WsIRT^(TM)

• whois
• dig
• host
• fetch
• asn

---

whois

at 10 Dec, 2007 @ 18:21:57
GeekTools Whois Proxy v5.0.4 Ready. Checking access for CastleCops WsIRT... ok. Checking server [whois.afilias.info] Results: Access to INFO WHOIS information is provided to assist persons in determining the contents of a domain name registration record in the Afilias registry database. The data in this record is provided by Afilias Limited for informational purposes only, and Afilias does not guarantee its accuracy. This service is intended only for query-based access. You agree that you will use this data only for lawful purposes and that, under no circumstances will you use this data to: (a) allow, enable, or otherwise support the transmission by e-mail, telephone, or facsimile of mass unsolicited, commercial advertising or solicitations to entities other than the data recipient's own existing customers; or (b) enable high volume, automated, electronic processes that send queries or data to the systems of Registry Operator, a Registrar, or Afilias except as reasonably necessary to register domain names or modify existing registrations. All rights reserved. Afilias reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy. Domain ID:D18643085-LRMS Domain Name:EFOOT.INFO Created On:25-Jun-2007 08:06:52 UTC Last Updated On:24-Aug-2007 20:34:02 UTC Expiration Date:25-Jun-2008 08:06:52 UTC Sponsoring Registrar:Name Bay (R123-LRMS) Status:OK Registrant ID:CF53952-NBAY Registrant Name:Abdoulaye Yare FALL Registrant Organization:CFPIA Registrant Street1:Avenue Birago Diop x G Point E Registrant Street2: Registrant Street3: Registrant City:Dakar Registrant State/Province: Registrant Postal Code:5344 Registrant Country:SN Registrant Phone:+221.8690999 Registrant Phone Ext.: Registrant FAX:+221.8644500 Registrant FAX Ext.: Registrant Email:cfpia@sentoo.sn Admin ID:C4914110-LRMS Admin Name:Mathieu Chouteau Admin Organization:NUXIT Admin Street1:Les Espaces de Sophia Admin Street2:80 route des Lucioles - BP 037 Admin Street3: Admin City:Sophia Antipolis Cedex Admin State/Province: Admin Postal Code:06901 Admin Country:FR Admin Phone:+33.892460516 Admin Phone Ext.: Admin FAX:+33.493654791 Admin FAX Ext.: Admin Email:domains@nuxit.net Billing ID:C4914110-LRMS Billing Name:Mathieu Chouteau Billing Organization:NUXIT Billing Street1:Les Espaces de Sophia Billing Street2:80 route des Lucioles - BP 037 Billing Street3: Billing City:Sophia Antipolis Cedex Billing State/Province: Billing Postal Code:06901 Billing Country:FR Billing Phone:+33.892460516 Billing Phone Ext.: Billing FAX:+33.493654791 Billing FAX Ext.: Billing Email:domains@nuxit.net Tech ID:C4914110-LRMS Tech Name:Mathieu Chouteau Tech Organization:NUXIT Tech Street1:Les Espaces de Sophia Tech Street2:80 route des Lucioles - BP 037 Tech Street3: Tech City:Sophia Antipolis Cedex Tech State/Province: Tech Postal Code:06901 Tech Country:FR Tech Phone:+33.892460516 Tech Phone Ext.: Tech FAX:+33.493654791 Tech FAX Ext.: Tech Email:domains@nuxit.net Name Server:NS2.NUXIT.NET Name Server:NS1.NUXIT.NET Name Server: Name Server: Name Server: Name Server: Name Server: Name Server: Name Server: Name Server: Name Server: Name Server: Name Server: Results brought to you by the GeekTools WHOIS Proxy Server results may be copyrighted and are used with permission. Your host (CastleCops WsIRT) has visited 313 times today.

---

whois

at 12 Dec, 2007 @ 00:40:20
GeekTools Whois Proxy v5.0.4 Ready. Checking access for CastleCops WsIRT... ok. Checking server [whois.crsnic.net] Checking server [whois.namebay.com] Results: Domain Name : NUXIT.NET Created On : 2004-04-22 Expiration Date : 2008-04-22 Status : PROTECTED Registrant Name : Azura Networks Registrant Street1 : 80 Route des Lucioles Registrant City : Valbonne Registrant State/Province : FR Registrant Postal Code : 06560 Registrant Country : FR Admin Name : NUXIT Admin Street1 : Les Espaces de Sophia Admin Street2 : 80 route des Lucioles - BP 037 Admin City : Sophia Antipolis Cedex Admin State/Province : FR Admin Postal Code : 06901 Admin Country : FR Admin Phone : +33.892460516 Admin Email : domains@nuxit.net Tech Name : NUXIT Tech Street1 : Les Espaces de Sophia Tech Street2 : 80 route des Lucioles - BP 037 Tech City : Sophia Antipolis Cedex Tech State/Province : FR Tech Postal Code : 06901 Tech Country : FR Tech Phone : +33.892460516 Tech Email : domains@nuxit.net Billing Name : NUXIT Billing Street1 : Les Espaces de Sophia Billing Street2 : 80 route des Lucioles - BP 037 Billing City : Sophia Antipolis Cedex Billing State/Province : FR Billing Postal Code : 06901 Billing Country : FR Billing Phone : +33.892460516 Billing Email : domains@nuxit.net Name Server : NS1.NUXIT.NET Name Server : NS2.NUXIT.NET Registrar Name : verisign Results brought to you by the GeekTools WHOIS Proxy Server results may be copyrighted and are used with permission. Your host (CastleCops WsIRT) has visited 14 times today.

---

dig any

at 10 Dec, 2007 @ 18:21:57
;fsf.efoot.info. IN A fsf.efoot.info. 1800 IN CNAME mutu.nuxit.net. mutu.nuxit.net. 1800 IN A 195.114.18.91 nuxit.net. 1800 IN NS ns1.nuxit.net. nuxit.net. 1800 IN NS ns2.nuxit.net. ;efoot.info. IN A efoot.info. 1800 IN A 195.114.18.91 ;efoot.info. IN MX ;efoot.info. IN NS efoot.info. 1800 IN NS ns2.nuxit.net. efoot.info. 1800 IN NS ns1.nuxit.net. ;efoot.info. IN SOA efoot.info. 1800 IN SOA ns1.nuxit.net. tech.nuxit.net. 2007100809 28800 7200 604800 1800 ;efoot.info. IN TXT ;fsf.efoot.info. IN CNAME fsf.efoot.info. 1799 IN CNAME mutu.nuxit.net. ;fsf.efoot.info. IN PTR fsf.efoot.info. 1799 IN CNAME mutu.nuxit.net. ;efoot.info. IN KEY ;fsf.efoot.info. IN HINFO fsf.efoot.info. 1799 IN CNAME mutu.nuxit.net. ;fsf.efoot.info. IN AAAA fsf.efoot.info. 1798 IN CNAME mutu.nuxit.net. ;; Query time: 173 msec ;; SERVER: 204.152.187.13#53(204.152.187.13) ;; WHEN: Mon Dec 10 18:21:57 2007 ;; MSG SIZE rcvd: 105

---

dig any

at 12 Dec, 2007 @ 00:40:20
; <<>> DiG 9.3.4 <<>> nuxit.net any ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 23005 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 2, ADDITIONAL: 2 ;; QUESTION SECTION: ;nuxit.net. IN ANY ;; ANSWER SECTION: nuxit.net. 1800 IN MX 0 noc.ispfr.net. nuxit.net. 1799 IN A 195.114.19.1 nuxit.net. 1598 IN NS ns2.nuxit.net. nuxit.net. 1598 IN NS ns1.nuxit.net. ;; AUTHORITY SECTION: nuxit.net. 1598 IN NS ns2.nuxit.net. nuxit.net. 1598 IN NS ns1.nuxit.net. ;; ADDITIONAL SECTION: ns2.nuxit.net. 172598 IN A 195.114.18.140 ns1.nuxit.net. 172598 IN A 195.114.18.65 ;; Query time: 3 msec ;; SERVER: 204.152.184.68#53(204.152.184.68) ;; WHEN: Wed Dec 12 00:40:20 2007 ;; MSG SIZE rcvd: 165

---

host

at 10 Dec, 2007 @ 18:21:57

---

host

at 12 Dec, 2007 @ 00:40:20

---

fetched page

at 10 Dec, 2007 @ 18:21:52
MD5 Fingerprint: 6c484397e36c8219205a1e95c8014908
SHA1 Fingerprint: a3d5bd47e4e7d969e10d0b449eb4dffbc178f746
HTTP/1.1 200 OK Date: Mon, 10 Dec 2007 18:21:55 GMT Server: Apache Last-Modified: Wed, 05 Sep 2007 15:26:52 GMT ETag: "3f2c013-2872f-8fb2700" Accept-Ranges: bytes Content-Length: 165679 Vary: Accept-Encoding Content-Type: text/plain <?php //Starting calls if (!function_exists("getmicrotime")) {function getmicrotime() {list($usec, $sec) = explode(" ", microtime()); return ((float)$usec + (float)$sec);}} error_reporting(5); @ignore_user_abort(TRUE); @set_magic_quotes_runtime(0); $win = strtolower(substr(PHP_OS,0,3)) == "win"; define("starttime",getmicrotime()); if (get_magi TRUNCATED BY CASTLECOPS FOR PUBLIC DISPLAY -- CONTACT STAFF FOR DETAILS

---

Corresponding BGP Origin ASN

at 12 Dec, 2007 @ 00:40:20
AS | BGP Prefix | CC | Registry | Allocated
"41186 | 195.114.18.0/23 | FR | ripencc | 2006-06-27"

---

Possible BGP peer ASNs one AS hop away from BGP Origin ASN

at 12 Dec, 2007 @ 00:40:20
AS Peers | BGP Prefix | CC | Registry | Allocated
"174 41863 | 195.114.18.0/23 | FR | ripencc | 2006-06-27"

---

AS Description of a given BGP ASN

at 12 Dec, 2007 @ 00:41:43
AS | CC | Registry | Allocated | AS Name
"41186 | FR | ripencc | 2006-06-27 | ISPFR-AS ISPFR"