API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 17th, 2018
151
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.77 KB | None | 0 0
raw download clone embed print report
  1. Cachednet.net was owned and maintained by our company Cachednet LLC (5211975) for years and we were using it to maintain our other domains and resources like IP address and ASN.
  2. We merged our company with other company and all the tangible and non tangible assets were transferred from our company to new company.
  3. Domain cachednet.net was expired by someone mistake it was booked intentionally to hijack our business and it's resources.
  4. cachednet.net was registered on 2018-09-10T07:00:00Z by Namesilo.com and someone who booked this domain used emaild noc@cachednet.net with intention to hijack our business, IP space and ASN which was not allocated to him by ARIN.
  5. Using this domain this hacker has hijacked the ARIN POC and now trying to hijack our ip space and ASN.
  6. We are forwarding you the email and header of one of the email hacker sent to our business partner in which
  7. asking them to stop announcing the IP address. Our business is suddenly under threat from this hackers illegal activities. There thousands of active user in our network and they will suffer if this hackers activity is not stopped immediately.
  8.  
  9. This hacker used mxroute.com to relay and domain is using namesilo.com DNS server.
  10. mxroute.com has all the options to stop this fraud immediately by suspending the domain and providing information about this hacker.
  11. This is a case of identity theft, phishing and hijacking of resources so please verify the whois information of this person and get photo id as proof from this person which you can keep with you.
  12. We have initiated the legal process but this process is lengthy process and we have apprehension that this hacker could cause some serious damages to our business.
  13. There is lot more and I believe the information we provided you is enough for you to take action against the domain.
  14. If anything happen to our business or its activities then we will held you responsible for the damages because you are allowing relay from your infrastructure.
  15.  
  16. Received: from relay-direct2.mxroute.com (relay-direct2.mxroute.com [185.234.75.2])
  17. by mailscan1.kotisivut.com (Postfix) with ESMTP id 3194E3D1E93
  18. for info@mediam.fi; Thu, 13 Sep 2018 11:19:42 +0300 (EEST)
  19. Received: from filter002.mxroute.com (unknown [185.133.192.179])
  20. by relay-direct2.mxroute.com (Postfix) with ESMTP id 1C8123F953
  21. for info@mediam.fi; Thu, 13 Sep 2018 08:19:42 +0000 (UTC)
  22. Received: from ocean.mxroute.com (ocean.mxroute.com [195.201.59.214])
  23. by filter002.mxroute.com (Postfix) with ESMTPS id D3BAA3F39E
  24. for info@mediam.fi; Thu, 13 Sep 2018 08:19:41 +0000 (UTC)
  25. DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
  26. d=cachednet.net; s=default; h=To:Subject:Message-ID:From:Content-Type:Date:
  27. Mime-Version:Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:
  28. Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc
  29. :Resent-Message-ID:In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:
  30. List-Subscribe:List-Post:List-Owner:List-Archive;
  31. bh=WN+iQuz3QB3y1Go/U9RmZJSjd10S3zPhFi6T2SRoQPw=; b=DJzsQQNHzdn2KQ2lMT+HMOP9Q0
  32. Poq+a/4p5+0Noj13+BlDjYN2nhFPiQ5fPGxRLBlK/GUvQGhqDake+kBEKfcndYQLELyTJpFGG3b2B
  33. IYXQvuGIbpi6W2M7BV7HjJCfXuifrECN3WW4r5HhrZI7cTDI/7z/4XKXS1S43MqI+S8IZ+kivhOeX
  34. sLTcaYhhNa25mFrqo77Hp/Vo7P29xK5UEe6BA3cXAp9pYu4ROouQaxn7g1qOUiFCkRYfoxBlGW5O3
  35. kI3hgFfrSgv1Uj59afxSn+RzpB5QGkymvGEjYJZ+Bxr6dn/9HKK7sr02zoYaHoavGccysx0BWLSap
  36. yrYUVbOw==;
  37. Mime-Version: 1.0
  38. Date: Thu, 13 Sep 2018 08:19:41 +0000
  39. Content-Type: multipart/alternative;
  40. boundary="--=_RainLoop_690_327549369.1536826781"
  41. X-Mailer: RainLoop/1.11.3
  42. From: noc@cachednet.net
  43. Message-ID: 54bbb5ec7f2737be1702c9bb547e7e86@cachednet.net
  44. Subject: Unauthorized BGP session
  45. To: info@mediam.fi
  46. X-AuthUser: noc@cachednet.net
  47.  
  48. Hello,
  49. We just found that there's unauthorized BGP session (AS46805) run by you as upstream, we request to stop the BGP session at your earliest convenience.
  50. Please also drop all IP announcements under AS46805.
  51.  
  52. Thank you!
  53.  
  54. Raw WHOIS Record
  55. Domain Name: cachednet.net
  56. Registry Domain ID: 2308673691_DOMAIN_NET-VRSN
  57. Registrar WHOIS Server: whois.namesilo.com
  58. Registrar URL: https://www.namesilo.com/
  59. Updated Date: 2018-09-11T07:00:00Z
  60. Creation Date: 2018-09-10T07:00:00Z
  61. Registrar Registration Expiration Date: 2019-09-10T07:00:00Z
  62. Registrar: NameSilo, LLC
  63. Registrar IANA ID: 1479
  64. Registrar Abuse Contact Email: abuse@namesilo.com
  65. Registrar Abuse Contact Phone: +1.4805240066
  66. Reseller: Stack Network Ltd
  67. Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
  68. Registry Registrant ID:
  69. Registrant Name: Domain Administrator
  70. Registrant Organization: See PrivacyGuardian.org
  71. Registrant Street: 1928 E. Highland Ave. Ste F104 PMB# 255
  72. Registrant City: Phoenix
  73. Registrant State/Province: AZ
  74. Registrant Postal Code: 85016
  75. Registrant Country: US
  76. Registrant Phone: +1.3478717726
  77. Registrant Phone Ext:
  78. Registrant Fax:
  79. Registrant Fax Ext:
  80. Registrant Email: pw-33b1d7139b2920a10044005ed1be4741@privacyguardian.org
  81. Registry Admin ID:
  82. Admin Name: Domain Administrator
  83. Admin Organization: See PrivacyGuardian.org
  84. Admin Street: 1928 E. Highland Ave. Ste F104 PMB# 255
  85. Admin City: Phoenix
  86. Admin State/Province: AZ
  87. Admin Postal Code: 85016
  88. Admin Country: US
  89. Admin Phone: +1.3478717726
  90. Admin Phone Ext:
  91. Admin Fax:
  92. Admin Fax Ext:
  93. Admin Email: pw-33b1d7139b2920a10044005ed1be4741@privacyguardian.org
  94. Registry Tech ID:
  95. Tech Name: Domain Administrator
  96. Tech Organization: See PrivacyGuardian.org
  97. Tech Street: 1928 E. Highland Ave. Ste F104 PMB# 255
  98. Tech City: Phoenix
  99. Tech State/Province: AZ
  100. Tech Postal Code: 85016
  101. Tech Country: US
  102. Tech Phone: +1.3478717726
  103. Tech Phone Ext:
  104. Tech Fax:
  105. Tech Fax Ext:
  106. Tech Email: pw-33b1d7139b2920a10044005ed1be4741@privacyguardian.org
  107. Name Server: NS1.DNSOWL.COM
  108. Name Server: NS2.DNSOWL.COM
  109. Name Server: NS3.DNSOWL.COM
  110.  
  111. Regards,
  112. Kris
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!