More on my experience with China spam
First of all, I would like to say these posts are not about China the country as much as they are about spam. I get a lot of spam and off late I have decided to try and track down the source. As mentioned in my previous post, it doesn't matter where the email is coming from. What is important is where the email is trying to send me. The destination is the creator of the spam, not the source.
Keeping that strategy in mind I started doing a Domain name lookup for each web site that the spam emails try to send me to. White the site names change for each email, the IP numbers behind those sites remain the same. I use APNIC whois to determine who owns or manges these IP numbers. And the answer is alswyas one of about 3 networks in China.
I have sent various emails reporting the spam. Sometimes the spam stops, then starts again but with a new IP number, which of course again comes from these networks in China. I am not certain as to how the spammers are setup, but I intend to find out.
So for example today I received 14 spam emails asking me to visit various web sites. The table below is a sample of my investigation on 4 of those. I investigated all 14, just keeping this post short by listing a subset.
Date Spam ID IP Network Email Country
2/1/2006 1 221.4.152.197 China Network Communications Group Corporation abuse@cnc-oc.net China
2/1/2006 1 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 2 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 2 221.4.152.197 China Network Communications Group Corporation abuse@cnc-noc.net China
2/1/2006 3 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 3 221.4.152.197 China Network Communications Group Corporation abuse@cnc-noc.net China
2/1/2006 4 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 4 221.4.152.197 China Network Communications Group Corporation abuse@cnc-noc.net China
Interesting pattern ins't it? Well I intend to monitora report these for a while. Will post an update as and when I collect more information.
Keeping that strategy in mind I started doing a Domain name lookup for each web site that the spam emails try to send me to. White the site names change for each email, the IP numbers behind those sites remain the same. I use APNIC whois to determine who owns or manges these IP numbers. And the answer is alswyas one of about 3 networks in China.
I have sent various emails reporting the spam. Sometimes the spam stops, then starts again but with a new IP number, which of course again comes from these networks in China. I am not certain as to how the spammers are setup, but I intend to find out.
So for example today I received 14 spam emails asking me to visit various web sites. The table below is a sample of my investigation on 4 of those. I investigated all 14, just keeping this post short by listing a subset.
Date Spam ID IP Network Email Country
2/1/2006 1 221.4.152.197 China Network Communications Group Corporation abuse@cnc-oc.net China
2/1/2006 1 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 2 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 2 221.4.152.197 China Network Communications Group Corporation abuse@cnc-noc.net China
2/1/2006 3 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 3 221.4.152.197 China Network Communications Group Corporation abuse@cnc-noc.net China
2/1/2006 4 211.144.147.200 Beijing Xiao Xiang Commerce Co.,Ltd abuse@srit.com.cn China
2/1/2006 4 221.4.152.197 China Network Communications Group Corporation abuse@cnc-noc.net China
Interesting pattern ins't it? Well I intend to monitora report these for a while. Will post an update as and when I collect more information.
1 Comments:
So a little more research shows that it is a well known fact that spammers setup their web sites on Chinese networks. That said, what I fail to understand is that how theChinese are so concerned about censoring and filtering web content and not at all concerned about the shit they put out. Think its about time large corporation get a spine and just abandon that market. Yeah right!!!! Google owners would abandon their mothers before they abandon the Chinese market.
Post a Comment
<< Home