340183007 | 2024-04-27T04:13:25.471616
80 /
tcp
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://www.curezone.org/
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 27 Apr 2024 04:13:23 GMT
Content-Length: 148
-471102630 | 2024-05-02T00:06:58.063697
110 /
tcp
+OK Welcome to MailEnable POP3 Server
+OK Capability list follows
TOP
USER
UIDL
.
-1436364939 | 2024-05-06T01:28:17.923392
143 /
tcp
* OK IMAP4rev1 server ready at 05/06/24 01:28:17
* CAPABILITY IMAP4rev1 IMAP4 AUTH=LOGIN AUTH=CRAM-MD5 IDLE CHILDREN
A001 OK CAPABILITY completed
A002 BAD UNKNOWN Command
A003 BAD UNKNOWN Command
* BYE IMAP4rev1 server terminating connection
A004 OK LOGOUT Initiated
-436632471 | 2024-04-29T17:35:37.082749
443 /
tcp
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html
Server: Microsoft-IIS/7.5
Set-Cookie: x=u=2024%2E4%2E29%2E975143196&SFile=s2%2Easp&FFile=f3%2Easp&c=0; expires=Wed, 07-Jun-2028 00:00:00 GMT; path=/
Set-Cookie: ASPSESSIONIDCUCBCTDD=MBBIPBKDDFCBFOEBGFFLKNPA; secure; path=/
X-Powered-By: ASP.NET
Date: Mon, 29 Apr 2024 17:35:30 GMT
Connection: close
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
ee:82:c5:fe:de:19:ea:16:e8:61:98:69:6c:33:9d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Feb 4 00:00:00 2023 GMT
Not After : Mar 6 23:59:59 2024 GMT
Subject: CN=www.curezone.org
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ce:c8:26:0d:f3:83:7f:2c:0c:e1:4c:8a:5d:2c:
6b:9a:4e:e3:e6:6f:96:b6:cf:4b:74:e9:c1:f5:e6:
2a:48:12:a1:0c:6a:17:24:17:71:0a:24:df:eb:be:
4e:c1:d9:9b:b3:64:23:49:cc:f4:34:a6:04:43:3d:
e1:46:4f:14:92:e5:f0:b3:e2:15:d0:5b:0d:00:fb:
41:d5:4c:af:78:22:c5:c1:be:c1:8c:3c:83:c1:09:
13:34:94:16:b8:14:92:14:29:99:47:6e:8e:41:68:
70:aa:ad:37:ef:20:68:29:20:5b:30:0a:17:43:8a:
9e:c2:3f:a5:4a:1f:20:fe:52:ad:2f:13:65:f3:81:
0c:2d:77:14:c9:02:af:10:b0:72:d5:23:14:04:6c:
35:13:79:c0:0a:90:1b:dc:1d:73:8d:b8:fb:68:96:
94:ac:d1:90:b4:d4:97:24:cb:d2:6c:d8:96:38:b8:
5a:23:d1:ee:12:82:82:69:66:30:7e:4b:f7:23:21:
a6:b6:68:68:72:af:2f:75:00:a4:1f:73:58:61:2f:
dd:3f:e6:d1:4c:d2:2d:c2:b5:06:f6:45:e9:1e:68:
91:b6:70:8f:90:bc:ac:a0:41:8a:c4:13:f9:f2:f4:
05:79:ca:0c:66:a2:c5:18:8b:f9:52:70:d1:87:cc:
70:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
07:62:87:DC:3A:D1:D2:C6:BB:C6:55:B3:83:09:7D:02:A3:FE:56:F9
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
X509v3 Subject Alternative Name:
DNS:www.curezone.org, DNS:curezone.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Feb 4 12:19:01.816 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:8F:C3:C8:59:D1:F3:9B:D0:18:F2:B2:
D1:B8:CD:38:A9:0F:C9:95:12:93:00:AE:6C:DC:A2:05:
AC:95:BA:F9:30:02:20:23:E6:2B:48:D0:54:D7:49:D4:
DB:55:20:E7:0F:04:EE:8D:4D:32:20:A9:AA:19:AE:EF:
9D:5F:0F:F5:2B:2D:86
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Feb 4 12:19:01.776 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:0E:14:5F:1D:9C:F3:BE:62:D7:2F:17:42:
32:BC:3E:E7:36:C4:21:BF:85:43:10:55:64:43:A5:55:
E3:38:70:61:02:21:00:D3:C1:52:D8:64:15:0A:5F:D8:
FB:0B:BB:B0:C3:DB:7E:B6:E3:05:1A:DA:EB:05:50:DF:
B1:D5:0D:64:E4:2C:71
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Feb 4 12:19:01.733 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:BA:DB:45:26:B7:43:59:E9:CF:AB:0C:
AE:96:E3:57:63:C7:29:21:22:3C:68:2D:30:A9:B8:F1:
C2:EA:9B:83:69:02:20:27:A0:56:0D:16:42:FB:1F:0E:
3C:D4:99:B0:A1:15:F2:D8:87:9A:5E:17:4A:47:F6:77:
3C:B9:A6:43:F9:E9:63
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
b4:fb:fd:95:c0:4f:87:98:04:9f:6c:40:e5:36:2b:3a:32:7a:
3e:b2:49:ac:00:48:47:04:56:e5:35:2a:5b:37:51:8f:70:c4:
1b:a6:8c:eb:01:01:26:bc:87:08:ef:34:56:77:d3:96:1d:a3:
1d:6e:37:0c:e5:fe:e5:fb:f2:a6:3f:f1:5e:54:db:9b:62:04:
02:91:bf:e2:bd:c2:d2:86:3e:fa:14:33:bc:b7:4d:fd:43:32:
12:70:f5:75:6d:f3:73:9a:91:c6:26:e5:37:4f:e0:19:86:27:
21:2b:3c:ae:84:d8:b5:f5:63:af:ad:94:44:b3:68:78:e1:0f:
04:f3:f2:9e:bc:87:f4:e9:44:6a:d0:5c:b1:15:4e:c1:5a:bc:
f7:ec:2e:85:4e:54:ca:12:f4:f2:c2:d8:6a:52:3c:60:72:32:
b6:da:9d:d4:d3:6f:ca:f7:8b:52:b1:c8:45:c6:94:ea:d0:13:
63:7d:8f:73:d3:82:d4:0a:1d:d1:b4:8c:be:59:26:2e:59:14:
3a:d4:24:21:22:f8:27:e2:fc:72:8f:75:20:28:2b:07:70:e6:
c3:76:fc:01:b6:30:84:1c:14:38:02:8d:de:0d:16:82:ff:e1:
78:e4:b5:c3:53:af:a4:5d:e5:08:96:51:38:be:ce:06:87:79:
43:74:9e:fc
-1616910369 | 2024-04-21T15:38:11.561909
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\t\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 7/Windows Server 2008 R2
OS Build: 6.1.7601
Target Name: CZ
NetBIOS Domain Name: CZ
NetBIOS Computer Name: CZ
DNS Domain Name: CZ
FQDN: CZ
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:d0:22:0b:51:56:9c:b1:46:39:ae:64:f0:20:fc:12
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=CZ
Validity
Not Before: Apr 7 20:28:01 2024 GMT
Not After : Oct 7 20:28:01 2024 GMT
Subject: CN=CZ
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b5:f1:2b:f5:36:d8:8f:b2:03:58:ec:e5:2d:2d:
a1:2e:78:04:5f:8e:bc:95:f7:b5:f5:aa:3a:f3:e9:
9a:7d:bc:e9:5a:d5:50:20:3d:e5:11:1b:b2:5a:89:
ba:99:3e:69:cf:a0:eb:fa:a0:2a:ad:47:15:4e:ad:
42:56:1d:7d:19:7c:c4:a6:de:d8:9c:e9:76:18:05:
14:ef:23:99:84:c8:5c:72:68:7b:f6:36:83:5f:c3:
13:06:ea:d5:c3:1f:8b:8f:e6:78:cf:97:a2:0a:e9:
ae:1f:e5:c8:cb:5b:cd:bd:b7:6c:78:c3:84:8f:60:
0c:48:81:e7:72:07:73:b8:09:34:ab:0b:12:26:14:
61:ad:e5:8d:b3:9a:10:2c:01:73:ed:77:7c:ab:35:
b1:b5:15:e6:1c:0d:d4:2d:8a:91:9e:3c:3b:48:a7:
86:56:63:43:fb:8a:2a:17:c5:37:2e:1f:20:37:c8:
ee:f1:df:f3:12:86:79:da:60:1c:b5:b2:99:8b:95:
b3:ef:e6:95:4c:19:e4:ae:17:73:24:62:14:09:3c:
f6:61:db:4a:34:d1:1e:1f:80:df:ad:b8:47:a2:37:
cf:06:c0:24:c8:58:c5:83:8f:62:55:7d:85:42:35:
e2:1f:8b:7b:c5:01:ff:83:c2:ea:88:d5:5c:ff:f4:
b7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
86:19:df:c9:1e:2f:b5:3a:60:32:8c:cf:bb:0c:30:6c:81:91:
3d:ec:02:f4:e0:6e:bc:c7:1a:a0:d5:f4:2c:3a:8b:1c:4e:38:
7a:1a:ea:d9:fe:24:e7:6f:7f:7d:bb:42:f8:41:ab:f4:4b:82:
7b:e9:c2:dc:3c:19:20:d9:cc:36:d6:4c:f6:9d:6c:50:a4:b2:
8e:8e:06:c0:2f:e2:6e:d2:5b:34:9f:3e:3c:b6:2b:fe:c6:7f:
74:c6:4b:67:6c:41:06:58:60:56:2d:77:20:eb:40:80:46:fa:
16:4c:94:3b:ea:02:10:37:03:6d:e5:a2:53:3e:d9:39:ec:60:
8a:57:e3:5b:54:b0:5f:05:ba:0f:cf:80:b4:f5:a8:66:e3:67:
d5:08:32:aa:32:de:6f:cb:7c:a8:68:32:85:0c:79:0c:28:3a:
3c:83:7e:26:6e:7e:84:56:23:4c:d7:1d:4a:1f:67:99:05:96:
77:20:c9:58:96:c6:da:7d:f0:51:dc:b8:db:9e:78:0f:41:ac:
45:37:62:08:45:87:f1:71:f2:18:09:5a:79:3f:2d:d7:c4:9e:
1f:92:36:25:37:be:14:9e:bf:77:5e:82:9a:5a:30:32:55:a2:
fa:84:e9:19:52:7d:0c:d5:fe:b6:ff:89:09:41:36:ed:35:33:
6c:8a:c6:53