Hosting botmasterlabs.org / botmasterlabs.net spam/phish operation (DNS)

Spamming & phishing tools and systems:

;; QUESTION SECTION:
;botmasterlabs.org. IN NS

;; ANSWER SECTION:
botmasterlabs.org. 1799 IN NS freedns1.registrar-servers.com. 45.58.122.82
botmasterlabs.org. 1799 IN NS freedns2.registrar-servers.com.
botmasterlabs.org. 1799 IN NS freedns3.registrar-servers.com.
botmasterlabs.org. 1799 IN NS freedns4.registrar-servers.com.
botmasterlabs.org. 1799 IN NS freedns5.registrar-servers.com.

_____________

Was:

botmasterlabs.org. 899 IN A 95.165.28.86

;; QUESTION SECTION:
;botmasterlabs.org. IN NS

;; ANSWER SECTION:
botmasterlabs.org. 21599 IN NS ns1.1984.is.
botmasterlabs.org. 21599 IN NS ns2.1984.is.
botmasterlabs.org. 21599 IN NS ns1.1984hosting.com.
botmasterlabs.org. 21599 IN NS ns0.1984.is.
botmasterlabs.org. 21599 IN NS ns2.1984hosting.com.

botmasterlabs.net. 3599 IN A 95.84.156.217

;; QUESTION SECTION:
;botmasterlabs.net. IN NS

;; ANSWER SECTION:
botmasterlabs.net. 21599 IN NS ns1.luadns.net.
botmasterlabs.net. 21599 IN NS ns2.luadns.net.
botmasterlabs.net. 21599 IN NS ns3.luadns.net.
botmasterlabs.net. 21599 IN NS ns4.luadns.net.

____________________

Was:

botmasterlabs.org. 899 IN A 95.165.28.86

botmasterlabs.net. 3599 IN A 95.84.156.217
____________________

Was

botmasterru.com. 299 IN A 82.199.101.6
ns2.botmasterru.com. 299 IN A 82.199.101.6

botmasterlabs.org. 899 IN A 193.111.235.25

botmasterlabs.net. 3599 IN A 95.84.156.217
____________________

Was:

botmasterru.com. 599 IN A 46.173.214.126
ns2.botmasterru.com. 599 IN A 46.173.214.126

botmasterlabs.org. 899 IN A 217.144.106.142

____________________

Was:
botmasterru.com. 599 IN A 46.173.218.119
____________________

Was:
botmasterru.com. 599 IN A 46.173.218.92

____________________

Was:

botmasterru.com. 599 IN A 8.208.90.91
____________________

Was:

botmasterru.com. 599 IN A 47.254.173.121

2020-11-23 14:14:04 checksign-portal.com A 47.254.173.121
2020-11-16 09:58:41 einloggen-idcheck.com A 47.254.173.121
2020-12-08 17:51:35 einloggen-mailcheck.com A 47.254.173.121
2020-11-21 13:37:38 finanzportal-logcheck.com A 47.254.173.121
2020-11-17 19:07:59 idcheck-register.com A 47.254.173.121
2020-11-17 20:14:18 kontocenter-spklog-interface.com A 47.254.173.121
2020-11-29 23:42:11 kontoservice-vr-hilfecenter.com A 47.254.173.121
2020-12-12 05:00:31 mobilecheck-vrid.com A 47.254.173.121
2020-12-10 05:03:37 passwort-check-ionos.com A 47.254.173.121
2020-12-13 19:48:09 privatkunden-logincheck.com A 47.254.173.121
2020-11-26 00:18:42 servicecenter-vronline.com A 47.254.173.121
2020-12-14 19:21:05 signin-ap-loginzentrale.com A 47.254.173.121
2020-12-11 09:00:58 usercheck-identify.com A 47.254.173.121

dns2.botmasterlabs.net. 3599 IN A 95.84.156.217

__________

Was:
botmasterru.com. 599 IN A 8.210.217.157
dns2.botmasterlabs.net. 599 IN A 8.210.217.157

2020-12-10 10:49:26 lockbit-decryptor.top botmasterru.com. 599 IN A
__________

Was:
botmasterru.com. 599 IN A 8.208.101.41

2020-12-11 10:08:47 botmasterlabs.net A 8.208.101.41
2020-12-08 08:46:39 com-signin-encoding-utf8-ignore-authstate.bar A 8.208.101.41
2020-12-10 13:10:54 dns2.botmasterlabs.net A 8.208.101.41
2020-12-12 07:34:06 ns2.botmasterru.com
__________

Was:
botmasterru.com. 59 IN A 95.165.145.236

2020-11-25 14:24:26 botmasterlabs.net A 95.165.145.236
2020-11-24 15:15:12 dns1.botmasterlabs.net A 95.165.145.236
2020-11-25 01:27:51 ns2.botmasterru.com A 95.165.145.236

__________

Was:

botmasterru.com. 59 IN A 89.179.243.81

__________

Was:

botmasterru.com. 21599 IN A 78.107.248.40
2020-01-19 09:25:40 botmasterlabs.net A 78.107.248.40
2020-01-15 06:23:03 botmasterlabs.org A 78.107.248.40
2019-11-05 12:44:01 botmasterru.com A 78.107.248.40
2019-11-01 14:56:54 dns2.botmasterlabs.net A 78.107.248.40
2019-11-04 06:05:09 ns1.botmasterru.com A 78.107.248.40
2020-08-05 04:29:06 www.botmasterlabs.net A 78.107.248.40

botmasterlabs.net. 21599 IN A 95.165.145.236

botmaster.net. 3599 IN A 82.199.101.248
botmasterlabs.info. 21599 IN A 82.199.101.248

__________

Was:

botmasterlabs.net. 21599 IN A 78.107.250.168
botmasterru.com. 21599 IN A 78.107.250.168
dns1.botmasterlabs.net. 21599 IN A 78.107.250.168

botmaster.net. 3599 IN A 82.199.101.248

____________

Was:

2020-01-03 12:43:22 botmaster.net A 82.199.101.248
2019-11-12 00:47:33 botmasterlabs.info A 82.199.101.248
2019-11-01 14:56:56 botmasterlabs.net A 82.199.101.248
2019-12-19 20:40:10 botmasterru.com A 82.199.101.248
2019-11-01 14:56:54 dns1.botmasterlabs.net A 82.199.101.248

_______

2020-11-20

2020-10-23 12:37:47 botmasterlabs.net A 78.107.250.168
2020-11-18 11:06:49 botmasterru.com A 78.107.250.168
2020-10-23 12:37:47 dns1.botmasterlabs.net A 78.107.250.168
2020-10-22 16:26:51 ns2.botmasterru.com A 78.107.250.168

—————————

2018-12-14 16:53:34 botmasterlabs.info A 82.199.101.248
2018-11-04 23:55:38 botmasterlabs.net A 82.199.101.248
2018-11-28 17:48:56 botmasterlabs.pro A 82.199.101.248
2018-11-04 23:55:38 dns1.botmasterlabs.net A 82.199.101.248
2018-11-04 23:55:38 dns2.botmasterlabs.net A 82.199.101.248
2018-11-01 21:09:09 ns1.botmasterru.com A 82.199.101.248
2019-01-06 19:49:09 ns2.botmasterru.com A 82.199.101.248

_________

Was:

;botmasterlabs.net. IN ANY

;; ANSWER SECTION:
botmasterlabs.net. 38400 IN A 82.199.101.138
botmasterlabs.net. 38400 IN SOA dns1.botmasterlabs.net.botmasterlabs.net. webmaster.botmasterlabs.net. 1055026205 21600 3600 432000 1200
botmasterlabs.net. 38400 IN NS dns1.botmasterlabs.net.
botmasterlabs.net. 38400 IN NS dns2.botmasterlabs.net.

82.199.101.138
botmasterlabs.info
botmasterlabs.net
devtest.botmasterlabs.ru
dns1.botmasterlabs.net
dns2.botmasterlabs.net
dns2.botmasterru.com
ftp.botmasterlabs.info
ftp.botmasterlabs.ru
lorainecaryn.eu
marielroslyn.eu
ns2.botmasterru.com
ulrikaumekoshawna.eu
amber.xn--h1ahdayqtxu.xn--p1ai
www567.amber.xn--h1ahdayqtxu.xn--p1ai

____________

Was:

— Found authoritative nameserver: dns2.botmasterlabs.net
— contacting nameserver: dns2.botmasterlabs.net [89.179.245.223]

botmasterlabs.net SOA
origin = dns1.botmasterlabs.net.botmasterlabs.net
mail addr = webmaster@botmasterlabs.net
serial = 1055026205
refresh = 21600 (6 hours)
retry = 3600 (1 hour)
expire = 432000 (5 days)
minimum ttl = 1200 (20 mins)
botmasterlabs.net A 78.107.252.174
dns1.botmasterlabs.net A 78.107.252.174
dns2.botmasterlabs.net A 89.179.245.223
botmasterlabs.net NS dns1.botmasterlabs.net
botmasterlabs.net NS dns2.botmasterlabs.net

— DNS Lookup completed

_________

Was:

— Found authoritative nameserver: dns147.ffv2.ru
— contacting nameserver: dns147.ffv2.ru [182.254.226.215]

botmasterlabs.net SOA
origin = botmasterlabs.net
mail addr = root@botmasterlabs.net
serial = 2014093014
refresh = 10800 (3 hours)
retry = 60 (1 min)
expire = 604800 (7 days)
minimum ttl = 86400 ()
botmasterlabs.net NS dns146.ffv2.ru
botmasterlabs.net NS dns147.ffv2.ru
botmasterlabs.net A 182.254.226.215
botmasterlabs.net A 14.136.236.179

— DNS Lookup completed

________

Was:

— Found authoritative nameserver: dns147.ffv2.ru
— contacting nameserver: dns147.ffv2.ru [149.210.169.187]

botmasterlabs.net SOA
origin = botmasterlabs.net
mail addr = root@botmasterlabs.net
serial = 2014092018
refresh = 10800 (3 hours)
retry = 60 (1 min)
expire = 604800 (7 days)
minimum ttl = 86400 ()
botmasterlabs.net NS dns147.ffv2.ru
botmasterlabs.net NS dns146.ffv2.ru
botmasterlabs.net A 149.210.169.187
botmasterlabs.net A 216.170.113.222
botmasterlabs.net A 91.223.89.212

— DNS Lookup completed

___________________

— Found authoritative nameserver: eva.ns.cloudflare.com
— contacting nameserver: eva.ns.cloudflare.com [173.245.58.114]

botmasterlabs.com SOA
origin = eva.ns.cloudflare.com
mail addr = dns@cloudflare.com
serial = 2015812659
refresh = 10000 (2 hours 46 mins 40 secs)
retry = 2400 (40 mins)
expire = 604800 (7 days)
minimum ttl = 3600 (1 hour)
botmasterlabs.com A 104.28.16.41
botmasterlabs.com A 104.28.17.41
dc-c5977bc0.botmasterlabs.com A 69.93.67.26
botmasterlabs.com MX 0 dc-c5977bc0.botmasterlabs.com
botmasterlabs.com text = v=spf1 a mx include:websitewelcome.com ~all.botmasterlabs.com
botmasterlabs.com NS eva.ns.cloudflare.com
botmasterlabs.com NS jake.ns.cloudflare.com

— DNS Lookup completed

%rwhois V-1.5:003fff:00 rwhois.softlayer.com (by Network Solutions, Inc. V-1.5.9.5)
network:Class-Name:network
network:ID:NETBLK-THEPLANET-BLK-9
network:Auth-Area:69.93.0.0/16
network:Network-Name:TPIS-BLK-69-93-67-0
network:IP-Network:69.93.67.0/27
network:IP-Network-Block:69.93.67.0 — 69.93.67.31
network:Organization;I:A Small Orange LLC
network:Street-Address:N/A
network:City:Durham
network:State:NC
network:Postal-Code:27701
network:Country-Code:USA
network:Tech-Contact;I:abuse@theplanet.com
network:Admin-Contact;I:abuse@theplanet.com
network:Created:20031224
network:Updated:20130523

__________

Was:

— Found authoritative nameserver: ns1.imena.com.ua
— contacting nameserver: ns1.imena.com.ua [195.39.196.43]

botmasterlabs.net SOA
origin = ns1.imena.com.ua
mail addr = hostmaster@imena.com.ua
serial = 2014091501
refresh = 14400 (4 hours)
retry = 7200 (2 hours)
expire = 604800 (7 days)
minimum ttl = 3600 (1 hour)
botmasterlabs.net NS ns3.imena.com.ua
botmasterlabs.net NS ns1.imena.com.ua
botmasterlabs.net NS ns2.imena.com.ua
botmasterlabs.net MX 10 mail.imena.com.ua
botmasterlabs.net A 46.244.10.253
ns1.imena.com.ua A 195.39.196.43
ns2.imena.com.ua A 5.9.197.88
ns3.imena.com.ua A 88.81.249.200
mail.imena.com.ua A 89.184.64.124

— DNS Lookup completed

__________

Was:

— Found authoritative nameserver: ns3.imena.com.ua
— contacting nameserver: ns3.imena.com.ua [88.81.249.200]

botmasterlabs.net SOA
origin = ns1.imena.com.ua
mail addr = hostmaster@imena.com.ua
serial = 2014082301
refresh = 14400 (4 hours)
retry = 7200 (2 hours)
expire = 604800 (7 days)
minimum ttl = 3600 (1 hour)
botmasterlabs.net A 176.102.34.170
botmasterlabs.net MX 10 mail.imena.com.ua
botmasterlabs.net NS ns2.imena.com.ua
botmasterlabs.net NS ns1.imena.com.ua
botmasterlabs.net NS ns3.imena.com.ua
mail.imena.com.ua A 89.184.64.124
ns1.imena.com.ua A 195.39.196.43
ns1.imena.com.uans2.imena.com.ua A 5.9.197.88
ns2.imena.com.uans3.imena.com.ua A 88.81.249.200
ns3.imena.com.ua
— DNS Lookup completed

____________

Was:

[78.110.165.226]
botmasterlabs.net
dns146.ffv2.ru
dns147.ffv2.ru

— Found authoritative nameserver: dns147.ffv2.ru
— contacting nameserver: dns147.ffv2.ru [78.110.165.226]

botmasterlabs.net SOA
origin = botmasterlabs.net
mail addr = root@botmasterlabs.net
serial = 2014082301
refresh = 10800 (3 hours)
retry = 60 (1 min)
expire = 604800 (7 days)
minimum ttl = 86400 ()
botmasterlabs.net NS dns146.ffv2.ru
botmasterlabs.net NS dns147.ffv2.ru
botmasterlabs.net A 78.110.165.226

— DNS Lookup completed

__________________________

Was:
[89.46.101.183]
botmasterlabs.net
analytic-port2.ru

— Found authoritative nameserver: dns133.ffv2.ru
— contacting nameserver: dns133.ffv2.ru [173.208.190.236]

botmasterlabs.net SOA
origin = botmasterlabs.net
mail addr = root@botmasterlabs.net
serial = 2014080117
refresh = 10800 (3 hours)
retry = 60 (1 min)
expire = 604800 (7 days)
minimum ttl = 86400 ()
botmasterlabs.net NS dns133.ffv2.ru
botmasterlabs.net NS dns132.ffv2.ru
botmasterlabs.net A 192.155.97.15
botmasterlabs.net A 173.208.190.236

— DNS Lookup completed

____________

Domain Name: BOTMASTERLABS.NET
Registrar: INTERNET INVEST, LTD. DBA IMENA.UA
Whois Server: whois.imena.ua
Referral URL: http://www.imena.ua
Name Server: NS1.YUQUA.COM
Name Server: NS2.YUQUA.COM
Status: clientTransferProhibited
Updated Date: 11-jun-2014
Creation Date: 06-dec-2010
Expiration Date: 06-dec-2016

Domain Name: BOTMASTERLABS.NET
Registry Domain ID:
Registrar WHOIS Server: whois.imena.ua
Registrar URL: http://imena.ua
Updated Date: 23-May-2014
Creation Date: 06-Dec-2010
Registrar Registration Expiration Date: 06-Dec-2016
Registrar: Internet Invest, Ltd. dba Imena.ua
Registrar IANA ID: 1112
Registrar Abuse Contact Email: hostmaster@imena.ua
Registrar Abuse Contact Phone: +380.442010102
Domain Status: clientTransferProhibited
Registry Registrant ID: DI_14171185
Registrant Name: Whois privacy protection service
Registrant Organization: Internet Invest, Ltd. dba Imena.ua
Registrant Street: Gaidara, 50 st.
Registrant City: Kyiv
Registrant State/Province:
Registrant Postal Code: 01033
Registrant Country: UA
Registrant Phone: +380.442010102
Registrant Phone Ext:
Registrant Fax: +380.442010100
Registrant Fax Ext:
Registrant Email: hostmaster@imena.ua
Registry Admin ID: DI_14171185
Admin Name: Whois privacy protection service
Admin Organization: Internet Invest, Ltd. dba Imena.ua
Admin Street: Gaidara, 50 st.
Admin City: Kyiv
Admin State/Province:
Admin Postal Code: 01033
Admin Country: UA
Admin Phone: +380.442010102
Admin Phone Ext:
Admin Fax: +380.442010100
Admin Fax Ext:
Admin Email: hostmaster@imena.ua
Registry Tech ID: DI_14171185
Tech Name: Whois privacy protection service
Tech Organization: Internet Invest, Ltd. dba Imena.ua
Tech Street: Gaidara, 50 st.
Tech City: Kyiv
Tech State/Province:
Tech Postal Code: 01033
Tech Country: UA
Tech Phone: +380.442010102
Tech Phone Ext:
Tech Fax: +380.442010100
Tech Fax Ext:
Tech Email: hostmaster@imena.ua
Name Server: ns1.yuqua.com
Name Server: ns2.yuqua.com

Server Name: NS1.YUQUA.COM
IP Address: 173.232.104.143

__________

Sales department:
Email:
En@BLSupport.net
Email-2:
sales.botmasterlabs@gmail.com
ICQ:
111892
Skype:
Botmaster.net
Support:
Email:
En@BLSupport.net
ICQ:
111892
Jabber:
botmaster@jabber.org
Skype:
Botmaster.net
Administration:
Email:
botmaster@bk.ru
____________________

Domain Name: BLSUPPORT.NET
Registrar: LLC «REGISTRAR OF DOMAIN NAMES REG.RU»
Whois Server: whois.reg.ru
Referral URL: http://www.reg.ru
Name Server: NS1.REG.RU
Name Server: NS2.REG.RU
Status: clientTransferProhibited
Updated Date: 02-dec-2013
Creation Date: 02-dec-2013
Expiration Date: 02-dec-2014

Domain name: blsupport.net
Domain idn name: blsupport.net
Registry Domain ID:
Registrar WHOIS Server: whois.reg.ru
Registrar URL: https://www.reg.com/
Registrar URL: https://www.reg.ru/
Registrar URL: https://www.reg.ua/
Updated Date: 2013-12-02
Creation Date: 2013-12-02T11:43:55Z
Registrar Registration Expiration Date: 2014-12-02
Registrar: Domain names registrar REG.RU LLC
Registrar IANA ID: 1606
Registrar Abuse Contact Email: abuse@reg.ru
Registrar Abuse Contact Phone: +7.4955801111
Registry Registrant ID:
Registrant Name: Domain Admin
Registrant Organization: PrivacyProtect.org
Registrant Street: All Postal Mails Rejected, visit Privacyprotect.org
Registrant City: Nobby Beach
Registrant State/Province: Queensland
Registrant Postal Code: QLD 4218
Registrant Country: AU
Registrant Phone: +45.36946676
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: contact@privacyprotect.org
Registry Admin ID:
Admin Name: Domain Admin
Admin Organization: PrivacyProtect.org
Admin Street: All Postal Mails Rejected, visit Privacyprotect.org
Admin City: Nobby Beach
Admin State/Province: Queensland
Admin Postal Code: QLD 4218
Admin Country: AU
Admin Phone: +45.36946676
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: contact@privacyprotect.org
Registry Tech ID:
Tech Name: Domain Admin
Tech Organization: PrivacyProtect.org
Tech Street: All Postal Mails Rejected, visit Privacyprotect.org
Tech City: Nobby Beach
Tech State/Province: Queensland
Tech Postal Code: QLD 4218
Tech Country: AU
Tech Phone: +45.36946676
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: contact@privacyprotect.org
Name Server: ns1.reg.ru
Name Server: ns2.reg.ru
_________________

First Name Виктор
Last Name Сергеев
Company Name None
Email Address vityusha.sergeev.62@mail.ru
Address 1 ул. Нерченская 17 кв. 166
Address 2
City Владивосток
State/Region Россия
Postcode 690100
Country RU — Russian Federation
Phone Number 79242364452

ns1.ffv2.ru 109.120.166.140
ns2.ffv2.ru 23.94.244.232
__________

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *