-1122664914 | 2024-04-17T01:17:24.156531
80 /
tcp
HTTP/1.1 200 OK
Content-Length: 3
Content-Type: text/plain; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: *
Date: Wed, 17 Apr 2024 01:17:22 GMT
1792850573 | 2024-03-22T14:33:01.569223
1111 /
tcp
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Length: 246
Content-Type: application/xml
Cache-Control: no-cache
Server: FlashCom/5.0.14
RTMP Server
2075023085 | 2024-04-09T00:28:09.109766
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
OS Build: 10.0.14393
Target Name: WIN-ORSQPT0UH56
NetBIOS Domain Name: WIN-ORSQPT0UH56
NetBIOS Computer Name: WIN-ORSQPT0UH56
DNS Domain Name: WIN-ORSQPT0UH56
FQDN: WIN-ORSQPT0UH56
AAMUHMCTpaTop
SES
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:07:75:12:9e:51:75:8c:42:d4:ce:bb:af:10:0a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-ORSQPT0UH56
Validity
Not Before: Feb 4 10:13:46 2024 GMT
Not After : Aug 5 10:13:46 2024 GMT
Subject: CN=WIN-ORSQPT0UH56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c2:a3:23:ba:71:a7:8f:ca:4f:d8:63:11:a3:83:
82:18:b2:b7:c3:b8:97:e7:ce:e6:d9:cb:e8:a6:40:
4b:f2:5d:f1:a5:c0:3c:26:10:86:ba:cf:47:77:6e:
af:d8:38:23:16:b0:3c:26:f5:64:aa:bf:0d:1e:b2:
07:74:a6:26:be:be:fd:f8:e5:51:56:58:18:39:cb:
d2:f5:ea:fc:42:e0:c9:23:ca:f6:87:4e:ce:21:53:
6a:9f:7a:b3:61:27:9c:01:02:e2:c2:f4:16:4e:2f:
f7:3a:de:44:bd:67:ba:c1:86:56:82:35:86:33:47:
cd:2b:0e:cb:5c:cf:eb:ba:75:d4:12:06:96:bb:07:
88:af:8b:38:f9:0a:7b:be:c5:90:73:14:51:13:10:
8e:6a:df:23:d2:2c:0b:a2:e1:9a:c6:4b:75:d2:75:
a2:92:0c:a0:a7:fa:82:dd:37:34:03:ea:32:8d:b2:
87:43:da:ad:43:91:f5:e4:8b:16:6d:e0:dc:1c:1d:
ca:3e:e2:b9:22:5a:f4:a2:27:3f:a5:df:35:17:dd:
cb:64:1f:52:c9:10:ef:95:ca:0c:87:c4:ad:b2:9b:
da:9c:6e:da:42:ff:06:bc:6b:c1:c1:2e:e5:6e:ed:
5a:49:04:db:80:41:af:6a:73:6b:27:d8:18:99:88:
d8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
62:32:99:7b:2f:96:2a:ab:c0:3d:9b:61:d5:2b:b0:68:35:41:
70:c2:35:f4:c9:56:d0:95:7d:c7:cc:88:7f:0f:23:29:da:c9:
de:a1:93:14:41:6f:d2:9c:f4:d9:c2:4b:bb:19:c8:27:7b:0f:
b0:0f:3d:7f:d4:51:67:e4:75:29:bf:d6:ff:b1:66:45:c3:d0:
57:c4:e1:c3:e2:a9:ac:25:58:f0:c5:59:5c:c5:1a:7f:0e:59:
50:f1:19:93:c6:ed:a3:6b:0a:c2:4d:34:f0:cd:c5:d3:d4:72:
53:88:f3:06:3c:96:a3:4c:17:38:1c:d1:f5:0b:c4:d3:9a:55:
06:9a:45:d2:94:08:47:b2:cf:f8:d2:8e:a1:ef:6c:4a:71:41:
ef:5a:54:6b:76:7a:26:9a:d2:d1:5e:3c:1c:59:18:0f:55:e9:
43:dc:df:51:50:13:07:34:1c:29:5f:17:59:04:8f:01:ae:12:
d0:09:71:99:76:12:41:cf:ca:b7:ea:e9:85:67:1e:e5:fa:6c:
8d:3e:28:7e:3e:7f:f1:5b:ba:a4:9e:01:fe:86:1e:61:3e:2f:
46:ce:62:89:b4:bb:60:dc:2b:91:30:da:da:78:62:a7:04:e2:
96:08:21:c0:43:15:a3:40:22:d6:0d:56:76:42:48:e7:5a:f5:
ce:53:81:ee
660592555 | 2024-04-10T01:19:06.261049
4433 /
tcp
HTTP/1.1 200 OK
Content-Length: 2
Content-Type: text/plain; charset=utf-8
Server: Microsoft-HTTPAPI/2.0
Access-Control-Allow-Origin: *
Date: Wed, 10 Apr 2024 01:19:05 GMT
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:ec:5d:c1:a2:6a:84:37:9e:2b:0a:c3:41:42:fa:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Jul 4 00:00:00 2023 GMT
Not After : Aug 3 23:59:59 2024 GMT
Subject: CN=*.tvbetstream.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:96:73:c3:86:a7:32:da:3e:25:b0:c8:56:28:8e:
ad:80:9f:96:6e:7a:8d:66:b0:a6:f1:f0:47:a2:47:
95:3f:f9:b4:1a:bc:6f:1d:a4:5c:08:47:91:53:12:
c9:2b:32:03:f7:86:c8:8b:ef:9c:75:57:13:fe:d4:
f4:ce:1b:ac:ce:6d:16:b8:3f:9f:ef:26:2c:46:2d:
86:b3:a5:41:8a:c5:e7:44:61:fe:07:81:02:09:e2:
4c:55:cf:65:bd:b5:13:d6:1b:99:69:b1:bb:0c:27:
29:4b:ed:98:93:f7:14:9d:06:f8:f6:5f:0c:3a:e5:
ba:9c:e9:ed:65:0e:e5:ea:13:b7:9e:49:a8:0c:84:
c4:de:de:91:56:4c:0f:1f:79:94:95:0f:01:a7:53:
e1:c2:7b:ec:af:56:b9:ad:5c:9f:91:23:9a:12:5d:
2c:e6:3b:74:02:2e:cb:c5:ff:4a:0e:0a:3c:21:2c:
68:41:28:55:4b:c0:11:6b:4f:46:5b:70:ae:bc:58:
63:b5:ee:99:7d:3e:7c:58:4d:be:f3:3a:0e:ad:52:
6f:87:9e:c5:bc:d6:d9:79:8e:22:fd:f4:c1:8f:9c:
b0:e5:3d:6d:41:14:2f:6c:10:a6:40:14:b8:43:59:
41:31:d9:0f:94:4d:7d:2b:b7:ab:30:10:3d:d8:ed:
2c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
10:50:F7:B2:54:CE:C0:E0:EA:29:F7:A7:C5:68:97:3D:27:2F:3C:8F
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
X509v3 Subject Alternative Name:
DNS:*.tvbetstream.com, DNS:tvbetstream.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Jul 4 08:16:07.309 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:88:76:72:68:41:4D:F9:A7:D0:CD:83:
6E:6C:DF:E9:F4:55:1E:90:94:C1:00:2E:0C:62:E7:56:
9A:D0:34:C2:4F:02:21:00:E7:C1:A2:D2:00:68:1A:1A:
4A:50:8F:74:5D:5A:9E:02:F9:00:29:C4:9A:13:AA:14:
0D:B7:8E:D6:36:1F:22:EF
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Jul 4 08:16:07.408 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:79:25:02:EA:7B:19:72:38:03:CA:E5:61:
CC:D2:29:89:14:DF:29:FF:6A:3E:22:2A:DC:E8:EE:62:
73:F5:26:EA:02:21:00:C4:7C:F1:99:BF:A7:32:01:BD:
A3:46:5D:9E:A2:84:93:50:E0:57:4E:90:07:E4:0E:17:
E6:11:3B:A2:F9:6E:DE
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Jul 4 08:16:07.354 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:DA:03:18:FC:E0:B5:AA:B6:79:41:DE:
52:00:34:B5:62:A3:85:74:BC:B7:14:BC:58:13:EC:74:
92:DA:43:E4:52:02:21:00:E7:2C:9D:F4:D7:57:BD:22:
F2:AC:8B:F3:B9:6E:32:7F:FA:48:E7:0A:32:24:F3:82:
06:94:34:05:67:03:AA:0E
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
a2:ca:da:aa:f2:a4:aa:bc:37:2a:2f:e4:a3:0e:e3:95:1e:27:
d2:b4:75:d3:2b:d1:a4:ad:29:f5:1b:dd:d2:81:ea:aa:cb:3c:
be:35:79:8c:f6:4e:dd:58:06:c9:c6:c3:19:1b:80:9b:36:cb:
db:33:f5:b6:8f:46:7b:07:2a:44:5b:cc:e3:3f:58:d4:33:72:
86:9b:4e:64:3e:51:64:57:dc:54:d0:80:8c:5d:10:dd:94:5c:
72:da:2a:a9:ab:3e:bd:c9:42:e6:7a:3b:e6:c1:97:2d:8e:a5:
e5:14:22:10:f8:81:a7:c8:e6:ff:cb:8d:4e:82:8f:89:0d:25:
d5:ee:28:1d:c8:8b:5c:2a:cc:d6:7d:29:03:7c:77:1e:98:bf:
d6:f6:41:5a:e2:ea:2c:77:a2:35:35:0f:0e:da:ac:cb:41:dc:
9b:10:c4:18:17:70:0c:e2:d3:81:5a:c7:af:5a:1d:ad:7b:fc:
fa:e1:7e:d2:28:a1:64:46:0a:8b:94:21:12:54:c8:97:9d:c7:
62:df:5e:06:94:49:50:56:f5:81:b2:54:76:4b:01:10:7a:f7:
f3:05:04:5e:26:80:ab:6f:b9:fa:3e:03:70:a8:1c:72:ad:da:
9d:4c:7e:17:14:61:0e:3b:2f:4d:8d:6e:5c:d1:3b:a1:fb:dc:
c2:67:5c:0e
1672403065 | 2024-04-11T14:53:40.201150
8000 /
tcp
HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="TitaniumProxy"
Connection: close
703707298 | 2024-04-16T08:36:42.685476
8080 /
tcp
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 20 Apr 2018 15:56:50 GMT
Accept-Ranges: bytes
ETag: "f6a9132c0d8d31:0"
Server: Microsoft-IIS/10.0
Date: Tue, 16 Apr 2024 08:36:40 GMT
Content-Length: 703
1672403065 | 2024-04-12T20:00:27.808279
8099 /
tcp
HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="TitaniumProxy"
Connection: close