-1166656618 | 2024-12-19T05:05:57.491131
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
2516931 | 2024-12-29T20:26:24.214247
3306 /
tcp
MySQL:
Error Message: Host '224.216.170.101' is not allowed to connect to this MySQL server
Error Code: 1130
392897515 | 2024-12-21T11:56:41.289688
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: WIN-KEJVO9CLD80
NetBIOS Domain Name: WIN-KEJVO9CLD80
NetBIOS Computer Name: WIN-KEJVO9CLD80
DNS Domain Name: WIN-KEJVO9CLD80
FQDN: WIN-KEJVO9CLD80
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:31:9c:ad:32:df:ce:bc:4a:fb:b7:16:cc:97:7c:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-KEJVO9CLD80
Validity
Not Before: Nov 22 22:16:16 2024 GMT
Not After : May 24 22:16:16 2025 GMT
Subject: CN=WIN-KEJVO9CLD80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b6:aa:40:3d:1f:e6:98:9b:b2:a3:f7:b9:76:41:
b4:22:c5:b3:66:04:73:4a:5e:6f:01:54:b5:ac:39:
f4:a5:74:27:5c:5f:f1:8b:2e:b7:25:26:b5:01:7d:
c9:0a:9e:3a:ea:74:b2:cc:1d:0b:af:09:e7:41:8a:
23:f5:4a:d6:29:ec:29:09:d4:24:e2:bd:ad:54:76:
41:14:c4:ee:29:fc:6c:25:78:93:92:9c:dd:1e:2a:
7b:b1:b6:ca:3d:32:88:4f:ce:20:fe:da:2e:d7:3f:
c1:73:aa:5d:95:48:42:48:e8:58:d4:18:59:30:41:
de:1e:93:8e:18:76:3a:5e:3c:1e:93:0a:c4:8d:fa:
2e:37:c1:22:28:5e:62:79:02:68:83:54:83:ac:f7:
09:39:23:73:cc:41:48:5f:f5:c5:5c:7c:f0:ce:1d:
42:30:80:e9:47:52:0e:37:90:14:71:71:33:ff:2c:
85:70:1b:36:75:44:26:3d:26:a6:9c:d9:10:df:5b:
98:87:0b:95:90:ab:21:95:9a:08:e0:fc:f0:42:2b:
78:ef:ca:87:50:80:d2:de:02:b2:b2:56:df:20:8a:
84:e4:b0:e5:b8:6d:2e:0e:17:3b:e7:6d:c6:f0:c6:
85:7f:54:fc:32:4c:f9:05:18:02:92:4e:82:3c:38:
36:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
80:da:90:cb:b5:58:ed:67:90:05:7d:d7:c5:4d:4a:62:5c:2a:
9e:43:52:83:82:ff:96:eb:ad:d6:32:24:98:ac:4b:ae:8b:09:
95:b4:9e:d3:f5:55:ed:4b:f1:ea:72:bd:af:74:8c:87:0c:42:
d5:2d:1e:7c:2c:32:69:58:1f:b4:6b:44:39:5c:90:3d:6d:ca:
fd:fb:91:5a:d1:95:50:41:7f:00:5a:d9:86:7d:7e:8d:59:64:
27:6e:69:5f:87:ad:bc:fc:f1:ec:b4:02:fd:4c:ef:73:db:6e:
e3:0c:26:a1:c7:70:4f:72:91:8b:bd:24:0b:10:c5:51:48:52:
d4:b2:84:11:68:f5:b9:0d:49:96:45:e8:f9:3f:4b:c8:6e:32:
1c:42:31:48:a9:f2:ea:f8:5c:2c:53:4b:fa:14:89:53:42:c2:
b6:da:fb:d0:c6:2e:bb:e3:f1:d5:c4:bf:7f:a0:03:ec:d7:0c:
a0:30:1e:e4:2d:f8:79:05:39:db:d2:0c:ff:0d:a5:b8:f3:c1:
53:31:2c:0b:bb:6f:d4:b5:9d:35:60:a0:43:67:75:49:cc:d3:
c6:12:4e:13:0d:a7:83:18:7b:95:da:19:20:83:c4:87:56:63:
9c:91:1d:c2:44:53:52:e6:a3:75:f7:a5:46:c8:88:3e:f1:3f:
4e:aa:16:94
-1684583448 | 2024-12-25T15:28:45.189338
5357 /
tcp
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Wed, 25 Dec 2024 15:28:45 GMT
Connection: close
Content-Length: 326
1489525118 | 2024-12-12T03:24:09.403817
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 12 Dec 2024 03:24:09 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: WIN-KEJVO9CLD80
NetBIOS Domain Name: WIN-KEJVO9CLD80
NetBIOS Computer Name: WIN-KEJVO9CLD80
DNS Domain Name: WIN-KEJVO9CLD80
FQDN: WIN-KEJVO9CLD80
-795948505 | 2024-12-13T19:49:41.078862
33060 /
tcp
MySQL X Protocol:
tls: False
authentication.mechanisms:
MYSQL41
SHA256_MEMORY
doc.formats: text
client.interactive: False
compression:
algorithm:
deflate_stream
lz4_message
zstd_stream
node_type: mysql
client.pwd_expire_ok: False
