437603254 | 2024-10-19T14:17:31.433381
80 /
tcp
HTTP/1.1 301 Moved Permanently
Date: Sat, 19 Oct 2024 14:17:30 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Location: https://38.21.24.173/
Content-Length: 353
Content-Type: text/html; charset=iso-8859-1
765657245 | 2024-11-08T13:16:43.895664
443 /
tcp
HTTP/1.1 200 OK
Date: Fri, 08 Nov 2024 13:16:31 GMT
Server: Apache/2.4.39 (Win64) OpenSSL/1.1.1b PHP/7.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Tue, 30 Jul 2019 10:06:15 GMT
ETag: "1072a-58ee328b193c0"
Accept-Ranges: bytes
Content-Length: 67370
Vary: Accept-Encoding
Content-Type: text/html
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:47:32:7f:89:a3:b6:84:96:84:2f:f2:fe:c0:58:55:6d:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Oct 18 14:05:28 2024 GMT
Not After : Jan 16 14:05:27 2025 GMT
Subject: CN=xltyyp.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (3072 bit)
Modulus:
00:c6:ea:b3:ac:a7:c2:07:b4:38:76:01:86:ba:09:
7a:fe:b7:70:69:39:f2:77:e4:e6:ff:7e:61:05:9b:
a3:3b:33:4c:d4:6d:b1:33:c7:cf:c3:98:f5:94:07:
19:15:0b:7f:d2:a7:83:a9:7c:c0:2c:db:48:ba:ba:
05:55:35:10:39:02:d1:80:ba:11:3c:19:2c:5a:d1:
21:10:c9:a3:87:bc:51:ac:4c:be:f3:61:e0:2c:50:
a9:eb:b8:2c:fd:f0:a3:1a:ed:2d:2c:a4:e2:74:89:
5c:17:cd:aa:00:2a:2a:18:ca:e4:24:ca:14:8f:cc:
85:c6:2f:ad:88:f1:6e:86:96:da:7f:82:70:d9:85:
b1:01:2c:1c:82:b9:69:23:28:8f:cf:fc:21:14:83:
b8:bc:4a:a9:f4:9c:e9:cc:66:98:b8:01:ac:58:d2:
99:99:41:c9:4e:b1:65:ab:c3:e4:e8:87:8e:63:2f:
61:43:5b:99:9f:c4:56:c5:b7:92:d5:8a:65:40:75:
08:51:44:85:07:40:b6:51:1e:25:53:46:b2:7b:1f:
e5:7d:ad:9e:a3:4d:83:d7:18:db:32:26:84:17:01:
ab:16:e9:b4:bf:d7:7f:69:ed:f3:4b:cb:19:71:3d:
19:9a:6a:e4:47:72:11:c4:d4:1d:08:ac:7a:3b:d2:
b5:1c:02:3f:40:a9:b1:74:25:96:3e:af:e1:2d:e8:
2f:da:20:08:53:1c:a2:a7:4b:73:02:2a:62:30:58:
20:aa:d6:1d:8e:c6:ca:dd:97:11:d6:e8:a7:c2:82:
4d:70:ff:90:8b:4a:57:c7:db:98:a9:ce:69:18:7a:
d2:70:48:5b:b8:ce:2e:7c:10:d4:65:0b:67:d6:d6:
52:ae:ac:26:1d:ed:99:1e:e7:cd:35:3c:2c:6a:0a:
97:ce:ad:1b:7e:55:3d:6f:e2:7e:2e:28:d4:5d:a7:
0f:50:0e:48:5f:25:9b:67:7e:0f:3a:2f:e7:ad:5a:
f1:66:b3:f2:59:10:dc:2a:f6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
FF:D5:70:0F:A1:17:F9:18:98:D7:C0:23:4A:4F:64:63:3F:E5:5D:B1
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:www.xltyyp.com, DNS:xltyyp.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
Timestamp : Oct 18 15:03:58.956 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:EE:15:1B:41:04:13:9E:B7:F5:A8:37:
35:24:6A:A0:39:9E:AD:7B:D6:8D:B7:F0:AF:A6:41:A1:
71:28:85:81:EE:02:21:00:BB:69:F0:79:3B:21:E9:0A:
10:BD:51:A6:59:AD:CE:39:DD:97:D2:FB:3F:AF:4E:BC:
3D:F3:1D:B2:7D:B0:A3:88
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Oct 18 15:03:58.703 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:F1:9D:EE:49:A8:27:B6:CD:7E:EB:EC:
60:B1:5A:C9:AD:0E:AC:DE:59:AC:1F:41:4D:51:90:D5:
C3:84:A7:00:81:02:21:00:D6:9A:B5:48:C5:DB:80:0E:
B9:15:F9:40:D2:25:6D:38:9C:98:37:13:96:46:2A:06:
F8:6B:61:AD:3C:E2:4A:38
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
13:bf:2d:39:a8:f7:94:a2:3f:ab:c9:05:02:22:7f:3a:74:08:
07:2e:32:b8:e5:fe:ac:f9:94:c3:96:21:6b:d0:d8:12:4a:f6:
c9:cc:ff:a7:34:d7:ca:15:29:47:9e:c0:07:a4:f3:67:cb:89:
5b:94:01:45:29:5f:2a:a9:c2:35:e9:6b:8e:e2:fe:47:41:d9:
a5:4a:31:c1:9c:3c:d5:be:a4:d3:7c:8d:a6:09:8d:fe:24:c1:
34:c2:54:f5:2f:b1:2a:97:9b:f2:6d:9a:9c:34:84:b0:7b:db:
6d:61:43:17:2b:8c:7e:e7:33:09:d6:be:85:fc:fe:1e:a6:6b:
09:cf:9a:29:78:2b:e5:37:6b:89:0f:38:6f:7c:31:d6:cb:44:
c3:8a:44:bc:15:02:8a:6e:74:a5:ee:50:11:d9:96:9d:d8:5c:
86:92:d4:69:d5:28:a5:32:81:1d:2e:34:7f:49:9e:03:7c:98:
7b:06:1a:c4:c9:d7:3a:eb:27:79:34:04:f9:37:c6:9d:54:b5:
f6:63:a8:c8:b0:52:92:fc:2e:9c:f8:97:d6:aa:eb:5d:ae:dd:
08:7b:b3:f4:dd:89:e5:a1:e6:81:4d:66:31:da:30:69:a0:41:
49:51:d9:ec:66:c3:59:4a:5a:91:26:ec:25:ea:2a:4a:74:cc:
02:c7:3f:86
-1242801143 | 2024-11-04T04:58:34.886891
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 1
OS: Windows Server 2012 R2 Datacenter 9600
Software: Windows Server 2012 R2 Datacenter 6.3
Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
1869929217 | 2024-10-28T01:20:06.235440
3306 /
tcp
MySQL:
Error Message: Host '224.222.221.230' is not allowed to connect to this MySQL server
Error Code: 1130
1489525118 | 2024-10-26T02:32:36.606567
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sat, 26 Oct 2024 02:32:36 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2012 R2
OS Build: 6.3.9600
Target Name: S-KATIPOX
NetBIOS Domain Name: S-KATIPOX
NetBIOS Computer Name: S-KATIPOX
DNS Domain Name: s-KatipoX
FQDN: s-KatipoX