caffeinator
Coming soon to a cup near you..
Premium
join:2005-01-16
Spokane, WA
 ·WebBand
3 edits | reply to dliw
Re: Unknown Connection
--- 04/22/06 07:16:00 Pacific Daylight Time
--- reading URL 209.59.182.72
--- contacting host [209.59.182.72] on port 80
HTTP/1.1 200 OK
Date: Sat, 22 Apr 2006 14:16:05 GMT
Server: Apache/1.3.34 (Unix) mod_gzip/1.3.26.1a mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_ssl/2.8.25 OpenSSL/0.9.7a PHP-CGI/0.1b
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
X-Pingback: http://www.onejerusalem.com/xmlrpc.php
X-Powered-By: PHP/4.4.1
Set-Cookie: PHPSESSID=7119d3ad7cd323eb80ece0c040fe0c32; path=/
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
It's an "Israel Jerusalem and Middle East Blog Magazine"
That IP's actually »www.onejerusalem.com but going strictly by the IP, it messes up a bit.
His DNS report is kinda odd.
»www.dnsreport.com/tools/dnsrepor···alem.com
Report on the IP:
»www.nwtools.com/default.asp?prog···9.182.72
Report on the domain:
»www.nwtools.com/default.asp?prog···alem.com
They match, but the records are different. It must be a misconfiguration or a recently moved site that has DNS not totally propogated still??
More weird:
Domain Name: ONEJERUSALEM.COM
Registrar: GO DADDY SOFTWARE, INC.
Whois Server: whois.godaddy.com
Referral URL: »registrar.godaddy.com
Name Server: HOST2.SUNTRADER.COM
Name Server: HOST1.SUNTRADER.COM
Status: REGISTRAR-LOCK
Updated Date: 19-oct-2005
Creation Date: 01-apr-1999
Expiration Date: 19-oct-2006
Looks like it was just updated for a year.
Is it hijacked, bad config, fake whois, or just sloppy?
IDK...oh well..I was bored anyway. :D
-CaFF
--
"Only two things are infinite, the universe and human stupidity, and I'm not sure about the former." - A. Einstein |
