Friday, January 4, 2013

Twitter Phishing from China...

This morning, I received a message on Twitter :

FYI this profile on twitter bit.ly/10Ptdj5 is spreading nasty blogs around about you.

Fetching links :

=======================================================
bit.ly/10Ptdj5 >>>> t.co/q6cewG6
t.co/q6cewG6 >>>> http://ivtvtter.com/br/verify/?&account_secure_login
=======================================================

Extracting datas :

ivtvtter.com is hosted on 220.112.36.54 by :
=======================================================
aut-num: AS17623
as-name: CNCGROUP-SZ
descr: China Unicom Shenzen network
country: CN
import: from AS4837 action pref=100;accept ANY
import: from AS9929 action pref=100;accept ANY
export: to AS4837 announce AS17623
export: to AS9929 announce AS17623
admin-c: CH1302-AP
tech-c: CH1302-AP
mnt-by: MAINT-CNCGROUP
mnt-routes: MAINT-CNCGROUP-RR
changed: abuse(at)chinaunicom.cn 20110411
source: APNIC
mnt-irt: IRT-CU-CN
=======================================================
ivtwitter.com whois :
=======================================================
Domain Name ..................... ivtvtter.com
Name Server ..................... dns7.hichina.com,dns8.hichina.com
=======================================================
Registrant ID ................... hc479286530-cn
Registrant Name ................. jun ge
Registrant Organization ......... ge jun
Registrant Address .............. Shang hai City
Registrant City ................. shang hai
Registrant Province/State ....... SH
Registrant Postal Code .......... 200000
Registrant Country Code ......... CN
Registrant Email ................ gejun178@yahoo.com
=======================================================
Administrative ID ............... hc479286530-cn
Administrative Name ............. jun ge
Administrative Organization ..... ge jun
Administrative Address .......... Shang hai City
Administrative City ............. shang hai
Administrative Province/State ... SH
Administrative Postal Code ...... 200000
Administrative Country Code ..... CN
Administrative Email ............ gejun178@yahoo.com
=======================================================
Billing ID ...................... hc479286530-cn
Billing Name .................... jun ge
Billing Organization ............ ge jun
Billing Address ................. Shang hai City
Billing City .................... shang hai
Billing Province/State .......... SH
Billing Postal Code ............. 200000
Billing Country Code ............ CN
Billing Email ................... gejun178@yahoo.com
=======================================================
Technical ID .................... hc479286530-cn
Technical Name .................. jun ge
Technical Organization .......... ge jun
Technical Address ............... Shang hai City
Technical City .................. shang hai
Technical Province/State ........ SH
Technical Postal Code ........... 200000
Technical Country Code .......... CN
Technical Email ................. gejun178@yahoo.com
=======================================================
Expiration Date ................. 2013-11-20 01:09:51
=======================================================

Social engineering is a long path...

No comments:

Post a Comment