[an error occurred while processing this directive]
The report for this spam can be found at: 2008 Sun Wei Edition.
Return-Path: <lyn-p-hcaebm@BabbLaw.com>
Received: from host133-235-static.28-87-b.business.telecomitalia.it (87.28.235.133) by studio42.com with ESMTP (Eudora Internet Mail Server 3.2.10) for <postmaster@studio42.com>; Fri, 30 May 2008 12:26:15 -0700
User-Agent: Microsoft-Entourage/12.1.0.080305
Date: Fri, 30 May 2008 21:26:19 +0200
Subject: Rocket rod pleases girls
From: lyn <lyn-p-hcaebm@BabbLaw.com>
To: "postmaster@studio42.com" <postmaster@studio42.com>
Message-ID: <E563331B.3%lyn-p-hcaebm@BabbLaw.com>
Thread-Topic: Rocket rod pleases girls
Thread-Index: AcjCm8zw6tQl6/LQSfyivamKDgtSBQ==
Mime-version: 1.0
Content-type: multipart/alternative; boundary="B_1326525850_26472"
Reach far deeper into her than you ever have http://www.lekinae.com/
[studio42@flatus counter]$ host 87.28.235.133
133.235.28.87.in-addr.arpa domain name pointer host133-235-static.28-87-b.busine
ss.telecomitalia.it.
[studio42@flatus counter]$ whois 87.28.235.133@whois.ripe.net
[whois.ripe.net]
% This is the RIPE Whois query server #3.
% The objects are in RPSL format.
%
% Rights restricted by copyright.
% See http://www.ripe.net/db/copyright.html
% Note: This output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '87.0.0.0 - 87.31.255.255'
inetnum: 87.0.0.0 - 87.31.255.255
org: ORG-TIN1-RIPE
netname: IT-TIN-20050713
descr: Telecom Italia Net
descr: Provider Local Registry
country: IT
admin-c: LV357-RIPE
tech-c: ES785-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: TIWS-MNT
mnt-routes: INTERB-MNT
source: RIPE # Filtered
organisation: ORG-TIN1-RIPE
org-name: Telecom Italia Net
org-type: LIR
address: Telecom Italia S.p.A.
Thomas Tozzi
VIA DI VAL CANNUTA 250
00166 ROME
IT
phone: +39 06 36881
fax-no: +39 06 36885566
admin-c: GP1340-RIPE
admin-c: TT616-RIPE
mnt-ref: TIWS-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
source: RIPE # Filtered
role: EASYIP STAFF
address: Via Val Cannuta, 250
address: I-00100 Roma
address: Italy
phone: +39 06 36881
fax-no: +39 06 36885661
remarks: trouble: Please report spam/abuse notification to
remarks: trouble: abuse@telecomitalia.it
admin-c: LV357-RIPE
tech-c: CC297-RIPE
tech-c: VS4572-RIPE
nic-hdl: ES785-RIPE
source: RIPE # Filtered
abuse-mailbox: abuse@telecomitalia.it
person: Luigi Vassallo
address: Telecom Italia
address: 00100 Roma
address: Italy
phone: +39-6-3688
fax-no: +39-6-3688
nic-hdl: LV357-RIPE
source: RIPE # Filtered
mnt-by: TIWS-MNT
% Information related to '87.28.0.0/16AS3269'
route: 87.28.0.0/16
descr: INTERBUSINESS
origin: AS3269
mnt-by: TIWS-MNT
mnt-routes: INTERB-MNT
source: RIPE # Filtered
Zombie spotted
Onto scammer site:
[studio42@flatus counter]$ host www.lekinae.com
www.lekinae.com has address 124.236.241.91
[studio42@flatus counter]$ whois 124.236.241.91@whois.apnic.net
[whois.apnic.net]
% [whois.apnic.net node-2]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 124.236.0.0 - 124.239.255.255
netname: CHINANET-HE
descr: CHINANET hebei province network
descr: China Telecom
descr: No.31,jingrong street
descr: Beijing 100032
country: CN
admin-c: BR3-AP
tech-c: CH93-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CHINANET-HE
mnt-routes: MAINT-CHINANET-HE
status: ALLOCATED PORTABLE
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation's account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20060725
source: APNIC
person: Bin Ren
nic-hdl: BR3-AP
e-mail: hostmaster@hbtele.com
address: NO.69 KunLun avenue, Shijiazhuang 050000 China
phone: +86-311-85211612
fax-no: +86-311-85211616
country: CN
changed: renbin@hbtele.com 20060606
mnt-by: MAINT-CHINANET-HE
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
[studio42@flatus counter]$ whois lekinae.com
[whois.crsnic.net]
Whois Server Version 2.0
Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.
Domain Name: LEKINAE.COM
Registrar: XIN NET TECHNOLOGY CORPORATION
Whois Server: whois.paycenter.com.cn
Referral URL: http://www.xinnet.com
Name Server: NS1.SLALMET.COM
Name Server: NS2.SLALMET.COM
Status: ok
Updated Date: 30-may-2008
Creation Date: 30-may-2008
Expiration Date: 30-may-2009
>>> Last update of whois database: Fri, 30 May 2008 15:31:30 EDT <<<
NOTICE: The expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant's agreement with the sponsoring
registrar. Users may consult the sponsoring registrar's Whois database to
view the registrar's reported date of expiration for this registration.
TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services' ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability. VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.
The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.
[whois.paycenter.com.cn]
The Data in Paycenter's WHOIS database is provided by Paycenter
for information purposes, and to assist persons in obtaining
information about or related to a domain name registration
record.
Paycenter does not guarantee its accuracy. By submitting
a WHOIS query, you agree that you will use this Data only
for lawful purposes and that, under no circumstances will
you use this Data to:
(1) allow, enable, or otherwise support the transmission
of mass unsolicited, commercial advertising or solicitations
via e-mail (spam); or
(2) enable high volume, automated, electronic processes that
apply to Paycenter or its systems.
Paycenter reserves the right to modify these terms at any time.
By submitting this query, you agree to abide by this policy.
Domain Name:lekinae.com
Registrant:
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
550001
Administrative Contact:
SunWei
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
jinan Shandong 550001
CN
tel: 537 2531288
fax: 537 2531288
lovekyos99@163.com
Technical Contact:
SunWei
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
jinan Shandong 550001
CN
tel: 2531288
fax: 2531288
lovekyos99@163.com
Billing Contact:
SunWei
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
jinan Shandong 550001
CN
tel: 2531288
fax: 2531288
lovekyos99@163.com
Registration Date: 2008-05-30
Update Date: 2008-05-30
Expiration Date: 2009-05-30
Primary DNS: ns1.slalmet.com 124.236.241.91
Secondary DNS: ns2.slalmet.com 60.172.222.18
And onto that scummy DNS:
ns1.slalmet.com has address 124.236.241.91
[studio42@flatus counter]$ host ns2.slalmet.com
ns2.slalmet.com has address 60.172.222.18
[studio42@flatus counter]$ whois 60.172.222.18@whois.apnic.net
[whois.apnic.net]
% [whois.apnic.net node-1]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
inetnum: 60.166.0.0 - 60.175.255.255
netname: CHINANET-AH
descr: CHINANET anhui province network
descr: China Telecom
descr: A12,Xin-Jie-Kou-Wai Street
descr: Beijing 100088
country: CN
admin-c: CH93-AP
tech-c: JW89-AP
mnt-by: APNIC-HM
mnt-routes: MAINT-CHINANET-AH
mnt-lower: MAINT-CHINANET-AH
status: ALLOCATED PORTABLE
changed: hm-changed@apnic.net 20040721
source: APNIC
person: Chinanet Hostmaster
nic-hdl: CH93-AP
e-mail: anti-spam@ns.chinanet.cn.net
address: No.31 ,jingrong street,beijing
address: 100032
phone: +86-10-58501724
fax-no: +86-10-58501724
country: CN
changed: dingsy@cndata.com 20070416
mnt-by: MAINT-CHINANET
source: APNIC
person: Jinneng Wang
address: 17/F, Postal Building No.120 Changjiang
address: Middle Road, Hefei, Anhui, China
country: CN
phone: +86-551-2659073
fax-no: +86-551-2659287
e-mail: wang@mail.hf.ah.cninfo.net
nic-hdl: JW89-AP
mnt-by: MAINT-NEW
changed: wang@mail.hf.ah.cninfo.net 19990818
source: APNIC
[studio42@flatus counter]$ whois slalmet.com
[whois.crsnic.net]
Whois Server Version 2.0
Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.
Domain Name: SLALMET.COM
Registrar: XIN NET TECHNOLOGY CORPORATION
Whois Server: whois.paycenter.com.cn
Referral URL: http://www.xinnet.com
Name Server: NS1.SLALMET.COM
Name Server: NS2.SLALMET.COM
Status: ok
Updated Date: 28-may-2008
Creation Date: 27-may-2008
Expiration Date: 27-may-2009
>>> Last update of whois database: Fri, 30 May 2008 15:33:17 EDT <<<
NOTICE: The expiration date displayed in this record is the date the
registrar's sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant's agreement with the sponsoring
registrar. Users may consult the sponsoring registrar's Whois database to
view the registrar's reported date of expiration for this registration.
TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services' ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability. VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.
The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.
[whois.paycenter.com.cn]
The Data in Paycenter's WHOIS database is provided by Paycenter
for information purposes, and to assist persons in obtaining
information about or related to a domain name registration
record.
Paycenter does not guarantee its accuracy. By submitting
a WHOIS query, you agree that you will use this Data only
for lawful purposes and that, under no circumstances will
you use this Data to:
(1) allow, enable, or otherwise support the transmission
of mass unsolicited, commercial advertising or solicitations
via e-mail (spam); or
(2) enable high volume, automated, electronic processes that
apply to Paycenter or its systems.
Paycenter reserves the right to modify these terms at any time.
By submitting this query, you agree to abide by this policy.
Domain Name:slalmet.com
Registrant:
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
550001
Administrative Contact:
SunWei
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
jinan Shandong 550001
CN
tel: 537 2531288
fax: 537 2531288
lovekyos99@163.com
Technical Contact:
SunWei
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
jinan Shandong 550001
CN
tel: 2531288
fax: 2531288
lovekyos99@163.com
Billing Contact:
SunWei
Sun Wei
shan dong sheng ji nan shi ren cheng qu yu tun gong ye yuan
jinan Shandong 550001
CN
tel: 2531288
fax: 2531288
lovekyos99@163.com
Registration Date: 2008-05-28
Update Date: 2008-05-28
Expiration Date: 2009-05-28
Primary DNS: ns1.slalmet.com 124.236.241.91
Secondary DNS: ns2.slalmet.com 60.172.222.18
