1201949907 | 2024-09-22T18:32:53.422799
80 /
tcp
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Sun, 28 Jul 2024 05:19:42 GMT
Accept-Ranges: bytes
ETag: "b9928bc0ade0da1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 22 Sep 2024 18:32:51 GMT
Content-Length: 81863
1201949907 | 2024-09-16T14:03:37.377856
443 /
tcp
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Sun, 28 Jul 2024 05:19:42 GMT
Accept-Ranges: bytes
ETag: "b9928bc0ade0da1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Mon, 16 Sep 2024 14:03:35 GMT
Content-Length: 81863
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:cd:3f:3c:ed:a8:aa:60:ef:3f:6f:fd:fc:96:78:01:e2:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Aug 12 03:33:59 2024 GMT
Not After : Nov 10 03:33:58 2024 GMT
Subject: CN=affiliate.emerge-test.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (3072 bit)
Modulus:
00:9c:e7:a9:ec:42:f1:93:b4:9f:55:18:f8:6e:2a:
b4:61:af:b1:45:a0:72:3c:e4:44:63:f5:96:34:92:
df:85:e5:3f:d5:5b:53:20:61:5f:c9:63:f1:98:83:
64:53:a7:e1:a4:4d:69:bb:88:7b:6f:f1:87:a5:b1:
41:fa:21:59:5a:76:51:de:bd:07:f1:52:10:45:7b:
b8:4c:66:9c:2e:82:9a:73:3d:4a:9b:1f:d3:ed:d1:
f6:f9:3a:5d:7c:04:1c:ab:ad:27:a0:53:38:68:b5:
94:2c:9a:99:49:2f:2b:e1:0c:47:06:71:6f:26:5a:
1c:0e:aa:1c:78:d3:f2:1a:3a:fa:1e:6b:a7:d8:64:
73:0f:48:56:51:0b:9f:6e:5e:57:64:9d:89:34:53:
9a:f6:99:7b:2c:8e:ed:68:40:f9:90:99:8f:a6:83:
18:68:2b:58:e3:0c:8c:75:65:4e:34:ba:2c:94:49:
81:0d:28:29:35:09:65:8d:7d:48:55:9b:07:89:d4:
2f:8f:d0:24:b5:86:e6:08:fc:c7:7b:e9:f7:bf:8b:
2c:b5:1b:5b:db:b2:92:5f:62:b1:7f:38:d3:31:49:
35:1c:96:3d:4f:08:1c:e8:93:4b:31:e4:cd:be:0b:
6f:d4:fe:5c:33:24:af:04:ae:d0:25:c8:e0:84:64:
d1:fc:dc:c9:a1:91:ec:54:d2:aa:27:9a:ec:e6:19:
de:54:ad:13:cf:87:98:92:60:8d:f3:49:f3:cc:db:
65:dd:2a:61:66:7a:1f:9f:88:58:52:b4:d6:37:a8:
e8:bb:26:c6:e5:c8:d7:5b:cd:2e:19:d7:e6:1d:b0:
aa:b3:1d:6c:9a:e9:13:0a:55:88:40:7b:b7:48:20:
a0:e4:07:30:ec:63:3a:4a:e4:17:17:3f:bc:2b:16:
d1:95:72:d8:82:d3:e0:2f:d4:a2:66:82:56:10:30:
18:a3:9d:1d:4b:b1:e2:8f:9d:d4:4a:fa:01:e0:3a:
c7:53:37:7f:ac:c9:98:b0:99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B0:04:6A:C8:40:74:83:4D:6B:26:50:0F:42:0A:73:C7:DE:5E:D6:E4
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:affiliate.emerge-test.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Aug 12 04:32:30.219 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:6A:9A:85:60:6F:78:FD:4C:7A:06:55:20:
7C:C2:B2:9B:DC:33:9A:D4:01:2C:6C:53:23:1F:6C:38:
47:58:A8:6F:02:21:00:C9:3B:E0:FE:54:11:41:55:37:
DD:98:C7:68:CD:55:2D:E5:35:DB:57:71:B8:AA:65:F4:
B3:2E:5D:40:29:51:F3
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Aug 12 04:32:30.401 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:43:47:62:BB:9E:81:56:4B:78:99:83:B6:
30:5A:78:1F:6B:82:28:AE:94:7A:CA:A9:F0:DD:12:A9:
60:70:44:3F:02:20:08:4C:5B:C3:E2:6C:6D:58:15:48:
ED:4C:9D:AE:B5:6B:3A:A8:79:FB:EE:51:76:73:91:D2:
B2:4B:30:1B:36:3A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
78:63:45:f1:9c:62:d1:87:ab:a5:c3:87:03:19:11:3d:d0:e9:
e8:ed:57:7a:22:d8:e9:f3:88:7b:66:a2:ba:01:07:a6:43:af:
60:f8:78:98:f0:fc:78:0f:f1:ba:b8:16:92:35:2e:e1:25:8e:
71:2e:ce:36:27:32:2e:d1:ef:6e:55:2e:2f:22:8e:56:62:bc:
cc:9a:e4:55:f7:53:fe:be:ac:7f:34:46:44:d1:80:60:71:bc:
02:7e:25:8f:4c:df:75:15:78:18:c8:e0:df:5f:ee:13:ab:83:
68:0f:3c:44:9e:00:5e:f8:fd:f1:9e:c3:23:84:e4:f2:c0:29:
a5:5d:91:1b:a1:4e:e7:ae:c2:38:89:90:b7:9d:6f:86:2d:78:
de:45:5d:e8:e8:f5:29:d0:31:3e:1d:dc:f4:99:31:b1:46:50:
b1:c2:48:e9:eb:fa:48:dc:7b:d3:83:eb:55:7b:3e:4c:2a:f9:
4b:08:a3:bc:3a:1b:28:fc:85:7f:7a:88:7e:af:b0:e6:cd:ae:
9d:f0:43:b4:ff:3c:31:6c:68:1d:6a:4b:0e:02:87:be:25:bb:
26:a4:8b:5f:1e:68:0d:5c:7a:61:c2:b1:9e:ab:a0:df:9e:fb:
f0:06:5f:07:ad:96:d2:6c:0e:53:d6:13:81:72:ef:00:dd:9a:
34:dd:11:e0
720811118 | 2024-08-29T17:20:04.222993
1433 /
tcp
MS-SQL NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: WIN-URF3S4VBCJM
NetBIOS Domain Name: WIN-URF3S4VBCJM
NetBIOS Computer Name: WIN-URF3S4VBCJM
DNS Domain Name: WIN-URF3S4VBCJM
FQDN: WIN-URF3S4VBCJM
-1776485180 | 2024-09-17T03:59:34.518419
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: WIN-URF3S4VBCJM
NetBIOS Domain Name: WIN-URF3S4VBCJM
NetBIOS Computer Name: WIN-URF3S4VBCJM
DNS Domain Name: WIN-URF3S4VBCJM
FQDN: WIN-URF3S4VBCJM
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:98:6a:4c:f4:43:48:b3:44:f1:9a:f6:8e:46:b5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-URF3S4VBCJM
Validity
Not Before: May 9 06:14:04 2024 GMT
Not After : Nov 8 06:14:04 2024 GMT
Subject: CN=WIN-URF3S4VBCJM
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b4:4e:19:00:8e:b7:0e:01:58:aa:5f:06:d2:71:
f1:0c:a5:8d:f4:7a:f7:f3:05:be:8b:9f:c1:9f:45:
7f:fe:13:1b:db:71:ab:6b:10:e9:b5:10:19:0f:02:
34:2b:0d:16:66:57:50:ce:4b:dc:63:9b:1d:67:fe:
6e:69:43:b3:37:26:9d:28:af:34:ab:ee:19:82:fb:
1f:37:1a:f3:f5:57:b0:56:bd:07:e1:fa:bc:93:42:
cd:32:c2:03:6a:c5:80:07:4b:71:e2:cd:e9:cf:35:
13:e6:ad:aa:30:d3:e0:d0:af:cd:d1:36:67:d0:82:
59:13:39:53:6b:ea:29:05:66:8e:c8:46:8f:dc:75:
5d:d3:b3:04:51:39:bc:c3:76:04:7d:f8:d0:f6:9f:
84:2f:d9:53:4c:05:e1:b3:3e:ec:39:45:47:83:00:
ca:33:b1:d9:4a:40:f0:fc:9d:24:52:fb:eb:0d:05:
df:c5:c4:5e:df:e9:a2:fd:35:34:6c:92:10:10:59:
66:49:31:7e:e2:e6:18:a9:63:1d:95:59:7e:d6:e8:
08:74:72:89:f2:42:cc:1f:a9:90:8c:09:99:ac:11:
6e:52:24:24:79:25:eb:36:9a:ce:c7:3b:d0:93:e6:
66:5b:a5:c9:01:fb:39:11:e6:63:a9:69:60:e4:67:
47:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
70:e2:99:da:72:9f:9a:16:20:68:55:b3:36:8b:ed:95:83:3e:
88:6a:21:81:0c:b7:2f:79:de:83:6d:d6:6b:f9:9c:3c:46:95:
6b:3c:45:eb:c2:45:5a:da:82:f7:6b:86:24:70:96:0b:01:11:
a6:ad:75:cf:b3:d6:b5:dc:28:da:5b:84:d6:10:9c:95:13:10:
9e:02:15:a5:63:b5:d1:bf:6c:c4:d6:f0:16:57:22:43:f3:69:
d4:b8:db:10:02:c6:7c:54:82:84:20:a4:cd:36:a2:3d:80:17:
84:4f:aa:58:3f:38:9d:e4:c5:55:74:2f:67:49:22:ec:5f:49:
c4:0c:cf:8f:d3:f4:c3:96:47:5e:4a:38:5f:e3:86:21:21:5d:
63:64:51:33:33:a1:57:f3:5a:47:17:df:6a:14:17:5b:9b:4e:
25:a9:da:70:44:ea:b5:49:a2:ee:8e:dd:5f:c3:93:53:00:3e:
fa:72:6d:98:cc:48:df:93:6b:c8:f0:fa:d8:8e:20:f5:dd:6f:
9c:71:29:66:3f:31:98:a5:57:13:f8:7d:75:6f:86:39:b0:9d:
7e:b4:0a:3b:9e:77:48:81:4d:3e:a3:62:5f:c8:1d:ec:a4:81:
7e:6a:27:28:9a:bb:12:6e:bc:6e:df:f4:fa:5b:d7:cd:4d:30:
eb:af:e3:e4
50704379 | 2024-09-15T15:23:57.015749
4369 /
tcp
Erlang Port Mapper Daemon:
nodes:
rabbit: 25672
1298793639 | 2024-09-22T14:44:12.702019
5000 /
tcp
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 22 Sep 2024 14:44:08 GMT
Connection: close
Content-Length: 334
-1684583448 | 2024-09-20T01:29:45.885796
5357 /
tcp
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Fri, 20 Sep 2024 01:29:42 GMT
Connection: close
Content-Length: 326
1734931028 | 2024-09-20T01:32:06.253562
5672 /
tcp
AMQP:
Protocol Version: 0-9
Product: RabbitMQ
Product Version: 3.12.8
Platform: Erlang/OTP 26.0.2
Capabilities:
Exchange Exchange Bindings: True
Connection.blocked: True
Authentication Failure Close: True
Direct Reply To: True
Basic.nack: True
Per Consumer Qos: True
Consumer Priorities: True
Consumer Cancel Notify: True
Publisher Confirms: True
1489525118 | 2024-09-16T17:54:44.112903
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 16 Sep 2024 17:54:43 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: WIN-URF3S4VBCJM
NetBIOS Domain Name: WIN-URF3S4VBCJM
NetBIOS Computer Name: WIN-URF3S4VBCJM
DNS Domain Name: WIN-URF3S4VBCJM
FQDN: WIN-URF3S4VBCJM
1150265434 | 2024-09-09T10:04:59.955768
7547 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html
Transfer-Encoding: chunked
Server: WebServer/1.0 UPnP/1.0
EXT:
-985096807 | 2024-09-15T19:13:55.113270
8080 /
tcp
HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 15 Sep 2024 19:13:52 GMT
Content-Length: 1233
-1289635195 | 2024-09-19T21:49:58.932321
9600 /
tcp
HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 19 Sep 2024 21:49:56 GMT
Connection: close
Content-Length: 326
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>Bad Request</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD>
<BODY><h2>Bad Request - Invalid Verb</h2>
<hr><p>HTTP Error 400. The request verb is invalid.</p>
</BODY></HTML>
