WhoIs ~ stabletransit.com ~ Malware Server

Address lookup
canonical name stabletransit.com

aliases
addresses:65.61.155.49
Domain Whois record

Queried whois.internic.net with “dom stabletransit.com”…

Domain Name: STABLETRANSIT.COM
Registrar: TUCOWS DOMAINS INC.
Whois Server: whois.tucows.com
Referral URL: http://domainhelp.opensrs.net
Name Server: NS1.HOSTINGMATRIX.NET
Name Server: NS2.HOSTINGMATRIX.NET
Status: ok
Updated Date: 01-mar-2011
Creation Date: 20-apr-2004
Expiration Date: 20-apr-2020

>>> Last update of whois database: Fri, 01 Feb 2013 13:06:17 UTC <<<

Queried whois.tucows.com with “stabletransit.com”…

Registrant:
Click And Name
9725 Datapoint Drive, Suite 100
San Antonio, TX 78229
US

Domain name: STABLETRANSIT.COM

Administrative Contact:
Master, Web support@clickandname.com
9725 Datapoint Drive, Suite 100
San Antonio, TX 78229
US
+1.2107980105 Fax: +1.2104474200

Technical Contact:
Master, Web support@clickandname.com
9725 Datapoint Drive, Suite 100
San Antonio, TX 78229
US
+1.2107980105 Fax: +1.2104474200

Registration Service Provider:
Click And Name, support@clickandname.com
210-798-0105

Registrar of Record: TUCOWS, INC.
Record last updated on 01-Mar-2011.
Record expires on 20-Apr-2020.
Record created on 20-Apr-2004.

Registrar Domain Name Help Center:
http://tucowsdomains.com

Domain servers in listed order:
NS1.HOSTINGMATRIX.NET
NS2.HOSTINGMATRIX.NET

Domain status: ok

Network Whois record

Queried whois.arin.net with “n 65.61.155.49″…

NetRange: 65.61.128.0 – 65.61.191.255
CIDR: 65.61.128.0/18
OriginAS: AS33070, AS19994, AS10532, AS27357
NetName: RSPC-NET-4
NetHandle: NET-65-61-128-0-1
Parent: NET-65-0-0-0-0
NetType: Direct Allocation
RegDate: 2002-11-01
Updated: 2012-02-24
Ref: http://whois.arin.net/rest/net/NET-65-61-128-0-1

OrgName: Rackspace Hosting
OrgId: RACKS-8
Address: 5000 Walzem Road
City: San Antonio
StateProv: TX
PostalCode: 78218
Country: US
RegDate: 2010-03-29
Updated: 2011-11-30
Ref: http://whois.arin.net/rest/org/RACKS-8

OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName: Abuse Desk
OrgAbusePhone: +1-210-892-4000
OrgAbuseEmail: abuse@rackspace.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE45-ARIN

OrgTechHandle: IPADM17-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-210-892-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM17-ARIN

DNS records
name class type data time to live
stabletransit.com IN NS dns2.stabletransit.com 300s (00:05:00)
stabletransit.com IN NS ns1.hostingmatrix.net 300s (00:05:00)
stabletransit.com IN NS ns2.hostingmatrix.net 300s (00:05:00)
stabletransit.com IN NS dns1.stabletransit.com 300s (00:05:00)
stabletransit.com IN A 65.61.155.49 300s (00:05:00)
stabletransit.com IN SOA
server: ns1.hostingmatrix.net
email: admin@helpmachine.com
serial: 1347469692
refresh: 3600
retry: 300
expire: 1814400
minimum ttl: 300
300s (00:05:00)
49.155.61.65.in-addr.arpa IN PTR linux1.hostingmatrix.net 300s (00:05:00)
155.61.65.in-addr.arpa IN SOA
server: ns.rackspace.com
email: hostmaster@rackspace.com
serial: 1336588036
refresh: 3600
retry: 300
expire: 1814400
minimum ttl: 300
86400s (1.00:00:00)
155.61.65.in-addr.arpa IN RRSIG
type covered: NSEC (47)
algorithm: RSA/SHA-1 (5)
labels: 5
original ttl: 10800 (03:00:00)
signature expiration: 2013-02-11 01:00:32Z
signature inception: 2013-02-01 01:00:32Z
key tag: 16553
signer’s name: 65.in-addr.arpa
signature:
(1024 bits)

1C74A14A7E6D51949337127531D6DFE1
7216A78937B39B067447E7952A01C95B
BEE8D460331E1A1EC4E2954224DDFAF6
7728306DF387BE29B99C61555CF2C6C5
2F63619F592B8117A3EE2A576468040F
E0085EA1D82A9A7FD152B1D7ACBA7D53
912602A8B04A7E4E9AF5C40FB792B5A0
3BF2E25F21A94F6014A0A55D7D804F4E

10800s (03:00:00)
155.61.65.in-addr.arpa IN NSEC
next domain name: 156.61.65.in-addr.arpa
record types: NS RRSIG NSEC
10800s (03:00:00)
155.61.65.in-addr.arpa IN NS ns.rackspace.com 300s (00:05:00)
155.61.65.in-addr.arpa IN NS ns2.rackspace.com 300s (00:05:00)

— end —

  1. jarrodgoddard.com
  2. richfieldhomes.net
  3. thedigitalship.com
  4. http://www.customteamluggage.com
  5. http://www.designpersonalizedluggage.com
  6. http://www.designteamluggage.com
  7. http://www.silvercreekpharmacy.net
  8. graphicnovelreporter.com
  9. xviewct.com
  10. grandgems.com
  11. healthcaremadesimple.com
  12. dakarblog.com
  13. 1centuryplace.com
  14. mouvementcentre.com
  15. beerthemasses.com
  16. openjason.com
  17. atlantadoctors.org
  18. genconnectmentor.com
  19. seruminteractive.com
  20. interactiveholdings.com
  21. badidukan.in
  22. silistech.com
  23. itsbeenarealpleasureworkingwithyou.com
    newjerseyflooring2525.com
  24. 12petals.org
  25. eworkerthailand.com
  26. weight321.com
  27. finance27.com
  28. comparemedicalalertsystems.com
  29. egtperformance.com
  30. studentsupportfoundation.org
    auroraroofing.com
  31. condiminds.com
  32. multiprod.net
  33. bartlettinsurancegroup.com
    skill-contest.com
  34. qopchurch.org
  35. joegoodestudio.com
  36. mercedmarching100.org
  37. theshirazruggallery.com
  38. remotia.com
  39. apollopharmacy1.com
  40. morrisplainspharmacy.net
  41. ibuypuregreencoffee.com
  42. placementmusic.com
  43. tmtechindia.com
  44. cosmeticsurgerymagazine.org
  45. blancica.com
  46. abroadwayvideo.com
  47. geo-mortgage.com
  48. conspil.com
  49. weddingsbyparis.com
  50. yourinsurancegenie.com
  51. alistdj.com
  52. adventure777.com
  53. bridgetolight.com
  54. ajmeramarble.com
  55. agency-i.com
  56. annanicole.com
  57. danielslaw.org
  58. bridgebug.com
  59. youforawhile.com
  60. shockproofthebook.com
  61. himalayanassociates.in
  62. richmondstone.com
  63. jesshobbs.com
  64. searceapps.com
  65. erik.com.au
  66. appledoremarine.com
  67. bangkok-travel-hotels.com
  68. burtlao.com
  69. colawrvsalvage.com
  70. gordmangroup.com
  71. kidsdealclub.com
  72. kiwifleur.com
  73. link-events.com
  74. onpurpose-ent.com
  75. pamernst.com
  76. schaunaman.com
  77. sharinnashvilletours.com
  78. trinityguardion.com
  79. victoriastrohmeyer.com
  80. computerforensicsdigest.com
  81. ofc.tv
  82. apply.homeincomepackage.com
  83. alcoteatro.com
  84. eurekawebmarketing.com
  85. pkfmexico.com
  86. discovery101.com
  87. drinknofear.co.uk
  88. formacion.cazorlaseguraylasvillas.com
  89. tekrepublik.com
  90. vgrabber.com
  91. papawu.net
  92. mauromd.com
  93. ravenousinspired.co.uk
  94. hopshop.co.uk
  95. pmstechno.com
  96. hotathome.com
  97. niesmannbischoffuk.co.uk
  98. freelancerselite.com
  99. spywarehelpcenter.com
  100. allislandcopiers.com
  101. nnafunding.com
  102. harrisonlakehouse.com
  103. 3dtv.com
  104. join.onlineincomesolution.com
  105. mymerced.com
  106. yolohub.com
  107. wamsports.com
  108. 4pointdesign.com
  109. screenblaze.com
  110. pagerandcellular.com
  111. thedruggist.net
  112. olojkpcltulirqr.info
  113. fuzzyyellowballs.com
  114. homewealthsolution.com
  115. impactgallery.net
  116. jenniekrausse.com
  117. apply.homewealthsolution.com
  118. join.homewealthsolution.com
  119. grainexperts.com
  120. blenderartists.org
  121. raptorsrepublic.com
  122. anj.co.in
  123. ssksamiti.com
  124. sunlessbeauty.com
  125. http://www.thetoyzone.com
  126. down-south.com
  127. clutchmagonline.com
  128. chicodentistleroythomas.com
  129. wywg.dxll.com.cn
  130. frsmb.com
  131. moreonlife.com
  132. servicechampions.com

Source: MalwareURL

One thought on “WhoIs ~ stabletransit.com ~ Malware Server

  1. SFA Reporter says:

    Reports online suggest that Complaintslist.com is charging a fee of $199.000 for REMOVAL of complaints. This is a DISTRIBUTING and ALARMING TREND.
    Google_ad_client = “ca-pub-1165759913967883”

    Address lookup
    canonical name http://www.complaintslist.com

    aliases
    addresses:50.56.211.12
    Domain Whois record

    Queried whois.internic.net with “dom complaintslist.com”…

    Domain Name: COMPLAINTSLIST.COM
    Registrar: GODADDY.COM, LLC
    Whois Server: whois.godaddy.com
    Referral URL: http://registrar.godaddy.com
    Name Server: DNS1.STABLETRANSIT.COM
    Name Server: DNS2.STABLETRANSIT.COM
    Status: clientDeleteProhibited
    Status: clientRenewProhibited
    Status: clientTransferProhibited
    Status: clientUpdateProhibited
    Updated Date: 02-jun-2012
    Creation Date: 02-jun-2012
    Expiration Date: 02-jun-2017

    >>> Last update of whois database: Fri, 01 Feb 2013 13:04:17 UTC <<<

    Queried whois.godaddy.com with "complaintslist.com"…

    Registered through: GoDaddy.com, LLC (http://www.godaddy.com)
    Domain Name: COMPLAINTSLIST.COM
    Created on: 02-Jun-12
    Expires on: 02-Jun-17
    Last Updated on: 02-Jun-12

    Registrant:
    Complaints List
    20 Burke Dr.
    Brockton, Massachusetts 02301
    United States

    Administrative Contact:
    Richardson, John admin@complaintslist.com
    Complaints List
    20 Burke Dr.
    Brockton, Massachusetts 02301
    United States
    +1.5085880444

    Technical Contact:
    Richardson, John admin@complaintslist.com
    Complaints List
    20 Burke Dr.
    Brockton, Massachusetts 02301
    United States
    +1.5085880444

    Domain servers in listed order:
    DNS1.STABLETRANSIT.COM
    DNS2.STABLETRANSIT.COM

    Network Whois record

    Queried whois.arin.net with "n ! NET-50-56-211-0-1"…

    NetRange: 50.56.211.0 – 50.56.211.255
    CIDR: 50.56.211.0/24
    OriginAS:
    NetName: RACKS-8-1350332957270638
    NetHandle: NET-50-56-211-0-1
    Parent: NET-50-56-0-0-1
    NetType: Reassigned
    RegDate: 2012-10-15
    Updated: 2012-10-15
    Ref: http://whois.arin.net/rest/net/NET-50-56-211-0-1

    CustName: Rackspace Cloud Servers
    Address: 5000 Walzem Rd.
    City: San Antonio
    StateProv: TX
    PostalCode: 78218
    Country: US
    RegDate: 2012-10-15
    Updated: 2012-10-15
    Ref: http://whois.arin.net/rest/customer/C03181641

    OrgTechHandle: IPADM17-ARIN
    OrgTechName: IPADMIN
    OrgTechPhone: +1-210-892-4000
    OrgTechEmail: hostmaster@rackspace.com
    OrgTechRef: http://whois.arin.net/rest/poc/IPADM17-ARIN

    OrgAbuseHandle: ABUSE45-ARIN
    OrgAbuseName: Abuse Desk
    OrgAbusePhone: +1-210-892-4000
    OrgAbuseEmail: abuse@rackspace.com
    OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE45-ARIN

    DNS records
    name class type data time to live
    http://www.complaintslist.com IN A 50.56.211.12 300s (00:05:00)
    complaintslist.com IN SOA
    server: dns.stabletransit.com
    email: ipadmin@stabletransit.com
    serial: 1353016525
    refresh: 3600
    retry: 300
    expire: 1814400
    minimum ttl: 300
    3600s (01:00:00)
    complaintslist.com IN A 50.56.211.12 300s (00:05:00)
    complaintslist.com IN MX
    preference: 5
    exchange: alt2.aspmx.l.google.com
    3600s (01:00:00)
    complaintslist.com IN MX
    preference: 10
    exchange: aspmx2.googlemail.com
    3600s (01:00:00)
    complaintslist.com IN MX
    preference: 5
    exchange: alt1.aspmx.l.google.com
    3600s (01:00:00)
    complaintslist.com IN MX
    preference: 10
    exchange: aspmx3.googlemail.com
    3600s (01:00:00)
    complaintslist.com IN MX
    preference: 1
    exchange: aspmx.l.google.com
    3600s (01:00:00)
    complaintslist.com IN NS dns1.stabletransit.com 3600s (01:00:00)
    complaintslist.com IN NS dns2.stabletransit.com 3600s (01:00:00)
    12.211.56.50.in-addr.arpa IN PTR http://www.complaintslist.com 86400s (1.00:00:00)
    211.56.50.in-addr.arpa IN SOA
    server: ns.rackspace.com
    email: hostmaster@rackspace.com
    serial: 1359674741
    refresh: 3600
    retry: 300
    expire: 1814400
    minimum ttl: 300
    300s (00:05:00)
    211.56.50.in-addr.arpa IN NS ns2.rackspace.com 300s (00:05:00)
    211.56.50.in-addr.arpa IN NS ns.rackspace.com 300s (00:05:00)

    — end —

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s