onmicrosoft1.com Threat Intelligence and Information

Jul 24, 2022 domainpage

Host Location

Dig Results

  • Got answer:
  • -»HEADER«- opcode: QUERY, status: NOERROR, id: 39243
  • flags: qr rd ra QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
  • OPT PSEUDOSECTION:
  • EDNS: version: 0, flags: udp: 1232
  • QUESTION SECTION:
  • onmicrosoft1.com. IN A
  • ANSWER SECTION:
  • onmicrosoft1.com. 1790 IN A 52.233.66.162
  • Query time: 12 msec
  • SERVER: 192.168.1.153(192.168.1.1)
  • WHEN: Sat Jul 30 19:34:50 UTC 2022
  • MSG SIZE rcvd: 61

DNS Records

  • SOA ns69.domaincontrol.com 97.74.104.45
  • NS ns69.domaincontrol.com 97.74.104.45
  • NS ns69.domaincontrol.com 2603:5:2184::2d
  • NS ns70.domaincontrol.com 173.201.72.45
  • NS ns70.domaincontrol.com 2603:5:2284::2d
  • MX seb.accusys.com 52.233.66.162
  • A onmicrosoft1.com 52.233.66.162

Whois Data

  • Domain Name: ONMICROSOFT1.COM
  • Registry Domain ID: 2700721911_DOMAIN_COM-VRSN
  • Registrar URL: http://www.godaddy.com
  • Updated Date: 2022-06-01T19:39:14Z
  • Creation Date: 2022-06-01T19:39:13Z
  • Registry Expiry Date: 2023-06-01T19:39:13Z
  • Registrar: GoDaddy.com, LLC
  • Registrar IANA ID: 146
  • Registrar Abuse Contact Email: abuse@godaddy.com
  • Registrar Abuse Contact Phone: 480-624-2505
  • Name Server: NS69.DOMAINCONTROL.COM
  • Name Server: NS70.DOMAINCONTROL.COM
  • DNSSEC: unsigned
  • Domain Name: onmicrosoft1.com
  • Registry Domain ID: 2700721911_DOMAIN_COM-VRSN
  • Registrar URL: https://www.godaddy.com
  • Updated Date: 2022-06-01T14:39:14Z
  • Creation Date: 2022-06-01T14:39:13Z
  • Registrar Registration Expiration Date: 2023-06-01T14:39:13Z
  • Registrar: GoDaddy.com, LLC
  • Registrar IANA ID: 146
  • Registrar Abuse Contact Email: abuse@godaddy.com
  • Registrar Abuse Contact Phone: +1.4806242505
  • Registry Registrant ID: Not Available From Registry
  • Registrant Name: Registration Private
  • Registrant Organization: Domains By Proxy, LLC
  • Registrant Street: DomainsByProxy.com
  • Registrant Street: 2155 E Warner Rd
  • Registrant City: Tempe
  • Registrant State/Province: Arizona
  • Registrant Postal Code: 85284
  • Registrant Country: US
  • Registrant Phone: +1.4806242599
  • Registrant Phone Ext:
  • Registrant Fax: +1.4806242598
  • Registrant Fax Ext:
  • Registry Admin ID: Not Available From Registry
  • Admin Name: Registration Private
  • Admin Organization: Domains By Proxy, LLC
  • Admin Street: DomainsByProxy.com
  • Admin Street: 2155 E Warner Rd
  • Admin City: Tempe
  • Admin State/Province: Arizona
  • Admin Postal Code: 85284
  • Admin Country: US
  • Admin Phone: +1.4806242599
  • Admin Phone Ext:
  • Admin Fax: +1.4806242598
  • Admin Fax Ext:
  • Registry Tech ID: Not Available From Registry
  • Tech Name: Registration Private
  • Tech Organization: Domains By Proxy, LLC
  • Tech Street: DomainsByProxy.com
  • Tech Street: 2155 E Warner Rd
  • Tech City: Tempe
  • Tech State/Province: Arizona
  • Tech Postal Code: 85284
  • Tech Country: US
  • Tech Phone: +1.4806242599
  • Tech Phone Ext:
  • Tech Fax: +1.4806242598
  • Tech Fax Ext:
  • Name Server: NS69.DOMAINCONTROL.COM
  • Name Server: NS70.DOMAINCONTROL.COM
  • DNSSEC: unsigned

SSL Certificate Information

  • Certificate:
  • Data:
  • Version: 3 (0x2)
  • Serial Number:
  • 03:76:82:82:b8:ba:4a:76:75:06:6d:1c:c4:aa:aa:a0:56:44
  • Signature Algorithm: sha256WithRSAEncryption
  • Issuer: C = US, O = Let’s Encrypt, CN = R3
  • Validity
  • Not Before: Jun 1 18:55:23 2022 GMT
  • Not After : Aug 30 18:55:22 2022 GMT
  • Subject: CN = duosecurity1.com
  • Subject Public Key Info:
  • Public Key Algorithm: rsaEncryption
  • RSA Public-Key: (2048 bit)
  • Modulus:
  • 00:e1:24:8f:e0:81:93:54:b5:ae:b0:ff:e1:75:0f:
  • 4f:e0:d6:d8:b7:56:95:e3:dd:cc:db:62:17:d0:1e:
  • 87:8c:6e:b9:47:38:b7:39:07:ab:de:28:74:32:df:
  • 9c:94:93:20:fe:30:6b:1d:7f:31:5d:fa:f0:56:7c:
  • d8:eb:5c:2e:70:9a:78:c0:20:0e:3a:25:7e:e9:e6:
  • 17:31:0e:a5:86:6d:ea:c9:9e:dc:09:3a:3f:4a:cb:
  • 00:86:ed:55:f7:d9:7e:87:04:e3:ed:09:44:cd:6f:
  • 3c:7b:ca:b0:ef:31:b7:33:bf:b5:45:27:c8:a3:4a:
  • 59:aa:d0:1c:1e:65:81:73:2c:d9:f0:49:28:54:c9:
  • 46:dc:60:d5:c1:bf:cd:41:9c:bd:4e:5e:d7:0c:89:
  • 44:e2:f5:25:ef:59:4b:b4:20:a8:19:6f:2a:d0:f0:
  • e1:56:e9:10:37:e2:0b:74:99:8d:85:cb:99:8b:a9:
  • bb:cb:56:2a:9c:6a:f8:dd:4b:bd:54:3f:c3:af:47:
  • c9:85:dc:e9:44:b7:14:3c:19:ba:06:a6:a0:8c:00:
  • ab:11:bd:a2:e5:7b:08:1f:b5:08:4b:67:49:e0:e5:
  • ed:81:9c:c5:8e:ff:14:d9:ea:36:50:d2:df:19:f0:
  • d4:e3:04:de:c6:3d:40:aa:f8:d9:58:a9:a9:8d:bc:
  • c0:65
  • Exponent: 65537 (0x10001)
  • X509v3 extensions:
  • X509v3 Key Usage: critical
  • Digital Signature, Key Encipherment
  • X509v3 Extended Key Usage:
  • TLS Web Server Authentication, TLS Web Client Authentication
  • X509v3 Basic Constraints: critical
  • CA:FALSE
  • X509v3 Subject Key Identifier:
  • 58:B7:5A:99:F0:C1:EE:3F:95:77:5D:86:6D:2A:3C:A2:50:BA:F8:4D
  • X509v3 Authority Key Identifier:
  • keyid:14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
  • Authority Information Access:
  • OCSP - URI:http://r3.o.lencr.org
  • CA Issuers - URI:http://r3.i.lencr.org/
  • X509v3 Subject Alternative Name:
  • DNS:baylor.duosecurity1.com, DNS:baylor.onmicrosoft1.com, DNS:duosecurity1.com, DNS:its.web.baylor.duosecurity1.com, DNS:its.web.baylor.onmicrosoft1.com, DNS:messaging.baylor.duosecurity1.com, DNS:messaging.baylor.onmicrosoft1.com, DNS:onmicrosoft1.com, DNS:securityalerts.baylor.duosecurity1.com, DNS:securityalerts.baylor.onmicrosoft1.com, DNS:shibboleth-2.baylor.duosecurity1.com, DNS:shibboleth-2.baylor.onmicrosoft1.com, DNS:survey.baylor.duosecurity1.com, DNS:survey.baylor.onmicrosoft1.com, DNS:windowsupdate.its.web.baylor.duosecurity1.com, DNS:windowsupdate.its.web.baylor.onmicrosoft1.com, DNS:www.baylor.duosecurity1.com, DNS:www.baylor.onmicrosoft1.com, DNS:www1.baylor.duosecurity1.com, DNS:www1.baylor.onmicrosoft1.com
  • X509v3 Certificate Policies:
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.44947.1.1.1
  • CPS: http://cps.letsencrypt.org
  • CT Precertificate SCTs:
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Jun 1 19:55:23.270 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:D4:22:A1:03:60:5B:AE:26:52:87:1D:
  • 67:B4:6C:CF:FE:14:1F:39:DF:82:3B:2B:53:52:5C:E4:
  • 35:83:3D:5C:6C:02:20:52:D4:CD:CB:54:B2:AA:CC:63:
  • 65:73:15:18:A2:C2:D7:E0:DE:B8:AB:8C:42:11:26:62:
  • 3A:F5:C4:A0:A8:59:87
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
  • 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
  • Timestamp : Jun 1 19:55:23.639 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:45:02:21:00:B3:48:7F:35:63:DD:B8:A6:17:E4:9D:
  • 61:39:97:D1:50:8E:64:AB:15:42:DA:7B:1E:8D:E7:D7:
  • 99:6C:DA:42:71:02:20:0E:D7:5F:45:9C:CD:3A:D0:ED:
  • EE:E0:CA:5D:DE:35:60:56:12:DC:82:06:6B:16:FC:62:
  • C8:3A:CD:EA:82:97:04
  • Signature Algorithm: sha256WithRSAEncryption
  • 3b:a0:aa:dc:c2:c4:ae:18:09:0f:f4:06:a2:04:ab:59:e9:30:
  • 4a:43:45:d3:2f:2d:d5:2a:a1:56:e8:cf:e9:67:c8:9b:41:8d:
  • e6:1c:7a:e5:e0:e6:96:2f:ee:1a:98:b5:35:a1:97:58:ce:c0:
  • 39:9e:70:a5:97:c0:c0:ad:ed:21:22:af:66:2f:6f:75:fa:8b:
  • 36:71:a8:77:59:6c:ca:0e:db:d1:6e:db:e1:05:a6:55:6d:cd:
  • 75:14:87:3c:fa:67:43:68:93:f6:2e:e4:44:24:da:88:1c:95:
  • e5:a5:96:d7:af:b1:e3:0b:c7:98:b6:4c:88:fe:c3:b9:7f:87:
  • f9:46:ed:6d:1e:a6:ae:59:1c:63:33:5b:e5:0c:3e:b9:8b:01:
  • 4e:48:ce:dd:2a:e8:9e:a6:82:72:4d:49:b4:1d:a9:1e:fc:f9:
  • a6:c1:cf:d9:72:d7:0e:d7:9b:08:35:99:e2:14:f6:02:ba:2e:
  • fa:d9:5c:25:28:be:67:c5:be:e7:5b:a0:76:4e:ba:93:d4:ed:
  • e5:50:24:33:8a:1f:aa:4b:8b:e6:a1:60:12:54:71:3c:23:94:
  • b5:5a:45:c9:fb:55:64:bd:a3:00:8b:79:f0:27:6e:6e:7f:7d:
  • 18:88:fc:7a:f8:3c:2d:1a:cb:75:b8:ac:e7:b1:89:2b:78:ad:
  • d0:4f:64:22

Sitemap

Technologies

Postfix smtpd Apache httpd Apache httpd

*** Virustotal ***

*** WayBackMachine ***

Share on: