[prev in list] [next in list] [prev in thread] [next in thread]
List: bleeding-sigs
Subject: [Bleeding-sigs] RBN Networks DNS
From: Jim McQuaid <jim () jamesmcquaid ! com>
Date: 2007-10-30 11:20:44
Message-ID: 370053.68732.qm () web56010 ! mail ! re3 ! yahoo ! com
[Download RAW message or body]
Early on, the designers of RBN Networks' Internet
presence made a conscious decision to logically
separate IP network infrastructures from DNS
infrastructures.
In establishing a "carbon copy" DNS infrastructure,
RBN Networks has sought to ensure the availability of
their malicious web sites in the event that any one,
or even most, of their DNS servers were lost. As long
as they controlled one functional DNS server, they
could ensure the visibility of their web sites. This
is true because the domain name system is predicated
upon unverified replication. RBN's designers,
however, took this further. Recognizing that the DNS
system did not explicitly differentiate one type of
server from another, they sought to provide for the
dual resolution of web and mail servers in response to
a single request.
In DNS, a CNAME record maps an alias to its canonical
name. The name server handles CNAME records in a
different manner than aliases are handled in the hosts
table. When a name server looks up a name and finds a
CNAME record, it replaces the name with the canonical
name and looks up the new name. When a name server
looks up nevacon.net, it finds a CNAME record pointing
to mail.g3nius.net. mail.g3nius.net is then looked
up, and both addresses (nevacon.net and
mail.g3nius.net) are returned. This was important to
their business model because so much malware was
delivered via email.
In a sense, RBN Networks developed the prototype of
the "revolving DNS" fast flux network which afflicts
MySpace and the like to this day.
How is The Planet involved with RBN Networks?
coolservecorp.net, g3nius.net and afraid.org have
hosting space there. RBN’s servers are operating with
apparent impunity from within the U.S. Markus asked
for a more precise list of IP as related to The
Planet. I do believe that there is more evil
contained within 67.18.0.0/15 than what I have listed
below, but I have more to do on this:
58.65.233.0/24
58.65.239.66/31
62.140.208.131/32
62.140.208.197/32
62.154.15.154/32
65.99.192.0/20
65.254.48.0/20
66.232.96.0/19
66.252.0.0/19
66.252.1.255/32
67.18.179.15/32
67.19.24.168/32
67.19.24.169/32
67.19.24.170/32
67.19.24.171/32
67.19.24.172/32
67.19.24.173/32
67.19.24.174/32
67.19.24.175/32
67.19.72.205/32
67.19.72.206/32
67.137.217.219/32
69.50.160.0/19
72.10.164.69/32
72.20.205.134/32
80.70.239.253/32
81.94.16.0/20
81.95.128.0/19
84.45.24.53/32
84.45.47.130/32
84.45.90.141/32
85.133.4.138/32
85.249.23.0/24
88.201.208.0/20
89.149.186.77/32
89.149.186.81/32
89.149.186.89/32
193.93.232.6/32
193.93.235.5/32
194.146.204.0/22
194.226.64.0/20
194.226.96.0/24
195.114.16.0/23
195.64.140.0/23
195.64.162.0/23
195.66.226.151/32
208.72.160.0/20
213.200.78.66/32
213.200.79.194/32
213.200.80.46/32
217.118.119.26/32
The DNS data follows. It should lend more information
if further analyzed:
************
NEVACON:
nevacon.net A 127.0.0.1 localhost
NS ns1.nevacon.net 194.146.204.3 194.146.204.0/22
NEVACON LTD 41731 NEVSKCC AS NEVACON LTD
arpa-ns1.nevacon.net
ns1.nevacon.net
NS ns2.nevacon.net 194.146.205.5 194.146.204.0/22
NEVACON LTD 41731 NEVSKCC AS NEVACON LTD
arpa-ns2.nevacon.net
ns2.nevacon.net
MX mail.nevacon.net 194.146.204.2 194.146.204.0/22
NEVACON LTD 41731 NEVSKCC AS NEVACON LTD
mail.nevacon.net
hostnames sharing ip with a-records:
abemark.com
amicalifesucks.biz
amicalifesucks.com
amicalifesucks.info
amicasucks.biz
amicasucks.info
antispam.sugababes.nl
aw11.org
awi-water.com
azn.nl
betoz.org
bisner-bank.net
blackhole.ukr.net
boehde.net
boilerhoops.com
boumanenlangelaar.nl
boun.se
celox.nl
ch-jt.com
clarkstownpd.com
constructionsuper.com
contestix.com
dc.sint.pl
deagdns.co.uk
derdangoor.com
devnull.bluedns.nl
dgibb.com
drschollssandals.com
ehealthinsurancedirect.com
elanticorp.com
eprlon.com
fcvirginias.com
feigelman.com
fqdn.nl
frisno.com
g3nius.net
helel.net
ich.habe.keinen.mailserver.abc-admin.de
inaddr.intergenia.de
innoventivepartners.com
irc.g3nius.net
ircd.bsd.org
lepelaars.com
letsfrag.com
localhost
localhost.cs.kiev.ua
localhost.denic.de
localhost.free.net
localhost.freo.com
localhost.rabobank.fr
localhost.rabobank.info
localhost.rabobank.se
localhost.ri-si.com
localhost.tf-md.net
localhost.ua.net
londonfogluggage.com
loopback.domainsatcost.ca
loopback.internic.ca
loopback.merant.com
loopback.pacificedge.com
loopback.rfc1035.com
mail.apprentice.com
mail.edu.com
mail.vestide.info
mail.woonbedrijf-sre.net
mail.woonbedrijf-swshhvl.com
mail.woonbedrijf-swshhvl.info
mail.woonbedrijf-swshhvl.org
mail.woonbedrijfsre.info
mail.woonbedrijfswshhvl.com
mail.woonbedrijfswshhvl.info
mail.woonbedrijfswshhvl.net
mail.xplizit.be
mail.you.com
maildump.bitic.nl
marijuanadefenselawyer.com
mccabe-petrucci.com
migdali.com
milanese.nl
navysoldier.com
ns4.de
omnisturk.com
pensioensectie.nl
pop.celox.nl
q1webdesign.nl
raboshop.net
routenullmx.bwng.com
sportpakket.com
umcn.nl
vestide.info
windermeresucks.com
woonbedrijf-sre.net
woonbedrijf-swshhvl.com
woonbedrijf-swshhvl.info
woonbedrijf-swshhvl.org
woonbedrijfsre.info
woonbedrijfswshhvl.com
woonbedrijfswshhvl.info
woonbedrijfswshhvl.net
xplizit.be
(only showing 100 results)
hostnames sharing ip indirectly via cnames:
mail.g3nius.net
domains using this as mailserver:
amarillo4sale.com
appraisser.com
arthurt.com
astalacista.net
birmningham.com
bolbg.com
brvoup.com
bytemagnet.com
ccchi.com
cerenaonline.com
chorony.com
christ-planet.com
climbforchrist.org
cmjmachining.com
cyanidemedicine.biz
darkroomcontinuance.com
datacablesystems.biz
dns10.denic.de
dns12.denic.de
dns13.denic.de
dns18.denic.de
dns3.denic.de
dns4.denic.de
dns5.denic.de
dns7.denic.de
dns8.denic.de
dns9.denic.de
drucker.crew-gmbh.de
dsbook.crew-gmbh.de
dspc.crew-gmbh.de
errormechanic.com
eskimofootwear.com
farbdrucker.crew-gmbh.de
ferventdevelopment.net
firstcoasttitle.com
globalconvergence.net
gwti.com
hollipc.crew-gmbh.de
ibdpublicrelations.com
icon-insight.com
indogoal.com
inthealthplacements.com
javarealm.com
jewish-education.com
karinpc.crew-gmbh.de
kijifonre.com
kocjancic.net
konacondorental.com
lawnm.com
lawvi.com
live11.com
m-pos.com
mail.icon-insight.com
mkpc.crew-gmbh.de
mrchamp.com
mu-pms.com
netuser.com
nic.org.lu
node03.irz42.net
nofashionrecords.com
nospam.cmjmachining.com
ns.crew-gmbh.de
ns.snarked.org
ns1.indogoal.com
ns1.m-pos.com
ns1.wuzzup.com
p-dns.irz42.net
pactechprod.com
particularcuba.com
pointer-h.crew-gmbh.de
pointer-h.irz42.net
pointer-li-h.irz42.net
qs.crew-gmbh.de
realisticideas.com
roundrecorders.com
router-s.irz42.net
s-dns.irz42.net
sanctuarycamp.org
shaymen.com
sierrasoap.com
smtp.cmjmachining.com
thwmacbookpro.crew-gmbh.de
thwnotebook.crew-gmbh.de
thwpc.crew-gmbh.de
toughworld.com
transsiberia.crew-gmbh.de
transsiberia.irz42.net
ultimasoftware.net
ups07.h.irz42.net
uwenotebook.crew-gmbh.de
videobeamerpc.crew-gmbh.de
vr0k.com.ar
websightdesigners.com
wgfootwear.com
wildflowerfootwear.com
wl-h-02.crew-gmbh.de
wl-h-03.crew-gmbh.de
wtn4air.com
www.crew-gmbh.de
www.crew-kg.de
(only showing 100 results)
domains using this as nameserver
0.in-addr.arpa
124.44.194.in-addr.arpa
127.in-addr.arpa
128-27.68.64.217.in-addr.arpa
135.103.66.in-addr.arpa
152.103.66.in-addr.arpa
160-27.40.246.213.in-addr.arpa
161.77.161.in-addr.arpa
217.66.in-addr.arpa
23.255.81.in-addr.arpa
232.87.212.in-addr.arpa
24.64.in-addr.arpa
255.in-addr.arpa
4.57.200.in-addr.arpa
40.235.209.in-addr.arpa
5.145.200.in-addr.arpa
8registro.com.br
adm.wp-sa.pl
ap.edu.pl
autosciencetech.com
autosciencetech.net
autosciencetech.org
biblioteca.unesp.br
bip.podlaskie.pl
boao.net
bsl.tg
carlmiller.net
casahospitalar.com.br
central-soft.co.jp
cgb.unesp.br
cid.ind.br
depotrestaurant.com
dev.wp-sa.pl
e-edukacja.pl
egov.re.kr
ejmdev.com
epmbog.com
estadiomaismoderno.com.br
ev.to
fgbc.net
gda.wp-sa.pl
gdmw.net
generations.hk.com
glau.kr.ua
highlands-autobody.com
hkwb.net
hnpg.net
insiderancho.net
iws.ne.jp
jfe-chem.com
jinfurong.net
karavan.170.20.217.in-addr.arpa
kinasinsaat.com
ktlab.jp
lckf.net
livetech.com.br
localhost
maiortorcidaparanaense.com.br
mar.be
medlynx.com.br
melhorctbrasileiro.com.br
mokasirs.net
mse-net.com
nrim.net
oabsaude.org.br
oba.org.br
obdclearinghouse.com
pactechprod.com
pagasa.dost.gov.ph
podlaskie.pl
rcc.ne.jp
rdm.com.br
registernet.com.br
rezkey.com
roesnet.com
royceybaby.net
sab-astro.org.br
safeguard.net
saolucas-se.com.br
saskyellowpages.com
sdes.tpc.edu.tw
sihota.net
smp-council.org.hk
soapmomma.com
spsnetwork.net
srv.wp-sa.pl
stephleahphotography.com
subnet32.206.62.64.in-addr.arpa
sun-painting.com
tariffinder.be
terjot.pl
truetech.info
um.olecko.pl
unicom.far.br
unicomdf.com.br
univ-lome.tg
waw.wp-sa.pl
wew.wp-sa.pl
wpas.net
wsjoe.czest.pl
(only showing 100 results)
domains sharing nameservers
204.146.194.in-addr.arpa
************
G3NIUS.NET
g3nius.net A 127.0.0.1 localhost
NS ns2.afraid.org 66.252.1.255 66.252.0.0/19 netblock
Proxy registered route object
23522 ASN GIGESERV GIGESERVERS ASN
ns2.afraid.org
NS ns1.afraid.org 67.19.72.206 67.18.0.0/15 ThePlanet
com Internet Services, Inc
21844 THEPLANET AS2 ThePlanet com Internet Services,
Inc
ns1.afraid.org
NS ns3.afraid.org 72.20.25.134 72.20.0.0/19 Staminus
Communications
25761 Staminus Staminus Communications, Fullerton CA
ns3.afraid.org
NS ns4.afraid.org 67.18.179.15 67.18.0.0/15 ThePlanet
com Internet Services, Inc
21844 THEPLANET AS2 ThePlanet com Internet Services,
Inc
ns4.afraid.org
MX
mail.g3nius.
net
127.0.0.1 localhost
hostnames sharing ip with a-records:
abemark.com
amicalifesucks.biz
amicalifesucks.com
amicalifesucks.info
amicasucks.biz
amicasucks.info
antispam.sugababes.nl
aw11.org
awi-water.com
azn.nl
betoz.org
bisner-bank.net
blackhole.ukr.net
boehde.net
boilerhoops.com
boumanenlangelaar.nl
boun.se
celox.nl
ch-jt.com
clarkstownpd.com
constructionsuper.com
contestix.com
dc.sint.pl
deagdns.co.uk
derdangoor.com
devnull.bluedns.nl
dgibb.com
drschollssandals.com
ehealthinsurancedirect.com
elanticorp.com
eprlon.com
menu top graph
fcvirginias.com
feigelman.com
fqdn.nl
frisno.com
helel.net
ich.habe.keinen.mailserver.abc-admin.de
inaddr.intergenia.de
innoventivepartners.com
irc.g3nius.net
ircd.bsd.org
lepelaars.com
letsfrag.com
localhost
localhost.cs.kiev.ua
localhost.denic.de
localhost.free.net
localhost.freo.com
localhost.rabobank.fr
localhost.rabobank.info
localhost.rabobank.se
localhost.ri-si.com
localhost.tf-md.net
localhost.ua.net
londonfogluggage.com
loopback.domainsatcost.ca
loopback.internic.ca
loopback.merant.com
loopback.pacificedge.com
loopback.rfc1035.com
mail.apprentice.com
mail.edu.com
mail.vestide.info
mail.woonbedrijf-sre.net
mail.woonbedrijf-swshhvl.com
mail.woonbedrijf-swshhvl.info
mail.woonbedrijf-swshhvl.org
mail.woonbedrijfsre.info
mail.woonbedrijfswshhvl.com
mail.woonbedrijfswshhvl.info
mail.woonbedrijfswshhvl.net
mail.xplizit.be
mail.you.com
maildump.bitic.nl
marijuanadefenselawyer.com
mccabe-petrucci.com
migdali.com
milanese.nl
navysoldier.com
ns4.de
omnisturk.com
pensioensectie.nl
pop.celox.nl
q1webdesign.nl
raboshop.net
routenullmx.bwng.com
sportpakket.com
umcn.nl
vestide.info
windermeresucks.com
woonbedrijf-sre.net
woonbedrijf-swshhvl.com
woonbedrijf-swshhvl.info
woonbedrijf-swshhvl.org
woonbedrijfsre.info
woonbedrijfswshhvl.com
woonbedrijfswshhvl.info
woonbedrijfswshhvl.net
xplizit.be
zsrltd.com
hostnames beginning with g3nius:
g3nius.com
hostnames sharing ip indirectly via cnames:
mail.g3nius.net
domains using this as mailserver:
amarillo4sale.com
appraisser.com
arthurt.com
astalacista.net
birmningham.com
bolbg.com
brvoup.com
bytemagnet.com
ccchi.com
cerenaonline.com
chorony.com
christ-planet.com
climbforchrist.org
cmjmachining.com
cyanidemedicine.biz
darkroomcontinuance.com
datacablesystems.biz
dns10.denic.de
dns12.denic.de
dns13.denic.de
dns18.denic.de
dns3.denic.de
dns4.denic.de
dns5.denic.de
dns7.denic.de
dns8.denic.de
dns9.denic.de
drucker.crew-gmbh.de
dsbook.crew-gmbh.de
dspc.crew-gmbh.de
errormechanic.com
eskimofootwear.com
farbdrucker.crew-gmbh.de
ferventdevelopment.net
firstcoasttitle.com
globalconvergence.net
gwti.com
hollipc.crew-gmbh.de
ibdpublicrelations.com
icon-insight.com
indogoal.com
inthealthplacements.com
javarealm.com
jewish-education.com
karinpc.crew-gmbh.de
kijifonre.com
kocjancic.net
konacondorental.com
lawnm.com
lawvi.com
live11.com
m-pos.com
mail.icon-insight.com
mkpc.crew-gmbh.de
mrchamp.com
mu-pms.com
netuser.com
nic.org.lu
node03.irz42.net
nofashionrecords.com
nospam.cmjmachining.com
ns.crew-gmbh.de
ns.snarked.org
ns1.indogoal.com
ns1.m-pos.com
ns1.wuzzup.com
p-dns.irz42.net
pactechprod.com
particularcuba.com
pointer-h.crew-gmbh.de
pointer-h.irz42.net
pointer-li-h.irz42.net
qs.crew-gmbh.de
realisticideas.com
roundrecorders.com
router-s.irz42.net
s-dns.irz42.net
sanctuarycamp.org
shaymen.com
sierrasoap.com
smtp.cmjmachining.com
thwmacbookpro.crew-gmbh.de
thwnotebook.crew-gmbh.de
thwpc.crew-gmbh.de
toughworld.com
transsiberia.crew-gmbh.de
transsiberia.irz42.net
ultimasoftware.net
ups07.h.irz42.net
uwenotebook.crew-gmbh.de
videobeamerpc.crew-gmbh.de
vr0k.com.ar
websightdesigners.com
wgfootwear.com
wildflowerfootwear.com
wl-h-02.crew-gmbh.de
wl-h-03.crew-gmbh.de
wtn4air.com
www.crew-gmbh.de
www.crew-kg.de
(only showing 100 results)
domains sharing mailservers:
amarillo4sale.com
appraisser.com
arthurt.com
astalacista.net
birmningham.com
bolbg.com
brvoup.com
bytemagnet.com
ccchi.com
cerenaonline.com
chorony.com
christ-planet.com
climbforchrist.org
cmjmachining.com
cyanidemedicine.biz
darkroomcontinuance.com
datacablesystems.biz
dns10.denic.de
dns12.denic.de
dns13.denic.de
dns18.denic.de
dns3.denic.de
dns4.denic.de
dns5.denic.de
dns7.denic.de
dns8.denic.de
dns9.denic.de
drucker.crew-gmbh.de
dsbook.crew-gmbh.de
dspc.crew-gmbh.de
errormechanic.com
eskimofootwear.com
farbdrucker.crew-gmbh.de
ferventdevelopment.net
firstcoasttitle.com
globalconvergence.net
gwti.com
hollipc.crew-gmbh.de
ibdpublicrelations.com
icon-insight.com
indogoal.com
inthealthplacements.com
javarealm.com
jewish-education.com
karinpc.crew-gmbh.de
kijifonre.com
kocjancic.net
konacondorental.com
lawnm.com
lawvi.com
live11.com
m-pos.com
mail.icon-insight.com
mkpc.crew-gmbh.de
mrchamp.com
mu-pms.com
netuser.com
nic.org.lu
node03.irz42.net
nofashionrecords.com
nospam.cmjmachining.com
ns.crew-gmbh.de
ns.snarked.org
ns1.indogoal.com
ns1.m-pos.com
ns1.wuzzup.com
p-dns.irz42.net
pactechprod.com
particularcuba.com
pointer-h.crew-gmbh.de
pointer-h.irz42.net
pointer-li-h.irz42.net
qs.crew-gmbh.de
realisticideas.com
roundrecorders.com
router-s.irz42.net
s-dns.irz42.net
sanctuarycamp.org
shaymen.com
sierrasoap.com
smtp.cmjmachining.com
thwmacbookpro.crew-gmbh.de
thwnotebook.crew-gmbh.de
thwpc.crew-gmbh.de
toughworld.com
transsiberia.crew-gmbh.de
transsiberia.irz42.net
ultimasoftware.net
ups07.h.irz42.net
uwenotebook.crew-gmbh.de
videobeamerpc.crew-gmbh.de
vr0k.com.ar
websightdesigners.com
wgfootwear.com
wildflowerfootwear.com
wl-h-02.crew-gmbh.de
wl-h-03.crew-gmbh.de
wtn4air.com
www.crew-gmbh.de
www.crew-kg.de
(only showing 100 results)
domains using this as nameserver:
0.in-addr.arpa
124.44.194.in-addr.arpa
127.in-addr.arpa
128-27.68.64.217.in-addr.arpa
135.103.66.in-addr.arpa
152.103.66.in-addr.arpa
160-27.40.246.213.in-addr.arpa
161.77.161.in-addr.arpa
217.66.in-addr.arpa
23.255.81.in-addr.arpa
232.87.212.in-addr.arpa
24.64.in-addr.arpa
255.in-addr.arpa
4.57.200.in-addr.arpa
40.235.209.in-addr.arpa
5.145.200.in-addr.arpa
8registro.com.br
adm.wp-sa.pl
ap.edu.pl
autosciencetech.com
autosciencetech.net
autosciencetech.org
biblioteca.unesp.br
bip.podlaskie.pl
boao.net
bsl.tg
carlmiller.net
casahospitalar.com.br
central-soft.co.jp
cgb.unesp.br
cid.ind.br
depotrestaurant.com
dev.wp-sa.pl
e-edukacja.pl
egov.re.kr
ejmdev.com
epmbog.com
estadiomaismoderno.com.br
ev.to
fgbc.net
gda.wp-sa.pl
gdmw.net
generations.hk.com
glau.kr.ua
highlands-autobody.com
hkwb.net
hnpg.net
insiderancho.net
iws.ne.jp
jfe-chem.com
jinfurong.net
karavan.170.20.217.in-addr.arpa
kinasinsaat.com
ktlab.jp
lckf.net
livetech.com.br
localhost
maiortorcidaparanaense.com.br
mar.be
medlynx.com.br
melhorctbrasileiro.com.br
mokasirs.net
mse-net.com
nrim.net
oabsaude.org.br
oba.org.br
obdclearinghouse.com
pactechprod.com
pagasa.dost.gov.ph
podlaskie.pl
rcc.ne.jp
rdm.com.br
registernet.com.br
rezkey.com
roesnet.com
royceybaby.net
sab-astro.org.br
safeguard.net
saolucas-se.com.br
saskyellowpages.com
sdes.tpc.edu.tw
sihota.net
smp-council.org.hk
soapmomma.com
spsnetwork.net
srv.wp-sa.pl
stephleahphotography.com
subnet32.206.62.64.in-addr.arpa
sun-painting.com
tariffinder.be
terjot.pl
truetech.info
um.olecko.pl
unicom.far.br
unicomdf.com.br
univ-lome.tg
waw.wp-sa.pl
wew.wp-sa.pl
wpas.net
wsjoe.czest.pl
(only showing 100 results)
domains sharing nameservers:
00100100.net
0x60.org
acdfm.biz
actsyouth.com
advancedonsite.com
afraid.org
albateam.fi
allanmontenegro.com
ampang.net
as-is.net
asachi.com
austinacademy.org
balocco.biz
bawuk.net
benguldan.org
billingham.com
bite-me.info
blah.ws
c-2.com
cdsionline.com
centralhostoffice.net
cflee.net
ch-empire.net
codelinux.org
corvidae.org
cowsoncaffeine.com
crispynews.com
crovetto.com
cyridian.net
dalnet.cd
darcan.com
ddosnet.biz
decrypted.org
design.za.net
digitalblaze.net
digitalsec.net
divmod.com
drag0nfly.org
fansubbers.ru
fbsd.biz
freebsd-shell.net
google-it.info
graff-faucets.com
grupo-fs.com
gumby-dammit.com
h0stname.net
hack.co.za
infocruz.com.br
irc.ms
ircgeek.info
jekoland.com
lacasadeifili.net
logix.cz
lordares.net
lost.si
manx.biz
microsoft.web.id
modeemi.net
mokool.com
mokool.org
muie-cu-cacat.com
mulaocai.net
n4rc0tics.com
navysoldier.com
neodorks.com
neoplus.biz
nettown.cz
networklinux.net
on.web.id
originalnet.info
p0wer.org
piskotek.net
requitas.com
ritko.net
roippetta.com
routertronic.com
sailboatowners.com
samurainintendo.com
sebistar.net
secured-hackers.com
shit.la
smartechhomes.com
spamblocked.com
splud.org
stoneshell.info
strangled.net
swreisedienst.com
technicianmarketplace.com
theorb.net
tulee.net
uber-geek.tk
vasum.org
visualwin.com
wadogh.com
welmers.net
winworld.com
wteam.info
wtf.la
zamazim.com
zansstuff.com
(only showing 100 results)
subdomains:
0nly.g3nius.net
anak.g3nius.net
be.g3nius.net
fucking.g3nius.net
irc.g3nius.net
is.g3nius.net
mail.g3nius.net
me.g3nius.net
muhaddits.g3nius.net
nya.g3nius.net
pure.g3nius.net
real.g3nius.net
so.g3nius.net
the.g3nius.net
************
AFRAID.ORG
afraid.org A 67.19.72.205 67.18.0.0/15 ThePlanet com
Internet Services, Inc
21844 THEPLANET AS2 ThePlanet com Internet Services,
Inc
cd.48.1343.static.
theplanet.com
NS ns2.afraid.org 66.252.1.255 66.252.0.0/19 netblock
Proxy
registered route object
23522 ASN GIGESERV GIGESERVERS
ASN
ns2.afraid.org
NS ns1.afraid.org 67.19.72.206 67.18.0.0/15 ThePlanet
com Internet Services, Inc
21844 THEPLANET AS2 ThePlanet com Internet Services,
Inc
ns1.afraid.org
NS ns3.afraid.org 72.20.25.134 72.20.0.0/19 Staminus
Communications
25761 Staminus Staminus Communications, Fullerton CA
ns3.afraid.org
NS ns4.afraid.org 67.18.179.15 67.18.0.0/15 ThePlanet
com Internet Services, Inc
21844 THEPLANET AS2 ThePlanet com Internet Services,
Inc
ns4.afraid.org
MX mail.strangled.net 67.19.72.205 67.18.0.0/15
ThePlanet com Internet Services, Inc
21844 THEPLANET AS2 ThePlanet com Internet Services,
Inc
cd.48.1343.static.
theplanet.com
hostnames sharing ip with a-records
1.vg
acdfm.biz
actsyouth.com
advancedonsite.com
antenna.se
asachi.com
ashkim.com
astutemed.net
austinacademy.org
balocco.biz
benguldan.org
beycix.com
bibme.com
billyfowler.com
biz.tm
bnm-corp.com
bollah.com
bostonpopschambermusic.com
bostonpopsplayers.com
bostonwharfproperties.com
brentgeery.com
brightville.com
brownscastle.com
bta-andora.com
bubbagimp.com
bymo.ch
cd.48.1343.static.theplanet.com
cindymon.com
consumerguarddog.com
consumerhandbooks.com
cosmoskey.com
cowsoncaffeine.com
craftnest.com
d.la
dallasinjurylawfirm.com
darcan.com
depre.biz
dettner.de
dewrox.com
dikercom.com
fpdoctor.com
gumby-dammit.com
hancur-a.biz
hippron.com
ikatz.biz
in-africa.info
info.tm
jobert.org
leet.la
liasantis.blog.br
lorengordon.com
lu22radiotandil.com.ar
mail.aljaz.biz
mail.antenna.se
mail.ashkim.com
mail.billyfowler.com
mail.biz.tm
mail.craftnest.com
mail.d.la
mail.debil.eu
mail.depre.biz
mail.fr3aky.name
mail.hancur-a.biz
mail.info.tm
mail.k-lined.us
mail.kill3r.info
mail.ls.la
mail.miguelanderin.com
mail.modeemi.net
mail.p0wer.org
mail.pro.vg
mail.ranczo.biz
mail.secured-hackers.com
mail.strangled.net
mail.swreisedienst.com
mail.tang.la
mail.technical-college.com
mail.temmy.us
mail.uber-geek.tk
mail.us.to
mail.vasum.org
mail.wadogh.com
mail.yzin.com
mail.zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz.info
microsoft.web.id
miguelanderin.com
multimerc.com.ar
on.web.id
pcu-services.biz
pro.vg
ranczo.biz
realsoftwaredevelopment.com
rob.tc
showbox.ca
strangled.net
tang.la
technical-college.com
uber-geek.tk
vo3.net
xi2.net
(only showing 100 results)
domains using this as mailserver
69incss.net
aljaz.biz
antenna.se
ashkim.com
billyfowler.com
biz.tm
craftnest.com
d.la
debil.eu
depre.biz
dnsbizsol.net
fr3aky.name
hancur-a.biz
info.tm
k-lined.us
kill3r.info
ls.la
miguelanderin.com
modeemi.net
mooo.com
p0wer.org
pro.vg
ranczo.biz
realsoftwaredevelopment.com
secured-hackers.com
strangled.net
swreisedienst.com
tang.la
technical-college.com
temmy.us
uber-geek.tk
us.to
vasum.org
wadogh.com
yzin.com
zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz.info
ip:s using ptr to this host
67.19.238.250(US)
67.19.238.253(US)
subdomains
172.afraid.org
4portpwpwpw123.afraid.org
5portpwpwpw123.afraid.org
all.afraid.org
always.afraid.org
arturaz.afraid.org
ashpool.afraid.org
at.afraid.org
banned-for-abuse.afraid.org
be.afraid.org
bebbodns.afraid.org
been.afraid.org
boil.afraid.org
c00l.afraid.org
crackerjack.afraid.org
damn.afraid.org
dangerously.afraid.org
dieflux.afraid.org
e.afraid.org
fartek.afraid.org
frankj.afraid.org
freedns.afraid.org
guyz.afraid.org
htmldnsns1.afraid.org
htmldnsns2.afraid.org
htmldnsns3.afraid.org
htmldnsns4.afraid.org
im.afraid.org
is-heavy.afraid.org
is.afraid.org
jc0.afraid.org
jc2.afraid.org
jc5.afraid.org
ljb2of3.afraid.org
m3.afraid.org
mail.afraid.org
mikemacd.afraid.org
multiplex.afraid.org
n2.afraid.org
names2.afraid.org
neva.afraid.org
never-be.afraid.org
nierentee.afraid.org
nils.afraid.org
not.afraid.org
ns.afraid.org
ns1.afraid.org
ns17.afraid.org
ns2.afraid.org
ns3.afraid.org
ns4.afraid.org
ns5.afraid.org
ns6.afraid.org
ns7.afraid.org
ns8.afraid.org
of.afraid.org
pants.afraid.org
people.afraid.org
pigster.afraid.org
pkvgzaecagx.afraid.org
pt.afraid.org
qqycilcd.afraid.org
qujuvukbkbq.afraid.org
qujuvukbvbq.afraid.org
r-u.afraid.org
revox.afraid.org
ry.afraid.org
scapin.afraid.org
scottporterisnot.afraid.org
sesko.afraid.org
so.afraid.org
soo.afraid.org
sparky.afraid.org
test05.afraid.org
underpants.afraid.org
unikorn.afraid.org
vewy.afraid.org
vico.afraid.org
were.afraid.org
whatpulse.afraid.org
www.afraid.org
wyqggvow.afraid.org
yjjtuvsro.afraid.org
you-i-am.afraid.org
you.afraid.org
************
C&C: 67.43.236.98 no A record
russianmafia.ru. A IN 86400 67.137.217.219
Domain Type Class TTL Answer
russianmafia.ru. A IN 86400 67.137.217.219
russianmafia.ru. NS IN 86400 ns4.nic.ru.
russianmafia.ru. NS IN 86400 dns1.gtcomm.net.
ns4.nic.ru. A IN 86122 194.226.96.8
dns1.gtcomm.net. A IN 86400 72.10.164.69
IP Information - 67.137.217.0
IP address: 67.137.217.0
Reverse DNS: [No reverse DNS entry
per ns1-217.dod.com.]
Reverse DNS authenticity: [Unknown]
ASN: 5650
ASN Name: ELIX
IP range connectivity: 1
Registrar (per ASN): ARIN
Country (per IP registrar): US [United States]
Country Currency: USD [United States
Dollars]
Country IP Range: 67.128.0.0 to
67.143.255.255
Lookup nic.ru:
NS ns2.ripn.net 194.226.96.30 194.226.96.0/24 RIPN
5568 RBNet RBNet
MX relay4.ripn.net 194.226.96.22 194.226.96.0/24 RIPN
5568 RBNet RBNet
Lookup rbnet.ru:
rbnet.ru A 194.226.65.229 194.226.64.0/20 RIPN
IP address: 194.226.64.0
Reverse DNS: ripn-network.
Reverse DNS authenticity: [Could be forged:
hostname ripn-network. does not exist]
ASN: 3316
ASN Name: RELARN (RELARN-MSK)
IP range connectivity: 2
Registrar (per ASN): RIPE
Country (per IP registrar): RU [Russian
Federation]
Country Currency: RUR [Russia Rubles]
Country IP Range: 194.226.0.0 to
194.226.255.255
Country fraud profile: High
City (per outside source): Moscow, Moskva
Country (per outside source): RU [Russian
Federation]
Private (internal) IP? No
IP address registrar: whois.ripe.net
Known Proxy? No
Conclude:
67.43.236.98 C&C
67.137.217.219 russianmafia.ru
72.10.164.69 russianmafia.ru DNS
194.226.64.0/20 rbnet.ru
194.226.65.10 ns.rbnet.ru
194.226.67.10 ns2.rbnet.ru
194.226.96.8 russianmafia.ru name server
194.226.96.0/24 RBNet
******
whois coolservecorp.net
base record name ip network as reverse
coolservecorp.net A 66.232.122.241 66.232.96.0/19
29802 -No Whois Entry-
NS ns.coolservecorp.net 65.254.54.178 65.254.48.0/20
Proxy registered route object GNAXNET NET 65 254 32 0
1
GNAXNET NET 65 254 48 0 1 Global Net Access, LLC 55
Marietta St, NW Suite 1720 Atlanta, GA 30303 3595 AS
GNAXNET AS Global
Net Access, LLC 1100 White Street Atlanta, GA 30310
host33.coolservecorp.net
NS ns2.coolservecorp.net 67.19.24.170 67.18.0.0/15
ThePlanet com Internet Services, Inc 21844 THEPLANET
AS2
ThePlanet com Internet Services, Inc
aa.18.1343.static.theplanet.com
MX coolservecorp.net 66.232.122.241 66.232.96.0/19
29802 -No Whois Entry-
hostnames beginning with coolservecorp
coolservecorp.com
domains sharing nameservers
5ballov.net
76service.com
a-doma.net
absolutelylatinas.net
adulthosting.ru
alnar.net
alt.by
anemia-working-group.net
anemia-working-groups.net
anemiaworkinggroup.net
anemiaworkingroup.net
anonymous-service.com
apps4.net
aspmedia.net
avtoby.net
azgar.by
badboysby.net
beldrug.org
belpatent.net
belreferatov.net
beltorg.com
bvf.by
carbon.coolservecorp.net
charadziej.org
chukov.net
club-mks.com
contour-lamn.com
coolwebserve.net
copyby.net
daugiasaigon.net
firstoceanicbank.net
fromby.net
gamesboard.ru
glamoura.net
gomeloboi.com
gorno-altaisk.net
goro.by
greentrans.net
hope-casadue.net
host33.coolservecorp.net
hydrometeocenter.net
iiseps.org
jewelry-fashion.net
k6tv.com
krimea.net
loshitsa1.net
lysandrasoft.com
magomedov.net
maltofer.ru
medprom.com
midnightbear.com
multydom.crimea.ua
myeffect.net
newpulses.com
nvcm.net
odeku.net
pegasas.net
pogotski.com
priceby.net
priceru.net
priceua.net
putany.net
respekt-plus.com
sexbomba.ru
shemalesru.net
sit93.com
sosnovsky.net
steeed.net
svyatovit.com
syabry.com
venofer.ru
vodkaescort.com
wdl.ru
webmoney-hosting.net
xosti.net
zapchastei.net
znaesh.net
subdomains
carbon.coolservecorp.net
host33.coolservecorp.net
ns.coolservecorp.net
ns2.coolservecorp.net
ns3.coolservecorp.net
pasadena.coolservecorp.net
coolservecorp.net
* lookup net
* lookup com
* lookup ru
* lookup by
* lookup org
* lookup 1343.static.theplanet.com
* lookup 18.1343.static.theplanet.com
* lookup crimea.ua
* lookup static.theplanet.com
* lookup theplanet.com
* lookup ua
******
rbnnetwork.com A 127.0.0.1 localhost
NS ns1.rbnnetwork.com 81.95.144.3 81.95.144.0/22
RBNetwork 40989 RBN AS RBusiness Network
arpa-ns1.rbnnetwork.com
NS ns2.rbnnetwork.com 81.95.145.3 81.95.144.0/22
RBNetwork 40989 RBN AS RBusiness Network
arpa-ns2.rbnnetwork.com
MX mail.rbnnetwork.com 81.95.145.1 81.95.144.0/22
RBNetwork 40989 RBN AS RBusiness Network
gw2.rbnnetwork.com
hostnames sharing ip with a-records
abemark.com
amicalifesucks.biz
amicalifesucks.com
amicalifesucks.info
amicasucks.biz
amicasucks.info
antispam.sugababes.nl
aw11.org
awi-water.com
azn.nl
betoz.org
bisner-bank.net
blackhole.ukr.net
boehde.net
boilerhoops.com
boumanenlangelaar.nl
boun.se
celox.nl
ch-jt.com
clarkstownpd.com
constructionsuper.com
contestix.com
dc.sint.pl
deagdns.co.uk
derdangoor.com
devnull.bluedns.nl
dgibb.com
drschollssandals.com
ehealthinsurancedirect.com
elanticorp.com
eprlon.com
fcvirginias.com
feigelman.com
fqdn.nl
frisno.com
g3nius.net
helel.net
ich.habe.keinen.mailserver.abc-admin.de
inaddr.intergenia.de
innoventivepartners.com
irc.g3nius.net
ircd.bsd.org
lepelaars.com
letsfrag.com
localhost
localhost.cs.kiev.ua
localhost.denic.de
localhost.free.net
localhost.freo.com
localhost.rabobank.fr
localhost.rabobank.info
localhost.rabobank.se
localhost.ri-si.com
localhost.tf-md.net
localhost.ua.net
londonfogluggage.com
loopback.domainsatcost.ca
loopback.internic.ca
loopback.merant.com
loopback.pacificedge.com
loopback.rfc1035.com
mail.apprentice.com
mail.edu.com
mail.vestide.info
mail.woonbedrijf-sre.net
mail.woonbedrijf-swshhvl.com
mail.woonbedrijf-swshhvl.info
mail.woonbedrijf-swshhvl.org
mail.woonbedrijfsre.info
mail.woonbedrijfswshhvl.com
mail.woonbedrijfswshhvl.info
mail.woonbedrijfswshhvl.net
mail.xplizit.be
mail.you.com
maildump.bitic.nl
marijuanadefenselawyer.com
mccabe-petrucci.com
migdali.com
milanese.nl
navysoldier.com
ns4.de
omnisturk.com
pensioensectie.nl
pop.celox.nl
q1webdesign.nl
raboshop.net
routenullmx.bwng.com
sportpakket.com
umcn.nl
vestide.info
windermeresucks.com
woonbedrijf-sre.net
woonbedrijf-swshhvl.com
woonbedrijf-swshhvl.info
woonbedrijf-swshhvl.org
woonbedrijfsre.info
woonbedrijfswshhvl.com
woonbedrijfswshhvl.info
woonbedrijfswshhvl.net
xplizit.be
(only showing 100 results)
hostnames pointing here by cname
dns1.rbnnetwork.com
dns2.rbnnetwork.com
gw1.rbnnetwork.com
gw2.rbnnetwork.com
ip-144-10.rbnnetwork.com
ip-144-11.rbnnetwork.com
ip-144-12.rbnnetwork.com
ip-144-13.rbnnetwork.com
ip-144-14.rbnnetwork.com
ip-144-15.rbnnetwork.com
ip-144-16.rbnnetwork.com
ip-144-17.rbnnetwork.com
ip-144-18.rbnnetwork.com
ip-144-19.rbnnetwork.com
ip-144-20.rbnnetwork.com
ip-144-21.rbnnetwork.com
ip-144-22.rbnnetwork.com
ip-144-23.rbnnetwork.com
ip-144-24.rbnnetwork.com
ip-144-25.rbnnetwork.com
ip-144-26.rbnnetwork.com
ip-144-27.rbnnetwork.com
ip-144-28.rbnnetwork.com
ip-144-29.rbnnetwork.com
ip-144-30.rbnnetwork.com
ip-144-31.rbnnetwork.com
ip-144-32.rbnnetwork.com
ip-144-33.rbnnetwork.com
ip-144-34.rbnnetwork.com
ip-144-35.rbnnetwork.com
ip-144-36.rbnnetwork.com
ip-144-37.rbnnetwork.com
ip-144-38.rbnnetwork.com
ip-144-39.rbnnetwork.com
ip-144-4.rbnnetwork.com
ip-144-40.rbnnetwork.com
ip-144-41.rbnnetwork.com
ip-144-42.rbnnetwork.com
ip-144-43.rbnnetwork.com
ip-144-44.rbnnetwork.com
ip-144-45.rbnnetwork.com
ip-145-10.rbnnetwork.com
ip-145-11.rbnnetwork.com
ip-145-12.rbnnetwork.com
ip-145-13.rbnnetwork.com
ip-145-14.rbnnetwork.com
ip-145-15.rbnnetwork.com
ip-145-16.rbnnetwork.com
ip-145-17.rbnnetwork.com
ip-145-18.rbnnetwork.com
ip-145-19.rbnnetwork.com
ip-145-20.rbnnetwork.com
ip-145-21.rbnnetwork.com
ip-145-22.rbnnetwork.com
ip-145-23.rbnnetwork.com
ip-145-24.rbnnetwork.com
ip-145-25.rbnnetwork.com
ip-145-26.rbnnetwork.com
ip-145-27.rbnnetwork.com
ip-145-28.rbnnetwork.com
ip-145-29.rbnnetwork.com
ip-145-30.rbnnetwork.com
ip-145-31.rbnnetwork.com
ip-145-32.rbnnetwork.com
ip-145-33.rbnnetwork.com
ip-145-34.rbnnetwork.com
ip-145-35.rbnnetwork.com
ip-145-36.rbnnetwork.com
ip-145-37.rbnnetwork.com
ip-145-38.rbnnetwork.com
ip-145-39.rbnnetwork.com
ip-145-4.rbnnetwork.com
ip-145-40.rbnnetwork.com
ip-145-41.rbnnetwork.com
ip-145-42.rbnnetwork.com
ip-145-43.rbnnetwork.com
ip-145-44.rbnnetwork.com
ip-145-45.rbnnetwork.com
ip-145-46.rbnnetwork.com
ip-145-47.rbnnetwork.com
ip-145-48.rbnnetwork.com
ip-145-49.rbnnetwork.com
ip-145-5.rbnnetwork.com
ip-145-50.rbnnetwork.com
ip-145-51.rbnnetwork.com
ip-145-52.rbnnetwork.com
ip-145-53.rbnnetwork.com
ip-145-54.rbnnetwork.com
ip-145-55.rbnnetwork.com
ip-145-56.rbnnetwork.com
ip-145-57.rbnnetwork.com
ip-145-58.rbnnetwork.com
ip-145-59.rbnnetwork.com
ip-145-6.rbnnetwork.com
ip-145-60.rbnnetwork.com
ip-145-61.rbnnetwork.com
ip-145-62.rbnnetwork.com
ip-145-63.rbnnetwork.com
ip-145-64.rbnnetwork.com
ip-145-7.rbnnetwork.com
(only showing 100 results)
hostnames sharing ip indirectly via cnames
mail.g3nius.net
domains using this as mailserver
amarillo4sale.com
appraisser.com
arthurt.com
astalacista.net
birmningham.com
bolbg.com
brvoup.com
bytemagnet.com
ccchi.com
cerenaonline.com
chorony.com
christ-planet.com
climbforchrist.org
cmjmachining.com
cyanidemedicine.biz
darkroomcontinuance.com
datacablesystems.biz
dns10.denic.de
dns12.denic.de
dns13.denic.de
dns18.denic.de
dns3.denic.de
dns4.denic.de
dns5.denic.de
dns7.denic.de
dns8.denic.de
dns9.denic.de
drucker.crew-gmbh.de
dsbook.crew-gmbh.de
dspc.crew-gmbh.de
errormechanic.com
eskimofootwear.com
farbdrucker.crew-gmbh.de
ferventdevelopment.net
firstcoasttitle.com
globalconvergence.net
gwti.com
hollipc.crew-gmbh.de
ibdpublicrelations.com
icon-insight.com
indogoal.com
inthealthplacements.com
javarealm.com
jewish-education.com
karinpc.crew-gmbh.de
kijifonre.com
kocjancic.net
konacondorental.com
lawnm.com
lawvi.com
live11.com
m-pos.com
mail.icon-insight.com
mkpc.crew-gmbh.de
mrchamp.com
mu-pms.com
netuser.com
nic.org.lu
node03.irz42.net
nofashionrecords.com
nospam.cmjmachining.com
ns.crew-gmbh.de
ns.snarked.org
ns1.indogoal.com
ns1.m-pos.com
ns1.wuzzup.com
p-dns.irz42.net
pactechprod.com
particularcuba.com
pointer-h.crew-gmbh.de
pointer-h.irz42.net
pointer-li-h.irz42.net
qs.crew-gmbh.de
realisticideas.com
roundrecorders.com
router-s.irz42.net
s-dns.irz42.net
sanctuarycamp.org
shaymen.com
sierrasoap.com
smtp.cmjmachining.com
thwmacbookpro.crew-gmbh.de
thwnotebook.crew-gmbh.de
thwpc.crew-gmbh.de
toughworld.com
transsiberia.crew-gmbh.de
transsiberia.irz42.net
ultimasoftware.net
ups07.h.irz42.net
uwenotebook.crew-gmbh.de
videobeamerpc.crew-gmbh.de
vr0k.com.ar
websightdesigners.com
wgfootwear.com
wildflowerfootwear.com
wl-h-02.crew-gmbh.de
wl-h-03.crew-gmbh.de
wtn4air.com
www.crew-gmbh.de
www.crew-kg.de
(only showing 100 results)
domains using this as nameserver
0.in-addr.arpa
124.44.194.in-addr.arpa
127.in-addr.arpa
128-27.68.64.217.in-addr.arpa
135.103.66.in-addr.arpa
152.103.66.in-addr.arpa
160-27.40.246.213.in-addr.arpa
161.77.161.in-addr.arpa
217.66.in-addr.arpa
23.255.81.in-addr.arpa
232.87.212.in-addr.arpa
24.64.in-addr.arpa
255.in-addr.arpa
4.57.200.in-addr.arpa
40.235.209.in-addr.arpa
5.145.200.in-addr.arpa
8registro.com.br
adm.wp-sa.pl
ap.edu.pl
autosciencetech.com
autosciencetech.net
autosciencetech.org
biblioteca.unesp.br
bip.podlaskie.pl
boao.net
bsl.tg
carlmiller.net
casahospitalar.com.br
central-soft.co.jp
cgb.unesp.br
cid.ind.br
depotrestaurant.com
dev.wp-sa.pl
e-edukacja.pl
egov.re.kr
ejmdev.com
epmbog.com
estadiomaismoderno.com.br
ev.to
fgbc.net
gda.wp-sa.pl
gdmw.net
generations.hk.com
glau.kr.ua
highlands-autobody.com
hkwb.net
hnpg.net
insiderancho.net
iws.ne.jp
jfe-chem.com
jinfurong.net
karavan.170.20.217.in-addr.arpa
kinasinsaat.com
ktlab.jp
lckf.net
livetech.com.br
localhost
maiortorcidaparanaense.com.br
mar.be
medlynx.com.br
melhorctbrasileiro.com.br
mokasirs.net
mse-net.com
nrim.net
oabsaude.org.br
oba.org.br
obdclearinghouse.com
pactechprod.com
pagasa.dost.gov.ph
podlaskie.pl
rcc.ne.jp
rdm.com.br
registernet.com.br
rezkey.com
roesnet.com
royceybaby.net
sab-astro.org.br
safeguard.net
saolucas-se.com.br
saskyellowpages.com
sdes.tpc.edu.tw
sihota.net
smp-council.org.hk
soapmomma.com
spsnetwork.net
srv.wp-sa.pl
stephleahphotography.com
subnet32.206.62.64.in-addr.arpa
sun-painting.com
tariffinder.be
terjot.pl
truetech.info
um.olecko.pl
unicom.far.br
unicomdf.com.br
univ-lome.tg
waw.wp-sa.pl
wew.wp-sa.pl
wpas.net
wsjoe.czest.pl
(only showing 100 results)
domains sharing nameservers
144.95.81.in-addr.arpa
145.95.81.in-addr.arpa
146.95.81.in-addr.arpa
147.95.81.in-addr.arpa
148.95.81.in-addr.arpa
152.95.81.in-addr.arpa
153.95.81.in-addr.arpa
4stat.org
akimon.com
eexhost.com
subdomains
arpa-ns1.rbnnetwork.com
arpa-ns2.rbnnetwork.com
dns1.rbnnetwork.com
dns2.rbnnetwork.com
gw1.rbnnetwork.com
gw2.rbnnetwork.com
ip-144-10.rbnnetwork.com
ip-144-11.rbnnetwork.com
ip-144-12.rbnnetwork.com
ip-144-13.rbnnetwork.com
ip-144-14.rbnnetwork.com
ip-144-15.rbnnetwork.com
ip-144-16.rbnnetwork.com
ip-144-17.rbnnetwork.com
ip-144-18.rbnnetwork.com
ip-144-19.rbnnetwork.com
ip-144-20.rbnnetwork.com
ip-144-21.rbnnetwork.com
ip-144-22.rbnnetwork.com
ip-144-23.rbnnetwork.com
ip-144-24.rbnnetwork.com
ip-144-25.rbnnetwork.com
ip-144-26.rbnnetwork.com
ip-144-27.rbnnetwork.com
ip-144-28.rbnnetwork.com
ip-144-29.rbnnetwork.com
ip-144-30.rbnnetwork.com
ip-144-31.rbnnetwork.com
ip-144-32.rbnnetwork.com
ip-144-33.rbnnetwork.com
ip-144-34.rbnnetwork.com
ip-144-35.rbnnetwork.com
ip-144-36.rbnnetwork.com
ip-144-37.rbnnetwork.com
ip-144-38.rbnnetwork.com
ip-144-39.rbnnetwork.com
ip-144-4.rbnnetwork.com
ip-144-40.rbnnetwork.com
ip-145-10.rbnnetwork.com
ip-145-11.rbnnetwork.com
ip-145-12.rbnnetwork.com
ip-145-13.rbnnetwork.com
ip-145-14.rbnnetwork.com
ip-145-15.rbnnetwork.com
ip-145-16.rbnnetwork.com
ip-145-17.rbnnetwork.com
ip-145-18.rbnnetwork.com
ip-145-19.rbnnetwork.com
ip-145-20.rbnnetwork.com
ip-145-21.rbnnetwork.com
ip-145-22.rbnnetwork.com
ip-145-23.rbnnetwork.com
ip-145-24.rbnnetwork.com
ip-145-25.rbnnetwork.com
ip-145-26.rbnnetwork.com
ip-145-27.rbnnetwork.com
ip-145-28.rbnnetwork.com
ip-145-29.rbnnetwork.com
ip-145-30.rbnnetwork.com
ip-145-31.rbnnetwork.com
ip-145-32.rbnnetwork.com
ip-145-33.rbnnetwork.com
ip-145-34.rbnnetwork.com
ip-145-35.rbnnetwork.com
ip-145-36.rbnnetwork.com
ip-145-37.rbnnetwork.com
ip-145-38.rbnnetwork.com
ip-145-39.rbnnetwork.com
ip-145-4.rbnnetwork.com
ip-145-40.rbnnetwork.com
ip-145-41.rbnnetwork.com
ip-145-42.rbnnetwork.com
ip-145-43.rbnnetwork.com
ip-145-44.rbnnetwork.com
ip-145-45.rbnnetwork.com
ip-145-46.rbnnetwork.com
ip-145-47.rbnnetwork.com
ip-145-48.rbnnetwork.com
ip-145-49.rbnnetwork.com
ip-145-5.rbnnetwork.com
ip-145-50.rbnnetwork.com
ip-145-51.rbnnetwork.com
ip-145-52.rbnnetwork.com
ip-145-53.rbnnetwork.com
ip-145-54.rbnnetwork.com
ip-145-55.rbnnetwork.com
ip-145-56.rbnnetwork.com
ip-145-57.rbnnetwork.com
ip-145-58.rbnnetwork.com
ip-145-59.rbnnetwork.com
ip-145-6.rbnnetwork.com
ip-145-60.rbnnetwork.com
ip-145-61.rbnnetwork.com
ip-145-62.rbnnetwork.com
ip-145-63.rbnnetwork.com
ip-145-64.rbnnetwork.com
ip-145-7.rbnnetwork.com
ip-145-8.rbnnetwork.com
ip-145-9.rbnnetwork.com
mail.rbnnetwork.com
(only showing 100 results)
******
whois spsnetwork.net
base record name ip network as reverse
spsnetwork.net A 216.127.83.181 216.127.64.0/19 ELI
Route Object Everyones Internet 13749
EVERYONES-INTERNET
Everyones Internet, Inc.
ev1s-216-127-83-181.ev1servers.net
NS localhost 127.0.0.1 localhost
NS ns1.spsnetwork.net 216.127.83.181 216.127.64.0/19
ELI Route Object Everyones Internet 13749
EVERYONES-INTERNET Everyones Internet, Inc.
ev1s-216-127-83-181.ev1servers.net
NS ns2.spsnetwork.net 216.127.83.2 216.127.64.0/19
ELI Route Object Everyones Internet 13749
EVERYONES-INTERNET Everyones Internet, Inc.
ev1s-216-127-83-2.ev1servers.net
NS ns3.edatabase.ca
NS ns4.edatabase.ca
MX spsnetwork.net 216.127.83.181 216.127.64.0/19 ELI
Route Object Everyones Internet 13749
EVERYONES-INTERNET
Everyones Internet, Inc.
ev1s-216-127-83-181.ev1servers.net
hostnames sharing ip with a-records
ns1.spsnetwork.net
domains sharing nameservers
0.in-addr.arpa
124.44.194.in-addr.arpa
127.in-addr.arpa
128-27.68.64.217.in-addr.arpa
135.103.66.in-addr.arpa
152.103.66.in-addr.arpa
160-27.40.246.213.in-addr.arpa
161.77.161.in-addr.arpa
217.66.in-addr.arpa
23.255.81.in-addr.arpa
232.87.212.in-addr.arpa
24.64.in-addr.arpa
255.in-addr.arpa
4.57.200.in-addr.arpa
40.235.209.in-addr.arpa
5.145.200.in-addr.arpa
8registro.com.br
adm.wp-sa.pl
ap.edu.pl
autosciencetech.com
autosciencetech.net
autosciencetech.org
biblioteca.unesp.br
bip.podlaskie.pl
boao.net
bsl.tg
carlmiller.net
casahospitalar.com.br
central-soft.co.jp
cgb.unesp.br
cid.ind.br
depotrestaurant.com
dev.wp-sa.pl
e-edukacja.pl
egov.re.kr
ejmdev.com
epmbog.com
estadiomaismoderno.com.br
ev.to
fgbc.net
gda.wp-sa.pl
gdmw.net
generations.hk.com
glau.kr.ua
highlands-autobody.com
hkwb.net
hnpg.net
insiderancho.net
iws.ne.jp
jfe-chem.com
jinfurong.net
karavan.170.20.217.in-addr.arpa
kinasinsaat.com
ktlab.jp
lckf.net
livetech.com.br
localhost
maiortorcidaparanaense.com.br
mar.be
medlynx.com.br
melhorctbrasileiro.com.br
mokasirs.net
mse-net.com
nrim.net
oabsaude.org.br
oba.org.br
obdclearinghouse.com
pactechprod.com
pagasa.dost.gov.ph
podlaskie.pl
rcc.ne.jp
rdm.com.br
registernet.com.br
rezkey.com
roesnet.com
royceybaby.net
sab-astro.org.br
safeguard.net
saolucas-se.com.br
saskyellowpages.com
sdes.tpc.edu.tw
sihota.net
smp-council.org.hk
soapmomma.com
srv.wp-sa.pl
stephleahphotography.com
subnet32.206.62.64.in-addr.arpa
sun-painting.com
tariffinder.be
terjot.pl
truetech.info
um.olecko.pl
unicom.far.br
unicomdf.com.br
univ-lome.tg
waw.wp-sa.pl
wew.wp-sa.pl
wpas.net
wsjoe.czest.pl
zaikostore.com
(only showing 100 results)
subdomains
ns1.spsnetwork.net
ns2.spsnetwork.net
******
whois hostfresh.com
base record name ip network as reverse
hostfresh.com A 65.99.197.236 65.99.192.0/20 PNAP DAL
Colo4dalas Routes PNAP DAL Colo4dalas Routes colo4
customer
network 30496 -No Whois Entry- www.hostfresh.com
NS ns1.hostfresh.com 65.99.197.236 65.99.192.0/20
PNAP DAL Colo4dalas Routes PNAP DAL Colo4dalas Routes
colo4
customer network 30496 -No Whois Entry-
www.hostfresh.com
NS ns2.hostfresh.com 58.65.233.203 58.65.233.0/24
Pacific Internet (Hong Kong) Limited (Customer Route)
REACH
(Customer Route) 23898 HOSTFRESH AS AP HostFresh
Internet Internet Service Provider
MX hostfresh.com 65.99.197.236 65.99.192.0/20 PNAP
DAL Colo4dalas Routes PNAP DAL Colo4dalas Routes colo4
customer
network 30496 -No Whois Entry- www.hostfresh.com
hostnames sharing ip with a-records
ns1.hostfresh.com
hostnames beginning with hostfresh
hostfresh.net
hostnames pointing here by cname
www.hostfresh.com
hostnames sharing ip indirectly via cnames
www.hostfresh.com
domains using this as nameserver
11.50.116.in-addr.arpa
232.65.58.in-addr.arpa
233.65.58.in-addr.arpa
234.65.58.in-addr.arpa
235.65.58.in-addr.arpa
236.65.58.in-addr.arpa
238.65.58.in-addr.arpa
239.65.58.in-addr.arpa
myrdns.com
pimpmovie.net
shippingnv.com
six1two.net
domains sharing nameservers
11.50.116.in-addr.arpa
232.65.58.in-addr.arpa
233.65.58.in-addr.arpa
234.65.58.in-addr.arpa
235.65.58.in-addr.arpa
236.65.58.in-addr.arpa
238.65.58.in-addr.arpa
239.65.58.in-addr.arpa
myrdns.com
pimpmovie.net
shippingnv.com
six1two.net
subdomains
billing.hostfresh.com
hkg1core.hostfresh.com
hkgr1-1.hostfresh.com
ip-122-152-130-236.hostfresh.com
ns1.hostfresh.com
ns2.hostfresh.com
support.hostfresh.com
us1core.hostfresh.com
www.hostfresh.com
hostfresh.com
* lookup com
* lookup arpa
* lookup in-addr.arpa
* lookup 58.in-addr.arpa
* lookup 65.58.in-addr.arpa
* lookup net
* lookup 116.in-addr.arpa
* lookup 50.116.in-addr.arpa
*******
whois estboxes.com
base record name ip network as reverse
estboxes.com NS ans2.estboxes.com 69.50.176.226
69.50.160.0/19 Broadwing Communications, LLC 1122
Capital of Texas
Highway South Austin, TX 78746 27595 ATRIVO AS Atrivo
69-50-176-226.esthost.com
NS ns1.estsecure.com 69.50.176.226 69.50.160.0/19
Broadwing Communications, LLC 1122 Capital of Texas
Highway
South Austin, TX 78746 27595 ATRIVO AS Atrivo
69-50-176-226.esthost.com
MX mail.estboxes.com 69.50.176.229 69.50.160.0/19
Broadwing Communications, LLC 1122 Capital of Texas
Highway
South Austin, TX 78746 27595 ATRIVO AS Atrivo
69-50-176-229.esthost.com
hostnames beginning with estboxes
estboxes.com.127p.com
estboxes.com.441il.com
estboxes.com.amour-mariage.net
estboxes.com.barclaysbplc.com
estboxes.com.billbot.biz
estboxes.com.bute2ieh.com
estboxes.com.catchonlife.com
estboxes.com.datacord.org
estboxes.com.gondatme.com
estboxes.com.mailru.biz
estboxes.com.maksik.cc
estboxes.com.maksik.eu
estboxes.com.medboc.com
estboxes.com.nulled.ws
estboxes.com.obeus.com
estboxes.com.opernuz.com
estboxes.com.painted.name
estboxes.com.raw-e.com
estboxes.com.raxoper.com
estboxes.com.salesonmobile.com
estboxes.com.skysix.net
estboxes.com.statadd.com
estboxes.com.wsopr.net
domains sharing nameservers
estsecure.com
subdomains
ans2.estboxes.com
mail.estboxes.com
mailforwardbox1.estboxes.com
managedn3.estboxes.com
managedns1.estboxes.com
managedns2.estboxes.com
managedns3.estboxes.com
managedns4.estboxes.com
estboxes.com
* lookup com
* lookup esthost.com
* lookup net
* lookup biz
* lookup 127p.com
* lookup 441il.com
* lookup amour-mariage.net
* lookup barclaysbplc.com
* lookup billbot.biz
* lookup bute2ieh.com
* lookup catchonlife.com
* lookup cc
* lookup com.127p.com
* lookup com.441il.com
* lookup com.amour-mariage.net
* lookup com.barclaysbplc.com
* lookup com.billbot.biz
* lookup com.bute2ieh.com
* lookup com.catchonlife.com
* lookup com.datacord.org
* lookup com.gondatme.com
* lookup com.mailru.biz
* lookup com.maksik.cc
* lookup com.maksik.eu
* lookup com.medboc.com
* lookup com.nulled.ws
* lookup com.obeus.com
* lookup com.opernuz.com
* lookup com.painted.name
* lookup com.raw-e.com
* lookup com.raxoper.com
* lookup com.salesonmobile.com
* lookup com.skysix.net
* lookup com.statadd.com
* lookup com.wsopr.net
* lookup datacord.org
* lookup eu
* lookup gondatme.com
* lookup mailru.biz
* lookup maksik.cc
* lookup maksik.eu
* lookup medboc.com
* lookup name
* lookup nulled.ws
* lookup obeus.com
* lookup opernuz.com
* lookup org
* lookup painted.name
* lookup raw-e.com
* lookup raxoper.com
* lookup salesonmobile.com
* lookup skysix.net
* lookup statadd.com
* lookup ws
* lookup wsopr.net
_______________________________________________
Bleeding-sigs mailing list
Bleeding-sigs@bleedingthreats.net
http://lists.bleedingthreats.net/cgi-bin/mailman/listinfo/bleeding-sigs
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic