IDS scanner, 18.104.22.168, Skype P2P attacks, 22.214.171.124, 126.96.36.199 broadband.corbina.ru, Russia botnet, spam http://www.spaminform.com/spam-report/-c928225.html 21.3.2013 13:10 pm IDS scan parser : udp port scan: 188.8.131.52 scanned at least 20 ports at (1 of 1) : 184.108.40.206 0056 UDP 54863->50558 in the same time major --> attacks by Skype communication, 220.127.116.11, 18.104.22.168 broadband.corbina.ru, Russia botnet Skype.exe 4040 68-189-12-8.dhcp.snlo.ca.charter.com 28639 --> Skype.exe 4040 TCP 128-68-132-65.broadband.corbina.ru 37033 - 22.214.171.124 --> Skype.exe 4040 TCP 128-75-217-157.broadband.corbina.ru 53536 - 126.96.36.199 Skype.exe 4040 TCP cpe-121-220-221-242.lns5.way.bigpond.net.au 54863 Skype.exe 4040 TCP 112-105-119-243.adsl.dynamic.seed.net.tw 5676 Skype.exe 4040 TCP 68-189-12-8.dhcp.snlo.ca.charter.com 28639 --> Skype.exe 4040 TCP 128-68-132-65.broadband.corbina.ru 37033 - 188.8.131.52 --> Skype.exe 4040 TCP 128-75-217-157.broadband.corbina.ru 53536 - 184.108.40.206 Skype.exe 4040 TCP cpe-121-220-221-242.lns5.way.bigpond.net.au 54863 What drives such brainless people to spy, firewall scanning, attacks communication by company in Asia? We not based in Tehran Iran, Pyongyang Democratic People's Republic of North Korea or Baghdad in Iraq. inetnum: 220.127.116.11 - 18.104.22.168 netname: TELSTRAINTERNET45-AU descr: Telstra Internet [email@example.com] ticket#0006 --> broadband.corbina.ru - Russia blacklisted comment spam source IP list In this thread we will get to the point, the list of IP's below are known sources of automated spam out of Russia used by professional comment spambot networks and are blacklisted by anti-spam portals ... 22.214.171.124 - 93-80-210-55.broadband.corbina.ru 126.96.36.199 - 95-28-162-175.broadband.corbina.ru 188.8.131.52 - 95-24-21-239.broadband.corbina.ru 184.108.40.206 - 91-76-243-185.pppoe.mtu-net.ru 220.127.116.11 - 78-106-117-124.broadband.corbina.ru 18.104.22.168 - 78-106-129-121.broadband.corbina.ru 22.214.171.124 - 78-106-191-126.broadband.corbina.ru 126.96.36.199 188.8.131.52 - 184.108.40.206.dyn.broadband.iskratelecom.ru 220.127.116.11 18.104.22.168 host193-200.static-broadband-1.aviel.ru http://www.forumpostersunion.com/showthread.php?t=4123 inetnum: 22.214.171.124 - 126.96.36.199 netname: BEELINE-BROADBAND descr: Dynamic IP Pool for Broadband Customers RU Russia inetnum: 188.8.131.52 - 184.108.40.206 netname: BEELINE-BROADBAND descr: Dynamic IP Pool for Broadband Customers RU Russia
Please help us keep Internet safer and cleaner by leaving a descriptive comment about 220.127.116.11 IP address
DNSBL* - is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time. DNSBLs are most often used to publish the addresses of computers or networks linked to spamming; most mail server software can be configured to reject or flag messages which have been sent from a site listed on one or more such lists.
WHOIS** - is a query/response protocol that is widely used for querying databases in order to determine the registrant or assignee of Internet resources, such as a domain name, an IP address block, or an autonomous system number. WHOIS lookups were traditionally performed with a command line interface application, and network administrators predominantly still use this method, but many simplified web-based tools exist. WHOIS services are typically communicated using the Transmission Control Protocol (TCP). Servers listen to requests on the well-known port number 43.
** Approximate Geographic Location - This is NOT the exact geographical location of the person/organization with the given IP address. However, this should still give you a good idea about the area/region where this person/orgranization is located.