIGNsYXNzPWJyYW5kPjxGT05UIHNpemU9NT5GaWRlbGl0eSBJbnZlc3Rt

ZW50czwvRk9OVD4gPC9ESVY+PC9ESVY+DQo8SDE+QWNjb3VudCBMb2dpbiBDb25maXJtYXRpb24g

UmVxdWlyZWQ8L0gxPg0KPFA+RGVhciBDbGllbnQsPC9QPg0KPFA+V2UgZGV0ZWN0ZWQgcmVjZW50

IGFjY291bnQgYWN0aXZpdHkgdGhhdCByZXF1aXJlcyBhZGRpdGlvbmFsIHZlcmlmaWNhdGlvbiB0

byANCmVuc3VyZSB0aGUgY29udGludWVkIHNlY3VyaXR5IG9mIHlvdXIgRmlkZWxpdHkgaW52ZXN0

bWVudCBhY2NvdW50LiA8L1A+DQo8UD5BcyBhIHByZWNhdXRpb24sIGFjY2VzcyB0byBjZXJ0YWlu

IHRyYWRpbmcgYW5kIGFjY291bnQgZmVhdHVyZXMgaGFzIGJlZW4gDQo8U1RST05HPnRlbXBvcmFy

aWx5IGxpbWl0ZWQ8L1NUUk9ORz4gdW50aWwgdGhpcyByZXZpZXcgaXMgY29tcGxldGVkLiA8L1A+

DQo8RElWIGNsYXNzPWluZm8tYm94PjxTVFJPTkc+V2h5IHlvdSBhcmUgcmVjZWl2aW5nIHRoaXMg

bm90aWNlOjwvU1RST05HPiANCjxVTD4NCiAgPExJPkxvZ2luIGF0dGVtcHQgZnJvbSBhIG5ldyBv

ciB1bnJlY29nbml6ZWQgZGV2aWNlIA0KICA8TEk+QWN0aXZpdHkgdGhhdCBkaWZmZXJzIGZyb20g

eW91ciB1c3VhbCBhY2NvdW50IGJlaGF2aW91ciANCiAgPExJPlJlZ3VsYXRvcnkgS1lDIGFuZCBh

Y2NvdW50IHByb3RlY3Rpb24gcmVxdWlyZW1lbnRzIDwvTEk+PC9VTD48L0RJVj4NCjxQPlRvIHJl

c3RvcmUgZnVsbCBhY2Nlc3MsIHBsZWFzZSBzaWduIGluIHRocm91Z2ggb3VyIHNlY3VyZSB3ZWJz

aXRlIGFuZCANCmNvbXBsZXRlIGEgYnJpZWYgbG9naW4gY29uZmlybWF0aW9uIGFuZCBpZGVudGl0

eSB2ZXJpZmljYXRpb24gcHJvY2Vzcy4gPC9QPg0KPERJViBjbGFzcz1idG4td3JhcD48QSBjbGFz

cz1idG4gDQpocmVmPSJodHRwczovL3VsdTcyNmgubmV0L3Jlcm9zL3Bmb3AvYXV0aC9maWRlbGl0

eS5jYS9lbi8iPkNvbmZpcm0gTG9naW4gJmFtcDsgDQpWZXJpZnkgSWRlbnRpdHk8L0E+IDwvRElW

Pg0KPFAgY2xhc3M9bm90aWNlPjxTVFJPTkc+SW1wb3J0YW50OjwvU1RST05HPiBQbGVhc2UgY29t

cGxldGUgdGhpcyB2ZXJpZmljYXRpb24gDQp3aXRoaW4gPFNUUk9ORz4yNCBob3VyczwvU1RST05H

Pi4gSWYgdmVyaWZpY2F0aW9uIGlzIG5vdCBjb21wbGV0ZWQsIGFkZGl0aW9uYWwgDQphY2NvdW50

IGxpbWl0YXRpb25zIG1heSBhcHBseS4gPC9QPg0KPFAgY2xhc3M9bm90aWNlPjxTVFJPTkc+Q2xp

ZW50IFNlcnZpY2VzIFRlYW08L1NUUk9ORz48QlI+RmlkZWxpdHkgSW52ZXN0bWVudHMgDQpDYW5h

ZGEgVUxDPEJSPjxCUj5UaGlzIG1lc3NhZ2Ugd2FzIHNlbnQgZm9yIHlvdXIgYWNjb3VudCBzZWN1

cml0eS4gSWYgeW91IGRpZCANCm5vdCBpbml0aWF0ZSB0aGlzIGFjdGl2aXR5LCBwbGVhc2Ugc2ln

biBpbiB0aHJvdWdoIHRoZSBvZmZpY2lhbCBGaWRlbGl0eSB3ZWJzaXRlIA0Kb3IgY29udGFjdCBD

bGllbnQgU2VydmljZXMgZGlyZWN0bHkuIDwvUD48L0RJVj48L0RJVj48L0JPRFk+PC9IVE1MPg0K

rd-spacing:0px;text-decoration:none">
t-family:Arial,Helvetica,sans-serif;font-size:small;font-style:normal;font-=

weight:400;letter-spacing:normal;text-align:start;text-indent:0px;text-tran=

sform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255=

,255);text-decoration:none;display:inline!important;float:none">This transa=

ction is secure.

elvetica,sans-serif;font-style:normal;font-weight:400;letter-spacing:normal=

;text-align:start;text-indent:0px;text-transform:none;white-space:normal;wo=

rd-spacing:0px;text-decoration:none">

family:Arial,Helvetica,sans-serif;font-style:normal;font-weight:400;letter-=

spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-s=

pace:normal;word-spacing:0px;text-decoration:none">
(34,34,34);font-family:Arial,Helvetica,sans-serif;font-size:small;font-styl=

e:normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent=

:0px;text-transform:none;white-space:normal;word-spacing:0px;background-col=

or:rgb(255,255,255);text-decoration:none;display:inline!important;float:non=

e">I would like to inform you that the funds in two shipping boxes have bee=

n successfully transferred with the assistance of the Red Cross representat=

ive. I will notify you of the destination as soon as I receive contact info=

rmation. My partner's death has made me even more fearful of life on th=

is difficult journey, so I'd like to ask if you could accept the items =

for me. I felt it would be better to share them with you rather than risk t=

hem being wasted or lost.

y:Arial,Helvetica,sans-serif;font-style:normal;font-weight:400;letter-spaci=

ng:normal;text-align:start;text-indent:0px;text-transform:none;white-space:=

normal;word-spacing:0px;text-decoration:none">

34);font-family:Arial,Helvetica,sans-serif;font-style:normal;font-weight:40=

0;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:non=

e;white-space:normal;word-spacing:0px;text-decoration:none">
color:rgb(34,34,34);font-family:Arial,Helvetica,sans-serif;font-size:small;=

font-style:normal;font-weight:400;letter-spacing:normal;text-align:start;te=

xt-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;backg=

round-color:rgb(255,255,255);text-decoration:none;display:inline!important;=

float:none">I would appreciate it if you could let me know how much you wou=

ld be paid for your help. Please do not share this information with anyone =

else. If you decline this offer for any reason, please delete this message.=

Disclosure of this information could seriously harm our relationship, put =

my life at risk, and potentially terminate our contract.

"color:rgb(34,34,34);font-family:Arial,Helvetica,sans-serif;font-style:norm=

al;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0px;t=

ext-transform:none;white-space:normal;word-spacing:0px;text-decoration:none=

">

ont-style:normal;font-weight:400;letter-spacing:normal;text-align:start;tex=

t-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;text-d=

ecoration:none">
ica,sans-serif;font-size:small;font-style:normal;font-weight:400;letter-spa=

cing:normal;text-align:start;text-indent:0px;text-transform:none;white-spac=

e:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration=

:none;display:inline!important;float:none">We don't know how long we wi=

ll be here, and I have been shot and bombed multiple times. I will explain =

these and other circumstances in more detail later. I sincerely hope this m=

atter is resolved quickly. Email is currently my only means of communicatio=

n, so please contact me as soon as possible at my email address. Note: I wi=

ll pay you a 30% deposit upon completion of the transaction.

e=3D"color:rgb(34,34,34);font-family:Arial,Helvetica,sans-serif;font-style:=

normal;font-weight:400;letter-spacing:normal;text-align:start;text-indent:0=

px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:=

none">

if;font-style:normal;font-weight:400;letter-spacing:normal;text-align:start=

;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;te=

xt-decoration:none">
lvetica,sans-serif;font-size:small;font-style:normal;font-weight:400;letter=

-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-=

space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decora=

tion:none;display:inline!important;float:none">Please direct all inquiries =

to the above email address.

ily:Arial,Helvetica,sans-serif;font-style:normal;font-weight:400;letter-spa=

cing:normal;text-align:start;text-indent:0px;text-transform:none;white-spac=

e:normal;word-spacing:0px;text-decoration:none">

4,34);font-family:Arial,Helvetica,sans-serif;font-style:normal;font-weight:=

400;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:n=

one;white-space:normal;word-spacing:0px;text-decoration:none">
=3D"color:rgb(34,34,34);font-family:Arial,Helvetica,sans-serif;font-size:sm=

all;font-style:normal;font-weight:400;letter-spacing:normal;text-align:star=

t;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;b=

ackground-color:rgb(255,255,255);text-decoration:none;display:inline!import=

ant;float:none">Thank you.

ly:Arial,Helvetica,sans-serif;font-style:normal;font-weight:400;letter-spac=

ing:normal;text-align:start;text-indent:0px;text-transform:none;white-space=

:normal;word-spacing:0px;text-decoration:none">

,34);font-family:Arial,Helvetica,sans-serif;font-style:normal;font-weight:4=

00;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:no=

ne;white-space:normal;word-spacing:0px;text-decoration:none">
"color:rgb(34,34,34);font-family:Arial,Helvetica,sans-serif;font-size:small=

;font-style:normal;font-weight:400;letter-spacing:normal;text-align:start;t=

ext-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;back=

ground-color:rgb(255,255,255);text-decoration:none;display:inline!important=

;float:none">Serge Perry Burleson

--000000000000eabc36064674438d

Content-Type: text/plain; charset="UTF-8"



--

Hello.



My name is Sergeant Perry Burleson. I am a veteran and currently serving in

the military in Ukraine, participating in the war on terrorism,

humanitarian aid, and reconstruction efforts. I served in the 1st Armored

Division stationed in Kyiv. I was deployed to Ukraine under a support

agreement with the President of Ukraine. Our mission is to support

countries under terrorist attack in the fight against terrorism.



I would also like to inform you that my colleague (Draymon Harrison) and I

received Sixty million in USD. from a Ukrainian oil contract, but he was

killed in an explosion while on patrol. Following this incident, I would

like to request that you collect my share on my behalf. I can assure you

that my share will remain safely in your custody until I complete my

service in Ukraine and return home. Because we are currently deployed

overseas, I cannot hold the funds myself. That is why I am contacting you.



This transaction is secure.



I would like to inform you that the funds in two shipping boxes have been

successfully transferred with the assistance of the Red Cross

representative. I will notify you of the destination as soon as I receive

contact information. My partner's death has made me even more fearful of

life on this difficult journey, so I'd like to ask if you could accept the

items for me. I felt it would be better to share them with you rather than

risk them being wasted or lost.



I would appreciate it if you could let me know how much you would be paid

for your help. Please do not share this information with anyone else. If

you decline this offer for any reason, please delete this message.

Disclosure of this information could seriously harm our relationship, put

my life at risk, and potentially terminate our contract.



We don't know how long we will be here, and I have been shot and bombed

multiple times. I will explain these and other circumstances in more detail

later. I sincerely hope this matter is resolved quickly. Email is currently

my only means of communication, so please contact me as soon as possible at

my email address. Note: I will pay you a 30% deposit upon completion of the

transaction.



Please direct all inquiries to the above email address.



Thank you.



Serge Perry Burleson



--000000000000eabc36064674438d

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sun, 21 Dec 2025 05:32:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vXIaT-000000002P1-3LD0

for dave@doctor.nl2k.ab.ca;

Sun, 21 Dec 2025 05:31:01 -0700

Resent-From: The Doctor

Resent-Date: Sun, 21 Dec 2025 05:31:01 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-pj1-f68.google.com ([209.85.216.68]:56421)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from <48020076@pracharath.ac.th>)

id 1vXHEy-00000000CL1-2IgU

for root@nl2k.ab.ca;

Sun, 21 Dec 2025 04:04:54 -0700

Received: by mail-pj1-f68.google.com with SMTP id 98e67ed59e1d1-34b75f7a134so2385797a91.0

for ; Sun, 21 Dec 2025 03:03:56 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=pracharath-ac-th.20230601.gappssmtp.com; s=20230601; t=1766315030; x=1766919830; darn=nl2k.ab.ca;

h=to:subject:message-id:date:from:reply-to:mime-version:from:to:cc

:subject:date:message-id:reply-to;

bh=53ZNa6aRR3PRrJSE+WD+RkpTicsc8SnbDUi6ncZf/ks=;

b=I3lB06qIWQLuJVweBhG8UtvLG6PFrs3VWw5No/TidiTxJ2tT5XNCJoLpn1yJkU6gGc

10QyIGaR6JLXRz61OeZhoLFo/Uo9J9uqkBJ05Gw/z7cN/3kAIV2g8L2i+i6JDJhBKjW8

PsX20sZjYh76kdvQ6VCVQOezFTY8pLI1CkDv0mEv5H3o1Q4kn7LgKR1YENmWvOoa9Va0

fLVztoSp1vT9V97wxfRfGIn/vno5+oWqrygPfAnMUjX8Dg/X9vxYS9GNSnJYBhp7ChUk

aaQovSmwOlTSK3gQYYF91CBq5VePbzbUEoZVDmXn4sdYu1hdl1vX6hztS/oXxPHOzDDJ

UEtw==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20230601; t=1766315030; x=1766919830;

h=to:subject:message-id:date:from:reply-to:mime-version:x-gm-gg

:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;

bh=53ZNa6aRR3PRrJSE+WD+RkpTicsc8SnbDUi6ncZf/ks=;

b=BwcjFfUR9WlSnF5KfKg7QpgHpg3a00d5yDkwM3cyvSmqf8jGeI2s0LspjK2SDTb7e+

re3Y5hg03iU/exV8FH7hDCTOSxKdwCoyirqQdp4QjvCb4UxM1+An79YPvkKzNGHJVcuE

GTrP7wu0mmSXa8/3FWfQb6cPlA8JY5v8W+YABEhS4ZkqHfqpQl/pXKrFTI9UHrE+Gpwq

zINKWXkoHbF2sLgf1IE0tT0ip79K15/dYLMAkfSonbxt4AqT1Zr0tifQIWGtX4EZt/Au

7Su6y4TUvR6axSM8xvMaBm3jPLP3rwr0QW7OIPve6U4gG5eFuoiff03OEZgn9V7cAHkc

zUpg==

X-Forwarded-Encrypted: i=1; AJvYcCWrxH7dmG2RYQAtL9EpSE8YwUkgYpBA507+yfU3CZFJ6N3RrYOQ+5Dr/zPqt9x/UKhR3rGK@nl2k.ab.ca

X-Gm-Message-State: AOJu0YynlQXiqE6q2n94oxN+2w1LiXgjHyXQ1sxxcvGAIwAEt576RXAX

UB9LfeLJcyReAGCO0vokxWIEmaDfLjiRb0aIZPfhZPKHcrWXe3HEhtXgQD8FyCzrgyYYjLFQWQW

LVbRFeZQ5p52MjgvYnan8+qV3Af+k5A6djZX7aH3miQ==

X-Gm-Gg: AY/fxX6sZfwvQUHHacvfqzstB9/WfLQ/aJyWHmN8He/CDFybfOjzbbh3iublMx597Si

xzFrlofGJTnDtxbVZweQevX+9bK0u4uy9lZbhzqGNsGW3CB7ItGcCX2mqru6UasO+MZUFueSqQ/

Wvg00Q4EK1am1dRSB/0dzNQ3aYGmCgYdVCJZUDqU5cGUNZjBYdeNxZ4BVBCthWkwHvxAQIXkJVj

I2E3Mi5OXE/0G0Xa77QpMY33k6r5OBHQnluiFWr2UMQmkO1o2y0NLcLQupWSk8MBhgzrmeEJt3o

PdjTDW8kKJVByoA82bxTSz03jdi//g==

X-Google-Smtp-Source: AGHT+IH2nQujbYgKTVd6u036VBbs8mTOmOG1hzIr6rI5HGhByxDR/SwortJPgGisZEymlch7OtG3hHxUL9pZJIoRkkk=

X-Received: by 2002:a17:90b:49:b0:343:d70e:bef0 with SMTP id

98e67ed59e1d1-34e921af81dmr6536257a91.21.1766315029866; Sun, 21 Dec 2025

03:03:49 -0800 (PST)

MIME-Version: 1.0

Reply-To: perryburlesson@gmail.com

From: "Sgt. Perry Burlesson" <48020076@pracharath.ac.th>

Date: Sun, 21 Dec 2025 12:03:38 +0100

X-Gm-Features: AQt7F2pW1epkkbTecNv2J2Lj0FAPI1KVvLy4cheL2grVo2ProzUP1_YlhULvmMU

Message-ID:

Subject: Re: Business proposal.

To: undisclosed-recipients:;

Content-Type: multipart/alternative; boundary="000000000000eabc36064674438d"

Bcc: root@nl2k.ab.ca

X-Spam_score: 16.1

X-Spam_score_int: 161

X-Spam_bar: ++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: -- Hello. My name is Sergeant Perry Burleson. I am a veteran

and currently serving in the military in Ukraine, participating in the war

on terrorism, humanitarian aid, and reconstruction efforts. I served in th

[...]



Content analysis details: (16.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.216.68 listed in dnsbl.ahbl.org]

[209.85.216.68 listed in dnsbl.ahbl.org]

[209.85.216.68 listed in dnsbl.ahbl.org]

[209.85.216.68 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.216.68 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.216.68 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.216.68 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.216.68 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

[209.85.216.68 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.216.68 listed in list.dnswl.org]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.216.68 listed in sa-trusted.bondedsender.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.216.68 listed in sa-accredit.habeas.com]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[209.85.216.68 listed in wl.mailspike.net]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[209.85.216.68 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[209.85.216.68 listed in bl.score.senderscore.com]

-0.0 SPF_PASS SPF: sender matches SPF record

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

1.5 GR_DOMAIN_UNDISC1 To contains undisclosed recipient (undisc)

2.5 MILLION_USD BODY: Talks about millions of dollars

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 LOTS_OF_MONEY Huge... sums of money

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

0.9 MONEY_FREEMAIL_REPTO Lots of money from someone using free email?

1.0 XFER_LOTSA_MONEY Transfer a lot of money

2.9 UNDISC_MONEY Undisclosed recipients + money/fraud signs

3.6 ADVANCE_FEE_3_NEW_MONEY Advance Fee fraud and lots of money

Subject: {SPAM?} Re: Business proposal.

--_000_7b866762ba6747f2ad28d5d4a3402d45almasriaairlinesorg_

Content-Type: text/plain; charset="us-ascii"

Content-Transfer-Encoding: quoted-printable



The management team of AICHI CORPORATION, a Japanese company, is expanding =

its operations into the North American market. As such, we would like to en=

gage your services as an individual or a business entity to act as our comp=

any's independent representative in your area.



This part-time role offers competitive salary/commissions and this job won'=

t interfere with your current commitments.



If you're interested in learning more, please contact Mr. Satoshi Ishii, Ma=

naging Officer Via email: satoshi@aichi-corp-us.com
rp-us.com>





Kind regards,

Karim Gafy

Independent Recruiter



--_000_7b866762ba6747f2ad28d5d4a3402d45almasriaairlinesorg_

Content-Type: text/html; charset="us-ascii"

Content-Transfer-Encoding: quoted-printable




osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =

xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=

//www.w3.org/TR/REC-html40">




>








break-word">

The management team of AICHI CORPORATION, a Japanese=

company, is expanding its operations into the North American market. As su=

ch, we would like to engage your services as an individual or a business en=

tity to act as our company's independent

representative in your area.

 

This part-time role offers competitive salary/commis=

sions and this job won’t interfere with your current commitments.
>

 

If you’re interested in learning more, please =

contact Mr. Satoshi Ishii, Managing Officer Via email:

satoshi@aichi-corp-us.com<=

o:p>

 

 

Kind regards,

Karim Gafy

Independent Recruiter

--_000_7b866762ba6747f2ad28d5d4a3402d45almasriaairlinesorg_--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 20 Dec 2025 20:41:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vXAJU-000000009De-2oqG

for dave@doctor.nl2k.ab.ca;

Sat, 20 Dec 2025 20:40:56 -0700

Resent-From: The Doctor

Resent-Date: Sat, 20 Dec 2025 20:40:56 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from [41.33.249.227] (port=58030 helo=mail.almasriaairlines.org)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vX7qQ-00000000Niq-3Y1x

for sales@nk.ca;

Sat, 20 Dec 2025 18:02:55 -0700

DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;

d=almasriaairlines.org; s=mail; h=MIME-Version:Content-Type:Reply-To:

Message-ID:Date:Subject:From:Sender:To:Cc:Content-Transfer-Encoding:

Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender:

Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id:

List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;

bh=KqzEo/HohHVlEPium2iBLNxRJ9jschzdr3rhoffUOvw=; b=MrKLfihmeBKLytdaD0SuUFpg+z

X6ljtoHkde+FFjnQB7CC/Ta/ZjtnygLA+zzULDWaOXj9ReGDRO3z1M7FuDbfrbe8+W9deSQSADG0p

teFRYyBDe/wJs3L2ZCejQ8ESUFldirQIcR+1OFP3eQDOPsA7+MvoOnxCH2O3Uudhp94CefMkvH2C7

7aDm+AGO8pd93b7KSHEbozD8zRFjtEIMYt3ues/3xCp3Z8CytJz1lDYcp8JTTzeaDzdAEFpxQfSp3

9mm/h9SzrTkvS2SHbHKJT2xg0LIwHr0/Qstwx8is0ylFGeqT29LtbA3DNTUIQNQNxG3TY/DqEtVR/

76uMhyDw==;

Received: from [192.168.210.103] (port=38339 helo=MBX.almasriaairlines.org)

by mail.almasriaairlines.org with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2)

(envelope-from )

id 1vX3oJ-000000008KJ-260C

for sales@nk.ca;

Sat, 20 Dec 2025 22:44:19 +0200

Received: from MBX.almasriaairlines.org (192.168.210.103) by

MBX.almasriaairlines.org (192.168.210.103) with Microsoft SMTP Server

(version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id

15.2.1544.4; Sat, 20 Dec 2025 19:38:18 +0200

Received: from MBX.almasriaairlines.org ([fe80::493a:2d1e:c1c4:b5e4]) by

MBX.almasriaairlines.org ([fe80::493a:2d1e:c1c4:b5e4%8]) with mapi id

15.02.1544.004; Sat, 20 Dec 2025 19:38:18 +0200

From: karim gafy

Subject: Service Inquiry

Thread-Topic: Service Inquiry

Thread-Index: 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

Date: Sat, 20 Dec 2025 17:38:18 +0000

Message-ID: <7b866762ba6747f2ad28d5d4a3402d45@almasriaairlines.org>

Reply-To: "satoshi@aichi-corp-us.com"

Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

x-originating-ip: [192.168.210.1]

Content-Type: multipart/alternative;

boundary="_000_7b866762ba6747f2ad28d5d4a3402d45almasriaairlinesorg_"

MIME-Version: 1.0

X-Sophos-OBS: success

X-SASI-Version: Antispam-Engine: 6.0.1, AntispamData: 2025.12.20.195719

X-SASI-RCODE: 200

X-SASI-SpamProbability: 82%

X-SASI-Hits: BODYTEXTH_SIZE_10000_LESS 0.000000,

BODYTEXTP_SIZE_3000_LESS 0.000000, BODY_SIZE_3000_3999 0.000000,

BODY_SIZE_5000_LESS 0.000000, BODY_SIZE_7000_LESS 0.000000,

MISSING_HEADERS 0.000000, NO_FUR_HEADER 0.000000, OUTBOUND 0.000000,

OUTBOUND_SOPHOS 0.000000, REPLYTO_FROM_DIFF_ADDY 0.100000,

SENDER_NO_AUTH 0.000000, TO_MALFORMED 0.000000,

URI_CLASS_ABS_DOMAIN 8.000000, WEBMAIL_SOURCE 0.000000,

WEBMAIL_XOIP 0.000000, WEBMAIL_X_IP_HDR 0.000000, __CT 0.000000,

__CTYPE_HAS_BOUNDARY 0.000000, __CTYPE_MULTIPART 0.000000,

__CTYPE_MULTIPART_ALT 0.000000, __HAS_FROM 0.000000, __HAS_MSGID 0.000000,

__HAS_REPLYTO 0.000000, __HAS_XOIP 0.000000, __MIME_TEXT_H1 0.000000,

__MIME_TEXT_P1 0.000000, __MIME_VERSION 0.000000, __MSGID_32HEX 0.000000,

__NAME_IN_SUBJ 0.000000, __OUTBOUND_SOPHOS_FUR 0.000000,

__OUTBOUND_SOPHOS_FUR_IP 0.000000, __RCVD_FROM_DOMAIN 0.000000,

__SANE_MSGID 0.000000, __SUBJ_ALPHA_END 0.000000, __SUBJ_SHORT 0.000000,

__URI_CLASS_ANY 0.000000

X-Spam_score: 9.4

X-Spam_score_int: 94

X-Spam_bar: +++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: The management team of AICHI CORPORATION, a Japanese company,

is expanding its operations into the North American market. As such, we would

like to engage your services as an individual or a business [...]



Content analysis details: (9.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[41.33.249.227 listed in dnsbl.ahbl.org]

[41.33.249.227 listed in dnsbl.ahbl.org]

[41.33.249.227 listed in dnsbl.ahbl.org]

[41.33.249.227 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[41.33.249.227 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[41.33.249.227 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[41.33.249.227 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[41.33.249.227 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

[41.33.249.227 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

1.2 MISSING_HEADERS Missing To: header

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.3 RDNS_NONE Delivered to internal network by a host with no rDNS

1.9 REPLYTO_WITHOUT_TO_CC No description available.

Subject: {SPAM?} Service Inquiry

--_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable



Hi,

How are you?

I found some mistakes on your website. Would you be interested in seeing ph=

otos of those errors?

Your website may appear on Google's (or Yahoo's) first page.

If you are interested in the service then reply to this mail, we will send =

you the complete SEO offer and price list.

Thanks & Regards!

Ava Smith



--_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable








1">



























--_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 20 Dec 2025 13:36:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vX3fc-00000000Pjc-2N87

for dave@doctor.nl2k.ab.ca;

Sat, 20 Dec 2025 13:35:20 -0700

Resent-From: The Doctor

Resent-Date: Sat, 20 Dec 2025 13:35:20 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mailm.hallym.ac.kr ([210.115.225.25]:55533 helo=hallym.ac.kr)

by doctor.nl2k.ab.ca with esmtp (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vX1Qc-00000000CZP-496p

for sales@nk.ca;

Sat, 20 Dec 2025 11:11:52 -0700

Received: from [145.239.188.123]([145.239.188.123]) by hallym.ac.kr with SMTP id 2512210247391CAD6#856F5957B; Sun, 21 Dec 2025 02:47:39 +0900

Content-Type: multipart/alternative; boundary="===============1195697806=="

MIME-Version: 1.0

Subject: RE: Payment !!

To: sales@nk.ca

From: "Dr. Elisabeth FURTWAENGLER"

Date: Sat, 20 Dec 2025 09:47:38 -0800

Reply-To: dr.elisabethfurtwaengler@gmail.com, lao@bbvaes.com

X-Spam_score: 8.4

X-Spam_score_int: 84

X-Spam_bar: ++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hello, did you receive my email? I want to make a donation

to support your work, and to finance an average scale humanitarian project/s

in your country under your supervision. Please email me back wit [...]



Content analysis details: (8.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

0.1 MISSING_MID Missing Message-Id: header

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[210.115.225.25 listed in dnsbl.ahbl.org]

[210.115.225.25 listed in dnsbl.ahbl.org]

[210.115.225.25 listed in dnsbl.ahbl.org]

[210.115.225.25 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[210.115.225.25 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[210.115.225.25 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[210.115.225.25 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[210.115.225.25 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

[210.115.225.25 listed in will-spam-for-food.eu.org]

-0.0 SPF_HELO_PASS SPF: HELO matches SPF record

-0.0 SPF_PASS SPF: sender matches SPF record

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 T_HK_NAME_DR No description available.

0.0 NO_RDNS2 Sending MTA has no reverse DNS

0.8 SARE_FROM_SPAM_WORD3 I don't know people named this!

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

Subject: {SPAM?} RE: Payment !!



You will not see this in a MIME-aware mail reader.

--===============1195697806==

Content-Type: text/plain; charset="iso-8859-1"

MIME-Version: 1.0

Content-Transfer-Encoding: quoted-printable

Content-Description: Mail message body



Hello, did you receive my email?

I want to make a donation to support your work, and to finance an average =

scale humanitarian project/s in your country under your supervision.

Please email me back with your full name and address, including a WhatsApp=

phone number for easier communication.

Sincerely,

----------------------------------

Dr. Elisabeth FURTWAENGLER, PhD.

Munich, Germany



--===============1195697806==

Content-Type: text/html; charset="iso-8859-1"

MIME-Version: 1.0

Content-Transfer-Encoding: quoted-printable

Content-Description: Mail message body




=3Diso-8859-1"/>

Hello, did you r=

eceive my email?

I want to make a donation to support your wor=

k, and to finance an average scale humanitarian project/s in your country u=

nder your supervision.

Please email me back with your full name and =

address, including a WhatsApp phone number for easier communication.=

Sincerely,
-------------------------------=

---
Dr. Elisabeth FURTWAENGLER, PhD.
Munich, Germany

>

--===============1195697806==--

.

--_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable



Hi,

How are you?

I found some mistakes on your website. Would you be interested in seeing ph=

otos of those errors?

Your website may appear on Google's (or Yahoo's) first page.

If you are interested in the service then reply to this mail, we will send =

you the complete SEO offer and price list.

Thanks & Regards!

Ava Smith



--_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable








1">



























--_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@nk.ca

Delivery-date: Sat, 20 Dec 2025 05:41:00 -0700

Received: from mail-japanwestazolkn19012052.outbound.protection.outlook.com ([52.103.66.52]:47806 helo=OS8PR02CU002.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vWwFV-000000001ip-1xG3

for dave@nk.ca;

Sat, 20 Dec 2025 05:40:04 -0700

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=fLPkmpHOysadHXkEafiX4koGWUH42qttTgy3TZbBNZI2iuzcAMGgPZfu2IjFuP8KANCu5DbCOyjdq5FvmB9pSGMcQh3rjbUSDGs26RvojIZqjJ3MKJ53JJkmjP4N7WlXg/bJ86uyNDgWeKAuE9rZUgkHvyWfcsdHDvY/WGYZHMgWtcxu4ExzsW1kESnFOlgkvXw8+NSPseCCqmO3RgIMOfuwVQDSTi/Qb+leixtYNRoBrHOqcyMuZqYfBgggVtuMBGX0CA8iLkVtMp9Im8ycCPnWSdHPwsvpjG5NY+Gsf+I5+kQ4dJUKdjdZLAEnX50062dFVml5QK3FwLH4YMSeww==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=P4WNPlaJggXnXw/BXO/R8SBOx2KCC/RVr8DXQtdZYaA=;

b=PKUDi6VeBjLYVrXrL0uE+738hTw/3AP+m7+u/YG5cq801BSTBKfj8P9dBes5XuKr4FcVqBiNRQqFm6t6yy8I3IGaeyCnB0RJ/e/kQBcaARcXVmJfqW5/heP7nFqNl+CrxPyKbOYPhvk8D9NaOCrpxal5uoO1W6+gePtAQbWvIQTrGdztcXkLPtrqFJCRl03n4+WbpzwrqYMNDmwOHcSQ382aev4WTGx3fm9/wZGznvG0t3AQkFfRfzB05keVOdc0IA4GQcOVZVd5y3ftu+DRWXNJfT7ak6EW3uDZPNFXIS0YUEag6DGcAzxUEQhjkUHAK4j+twFY578e12EtVk82kw==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=P4WNPlaJggXnXw/BXO/R8SBOx2KCC/RVr8DXQtdZYaA=;

b=BuvrX0UrXGJEMsqdM3bl0Nh/bCuxMhe6wbLQ8NJCHktFUjwkfntkVuaXbMcvcNIKHjcjqgXKYVn+g02LTGG5vGuz5mPcyj/Nw2/dD5lTuxVXu4AKFJmqG3Xc/ehGcGLQTmFTtHtU1MLl0730FTJCrKv08R1rOKl5b9BhlxWYt5yAH6zIfMSJWZfZECR/mswJ4wEZuDsBnxdy5lYO3u/LOO1gL+WMLhk3QEthhMP2oKFQ6Ae8TKDRiDzFoZWrRFG5xMuINwi48r8hgsf+42qEMLY99vLDo+Fotl4tpt6QrCOq9ohpXxSaQCzMK6O3dbL+C/0RGcypu6MjqpLfvYOK3A==

Received: from SEYPR04MB5715.apcprd04.prod.outlook.com (2603:1096:101:8a::7)

by SEZPR04MB7531.apcprd04.prod.outlook.com (2603:1096:101:1f4::11) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9434.10; Sat, 20 Dec

2025 12:38:24 +0000

Received: from SEYPR04MB5715.apcprd04.prod.outlook.com

([fe80::b5a3:eb5f:17a1:a79]) by SEYPR04MB5715.apcprd04.prod.outlook.com

([fe80::b5a3:eb5f:17a1:a79%7]) with mapi id 15.20.9434.009; Sat, 20 Dec 2025

12:38:23 +0000

From: Ava Smith

To: Ava Smith

Subject: Re: Photos of those errors.?

Thread-Topic: Photos of those errors.?

Thread-Index: AQHcca2FIrQ6jO2fM0uKvbCK5EDbvA==

Date: Sat, 20 Dec 2025 12:38:19 +0000

Message-ID:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: SEYPR04MB5715:EE_|SEZPR04MB7531:EE_

x-ms-office365-filtering-correlation-id: d16b7cfa-aa95-4293-ba3a-08de3fc4a7e6

x-microsoft-antispam:

BCL:0;ARA:14566002|8060799015|8062599012|39105399006|19110799012|15080799012|6040799012|461199028|15030799006|31061999003|56899033|19061999003|41105399003|39145399003|40105399003|3412199025|440099028|102099032|12091999003|1710799026;

x-microsoft-antispam-message-info:

=?iso-8859-1?Q?mBXTFQ7gbIq68iQkHfcX5WxGzBTwAxJex4z2PFWnB3VHD5S5jKOpJBvVZ7?=

=?iso-8859-1?Q?716WWkefg1GvzzLdmhQMvUqIcPlSl73LHn/YXWu5z2KbshYMIKOAn1jQ2u?=

=?iso-8859-1?Q?3Yj70bR2lQSh1R+huTYBXpz6doseQoavBAYMh1+Bfmmc5P8NINqIeTLblr?=

=?iso-8859-1?Q?MqmPwQedEwU/FWhee4lSgK+CvU6RHy25SbGavTqX4s6RLAF2bjY+72loIU?=

=?iso-8859-1?Q?mXiQPZJy4LEfl+y/RDusEL+gIf+4l52vLWEQZdY8dpG+QytuzEeZQk9/gx?=

=?iso-8859-1?Q?H8hv9+PXuHCRUuH7IG3cQr29mvtTY4rH4hXOdaqMlgU1JjpRCD2l1q5Jl8?=

=?iso-8859-1?Q?6so1i08fN4vC3L0N+/1+rKasUz/iUTXh8P22teZS0a/9W155vfR6BVHLqz?=

=?iso-8859-1?Q?u/9qjiFnfRPh/EGUYmxeGKRysP/oyJ5vN/iqf/4AB3soU5wjgoJhoJqqct?=

=?iso-8859-1?Q?iShCZeIJud+q5Q7+2FVYYHVPaf0snD74PNtvvzK8tibdk/JED5CV08HOJn?=

=?iso-8859-1?Q?D0sl963K4fhvmrhZAwfIF1DS0sPnBkMAaLTZ+bVYi+R+ooTy+hbIfUhvxY?=

=?iso-8859-1?Q?IHcXykiL/alJfnXhfAvvDiJcYz5ckSaFgNrhOpSTOnU8P6P0ByY2+Xwzye?=

=?iso-8859-1?Q?aeB4tAru94nacSwNYlE6kMrBr9PL6UmbJzpI068rvR8as6jKm8bteOY9PX?=

=?iso-8859-1?Q?1QjeMBkT6QWUtOG5SyFl2zZkj8okSyoy5MFjFPqtDMT0L8lsTTG80EMmpj?=

=?iso-8859-1?Q?tQuSzjJCNslq0B6ugh+cCHy0jnJvkH4lA25/PFxmbfskqBicp6wRU78DLU?=

=?iso-8859-1?Q?hDqq3t79q7eRi+bJX71Z1x6sLFu9oH9Lg5YpEhr7zs+fEK+DpCu0+MQ2iE?=

=?iso-8859-1?Q?IAndDdsaFhQpS2KMtc2qYpj1khpFkGkzvK3zopN4EfIifDGFXX6sSP2rLs?=

=?iso-8859-1?Q?tv4iHyYR7HC5MQAlwhL7yDluSezkVEwewvlSyVgo8n69cSGZNaPcLNw5jG?=

=?iso-8859-1?Q?/oDpvXioo7EatNZdJ1i5mhSpv8Q0eA4icl9lIGR5s29uMcw2fDKb8Z1Mqo?=

=?iso-8859-1?Q?UpiL+wMAbCltW8TKiYkQ1z+0uzuDee2IZNf8pj/eBGwJjwPyLMCWVpnRNJ?=

=?iso-8859-1?Q?vgwt+rH9g3p66XZV9D1JDzWc8cqUPcNYGhmHFAxrp1breNmO6XsVoXb15L?=

=?iso-8859-1?Q?ieugrnmmSU11N+IyhPpBc/0/4kis5GeeqmtYnPetU9wSsX53kMhpo0k4Fd?=

=?iso-8859-1?Q?Xv34PnqV63AzdjNuYWGhtZuIiZFR1jeu6WjJz9/kIaxGLP7eD54DIpDu6F?=

=?iso-8859-1?Q?d/6OOaOqZGdViu3cDuIZLe/KAOsilhwRu/D7PJZNrx5LCZGmFo0c1kKvnY?=

=?iso-8859-1?Q?lwC3250TIAIwkd0x/hEzMhimNywiBdl9VcXsQJrJPc4BWVf1QrEyi8ZSv6?=

=?iso-8859-1?Q?mO6DWEx2aAm50rU4?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?iso-8859-1?Q?YZKdybPu38C57EuqQ3z/4E/iIw6sMwA8q55X8w2FfgApssaWK85dnYHTZu?=

=?iso-8859-1?Q?uD3NmDJvvhr+a9jnS6z1KHDpDxm877lyZypdfgP5LPsdM35hZlDjiCt5WO?=

=?iso-8859-1?Q?vODyL30pVfIVpOfAUJochVA5A1FsfLk6BTyeek44N1hDd7NucmOnPlDzia?=

=?iso-8859-1?Q?ZYcxehVQgIyy1I+EBXLnqExTYMN0xCb0r6fdgN3IC4sEdlQzOGkz6wgC6x?=

=?iso-8859-1?Q?T2z/Wsm4WPt5Q4k9kji8n/+JztTeqkpfqHS4WMoP/J0dvR9P1CwXt9ABpi?=

=?iso-8859-1?Q?Y6I09V3G0G+yGsrCZYKVb5cYsO1G8wdbGfJpmD3Qo7o1QO/py9qUToOEDp?=

=?iso-8859-1?Q?l3gslgSa8lbVQML9GNMcAk2UalphoSfSRQElQeeXBOepZXPcnr5fBk5qi4?=

=?iso-8859-1?Q?tDmLDPViV9acjbwGOdvTsR9syR7WHmZeolbMx0pSyyCdar3Js29tFUK/sK?=

=?iso-8859-1?Q?A+x6AOAWYMB8Ol7/a64qUgj+R2q1t+uNXytpc3UyIv3RpLmaqSfWLb/flo?=

=?iso-8859-1?Q?pdDArKATg3suGk/ZZ6GIDp9do9a4WeAkUbDts5jH+GARn61yKImIRU6sVF?=

=?iso-8859-1?Q?1U8h/uto84UR643w0pA4EPT+unjA5v7DYs2Yi0WPnCukwei7W/o+irZ8dn?=

=?iso-8859-1?Q?+MPoHZ3Sb/M5HwqDKfQ8dnlzAZWlR9rK7OdaTWbGAYq22i5emsGZ2PAdZo?=

=?iso-8859-1?Q?qKtOzlUGBo16AofMNosHQsKuJSY2rfxBtsKfMWobX2nvmBkp1vI14lTsYb?=

=?iso-8859-1?Q?L82yp1TLUaorMfgdEwfvrWSAk8kHFshsrqVdXTpwZuWG3f3q58umakaIYd?=

=?iso-8859-1?Q?9sW+3sALYSNfM10lBAIfdwipYDeYitIXrmP4Sf6k5V9f5KlIht8QtY2OOo?=

=?iso-8859-1?Q?PHtf4HXK1PfH9cJ6GCzkm5jQyCmEy2+JC7q57qnktH2qd/a4CcUAp43jw5?=

=?iso-8859-1?Q?5Y+u9Mh1GyLnP+6YX1rltkYHz5WVeL/L4INxdV9XUP+3JCCi7mPPlPbpkb?=

=?iso-8859-1?Q?bUU27BbsarPuPyCafeYeZYDoCQsgDJfZ0L7Jpl8WWIma7BTxzrbPxmpz5g?=

=?iso-8859-1?Q?uA04hW5tCF1UCltXZuIdm9V85z74EFKCid3aY9D4t1w9HZO9youas0fzeT?=

=?iso-8859-1?Q?q340SCrwxAYJRWRIwI6iNrPc4FLE3Z8L024oqLw15dLLIKYIt4gn8E4pZo?=

=?iso-8859-1?Q?ZoplfLRHiGEmYn290EZnAzTqlgOUGc/jTzOLk4UPMe13QfhO5ZZ1JhqyXG?=

=?iso-8859-1?Q?IAD+IYSAT+N+yFBXSv3s0m6fR6kWv0NXeoiBn1VUX4lkDDsbU55Ky6PMT3?=

=?iso-8859-1?Q?rrVIgx+F7soQbyk/faG4Hocj+tECWngJVq6NdzPoK2/3eZS96ItM+M369q?=

=?iso-8859-1?Q?1o/usjPXFNVdhcG+1rOrhw/n6V4VGS0iD9cVmjSgag4dNAHrD+29mMBjQv?=

=?iso-8859-1?Q?sCO+jUzSVBRv8UU0s/dbD15EA0RQ3Ns+9fZmw+AEVjFuy9usGqStJZVjbI?=

=?iso-8859-1?Q?26vqW8k68RfBk6MLl/mYXI?=

Content-Type: multipart/alternative;

boundary="_000_SEYPR04MB571535368771B97E4D49F5A8ABB6ASEYPR04MB5715apcp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: SEYPR04MB5715.apcprd04.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: d16b7cfa-aa95-4293-ba3a-08de3fc4a7e6

X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Dec 2025 12:38:19.5978

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: SEZPR04MB7531

dGlvbi10aGlja25lc3M6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlhbDsg

dGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsIj48Rk9OVCANCnN0eWxlPSJGT05ULVNJWkU6

IDE2cHg7IExJTkUtSEVJR0hUOiAxLjYiIA0KZmFjZT0iVGltZXMgTmV3IFJvbWFuIj5XZWNoYXQ6

Q3VycnlzaGlwcGluZzEyMTI8L0ZPTlQ+PC9ESVY+DQo8RElWIA0Kc3R5bGU9IkZPTlQtU0laRTog

MTRweDsgRk9OVC1GQU1JTFk6IEhlbHZldGljYSwgSGVsdmV0aWNhLCDlvq7ova/pm4Xpu5EsIOWu

i+S9kzsgV0hJVEUtU1BBQ0U6IG5vcm1hbDsgV09SRC1TUEFDSU5HOiAwcHg7IFRFWFQtVFJBTlNG

T1JNOiBub25lOyBGT05ULVdFSUdIVDogNDAwOyBDT0xPUjogcmdiKDAsMCwwKTsgRk9OVC1TVFlM

RTogbm9ybWFsOyBPUlBIQU5TOiAyOyBXSURPV1M6IDI7IExFVFRFUi1TUEFDSU5HOiBub3JtYWw7

IEJBQ0tHUk9VTkQtQ09MT1I6IHJnYigyNTUsMjU1LDI1NSk7IFRFWFQtSU5ERU5UOiAwcHg7IGZv

bnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsg

LXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb24tdGhpY2tuZXNz

OiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlv

bi1jb2xvcjogaW5pdGlhbCI+PEZPTlQgDQpzdHlsZT0iRk9OVC1TSVpFOiAxNnB4OyBMSU5FLUhF

SUdIVDogMS42IiANCmZhY2U9IlRpbWVzIE5ldyBSb21hbiI+VGVsOis4Ni0wNzYwODg4ODc2MTA8

L0ZPTlQ+PC9ESVY+DQo8RElWIA0Kc3R5bGU9IkZPTlQtU0laRTogMTRweDsgRk9OVC1GQU1JTFk6

IEhlbHZldGljYSwgSGVsdmV0aWNhLCDlvq7ova/pm4Xpu5EsIOWui+S9kzsgV0hJVEUtU1BBQ0U6

IG5vcm1hbDsgV09SRC1TUEFDSU5HOiAwcHg7IFRFWFQtVFJBTlNGT1JNOiBub25lOyBGT05ULVdF

SUdIVDogNDAwOyBDT0xPUjogcmdiKDAsMCwwKTsgRk9OVC1TVFlMRTogbm9ybWFsOyBPUlBIQU5T

OiAyOyBXSURPV1M6IDI7IExFVFRFUi1TUEFDSU5HOiBub3JtYWw7IEJBQ0tHUk9VTkQtQ09MT1I6

IHJnYigyNTUsMjU1LDI1NSk7IFRFWFQtSU5ERU5UOiAwcHg7IGZvbnQtdmFyaWFudC1saWdhdHVy

ZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgLXdlYmtpdC10ZXh0LXN0cm9r

ZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb24tdGhpY2tuZXNzOiBpbml0aWFsOyB0ZXh0LWRl

Y29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlhbCI+

PEZPTlQgDQpzdHlsZT0iRk9OVC1TSVpFOiAxNnB4OyBMSU5FLUhFSUdIVDogMS42IiANCmZhY2U9

IlRpbWVzIE5ldyBSb21hbiI+RW1haWw6Q3VycnlAdmFud2VsbGluZy5uZXQ8L0ZPTlQ+PC9ESVY+

DQo8RElWIA0Kc3R5bGU9IkZPTlQtU0laRTogMTRweDsgRk9OVC1GQU1JTFk6IEhlbHZldGljYSwg

SGVsdmV0aWNhLCDlvq7ova/pm4Xpu5EsIOWui+S9kzsgV0hJVEUtU1BBQ0U6IG5vcm1hbDsgV09S

RC1TUEFDSU5HOiAwcHg7IFRFWFQtVFJBTlNGT1JNOiBub25lOyBGT05ULVdFSUdIVDogNDAwOyBD

T0xPUjogcmdiKDAsMCwwKTsgRk9OVC1TVFlMRTogbm9ybWFsOyBPUlBIQU5TOiAyOyBXSURPV1M6

IDI7IExFVFRFUi1TUEFDSU5HOiBub3JtYWw7IEJBQ0tHUk9VTkQtQ09MT1I6IHJnYigyNTUsMjU1

LDI1NSk7IFRFWFQtSU5ERU5UOiAwcHg7IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6IG5vcm1hbDsg

Zm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13aWR0aDogMHB4

OyB0ZXh0LWRlY29yYXRpb24tdGhpY2tuZXNzOiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tc3R5

bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlhbCI+PEZPTlQgDQpzdHls

ZT0iRk9OVC1TSVpFOiAxNnB4OyBMSU5FLUhFSUdIVDogMS42IiANCmZhY2U9IlRpbWVzIE5ldyBS

b21hbiI+TW9wL1doYXRzYXBwOis4Ni0xNTgxOTI1NTI1NTwvRk9OVD48L0RJVj4NCjxESVYgDQpz

dHlsZT0iRk9OVC1TSVpFOiAxNHB4OyBGT05ULUZBTUlMWTogSGVsdmV0aWNhLCBIZWx2ZXRpY2Es

IOW+rui9r+mbhem7kSwg5a6L5L2TOyBXSElURS1TUEFDRTogbm9ybWFsOyBXT1JELVNQQUNJTkc6

IDBweDsgVEVYVC1UUkFOU0ZPUk06IG5vbmU7IEZPTlQtV0VJR0hUOiA0MDA7IENPTE9SOiByZ2Io

MCwwLDApOyBGT05ULVNUWUxFOiBub3JtYWw7IE9SUEhBTlM6IDI7IFdJRE9XUzogMjsgTEVUVEVS

LVNQQUNJTkc6IG5vcm1hbDsgQkFDS0dST1VORC1DT0xPUjogcmdiKDI1NSwyNTUsMjU1KTsgVEVY

VC1JTkRFTlQ6IDBweDsgZm9udC12YXJpYW50LWxpZ2F0dXJlczogbm9ybWFsOyBmb250LXZhcmlh

bnQtY2Fwczogbm9ybWFsOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVj

b3JhdGlvbi10aGlja25lc3M6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1zdHlsZTogaW5pdGlh

bDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsIj4NCjxQIHN0eWxlPSJNQVJHSU46IDBw

eCAwY207IExJTkUtSEVJR0hUOiBub3JtYWwiPjxGT05UIA0Kc3R5bGU9IkZPTlQtU0laRTogMTZw

eDsgTElORS1IRUlHSFQ6IDEuNiIgZmFjZT0iVGltZXMgTmV3IFJvbWFuIj48U1BBTiANCmxhbmc9

RU4tVVM+TnZvY2MgTm8uOk1PQy1OVjA3OTEzPC9TUEFOPjxTUEFOIA0KbGFuZz1FTi1VUz48bzpw

PjwvbzpwPjwvU1BBTj48L0ZPTlQ+PC9QPg0KPFAgc3R5bGU9Ik1BUkdJTjogMHB4IDBjbTsgTElO

RS1IRUlHSFQ6IG5vcm1hbCI+PEZPTlQgc3R5bGU9IkxJTkUtSEVJR0hUOiAxLjYiIA0KZmFjZT0i

VGltZXMgTmV3IFJvbWFuIj48U1BBTiBsYW5nPUVOLVVTIA0Kc3R5bGU9IkZPTlQtU0laRTogMTZw

eCI+PC9TUEFOPjwvRk9OVD48L1A+DQo8UCBzdHlsZT0iTUFSR0lOOiAwcHggMGNtOyBMSU5FLUhF

SUdIVDogbm9ybWFsIj48Rk9OVCBzdHlsZT0iTElORS1IRUlHSFQ6IDEuNiIgDQpmYWNlPSJUaW1l

cyBOZXcgUm9tYW4iPjxTUEFOIGxhbmc9RU4tVVMgDQpzdHlsZT0iRk9OVC1TSVpFOiAxNnB4Ij48

L1NQQU4+PC9GT05UPjwvUD4NCjxQIHN0eWxlPSJNQVJHSU46IDBweCAwY207IExJTkUtSEVJR0hU

OiBub3JtYWwiPjxGT05UIA0Kc3R5bGU9IkZPTlQtU0laRTogMTZweDsgTElORS1IRUlHSFQ6IDEu

NiIgZmFjZT0iVGltZXMgTmV3IFJvbWFuIj5GTUMgDQpPcmdhbml6YXRpb24gTm8uOjAyOTU0Nzwv

Rk9OVD48L1A+PC9ESVY+DQo8RElWIA0Kc3R5bGU9IkZPTlQtU0laRTogMTRweDsgRk9OVC1GQU1J

TFk6IEhlbHZldGljYSwgSGVsdmV0aWNhLCDlvq7ova/pm4Xpu5EsIOWui+S9kzsgV0hJVEUtU1BB

Q0U6IG5vcm1hbDsgV09SRC1TUEFDSU5HOiAwcHg7IFRFWFQtVFJBTlNGT1JNOiBub25lOyBGT05U

LVdFSUdIVDogNDAwOyBDT0xPUjogcmdiKDAsMCwwKTsgRk9OVC1TVFlMRTogbm9ybWFsOyBPUlBI

QU5TOiAyOyBXSURPV1M6IDI7IExFVFRFUi1TUEFDSU5HOiBub3JtYWw7IEJBQ0tHUk9VTkQtQ09M

T1I6IHJnYigyNTUsMjU1LDI1NSk7IFRFWFQtSU5ERU5UOiAwcHg7IGZvbnQtdmFyaWFudC1saWdh

dHVyZXM6IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgLXdlYmtpdC10ZXh0LXN0

cm9rZS13aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb24tdGhpY2tuZXNzOiBpbml0aWFsOyB0ZXh0

LWRlY29yYXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlh

bCI+PEZPTlQgDQpzdHlsZT0iRk9OVC1TSVpFOiAxNnB4OyBMSU5FLUhFSUdIVDogMS42IiANCmZh

Y2U9IlRpbWVzIE5ldyBSb21hbiI+V2ViOnd3dy52YW53ZWxsaW5nLm5ldDwvRk9OVD48L0RJVj4N

CjxESVYgDQpzdHlsZT0iRk9OVC1TSVpFOiAxNHB4OyBGT05ULUZBTUlMWTogSGVsdmV0aWNhLCBI

ZWx2ZXRpY2EsIOW+rui9r+mbhem7kSwg5a6L5L2TOyBXSElURS1TUEFDRTogbm9ybWFsOyBXT1JE

LVNQQUNJTkc6IDBweDsgVEVYVC1UUkFOU0ZPUk06IG5vbmU7IEZPTlQtV0VJR0hUOiA0MDA7IENP

TE9SOiByZ2IoMCwwLDApOyBGT05ULVNUWUxFOiBub3JtYWw7IE9SUEhBTlM6IDI7IFdJRE9XUzog

MjsgTEVUVEVSLVNQQUNJTkc6IG5vcm1hbDsgQkFDS0dST1VORC1DT0xPUjogcmdiKDI1NSwyNTUs

MjU1KTsgVEVYVC1JTkRFTlQ6IDBweDsgZm9udC12YXJpYW50LWxpZ2F0dXJlczogbm9ybWFsOyBm

b250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7

IHRleHQtZGVjb3JhdGlvbi10aGlja25lc3M6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1zdHls

ZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsIj48SU1HIA0Kc3R5bGU9

IkhFSUdIVDogMTE2cHg7IFdJRFRIOiA0NDdweCIgDQpzcmM9ImZpbGU6Ly8vQzovVXNlcnMvQ3Vy

cnkvQXBwRGF0YS9Sb2FtaW5nL0ZveG1haWw3L1RlbXAtNjU4OC0yMDI1MDUwNjA5MzcyNC9BdHRh

Y2gvMjY0MzY5X0NhdGNoRTZCMygwNS0xNC0xMS01Mi0zNCkuanBnIiANCndpZHRoPTEzNDQgaGVp

Z2h0PTM4ND48L0ZPTlQ+PC9GT05UPjwvRElWPjwvQk9EWT48L0hUTUw+DQo=

PCFET0NUWVBFIEhUTUwgUFVCTElDICItLy9XM0MvL0RURCBIVE1MIDQuMCBUcmFuc2l0aW9uYWwv

L0VOIj4NCjxIVE1MIHhtbG5zOm8+PEhFQUQ+DQo8TUVUQSBjb250ZW50PSJ0ZXh0L2h0bWw7IGNo

YXJzZXQ9dXRmLTgiIGh0dHAtZXF1aXY9Q29udGVudC1UeXBlPg0KPE1FVEEgbmFtZT1HRU5FUkFU

T1IgY29udGVudD0iTVNIVE1MIDExLjAwLjEwNTcwLjEwMDEiPjwvSEVBRD4NCjxCT0RZIGJnQ29s

b3I9d2hpdGU+DQo8UCBhbGlnbj1sZWZ0PjxGT05UIHN0eWxlPSJCQUNLR1JPVU5ELUNPTE9SOiB3

aGl0ZSIgY29sb3I9YmxhY2s+SGkgDQpkZWFyLDxCUj48QlI+R29vZCBkYXkhPEJSPlRoaXMgaXMg

Q3VycnkgZm9ybSBTaGVuemhlbiB2YW53ZWxsIGludGVybmF0aW9uYWwgDQpsb2dpc3RpY3MgY28u

bHRkIGZyb20gQ2hpbmEuPEJSPldlIGFyZSBleHBlcnRzIGluIGhhbmRsaW5nIGV4cG9ydCBzZWEg

DQpzaGlwbWVudChGQ0wvTENMKS9BaXIgc2hpcG1lbnQvV2FyZWhvdXNlL1RydWNraW5nL0N1c3Rv

bXMgY2xlYXJhbmNlIGFuZCANCmV0Yy48L0ZPTlQ+PEZPTlQgc3R5bGU9IkJBQ0tHUk9VTkQtQ09M

T1I6IHdoaXRlIiBjb2xvcj1ibGFjaz48QlI+PEJSPjxGT05UIA0Kc3R5bGU9IkJBQ0tHUk9VTkQt

Q09MT1I6IHdoaXRlIiBjb2xvcj1wdXJwbGU+PFNUUk9ORz5QbGVhc2UgY2hlY2sgdGhlIA0KbGF0

ZXN0LnF1b3RhdGlvbiBvZiBzb21lIHBvcnRzLjxCUj48L1NUUk9ORz48U1RST05HPlBPTDpOaW5n

Ym8vU2hhbmdoYWkvU2hlbnpoZW4gDQo8QlI+UE9EOkxvcyBBbmdlbGVzLENBPC9TVFJPTkc+PC9G

T05UPjwvRk9OVD48L1A+DQo8UCBhbGlnbj1sZWZ0PjxTVFJPTkc+PEZPTlQgY29sb3I9IzgwMDA4

MD48L0ZPTlQ+PC9TVFJPTkc+PEZPTlQgDQpzdHlsZT0iQkFDS0dST1VORC1DT0xPUjogd2hpdGUi

IGNvbG9yPWJsYWNrPk8vRjokMSwyMDAvMjBHUCBhbmQgJDEsNjAwLzQwSFEgDQo8QlI+PEJSPjxG

T05UIGNvbG9yPXB1cnBsZT48U1RST05HPlBPTDpOaW5nYm8vU2hhbmdoYWkgPEJSPlBPRDpOZXcg

DQpZb3JrPC9TVFJPTkc+PC9GT05UPjwvRk9OVD48L1A+Ty9GOiQxLDgwMC8yMEdQIGFuZCAkMiw0

MDAvNDBIUTxGT05UIA0Kc3R5bGU9IkJBQ0tHUk9VTkQtQ09MT1I6IHdoaXRlIiBjb2xvcj1ibGFj

az48Rk9OVCANCmNvbG9yPXB1cnBsZT48U1RST05HPjxCUj48QlI+PC9TVFJPTkc+PC9GT05UPjwv

Rk9OVD4NCjxQPjxGT05UIHN0eWxlPSJCQUNLR1JPVU5ELUNPTE9SOiB3aGl0ZSIgY29sb3I9Ymxh

Y2s+PEZPTlQgDQpjb2xvcj1wdXJwbGU+PFNUUk9ORz5UaGUgcmF0ZSB2YWxpZCB0byZuYnNwOzMx

c3QgDQpEZWMuPEJSPjwvU1RST05HPjwvRk9OVD48L0ZPTlQ+PEZPTlQgc3R5bGU9IkJBQ0tHUk9V

TkQtQ09MT1I6IHdoaXRlIiANCmNvbG9yPWJsYWNrPjxCUj48L1A+PC9GT05UPg0KPFA+PEZPTlQg

c3R5bGU9IkJBQ0tHUk9VTkQtQ09MT1I6IHdoaXRlIiBjb2xvcj1ibGFjaz5XZSBjYW4gYWxzbyBx

dW90ZSBzaGlwcGluZyANCnNlcnZpY2VzIGZyb20gcGxhY2VzIGxpa2UgVGFpd2FuL1RoYWlsYW5k

L1ZpZXRuYW0uLi4gdG8gdGhlJm5ic3A7VVNBIGFuZCBvdGhlciANCmNvdW50cmllcy4gPC9GT05U

PjwvUD4NCjxQPjxGT05UIHN0eWxlPSJCQUNLR1JPVU5ELUNPTE9SOiB3aGl0ZSIgY29sb3I9Ymxh

Y2s+PEZPTlQgDQpzdHlsZT0iQkFDS0dST1VORC1DT0xPUjogd2hpdGUiIGNvbG9yPWJsYWNrPklm

IHlvdSBuZWVkIHRoZSBxdW90YXRpb24gb2Ygb3RoZXIgDQpwb3J0cywgcGxlYXNlIGZlZWwgZnJl

ZSB0byBjb250YWN0IG1lLiANCjwvRk9OVD48QlI+VGhhbmtzfjxCUj48QlI+LS0tLS0tLS0tLS0t

LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS08L0ZPTlQ+PC9QPjxG

T05UIA0Kc3R5bGU9IkJBQ0tHUk9VTkQtQ09MT1I6IHdoaXRlIiBjb2xvcj1ibGFjaz48Rk9OVCAN

CnN0eWxlPSJGT05ULVNJWkU6IDE2cHg7IExJTkUtSEVJR0hUOiAxLjYiIGZhY2U9IlRpbWVzIE5l

dyBSb21hbiI+DQo8RElWIA0Kc3R5bGU9IkZPTlQtU0laRTogMTRweDsgRk9OVC1GQU1JTFk6IEhl

bHZldGljYSwgSGVsdmV0aWNhLCDlvq7ova/pm4Xpu5EsIOWui+S9kzsgV0hJVEUtU1BBQ0U6IG5v

cm1hbDsgV09SRC1TUEFDSU5HOiAwcHg7IFRFWFQtVFJBTlNGT1JNOiBub25lOyBGT05ULVdFSUdI

VDogNDAwOyBDT0xPUjogcmdiKDAsMCwwKTsgRk9OVC1TVFlMRTogbm9ybWFsOyBPUlBIQU5TOiAy

OyBXSURPV1M6IDI7IExFVFRFUi1TUEFDSU5HOiBub3JtYWw7IEJBQ0tHUk9VTkQtQ09MT1I6IHJn

YigyNTUsMjU1LDI1NSk7IFRFWFQtSU5ERU5UOiAwcHg7IGZvbnQtdmFyaWFudC1saWdhdHVyZXM6

IG5vcm1hbDsgZm9udC12YXJpYW50LWNhcHM6IG5vcm1hbDsgLXdlYmtpdC10ZXh0LXN0cm9rZS13

aWR0aDogMHB4OyB0ZXh0LWRlY29yYXRpb24tdGhpY2tuZXNzOiBpbml0aWFsOyB0ZXh0LWRlY29y

YXRpb24tc3R5bGU6IGluaXRpYWw7IHRleHQtZGVjb3JhdGlvbi1jb2xvcjogaW5pdGlhbCI+PEI+

PEZPTlQgDQpzdHlsZT0iRk9OVC1TSVpFOiAxNnB4OyBMSU5FLUhFSUdIVDogMS42IiBmYWNlPSJU

aW1lcyBOZXcgUm9tYW4iPlRoYW5rcyBhbmQgYmVzdCANCnJlZ2FyZHM8L0ZPTlQ+PC9CPjwvRElW

Pg0KPERJViANCnN0eWxlPSJGT05ULVNJWkU6IDE0cHg7IEZPTlQtRkFNSUxZOiBIZWx2ZXRpY2Es

IEhlbHZldGljYSwg5b6u6L2v6ZuF6buRLCDlrovkvZM7IFdISVRFLVNQQUNFOiBub3JtYWw7IFdP

UkQtU1BBQ0lORzogMHB4OyBURVhULVRSQU5TRk9STTogbm9uZTsgRk9OVC1XRUlHSFQ6IDQwMDsg

Q09MT1I6IHJnYigwLDAsMCk7IEZPTlQtU1RZTEU6IG5vcm1hbDsgT1JQSEFOUzogMjsgV0lET1dT

OiAyOyBMRVRURVItU1BBQ0lORzogbm9ybWFsOyBCQUNLR1JPVU5ELUNPTE9SOiByZ2IoMjU1LDI1

NSwyNTUpOyBURVhULUlOREVOVDogMHB4OyBmb250LXZhcmlhbnQtbGlnYXR1cmVzOiBub3JtYWw7

IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IC13ZWJraXQtdGV4dC1zdHJva2Utd2lkdGg6IDBw

eDsgdGV4dC1kZWNvcmF0aW9uLXRoaWNrbmVzczogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLXN0

eWxlOiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tY29sb3I6IGluaXRpYWwiPjxCPjxGT05UIA0K

c3R5bGU9IkZPTlQtU0laRTogMTZweDsgTElORS1IRUlHSFQ6IDEuNiIgDQpmYWNlPSJUaW1lcyBO

ZXcgUm9tYW4iPmN1cnJ577yIU2FsZXPvvIk8L0ZPTlQ+PC9CPjwvRElWPg0KPERJViANCnN0eWxl

PSJGT05ULVNJWkU6IDEwcHQ7IEZPTlQtRkFNSUxZOiB2ZXJkYW5hOyBXSElURS1TUEFDRTogbm9y

bWFsOyBXT1JELVNQQUNJTkc6IDBweDsgVEVYVC1UUkFOU0ZPUk06IG5vbmU7IEZPTlQtV0VJR0hU

OiA0MDA7IENPTE9SOiByZ2IoMCwwLDApOyBGT05ULVNUWUxFOiBub3JtYWw7IE9SUEhBTlM6IDI7

IFdJRE9XUzogMjsgTEVUVEVSLVNQQUNJTkc6IG5vcm1hbDsgQkFDS0dST1VORC1DT0xPUjogcmdi

KDI1NSwyNTUsMjU1KTsgVEVYVC1JTkRFTlQ6IDBweDsgZm9udC12YXJpYW50LWxpZ2F0dXJlczog

bm9ybWFsOyBmb250LXZhcmlhbnQtY2Fwczogbm9ybWFsOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdp

ZHRoOiAwcHg7IHRleHQtZGVjb3JhdGlvbi10aGlja25lc3M6IGluaXRpYWw7IHRleHQtZGVjb3Jh

dGlvbi1zdHlsZTogaW5pdGlhbDsgdGV4dC1kZWNvcmF0aW9uLWNvbG9yOiBpbml0aWFsIj48Qj48

QlI+PC9CPjwvRElWPg0KPERJViANCnN0eWxlPSJGT05ULVNJWkU6IDE0cHg7IEZPTlQtRkFNSUxZ

OiBIZWx2ZXRpY2EsIEhlbHZldGljYSwg5b6u6L2v6ZuF6buRLCDlrovkvZM7IFdISVRFLVNQQUNF

OiBub3JtYWw7IFdPUkQtU1BBQ0lORzogMHB4OyBURVhULVRSQU5TRk9STTogbm9uZTsgRk9OVC1X

RUlHSFQ6IDQwMDsgQ09MT1I6IHJnYigwLDAsMCk7IEZPTlQtU1RZTEU6IG5vcm1hbDsgT1JQSEFO

UzogMjsgV0lET1dTOiAyOyBMRVRURVItU1BBQ0lORzogbm9ybWFsOyBCQUNLR1JPVU5ELUNPTE9S

OiByZ2IoMjU1LDI1NSwyNTUpOyBURVhULUlOREVOVDogMHB4OyBmb250LXZhcmlhbnQtbGlnYXR1

cmVzOiBub3JtYWw7IGZvbnQtdmFyaWFudC1jYXBzOiBub3JtYWw7IC13ZWJraXQtdGV4dC1zdHJv

a2Utd2lkdGg6IDBweDsgdGV4dC1kZWNvcmF0aW9uLXRoaWNrbmVzczogaW5pdGlhbDsgdGV4dC1k

ZWNvcmF0aW9uLXN0eWxlOiBpbml0aWFsOyB0ZXh0LWRlY29yYXRpb24tY29sb3I6IGluaXRpYWwi

PjxGT05UIA0Kc3R5bGU9IkZPTlQtU0laRTogMTZweDsgTElORS1IRUlHSFQ6IDEuNiIgDQpmYWNl

PSJUaW1lcyBOZXcgUm9tYW4iPlFROjgyMzczNzk0MzwvRk9OVD48L0RJVj4NCjxESVYgDQpzdHls

ZT0iRk9OVC1TSVpFOiAxNHB4OyBGT05ULUZBTUlMWTogSGVsdmV0aWNhLCBIZWx2ZXRpY2EsIOW+

rui9r+mbhem7kSwg5a6L5L2TOyBXSElURS1TUEFDRTogbm9ybWFsOyBXT1JELVNQQUNJTkc6IDBw

eDsgVEVYVC1UUkFOU0ZPUk06IG5vbmU7IEZPTlQtV0VJR0hUOiA0MDA7IENPTE9SOiByZ2IoMCww

LDApOyBGT05ULVNUWUxFOiBub3JtYWw7IE9SUEhBTlM6IDI7IFdJRE9XUzogMjsgTEVUVEVSLVNQ

QUNJTkc6IG5vcm1hbDsgQkFDS0dST1VORC1DT0xPUjogcmdiKDI1NSwyNTUsMjU1KTsgVEVYVC1J

TkRFTlQ6IDBweDsgZm9udC12YXJpYW50LWxpZ2F0dXJlczogbm9ybWFsOyBmb250LXZhcmlhbnQt

Y2Fwczogbm9ybWFsOyAtd2Via2l0LXRleHQtc3Ryb2tlLXdpZHRoOiAwcHg7IHRleHQtZGVjb3Jh

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 20 Dec 2025 06:42:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vWxCz-00000000LV2-2ouW

for dave@doctor.nl2k.ab.ca;

Sat, 20 Dec 2025 06:41:21 -0700

Resent-From: The Doctor

Resent-Date: Sat, 20 Dec 2025 06:41:21 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from out197-69.us.a.dm.aliyun.com ([47.90.197.69]:28663)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vWqGo-000000000zn-0D5j

for doctor@nl2k.ab.ca;

Fri, 19 Dec 2025 23:17:04 -0700

X-AliDM-RcptTo: ZG9jdG9yQG5sMmsuYWIuY2E=

Feedback-ID: default:shipping@sales5.curryvanwelling.com:vip_edm_SmtpBatch:247866

DKIM-Signature:v=1; a=rsa-sha256; c=relaxed/relaxed;

d=sales5.curryvanwelling.com; s=aliyun-cn-hangzhou;

t=1766211312; h=Date:From:To:Subject:Message-ID:Mime-Version:Content-Type;

bh=yYlHh5uyU7EKdsEOCpHStMu3Rtts7X+3qB/rkHKhg44=;

b=OehPqksXo0OYf5yXwYZQtZEfm8pNCWysHbFNm9ds2sIovJtKEU3R3gibvycwKX9/BCdmtbVsjwqlNByBoSgbb5bH0r9yJdN9CPXOD23P48LhukdgqKe8Bua/Eny1R6pECO6mwoszPboEOEXX7r4DFyru/Tbm6elLWVTup/vL/zk=

Received: from yahoo2.com.cn(mailfrom:shipping@sales5.curryvanwelling.com fp:SMTPD_-VHcEuCl5k3 cluster:AY35D)

by smtpdm.aliyun.com(127.0.0.1);

Sat, 20 Dec 2025 14:15:09 +0800

X-EnvId: 600000259267263521

Reply-To:

Date: Sat, 20 Dec 2025 14:14:59 +0800

From: "Curry shipping"

To:

Subject: 00RE:40HQ/20GP CHINA TO USA/CAN shipping line

Message-ID: <20251220141509838828@sales5.curryvanwelling.com>

X-Priority: 1 (Highest)

X-mailer: Foxmail 6, 13, 102, 15 [cn]

Disposition-Notification-To: curryshipping@163.com

Mime-Version: 1.0

Content-Type: text/html;

charset="utf-8"

Content-Transfer-Encoding: base64

X-Spam_score: 14.8

X-Spam_score_int: 148

X-Spam_bar: ++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi dear, Good day! This is Curry form Shenzhen vanwell international

logistics co.ltd from China. We are experts in handling export sea shipment(FCL/LCL)/Air

shipment/Warehouse/Trucking/Customs clearance and e [...]



Content analysis details: (14.8 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[47.90.197.69 listed in dnsbl.ahbl.org]

[47.90.197.69 listed in dnsbl.ahbl.org]

[47.90.197.69 listed in dnsbl.ahbl.org]

[47.90.197.69 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[47.90.197.69 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[47.90.197.69 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[47.90.197.69 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[47.90.197.69 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

[47.90.197.69 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[47.90.197.69 listed in list.dnswl.org]

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[47.90.197.69 listed in wl.mailspike.net]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[47.90.197.69 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[47.90.197.69 listed in bl.score.senderscore.com]

0.9 SPF_FAIL SPF: sender does not match SPF record (fail)

[SPF failed: Rejected by SPF record.]

-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from

envelope-from domain

0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid

-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's

domain

0.6 J_CHICKENPOX_72 BODY: 7alpha-pock-2alpha

0.6 J_CHICKENPOX_23 BODY: 2alpha-pock-3alpha

0.6 J_CHICKENPOX_33 BODY: 3alpha-pock-3alpha

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

0.0 HTML_MESSAGE BODY: HTML included in message

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.8 HTML_IMAGE_RATIO_02 BODY: HTML has a low ratio of text to image area

0.8 SARE_FROM_SPAM_WORD3 I don't know people named this!

0.0 UNPARSEABLE_RELAY Informational: message has unparseable relay lines

2.5 FREEMAIL_FORGED_REPLYTO Freemail in Reply-To, but not From

0.5 GB_FREEMAIL_DISPTO Disposition-Notification-To/From or

Disposition-Notification-To/body contain

different freemails

0.5 GB_FREEMAIL_DISPTO_NOTFREEM Disposition-Notification-To/From contain

different freemails but mailfrom is not a

freemail

Subject: {SPAM?} 00RE:40HQ/20GP CHINA TO USA/CAN shipping line

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Sat, 20 Dec 2025 06:42:00 -0700

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vWxCf-00000000LOw-04Qb

for dave@doctor.nl2k.ab.ca;

Sat, 20 Dec 2025 06:41:01 -0700

Resent-From: The Doctor

Resent-Date: Sat, 20 Dec 2025 06:41:00 -0700

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from sv317.xserver.jp ([202.226.39.157]:51352)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1vWoEN-00000000IHV-0vGV

for doctor@doctor.nl2k.ab.ca;

Fri, 19 Dec 2025 21:06:21 -0700

X-Virus-Status: scanned (With Secure/Atlant/virusgw102.xserver.jp/)

Received: from ip-220-13.dataclub.info (unknown [45.76.223.143])

by sv317.xserver.jp (Postfix) with ESMTPA id AE2453230BA42F;

Sat, 20 Dec 2025 13:03:17 +0900 (JST)

Content-Type: text/plain; charset="iso-8859-1"

MIME-Version: 1.0

Content-Transfer-Encoding: quoted-printable

Content-Description: Mail message body

Subject: PAYMENT NOTIFICATION!!!

To: Recipients

From: "BILLY SCOT"

Date: Sat, 20 Dec 2025 04:03:02 +0000

Reply-To: hiro@hiranaka.co.jp

Message-Id: <20251220040317.AE2453230BA42F@sv317.xserver.jp>

X-Spam_score: 10.4

X-Spam_score_int: 104

X-Spam_bar: ++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Greetings, We are reaching out to present a unique and highly

lucrative business proposal that offers the potential for earnings in millions

and thousands of dollars. We want to make it unequivocally clear that [...]





Content analysis details: (10.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[202.226.39.157 listed in dnsbl.ahbl.org]

[202.226.39.157 listed in dnsbl.ahbl.org]

[202.226.39.157 listed in dnsbl.ahbl.org]

[202.226.39.157 listed in dnsbl.ahbl.org]

[45.76.223.143 listed in dnsbl.ahbl.org]

[45.76.223.143 listed in dnsbl.ahbl.org]

[45.76.223.143 listed in dnsbl.ahbl.org]

[45.76.223.143 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[202.226.39.157 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[202.226.39.157 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[202.226.39.157 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[202.226.39.157 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[45.76.223.143 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

[202.226.39.157 listed in will-spam-for-food.eu.org]

1.0 SPF_SOFTFAIL SPF: sender does not match SPF record (softfail)

-0.0 SPF_HELO_PASS SPF: HELO matches SPF record

0.5 NO_RDNS Sending MTA has no reverse DNS (Postfix variant)

1.6 SUBJ_ALL_CAPS Subject is all capitals

2.3 FIN_FREE BODY: Freedom of a financial nature

Subject: {SPAM?} PAYMENT NOTIFICATION!!!



Greetings,



We are reaching out to present a unique and highly lucrative business propo=

sal that offers the potential for earnings in millions and thousands of dol=

lars. We want to make it unequivocally clear that you are not required to p=

ay any upfront fees to us.Our investment model involves us sending you the =

necessary capital directly, enabling you to invest on the designated platfo=

rm. Your financial commitment is minimal to none in terms of initial outlay=

. All we seek in return is your honesty and sincerity. This is an unparalle=

led oil and gas deal, utilizing cryptocurrency as the means of exchange for=

seamless transactions. We truly believe that if you read and fully underst=

and the scope of this opportunity, you may never feel the need to engage in=

other business ventures again.



For more detailed information and to learn how you can become a part of thi=

s extraordinary venture, please fill out the short form below:



Interested Party Information Form:



Name:

Country:

Whatsapp Phone:

Any other social media handle:



This is your significant chance to achieve financial independence. We urge =

you not to ignore this life-changing opportunity.



Sincerely,



Billy Scot @Billy_scot