Unsolicited spam supposedly sent by wanhui513@yahoo.com but actually sent by wanhui513@yahoo.com.sg via YahooMailWebService servers from blacklisted IP. --------------------- Received: from nm40-vm9.bullet.mail.sg3.yahoo.com ([106.10.151.106]) by BAY0-MC2-F12.Bay0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900); Sun, 25 Nov 2012 15:46:52 -0800 Received: from [106.10.166.112] by nm40.bullet.mail.sg3.yahoo.com with NNFMP; 25 Nov 2012 23:46:51 -0000 Received: from [106.10.151.203] by tm1.bullet.mail.sg3.yahoo.com with NNFMP; 25 Nov 2012 23:46:51 -0000 Received: from [127.0.0.1] by omp1015.mail.sg3.yahoo.com with NNFMP; 25 Nov 2012 23:46:51 -0000 X-Yahoo-Newman-Property: ymail-5 X-Yahoo-Newman-Id: 884036.84108.bm@omp1015.mail.sg3.yahoo.com Received: (qmail 61327 invoked by uid 60001); 25 Nov 2012 23:46:51 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com.sg; s=s1024; t=1353887211; ****; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:Message- ******s=s1024; d=yahoo.com.sg; Received: from [85.122.42.82] by web193904.mail.sg3.yahoo.com via HTTP; Mon, 26 Nov 2012 07:46:51 SGT X-Rocket-MIMEInfo: 001.001,aHR0cDovL21pY3Jvc29mdHRyYW5zbGF0b3IuY29tL2J2LmFzcHg_YT0lNzklMkUlNjElNjglNkYlNkYlMkUlNjklNzQvSkRaNlYKCgpfXwoBMAEBAQE- X-Mailer: YahooMailWebService/0.8.123.460 Message-ID: <1353887211.59248.YahooMailNeo@web193904.mail.sg3.yahoo.com> Date: Mon, 26 Nov 2012 07:46:51 +0800 (SGT) From: "10094007 __<__FinalHours__<__BlackFriday__<__ derby goldthorpe four humans whod gone up against. to go that someof the big" <wanhui513@yahoo.com.sg> Reply-To: "10094007 __<__FinalHours__<__BlackFriday__<__ derby goldthorpe four humans whod gone up against. to go that someof the big" <wanhui513@yahoo.com> Subject: Order #10094007- which was painted byst luke and Return-Path: wanhui513@yahoo.com.sg http://microsofttranslator.com/bv.aspx?a=3D%79%2E%61%68%6F%6F%2E%69%74/JDZ6= V=0A=0A=0A__=0A
Please help us keep Internet safer and cleaner by leaving a descriptive comment about 85.122.42.82 IP address
- Hacked Gmail accounts
- WordPress Hacking Attempts
- SSH Hacking Attempts
- Why Can't I See The Exact Address?
DNSBL* - is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time. DNSBLs are most often used to publish the addresses of computers or networks linked to spamming; most mail server software can be configured to reject or flag messages which have been sent from a site listed on one or more such lists.
WHOIS** - is a query/response protocol that is widely used for querying databases in order to determine the registrant or assignee of Internet resources, such as a domain name, an IP address block, or an autonomous system number. WHOIS lookups were traditionally performed with a command line interface application, and network administrators predominantly still use this method, but many simplified web-based tools exist. WHOIS services are typically communicated using the Transmission Control Protocol (TCP). Servers listen to requests on the well-known port number 43.
** Approximate Geographic Location - This is NOT the exact geographical location of the person/organization with the given IP address. However, this should still give you a good idea about the area/region where this person/orgranization is located.