Hey evry1, peep http://ThursdayProfit.org ! ez way to make some extra cash!

0
167

thursdayprofitorg

Hay una ola de spam a través de twitter, al parecer hay hackers que han logrado vulnerar la seguridad de las cuentas de los usuarios y están apuntando mensajes hacia el website http://ThursdayProfit.org el website de un supuesto Kevin Hoeffer.

Revisando un poco sobre el dominio encuentro esto:
Registrar: Xin Net Technology Corporation (R118-LROR)
Status: TRANSFER PROHIBITED, ADDPERIOD

Expiration Date: 2010-08-06 22:04:52
Creation Date: 2009-08-06 22:04:52 (Lo crearon hoy)
Last Update Date: 2009-08-06 22:07:13

Name Servers:
ns2.oooooob.com (No resuelve los DNS en el buscador)
ns1.oooooob.com

Registrant Contact Information:
Name: changchen (Chang Chen es un popular actor chino)
Organization: chang chen
Address 1: nanchangshichangshouqubeibenlu145hao101shi
City: nanchang
State: jiangxi
Zip: 326523
Country: CN
Phone: +86.1326548545
Fax: +86.1326548545
Email: @126.com (dirección inexistente)

Administrative Contact Information:
Name: changchen
Organization: changchen
Address 1: nanchangshichangshouqubeibenlu145hao101shi
City: nanchang
State: jiangxi
Zip: 326523
Country: CN
Phone: +86.1326548545
Fax: +86.1326548545
Email: @126.com

Technical Contact Information:
Name: changchen
Organization: changchen
Address 1: nanchangshichangshouqubeibenlu145hao101shi
City: nanchang
State: jiangxi
Zip: 326523
Country: CN
Phone: +86.1326548545
Fax: +86.1326548545
Email: @126.com

Site http://thursdayprofit.org
Last reboot unknown
Domain thursdayprofit.org
Netblock owner China Unicom Jilin province network
IP address 122.141.85.2
Site rank unknown
Country CN
Nameserver ns1.none.com
Date first seen unknown
DNS admin hostmaster@thursdayprofit.org
Domain Registry unknown
Reverse DNS unknown
Organisation unknown
Nameserver Organisation 30 Hartford Avenue, 30 Hartford Avenue, 30 Hartford Avenue, 30 Hartford Avenue, United States

Name Server ns1.none.com
Email @thursdayprofit.org
Serial Number 2009080600
Refresh 4 hours
Retry 1 hour
Expiry 14 days
Minimum 1 day

mail.thursdayprofit.org A 4 hours 122.141.85.2 (Changchun, 05, CN)
thursdayprofit.org A 4 hours 122.141.85.2 (Changchun, 05, CN)
thursdayprofit.org MX 4 hours 10 mail.thursdayprofit.org
thursdayprofit.org NS 4 hours ns1.none.com
thursdayprofit.org NS 4 hours ns2.none.com
thursdayprofit.org SOA 4 hours ns1.none.com. hostmaster.thursdayprofit.org. 2009080600 14400 3600 1209600 86400
thursdayprofit.org TXT 4 hours v=spf1 a mx ip4:122.141.85.2 ~all
www.thursdayprofit.org A 4 hours 122.141.85.2 (Changchun, 05, CN)

IP address: 122.141.85.2
IP country code: CN
IP address country: China
IP address state: Jilin
IP address city: Changchun
IP address latitude: 43.8800
IP address longitude: 125.3228
ISP of this IP: CNCGROUP Jilin province network
Organization: CNCGROUP Jilin province network
Local time in China: 2009-08-07 11:22

% [whois.apnic.net[Who Is Domain][trace][Reverse DNS Search] node-1]
% Whois data copyright terms http://www.apnic.net[Who Is Domain][trace][Reverse DNS Search]/db/dbcopyright.html

inetnum: 122.136.0.0[Who Is IP][trace][Reverse IP Search] – 122.143.255.255[Who Is IP][trace][Reverse IP Search]
netname: UNICOM-JL
descr: China Unicom Jilin province network
descr: China Unicom
country: CN
admin-c: CH1302-AP
tech-c: WT92-AP
mnt-by: APNIC-HM
mnt-lower: MAINT-CNCGROUP-JL
mnt-routes: MAINT-CNCGROUP-RR
status: ALLOCATED PORTABLE
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
remarks: This object can only be updated by APNIC hostmasters.
remarks: To update this object, please contact APNIC
remarks: hostmasters and include your organisation’s account
remarks: name in the subject line.
remarks: -+-+-+-+-+-+-+-+-+-+-+-++-+-+-+-+-+-+-+-+-+-+-+-+-+-+
changed: [Who Is Domain][trace][Reverse DNS Search] 20070115
changed: [Who Is Domain][trace][Reverse DNS Search] 20090508
source: APNIC

route: 122.136.0.0[Who Is IP][trace][Reverse IP Search]/13
descr: CNC Group CHINA169 Jilin Province Network
country: CN
origin: AS4837
mnt-by: MAINT-CNCGROUP-RR
changed: [Who Is Domain][trace][Reverse DNS Search] 20070115
source: APNIC

person: ChinaUnicom Hostmaster
nic-hdl: CH1302-AP
e-mail: [Who Is Domain][trace][Reverse DNS Search]
address: No.21,Jin-Rong Street
address: Beijing,100140
address: P.R.China
phone: +86-10-66259940
fax-no: +86-10-66259764
country: CN
changed: [Who Is Domain][trace][Reverse DNS Search] 20090408
mnt-by: MAINT-CNCGROUP
source: APNIC

person: Wang Tiegang
nic-hdl: WT92-AP
e-mail: [Who Is Domain][trace][Reverse DNS Search]
address: NO.3535,Renmin Street, ChangChun ,
address: Jilin province , 130021 , P.R. China
phone: +86-431-5560792
fax-no: +86-431-5560816
country: CN
changed: [Who Is Domain][trace][Reverse DNS Search] 20060626
mnt-by: MAINT-CNCGROUP-JL
source: APNIC

La propagación de este spam va a ser enorme por la gran cantidad de usuarios que tienen vinculados sus actualizaciones de twitter con otros servicios por medio de la API.

El sitio no aparece rankeado en Alexa.

Hay que tener cuidado con el tipo de información que guardamos en nuestras cuentas y el tipo de websites a los que les confiamos nuestros datos.

Yo no actualicé mi twitter pero me di cuenta por mi estado de Facebook (que replica mis actualizaciones de twitter) y me apresuré a echarle un ojo.

0 0 votos
Calificación
Suscribirse
Notificar
0 Comentarios
Antiguos
Nuevos Más votados
Opinión entre párrafo
Ver todos los comentarios