Thread: MensHealth.com
View Single Post
Old 03-24-2009, 09:17 AM  
pornguy
Too lazy to set a custom title
 
pornguy's Avatar
 
Industry Role:
Join Date: Mar 2003
Location: Homeless
Posts: 62,911
Quote:
Originally Posted by eroticsexxx View Post
A spambot swarm seems to be using the name Menshealth.com in the "from" field, but the actual return address usually matches the address that the spam was sent to.

I've been tracking them and the links in the message body have been changed several times, but all lead to online pharmaceutical sites.

This is the registrant of the latest version (vipeager.com - 220.248.186.101 (chinese IP)):

DONGFANGCHANGQIN
HUACAOGONGYINGGONGSI
[email protected]
YINYUE, 2005451

A DNS trace for that domain leads to this guy:

Name : GAOLU
Organization : GAOLU
Address : GANGSHENLU72
City : huaianshi
Province/State : jiangsusheng
Country : china
Postal Code : 223058
Phone Number : 86-0517-58621036
Fax : 86-0517-58621036
Email : [email protected]

Sohu.cn is actually sohu.com - a chinese portal
Send that info the China Gubment.
__________________
PornGuy skype me pornguy_epic

AmateurDough The Hottes Shemales online!
TChicks.com | Angeles Cid | Mariana Cordoba | MAILERS WELCOME!
pornguy is offline   Share thread on Digg Share thread on Twitter Share thread on Reddit Share thread on Facebook Reply With Quote