| andrew@stop.spam 2004-02-27, 7:35 pm |
|
This report is a summary of submissions sent to the NANAS
newsgroup by our server. It is hoped that the information
provided will be useful to those maintaining DNSBL's and for
networking professionals concerned about UCE or UBE.
Run Date: 2004-02-27 18:29:59
Contents:
1) Unblocked email sources, by IP (max 20).
2) New spamvertized domains (max 20).
3) Changes to various IP addresses (max 20).
Information displayed is for the period 12-24 hours ago, based
on the run date above. Comments and suggestions should be
addressed to andrew [?] vrooms [?] net.
Unblocked IP DNSBL Info (partial traceroute)
--------------- --------------------------------------------------
198.63.232.21 not in SBL XBL DSBL DYNA SPEWS-2
ge-9-3.a00.dllstx04.us.ra.verio.net (157.238.228.37)
xe-1-0-0-4.r21.dllstx09.us.bb.verio.net (129.250.28.188)
p16-3-0-0.r01.chcgil06.us.bb.verio.net (129.250.5.84)
p16-7-0-0.r01.chcgil01.us.bb.verio.net (129.250.5.71)
ge-1-0-0.a00.chcgil01.us.ra.verio.net (129.250.27.138)
fa-0-0.a08.chcgil01.us.ra.verio.net (129.250.27.119)
d1-1-0-28.a08.chcgil01.us.ce.verio.net (206.222.32.154)
unknown unknown
209.116.252.130 not in SBL XBL DSBL DYNA SPEWS-2
...z190-181-206.customer.algx.net (206.181.190.9)
dfw10-peer10-pos6-0.atlas.algx.net (165.117.69.130)
dfw10-core2-so-7-2-0.atlas.algx.net (165.117.192.73)
atl10-core1-so-0-2-0-0.atlas.algx.net (165.117.200.1)
atl10-core2-so-0-1-0-0.atlas.algx.net (165.117.192.2)
dca10-core1-so-7-0-0-0.atlas.algx.net (165.117.200.6)
bwi10-core1-pos6-0.atlas.algx.net (165.117.67.57)
bwi10-edge3-fa0-0.atlas.algx.net (165.117.183.21)
204.192.64.18 (204.192.64.18)
one.elistx.com (209.116.252.130)
210.219.144.58 not in SBL XBL DSBL DYNA SPEWS-2
366.ge-6-3-0.cr1.dfw2.us.above.net (216.200.88.137)
so-3-0-0.mpr4.sjc2.us.above.net (64.125.29.45)
pos-1-0.mpr2.pao1.us.above.net (209.249.0.125)
64.124.50.68.thrunet.net (64.124.50.68)
211.110.7.101 (211.110.7.101)
210.117.126.17 (210.117.126.17)
210.117.121.6 (210.117.121.6)
210.117.121.29 (210.117.121.29)
210.221.9.230 (210.221.9.230)
210.219.144.58 (210.219.144.58)
211.216.189.50 in XBL
ge-8-0-124.ipcolo2.dallas1.level3.net (63.209.48.109)
so-5-1-0.bbr2.dallas1.level3.net (4.68.112.185)
unknown.level3.net (209.247.9.182)
so-4-0-0.gar1.sanjose1.level3.net (4.68.112.58)
so-10-0.hsa3.sanjose1.level3.net (209.244.13.226)
65.57.246.14 (65.57.246.14)
211.48.63.233 (211.48.63.233)
(211.216.216.89) 181.095
220.73.151.185 (220.73.151.185)
220.73.149.130 (220.73.149.130)
218.145.37.154 (218.145.37.154)
211.198.216.83 (211.198.216.83)
unknown unknown
211.218.171.24 not in SBL XBL DSBL DYNA SPEWS-2
ge-8-0-124.ipcolo2.dallas1.level3.net (63.209.48.109)
so-5-1-0.bbr2.dallas1.level3.net (4.68.112.185)
unknown.level3.net (209.247.9.114)
so-2-0-0.gar1.sanjose1.level3.net (4.68.112.50)
so-10-0.hsa3.sanjose1.level3.net (209.244.13.226)
65.57.246.18 (65.57.246.18)
211.48.63.233 (211.48.63.233)
211.216.216.105 (211.216.216.105)
220.73.151.125 (220.73.151.125)
211.196.155.222 (211.196.155.222)
211.218.96.52 (211.218.96.52)
211.38.253.171 not in SBL XBL DSBL DYNA SPEWS-2
ge-8-0-124.ipcolo2.dallas1.level3.net (63.209.48.109)
so-5-1-0.bbr2.dallas1.level3.net (4.68.112.185)
unknown.level3.net (209.247.9.182)
so-4-0-0.gar1.sanjose1.level3.net (4.68.112.58)
so-10-0.hsa3.sanjose1.level3.net (209.244.13.226)
65.57.246.14 (65.57.246.14)
211.48.63.229 (211.48.63.229)
218.145.63.201 (218.145.63.201)
220.73.150.125 (220.73.150.125)
168.126.109.174 (168.126.109.174)
218.145.39.254 (218.145.39.254)
unknown unknown
218.158.170.250 (218.158.170.250)
220.82.122.142 (220.82.122.142)
unknown unknown
216.130.179.253 in SPEWS-2
hagg-01-ae0-998.dlfw.twtelecom.net (168.215.241.149)
core-01-ge-0-3-1-510.dlfw.twtelecom.net (66.192.253.112)
unknown unknown
peer-01-so-0-3-1-0.nycl.twtelecom.net (66.192.240.62)
nyiix.nyc2.webair.net (198.32.160.100)
216.130.179.253 (216.130.179.253)
216.183.97.116 not in SBL XBL DSBL DYNA SPEWS-2
...z190-181-206.customer.algx.net (206.181.190.9)
dfw5-core2-pos7-0.atlas.algx.net (165.117.53.1)
dfw10-peer10-pos6-0.atlas.algx.net (165.117.69.130)
dfw10-core2-so-7-2-0.atlas.algx.net (165.117.192.73)
ord10-core1-so-7-0-0-0.atlas.algx.net (165.117.200.38)
den10-core1-pos1-0.atlas.algx.net (165.117.200.101)
den10-core2-pos6-0.atlas.algx.net (165.117.48.202)
209.49.34.6 (209.49.34.6)
car0102-vlan-2.den03.inflow.net (216.183.96.44)
unknown unknown
216.64.221.38 in SPEWS-2
sl-st1-dal-2-2.sprintlink.net (144.228.250.125)
144.232.29.99 (144.232.29.99)
sl-bb20-fw-13-0.sprintlink.net (144.232.20.16)
sl-bb21-fw-14-0.sprintlink.net (144.232.11.218)
acr2-so-2-0-0.dallas.cw.net (208.172.129.201)
dcr2-as1-0.dallas.cw.net (208.172.131.57)
dcr2-loopback.chicago.cw.net (208.172.2.100)
bpr1-so-0-0-0.chicagoequinix.cw.net (208.175.10.238)
bhr1-pos-0-0.elkgrovech3.cw.net (208.174.226.42)
csr1-ve242.elkgrovech3.cw.net (216.64.194.59)
216.64.221.38 (216.64.221.38)
216.64.221.41 in SPEWS-2
sl-st1-dal-2-2.sprintlink.net (144.228.250.125)
144.232.29.99 (144.232.29.99)
sl-bb20-fw-13-0.sprintlink.net (144.232.20.16)
sl-bb21-fw-14-0.sprintlink.net (144.232.11.218)
acr2-so-2-0-0.dallas.cw.net (208.172.129.201)
dcr2-as1-0.dallas.cw.net (208.172.131.57)
dcr2-loopback.chicago.cw.net (208.172.2.100)
bpr1-so-0-0-0.chicagoequinix.cw.net (208.175.10.238)
bhr1-pos-0-0.elkgrovech3.cw.net (208.174.226.42)
csr1-ve242.elkgrovech3.cw.net (216.64.194.59)
216.64.221.41 (216.64.221.41)
218.91.209.8 in XBL DSBL
ge-0-2-1-101.cr1.dfw1.nlayer.net (69.31.63.1)
so-0-1-0.cr1.pao1.nlayer.net (69.22.142.10)
chinatelecom.211.ge-1-1-0.cr1.pao1.nlayer.net (69.22.153.26)
202.97.51.205 (202.97.51.205)
202.97.33.89 (202.97.33.89)
202.97.39.110 (202.97.39.110)
202.97.27.134 (202.97.27.134)
61.132.68.49 (61.132.68.49)
61.132.68.222 (61.132.68.222)
61.132.68.37 (61.132.68.37)
218.91.209.8 (218.91.209.8)
220.118.93.188 not in SBL XBL DSBL DYNA SPEWS-2
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl1.dfw13.alter.net (152.63.103.86)
0.so-0-0-0.tl1.dfw9.alter.net (152.63.0.193)
0.so-5-0-0.tl1.lax2.alter.net (152.63.2.153)
0.so-4-0-0.cl1.lax1.alter.net (152.63.57.73)
0.so-2-0-0.ig3.lax1.alter.net (152.63.57.93)
koreat1-gw.customer.alter.net (157.130.214.158)
glgate194-p10-0.kornet.net (211.48.63.53)
218.145.63.205 (218.145.63.205)
220.73.150.53 (220.73.150.53)
220.73.170.70 (220.73.170.70)
unknown unknown
220.118.98.63 not in SBL XBL DSBL DYNA SPEWS-2
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl1.dfw13.alter.net (152.63.103.86)
0.so-0-0-0.tl1.dfw9.alter.net (152.63.0.193)
0.so-5-0-0.tl1.lax2.alter.net (152.63.2.153)
0.so-4-0-0.cl1.lax1.alter.net (152.63.57.73)
0.so-2-0-0.ig3.lax1.alter.net (152.63.57.93)
koreat1-gw.customer.alter.net (157.130.214.158)
211.48.63.157 (211.48.63.157)
218.145.63.221 (218.145.63.221)
220.73.150.57 (220.73.150.57)
220.73.170.70 (220.73.170.70)
unknown unknown
220.88.93.58 not in SBL XBL DSBL DYNA SPEWS-2
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl1.dfw13.alter.net (152.63.103.86)
0.so-0-0-0.tl1.dfw9.alter.net (152.63.0.193)
0.so-0-1-0.tl1.lax9.alter.net (152.63.9.230)
0.so-6-0-0.cl1.lax1.alter.net (152.63.57.77)
0.so-2-0-0.ig3.lax1.alter.net (152.63.57.93)
koreat1-gw.customer.alter.net (157.130.214.158)
glgate194-p10-0.kornet.net (211.48.63.53)
211.216.216.85 (211.216.216.85)
220.73.151.121 (220.73.151.121)
220.73.149.150 (220.73.149.150)
211.195.72.138 (211.195.72.138)
unknown unknown
211.221.200.174 (211.221.200.174)
218.155.193.210 (218.155.193.210)
unknown unknown
221.145.110.14 not in SBL XBL DSBL DYNA SPEWS-2
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl2.dfw13.alter.net (152.63.103.90)
0.so-0-0-0.tl2.dfw9.alter.net (152.63.2.181)
0.so-5-0-0.tl2.lax9.alter.net (152.63.0.58)
0.so-4-0-0.cl2.lax1.alter.net (152.63.57.74)
0.so-3-0-0.ig3.lax1.alter.net (152.63.57.97)
koreat1-gw.customer.alter.net (157.130.214.158)
211.48.63.141 (211.48.63.141)
218.145.63.213 (218.145.63.213)
220.73.150.125 (220.73.150.125)
220.73.148.70 (220.73.148.70)
218.144.8.22 (218.144.8.22)
221.145.110.14 (221.145.110.14)
221.194.130.39 in XBL
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl2.dfw13.alter.net (152.63.103.90)
0.so-0-0-0.tl2.dfw9.alter.net (152.63.2.181)
0.so-1-0-0.tl2.sac1.alter.net (152.63.15.250)
0.so-7-0-0.xl2.sac1.alter.net (152.63.54.9)
0.so-3-0-0.xr2.sac1.alter.net (152.63.54.2)
pos7-0.ig2.sac1.alter.net (152.63.54.117)
cncgroup-gw.customer.alter.net (208.214.136.46)
219.158.3.9 (219.158.3.9)
219.158.6.6 (219.158.6.6)
202.99.160.246 (202.99.160.246)
61.182.174.217 (61.182.174.217)
61.182.174.98 (61.182.174.98)
unknown unknown
24.73.100.30 not in SBL XBL DSBL DYNA SPEWS-2
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl2.dfw13.alter.net (152.63.103.90)
0.so-3-0-0.xl2.dfw9.alter.net (152.63.103.221)
0.so-7-0-0.br6.dfw9.alter.net (152.63.103.78)
204.255.173.38 (204.255.173.38)
bb1-dls-p1-0.atdn.net (66.185.133.96)
bb1-hou-p6-0.atdn.net (66.185.152.133)
bb2-hou-p1-0.atdn.net (66.185.152.153)
bb2-tby-p7-0.atdn.net (66.185.152.247)
pop1-tby-p1-0.atdn.net (66.185.136.163)
rr-tampa.atdn.net (66.185.136.170)
srp8-0.tampflerl-rtr2.tampabay.rr.com (65.32.8.226)
srp8-0.tampflerl-rtr1.tampabay.rr.com (65.32.8.225)
atm1-0-802.tampflc02-ubr1.tampabay.rr.com (65.32.11.13)
unknown unknown
rrcs-se-24-73-100-30.biz.rr.com (24.73.100.30)
64.12.138.7 not in SBL XBL DSBL DYNA SPEWS-2
gigabitethernet4-1.gw1.dfw13.alter.net (157.130.143.225)
0.so-0-0-0.cl1.dfw13.alter.net (152.63.103.86)
0.so-3-1-0.xl1.dfw9.alter.net (152.63.103.217)
0.so-7-1-0.br6.dfw9.alter.net (152.63.97.58)
204.255.173.38 (204.255.173.38)
bb2-dls-p1-0.atdn.net (66.185.133.98)
bb2-kcy-p6-0.atdn.net (66.185.152.129)
bb1-kcy-p1-0.atdn.net (66.185.152.126)
bb1-chi-p6-0.atdn.net (66.185.152.124)
bb2-chi-p7-0.atdn.net (66.185.152.131)
bb2-vie-p10-0.atdn.net (66.185.152.215)
bb2-rtc-p13-0.atdn.net (66.185.152.218)
pop1-rtc-p15-0.atdn.net (66.185.140.99)
dar1-mtc-s0-0-0.atdn.net (66.185.143.114)
unknown unknown
rly-ip03.mx.aol.com (64.12.138.7)
New Domain -> IP Address / Registrar
-----------------------------------------------------------------
bro548drugs.biz -> 61.145.118.247 / enom, inc.
mjak.biz / enom, inc.
mylittle5447tabs.biz / enom, inc.
vmaximal58884pills.biz / enom, inc.
theblackblue.biz / enom, inc.
ultrapojjuhyfcx.biz / enom, inc.
techmaximal2779drugs.biz / enom, inc.
extramnesob.biz / enom, inc.
hyperhsdgyfjs.biz / enom, inc.
techuhyuhygg.biz / enom, inc.
... skipping (total of 67)
countyu.info -> 221.208.49.221 / r159-lrms
trentq.info / r159-lrms
bluebare.us / directi.com
karm45.info / r159-lrms
germaz.info / r159-lrms
powty.us / directi.com
icecreamz.us / directi.com
oper22.us / directi.com
callote.info / r159-lrms
tuuyo1.us / directi.com
ddtnbnes.com -> 61.141.32.25 / bizcn.com, inc.
wsdc3sx.com / directi.com
vcvpoews.com / xin net corp.
ttasmdc.com / xin net corp.
incredrf.com / xin net corp.
gain-meds.info -> 220.175.8.33 / r152-lrms
naturalenhance.info / r152-lrms
naturalenhancements.us / directi.com
gainmeds.us / directi.com
naturalenhancements.biz / directi.com
mr-alex.com -> 217.69.123.138 / enom, inc.
medspro.net / enom, inc.
herbsbusiness.com / enom, inc.
niceways.net / enom, inc.
mdrecommends.com / enom, inc.
newherbs.com / enom, inc.
drugsbusiness.com / enom, inc.
drboblin.com / enom, inc.
businessdrugs.com / enom, inc.
firstmedsearch.com / enom, inc.
... skipping (total of 19)
savingsave.com -> 64.253.204.136 / register.com, inc.
bargainjournal.com / register.com, inc.
savings-avenue.net / register.com, inc.
savingscourier.com / register.com, inc.
doubledealz.com / register.com, inc.
aswediscussed.com / register.com, inc.
freshonthescene.com / register.com, inc.
openandsmile.com / register.com, inc.
flow54.com / register.com, inc.
offertribune.com / register.com, inc.
... skipping (total of 21)
youdamansports.biz -> 200.141.196.250 / enom, inc.
areyoudaman.biz / enom, inc.
youdamanager.biz / enom, inc.
noyoudaman.biz / enom, inc.
youdaman.biz / enom, inc.
adamantbroker.biz / enom, inc.
0120-edcrfvma.biz / dotster
0204-qazwsxma.biz / dotster
avfool.biz / dotster
rbthegirl.biz / directnic.com
... skipping (total of 11)
zbbi.com -> 219.153.0.69 / onlinenic, inc.
ared456.com / xin net corp.
meds4se.com / xin net corp.
zbib.com / onlinenic, inc.
goxq.com / onlinenic, inc.
izbb.com / onlinenic, inc.
plmeds4.com / xin net corp.
sseedch.com / directi.com
eed4d.com / xin net corp.
tiandme.com / xin net corp.
... skipping (total of 22)
Original IP -> New IP [Change Noted]
---------------------------------------------------------------
reacird.com
61.128.193.125 -> 222.47.94.2 [2004-02-27 06:31:26]
smoketheweb.biz
218.106.116.228 -> 0.0.0.0 [2004-02-27 06:31:25]
cleatshrink.com
66.250.80.232 -> 216.52.222.61 [2004-02-27 06:29:39]
jenniferyoungtart.com
221.232.160.65 -> 218.106.116.236 [2004-02-27 06:26:57]
maskofnoreturn.com
66.250.80.232 -> 216.52.222.61 [2004-02-27 06:26:54]
64.235.236.124 -> 66.250.80.232 [2004-02-01 18:12:48]
desfx.biz
0.0.0.0 -> 205.252.97.67 [2004-02-27 06:14:26]
207.138.63.86 -> 0.0.0.0 [2004-02-23 04:59:43]
0.0.0.0 -> 207.138.63.86 [2004-02-17 18:12:15]
61.152.188.107 -> 0.0.0.0 [2004-02-12 13:47:39]
x-discounts.biz
4.8.158.27 -> 217.132.201.136 [2004-02-27 06:14:26]
213.106.74.75 -> 4.8.158.27 [2004-02-20 22:14:01]
24.207.203.229 -> 213.106.74.75 [2004-02-16 19:31:41]
4.43.181.82 -> 24.207.203.229 [2004-02-14 11:13:52]
24.76.136.170 -> 4.43.181.82 [2004-02-13 20:37:50]
171.75.170.162 -> 24.76.136.170 [2004-02-09 21:02:24]
64.160.205.172 -> 171.75.170.162 [2004-02-02 13:59:00]
naturalenhancements.biz
220.175.8.33 -> 0.0.0.0 [2004-02-27 06:03:17]
travelvalues.net
200.99.17.49 -> 200.99.17.11 [2004-02-27 06:01:29]
barnmarch.com
216.9.176.40 -> 0.0.0.0 [2004-02-27 05:59:38]
callote.info
64.5.47.199 -> 221.208.49.221 [2004-02-27 05:45:44]
cdedffc.com
219.153.0.68 -> 0.0.0.0 [2004-02-27 05:45:37]
eed4d.com
219.150.150.163 -> 219.153.0.69 [2004-02-27 05:31:42]
hastenheart.com
66.250.80.232 -> 216.52.222.61 [2004-02-27 05:30:40]
66.250.80.232 -> 0.0.0.0 [2004-02-20 11:00:53]
weddingposter.com
221.148.237.4 -> 0.0.0.0 [2004-02-27 05:29:36]
211.104.119.254 -> 221.148.237.4 [2004-02-08 03:57:50]
211.219.32.66 -> 211.104.119.254 [2004-01-28 20:11:46]
uhyuhyggland.biz
200.208.137.54 -> 200.206.184.27 [2004-02-27 05:27:51]
200.206.184.27 -> 200.208.137.54 [2004-02-16 12:11:12]
219.234.95.68 -> 200.206.184.27 [2004-02-14 18:42:01]
200.208.137.23 -> 219.234.95.68 [2004-02-01 11:26:57]
usbminidrivespecials.com
4.3.199.168 -> 0.0.0.0 [2004-02-27 05:27:49]
4.3.193.30 -> 4.3.199.168 [2004-02-20 04:42:47]
0.0.0.0 -> 4.3.193.30 [2004-02-19 22:56:10]
allpharme.com
218.16.120.204 -> 0.0.0.0 [2004-02-27 05:02:15]
blaquee.com
64.89.31.127 -> 0.0.0.0 [2004-02-27 04:57:52]
worrysorry.com
66.250.80.232 -> 216.52.222.61 [2004-02-27 04:56:06]
NOTES
* Search by IP address or domain name in Google Groups to
find original postings to the NANAS newsgroup.
* The DNSBL maintainers are pretty quick. You should see
various listed IP's that have already been blocked.
* The Internet is a very dynamic place. Some or all of this
could be out of date by the time you read it.
* This information should be considered experimental and
unverified. It is based on automated email analysis and
measurement systems.
|