|
|
Naida_BR
Member
 Offline
Activity: 980
Merit: 62
|
 |
May 04, 2020, 02:09:47 PM |
|
How can I know that a website if registered to one of those domains?
If there a tool which I can use in order to find out the domain provider of a website? Otherwise I am going to just trying to contact randomly domain providers.
|
|
|
|
|
|
SpanishSoldier
|
|
May 04, 2020, 05:20:21 PM |
|
How can I know that a website if registered to one of those domains?
If there a tool which I can use in order to find out the domain provider of a website? Otherwise I am going to just trying to contact randomly domain providers.
https://who.is is your friend.  |
|
|
|
|
Baofeng
Legendary
Offline
Activity: 2814
Merit: 1682
|
|
May 05, 2020, 10:03:32 AM |
|
How can I know that a website if registered to one of those domains?
If there a tool which I can use in order to find out the domain provider of a website? Otherwise I am going to just trying to contact randomly domain providers.
Here, I've written a [Guide] How to find domain name registrar. |
RAZED | │ | ███████▄▄▄████▄▄▄▄
████▄███████████████▄
██▄██████▀▀████▀▀█████▄
░▄███████████▄█▌████████▄
▄█████████▄████▌█████████▄
██████████▀███████▄███████▄
██████████████▐█▄█▀████████
▀████████████▌▐█▀██████████
░▀███████████▌▀████████████
██▀███████▄▄▄█████▄▄██████
█████████████████████████
█████▀█████████████████▀
███████████████████████ | ▄▄███████▄▄
▄███████████████▄
▄███████████████████▄
▄█████████████████████▄
▄███████████████████████▄
█████████████████████████
█████████████████████████
█████████████████████████
▀███████████████████████▀
▀█████████████████████▀
▀███████████████████▀
▀███████████████▀
███████████████████ |
RAZED ORIGINALS
SLOTS & LIVE CASINO
SPORTSBOOK | | | NO
KYC | | │ |
RAZE THE LIMITS ►PLAY NOW |
|
|
|
|
cryptomaniac_xxx (OP)
|
|
July 05, 2020, 01:55:59 AM |
|
I'm just going to bump this thread, to help those who wanted to go directly report scam/phish/fake giveaways/malicious websites related to cryptocurrencies.
|
|
|
|
|
JohnBitCo
|
|
July 05, 2020, 06:18:31 AM |
|
How can I know that a website if registered to one of those domains?
If there a tool which I can use in order to find out the domain provider of a website? Otherwise I am going to just trying to contact randomly domain providers.
Also if you find any domain providers using a phishing site for the above mentioned domains, you need to report abuse to the original site by using the form or email as mentioned in the OP. |
|
|
|
|
|
UserU
|
|
July 05, 2020, 10:11:21 AM |
|
Also if you find any domain providers using a phishing site for the above mentioned domains, you need to report abuse to the original site by using the form or email as mentioned in the OP.
Imagine being a malware researcher on social media and you compiled the evidences, posted them and tagged those companies involved, and yet they still requested you to submit a case/ form. That's why some researchers quitted or just gave up reporting because they couldn't be bothered. Saw that happened to one not too long ago. |
.
.500 CASINO.██ | ▄▀ |
▄
▄ | | .
THE HOTTEST CRYPTO
CASINO & SPORTSBOOK | | ▄▄▄████████████
▄▄▄███████████████████
▐█████████████████████
█████████████████████
▐███████████████████
▐███████████████████
███████████████████
██████▀█████▀██████
▐████████▀█████████
▐███████████████████
███████████████████
▐███████████████████
▀██████▀▀▀▀▀▀ ▀▀▀█ | |
█▄▄▄██████████▄▄▄
███████████▀██▀▀██▄▄
███████████████████▄
█████████████████████
████▄████▄███████▄███
█████████████████████
████▀████▀███████▀███
█████████████████████
███████████████████▀
███████████▄██▄▄██▀▀
▀▀▀██████████▀▀▀ | |
► ORIGINALS
► SLOTS | |
► LIVE GAMES
► SPORTSBOOK |
▄
▄
| ▀▄ | .
██..PLAY NOW.. |
|
|
|
|
cryptomaniac_xxx (OP)
|
|
July 05, 2020, 02:50:30 PM |
|
Also if you find any domain providers using a phishing site for the above mentioned domains, you need to report abuse to the original site by using the form or email as mentioned in the OP.
Imagine being a malware researcher on social media and you compiled the evidences, posted them and tagged those companies involved, and yet they still requested you to submit a case/ form. That's why some researchers quitted or just gave up reporting because they couldn't be bothered. Saw that happened to one not too long ago. Can you please elaborate more? Share some links perhaps to those researchers who quited reporting phishing sites because it's just a waste of time? I'm interested, because as a researchers you have to do everything in your control to help take down those malicious sites. I will be happy to read it online (if there is one). |
|
|
|
|
UserU
|
|
July 05, 2020, 03:00:05 PM |
|
Can you please elaborate more? Share some links perhaps to those researchers who quited reporting phishing sites because it's just a waste of time? I'm interested, because as a researchers you have to do everything in your control to help take down those malicious sites. I will be happy to read it online (if there is one).
Here's one of the prominent ones, @JAYTHL. Disappeared and no one knows where he went: https://twitter.com/NathanMcNulty/status/1267526318716903424Because those site hosts such as NameCheap still want things to be manually spoonfed (i.e. please submit a report through our form), rather than actively taking action against those abused sites or threat actors when the malware researchers have already spent time identifying the threat names, domains involved, hash/ files and the stages. |
.
.500 CASINO.██ | ▄▀ |
▄
▄ | | .
THE HOTTEST CRYPTO
CASINO & SPORTSBOOK | | ▄▄▄████████████
▄▄▄███████████████████
▐█████████████████████
█████████████████████
▐███████████████████
▐███████████████████
███████████████████
██████▀█████▀██████
▐████████▀█████████
▐███████████████████
███████████████████
▐███████████████████
▀██████▀▀▀▀▀▀ ▀▀▀█ | |
█▄▄▄██████████▄▄▄
███████████▀██▀▀██▄▄
███████████████████▄
█████████████████████
████▄████▄███████▄███
█████████████████████
████▀████▀███████▀███
█████████████████████
███████████████████▀
███████████▄██▄▄██▀▀
▀▀▀██████████▀▀▀ | |
► ORIGINALS
► SLOTS | |
► LIVE GAMES
► SPORTSBOOK |
▄
▄
| ▀▄ | .
██..PLAY NOW.. |
|
|
|
|
cryptomaniac_xxx (OP)
|
|
July 05, 2020, 04:36:50 PM |
|
Can you please elaborate more? Share some links perhaps to those researchers who quited reporting phishing sites because it's just a waste of time? I'm interested, because as a researchers you have to do everything in your control to help take down those malicious sites. I will be happy to read it online (if there is one).
Here's one of the prominent ones, @JAYTHL. Disappeared and no one knows where he went: https://twitter.com/NathanMcNulty/status/1267526318716903424Because those site hosts such as NameCheap still want things to be manually spoonfed (i.e. please submit a report through our form), rather than actively taking action against those abused sites or threat actors when the malware researchers have already spent time identifying the threat names, domains involved, hash/ files and the stages. Thanks for the link. However, I believed that Namecheap for example has been called out, specially when cyber actors used Covid-19 themes, Domain Registrars Take Action Against Fraudulent COVID-19 Websites. Not just them, but most of the domain registrars that I put up in my first post. Might take some time for them to take down those sites if they are reported, but I think they do listen. |
|
|
|
|
Jating
|
|
July 05, 2020, 11:13:19 PM |
|
Just sharing my experience reporting a fake website in Namecheap, usually it will take like 3-5 days before you can get a response from them or you simply won't get anything from them. Or better yet tweet them here to get attention and then see if they will reply: https://twitter.com/Namecheap |
|
|
|
ActivatedWalnut
Newbie
Offline
Activity: 21
Merit: 1
|
|
July 06, 2020, 01:03:04 AM |
|
Best way to combat phishing websites is reporting them to google https://safebrowsing.google.com/safebrowsing/report_phish/Almost everyone in the world runs google chrome, or uses google. Their response is super fast as well. Abuse report emails take too long to respond, or often go straight into trash. |
|
|
|
|
LTU_btc
Legendary
Offline
Activity: 3276
Merit: 1378
Slava Ukraini!
|
|
July 06, 2020, 11:25:34 AM |
|
Best way to combat phishing websites is reporting them to google https://safebrowsing.google.com/safebrowsing/report_phish/Almost everyone in the world runs google chrome, or uses google. Their response is super fast as well. Abuse report emails take too long to respond, or often go straight into trash. No it's not. It least my experience is completely different. Reporting to Google isn't very effective, sometimes they don't react to reports at all. I remember that some phishing websites like Bitcointalk.to were reported by forum members so many times, but they never removed it. While from my experience, hosting providers reacts quite fast and they soon shutdown phishing website. |
|
|
|
bob123
Legendary
Offline
Activity: 1624
Merit: 2504
|
|
July 06, 2020, 04:59:07 PM |
|
You could as well just whois the website. An abuse contact is included. For example: $ whois bitcointalk.org
Domain Name: BITCOINTALK.ORG
Registry Domain ID: D162601474-LROR
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: http://www.namecheap.com
Updated Date: 2019-11-24T14:01:10Z
Creation Date: 2011-06-24T05:19:00Z
Registry Expiry Date: 2029-06-24T05:19:00Z
Registrar Registration Expiration Date:
Registrar: NameCheap, Inc.
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
You need the whois anyway to figure the registrar out. Might as well use the included abuse contact (mail & phone in this case). |
|
|
|
OmegaStarScream
Staff
Legendary
Offline
Activity: 3696
Merit: 6539
|
|
July 06, 2020, 05:41:22 PM |
|
You could as well just whois the website.
An abuse contact is included.
For example:
-snip-
I think it depends on the service. From my experience, Namecheap doesn't always respond to emails written to the abuse email you mentioned. I always end up reaching out to them using the ticketing system.
@OP You can add OpenProvider, a lot of sites use it: https://support.openprovider.eu/hc/en-us/articles/360001725008-Reporting-abuse |
|
|
|
|
TalkStar
|
|
July 06, 2020, 06:08:30 PM |
|
Reporting to Google isn't very effective, sometimes they don't react to reports at all. I remember that some phishing websites like Bitcointalk.to were reported by forum members so many times, but they never removed it.
While from my experience, hosting providers reacts quite fast and they soon shutdown phishing website.
Google response rate in this field isn't quite impressive and i am agree with you too. Though their response is quite fast in Play store apps related abuse reports and they take not more than 24 hours to take actions against the app which violate their terms and condition. For phishing websites i always prefer to contact hosting providers to get faster results and most of the time it works so well. |
|
|
|
|
cryptomaniac_xxx (OP)
|
|
July 08, 2020, 11:17:38 AM |
|
Thanks added this to the list as well. And I agree that most of them don't really respond, while others will gave you ticket numbers to follow up. But I think it will be good if we will pro-actively reports phishing/scam sites to their domain host registrar, specially that hackers are very active more than ever. |
|
|
|
|
