healthcarerxusa.com

The Purpose of this post is to ALERT you that the job you are about to apply for orscamalert may have applied FOR or is CONSIDERING APPLYING FOR is FRAUDULENT. The identities of an individual or a business entity have been stolen along with fund from their bank accounts.

These job postings are an attempt to lure you into accepting and cashing counterfeit checks into your bank accounts. You are being recruited to wire transfer these funds via WESTERN UNION or MONEYGRAM from your bank into a DOMESTIC BANK  or OFFSHORE BANK ACCOUNT.

 Essentially You Become A Money or Repackage Mule

  1. Money Mule Explained 
  2. Understanding The Cyber Theft Ring
  3. Protecting Yourself Against Money Mule
  4. KrebsOnSecurity – Cyberheist
  5. Washingtonpost.com by Brian Krebs
  6. Interview With A Money Mule
  7. Bobbear.co.UK ~ Historical Money Mule Sites

____________________

healthcareus

Advertisements

One thought on “healthcarerxusa.com

  1. SFA Reporter says:

    Address lookup
    canonical name http://www.healthcarerxusa.com.
    aliases
    addresses 5.9.141.183
    Domain Whois record

    Queried whois.internic.net with “dom healthcarerxusa.com”…

    Domain Name: HEALTHCARERXUSA.COM
    Registrar: EURODNS S.A
    Whois Server: whois.eurodns.com
    Referral URL: http://www.eurodns.com
    Name Server: BOB.NS.CLOUDFLARE.COM
    Name Server: IVY.NS.CLOUDFLARE.COM
    Status: clientTransferProhibited
    Updated Date: 25-oct-2013
    Creation Date: 14-jul-2013
    Expiration Date: 14-jul-2015

    >>> Last update of whois database: Wed, 30 Oct 2013 07:53:31 UTC <<<

    Queried whois.eurodns.com with "healthcarerxusa.com"…

    The Data in EuroDNS WHOIS database is provided for information purposes only.
    The fact that EuroDNS display such information does not provide any guarantee
    expressed or implied on the purpose for which the database may be used, its
    accuracy or usefulness. By submitting a WHOIS query, you agree that you will
    use this Data only for lawful purposes and that, under no circumstances will
    you use this Data to:

    (1) allow, enable, or otherwise support the transmission of mass unsolicited,
    commercial advertising or solicitations via e-mail (spam); or
    (2) enable high volume, automated, electronic processes that apply to EuroDNS
    (or its systems). EuroDNS reserves the right to modify these terms at any time.

    By submitting this query, you agree to abide by the above policy.

    Domain: healthcarerxusa.com
    Registrar: Eurodns S.A.

    Registrant:
    Company:
    Name: Dickinson Kevin
    Address: 469 Seventh Avenue 16th Floor
    City: New York
    Country: UNITED STATES
    Postal Code: 10018-7605
    Phone: +12126432301
    Fax:
    Email: forkevins@gmail.com

    Administrative Contact:
    Company:
    Name: Dickinson Kevin
    Address: 469 Seventh Avenue 16th Floor
    City: New York
    Country: UNITED STATES
    Postal Code: 10018-7605
    Phone: +12126432301
    Fax:
    Email: forkevins@gmail.com

    Technical Contact:
    Company:
    Name: Dickinson Kevin
    Address: 469 Seventh Avenue 16th Floor
    City: New York
    Country: UNITED STATES
    Postal Code: 10018-7605
    Phone: +12126432301
    Fax:
    Email: forkevins@gmail.com

    Original Creation Date: 2013-07-14
    Expiration Date: 2015-07-13

    Status:
    clientTransferProhibited

    Nameserver Information:
    Nameserver: bob.ns.cloudflare.com
    Nameserver: ivy.ns.cloudflare.com

    Network Whois record

    Queried whois.ripe.net with "-B 5.9.141.183"…

    % Information related to '5.9.141.160 – 5.9.141.191'

    % Abuse contact for '5.9.141.160 – 5.9.141.191' is 'abuse@hetzner.de'

    inetnum: 5.9.141.160 – 5.9.141.191
    netname: HETZNER-RZ19
    descr: Hetzner Online AG
    descr: Datacenter 19
    country: DE
    admin-c: HOAC1-RIPE
    tech-c: HOAC1-RIPE
    status: ASSIGNED PA
    remarks: INFRA-AW
    mnt-by: HOS-GUN
    mnt-lower: HOS-GUN
    mnt-routes: HOS-GUN
    changed: ripe-dbm-updates@robot.first-ns.de 20121112
    source: RIPE

    role: Hetzner Online AG – Contact Role
    address: Hetzner Online AG
    address: Stuttgarter Strasse 1
    address: D-91710 Gunzenhausen
    address: Germany
    phone: +49 9831 61 00 61
    fax-no: +49 9831 61 00 62
    e-mail: ripe@hetzner.de
    abuse-mailbox: abuse@hetzner.de
    remarks: *************************************************
    remarks: * For spam/abuse/security issues please contact *
    remarks: * abuse@hetzner.de, not this address. *
    remarks: * The contents of your abuse email will be *
    remarks: * forwarded directly on to our client for *
    remarks: * handling. *
    remarks: *************************************************
    remarks:
    remarks: *************************************************
    remarks: * Any questions on Peering please send to *
    remarks: * peering@hetzner.de *
    remarks: *************************************************
    org: ORG-HOA1-RIPE
    admin-c: MH375-RIPE
    tech-c: GM834-RIPE
    tech-c: SK2374-RIPE
    tech-c: TF2013-RIPE
    tech-c: MF1400-RIPE
    tech-c: SK8441-RIPE
    nic-hdl: HOAC1-RIPE
    notify: ripe-mntner@hetzner.de
    mnt-by: HOS-GUN
    source: RIPE
    changed: mf@hetzner.de 20130114
    changed: mf@hetzner.de 20130227
    changed: sebastian.krannich@hetzner.de 20130418

    % Information related to '5.9.0.0/16AS24940'

    route: 5.9.0.0/16
    descr: HETZNER-RZ-FKS-BLK5
    origin: AS24940
    mnt-by: HOS-GUN
    changed: MF@hetzner.de 20120426
    source: RIPE

    % This query was served by the RIPE Database Query Service version 1.69 (WHOIS1)

    DNS records
    name class type data time to live
    http://www.healthcarerxusa.com IN A 5.9.141.183 300s (00:05:00)
    healthcarerxusa.com IN A 5.9.141.183 300s (00:05:00)
    healthcarerxusa.com IN NS bob.ns.cloudflare.com 86400s (1.00:00:00)
    healthcarerxusa.com IN NS ivy.ns.cloudflare.com 86400s (1.00:00:00)
    healthcarerxusa.com IN SOA
    server: bob.ns.cloudflare.com
    email: dns@cloudflare.com
    serial: 2013102515
    refresh: 10000
    retry: 2400
    expire: 604800
    minimum ttl: 3600
    86400s (1.00:00:00)
    183.141.9.5.in-addr.arpa IN PTR static.183.141.9.5.clients.your-server.de 86400s (1.00:00:00)
    141.9.5.in-addr.arpa IN SOA
    server: ns1.your-server.de
    email: postmaster@your-server.de
    serial: 2013102700
    refresh: 86400
    retry: 1800
    expire: 3600000
    minimum ttl: 86400
    86400s (1.00:00:00)
    141.9.5.in-addr.arpa IN RRSIG
    type covered: NSEC (47)
    algorithm: RSA/SHA-1 (5)
    labels: 5
    original ttl: 7200 (02:00:00)
    signature expiration: 2013-11-28 11:55:33Z
    signature inception: 2013-10-29 10:55:33Z
    key tag: 18562
    signer's name: 5.in-addr.arpa
    signature:
    (1024 bits)

    14F4BD3760AAF8D463B8AF9EC4086EE1
    829B7A252386C35D33A9C6A3C3F5EF37
    28A37B95F19D9D1F2B1059E578472F75
    E2FE8DD75FB9C46B5656D398FBA3AE7C
    8392337A14D6FBA21CF4F877798BA4C3
    22286D50C4F162AC2E9B215F83653938
    E48FF532C67FCAD38E07500492EF36A4
    3E1F824B9EC5C8323E44E907CDBE4DBC

    7199s (01:59:59)
    141.9.5.in-addr.arpa IN NSEC
    next domain name: 142.9.5.in-addr.arpa
    record types: NS RRSIG NSEC
    7199s (01:59:59)
    141.9.5.in-addr.arpa IN NS ns3.second-ns.de 43725s (12:08:45)
    141.9.5.in-addr.arpa IN NS ns1.your-server.de 43725s (12:08:45)
    141.9.5.in-addr.arpa IN NS ns.second-ns.com 43725s (12:08:45)

    — end —

Leave A Comment

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s