WhoIs tweetiz.com – Malware Infestation

tweetiz

tweetiz.png

79.137.105.126 resolves to ip126.ip-79-137-105.eu.
The following A records are set to 79.137.105.126:

  1. ns1.tweetiz.com
  2. ns2.tweetiz.com
  3. tweetiz.com

Address lookup
canonical name:tweetiz.com
aliases
addresses:79.137.105.126
Domain Whois record

Queried whois.internic.net with “dom tweetiz.com”…

Domain Name: TWEETIZ.COM
Registry Domain ID: 2125549765_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.isimtescil.net
Registrar URL: http://www.isimtescil.net

Updated Date: 2017-05-20T14:53:40Z
Creation Date: 2017-05-18T16:05:53Z

Registry Expiry Date: 2018-05-18T16:05:53Z
Registrar: FBS Inc.
Registrar IANA ID: 1110
Registrar Abuse Contact Email: abuse@domaintime.biz
Registrar Abuse Contact Phone: 90.8502000444
Domain Status: clientTransferProhibited

Name Server: NS1.TWEETIZ.COM
Name Server: NS2.TWEETIZ.COM

DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint
Last update of whois database: 2017-08-31T04:39:33Z
Queried whois.isimtescil.net with “tweetiz.com

Domain Name: TWEETIZ.COM
Registry Domain ID: 2125549765_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.isimtescil.net
Registrar URL: http://www.isimtescil.net

Updated Date: 2017-07-18T02:29:54Z
Creation Date: 2017-05-18T16:05:53Z

Registrar Registration Expiration Date: 2018-05-18T16:05:53Z
Registrar: FBS Inc.
Registrar IANA ID: 1110
Domain Status: clientTransferProhibited

Registry Registrant ID: Not Available From Registry
Registrant Name: Domain Admin ContactID 3577497
Registrant Organization: FBS INC / Whoisprotection biz
Registrant Street: Atasehir Goztepe Nida Kule Is Merkezi Bora Sokak N
Registrant City: Istanbul
Registrant State/Province: Istanbul
Registrant Postal Code: 34704
Registrant Country: TR
Registrant Phone: +90.8502000444
Registrant Email: 3577497@whoisprotection.biz

Registry Admin ID: Not Available From Registry
Admin Name: Domain Admin ContactID 3577497
Admin Organization: FBS INC / Whoisprotection biz
Admin Street: Atasehir Goztepe Nida Kule Is Merkezi Bora Sokak N
Admin City: Istanbul
Admin State/Province: Istanbul
Admin Postal Code: 34704
Admin Country: TR
Admin Phone: +90.8502000444
Admin Email: 3577497@whoisprotection.biz

Registry Tech ID: Not Available From Registry
Tech Name: Domain Admin ContactID 3577497
Tech Organization: FBS INC / Whoisprotection biz
Tech Street: Atasehir Goztepe Nida Kule Is Merkezi Bora Sokak N
Tech City: Istanbul
Tech State/Province: Istanbul
Tech Postal Code: 34704
Tech Country: TR
Tech Phone: +90.8502000444
Tech Email: 3577497@whoisprotection.biz

Name Server: ns1.tweetiz.com
Name Server: ns2.tweetiz.com

DNSSEC:Unsigned
Registrar Abuse Contact Email: abuse@domaintime.biz
Registrar Abuse Contact Phone: +90.8502000444
URL of the ICANN WHOIS Data

>>> Last update of WHOIS database: 2017-08-31T04:39:45Z <<<
Network Whois record

Queried whois.ripe.net with “-B 79.137.105.126″…

Information related to ‘79.137.105.0 – 79.137.105.255’

Abuse contact for ‘79.137.105.0 – 79.137.105.255’ is ‘abuse@ovh.net’

inetnum: 79.137.105.0 – 79.137.105.255
netname: OVH-DEDICATED-FO
country: FR
descr: Failover IPs
org: ORG-OS3-RIPE
admin-c: OTC2-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
created: 2017-01-11T11:00:00Z
last-modified: 2017-01-11T11:00:00Z
source: RIPE

organisation: ORG-OS3-RIPE
org-name: OVH SAS
org-type: LIR
address: 2 rue Kellermann
address: 59100
address: Roubaix
address: FRANCE
phone: +33972101007
abuse-c: AR15333-RIPE
admin-c: OTC2-RIPE
admin-c: OK217-RIPE
admin-c: GM84-RIPE
mnt-ref: OVH-MNT
mnt-ref: RIPE-NCC-HM-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: OVH-MNT
abuse-mailbox: abuse@ovh.net
created: 2004-04-17T11:23:17Z
last-modified: 2017-05-30T07:24:52Z
source: RIPE
e-mail: lir@ovh.net

role: OVH Technical Contact
address: OVH SAS
address: 2 rue Kellermann
address: 59100 Roubaix
address: France
e-mail: noc@ovh.net
admin-c: OK217-RIPE
tech-c: GM84-RIPE
tech-c: SL10162-RIPE
nic-hdl: OTC2-RIPE
notify: noc@ovh.net
abuse-mailbox: abuse@ovh.net
mnt-by: OVH-MNT
created: 2004-01-28T17:42:29Z
last-modified: 2014-09-05T10:47:15Z
source: RIPE

% Information related to ‘79.137.64.0/18AS16276’

route: 79.137.64.0/18
origin: AS16276
mnt-by: OVH-MNT
created: 2017-01-09T09:27:47Z
last-modified: 2017-01-09T09:27:47Z
source: RIPE

% This query was served by the RIPE Database Query Service version 1.89.2 (ANGUS)
DNS records

name class type data time to live
tweetiz.com IN SOA
server: ns1.tweetiz.com
email: salla@salla.com
serial: 2017062702
refresh: 3600
retry: 7200
expire: 1209600
minimum ttl: 86400
86400s (1.00:00:00)
tweetiz.com IN NS ns2.tweetiz.com 86400s (1.00:00:00)
tweetiz.com IN NS ns1.tweetiz.com 86400s (1.00:00:00)
tweetiz.com IN A 79.137.105.126 14400s (04:00:00)
tweetiz.com IN MX
preference: 0
exchange: tweetiz.com
14400s (04:00:00)
126.105.137.79.in-addr.arpa IN PTR ip126.ip-79-137-105.eu 86400s (1.00:00:00)
105.137.79.in-addr.arpa IN SOA
server: dns109.ovh.net
email: tech@ovh.net
serial: 2017082902
refresh: 43200
retry: 4320
expire: 2419200
minimum ttl: 86400
86400s (1.00:00:00)
105.137.79.in-addr.arpa IN NS dns109.ovh.net 86400s (1.00:00:00)
105.137.79.in-addr.arpa IN NS ns109.ovh.net 86400s (1.00:00:00)
105.137.79.in-addr.arpa IN TXT v=spf1 include:mx.ovh.com ~all 600s (00:10:00)
— end —

Advertisements

Leave A Comment

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.