awsminingfxt.com Threat Intelligence and Information

Apr 25, 2022 domainpage

Host Location

Dig Results

Got answer:
-»HEADER«- opcode: QUERY, status: NOERROR, id: 56919
flags: qr rd ra QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
OPT PSEUDOSECTION:
EDNS: version: 0, flags: udp: 1232
QUESTION SECTION:
awsminingfxt.com. IN A
ANSWER SECTION:
awsminingfxt.com. 52 IN A 63.250.43.132
awsminingfxt.com. 52 IN A 63.250.43.133
Query time: 20 msec
SERVER: 192.168.1.153(192.168.1.1)
WHEN: Wed Apr 27 15:13:01 UTC 2022
MSG SIZE rcvd: 77

DNS Records

SOA dns1.registrar-servers.com 156.154.132.200
NS dns1.registrar-servers.com 156.154.132.200
NS dns1.registrar-servers.com 2610:a1:1024::200
NS dns2.registrar-servers.com 156.154.133.200
NS dns2.registrar-servers.com 2610:a1:1025::200
MX mx1.privateemail.com 198.54.122.213
MX mx2.privateemail.com 198.54.122.215
A awsminingfxt.com 63.250.43.133
A awsminingfxt.com 63.250.43.132
SRV _autodiscover._tcp.awsminingfxt.com privateemail.com 198.54.122.136 443 0

Whois Data

Domain Name: AWSMININGFXT.COM
Registry Domain ID: 2646149673_DOMAIN_COM-VRSN
Registrar URL: http://www.namecheap.com
Updated Date: 2021-10-07T15:58:35Z
Creation Date: 2021-10-07T15:58:32Z
Registry Expiry Date: 2022-10-07T15:58:32Z
Registrar: NameCheap, Inc.
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
Name Server: DNS1.REGISTRAR-SERVERS.COM
Name Server: DNS2.REGISTRAR-SERVERS.COM
DNSSEC: unsigned
Domain name: awsminingfxt.com
Registry Domain ID: 2646149673_DOMAIN_COM-VRSN
Registrar URL: http://www.namecheap.com
Updated Date: 0001-01-01T00:00:00.00Z
Creation Date: 2021-10-07T15:58:32.00Z
Registrar Registration Expiration Date: 2022-10-07T15:58:32.00Z
Registrar: NAMECHEAP INC
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.9854014545
Reseller: NAMECHEAP INC
Registry Registrant ID:
Registrant Name: Redacted for Privacy
Registrant Organization: Privacy service provided by Withheld for Privacy ehf
Registrant Street: Kalkofnsvegur 2
Registrant City: Reykjavik
Registrant State/Province: Capital Region
Registrant Postal Code: 101
Registrant Country: IS
Registrant Phone: +354.4212434
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: 04c43893d9ec4102a246e935cdc20ac3.protect@withheldforprivacy.com
Registry Admin ID:
Admin Name: Redacted for Privacy
Admin Organization: Privacy service provided by Withheld for Privacy ehf
Admin Street: Kalkofnsvegur 2
Admin City: Reykjavik
Admin State/Province: Capital Region
Admin Postal Code: 101
Admin Country: IS
Admin Phone: +354.4212434
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: 04c43893d9ec4102a246e935cdc20ac3.protect@withheldforprivacy.com
Registry Tech ID:
Tech Name: Redacted for Privacy
Tech Organization: Privacy service provided by Withheld for Privacy ehf
Tech Street: Kalkofnsvegur 2
Tech City: Reykjavik
Tech State/Province: Capital Region
Tech Postal Code: 101
Tech Country: IS
Tech Phone: +354.4212434
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: 04c43893d9ec4102a246e935cdc20ac3.protect@withheldforprivacy.com
Name Server: dns1.registrar-servers.com
Name Server: dns2.registrar-servers.com
DNSSEC: unsigned

SSL Certificate Information

Certificate:
Data:
Version: 3 (0x2)
Serial Number:
a2:78:38:1e:08:4f:87:74:5b:51:eb:72:31:4e:24:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Apr 6 00:00:00 2022 GMT
Not After : May 5 23:59:59 2023 GMT
Subject: CN = *.ingress-erytho.easywp.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e3:c1:61:4d:9f:93:f2:f5:47:74:42:50:21:
e7:91:e9:d1:a2:99:59:4d:1c:92:af:cd:fa:0c:0c:
68:21:f7:80:44:91:6a:3f:6b:80:71:92:2a:0a:a9:
40:aa:d9:2c:9e:8a:ad:b2:e7:98:57:ef:6f:90:7f:
ae:70:b9:7a:93:45:cc:0a:2e:ea:dc:8b:5f:a6:d5:
0f:f8:58:55:d4:e8:cc:92:e4:04:c0:4e:cf:d2:41:
ac:e5:9e:2b:d7:8d:16:1c:1b:97:6f:67:f2:6e:1a:
ad:b5:85:b4:81:3c:4d:0c:6e:d1:4b:40:5b:3c:ec:
1b:11:ef:4e:cf:cb:d5:38:4c:5c:1d:ca:b3:3e:39:
e3:50:7a:b5:45:5a:57:8b:79:71:7c:f0:77:41:ae:
c7:74:98:a8:f6:9b:49:9f:73:7a:00:68:49:05:23:
3f:19:a1:ef:18:03:60:ce:87:22:c2:ea:91:83:22:
2e:cb:64:f8:12:91:b5:0f:be:59:56:9a:83:88:fb:
fa:c4:ba:dd:6d:79:91:e3:38:2f:d6:7e:f3:44:7b:
f7:af:1e:1b:a9:5a:0e:f0:ac:58:ea:85:c9:cf:10:
68:bb:cf:d4:fb:b0:5f:8d:85:a3:27:da:17:d7:62:
bb:ba:ff:3a:b7:50:ed:a8:1a:6f:43:22:cf:c1:1b:
42:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
keyid:8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
45:C8:8E:24:4F:9B:14:B3:9E:DC:03:85:7B:B6:4C:54:58:0C:E7:79
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
X509v3 Subject Alternative Name:
DNS:*.ingress-erytho.easywp.com, DNS:ingress-erytho.easywp.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
Timestamp : Apr 6 12:49:39.025 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:56:01:46:F2:6B:55:0A:69:FE:29:4F:07:
57:0D:84:7A:D6:CC:62:98:F5:4E:E8:C1:90:EF:05:FA:
6E:CE:F4:90:02:21:00:E0:9F:45:56:6E:8F:5D:8D:0A:
34:A3:35:A4:C6:7F:E0:F1:4A:99:17:23:A7:24:3E:1F:
CB:A7:20:8B:46:EE:94
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
Timestamp : Apr 6 12:49:38.980 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AB:64:73:40:FA:54:4C:2C:E8:5B:4B:
63:78:62:8B:EF:73:63:73:75:89:4D:35:98:86:5E:47:
B2:65:84:D2:B8:02:21:00:E4:12:94:76:14:C6:ED:E9:
D3:EB:F4:35:6B:8D:27:C8:C7:42:CC:26:04:2C:29:E2:
4D:08:C8:C7:77:87:3A:3B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E8:3E:D0:DA:3E:F5:06:35:32:E7:57:28:BC:89:6B:C9:
03:D3:CB:D1:11:6B:EC:EB:69:E1:77:7D:6D:06:BD:6E
Timestamp : Apr 6 12:49:38.930 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:20:78:E9:72:5D:5D:66:81:FF:E6:7E:ED:
85:3E:15:13:A8:04:6D:5C:E7:0D:F9:1D:56:BD:7F:F7:
D6:71:4C:7E:02:20:55:F2:AE:78:44:97:36:3E:A7:B0:
49:C8:9B:F0:00:04:CB:DB:EA:6B:8F:1D:54:48:1B:CE:
9C:8B:6E:2D:08:F3
Signature Algorithm: sha256WithRSAEncryption
75:b6:e7:c2:46:22:5c:f7:62:8b:85:25:2b:b8:65:79:c3:4a:
9f:90:eb:cd:e4:13:68:82:23:3f:53:3e:5e:5a:e5:6c:0e:ea:
b6:03:86:b6:b5:81:fa:18:af:94:7f:41:76:4b:16:6e:05:0f:
21:15:02:9f:42:1a:92:dd:3f:53:b4:8b:ba:d7:d0:cc:34:21:
bf:e4:06:a5:c6:72:d9:39:a5:fb:81:fc:40:da:94:9d:2c:e5:
34:97:c8:a1:7e:70:10:01:c2:87:82:58:5a:07:f4:9f:aa:07:
d7:87:7f:69:01:2f:01:5e:e0:fd:64:e5:8b:f1:31:c2:41:9c:
43:4f:2a:84:f8:e4:4a:57:88:42:05:33:94:f8:e3:8c:83:c6:
0a:0d:32:af:e8:ff:81:be:89:61:58:a6:bf:32:a3:72:7a:77:
fb:d6:23:ed:63:82:0f:51:4e:0e:2c:d6:b9:df:18:95:9e:57:
51:fe:af:bf:2b:f4:5b:e5:ee:34:ba:bc:14:6e:a7:12:48:04:
5c:b3:0c:66:62:25:22:5e:29:68:49:f6:10:5f:03:95:8f:5d:
de:5d:a0:b3:87:f5:c1:f2:56:e5:23:aa:59:72:89:ef:a6:d1:
a4:ef:e4:d3:5c:bb:7c:1c:98:1b:9f:2c:fe:6a:3e:17:16:47:
ee:30:10:b2

Sitemap

Technologies

nginx Microsoft RPC Endpoint Mapper

Additional Links

*** Virustotal ***

*** WayBackMachine ***

Share on: