703707298 | 2024-09-17T21:40:21.210949
80 /
tcp
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Tue, 21 Nov 2023 12:47:44 GMT
Accept-Ranges: bytes
ETag: "9b7d1aec781cda1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Tue, 17 Sep 2024 21:40:21 GMT
Content-Length: 703
2130961613 | 2024-09-16T16:35:04.544642
1801 /
tcp
\x10Z\x0b\x00LIOR<\x02\x00\x00\xff\xff\xff\xff\x00\x00\x12\x00\x06U=Q6\xdf\xc7@\x96C\x17\\<\xe7l\xaa#+\xf8\x9c\xc7*(D\xab\xd4\xd9\xe6\x0b\xa1\x86D\x00\x00\x00\x00\x10\x02\x00\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ
-1414345246 | 2024-09-16T01:19:00.061440
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: 13-161-178-68
NetBIOS Domain Name: 13-161-178-68
NetBIOS Computer Name: 13-161-178-68
DNS Domain Name: 13-161-178-68.host.secureserver.net
FQDN: 13-161-178-68.host.secureserver.net
-farminpravin
ae
AT farminpravin
(A; nydus
(A; WDeployAdmin
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:7d:49:35:fe:b6:63:b6:49:17:c5:41:ef:3c:8c:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13-161-178-68.host.secureserver.net
Validity
Not Before: Apr 19 22:22:58 2024 GMT
Not After : Oct 19 22:22:58 2024 GMT
Subject: CN=13-161-178-68.host.secureserver.net
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:75:5b:ba:15:2f:4d:7c:02:62:a9:6c:6f:a1:
b2:01:4c:fe:7f:8f:9b:1d:d7:f6:ba:67:42:28:36:
4c:bf:71:fc:86:48:9a:91:1e:d6:94:b9:c0:a7:51:
c8:42:a1:e0:93:fe:53:26:e3:8c:d3:9b:fa:d0:c8:
0c:d3:ae:46:77:2a:97:18:33:77:cb:00:4e:25:23:
eb:b0:e4:81:7f:ce:7e:71:18:a3:93:e8:49:25:fe:
b4:f9:9a:79:e7:20:69:58:ac:b3:9e:82:09:83:0b:
a5:c9:d8:4c:ce:1b:ca:37:e6:46:31:5d:d6:b7:1c:
fe:43:08:8a:4c:bb:52:d0:41:9d:1c:ef:52:d6:d5:
a1:88:4a:ce:46:fa:56:ea:20:27:8b:c8:c0:b7:02:
5c:a9:ec:48:8b:d9:14:19:e9:39:bd:66:93:31:73:
cd:91:82:c4:a6:a2:f9:93:10:f5:81:99:86:2e:a3:
c3:19:27:08:8e:71:97:e5:38:dd:98:a5:0f:cd:05:
3a:28:35:ba:39:60:c3:8d:52:da:68:ee:54:06:d4:
ac:79:13:ad:8c:72:21:68:f3:1c:a2:3e:be:75:d8:
ea:dc:12:f4:9d:40:73:9b:87:58:14:0f:62:86:7e:
78:d3:b3:50:6a:ba:71:12:22:18:24:0d:17:fe:01:
04:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
65:0d:35:7d:06:4b:80:ff:2f:6f:a1:d6:6a:9a:51:e9:cf:9c:
07:0b:c7:e6:40:5b:9d:15:1e:e9:27:78:94:23:3a:51:12:8a:
9e:66:a0:18:a5:bf:d3:80:8f:89:f4:22:c1:8a:8a:10:ab:24:
2a:54:5f:a3:c3:14:97:b6:c0:6e:1b:63:9a:fa:0a:c1:a4:08:
37:d4:c9:35:84:04:7f:e0:03:b0:e7:48:d6:aa:f7:10:b4:bf:
2d:57:9a:21:9b:ff:23:07:ca:9c:eb:e2:5c:45:76:69:57:bb:
9f:ed:c1:c9:3e:98:70:e7:e1:bd:42:1e:28:f0:97:02:96:cc:
ee:77:f0:f7:38:57:c6:47:53:b4:8b:ab:04:de:ed:33:96:ac:
7d:15:b6:d3:bc:cd:39:db:37:da:d9:9a:85:74:19:0d:3c:08:
46:c4:c4:79:f6:8f:75:dc:e6:ae:e6:a5:e1:98:cb:e5:6e:6a:
0c:e6:6b:09:75:f9:ec:7e:ff:80:28:41:54:12:5c:28:89:49:
53:25:42:0a:25:95:04:bd:ae:28:4e:b7:7c:a6:36:2a:0c:26:
89:36:66:5e:99:e5:ac:99:51:6c:f7:8f:f9:5a:2f:15:5e:a7:
54:8e:60:eb:86:47:0d:45:8c:9e:9c:75:50:0d:9d:15:0d:db:
99:45:bf:6a
1489525118 | 2024-09-20T22:10:19.738947
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Fri, 20 Sep 2024 22:10:19 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: 13-161-178-68
NetBIOS Domain Name: 13-161-178-68
NetBIOS Computer Name: 13-161-178-68
DNS Domain Name: 13-161-178-68.host.secureserver.net
FQDN: 13-161-178-68.host.secureserver.net