MALWARE ALERT:- American Airlines Fake electronic ticket scam sent by support-341@airlineticket-center.com ; Link in scam redirects to malware URL : http://www.bodyworkstherapyuk.com/components/.v6mxca.php?ticket=...(DO NOT CLICK ON LINK). Source IP: 187.45.241.242 ISP: Locaweb Servicos de Internet S/A Host Name: hm5505.locaweb.com.br Organization: LocaWeb Ltda Country: Sao Paulo, 27 Sao Paulo, Brazil. --------------------- Received: from shared-hm3562.email.locaweb.com.br ([186.202.21.134]) by SNT0-MC2-F39.Snt0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900); Wed, 10 Apr 2013 04:37:01 -0700 Received: from hm3562.email.locaweb.com.br (hm3562-134.email.locaweb.com.br [186.202.21.134]) by shared-hm3562.email.locaweb.com.br (Postfix) with ESMTP id 808D942CF2884 for <--->; Wed, 10 Apr 2013 08:36:38 -0300 (BRT) Received: from HM5505.locaweb-net.locaweb.com.br (hm5505.locaweb.com.br [187.45.241.242]) by hm3562.email.locaweb.com.br (Postfix) with SMTP id 7097442CF27AD for ---; Wed, 10 Apr 2013 08:36:38 -0300 (BRT) Date: Wed, 10 Apr 2013 08:37:00 -0300 Subject: Order has been completed To: --- From: "Airlines" <support-341@airlineticket-center.com> X-Mailer: MMailerv3.0 Reply-To: "Airlines" <support-341@airlineticket-center.com> *** X-Virus-Scanned: clamav-milter 0.97.3 at hm3562 X-Virus-Status: Clean Message-Id: <20130410113638.808D942CF2884@shared-hm3562.email.locaweb.com.br> Return-Path:support-341@airlineticket-center.com X-OriginalArrivalTime: 10 Apr 2013 11:37:01.0804 (UTC) FILETIME=[B7CE1AC0:01CE35DF]
Please help us keep Internet safer and cleaner by leaving a descriptive comment about 187.45.241.242 IP address
- Hacked Gmail accounts
- WordPress Hacking Attempts
- SSH Hacking Attempts
- Why Can't I See The Exact Address?
DNSBL* - is a list of IP addresses published through the Internet Domain Name Service (DNS) either as a zone file that can be used by DNS server software, or as a live DNS zone that can be queried in real-time. DNSBLs are most often used to publish the addresses of computers or networks linked to spamming; most mail server software can be configured to reject or flag messages which have been sent from a site listed on one or more such lists.
WHOIS** - is a query/response protocol that is widely used for querying databases in order to determine the registrant or assignee of Internet resources, such as a domain name, an IP address block, or an autonomous system number. WHOIS lookups were traditionally performed with a command line interface application, and network administrators predominantly still use this method, but many simplified web-based tools exist. WHOIS services are typically communicated using the Transmission Control Protocol (TCP). Servers listen to requests on the well-known port number 43.
** Approximate Geographic Location - This is NOT the exact geographical location of the person/organization with the given IP address. However, this should still give you a good idea about the area/region where this person/orgranization is located.