hanzaifiles.com Threat Intelligence and Information

Apr 25, 2022 domainpage

Host Location

Dig Results

Got answer:
-»HEADER«- opcode: QUERY, status: NOERROR, id: 46112
flags: qr rd ra QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
OPT PSEUDOSECTION:
EDNS: version: 0, flags: udp: 512
QUESTION SECTION:
hanzaifiles.com. IN A
ANSWER SECTION:
hanzaifiles.com. 3600 IN A 103.224.182.210
Query time: 204 msec
SERVER: 192.168.1.153(192.168.1.1)
WHEN: Mon May 09 07:28:22 UTC 2022
MSG SIZE rcvd: 60

DNS Records

SOA ns1.above.com 103.224.212.5
SOA ns1.above.com 103.224.182.5
NS ns1.above.com 103.224.212.5
NS ns1.above.com 103.224.182.5
NS ns2.above.com 103.224.182.6
NS ns2.above.com 103.224.212.6
MX park-mx.above.com 103.224.212.34
A hanzaifiles.com 103.224.182.210

Whois Data

Domain Name: HANZAIFILES.COM
Registry Domain ID: 2656066697_DOMAIN_COM-VRSN
Registrar URL: http://www.dynadot.com
Updated Date: 2021-11-19T13:12:56Z
Creation Date: 2021-11-19T13:11:09Z
Registry Expiry Date: 2022-11-19T13:11:09Z
Registrar: DYNADOT, LLC
Registrar IANA ID: 472
Registrar Abuse Contact Email: abuse@dynadot.com
Registrar Abuse Contact Phone: +16502620100
Name Server: 170.NS1.ABOVE.COM
Name Server: 170.NS2.ABOVE.COM
DNSSEC: unsigned

SSL Certificate Information

Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:bf:de:25:1b:a1:96:9c:32:6d:4c:f4:d5:7e:c1:2d:cc:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: C = US, O = Let’s Encrypt, CN = R3
Validity
Not Before: Apr 12 07:18:00 2022 GMT
Not After : Jul 11 07:17:59 2022 GMT
Subject: CN = hugregregy.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (4096 bit)
Modulus:
00:f5:ef:a4:5b:86:9a:91:b3:5f:37:db:7a:06:54:
09:91:43:6a:63:be:33:8d:13:dc:84:f7:fe:b3:b6:
6e:be:4a:9d:19:88:a9:ed:d7:bc:24:2d:3c:a3:ab:
0d:2e:6b:cf:3c:e4:08:92:43:fc:51:2e:ab:78:71:
cf:7b:00:ba:1b:b5:9f:d1:d4:86:75:c2:83:cc:d9:
74:84:53:a1:2c:d8:41:f6:57:33:7c:de:d1:df:7d:
be:f4:1f:06:a1:ef:40:e8:1f:46:e6:dc:fa:04:fd:
a8:4d:2a:82:f3:3e:19:ea:b7:2a:65:32:fb:dd:10:
89:f5:84:1e:33:4d:43:cc:04:9e:a2:05:f3:ed:57:
68:73:d8:46:d6:02:eb:80:9b:88:73:a0:b7:97:96:
54:18:55:b7:59:81:2d:91:fa:d0:fe:6e:26:2b:1f:
58:33:1d:fc:46:0f:50:5f:d9:f0:58:eb:fb:82:c0:
75:b4:b7:51:fa:5d:57:8b:dc:8c:b4:ee:f8:6e:6b:
6f:28:5c:59:e8:33:1a:4e:53:bc:cb:41:bd:5f:45:
f5:bc:50:7d:41:82:18:d5:68:64:a0:34:9b:97:3a:
ad:1b:5a:01:dc:fd:60:6c:d3:dd:2e:cf:2d:15:6e:
b7:fc:78:e9:e0:26:9b:b4:3d:8a:33:d6:06:26:e7:
2b:b5:f6:8e:06:f4:1d:28:2e:5a:fb:fe:18:d6:5d:
fb:36:ea:8a:f8:a3:36:a7:df:0d:4d:0f:67:58:81:
8a:7c:65:da:2a:a8:b5:08:85:56:da:6e:ec:2e:b9:
5c:75:77:34:38:9b:d3:fc:58:83:33:75:94:d4:43:
44:61:c6:b4:77:af:3d:54:50:e4:dd:19:8e:07:01:
e6:ab:54:79:2e:55:33:cc:66:83:ff:b5:5a:e4:87:
f0:4c:f6:fe:04:41:36:a2:8d:c6:3f:7e:c6:13:fc:
cd:64:ce:80:4b:79:03:a0:31:77:fe:bd:1a:28:0d:
92:17:ec:d9:9c:e3:54:14:f2:d4:99:a0:4b:d3:f3:
54:f5:3c:d5:b2:a0:f0:40:7a:03:28:3b:52:68:67:
f5:0c:de:24:41:8e:00:ed:8b:d6:35:fb:33:aa:5d:
ca:67:cb:df:ad:01:c8:d1:96:08:f5:49:a0:8c:94:
39:e4:7d:b9:36:8e:76:0b:61:18:bc:a5:36:90:65:
bf:6c:9b:fe:3a:90:d8:f4:b7:0b:20:be:b5:f4:00:
bc:28:c6:4e:ae:08:bd:da:0b:56:23:5a:ce:fd:f3:
d0:fa:78:25:c6:27:f0:d1:6b:f4:03:d8:1a:34:21:
ad:f3:2e:89:a8:cd:7c:08:3b:a8:44:03:a1:69:e9:
11:df:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
6B:10:00:BA:20:DC:93:21:6F:A2:D2:0B:F8:98:36:ED:EB:79:6E:96
X509v3 Authority Key Identifier:
keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:.anymore.im, DNS:.canada.net.au, DNS:.clp.us, DNS:.comwithmycrypto.com, DNS:.cornwalledmeetup.com, DNS:.enelenergy.it, DNS:.fasdtweb.it, DNS:.freepornswimmingpics.com, DNS:.freshsents.com, DNS:.gesundheitssinformation.de, DNS:.hanzaifiles.com, DNS:.hentaihq.net, DNS:.hugregregy.com, DNS:.inasi918.com, DNS:.infstartappservice.com, DNS:.iuanyware.com, DNS:.jpnchase.com, DNS:.ladouaneaupeaje.com, DNS:.ladysperdstick.com, DNS:.lenoxplaceapt.com, DNS:.lonyoutube.com, DNS:.marketingmanager.com.au, DNS:.milanuncios.ir, DNS:.milftubeporn.net, DNS:.minecrafy.net, DNS:.minecreft.net, DNS:.misxkit.co, DNS:.mmhh.net, DNS:.qataraairways.com, DNS:.reverseauction.com.au, DNS:.secureistech.net, DNS:.siencekids.co.nz, DNS:.starscafe.net, DNS:.stmatycho.com, DNS:.theallisonspa.net, DNS:.tuftshelathplan.com, DNS:.tvspirlfilm.de, DNS:.universaltechie.com, DNS:.unlockexh3.com, DNS:.upsakcje.com, DNS:.vorschultest.de, DNS:.vsc.eu, DNS:.workinghome.org, DNS:.wwwckitchen.com, DNS:.wwwthecha.org, DNS:.wybieramtv.pl, DNS:.xn–feigenlikr-mcb.de, DNS:.xn–hkeldraht-v2a.de, DNS:.xn–malgstebuch-o8a.de, DNS:.xn–sattlernhmaschine-xqb.de, DNS:anymore.im, DNS:canada.net.au, DNS:clp.us, DNS:comwithmycrypto.com, DNS:cornwalledmeetup.com, DNS:enelenergy.it, DNS:fasdtweb.it, DNS:freepornswimmingpics.com, DNS:freshsents.com, DNS:gesundheitssinformation.de, DNS:hanzaifiles.com, DNS:hentaihq.net, DNS:hugregregy.com, DNS:inasi918.com, DNS:infstartappservice.com, DNS:iuanyware.com, DNS:jpnchase.com, DNS:ladouaneaupeaje.com, DNS:ladysperdstick.com, DNS:lenoxplaceapt.com, DNS:lonyoutube.com, DNS:marketingmanager.com.au, DNS:milanuncios.ir, DNS:milftubeporn.net, DNS:minecrafy.net, DNS:minecreft.net, DNS:misxkit.co, DNS:mmhh.net, DNS:qataraairways.com, DNS:reverseauction.com.au, DNS:secureistech.net, DNS:siencekids.co.nz, DNS:starscafe.net, DNS:stmatycho.com, DNS:theallisonspa.net, DNS:tuftshelathplan.com, DNS:tvspirlfilm.de, DNS:universaltechie.com, DNS:unlockexh3.com, DNS:upsakcje.com, DNS:vorschultest.de, DNS:vsc.eu, DNS:workinghome.org, DNS:wwwckitchen.com, DNS:wwwthecha.org, DNS:wybieramtv.pl, DNS:xn–feigenlikr-mcb.de, DNS:xn–hkeldraht-v2a.de, DNS:xn–malgstebuch-o8a.de, DNS:xn–sattlernhmaschine-xqb.de
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
Timestamp : Apr 12 08:18:00.938 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:87:74:ED:14:E8:73:AB:C5:B0:F1:E4:
DB:B4:7D:10:CB:F1:24:C4:74:D5:3D:73:FC:AC:3C:2D:
DB:CE:99:C9:7C:02:20:03:BC:7D:D4:41:3D:40:F1:ED:
81:AA:DE:EA:F7:28:4D:9B:14:90:28:9C:AC:BA:B5:FD:
88:D7:5F:07:D8:DD:E6
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
Timestamp : Apr 12 08:18:00.981 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:19:98:2F:D0:7E:24:37:6B:28:5F:31:74:
34:D7:C1:E1:88:97:53:38:83:4B:2F:B9:9C:30:07:44:
93:B0:7F:BE:02:20:04:7D:DF:C2:35:13:E8:08:35:3A:
37:1E:A7:97:90:60:CE:58:5F:C0:8A:4E:74:B3:25:48:
14:87:ED:BA:78:A6
Signature Algorithm: sha256WithRSAEncryption
25:ff:06:c7:d4:3f:33:2e:6d:86:18:3e:88:b8:0f:c0:b1:f6:
6c:aa:cf:61:b3:33:a1:d7:17:6b:3b:cc:3c:0d:11:50:08:53:
66:88:87:2f:bf:ed:29:3c:8a:f8:a9:39:db:bb:10:78:8b:18:
9a:62:69:5a:6c:94:0e:55:4e:d5:3a:5e:37:23:a5:0a:48:f1:
48:ae:16:68:1f:b7:91:2b:22:c3:65:14:0e:ac:6e:75:b8:12:
3e:78:dd:87:d2:21:71:56:a7:e6:87:f3:16:cc:66:35:7a:eb:
19:97:b6:44:a8:b7:47:14:95:f6:1c:b9:7b:2f:02:f4:1c:52:
57:d3:b7:c0:5d:83:d5:c1:48:d8:df:18:1d:4c:4b:89:75:ca:
35:e8:ca:5b:77:80:66:15:d2:c9:ca:40:10:e7:0f:f7:e4:2e:
57:de:bd:48:a7:a0:86:b4:25:48:33:b2:b2:f2:b1:5d:d4:4f:
a0:be:59:c5:20:c2:86:15:a2:6e:1e:1b:1f:ba:ba:85:cb:19:
92:7a:50:13:c9:ba:29:e6:db:b3:fa:e8:c9:28:18:5f:b1:01:
4c:3c:65:11:65:78:f6:e9:15:25:00:a7:4f:be:87:3a:f0:ac:
ba:66:1b:62:65:26:bb:bb:65:3d:41:ea:84:a7:57:dd:f1:d7:
89:d3:00:48

Sitemap

Technologies

Apache httpd Apache httpd

Additional Links

*** Virustotal ***

*** WayBackMachine ***

Share on: