GeneralInformation

Hostnames	hn.kd.ny.adsl
Domains	adsl.
Country	China
City	Zhengzhou
Organization	China Unicom Henan province network
ISP	CHINA UNICOM China169 Backbone
ASN	AS4837

OpenPorts

3389 3790 5985

1759931554 | 2024-06-16T04:25:19.280176

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN-03GBH5UM9HL
  NetBIOS Domain Name: WIN-03GBH5UM9HL
  NetBIOS Computer Name: WIN-03GBH5UM9HL
  DNS Domain Name: WIN-03GBH5UM9HL
  FQDN: WIN-03GBH5UM9HL

Administrator
Aes
gm Windows Server 2012 R2

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            46:d7:78:1a:67:f2:d2:b4:44:3e:be:13:51:e0:f4:9e
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=WIN-03GBH5UM9HL
        Validity
            Not Before: Apr 22 09:29:00 2024 GMT
            Not After : Oct 22 09:29:00 2024 GMT
        Subject: CN=WIN-03GBH5UM9HL
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:fa:19:70:2f:ca:4b:ab:2b:77:79:fd:91:74:
                    cf:d5:fe:53:f9:29:3e:0b:20:6e:24:09:07:23:5f:
                    89:08:d4:fe:57:f8:be:eb:33:41:50:1b:26:76:b6:
                    35:84:fb:36:df:42:13:55:23:3a:5e:ef:8e:ec:22:
                    66:88:26:1e:fa:7b:a8:45:4c:8f:d3:56:cf:93:8b:
                    d8:c4:00:8d:a0:31:06:06:5c:a7:91:9b:2b:c6:39:
                    ad:13:c6:e6:16:64:74:e1:9a:d3:94:0e:7f:ba:8d:
                    9a:c3:ba:e5:90:db:c9:32:b0:0a:a0:b4:d1:7e:d1:
                    4a:dc:da:b8:3e:5a:2f:22:97:b7:9f:57:b5:0e:b9:
                    2b:31:57:37:72:07:a7:85:a2:28:23:1e:a4:bd:47:
                    0b:0c:9c:f5:7e:b2:ed:c2:00:ca:54:00:6c:c6:19:
                    70:79:b2:d8:55:3a:8c:84:b1:99:de:48:b9:21:ee:
                    cf:a6:86:58:27:80:d4:fc:51:61:2c:4e:05:02:01:
                    f6:b5:c7:40:89:37:ca:8b:14:22:f3:29:99:eb:0d:
                    fd:96:48:8a:45:e8:50:7a:1d:5f:1a:ad:44:bf:d6:
                    e6:01:89:e9:e0:f6:d0:23:33:56:f8:3b:c8:dd:51:
                    09:1b:25:a7:ba:a0:42:d0:31:fd:9f:a1:2b:bf:df:
                    21:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        75:d7:1a:41:0c:9e:72:d4:b2:2b:d5:af:08:a3:0d:36:af:7f:
        e8:a0:1a:e0:c0:bd:aa:b9:94:8e:86:b7:f7:5b:32:f3:fc:f5:
        ed:a3:3c:7e:2d:1b:77:fe:eb:1a:3b:ce:01:c8:74:aa:86:f0:
        59:eb:5e:20:d8:88:9e:25:b5:66:64:a0:21:11:07:a0:8c:93:
        99:87:3d:92:da:ac:3f:2b:1e:7d:ec:78:84:67:83:6c:4f:09:
        0b:1d:5c:53:31:e3:4d:ad:83:f7:de:47:36:5b:79:04:3f:2e:
        a1:2f:b8:5a:d6:82:5e:d3:22:20:da:60:44:e2:19:ef:1f:77:
        6b:c7:95:a7:4e:b9:4a:42:ba:8a:07:74:c5:dc:59:32:5e:0e:
        8a:78:b8:f9:26:56:2b:e2:e6:43:b4:70:a8:7c:fb:1e:cd:ec:
        27:51:01:31:5e:b6:70:9c:f4:94:0f:47:5b:46:77:7a:25:4a:
        3a:33:de:28:ce:de:54:27:6b:03:fe:75:7d:cd:2e:a0:8e:38:
        55:49:7f:18:fd:2f:0e:a8:80:cf:b5:6b:a0:06:b2:94:1f:02:
        bc:2e:e9:8f:e7:b0:b5:a0:96:76:b5:eb:90:96:6b:51:7f:a0:
        9f:7d:e4:57:2b:14:df:f0:7e:dd:8a:56:7c:82:66:bc:2a:be:
        74:be:b8:72

682818712 | 2024-06-16T05:13:01.128589

3790 / tcp

Metasploit is initializing...

HTTP/1.1 502 Bad Gateway
Server: nginx
Date: Sun, 16 Jun 2024 05:13:01 GMT
Content-Type: text/html
Content-Length: 3905
Connection: keep-alive
ETag: "6517029c-f41"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2004726069 (0x777db135)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Austin, O=Rapid7, CN=MetasploitSelfSignedCA
        Validity
            Not Before: Oct 25 00:01:48 2023 GMT
            Not After : Nov 21 00:01:48 2033 GMT
        Subject: C=US, ST=TX, L=Austin, O=Rapid7, CN=localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:f0:36:ed:ee:c8:e2:b9:0b:fb:0f:25:9e:a9:45:
                    45:0c:f0:b3:16:2f:3f:1e:9a:6b:cf:c9:3a:3f:ef:
                    b1:47:8d:00:cc:93:44:49:cc:b0:45:93:a5:f0:f8:
                    e5:bb:70:81:c7:5c:c2:04:04:b5:6b:36:9d:6f:39:
                    01:f5:2e:ec:50:60:ea:b3:50:e9:36:d4:1b:c2:ed:
                    c0:68:12:bb:a0:45:08:cf:39:aa:84:1a:3b:53:a6:
                    6a:f8:12:fd:54:4d:91:f1:4d:33:e9:71:a6:37:6d:
                    5a:29:bf:10:11:50:b9:32:0b:4b:72:7c:e0:3e:d0:
                    bb:29:50:35:c1:a5:73:c5:59:9d:e9:0d:df:32:2d:
                    21:a2:bb:c0:d9:5b:8c:e3:8f:90:32:28:a5:ff:b9:
                    dc:90:54:4c:7e:fe:db:f7:c9:5b:0e:d2:2b:70:6a:
                    06:9e:41:37:b2:64:5b:d0:22:95:ac:9b:da:44:d3:
                    c2:da:b2:d5:56:ef:4a:11:5c:e1:dc:86:db:60:e4:
                    76:05:39:2e:3c:91:c8:14:6a:bb:94:50:ec:64:d7:
                    60:05:64:3d:0a:fe:d1:f1:2d:03:a7:36:96:4d:52:
                    8f:e0:5b:ba:e6:8e:7a:bf:a8:b0:57:d4:b5:42:af:
                    9d:2f:75:aa:d9:d8:77:60:50:3d:08:71:81:43:db:
                    d8:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Key Identifier: 
                2D:2D:9C:40:1F:2C:70:47:B5:31:CC:6B:D7:96:87:5F:BB:30:AF:71
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Digital Signature, Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        54:d0:f2:3a:33:a6:6c:9d:e3:47:4c:9d:53:d1:8e:ea:1b:68:
        d8:df:be:df:34:3f:6a:ca:51:6b:89:57:be:76:b8:92:07:0b:
        90:d5:f3:9c:87:a2:5a:47:cd:62:fe:0b:36:68:4d:c5:37:2f:
        b6:4e:5e:94:95:9c:cf:29:bc:0f:23:e8:ee:6b:98:37:8f:32:
        7f:f3:4a:59:fc:60:07:4c:b0:ed:f4:f4:73:5d:0d:f8:ab:dd:
        c3:31:b2:dd:2d:14:5e:b9:94:87:45:fb:9c:7e:bb:6d:ff:69:
        c5:59:34:9a:69:56:d7:e3:e5:c2:bc:4e:b0:ce:3c:ba:ce:b0:
        7f:8f:cc:f7:99:33:87:79:00:3f:37:49:f3:e7:b1:4c:34:f7:
        7f:8f:47:df:76:68:c2:6f:46:5d:f9:ad:6f:52:63:d9:48:de:
        1c:e2:a8:56:6e:f4:e9:83:2d:df:8c:d1:d9:71:9f:16:ab:53:
        96:7b:a1:b8:60:e8:51:d9:8c:b6:48:61:9a:bf:59:f5:40:5b:
        d5:d5:20:84:b4:1d:d2:c3:2c:03:2d:9f:79:e0:b4:18:93:e3:
        51:ce:12:10:85:46:56:02:5a:c8:68:3f:e0:b7:0b:31:8f:41:
        fb:9d:ac:56:31:9b:8b:1e:ab:6c:b3:6c:ba:0f:be:d2:f0:17:
        92:6f:55:a7:72:07:f3:72:db:2b:10:03:c9:df:a7:59:d2:24:
        42:b8:ae:03:90:26:3a:6c:ca:10:5a:3f:a3:f0:d4:03:76:28:
        c0:3a:a8:65:33:ad:6e:ca:89:b2:1a:cf:79:ea:75:89:81:f7:
        2b:f5:a3:f4:a7:64:04:de:5a:91:d4:f1:bf:e0:23:dc:3e:d6:
        b3:82:4b:d7:50:8d:33:84:a7:60:11:d2:7c:87:0e:a1:f5:ec:
        08:a4:8d:93:9b:f8:1a:f5:d3:64:43:c9:b4:57:69:bf:04:ff:
        b9:29:c1:a3:ee:bb:06:c3:93:99:46:08:ab:59:6b:37:e2:d5:
        e2:80:62:bb:b8:a0:66:96:2b:10:99:60:02:aa:d3:c5:04:60:
        46:11:b8:4a:c4:dc:bb:da:a9:93:70:32:6e:2f:a2:5e:08:e2:
        e1:91:f5:c3:e5:03:b6:26:15:95:e7:4e:ce:5e:68:30:4f:5f:
        04:f8:4a:ed:d3:61:04:68:5a:91:04:93:b9:19:74:42:d6:c9:
        8e:65:fd:cc:01:8f:76:5d:3e:e2:6c:24:5a:33:f4:36:9f:ae:
        53:3b:8c:d8:ed:3f:29:79:00:05:7b:b9:a2:89:54:b0:53:98:
        71:3d:ab:80:c9:64:40:d5:83:f7:b1:e3:17:fb:5b:8d:bd:b9:
        92:5c:30:32:45:03:ac:87

1489525118 | 2024-06-16T02:17:19.497381

5985 / tcp

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 16 Jun 2024 02:17:19 GMT
Connection: close
Content-Length: 315


WinRM NTLM Info:
  OS: Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN-03GBH5UM9HL
  NetBIOS Domain Name: WIN-03GBH5UM9HL
  NetBIOS Computer Name: WIN-03GBH5UM9HL
  DNS Domain Name: WIN-03GBH5UM9HL
  FQDN: WIN-03GBH5UM9HL

218.29.158.91

Last Seen: 2024-06-16

Tags:

GeneralInformation

OpenPorts

1759931554 | 2024-06-16T04:25:19.280176
3389 / tcp

Remote Desktop Protocol

682818712 | 2024-06-16T05:13:01.128589
3790 / tcp

Metasploit

1489525118 | 2024-06-16T02:17:19.497381
5985 / tcp

WinRM

Products

Pricing

Contact Us

218.29.158.91

Last Seen: 2024-06-16

Tags:

GeneralInformation

OpenPorts

1759931554 | 2024-06-16T04:25:19.280176 3389 / tcp

Remote Desktop Protocol

682818712 | 2024-06-16T05:13:01.128589 3790 / tcp

Metasploit

1489525118 | 2024-06-16T02:17:19.497381 5985 / tcp

WinRM

Products

Pricing

Contact Us

1759931554 | 2024-06-16T04:25:19.280176
3389 / tcp

682818712 | 2024-06-16T05:13:01.128589
3790 / tcp

1489525118 | 2024-06-16T02:17:19.497381
5985 / tcp