Day: November 20, 2012

Whois instant retail solutions, llc

Leave a comment

Suspicious site ~ possible scam

Address lookup
canonical name http://www.instantretailsolutions.com
aliases
addresses 216.104.165.80
216.104.165.20
Domain Whois record

Queried whois.internic.net with “dom instantretailsolutions.com”…

Domain Name: INSTANTRETAILSOLUTIONS.COM
Registrar: TIERRANET INC. D/B/A DOMAINDISCOVER
Whois Server: whois.domaindiscover.com
Referral URL: http://www.domaindiscover.com
Name Server: NS1.TIERRA.NET
Name Server: NS2.TIERRA.NET
Status: clientTransferProhibited
Updated Date: 15-sep-2012
Creation Date: 14-sep-2010
Expiration Date: 14-sep-2013

>>> Last update of whois database: Tue, 20 Nov 2012 10:28:35 UTC <<<

Address lookup
canonical name instantretailsolutions.com.
aliases
addresses 216.104.165.80
216.104.165.20
Domain Whois record

Queried whois.internic.net with “dom instantretailsolutions.com”…

Domain Name: INSTANTRETAILSOLUTIONS.COM
Registrar: TIERRANET INC. D/B/A DOMAINDISCOVER
Whois Server: whois.domaindiscover.com
Referral URL: http://www.domaindiscover.com
Name Server: NS1.TIERRA.NET
Name Server: NS2.TIERRA.NET
Status: clientTransferProhibited
Updated Date: 15-sep-2012
Creation Date: 14-sep-2010
Expiration Date: 14-sep-2013

>>> Last update of whois database: Tue, 20 Nov 2012 10:28:35 UTC <<<

Queried whois.domaindiscover.com with “instantretailsolutions.com”…

Registrant:
THE INFORMATION REFINERY
200 State Route 17 Suite 5
Mahwah, NJ 07430
US

Domain Name: INSTANTRETAILSOLUTIONS.COM

Administrative Contact, Technical Contact, Zone Contact:
THE INFORMATION REFINERY
Gordon Clotworthy
200 State Route 17 Suite 5
Mahwah, NJ 07430
US
(201)529-2600
registrar@inforefinery.com

Domain created on 14-Sep-2010
Domain expires on 13-Sep-2013
Last updated on 15-Aug-2012

Domain servers in listed order:

NS1.TIERRA.NET
NS2.TIERRA.NET

TierraNet — web hosting, domain registration, and more.
Visit our website at http://www.tierra.net to learn about our services.

Network Whois record

Queried whois.arin.net with “n 216.104.165.80″…

NetRange: 216.104.160.0 – 216.104.191.255
CIDR: 216.104.160.0/19
OriginAS:
NetName: TIERRANET-2BLK
NetHandle: NET-216-104-160-0-1
Parent: NET-216-0-0-0-0
NetType: Direct Allocation
Comment: ADDRESSES WITHIN THIS BLOCK ARE NON-PORTABLE
RegDate: 2000-07-17
Updated: 2012-02-24
Ref: http://whois.arin.net/rest/net/NET-216-104-160-0-1

OrgName: TierraNet Inc.
OrgId: TIER
Address: PO BOX 502010
City: San Diego
StateProv: CA
PostalCode: 92150-2010
Country: US
RegDate: 1997-11-11
Updated: 2011-09-24
Ref: http://whois.arin.net/rest/org/TIER

OrgAbuseHandle: BS261-ARIN
OrgAbuseName: Scott, Brian
OrgAbusePhone: +1-858-560-9416
OrgAbuseEmail: brian@tierra.net
OrgAbuseRef: http://whois.arin.net/rest/poc/BS261-ARIN

OrgTechHandle: BS261-ARIN
OrgTechName: Scott, Brian
OrgTechPhone: +1-858-560-9416
OrgTechEmail: brian@tierra.net
OrgTechRef: http://whois.arin.net/rest/poc/BS261-ARIN

RTechHandle: TH33-ORG-ARIN
RTechName: TierraNet Inc
RTechPhone: +1-858-560-9416
RTechEmail: ops@tierra.net
RTechRef: http://whois.arin.net/rest/poc/TH33-ORG-ARIN

Queried whois.godaddy.com with “magazinegold.com

Registered through: GoDaddy.com, LLC (http://www.godaddy.com)
Domain Name: MAGAZINEGOLD.COM
Created on: 04-Feb-11
Expires on: 04-Feb-13
Last Updated on: 17-Mar-12

Registrant:
The ReAgent Group
160 Summit Avenue
Apt 25
Summit, NJ 07901
us

Administrative Contact:
Mulcahy, Cliff cliff.mulcahy@gmail.com
The ReAgent Group
160 Summit Avenue
Apt 25
Summit, NJ 07901
us
9084516798

Technical Contact:
Mulcahy, Cliff cliff.mulcahy@gmail.com
The ReAgent Group
160 Summit Avenue
Apt 25
Summit, NJ 07901
us
9084516798

Domain servers in listed order:
NS61.DOMAINCONTROL.COM
NS62.DOMAINCONTROL.COM

Network Whois record

Queried whois.arin.net with “n ! NET-108-166-30-232-1″…

NetRange: 108.166.30.232 – 108.166.30.239
CIDR: 108.166.30.232/29
OriginAS:
NetName: RACKS-8-1329485532579360
NetHandle: NET-108-166-30-232-1
Parent: NET-108-166-0-0-1
NetType: Reassigned
RegDate: 2012-02-17
Updated: 2012-02-17
Ref: http://whois.arin.net/rest/net/NET-108-166-30-232-1

CustName: The Information Refinery Inc.
Address: 200 State Rt. 17 Ste 5
Address: Suite 5 Mahwah
City: Mahwah
StateProv: NJ
PostalCode: 07430
Country: US
RegDate: 2012-02-17
Updated: 2012-02-17
Ref: http://whois.arin.net/rest/customer/C02934078

OrgAbuseHandle: ABUSE45-ARIN
OrgAbuseName: Abuse Desk
OrgAbusePhone: +1-210-892-4000
OrgAbuseEmail: abuse@rackspace.com
OrgAbuseRef: http://whois.arin.net/rest/poc/ABUSE45-ARIN

OrgTechHandle: IPADM17-ARIN
OrgTechName: IPADMIN
OrgTechPhone: +1-210-892-4000
OrgTechEmail: hostmaster@rackspace.com
OrgTechRef: http://whois.arin.net/rest/poc/IPADM17-ARIN

DNS records
name class type data time to live
magazinegold.com IN A 108.166.30.233 3600s (01:00:00)
magazinegold.com IN MX
preference: 10
exchange: aspmx.l.google.com
3600s (01:00:00)
magazinegold.com IN MX
preference: 20
exchange: alt1.aspmx.l.google.com
3600s (01:00:00)
magazinegold.com IN MX
preference: 30
exchange: alt2.aspmx.l.google.com
3600s (01:00:00)
magazinegold.com IN MX
preference: 40
exchange: aspmx2.googlemail.com
3600s (01:00:00)
magazinegold.com IN MX
preference: 50
exchange: aspmx3.googlemail.com
3600s (01:00:00)
magazinegold.com IN NS ns61.domaincontrol.com 3600s (01:00:00)
magazinegold.com IN NS ns62.domaincontrol.com 3600s (01:00:00)
magazinegold.com IN TXT v=spf1 a mx include:inforefinery.com ~all 3600s (01:00:00)
magazinegold.com IN TXT google-site-verification=aBkliPxZWoNKQ_BqCfNTSrP3eRSsXDm2u5hpcK5IMZo 3600s (01:00:00)
magazinegold.com IN SOA
server: ns61.domaincontrol.com
email: dns@jomax.net
serial: 2012060404
refresh: 28800
retry: 7200
expire: 604800
minimum ttl: 3600
3600s (01:00:00)
233.30.166.108.in-addr.arpa IN PTR web.magazinegoldcard.com 3600s (01:00:00)
30.166.108.in-addr.arpa IN RRSIG
type covered: NSEC (47)
algorithm: RSA/SHA-1 (5)
labels: 5
original ttl: 10800 (03:00:00)
signature expiration: 2012-11-30 01:00:09Z
signature inception: 2012-11-20 01:00:09Z
key tag: 51674
signer’s name: 108.in-addr.arpa
signature:
(1024 bits)

10799s (02:59:59)
30.166.108.in-addr.arpa IN NSEC
next domain name: 31.166.108.in-addr.arpa
record types: NS RRSIG NSEC
10799s (02:59:59)
30.166.108.in-addr.arpa IN NS ns.rackspace.com 300s (00:05:00)
30.166.108.in-addr.arpa IN NS ns2.rackspace.com 300s (00:05:00)

— end —

www.flexdirect.adp.com

Leave a comment

Email Header Analysis

IP Address: 59.92.171.21 (59.92.171.21)
IP Address Country: India
IP Continent: Asia
IP Address City Location: Bangalore
IP Address Region: Karnataka
IP Address Latitude: 12.9833,
IP Address Longtitude: 77.5833
Organization: BSNL

X-Originating-Ip: [59.92.184.62]
Authentication-Results: mta1279.sbc.mail.gq1.yahoo.com from=btsales.net; domainkeys=neutral (no sig); from=btsales.net; dkim=neutral (no sig)
Received: from 127.0.0.1 (EHLO 59.92.171.21) (59.92.184.62) by mta1279.sbc.mail.gq1.yahoo.com with SMTP; Fri, 28 Sep 2012 00:27:32 -0700
From: “ADP Notification”
To: scamFRAUDalert
Subject: Your Transaction Report(s)
Date: Fri, 28 Sep 2012 12:57:31 +0530
Mime-Version: 1.0
Content-Type: text/html; charset=”iso-8859-1″
Content-Transfer-Encoding: 8bit
List-Unsubscribe:
Message-Id:
Content-Length: 1043

Your Transaction Report(s) have been uploaded to the web site:

https://www.flexdirect.adp.com/client/login.aspx

Please note that your bank account will be debited within one banking
business day for the amount(s) shown on the report(s).

Please do not respond or reply to this automated e-mail. If you have any
questions or comments, please Contact your ADP Benefits Specialist.

Thank You,
ADP Benefit Services

T.J. Johnson and Associates

Leave a comment

scamFRAUDalert see it necessary to issue this ALERT as the operators of T.J. Johnson and Associates are CDA Consulting LLC of Tyler, Texas. A company identified as engaging in deceptive marketing tactics according to the Better Business Bureau

The Better Business Bureau says the company sends postcards under various names requesting that consumers call a number to schedule pickup.

Consumers alleged the card implies that they have missed the delivery of a package and must call a toll free number or a 903 area code number to schedule a package delivery. Consumers claim it is an attempt to sell them a vacation package.

Now they are engage in sending official looking letter offering a free Android Tablet Computer, when in fact; it is an attempt to lure them into purchasing a vacation package.

CDA Consulting LLC
11229 Highway 64 E,
Tyler, TX 75707-3442
(888) 501-1505

Associated Business Names:

  1. Apex Services
  2. Express Package Delivery
  3. Summit Package Service
  4. Combined Package Service
  5. Package Services
  6. T.J. Johnson and Associates
  7. Cruise Drive Fly

FRS and Associates

Leave a comment

Consumer Alert
FRS and Associates

Possible Debt Collection Scam

The Washington State Department of Financial Institutions (DFI) received a report from a consumer indicating she and her family members were regularly being contacted by individuals identifying themselves as representatives of a company by the name “FRS and Associates” regarding an unpaid loan transaction. The individuals gave differing dates for the unpaid loan transaction (2007 and 2009). This company also sent a letter detailing payments owed, but did not produce a “validation of debt” as requested by the consumer.

The representatives threatened legal action, fraud charges, and jail time if payment arrangements were not made immediately. The consumer indicated that the callers had her personal information; however, they would not provide any specific details or documentation regarding the payday loan.

The telephone numbers associated with FRS and Associates are
(404) 996-0746 and 855-602-1155.

The address on the letter is “5757 Main St Williamsville, NY 14221.

DFI has been unable to confirm any other contact information pertaining to this company.

FRS and Associates is not licensed by DFI or by the Washington State Department of Revenue, and is not registered with the Office of the Secretary of State.

Verify Licenses

DFI strongly recommends that consumers deal only with those lenders that are properly licensed to conduct business. Consumers can determine whether lenders are properly licensed using the “Verify a License” feature on DFI’s website at www.dfi.wa.gov.

Payday Loan Collection Laws

Washington State law prohibits threatening or harassing behavior by individuals attempting to collect a debt. The federal Fair Debt Collection Practices Act states that debt collectors must send consumers a written notice within five days of the first collection phone call, stating the amount of the debt and what it relates to. Debt collectors cannot state or imply that failure to pay a debt is a crime. They cannot call before 8:00 a.m. or after 9:00 p.m. They cannot harass or abuse consumers, or contact consumers’ places of employment.

Report Fraud

If you feel you have been the victim of a loan scam, contact the Federal Trade Commission at 1-877-FTC-HELP (1-877-382-4357), or online at www.ftc.gov.

If you feel you have been the victim of a loan scam involving the Internet, contact the Internet Crime Complaint Center at www.ic3.gov.

If you feel you have been the victim of a loan scam and are concerned about your personal financial information, contact your banking institution, and the three major credit bureaus.

If you wish to file a complaint regarding a collection agency, contact the Washington State Department of Revenue at (360) 664-1389.

Gentra Finances Inc ~ gentrafinanceinc.com

Leave a comment

Consumer Alert
Gentra Finances Inc
Gentra Financial Corporation

Advance Fee Loan Scam

The Washington State Department of Financial Institutions (DFI) received two complaints from consumers who alleged they had applied for a loan online with an entity named Gentra Finance Inc. Both consumers indicated they had found this entity online at the following website: gentrafinanceinc.com, and contacted them by phone at (877) 502-5335. The website falsely indicated the entity was located at the following address: 600 University Street, Suite 800, Seattle, WA 98101.

Both consumers contacted the entity and spoke with a man named Timothy Parker who indicated they must pay an advanced fee of $400 to obtain their loans. The consumers were subsequently told that additional fees would be required to be able to obtain their loans and one of the consumers advanced up to $1400 in an attempt to obtain the loan. The consumers indicated the advance fees were wired to a Lisa Alexander in Ontario, Canada. The website for Gentra Finance, Inc has since been disabled and the phone number has been disconnected. Gentra Finance Inc. appears to be a fictitious business defrauding consumers on an advance fee loan scam.

Gentra Finance, Inc is not licensed by the Washington State Department of Financial Institutions (DFI) to conduct the business of a consumer lender. DFI could not verify the identity or contact information for the company and it appears to be a fictitious, illegitimate business entity.

Verify Licenses

DFI strongly recommends that consumers deal only with those lenders that are properly licensed to conduct business. Consumers can determine whether lenders are properly licensed using the “Verify a License” feature on DFI’s website at www.dfi.wa.gov.

Report Fraud

If you are suspicious of unlicensed activity by a mortgage broker, consumer lender, money transmitter, or escrow agent; contact the Washington State Department of Financial Institutions at 1-877-RING-DFI (746-4334), or online at www.dfi.wa.gov.

If you feel you have been the victim of a loan scam, contact the Federal Trade Commission at 1-877-FTC-HELP (1-877-382-4357), or online at www.ftc.gov.

If you feel you have been the victim of a loan scam involving the Internet, contact the Internet Crime Complaint Center at www.ic3.gov.

If you feel you have been the victim of a loan scam and are concerned about your personal financial information, contact your banking institution, and the three major credit bureaus.

877-502-5335 ext. 10

Registrar History:1 registrar
NS History:1 change on 2 unique name servers over 0 year.
Whois History:3 records have been archived since 2012-07-25 .
Reverse IP: 35,715 other sites hosted on this server.

Registrant:
Contact Privacy Inc. Customer 0131842524
96 Mowat Ave
Toronto, ON M6K 3M1
CA

Domain name: GENTRAFINANCEINC.COM

Administrative Contact:
Contact Privacy Inc. Customer 0131842524,
96 Mowat Ave
Toronto, ON M6K 3M1
CA
+1.4165385457
Technical Contact:
Contact Privacy Inc. Customer 0131842524,
96 Mowat Ave
Toronto, ON M6K 3M1
CA
+1.4165385457

Registration Service Provider:
Intuit Websites,
1-800-428-3170
http://www.intuit.com

Registrar of Record: TUCOWS, INC.
Record last updated on 23-Jul-2012.
Record expires on 23-Jul-2013.
Record created on 23-Jul-2012.

Registrar Domain Name Help Center:
http://tucowsdomains.com

Domain servers in listed order:
NS2.MDNSSERVICE.COM
NS3.MDNSSERVICE.COM
NS1.MDNSSERVICE.COM

Domain status: clientTransferProhibited
clientUpdateProhibited