Day: September 24, 2009

Ordering personnel Central – phicode@bryansuppliesltd.com

Leave a comment

The Purpose of This Post Is To ALERT You That The Job You Are About To APPLY TO or May Have Applied For or is CONSIDERING APPLYING FOR Is Fraudulent. A LEGITIMATE COMPANY IDENTITY HAS BEEN STOLEN OR A BOGUS ONE CREATED

These job postings are an attempt to lure you into cashing counterfeit checks and have you wire funds via Western Union or MoneyGram -Essentially You Become A Money or RePackage Mule

Money Mule Explained

Read All About This at Symantec Corp.


Date: 2009-09-24, 5:52PM PDT
Reply to: phicode@bryansuppliesltd.com

Punctual and experienced Ordering personnel is needed for a private help, job pays $80 per hour, and you are expected to work 14 hrs per week. Applicant must be 20 yrs and older to qualify you for this position. for more information email your resumes to “phicode@bryansuppliesltd.com”.

Location:
Compensation: $80 per hour
This is a part-time job.
Principals only. Recruiters, please don’t contact this job poster.
Please, no phone calls about this job!
Please do not contact job poster about other services, products or commercial interests.
PostingID: 1391089841

Sep 24, 2009  must be 20 yrs and older to qualify you for this position. for more information email your resumes to “krizred@bryansuppliesltd.com“. 
career.gayguidemiami.com/…/ordering-personnel-broward-county-broward-county – 31 minutes ago – Similar – 

Date: 2009-09-14, 12:25PM EDT Reply to: wilshirenidal@bryansuppliesltd.com. Client seeks a Project Support Assistant for a contract assignment in …Date: 2009-09-14, 12:25PM EDT Reply to: wilshirenidal@bryansuppliesltd.com. Client seeks a Project Support Assistant for a contract assignment in 

newyork.craigslist.org/stn/gov/1373845104.html –

Date: 2009-09-14, 10:16AM PDT Reply to: ryanmido@bryansuppliesltd.com. Clerk Job: IMMEDIATE NEED!! Client seeks a Project Support Assistant for a night duty 
seattle.craigslist.org/oly/gov/1373957259.html

Advertisement

WhoIs 188.186.145.158

Leave a comment
blocklist link status description
red
b.barracudacentral.org link (127.0.0.2)
spamcop link (127.0.0.2)
xbl.spamhaus.org link (127.0.0.4) Illegal 3rd party exploits, including proxies, worms and trojan exploits
cbl.abuseat.org (127.0.0.2)
sbl-xbl.spamhaus.org (127.0.0.4)

Address lookup

canonical name net145.186.188-158.dynamic.omskdom.ru.
aliases
addresses 188.186.145.158

Domain Whois record

Queried whois.ripn.net with “omskdom.ru“…

% By submitting a query to RIPN's Whois Service
% you agree to abide by the following terms of use:
% http://www.ripn.net/about/servpol.html#3.2 (in Russian) 
% http://www.ripn.net/about/en/servpol.html#3.2 (in English).

domain:     OMSKDOM.RU
type:       CORPORATE
nserver:    ns2.omskdom.ru. 91.144.168.1
nserver:    ns4.omskdom.ru. 91.144.170.1
state:      REGISTERED, DELEGATED
org:        ZAO "Kompania "ER-Telecom"
phone:      +7 3812 370159
fax-no:     +7 3812 370159
e-mail:     noc@omsk.ertelecom.ru
e-mail:     noc@ertelecom.ru
e-mail:     skripnik@ertelecom.ru
e-mail:     v.chudinov@ertelecom.ru
registrar:  RUCENTER-REG-RIPN
created:    2006.08.30
paid-till:  2010.08.30
source:     TC-RIPN

Last updated on 2009.09.24 19:56:05 MSK/MSD

Network Whois record

Queried whois.ripe.net with “-B 188.186.145.158“…

% Information related to '188.186.144.0 - 188.186.151.255'

inetnum:        188.186.144.0 - 188.186.151.255
netname:        ERTH-OMSK-PPPOE-5-NET
descr:          CJSC "Company "ER-Telecom" Omsk
descr:          Omsk, Russia
descr:          PPPoE Individual customers
country:        RU
admin-c:        NOCC3-RIPE
tech-c:         NOCC3-RIPE
status:         ASSIGNED PA
mnt-by:         RAID-MNT
remarks:        INFRA-AW
changed:        ripe@ertelecom.ru 20090914
notify:         ripe@ertelecom.ru
source:         RIPE

role:           Network Operation Center CJSC ER-Telecom Company Omsk branch
address:        25 Zhukov str., 644024, Omsk, Russia
phone:          +7 3812 371122
fax-no:         +7 3812 370162
e-mail:         noc@omsk.ertelecom.ru
abuse-mailbox:  abuse@omsk.ertelecom.ru
admin-c:        AVK163-RIPE
tech-c:         OVK24-RIPE
tech-c:         AVK163-RIPE
nic-hdl:        NOCC3-RIPE
changed:        kav@omsk.ertelecom.ru 20070131
source:         RIPE
mnt-by:         MNT-ERTHOLDING

% Information related to '188.186.128.0/17AS41843'

route:          188.186.128.0/17
descr:          CJSC "Company "ER-Telecom" Omsk
descr:          Omsk, Russia
origin:         AS41843
mnt-by:         RAID-MNT
changed:        ripe@ertelecom.ru 20090831
source:         RIPE

% Information related to '188.186.144.0/22AS41843'

route:          188.186.144.0/22
descr:          CJSC "Company "ER-Telecom" Omsk
descr:          Omsk, Russia
origin:         AS41843
mnt-by:         RAID-MNT
changed:        ripe@ertelecom.ru 20090914
source:         RIPE

DNS records

name class type data time to live
net145.186.188-158.dynamic.omskdom.ru IN A 188.186.145.158 3600s (01:00:00)
omskdom.ru IN SOA
server: ns4.omskdom.ru
email: noc.ertelecom.ru
serial: 2009092302
refresh: 86400
retry: 1800
expire: 604800
minimum ttl: 86400
3600s (01:00:00)
omskdom.ru IN A 91.144.168.230 3600s (01:00:00)
omskdom.ru IN TXT v=spf1 +mx +a ~all 3600s (01:00:00)
omskdom.ru IN NS ns2.omskdom.ru 3600s (01:00:00)
omskdom.ru IN NS ns4.omskdom.ru 3600s (01:00:00)
omskdom.ru IN MX
preference: 10
exchange: mx1.omskdom.ru
3600s (01:00:00)
158.145.186.188.in-addr.arpa IN PTR net145.186.188-158.dynamic.omskdom.ru 3600s (01:00:00)

Traceroute

Tracing route to net145.186.188-158.dynamic.omskdom.ru [188.186.145.158]

hop rtt rtt rtt ip address fully qualified domain name
1 2 10 3 70.84.211.97 61.d3.5446.static.theplanet.com
2 0 0 0 70.87.254.1 po101.dsr01.dllstx5.theplanet.com
3 0 0 0 70.85.127.105 po51.dsr01.dllstx3.theplanet.com
4 0 0 0 70.87.253.5 et5-1.ibr03.dllstx3.theplanet.com
5 32 32 32 70.87.253.190 be.fd.5746.static.theplanet.com
6 566 877 62 63.218.94.253 ge9-1.br02.ash01.pccwbtn.net
7 220 220 220 94.25.0.66
8 242 243 247 79.133.74.250
9 238 240 247 91.144.169.106 net169.144.91-106.dynamic.omskdom.ru
10 * * *
11 * * *
12 * * *
13 * * *

Trace aborted

Canadian Pharmacy Spam – championrxsource.com

2 Comments

Buying Prescription Drugs Online Scam Alert 1
May Be Dangerous
Says Drug Enforcement Administration

DEA Logo - Buying Proscription Drugs

National Association of Boards of Pharmacy (NABP)

Warning

“The Canadian Pharmacy, Canadian/European Pharmacy”, “Canadian Healthcare” and “US Drugstore” are brands of one of the most disgusting illegal online pharmacy group well organized CRIMINAL OPERATION of all times. “GREED” is the driving force behind this operation. Don’t let them fool you. They will never send you any genuine drugs. If they ever send anything at all, it may consist of literally anything from sugar to wall plaster, and they certainly don’t care that you will endanger your health by taking those dangerous counterfeit drugs.

Behind The Online Pharmacy

Today a shadowy, transnational network of illicit drug manufacturers, traders, doctors, Web site operators, spammers and criminals makes up the online pharmacy world.

Buying Medication Online Can Be Safe

There are many options out there when it comes to buying medication online. We have looked at websites after websites. Some sites feature offshore pharmacies that do not require a prior prescription. Others feature licensed pharmacies that do require a prescription from your doctor.
Before making a purchase that can effect your health, we strongly recommend that you consult your physician & DO NOT self-medicate. Ordering medication online can be a safe, money-saving experience. When done through licensed online pharmacies that require a prescription, you can be assured that the medication you get is exactly what you need to treat your ailments.

Also See ThreatChaos

From Janell Good Thu Sep 24 05:02:19 2009
X-Apparently- Wed, 23 Sep 2009 21:01:27 -0700
Return-Path:
X-YahooFilteredBulk: 188.186.145.158
X-YMailISG: 9lV5WXMWLDsi3aWaiPBYRtkFvS1sPClB1rxe3blVbgpuMDwIUj1HdCQSoaHPflxVmq9crV5clAcY.3mSt.M1lWJQ8tmtw9iJ2Rzi3B3uov5rOpTYTQ01HhOaxtRljn3RG4V7hOP0swbZuiNyzeQxqiNFCLxsWbnbxdJr3UsX_FiQx6k209FY6w6kdfha
X-Originating-IP: [188.186.145.158]
Authentication-Results: mta105.sbc.mail.gq1.yahoo.com from=uni-duisburg.de; domainkeys=neutral (no sig); from=uni-duisburg.de; dkim=neutral (no sig)
Received: from 188.186.145.158 (EHLO flpd121.prodigy.net) (207.115.20.131)
by mta105.sbc.mail.gq1.yahoo.com with SMTP; Wed, 23 Sep 2009 21:01:26 -0700
X-Header-Overseas: Mail.from.Overseas.source.188.186.145.158
X-Originating-IP: [188.186.145.158]
 Received: from zmexsw3 (net145.186.188-158.dynamic.omskdom.ru [188.186.145.158])
by flpd121.prodigy.net (8.13.8 inb ipv6 jeff0203/8.13.8) with SMTP id n8O40Z6d011560;
Wed, 23 Sep 2009 21:01:19 -0700
Message-ID: <000701ca3d0e$ddba21c0$627e18e2@uni-duisburg.de>
Reply-To: “Janell Good”  <janell_goodqe@uni-duisburg.de>
From: “Janell Good”  <janell_goodqe@uni-duisburg.de>
To:
Subject: Order Any Drug With NoPRESCRIPTION Needed! championrxsource.com
Date: Thu, 24 Sep 2009 05:02:19 -0700
MIME-Version: 1.0
Content-Type: text/plain;
format=flowed;
charset=”windows-1250″
reply-type=original
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Office Outlook, Build 11.0.5510
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1807
Content-Length: 108

Order all your Favorite Medications Online!
Browse 0ur Selection Today! -> http://championrxsource.com

Header Analysis

The following IP addresses were extracted from your headers:

IP Address Probable Country Additional Info
68.142.207.166 United States (Sunnyvale)* Whois Google DNSStuff Urgentmessage.org
188.186.145.158 Russian Federation (Perm)* Whois Google DNSStuff Urgentmessage.org
207.115.20.131 United States (Richardson)* Whois Google DNSStuff Urgentmessage.org
* The last IP listed is usually the originating IP address

Here is the text you submitted, with the IP addresses highlighted:

Address lookup

canonical name championrxsource.com.
aliases
addresses 60.12.166.154

Domain Whois record

Queried whois.internic.net with “dom championrxsource.com“…

Domain Name: CHAMPIONRXSOURCE.COM
Registrar: CHINA SPRINGBOARD INC.
Whois Server: whois.namerich.cn
Referral URL: http://www.namerich.cn
Name Server: NS1.UBR34NS.COM
Name Server: NS2.UBR34NS.COM
Name Server: NS3.BIDOKODJU.COM
Name Server: NS4.BIDOKODJU.COM
Name Server: NS5.HOSTLIFE45.COM
Name Server: NS6.HOSTLIFE45.COM
Status: clientDeleteProhibited
Status: clientTransferProhibited
Updated Date: 22-sep-2009
Creation Date: 16-sep-2009
Expiration Date: 16-sep-2010

Last update of whois database: Thu, 24 Sep 2009 15:47:52 UTC

Queried whois.namerich.cn with “championrxsource.com“…

DomainName : championrxsource.com
RSP: China Springboard Inc.
URL: http://www.namerich.cn

Name Server………………….NS5.HOSTLIFE45.COM
Name Server………………….NS1.UBR34NS.COM
Name Server………………….NS2.UBR34NS.COM
Name Server………………….NS4.BIDOKODJU.COM
Name Server………………….NS6.HOSTLIFE45.COM
Name Server………………….NS3.BIDOKODJU.COM
Status………………………clientTransferProhibited
Status………………………clientDeleteProhibited
Creation Date ………………2009-09-16
Expiration Date ……………..2010-09-16
Last Update Date ……………2009-09-23

Registrant ID ……………….V-X-58522-14215
Registrant Name ……………..ZHANG WENQI
Registrant Organization ………ZHANG WENQI
Registrant Address …………..JIAOTONGLU16
Registrant City………………DL
Registrant Province/State …….LN
Registrant Country Code ………CN
Registrant Postal Code ……….116049
Registrant Phone Number ………+86.041128805621
Registrant Fax ………………+86.041128805621
Registrant Email …………….kaokga@126.com

Administrative ID ……………V-X-58522-14215
Administrative Name ………….ZHANG WENQI
Administrative Organization …..ZHANG WENQI
Administrative Address ……….JIAOTONGLU16
Administrative City…………..DL
Administrative Province/State …LN
Administrative Country Code …..CN
Administrative Postal Code ……116049
Administrative Phone Number …..+86.041128805621
Administrative Fax …………..+86.041128805621
Administrative Email …………kaokga@126.com

Billing ID ………………….V-X-58522-14215
Billing Name ………………..ZHANG WENQI
Billing Organization …………ZHANG WENQI
Billing Address ……………..JIAOTONGLU16
Billing City…………………DL
Billing Province/State ……….LN
Billing Country Code …………CN
Billing Postal Code ………….116049
Billing Phone Number …………+86.041128805621
Billing Fax …………………+86.041128805621
Billing Email ……………….kaokga@126.com

Technical ID ………………..V-X-58522-14215
Technical Name ………………ZHANG WENQI
Technical Organization………..ZHANG WENQI
Technical Address ……………JIAOTONGLU16
Technical City……………….DL
Technical Province/State………LN
Technical Country Code ……….CN
Technical Postal Code ………..116049
Technical Phone Number ……….+86.041128805621
Technical Fax ……………….+86.041128805621
Technical Email ……………..kaokga@126.com

; Please register your domains at
; http://www.namerich.cn

Network Whois record

Queried whois.apnic.net with “60.12.166.154“…

inetnum: 60.12.0.0 – 60.12.255.255
netname: UNICOM-ZJ
descr: China Unicom Zhejiang province network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: JQ16-AP
remarks: service provider
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-ZJ
mnt-routes: MAINT-CNCGROUP-RR
status: ALLOCATED PORTABLE
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation’s account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: hm-changed@apnic.net 20040629
changed: hm-changed@apnic.net 20060124
changed: hm-changed@apnic.net 20090507
changed: hm-changed@apnic.net 20090508
source: APNIC

route: 60.12.0.0/16
descr: CNC Group CHINA169 Zhejiang Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: abuse@cnc-noc.net 20060118
source: APNIC

person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: abuse@chinaunicom.cn
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
phone: +86-10-66259940
fax-no: +86-10-66259764
country: CN
changed: abuse@chinaunicom.cn 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC

person: Jianhuaq Qian
nic-hdl: JQ16-AP
e-mail: chenrenhai@china-netcom.com
address: No 1,Hangzhou University Road,Hangzhou, Zhejiang,China
phone: +86-571-28868063
fax-no: +86-571-28868069
country: CN
changed: wuhong@china-netcom.com 20050421
mnt-by: MAINT-CNCGROUP-ZJ
source: APNIC

DNS records

DNS query for championrxsource.com returned an error from the server: ServerFailure

DNS query for 154.166.12.60.in-addr.arpa returned an error from the server: NameError

No records to display

Traceroute

Tracing route to championrxsource.com [60.12.166.154]

hop rtt rtt rtt ip address fully qualified domain name
1 1 0 1 70.84.211.97 61.d3.5446.static.theplanet.com
2 18 1 0 70.87.254.5 po101.dsr02.dllstx5.theplanet.com
3 0 0 0 70.85.127.109 po52.dsr02.dllstx3.theplanet.com
4 0 0 0 70.87.253.25 et3-2.ibr04.dllstx3.theplanet.com
5 1 2 1 12.87.41.149
6 47 46 45 12.122.138.118 cr2.dlstx.ip.att.net
7 46 46 46 12.122.28.178 cr2.la2ca.ip.att.net
8 46 46 46 12.122.31.134 cr2.sffca.ip.att.net
9 45 45 45 12.122.136.169
10 209 209 209 12.88.147.14
11 217 217 217 219.158.29.213
12 253 252 253 219.158.5.113
13 264 263 264 219.158.12.42
14 260 260 259 221.12.82.106
15 270 272 281 221.12.82.78
16 * * *
17 * * *
18 * * *
19 * * *

Trace aborted