WhoIs Escortsting.com~ Bustedescorts.com

scamFRAUDalert see it appropriate to issue this ALERT as reports online suggest the operator(s) are scraping content from adult entertaining sites along with falsely accusing innocent individuals of being part of the sex industry.

This does not surprised us as we are seeing more and more of these insidious sites being erected online. The following sites below are affiliated with the site’s operator. A records are set to 104.24.0.89:

  1. bodyrubhistory.com
  2. escortspolice.com
  3. Escortsting.com
  4. Escortpolice.com
  5. Bustedescorts.com
  6. Bustedescort.com

-www-bustedescorts-com.png
-www-escortspolice-com.png
Address lookup
canonical name :escortpolice.com
aliases
addresses :2400:cb00:2048:1::681b:940e
2400:cb00:2048:1::681b:950e
104.27.149.14
104.27.148.14
Domain Whois record

Queried whois.internic.net with “dom Escortpolice.com”…

Domain Name: ESCORTPOLICE.COM
Registry Domain ID: 1921862432_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.enom.com
Registrar URL: http://www.enom.com

Updated Date: 2017-06-19T00:50:56Z
Creation Date: 2015-04-21T02:58:58Z
Registry Expiry Date: 2019-04-21T02:58:58Z

Registrar: eNom, Inc.
Registrar IANA ID: 48
Registrar Abuse Contact Email:
Registrar Abuse Contact Phone:
Domain Status: clientTransferProhibited
Name Server: MATT.NS.CLOUDFLARE.COM
Name Server: VITA.NS.CLOUDFLARE.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint

Last update of whois database: 2017-08-20T21:41:04Z
Queried whois.enom.com with “Escortpolice.com”…

Domain Name: ESCORTPOLICE.COM
Registry Domain ID: 1921862432_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.enom.com
Registrar URL: http://www.enom.com
Updated Date: 2015-04-20T19:59:00.00Z
Creation Date: 2015-04-21T02:59:00.00Z
Registrar Registration Expiration Date: 2019-04-21T02:59:00.00Z
Registrar: ENOM, INC.
Registrar IANA ID: 48
Reseller: NAMECHEAP.COM

Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
Registry Registrant ID:
Registrant Name: WHOISGUARD PROTECTED
Registrant Organization: WHOISGUARD, INC.
Registrant Street: P.O. BOX 0823-03411
Registrant City: PANAMA
Registrant State/Province: PANAMA
Registrant Postal Code: 00000
Registrant Country: PA
Registrant Phone: +507.8365503
Registrant Fax: +51.17057182
Registrant Email: BF8A0833D123456C9A2E02A28FDB55DD.PROTECT@WHOISGUARD.COM

Registry Admin ID:
Admin Name: WHOISGUARD PROTECTED
Admin Organization: WHOISGUARD, INC.
Admin Street: P.O. BOX 0823-03411
Admin City: PANAMA
Admin State/Province: PANAMA
Admin Postal Code: 00000
Admin Country: PA
Admin Phone: +507.8365503
Admin Fax: +51.17057182
Admin Email: BF8A0833D123456C9A2E02A28FDB55DD.PROTECT@WHOISGUARD.COM

Registry Tech ID:
Tech Name: WHOISGUARD PROTECTED
Tech Organization: WHOISGUARD, INC.
Tech Street: P.O. BOX 0823-03411
Tech City: PANAMA
Tech State/Province: PANAMA
Tech Postal Code: 00000
Tech Country: PA
Tech Phone: +507.8365503
Tech Fax: +51.17057182
Tech Email: BF8A0833D123456C9A2E02A28FDB55DD.PROTECT@WHOISGUARD.COM

Name Server: MATT.NS.CLOUDFLARE.COM
Name Server: VITA.NS.CLOUDFLARE.COM

DNSSEC: unSigned
Registrar Abuse Contact Email: abuse@enom.com
Registrar Abuse Contact Phone: +1.4252982646
URL of the ICANN WHOIS Data Problem Reporting System:

Last update of WHOIS database: 2015-04-20T19:59:00.00Z
Network Whois record

Queried whois.arin.net with “n 104.27.149.14″…

NetRange: 104.16.0.0 – 104.31.255.255
CIDR: 104.16.0.0/12
NetName: CLOUDFLARENET
NetHandle: NET-104-16-0-0-1
Parent: NET104 (NET-104-0-0-0-0)
NetType: Direct Assignment
OriginAS: AS13335
Organization: Cloudflare, Inc. (CLOUD14)
RegDate: 2014-03-28
Updated: 2017-02-17
Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
Ref: https://whois.arin.net/rest/net/NET-104-16-0-0-1

OrgName: Cloudflare, Inc.
OrgId: CLOUD14
Address: 101 Townsend Street
City: San Francisco
StateProv: CA
PostalCode: 94107
Country: US
RegDate: 2010-07-09
Updated: 2017-02-17
Comment: All Cloudflare abuse reporting can be done via https://www.cloudflare.com/abuse
Ref: https://whois.arin.net/rest/org/CLOUD14

OrgTechHandle: ADMIN2521-ARIN
OrgTechName: Admin
OrgTechPhone: +1-650-319-8930
OrgTechEmail: admin@cloudflare.com
OrgTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN

OrgNOCHandle: NOC11962-ARIN
OrgNOCName: NOC
OrgNOCPhone: +1-650-319-8930
OrgNOCEmail: noc@cloudflare.com
OrgNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN

OrgAbuseHandle: ABUSE2916-ARIN
OrgAbuseName: Abuse
OrgAbusePhone: +1-650-319-8930
OrgAbuseEmail: abuse@cloudflare.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN

RNOCHandle: NOC11962-ARIN
RNOCName: NOC
RNOCPhone: +1-650-319-8930
RNOCEmail: noc@cloudflare.com
RNOCRef: https://whois.arin.net/rest/poc/NOC11962-ARIN

RAbuseHandle: ABUSE2916-ARIN
RAbuseName: Abuse
RAbusePhone: +1-650-319-8930
RAbuseEmail: abuse@cloudflare.com
RAbuseRef: https://whois.arin.net/rest/poc/ABUSE2916-ARIN

RTechHandle: ADMIN2521-ARIN
RTechName: Admin
RTechPhone: +1-650-319-8930
RTechEmail: admin@cloudflare.com
RTechRef: https://whois.arin.net/rest/poc/ADMIN2521-ARIN
DNS records

name class type data time to live
escortpolice.com IN HINFO
CPU: ANY obsoleted
OS: See draft-ietf-dnsop-refuse-any
3789s (01:03:09)
escortpolice.com IN NS matt.ns.cloudflare.com 86400s (1.00:00:00)
escortpolice.com IN NS vita.ns.cloudflare.com 86400s (1.00:00:00)
14.149.27.104.in-addr.arpa IN HINFO
CPU: ANY obsoleted
OS: See draft-ietf-dnsop-refuse-any
3789s (01:03:09)
e.0.4.9.b.1.8.6.0.0.0.0.0.0.0.0.1.0.0.0.8.4.0.2.0.0.b.c.0.0.4.2.ip6.arpa IN HINFO
CPU: ANY obsoleted
OS: See draft-ietf-dnsop-refuse-any
3789s (01:03:09)
0.0.b.c.0.0.4.2.ip6.arpa IN NS chloe.ns.cloudflare.com 73385s (20:23:05)
0.0.b.c.0.0.4.2.ip6.arpa IN NS scott.ns.cloudflare.com 73385s (20:23:05)
— end —
URL for this output | return to CentralOps.net, a service of Hexillion


Queried whois.internic.net with “dom Bustedescorts.com”…

Domain Name: BUSTEDESCORTS.COM
Registry Domain ID: 2043924716_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.enom.com
Registrar URL: http://www.enom.com
Updated Date: 2017-06-29T07:21:33Z
Creation Date: 2016-07-18T09:07:41Z
Registry Expiry Date: 2019-07-18T09:07:41Z
Registrar: eNom, Inc.
Registrar IANA ID: 48
Registrar Abuse Contact Email:
Registrar Abuse Contact Phone:
Domain Status: clientTransferProhibited

Name Server: MATT.NS.CLOUDFLARE.COM
Name Server: VITA.NS.CLOUDFLARE.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form:
>>> Last update of whois database: 2017-08-20T21:22:59Z
Last update of WHOIS database: 2016-07-18T02:07:41.00Z <<<

NORTH AMERICA MEGA SWEEPSTAKES

These scams keep evolving and changing names. Reports online suggest that most sweepstakes scams originate out of Jamaica and target elderly Americans.

NORTH AMERICA MEGA SWEEPSTAKES

The D.A.’s office has announced a fraud alert
Posted on May 09, 2013
The D.A.’s office has announced a fraud alert. In a press release, a scam was detailed after being brought to light by a Lawrence County resident. In the scam known as “American Mega-Million Lottery Sweepstakes,” victims are informed that they are winners of 250 thousand dollars.

A check for several thousand dollars in enclosed. The victim is then instructed to contact a claims manager who in-turn asks a number of questions about banking information in hopes of accessing the account.

The District Attorney’s office is asking that anyone with information or anyone contacted about the scam call their office at 762-7777.
http://www.wdxe.com/wdxe.php?rfc=narticle.php&id=20551

Opti-Loss Garcinia Weight Loss

scamFRAUDalert see it appropriate to issue this ALERT regarding Opti-Loss Garcinia Weight Loss business practices based on the pattern of complaints we are witnessing online.

The gist of the complaints is that consumers’ purchased the product on the 14 days trial period and when they elected not to continue prior to expiration of the trial period, they we told that they could not terminate the agreement. Instead their credit cards we billed for two orders.
Opti_Loss Garcina.png

Sweepstakes Audit Bureau

scamFRAUDalert see it appropriate to issue this ALERT as consumers are being contacted via mail informing them they have won upward of $12,000,000.00 and needed to send $5.00 payment for processing fees.

These scams have been in circulation for the longest and they continue to because we are all gullible or suckers.

The Better Business Bureau have identified Sweepstakes Audit Bureau to be associated Emerson Publishing, Inc. of Dallas, TX. The business goes by several other names

  1. Sweepstakes Audit Bureau
  2. Sweepstakes Advisor
  3. Sweepstakes Advisory Newsletter

Please do not fall for these scams

CapitalOne ~ (800)-903-3637/800-903-3637

scamFRAUDalert see it appropriate to issue this ALERT as consumers are being contacted by scammers claiming that they have bee pre-approved for CapitalOne creditcard. These scams are dime a dozen and as one get spotted, another surface.CapitalOne.PNG

Below are some of the phone numbers we’ve identified.

  1. (800)-903-3637
  2. (844) 822-5696
  3. (440) 236-6385
  4. (440) 570-3830
  5. 888-740-4856

 

WhoIs ztomy.com – Spam Operator

scamFRAUDalert see it appropriate to issue this ALERT that the operator of the domain is a bot master whose business practices includes spamming, malware distribution, urls hijacking, etc. etc. etc.ztomy_serverscreen shot2
The following A records are set to 208.91.196.4:

  1. advforward.com
  2. amitaz.com
  3. buypremiumdeals.com
  4. cdn-images.com
  5. cnomy.com
  6. completefwd.com
  7. discovereddeals.com
  8. dmnfwd.com
  9. domainfwd.com
  10. domainfwding.com
  11. fastdomainfwd.com
  12. findcrazydeals.com
  13. findfreshdeals.com
  14. freeresultsguide.com
  15. freesearchresults.com
  16. globaldomainfwd.com
  17. globalizedsearch.com
  18. globalsearchdirect.com
  19. internetmadesecure.com
  20. keywordqueryresults.com
  21. malkm.com
  22. mypageresults.com
  23. mysearchcentral.com
  24. namefwd.com
  25. newsearchstation.com
  26. ns1004.ztomy.com
  27. onlinefastsearch.com
  28. pagequeryresults.com
  29. quickfwd.com
  30. rediscoversearch.com
  31. resultfwding.com
  32. sdomainparking.com
  33. searchacross.com
  34. searchdirectresults.com
  35. searchdiscovered.com
  36. searchedforward.com
  37. searchedresults.com
  38. searchedreveal.com
  39. searcheduncovered.com
  40. searchesexplored.com
  41. searchesinteractive.com
  42. searchesinvent.com
  43. searchesresult.com
  44. searchharbor.com
  45. searchhotspot.com
  46. searchignited.com
  47. searchingexplore.com
  48. searchingmagnified.com
  49. searchinguncovered.com
  50. searchinvented.com
  51. searchmagnified.com
  52. searchmagnitude.com
  53. searchmeaningful.com
  54. searchqueryresults.com
  55. searchrediscovered.com
  56. searchreinvented.com
  57. searchremagnified.com
  58. searchresultsguide.com
  59. searchtargeted.com
  60. searchtermresults.com
  61. sendfwd.com
  62. sitequeryresults.com
  63. smartseekerz.com
  64. targetedinfo.com
  65. targetedlistings.net
  66. targetedtopic.com
  67. thegreatestsearch.com
  68. theusefulsearch.com
  69. universalfwd.com
  70. usinternetsearch.com
  71. virlz.com
  72. webqueryresults.com
  73. ztomy.com *******************
  74. Name Servers: NS1642.ZTOMY.COM
  75. Name Servers: NS2642.ZTOMY.COM

Address lookup
canonical name: ztomy.com
aliases
addresses:208.91.196.4
Domain Whois record

Queried whois.internic.net with “dom ztomy.com

Domain Name: ZTOMY.COM
Registry Domain ID: 1339021575_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.PublicDomainRegistry.com
Registrar URL: http://www.publicdomainregistry.com
Updated Date: 2016-10-28T14:14:47Z
Creation Date: 2007-11-22T13:14:45Z
Registry Expiry Date: 2017-11-22T13:14:45Z
Registrar: PDR Ltd. d/b/a PublicDomainRegistry.com
Registrar IANA ID: 303
Registrar Abuse Contact Email: abuse-contact@publicdomainregistry.com

Registrar Abuse Contact Phone: +1.2013775952
Domain Status: clientTransferProhibited
Name Server: NS1-106.AKAM.NET
Name Server: NS1-109.AKAM.NET
Name Server: USC4.AKAM.NET
Name Server: USC5.AKAM.NET
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint

>>> Last update of whois database: 2017-08-11T23:10:08Z <<>> Last update of WHOIS database: 2017-08-11T23:10:23Z <<<

Network Whois record

Queried whois.arin.net with "n 208.91.196.4"…

NetRange: 208.91.196.0 – 208.91.197.255
CIDR: 208.91.196.0/23
NetName: CONFLUENCE-NETWORK-INC
NetHandle: NET-208-91-196-0-1
Parent: NET208 (NET-208-0-0-0-0)
NetType: Direct Allocation
OriginAS: AS40034
Organization: Confluence Networks Inc (CN)
RegDate: 2011-04-15
Updated: 2015-11-23
Ref: https://whois.arin.net/rest/net/NET-208-91-196-0-1

OrgName: Confluence Networks Inc
OrgId: CN
Address: 3rd Floor, J & C Building, P.O. Box 362
City: Road Town
StateProv: Tortola
PostalCode: VG1110
Country: VG
RegDate: 2011-04-07
Updated: 2017-03-29
Ref: https://whois.arin.net/rest/org/CN

OrgAbuseHandle: ABUSE3065-ARIN
OrgAbuseName: Abuse Admin
OrgAbusePhone: +1-415-449-4704
OrgAbuseEmail: abuse@confluence-networks.com
OrgAbuseRef: https://whois.arin.net/rest/poc/ABUSE3065-ARIN

OrgTechHandle: TECHA29-ARIN
OrgTechName: Tech Admin
OrgTechPhone: +1-415-358-0891
OrgTechEmail: noc@confluence-networks.com
OrgTechRef: https://whois.arin.net/rest/poc/TECHA29-ARIN

OrgNOCHandle: NOCAD51-ARIN
OrgNOCName: NOC Admin
OrgNOCPhone: +1-415-358-0891
OrgNOCEmail: noc@confluence-networks.com
OrgNOCRef: https://whois.arin.net/rest/poc/NOCAD51-ARIN

DNS records

DNS query for 4.196.91.208.in-addr.arpa returned an error from the server: ServerFailure
name class type data time to live
ztomy.com IN TXT v=spf1 -all 86400s (1.00:00:00)
ztomy.com IN NS ns1-106.akam.net 86400s (1.00:00:00)
ztomy.com IN NS ns1-109.akam.net 86400s (1.00:00:00)
ztomy.com IN NS usc4.akam.net 86400s (1.00:00:00)
ztomy.com IN SOA
server: usc4.akam.net
email: abuse@opticaljungle.com
serial: 2015082928
refresh: 43200
retry: 3600
expire: 1209600
minimum ttl: 180
86400s (1.00:00:00)
ztomy.com IN A 208.91.196.4 300s (00:05:00)

— end —
URL for this output | return to CentralOps.net, a service of Hexillion

pa7ape8ubaby

Facebook Online Award Promo

scamFRAUDalert see it appropriate to issue this ALERT as scammers are out there facebook_impersonating facebook friends contact.  Be on your guard and be wary of friends contact on facebook.com.

There are many variations of these scams. Some of the names are listed below.

  1. Facebook International Lottery
  2. Facebook Online Award Promo
  3. facebook international lottery promotion
  4. facebook international lottery award
  5. facebook international lottery program
  6. facebook international lottery Winnings
  7. facebook lottery Winnings
  8. facebook international lottery winners
  9. facebook international lottery award
  10. facebook international lottery agent