Source of the scan: 80.82.65.204 @ AS29073 Ecatel Network
IPtables rule:
iptables --insert INPUT -p udp --dport 53 -m u32 --u32 "0x28=0x0768616b && 0x2c=0x34756d7a && 0x30=0x036e6574" -j DROP -m comment --comment "DROP DNS Q hak4umz.net"
For more check my github:
https://github.com/smurfmonitor/dns-iptables-rules/blob/master/domain-blacklist.txt
Name Servers:
;; ANSWER SECTION:
hak4umz.net. 3600 IN NS ns2.hak4umz.net.
hak4umz.net. 3600 IN NS ns1.hak4umz.net.
;; ADDITIONAL SECTION:
ns2.hak4umz.net. 3600 IN A 94.102.56.221
ns1.hak4umz.net. 3600 IN A 94.102.56.221
Located in the Ecatel Network.
Response:
Domain returns 198 A records in the incremental 123.45.67.x range.
Whois
Domain hak4umz.net
Date Registered: 2013-8-5
Expiry Date: 2014-8-5
DNS1: ns1.hak4umz.net
DNS2: ns2.hak4umz.net
Registrant
Fundacion Private Whois
Domain Administrator
Email:
Attn: hak4umz.net
Aptds. 0850-00056
Zona 15 Panama
Panama
Tel: +507.65995877
Administrative Contact
Fundacion Private Whois
Domain Administrator
Email:
Attn: hak4umz.net
Aptds. 0850-00056
Zona 15 Panama
Panama
Tel: +507.65995877
Technical Contact
Fundacion Private Whois
Domain Administrator
Email:
Attn: hak4umz.net
Aptds. 0850-00056
Zona 15 Panama
Panama
Tel: +507.65995877
Registrar: Internet.bs Corp.
No comments:
Post a Comment