Spammin' for QMail

The below table contains blocking information in use at gtcs.com, and some
other domains, based upon outscatter from an envelope sender indicating that
the spammer is spamvertising for the popularly misconfigured Open Source
mailer QMail, apparently, while trying to limit their own spam torrent by dumping
it on someone else.

Outscatter below, is mail "bounce" from an automated sender to a non-existent or
otherwise non-originating account.

Snapshot as of Tue, 05 Aug 2008 15:22:13 MDT (also the Last-Modified: header for this page.)

Blocked CIDR QMail Spammer Claimed to be

2005-05-08 12.40.63.163 www.foxboroughpolice.com www.foxboroughpolice.com

2004-06-16 12.107.101.58 aadhqmail.aad.org aadhqmail.aad.org

2004-09-22 12.152.133.23 \N marqmail.marqdomain

2005-02-22 12.168.78.135 mail.careyweb.com mail.careyweb.com

2005-05-19 12.170.116.38 qmail3.mercurylink.net qmail3.mercurylink.net

2004-06-09 38.113.97.189 ezrafree.com koan.websightdesigns.com

2004-06-04 61.194.16.210 daio.daionet.gr.jp daio.daionet.gr.jp

2004-10-19 61.211.230.178 ns1.g--z.jp ns1.g--z.jp

2004-06-25 62.1.1.51 qmail1.internet.gr qmail1.internet.gr

2004-06-24 62.1.1.58 qmail3.internet.gr qmail3.internet.gr

2004-09-06 62.1.1.59 qmail4.internet.gr qmail4.internet.gr

2004-09-12 62.26.119.214 ffm214.dekundenserver.de ffm214.dekundenserver.de

2004-12-11 62.26.126.200 \N \N

2004-10-21 62.99.179.51 \N \N

2005-02-14 62.168.60.16 nsaltar.webstep.net nsaltar.webstep.net

2004-06-25 62.220.64.18 qmail.kjws.com qmail.kjws.com

2004-08-06 63.86.205.2 \N hqmail.apcoa1.com

2004-06-16 63.166.74.80 \N qmail.vcv.net

2004-07-06 63.172.126.3 qmail.webpipe.net qmail.webpipe.net

2005-01-26 63.208.172.106 \N \N

2004-06-18 63.215.241.221 mail1.no-ip.com mail1.no-ip.com

2004-06-13 63.230.252.90 \N qmail01.petsmart.com

2004-08-01 63.254.40.76 dns.berrybros.net dns.berrybros.net

2005-01-19 64.7.75.146 gate1.kallisti.com gate1.kallisti.com

2004-06-27 64.35.144.21 punisher.empnet.com punisher.empnet.com

2005-01-21 64.40.181.10 qmail.quartetservice.com qmail.quartetservice.com

2004-10-14 64.71.187.230 alpha.loaded.net alpha.loaded.net

2005-02-23 64.74.114.245 GSRX.nuivo.com(forged) GSRX.nuivo.com

2004-10-01 64.94.143.172 \N \N

2004-07-11 64.124.16.7 cobra.shellux.net cobra.shellux.net

2004-06-17 64.151.73.148 syrinx.nyip.net syrinx.nyip.net

2004-10-25 64.160.70.12 \N hqmail.inside.maxim.com

2005-01-19 64.163.146.36 \N \N

2005-01-23 64.208.230.96 mail.refactory.com mail.refactory.com

2004-11-02 64.215.178.112 qmail.prospectplanet.net qmail.prospectplanet.net

2004-10-14 64.215.246.60 \N \N

2004-06-25 64.232.6.100 cluefone.com cluefone.com

2004-07-21 65.23.78.122 mta.maxway.net mta.maxway.net

2004-06-07 65.37.119.199 mail.catpeople.com mail.catpeople.com

2004-07-21 65.39.167.249 \N \N

2005-06-14 65.39.254.133 qmail1e.plhosting.com mail.plhosting.com

2004-10-25 65.86.88.166 \N \N

2004-06-09 65.112.144.195 methanol.zoomph.net methanol.zoomph.net

2004-06-18 65.118.24.3 host.protocolusa.com protocolusa.com

2004-07-19 65.119.234.15 qmail.dwcinet.com qmail.dwcinet.com

2004-08-27 65.166.240.5 mail.theofficenet.com mail.theofficenet.com

2004-06-27 65.171.216.1 slacker.azalea.net slacker.azalea.net

2004-09-23 65.194.226.62 qmail2.eyemg.com qmail2.eyemg.net

2005-01-26 66.9.179.67 \N \N

2004-06-26 66.46.52.34 hqmail.amjcampbell.com hqmail.amjcampbell.com

2004-10-14 66.52.146.90 mailhost2.iarchitects.com mailhost2.iarchitects.com

2005-02-02 66.79.177.120 infamous.org(forged) infamous.org

2005-01-28 66.95.54.8 \N qmail.terrahost.com

2004-07-19 66.117.241.34 mail.frekingandbetz.com mail.frekingandbetz.com

2004-07-13 66.118.44.69 equinox.alluvium.com equinox.alluvium.com

2004-06-18 66.162.200.27 server27.jpc.com server27.jpc.com

2004-11-02 66.172.94.25 mailroom.internet-mail-service.com mailroom.internet-mail-service.com

2004-09-05 66.184.141.170 \N relay.qmail.exim.org

2004-10-08 66.184.141.189 mail.gmail.org relay.qmail.exim.org

2005-03-04 66.211.132.218 \N \N

2004-09-20 66.216.122.76 alicia.netpivotal.com(forged) alicia.netpivotal.com

2004-08-25 66.220.27.228 box.dogbomb.co.uk box.dogbomb.co.uk

2004-12-24 66.228.196.203 shiva.inwa.net shiva.inwa.net

2004-09-02 67.18.103.162 ice.stservers.net ice.stservers.net

2004-09-19 67.19.225.132 syrinx.nyip.net syrinx.nyip.net

2005-02-03 67.132.228.10 \N \N

2004-10-03 67.138.244.35 \N \N

2004-10-03 68.93.224.2 qmail.digitex.net qmail.digitex.net

2004-08-01 69.20.54.28 inpuj.net inpuj.net

2005-03-08 69.26.176.2 \N \N

2004-08-24 69.28.171.145 mail.blessed.net mail.blessed.net

2004-12-12 69.38.47.61 nsc69.38.47-61.newsouth.net nsc69.38.47-61.newsouth.net

2004-08-16 69.60.172.231 Qmailpool1-231.Edelta.america.net 24hoursupport.com

2005-06-12 69.60.172.232 Qmailpool1-232.Edelta.america.net 24hoursupport.com

2004-09-17 69.60.172.235 Qmailpool1-235.Edelta.america.net 24hoursupport.com

2004-07-24 69.60.172.236 Qmailpool1-236.Edelta.america.net 24hoursupport.com

2005-02-11 69.60.172.239 Qmailpool1-239.Edelta.america.net 24hoursupport.com

2004-07-08 69.60.172.242 Qmailpool1-242.Edelta.america.net 24hoursupport.com

2004-07-19 69.60.172.244 Qmailpool1-244.Edelta.america.net 24hoursupport.com

2004-12-12 69.60.201.5 syrah.elwynor.com syrah.elwynor.com

2004-09-22 69.90.3.6 huguette.mastodonte.com huguette.mastodonte.com

2004-07-25 80.62.183.142 cpe.atm0-0-0-1951180.0x503eb78e.arcnxx4.customer.tele.dk cpe.atm0-0-0-1951180.0x503eb78e.arcnxx4.customer.tele.dk

2004-06-04 80.87.131.95 pod-95.dolphin-server.co.uk pod-95.dolphin-server.co.uk

2005-02-01 80.87.131.148 raven.excolo.net raven.excolo.net

2004-10-06 80.246.68.45 mail.phaeton.ru mail.phaeton.ru

2004-09-06 81.2.197.225 toyen.klet.cz toyen.klet.cz

2004-08-24 81.2.200.130 kazi.klet.cz kazi.klet.cz

2004-08-29 81.20.160.130 ns.dion.ru ns.dion.ru

2005-02-11 81.27.174.218 \N \N

2004-10-19 81.91.67.118 \N \N

2004-06-18 81.209.177.8 merlot.netestate.de merlot.netestate.de

2004-10-03 82.96.79.2 elation.klimpong.com elation.klimpong.com

2005-02-09 83.69.240.5 mail.awax.ru mail.awax.ru

2005-05-17 83.243.48.71 mail3.rlp.de mail3.rlp.de

2004-09-23 128.100.31.106 penguin.cdf.toronto.edu penguin.cdf.toronto.edu

2004-11-13 130.54.65.61 kais.kais.kyoto-u.ac.jp kais.kais.kyoto-u.ac.jp

2004-09-06 131.113.47.56 phosphorus.yy.ics.keio.ac.jp phosphorus.yy.ics.keio.ac.jp

2004-08-08 134.60.166.1 turing.mathematik.uni-ulm.de turing.mathematik.uni-ulm.de

2004-06-30 141.140.1.7 qmail.macalester.edu qmail.macalester.edu

2005-01-25 142.179.180.137 \N \N

2004-09-01 146.231.115.1 server.rucus.ru.ac.za server.rucus.ru.ac.za

2004-12-10 161.132.66.5 \N \N

2004-06-03 166.70.227.4 mail.prism.net mail.prism.net

2004-06-25 193.0.243.238 aspqmail.ofir.dk postfix3.ofir.com

2005-02-19 193.19.216.178 feyd.aquaray.com feyd.aquaray.com

2004-08-30 193.23.158.11 cultureco-1.rekcah.net cultureco-1.rekcah.net

2004-11-03 194.45.27.123 mx01.osn.de mx01.osn.de

2004-10-19 194.45.27.124 mx02.osn.de mx02.osn.de

2004-06-21 194.58.155.50 webserv5.zhurnal.ru(forged) webserv5.zhurnal.ru

2004-10-11 194.70.126.10 ns.gbnet.net ns.gbnet.net

2005-03-12 194.77.83.23 \N \N

2004-09-22 194.85.85.11 mail.meteo.ru mail.meteo.ru

2005-01-27 194.146.225.85 \N \N

2005-01-20 194.150.236.81 \N \N

2004-06-21 194.226.39.70 amber.viniti.msk.su(forged) amber.viniti.msk.su

2004-06-01 194.245.103.2 csl17.csl-gmbh.net mail3.nrw.net

2005-03-03 195.2.128.141 smtprev.saqnet.co.uk qmail2.saq.net

2004-06-07 195.12.173.6 lbs1.lisco.lt lbs1.lisco.lt

2004-06-29 195.20.105.79 victoire.ipfix.com victoire.ipfix.com

2004-06-30 195.31.196.195 mail.karmanet.it mail.karmanet.it

2004-09-27 195.96.166.2 squid-ext.ingos.ru squid-ext.ingos.ru

2004-06-29 195.167.168.40 qmail.corpex.net qmail.corpex.net

2004-10-02 195.216.80.33 nostromo1.dataway.ch nostromo1.dataway.ch

2004-09-30 195.216.80.38 aquarius.dataway.ch aquarius.dataway.ch

2004-07-24 195.225.8.210 betty.countzero.no betty.countzero.no

2004-09-16 195.245.206.2 squid-ext.ingos.ru squid-ext.ingos.ru

2005-02-07 198.143.4.200 plesk.intercom.com plesk.intercom.com

2004-11-12 198.252.201.254 leat.nethosters.com leat.nethosters.com

2004-06-02 202.138.0.43 mailstore.hotkey.net.au pop.hotkey.net.au

2004-11-01 203.88.128.25 mailhost.icenet.net icenet.net

2004-10-21 203.221.164.50 \N \N

2004-12-17 204.8.141.98 bianca.dotorg.org bianca.dotorg.org

2005-02-17 204.57.82.19 thealamo.net thealamo.net

2004-09-08 204.62.193.160 theabysss.com theabysss.com

2004-08-05 204.83.142.82 qmail.accesscomm.ca qmail.accesscomm.ca

2005-01-22 204.92.123.110 q1-fwd-norm.netfirms.com qmail-in-norm-0.netfirms.com

2004-06-13 204.214.92.20 ns.segment.org offset.segment.org

2004-06-07 205.153.244.4 qmail.tri.net qmail.tri.net

2004-11-25 205.159.169.7 sinister.com sinister.com

2004-07-29 205.171.7.14 qmail.qwestip.net qmail.qwestip.net

2004-09-24 205.201.1.216 speedbuggy.telerama.com speedbuggy.telerama.com

2005-03-17 206.17.180.100 negative.zeroday.net negative.zeroday.net

2005-02-09 206.41.120.188 secure.risingnet.net secure.risingnet.net

2004-06-04 206.180.225.26 secure.ewdhost.com secure.ewdhost.com

2005-03-10 206.230.232.141 \N \N

2004-06-09 206.245.168.232 newqd.iuinc.com newqd.iuinc.com

2004-06-04 207.71.36.232 bouncer.ktc.com bouncer.ktc.com

2004-07-16 207.176.130.15 ns15.zabco.net ns15.zabco.net

2005-02-21 207.176.130.114 ns77.zabco.net ns77.zabco.net

2004-06-29 207.179.211.98 vision.tigerteam.net vision.tigerteam.net

2004-06-18 207.229.65.9 malek.wstn.cortland.net malek.wstn.cortland.net

2005-06-11 207.229.65.16 mail3.cortland.com mail3.cortland.com

2004-06-09 207.229.65.19 clinton.wstn.cortland.net mail.cortland.com

2005-05-24 207.233.141.203 trinity.eyeo.com trinity.eyeo.com

2005-03-01 208.53.170.147 ottawanet.ca ottawanet.ca

2004-10-29 208.188.214.2 home.murlin.com home.murlin.com

2005-05-24 208.191.47.129 mail.acousticsounds.com mail.acousticsounds.com

2004-06-10 208.201.88.6 nathqmail1.aspentech.com hqmail1.corp.aspentech.com

2004-06-18 209.11.145.21 aragorn.webappcabaret.net aragorn.webappcabaret.net

2004-12-29 209.51.160.9 humid.lightning.net humid.lightning.net

2004-06-23 209.69.213.55 mail.vandenbergbulb.com mail.vandenbergbulb.com

2004-06-09 209.96.210.69 mail.arcamax.com mail.arcamax.com

2004-07-04 209.113.190.242 \N iqmail02.southborough.inquestech.com

2004-06-24 209.134.41.41 mail.webcountry.net mail.webcountry.net

2004-10-16 209.163.107.162 ellesmere.netisland.net ellesmere.netisland.net

2005-05-22 209.172.40.201 huguette.mastodonte.com huguette.mastodonte.com

2004-08-10 209.217.49.244 inlauderdale.com inlauderdale.com

2004-06-20 210.54.235.13 smtp.kcenergy.co.nz smtp.kcenergy.co.nz

2004-07-07 210.59.228.108 ada.url.com.tw ada.url.com.tw

2004-08-07 210.245.168.133 \N qmail.milhk.net

2004-12-10 212.31.86.54 qmail2.t-systems.at qmail2.t-systems.at

2004-07-19 212.35.115.42 \N qmail.gpsupport.com

2004-09-16 212.36.5.149 prestol.techno-link.com prestol.techno-link.com

2004-06-05 212.48.155.2 mercury.profilemedia.ru mercury.profilemedia.ru

2004-07-24 212.57.159.10 mifi-sdsl-pp.atlint.ru mifi-sdsl-pp.atlint.ru

2004-07-06 212.69.172.101 qmail2.inname.net qmail2.inname.net

2004-06-04 212.69.172.124 qmail.inname.net(forged) qmail.domainname.at

2004-06-18 212.69.172.160 ws1.internetservice.com ws1.internetservice.com

2004-09-30 212.101.64.35 truth.servicom2000.com truth.servicom2000.com

2004-06-04 212.112.161.72 io.infidyne.com io.infidyne.com

2004-10-04 212.154.175.186 \N \N

2004-06-03 212.182.91.20 dischaos.com core.freebsd.lublin.pl

2004-07-30 212.182.97.254 \N \N

2004-06-04 213.160.234.130 cursed.darkisp.net mx1.netcore.no

2004-06-19 213.172.39.129 srvqmail.cesser.com srvqmail.cesser.com

2004-06-08 213.180.65.114 amanda.vegasys.net milhouse.vegasys.net

2004-06-29 213.186.41.168 ns30002.ovh.net ns30002.ovh.net

2004-09-22 213.191.128.70 mxout.iskon.hr mxout.iskon.hr

2004-06-18 213.219.248.10 qmail.mastak.ru qmail.ru

2004-10-18 213.222.48.170 rl1-vpn7.icon.bg rl1-vpn7.icon.bg

2005-02-01 213.239.204.77 \N \N

2004-07-15 213.246.40.133 ns1.aleaur.com ns1.aleaur.com

2005-01-26 213.250.192.22 \N qmail.bezdrat.net

2004-08-30 213.253.19.33 boson.positive-internet.com(forged) boson.positive-internet.com

2004-07-19 216.17.137.68 incide.net incide.net

2004-09-13 216.20.70.22 user22.client.mecnet.net(forged) user22.client.mecnet.net

2004-10-18 216.29.181.252 vapid.reprehensible.net vapid.reprehensible.net

2005-05-22 216.29.200.7 \N \N

2004-08-10 216.38.158.6 mail.fastmetrics.com mail.fastmetrics.com

2004-07-13 216.49.83.60 asap-qmail4.mcafeeasap.com asap-qmail4.mcafeeasap.com

2004-07-13 216.49.83.61 asap-qmail5.mcafeeasap.com asap-qmail5.mcafeeasap.com

2004-09-05 216.49.83.69 asap-qmail6.mcafeeasap.com asap-qmail6.mcafeeasap.com

2004-10-08 216.55.154.17 pleep.com pleep.com

2004-06-30 216.75.172.91 router.ugdt1meg.1meg.golden.net router.ugdt1meg.1meg.golden.net

2004-06-05 216.115.129.11 alex.intersurf.net alex.intersurf.net

2004-10-08 216.132.54.167 networksynthesis.com(forged) networksynthesis.com

2004-06-06 216.138.119.9 cpqmail.airband.net dfw-mail.airband.net

2004-12-05 216.145.68.126 qmail01.starhq.com qmail01.starhq.com

2004-12-12 216.158.52.236 slinky.jounce.net slinky.jounce.net

2004-09-09 216.162.64.120 newmail.axess.com newmail.axess.com

2004-10-01 216.178.94.82 qmail-dev.netcarrier.net qmail-dev.netcarrier.net

2004-12-02 216.198.89.194 \N \N

2004-09-22 216.218.240.205 undef.net undef.net

2005-01-28 216.220.96.3 \N \N

2004-06-28 216.221.81.39 mail.cgocable.ca pqmail.cogeco.ca

2004-08-29 216.229.174.202 qmail.coldreams.com qmail.coldreams.com

2004-09-05 216.254.0.226 mx2.speakeasy.net mx2.speakeasy.net

2004-07-19 217.16.28.169 \N qmail1.informa.ru

2004-08-31 217.24.48.8 coburg.osn.de coburg.osn.de

2004-06-29 217.153.9.249 aquarius.eco.pl aquarius.eco.pl

2005-03-10 217.160.200.207 1and1.doctype.co.uk 1and1.doctype.co.uk

2004-06-16 218.42.136.131 \N \N

2004-06-09 218.42.136.132 qmail02.isao.net qmail02.isao.net

2004-06-04 218.42.136.133 qmail03.isao.net qmail03.isao.net

2005-02-23 218.42.136.211 qmail01-pri.isao.net qmail01-pri.isao.net

2005-01-21 218.42.136.213 \N qmail02-pri.isao.net

2004-06-29 219.124.97.22 ns1.torapants.com ns1.torapants.com

(227 rows)
The notation "\N" indicates a null reverse-DNS (number-to-name) lookup.
The notation "(forged)" indicates that the name given in reverse-DNS does not match a
forward-DNS (name-to-number) lookup, or didn't when checked.

Blocked	CIDR	QMail Spammer	Claimed to be
2005-05-08	12.40.63.163	www.foxboroughpolice.com	www.foxboroughpolice.com
2004-06-16	12.107.101.58	aadhqmail.aad.org	aadhqmail.aad.org
2004-09-22	12.152.133.23	\N	marqmail.marqdomain
2005-02-22	12.168.78.135	mail.careyweb.com	mail.careyweb.com
2005-05-19	12.170.116.38	qmail3.mercurylink.net	qmail3.mercurylink.net
2004-06-09	38.113.97.189	ezrafree.com	koan.websightdesigns.com
2004-06-04	61.194.16.210	daio.daionet.gr.jp	daio.daionet.gr.jp
2004-10-19	61.211.230.178	ns1.g--z.jp	ns1.g--z.jp
2004-06-25	62.1.1.51	qmail1.internet.gr	qmail1.internet.gr
2004-06-24	62.1.1.58	qmail3.internet.gr	qmail3.internet.gr
2004-09-06	62.1.1.59	qmail4.internet.gr	qmail4.internet.gr
2004-09-12	62.26.119.214	ffm214.dekundenserver.de	ffm214.dekundenserver.de
2004-12-11	62.26.126.200	\N	\N
2004-10-21	62.99.179.51	\N	\N
2005-02-14	62.168.60.16	nsaltar.webstep.net	nsaltar.webstep.net
2004-06-25	62.220.64.18	qmail.kjws.com	qmail.kjws.com
2004-08-06	63.86.205.2	\N	hqmail.apcoa1.com
2004-06-16	63.166.74.80	\N	qmail.vcv.net
2004-07-06	63.172.126.3	qmail.webpipe.net	qmail.webpipe.net
2005-01-26	63.208.172.106	\N	\N
2004-06-18	63.215.241.221	mail1.no-ip.com	mail1.no-ip.com
2004-06-13	63.230.252.90	\N	qmail01.petsmart.com
2004-08-01	63.254.40.76	dns.berrybros.net	dns.berrybros.net
2005-01-19	64.7.75.146	gate1.kallisti.com	gate1.kallisti.com
2004-06-27	64.35.144.21	punisher.empnet.com	punisher.empnet.com
2005-01-21	64.40.181.10	qmail.quartetservice.com	qmail.quartetservice.com
2004-10-14	64.71.187.230	alpha.loaded.net	alpha.loaded.net
2005-02-23	64.74.114.245	GSRX.nuivo.com(forged)	GSRX.nuivo.com
2004-10-01	64.94.143.172	\N	\N
2004-07-11	64.124.16.7	cobra.shellux.net	cobra.shellux.net
2004-06-17	64.151.73.148	syrinx.nyip.net	syrinx.nyip.net
2004-10-25	64.160.70.12	\N	hqmail.inside.maxim.com
2005-01-19	64.163.146.36	\N	\N
2005-01-23	64.208.230.96	mail.refactory.com	mail.refactory.com
2004-11-02	64.215.178.112	qmail.prospectplanet.net	qmail.prospectplanet.net
2004-10-14	64.215.246.60	\N	\N
2004-06-25	64.232.6.100	cluefone.com	cluefone.com
2004-07-21	65.23.78.122	mta.maxway.net	mta.maxway.net
2004-06-07	65.37.119.199	mail.catpeople.com	mail.catpeople.com
2004-07-21	65.39.167.249	\N	\N
2005-06-14	65.39.254.133	qmail1e.plhosting.com	mail.plhosting.com
2004-10-25	65.86.88.166	\N	\N
2004-06-09	65.112.144.195	methanol.zoomph.net	methanol.zoomph.net
2004-06-18	65.118.24.3	host.protocolusa.com	protocolusa.com
2004-07-19	65.119.234.15	qmail.dwcinet.com	qmail.dwcinet.com
2004-08-27	65.166.240.5	mail.theofficenet.com	mail.theofficenet.com
2004-06-27	65.171.216.1	slacker.azalea.net	slacker.azalea.net
2004-09-23	65.194.226.62	qmail2.eyemg.com	qmail2.eyemg.net
2005-01-26	66.9.179.67	\N	\N
2004-06-26	66.46.52.34	hqmail.amjcampbell.com	hqmail.amjcampbell.com
2004-10-14	66.52.146.90	mailhost2.iarchitects.com	mailhost2.iarchitects.com
2005-02-02	66.79.177.120	infamous.org(forged)	infamous.org
2005-01-28	66.95.54.8	\N	qmail.terrahost.com
2004-07-19	66.117.241.34	mail.frekingandbetz.com	mail.frekingandbetz.com
2004-07-13	66.118.44.69	equinox.alluvium.com	equinox.alluvium.com
2004-06-18	66.162.200.27	server27.jpc.com	server27.jpc.com
2004-11-02	66.172.94.25	mailroom.internet-mail-service.com	mailroom.internet-mail-service.com
2004-09-05	66.184.141.170	\N	relay.qmail.exim.org
2004-10-08	66.184.141.189	mail.gmail.org	relay.qmail.exim.org
2005-03-04	66.211.132.218	\N	\N
2004-09-20	66.216.122.76	alicia.netpivotal.com(forged)	alicia.netpivotal.com
2004-08-25	66.220.27.228	box.dogbomb.co.uk	box.dogbomb.co.uk
2004-12-24	66.228.196.203	shiva.inwa.net	shiva.inwa.net
2004-09-02	67.18.103.162	ice.stservers.net	ice.stservers.net
2004-09-19	67.19.225.132	syrinx.nyip.net	syrinx.nyip.net
2005-02-03	67.132.228.10	\N	\N
2004-10-03	67.138.244.35	\N	\N
2004-10-03	68.93.224.2	qmail.digitex.net	qmail.digitex.net
2004-08-01	69.20.54.28	inpuj.net	inpuj.net
2005-03-08	69.26.176.2	\N	\N
2004-08-24	69.28.171.145	mail.blessed.net	mail.blessed.net
2004-12-12	69.38.47.61	nsc69.38.47-61.newsouth.net	nsc69.38.47-61.newsouth.net
2004-08-16	69.60.172.231	Qmailpool1-231.Edelta.america.net	24hoursupport.com
2005-06-12	69.60.172.232	Qmailpool1-232.Edelta.america.net	24hoursupport.com
2004-09-17	69.60.172.235	Qmailpool1-235.Edelta.america.net	24hoursupport.com
2004-07-24	69.60.172.236	Qmailpool1-236.Edelta.america.net	24hoursupport.com
2005-02-11	69.60.172.239	Qmailpool1-239.Edelta.america.net	24hoursupport.com
2004-07-08	69.60.172.242	Qmailpool1-242.Edelta.america.net	24hoursupport.com
2004-07-19	69.60.172.244	Qmailpool1-244.Edelta.america.net	24hoursupport.com
2004-12-12	69.60.201.5	syrah.elwynor.com	syrah.elwynor.com
2004-09-22	69.90.3.6	huguette.mastodonte.com	huguette.mastodonte.com
2004-07-25	80.62.183.142	cpe.atm0-0-0-1951180.0x503eb78e.arcnxx4.customer.tele.dk	cpe.atm0-0-0-1951180.0x503eb78e.arcnxx4.customer.tele.dk
2004-06-04	80.87.131.95	pod-95.dolphin-server.co.uk	pod-95.dolphin-server.co.uk
2005-02-01	80.87.131.148	raven.excolo.net	raven.excolo.net
2004-10-06	80.246.68.45	mail.phaeton.ru	mail.phaeton.ru
2004-09-06	81.2.197.225	toyen.klet.cz	toyen.klet.cz
2004-08-24	81.2.200.130	kazi.klet.cz	kazi.klet.cz
2004-08-29	81.20.160.130	ns.dion.ru	ns.dion.ru
2005-02-11	81.27.174.218	\N	\N
2004-10-19	81.91.67.118	\N	\N
2004-06-18	81.209.177.8	merlot.netestate.de	merlot.netestate.de
2004-10-03	82.96.79.2	elation.klimpong.com	elation.klimpong.com
2005-02-09	83.69.240.5	mail.awax.ru	mail.awax.ru
2005-05-17	83.243.48.71	mail3.rlp.de	mail3.rlp.de
2004-09-23	128.100.31.106	penguin.cdf.toronto.edu	penguin.cdf.toronto.edu
2004-11-13	130.54.65.61	kais.kais.kyoto-u.ac.jp	kais.kais.kyoto-u.ac.jp
2004-09-06	131.113.47.56	phosphorus.yy.ics.keio.ac.jp	phosphorus.yy.ics.keio.ac.jp
2004-08-08	134.60.166.1	turing.mathematik.uni-ulm.de	turing.mathematik.uni-ulm.de
2004-06-30	141.140.1.7	qmail.macalester.edu	qmail.macalester.edu
2005-01-25	142.179.180.137	\N	\N
2004-09-01	146.231.115.1	server.rucus.ru.ac.za	server.rucus.ru.ac.za
2004-12-10	161.132.66.5	\N	\N
2004-06-03	166.70.227.4	mail.prism.net	mail.prism.net
2004-06-25	193.0.243.238	aspqmail.ofir.dk	postfix3.ofir.com
2005-02-19	193.19.216.178	feyd.aquaray.com	feyd.aquaray.com
2004-08-30	193.23.158.11	cultureco-1.rekcah.net	cultureco-1.rekcah.net
2004-11-03	194.45.27.123	mx01.osn.de	mx01.osn.de
2004-10-19	194.45.27.124	mx02.osn.de	mx02.osn.de
2004-06-21	194.58.155.50	webserv5.zhurnal.ru(forged)	webserv5.zhurnal.ru
2004-10-11	194.70.126.10	ns.gbnet.net	ns.gbnet.net
2005-03-12	194.77.83.23	\N	\N
2004-09-22	194.85.85.11	mail.meteo.ru	mail.meteo.ru
2005-01-27	194.146.225.85	\N	\N
2005-01-20	194.150.236.81	\N	\N
2004-06-21	194.226.39.70	amber.viniti.msk.su(forged)	amber.viniti.msk.su
2004-06-01	194.245.103.2	csl17.csl-gmbh.net	mail3.nrw.net
2005-03-03	195.2.128.141	smtprev.saqnet.co.uk	qmail2.saq.net
2004-06-07	195.12.173.6	lbs1.lisco.lt	lbs1.lisco.lt
2004-06-29	195.20.105.79	victoire.ipfix.com	victoire.ipfix.com
2004-06-30	195.31.196.195	mail.karmanet.it	mail.karmanet.it
2004-09-27	195.96.166.2	squid-ext.ingos.ru	squid-ext.ingos.ru
2004-06-29	195.167.168.40	qmail.corpex.net	qmail.corpex.net
2004-10-02	195.216.80.33	nostromo1.dataway.ch	nostromo1.dataway.ch
2004-09-30	195.216.80.38	aquarius.dataway.ch	aquarius.dataway.ch
2004-07-24	195.225.8.210	betty.countzero.no	betty.countzero.no
2004-09-16	195.245.206.2	squid-ext.ingos.ru	squid-ext.ingos.ru
2005-02-07	198.143.4.200	plesk.intercom.com	plesk.intercom.com
2004-11-12	198.252.201.254	leat.nethosters.com	leat.nethosters.com
2004-06-02	202.138.0.43	mailstore.hotkey.net.au	pop.hotkey.net.au
2004-11-01	203.88.128.25	mailhost.icenet.net	icenet.net
2004-10-21	203.221.164.50	\N	\N
2004-12-17	204.8.141.98	bianca.dotorg.org	bianca.dotorg.org
2005-02-17	204.57.82.19	thealamo.net	thealamo.net
2004-09-08	204.62.193.160	theabysss.com	theabysss.com
2004-08-05	204.83.142.82	qmail.accesscomm.ca	qmail.accesscomm.ca
2005-01-22	204.92.123.110	q1-fwd-norm.netfirms.com	qmail-in-norm-0.netfirms.com
2004-06-13	204.214.92.20	ns.segment.org	offset.segment.org
2004-06-07	205.153.244.4	qmail.tri.net	qmail.tri.net
2004-11-25	205.159.169.7	sinister.com	sinister.com
2004-07-29	205.171.7.14	qmail.qwestip.net	qmail.qwestip.net
2004-09-24	205.201.1.216	speedbuggy.telerama.com	speedbuggy.telerama.com
2005-03-17	206.17.180.100	negative.zeroday.net	negative.zeroday.net
2005-02-09	206.41.120.188	secure.risingnet.net	secure.risingnet.net
2004-06-04	206.180.225.26	secure.ewdhost.com	secure.ewdhost.com
2005-03-10	206.230.232.141	\N	\N
2004-06-09	206.245.168.232	newqd.iuinc.com	newqd.iuinc.com
2004-06-04	207.71.36.232	bouncer.ktc.com	bouncer.ktc.com
2004-07-16	207.176.130.15	ns15.zabco.net	ns15.zabco.net
2005-02-21	207.176.130.114	ns77.zabco.net	ns77.zabco.net
2004-06-29	207.179.211.98	vision.tigerteam.net	vision.tigerteam.net
2004-06-18	207.229.65.9	malek.wstn.cortland.net	malek.wstn.cortland.net
2005-06-11	207.229.65.16	mail3.cortland.com	mail3.cortland.com
2004-06-09	207.229.65.19	clinton.wstn.cortland.net	mail.cortland.com
2005-05-24	207.233.141.203	trinity.eyeo.com	trinity.eyeo.com
2005-03-01	208.53.170.147	ottawanet.ca	ottawanet.ca
2004-10-29	208.188.214.2	home.murlin.com	home.murlin.com
2005-05-24	208.191.47.129	mail.acousticsounds.com	mail.acousticsounds.com
2004-06-10	208.201.88.6	nathqmail1.aspentech.com	hqmail1.corp.aspentech.com
2004-06-18	209.11.145.21	aragorn.webappcabaret.net	aragorn.webappcabaret.net
2004-12-29	209.51.160.9	humid.lightning.net	humid.lightning.net
2004-06-23	209.69.213.55	mail.vandenbergbulb.com	mail.vandenbergbulb.com
2004-06-09	209.96.210.69	mail.arcamax.com	mail.arcamax.com
2004-07-04	209.113.190.242	\N	iqmail02.southborough.inquestech.com
2004-06-24	209.134.41.41	mail.webcountry.net	mail.webcountry.net
2004-10-16	209.163.107.162	ellesmere.netisland.net	ellesmere.netisland.net
2005-05-22	209.172.40.201	huguette.mastodonte.com	huguette.mastodonte.com
2004-08-10	209.217.49.244	inlauderdale.com	inlauderdale.com
2004-06-20	210.54.235.13	smtp.kcenergy.co.nz	smtp.kcenergy.co.nz
2004-07-07	210.59.228.108	ada.url.com.tw	ada.url.com.tw
2004-08-07	210.245.168.133	\N	qmail.milhk.net
2004-12-10	212.31.86.54	qmail2.t-systems.at	qmail2.t-systems.at
2004-07-19	212.35.115.42	\N	qmail.gpsupport.com
2004-09-16	212.36.5.149	prestol.techno-link.com	prestol.techno-link.com
2004-06-05	212.48.155.2	mercury.profilemedia.ru	mercury.profilemedia.ru
2004-07-24	212.57.159.10	mifi-sdsl-pp.atlint.ru	mifi-sdsl-pp.atlint.ru
2004-07-06	212.69.172.101	qmail2.inname.net	qmail2.inname.net
2004-06-04	212.69.172.124	qmail.inname.net(forged)	qmail.domainname.at
2004-06-18	212.69.172.160	ws1.internetservice.com	ws1.internetservice.com
2004-09-30	212.101.64.35	truth.servicom2000.com	truth.servicom2000.com
2004-06-04	212.112.161.72	io.infidyne.com	io.infidyne.com
2004-10-04	212.154.175.186	\N	\N
2004-06-03	212.182.91.20	dischaos.com	core.freebsd.lublin.pl
2004-07-30	212.182.97.254	\N	\N
2004-06-04	213.160.234.130	cursed.darkisp.net	mx1.netcore.no
2004-06-19	213.172.39.129	srvqmail.cesser.com	srvqmail.cesser.com
2004-06-08	213.180.65.114	amanda.vegasys.net	milhouse.vegasys.net
2004-06-29	213.186.41.168	ns30002.ovh.net	ns30002.ovh.net
2004-09-22	213.191.128.70	mxout.iskon.hr	mxout.iskon.hr
2004-06-18	213.219.248.10	qmail.mastak.ru	qmail.ru
2004-10-18	213.222.48.170	rl1-vpn7.icon.bg	rl1-vpn7.icon.bg
2005-02-01	213.239.204.77	\N	\N
2004-07-15	213.246.40.133	ns1.aleaur.com	ns1.aleaur.com
2005-01-26	213.250.192.22	\N	qmail.bezdrat.net
2004-08-30	213.253.19.33	boson.positive-internet.com(forged)	boson.positive-internet.com
2004-07-19	216.17.137.68	incide.net	incide.net
2004-09-13	216.20.70.22	user22.client.mecnet.net(forged)	user22.client.mecnet.net
2004-10-18	216.29.181.252	vapid.reprehensible.net	vapid.reprehensible.net
2005-05-22	216.29.200.7	\N	\N
2004-08-10	216.38.158.6	mail.fastmetrics.com	mail.fastmetrics.com
2004-07-13	216.49.83.60	asap-qmail4.mcafeeasap.com	asap-qmail4.mcafeeasap.com
2004-07-13	216.49.83.61	asap-qmail5.mcafeeasap.com	asap-qmail5.mcafeeasap.com
2004-09-05	216.49.83.69	asap-qmail6.mcafeeasap.com	asap-qmail6.mcafeeasap.com
2004-10-08	216.55.154.17	pleep.com	pleep.com
2004-06-30	216.75.172.91	router.ugdt1meg.1meg.golden.net	router.ugdt1meg.1meg.golden.net
2004-06-05	216.115.129.11	alex.intersurf.net	alex.intersurf.net
2004-10-08	216.132.54.167	networksynthesis.com(forged)	networksynthesis.com
2004-06-06	216.138.119.9	cpqmail.airband.net	dfw-mail.airband.net
2004-12-05	216.145.68.126	qmail01.starhq.com	qmail01.starhq.com
2004-12-12	216.158.52.236	slinky.jounce.net	slinky.jounce.net
2004-09-09	216.162.64.120	newmail.axess.com	newmail.axess.com
2004-10-01	216.178.94.82	qmail-dev.netcarrier.net	qmail-dev.netcarrier.net
2004-12-02	216.198.89.194	\N	\N
2004-09-22	216.218.240.205	undef.net	undef.net
2005-01-28	216.220.96.3	\N	\N
2004-06-28	216.221.81.39	mail.cgocable.ca	pqmail.cogeco.ca
2004-08-29	216.229.174.202	qmail.coldreams.com	qmail.coldreams.com
2004-09-05	216.254.0.226	mx2.speakeasy.net	mx2.speakeasy.net
2004-07-19	217.16.28.169	\N	qmail1.informa.ru
2004-08-31	217.24.48.8	coburg.osn.de	coburg.osn.de
2004-06-29	217.153.9.249	aquarius.eco.pl	aquarius.eco.pl
2005-03-10	217.160.200.207	1and1.doctype.co.uk	1and1.doctype.co.uk
2004-06-16	218.42.136.131	\N	\N
2004-06-09	218.42.136.132	qmail02.isao.net	qmail02.isao.net
2004-06-04	218.42.136.133	qmail03.isao.net	qmail03.isao.net
2005-02-23	218.42.136.211	qmail01-pri.isao.net	qmail01-pri.isao.net
2005-01-21	218.42.136.213	\N	qmail02-pri.isao.net
2004-06-29	219.124.97.22	ns1.torapants.com	ns1.torapants.com

A similar activity is done through bad setups by Plesk, The Barracuda Spamming
“Firewall” and Symantec anti-spam and anti-virus gateway products. Then there's
Microsoft Exchange in a class by itself.

Some even spew this out their trusted Domain Nameservers.

The above listed sites are already participants in a DDoS attack, as described and widely
warned against in a 2004 white paper.