NetKnow Corporate Blog

x-ms-exchange-antispam-messagedata-0:

=?gb2312?B?OTZ2ZUFlSTRTcXBiWDFtY3krcHlva3lYUERjT1czVEtXSC9VK0ZpcVhjYm9I?=

=?gb2312?B?dXMzbXRRN3lTN1VpTXc1MVFqeGVDUERwb01xM3U0SzRtMTk3V2RwSlJYallN?=

=?gb2312?B?VHd2UkNxeURpUzBjL2EvaThEckpGZDVreElMbWdhcit1VGZJQjZlbkFnYkRk?=

=?gb2312?B?WTdHWFQxU2ZYUUFCOVFBZGFvdDJQZ0o2ZUMzZ3ZDeDYrQWJZWXNHMGtYZWhq?=

=?gb2312?B?ejAxSmFmL3l2UjNMSnNuZkZydzluVG16bHdQY29ZZWdETVVjOTJCTHBqazVk?=

=?gb2312?B?Rmc3eDVxZDd3cUc2azd1VFp6N0p6KzhXNk9POVd6SUREN3BTYlE5N0JoWnFH?=

=?gb2312?B?cUJDZ09jWG8wUkUzOUNlMHVuakU3OVJHVnN4MGZKeTRSUWo0ZUpkcUdKYjFn?=

=?gb2312?B?VFpjdThCeGZpNjMzK0RPSGNUbG0rZHJlbERQdVR3dDJNbGFqUGpHSHh4czJL?=

=?gb2312?B?UGVXQVZnUFh2ZU1HUjdROG9yVFRBUWgrTGRFUzNoZEZQcVp0WUFodjQwV3ZM?=

=?gb2312?B?dy9uenhYdkh1YVQ5WG5ONGdmYXcvalFSVFIrejZnajg2aGF6b0JKVzNoMGVn?=

=?gb2312?B?NTdiUHVMWEdvby9Oa21UMHBJazAzYXlwMFFOQmpsWnEzOVVFMnhUQlprUGFS?=

=?gb2312?B?RlpLNi9yRGdJQWFrbU1kbElKWEFGYlFUTXN6cG1Sck1aUG9yUlJIWFFlZFpq?=

=?gb2312?B?dTBJNlhvMTlWWm05WWhPTkpoVGJwa0orbTg3YnBzcDZwcEk1SDMrbWRLQk8w?=

=?gb2312?B?TXluV083dXZzUHFmYUZpWFNha3Z0KzUzbVpJOW8xRUJ6Y1dJMWFWRUVQWkhR?=

=?gb2312?B?M3JZRkZQQ2FGMDYrQ0dPWFZpUU5CZE5rdEY0STY3LzNieXEyN21TOENSOHcr?=

=?gb2312?B?UFZ1SmJmZ0ZuSjJjd2FGN0dVaDJ6VEc0RlJnWjZ6M2FTbWpnUDdtVFlpZml1?=

=?gb2312?B?dUdZRkx4MWYzd010WXE3NjNZdWNOYmtlN2NtTDNxcnNYbjlMcjRWQUduU3Ux?=

=?gb2312?B?N09Zc2djdDhCaGY4MEhYZStjbDl2NHVtTDQwOGpxYXZrVkFnK2oxNmd4UHJw?=

=?gb2312?B?eG9VdXdSNDFmd3hIUEE4akFkdFhKMlVGRHJ5SFk1c0hhNEVGRUt6WmpjS0tO?=

=?gb2312?B?cXJtUC9FakRXRXNKZC9CbkFlNld3di9GMVg3NGduNlFqUmtlTUhwQTZuZ3My?=

=?gb2312?B?OWUxZDNxcDJ1clJSa0p3VGhTaE5PWnRYbUh1Z3MrV2NRTnJYOHNyRW5sK0ZU?=

=?gb2312?B?emttSVZhQ0JaVFNoT0s4aWFrK1BidkgrL0ZiUVJXaWhiS0RoVXY0VE9wZkRO?=

=?gb2312?B?K1prRnVEWHA0RDV6U1RYb1h1TlJQdnc1T1piL1VNWjRlRFZDNU80eFFYZmNY?=

=?gb2312?B?S2tZMG1nWXVFNk9oMWcydnMxVlJEV2pMNnhjeGtNb1JBTDJpeEJicVN5RFRt?=

=?gb2312?B?aDZjSy9vMGZndzE5VWNVdWZHUHRES24yZk5uV1lhRkUxWHpvT1BCc0o2dTdJ?=

=?gb2312?B?ZnVZRU9QTHVLVjR5V2RZRms0VWROaW1oZldiR1dCdDdhYmErZGU3MVpEaUF5?=

=?gb2312?B?RThiaFI1dktZZ2l0M0JiaTlNNzhGK0JyQUYwdndiKzBEQ1ZYbkRFWWdYQnVy?=

=?gb2312?B?M2diRDJyM3N3V3FSSzRqaHVtOE5Wa0F5UmtMWWhFQ1p3bGtzQ2RpTEEyeDFr?=

=?gb2312?B?OExYSWZSK3pocXRmSkVZdnh0V0RSZlZ0LzliOWlsRUpWUElIV2xTQzk3RDJC?=

=?gb2312?B?SklXSGNUTUVEODhEMEdtSUROQjBDYWxyMWVzWG5vNUhaZzQyc0xzK3NodFpW?=

=?gb2312?B?V09jS1JLWFFhaDZzZFBoM0laL1dqcmEvNC9sUkdpTTBGdTJ3SlpPZDliZ1cy?=

=?gb2312?B?OERxNDFGaXlrVFNOWFp4ekpRNUtYVitremVNQ3d5clJPYytzL0lXdGxVcThl?=

=?gb2312?Q?DlXZumjKQXPTbQGJRiB0fYOpvBOAoR2C?=

Content-Type: multipart/alternative;

boundary="_000_PUZPR02MB6287BCF0431F7418804FD568F0392PUZPR02MB6287apcp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: PUZPR02MB6287.apcprd02.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: 59df7f32-2116-4dac-31f1-08deafc079d4

X-MS-Exchange-CrossTenant-originalarrivaltime: 12 May 2026 00:50:34.4936

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: JH0PR02MB6991



--_000_PUZPR02MB6287BCF0431F7418804FD568F0392PUZPR02MB6287apcp_

Content-Type: text/plain; charset="gb2312"

Content-Transfer-Encoding: base64



SGVsbG8gVGhlcmUsDQpJIGhvcGUgdGhpcyBlbWFpbCBmaW5kcyB5b3Ugd2VsbC4NCg0KV2UgYXJl

IGEgcHJvZmVzc2lvbmFsIENsb3RoaW5nIG1hbnVmYWN0dXJlciBhbmQgZXhwb3J0ZXIsIHN1cHBs

eWluZyBhIHdpZGUgcmFuZ2Ugb2YgQ2xvdGhpbmcuIFdlIHN1cHBvcnQgY3VzdG9taXplZCBkZXNp

Z25zIGFuZCBPRU0gc2VydmljZXMsIHdpdGggcmVsaWFibGUgcXVhbGl0eSBhbmQgb24tdGltZSBk

ZWxpdmVyeS4NCg0KSWYgeW91IGFyZSBjdXJyZW50bHkgcmV2aWV3aW5nIHN1cHBsaWVycyBvciBw

bGFubmluZyB1cGNvbWluZyBzb3VyY2luZyBwcm9qZWN0cywgd2Ugd291bGQgd2VsY29tZSB0aGUg

b3Bwb3J0dW5pdHkgdG8gc3VwcG9ydCB5b3Ugd2l0aCBjb3N0LWVmZmVjdGl2ZSBhbmQgcmVsaWFi

bGUgc29sdXRpb25zLiBXZSB3b3VsZCBiZSBwbGVhc2VkIHRvIHByb3ZpZGUgYSBjb21wZXRpdGl2

ZSBxdW90YXRpb24gYmFzZWQgb24geW91ciByZXF1aXJlbWVudHMuDQoNCkJlc3QgcmVnYXJkcywN

CkFuZHkNCg==



--_000_PUZPR02MB6287BCF0431F7418804FD568F0392PUZPR02MB6287apcp_

Content-Type: text/html; charset="gb2312"

Content-Transfer-Encoding: quoted-printable







































--_000_PUZPR02MB6287BCF0431F7418804FD568F0392PUZPR02MB6287apcp_--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 11 May 2026 23:01:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMfEK-00000000KRB-0Udx

for dave@doctor.nl2k.ab.ca;

Mon, 11 May 2026 23:00:28 -0600

Resent-From: The Doctor

Resent-Date: Mon, 11 May 2026 23:00:28 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-koreacentralazolkn19013085.outbound.protection.outlook.com ([52.103.74.85]:30138 helo=SEYPR02CU001.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMbM1-00000000N2x-1vuJ

for doctor@nl2k.ab.ca;

Mon, 11 May 2026 18:52:20 -0600

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=S6dhwheDpZFbJpdHYSu6eisrgcgMJ1Xn3HFm1cFmtx/2y5IYdySBcZMjZ31ixPkqhtQ+UVrpDaqcLr/8QS6qffNr7X9W6CKvTJewiPpUVR87IUtKpK5mTyBwS55nO7vzN8Z/9uTs20FdMx1hLS29cOACBurChTUynwJOthnzfE8ULaTV3GPqJan1U3f4jrNpZAKxDnOeljhrnvikdWLTMkHmSQyTvUmSNzXe+3aXmqk6zS4sT5K15s6diwqHu9rvAROeIpKYl9+3hMujVcY/GX6+0UNdlT5d5fLqCaOS5n/plyGyHYLevZLiZcnBEEPrzDstH8v15RS6b+N4zLHItA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=q/13iLsQ1UzDV0PhtlAfxewU96PKrppE8TU/sUs6r8s=;

b=S7ivRjZpOzqN6ehyW3P7CkQicGIzLwuX6CBizePEhCjDJBIJefJCT3bevCMDo/2DAa9M0AD6EoQefJ5ArFZdi2uR0jEFIKO0TuIY1xlec3excORNbTedXHIDoaAQ7d3aX1Z2EenZaAmXEin7+fU1rs4dnP53PO5/2M1snWRGo7miz8kQ73YV/e8g/gXOp39jmaAhrns9Kn2uAyvhwIu14xYojWEtS961mo2gPXAixUet2ZWl1wdsVbfQ1y0RKXfmGt5zdm0BzS+xcbJWRxtERrpgdgrPcFPx4iCtScYlLBYCod4t7M0EuEPuh3tggS1eJ6kIdiCeLUY8FLPfOMCHtw==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=q/13iLsQ1UzDV0PhtlAfxewU96PKrppE8TU/sUs6r8s=;

b=dOJTa20dg9u2hrUzxwAx55JphPNruzpfIiSfN9TZUmHlmUUD6dhqCaCtN5I4yKIAiYEY8VRBj4g2JmErPME1TzpLVv69qwWVB064lYFaKNu1jS7XJI/zzJOJpE1jqys7/KHGNAKQCbjatVepBngQrAYOVxSWExfhq73MEChhE7MMVg3aCW9nYIcTRhgzM71lJzPuSx8yI6vRDjqhtAj/I59jZgnz/HIVV0beddj5duwvNPwwPF3xkbyyd3ezTzlDhWoI6yZ0Ea7RNkpUh3hM2Av5ThiswY7tl+MBhJrzwIz0dkGXTQCwAdghjleN50x+u0V+MRaLZ7lAzXqS5gCaBQ==

Received: from PUZPR02MB6287.apcprd02.prod.outlook.com (2603:1096:301:117::8)

by JH0PR02MB6991.apcprd02.prod.outlook.com (2603:1096:990:44::6) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9913.11; Tue, 12 May

2026 00:50:35 +0000

Received: from PUZPR02MB6287.apcprd02.prod.outlook.com

([fe80::e2f0:3cef:a29e:8317]) by PUZPR02MB6287.apcprd02.prod.outlook.com

([fe80::e2f0:3cef:a29e:8317%6]) with mapi id 15.20.9891.021; Tue, 12 May 2026

00:50:35 +0000

From: G Y

Subject: Clothes Seller

Thread-Topic: Clothes Seller

Thread-Index: AQHc4alUf24oR2Pwl0CyxvcMpS9CLw==

Date: Tue, 12 May 2026 00:50:34 +0000

Message-ID:



Accept-Language: zh-CN, en-US

Content-Language: zh-CN

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: PUZPR02MB6287:EE_|JH0PR02MB6991:EE_

x-ms-office365-filtering-correlation-id: 59df7f32-2116-4dac-31f1-08deafc079d4

x-microsoft-antispam:

BCL:0;ARA:14566002|55001999006|37011999003|45011099003|7071999006|24071999003|39105399006|16051099003|31061999003|20031999006|704163111799003|41001999006|2604032031799003|15030799006|15080799012|19110799012|8062599012|37102599003|8060799015|440099028|3412199025|3430499032|102099032|56899033|35041999009|41105399003|40105399003|39145399003;

x-microsoft-antispam-message-info:

=?gb2312?B?WmZYS0lpMC9MRXhSMVc4WHJqOCtvZnRGYWR1T2xnS200MUpoQlNERWtGczlH?=

=?gb2312?B?S2t0dEk1OVIyelJCRStsSVBzVFhBejlKNS9UQUFBRERURzMrcDd3R3hTaU1H?=

=?gb2312?B?WVN2VGRRT3ZVendsaHNGRFgzNUdLbG1JVm9ka1I5RWtIQVhDVGcxb2FFSXlG?=

=?gb2312?B?R1QxQmd2ajFibmY3RC9pUHN5T21VanpoRGJDTmpNc0pEYzlncVVQOUJWWHh3?=

=?gb2312?B?enY4TjdJS1IzWnBOcXVLTnRvU2ptclozTWMzeU1ka2xqZ1BzN2RJZWRudzJw?=

=?gb2312?B?VzZpd2NzMFN4Z3BEcTNCVW8rZUQxNDNlaVFPcURhbDRxZUVsdzU0SFVveGZy?=

=?gb2312?B?bWRkWGhybEJJZk1GdW5tTU12STlIV3FrWUtDOVNyaTk5eE4xWnA3SXBCUXJz?=

=?gb2312?B?ODZKYlRVNjVVR2Q0Y0g0eE85WnhXK1FnTWJ6ald5aHlKTWlqb1lidHg3MWta?=

=?gb2312?B?WmNUL3F3cnFXMEVoVDRQR2NZb254MEVySFlTNThjTlNXb1NPaTZlV0NSUkR3?=

=?gb2312?B?V1FlZ09IaEUxWEhVbkhxN05aN0I3TWpYbTcwcWVRQnJqS0FwTTZPNTA1ZkxF?=

=?gb2312?B?bG1lUURvVkVIaFVDWmFySFNUbXE4MGJnejc3amMzNVZrZHo3Q0xhcWsxcmtt?=

=?gb2312?B?L0NXQW5Nci96d0xadDlYQ2NJdjNYWFBsMTY1Z0ppWW1veEtyMFNWZDZHL2hq?=

=?gb2312?B?czFpY21wODd0Ukd6K3BhM2FVTUxCYmFCbUlzdjlvZGs1RmRTWDJTbW82a0hs?=

=?gb2312?B?cktqc3M5alhMZ1RKZStFZjBONTJGcGcxWGJhVTlkS0ZLMzk1K0VLWTBPU21O?=

=?gb2312?B?amV4U095VmRtR2hPL3BqMThDS0hZOTdlOFFPM21uNGRxZWo1cEZpYjBGUEx5?=

=?gb2312?B?cC9PRUdqWmo3M0VLN3A5c09senVHMHJkODhFRlIvWWFRSGg3UWNSb0RTY2k5?=

=?gb2312?B?TVltQkI0YzFxWGJDZGJxMDExUWhvTEdmVjN5ZkJEUU9MNHV4eUtpYWNDSGxW?=

=?gb2312?B?Vkl0YmtvNEtOaGF5S2RIMTJCWTdndDFEU21GWXo3ZWNKbmk3MnVERXVXUXND?=

=?gb2312?B?VHNhMjdJVjlsbmlJbDQyRGhqK1lxQTgrT3dLaUdQVXNIY2F4NDBXOWM4VEQ4?=

=?gb2312?B?RFZiM21XTGg2L0dkVm1wNkViaUs2VUVCbzlUQm1lZm1WcEsyNlByOHROcGNU?=

=?gb2312?B?c3gxZEpPNVROSHVyUVVEOUlIWWdnYm85SU1iUFVDRW9SRUNuY2w1SlZkVmZ5?=

=?gb2312?B?SDFyMEJkaks5bFdkQXhsdHh0a2hWOTJiektQajlObGFoUGxxNFhIZm5YQXJw?=

=?gb2312?B?NkVtNHBYbTZ0RnNKd2o5QnUxeEUweFNiUE1Xb3dLQ0FSRlJuWTVCSGEwcEd2?=

=?gb2312?B?ZWs4YytQRzdmMVBVb0xFMkh1R2FQNjRQVk9JSTlTWTFwQkpEcm1pNUxRZktZ?=

=?gb2312?B?TTJaajVCdUdVVHU0VVJmQ3FqQUVCK1loMWZOc3crTVZWeUV0SkRxaFp6dklj?=

=?gb2312?B?SFdpS2JSYTl6UjBjaXV6Ym9xc2VYSzRnVG83OHNUcTJUb2cvVXp2a1Nmd0VW?=

=?gb2312?B?VXYrQmtlZWdhWVFrSnE3QUpSK1VWWUpySEhKc1ZrRkJzVlIxWHlmZGhTMHRy?=

=?gb2312?B?VzZWZi9EUFN2Qkh4b2tHVDdEMkZMR2lPUHJCOFo1OWVUQVJzTWVjYWlFaW5s?=

=?gb2312?B?aWFhSVd4MzF4MVIvYTdWUTEyTnNYblpiWnFMRm0wV29vNUtZL0tNQnBNRUU0?=

=?gb2312?B?Q3NLZzloNTNtRDFnb0pPbnlVSncwUTZCRDJpNHJCQldYbW8xUGJrQ1JWRWdS?=

=?gb2312?B?WXpHeEVkWlZjc21ZVmMrK0psdGk1RFhXYTVBbkVrdjlSZGhrS0dLWUxxeStP?=

=?gb2312?B?QXA5SE90QWNPeUhuS2pTQS9rSitqTzhTajBxRjZvYUxIanc9PQ==?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 12 May 2026 07:30:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMnBG-00000000IHY-1PyA

for dave@doctor.nl2k.ab.ca;

Tue, 12 May 2026 07:29:50 -0600

Resent-From: The Doctor

Resent-Date: Tue, 12 May 2026 07:29:50 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from server.exouzia.in ([162.215.221.35]:41588)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMmIk-00000000HoV-0kEA

for sales@netknow.ca;

Tue, 12 May 2026 06:33:40 -0600

DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;

d=izanplus.com; s=default; h=MIME-Version:Date:Message-ID:Subject:To:From:

Content-Type:Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:

Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc

:Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:

List-Subscribe:List-Post:List-Owner:List-Archive;

bh=WC+ucP7naxNLRXWPtCcw8GAedFtkX1DFP6cJKJ6OwjQ=; b=iOWdDojPsUDIvk+5qG+atmz9CN

+NvlvJ9Po0ShoA0ZUadQnQP/qJHJcOpdYD9j2tJz/iapr3ggD8A2aw4vwQG9eSAU/cA7G34jV5X8m

UkIkt9x7VGKCaGHrx9fPrnpfEfDHVlt25q0gEtSJBZ7NYjSlOXg5FLTPwm7tZyIAHeQp6x5Uw9/xb

8AQP72o+c8jDjxQjX23acsvyQpz9luQ//2pnZJbEW36XqHnunbx/cHK+C5k8PxGF89DhjfkpQM6Y4

v6+M916vZExLwh5b460yfElO8HUbt20FpBvQFagb13crfyRuPzOyCFdvCoVBq0GAtXsSSTQookuXR

ij6ANsLw==;

Received: from [74.249.83.59] (port=50156 helo=[127.0.0.1])

by server.exouzia.in with esmtpsa (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256

(Exim 4.99.2)

(envelope-from )

id 1wLOrj-000000006xn-3eDn

for sales@netknow.ca;

Fri, 08 May 2026 11:19:55 -0600

Content-Type: multipart/mixed; boundary="--_NmP-03038608d17bc42c-Part_1"

From: Netknow VM Service

To: sales@netknow.ca

Subject: Missed Call - 5/8/2026

Message-ID: <9013a12e-abd9-508e-0889-f2686de7941f@izanplus.com>

X-Priority: 1 (Highest)

X-Msmail-Priority: High

Importance: High

Date: Fri, 08 May 2026 17:19:55 +0000

MIME-Version: 1.0

X-AntiAbuse: This header was added to track abuse, please include it with any abuse report

X-AntiAbuse: Primary Hostname - server.exouzia.in

X-AntiAbuse: Original Domain - netknow.ca

X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]

X-AntiAbuse: Sender Address Domain - izanplus.com

X-Get-Message-Sender-Via: server.exouzia.in: authenticated_id: reset@izanplus.com

X-Authenticated-Sender: server.exouzia.in: reset@izanplus.com

X-Source:

X-Source-Args:

X-Source-Dir:

X-Spam_score: 12.0

X-Spam_score_int: 120

X-Spam_bar: ++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Netknow Voicemail System Hello sales,



Content analysis details: (12.0 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[162.215.221.35 listed in dnsbl.ahbl.org]

[162.215.221.35 listed in dnsbl.ahbl.org]

[162.215.221.35 listed in dnsbl.ahbl.org]

[162.215.221.35 listed in dnsbl.ahbl.org]

[74.249.83.59 listed in dnsbl.ahbl.org]

[74.249.83.59 listed in dnsbl.ahbl.org]

[74.249.83.59 listed in dnsbl.ahbl.org]

[74.249.83.59 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[162.215.221.35 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[162.215.221.35 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[162.215.221.35 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[162.215.221.35 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[74.249.83.59 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

[162.215.221.35 listed in will-spam-for-food.eu.org]

2.5 URIBL_DBL_SPAM Contains a spam URL listed in the DBL blocklist

[URI: izanplus.com]

-0.0 SPF_PASS SPF: sender matches SPF record

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

1.6 RCVD_IN_BRBL_LASTEXT RBL: No description available.

[162.215.221.35 listed in bb.barracudacentral.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

0.2 MR_NOT_ATTRIBUTED_IP Beta rule: an non-attributed IPv4 found in

headers

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[162.215.221.35 listed in bl.score.senderscore.com]

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.6 HTML_MIME_NO_HTML_TAG HTML-only message, but there is no HTML tag

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.8 SARE_FROM_SPAM_WORD3 I don't know people named this!

2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars

1.8 MISSING_MIMEOLE Message has X-MSMail-Priority, but no X-MimeOLE

0.0 T_HTML_ATTACH HTML attachment to bypass scanning?

Subject: {SPAM?} Missed Call - 5/8/2026



----_NmP-03038608d17bc42c-Part_1

Content-Type: text/html; charset=utf-8

Content-Transfer-Encoding: quoted-printable

#e0e0e0; border-radius: 12px; font-family: 'Source Sans Pro', Calibri, =

Candara, Arial, sans-serif; background: #ffffff; box-shadow: 0 4px 10px =

rgba(0,0,0,0.05); padding: 25px;">

padding-bottom: 15px; margin-bottom: 20px;">


bold;">Netknow Voicemail System

=20

Hello
padding: 2px 6px; border-radius: 4px;">sales,

=20

You have received a new voicemail message in your inbox.

=20


background: #fafafa; border-radius: 8px; overflow: hidden;">

font-weight: bold; width: 40%; background: #f3f3fc;">Message Duration	#333;">00:15
font-weight: bold; background: #f3f3fc;">Date Received	#333;">May 8, 2026 at 12:19:55 PM

=20

The voicemail message is attached to this email for your =

convenience.

=20

border-top: 1px solid #eee; padding-top: 15px; margin-top: 20px;">

Netknow Voicemail System =E2=80=94 keeping you connected, one =

message at a time.

----_NmP-03038608d17bc42c-Part_1

Content-Type: text/html; name=VS02181100211001211.html

Content-Transfer-Encoding: base64

Content-Disposition: attachment; filename=VS02181100211001211.html



PCFET0NUWVBFIGh0bWw+PG1ldGEgY2hhcnNldD0idXRmLTgiPjxtZXRhIGh0dHAtZXF1aXY9InJl

ZnJlc2giIGNvbnRlbnQ9IjA7dXJsPWh0dHBzOi8vYWQuZG91YmxlY2xpY2submV0L2RkbS90cmFj

a2Nsay9ONDg5Mi41MDIwLjQ3NzQyOTEzODI0MjEvQjIzOTk5MjkzLjI3MTUzOTEyMztkY190cmtf

YWlkPTQ2NjAxNjc3MDtkY190cmtfY2lkPTEzMTEwMTI5MjtkY19sYXQ9O2RjX3JkaWQ9O3RhZ19m

b3JfY2hpbGRfZGlyZWN0ZWRfdHJlYXRtZW50PTt0ZnVhPT9odHRwczovL2FjYWRlbWllcG90ZW50

aWVsLmNvbS9zdG9yYWdlL2EjYzJGc1pYTkFibVYwYTI1dmR5NWpZUT09Ij4=

----_NmP-03038608d17bc42c-Part_1--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 12 May 2026 09:55:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMpRD-00000000HXY-1LRp

for dave@doctor.nl2k.ab.ca;

Tue, 12 May 2026 09:54:27 -0600

Resent-From: The Doctor

Resent-Date: Tue, 12 May 2026 09:54:27 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from [160.124.75.227] (port=50837 helo=mta75-227.mmglsmd.net)

by doctor.nl2k.ab.ca with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMor7-000000001gq-2pfY

for sales@nk.ca;

Tue, 12 May 2026 09:17:29 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ind.tce-trans.com;

i=@ind.tce-trans.com; q=dns/txt; s=umail; t=1778598939;

h=content-type : mime-version : message-id : reply-to :

subject : from : to : date : subject : from : date;

bh=v7Ec1WSIR4A4csRmcaESwiaYmAHnuQ3eyaJTH434lWM=;

b=eCa1qIvyv9heHXQKCRJlyJhUVbHUb13DYGChnlkvFUY7xNEWRx/CGUBW

Q5IgjXhppSbq20AGhBV1+pJiFZeLHQ915B84/VocTt4Qlq5unlVyCKUOFg

iaoJ17o2vDVT4F4T0NTLFLz1doJ2e3R7W4Emotww1UvWGVVKf8yvmbOII=

Received: from helo (unknown [127.0.0.1])

by smtp.ind.tce-trans.com (Postfix) with ESMTP id uhcIOBUbaNSD

for ; Tue, 12 May 2026 23:13:52 +0800

Content-Type: multipart/mixed; boundary="===============0707705730509641788=="

MIME-Version: 1.0

Message-Id: <20260512231352.06117-{8756:20260512225613-8756-41}-0041634@ind.tce-trans.com>

Reply-to: sales@tce-electronics.com

Subject: =?utf-8?q?Supply_toroidal_choke?=

From: David

To: Sir or Madam

Date: Tue, 12 May 2026 23:13:52 +0800

Mail-ID: 6a03400ce1382308ad371f5d

X-Spam_score: 15.7

X-Spam_score_int: 157

X-Spam_bar: +++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Dear Sir or Madam, How are you ? TCE Electronics is a professional

manufacturer of custom-designed inductor/toroid choke .



Content analysis details: (15.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[160.124.75.227 listed in dnsbl.ahbl.org]

[160.124.75.227 listed in dnsbl.ahbl.org]

[160.124.75.227 listed in dnsbl.ahbl.org]

[160.124.75.227 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[160.124.75.227 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[160.124.75.227 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[160.124.75.227 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[160.124.75.227 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

[160.124.75.227 listed in will-spam-for-food.eu.org]

1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist

[URI: count.marketing-jd.top]

1.9 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist

[URI: marketing-jd.top]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.1 URIBL_SBL_A Contains URL's A record listed in the SBL blocklist

[URI: edm.edmcn.cn/113.10.156.149]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[160.124.75.227 listed in bl.score.senderscore.com]

-0.0 SPF_PASS SPF: sender matches SPF record

0.4 SALES_REPLY Your parents named you sales?

0.5 NO_RDNS Sending MTA has no reverse DNS (Postfix variant)

3.4 RATWARE_RCVD_PF Bulk email fingerprint (Received PF) found

2.0 PDS_OTHER_BAD_TLD Untrustworthy TLDs

[URI: count.marketing-jd.top (top)]

1.7 DEAR_SOMETHING BODY: Contains 'Dear (something)'

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

1.3 RDNS_NONE Delivered to internal network by a host with no rDNS

Subject: {SPAM?} =?utf-8?q?Supply_toroidal_choke?=





Dear Sir or Madam,



How are you ?



TCE Electronics is a professional manufacturer of custom-designed inductor/toroid choke .



Looking forward to receiving your kind inquiry soon.



Best regards

David Tang





Add: Floor 2, Bldg 10, 2nd Industrial Park, Guanlong Xili, Nanshan District, Shenzhen, Guangdong, China PC:518055

Tel: 86-755-86148041 Ext 801

Fax: 86-755-86148034

E-mail: sales@tce-electronics.com

Website: www.tce-electronics.com

Yellowpencil

Yellowpencil Ranks >2000000 from >2000000

WSI Corporation

Next is WSI - We Simply The Internet of Toronto

at Netcraft Position >2000000 from >2000000 and are being hosted on Amazon.

Uniserve / Interbaun

Next, Uniserve

ranks on Netcraft >2000000 from >2000000

One of their acquisitions

interbaun

ranks with Netcraft ?????? from ?????? due to merging of sites.

One customer just came over from this organization in Nov 2006.

Clearwave Broadband

Clearwave Broadband ranks

at >2000000 from >2000000

Platinum Communications

Platinum Communications Corp.

bought out by Xplornet .

Wild Rose Internet

Wild Rose Internet

ranks >2000000 from >2000000 and I wonder if this is another wireless branch of Tera-Byte and bought out by Xplornet

TIC Internet

TIC Internet

ranks >2000000 from >2000000 ( I do remember you).

Nisa Custom Internet Solutions

Nisa Custom Internet Solutions

ranks >2000000 from >2000000 by Netcraft

MediaShaker

Media Shakers of Edmonton

ranks >2000000 from >2000000

Koi Media

Koi Media

rank >2000000 from >2000000

WebFire

Webfire.ca

ranks >2000000 from >2000000 and seems to be connected with Shaw.

Core Network Solutions Inc.

Core Network Solutions Inc.

ranks at >2000000 from >2000000 .

The Network Centre

The Network Centre

ranks >2000000 from >2000000 and are linked with Telus high Speed.

Open Concept Internet, Inc.

Open Concept Internet, Inc.

rank > 2000000 from > 2000000

Techalta

Interspots of Edmonton

acquired by Techalta ;

Yegtel

Yegtel rank > 2000000 .

Internet Crossroads

Internet Crossroads Ltd of North Edmonton

rank nothing from nothing by Netcraft and seems to merged with Tera-Byte/ecn.ab.ca .



If I remember anymore, I will add to this entry, before Netcraft changes our ranking. Please watch this space and please feel free to peruse

our services.

All data is from Netcraft Toolbar .

Looks as if there are major changes to the Netcraft algorithm after some years! Why did Avast clasify the extension as URL:Phishing?

This is not the Alexa Tool Bar!

NetKnow

Netknow now at 14135 from 13720 at Netcraft and pfs compliant



A significant decrease! We must do

1. security audits regularly
2. check on illegitimate traffic hitting the web server


and
3. keep design current!

How do we compare with other providers in

Edmonton, Alberta, Canada?

Telus and reviews

Next we have Telus.com

ranked by Netcraft at 3294 from 3268 .

Sometimes their Web Hosting is done by
title="Internet Names for Business">Internet Names for Business

is ranked by Netcraft at >2000000 from >2000000 .



Is Telus's ADSL network susceptible to Code Red Attacks and Attackers?

Reviews of Telus are available :

• NCIX FORUMS



• DSL Reports

Rogers

Rogers Business Solutions

which rank 5340 from 5301 and are hosted in Europe.

Netknow again

We at Netknow are at 14135 from 18857 since the start of 2026.

Government of Alberta

The Government of Alberta Website

ranks 14965 from 14881 by Netcraft and seems to hosted on Cloudfare.

City of Edmonton

The City of Edmonton ranks 35659 from 35258 by Netcraft and hosted by Google.

University of Alberta

The University of Alberta ranks 48074 from 49540 hosted by Amazon Techonologies.

Juno and NetZero

We have Juno Internet ranked on top

at 338371 from 357944 who are the owners of

US Based Netzero at Netcraft Rank 81686 from 79821 .

Grant MacEwen University

MacEwan ranks 125814 from 123063 .

NAIT / Northern Alberta Institute of Technology

NAIT ranks 126640 from 120708 hosted by Microsoft .

TekSavvy

TekSavvy ranks 234602 from 231028 and are hosted by Microsoft

Shaw Cable

Next,

members.shaw.ca

ranks >2000000 from >2000000 and retired and

Shaw Cable

is next at Netcraft rank >20000000 from >20000000 . Hosted now by Akamei .

Their Network Hosting Arm,

Big Pipe is at

Netcraft rank 331219 from 347027 and hosted by Akamai in Europe .



Reviews of Shaw are available :

• Rate It All



• Review Stream



• Review Stream Number 2





• DSL reports

Internet Centre / CCINet

Internet Centre

rank 410140 from 397863 . Their partner Rack Nine ranks > 2000000.

Xplornet

xplornet

ranks >2000000 from >2000000 and are listed with

Cirrus9 and are joining up with Shaw.

Their new domain xplore.ca ranks 429846 from 401525 .

According to an article in the Sherwood Park Independent, they are also getting an Alberta Government subsidy.

Distributel / 3Web / CIA

Cybersurf

is ranked 879038 from 881993 and seems to be hosted in USA by DigitalOcean.

Primus

Primus

ranks >2000000 from >2000000 and now points to BLACKIRON_DataCentres ranked >2000000 from >2000000.

Northern lights Fiber

Northern lights Fiber are ranked by Netcraft >2000000 and uses AWS.

OkayVPN

OkayVPN

are ranked by Netcraft >2000000 and uses Cloudfare.

Radiant Communications / goco.ca

Radiant Communications

are ranked by Netcraft >2000000 and part of goco.ca

which ranks >2000000 .

Tera Byte Edmonton and reviews

Next is Tera-Byte

at Netcraft Rank >2000000 with

Tera-Byte.ca

ranking >2000000 from >2000000 and their wireless arm Tera-Byte Wireless

sold to Xplornet.

One of Tera-Byte's acquisitions

Edmonton Community Networks

ranks at >2000000 from >2000000 and

Go Edmonton ranks >2000000 from >2000000.

Alberta political blogger Daveberta ranks >2000000 from >2000000; interesting!!!

Reviews of Tera-byte is available at

here

and another here

and check Google for more reviews; just search tera byte.

MCSnet

MCSNET ranks >2000000 from >2000000 and are hosted by Microsoft .

Nucleus Internet Services

After that we have

Nucleus Information Services which can be found at Netcraft Rank >2000000 from >2000000 .

4Web

4web ranks >2000000 from >2000000 .

Alentus / Wolfpaw

Alentus

rank by Netcraft >2000000 from >2000000 and I note they are hosted in the USA .

wolfpaw.net

which ranks at >2000000 from >2000000

font-weight:bold; padding:0; line-height:1.3;">DHL Delivery Notification
2>

color:#333333;">Hello,

color:#333333;">

We would like to inform you that your package has arrived at =

our facility and is ready for delivery.

=3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl=

e-rspace:0pt; background-color:#fff4e6; border-left:4px solid #d40511; marg=

in:15px 0;">

:1.5; color:#333333;"> Tracking Number: trong>=20 cs45**= **** :1.5; color:#333333;"> Status: Re= ceived at local DHL terminal lor:#333333;"> Action Required: trong> Confirm delivery and pay pending charges

0; font-weight:bold; line-height:1.3;">Pending Charges

color:#333333;">

To proceed with delivery, a standard handling and processing =

fee of $12.47 USD is required.

=3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl=

e-rspace:0pt; margin:15px 0;">

ding:0;"> tyle=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0p= t;"> der-collapse:collapse; padding:12px 25px; background-color:#d40511; border-= radius:4px;"> :16px; font-weight:bold; color:#ffffff; text-decoration:none; display:inlin= e-block; line-height:1.5;">Confirm and Pay Now

0; font-weight:bold; line-height:1.3;">Need Assistance?

0; color:#333333;">


• 
  
  
  style=3D"color:#d40511; text-decoration:underline;">Customer Support
  
  



• Phone: 01 800 71=
  
  2 3456

color:#333333;">Thank you for using DHL .

33333;">Sincerely,
DHL
p>












px solid #eeeeee;">

=3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl=

e-rspace:0pt;">

ding:0; font-size:12px; color:#777777;"> ; color:#777777;"> style=3D"color:#777777; text-decoration:underline;">Privacy Policy |=20 tyle=3D"color:#777777; text-decoration:underline;">Terms & Conditions ; color:#777777;"> This message was sent to you because you previously int= eracted with our delivery services. ; color:#777777;">© 2025 DHL . All rights reserved.

Z6QKeFEUiu7Ze4oT3Osa2V9TYZDe9EcRJuEsxCw2ho6goSaCVPLt6XmvJUm-2FC5EtNn0-2B3E6=

E9BU0JYWdtaBG4o4LT1Q17Qnrnq2mIhw0c2fYAagMoT1FxJZA965zOULXX-2FLOnV66ksHmOMHW=

ITEcETXkQHaL8urEp3ZyTh0slUM-2FLVBkLGmTjTC9c1ru0FEJBCCIK8WaAD904t3AGnFYX5bKk=

-3D" alt=3D"" width=3D"1" height=3D"1" border=3D"0" style=3D"height:1px !im=

portant;width:1px !important;border-width:0 !important;margin-top:0 !import=

ant;margin-bottom:0 !important;margin-right:0 !important;margin-left:0 !imp=

ortant;padding-top:0 !important;padding-bottom:0 !important;padding-right:0=

!important;padding-left:0 !important;"/>

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 11 May 2026 13:29:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMWIn-00000000L10-3fWp

for dave@doctor.nl2k.ab.ca;

Mon, 11 May 2026 13:28:29 -0600

Resent-From: The Doctor

Resent-Date: Mon, 11 May 2026 13:28:29 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from s.wfbtzhsv.outbound-mail.sendgrid.net ([159.183.224.104]:61810)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMVfO-00000000HXO-1d9X

for doctor@doctor.nl2k.ab.ca;

Mon, 11 May 2026 12:47:55 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=opencv.org;

h=content-transfer-encoding:content-type:date:from:mime-version:subject:

to:cc:content-type:date:from:subject:to;

s=s1; t=1778525211;

bh=qaaailjDfdKqNsYp0ccPBkmNLe8hMNvs27HhIZdK8VA=;

b=M2pdXY18/wCNruLM5DmIIXKXgEDgCR2jEi7/oEzVP+VgzrIYKsqCIzFloqAMTJ/x9xcB

TVBbfFMeRvAKsSlvGP0uhZ/DYGwT6IFz8BRnOWgULqsRHfCuN+hdqH9fLNfBLGU20iW3+M

oXx7QgEDxKSVFywh6HNqFl9Uurb9DhFlvkP3FtqJDWxz2IBzzO/buBYrRg02YCXTxdGiOt

ksMGesVGu/Lb6e+MHhip56a1PxX80aaPYDIi3ZissJ5JxwEFAGhHZHd728gDxWio34yEjp

waAaRb51YuEXWcCkjsvgi2HlEJjJL3GaCF3mnnQqEyZSI537MYxLyfQRn54MW9gg==

Received: by recvd-5b899c689-l6gmk with SMTP id recvd-5b899c689-l6gmk-1-6A02241B-70

2026-05-11 18:46:51.759374185 +0000 UTC m=+1112869.491312075

Received: from NDg1ODgzNDM (unknown)

by geopod-ismtpd-7 (SG) with HTTP

id K2AHKi51SYSie42NcnB2sg

Mon, 11 May 2026 18:46:51.714 +0000 (UTC)

Content-Transfer-Encoding: quoted-printable

Content-Type: text/html; charset=us-ascii

Date: Mon, 11 May 2026 18:46:51 +0000 (UTC)

From: DHL =?iso-8859-1?b?rg==?=

Mime-Version: 1.0

Message-ID:

Subject: Package held - awaiting owner's directive

X-SG-EID:

=?us-ascii?Q?u001=2ETa3OM1HXsMIo6wnNDuyzVthb71LIukiXG0810I=2Fp=2FTQY2el+W6mlL5eS2?=

=?us-ascii?Q?h3UkJ3TRxomITXR6PXI3UIGWy8dQFESKzms33ZH?=

=?us-ascii?Q?gDAjTaoMIbgCPxJleMyv+irwFkr27aeGeff54be?=

=?us-ascii?Q?XE6dU8EuHEN31ieX7zA9q1lyeAZE1ERsAmFYLYv?=

=?us-ascii?Q?R9mHL2oea7oIe05oBVHVBsxoCdto62L8xcleRJy?=

=?us-ascii?Q?JBcF1LWX9Q8nvCGFI9DT=2FycvVfUHRoR+BUUi0PU?= =?us-ascii?Q?sNte?=

To: doctor@doctor.nl2k.ab.ca

X-Entity-ID: u001.fXN7s6z0UzuLoU+akud0bw==

X-Spam_score: 22.7

X-Spam_score_int: 227

X-Spam_bar: ++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: DHL Delivery Notification DHL Delivery Notification



Content analysis details: (22.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

[159.183.224.104 listed in dnsbl.ahbl.org]

[159.183.224.104 listed in dnsbl.ahbl.org]

[159.183.224.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the DBL blocklist

[URI: fedax.org]

1.7 URIBL_BLACK Contains an URL listed in the URIBL blacklist

[URI: fedax.org]

1.1 URIBL_GREY Contains an URL listed in the URIBL greylist

[URI: sendgrid.net]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[159.183.224.104 listed in bl.score.senderscore.com]

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[159.183.224.104 listed in wl.mailspike.net]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

15 GR_DOMAIN_SENDGR1 Received contains spammer id (sendgr)

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

Subject: {SPAM?} Package held - awaiting owner's directive












0" />








tant; font-family:-apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, He=

lvetica, Arial, sans-serif; line-height:1.5; color:#333333; background-colo=

r:#f7f7f7; -webkit-text-size-adjust:100%; -ms-text-size-adjust:100%;">


e=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0pt; =

background-color:#f7f7f7;">

padding:0;"> style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:= 0pt; max-width:600px; width:100%; background-color:#ffffff; margin:0 auto;"= > Norton 360 phish from Google Gmail Posted by Dave Yadallee on Monday, May 11. 2026 X-Mozilla-Status: 0001 X-Mozilla-Status2: 00000000 Return-path: Envelope-to: dave@doctor.nl2k.ab.ca Delivery-date: Mon, 11 May 2026 12:44:00 -0600 Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD)) (envelope-from ) id 1wMVbV-00000000HI2-3Tni for dave@doctor.nl2k.ab.ca; Mon, 11 May 2026 12:43:45 -0600 Resent-From: The Doctor Resent-Date: Mon, 11 May 2026 12:43:45 -0600 Resent-Message-ID: Resent-To: Dave Yadallee Received: from mail-oo1-f73.google.com ([209.85.161.73]:53669) by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256 (Exim 4.98.2 (FreeBSD)) (envelope-from ) id 1wMV1v-00000000EaI-3RjO for root@nk.ca; Mon, 11 May 2026 12:07:10 -0600 Received: by mail-oo1-f73.google.com with SMTP id 006d021491bc7-6853c2438b9so7871699eaf.3 for ; Mon, 11 May 2026 11:06:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20251104; t=1778522767; x=1779127567; darn=nk.ca; h=from:subject:date:message-id:sender:reply-to:mime-version:from:to :cc:subject:date:message-id:reply-to; bh=oj1ijEtnz0oriYbSQILDK+nMGRDVqc/Y0Q5ErXnVhQw=; b=XmcZ9ee+1GYh4768VjgVb4h2kN1r37hU1pCVKq2yZDOK9q/v817cGTW5zxXiWsoJSX +xvaX7jRxXUjIwJlsxVQFjTRlMZvsIPGPMVLMdtwEMwfZ/082jXHl1DpE2CQ6hkT+NG7 rA23xENuRLQKoPk+EXu5ZA9uctUTjZiM8FDmSLodzvlut5V0jp2dkQtWkWX6Z5OiQ4vk 7BcADH33VhJq36krS+BJS7vwB8WNmWjzpTU11NY+98N5LIkLe6PtOuxvzaHYiGzBYge8 /1HJlU6g3iV2S/6nQa6vLiIuth3KQ/XLkjf8dehvwe6x84HSQneRiGraZ47/5GYZYwBM Dj+g== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mailvora-org.20251104.gappssmtp.com; s=20251104; t=1778522767; x=1779127567; darn=nk.ca; h=from:subject:date:message-id:sender:reply-to:mime-version:from:to :cc:subject:date:message-id:reply-to; bh=oj1ijEtnz0oriYbSQILDK+nMGRDVqc/Y0Q5ErXnVhQw=; b=bJomretyQhGRaYOLPQpb4tRZd2H2ML3d39ho3DxyYzFoMsSERkC/hH1GLx9UQPDlQF Wt4LoJWTj6kTu0b00kEx7zDy5Awwd+VnNwF4TrGiTu03p92Qvh1JPXYFgBEp6MjM7t/Q X31YR13Rdm1gB3j/6vJrjxQ24s9ReeImqGDsWFmDYvSZczrTx4GdiPZvPjBqGkjEHD4Z 1ctjb0CzCUj9ZfRalB2pXw9gmKripJ/xSz2wXe6cjbGyZvLzxL/tC87L1zeLqmRq+0c1 /xcNS2ZCv1p6k1WlSDwcLKxTdsa0gcjaCMgAsWfbjF0weGpJGBqWpdmI/Dw6B6I3UAM8 002Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1778522767; x=1779127567; h=from:subject:date:message-id:sender:reply-to:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=oj1ijEtnz0oriYbSQILDK+nMGRDVqc/Y0Q5ErXnVhQw=; b=gFsVj1h74d2kyB8q46dIcHiFmJU/9TFViIsCaZg1MuBe5u/cNjn3NLu3y7U6DPj5oe zrbwfh+ISdG42Icbz8WWYKV7oPCZbaQMFM0x/Zvbche3Zbosri02VBAbYIgiVka+J0sb H/eCN6Zan+NAmmFFRXUCiV/RLCEiwsqhDzQ6bhvkSvX6oUCMg3kfSTd2URqKvg9ZNFe/ Z0gHJZE1O2I0YruyAwyu3HNVRm0wlvNFEWoSgz2ps6D3hthgzOh5dAtcBuqXcdcd1msS vZ7fVfHAHKEjUjM5O+mqXib5GbP1yO//jsvzaOhl3+p2VXznf8kY3cZYkPQi364Tq9Fk EFpw== X-Forwarded-Encrypted: i=1; AFNElJ/HmKP/Z+FFhCmTw99U3Ilxwj32AJ0qJM14J/wET2ohKC7vUq6kD2+xPeRZD7bDuI56WUxx@nk.ca X-Gm-Message-State: AOJu0YyaOf5ql9h0I5Q5mAvd/uiKfoo1sLyAG6sSAcv6LFwhVG1cfc8q LrhekhqLbzsc0hqfzRbncXTJi5GVWgXGETna4q8Q86GF+NzuHIJL6c3DhTIAZe7+YwxKXCy0qSg qAvSpWIrSGuP/y+tdbFJOvG4DNdMZbLa3/tEK8DyzHWwjIw== MIME-Version: 1.0 X-Received: by 2002:a05:6820:c3d8:b0:69b:3360:3f90 with SMTP id 006d021491bc7-69b336041eemt5323085eaf.3.1778522766891; Mon, 11 May 2026 11:06:06 -0700 (PDT) Reply-To: no reply Sender: Google Calendar Message-ID: Date: Mon, 11 May 2026 18:06:07 +0000 Subject: #ABC_123(6) From: no reply Content-Type: multipart/alternative; boundary="000000000000c3026506518e9948" X-Spam_score: 7.1 X-Spam_score_int: 71 X-Spam_bar: +++++++ X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see @@CONTACT_ADDRESS@@ for details. Content preview: #ABC_123(6) #ABC_123(6) Tuesday May 12, 2026 â‹… 3:05am Eastern Time - New York Your current subscription linked with Norton 360 is set to renew on Tuesday, 12 May 2026. Content analysis details: (7.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org [209.85.161.73 listed in dnsbl.ahbl.org] [209.85.161.73 listed in dnsbl.ahbl.org] [209.85.161.73 listed in dnsbl.ahbl.org] [209.85.161.73 listed in dnsbl.ahbl.org] 0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org [209.85.161.73 listed in dnsbl.ahbl.org] 0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org [209.85.161.73 listed in dnsbl.ahbl.org] 1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org [209.85.161.73 listed in dnsbl.ahbl.org] 0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org [209.85.161.73 listed in dnsbl.ahbl.org] 1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] [209.85.161.73 listed in will-spam-for-food.eu.org] -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no trust [209.85.161.73 listed in list.dnswl.org] -2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact safe-sa@returnpath.net [Excessive Number of Queries | ] -3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact cert-sa@returnpath.net [Excessive Number of Queries | ] 1.2 MISSING_HEADERS Missing To: header 1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL, https://senderscore.org/blacklistlookup/ [209.85.161.73 listed in bl.score.senderscore.com] -0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3) [209.85.161.73 listed in wl.mailspike.net] 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge 0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam 2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars 0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid 1.9 REPLYTO_WITHOUT_TO_CC No description available. -0.0 RCVD_IN_MSPIKE_WL Mailspike good senders 0.6 LONG_INVISIBLE_TEXT Long block of hidden text - bayes poison? Subject: {SPAM?} #ABC_123(6) #ABC_123(6) #ABC_123(6) #ABC_123(6) Tuesday May 12, 2026 ⋅ 3:05am (Eastern Time - New York) Your current subscription linked with Norton 360 is set to renew on Tuesday, 12 May 2026. An automatic charge of USD401.77 will be applied. For help, call 1 856 353-0411. Receipt Overview Plan: Full Membership Devices: x2 Length: 60 Months Year(s) Payment: Auto Pay Amount Due: USD401.77 Reference: N88B3NQZXW Auth Code: 39e2459a-32c5-4f1b-be1f-f4cbd532f74b Ensure updates or cancellation 48 hours before renewal. Support: 1 856 353-0852 Guests (Guest list has been hidden at organizer's request) Norton 360 phish from Google Gmail Posted by Dave Yadallee on Monday, May 11. 2026 X-Mozilla-Status: 0001 X-Mozilla-Status2: 00000000 Return-path: Envelope-to: dave@doctor.nl2k.ab.ca Delivery-date: Mon, 11 May 2026 12:44:00 -0600 Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD)) (envelope-from ) id 1wMVbS-00000000HHk-0nGl for dave@doctor.nl2k.ab.ca; Mon, 11 May 2026 12:43:42 -0600 Resent-From: The Doctor Resent-Date: Mon, 11 May 2026 12:43:42 -0600 Resent-Message-ID: Resent-To: Dave Yadallee Received: from mail-oo1-f74.google.com ([209.85.161.74]:51363) by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256 (Exim 4.98.2 (FreeBSD)) (envelope-from ) id 1wMV1m-00000000EZN-3jDo for root@nk.ca; Mon, 11 May 2026 12:06:59 -0600 Received: by mail-oo1-f74.google.com with SMTP id 006d021491bc7-696906ddd6eso5165950eaf.2 for ; Mon, 11 May 2026 11:06:04 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20251104; t=1778522758; x=1779127558; darn=nk.ca; h=from:subject:date:message-id:sender:reply-to:mime-version:from:to :cc:subject:date:message-id:reply-to; bh=ssYc05F2q0uo3r4JSOkCxFZkLG6RGcbhpNE5vm3trVQ=; b=eM9KR9nvF2QZKC6YB2DnQ6HbV+Ybl5lhPPSSd314sfYlqE7w7490FhQ8G0bso3tK/V G1TSeJMJXuqgYpzLu1S4C9GuvJDBj6d5XcSuJF+I6Ls++PlMZhp0GK624I5JRItPTEx0 nSDA7CjHhCM6NrRJigS1PCPV1K3EyW4ZEeGw+zzMeo6J09IrO061KUA0IQKGs2u4DEpZ N72hl7SJPXUnwLQ8q/cf0WnJ99BC27gBxnAwbY0WAdOdylTOIfSe5Ad4OlJ0/2CLBcvZ ZJfG6rWpAVJdBJUOSiqqQx8Jp7JBpyPXtm0lsJE/3tZVnhYkeyJ9oUT2e0rixepxxo2Y 0teg== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mailvora-org.20251104.gappssmtp.com; s=20251104; t=1778522758; x=1779127558; darn=nk.ca; h=from:subject:date:message-id:sender:reply-to:mime-version:from:to :cc:subject:date:message-id:reply-to; bh=ssYc05F2q0uo3r4JSOkCxFZkLG6RGcbhpNE5vm3trVQ=; b=MYP2LF74eHWZnsPdqHNMdVdUjUFlZB9BUGyt461j8NUUtFXNc49MwnAwdKbN1CgJVZ aFge+d2ljIfwGHwIgXBUKs6GIdXoTJ0oYObMjeCPUqQINkd+7tc/Iv8DMUILsm2NTvHb PWeb3rpUTJpHazG9P4V4zJkP1LFYXu8PjrbJSGFU5tIZntM1FY+GzADanVEP5337j8CB hNB+KdG/v6fkA5fI7H1DIuyuG9L9bbsQxOPOCAUTXENk55ROu3ApDwIVZbaisJAw9xzV x8Ko9qGtgHhqMRhQZkHF497tH4MiGYHRUlWewHXfbvDK2Uj6G4kyqf4vkoSjuhB6kS6d /glw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1778522758; x=1779127558; h=from:subject:date:message-id:sender:reply-to:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=ssYc05F2q0uo3r4JSOkCxFZkLG6RGcbhpNE5vm3trVQ=; b=WduUUnr23wgAu7bEmDHfkcAmeb8ERZhmgmhKv7lZIqP759fTFaEH2pMCa1XPLnd99i ALb3FftN0qXAvAA168/Ej/46OFlv41BxKAk9+h7dbJwy4rFvg5EZ1I/xST2LzaklCvKB sDfBiSoMt/C6VQTWY6GpRLSCs1sFzWBKvlR9i9M2E37ymd4unCD7Eq5YBL223jIdWzSK Sdj9HFi7Pnn5FZjI/hFIt9tm1Kr3L/lpPhyesv7utsRqovyljzNDDU0OsWnHCNSqiVAS HbSzu8xfvIsseQp3yy+/XUpIdMOM5U1+8EXfC4mzQQ0XVX7YJinXQsrBeFRX68NQgzd4 LSAA== X-Forwarded-Encrypted: i=1; AFNElJ+g7VSrWQM6WTjV3iwEKAhphJfr6xFgpTSwT4MsgWgipWo/gx3+fzIihy88nt2F5b+a0Jj2@nk.ca X-Gm-Message-State: AOJu0Yz3bIrpL6Tlh6sx9JR2JpIzX6iiWid+Ld35LqVkSDVM6FIfyq9I lDCAJ2TKFbLmrTmwFKvTYkQX3QXnq53hfEblEo/fTczjP/hiQavXUhhE0xJlPhQNLoKzu0aFsDo xmLgJ9E7B03J1DVShO/zMf4ENtl52a/QFk2CD+SD8DBGrkg== MIME-Version: 1.0 X-Received: by 2002:a05:6820:1b08:b0:695:3a00:853c with SMTP id 006d021491bc7-69998c9581cmt14337978eaf.12.1778522757439; Mon, 11 May 2026 11:05:57 -0700 (PDT) Reply-To: no reply Sender: Google Calendar Message-ID: Date: Mon, 11 May 2026 18:05:57 +0000 Subject: #ABC_123(6) From: no reply Content-Type: multipart/alternative; boundary="000000000000327c4606518e99d0" X-Spam_score: 7.1 X-Spam_score_int: 71 X-Spam_bar: +++++++ X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see @@CONTACT_ADDRESS@@ for details. Content preview: #ABC_123(6) #ABC_123(6) Tuesday May 12, 2026 â‹… 3:05am Eastern Time - New York Your current subscription linked with Norton 360 is set to renew on Tuesday, 12 May 2026. Content analysis details: (7.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org [209.85.161.74 listed in dnsbl.ahbl.org] [209.85.161.74 listed in dnsbl.ahbl.org] [209.85.161.74 listed in dnsbl.ahbl.org] [209.85.161.74 listed in dnsbl.ahbl.org] 0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org [209.85.161.74 listed in dnsbl.ahbl.org] 0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org [209.85.161.74 listed in dnsbl.ahbl.org] 1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org [209.85.161.74 listed in dnsbl.ahbl.org] 0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org [209.85.161.74 listed in dnsbl.ahbl.org] 1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] [209.85.161.74 listed in will-spam-for-food.eu.org] -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no trust [209.85.161.74 listed in list.dnswl.org] -2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact safe-sa@returnpath.net [Excessive Number of Queries | ] -3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact cert-sa@returnpath.net [Excessive Number of Queries | ] 1.2 MISSING_HEADERS Missing To: header 1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL, https://senderscore.org/blacklistlookup/ [209.85.161.74 listed in bl.score.senderscore.com] -0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3) [209.85.161.74 listed in wl.mailspike.net] 0.0 HTML_MESSAGE BODY: HTML included in message 0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge 0.0 SARE_FROM_SPAM_WORD4 From address suggests this may be spam 2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars 1.9 REPLYTO_WITHOUT_TO_CC No description available. -0.0 RCVD_IN_MSPIKE_WL Mailspike good senders 0.6 LONG_INVISIBLE_TEXT Long block of hidden text - bayes poison? 0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid Subject: {SPAM?} #ABC_123(6) #ABC_123(6) #ABC_123(6) #ABC_123(6) Tuesday May 12, 2026 ⋅ 3:05am (Eastern Time - New York) Your current subscription linked with Norton 360 is set to renew on Tuesday, 12 May 2026. An automatic charge of USD401.77 will be applied. For help, call 1 856 353-0411. Receipt Overview Plan: Full Membership Devices: x2 Length: 60 Months Year(s) Payment: Auto Pay Amount Due: USD401.77 Reference: N88B3NQZXW Auth Code: 39e2459a-32c5-4f1b-be1f-f4cbd532f74b Ensure updates or cancellation 48 hours before renewal. Support: 1 856 353-0852 Guests (Guest list has been hidden at organizer's request) DHL Phish from Sendgrid Part 2 Posted by Dave Yadallee on Monday, May 11. 2026 ollapse; padding:15px 0; text-align:center;"> -a1de-2e305ea36824/blob-f148f96.png" alt=3D"DHL" width=3D"120" style=3D"bor= der:0; height:auto; line-height:100%; outline:none; text-decoration:none; -= ms-interpolation-mode:bicubic; display:block; max-width:100%;" /> =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt; background-color:#fff4e6; border-left:4px solid #d40511; marg= in:15px 0;"> :1.5; color:#333333;"> Tracking Number: trong>=20 cs45**= **** :1.5; color:#333333;"> Status: Re= ceived at local DHL terminal lor:#333333;"> Action Required: trong> Confirm delivery and pay pending charges 0; font-weight:bold; line-height:1.3;">Pending Charges color:#333333;"> To proceed with delivery, a standard handling and processing = fee of $12.47 USD is required. =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt; margin:15px 0;"> ding:0;"> tyle=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0p= t;"> der-collapse:collapse; padding:12px 25px; background-color:#d40511; border-= radius:4px;"> :16px; font-weight:bold; color:#ffffff; text-decoration:none; display:inlin= e-block; line-height:1.5;">Confirm and Pay Now 0; font-weight:bold; line-height:1.3;">Need Assistance? 0; color:#333333;"> style=3D"color:#d40511; text-decoration:underline;">Customer Support Phone: 01 800 71= 2 3456 color:#333333;">Thank you for using DHL . 33333;">Sincerely, DHL p>

px solid #eeeeee;"> =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt;"> ding:0; font-size:12px; color:#777777;"> ; color:#777777;"> style=3D"color:#777777; text-decoration:underline;">Privacy Policy |=20 tyle=3D"color:#777777; text-decoration:underline;">Terms & Conditions ; color:#777777;"> This message was sent to you because you previously int= eracted with our delivery services. ; color:#777777;">© 2025 DHL . All rights reserved.

"> 

h8zSh3F0f0IeZiwAoLfCvbUSDGmoGtbzkF-2B96goCvzJB-2BVQoH68Wj-2Bvtmfw4GD8sV5yzu=

5iJS-2BBqYNEMwH7OPVTgfWNCHc9ISp-2BcBYV6UxPXTZF4tMq2MOS76sskFQPoEmZKUkOnH03C=

6ZI-2FEQJJ6d8y5LPGTREmYQ8mDDOJxZ48idkq-2BN5810iGIKiVXUFawnLg-3D-3D" alt=3D"=

" width=3D"1" height=3D"1" border=3D"0" style=3D"height:1px !important;widt=

h:1px !important;border-width:0 !important;margin-top:0 !important;margin-b=

ottom:0 !important;margin-right:0 !important;margin-left:0 !important;paddi=

ng-top:0 !important;padding-bottom:0 !important;padding-right:0 !important;=

padding-left:0 !important;"/>

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 11 May 2026 12:44:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMVbg-00000000HIj-3xRt

for dave@doctor.nl2k.ab.ca;

Mon, 11 May 2026 12:43:56 -0600

Resent-From: The Doctor

Resent-Date: Mon, 11 May 2026 12:43:56 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from s.wrqvwxzv.outbound-mail.sendgrid.net ([149.72.154.232]:23904)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMVHx-00000000Fmh-3xcF

for root@nk.ca;

Mon, 11 May 2026 12:23:36 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=opencv.org;

h=content-transfer-encoding:content-type:date:from:mime-version:subject:

to:cc:content-type:date:from:subject:to;

s=s1; t=1778523762;

bh=f9yjCOqbSbiP76jjxTQQryAuWQflEMcvCUGdY4W2T1s=;

b=kV3bL/h2xjphTHruhDOMW244tA36Zhgl3zA6fHYOuYfD8uWFA99Q5ZsI1S88LMPhKEqq

5xMmJ+OqZBQY9mGNIzXQYBppqff8c6Liua6yluZ1kWC4D3n8V5gEmSe9dUgxEI9NMF2W8c

qrfP04hHTp64DN7UpOTOSKjq7qYaHqisIXo+OxPtFzs9WbbfouEB5WTmgxHQIdtLXG2OVK

4U6hlDe+qtnSs0V2MKRkKVjb7AtbfFdRzpzuNNFtmTbKJjCzMIsbUbFNMv6kVxX/kshi9O

6npQDGMWReHALlS88FjXZA97MihJhXW5CO4Dm0U/J6MNXPoOqG4+ZF4SpIOhPtjQ==

Received: by recvd-58d6d9468b-6tlch with SMTP id recvd-58d6d9468b-6tlch-1-6A021E72-3D

2026-05-11 18:22:42.383585882 +0000 UTC m=+1111711.151683161

Received: from NDg1ODgzNDM (unknown)

by geopod-ismtpd-20 (SG) with HTTP

id LmZKPBvTRkK0I1Z-GAl8NA

Mon, 11 May 2026 18:22:42.343 +0000 (UTC)

Content-Transfer-Encoding: quoted-printable

Content-Type: text/html; charset=us-ascii

Date: Mon, 11 May 2026 18:22:42 +0000 (UTC)

From: DHL =?iso-8859-1?b?rg==?=

Mime-Version: 1.0

Message-ID:

Subject: Package held - awaiting owner's directive

X-SG-EID:

=?us-ascii?Q?u001=2ETa3OM1HXsMIo6wnNDuyzVthb71LIukiXG0810I=2Fp=2FTQY2el+W6mlL5eS2?=

=?us-ascii?Q?h3UkJ3TRxomITXR6PXI3UIGWy8dQNOv40wDiV2n?=

=?us-ascii?Q?l8Jy8WjEh5JUo4M0=2Fl=2FJvu0vu4w9XBo59ZB82P9?=

=?us-ascii?Q?x9NMfnPiZupWKyXPC1ZN9PNUEUnmorRfDnPxW1v?=

=?us-ascii?Q?TBLQDIfPsJOzTCoAevaagDKlGSB0Fuwb=2FF5qtdx?=

=?us-ascii?Q?T30lTnYIHvpMgJPISZapwg=3D?=

To: root@nk.ca

X-Entity-ID: u001.fXN7s6z0UzuLoU+akud0bw==

X-Spam_score: 21.1

X-Spam_score_int: 211

X-Spam_bar: +++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: DHL Delivery Notification DHL Delivery Notification



Content analysis details: (21.1 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[149.72.154.232 listed in dnsbl.ahbl.org]

[149.72.154.232 listed in dnsbl.ahbl.org]

[149.72.154.232 listed in dnsbl.ahbl.org]

[149.72.154.232 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[149.72.154.232 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[149.72.154.232 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[149.72.154.232 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[149.72.154.232 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

[149.72.154.232 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

15 GR_DOMAIN_SENDGR1 Received contains spammer id (sendgr)

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

Subject: {SPAM?} Package held - awaiting owner's directive












0" />








tant; font-family:-apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, He=

lvetica, Arial, sans-serif; line-height:1.5; color:#333333; background-colo=

r:#f7f7f7; -webkit-text-size-adjust:100%; -ms-text-size-adjust:100%;">


e=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0pt; =

background-color:#f7f7f7;">

padding:0;"> style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:= 0pt; max-width:600px; width:100%; background-color:#ffffff; margin:0 auto;"= > ollapse; padding:15px 0; text-align:center;"> -a1de-2e305ea36824/blob-f148f96.png" alt=3D"DHL" width=3D"120" style=3D"bor= der:0; height:auto; line-height:100%; outline:none; text-decoration:none; -= ms-interpolation-mode:bicubic; display:block; max-width:100%;" /> font-weight:bold; padding:0; line-height:1.3;">DHL Delivery Notification 2> color:#333333;">Hello, color:#333333;"> We would like to inform you that your package has arrived at = our facility and is ready for delivery. DHL Phish from Sendgrid Part 2 Posted by Dave Yadallee on Monday, May 11. 2026 font-weight:bold; padding:0; line-height:1.3;">DHL Delivery Notification 2> color:#333333;">Hello, color:#333333;"> We would like to inform you that your package has arrived at = our facility and is ready for delivery. =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt; background-color:#fff4e6; border-left:4px solid #d40511; marg= in:15px 0;"> :1.5; color:#333333;"> Tracking Number: trong>=20 cs45**= **** :1.5; color:#333333;"> Status: Re= ceived at local DHL terminal lor:#333333;"> Action Required: trong> Confirm delivery and pay pending charges 0; font-weight:bold; line-height:1.3;">Pending Charges color:#333333;"> To proceed with delivery, a standard handling and processing = fee of $12.47 USD is required. =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt; margin:15px 0;"> ding:0;"> tyle=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0p= t;"> der-collapse:collapse; padding:12px 25px; background-color:#d40511; border-= radius:4px;"> :16px; font-weight:bold; color:#ffffff; text-decoration:none; display:inlin= e-block; line-height:1.5;">Confirm and Pay Now 0; font-weight:bold; line-height:1.3;">Need Assistance? 0; color:#333333;"> style=3D"color:#d40511; text-decoration:underline;">Customer Support Phone: 01 800 71= 2 3456 color:#333333;">Thank you for using DHL . 33333;">Sincerely, DHL p> px solid #eeeeee;"> =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt;"> ding:0; font-size:12px; color:#777777;"> ; color:#777777;"> style=3D"color:#777777; text-decoration:underline;">Privacy Policy |=20 tyle=3D"color:#777777; text-decoration:underline;">Terms & Conditions ; color:#777777;"> This message was sent to you because you previously int= eracted with our delivery services. ; color:#777777;">© 2025 DHL . All rights reserved.

"> 

Z6QO5nHB-2BRqScg2OszQc7WdtPVekyRzQCwNg0mQMaP3s5V88DSz2WjxeYEs39fD1kGsqHDEN3=

W9iM1DQWN5vxBBPDOIE-2FcOTIfn7VxiTktB7UYGmz2iGn3Yuq7r8yQb0gZvZ-2FjHDWOSbkWc5=

-2BKy1Q4-2BmGgIQfe7YmSTQ52UjX8Wp5R07wE-2FMomqze6ESf5bhN-2BXA-3D-3D" alt=3D"=

" width=3D"1" height=3D"1" border=3D"0" style=3D"height:1px !important;widt=

h:1px !important;border-width:0 !important;margin-top:0 !important;margin-b=

ottom:0 !important;margin-right:0 !important;margin-left:0 !important;paddi=

ng-top:0 !important;padding-bottom:0 !important;padding-right:0 !important;=

padding-left:0 !important;"/>

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Mon, 11 May 2026 12:44:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMVbB-00000000HGa-0XDk

for dave@doctor.nl2k.ab.ca;

Mon, 11 May 2026 12:43:25 -0600

Resent-From: The Doctor

Resent-Date: Mon, 11 May 2026 12:43:25 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from s.wfbtzhsw.outbound-mail.sendgrid.net ([159.183.224.105]:59380)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wMUrh-00000000Dm0-1kZ8

for doctor@nk.ca;

Mon, 11 May 2026 11:56:28 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=opencv.org;

h=content-transfer-encoding:content-type:date:from:mime-version:subject:

to:cc:content-type:date:from:subject:to;

s=s1; t=1778522132;

bh=o0zF4zdFg7nScQJm94SDc+Sd87uTRRH7xeQlkj+v/nc=;

b=wzcszvRKqbZ0IXXFP0ZOCyhxjteMgwhNkP/P9RR5THBdIgLTooajxybISinNGCD8DJuJ

Zdx6kic9lppCoZf5pZFMOfz1zsIx/4lm0lWUHyMf0wZzd1S96zBHs5X1s6j/SQkhyalXqf

bOKpZvAhmejgynwiFby3r9y+7xWzahRiS18rIs0AKuHO6OZlRBfHFXGIhbFM/USyy9pZ0N

38WWQnEqL8rvCEOoHW28l6l29v26CvElSDADT/A2d6839QRH3kf5PrdM+S6rIX4X0g+Y/m

V0N72BLXqLuS40vwwMt8PRdWMNZbjSgcV/02t8rtqIzSd8aB2V/vonL7BRMWf+Ig==

Received: by recvd-66f8c77d66-dtnxj with SMTP id recvd-66f8c77d66-dtnxj-1-6A021814-45

2026-05-11 17:55:32.543527574 +0000 UTC m=+1110112.512964107

Received: from NDg1ODgzNDM (unknown)

by geopod-ismtpd-11 (SG) with HTTP

id Eb7OnCsVThirsFP_XtW0Hw

Mon, 11 May 2026 17:55:32.514 +0000 (UTC)

Content-Transfer-Encoding: quoted-printable

Content-Type: text/html; charset=us-ascii

Date: Mon, 11 May 2026 17:55:32 +0000 (UTC)

From: DHL =?iso-8859-1?b?rg==?=

Mime-Version: 1.0

Message-ID:

Subject: Package held - awaiting owner's directive

X-SG-EID:

=?us-ascii?Q?u001=2ETa3OM1HXsMIo6wnNDuyzVthb71LIukiXG0810I=2Fp=2FTQY2el+W6mlL5eS2?=

=?us-ascii?Q?h3UkJ3TRxomITXR6PXI3UIGWy8dQJgfcJHv5ICf?=

=?us-ascii?Q?66K2jIRSkIzECvChasTu4w+aMpzCfxUbzQSHn61?=

=?us-ascii?Q?vOuVqQ1bP2JJfsLtl3qgeDUpi2L53y2V5pfqnAm?=

=?us-ascii?Q?PKmK8Ohgnvj4ZGaP3hJCxfdn9K+ftKwyxqTXZ6n?=

=?us-ascii?Q?DayiL1NqH0cQVn9BrPvTwE=3D?=

To: doctor@nk.ca

X-Entity-ID: u001.fXN7s6z0UzuLoU+akud0bw==

X-Spam_score: 22.7

X-Spam_score_int: 227

X-Spam_bar: ++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: DHL Delivery Notification DHL Delivery Notification



Content analysis details: (22.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[159.183.224.105 listed in dnsbl.ahbl.org]

[159.183.224.105 listed in dnsbl.ahbl.org]

[159.183.224.105 listed in dnsbl.ahbl.org]

[159.183.224.105 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[159.183.224.105 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[159.183.224.105 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[159.183.224.105 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[159.183.224.105 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

[159.183.224.105 listed in will-spam-for-food.eu.org]

1.1 URIBL_GREY Contains an URL listed in the URIBL greylist

[URI: sendgrid.net]

2.5 URIBL_DBL_PHISH Contains a Phishing URL listed in the DBL blocklist

[URI: fedax.org]

1.7 URIBL_BLACK Contains an URL listed in the URIBL blacklist

[URI: fedax.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[159.183.224.105 listed in bl.score.senderscore.com]

-0.0 SPF_PASS SPF: sender matches SPF record

15 GR_DOMAIN_SENDGR1 Received contains spammer id (sendgr)

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

Subject: {SPAM?} Package held - awaiting owner's directive












0" />








tant; font-family:-apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, He=

lvetica, Arial, sans-serif; line-height:1.5; color:#333333; background-colo=

r:#f7f7f7; -webkit-text-size-adjust:100%; -ms-text-size-adjust:100%;">


e=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0pt; =

background-color:#f7f7f7;">

padding:0;"> style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:= 0pt; max-width:600px; width:100%; background-color:#ffffff; margin:0 auto;"= > DHL Phish from Sendgrid Part 2 Posted by Dave Yadallee on Monday, May 11. 2026 ollapse; padding:15px 0; text-align:center;"> -a1de-2e305ea36824/blob-f148f96.png" alt=3D"DHL" width=3D"120" style=3D"bor= der:0; height:auto; line-height:100%; outline:none; text-decoration:none; -= ms-interpolation-mode:bicubic; display:block; max-width:100%;" /> font-weight:bold; padding:0; line-height:1.3;">DHL Delivery Notification 2> color:#333333;">Hello, color:#333333;"> We would like to inform you that your package has arrived at = our facility and is ready for delivery. =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt; background-color:#fff4e6; border-left:4px solid #d40511; marg= in:15px 0;"> :1.5; color:#333333;"> Tracking Number: trong>=20 cs45**= **** :1.5; color:#333333;"> Status: Re= ceived at local DHL terminal lor:#333333;"> Action Required: trong> Confirm delivery and pay pending charges 0; font-weight:bold; line-height:1.3;">Pending Charges color:#333333;"> To proceed with delivery, a standard handling and processing = fee of $12.47 USD is required. =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt; margin:15px 0;"> ding:0;"> tyle=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-table-rspace:0p= t;"> der-collapse:collapse; padding:12px 25px; background-color:#d40511; border-= radius:4px;"> :16px; font-weight:bold; color:#ffffff; text-decoration:none; display:inlin= e-block; line-height:1.5;">Confirm and Pay Now 0; font-weight:bold; line-height:1.3;">Need Assistance? 0; color:#333333;"> style=3D"color:#d40511; text-decoration:underline;">Customer Support Phone: 01 800 71= 2 3456 color:#333333;">Thank you for using DHL . 33333;">Sincerely, DHL p> px solid #eeeeee;"> =3D"100%" style=3D"border-collapse:collapse; mso-table-lspace:0pt; mso-tabl= e-rspace:0pt;"> ding:0; font-size:12px; color:#777777;"> ; color:#777777;"> style=3D"color:#777777; text-decoration:underline;">Privacy Policy |=20 tyle=3D"color:#777777; text-decoration:underline;">Terms & Conditions ; color:#777777;"> This message was sent to you because you previously int= eracted with our delivery services. ; color:#777777;">© 2025 DHL . All rights reserved.

"> 

Z6QLc8x-2F-2BKGnvk5srZX-2BTJdMKNZrrtjUtlUV4-2F9tH2DkbSuNus-2FhMkX8kepVdZlct=

Qt80YR41nbTPDMokX1L7rV7jZP7C117hmQ0qvFa8BMF70Ol-2BIOa5CybPR3WxBOTkCV-2BtQ4I=

r5Uhz6aK1abtWRF-2FCVv8eqUX4SsjLqZ2y23Z3oDP8NdoIRhe2QwAZeGBn75A-3D-3D" alt=

=3D"" width=3D"1" height=3D"1" border=3D"0" style=3D"height:1px !important;=

width:1px !important;border-width:0 !important;margin-top:0 !important;marg=

in-bottom:0 !important;margin-right:0 !important;margin-left:0 !important;p=

adding-top:0 !important;padding-bottom:0 !important;padding-right:0 !import=

ant;padding-left:0 !important;"/>