Kantipur server is hacked by some crooks.
.
Picture is given bellow

It must be hacked by Maoist cracks. A couple of days ago, murderer Prachanda warned Kantipur about serious consequences. Prachande chor- Desh chhod.

It is working in my server!

Mine too.

kantipuronline.com This domain is under construction.

Search the Web:

Online Stefano Online Online Ordering Website Access Online College Degree Online

Online Ordering Online Services Online Hosting Online Order Forms

Website Website Maintenance Host Url Website Marketing

E-mail Email Email Address Hotmail Hotmail.com Email Search

that happens when u fail to renew your domain and by default go to advertising by the domain register in US these days.

It also the poor state of IT in Nepal when It jobs are mostly given to relatives who has just passed out from UNIVERSITY in Nepal ( mero bhatijo le IT padheko chaa usalai diu) A company like kantipur does not want to spend money and look for cheap option like few thousand rupees.

Only concerned company I found in Nepal  is IME (International money express) when I did their software.They bought all the equipment we suggested and placed where we suggested. No wonder they do millions of transaction and has never failed. I worked with so many companies in Nepal and most are like mmmmmmmm mero tyo, mero yo le garcha, garo kaam chai tapai garidinu.

Dear vname,

I guess the problem with Kantipuronline is something else. Their Domain names seem valid for at least one more year.

no its expired, I believe thats redemption period .Companies that register domain  keep one year redemption period so that any one who wants to take their domain out of redemption period has to pay hefty fee ,often in few hundred dollars.

Kantipur will be paying a lot of money, thats I know for sure.

Kantipur is more business oriented now. I guess UML is not able to give them ample financial support as before. So they have underpaid journalists and underpaid IT personnel. In the election also, their website could not handle the traffic of Nepalis living aboard. Now they should call themselves the misleading daily of Nepal.

Here the domain information

WHOIS - kantipuronline.com

Generated by www.DNSstuff.com

Registrar: DIRECTI INTERNET SOLUTIONS PVT. LTD. D/B/A PUBLICDOMAINREGISTRY.COM
Status: ok
Dates: Created 20-feb-2000 Updated 24-nov-2007 Expires 20-feb-2012
DNS Servers: NS0.DIRECTNIC.COM NS1.DIRECTNIC.COM

I was referred to whois.PublicDomainRegistry.com; I'm looking it up there.



Using 0 day old cached answer (or, you can get fresh results).
Hiding E-mail address (you can get results with the E-mail address).

Registration Service Provided By: ELITE INFOTECH
Contact: +977.14212965

Domain Name: KANTIPURONLINE.COM

Registrant:
PrivacyProtect.org
Domain Admin ********@privacyprotect.org)
P.O. Box 97
Note - All Postal Mails Rejected, visit Privacyprotect.org
Moergestel
null,5066 ZH
NL
Tel. +45.36946676

Creation Date: 20-Feb-2000
Expiration Date: 20-Feb-2012

Domain servers in listed order:
cns2.secureserver.net
cns1.secureserver.net


Administrative Contact:
PrivacyProtect.org
Domain Admin ********@privacyprotect.org)
P.O. Box 97
Note - All Postal Mails Rejected, visit Privacyprotect.org
Moergestel
null,5066 ZH
NL
Tel. +45.36946676

Technical Contact:
PrivacyProtect.org
Domain Admin ********@privacyprotect.org)
P.O. Box 97
Note - All Postal Mails Rejected, visit Privacyprotect.org
Moergestel
null,5066 ZH
NL
Tel. +45.36946676

Billing Contact:
PrivacyProtect.org
Domain Admin ********@privacyprotect.org)
P.O. Box 97
Note - All Postal Mails Rejected, visit Privacyprotect.org
Moergestel
null,5066 ZH
NL
Tel. +45.36946676

Status:ACTIVE

The data in this whois database is provided to you for information purposes only,
that is, to assist you in obtaining information about or related
to a domain name registration record. We make this information available "as is",
and do not guarantee its accuracy. By submitting a whois query, you agree that you will
use this data only for lawful purposes and that, under no circumstances will you use this data to:
(1) enable high volume, automated, electronic processes that stress
or load this whois database system providing you this information; or
(2) allow, enable, or otherwise support the transmission of mass unsolicited,
commercial advertising or solicitations via direct mail, electronic mail, or by telephone.
The compilation, repackaging, dissemination or other use of this data is expressly prohibited without
prior written consent from us. The Registrar of record is Public Domain Registry.
We reserve the right to modify these terms at any time.
By submitting this query, you agree to abide by these terms.

Someone pulled the server's plug!!!!!!!!!!!!!!????

May be?????

WHOIS - ekantipur.com

Generated by www.DNSstuff.com

Registrar: GODADDY.COM, INC.
Status: clientRenewProhibited
Dates: Created 01-apr-2005 Updated 18-apr-2008 Expires 01-apr-2009
DNS Servers: NS07.DOMAINCONTROL.COM NS08.DOMAINCONTROL.COM

I was referred to whois.godaddy.com; I'm looking it up there.




The data contained in GoDaddy.com, Inc.'s WhoIs database,
while believed by the company to be reliable, is provided "as is"
with no guarantee or warranties regarding its accuracy. This
information is provided for the sole purpose of assisting you
in obtaining information about domain name registration records.
Any use of this data for any other purpose is expressly forbidden without the prior written
permission of GoDaddy.com, Inc. By submitting an inquiry,
you agree to these terms of usage and limitations of warranty. In particular,
you agree not to use this data to allow, enable, or otherwise make possible,
dissemination or collection of this data, in part or in its entirety, for any
purpose, such as the transmission of unsolicited advertising and
and solicitations of any kind, including spam. You further agree
not to use this data to enable high volume, automated or robotic electronic
processes designed to collect or compile this data for any purpose,
including mining this data for your own personal or commercial purposes.

Please note: the registrant of the domain name is specified
in the "registrant" field. In most cases, GoDaddy.com, Inc.
is not the registrant of domain names listed in this database.


Registrant:
Domains by Proxy, Inc.

Registered through: GoDaddy.com, Inc. (http://www.godaddy.com)
Domain Name: EKANTIPUR.COM

Domain servers in listed order:
NS07.DOMAINCONTROL.COM
NS08.DOMAINCONTROL.COM


For complete domain details go to:
http://who.godaddy.com/whoischeck.aspx?Domain=EKANTIPUR.COM

.

#dig ekantipur.com ns

;; ANSWER SECTION:
ekantipur.com.          1997    IN      NS      ns08.domaincontrol.com.
ekantipur.com.          1997    IN      NS      ns07.domaincontrol.com.

#dig @ns08.domaincontrol.com ekantipur.com

;; QUESTION SECTION:
;ekantipur.com.                 IN      A

;; ANSWER SECTION:
ekantipur.com.          3600    IN      A       64.202.189.170

;; AUTHORITY SECTION:
ekantipur.com.          3600    IN      NS      ns07.domaincontrol.com.
ekantipur.com.          3600    IN      NS      ns08.domaincontrol.com.

The website is temporarily unavailable on that IP.


# dig kantipuronline.com ns

;; ANSWER SECTION:
kantipuronline.com.     84261   IN      NS      ns1.kantipuronline.com.
kantipuronline.com.     84261   IN      NS      ns2.kantipuronline.com.

;; ADDITIONAL SECTION:
ns1.kantipuronline.com. 84261   IN      A       208.109.209.156
ns2.kantipuronline.com. 84261   IN      A       208.109.209.156

Sadly, none of these return anything! Something to do with their DNS config?

# dig @ns1.kantipuronline.com kantipuronline.com
;; connection timed out; no servers could be reached

# dig @208.109.209.156 kantipuronline.com
;; connection timed out; no servers could be reached

.

By the way, an observation on kantipuronline.com , it'd be better you reduce the TTL to something like how ekantipur.com is configured: 3600s, once you figure out the problem with your authoritative nameserver!

BTW, kantipuronline.com may be maintained no more.

.

RECHECK :

# dig kantipuronline.com ns
;; ANSWER SECTION:
kantipuronline.com.     172068  IN      NS      eliteinfotech.venus.orderbox-dns.com.
kantipuronline.com.     172068  IN      NS      eliteinfotech.mercury.orderbox-dns.com.
kantipuronline.com.     172068  IN      NS      ns1.kantipuronline.com.
kantipuronline.com.     172068  IN      NS      eliteinfotech.mars.orderbox-dns.com.
kantipuronline.com.     172068  IN      NS      eliteinfotech.earth.orderbox-dns.com.
kantipuronline.com.     172068  IN      NS      ns2.kantipuronline.com.

# dig @ns1.kantipuronline.com kantipuronline.com
;; ANSWER SECTION:
kantipuronline.com.     38400   IN      A       208.109.209.156

Damn , They Maintained ns1,ns2,www behind the same IP ? ( 208.109.209.156 )

We've got plenty NS added now, so if the server is down next : we can differentiate if it was a DNS problem.

BottomLine: It wasnt Hacked, Lack of BCPs!

Hey oldmaven I don't know what you are trying to find digging for nameservers.....

They have their domain from U.S servers..... and there was no domain server problem...

You might need more class on Name and Web server.....?????

.

Whois , the www , which was supposedly their ns , was down at that time. They added up new ns'es but put the ttl to some high values for us to see it taking time to be updated on every root servers. US or Non-US , you'd find giants like google and yahoo putting up their ttl to 300s , you can check.

My point was to prove it wasnt hacked, but they worked on it ( whoever ) not the professional way, so we faced the downtime. Now is that clear?

.

Whois, if you're wondering whats going on?

Kantipuronline.com was hosted on GoDaddy. That ip belongs to them. Go-Daddy craftily had ns1 and www point to the same server. They usually do that.

Now, Kantipur wanted to change the ns to theplanet.com , while keeping the domain webspace from Go-Daddy.

But , it took time to reflect to the world, as dns resolves from cache till the ttl expires!

You can figure these out from those ips, and arin.net easily!

That's good job......
What you do man????