Canadian Pharmacy Spam – tinymetal.com

Canadian Pharmacy Spam – tinymetal.com July 3, 2009

Posted by Scrub in Consumer Alert, Fraud Alert, Malware, Phishing & Identity Theft, Scam Alert, Spyware, Trojan.
Tags: Canadian Pharmacy, Consumer Alert, counterfeit precription drugs, Fake Drugs, Online Canadian Pharmacy, online precription drugs, Scam Alert, Spam, spamming
trackback

Buying Precription Drugs Online May Be Dangerous
- Consumer Alert -
Drug Enforcement Administration Says

National Association of Boards of Pharmacy (NABP)

Warning

“The Canadian Pharmacy, Canadian/European Pharmacy”, “Canadian Healthcare” and “US Drugstore” are brands of one of the most disgusting illegal online pharmacy group well organized CRIMINAL OPERATION of all times. “GREED” is the driving force behind this operation. Don’t let them fool you. They will never send you any genuine drugs. If they ever send anything at all, it may consist of literally anything from sugar to wall plaster, and they certainly don’t care that you will endanger your health by taking those dangerous counterfeit drugs.

An Incredible Canadian Pharmacy is available at your Fingertips!
*No~Doctor~Needed*! Browse our Site Today! -> http://tinymetal.com

Header Analysis

The following IP addresses were extracted from your headers:

IP Address	Probable Country	Additional Info
192.115.102.105	Israel (Tel Aviv-yafo)*	Whois	Google	DNSStuff	Urgentmessage.org
207.115.20.186	United States (Richardson)*	Whois	Google	DNSStuff	Urgentmessage.org
* The last IP listed is usually the originating IP address

From Alma Faulkner Thu Jul 2 02:09:37 2009

Return-Path: <alma.faulknerxu@gdansk.sprint.pl>
Authentication-Results: mta112.sbc.mail.mud.yahoo.com from=gdansk.sprint.pl; domainkeys=neutral (no sig); from=gdansk.sprint.pl; dkim=neutral (no sig)
Received: from 192.115.102.105 (EHLO flpi184.prodigy.net) (207.115.20.186)
by mta112.sbc.mail.mud.yahoo.com with SMTP; Thu, 02 Jul 2009 02:08:35 -0700
Received: from o551mf1 ([192.115.102.105])
by flpi184.prodigy.net (8.13.8 inb ipv6 jeff0203/8.13.8) with SMTP id n6293iiv014214;
Thu, 2 Jul 2009 02:08:04 -0700
Message-ID: <000701c9faf4$d2dc7fc0$431333e2@gdansk.sprint.pl>
Reply-To: “Alma Faulkner” <alma.faulknerxu@gdansk.sprint.pl>
From: “Alma Faulkner” <alma.faulknerxu@gdansk.sprint.pl>
To:
Subject: Get Medications online No Doctor Needed!
Date: Thu, 02 Jul 2009 04:09:37 -0500
MIME-Version: 1.0
Content-Type: text/plain;
format=flowed;
charset=”windows-1250″
reply-type=original
Content-Transfer-Encoding: 7bit
Content-Length: 139

Address lookup

canonical name	tinymetal.com.
aliases
addresses	61.191.191.241 119.39.238.2 203.93.208.86 218.75.144.6 222.241.150.146

Domain Whois record

Queried whois.internic.net with “dom tinymetal.com“…

   Domain Name: TINYMETAL.COM
   Registrar: CHINA SPRINGBOARD INC.
   Whois Server: whois.namerich.cn
   Referral URL: http://www.namerich.cn
   Name Server: NS1.CHARTFLAT.IN
   Name Server: NS2.CHARTFLAT.IN
   Name Server: NS3.SELLCALL.RU
   Name Server: NS4.SELLCALL.RU
   Name Server: NS5.CIRCLEFRUIT.COM
   Name Server: NS6.CIRCLEFRUIT.COM
   Status: ok
   Updated Date: 29-jun-2009
   Creation Date: 29-jun-2009
   Expiration Date: 29-jun-2010

>>> Last update of whois database: Fri, 03 Jul 2009 08:42:34 UTC <<<

Queried whois.namerich.cn with “tinymetal.com“…

 DomainName : tinymetal.com

RSP: China Springboard Inc.
URL: http://www.namerich.cn      

Name Server......................NS5.CIRCLEFRUIT.COM
Name Server......................NS2.CHARTFLAT.IN
Name Server......................NS3.SELLCALL.RU
Name Server......................NS1.CHARTFLAT.IN
Name Server......................NS4.SELLCALL.RU
Name Server......................NS6.CIRCLEFRUIT.COM
Status...........................ok
Creation  Date ..................2009-06-29
Expiration Date .................2010-06-29
Last Update  Date ...............2009-06-29

Registrant ID ...................V-X-58378-14021
Registrant Name .................WANG JIE
Registrant Organization .........WANG JIE
Registrant Address ..............ZHONGYANGDADAO51
Registrant City..................HZ
Registrant Province/State .......ZJ
Registrant Country Code .........CN
Registrant Postal Code ..........313009
Registrant Phone Number .........+86.057258421551
Registrant Fax ..................+86.057258421551
Registrant Email ................ojanengzx@126.com

Administrative ID ...............V-X-58378-14021
Administrative Name .............WANG JIE
Administrative Organization .....WANG JIE
Administrative Address ..........ZHONGYANGDADAO51
Administrative City..............HZ
Administrative Province/State ...ZJ
Administrative Country Code .....CN
Administrative Postal Code ......313009
Administrative Phone Number .....+86.057258421551
Administrative Fax ..............+86.057258421551
Administrative Email ............ojanengzx@126.com

Billing ID ......................V-X-58378-14021
Billing Name ....................WANG JIE
Billing Organization ............WANG JIE
Billing Address .................ZHONGYANGDADAO51
Billing City.....................HZ
Billing Province/State ..........ZJ
Billing Country Code ............CN
Billing Postal Code .............313009
Billing Phone Number ............+86.057258421551
Billing Fax .....................+86.057258421551
Billing Email ...................ojanengzx@126.com

Technical ID ....................V-X-58378-14021
Technical Name ..................WANG JIE
Technical Organization...........WANG JIE
Technical Address ...............ZHONGYANGDADAO51
Technical City...................HZ
Technical Province/State.........ZJ
Technical Country Code ..........CN
Technical Postal Code ...........313009
Technical Phone Number ..........+86.057258421551
Technical Fax ...................+86.057258421551
Technical Email .................ojanengzx@126.com

; Please register your domains at
; http://www.namerich.cn

Network Whois record

Queried whois.apnic.net with “61.191.191.241“…

inetnum:      61.191.0.0 - 61.191.255.255
netname:      CHINANET-AH
descr:        CHINANET Anhui province network
descr:        China Telecom
descr:        A12,Xin-Jie-Kou-Wai Street
descr:        Beijing 100088
country:      CN
admin-c:      CH93-AP
tech-c:       AT318-AP
mnt-by:       MAINT-CHINANET
mnt-lower:    MAINT-CHINANET-AH
status:       ALLOCATED NON-PORTABLE
changed:      hm-changed@apnic.net 20060314
source:       APNIC

role:         ANHUI TELECOM
address:      305 Changjiang West Road
address:      Hefei Anhui China
country:      CN
phone:        +86 0551 5185089
fax-no:       +86 0551 5185500
e-mail:       wanglinlin2@anhuitelecom.com
trouble:      send spam reports to abuse@ah163.com
trouble:      and abuse reports to abuse@ah163.com
trouble:      Please include detailed information and
trouble:      times in GMT+8:00
admin-c:      LW604-AP
tech-c:       LW604-AP
nic-hdl:      AT318-AP
remarks:      http://www.ah163.net
notify:       wanglinlin2@anhuitelecom.com
mnt-by:       MAINT-CHINANET-AH
changed:      wanglinlin2@anhuitelecom.com 20060323
source:       APNIC

person:       Chinanet Hostmaster
nic-hdl:      CH93-AP
e-mail:       anti-spam@ns.chinanet.cn.net
address:      No.31 ,jingrong street,beijing
address:      100032
phone:        +86-10-58501724
fax-no:       +86-10-58501724
country:      CN
changed:      dingsy@cndata.com 20070416
mnt-by:       MAINT-CHINANET
source:       APNIC

DNS records

DNS query for 241.191.191.61.in-addr.arpa returned an error from the server: NameError

name	class	type	data	time to live
tinymetal.com	IN	A	222.241.150.146	10800s	(03:00:00)
tinymetal.com	IN	A	61.191.191.241	10800s	(03:00:00)
tinymetal.com	IN	A	218.75.144.6	10800s	(03:00:00)
tinymetal.com	IN	A	119.39.238.2	10800s	(03:00:00)
tinymetal.com	IN	A	203.93.208.86	10800s	(03:00:00)

– end –

Comments»

1. Scrub - July 3, 2009: Domain
ridestone.com
topmedsraise.com

Reply
2. Scrub - July 3, 2009: motionsilver.com
circlebrown.com
bothseemly.com
ringmight.com
alsosoil.com
theredrive.com
settleenter.com
awareraise.com
appearlaugh.com
methodrather.com
springexotic.com
buybegin.com
writetell.com
rowhigh.com
copyor.com
happenmelody.com
dadbird.com
swelltrue.com
groundfeel.com
forcecoast.com
tryneck.com
speedwonder.com
eggtie.com
spacemonth.com
scoreseither.com
liftrange.com
foundtiny.com
figureextol.com
dimplemulti.com
extolact.com
officechoose.com
casewere.com
thiswing.com
livelywide.com
beentotal.com
alwaysanimal.com
blueawake.com
magnetaroma.com
againactive.com
equatewould.com
flowertoo.com
fieldcaring.com
bodyalso.com
bettereach.com
schoolcome.com
reapwith.com
leftshare.com
drynoble.com
unitclimb.com
coursecorn.com
spelldrop.com
sincejust.com
droolheart.com
nosecolumn.com
legacywould.com
gigglesharp.com
enjoyoften.com
woodhour.com
wingshy.com
vanishdevout.com
moverwheel.com
chartby.com
thirdmatch.com
leastvoice.com
visitslip.com
skincarry.com

Reply

	camp on Monkeyjar – Gifted Caree…
	Aries on WhoIs discuz.org
	Tammy on National Association of Boards…
	john doe on Imex Group Inc. – i…
	hector on Imex Group Inc. – i…
	BARRY on Consumer Comments – Seis…
	BARRY on Consumer Comments – Seis…
	patrick on Dunwin Staffing and Joine…
	Robert W. Cole on PART-TIME EARNED SHOPPING JOB…
	Candi on Fast Cash International

ScamFraudAlert WebBlog