-2141292605 | 2025-01-04T14:05:42.011531
80 /
tcp
HTTP/1.1 401 Unauthorized
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Date: Sat, 04 Jan 2025 14:05:29 GMT
HTTP NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: CPC-PROD3
NetBIOS Domain Name: CPC-PROD3
NetBIOS Computer Name: CPC-PROD3
DNS Domain Name: cpc-prod3.canardpc.com
FQDN: cpc-prod3.canardpc.com
1649204617 | 2025-01-16T08:51:05.795031
443 /
tcp
HTTP/1.1 401 Unauthorized
Content-Length: 0
Server: Microsoft-HTTPAPI/2.0
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Date: Thu, 16 Jan 2025 08:51:05 GMT
HTTP NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: CPC-PROD3
NetBIOS Domain Name: CPC-PROD3
NetBIOS Computer Name: CPC-PROD3
DNS Domain Name: cpc-prod3.canardpc.com
FQDN: cpc-prod3.canardpc.com
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:d1:bf:2d:92:46:f6:7e:8a:7c:1f:d9:96:c9:f6:3a:d8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Mar 11 17:22:37 2022 GMT
Not After : Jun 9 17:22:36 2022 GMT
Subject: CN=cpc-prod3.canardpc.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a6:7e:e7:de:e7:a1:26:a6:ab:94:ad:2b:1c:c6:
81:78:6c:ce:37:e9:11:ad:35:c6:68:83:7c:0e:be:
ac:ad:bc:a0:48:8d:8d:c3:25:e4:7c:24:d7:df:cf:
8b:ea:c0:e4:a8:37:80:ca:a2:a8:5f:4c:93:3d:38:
8c:14:fe:16:a8:d4:e6:97:4b:de:2e:04:53:5f:23:
db:77:c9:42:91:51:52:37:d5:7a:e1:4f:0e:a2:97:
f5:e7:6d:11:d1:50:43:32:1d:8b:12:4e:63:3e:a9:
30:d0:86:cb:28:45:f7:c5:2a:e6:d4:70:2b:0a:c9:
06:6a:a6:bf:2a:44:4e:c4:a3:48:2e:f3:c1:03:2d:
58:e8:7f:6e:32:6b:03:c4:cd:fd:25:bf:8a:75:b9:
6c:24:8c:c2:d8:c7:5f:e9:05:a8:91:67:d8:14:c1:
c1:bb:d3:39:0a:d3:68:fc:f9:c4:2d:85:c4:4b:63:
a0:25:7b:16:3f:2e:2c:7f:11:eb:3f:32:88:18:e0:
d5:2e:12:d5:de:36:78:66:e3:75:84:8c:ef:90:29:
d0:57:87:28:ce:e7:0c:e0:24:f1:0f:2b:b4:21:5a:
d3:f2:bc:81:ec:8e:4a:eb:36:4b:98:05:26:63:1f:
bf:f8:4f:e6:63:09:88:77:0b:d3:31:89:91:51:ba:
76:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
87:8B:0A:7F:FC:BA:2D:3A:F2:D5:41:4F:C0:65:83:3C:51:16:09:85
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:cpc-prod3.canardpc.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 29:79:BE:F0:9E:39:39:21:F0:56:73:9F:63:A5:77:E5:
BE:57:7D:9C:60:0A:F8:F9:4D:5D:26:5C:25:5D:C7:84
Timestamp : Mar 11 18:22:37.757 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:0F:64:96:FE:AC:C5:95:22:FA:78:87:5E:
7F:CA:6E:3F:B6:19:81:09:86:CF:34:29:B0:0E:96:CE:
CE:3B:41:84:02:20:4A:2B:53:53:42:3A:C2:FF:33:48:
C6:19:7A:60:55:71:D6:0C:B5:68:21:3B:8C:B7:A0:AB:
30:4C:C6:53:A2:F0
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77:
15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13
Timestamp : Mar 11 18:22:37.813 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:4B:B3:6D:07:FB:EB:0C:36:B0:53:9A:2C:
28:DF:E5:85:EE:1D:BD:65:8C:47:CA:68:84:48:B4:DD:
7C:8B:F7:00:02:20:33:05:3D:BF:7D:48:4E:70:34:09:
86:7D:8F:F8:56:A5:B3:64:6D:0F:3C:8A:ED:EB:D6:19:
DA:B5:29:04:62:75
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
60:88:93:70:08:56:28:26:e7:4c:ca:07:f7:d5:85:bc:71:3f:
29:e3:d4:4b:92:14:dd:1f:71:56:8c:67:85:4b:36:36:06:ba:
b2:01:c6:47:c6:56:df:3b:07:c2:b8:1c:3f:7b:ee:0d:c7:5b:
f2:76:3d:d6:f8:cc:e6:16:51:9a:16:82:c2:f5:c5:5c:3a:a5:
3f:27:96:7b:fb:7c:46:93:2e:a6:4f:b9:be:49:16:2f:6e:09:
09:ee:e7:ce:70:b0:35:e9:15:0d:dc:fa:0b:66:e2:16:b1:f5:
13:db:04:f5:d9:b3:d8:82:05:9e:0f:c2:35:fb:1e:e8:58:da:
b5:8b:f6:54:97:0f:28:dc:5f:84:3a:ac:c6:50:de:9e:5c:e2:
f0:b6:67:b5:26:8f:c7:f7:2a:58:96:f4:f8:3e:83:d0:75:8e:
b1:c2:18:a7:42:b0:07:79:13:93:fd:9a:5a:e5:a3:ef:aa:ed:
eb:02:6a:0f:26:c5:98:aa:e2:59:87:79:9f:b8:77:e1:29:ce:
3f:63:8a:1d:f2:47:f8:c4:30:18:2c:90:64:fd:07:15:b3:f9:
07:58:b4:7f:f3:4a:6e:87:1a:1f:f0:54:a3:3f:6c:f4:b2:70:
3a:49:07:a6:b3:8a:2d:76:5e:1c:6e:2b:03:38:c6:ce:d8:56:
4e:1a:b8:28
-1914724254 | 2025-01-13T10:25:54.149787
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: CPC-PROD3
NetBIOS Domain Name: CPC-PROD3
NetBIOS Computer Name: CPC-PROD3
DNS Domain Name: cpc-prod3.canardpc.com
FQDN: cpc-prod3.canardpc.com
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:18:1b:80:48:ba:f0:ae:44:e6:bb:0c:04:97:4e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cpc-prod3.canardpc.com
Validity
Not Before: Sep 3 02:40:03 2024 GMT
Not After : Mar 5 02:40:03 2025 GMT
Subject: CN=cpc-prod3.canardpc.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e4:d6:6a:ae:d7:44:fb:53:7e:45:8d:58:61:da:
f9:37:83:9b:73:b6:ff:42:dc:af:5b:77:dd:9f:0e:
3f:93:c8:ba:e4:61:f4:27:cf:51:ff:8b:d3:12:bc:
d8:5b:83:2f:3b:fc:2e:e8:70:0d:0d:38:03:c9:89:
2f:ea:5b:39:5a:37:16:bc:3b:af:ef:e7:71:16:83:
f3:72:70:14:5c:ee:de:1d:bd:68:e1:6e:ff:37:3a:
ed:8d:34:8d:7c:4c:03:64:55:4f:e3:af:fc:a9:3c:
2f:37:27:c9:47:4d:e2:d4:d1:e0:10:1e:aa:f2:99:
da:96:1d:c2:17:7a:02:7e:2d:3c:2b:1a:6f:3d:18:
b5:85:9d:4f:ba:b2:31:9e:b3:8f:9d:e6:8e:ce:d4:
80:5f:1d:1f:86:6f:2f:95:b1:6f:55:84:52:a9:fd:
b1:14:ee:2c:cd:b9:6b:a1:71:f2:9e:23:47:ed:ba:
b9:0e:0c:15:6e:5d:25:61:8a:11:7c:c7:fb:66:e8:
43:15:cd:cd:b2:ee:e5:2b:38:f9:47:8a:dc:4f:77:
08:8f:51:89:3a:87:ff:4a:f4:ea:0f:32:25:9e:b9:
34:0d:e5:2c:1b:00:f9:1a:64:58:74:84:8e:c5:ff:
dc:51:1a:ac:72:48:05:af:41:b1:a9:0a:31:ef:ac:
7e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
7a:f8:79:2d:d5:bf:15:34:ad:d7:57:00:82:0f:f4:80:93:89:
d8:c3:41:59:05:ef:31:0d:e7:c7:4e:70:47:92:33:6a:3b:f4:
7e:89:82:32:18:83:f1:10:a4:8f:0a:60:63:0f:45:5c:3a:65:
fe:eb:59:1a:a0:c5:ed:af:d4:79:83:c4:40:79:11:c0:9b:ba:
e7:31:1a:13:52:69:ef:1c:c8:5b:f3:7c:92:3b:bf:db:25:1f:
d3:28:36:24:da:75:5d:97:67:d0:3f:ab:be:39:5e:da:b1:6d:
5c:8f:d6:d8:2e:8a:e0:70:31:58:86:49:66:df:44:7e:9f:79:
a8:30:82:97:85:b2:5f:09:c6:bd:cb:d4:fe:9e:81:29:ab:4b:
2f:9f:78:24:82:23:de:d1:48:d6:b2:e2:e2:65:c7:48:8e:53:
4a:c7:08:64:84:cf:c2:ae:0c:3a:33:f3:a4:10:1d:ea:eb:16:
6c:8a:09:cc:ab:4f:81:57:03:a8:ec:00:9b:98:83:0d:6d:6f:
86:9e:9f:7b:4a:97:5b:99:99:d5:23:09:16:b9:83:14:74:2b:
5b:bc:68:15:cc:01:c6:44:c0:5a:34:c4:b6:f7:9b:88:10:3d:
68:42:43:00:24:7a:33:30:38:75:03:95:03:3f:bb:1c:4f:d7:
35:e2:5f:56
-568379506 | 2025-01-08T21:38:03.045501
5000 /
tcp
HTTP/1.1 200 OK
Server: TornadoServer/6.2
Content-Type: text/html; charset=UTF-8
Date: Wed, 08 Jan 2025 21:38:01 GMT
Etag: "8ee2fc6a9d8a6cd932a69f953b70ff8e3edba83d"
Content-Length: 6016
Set-Cookie: client=2|1:0|10:1736372281|6:client|48:MWQyZGJlMTktZjBmOC00ZDgyLTg2ZTAtYWJkZjgwZDNlMTM3|62fb1c54a594b9fb83d159e733afaabe834046779554150faca6659e5472435d; expires=Fri, 07 Feb 2025 21:38:01 GMT; Path=/
