Hostnames |
ukcraftfairs.com www.ukcraftfairs.com |
Domains | ukcraftfairs.com |
Country | United Kingdom |
City | Gloucester |
Organization | Virtual Servers |
ISP | IONOS SE |
ASN | AS8560 |
Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2010-3972 | 10.0Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP command, aka "IIS FTP Service Heap Buffer Overrun Vulnerability." NOTE: some of these details are obtained from third party information. |
CVE-2010-2730 | 9.3Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability." |
CVE-2010-1899 | 4.3Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vulnerability." |
-370734890 | 2024-04-30T18:34:53.09689121 / tcp
220 Microsoft FTP Service 530 User cannot log in. 214-The following commands are recognized (* ==>'s unimplemented). ABOR ACCT ADAT * ALLO APPE AUTH CCC CDUP CWD DELE ENC * EPRT EPSV FEAT HELP HOST LANG LIST MDTM MIC * MKD MODE NLST NOOP OPTS PASS PASV PBSZ PORT PROT PWD QUIT REIN REST RETR RMD RNFR RNTO SITE SIZE SMNT STAT STOR STOU STRU SYST TYPE USER XCUP XCWD XMKD XPWD XRMD 214 HELP command successful. 211-Extended features supported: LANG EN* UTF8 AUTH TLS;TLS-C;SSL;TLS-P; PBSZ PROT C;P; CCC HOST SIZE MDTM REST STREAM 211 END
Certificate: Data: Version: 3 (0x2) Serial Number: 682640 (0xa6a90) Signature Algorithm: sha1WithRSAEncryption Issuer: C=US, O=GeoTrust Inc., OU=Domain Validated SSL, CN=GeoTrust DV SSL CA Validity Not Before: Nov 19 07:12:59 2014 GMT Not After : Dec 21 18:20:25 2015 GMT Subject: serialNumber=ZicfbYhnA-\/VKiJndKjaTE0G3RvwnRAt, OU=GT01214366, OU=See www.geotrust.com\/resources\/cps (c)14, OU=Domain Control Validated - QuickSSL(R) Premium, CN=www.ukcraftfairs.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ed:1f:23:fd:bd:30:fa:c6:d7:98:94:27:e8:f5: d9:3e:02:01:6d:b4:d3:d8:22:0c:d6:a5:ca:35:3d: 39:8f:89:a9:f6:69:5c:29:ec:67:bf:90:47:52:ac: a5:07:29:62:25:c3:46:12:d2:1d:7f:a9:3d:48:74: 41:e9:94:f7:73:d8:0c:fc:87:ab:66:78:74:c3:a9: fe:56:11:79:b2:e9:ec:93:d8:08:de:e6:1a:d2:e3: 07:ce:66:3c:76:10:67:35:5e:af:d6:e4:e3:05:e0: 7e:24:2b:cc:25:6c:a6:b6:cb:53:2d:bb:96:43:62: bf:39:48:07:be:82:1b:98:3f:3e:c2:8c:3e:6f:bd: ff:94:07:ee:0f:66:a6:4f:85:5d:24:d1:5a:2b:a7: df:e6:c3:17:4f:24:c6:36:4c:c9:cb:9d:31:12:52: 0a:a2:27:4a:58:25:be:4f:65:ea:92:49:3b:32:5f: 34:1f:23:df:3b:d5:7a:9d:45:a4:75:60:bb:36:c1: 6f:9a:05:78:62:2e:be:6b:ab:dc:44:87:ae:10:56: f8:1c:78:83:ef:f1:73:6f:63:ab:df:ca:8d:e7:8e: 72:90:ab:bb:06:77:81:99:8b:3a:f1:87:a5:50:da: ac:ff:ca:9a:05:d8:13:0d:de:5d:57:7d:1b:85:4e: 76:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8C:F4:D9:93:0A:47:BC:00:A0:4A:CE:4B:75:6E:A0:B6:B0:B2:7E:FC X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Subject Alternative Name: DNS:www.ukcraftfairs.com, DNS:ukcraftfairs.com X509v3 CRL Distribution Points: Full Name: URI:http://gtssldv-crl.geotrust.com/crls/gtssldv.crl X509v3 Subject Key Identifier: 41:99:12:15:3D:6F:F3:C8:9A:90:A5:35:4E:58:3D:CE:75:8B:95:14 X509v3 Basic Constraints: critical CA:FALSE Authority Information Access: OCSP - URI:http://gtssldv-ocsp.geotrust.com CA Issuers - URI:http://gtssldv-aia.geotrust.com/gtssldv.crt X509v3 Certificate Policies: Policy: 2.16.840.1.113733.1.7.54 CPS: http://www.geotrust.com/resources/cps Signature Algorithm: sha1WithRSAEncryption Signature Value: 06:2c:ca:1f:fd:7a:0b:9a:91:0c:eb:b1:25:cb:3e:66:30:9c: 2d:2c:62:7c:4a:1d:c5:53:b7:92:55:77:bb:85:26:e7:f9:30: e8:39:9d:7b:af:05:0f:fe:b3:7d:36:3a:57:30:22:30:d5:49: 66:0c:df:c7:8a:6b:ee:ab:c2:37:2a:90:32:c4:c8:80:d3:81: 65:34:98:6b:e9:45:ab:93:68:f2:65:04:71:b1:25:28:7c:24: 93:0e:50:52:e3:99:b5:f0:bb:eb:a1:b9:a1:4a:a6:4c:bc:fc: b8:06:cd:a3:26:55:b4:42:15:69:35:f0:3d:a1:cb:5a:41:f0: f0:d9:d4:ee:02:5e:86:67:b1:b0:8a:a5:cf:6c:b7:d4:71:65: 09:2a:99:14:ea:7d:c1:26:65:91:94:3d:28:93:e4:ed:6f:b3: 42:da:9f:c8:7b:6f:93:b4:d8:fd:23:00:54:c2:10:ae:54:1c: e4:02:25:06:9a:e2:af:f7:e0:b0:30:88:85:80:1a:ad:62:6c: 30:41:75:c4:d8:38:0f:8d:b1:1f:eb:61:94:61:b5:60:d8:e0: 29:e5:a3:20:6a:a0:67:52:bc:10:07:ba:4d:c7:16:34:0a:d5: 7f:9f:96:fe:b4:45:51:01:5a:f5:22:ed:96:4d:4e:b8:b3:3e: 37:5d:44:12
2128630302 | 2024-05-09T05:09:47.67789825 / tcp
220 CP5-43169.home ESMTP MailEnable Service, Version: 1.986-- ready at 05/09/24 06:10:37 250-home [224.149.84.158], this server offers 4 extensions 250-AUTH LOGIN 250-SIZE 5120000 250-HELP 250 AUTH=LOGIN
1042539780 | 2024-05-11T14:21:07.52926553 / tcp
Resolver name: CP5-43169
1042539780 | 2024-05-09T19:04:05.39593453 / udp
Resolver name: CP5-43169
1647655105 | 2024-05-12T20:38:13.43037980 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Mon, 14 Apr 2014 15:04:09 GMT Accept-Ranges: bytes ETag: "5c12d5c9f257cf1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Sun, 12 May 2024 20:39:04 GMT Content-Length: 10458
-471102630 | 2024-05-13T01:30:23.669293110 / tcp
+OK Welcome to MailEnable POP3 Server +OK Capability list follows TOP USER UIDL .
1162150104 | 2024-04-23T01:56:53.920505135 / tcp
Microsoft RPC Endpoint Mapper d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 109.228.27.56:49152 ncalrpc: WindowsShutdown ncacn_np: \\CP5-43169\PIPE\InitShutdown ncalrpc: WMsgKRpc067770 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\CP5-43169\PIPE\InitShutdown ncalrpc: WMsgKRpc067770 ncalrpc: WMsgKRpc068711 ncalrpc: WMsgKRpc078E302 c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-0fadea58d2d3f01e16 ncacn_np: \\CP5-43169\PIPE\srvsvc ncacn_ip_tcp: 109.228.27.56:49154 ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 109.228.27.56:49153 ncacn_np: \\CP5-43169\pipe\eventlog ncalrpc: eventlog 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 109.228.27.56:49153 ncacn_np: \\CP5-43169\pipe\eventlog ncalrpc: eventlog 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncacn_ip_tcp: 109.228.27.56:49153 ncacn_np: \\CP5-43169\pipe\eventlog ncalrpc: eventlog f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 109.228.27.56:49153 ncacn_np: \\CP5-43169\pipe\eventlog ncalrpc: eventlog 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncacn_np: \\CP5-43169\PIPE\srvsvc ncacn_ip_tcp: 109.228.27.56:49154 ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncacn_ip_tcp: 109.228.27.56:49154 ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncacn_ip_tcp: 109.228.27.56:49154 ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 109.228.27.56:49154 ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\CP5-43169\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: senssvc ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 provider: gpsvc.dll ncalrpc: OLE453AD1B393F5435EA0D6E444B4A5 ncalrpc: IUserProfile2 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncacn_np: \\CP5-43169\PIPE\W32TIME_ALT ncalrpc: W32TIME_ALT ncalrpc: LRPC-89da970f58ed7f5127 ncalrpc: OLEF28F345976A04FFF9182765B0ACF 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-89da970f58ed7f5127 ncalrpc: OLEF28F345976A04FFF9182765B0ACF 24019106-a203-4642-b88d-82dae9158929 version: v1.0 provider: authui.dll ncalrpc: LRPC-1db9785ddd8a7b2453 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-bc90d6a3b6101dc6c5 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-bc90d6a3b6101dc6c5 dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-bc90d6a3b6101dc6c5 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\CP5-43169\PIPE\wkssvc ncalrpc: DNSResolver 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 annotation: Spooler function endpoint provider: spoolsv.exe ncalrpc: spoolss ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 annotation: Spooler base remote object endpoint protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncalrpc: spoolss 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 annotation: Spooler function endpoint protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncalrpc: spoolss 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 109.228.27.56:49157 12345678-1234-abcd-ef00-0123456789ab version: v1.0 annotation: IPSec Policy agent endpoint protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncalrpc: LRPC-8afb76ae956db63b36 b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v1.0 annotation: KeyIso provider: keyiso.dll ncacn_ip_tcp: 109.228.27.56:49168 ncalrpc: samss lpc ncalrpc: dsrole ncacn_np: \\CP5-43169\PIPE\protected_storage ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncalrpc: LRPC-f12532c313d15ec3fd ncacn_np: \\CP5-43169\pipe\lsass 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 109.228.27.56:49168 ncalrpc: samss lpc ncalrpc: dsrole ncacn_np: \\CP5-43169\PIPE\protected_storage ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncalrpc: LRPC-f12532c313d15ec3fd ncacn_np: \\CP5-43169\pipe\lsass 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-2fdb090339bf18157b ncalrpc: LRPC-2fdb090339bf18157b ncalrpc: LRPC-2fdb090339bf18157b ncalrpc: LRPC-2fdb090339bf18157b 12e65dd8-887f-41ef-91bf-8d816c42c2e7 version: v1.0 annotation: Secure Desktop LRPC interface provider: winlogon.exe ncalrpc: WMsgKRpc078E302
744951898 | 2024-05-12T22:52:27.862418443 / tcp
HTTP/1.1 200 OK Cache-Control: private Content-Length: 61757 Content-Type: text/html; Charset=windows-1252 ETag: "" Server: Microsoft-IIS/7.5 Set-Cookie: ASPSESSIONIDAWSRQDCQ=IMMMALBABBDHIKCNCNFGPMNB; secure; path=/ text/html: charset=Windows-1252 X-UKCraftFairs: UKCraftFairs X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Strict Transport Security: max-age=15552001; includeSubDomains; preload X-Frame-Options: SAMEORIGIN Content-Security-Policy: frame-ancestors 'none'; base-uri 'self'; Date: Sun, 12 May 2024 22:53:20 GMT
Certificate: Data: Version: 3 (0x2) Serial Number: 07:47:c4:d1:18:99:bf:ba:01:28:68:d4:84:43:33:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G2 Validity Not Before: Mar 10 00:00:00 2024 GMT Not After : Mar 9 23:59:59 2025 GMT Subject: CN=ukcraftfairs.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:9c:c2:25:91:98:af:b3:9f:ef:29:f0:c5:88:7c: e3:79:6f:3f:d9:3d:82:3f:ab:b8:c7:a9:96:c5:a9: 87:07:16:07:47:0f:9b:88:5d:5f:c5:0e:fd:dd:bd: fc:c9:5e:ab:8e:04:d1:60:dc:df:7c:ff:7d:1e:71: 15:1a:f0:b2:6c:b6:6b:48:ca:c1:b8:3c:c1:ed:30: e0:e6:b7:dd:a3:3b:33:07:87:b6:fa:b3:38:0b:58: c9:c5:59:94:70:4c:e7:f1:fb:26:6b:7a:82:90:da: e6:61:c4:68:e1:b7:72:21:34:ef:d8:be:36:f7:ff: 2b:ad:c4:58:50:94:ad:91:97:15:21:94:83:44:12: 4d:0c:1a:c3:ae:50:89:ca:bd:83:48:9c:b7:da:49: 39:6d:08:82:64:bf:7a:74:ea:39:9b:95:7f:92:53: ad:ef:8e:d3:ed:7a:19:36:4f:7f:44:97:dc:de:98: 49:b2:97:39:b6:a4:5f:ce:40:ef:29:3e:c2:0a:90: 6b:65:a0:c9:5f:98:f5:4a:28:51:12:b0:b3:e7:52: ec:9e:4f:79:fc:30:38:a4:48:8f:a0:b2:c1:b1:31: a5:32:49:9e:60:03:dd:4d:87:93:05:13:c5:8f:57: 5c:a4:9d:89:a1:dd:b5:d0:56:7c:7f:69:60:fa:4d: 14:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 78:DF:91:90:5F:EE:DE:AC:F6:C5:75:EB:D5:4C:55:53:EF:24:4A:B6 X509v3 Subject Key Identifier: 29:EC:6C:83:44:FF:7C:7F:C6:80:3E:66:8E:FA:38:4C:D3:2B:B6:34 X509v3 Subject Alternative Name: DNS:ukcraftfairs.com, DNS:www.ukcraftfairs.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CPS: http://www.digicert.com/CPS X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication Authority Information Access: OCSP - URI:http://ocsp.digicert.com CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt X509v3 Basic Constraints: critical CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Mar 10 16:25:06.215 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:DC:10:FB:92:A3:B0:F7:95:1C:56: 28:BB:7A:9A:EF:C8:98:5B:3F:E8:17:26:A5:2E:99:AA: D3:F7:F9:68:5C:02:20:17:60:5D:7E:91:39:50:7C:A0: 02:85:23:4D:55:C4:F8:C7:87:28:91:A7:13:48:8E:66: A6:7C:77:02:32:2A:AE Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Mar 10 16:25:06.161 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:3A:3F:6B:90:B5:61:37:DD:5E:5A:4B:57: 5F:0E:92:F7:A1:0C:82:39:B8:C9:86:F0:AA:BA:FE:DD: DB:78:06:38:02:21:00:EC:95:3F:15:8E:B2:00:21:DA: 34:2C:14:E7:9B:25:2F:67:88:96:A9:C8:36:29:30:F7: 4D:3E:AB:0C:7D:37:F7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1: D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50 Timestamp : Mar 10 16:25:06.196 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:4B:80:B4:D9:8F:C8:28:B8:D3:EB:42:D9: 3F:30:B5:13:10:11:C2:A4:3C:2B:F9:BD:54:6B:FD:0F: 66:BA:4A:40:02:20:6F:70:B2:58:72:32:F1:92:33:FD: 8F:40:3A:7C:34:71:BF:78:0E:EB:AD:F3:64:96:61:22: 41:B5:84:20:2A:93 Signature Algorithm: sha256WithRSAEncryption Signature Value: c1:bb:a1:76:21:ea:e3:24:a4:90:15:67:87:4b:1c:fa:a1:3d: d6:2d:1f:e1:a0:b5:61:e6:89:e0:f4:6d:f2:5a:93:ff:44:3b: c8:3b:30:3f:ff:27:e4:2a:b3:10:76:80:2b:2f:b5:76:1f:9a: 5a:d0:23:3d:af:dd:46:dd:f1:8c:fb:83:e6:b2:50:28:3e:43: 70:ad:3a:b2:62:82:52:f2:ae:29:43:cf:a7:6a:e1:08:28:36: e1:fa:a8:3e:19:8b:a0:a2:a2:1c:12:90:ef:b7:51:80:a1:d2: fc:60:c6:63:10:e1:9f:35:d4:3f:85:82:b1:65:67:a8:2b:85: 70:e2:73:bf:94:57:78:32:4f:e6:45:ff:81:4f:a3:1c:ae:e1: 7f:1a:44:bc:45:a5:20:50:ba:5a:60:ef:85:0e:2f:be:e8:8b: 60:91:ff:9a:68:a1:3e:37:dd:c3:63:84:a8:6f:2c:f8:07:11: 32:04:3d:f0:43:02:09:d5:5c:66:6f:13:72:ab:29:6c:de:82: 28:39:3d:6d:07:d6:43:85:a5:a1:7f:67:39:e1:7f:c1:94:fa: 55:f6:d2:67:12:30:e3:21:c7:9c:df:51:48:4a:0d:ac:1b:ee: b3:d6:9b:55:b3:ad:e3:51:4a:49:ad:0e:0c:d2:29:fc:7d:5a: ea:01:8d:a7
230376353 | 2024-05-12T17:29:17.9140303389 / tcp
Remote Desktop Protocol \x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\t\x08\x00\x02\x00\x00\x00 Remote Desktop Protocol NTLM Info: OS: Windows 7/Windows Server 2008 R2 OS Build: 6.1.7601 Target Name: CP5-43169 NetBIOS Domain Name: CP5-43169 NetBIOS Computer Name: CP5-43169 DNS Domain Name: CP5-43169 FQDN: CP5-43169
Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c0:c0:45:f7:ad:46:be:48:3c:b1:2b:8a:3e:f4:22 Signature Algorithm: sha1WithRSAEncryption Issuer: CN=CP5-43169 Validity Not Before: Apr 13 00:00:18 2024 GMT Not After : Oct 13 00:00:18 2024 GMT Subject: CN=CP5-43169 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ea:a3:7d:39:a8:55:d3:50:9b:aa:38:63:f0:95: be:82:7d:93:1e:1f:c8:8e:3f:98:70:71:cd:b8:ba: cd:d0:00:96:40:3d:13:4a:88:80:39:11:d9:ca:63: c2:d3:18:51:1d:71:27:a1:eb:dc:49:6f:31:3c:7c: 2e:a7:63:26:c2:9c:10:8e:e4:fd:3b:4e:43:aa:4a: f5:37:bb:39:06:79:c6:41:71:14:61:7b:d4:7d:b7: 30:7e:d4:c7:81:bc:a5:5d:57:c1:38:ee:28:61:8e: d4:10:f9:b9:d3:d5:9f:41:3f:15:6a:5f:1b:d1:1b: 8c:9d:2b:47:85:5b:87:0a:da:c8:03:58:ce:92:09: 55:cb:1b:59:59:87:0a:e4:9d:56:03:c6:de:50:fc: df:59:67:38:56:09:f1:43:51:0f:05:31:26:8e:91: a6:96:ce:53:a8:90:79:3e:ef:9c:98:e9:ea:a5:fa: 10:82:9c:26:43:b1:af:c7:8d:93:50:89:ea:4e:b2: 04:ec:c8:f7:56:6a:96:9f:c9:5a:75:21:1e:6c:c5: f4:51:2e:e8:1a:8b:9e:81:4a:3e:73:3a:70:fc:31: 77:bf:3a:3a:f3:a2:7b:ab:99:7a:29:fe:af:8f:90: 0b:9c:ea:88:49:c1:84:c2:45:74:30:aa:74:7a:2c: 5f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Key Usage: Key Encipherment, Data Encipherment Signature Algorithm: sha1WithRSAEncryption Signature Value: 49:e2:53:dc:e8:8e:42:39:e5:d3:b3:9e:09:36:8d:3a:5e:2b: cc:cd:50:46:3f:9c:0d:b3:31:05:d3:37:8c:5f:56:96:88:e0: 9f:cc:74:5c:d5:a8:5b:16:17:c3:76:99:2f:4a:55:17:86:e8: 02:c9:32:f2:53:bf:1d:ee:7e:7a:2e:bd:88:30:57:f4:8d:23: 6f:fb:cd:bd:59:9d:29:e2:46:a7:ba:eb:8e:0b:ca:f6:e8:51: db:ce:c8:13:72:a6:46:94:00:54:be:4f:95:0e:37:97:88:d2: fc:94:c2:24:53:19:6a:e6:75:2b:cb:08:ad:5c:8d:65:bb:5d: db:a6:af:02:0a:27:70:12:f8:c2:9e:02:a9:e6:26:04:12:bf: 4b:21:63:1d:a4:0b:81:ce:5f:98:4a:1d:21:76:29:2a:5d:3e: 3b:35:35:7d:99:35:da:dd:fe:0a:1b:52:fb:73:e7:63:0b:7d: e6:9a:bb:60:d8:ab:b1:40:65:ec:93:86:f1:b0:0b:ca:05:45: e8:2e:38:f4:c0:d4:16:c4:67:e3:48:de:85:46:27:c1:e4:d9: e5:7f:4a:dc:0a:b6:e4:1c:29:23:f9:db:7c:54:f2:9a:11:16: 9c:9b:0c:52:c6:56:a5:69:f5:2e:77:81:b5:51:ef:85:e0:66: 2c:16:b7:d5
1489525118 | 2024-05-10T12:12:57.2340155985 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Fri, 10 May 2024 12:13:48 GMT Connection: close Content-Length: 315 WinRM NTLM Info: OS: Windows Server 2008 R2 OS Build: 6.1.7601 Target Name: CP5-43169 NetBIOS Domain Name: CP5-43169 NetBIOS Computer Name: CP5-43169 DNS Domain Name: CP5-43169 FQDN: CP5-43169
-1410055401 | 2024-05-03T05:30:02.9461978880 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Transfer-Encoding: chunked Content-Type: text/html Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Fri, 03 May 2024 05:30:54 GMT Server: Microsoft-IIS/7.5 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Powered-By: ASP.NET Date: Fri, 03 May 2024 05:30:54 GMT 540 <html><head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <meta name="plesk-build" content="20130808.09"> <title>Parallels Plesk Panel 11.5.30 for Microsoft Windows</title> <script language="javascript" type="text/javascript" src="/javascript/common.js?1474588089"/></script> <script language="javascript" type="text/javascript" src="/javascript/prototype.js?1375949424"/></script> <script> var opt_no_frames = false; var opt_integrated_mode = false; </script> </head><body onLoad=";top.location='/login.php3';"></body><noscript>You will be redirected to the new address in 15 seconds... If you are not automatically taken to the new location, please enable javascript or click the hyperlink <a href="/login.php3" target="top">/login.php3</a>.</noscript></html><!--______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________IE error page size limitation______________________________________________________________________________________________________________________________________________________________________________________________________________________________________________-->