Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- @boolsyntax
- @phantoms
- @randy
- @BaSs
- @sc
- @godly
- @fedsrus
- @weleakinfospools
- @zeekill
- @proxylord
- @notorious
- for a group of "hackers" that think they know what they
- are talking about, you scanned and sent denial of service attacks to a
- fucking microsoft bot thinking it was a reponse of a home router.
- its a microsoft bot,
- they have it set to scan and set and have reports of vulnerabilities.
- -read added comments on the response.
- - fyi this isn't me flexing my capabilities, you would've had to be around to understand the situation.
- {
- {
- "response_type": clearboolset(xls);
- "IP": 52.114.142.71
- "_response": .botset ** <<
- "bottype": pro_llc
- "company(s)": azure, microsoft, bots.net, sql, ssh, ftp, response.llo, querty, mozilla. **<<
- "botping": active_response();
- "user"; stan
- "ss"; active
- }
- }
- Country: USA
- State/Region: Virginia
- City Name
- Boydton
- Total IP Addresses on which we have information in this City: 2,052 ip
- Total IPv6 Addresses on which we have information in this City: 1,045 ipv6
- Similar Records
- Total Websites hosted in City (on which we have information): 8,331 sites
- Dirección IP: 52.114.142.71
- AS Number (ASN):
- Organización: E.I. du Pont de Nemours and Co.
- Dominio:
- DNS: 52.114.142.71
- Pais: Estados Unidos
- Código País: us
- Bandera: Click para ver la bandera en grande
- Nombre Región: Virginia
- País Original: United States
- Ciudad: Boydton
- Código ZIP: 23917
- Diferencia Horaria: -04:00
- Ips vinculadas: 52.114.142.71
- Latitude: 37 °
- Longitude: -78 °
- TOP World Websites Hosted hosted in City (from World Top 100,000 sites): 162 sites
- IP Address 52.114.142.71
- Decimal Representation 879922759
- ASN AS8075
- City Boydton
- Country United States of America
- Country Code US
- ISP Microsoft Corporation
- Latitude 36.6544° (36° 39' 15? N)
- Longitude -78.3752° (78° 22' 30? W)
- Organization Microsoft Azure
- Postal Code 23917
- Is Private IP Address no
- PTR Resource Record
- Is Reserved IP Address no
- State Virginia
- State Code VA
- Timezone America/New_York
- Local Time 2019-01-05 21:51:01-05:00
- ISP Microsoft Corporation
- Usage Type Data Center/Web Hosting/Transit
- Domain Name microsoft.com
- Country
- City Boydton, Virginia
- According to our records, this IP belongs to the subnet 52.112.0.0/14, identified as: " MSFT Public IP Address Block"
- IP Address 52.114.142.71
- Reverse DNS / Hostname 52.114.142.71
- City Ashburn
- Region North america
- Country us United states (US)
- Organization / ISP Microsoft Corporation
- Latitude / Longitude 39.0438, -77.4874
- Zipcode / Postcode 20149
- TimeZone America/New_York (-5)
- Calling Code +1
- Currency USD
- Languages en-US, es-US, haw, fr
- ASN 4744870
- Output:
- GeoIP 52.114.142.71:
- IP: 52.114.142.71
- Hostname: Unknown
- Country Code: US (USA)
- Country: US United States
- Region: Virginia
- City: Boydton
- Postal Code / zip: 23917
- ISP: Microsoft Corporation
- Organization: Microsoft Corporation
- ASN: AS8075
- Continent: NA North America
- Timezone: America/New_York (Wed, 02 Jan 2019 17:14:01 -0500)
- Google Maps »
- IP Address 52.114.142.71
- Country
- United States, Boydton
- Name Skype URI Preview
- Site Skype Communications S.à.r.l.
- URL https://www.skype.com
- User Agent Bot: Mozilla/5.0 (Windows NT 6.1; WOW64) SkypeUriPreview Preview/0.5
- Referring URL no referrer
- Host Name 52.114.142.71
- ISP Microsoft Azure
- ISP Microsoft Corporation
- ASN AS8075
- Country United States flag United States (US)
- State/region VA
- City Boydton
- Postal code 23917
- Lat / Long 36.6648 / -78.3715
- Decimal 879922759
- Binary 00110100 01110010 10001110 01000111
- Hex 0x34728e47
- NetRange: 52.96.0.0 - 52.115.255.255
- CIDR: 52.112.0.0/14, 52.96.0.0/12
- NetName: MSFT
- NetHandle: NET-52-96-0-0-1
- Parent: NET52 (NET-52-0-0-0-0)
- NetType: Direct Assignment
- OriginAS:
- Organization: Microsoft Corporation (MSFT)
- RegDate: 2015-11-24
- Updated: 2015-11-24
- Ref: https://rdap.arin.net/registry/ip/52.96.0.0
- OrgName: Microsoft Corporation
- OrgId: MSFT
- Address: One Microsoft Way
- City: Redmond
- StateProv: WA
- PostalCode: 98052
- Country: US
- RegDate: 1998-07-09
- Updated: 2017-01-28
- Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
- Comment: * https://cert.microsoft.com.
- Comment:
- Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
- Comment: * abuse@microsoft.com.
- Comment:
- Comment: To report security vulnerabilities in Microsoft products and services, please contact:
- Comment: * secure@microsoft.com.
- Comment:
- Comment: For legal and law enforcement-related requests, please contact:
- Comment: * msndcc@microsoft.com
- Comment:
- Comment: For routing, peering or DNS issues, please
- Comment: contact:
- Comment: * IOC@microsoft.com
- Ref: https://rdap.arin.net/registry/entity/MSFT
- OrgTechHandle: MRPD-ARIN
- OrgTechName: Microsoft Routing, Peering, and DNS
- OrgTechPhone: +1-425-882-8080
- OrgTechEmail: IOC@microsoft.com
- OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
- OrgAbuseHandle: MAC74-ARIN
- OrgAbuseName: Microsoft Abuse Contact
- OrgAbusePhone: +1-425-882-8080
- OrgAbuseEmail: abuse@microsoft.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
- Starting Nmap 7.70 ( https://nmap.org ) at 2019-01-02 14:15 Pacific Standard Time
- NSE: Loaded 148 scripts for scanning.
- NSE: Script Pre-scanning.
- Initiating NSE at 14:15
- Completed NSE at 14:15, 0.00s elapsed
- Initiating NSE at 14:15
- Completed NSE at 14:15, 0.00s elapsed
- Initiating Ping Scan at 14:15
- Scanning 52.114.142.71 [4 ports]
- Completed Ping Scan at 14:15, 4.66s elapsed (1 total hosts)
- Initiating Parallel DNS resolution of 1 host. at 14:16
- Completed Parallel DNS resolution of 1 host. at 14:16, 0.16s elapsed
- Initiating SYN Stealth Scan at 14:16
- Scanning 52.114.142.71 [1000 ports]
- Discovered open port 443/tcp on 52.114.142.71
- Completed SYN Stealth Scan at 14:16, 35.17s elapsed (1000 total ports)
- Initiating Service scan at 14:16
- Scanning 1 service on 52.114.142.71
- Completed Service scan at 14:17, 24.14s elapsed (1 service on 1 host)
- Initiating OS detection (try #1) against 52.114.142.71
- Retrying OS detection (try #2) against 52.114.142.71
- Initiating Traceroute at 14:17
- Completed Traceroute at 14:17, 6.46s elapsed
- Initiating Parallel DNS resolution of 17 hosts. at 14:17
- Completed Parallel DNS resolution of 17 hosts. at 14:17, 0.28s elapsed
- NSE: Script scanning 52.114.142.71.
- Initiating NSE at 14:17
- Completed NSE at 14:17, 3.21s elapsed
- Initiating NSE at 14:17
- Completed NSE at 14:17, 0.00s elapsed
- Nmap scan report for 52.114.142.71
- Host is up (0.13s latency).
- Not shown: 999 filtered ports
- PORT STATE SERVICE VERSION
- 443/tcp open ssl/http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP)
- |_http-server-header: Microsoft-HTTPAPI/2.0
- |_http-title: Site doesn't have a title.
- | ssl-cert: Subject: commonName=urlp.asm.skype.com
- | Subject Alternative Name: DNS:urlp.asm.skype.com, DNS:urlp-asm-skype.trafficmanager.net, DNS:ea1-urlp.cloudapp.net, DNS:eus1-urlp.asm.skype.com, DNS:eus1-urlp.cloudapp.net, DNS:neu1-urlp.asm.skype.com, DNS:neu1-urlp.cloudapp.net, DNS:nus1-urlp.asm.skype.com, DNS:nus1-urlp.cloudapp.net, DNS:sa1-urlp.asm.skype.com, DNS:sa1-urlp.cloudapp.net, DNS:sus1-urlp.asm.skype.com, DNS:sus1-urlp.cloudapp.net, DNS:weu1-urlp.asm.skype.com, DNS:weu1-urlp.cloudapp.net, DNS:wus1-urlp.asm.skype.com, DNS:wus1-urlp.cloudapp.net
- | Issuer: commonName=Microsoft IT TLS CA 5/organizationName=Microsoft Corporation/stateOrProvinceName=Washington/countryName=US
- | Public Key type: rsa
- | Public Key bits: 2048
- | Signature Algorithm: sha256WithRSAEncryption
- | Not valid before: 2017-10-25T09:50:24
- | Not valid after: 2019-10-25T09:50:24
- | MD5: 72fa bbbc 640d 0766 d4ea 1e65 f00c 05f5
- |_SHA-1: 72cb ac60 0389 3fa7 107d 64b1 917a 72ee f316 08b2
- Hop Ip RTT Domain name Location
- 1 45.79.12.201 1.699 United States
- 2 45.79.12.2 1.676 United States
- 3 206.223.118.17 1.672 8075-dal.msn.net United States
- 4 206.223.118.17 1.668 8075-dal.msn.net United States
- 5 104.44.8.128 33.808 be-71-0.ibr02.dfw05.ntwk.msn.net United States
- 6 104.44.4.13 33.952 be-5-0.ibr03.atb.ntwk.msn.net United States
- 7 104.44.16.43 33.916 be-4-0.ibr01.bn6.ntwk.msn.net United States
- 8 104.44.4.39 36.375 be-1-0.ibr02.atb.ntwk.msn.net United States
- 9 104.44.21.74 31.513 ae161-0.icr03.bn6.ntwk.msn.net United States
- 10 * * * *
- IP neighbourhood:
- 52.114.142.7052.114.142.6952.114.142.6752.114.142.7952.114.142.8752.114.142.10352.114.142.752.114.142.19952.114.143.7152.114.140.7152.114.138.7152.114.134.7152.114.158.7152.114.174.7152.114.206.7152.114.14.7152.115.142.7152.112.142.7152.118.142.7152.122.142.7152.98.142.7152.82.142.7152.50.142.7152.242.142.7153.114.142.7154.114.142.7148.114.142.7160.114.142.7136.114.142.7120.114.142.71116.114.142.71180.114.142.71
- DNS lookup for 52.114.142.71
- (reverse DNS of 52.114.142.71)
- No records found
- PING 52.114.142.71 (52.114.142.71) 56(84) bytes of data.
- --- 52.114.142.71 ping statistics ---
- 5 packets transmitted, 0 received, 100% packet loss, time 4064ms
- Blocklist Lookup Results
- 52.114.142.71 is not listed in the SBL
- 52.114.142.71 is not listed in the PBL
- 52.114.142.71 is not listed in the XBL
- IP Domain Country Region City ISP ASN
- 52.114.142.71 United States flag United States VA Boydton Microsoft Corporation AS8075
- IP Address: 52.114.142.71
- Name: MSFTHandle: NET-52-96-0-0-1
- Registration Date: 11/24/15
- Range: 52.96.0.0-52.115.255.255
- Org: Microsoft Corporation
- Org Handle:
- MSFTAddress: One Microsoft Way
- City: RedmondState/Province:
- WAPostal Code:
- 98052Country: United States
- Query terms are ambiguous. The query is assumed to be:
- "n 52.114.142.71"
- Use "?" to get help.
- NetRange: 52.96.0.0 - 52.115.255.255
- CIDR: 52.96.0.0/12, 52.112.0.0/14
- NetName: MSFT
- NetHandle: NET-52-96-0-0-1
- Parent: NET52 (NET-52-0-0-0-0)
- NetType: Direct Assignment
- OriginAS:
- Organization: Microsoft Corporation (MSFT)
- RegDate: 2015-11-24
- Updated: 2015-11-24
- Ref: https://rdap.arin.net/registry/ip/52.96.0.0
- OrgName: Microsoft Corporation
- OrgId: MSFT
- Address: One Microsoft Way
- City: Redmond
- StateProv: WA
- PostalCode: 98052
- Country: US
- RegDate: 1998-07-09
- Updated: 2017-01-28
- Comment: To report suspected security issues specific to traffic emanating from Microsoft online services, including the distribution of malicious content or other illicit or illegal material through a Microsoft online service, please submit reports to:
- Comment: * https://cert.microsoft.com.
- Comment:
- Comment: For SPAM and other abuse issues, such as Microsoft Accounts, please contact:
- Comment: * abuse@microsoft.com.
- Comment:
- Comment: To report security vulnerabilities in Microsoft products and services, please contact:
- Comment: * secure@microsoft.com.
- Comment:
- Comment: For legal and law enforcement-related requests, please contact:
- Comment: * msndcc@microsoft.com
- Comment:
- Comment: For routing, peering or DNS issues, please
- Comment: contact:
- Comment: * IOC@microsoft.com
- Ref: https://rdap.arin.net/registry/entity/MSFT
- OrgTechHandle: MRPD-ARIN
- OrgTechName: Microsoft Routing, Peering, and DNS
- OrgTechPhone: +1-425-882-8080
- OrgTechEmail: IOC@microsoft.com
- OrgTechRef: https://rdap.arin.net/registry/entity/MRPD-ARIN
- OrgAbuseHandle: MAC74-ARIN
- OrgAbuseName: Microsoft Abuse Contact
- OrgAbusePhone: +1-425-882-8080
- OrgAbuseEmail: abuse@microsoft.com
- OrgAbuseRef: https://rdap.arin.net/registry/entity/MAC74-ARIN
- Query Time: 0.00016 seconds
- Total: 0 Hits in 0 Websites
- Error: No results found
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement