1377441528 | 2024-12-31T22:44:02.431131
80 /
tcp
<empty title>
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Close
Content-Length: 4782
Content-Type: text/html; charset=utf-8
Date: Tue, 31 Dec 2024 22:44:03 GMT
Expires: Wed, 4 Jun 1980 06:02:09 GMT
Pragma: no-cache
Server: Kerio Connect 8.2.2
X-UA-Compatible: IE=edge
33492037 | 2024-12-31T17:07:29.537867
119 /
tcp
200 Kerio Connect 8.2.2 NNTP server ready
-455162815 | 2024-12-22T21:46:43.253646
389 /
tcp
LDAP:
NamingContexts: fn=ContactRoot
DefaultNamingContext: fn=ContactRoot
SupportedControl:
1.2.840.113556.1.4.319
1.2.840.113556.1.4.473
1.2.840.113556.1.4.474
1377441528 | 2025-01-08T11:37:06.224122
443 /
tcp
<empty title>
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Close
Content-Length: 4782
Content-Type: text/html; charset=utf-8
Date: Wed, 8 Jan 2025 11:36:53 GMT
Expires: Wed, 4 Jun 1980 06:02:09 GMT
Pragma: no-cache
Server: Kerio Connect 8.2.2
X-UA-Compatible: IE=edge
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1562082218 (0x5d1b7baa)
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=mail.region08.ru, L=\xD0\xAD\xD0\xBB\xD0\xB8\xD1\x81\xD1\x82\xD0\xB0, C=RU
Validity
Not Before: Jul 2 15:43:38 2019 GMT
Not After : Jul 1 15:43:38 2021 GMT
Subject: CN=mail.region08.ru, L=\xD0\xAD\xD0\xBB\xD0\xB8\xD1\x81\xD1\x82\xD0\xB0, C=RU
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b8:94:f8:94:b7:71:de:7e:79:8e:92:df:ba:a1:
04:00:e1:39:f7:2e:20:68:82:07:b8:04:43:b0:c2:
ac:4e:62:5c:94:9f:e9:84:57:ce:ce:ae:76:0b:1f:
92:38:c6:94:c8:f0:69:5c:6a:b3:63:ce:a8:c2:05:
05:94:44:26:cb:ca:2c:c4:37:d9:c9:45:e3:43:50:
96:ad:dc:47:7f:dc:49:11:7b:e3:43:7b:10:68:3c:
e5:a3:44:3d:29:c6:80:d3:1f:fa:13:e6:9c:e7:b6:
68:91:45:a4:01:c1:13:ff:4e:00:9a:fe:dc:48:fb:
b6:10:a6:0f:a0:30:1c:bf:36:e9:b3:25:dd:09:8f:
10:bf:77:e4:9b:d5:e3:50:32:f4:b6:0c:5b:fa:de:
73:60:90:c8:8c:f7:d0:2f:09:97:fc:d4:ee:55:21:
4d:36:2b:e4:cc:58:e5:6e:b6:91:f2:80:c5:b1:82:
47:4b:a6:dd:45:6c:dc:17:2c:73:63:3e:34:bb:b5:
ad:f1:7e:50:31:99:cd:29:76:f5:48:25:46:a8:cd:
fb:eb:e1:b1:b6:05:11:cd:b9:cb:53:2a:6b:c9:67:
d6:9b:28:65:0d:e7:0d:09:ff:1e:ae:88:aa:57:2c:
e5:c1:7c:af:5f:8a:db:71:3c:cb:f7:8f:89:08:f5:
3a:75
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
4b:82:9b:ca:a6:96:64:a7:85:db:0a:a8:b2:69:68:be:89:db:
f1:b6:ae:c0:f2:d6:ed:af:13:29:54:aa:8f:c7:2f:04:5f:40:
2c:b5:a2:f8:ee:9f:fb:48:95:01:0d:e1:2e:95:85:58:e9:d7:
37:b7:c5:5e:6d:eb:9e:e8:b8:df:27:85:04:3a:a1:5b:3c:fe:
69:18:f6:f0:11:8b:cb:92:ba:cb:00:f1:f1:ff:48:44:ca:a0:
bb:e9:e8:03:98:f6:b6:1b:71:91:d6:59:f4:a8:ca:bb:db:67:
90:d3:36:7b:d7:3a:4a:87:f5:b5:d2:19:8d:0d:30:2a:16:42:
00:03:f8:c8:3a:2f:b3:02:e6:eb:e8:0c:8d:3e:a7:fe:ed:0a:
5a:ec:23:44:63:38:49:16:04:03:db:13:65:9f:61:82:51:f5:
47:cd:ae:b3:5b:a6:a3:7b:f7:04:b6:d0:76:48:da:fa:74:d6:
0a:20:e8:98:11:c1:33:08:d5:f7:58:92:b8:ec:a5:59:4c:88:
2b:0e:93:a7:c4:3e:77:b6:5c:d9:78:14:ef:31:37:b2:c1:fc:
78:75:49:a2:ac:2c:b4:b3:cb:85:f0:a2:e9:6b:02:be:ae:ac:
f9:93:e9:cc:2e:85:43:4c:8c:29:ca:7f:1d:cb:cd:1e:d3:d1:
9a:cc:96:32
-2042931641 | 2024-12-28T21:47:06.783199
993 /
tcp
* OK Kerio Connect 8.2.2 IMAP4rev1 server ready
* CAPABILITY IMAP4 IMAP4rev1 IDLE ACL LITERAL+ UIDPLUS QUOTA ID SORT ANNOTATE ANNOTATEMORE STATUS-COUNTERS UNSELECT LISTEXT NAMESPACE XLIST SPECIAL-USE AUTH=CRAM-MD5 AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=NTLM
A001 OK CAPABILITY completed
* ID ("name" "Kerio Connect" "version" " 8.2.2 ")
A002 OK ID completed
A003 BAD Unknown command 'unknowncmd'
* BYE logging out
A004 OK LOGOUT completed
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1562082218 (0x5d1b7baa)
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=mail.region08.ru, L=\xD0\xAD\xD0\xBB\xD0\xB8\xD1\x81\xD1\x82\xD0\xB0, C=RU
Validity
Not Before: Jul 2 15:43:38 2019 GMT
Not After : Jul 1 15:43:38 2021 GMT
Subject: CN=mail.region08.ru, L=\xD0\xAD\xD0\xBB\xD0\xB8\xD1\x81\xD1\x82\xD0\xB0, C=RU
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b8:94:f8:94:b7:71:de:7e:79:8e:92:df:ba:a1:
04:00:e1:39:f7:2e:20:68:82:07:b8:04:43:b0:c2:
ac:4e:62:5c:94:9f:e9:84:57:ce:ce:ae:76:0b:1f:
92:38:c6:94:c8:f0:69:5c:6a:b3:63:ce:a8:c2:05:
05:94:44:26:cb:ca:2c:c4:37:d9:c9:45:e3:43:50:
96:ad:dc:47:7f:dc:49:11:7b:e3:43:7b:10:68:3c:
e5:a3:44:3d:29:c6:80:d3:1f:fa:13:e6:9c:e7:b6:
68:91:45:a4:01:c1:13:ff:4e:00:9a:fe:dc:48:fb:
b6:10:a6:0f:a0:30:1c:bf:36:e9:b3:25:dd:09:8f:
10:bf:77:e4:9b:d5:e3:50:32:f4:b6:0c:5b:fa:de:
73:60:90:c8:8c:f7:d0:2f:09:97:fc:d4:ee:55:21:
4d:36:2b:e4:cc:58:e5:6e:b6:91:f2:80:c5:b1:82:
47:4b:a6:dd:45:6c:dc:17:2c:73:63:3e:34:bb:b5:
ad:f1:7e:50:31:99:cd:29:76:f5:48:25:46:a8:cd:
fb:eb:e1:b1:b6:05:11:cd:b9:cb:53:2a:6b:c9:67:
d6:9b:28:65:0d:e7:0d:09:ff:1e:ae:88:aa:57:2c:
e5:c1:7c:af:5f:8a:db:71:3c:cb:f7:8f:89:08:f5:
3a:75
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
4b:82:9b:ca:a6:96:64:a7:85:db:0a:a8:b2:69:68:be:89:db:
f1:b6:ae:c0:f2:d6:ed:af:13:29:54:aa:8f:c7:2f:04:5f:40:
2c:b5:a2:f8:ee:9f:fb:48:95:01:0d:e1:2e:95:85:58:e9:d7:
37:b7:c5:5e:6d:eb:9e:e8:b8:df:27:85:04:3a:a1:5b:3c:fe:
69:18:f6:f0:11:8b:cb:92:ba:cb:00:f1:f1:ff:48:44:ca:a0:
bb:e9:e8:03:98:f6:b6:1b:71:91:d6:59:f4:a8:ca:bb:db:67:
90:d3:36:7b:d7:3a:4a:87:f5:b5:d2:19:8d:0d:30:2a:16:42:
00:03:f8:c8:3a:2f:b3:02:e6:eb:e8:0c:8d:3e:a7:fe:ed:0a:
5a:ec:23:44:63:38:49:16:04:03:db:13:65:9f:61:82:51:f5:
47:cd:ae:b3:5b:a6:a3:7b:f7:04:b6:d0:76:48:da:fa:74:d6:
0a:20:e8:98:11:c1:33:08:d5:f7:58:92:b8:ec:a5:59:4c:88:
2b:0e:93:a7:c4:3e:77:b6:5c:d9:78:14:ef:31:37:b2:c1:fc:
78:75:49:a2:ac:2c:b4:b3:cb:85:f0:a2:e9:6b:02:be:ae:ac:
f9:93:e9:cc:2e:85:43:4c:8c:29:ca:7f:1d:cb:cd:1e:d3:d1:
9a:cc:96:32
-485343007 | 2025-01-06T07:15:19.133513
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 8.1/Windows Server 2012 R2
OS Build: 6.3.9600
Target Name: WIN-88U3UVF7UBU
NetBIOS Domain Name: WIN-88U3UVF7UBU
NetBIOS Computer Name: WIN-88U3UVF7UBU
DNS Domain Name: WIN-88U3UVF7UBU
FQDN: WIN-88U3UVF7UBU
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:dc:07:ad:4c:e5:81:af:45:60:39:2c:fc:49:e1:96
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=WIN-88U3UVF7UBU
Validity
Not Before: Dec 15 23:58:11 2024 GMT
Not After : Jun 16 23:58:11 2025 GMT
Subject: CN=WIN-88U3UVF7UBU
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:bc:fb:00:9c:0d:76:b7:c0:11:61:7a:11:b4:dc:
ec:b0:c4:23:95:37:1b:71:cf:41:d0:37:27:63:0d:
10:0c:63:89:4c:1b:8a:61:d1:d7:7a:ef:b3:0a:9e:
6a:d6:01:44:0d:fe:1b:88:53:19:ac:7a:ed:ba:85:
16:0b:4c:a9:e0:38:5a:26:b2:57:15:dc:38:12:5f:
ba:5f:99:55:9c:d3:a1:47:d5:c0:2a:66:30:83:84:
94:b1:a4:d8:28:5b:63:cf:3d:f3:b4:14:8c:0a:2c:
c4:62:32:3a:29:ca:13:ce:e8:1f:ef:68:b6:cd:17:
bd:d8:7d:50:4d:07:e5:19:70:4d:c8:d7:98:99:05:
84:6f:be:83:0e:b7:c9:14:01:4e:e1:49:09:57:50:
62:3a:c6:42:c6:c1:9f:78:a1:f9:5e:4b:b2:05:19:
c7:03:78:af:16:40:f2:cb:d7:06:56:38:3a:ae:19:
68:38:c1:3a:3a:76:72:2d:d9:83:45:da:22:af:96:
46:d5:4a:f7:17:45:6b:9d:c7:aa:23:3b:e2:d1:22:
f3:1f:82:c0:fa:a5:70:04:28:4e:96:fa:40:6e:35:
e9:bf:48:1f:7e:a1:3f:32:e1:e1:42:b4:a9:0f:e2:
82:bd:64:71:55:f2:e7:75:af:42:69:76:c7:6a:b4:
bc:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
25:aa:c9:08:e4:4f:26:ee:0e:73:dc:a4:c0:ea:3e:0a:d8:da:
c7:0c:58:68:e5:d2:04:64:b9:10:2f:2a:b2:dc:1c:6d:99:10:
2b:5c:0c:d8:5a:8b:7c:f9:e5:6a:76:f7:f4:20:0f:05:50:d0:
d7:e8:0a:cb:e8:43:18:40:0f:d0:52:22:68:44:6a:83:26:1f:
c0:7f:36:d4:22:3b:0e:1d:1d:d6:9d:7c:99:98:a4:22:ff:9c:
a5:50:45:ef:ce:86:63:36:1d:cf:00:ab:3d:0b:7d:d4:b9:40:
3e:b3:c2:8a:b2:de:94:69:3f:49:17:fe:8e:de:e8:c4:64:b0:
d7:a7:f1:34:cc:59:c6:ed:2f:a5:f2:5f:49:85:8e:d8:85:d1:
55:c4:4e:d1:27:ba:be:0c:54:67:bf:8c:24:67:91:61:fd:a1:
f6:a6:19:c8:a8:55:04:40:a2:69:ed:57:74:60:89:4c:61:b5:
95:99:3a:cd:2d:21:a6:ee:90:17:7b:59:59:26:69:ad:51:b2:
98:5b:d1:3b:78:c9:b3:39:2c:df:86:aa:cc:3c:c1:9a:c0:5b:
80:a3:87:b8:46:42:96:2d:d2:74:6c:2c:0a:1d:ca:7c:68:36:
06:40:d4:b5:d6:80:12:f8:9a:54:02:e3:b1:90:47:be:ab:b3:
ff:7f:a0:e5
-1231760813 | 2025-01-08T11:37:00.448241
4040 /
tcp
HTTP/1.1 301 Moved permanently
Connection: Close
Content-Length: 312
Content-Type: text/html
Date: Wed, 8 Jan 2025 11:36:48 GMT
Location: https://37.29.98.181:4040/
Server: Kerio Connect 8.2.2
X-UA-Compatible: IE=edge
1377441528 | 2024-12-15T03:37:25.245099
8800 /
tcp
<empty title>
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Connection: Close
Content-Length: 4782
Content-Type: text/html; charset=utf-8
Date: Sun, 15 Dec 2024 03:37:14 GMT
Expires: Wed, 4 Jun 1980 06:02:09 GMT
Pragma: no-cache
Server: Kerio Connect 8.2.2
X-UA-Compatible: IE=edge