-1140425462 | 2024-04-24T06:59:21.699239
80 /
tcp
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://108.59.8.242/
Server: theknowledgebase.org
X-Powered-By: ASP.NET
X-FRAME-OPTIONS: DENY
Content-Security-Policy: frame-ancestors 'self'
Date: Wed, 24 Apr 2024 06:59:21 GMT
Content-Length: 144
41000612 | 2024-04-24T06:59:15.609066
443 /
tcp
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: http://protrain.theknowledgebase.org/
Server: theknowledgebase.org
Set-Cookie: theknowledgebase-id=cnsufskhpkyzkxmcaf0bm3ot; path=/; secure; HttpOnly; SameSite=Lax
X-Powered-By: ASP.NET
X-FRAME-OPTIONS: DENY
Content-Security-Policy: frame-ancestors 'self'
Date: Wed, 24 Apr 2024 06:59:15 GMT
Content-Length: 154
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
9f:f5:28:2c:89:eb:2a:eb:2b:21:d3:81:36:99:e2:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Nov 27 00:00:00 2023 GMT
Not After : Nov 27 23:59:59 2024 GMT
Subject: CN=*.theknowledgebase.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a1:ac:00:b8:5f:1f:04:79:06:1a:7d:7e:61:49:
37:ad:8d:36:ab:47:5c:96:45:33:a1:67:09:e9:73:
8d:51:bc:bc:da:0f:fe:ec:45:dc:76:0c:f9:dd:2f:
8e:c9:fc:06:b4:8b:8f:0f:96:fe:b7:b8:68:43:1f:
38:14:6c:48:55:85:fc:02:bf:77:1d:05:02:d2:63:
20:51:73:46:b8:3a:ba:65:62:52:f8:68:22:a2:e5:
0d:90:ea:82:26:28:7a:49:be:3f:23:15:77:dd:b6:
f5:28:70:33:3b:37:0c:99:c5:4d:54:87:ca:37:da:
f5:4d:18:76:88:a4:7d:93:ee:53:aa:60:b9:ed:c7:
78:fe:4b:d0:3f:08:bb:08:3d:d1:c1:2e:b6:94:f8:
27:ac:84:f4:d9:48:e6:a2:0b:ae:01:11:40:1c:2f:
f7:9c:e0:a7:da:9f:7d:b8:e2:e4:0b:55:ad:3d:71:
6e:4c:94:d6:a1:7d:be:88:0a:73:43:d8:a5:13:66:
fe:26:06:f7:b0:21:8b:f7:af:9e:98:e6:63:7a:c3:
75:d1:01:5a:00:db:a7:70:af:71:2e:43:6a:3c:fa:
8b:00:b4:b6:40:5b:7a:e3:94:d4:f6:92:3d:74:0e:
e5:2b:ea:90:c6:1c:e7:cf:7e:f6:6d:0c:92:72:f7:
06:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
BD:F0:97:14:48:00:0D:00:59:02:F4:EA:F9:9C:BF:6B:D7:A5:9C:A0
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
X509v3 Subject Alternative Name:
DNS:*.theknowledgebase.org, DNS:theknowledgebase.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Nov 27 15:03:05.568 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:FB:C5:88:DF:82:D8:5C:6A:37:95:2D:
59:43:D8:26:C7:6B:ED:71:F8:A8:03:3E:39:7F:89:1F:
BF:EA:D2:6B:1B:02:21:00:DC:2E:BF:69:9E:5A:76:47:
EF:5E:EA:49:73:EA:8D:F5:67:CE:01:5C:38:79:EF:67:
D9:78:F1:82:A6:C6:FB:20
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Nov 27 15:03:05.773 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:37:91:C6:23:31:EF:9B:6A:62:05:35:52:
24:03:2F:F7:BA:E0:C4:71:84:1C:FC:B5:B6:A4:CE:8E:
73:CA:CB:15:02:21:00:C7:D8:F3:9F:A4:64:11:B5:79:
A9:45:C8:12:41:B8:11:3A:BF:3A:1A:BE:4A:7C:52:80:
7C:2B:58:BD:88:B7:9C
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Nov 27 15:03:05.614 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:3D:9F:FD:4D:83:5C:77:4D:DF:D6:2E:ED:
90:3B:40:91:C8:1D:9A:C3:99:E2:5A:6E:19:28:99:CE:
C0:6E:50:E4:02:20:73:3F:36:EE:2F:D9:76:94:78:56:
D0:C0:6C:3A:E6:21:C2:DC:6C:F5:BC:23:04:9F:01:E6:
74:68:7B:0D:E1:46
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
cf:31:45:99:2e:a7:6f:4d:99:6a:1c:3a:2c:ec:b7:13:2d:44:
84:c7:57:f3:ee:dc:4a:6d:d8:30:f9:e2:8a:49:98:26:3b:5d:
9c:52:65:69:32:36:8a:74:02:93:82:9d:a1:aa:a8:c6:6f:13:
1c:97:06:16:9e:c0:4d:ec:5f:2e:98:09:fd:4e:33:4d:c5:98:
76:d6:00:2b:2f:09:fc:ea:d9:10:b4:6c:e3:84:18:1f:56:52:
24:d5:b9:a1:59:5b:8b:de:1c:7a:fd:65:de:04:53:56:52:2a:
63:98:dd:8a:eb:ad:ea:bf:63:99:3c:9f:eb:8c:63:b3:0d:94:
92:27:da:b5:d1:5a:f6:55:cf:df:fa:89:77:9c:55:f1:81:9e:
6c:81:ab:9c:b3:37:ee:78:89:71:9c:64:f8:4a:f0:a3:58:75:
a2:1b:42:0b:84:8b:ca:82:8e:bb:57:d9:6c:7d:7d:4f:fc:73:
a4:b1:99:c4:0d:77:dd:c5:d6:78:03:20:e7:f9:f8:7f:bd:2d:
b3:3e:5d:89:6c:66:58:89:ac:36:af:13:c5:1b:38:82:84:26:
04:d3:5e:fa:f0:a8:f9:1d:f0:0f:9a:7b:82:50:33:a6:38:d2:
c2:3a:56:45:6e:5c:e2:db:a8:8d:43:ff:ec:fa:a4:f1:c2:a0:
29:11:c9:76
-1195471163 | 2024-04-23T07:27:32.409556
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: S95186
NetBIOS Domain Name: S95186
NetBIOS Computer Name: S95186
DNS Domain Name: s95186
FQDN: s95186
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:33:03:dc:93:2e:15:8b:42:a6:17:6f:d1:22:12:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=s95186
Validity
Not Before: Feb 3 04:54:28 2024 GMT
Not After : Aug 4 04:54:28 2024 GMT
Subject: CN=s95186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:9c:b4:b2:7f:00:9a:ae:c4:a2:64:a6:57:d4:f1:
91:45:a4:ca:32:6f:74:93:6e:66:6a:1e:f6:35:50:
c2:69:12:5a:64:f0:78:03:ce:59:e9:5b:25:36:55:
e0:0e:e6:3e:87:20:60:76:1d:99:f5:8f:4a:cd:ec:
e9:75:f0:ff:2f:33:0a:17:8a:61:cb:88:e8:0c:29:
01:db:f8:37:e9:05:e0:4d:31:e8:e4:6a:07:f3:03:
f7:dc:aa:fb:d0:0f:55:21:61:36:9f:20:01:98:9d:
08:ca:2f:35:94:92:1b:1f:02:b4:6b:3d:74:cf:78:
c7:62:fa:a7:eb:e8:0c:e8:00:d7:0c:65:ff:ad:b0:
02:79:bf:30:49:11:67:a6:02:40:49:40:67:a1:7b:
c2:d4:80:27:31:cf:cf:be:26:63:f5:bc:ef:11:b4:
ab:7d:12:06:16:92:63:11:63:16:80:99:ab:f4:bf:
79:ea:f1:98:ce:1f:58:d0:29:81:df:09:27:a1:bb:
3f:7b:97:1f:90:1f:8b:3b:f3:7d:0d:51:7e:75:82:
97:cf:24:6d:2a:84:ad:16:f9:9d:0f:9f:a1:c2:7d:
e6:fa:b8:57:a3:51:e2:39:fd:93:0e:43:41:03:bd:
4d:31:c6:82:18:9d:44:eb:9f:e7:45:05:86:bb:8b:
bc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
3b:65:95:fa:85:08:5f:f7:6d:00:88:ea:49:33:6c:55:82:79:
0c:da:bb:45:ba:e1:c5:58:6c:d0:cd:c4:db:33:89:16:69:5c:
55:18:0f:4f:f9:41:47:12:27:5a:74:13:f6:14:6d:a1:ca:7c:
33:67:04:22:56:7a:a3:a6:e6:df:98:18:5c:b6:23:ad:c2:86:
68:1a:c4:2b:0c:15:bf:87:00:6e:89:fa:73:1f:47:26:49:1f:
16:65:52:5c:b3:1c:25:f2:74:1c:c7:81:59:26:e0:f9:a0:e5:
86:f1:83:1b:44:0f:e2:96:41:d1:35:fc:29:03:df:27:52:47:
17:3d:fa:56:d0:96:a7:62:39:7f:f9:4b:0a:cc:f4:b7:0b:f7:
75:dd:25:ce:24:54:b4:ff:c6:22:4a:78:63:92:75:b7:51:48:
55:58:2b:07:95:69:24:38:5a:9f:17:48:8f:aa:98:f2:a6:fd:
38:15:99:e9:63:81:8a:49:b7:71:9b:5c:96:81:53:51:15:b1:
44:70:e7:44:d0:c8:27:8f:5d:c5:fe:77:60:0d:43:ac:c5:53:
6f:b7:10:27:ba:e7:e9:87:56:43:95:84:11:bd:09:64:b9:99:
1e:c7:d9:ba:60:5d:d6:da:9e:96:fc:52:77:8e:ae:b1:d9:9c:
bf:6f:5c:38
