Spam Alert
 
 Full Report: /Botnet_Canadian_Pharmacy_Geocities_redirect_spam173190.html
 
 Changed status to confirmed spam.
Criminal Evidence

** REDIRECTOR **

> Yahoo

This site is using redirections to access a hidden criminal site. See
http://www.spamtrackers.eu/wiki/index.php?title=Geocities
http://www.spamtrackers.hk/wiki/index.php?title=Geocities for China
See the Spam Wiki entry at http://www.spamtrackers.eu/wiki/index.php?title=Redirections
or from China: http://www.spamtrackers.hk/wiki/index.php?title=Redirections


Please remove all redirections to sites that continue to abuse your terms of service. Please remove all redirections to sites that continue to abuse your terms of service. This site is using hidden redirection using java script. Use it to identify all similar redirections.

Here are the Sites That are Abusing your service, Link Provided Below:

http://rss.uribl.com/hosters/geocities_com.html



** TARGET SITE **

See the Spam Wiki entry at http://www.spamtrackers.eu/wiki/index.php?title=Canadian_Pramacy
or from China: http://www.spamtrackers.hk/wiki/index.php?title=Canadian_Pharmacy
See the McAfee Site Advisor information at http://siteadvisor.com/sites/designrub.com


> XIN NET
REGISTRATION OF THE WEB SITE: Desingrub.com
ACTION: To suspend this criminal site which breaks your terms of service, set the domain status to clientHold


> XIN NET
REGISTRATION OF THE NAME SERVERS
These name servers are registered by criminals to resolve only illegal web sites. This breaks your terms of service. You can safely suspend them:

ns0.nameedns.com 79.172.64.80
ns0.nameedns1.com 98.221.151.60
ns0.renewwdns.com 91.66.83.97
ns0.renewwdns1.com 203.73.152.85

ACTION: To suspend these name servers successfully, follow these steps.
1. set the ns Address records to a non-routable address, such as 127.0.0.1 or 61.61.61.61.
2. Set the domain status to clientUpdateProhibited, clientTransferProhibited, clientDeleteProhibited, and clientHold


The Is evidence that this site is running on a botnet.

Addresses for this domain

Address | Reverse | BL | Country | Reporting nameserver | Links
61.18.251.12 | N/A | | Hong Kong | ns0.nameedns.com |
61.92.120.6 | N/A | | Hong Kong | ns0.nameedns.com |
66.53.210.137 | N/A | | United States | ns0.nameedns.com |
70.224.193.79 | N/A | Yes | United States | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=70.224.193.79 |
76.208.138.156 | N/A | Yes | United States | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=76.208.138.156 |
78.106.37.72 | N/A | | Russian Federation | ns0.nameedns.com |
82.193.102.108 | N/A | | Ukraine | ns0.nameedns.com |
93.80.33.11 | N/A | Yes | | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=93.80.33.11 |
93.80.50.129 | N/A | | | ns0.nameedns.com |
93.80.227.91 | N/A | Yes | | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=93.80.227.91 |
98.221.151.60 | N/A | | United States | ns0.nameedns.com |
118.170.10.95 | N/A | | | ns0.nameedns.com |
210.106.5.136 | N/A | | Korea, Republic of | ns0.nameedns.com |
218.173.156.36 | N/A | Yes | Taiwan | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=218.173.156.36 |
218.232.78.196 | N/A | | Korea, Republic of | ns0.nameedns.com |
218.252.100.82 | N/A | Yes | Hong Kong | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=218.252.100.82 |
221.127.36.183 | N/A | Yes | Hong Kong | ns0.nameedns.com | http://www.spamhaus.org/query/bl?ip=221.127.36.183 |
221.127.164.253 | N/A | | Hong Kong | ns0.nameedns.com |
221.138.213.232 | N/A | Yes | Korea, Republic of | ns0.nameedns.com |
222.167.120.55 | N/A | | Hong Kong | ns0.nameedns.com |

All times are GMT