Derek and all my friends, Who knows how many more victims there will be from these errant registrants and their partners, errant registrars/registries. Who knows how long ICANN is going to turn a blind eye allowing these errant registries and registrars to continue for the purpose of profit alone, such errant and irresponsible business behavior? So far it's been nearly 8 years sense they were first notified as this being a growing problem in part of their own making and encouragment. I have seen the http://www.unitednationsonline.net myself and reported it to US-CERT accordingly. Of course that is no guarntee that it will be taken down. clickbank.com is another one of similar ill repute. So are gmail.com and googlemail.com. I and all of our members are now blocking gmail.com and many of our members are blocking googlemail.com as well. I reported googlemail.com to IC3.org, but again no guarentee such will address the problem either, problem being phishing fraud attempts. To answer the question of the subject line as these amongs many examples demonstrate, registries and registrars as well as hosting companies are either unable or unwilling to police their registrants adaquately or in some instances at all. The real big problem with these errant domain names and also associated IP addresses is that once they are downloaded on your PC, it is very possible if not likely that they have already lodaed malware or spyware on your PC, however if you have a good spyware detector, you can eradicate most of those, but not all necessarly. Hence why when reported to the registry, registrar, and or abuse address for these Domain names and/or the IP registry of the associated IP address if the one listed in the full headers is not a zombied IP address, is so important and why the Whois data for those domain names needs to be accurate as to what the abuse email address is, and whom the postmaster email address is in the DNS config. and that those email addersses are actually reachable, many if not most, are not. Regards, Spokesman for INEGroup LLA. - (Over 277k members/stakeholders strong!) "Obedience of the law is the greatest freedom" - Abraham Lincoln "Credit should go with the performance of duty and not with what is very often the accident of glory" - Theodore Roosevelt "If the probability be called P; the injury, L; and the burden, B; liability depends upon whether B is less than L multiplied by P: i.e., whether B is less than PL." United States v. Carroll Towing (159 F.2d 169 [2d Cir. 1947] =============================================================== Updated 1/26/04 CSO/DIR. Internet Network Eng. SR. Eng. Network data security IDNS. div. of Information Network Eng. INEG. INC. ABA member in good standing member ID 01257402 E-Mail jwkckid1@ix.netcom.com My Phone: 214-244-4827 Derek Smythe wrote:

Hi all

Having received too many replies from registrars, even silence regarding spoof domains with obviously invalid and fake whois, I could not resist:

http://www.unitednationsonline.net

Redirects in a frame to the real United Nations website.

Apparently the United Nations wishes to give away money as seen here and via Google: http://forum.aa419.org/viewtopic.php?p=105432

Not supprisingly, the registrant also owns citti-bank.com abused in a similar manner.

Sadly, despite abuse letters, still very much alive.

All things being equal, the registrar would require a court order or pull the UDRP card to disable these domains. I am not saying this has happened, but it is happening with other obviously spoofed domain names, similar to the citti-bank.com bank. These are by no means unique.

Any guesses how many victims later this will eventually be terminated?

How did we ever arrive at this point?

Regards

Derek http://www.aa419.org

_______________________________________________ ALAC mailing list ALAC@atlarge-lists.icann.org http://atlarge-lists.icann.org/mailman/listinfo/alac_atlarge-lists.icann.org

At-Large Official Site: http://www.alac.icann.org ALAC Independent: http://www.icannalac.org