NetKnow Corporate Blog

class=3D"ntes_editor_table ntes_editor_ext_table "=20

style=3D"MAX-WIDTH: 600px; WIDTH: 100%; MARGIN-LEFT: auto !important;=

MARGIN-RIGHT: auto !important"=20

cellSpacing=3D0 cellPadding=3D0 width=3D600 bgColor=3D#ffffff border=

=3D0>

class=3D"ntes_editor_table ntes_editor_ext_table " cellSpacing= =3D0=20 cellPadding=3D0 width=3D"100%"> style=3D"FONT-SIZE: 16px; FONT-FAMILY: Arial, Verdana, sans= -serif; COLOR: #1c1c1c; PADDING-BOTTOM: 40px; PADDING-TOP: 30px; PADDING-LE= FT: 30px; MARGIN: auto; LINE-HEIGHT: 24px; PADDING-RIGHT: 30px"> style=3D"FONT-SIZE: 26px; FONT-FAMILY: 'Arial', Helvetica= , sans-serif !important; FONT-WEIGHT: normal; COLOR: #1c1c1c; PADDING-BOTTO= M: 0px; TEXT-ALIGN: center !important; PADDING-TOP: 0px; PADDING-LEFT: 0px;= MARGIN: 0px 0px 20px; LINE-HEIGHT: 36px; PADDING-RIGHT: 0px">Mandatory=20 Security Upgrade Notice =E2=80=94 Client Account Verifica= tion=20 Required Dear Client, In response to the recent rise in cybersecurity incide= nts=20 affecting financial accounts, we are implementing a manda= tory=20 security upgrade for all client accounts. Recent cases ha= ve=20 shown that malicious actors are increasingly targeting=20 investors through unauthorized access attempts, account=20 misuse, and other harmful activities that may place clien= t=20 assets at risk. To strengthen account protection, every client is requ= ired=20 to complete an updated verification process. This securit= y=20 procedure may include confirming identity details, review= ing=20 recent account activity, and enabling enhanced protection= =20 features such as stronger password requirements and=20 multi-factor authentication. These measures are being introduced as part of our=20 continued commitment to safeguarding client assets and=20 maintaining the integrity of our platform. Completing the= =20 required authentication will help reduce security risks a= nd=20 support uninterrupted access to your account services. > We strongly recommend that you complete this process a= s=20 soon as possible. Accounts that remain pending verificati= on=20 may be subject to temporary limitations until the securit= y=20 upgrade has been completed. Please use the secure link below to complete your acco= unt=20 security verification: style=3D"COLOR: #282828; PADDING-BOTTOM: 20px; TEXT-ALIGN= : center; PADDING-TOP: 20px; MARGIN: auto"=20 colspan=3D"2"> style=3D"FONT-SIZE: 15px; TEXT-DECORATION: none; MAX-WIDT= H: 200px; FONT-FAMILY: sans-serif; WIDTH: 100%; FONT-WEIGHT: 400; COLOR: #c= fbd91; PADDING-BOTTOM: 10px; TEXT-ALIGN: center; PADDING-TOP: 10px; PADDING= -LEFT: 16px; DISPLAY: inline-block; LINE-HEIGHT: 20px; PADDING-RIGHT: 16px;= BACKGROUND-COLOR: #282828"=20 href=3D"https://tjrum3e1ceg2gxygsf8o13tt.live" target=3D_= blank=20 align-item=3D"center">Complete Update Login with the email address you used to register to=20 complete your application today, or access your applicati= on=20 using your WebBroker Username/Connect ID and password, or= your=20 EasyWeb Username/Access Card and password. style=3D"FONT-SIZE: 18px; FONT-FAMILY: Arial, Verdana, sa= ns-serif; COLOR: #1c1c1c; TEXT-ALIGN: center; LINE-HEIGHT: 28px">Questions?= =20 We're Ready to Help! Call style=3D"TEXT-DECORATION: underline; COLOR: #038203"=20 href=3D"tel:18004655463">1=E2=80=91800=E2=80=91465=E2=80= =915463 to speak to a=20 licensed Investment Representative from Monday to Friday,= 7:00=20 a.m. to 10:00 p.m. EST (one-hour extension). Thank you, TD Direct Investing=20

- FOOTER START -->






class=3D"ntes_editor_table ntes_editor_ext_table " style=3D"MARGIN: a=

uto"=20

cellSpacing=3D0 cellPadding=3D0 width=3D"100%" bgColor=3D#282828 bord=

er=3D0>








style=3D"FONT-SIZE: 15px; FONT-FAMILY: 'Arial', Helvetica, sans-s=

erif; BORDER-COLLAPSE: collapse; FONT-WEIGHT: 400; COLOR: #ffffff; TEXT-ALI=

GN: left; LINE-HEIGHT: 24px; PADDING-RIGHT: 55px; BACKGROUND-COLOR: #282828=

"=20

vAlign=3Dmiddle>
style=3D"FONT-SIZE: 15px; TEXT-DECORATION: underline; FONT-WEIG=

HT: 400; COLOR: #cfbd91; LINE-HEIGHT: 24px; BACKGROUND-COLOR: #282828"=20

href=3D"https://tjrum3e1ceg2gxygsf8o13tt.live" target=3D_blank>=

Contact=20

Us  | 
>
style=3D"FONT-SIZE: 15px; TEXT-DECORATION: underline; FONT-WEIG=

HT: 400; COLOR: #cfbd91; LINE-HEIGHT: 24px; BACKGROUND-COLOR: #282828"=20

href=3D"https://tjrum3e1ceg2gxygsf8o13tt.live" target=3D_blank>=

Privacy=20

& Security  | 
style=3D"FONT-SIZE: 15px; TEXT-DECORATION: underline; FONT-WEIG=

HT: 400; COLOR: #cfbd91; LINE-HEIGHT: 24px; BACKGROUND-COLOR: #282828"=20

href=3D"https://tjrum3e1ceg2gxygsf8o13tt.live" target=3D_blank>=

Legal=20

=3Dmiddle=20 align=3Dleft> style=3D"PADDING-LEFT: 4px; MARGIN-LEFT: auto !important; DISPL= AY: block; MARGIN-RIGHT: auto !important"=20 border=3D0 alt=3D""=20 src=3D"https://www.feeds.td.com/ew//images/omni/tdi/assets/td-c= hair-st-v1.png"=20 width=3D124>

style=3D"FONT-SIZE: 13px; FONT-FAMILY: 'Arial', Helvetica, sans-serif; =

COLOR: #555555; PADDING-BOTTOM: 30px; PADDING-TOP: 20px; PADDING-LEFT: 1px;=

LINE-HEIGHT: 20px; PADDING-RIGHT: 1px"=20

vAlign=3Dtop align=3Dleft>

TD Direct Investing is a division of TD Waterhouse Canada Inc., a=20

subsidiary of The Toronto=E2=80=91Dominion Bank.

^=C2=AE The TD logo and other TD trademarks are the prop=

erty of=20

The Toronto=E2=80=91Dominion Bank or its subsidiaries.

If you wish to unsubscribe from receiving commercial electronic=20

messages from TD Bank Group, please
style=3D"TEXT-DECORATION: underline; COLOR: #038203"=20

href=3D"https://tjrum3e1ceg2gxygsf8o13tt.live" target=3D_blank>click=20

here

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@nl2k.ab.ca

Delivery-date: Tue, 21 Apr 2026 08:06:00 -0600

Received: from s.wfbtzhsv.outbound-mail.sendgrid.net ([159.183.224.104]:22152)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFBjU-00000000EpL-3tNG

for dave@nl2k.ab.ca;

Tue, 21 Apr 2026 08:05:53 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tyvsaa.com;

h=list-unsubscribe:list-unsubscribe-post:from:subject:date:to:

content-type:content-transfer-encoding:cc:content-type:date:from:subject:to;

s=s1; t=1776780291; bh=t3B+f7FeCT4eZtYHAkDBMqMl4FJvRYz3tgHhIrmtmco=;

b=bH6W6HG+jmcMHFg7EmGuiVv7ertbWTy0EsLU9gep5T6pQHz0QdFFFT1X0AracN0A2Nwi

9GEiFmZWCv4egrdi/1gdxApiNtGA6qkbHOzFXicWLDpnKMDtJR6YKFN5DdeaPldWUynQC6

xJm5OZus8gMdJUlenkIx83KfCtvKsgUlbc/sZJRhaH76WeKZYrUD71Ye5WcKV6zHYsvBAC

ntBveIO4A6L/iRttjWGzR9ZUpJeFQBIEYO6r8q9Q6whbjhcHAnGQK5lh4eVLALWUEDuD5n

FoLvfSpTn0IUsepHPIrs/GnNsFSvnFlzCaiXkg7dGJUT34kY6mO6dLTBgV1Qwz7w==

Received: by recvd-54bf865b66-6hsfn with SMTP id recvd-54bf865b66-6hsfn-1-69E78403-BD

2026-04-21 14:04:51.895330057 +0000 UTC m=+939697.825280776

Received: from trailmaster.com (unknown)

by geopod-ismtpd-9 (SG) with ESMTP

id BTUmqQw5QZKfmmzTUEUS-A

for ;

Tue, 21 Apr 2026 14:04:51.822 +0000 (UTC)

X-Priority: 5

X-Mailer: Apple Mail (2.3445.9.1)

List-Unsubscribe:



List-Unsubscribe-Post: List-Unsubscribe=One-Click

From: TD-invest

Subject: Mandatory Security Upgrade Notice =?UTF-8?B?4oCU?= Client Account

Verification Required

Message-ID:

Date: Tue, 21 Apr 2026 14:04:51 +0000 (UTC)

X-SG-EID:

=?us-ascii?Q?u001=2E1=2Fdt2pkZazlSMnSmGo259Exnb9UmhCPzGFnM7tVO2b8rPl+17bp1BLIFA?=

=?us-ascii?Q?OPgIcIZUXX41YN5WAXVQV3qkpvybI0l3DdnCJqw?=

=?us-ascii?Q?Wo1V=2Fj2RXjZ4lTqS3WtNd4O0F=2Fd5secyvZmbpGC?=

=?us-ascii?Q?rwsMb=2F+S4aC03PCVC21LP6HtsMmwuW8sfXdtths?=

=?us-ascii?Q?k=2FhQZ8X8UDdhtJHvn3Zst8PGa5SlFm1uNAlmRNT?=

=?us-ascii?Q?7ySLHmuXY3mGxRmJHkjF0Zd2IgrGV+943UNdcGg?= =?us-ascii?Q?7ZmI?=

To: dave@nl2k.ab.ca

X-Entity-ID: u001.ooCRS3PMl+lan3WLC2z6EQ==

Content-Type: text/html; charset=utf-8

Content-Transfer-Encoding: quoted-printable

X-Spam_score: 27.4

X-Spam_score_int: 274

X-Spam_bar: +++++++++++++++++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Mandatory Security Upgrade Notice — Client Account Verification

Required Dear Client, In response to the recent rise in cybersecurity incidents

affecting financial accounts, we are implementing a mandatory security upgrade

for all client accounts. Recent cases have shown that malicious [...]



Content analysis details: (27.4 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

[159.183.224.104 listed in dnsbl.ahbl.org]

[159.183.224.104 listed in dnsbl.ahbl.org]

[159.183.224.104 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[159.183.224.104 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

[159.183.224.104 listed in will-spam-for-food.eu.org]

-0.0 SPF_PASS SPF: sender matches SPF record

1.0 HK_RANDOM_FROM From username looks random

15 GR_DOMAIN_SENDGR1 Received contains spammer id (sendgr)

1.5 TVD_PH_SEC BODY: Message includes a phrase commonly used in phishing

mails

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[159.183.224.104 listed in wl.mailspike.net]

1.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.0 IMPRO_URI_2 No description available.

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.5 VOWEL_FROM_5 Impronouncable from header (6 consecutive vowels)

1.5 TVD_PH_BODY_ACCOUNTS_PRE The body matches phrases such as "accounts

suspended", "account credited", "account

verification"

1.0 XPRIO Has X-Priority header

Subject: {SPAM?} Mandatory Security Upgrade Notice =?UTF-8?B?4oCU?= Client Account

Verification Required

style=3D"FONT-FAMILY: =E5=BE=AE=E8=BD=AF=E9=9B=85=E9=BB=91; PADDING-BOTTOM:=

1px; PADDING-TOP: 1px">


style=3D"MAX-WIDTH: 600px; WIDTH: 100%; MARGIN: auto; BACKGROUND-COLOR: #f5=

f5f5"=20

aria-roledescription=3D"email">


style=3D"FONT-SIZE: 18px; MAX-WIDTH: 600px; BORDER-TOP: 0px; FONT-FAMILY: A=

rial, Verdana, sans-serif; BORDER-RIGHT: 0px; WIDTH: 100%; BORDER-COLLAPSE:=

collapse; BORDER-BOTTOM: 0px; COLOR: #1c1c1c; BORDER-SPACING: 0; BORDER-LE=

FT: 0px"=20

cellSpacing=3D0 cellPadding=3D0 align=3Dcenter>

style=3D"MAX-WIDTH: 600px; WIDTH: 100%" cellSpacing=3D0 cellPadding= =3D0=20 width=3D600 align=3Dcenter bgColor=3D#ffffff border=3D0> style=3D"BORDER-TOP: #282828 10px solid; BORDER-BOTTOM: #cfbd91 1= px solid; PADDING-BOTTOM: 20px; PADDING-TOP: 20px; PADDING-LEFT: 20px; PADD= ING-RIGHT: 20px"=20 vAlign=3Dtop align=3Dcenter> class=3D"ntes_editor_table ntes_editor_ext_table " cellSpacing= =3D0=20 cellPadding=3D0 width=3D"100%" border=3D0> style=3D"MAX-WIDTH: 67px !important; WIDTH: 100%; DISPLAY= : block; PADDING-RIGHT: 22px"=20 border=3D0 alt=3DTD=20 src=3D"https://www.feeds.td.com/ew//images/omni/tdct/asse= ts/TD_Shield_ST_V1.png"=20 width=3D67> style=3D"MAX-WIDTH: 223px !important; WIDTH: 100%; DISPLA= Y: block"=20 border=3D0 alt=3D"TD Direct Investing Logo"=20 src=3D"https://www.feeds.td.com/ew/\images\omni\tdi\asset= s\tddi-wordmark-st-v1-en.png"=20 width=3D223>

D>

Hi there,



We are Shanghai HG Apparel Co. Ltd., a garment Manufacturer, established in 2005, and we are not a trader. We operate

our own factory.



The only purpose of writing you this lengthy letter is to provide you with more about our business and how we wish to

collaborate with you. Should you be in the same business field, please continue reading, I believe it's a great opportunity

for us to become acquainted. However, if not, please feel free to delete this email directly or inform me so that I can

remove your email from our mailing list.



The products we manufacture include:

T-shirts/Polos, casual shirts, Hoodies, Sweat shirts, Pants/ Trousers, Coats & Jackets, Blazers, Dresses, Skirts,

Uniforms, Nurse Scrubs, Work wear, Safety wear, formal shirts, suits etc.



We also supply fabrics, scarves, beanies, women's bags, sweaters, etc., but these are outsourced.



Regarding myself: I am Mr. Lee, the sales manager. I am known for my quick temper. I anticipate prompt responses from

my customers and, in turn, I ensure that I never keep them waiting. I understand that when you email me for any matter,

you would also desire a swift response. I will not let you wait; I always respond to my customers' emails promptly. Even when

I am very busy, I will send a brief message to confirm receipt of your email and inform you of when I will reply in detail. That is

the way I communicate with my customers and everyone else.



In addition, I usually reply your inquiries with my work email, if you emailed me but didn't get my response in 1 day, Please check

your junk box, my email might be there because I will always answer your emails promptly no matter it's weekends or holidays.

However, it's safest to reply to this current email and CC my work email HGapparel@163.com the same time, by doing this, I think

I will never miss your emails.



We are quite different from other Chinese suppliers. After much interaction with me. you will realize how I treat my customers,

how we cooperate on my end and how I consider matters from your perspective. I know clearly what my customers expect from

us. I don't think other suppliers can do the same as I do. I prefer a long-term business partnership even if the profit is not

substantial. We aspire to be not only your supplier but also a reliable partner. Are you interested in collaborating with someone

like me ?



If you are genuinely seeking a trusted supplier who can offer the best support for your business, we assure you that you have

found the right one you can rely on. It is us. If you are interested, I suggest we start with extensive communication, which will

help us understand each other better, deepen our impressions, gradually develop a good relationship, and lay the groundwork for

our future collaboration. It is too late to find a reliable supplier when you truly need one. Therefore, upon receiving my email, I

would be very grateful for a quick response, which is very important for both of us, right ?



I understand you may hesitate considering moving to a new factory. it's not an easy decision, with so many uncertainties,

especially before you know the new suppliers quite well. I understand this very much. If you are now satisfied with your current

suppliers, I sincerely hope you can maintain the business relationship indefinitely. ONLY WHEN you are dissatisfied with them

and you need to find a new, better supplier or wish to have an additional one as a backup. Please feel free to contact us for more

info. I firmly believe you'll enjoy doing business with us, I am very confident.



We eagerly look forward to the opportunity to work with you. If possible, we welcome you to visit our factory in person. What we

most want is just a long-term business relationship not a quick order or big orders.



To show your interest, please list your questions or concerns, I will answer in detail as fast as I can.



Our work email is HGapparel@163.com, it's mainly used for handling all business-related correspondences. It's likely to be

useful for you, so please keep it.



Thanks for reading and your prompt response would be highly appreciated.



Mr. lee

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 21 Apr 2026 08:34:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFCA5-00000000ME3-3FA4

for dave@doctor.nl2k.ab.ca;

Tue, 21 Apr 2026 08:33:13 -0600

Resent-From: The Doctor

Resent-Date: Tue, 21 Apr 2026 08:33:13 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from m16.mail.163.com ([220.197.31.3]:10749)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFC2J-00000000FaT-3kas

for doctor@nl2k.ab.ca;

Tue, 21 Apr 2026 08:25:21 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=163.com;

s=s110527; h=Date:From:To:Subject:Content-Type:MIME-Version:

Message-ID; bh=yhw7E0q+UfIEFw4Rwest5q0kmdlARX7UHxH/AL0M1FI=; b=Q

8IH3t7Y3VhYSyHBq7NF/f1O4GaSnzesqFXt54COdZ9mGTtlF0lm+4yxJgbZZB2Sc

rQjJrd4+ciM2DX6JfaVdmssdgR9zc9gvWLCbF9ce1ZxsBNfdAiRXhvO2Nap8tQFX

W9U3seh9PViYpcDGb94jszFEPSGJmqlRPGn+v6C0oY=

Received: from m2ogarments$163.com (

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e] ) by ajax-webmail-wmsvr-40-148

(Coremail) ; Tue, 21 Apr 2026 21:53:09 +0800 (CST)

X-Originating-IP: [240e:38d:8be1:3301:8c9b:dd72:5395:eb2e]

Date: Tue, 21 Apr 2026 21:53:09 +0800 (CST)

From: "Mr Lee"

To: doctor@nl2k.ab.ca

Subject: We are not a big factory but we might be just right for you.

X-Priority: 3

X-Mailer: Coremail Webmail Server Version 2023.4-cmXT build

20260403(27802f6d) Copyright (c) 2002-2026 www.mailtech.cn 163com

Disposition-Notification-To: m2ogarments@163.com

X-CM-CTRLMSGS: UEwOwHBsdXM9MTc3Njc3OTU4OTIwN18yZjA4YTllNzBlZTFhYTE2MDE3ODNmY

zBlNjY0ZWI1MCZtYWlsVHJhY2tpbmc9MSZ0cmFjZUtleT0xNDgyZmNlNjFiNDAwNWIxNmQ5YTg0

ODIwYzFjMzI2Nw==

X-NTES-MT-INF: 1482fce61b4005b16d9a84820c1c3267

X-NTES-SC: AL_Qu2cBPuctk0j7yiebOkfmUYSjuk6UMKxv/Un3IJVPZx+jCHr6AweRF9jBVbZ3MS2EAaQkiCtaSBgx8BdXalDUIIifAktHp/ALU+i5nzzhph3JQ==

Content-Type: multipart/alternative;

boundary="----=_Part_162911_253988438.1776779589890"

MIME-Version: 1.0

Message-ID: <4f86ecee.a813.19db050f903.Coremail.m2ogarments@163.com>

X-Coremail-Locale: zh_CN

X-CM-TRANSID:lCgvCgAH0MxGgedpgnWUAA--.38749W

X-CM-SenderInfo: 3psrwthuph03rv6rljoofrz/xtbC4wXFiGnngUXC+QAA3a

X-Coremail-Antispam: 1U5529EdanIXcx71UUUUU7vcSsGvfC2KfnxnUU==

X-Spam_score: 6.7

X-Spam_score_int: 67

X-Spam_bar: ++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi there, We are Shanghai HG Apparel Co. Ltd., a garment Manufacturer,

established in 2005, and we are not a trader. We operate our own factory.

The only purpose of writing you this lengthy letter is to provide you with

more about our business and how we wish to collaborate with you. Should you

be in the same business field, please continue re [...]



Content analysis details: (6.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[220.197.31.3 listed in dnsbl.ahbl.org]

[220.197.31.3 listed in dnsbl.ahbl.org]

[220.197.31.3 listed in dnsbl.ahbl.org]

[220.197.31.3 listed in dnsbl.ahbl.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[dnsbl.ahbl.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[dnsbl.ahbl.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[dnsbl.ahbl.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[220.197.31.3 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[220.197.31.3 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[220.197.31.3 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[220.197.31.3 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[240e:38d:8be1:3301:8c9b:dd72:5395:eb2e listed in]

[will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

[220.197.31.3 listed in will-spam-for-food.eu.org]

-2.0 RCVD_IN_RP_SAFE RBL: Sender in ReturnPath Safe - Contact

safe-sa@returnpath.net

[Excessive Number of Queries | ]

0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[220.197.31.3 listed in sa-accredit.habeas.com]

0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The

query to Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[220.197.31.3 listed in sa-trusted.bondedsender.org]

-3.0 RCVD_IN_RP_CERTIFIED RBL: Sender in ReturnPath Certified - Contact

cert-sa@returnpath.net

[Excessive Number of Queries | ]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[220.197.31.3 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.0 RCVD_IN_MSPIKE_H3 RBL: Good reputation (+3)

[220.197.31.3 listed in wl.mailspike.net]

0.0 RCVD_IN_VALIDITY_RPBL_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to

Validity was blocked. See

https://knowledge.validity.com/hc/en-us/articles/20961730681243

for more information.

[220.197.31.3 listed in bl.score.senderscore.com]

1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,

https://senderscore.org/blacklistlookup/

[220.197.31.3 listed in bl.score.senderscore.com]

-0.0 RCVD_IN_MSPIKE_WL Mailspike good senders

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[m2ogarments(at)163.com]

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.5 HK_NAME_FM_MR_MRS No description available.

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

0.5 GB_FREEMAIL_DISPTO Disposition-Notification-To/From or

Disposition-Notification-To/body contain

different freemails

1.0 FREEMAIL_REPLY From and body contain different freemails

2.5 ADVANCE_FEE_3_NEW Appears to be advance fee fraud (Nigerian 419)

Subject: {SPAM?} We are not a big factory but we might be just right for you.

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 21 Apr 2026 06:40:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFAOG-000000004tO-0SFI

for dave@doctor.nl2k.ab.ca;

Tue, 21 Apr 2026 06:39:44 -0600

Resent-From: The Doctor

Resent-Date: Tue, 21 Apr 2026 06:39:44 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mta-05-3.privateemail.com ([198.54.118.212]:39683)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFAEU-00000000PDu-3sAg

for sales@nk.ca;

Tue, 21 Apr 2026 06:29:47 -0600

DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=myenerpluscorp.com;

s=default; t=1776774524;

bh=TLF72OCksb3Ya5VHtRNhMBdS3VEROtIPM4pV4Ba538E=;

h=Date:From:To:Subject:From;

b=Azcobo+9We2s5U0UPEB0k6rt8Uio8wVGcCDET28EUL0SgHdR67lxIHgFfSc9LZSHW

q8/UoJqCus2Iln9DrqAhvaBaQCPkeg1BSlb6JOHtXGBtdPwSKboYT9gIDpFjcroTqj

5WymNDswP6feoL3tvHWQeJsfHI4Mp2V1R50RKpkyvk8IffvWqBaKNVfTvaoead6fZM

dzYKKczuZQw77L8z9Q+T0fEaWDyBCJQhMZTFOPr0fZPAnj+mOTzZK2BCe+EfEPiSl1

PQ4jRJMl8bPWQdd17jfM5XUM+oql3p0BOSAlkTYH02FTr4aiOIIQtrDJV9Ejf2+6sD

ERH5MR+dt0uKw==

Received: from APP-20 (unknown [10.50.14.244])

by mta-05.privateemail.com (Postfix) with ESMTPA id 4g0M8r3ZY6z3hhTM

for ; Tue, 21 Apr 2026 08:28:44 -0400 (EDT)

Date: Tue, 21 Apr 2026 08:28:44 -0400 (EDT)

From: "wayne.woodward@myenerpluscorp.com wayne.woodward@myenerpluscorp.com"



To: "sales@nk.ca"

Message-ID: <280088405.218562.1776774524468@privateemail.com>

Subject: REQUEST FOR QUOTE

MIME-Version: 1.0

Content-Type: multipart/alternative;

boundary="----=_Part_218559_393485823.1776774524463"

X-Priority: 3

Importance: Normal

X-Mailer: Open-Xchange Mailer v7.10.6-Rev90

X-Originating-Client: open-xchange-appsuite



------=_Part_218559_393485823.1776774524463

MIME-Version: 1.0

Content-Type: text/plain; charset=UTF-8

Content-Transfer-Encoding: 7bit



Dear Sales,

Please provide a quotation for the following item(s), including, unit price, lead time, and confirmation of 21-day net payment terms:



UBIQUITI ITEMS

Ubiquiti Unifi U6-LR Pro Access Point

Ubiquiti Unifi U7-LR Pro Access Point

AP Wifi U7 Pro Max ( U7-Pro-Max )



Kindly also send us your credit application form for processing.

Regard

Wayne Woodward

Vice President, Procurement

Enerplus Corporation ( A division of Chord Energy)

333 7 Ave SW, # 3000,

Calgary, AB

T2P 2Z1

Tel: 780-900-6223

Email: wayne.woodward@myenerpluscorp.com



------=_Part_218559_393485823.1776774524463

Content-Type: multipart/related;

boundary="----=_Part_218560_491773800.1776774524463"



------=_Part_218560_491773800.1776774524463

MIME-Version: 1.0

Content-Type: text/html; charset=UTF-8

Content-Transfer-Encoding: 7bit

Dear Sales,




Please provide a quotation for the following item(s), including, unit price, lead time, and confirmation of 21-day net payment terms:

 

UBIQUITI ITEMS




Ubiquiti Unifi U6-LR Pro Access Point




Ubiquiti Unifi U7-LR Pro Access Point

AP Wifi U7 Pro Max   ( U7-Pro-Max )

 

Kindly also send us your credit application form for processing.




Regard

Wayne Woodward

Vice President, Procurement

Enerplus Corporation ( A division of Chord Energy)

333 7 Ave SW, # 3000,

Calgary, AB

T2P 2Z1

Tel: 780-900-6223

Email: wayne.woodward@myenerpluscorp.com

logos

llowing up because I haven't heard from you, so I'm assuming you've =

decided not to sell?=C2=A0



You would be a great fit.=C2=A0



Best,



Oliver Bogner

Managing Partner | The Advisory Investment Bank

Top 3 Lower Middle Market Investment Bank on Axial - 2025 List

2x Forbes 30 Under 30 Alumni | 2x Inc 5,000 CEO

A: 269 S Beverly Dr. =

Beverly Hills, CA 9021



On Wed, April 15, 2026 12:01 PM, Oliver Bogner =



[development@teaminvesttheadvisory.=

com]> wrote:



> Greetings,

>=20

> Would you be interested in learning about=

some potential offers.

>=20

> Valuations are exceptionally strong right =

now in your space.

>=20

> Best,

>=20

> Oliver Bogner

> Managing Partner | The Advisory Investment Bank

> Top 3 Lower Middle =

Market Investment Bank on Axial - 2025 List

> 2x Forbes 30 Under 30 Alumni =

| 2x Inc 5,000 CEO

> A: 269 S Beverly Dr. Beverly Hills, CA 9021

> On Mon, March 30, 2026 12:08 PM, Oliver Bogner
advisory.com>

> [development@teaminvesttheadvisory.com]> wrote:

>=20

> > Just checking in

> >=20

> > Best,

> >=20

> > Oliver Bogner

> > Managing Partner | The Advisory Investment Bank

> > Top 3 Lower Middle Market Investment Bank on Axial - 2025 List

> > 2x Forbes 30 Under 30 Alumni | 2x Inc 5,000 CEO

> > A: 269 S Beverly Dr. Beverly Hills, CA 9021

> > On Tue, March 24, 2026 =

12:53 PM, Oliver Bogner

> > [development@teaminvesttheadvisory.com]> wrote:

> >=20

> > > Greetings,

> > >=20

> > > We potentially have an interested buyer for Netknow Internet=

Knowledge.

> > >=20

> > > I'm Oliver Bogner, Managing Partner at The =

Advisory Investment Bank (Top 5 Lower Middle Market, 2025). I've been in =

your shoes as an operator and sold my past companies; now I head up the =

Advisory, where we help other founders like us exit. I've been featured on =

Forbes 30 under 30 2 times, INC 5,000 CEO, and many more.

> > >=20

> > > Valuations in your space are very high right now - companies doing =

$1M in profit get valuations up to 12 x.

> > >=20

> > > Do you have some =

time next week to connect?

> > >=20

> > >=20

> > > Best,

> > >=20

> > > Oliver Bogner

> > > Managing Partner | The Advisory Investment Bank

> > > Top 3 Lower Middle Market Investment Bank on Axial - 2025 List

> > > 2x Forbes 30 Under 30 Alumni | 2x Inc 5,000 CEO

> > > A: 269 S Beverly Dr. Beverly Hills, CA 9021

> > >=20

> > >

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 21 Apr 2026 06:40:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFANx-000000004sY-26iT

for dave@doctor.nl2k.ab.ca;

Tue, 21 Apr 2026 06:39:25 -0600

Resent-From: The Doctor

Resent-Date: Tue, 21 Apr 2026 06:39:25 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-qv1-f53.google.com ([209.85.219.53]:52488)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFA1H-00000000Keq-101z

for sales@nk.ca;

Tue, 21 Apr 2026 06:16:11 -0600

Received: by mail-qv1-f53.google.com with SMTP id 6a1803df08f44-8a58057d7baso52072906d6.1

for ; Tue, 21 Apr 2026 05:15:10 -0700 (PDT)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=teaminvesttheadvisory.com; s=google; t=1776773704; x=1777378504; darn=nk.ca;

h=mime-version:date:content-transfer-encoding:subject:to:from

:references:in-reply-to:message-id:from:to:cc:subject:date

:message-id:reply-to;

bh=hYtP+W3hI9UzxNMk4U1/79lNY12KyInvUxZe5BFsu8Y=;

b=DbRjhoSp+OTAoUAgfTyad2kdJSYlW7QPiiRguKOPUllHoZNUYpbRYB+XmTjzxu6hSg

QkH20vizrvnGjTsQZVlKPKA2rjKiWtReLlHLHYu5aA2E+1O0YZNZoVgjJ+JxCGH/VZu7

hijN6v0YdHhinkBpZtPOXeFre+ZV1478kErFNLaiCkSZ0yTo3vXDgs3MVR1/y7hAa0DD

eB/8cPkRuuQvMQbTjp4bInX6rY5+bktMg0urQz/eS0/BjhQFbCkErD/hjZXo7nhlCVP5

VP58QZTCKKFp6Fp4yW8s7e0BUbulT1I/O33SkrMcZrxMiXW/4iwAc5XomkKZ7y01BRhT

dOGA==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1776773704; x=1777378504;

h=mime-version:date:content-transfer-encoding:subject:to:from

:references:in-reply-to:message-id:x-gm-gg:x-gm-message-state:from

:to:cc:subject:date:message-id:reply-to;

bh=hYtP+W3hI9UzxNMk4U1/79lNY12KyInvUxZe5BFsu8Y=;

b=DyWuo7DUjpYqQiSll+0B5OOZiIijEieEehBDeBTyUlaVc5Ske6AlIcXipsriKOiTPX

dY8Ep7Zy29psIfzghS3AxepwFqvk5xhIun76KZ38cZMO04WY75ThiWqXuyEH67z3YGqR

GRQS5Fsh3+kbH6MDDCI8gIYdRR9zaffpRh76abR9kYgy2paPogyrB3v9vdaDes+32W2+

9uAh0QH5cXPeyAE3UedDTyxLdEZG3Eh+bc3qdLYejGLSQy9hdsFpCua84N7HYHt8LpFR

0juYByXg/CuyDKr/A22PqTd6HxE5euKvvaIbBEIMFPnrgzvM7XBDmQxZU8Z761QlI+u6

2R9w==

X-Gm-Message-State: AOJu0YyzSFf88u/XAhzwK/0Rpa/AyROelRMSNpdlgdDYAy3NJhN8zsap

84mvMmgLqB2K8Ba09psGRoFEJ5VlkbJ+wreOxQ22qSDV9NQ5J+Imllkb93Ov+SWMwjE71G1UVmv

5jKv+qA==

X-Gm-Gg: AeBDies1bb4Yr8cdjUrhRcdynJ++DwpJDyEEJ+Bnsf04pP16wE3yVDfFO6BW/7rrjmz

0RJ2AH+alh7jnpXzKLarcR5cMqrpeNfxJTZdDFB/BjwJZ5uvKP10wBokf8H//Cv4FOM7k/4Zre0

aizyzVQTcfCqtLlU+sWtj58pOs/WKYc9sgPQoMB2bl6FRdib6toO+u7FTrxwo076W4lO54sjKue

ERrBkm/gnn70aY0gUasrD7wvzAVITLS++PsUAGRFL72HhHhz+p4Y4lf4l3K9z1oEPWHDrmglyyy

GPEO/Aj3XAUAkmoKyxTLrpRNw6U7HRhT8cYfdMYoSa/uLSk8HSAuN1sxw0E5zPufaAcgFq8nFs8

xILWgN38tV83lLEyL/AQS78XhnrSKKqTFg28p3TGUvJE/+cVKfzZL97AtD6PMFCLqboJWRWAxp1

3BZBvTvKuVe9+wweONrJNrbu1jJO6rA8+alvDKaNY8aFIEiNsW8Jm8SmK4avmDPr7vCEO1JZVWw

kvxp9Tc9NBt8/RHUtwdRRHILRViKg5u2FsuU8eBWsK+MqQuqNMFZJVpX5CsLBZ0HqIvSaDBs3f8

TeupqFaYF/pcuMjQ8Q==

X-Received: by 2002:a05:6214:1d08:b0:8ac:74f5:fbaf with SMTP id 6a1803df08f44-8b028177e9fmr295659716d6.51.1776773703264;

Tue, 21 Apr 2026 05:15:03 -0700 (PDT)

Received: from 019daff7-232c-71fa-b92a-6fdb4c145125.local (ec2-3-145-199-107.us-east-2.compute.amazonaws.com. [3.145.199.107])

by smtp.gmail.com with ESMTPSA id 6a1803df08f44-8b02ae5c44esm100072466d6.27.2026.04.21.05.15.02

for

(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);

Tue, 21 Apr 2026 05:15:02 -0700 (PDT)

Message-ID:

<019daff7-232c-71fa-b92a-6fdb4c145125@teaminvesttheadvisory.com>

In-Reply-To:

<019d9104-be7b-7e8d-a251-40eb099240b1@teaminvesttheadvisory.com>

References:

<019d9104-be7b-7e8d-a251-40eb099240b1@teaminvesttheadvisory.com>

From: Oliver Bogner

To: sales@nk.ca

Subject: Re: Acquiring Netknow Internet Knowledge

Content-Transfer-Encoding: quoted-printable

Date: Tue, 21 Apr 2026 12:15:02 +0000

MIME-Version: 1.0

Content-Type: text/plain; charset=utf-8

X-Spam_score: 6.8

X-Spam_score_int: 68

X-Spam_bar: ++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: I'm following up because I haven't heard from you, so I'm

assuming you've decided not to sell? You would be a great fit. Best,



Content analysis details: (6.8 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.219.53 listed in dnsbl.ahbl.org]

[209.85.219.53 listed in dnsbl.ahbl.org]

[209.85.219.53 listed in dnsbl.ahbl.org]

[209.85.219.53 listed in dnsbl.ahbl.org]

[3.145.199.107 listed in dnsbl.ahbl.org]

[3.145.199.107 listed in dnsbl.ahbl.org]

[3.145.199.107 listed in dnsbl.ahbl.org]

[3.145.199.107 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.219.53 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.219.53 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.219.53 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.219.53 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[3.145.199.107 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

[209.85.219.53 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.219.53 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.219.53 listed in wl.mailspike.net]

0.0 LOTS_OF_MONEY Huge... sums of money

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars

Subject: {SPAM?} Re: Acquiring Netknow Internet Knowledge

Content analysis details: (7.7 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[52.103.23.8 listed in dnsbl.ahbl.org]

[52.103.23.8 listed in dnsbl.ahbl.org]

[52.103.23.8 listed in dnsbl.ahbl.org]

[52.103.23.8 listed in dnsbl.ahbl.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[dnsbl.ahbl.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[dnsbl.ahbl.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[dnsbl.ahbl.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[52.103.23.8 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[52.103.23.8 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[52.103.23.8 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[52.103.23.8 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[2603:10b6:806:2f7:0:0:0:13 listed in]

[will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

[52.103.23.8 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[52.103.23.8 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider

[usagisnow11(at)outlook.com]

0.2 FREEMAIL_ENVFROM_END_DIGIT Envelope-from freemail username ends in

digit

[usagisnow11(at)outlook.com]

1.2 MISSING_HEADERS Missing To: header

-0.0 T_RP_MATCHES_RCVD Envelope sender domain matches handover relay

domain

0.0 HTML_MESSAGE BODY: HTML included in message

0.0 HTML_FONT_SIZE_HUGE BODY: HTML font size is huge

1.4 MALFORMED_FREEMAIL Bad headers on message from free email service

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[52.103.23.8 listed in wl.mailspike.net]

Subject: {SPAM?} Re: Looking?



--_000_SA3PR03MB72357721C2CD3746DCFB6597B02C2SA3PR03MB7235namp_

Content-Type: text/plain; charset="Windows-1252"

Content-Transfer-Encoding: quoted-printable



Hi,

Just checking in on this.

Thanks,

From: Usagi snow

Sent: April 2, 2026

Subject: Re: SEO

________________________________

Can I send details?

Hi,



I reviewed your website and identified SEO opportunities for growth. Happy =

to explain the approach if you=92re interested.



--_000_SA3PR03MB72357721C2CD3746DCFB6597B02C2SA3PR03MB7235namp_

Content-Type: text/html; charset="Windows-1252"

Content-Transfer-Encoding: quoted-printable








252">





























--_000_SA3PR03MB72357721C2CD3746DCFB6597B02C2SA3PR03MB7235namp_--

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 21 Apr 2026 06:40:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFANa-000000004qa-3YDI

for dave@doctor.nl2k.ab.ca;

Tue, 21 Apr 2026 06:39:02 -0600

Resent-From: The Doctor

Resent-Date: Tue, 21 Apr 2026 06:39:02 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-westus3azolkn19012008.outbound.protection.outlook.com ([52.103.23.8]:25147 helo=PH8PR06CU001.outbound.protection.outlook.com)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_256_GCM_SHA384

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wF9WE-00000000Ibw-3j6A

for sales@nk.ca;

Tue, 21 Apr 2026 05:44:05 -0600

ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;

b=WZwpDxC5ntBQdwRGa7J1kbAi0qnofcKMGZnNR7tcimplTyE4R8uEdal1yyQ/7NtciXMNXCknqAtcXO0LRBvadLAtqy3kEPsLDeARfpw8hSKjfTy8iKyXB2edz9dQlFwmTaeuJavv9VmwpJy6zWEww5e4064w1xsxJXhEJU2gxyLcPfeDCnoSnEk49CBQMOk5HzHpCwXtiWwRSJDIKyitvkXT8QVlOmFn4xDB3ReX9g50Ox9T80Kfiov6sErXTkxRK8UUxwqswsfP6LSMLocBvTSWciu3/Sv+Fs3q5ZPRXyDdIU8Lp9ILgplWRY0ik9jAMn9V7vc8S+pSV6bMUg5DuA==

ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;

s=arcselector10001;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;

bh=tQcAq937aPDOsALyCt0YRMzn+cjaN5nohRH/oYZHIY4=;

b=eOxJXo4uFY6aAef1yqkIqoCPC8WAVUS1bw2KoAUF9Q915awPvojMMNpfEsl4auGKb4OOPg+V4eFyE7RAxIjwg6zQEo2VfRl2lwmhemD4PSEyGZ5gMKNdUMTcxNBu+PtTqCO1ybrzZJLOoGgByVuTSV1uZdliSVdHlBAI9UCi/Lre1Tr4fO3LOqBQtVRSr2aX9yelWz7snz2CoBYSeJ4vzQ27uOpgKr0YKHMPTmbsBKE9EPe19K5aV4FTWEkmibQOpEjrFvh/u+4j3lyhUI1bw9M3tsON2fGzYEbakfNyNFAq6LKCNSeHUtYKNIVNCj2F8JoPNHh3XqT5N/Da+TGBLg==

ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none;

dkim=none; arc=none

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=outlook.com;

s=selector1;

h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;

bh=tQcAq937aPDOsALyCt0YRMzn+cjaN5nohRH/oYZHIY4=;

b=Pl1Mbn5GWxtZxM94jz+jl5wt7VryiZAN67tkNqRUdceIH9th3eZLw203SV5LXEinxFnGg+TM44X+accrs7yahGfGB6ioMIcl8l8aBpX8wVJvJ8Pb0/9b941rHGBiqHtSUUxZVVo6qDm7bd7nWPNpvQ4zG2EN6zu1lE6eZnnqSl02pajiCs5OCC3CYqSpzycfWAcNOq3hYfs401C7qdnBEQVVEqOX0P3F/oxPNyRA3GQXIMsR5i7J2hqdj4JPwQgaOucM9sKjF1q+N67tKZ4+hQFibj1bGRbKrnAS8TKdC6FfevQRgmz+nnk9dcImWbr2+4LlFkoxBn/D8sunhfQcew==

Received: from SA3PR03MB7235.namprd03.prod.outlook.com (2603:10b6:806:2f7::13)

by SJ0PR03MB5853.namprd03.prod.outlook.com (2603:10b6:a03:2d0::5) with

Microsoft SMTP Server (version=TLS1_2,

cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9818.33; Tue, 21 Apr

2026 11:42:48 +0000

Received: from SA3PR03MB7235.namprd03.prod.outlook.com

([fe80::5fcd:b006:ab6b:6ed7]) by SA3PR03MB7235.namprd03.prod.outlook.com

([fe80::5fcd:b006:ab6b:6ed7%4]) with mapi id 15.20.9818.032; Tue, 21 Apr 2026

11:42:48 +0000

From: Usagi snow

Subject: Re: Looking?

Thread-Topic: Looking?

Thread-Index: AQHc0YP3Sf1KBIvbI0WmEyL70TTA8Q==

Date: Tue, 21 Apr 2026 11:42:47 +0000

Message-ID:



Accept-Language: en-US

Content-Language: en-US

X-MS-Has-Attach:

X-MS-TNEF-Correlator:

msip_labels:

x-ms-publictraffictype: Email

x-ms-traffictypediagnostic: SA3PR03MB7235:EE_|SJ0PR03MB5853:EE_

x-ms-office365-filtering-correlation-id: d06f95b5-8f8b-45e6-cfab-08de9f9b1c66

x-microsoft-antispam:

BCL:0;ARA:14566002|39105399006|37011999003|15030799006|8062599012|19110799012|15080799012|7071999006|8060799015|461199028|20031999006|2604031031799003|704163111799003|2604032081799003|2604032031799003|24071999003|31061999003|37102599003|440099028|3412199025|102099032|41105399003|40105399003|39145399003;

x-microsoft-antispam-message-info:

=?Windows-1252?Q?4dJodw3m3olmuUmlXn2qtnq/NyQ+OwWVVzuMhZSYoRXyVQmWdq7XXR1b?=

=?Windows-1252?Q?1+uui8crG2BIjOIEE1xl9hoxSqBngNEvqzyCDqkEECGYatb1VvJPg9ct?=

=?Windows-1252?Q?V/TgM84CvCw9EVvm46gW52PBx3g6OrtNjSQpDsiOqCJIn6U2+kR9l8TO?=

=?Windows-1252?Q?Og1ycEqCL6rR/4kOmbOMIi6uoLQsPs6H7ia2WMYJ2Rruxl7ibUbzRpJw?=

=?Windows-1252?Q?PegPYx+jJQdRepRKQOVf9wY7joMqVVXLT+QkZ3CpINGmwNM3wzN8v1IA?=

=?Windows-1252?Q?TNwmtbJ3ous+u8zxyxEMuBmNg5S3e2QiFFAZkJAcI1VnabV82GqOg9uZ?=

=?Windows-1252?Q?4mfUAlJRqACIEA/VIxjW54SaiGUV9Smxn87Qs9A/JH5lNplWPgHaolD3?=

=?Windows-1252?Q?q3FQBPpFwuYt02g8pe2GBLLKo0/Kwp/QkelHS08V6+NJoodrBBXUugk5?=

=?Windows-1252?Q?dD8KZZPnIUuuPcGVjBBz0ptKYeJP5YH1sme6t8UCD+hsWZdgfJnqMqxY?=

=?Windows-1252?Q?qiByJAEe7r8aTWrCNeHA7ArQkhgdgWfn1GPiQtLdGzcDNQG+mcqvAaIX?=

=?Windows-1252?Q?f/fDBxLHxcCb9a+HxyzsVwYJGLlZXNV3CpqWx2MTpEHhuaKMdlrIQihp?=

=?Windows-1252?Q?a3pADTBY4RjMEQBG7DawvqzCCE6HGsaeFSVdG0OJrXxS4OeJ9TvRODwz?=

=?Windows-1252?Q?d0cX2r2Q7QzS2Z9xM3wU95DV8wFvZuCoSAanBwK48j3wyNzEytTMa2R1?=

=?Windows-1252?Q?SXSR51P4kjmGGDU7ofbacXqNq+oFcXepO5Yq8uas2hQWiDVRPn2fG6ZQ?=

=?Windows-1252?Q?XidjU4gnbeNYB1rd2xWJsNRZyE4DGqCefzx+ild9fyRwOqYjzPtotqFV?=

=?Windows-1252?Q?ZSckkNOTUQpJO8ll17RnpE1yH1MFp3WFMwieG12TBtHCHtyH005uFGOT?=

=?Windows-1252?Q?9mCA1ypQvtjNp+pGe5xGE/Tr5SD7yR5MFpRjJu9+2HeaBrP+xmwxaUZu?=

=?Windows-1252?Q?pyb16Z8cxRsY7ts6Q8SfVVNNfOn6tCtHmQD6q+kU5maJLg16C3VwfYkH?=

=?Windows-1252?Q?go85rQvTrJSkUlTIPm2KKwpmcyW4TVzy3X/ixDB8l9Af9SAUMP1alm9i?=

=?Windows-1252?Q?ep8MZTYlJCSZhAeOS/Q1tLbHcrqBzu62smUaP8jOnoQ+nCLprZ2H4wrb?=

=?Windows-1252?Q?Hy+N+VpjYupjKiBtSaQkVIZvJZOSFEe0X/cFddfOIAk8PoeurqfwMRAN?=

=?Windows-1252?Q?6sqgQzxY+wjEH4RWUbCnglOGDjyNT98tT8Ta6LJZ99A2frQDqXQvMBGs?=

=?Windows-1252?Q?arufsKttYHHmCWyY/tvRQOgVDL5shEXQ8WibInGE7IWiXRICt9Hw0v8x?=

=?Windows-1252?Q?jwMb64YfnWIUxDxd3XBQFExT6GzokFRuhKNTH4bwbRBvhQwXcQOWbnm8?=

=?Windows-1252?Q?Wg6CjzlEpAeaW8t8WUpwww=3D=3D?=

x-ms-exchange-antispam-messagedata-chunkcount: 1

x-ms-exchange-antispam-messagedata-0:

=?Windows-1252?Q?InZr94TUOxyxhgCncffSNZDqHPhBCBahvjeVZKDKGnhnPXf2KE1BiYWE?=

=?Windows-1252?Q?RjJkmde2o7KD/13+p1AXBs2K6FWHJQ4HjW2lkOiqAJZYrYHWp47bTBog?=

=?Windows-1252?Q?/fhfMKFCrhR/J1zrqAiFlqJoSG5x90Gq19+PLqc7GQbHgLJrnrJFiM8h?=

=?Windows-1252?Q?wa3InNXErm72V/sVScaXXNo5/G2hlrVxsgfhIEo9TRf/O2cQ9tHb1VWf?=

=?Windows-1252?Q?bXGtyx2xmx8myshvOXtPmxi2K+H14yC1myQvt5nZxhCI/+0xrlJcmTDK?=

=?Windows-1252?Q?Y+qjmOYEgNa6q7ABNjtil++r7MMibEgsAHQLU49vQITiuNpMGBdNK63F?=

=?Windows-1252?Q?01eICymu+D3HQrqF1kYSPb/aHWBbreIrsTwGfBggtbc0QZOVvaHTDbMN?=

=?Windows-1252?Q?JdGApf0oy4Vwv8GW1q1w10r1gbbCYXcklqE2PwtFumVieAe9iTzaMcsV?=

=?Windows-1252?Q?zJydKB6UA/WMoaMdntfDiZLCBBQn6Bda4y2gpWKNVpXazU9bXpdsvyMA?=

=?Windows-1252?Q?phw+oRfrL22vED+H9R1vRDGmqvsJdqh559X4gCCXwfux3uJcHZdhPyKl?=

=?Windows-1252?Q?bygQVT970yDMamgkSsTWnXwpwvA9Q7uWOYAdtG6uGSjN/PVaG6h+APVy?=

=?Windows-1252?Q?48rWRveueS4pEri4W3O356e4yjuK6MbF75M5Xixr6DiQ4yyHJZX0y/Wy?=

=?Windows-1252?Q?NXuFFmIzyro4ENq/CNXoke6jDSycP0yV9IMzeVChobfy2v1RufinIXsN?=

=?Windows-1252?Q?yrSnU04Apy9a5BdaNSosnr11jg1YqgqmermH6IQ1xdrZmrOL6Q8+dCiQ?=

=?Windows-1252?Q?XwOqXn8TWHrFUR4JrVlt9pzNXuuLUc4zE9RrM0fIZZFFjbbvDo7JQX15?=

=?Windows-1252?Q?48CdKwiCHtGVRm+qv2+PIdRmkSfhJ/xUjOFn08UEmILTioUWBOAaYT18?=

=?Windows-1252?Q?QqT13F6BX3qiwfGvcBV6D5sEiebXy1Kisqtct5UuhoEpJzpllaYEAIzd?=

=?Windows-1252?Q?6pF9oeItt0ZOu1GUFiV7PJxzDLubCjbYzcxXdqoKg09ptJQqpK1zK+lz?=

=?Windows-1252?Q?9P8nhs0Fxrie8c20pGobkf+lAz/Jx+/RGLLlq2ksu/XzfWP48UPEaqyN?=

=?Windows-1252?Q?do5RI8qQ3PvxLwEbyyoiy9O+lK/ANstvwdiVHwB9i+a1VJwT5Ptfg1XI?=

=?Windows-1252?Q?s7+uzZBAdlfbDKiX6UF9WSYln08gNYRBAp6IfoPa/3iqPDIk+y/3CG/P?=

=?Windows-1252?Q?La7DPWSYuz4P97orD6fyq0M85CKIaky1xh2VlNa5rNKfswSrdKWhKQRr?=

=?Windows-1252?Q?7UZE0ialfu6LaNsle5nQeAqW2Ho9jVMLYaOWuzxA9+Kqv0+OfubcyK2J?=

=?Windows-1252?Q?qoz7IMgHezx3iUiaE37Mw2uZXBeogyfdu8QW5JzkMuCEGRT6JwMALUr8?=

=?Windows-1252?Q?W+nmBgIRmyxTgFzfFkvjFEuZAPpW7ZwJJ2Q5kdNCVZRgoZFjUqdD1C+T?=

=?Windows-1252?Q?+DN2A3WMXJqxs4jl5xSxyR36tbevlXMwoyvh6aRJBfUOxq7hMnjEyJiO?=

=?Windows-1252?Q?nG7LfigJBtQ1P7rk?=

Content-Type: multipart/alternative;

boundary="_000_SA3PR03MB72357721C2CD3746DCFB6597B02C2SA3PR03MB7235namp_"

MIME-Version: 1.0

X-OriginatorOrg: outlook.com

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: SA3PR03MB7235.namprd03.prod.outlook.com

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: d06f95b5-8f8b-45e6-cfab-08de9f9b1c66

X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Apr 2026 11:42:47.8163

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR03MB5853

X-Spam_score: 7.7

X-Spam_score_int: 77

X-Spam_bar: +++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hi, Just checking in on this. Thanks, From: Usagi snow Sent:

April 2, 2026 Subject: Re: SEO Can I send details? Hi, I reviewed your website

and identified SEO opportunities for growth. Happy to explain the approach

if you’re interested.

X-Mozilla-Status: 0001

X-Mozilla-Status2: 00000000

Return-path:

Envelope-to: dave@doctor.nl2k.ab.ca

Delivery-date: Tue, 21 Apr 2026 06:39:00 -0600

Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wFANE-000000004op-01gV

for dave@doctor.nl2k.ab.ca;

Tue, 21 Apr 2026 06:38:40 -0600

Resent-From: The Doctor

Resent-Date: Tue, 21 Apr 2026 06:38:39 -0600

Resent-Message-ID:

Resent-To: Dave Yadallee

Received: from mail-qt1-f176.google.com ([209.85.160.176]:57610)

by doctor.nl2k.ab.ca with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256

(Exim 4.98.2 (FreeBSD))

(envelope-from )

id 1wF8zz-00000000H12-06Z8

for root@nk.ca;

Tue, 21 Apr 2026 05:10:43 -0600

Received: by mail-qt1-f176.google.com with SMTP id d75a77b69052e-50e63771eb0so17957621cf.3

for ; Tue, 21 Apr 2026 04:09:46 -0700 (PDT)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=persistiqopportunities.pro; s=google; t=1776769780; x=1777374580; darn=nk.ca;

h=mime-version:date:content-transfer-encoding:subject:to:from

:message-id:from:to:cc:subject:date:message-id:reply-to;

bh=Pa77DyvMAQdSC/wstNUWQGFalG6K5p6ADC6yT0d8Xcc=;

b=HQpD2VCcK3ekYgPO1yl9RK9ajvLOarw4NCQ6XP0e63/Db3k+lXPiZiOvIDOCGlE19y

LmseXFrl4PWQuoDygPMzD8uhLDZjpn+YLjTQRg+4QLIm4anoHav8p86eK2pxkocq3ov9

Jc/DbdUb3qex5o/9Sb75tnvqgGe+zAQ3ycTaAUvxdc/mIa/C59Ilui9UyGyAW/kO2k5j

y2XaTuaDd/X8Rj3sU8eIws5/eJhgF2tkXUY5Az+PHT2g+zz8G08DX7ryxRIAtCNdc9AB

tX8YoiM8AV/7/SyG4b1RxC32xy9J15tKaIms7IIISDMH5VJ1qSgEy+ELZyGJwfrK3Y2a

0c9A==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20251104; t=1776769780; x=1777374580;

h=mime-version:date:content-transfer-encoding:subject:to:from

:message-id:x-gm-gg:x-gm-message-state:from:to:cc:subject:date

:message-id:reply-to;

bh=Pa77DyvMAQdSC/wstNUWQGFalG6K5p6ADC6yT0d8Xcc=;

b=JpFvWuzH/nUzVbM4l+ZzndHZYaTRKk+sCBPyRfgeC/DVe6lcDmTGmfKfzuzCDWxrIF

bul//dbkMVUdtfnjjmzWYnxj27/fPS4pNVH4JXJKolkJ/kNpS93afu8M7KSNmNyNp1+l

Ek54iTEKSAknAhtCHzW/SqKyZtnrUyCUQKqHf2QbM5ran6QZICjjmFVHDSCJRqcXaoQH

RxXxAKCOzgPtL88jhlNJC8M2skmsL1CajnUIn6LPrNpHyEEcLEZCRGWurXHlT0X81PGR

3Fkm4gs8J1n3DqXDGRsP+DNp8AIijVN1lp9gTPfhy8WPfzA8NcMfsTP2ZUjeI5N2nl7t

DucA==

X-Gm-Message-State: AOJu0YyX55VlBjL34NogIOYCS366GCYJhrFb3Kqb5LZJovwXZyk7O9M/

owUQq4LwYvupBH6AnKvkz/0ZW1T3KKb4tORJggFSIxV+DtW+wcU1t/DYXgvx3w8/tcwJpv+d4c+

Ek89OxRip

X-Gm-Gg: AeBDiesBENqvzVdGMjh/Di01+Os8rqZ+b/2omNAvI2/snBTbWV3jy3TZMuLcFods3xO

Ko4B2tx1kLAtvoXlTs0CVJBa1K132gQIdFxtbX3IeSEt/1zLKZzsMbdUr0JsvN4FDiVQNo/QqY7

nMNwVMMwCKaSGLyMvMpweI/wLp8TBh1oJRnMszQOz0NRbXLfhXa4YHf4x+hxgJIBtkxbFYg5CGr

qPz9IW4GMChDWIlvuNDzis816uYlNG2kkvXMcKS1Sr6/+QEGdKkc9tzZZo0tvfWARfJ42H1dSiG

stJWPMfgyuedlxp4HlR8Z7X965CzFEonWHtbpnwEYylRSbMQYdjIR5qe0YOme3TQtNHNPv5FOGJ

jU8mfqeuVRLrcVtGdOn2hr9gRVsAow0AB2Npv5wgmJsGeypfl6rliKRUqo/rDwG3ECYWqBhYp4v

/FDqdSps1VVb30PYTSPxsL/dvLtX/olO89sTfwYo5tVHN2oTp5Zth9ejc0atp7eCR1TPM5dabpN

+uPzoIizcF1IuMPcHVqo0lY/K/x+fMO5BegLH+XgkxDcFEktvouWTspehHKdqsszJaY3tZFuKpe

T1D2vp0=

X-Received: by 2002:a05:622a:164f:b0:50b:3f6a:1d88 with SMTP id d75a77b69052e-50e36b3fca4mr279551591cf.19.1776769780297;

Tue, 21 Apr 2026 04:09:40 -0700 (PDT)

Received: from 019dafbb-21d9-743e-96c1-3437fa5d5fe6.local (ec2-18-119-143-236.us-east-2.compute.amazonaws.com. [18.119.143.236])

by smtp.gmail.com with ESMTPSA id d75a77b69052e-50e3fbc6513sm95407681cf.2.2026.04.21.04.09.39

for

(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);

Tue, 21 Apr 2026 04:09:39 -0700 (PDT)

Message-ID:

<019dafbb-21d9-743e-96c1-3437fa5d5fe6@persistiqopportunities.pro>

From: Uma Powell

To: root@nk.ca

Subject: NK new clients

Content-Transfer-Encoding: quoted-printable

Date: Tue, 21 Apr 2026 11:09:38 +0000

MIME-Version: 1.0

Content-Type: text/plain; charset=utf-8

X-Spam_score: 12.5

X-Spam_score_int: 125

X-Spam_bar: ++++++++++++

X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",

has identified this incoming email as possible spam. The original

message has been attached to this so you can view it or label

similar future email. If you have any questions, see

@@CONTACT_ADDRESS@@ for details.



Content preview: Hello I came across NK online and wanted to reach out because

we're working with other internet service providers that are offering internet

services.‍ We're help internet service providers with targeted campaigns

that are getting their sales teams meetings with warm leads every month.

We’re targeting people who need internet services using persona [...]



Content analysis details: (12.5 points, 5.0 required)



pts rule name description

---- ---------------------- --------------------------------------------------

1.5 RCVD_IN_AHBL RBL: AHBL: sender is listed in dnsbl.ahbl.org

[209.85.160.176 listed in dnsbl.ahbl.org]

[209.85.160.176 listed in dnsbl.ahbl.org]

[209.85.160.176 listed in dnsbl.ahbl.org]

[209.85.160.176 listed in dnsbl.ahbl.org]

[18.119.143.236 listed in dnsbl.ahbl.org]

[18.119.143.236 listed in dnsbl.ahbl.org]

[18.119.143.236 listed in dnsbl.ahbl.org]

[18.119.143.236 listed in dnsbl.ahbl.org]

0.0 RCVD_IN_AHBL_RTB RBL: AHBL: Real-Time Blocked in dnsbl.ahbl.org

[209.85.160.176 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_SMTP RBL: AHBL: Open SMTP relay in dnsbl.ahbl.org

[209.85.160.176 listed in dnsbl.ahbl.org]

0.5 RCVD_IN_AHBL_PROXY RBL: AHBL: Open Proxy server in dnsbl.ahbl.org

[209.85.160.176 listed in dnsbl.ahbl.org]

1.5 RCVD_IN_AHBL_SPAM RBL: AHBL: Spam Source in dnsbl.ahbl.org

[209.85.160.176 listed in dnsbl.ahbl.org]

1.0 RCVD_IN_WSFF RBL: Received via a relay in will-spam-for-food.eu.org

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[18.119.143.236 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

[209.85.160.176 listed in will-spam-for-food.eu.org]

-0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at http://www.dnswl.org/, no

trust

[209.85.160.176 listed in list.dnswl.org]

-0.0 SPF_PASS SPF: sender matches SPF record

0.8 FROM_FMBLA_NEWDOM28 From domain was registered in last 14-28 days

1.0 PDS_PRO_TLD .pro TLD

[URI: persistiqopportunities.pro]

[(pro)]

1.9 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist

[URI: persistiqopportunities.pro]

1.9 URIBL_ABUSE_SURBL Contains an URL listed in the ABUSE SURBL blocklist

[URI: persistiqopportunities.pro]

2.0 RATWR8_MESSID Message-ID with excessive dashes and dollars

0.0 T_DKIM_INVALID DKIM-Signature header exists but is not valid

-0.2 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

[209.85.160.176 listed in wl.mailspike.net]

Subject: {SPAM?} NK new clients



Hello



I came across NK online and wanted to reach out because we're =

working with other internet service providers that are offering internet =

services.=E2=80=8D



We're help internet service providers with targeted =

campaigns that are getting their sales teams meetings with warm leads every=

month. We=E2=80=99re targeting people who need internet services using =

personalized email sequences.=C2=A0



If I could help you connect with =

potential clients like this, would that be helpful to you?=E2=80=8D



Thanks

Uma

PersistIQ

=?iso-8859-1?Q?/CqU4HdA+CAOXoMUNfrW2mIL3emmOefylrYw0YwxSx/7ImlWLxMqcXLHo/?=

=?iso-8859-1?Q?IumgediDvFtFh5KCJ7t8BNDKRjrx++9ugK+oiOeMq7SCiKOFD9RD3siW/u?=

=?iso-8859-1?Q?r73KxrPiokJuXiqzX9v+0PQOU+8aT5APPRRpPtqRR0ZMIkKde7fv8DZIVP?=

=?iso-8859-1?Q?t0Ta4D0X1oNpxMXhyqfpDLlkqQzDI/1OUC1u1TfKadJjJB6LjJJtRXLigK?=

=?iso-8859-1?Q?aGIV3jAFY4y+u5fKTKnqINP9vJO2W/cxx1YfFgScrJlOOCbEJbCSePTNbi?=

=?iso-8859-1?Q?YB9BpIlJK7kaqdC1P/KiDwUfwPiRiGeGACsiTLdV66ohCFQyaX1kprk+1s?=

=?iso-8859-1?Q?HkDqz1CFA+QYEjA/wT1XbtU1Hypw+KSAxfv797osTvkNFx510Ao77vQccY?=

=?iso-8859-1?Q?lRXfrOb2GLxlGgkXQkWLWo63ozKO6ODyRKgNXXkUXrYJFC0+GstE7JVX0Q?=

=?iso-8859-1?Q?rtqiJDLES/Q1bvsHdJYUNmZZQf3eRDmtBg/Wd4J8J8dm8KNTVjPawTi/ZD?=

=?iso-8859-1?Q?e1P4aUQMsL2o9PRLDT2xPe+PPGIfARARmN1JHSCPfCgMgMvWFQUYfdX2Gd?=

=?iso-8859-1?Q?Mc0vvG1mj4r3ODXGbCfzD9nOUmTMgRgnlzlbdF33WxSvGcogAu+jl9rHD4?=

=?iso-8859-1?Q?Pt1N/vo6oubWaSfrcV3oWpVub9ZCfNUqT02Wq/Rhic0QPY/pxbtcM8/RJ7?=

=?iso-8859-1?Q?DtnGN0aDJwZsEijOzL1PlK27mPkscAkZBnshE6alt6qiS7TgBG48tUeQZ5?=

=?iso-8859-1?Q?WJoRYZcUPgafVYxERUzeplYwnCc2lzfTr+Kni35v7mscyskgeWEoLDGnMG?=

=?iso-8859-1?Q?D4ztGtvlogHaXX64oxqLyJcpgg/Q8+jddCi8KCW8miIOXhp9dhChlmGvzD?=

=?iso-8859-1?Q?JMUdNSC+ZqZIPVzIVlqIIZ3tnnn8UpZuLKc6lpllAoX598suuuxA242cV+?=

=?iso-8859-1?Q?ZytrSYiUFg3TVv3q5tYO5bJR3R0MPQm/MOMC5MMIOzfkdHypIJpeIRuJW6?=

=?iso-8859-1?Q?K3qjA0G3eAyNHFRf8/9kmty4BDt1sq8KxcTMgaGg8UC9YIoIa1b26YX2uM?=

=?iso-8859-1?Q?fAP2PUVo+S3QJbwC+KCSQXQWo11jmgtuXucw+7X86sS0hZZrNMWggnGXRm?=

=?iso-8859-1?Q?c3+S6apHwl/dGYECzFsQs8oXlJTJxKrJigSBNuUI+81feqouvPCBPCCYBP?=

=?iso-8859-1?Q?Wpw4uwCkGjlbCAHS87LJlOks3Vfq1la0a2SvBPIWT0Ujq9tJOUcwRJH6f7?=

=?iso-8859-1?Q?fFFHWn7FynbVCdpQA/Kv8UnkLK+MemJG0u97Oeo+/ReoipeMX2rrfd9R1u?=

=?iso-8859-1?Q?knDZC+lKYjBc7NUoOMkWLiA6xyBzmC4iuYlCTpV6WwhMiSjBdi6aO+gid5?=

=?iso-8859-1?Q?BRrtyfQnboYkHdZqyS5ECENQjz2C34eoITirDkDdMGYYJTJ2X3XXo=3D?=

Content-Type: multipart/mixed;

boundary="_004_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_"

MIME-Version: 1.0

X-OriginatorOrg: sct-15-20-9412-4-msonline-outlook-644ca.templateTenant

X-MS-Exchange-CrossTenant-AuthAs: Internal

X-MS-Exchange-CrossTenant-AuthSource: CW1P302MB2061.GBRP302.PROD.OUTLOOK.COM

X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-CrossTenant-Network-Message-Id: f4a627be-3ed3-4a33-6a4c-08de9f882364

X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Apr 2026 09:26:59.1296

(UTC)

X-MS-Exchange-CrossTenant-fromentityheader: Hosted

X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa

X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000

X-MS-Exchange-Transport-CrossTenantHeadersStamped: LO2P302MB0219



--_004_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_

Content-Type: multipart/alternative;

boundary="_000_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_"



--_000_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_

Content-Type: text/plain; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable







Payment Approved



--_000_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_

Content-Type: text/html; charset="iso-8859-1"

Content-Transfer-Encoding: quoted-printable








1">

















--_000_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_--



--_004_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_

Content-Type: application/pdf; name="Discovery Funds.pdf"

Content-Description: Discovery Funds.pdf

Content-Disposition: attachment; filename="Discovery Funds.pdf"; size=61450;

creation-date="Tue, 21 Apr 2026 09:25:37 GMT";

modification-date="Tue, 21 Apr 2026 09:26:58 GMT"

Content-Transfer-Encoding: base64







--_004_CW1P302MB2061B7969FDA32F55B926B80BB2C2CW1P302MB2061GBRP_--