22 /
tcp
35651489 | 2025-01-20T07:33:55.229739
SSH-2.0-Serv-U_15.1.6.25
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAAAgQDCh9qdcv1i9Y6nDwpspLaW1OosdrrtOl0t7uiof2/QYs0R
TmT1DVRz0D0SNweNjtB/5069pFaNMthEh591gNrnipxy2FA2Zz7x5fv0v/AbTjmTujK14GYDBvMQ
TA58jGf1NWRn0+CkJvhCqY4eylkYgXdn4Y5QgGQYoEvN9P6zdQ==
Fingerprint: e4:dd:11:2e:82:34:ab:62:59:1c:c8:62:1d:4b:48:99
Kex Algorithms:
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group14-sha1
diffie-hellman-group1-sha1
Server Host Key Algorithms:
ssh-rsa
Encryption Algorithms:
aes128-cbc
rijndael128-cbc
3des-cbc
blowfish-cbc
aes192-cbc
rijndael192-cbc
aes256-cbc
rijndael256-cbc
rijndael-cbc@lysator.liu.se
cast128-cbc
rijndael-cbc@lysator.liu.se
aes128-ctr
aes192-ctr
aes256-ctr
MAC Algorithms:
hmac-md5
hmac-sha1
hmac-sha1-96
hmac-sha2-256
hmac-sha2-256-96
hmac-sha2-512
hmac-sha2-512-96
Compression Algorithms:
zlib
none
1489525118 | 2025-01-15T10:37:54.290958
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Wed, 15 Jan 2025 10:38:12 GMT
Connection: close
Content-Length: 315
110 /
tcp
218389544 | 2025-02-01T04:49:20.450983
+OK Kerio Connect 8.5.0 POP3 server ready <8416.1738385384@mail.flexusergroup.com>
+OK Capability list follows
STLS
SASL CRAM-MD5 PLAIN LOGIN DIGEST-MD5 NTLM
TOP
USER
UIDL
.
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
8b:96:69:ee:61:25:2e:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ECS-WEB, C=US
Validity
Not Before: Aug 20 13:54:36 2019 GMT
Not After : Aug 19 13:54:36 2020 GMT
Subject: CN=ECS-WEB, C=US
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e0:8c:e6:29:dd:dd:3b:c2:c3:73:5b:48:72:ee:
44:1a:83:cf:7f:e2:8b:29:be:71:0d:63:e5:78:2d:
7a:e6:08:1c:cd:1e:73:12:c1:b5:e5:d7:b9:eb:fc:
9b:51:21:57:a5:a1:71:b7:37:e5:a9:bf:83:8d:47:
ca:b6:c9:a4:e1:fc:0a:73:a7:41:e8:a9:b3:c3:47:
01:fc:21:4a:81:f2:01:fa:4d:34:d4:b7:6a:25:48:
ef:bb:c8:ef:4c:73:2c:6a:53:38:f3:6b:6f:1c:26:
ab:5a:81:ec:e8:24:a3:1d:01:dd:3b:c2:f4:be:2f:
fa:75:b4:3a:da:49:30:0f:7a:79:ad:59:3f:ec:80:
f5:bb:0a:a9:01:85:5d:97:c6:f2:e3:1a:88:1f:5b:
f3:83:93:f3:f7:8f:09:50:19:7e:d2:fb:ad:c2:a6:
4f:3d:a6:63:14:a0:70:f3:96:04:e3:d3:34:56:42:
4f:13:7d:2c:23:dd:ba:4c:db:c7:a5:6b:ef:de:9a:
31:2d:14:be:a1:29:9a:1b:f4:8d:77:40:f8:18:f5:
d1:29:de:6d:5d:4b:2a:72:14:9e:b8:6e:f5:22:bf:
2e:3d:bb:3c:43:cd:e6:62:43:06:31:91:9a:5c:28:
6b:f6:e9:57:41:29:43:e8:99:2b:2f:0d:5e:5d:be:
c6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
1.3.6.1.4.1.10311.1.2.325:
1.
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9e:46:fa:d0:d7:4c:af:4d:84:16:43:ca:68:8a:64:5f:bb:e9:
5b:34:c4:87:cf:86:f1:b8:f5:cb:85:cf:04:36:0f:6c:83:23:
b9:10:62:02:0d:2d:83:7c:5c:8a:32:8f:a9:1a:c2:4f:db:52:
18:24:6b:99:60:f5:9b:bd:ea:51:e8:c8:1a:21:0a:ab:f6:de:
df:ab:42:a1:20:22:c8:c3:fd:0a:af:72:1c:c7:41:04:8f:43:
37:44:91:96:ed:f4:53:50:73:58:b4:c2:c3:6f:62:22:fb:be:
ff:af:52:8f:ca:c9:4d:8d:77:5d:e8:22:29:a3:42:0c:1d:2f:
81:c8:72:e6:16:8f:58:cb:2a:35:f5:13:18:45:e6:5e:ff:83:
19:b7:05:ab:0d:7c:eb:3f:4f:1a:29:3f:fa:72:e5:b0:3f:8f:
e4:f1:41:f0:38:9a:5f:d0:15:eb:5c:0f:dd:f6:77:f3:34:43:
3b:c5:2c:39:39:ac:ed:0d:00:14:d8:3a:de:1a:09:82:ae:59:
f8:9d:13:83:e0:83:37:07:24:42:ab:a2:fc:64:65:62:e2:e0:
7d:69:b4:ea:df:5f:96:4f:c3:c3:e4:89:4d:f7:f2:5e:38:62:
dd:9b:47:b7:7e:a1:eb:1b:f8:d5:26:1b:3a:1f:4c:14:0a:b5:
58:4e:8c:cc
119 /
tcp
-2041853089 | 2025-02-03T07:31:18.362546
200 Kerio Connect 8.5.0 NNTP server ready
-1573476954 | 2025-02-02T19:03:45.385431
HTTP/1.0 200 OK
Server: Serv-U/15.1.6.25
Date: Sun, 02 Feb 2025 19:03:45 GMT
Accept-Encoding: deflate
Connection: close
X-Frame-Options: sameorigin
X-Same-Domain: 1
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=0
Content-Type: text/html
Pragma: no-cache
Cache-Control: no-cache,no-store,max-age=0,must-revalidate
Expires: -1
Set-Cookie: Session=; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; secure; httponly
Content-Length: 50444
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 0 (0x0)
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
Validity
Not Before: Apr 29 15:53:05 2009 GMT
Not After : Apr 27 15:53:05 2019 GMT
Subject: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:c2:87:da:9d:72:fd:62:f5:8e:a7:0f:0a:6c:a4:
b6:96:d4:ea:2c:76:ba:ed:3a:5d:2d:ee:e8:a8:7f:
6f:d0:62:cd:11:4e:64:f5:0d:54:73:d0:3d:12:37:
07:8d:8e:d0:7f:e7:4e:bd:a4:56:8d:32:d8:44:87:
9f:75:80:da:e7:8a:9c:72:d8:50:36:67:3e:f1:e5:
fb:f4:bf:f0:1b:4e:39:93:ba:32:b5:e0:66:03:06:
f3:10:4c:0e:7c:8c:67:f5:35:64:67:d3:e0:a4:26:
f8:42:a9:8e:1e:ca:59:18:81:77:67:e1:8e:50:80:
64:18:a0:4b:cd:f4:fe:b3:75
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
2a:1d:4e:32:3d:96:9a:dd:3d:59:81:24:5e:4e:64:cb:2f:c5:
70:e2:4a:ef:8c:97:a8:76:60:94:7d:0c:09:39:a0:9d:19:da:
60:ee:6e:71:27:a5:46:df:16:94:36:a2:a1:dd:34:39:3f:65:
69:0b:a2:59:74:9a:77:64:e7:bd:27:04:3d:8e:6e:59:29:be:
51:73:d9:36:13:e3:fa:e2:44:27:8d:a0:0d:20:5c:25:7d:b8:
a5:f3:95:de:da:45:83:83:80:af:bf:06:7e:9e:83:82:dc:44:
e5:7e:c0:d7:ed:0f:54:24:7d:e1:ed:0c:30:58:1d:36:2f:91:
67:98
3389 /
tcp
1181465894 | 2025-01-21T00:03:28.339561
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 2004)/Windows Server (version 2004)
OS Build: 10.0.19041
Target Name: PINECONE
NetBIOS Domain Name: PINECONE
NetBIOS Computer Name: PINECONE
DNS Domain Name: PINECONE
FQDN: PINECONE
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:40:6d:94:eb:e0:01:bb:4a:91:cd:30:ab:6b:cf:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=PINECONE
Validity
Not Before: Dec 19 17:29:38 2024 GMT
Not After : Jun 20 17:29:38 2025 GMT
Subject: CN=PINECONE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e2:c2:34:8a:24:b6:02:85:76:07:50:92:ca:a7:
35:f9:b1:37:3f:97:20:08:5a:10:51:b6:8a:28:bd:
02:b7:56:b7:c1:97:07:40:03:e6:a1:ac:d3:3c:10:
60:15:79:51:08:6c:78:8b:fe:6b:1b:cf:dc:04:db:
d0:c6:b3:99:40:53:43:68:cd:c2:90:d2:ce:5d:2e:
75:2c:f5:47:62:52:85:a0:16:4d:39:cb:50:6b:a5:
3f:ca:09:83:df:e0:83:ec:56:05:2a:a0:20:f8:e6:
ee:4f:3a:0f:28:06:e2:f9:4e:36:ec:76:02:30:b1:
7d:7e:ea:64:61:46:67:ec:72:46:1d:a5:2f:d2:9c:
9e:12:28:52:38:1e:79:ed:d6:02:2c:8e:58:a7:73:
b6:e6:33:e4:d0:1e:3e:1f:a8:82:4f:02:38:bc:49:
6d:dc:1c:eb:39:70:27:db:83:68:6a:36:cf:0b:b6:
33:42:a9:8f:d2:01:b2:22:b6:9e:32:ba:eb:16:5b:
cf:84:2c:5f:cf:ed:e6:b1:20:65:1a:11:09:c1:ec:
18:ce:4d:e1:97:3e:14:91:dc:0c:4c:af:24:64:a1:
a1:d0:8a:87:4a:24:53:61:15:26:2f:ad:94:11:1c:
42:fe:66:be:d7:32:d8:4b:02:7e:f8:cb:d9:56:39:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
70:bf:ee:2f:fd:a0:bf:eb:7a:e1:31:13:e2:5c:36:13:9b:8d:
cd:e1:6b:9e:ef:af:09:03:ba:09:da:b2:df:03:ec:3e:45:ce:
89:8e:9d:58:fb:0c:c3:5b:b1:50:b8:fc:c5:a2:cb:22:61:42:
e3:7c:14:59:16:bd:66:97:79:98:ad:a5:6c:13:8e:3c:8a:ab:
ac:51:a8:7d:fd:3e:b9:12:87:86:fd:df:aa:cf:21:ea:c2:23:
f7:3f:bd:84:e1:70:b8:dd:63:96:69:d0:98:d4:df:e9:9a:c0:
b7:7d:66:f4:d7:89:df:da:3c:73:1d:00:44:d5:25:33:b5:bc:
f7:79:e8:11:e9:be:3a:4f:00:a7:c3:de:09:fe:40:6e:45:b5:
02:6f:9f:2a:b8:e0:f3:25:86:da:b6:ac:20:f9:ad:e2:9c:3f:
24:b1:ec:5c:42:f2:9b:5f:03:5b:f6:95:b0:13:a4:05:37:f3:
a9:5f:74:04:c5:8a:77:14:26:28:5f:a2:ae:27:c4:c7:53:d9:
3a:39:45:5b:58:1f:2f:dd:0c:ff:a9:e4:f7:8f:1c:0f:b6:66:
53:ea:84:23:e7:3f:c3:6f:9d:43:d3:e5:ba:1f:7d:da:82:90:
00:5e:2e:66:1f:0a:72:6f:46:d6:58:c7:5f:61:32:41:3e:37:
e6:87:2f:17
-213930402 | 2025-01-10T11:07:40.800679
<empty title>
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Close
Content-Length: 4637
Content-Type: text/html; charset=utf-8
Date: Fri, 10 Jan 2025 11:07:56 GMT
Expires: Wed, 4 Jun 1980 06:02:09 GMT
Pragma: no-cache
Server: Kerio Connect 8.5.0
X-UA-Compatible: IE=edge
-1573476954 | 2025-01-25T13:20:46.236954
HTTP/1.0 200 OK
Server: Serv-U/15.1.6.25
Date: Sat, 25 Jan 2025 13:20:45 GMT
Accept-Encoding: deflate
Connection: close
X-Frame-Options: sameorigin
X-Same-Domain: 1
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=0
Content-Type: text/html
Pragma: no-cache
Cache-Control: no-cache,no-store,max-age=0,must-revalidate
Expires: -1
Set-Cookie: Session=; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; httponly
Content-Length: 50444
-213930402 | 2025-01-19T05:58:36.622271
<empty title>
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Close
Content-Length: 4637
Content-Type: text/html; charset=utf-8
Date: Sun, 19 Jan 2025 05:58:57 GMT
Expires: Wed, 4 Jun 1980 06:02:09 GMT
Pragma: no-cache
Server: Kerio Connect 8.5.0
X-UA-Compatible: IE=edge
<empty title>