Problems with Whois and DNS lookup
Hanasaki JiJi
hanasaki at hanaden.com
Sun Aug 4 17:40:59 CDT 2002
The following whois came back from a spam relay attempt IP. Could
someone provide help as to how to single out the exact IP and the owner?
Thank you.
whois 209.223.82.160
SAVVIS Communications Corporation (NETBLK-SAVVIS6) SAVVIS6
209.223.0.0 - 209.223.255.255
Web One, Inc. (NETBLK-SAVV-WEB1INC1) SAVV-WEB1INC1
209.223.80.0 - 209.223.83.255
To single out one record, look it up with "!xxx", where xxx is the
handle, shown in parenthesis following the name, which comes first.
The ARIN Registration Services Host contains ONLY Internet
Network Information: Networks, ASN's, and related POC's.
Please use the whois server at rs.internic.net for DOMAIN related
Information and whois.nic.mil for NIPRNET Information.
FYI: If you interested in the offending IP.. Here are the logs
2002-08-04 08:22:31 refused relay (host) to <apco at apcointl.org> from
<SNIPPED-EMAIL ADDY> H=(Qddhj) [209.223.82.160]
2002-08-04 09:43:28 refused relay (host) to <whwilke at primenet.com> from
<SNIPPED-EMAIL ADDY> H=(Ifulez) [209.223.82.160]
=========== local email addresses snipped out ===============
More information about the Kclug
mailing list