Author Topic: Interesting Find:Why is DShield Domain Address Linked to Spammers?  (Read 1791 times)

0 Members and 1 Guest are viewing this topic.

Offline bob bitchin

  • Newbie
  • *
  • Posts: 8
Whois Results:
Why is DShield Domain Address Linked to Spammers?

You Are Searching For www.dshield.org:

; <<>> DiG 9.2.3 <<>> www.dshield.org
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 22406
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 9, ADDITIONAL: 6

;; QUESTION SECTION:
;www.dshield.org. IN A

;; ANSWER SECTION:
www.dshield.org. 60 IN A 65.173.218.74
www.dshield.org. 60 IN A 65.173.218.75

;; AUTHORITY SECTION:
dshield.org. 3600 IN NS ns3.dshield.org.
dshield.org. 3600 IN NS ns1.dshield.org.
dshield.org. 3600 IN NS sjc.nameserver.net.
dshield.org. 3600 IN NS ns1.giac.net.
dshield.org. 3600 IN NS ns2.dshield.org.
dshield.org. 3600 IN NS sou.nameserver.net.
dshield.org. 3600 IN NS ns4.dshield.org.
dshield.org. 3600 IN NS bos.nameserver.net.
dshield.org. 3600 IN NS ns.section66.com.

;; ADDITIONAL SECTION:
bos.nameserver.net. 172800 IN A 203.20.52.5
ns1.giac.net. 172800 IN A 65.173.218.103
ns1.dshield.org. 3600 IN AAAA 2001:4830:166c:0:20f:1fff:fef8:140c
sjc.nameserver.net. 172800 IN A 136.248.127.55
sou.nameserver.net. 172800 IN A 84.234.24.90
ns.section66.com. 172800 IN A 195.207.151.220

;; Query time: 12 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Sun Jan 20 02:43:29 2008

Detailed Lookup of Ip Range 65.173.218.74 are:
Sprint SPRINTLINK-2-BLKS (NET-65-160-0-0-1)
                                  65.160.0.0 - 65.174.255.255
ESCAL INSTITUTE OF ADVANCED FON-1101912576101565 (NET-65-173-218-0-1)
                                  65.173.218.0 - 65.173.218.255
This net range has been around for quite a while and linked to spammers and spyware delivery domains!!!
My best guess is it's some kind of spyware scanner/scraper or spammer bot!!!!
My Question is why dshield and sans have ip addresses in that net range????????????
Awaiting response from DShield, so that net range has been banned  to further notice!!!