thaamazon.com Threat Intelligence and Information

Host Location

Screenshot

Dig Results

• Got answer:
• -»HEADER«- opcode: QUERY, status: NOERROR, id: 40457
• flags: qr rd ra QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
• OPT PSEUDOSECTION:
• EDNS: version: 0, flags: udp: 1232
• QUESTION SECTION:
• thaamazon.com. IN A
• ANSWER SECTION:
• thaamazon.com. 86388 IN A 165.227.22.189
• Query time: 12 msec
• SERVER: 192.168.1.153(192.168.1.1) (UDP)
• WHEN: Fri Nov 18 01:33:13 UTC 2022
• MSG SIZE rcvd: 58

DNS Records

Whois Data

• Domain Name: THAAMAZON.COM
• Registry Domain ID: 2627348132_DOMAIN_COM-VRSN
• Registrar URL: http://www.godaddy.com
• Updated Date: 2022-10-15T06:21:05Z
• Creation Date: 2021-07-17T16:13:26Z
• Registry Expiry Date: 2023-07-17T16:13:26Z
• Registrar: GoDaddy.com, LLC
• Registrar IANA ID: 146
• Registrar Abuse Contact Email: abuse@godaddy.com
• Registrar Abuse Contact Phone: 480-624-2505
• Name Server: NS1.BOX.TTOWNCONNECT.COM
• Name Server: NS2.BOX.TTOWNCONNECT.COM
• DNSSEC: unsigned
• Domain Name: thaamazon.com
• Registry Domain ID: 2627348132_DOMAIN_COM-VRSN
• Registrar URL: https://www.godaddy.com
• Updated Date: 2022-07-18T16:52:22Z
• Creation Date: 2021-07-17T11:13:26Z
• Registrar Registration Expiration Date: 2023-07-17T11:13:26Z
• Registrar: GoDaddy.com, LLC
• Registrar IANA ID: 146
• Registrar Abuse Contact Email: abuse@godaddy.com
• Registrar Abuse Contact Phone: +1.4806242505
• Registry Registrant ID: Not Available From Registry
• Registrant Name: Registration Private
• Registrant Organization: Domains By Proxy, LLC
• Registrant Street: DomainsByProxy.com
• Registrant Street: 2155 E Warner Rd
• Registrant City: Tempe
• Registrant State/Province: Arizona
• Registrant Postal Code: 85284
• Registrant Country: US
• Registrant Phone: +1.4806242599
• Registrant Phone Ext:
• Registrant Fax: +1.4806242598
• Registrant Fax Ext:
• Registry Admin ID: Not Available From Registry
• Admin Name: Registration Private
• Admin Organization: Domains By Proxy, LLC
• Admin Street: DomainsByProxy.com
• Admin Street: 2155 E Warner Rd
• Admin City: Tempe
• Admin State/Province: Arizona
• Admin Postal Code: 85284
• Admin Country: US
• Admin Phone: +1.4806242599
• Admin Phone Ext:
• Admin Fax: +1.4806242598
• Admin Fax Ext:
• Registry Tech ID: Not Available From Registry
• Tech Name: Registration Private
• Tech Organization: Domains By Proxy, LLC
• Tech Street: DomainsByProxy.com
• Tech Street: 2155 E Warner Rd
• Tech City: Tempe
• Tech State/Province: Arizona
• Tech Postal Code: 85284
• Tech Country: US
• Tech Phone: +1.4806242599
• Tech Phone Ext:
• Tech Fax: +1.4806242598
• Tech Fax Ext:
• Name Server: NS1.BOX.TTOWNCONNECT.COM
• Name Server: NS2.BOX.TTOWNCONNECT.COM
• DNSSEC: unsigned

SSL Certificate Information

• Certificate:
• Data:
• Version: 3 (0x2)
• Serial Number:
• 04:ab:d6:0b:8d:7d:53:3c:b3:38:4f:26:d0:b3:a0:ff:c9:f8
• Signature Algorithm: sha256WithRSAEncryption
• Issuer: C = US, O = Let’s Encrypt, CN = R3
• Validity
• Not Before: Nov 12 22:26:37 2022 GMT
• Not After : Feb 10 22:26:36 2023 GMT
• Subject: CN = www.severethunderstormwarning.com
• Subject Public Key Info:
• Public Key Algorithm: rsaEncryption
• Public-Key: (2048 bit)
• Modulus:
• 00:d0:3f:81:6c:3c:50:cd:1a:09:0d:bf:a3:4f:c9:
• 54:7e:2a:ec:23:c1:ca:90:2b:44:51:f7:d5:da:6f:
• 4c:27:4f:a2:4a:7d:4f:75:b6:ae:b4:0b:ec:43:f0:
• b0:63:df:68:a9:ee:6d:00:1d:d0:3f:b4:1c:61:f9:
• 95:00:15:bb:aa:a6:cf:3e:78:35:40:8e:79:a2:58:
• 35:de:2b:e7:71:2f:7f:cf:cd:64:bb:fe:cc:69:bd:
• 15:f6:bb:6c:ea:98:fe:c5:d5:08:da:cc:db:b1:05:
• 11:66:e4:24:90:8d:b7:c6:24:11:7d:cf:a8:09:50:
• ba:01:c8:f4:dc:4f:85:a1:e7:90:eb:ae:bb:23:ae:
• f5:ed:60:fe:f3:4c:1f:ea:9c:fe:4d:b2:b8:4b:2d:
• ed:35:7d:ae:2a:31:e5:55:c3:0c:4c:eb:fe:37:cb:
• b0:5a:17:c9:67:be:2b:25:25:16:77:f2:21:31:42:
• 1a:9a:9c:d9:f9:25:67:c9:31:ec:cd:bd:0d:7a:ff:
• e5:c4:bd:6b:b7:cf:fb:fb:d1:28:95:2e:64:69:c2:
• 54:2f:61:c8:55:87:2e:a1:95:d7:09:f9:f2:ad:aa:
• b9:84:cd:97:47:ed:46:3b:3f:d1:02:a7:ce:0e:48:
• 7a:f5:d7:5b:38:5d:e9:4f:52:e7:8e:ab:da:60:8c:
• 48:ab
• Exponent: 65537 (0x10001)
• X509v3 extensions:
• X509v3 Key Usage: critical
• Digital Signature, Key Encipherment
• X509v3 Extended Key Usage:
• TLS Web Server Authentication, TLS Web Client Authentication
• X509v3 Basic Constraints: critical
• CA:FALSE
• X509v3 Subject Key Identifier:
• 37:D7:D5:0B:39:D0:15:2B:84:9F:42:B1:14:97:E0:58:13:E0:E0:C7
• X509v3 Authority Key Identifier:
• 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
• Authority Information Access:
• OCSP - URI:http://r3.o.lencr.org
• CA Issuers - URI:http://r3.i.lencr.org/
• X509v3 Subject Alternative Name:
• DNS:4d77.easytogetmy.com, DNS:amz.easytogetmy.com, DNS:bhill.easytogetmy.com, DNS:bimy.easytogetmy.com, DNS:cool.easytogetmy.com, DNS:djm.easytogetmy.com, DNS:easytogetmy.com, DNS:effectivemagicspells.com, DNS:em.easytogetmy.com, DNS:ericn.easytogetmy.com, DNS:fitzer.easytogetmy.com, DNS:flyct.com, DNS:flyct.easytogetmy.com, DNS:kdr.easytogetmy.com, DNS:m.jeepersanonymous.com, DNS:pc.easytogetmy.com, DNS:plotcrypto.com, DNS:qbu.easytogetmy.com, DNS:severethunderstormwarning.com, DNS:swtulsa.easytogetmy.com, DNS:thaamazon.com, DNS:withers.easytogetmy.com, DNS:www.effectivemagicspells.com, DNS:www.flyct.com, DNS:www.plotcrypto.com, DNS:www.severethunderstormwarning.com
• X509v3 Certificate Policies:
• Policy: 2.23.140.1.2.1
• Policy: 1.3.6.1.4.1.44947.1.1.1
• CPS: http://cps.letsencrypt.org
• CT Precertificate SCTs:
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : AD:F7:BE:FA:7C:FF:10:C8:8B:9D:3D:9C:1E:3E:18:6A:
• B4:67:29:5D:CF:B1:0C:24:CA:85:86:34:EB:DC:82:8A
• Timestamp : Nov 12 23:26:37.247 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:46:02:21:00:80:D1:45:F4:45:F6:22:C9:DD:F7:37:
• 38:46:FE:35:6B:63:BA:6D:D4:2D:7B:A8:1D:01:44:3E:
• 48:02:7A:3C:3C:02:21:00:D8:B9:56:1D:ED:FB:29:45:
• 6B:3F:81:6F:58:02:EF:A5:ED:D2:83:AD:3C:E7:F1:64:
• ED:92:5F:18:5F:A2:1C:8D
• Signed Certificate Timestamp:
• Version : v1 (0x0)
• Log ID : 7A:32:8C:54:D8:B7:2D:B6:20:EA:38:E0:52:1E:E9:84:
• 16:70:32:13:85:4D:3B:D2:2B:C1:3A:57:A3:52:EB:52
• Timestamp : Nov 12 23:26:37.748 2022 GMT
• Extensions: none
• Signature : ecdsa-with-SHA256
• 30:45:02:21:00:EE:13:DF:19:F9:80:2A:BB:7E:2D:24:
• 5C:36:D3:2A:70:A6:96:4B:DC:C3:D4:A2:13:DD:4D:C8:
• 78:AD:BE:7E:E3:02:20:52:11:23:67:F7:82:C2:8B:7F:
• 58:6B:D3:18:34:1D:65:EC:64:DF:F9:5D:C1:27:79:8C:
• E1:18:18:B5:82:E5:8B
• Signature Algorithm: sha256WithRSAEncryption
• Signature Value:
• 67:bd:f4:31:fe:28:7e:05:ef:8f:24:06:ec:22:90:26:d6:af:
• 7e:b8:95:68:b2:24:c9:b8:80:a9:cc:03:7c:21:1d:be:68:f7:
• 33:b5:da:6a:8f:01:e9:b0:2d:91:86:f4:04:44:02:fe:a7:ce:
• 59:93:27:38:a2:7d:bb:9e:e5:9e:03:1b:1b:6d:17:2c:06:2f:
• b4:1e:40:58:4f:91:fa:23:dc:7a:f0:33:83:eb:37:5e:62:1e:
• 04:43:ec:12:89:8a:65:4a:67:eb:8d:d1:9c:2a:19:ac:9f:db:
• 13:27:8e:cb:83:88:47:f3:1e:6e:22:7d:fe:9b:22:6d:9f:93:
• a3:cf:1d:46:17:dd:24:f1:9f:53:af:8e:bc:b2:a3:29:cc:a2:
• 6a:e5:6e:fd:e8:66:25:1e:07:05:df:be:18:b3:0b:5b:1b:04:
• f9:ab:30:cc:fa:d3:36:05:68:6f:05:41:ea:2c:27:39:c3:46:
• e5:8e:ed:13:74:22:1c:70:41:a7:62:72:0a:5c:74:83:c3:b8:
• 79:1d:3f:f9:b0:9d:80:fc:a6:98:66:10:d1:b6:ea:94:4c:e4:
• 37:8b:eb:02:81:2d:fe:83:50:c0:16:cc:8a:c8:55:cd:2f:f3:
• 9e:34:5b:f6:df:2f:d3:af:48:33:1b:30:da:ef:e7:2e:60:1c:
• 57:cf:1c:c1

Sitemap

“\n<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.sitemaps.org/schemas/sitemap/0.9 http://www.sitemaps.org/schemas/sitemap/0.9/sitemap.xsd">\n\nhttps://plotcrypto.com/spencer/\n2021-06-18\nweekly\n\n\nhttps://plotcrypto.com/privacy-policy/\n2021-06-18\nweekly\n\n\nhttps://plotcrypto.com/\n2021-06-18\nweekly\n\n\nhttps://plotcrypto.com/articles/\n2021-06-18\nweekly\n\n\nhttps://plotcrypto.com/blog/\n2021-06-18\nweekly\n\n

Technologies

OpenSSH nginx nginx

Additional Links

*** Virustotal ***

*** WayBackMachine ***