helpmicrosofts.com Threat Intelligence and Information

Host Location

Dig Results

• Got answer:
• -»HEADER«- opcode: QUERY, status: NOERROR, id: 23013
• flags: qr rd ra QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
• OPT PSEUDOSECTION:
• EDNS: version: 0, flags: udp: 1232
• QUESTION SECTION:
• helpmicrosofts.com. IN A
• ANSWER SECTION:
• helpmicrosofts.com. 14393 IN A 67.20.121.159
• Query time: 8 msec
• SERVER: 192.168.1.153(192.168.1.1)
• WHEN: Fri Jun 03 21:23:03 UTC 2022
• MSG SIZE rcvd: 63

DNS Records

• SOA ns1.bluehost.com 162.159.24.80
• NS ns1.bluehost.com 162.159.24.80
• NS ns2.bluehost.com 162.159.25.175
• MX mail.helpmicrosofts.com 67.20.121.159
• A helpmicrosofts.com 67.20.121.159
• SRV _caldav._tcp.helpmicrosofts.com box2195.bluehost.com 50.87.253.152 2079 0
• SRV _caldavs._tcp.helpmicrosofts.com box2195.bluehost.com 50.87.253.152 2080 0
• SRV _carddavs._tcp.helpmicrosofts.com box2195.bluehost.com 50.87.253.152 2080 0
• SRV _carddav._tcp.helpmicrosofts.com box2195.bluehost.com 50.87.253.152 2079 0
• SRV _autodiscover._tcp.helpmicrosofts.com cpanelemaildiscovery.cpanel.net 208.74.121.152 443 0
• SRV _autodiscover._tcp.helpmicrosofts.com cpanelemaildiscovery.cpanel.net 184.94.204.7 443 0

Whois Data

• Domain Name: HELPMICROSOFTS.COM
• Registry Domain ID: 2679903273_DOMAIN_COM-VRSN
• Registrar URL: http://www.fastdomain.com
• Updated Date: 2022-03-07T18:52:40Z
• Creation Date: 2022-03-07T18:52:40Z
• Registry Expiry Date: 2023-03-07T18:52:40Z
• Registrar: FastDomain Inc.
• Registrar IANA ID: 1154
• Registrar Abuse Contact Email:
• Registrar Abuse Contact Phone:
• Name Server: NS1.BLUEHOST.COM
• Name Server: NS2.BLUEHOST.COM
• DNSSEC: unsigned
• Domain Name: HELPMICROSOFTS.COM
• Registry Domain ID: 8066988
• Registrar URL: http://www.bluehost.com/
• Updated Date: 2022-03-07T18:52:42Z
• Creation Date: 2022-03-07T18:52:40Z
• Registrar Registration Expiration Date: 2023-03-07T18:52:40Z
• Registrar: FastDomain Inc.
• Registrar IANA ID: 1154
• Registrar Abuse Contact Email: tos@fastdomain.com
• Registrar Abuse Contact Phone: 888-210-3278
• Reseller: BlueHost.Com
• Registry Registrant ID: FAST-112226293
• Registrant Name: RITU SHARMA
• Registrant Organization: GEEK SUPERSTORE STORE
• Registrant Street: 6660 KENNEDY RD
• Registrant City: MISSISSAUGA
• Registrant State/Province: ONTARIO
• Registrant Postal Code: L4Z 1P3
• Registrant Country: CA
• Registrant Phone: +1.4165758670
• Registrant Phone Ext:
• Registrant Fax:
• Registrant Fax Ext:
• Registrant Email: GEEKSUPERSTORE@OUTLOOK.COM
• Registry Admin ID: FAST-112226293
• Admin Name: RITU SHARMA
• Admin Organization: GEEK SUPERSTORE STORE
• Admin Street: 6660 KENNEDY RD
• Admin City: MISSISSAUGA
• Admin State/Province: ONTARIO
• Admin Postal Code: L4Z 1P3
• Admin Country: CA
• Admin Phone: +1.4165758670
• Admin Phone Ext:
• Admin Fax:
• Admin Fax Ext:
• Admin Email: GEEKSUPERSTORE@OUTLOOK.COM
• Registry Tech ID: FAST-106512779
• Tech Name: BLUEHOST INC
• Tech Organization: BLUEHOST.COM
• Tech Street: 5335 GATE PKWY.
• Tech City: JACKSONVILLE
• Tech State/Province: FLORIDA
• Tech Postal Code: 32256
• Tech Country: US
• Tech Phone: +1.8017659400
• Tech Phone Ext:
• Tech Fax: +1.8017651992
• Tech Fax Ext:
• Tech Email: SUPPORT-DOMAIN@BLUEHOST.COM
• Name Server: NS1.BLUEHOST.COM
• Name Server: NS2.BLUEHOST.COM
• DNSSEC: unsigned

SSL Certificate Information

• Certificate:
• Data:
• Version: 3 (0x2)
• Serial Number:
• 03:90:b0:df:02:22:25:1c:48:8f:17:2d:19:77:a7:af:1f:66
• Signature Algorithm: sha256WithRSAEncryption
• Issuer: C = US, O = Let’s Encrypt, CN = R3
• Validity
• Not Before: May 8 15:35:35 2022 GMT
• Not After : Aug 6 15:35:34 2022 GMT
• Subject: CN = mail.getsecurityxperts.com
• Subject Public Key Info:
• Public Key Algorithm: rsaEncryption
• RSA Public-Key: (2048 bit)
• Modulus:
• 00:ae:ec:83:00:f6:1b:78:0d:2e:21:d2:61:32:dd:
• fa:17:50:e2:8d:97:49:39:60:07:e9:c5:5c:20:dc:
• 0b:25:85:3e:bb:b4:01:d7:8e:5f:d7:9f:39:a6:08:
• 19:eb:11:9c:38:f6:e4:cb:ee:b1:30:f0:4d:72:48:
• 68:96:b4:01:f9:e7:d8:95:4c:ca:98:1c:34:4b:36:
• cb:f7:56:fc:d7:04:19:80:22:c9:2e:9a:88:b9:63:
• 38:84:c3:dc:96:26:1e:55:00:b2:85:f8:56:73:fb:
• de:ff:c4:2a:ab:27:70:37:4e:2f:f8:81:49:27:49:
• 3c:64:25:32:fa:22:b9:55:79:b0:32:21:f0:e5:cc:
• a0:2d:03:35:ed:f2:b3:13:f4:a5:8f:a8:31:00:b8:
• fa:b4:13:2e:ec:7b:40:50:9e:94:ba:09:68:cd:80:
• ed:c4:3e:23:e6:09:00:28:15:97:ea:db:16:36:69:
• 49:78:54:ae:ca:32:c3:f2:a4:9b:06:ac:62:57:bf:
• 11:0d:8e:ce:4f:17:f4:67:7b:97:27:ac:f2:81:b5:
• 86:65:7c:82:54:5b:56:cd:6f:39:ad:2c:b5:68:de:
• d7:d8:3e:9b:e9:af:9b:4d:83:e2:51:e4:23:c2:bf:
• a7:7d:1f:b5:18:64:3f:7a:5e:48:0c:09:91:22:dc:
• 03:87
• Exponent: 65537 (0x10001)
• X509v3 extensions:
• X509v3 Key Usage: critical
• Digital Signature, Key Encipherment
• X509v3 Extended Key Usage:
• TLS Web Server Authentication, TLS Web Client Authentication
• X509v3 Basic Constraints: critical
• CA:FALSE
• X509v3 Subject Key Identifier:
• BF:BF:E2:BF:95:72:DB:B9:DE:83:1A:2C:D2:69:7A:82:57:68:1E:FB
• X509v3 Authority Key Identifier:
• keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
• Authority Information Access:
• OCSP - URI:http://r3.o.lencr.org
• CA Issuers - URI:http://r3.i.lencr.org/
• X509v3 Subject Alternative Name:
• DNS:autodiscover.getsecurityxperts.com, DNS:autodiscover.helpmicrosofts.com, DNS:cpanel.getsecurityxperts.com, DNS:cpanel.helpmicrosofts.com, DNS:cpcalendars.getsecurityxperts.com, DNS:cpcalendars.helpmicrosofts.com, DNS:cpcontacts.getsecurityxperts.com, DNS:cpcontacts.helpmicrosofts.com, DNS:getsecurityxperts.com, DNS:getsecurityxperts.geeksuperstoreinc.com, DNS:getupdates-website.geeksuperstoreinc.com, DNS:helpmicrosofts.com, DNS:helpmicrosofts.geeksuperstoreinc.com, DNS:mail.getsecurityxperts.com, DNS:mail.helpmicrosofts.com, DNS:webdisk.getsecurityxperts.com, DNS:webdisk.helpmicrosofts.com, DNS:webmail.getsecurityxperts.com, DNS:webmail.helpmicrosofts.com, DNS:www.getsecurityxperts.com, DNS:www.getsecurityxperts.geeksuperstoreinc.com, DNS:www.getupdates-website.geeksuperstoreinc.com, DNS:www.helpmicrosofts.com, DNS:www.helpmicrosofts.geeksuperstoreinc.com
• X509v3 Certificate Policies:
• Policy: 2.23.140.1.2.1
• Policy: 1.3.6.1.4.1.44947.1.1.1
• CPS: http://cps.letsencrypt.org
• CT Precertificate SCTs:
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
• EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
• Timestamp : May 8 16:35:36.006 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:21:00:E7:52:12:EE:45:DD:A8:6C:D3:6A:ED:
• 44:86:79:78:92:11:D1:47:63:A3:05:E2:E4:46:4A:30:
• E9:A4:6E:F0:7B:02:20:27:B1:94:0B:55:82:46:6B:17:
• 5D:CB:BE:B6:47:05:C6:15:BC:19:03:72:9D:F2:38:DC:
• F2:1B:19:3A:5C:62:41
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
• 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
• Timestamp : May 8 16:35:36.050 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:21:00:D1:1F:EC:12:40:FB:00:0C:CB:A5:49:
• E1:C2:5E:11:DF:02:8C:91:B3:EC:77:98:56:6E:88:00:
• ED:D5:72:E2:B1:02:20:49:F0:E3:F7:2F:8F:B6:F2:BA:
• A5:E0:0D:AC:87:A6:5C:FB:08:12:1C:84:03:41:F5:2B:
• 03:60:C9:0A:A2:9B:1C
• Signature Algorithm: sha256WithRSAEncryption
• 73:4e:50:67:4c:c1:4c:fb:bc:9b:0a:66:b6:a7:21:dd:43:36:
• 5c:dd:27:e8:26:c6:38:9f:86:f1:54:24:f6:79:a3:1b:48:00:
• 79:24:99:22:8e:74:d4:4e:f6:5e:2e:12:5c:17:fd:4d:7f:a1:
• 15:58:cd:d4:0e:aa:c3:61:48:ba:3a:0a:3c:20:c2:2b:6f:04:
• b1:23:71:53:15:52:79:f3:2d:bd:08:89:88:ce:38:e5:07:bb:
• d5:ab:a7:df:bc:b7:f1:89:d9:d7:df:36:ed:24:e6:fd:6f:79:
• c7:bc:bf:bd:63:5d:5a:5e:48:09:06:24:7e:d6:fa:4a:2f:6d:
• 7d:c0:17:c6:39:a7:8d:ec:fc:f7:da:43:87:4d:67:84:63:19:
• de:60:a2:ad:26:6a:e4:94:cf:07:92:a3:76:0b:45:bc:aa:6d:
• 1f:16:3b:25:aa:d8:d0:e1:91:c5:81:b0:30:0f:37:c3:e7:15:
• 45:65:d6:95:1f:82:c3:ff:b5:65:3e:31:95:a9:de:e5:0a:6a:
• 5c:b3:e9:32:7a:61:99:c8:d3:85:ec:1d:83:3f:22:03:2d:a2:
• 46:42:66:66:b2:7a:49:44:4b:ef:fc:d8:79:1e:41:c1:ac:28:
• 4a:96:90:52:6c:0b:64:d5:5a:86:69:af:37:88:7d:bf:a2:cf:
• 16:74:e0:5e

Sitemap

Technologies

Pure-FTPd OpenSSH Exim smtpd Apache httpd Apache httpd Exim smtpd Exim smtpd OpenSSH MySQL

Additional Links

*** Virustotal ***

*** WayBackMachine ***