GeneralInformation

Hostnames	198-12-66-102-host.colocrossing.com 198012066098.sec18org.com
Domains	colocrossing.com sec18org.com
Country	United States
City	Buffalo
Organization	HostPapa
ISP	HostPapa
ASN	AS36352
Operating System	Windows Server 2022 (build 10.0.20348)

OpenPorts

22 80 443 3389 8081

-264243459 | 2024-05-14T10:14:22.169608

80 / tcp

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.25.4
Date: Tue, 14 May 2024 10:11:48 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

1766643147 | 2024-05-13T22:35:10.608372

443 / tcp

403 Forbidden

HTTP/1.1 403 Forbidden
Server: nginx/1.25.4
Date: Mon, 13 May 2024 22:32:37 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:15:ca:d0:60:aa:af:c1:08:5f:ea:1f:be:0e:f4:89:7f:9e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 14 07:38:32 2024 GMT
            Not After : Jul 13 07:38:31 2024 GMT
        Subject: CN=198012066098.sec18org.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:49:75:66:c0:6e:83:48:72:fc:68:ff:f8:5b:6a:
                    d5:78:b8:fc:ce:50:08:dc:17:20:d9:c6:e5:e5:88:
                    97:5b:f4:02:31:1d:fa:89:6b:d3:c3:35:cd:9d:79:
                    a0:ae:af:e6:fd:74:b4:7f:fb:54:1f:42:32:c9:d3:
                    2d:49:01:5d:35
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                F9:E9:65:2E:EE:C3:9E:BB:22:DC:B3:09:5C:53:9E:46:08:72:BB:EB
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:198012066098.sec18org.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 14 08:38:32.819 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8B:80:D3:F8:E7:C8:A2:BE:37:E6:78:
                                71:64:F9:FE:B3:36:8D:42:04:F1:B0:E7:8C:58:F7:CE:
                                FC:D4:5F:E3:9E:02:20:47:D8:DD:13:39:4A:2B:6B:E3:
                                22:B2:52:30:68:AE:8C:75:52:BD:86:28:41:DC:06:A0:
                                07:F1:A8:AB:1C:63:66
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 14 08:38:32.840 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:99:8C:09:A5:18:CA:0E:B3:89:E8:E5:
                                50:BD:B3:B8:A4:B1:06:3A:CE:8B:EB:BC:09:D9:81:DC:
                                A5:66:B1:7E:4B:02:21:00:83:02:FA:FC:85:4B:38:30:
                                5C:CE:22:49:B7:37:11:8D:DD:1A:5B:6D:14:D7:EC:A0:
                                AE:46:15:A3:72:92:AA:53
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        57:52:09:1b:5f:1c:61:30:a1:26:54:e0:59:01:c8:9b:11:18:
        7b:61:29:e6:e3:b6:70:d7:94:ad:38:49:dc:3d:08:71:12:78:
        bb:0c:40:0d:be:8f:64:33:75:83:f6:09:61:df:3d:ce:48:04:
        78:c6:81:4d:0c:f5:c7:85:c5:2b:6b:2b:54:9f:cd:9c:1d:75:
        fc:27:d0:f5:2b:46:93:1f:1e:dc:45:b6:5e:5a:09:4a:2a:b6:
        cf:52:e2:85:8d:d8:d1:6b:e2:a2:53:e6:70:8f:39:c2:11:f8:
        55:dc:8c:89:4c:1d:13:76:e5:b1:c8:ba:20:29:77:38:70:c7:
        51:d0:8b:3c:fa:fa:54:4a:45:9b:da:5f:3f:d4:fc:27:b6:61:
        e2:2c:79:2f:f4:b1:f5:5e:21:eb:d3:c0:2d:11:31:f6:74:ab:
        37:38:49:93:4e:4e:20:6e:6e:f6:18:77:87:9b:49:33:99:c1:
        6f:8a:5f:23:5a:3b:19:41:81:4d:2e:b9:f9:8b:0d:ee:d2:20:
        89:87:65:8e:6e:fe:ba:eb:69:8b:b5:5b:18:03:be:a7:f9:b5:
        64:90:89:10:4e:6f:ea:19:af:67:c7:da:d4:00:05:ed:48:70:
        15:31:cf:91:f8:38:d4:2e:b6:51:e9:83:57:fa:69:ea:46:7d:
        b3:90:25:7a

MAC Addresses

19:80:12:06:60:98
    Unknown

1867235104 | 2024-06-04T10:03:09.745442

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows Server 2022
  OS Build: 10.0.20348
  Target Name: WIN-7IOM204AHBC
  NetBIOS Domain Name: WIN-7IOM204AHBC
  NetBIOS Computer Name: WIN-7IOM204AHBC
  DNS Domain Name: WIN-7IOM204AHBC
  FQDN: WIN-7IOM204AHBC

Administrator
ed

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6d:4b:b7:ab:8b:aa:74:a1:44:aa:b5:f2:0e:08:a1:a6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=WIN-7IOM204AHBC
        Validity
            Not Before: May  5 22:02:12 2024 GMT
            Not After : Nov  4 22:02:12 2024 GMT
        Subject: CN=WIN-7IOM204AHBC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ca:c8:a6:ac:58:68:08:ea:de:43:cf:fe:26:4b:
                    7f:22:d9:d2:f7:c0:82:92:d1:9f:3f:d0:40:f2:25:
                    94:82:05:18:c2:20:8b:a9:1b:f9:90:88:31:94:db:
                    60:9f:26:38:cb:8e:01:1f:0e:15:24:aa:58:55:e0:
                    25:33:4b:04:45:12:8e:63:bc:81:a4:05:9b:53:51:
                    50:7f:6b:a4:ce:27:ae:a0:38:15:17:c2:eb:b7:fa:
                    7a:9f:3d:4c:a6:58:0c:ce:bc:44:63:cc:53:fd:97:
                    8c:c6:19:c8:4e:0c:ee:3b:02:0e:4d:8c:3d:c5:e0:
                    18:a0:dc:56:34:03:ba:3e:ad:b7:d7:13:34:f3:8d:
                    eb:df:d4:43:dd:70:66:e6:d9:30:fa:88:e6:5d:8a:
                    45:cf:0d:c6:5e:7e:d5:77:3a:26:23:ff:a9:98:ee:
                    cb:ed:2b:37:d2:ad:28:92:6e:e3:2d:ee:c7:14:0f:
                    ca:ee:ff:38:0e:68:6b:11:22:9a:b7:31:fd:3e:11:
                    fc:99:23:78:4d:68:f8:11:6a:7f:64:48:f4:8b:30:
                    f5:6f:46:73:a2:de:94:69:ea:f6:29:7f:9a:04:55:
                    03:ff:6d:cb:29:da:4c:f1:c5:85:d9:34:e2:ac:d4:
                    16:d6:93:4c:7c:b3:bb:1b:bf:00:8d:1e:3e:4f:b9:
                    49:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        78:af:3c:af:19:ef:18:16:5c:ef:1b:35:3e:5e:12:cb:2f:a7:
        bb:1b:dc:90:90:a3:89:ad:7d:ed:65:5a:d7:c9:66:fc:dd:54:
        7d:35:ca:7b:1f:c2:f7:16:4d:37:bb:1d:f9:ad:ff:2c:0c:36:
        41:a0:89:0d:63:cd:ed:4b:90:97:2b:6b:33:7d:04:37:da:94:
        29:0d:a1:f9:78:5d:62:79:99:6e:b2:ad:54:38:5a:b6:59:1d:
        15:32:9f:41:ad:9e:e0:1f:81:71:34:bd:d4:1a:03:bd:6f:7b:
        53:be:76:58:27:fe:91:60:e5:4e:fa:5b:dd:8b:9f:3c:9b:cc:
        bf:ac:a9:be:e1:f6:07:fa:a5:5b:00:aa:2c:a9:09:ca:db:ba:
        ee:2d:c6:6f:4a:ad:42:a7:27:99:2e:25:aa:6f:50:13:6f:ba:
        6f:08:b8:34:1a:62:37:8d:ea:a6:e9:ed:2c:c8:6f:c7:89:13:
        31:f1:e6:e6:5c:bf:ec:9b:47:8f:9b:ed:2c:80:a2:2b:60:5b:
        ff:b9:92:4b:cd:1f:6b:5b:a2:7b:2b:7a:32:87:74:16:f2:3b:
        7f:e2:d0:9d:26:64:1b:3f:57:2e:27:33:3c:53:0b:3a:23:65:
        a1:04:ae:18:cf:fe:3e:ed:91:f7:ea:23:19:be:a7:19:12:88:
        d9:7a:73:79

-162525716 | 2024-05-11T15:20:13.061556

8081 / tcp

HTTP/1.1 404 Not Found
X-Powered-By:  3.2.1
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type, Content-Length, Authorization, Accept, X-Requested-With , yourHeaderFeild
Access-Control-Allow-Methods: PUT,POST,GET,DELETE,OPTIONS
Content-Type: text/html; charset=utf-8
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff
Content-Length: 139
Vary: Accept-Encoding
Date: Sat, 11 May 2024 15:17:43 GMT
Connection: keep-alive
Keep-Alive: timeout=5

<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Error</title>
</head>
<body>
<pre>Cannot GET /</pre>
</body>
</html>

198.12.66.102

Last Seen: 2024-06-04

Tags:

GeneralInformation

OpenPorts

-264243459 | 2024-05-14T10:14:22.169608
80 / tcp

nginx1.25.4

1766643147 | 2024-05-13T22:35:10.608372
443 / tcp

nginx1.25.4

1867235104 | 2024-06-04T10:03:09.745442
3389 / tcp

Remote Desktop Protocol

-162525716 | 2024-05-11T15:20:13.061556
8081 / tcp

Products

Pricing

Contact Us

198.12.66.102

Last Seen: 2024-06-04

Tags:

GeneralInformation

OpenPorts

-264243459 | 2024-05-14T10:14:22.169608 80 / tcp

nginx1.25.4

1766643147 | 2024-05-13T22:35:10.608372 443 / tcp

nginx1.25.4

1867235104 | 2024-06-04T10:03:09.745442 3389 / tcp

Remote Desktop Protocol

-162525716 | 2024-05-11T15:20:13.061556 8081 / tcp

Products

Pricing

Contact Us

-264243459 | 2024-05-14T10:14:22.169608
80 / tcp

1766643147 | 2024-05-13T22:35:10.608372
443 / tcp

1867235104 | 2024-06-04T10:03:09.745442
3389 / tcp

-162525716 | 2024-05-11T15:20:13.061556
8081 / tcp