User:Makemi/Spam2

Spam attacks, pg. 2

General
OrgName:   Asia Pacific Network Information Centre OrgID:     APNIC Address:   PO Box 2131 City:      Milton StateProv: QLD PostalCode: 4064 Country:   AU

ReferralServer: whois://whois.apnic.net

NetRange:  210.0.0.0 - 211.255.255.255 CIDR:      210.0.0.0/7 NetName:   APNIC-CIDR-BLK2 NetHandle: NET-210-0-0-0-1 Parent: NetType:   Allocated to APNIC NameServer: NS1.APNIC.NET NameServer: NS3.APNIC.NET NameServer: NS4.APNIC.NET NameServer: NS-SEC.RIPE.NET NameServer: TINNIE.ARIN.NET NameServer: DNS1.TELSTRA.NET Comment:   This IP address range is not registered in the ARIN database. Comment:   For details, refer to the APNIC Whois Database via Comment:   WHOIS.APNIC.NET or http://www.apnic.net/apnic-bin/whois2.pl Comment:    ** IMPORTANT NOTE: APNIC is the Regional Internet Registry Comment:   for the Asia Pacific region. APNIC does not operate networks Comment:   using this IP address range and is not able to investigate Comment:   spam or abuse reports relating to these addresses. For more Comment:   help, refer to http://www.apnic.net/info/faq/abuse Comment: RegDate:   1996-07-01 Updated:   2005-05-20

OrgTechHandle: AWC12-ARIN OrgTechName:  APNIC Whois Contact OrgTechPhone: +61 7 3858 3100 OrgTechEmail: search-apnic-not-arin@apnic.net

Specific
KRNIC is not an ISP but a National Internet Registry similar to APNIC. The followings is organization information that is using the IPv4 address.

IPv4 Address      : 211.204.253.0-211.204.253.255 Network Name      : HANANET-INFRA Connect ISP Name  : HANANET Connect Date      : 20010510 Registration Date : 20041013 Publishes         : Y

[ Organization Information ] Organization ID   : ORG3930 Org Name          : Hanaro Telecom Inc. Address            : Yeoeuido-dong Yeongdeungpo-gu SEOUL Detail address    : 17-7 Asia One Bldg. Zip Code           : 150-874

[ Technical Contact Information ] Name              : IP Manager Org Name          : Hanaro Telecom Inc. Address            : Yeoeuido-dong Yeongdeungpo-gu SEOUL Detail address    : 17-7 Asia One Bldg. Zip Code           : 150-874 Phone             : +82-2-106-2 E-Mail            : ******@hanaro.com

If the above contacts are not reachable, please contact following ISP for further information.

[ ISP IPv4 Admin Contact Information ] Name              : IP Administrator Phone             : +82-2-106-2 E-Mail            : ******@hanaro.com

[ ISP IPv4 Tech Contact Information ] Name              : IP Manager Phone             : +82-2-106-2 E-Mail            : ******@hanaro.com

[ ISP Network Abuse Contact Information ] Name              : Network Abuse Phone             : +82-2-106-2 E-Mail            : *****@hanaro.com

General
Using 0 day old cached answer (or, you can get fresh results).

Comcast Cable Communications, Inc. EASTERNSHORE-1 (NET-24-0-0-0-1) 24.0.0.0 - 24.15.255.255 Comcast Cable Communications PENNSYLVANIA-10 (NET-24-3-0-0-1) 24.3.0.0 - 24.3.255.255

Specific
IP address:                    24.3.177.194 Reverse DNS:                   c-24-3-177-194.hsd1.pa.comcast.net. Reverse DNS authenticity:      [Verified] ASN:                           7016 ASN Name:                      CCCH-AS2 IP range connectivity:         1 Registrar (per ASN):           ARIN Country (per IP registrar):    US [United States] Country Currency:              USD [United States Dollars] Country IP Range:              24.0.0.0 to 24.31.255.255 Country fraud profile:         Normal City (per outside source):     Willingboro, New Jersey Country (per outside source):  US [United States] Private (internal) IP? No IP address registrar:          whois.arin.net '''Known Proxy? No''' NO ABUSE CONTACT LOCATION

General
OrgName:   Asia Pacific Network Information Centre OrgID:     APNIC Address:   PO Box 2131 City:      Milton StateProv: QLD PostalCode: 4064 Country:   AU

ReferralServer: whois://whois.apnic.net

NetRange:  210.0.0.0 - 211.255.255.255 CIDR:      210.0.0.0/7 NetName:   APNIC-CIDR-BLK2 NetHandle: NET-210-0-0-0-1 Parent: NetType:   Allocated to APNIC NameServer: NS1.APNIC.NET NameServer: NS3.APNIC.NET NameServer: NS4.APNIC.NET NameServer: NS-SEC.RIPE.NET NameServer: TINNIE.ARIN.NET NameServer: DNS1.TELSTRA.NET Comment:   This IP address range is not registered in the ARIN database. Comment:   For details, refer to the APNIC Whois Database via Comment:   WHOIS.APNIC.NET or http://www.apnic.net/apnic-bin/whois2.pl Comment:    ** IMPORTANT NOTE: APNIC is the Regional Internet Registry Comment:   for the Asia Pacific region. APNIC does not operate networks Comment:   using this IP address range and is not able to investigate Comment:   spam or abuse reports relating to these addresses. For more Comment:   help, refer to http://www.apnic.net/info/faq/abuse Comment: RegDate:   1996-07-01 Updated:   2005-05-20

OrgTechHandle: AWC12-ARIN OrgTechName:  APNIC Whois Contact OrgTechPhone: +61 7 3858 3100 OrgTechEmail: search-apnic-not-arin@apnic.net

Specific
(Traceroute to 200.25.185.251) 200.25.185.251 AS14522 LACNIC-14522


 * [Reached Destination]251.25-185.uio.satnet.net.

General
inetnum:     202.68.128.0 - 202.68.159.255 netname:     BSESTELECOM descr:       BSES TeleCom Limited descr:       Internet Service Provider, descr:       Wholly owned subsidiary of BSES Ltd., Mumbai, India country:     IN admin-c:      BD19-AP tech-c:      BI13-AP mnt-by:      APNIC-HM mnt-lower:   MAINT-IN-BSESTELECOM changed:     **********@apnic.net 19991027 changed:     **********@apnic.net 20020503 status:      ALLOCATED PORTABLE source:      APNIC

person:      BTL DOMADMIN address:     E7, MIDC Area, address:     Marol, Andheri (East), address:     Mumbai 400 093 country:     IN phone:        +91-22-825-5435 fax-no:      +91-22-832-2235 e-mail:      ********@powersurfer.net nic-hdl:     BD19-AP mnt-by:      MAINT-IN-BSESTELECOM changed:     ********@powersurfer.net 20020423 source:      APNIC

person:      BTL IPREG address:     E7, MIDC Area, address:     Marol, Andheri (East), address:     Mumbai 400 093 country:     IN phone:        +91-22-825-5435 fax-no:      +91-22-832-2235 e-mail:      *****@powersurfer.net nic-hdl:     BI13-AP mnt-by:      MAINT-IN-BSESTELECOM changed:     ********@powersurfer.net 20020423 source:      APNIC

///Different info- IP address:                    202.68.151.118 Reverse DNS:                   [No reverse DNS entry per pdc.powersurfer.net.] Reverse DNS authenticity:      [Unknown] ASN:                           17803 ASN Name:                      BSES-AS-AP (BSES TeleCom Limited) IP range connectivity:         4 Registrar (per ASN):           APNIC Country (per IP registrar):    IN [India] Country Currency:              INR [India Rupees] Country IP Range:              202.68.128.0 to 202.68.159.255 Country fraud profile:         Normal City (per outside source):     Mumbai, Maharashtra Country (per outside source):  IN [India] Private (internal) IP? No IP address registrar:          whois.apnic.net Known Proxy? No Link for WHOIS:                202.68.151.118

Specific
We do have a phone nubmer of the provider, nothing more at this time other then the fact it is originating from india.

Traceroute failed

General
Cox Communications Inc. NETBLK-COX-ATLANTA-11 (NET-72-192-0-0-1) 72.192.0.0 - 72.215.255.255 Cox Communications NETBLK-SD-RDC-72-199-0-0 (NET-72-199-0-0-1) 72.199.0.0 - 72.199.255.255

//additional info IP address:                     72.199.192.231 Reverse DNS:                   ip72-199-192-231.sd.sd.cox.net. Reverse DNS authenticity:      [Verified] ASN:                           22773 ASN Name:                      CCINET-2 IP range connectivity:         2 Registrar (per ASN):           ARIN Country (per IP registrar):    US [United States] Country Currency:              USD [United States Dollars] Country IP Range:              72.192.0.0 to 72.207.255.255 Country fraud profile:         Normal City (per outside source):     Chula Vista, California Country (per outside source):  US [United States] Private (internal) IP? No IP address registrar:          BOGUS Known Proxy? No Link for WHOIS:                 72.199.192.231

Specific
GeoLocation: IP:                72.199.192.231 Country:          United States City:             Chula Vista, California

Country Code:     US Currency:          USD [United States Dollars] Private IP? No Known Proxy? No

General
inetnum:     210.17.128.0 - 210.17.255.255 netname:     PI-HK descr:       Pacific Internet (Hong Kong) Ltd country:     HK admin-c:      PN2-AP tech-c:      PN2-AP remarks:     Internet Service Provider remarks:       #################################### remarks:       # Please send abuse and port probe # remarks:       # email to *****@pacific.net.hk    # <<<<<<<<<<< if there is nothing in the specific section remarks:       # and ***@pacific.net.hk           # remarks:       #################################### mnt-by:      APNIC-HM mnt-lower:   MAINT-HKSUPER-AP changed:     **********@apnic.net 20030807 changed:     **********@apnic.net 20030902 status:      ALLOCATED PORTABLE changed:     **********@apnic.net 20050204 source:      APNIC

person:      PSN NOC nic-hdl:     PN2-AP e-mail:      ***@pacific.net.hk address:      Unit 12-20, 11/F Chevalier Commercial Centre, address:     8 Wang Hoi Road, address:     Kowloon Bay address:     Kowloon phone:       +85-226-201880 fax-no:      +85-223-354520 country:     HK changed:      ***@pacific.net.hk 20060807 mnt-by:      MAINT-HKSUPER-AP source:      APNIC

Specific
// look above, that is all I was able to get.

General
OrgName:   Fuse Internet Access OrgID:     FIAI Address:   209 W. Seventh St. Address:    MS 121-550 City:      Cincinnati StateProv: OH PostalCode: 45202 Country:   US

ReferralServer: rwhois://rwhois.fuse.net:4321/

NetRange:  208.102.0.0 - 208.102.255.255 CIDR:      208.102.0.0/16 NetName:   FUSE-NET-BLK-8 NetHandle: NET-208-102-0-0-1 Parent:    NET-208-0-0-0-0 NetType:   Direct Allocation NameServer: NS1.FUSE.NET NameServer: NS2.FUSE.NET Comment: RegDate:   2006-03-01 Updated:   2006-09-08

RTechHandle: RW855-ARIN RTechName:  Wagner, Rick RTechPhone: +1-513-397-9796 RTechEmail: ******@fuse.net

OrgAbuseHandle: FAT-ARIN OrgAbuseName:  Fuse Internet Access Abuse Team OrgAbusePhone: +1-513-397-6598 <<<<<<<<<<<<<< phone OrgAbuseEmail: *****@fuse.net <<<<<<<<<<<<<<< e-mail

OrgNOCHandle: FIA-ORG-ARIN OrgNOCName:  Fuse Internet Access Operations Center OrgNOCPhone: +1-800-387-3638 OrgNOCEmail: **********@fuse.net

OrgTechHandle: FIA-ORG-ARIN OrgTechName:  Fuse Internet Access Operations Center OrgTechPhone: +1-800-387-3638 OrgTechEmail: **********@fuse.net

Specific
// nothing more then the above was found, city is unknown