[nsp-sec] Trying to report a phishing URL without success
Neil Long
neil.long at cymru.com
Tue Apr 1 12:54:47 EDT 2008
Hi Steinar
I have raised this with the Team. I confirmed the problem is still
there.
Thanks
Neil
On 1 Apr 2008, at 16:32, sthaug at nethelp.no wrote:
> ----------- nsp-security Confidential --------
>
> Hi,
>
> I'm just trying to put the following URL into the Cymru database, via
> the phishing URL submission utility (BancorpSouth phishing):
>
> http://www.bxs.inview.session25583.certificate-
> logon2008.serial03298859-0008.hngfhtr1.com/login.htm
>
> At the moment, the domain name resolves to the following IP addresses:
>
> 59.22.162.77
> 79.115.20.70
> 85.217.201.213
> 86.125.248.54
> 89.32.140.225
> 89.42.124.117
> 89.43.44.11
> 89.136.78.86
> 194.150.87.223
> 219.121.50.194
>
> when querying one of the name servers for hngfhtr1.com,
>
> hngfhtr1.com. NS ns1.boobv.com.
> ns1.boobv.com. A 208.116.44.34
>
> The Team Cymru phishing URL submision utility at
>
> https://www.cymru.com/reports-cgi/submit_phish.cgi
>
> just gives me a 'query timed out', which probably means it's using the
> other name server for hngfhtr1.com, ns2.boobv.com (20.47.12.10).
>
> Steinar Haug, AS 2116
>
>
> _______________________________________________
> nsp-security mailing list
> nsp-security at puck.nether.net
> https://puck.nether.net/mailman/listinfo/nsp-security
>
> Please do not Forward, CC, or BCC this E-mail outside of the nsp-
> security
> community. Confidentiality is essential for effective Internet
> security counter-measures.
> _______________________________________________
>
--
Neil Long, Team Cymru
http://www.cymru.com | +1 312 924 4022 | neil at cymru.com
More information about the nsp-security
mailing list