WhoIs ~ effective-capitaltrading.org

The Purpose of this post is to ALERT you that the job you are about to apply for orscamalert may have applied FOR or is CONSIDERING APPLYING FOR is FRAUDULENT. The identities of an individual or a business entity have been stolen along with fund from their bank accounts.

These job postings are an attempt to lure you into accepting and cashing counterfeit checks into your bank accounts. You are being recruited to wire transfer these funds via WESTERN UNION or MONEYGRAM from your bank into a DOMESTIC BANK  or OFFSHORE BANK ACCOUNT.

 Essentially You Become A Money or Repackage Mule

  1. Money Mule Explained 
  2. Understanding The Cyber Theft Ring
  3. Protecting Yourself Against Money Mule
  4. KrebsOnSecurity – Cyberheist
  5. Washingtonpost.com by Brian Krebs
  6. Interview With A Money Mule
  7. Bobbear.co.UK ~ Historical Money Mule Sites

____________________

69.60.115.31 resolves to ns2.mercury-solutions.com.

The following A records are set to 69.60.115.31:

  1. abxfinance.com
  2. abxfinance.net
  3. business-support-ltd.com
  4. business-support-uk.org
  5. clever-eservicesinc.biz
  6. clever-eservicesinc.com
  7. clever-eservicesinc.net
  8. effective-capitaltrading.org

Address lookup
canonical name effective-capitaltrading.org

aliases
addresses:65.111.175.49
Domain Whois record

Queried whois.publicinterestregistry.net with “effective-capitaltrading.org”…

Domain ID:D169415429-LROR
Domain Name:EFFECTIVE-CAPITALTRADING.ORG
Created On:12-Aug-2013 15:43:30 UTC
Expiration Date:12-Aug-2014 15:43:30 UTC
Sponsoring Registrar:Paknic (Private) Limited (R1605-LROR)
Status:TRANSFER PROHIBITED

Registrant ID:PAK13081221880-1
Registrant Name:Evelina Alejandro
Registrant Organization:Evelina Alejandro
Registrant Street1:Travessa Bonfim 863
Registrant City:Sao Joao de Meriti
Registrant State/Province:RJ
Registrant Postal Code:25570-000
Registrant Country:BR
Registrant Phone:+55.21847656
Registrant FAX:+55.21847656
Registrant Email:shrine@effective-capitaltrading.org

Admin ID:PAK13081221880-2
Admin Name:Evelina Alejandro
Admin Organization:Evelina Alejandro
Admin Street1:Travessa Bonfim 863
Admin City:Sao Joao de Meriti
Admin State/Province:RJ
Admin Postal Code:25570-000
Admin Country:BR
Admin Phone:+55.21847656
Admin FAX:+55.21847656
Admin Email:shrine@effective-capitaltrading.org

Tech ID:PAK13081221880-3
Tech Name:Evelina Alejandro
Tech Organization:Evelina Alejandro
Tech Street1:Travessa Bonfim 863
Tech City:Sao Joao de Meriti
Tech State/Province:RJ
Tech Postal Code:25570-000
Tech Country:BR
Tech Phone:+55.21847656
Tech FAX:+55.21847656
Tech Email:shrine@effective-capitaltrading.org

Name Server:NS1.DOMENNS.CC
Name Server:NS2.RESOLV.SU
Name Server:NS3.NSHOSTER.CC

Name Server:
DNSSEC:Unsigned
Network Whois record

Queried whois.arin.net with “n ! NET-65-111-164-0-1

NetRange: 65.111.164.0 – 65.111.175.255
CIDR: 65.111.164.0/22, 65.111.168.0/21
OriginAS:
NetName: INMM-65-111-164-0
NetHandle: NET-65-111-164-0-1
Parent: NET-65-111-160-0-1
NetType: Reassigned
RegDate: 2006-11-15
Updated: 2012-06-07
Ref: http://whois.arin.net/rest/net/NET-65-111-164-0-1

CustName: Server Pronto
Address: 2400 East Las Olas Blvd
Address: Suite 268
City: Ft. Lauderdale
StateProv: FL
PostalCode: 33301
Country: US
RegDate: 2006-11-15
Updated: 2011-03-19
Ref: http://whois.arin.net/rest/customer/C01496545

OrgAbuseHandle: INMMA-ARIN
OrgAbuseName: IIS Abuse
OrgAbusePhone: +1-305-324-1616
OrgAbuseEmail: abuse@serverpronto.net
OrgAbuseRef: http://whois.arin.net/rest/poc/INMMA-ARIN

OrgTechHandle: II31-ARIN
OrgTechName: IIS Admin
OrgTechPhone: +1-305-324-1616
OrgTechEmail: netadm@infolink.com
OrgTechRef: http://whois.arin.net/rest/poc/II31-ARIN

RTechHandle: II31-ARIN
RTechName: IIS Admin
RTechPhone: +1-305-324-1616
RTechEmail: netadm@infolink.com
RTechRef: http://whois.arin.net/rest/poc/II31-ARIN

DNS records
name class type data time to live
effective-capitaltrading.org IN NS ns1.domenns.cc 120s (00:02:00)
effective-capitaltrading.org IN MX
preference: 10
exchange: mx.effective-capitaltrading.org
120s (00:02:00)
effective-capitaltrading.org IN NS ns3.nshoster.cc 120s (00:02:00)
effective-capitaltrading.org IN NS ns2.resolv.su 120s (00:02:00)
effective-capitaltrading.org IN A 65.111.175.49 120s (00:02:00)
effective-capitaltrading.org IN TXT v=spf1 a mx ip4:55.11.65.20/2 ip4:90.2.123.112/2 ip4:176.33.87.19/2 ip4:212.63.89.33/2 ?all 120s (00:02:00)
effective-capitaltrading.org IN SOA
server: ns1.effective-capitaltrading.org
email: hostmaster@effective-capitaltrading.org
serial: 80
refresh: 300
retry: 120
expire: 86400
minimum ttl: 60
120s (00:02:00)
49.175.111.65.in-addr.arpa IN PTR hearhotel.org 86400s (1.00:00:00)
175.111.65.in-addr.arpa IN RRSIG
type covered: NSEC (47)
algorithm: RSA/SHA-1 (5)
labels: 5
original ttl: 10800 (03:00:00)
signature expiration: 2013-08-30 12:00:33Z
signature inception: 2013-08-20 12:00:33Z
key tag: 58565
signer’s name: 65.in-addr.arpa
signature:
(1024 bits)

10280s (02:51:20)
175.111.65.in-addr.arpa IN NSEC
next domain name: 176.111.65.in-addr.arpa
record types: NS RRSIG NSEC
10280s (02:51:20)
175.111.65.in-addr.arpa IN NS thing2.infolink.com 85880s (23:51:20)
175.111.65.in-addr.arpa IN NS thing1.infolink.com 85880s (23:51:20)

— end —

One thought on “WhoIs ~ effective-capitaltrading.org

  1. SFA Reporter says:

    65.111.175.49 (hearhotel.org)

    Announced By
    Origin AS Announcement Description
    AS15083 65.111.160.0/19 Infolink

    Address lookup
    lookup failed domenns.cc
    Could not find an IP address for this domain name.
    Domain Whois record

    Queried whois.nic.cc with “dom domenns.cc”…

    Domain Name: DOMENNS.CC
    Domain ID: 107403079
    Whois Server: whois.paknic.com
    Referral URL: http://www.paknic.com
    Updated Date: 2013-08-08T11:39:59Z
    Creation Date: 2013-08-08T11:29:20Z
    Expiration Date: 2014-08-08T11:29:20Z
    Sponsoring Registrar: PAKNIC (PRIVATE) LIMITED
    Sponsoring Registrar IANA ID: 1367
    Domain Status: ACTIVE
    Name Server: NS1.DOMENNS.CC
    Name Server: NS2.DOMENNS.CC
    Name Server: NS3.DOMENNS.CC
    DNSSEC: Unsigned delegation

    >>> Last update of whois database: 2013-08-20T14:34:52Z <<<

    Queried whois.paknic.com with "domenns.cc"…

    Domain name: DOMENNS.CC

    Created On: 8/8/2013 4:28:42 PM
    Expires On: 8/8/2014 4:28:42 PM
    Last Updated On: 8/8/2013 4:28:42 PM

    Registrant:
    Pauline Jorgenson
    Pauline Jorgenson dns@domenns.cc
    4492 40th Street
    Calgary, AB T2K 0P7
    CA
    1.403274683 Fax: 1.403274683

    Administrative Contact:
    Pauline Jorgenson
    Pauline Jorgenson dns@domenns.cc
    4492 40th Street
    Calgary, AB T2K 0P7
    CA
    1.403274683 Fax: 1.403274683

    Billing Contact:
    Pauline Jorgenson
    Pauline Jorgenson dns@domenns.cc
    4492 40th Street
    Calgary, AB T2K 0P7
    CA
    1.403274683 Fax: 1.403274683

    Technical Contact:
    Pauline Jorgenson
    Pauline Jorgenson dns@domenns.cc
    4492 40th Street
    Calgary, AB T2K 0P7
    CA
    1.403274683 Fax: 1.403274683

    Domain servers in listed order:
    ns1.domenns.cc
    ns2.domenns.cc
    ns3.domenns.cc
    ___________________________
    Address lookup
    lookup failed resolv.su
    Could not find an IP address for this domain name.
    Domain Whois record

    Queried whois.ripn.net with "resolv.su"…

    domain: RESOLV.SU
    nserver: ns1.resolv.su. 201.182.29.124
    nserver: ns2.resolv.su. 178.33.203.165
    nserver: ns3.resolv.su. 201.182.29.125
    state: REGISTERED, DELEGATED
    person: Private Person
    e-mail: info@resolv.su
    registrar: NAUNET-REG-FID
    created: 2013.08.08
    paid-till: 2014.08.08
    free-date: 2014.09.10
    source: TCI

    Last updated on 2013.08.20 18:31:38 MSK

    Network Whois record

    Don't have an IP address for which to get a record
    DNS records
    name class type data time to live
    resolv.su IN NS ns2.resolv.su 86400s (1.00:00:00)
    resolv.su IN NS ns3.resolv.su 86400s (1.00:00:00)
    resolv.su IN SOA
    server: ns1.resolv.su
    email: hostmaster@resolv.su
    serial: 2013081901
    refresh: 3600
    retry: 1200
    expire: 604800
    minimum ttl: 60
    86400s (1.00:00:00)
    resolv.su IN NS ns1.resolv.su 86400s (1.00:00:00)

    — end —

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s