Monday, August 5, 2013

Domain: Hak4Umz.net

Seeing scanning for domain: Hak4Umz.net.

Source of the scan: 80.82.65.204 @ AS29073 Ecatel Network


IPtables rule:



iptables --insert INPUT -p udp --dport 53 -m u32 --u32 "0x28=0x0768616b && 0x2c=0x34756d7a && 0x30=0x036e6574" -j DROP -m comment --comment "DROP DNS Q hak4umz.net"

For more check my github:

https://github.com/smurfmonitor/dns-iptables-rules/blob/master/domain-blacklist.txt

Name Servers:


;; ANSWER SECTION:
hak4umz.net. 3600 IN NS ns2.hak4umz.net.
hak4umz.net. 3600 IN NS ns1.hak4umz.net.

;; ADDITIONAL SECTION:
ns2.hak4umz.net. 3600 IN A 94.102.56.221
ns1.hak4umz.net. 3600 IN A 94.102.56.221

Located in the Ecatel Network. 

Response:

Domain returns 198 A records in the incremental 123.45.67.x range. 

Whois

Domain hak4umz.net

Date Registered: 2013-8-5
Expiry Date: 2014-8-5

DNS1: ns1.hak4umz.net
DNS2: ns2.hak4umz.net

Registrant
    Fundacion Private Whois
    Domain Administrator

    Email:
    Attn: hak4umz.net
    Aptds. 0850-00056
    Zona 15 Panama
    Panama
    Tel: +507.65995877

Administrative Contact
    Fundacion Private Whois
    Domain Administrator

    Email:
    Attn: hak4umz.net
    Aptds. 0850-00056
    Zona 15 Panama
    Panama
    Tel: +507.65995877

Technical Contact
    Fundacion Private Whois
    Domain Administrator

    Email:
    Attn: hak4umz.net
    Aptds. 0850-00056
    Zona 15 Panama
    Panama
    Tel: +507.65995877

Registrar: Internet.bs Corp.


No comments:

Post a Comment