Modify

Opened 4 weeks ago

Closed 4 weeks ago

#154 closed FalseNegative (fixed)

2amsports.com

Reported by: AnonymousPoster Owned by:
Priority: trivial Milestone:
Component: RPZ Version: 0.1
Severity: mild Keywords: phishing
Cc: incoming+my-privacy-dns-matrix-matrix-12520650-issue-@…

Description

Summary

This 'Malicious' domain have to be blocked as..

Line 
12amsports.com CNAME . ; Malicious
2*.2amsports.com CNAME . ; DomainSharks

Relevant logs and/or screenshots

This hijacked domain also serves viruses according to virustotal

https://www.virustotal.com/gui/url/15094ecddc34a5fb5a801f38ddce0ad3a2b2e3690c8088d0b0962ee6e2dc0647/detection

ScreenShot

https://user-images.githubusercontent.com/5105020/72983587-eb218580-3de1-11ea-9a4a-3b121a6ead01.png

History

In our rpz.mypdns.cloud Privacy DNS firewall we find a number of old records

RPZ History

Line 
12amsports.com.rpz.mypdns.cloud
2www.2amsports.com.rpz.mypdns.cloud

The following domains have been turned into wildcards:

Line 
2www.2amsports.com.rpz.mypdns.cloud

All Submissions:

  • [x] Have you followed the guidelines in our Contributing document?
  • [x] Have you checked to ensure there aren't other open Issues for the same update/change?
  • [x] Added ScreenDump for prove of False Positive
  • [x] Have you added an explanation of what your submission do and why

you'd like us to include them??

Testing face

  • [x] Checked the internet for verification?
  • [x] Have you successfully ran tests with your changes locally?

Todo:

Attachments (0)

Change History (1)

comment:1 by AnonymousPoster, 4 weeks ago

Resolution: fixed
Status: newclosed

Modify Ticket

Action
as closed The ticket will remain with no owner.
The resolution will be deleted. Next status will be 'reopened'.

Add Comment


E-mail address and name can be saved in the Preferences .
 
Note: See TracTickets for help on using tickets.