Hostnames |
linuxz.gz70-s-4vcpu-8gb-nyc3-01 frosty-mayer.142-93-179-227.plesk.page |
Domains | gz70-s-4vcpu-8gb-nyc3-01. plesk.page |
Cloud Provider | DigitalOcean |
Cloud Region | us-nj |
Country | United States |
City | Clifton |
Organization | DigitalOcean, LLC |
ISP | DigitalOcean, LLC |
ASN | AS14061 |
Operating System | Windows Server 2012 R2 (build 6.3.9600) |
-339936414 | 2024-04-19T19:56:08.67306021 / tcp
220 ProFTPD Server (ProFTPD) [142.93.179.227] 530 Login incorrect. 214-The following commands are recognized (* =>'s unimplemented): CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV EPRT EPSV ALLO RNFR RNTO DELE MDTM RMD XRMD MKD XMKD PWD XPWD SIZE SYST HELP NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF* ENC* MIC* PBSZ PROT TYPE STRU MODE RETR STOR STOU APPE REST ABOR RANG USER PASS ACCT* REIN* LIST NLST STAT SITE MLSD MLST 214 Direct comments to root@0.0.0.0 211-Features: AUTH TLS CCC CLNT CSID EPRT EPSV HOST LANG C.UTF-8* MDTM MFF modify;UNIX.group;UNIX.mode; MFMT MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*; PBSZ PROT RANG STREAM REST STREAM SIZE SSCN TVFS UTF8 211 End
Certificate: Data: Version: 3 (0x2) Serial Number: 04:49:6b:b4:2e:a9:00:c3:dd:27:1b:23:a5:5a:2a:34:f2:27 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 19 17:52:34 2024 GMT Not After : Jul 18 17:52:33 2024 GMT Subject: CN=frosty-mayer.142-93-179-227.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:8e:f8:1f:91:07:ee:96:77:f7:2a:89:7c:a4: 72:76:b5:16:ca:c1:fc:b9:71:40:39:b4:d6:8f:c2: b5:ff:d9:27:c6:88:f5:7f:d6:bd:70:bc:b9:62:d1: a0:ce:10:c3:d2:5b:ff:37:f9:99:79:07:63:ba:08: c9:ff:c9:89:76:1d:7b:94:90:b9:45:a0:86:68:37: 42:c1:9a:e6:d0:6b:56:4a:e0:b2:94:9a:93:ad:e7: 70:f6:12:b3:6d:cd:65:f7:dd:ec:ab:aa:65:b3:1a: 91:48:10:54:4e:df:93:d6:b8:61:a5:72:47:18:1b: 34:31:1e:8c:97:e8:dc:fc:01:62:54:2b:d2:ac:dd: 4e:07:d1:18:f5:b9:d4:b2:9f:8e:86:af:89:fc:48: d7:19:25:b7:a9:b0:26:58:bc:6b:c5:83:8c:c8:29: 64:76:02:25:7d:ec:1b:41:95:11:b3:68:21:84:e3: 35:2c:3f:21:1e:34:3d:17:d0:05:5c:0e:db:1f:49: 3e:7a:e5:da:15:cd:ec:de:26:c5:f7:3e:7f:6b:56: e8:6e:5f:f1:38:25:a6:a2:1e:26:49:d3:da:7f:9b: 70:11:ed:ba:d5:b5:fc:a6:7e:01:12:d2:84:97:41: e3:88:41:37:23:0d:63:1c:c3:db:7f:39:90:ce:a1: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: FD:24:82:41:F0:E8:57:52:98:01:EA:BB:B9:26:7A:F2:E8:CD:36:E2 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:frosty-mayer.142-93-179-227.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Apr 19 18:52:35.038 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:16:81:A8:BE:5B:5B:63:80:A3:F8:4D:2B: BC:C3:55:EE:A3:A8:68:7F:08:EA:1A:57:3E:CB:DF:AF: 4B:95:62:21:02:20:77:74:F2:51:A3:62:8D:8A:33:E5: B1:79:53:1E:AD:8F:29:E1:2A:86:A0:E8:7A:4A:25:D9: 45:B6:D9:0D:61:1E Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32: 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C Timestamp : Apr 19 18:52:35.185 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:3F:C5:1D:28:C8:89:70:F3:85:86:FF:3C: B4:CE:01:9F:91:8E:3C:B8:98:D2:09:B5:C1:03:5D:77: 0E:37:E7:05:02:20:0E:1A:CE:C5:79:2D:AC:90:B7:6F: 58:46:E7:7E:0B:FC:FE:0A:67:EB:8B:55:D9:30:6D:40: 6D:A2:65:2A:1C:6B Signature Algorithm: sha256WithRSAEncryption Signature Value: 96:37:cd:96:bb:87:13:f6:78:5e:1f:b6:bd:ef:80:db:ad:37: c1:b8:17:8a:f8:9e:b9:8d:ee:9f:c5:e9:22:b3:4a:b1:16:c2: a2:99:ed:e3:5a:8e:0b:b2:b4:28:81:23:7c:5e:53:a5:a2:7c: c3:6e:68:cd:90:38:66:64:5e:32:05:22:89:0e:37:44:ef:e7: 23:4b:03:b4:ba:56:c8:a1:06:30:3d:95:5f:b3:30:c9:d7:80: 7d:a0:c5:f1:95:b8:f6:35:71:7e:39:02:60:6d:92:56:78:95: 0b:e1:cb:2f:14:3b:22:5e:47:de:7c:07:c5:2a:c1:25:4c:ce: 6d:a5:24:fe:ea:4b:25:55:c8:80:29:20:1f:7d:94:1f:12:02: 32:f0:38:3a:ed:67:6d:33:e9:f5:2d:02:d1:e2:65:f6:7c:73: a0:21:ae:5c:e1:bc:f4:e5:6d:3d:30:e0:d6:a9:72:1e:f2:26: e8:03:50:59:f1:c0:05:b2:ee:85:5f:33:96:97:49:a3:29:e8: 76:e2:3c:91:34:d9:b5:ae:d0:55:0b:a2:cd:2c:18:74:44:7b: bb:8a:95:f6:ff:fc:27:19:b3:a3:0c:7b:ea:50:1b:85:02:40: d4:bd:d8:f8:18:17:1f:b3:93:bb:52:59:11:19:b2:6a:01:90: 73:78:56:ea
1720634232 | 2024-04-19T18:54:31.68578725 / tcp
220 frosty-mayer.142-93-179-227.plesk.page ESMTP Postfix (Ubuntu) 250-frosty-mayer.142-93-179-227.plesk.page 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250 CHUNKING
Certificate: Data: Version: 3 (0x2) Serial Number: 01:69:59:9a:31:ca:48:3e:1d:09:41:ce:6d:22:b9:7e:f1:86:04:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=packer-65df16aa-affb-7fcc-9002-070b68a36233 Validity Not Before: Feb 28 11:32:27 2024 GMT Not After : Feb 25 11:32:27 2034 GMT Subject: CN=packer-65df16aa-affb-7fcc-9002-070b68a36233 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:af:18:d2:da:ba:78:59:61:5b:37:05:f7:46:79: 46:d8:b4:71:8d:2e:e0:20:d0:4a:d0:bc:52:20:46: 22:91:45:32:af:7e:9b:45:51:6b:81:87:c1:a3:99: ad:40:be:0e:db:18:f6:67:cc:36:dd:ac:eb:29:d0: 1b:db:d9:0d:ac:9c:ea:cd:bd:91:4b:98:ff:52:5e: b1:ad:dc:67:83:0a:b8:60:b9:4a:69:13:ee:7d:92: bf:78:b5:16:f7:d3:dc:26:5d:c0:f8:e5:7b:5a:1e: 7e:de:c9:de:b0:a9:92:a5:16:25:a8:26:b7:3b:b2: 2a:79:59:6b:2b:8a:5c:db:d6:fd:a3:4e:ca:f1:fa: bb:2a:65:6e:f6:bc:d6:a1:ee:cf:31:2e:39:bf:11: 64:2f:a1:d9:20:0d:6e:ac:7c:b2:18:2b:61:a8:cb: e9:18:e2:47:1a:c2:bc:2c:c1:c1:25:9b:ec:73:fe: ed:f6:39:61:c5:5c:c2:43:bd:81:2c:c2:1f:1a:a1: 64:96:13:b3:f8:13:84:d6:69:f2:e8:2d:21:c1:1f: 50:17:33:10:8f:5b:b4:b2:59:da:a7:11:2e:20:a6: 0c:46:5b:ba:60:0f:75:90:f0:43:70:af:2a:bf:71: 2c:fc:5d:e7:31:87:af:a3:ef:f5:c9:79:c8:75:1d: 80:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: CA:FALSE X509v3 Subject Alternative Name: DNS:packer-65df16aa-affb-7fcc-9002-070b68a36233 X509v3 Subject Key Identifier: 78:8A:AA:A1:E0:B7:A5:F1:89:7E:14:B4:31:49:8D:3C:9C:B6:1B:BA Signature Algorithm: sha256WithRSAEncryption Signature Value: 3c:c8:24:c5:24:64:01:72:c5:a9:09:09:be:f8:ea:3c:28:8c: 38:56:49:1d:5b:f1:ae:01:e8:f5:f0:1a:e0:9b:9e:61:44:cf: bc:c3:b7:e4:da:71:55:46:b7:e6:26:c6:07:92:51:ac:b1:61: 3b:64:90:0e:37:64:f9:74:8b:67:bb:78:5d:99:2d:09:f8:27: f7:3c:7d:88:21:0c:78:1f:cf:d0:3a:9d:c5:68:ec:6f:e1:dd: c6:4e:e5:0d:c4:ea:93:4d:54:6c:a1:9e:22:96:24:d2:85:55: 5e:4f:a5:9d:f7:20:f8:47:53:a0:ea:1f:de:8b:9a:7d:9e:00: a9:ec:dc:c9:49:34:4f:72:1a:e4:37:13:eb:70:56:24:8e:9e: df:16:47:11:6d:22:7f:43:b3:eb:18:9e:7a:42:73:ab:4b:f2: 88:d5:c2:57:8c:b8:1f:17:de:27:3c:ab:37:ff:e3:f0:76:e2: e8:bc:85:01:ce:cc:51:9f:0f:18:64:41:b0:91:00:9b:45:43: 76:db:7e:d9:9b:c0:cd:b2:6f:66:9f:e1:61:5e:53:22:cb:4e: 90:8d:9f:2b:1e:6d:fa:fb:35:bf:fa:9d:80:95:7d:b6:bd:5a: 2f:cd:2c:88:41:4a:44:83:01:66:8a:60:24:e0:37:1d:4f:10: b4:27:bf:66
07:0B:68:A3:62:33 Unknown
-1959310264 | 2024-04-30T18:02:16.158386135 / tcp
Microsoft RPC Endpoint Mapper d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 142.93.179.227:49152 ncalrpc: WindowsShutdown ncacn_np: \\WIN-SKB3PU6SP61\PIPE\InitShutdown ncalrpc: WMsgKRpc062860 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\WIN-SKB3PU6SP61\PIPE\InitShutdown ncalrpc: WMsgKRpc062860 ncalrpc: WMsgKRpc064771 ncalrpc: WMsgKRpc0615CE2 9b008953-f195-4bf9-bde0-4471971e58ed version: v1.0 ncalrpc: dabrpc ncalrpc: LRPC-8e1a31debd9ba1b8b1 ncacn_np: \\WIN-SKB3PU6SP61\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-0efb5b76ae36a8c0df ncalrpc: actkernel ncalrpc: umpo 697dcda9-3ba9-4eb2-9247-e11f1901b0d2 version: v1.0 ncalrpc: LRPC-8e1a31debd9ba1b8b1 ncacn_np: \\WIN-SKB3PU6SP61\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-0efb5b76ae36a8c0df ncalrpc: actkernel ncalrpc: umpo c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-0efb5b76ae36a8c0df ncalrpc: actkernel ncalrpc: umpo ncalrpc: DeviceSetupManager ncacn_np: \\WIN-SKB3PU6SP61\PIPE\srvsvc ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e version: v1.0 ncalrpc: actkernel ncalrpc: umpo c605f9fb-f0a3-4e2a-a073-73560f8d9e3e version: v1.0 ncalrpc: actkernel ncalrpc: umpo 1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 8bfc3be1-6def-4e2d-af74-7c47cd0ade4a version: v1.0 ncalrpc: actkernel ncalrpc: umpo 2d98a740-581d-41b9-aa0d-a88b9d5ce938 version: v1.0 ncalrpc: actkernel ncalrpc: umpo bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 3b338d89-6cfa-44b8-847e-531531bc9992 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 8782d3b9-ebbd-4644-a3d8-e8725381919b version: v1.0 ncalrpc: actkernel ncalrpc: umpo 085b0334-e454-4d91-9b8c-4134f9e793f3 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 ncalrpc: LRPC-acb1c7e1fdd1a9c74e ncacn_ip_tcp: 142.93.179.227:49153 ncacn_np: \\WIN-SKB3PU6SP61\pipe\eventlog ncalrpc: eventlog 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 ncalrpc: LRPC-acb1c7e1fdd1a9c74e ncacn_ip_tcp: 142.93.179.227:49153 ncacn_np: \\WIN-SKB3PU6SP61\pipe\eventlog ncalrpc: eventlog abfb6ca3-0c5e-4734-9285-0aee72fe8d1c version: v1.0 annotation: Wcm Service ncalrpc: LRPC-acb1c7e1fdd1a9c74e ncacn_ip_tcp: 142.93.179.227:49153 ncacn_np: \\WIN-SKB3PU6SP61\pipe\eventlog ncalrpc: eventlog 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncalrpc: LRPC-acb1c7e1fdd1a9c74e ncacn_ip_tcp: 142.93.179.227:49153 ncacn_np: \\WIN-SKB3PU6SP61\pipe\eventlog ncalrpc: eventlog f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 142.93.179.227:49153 ncacn_np: \\WIN-SKB3PU6SP61\pipe\eventlog ncalrpc: eventlog 8c7daf44-b6dc-11d1-9a4c-0020af6e7c57 version: v1.0 annotation: Group Policy RPC Interface provider: appmgmts.dll ncalrpc: LRPC-622f662015c79138fa 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncalrpc: LRPC-b85d33d9989f8e4b97 ncalrpc: DeviceSetupManager ncacn_np: \\WIN-SKB3PU6SP61\PIPE\srvsvc ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 1a0d010f-1c33-432c-b0f5-8cf4e8053099 version: v1.0 annotation: IdSegSrv service ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 a398e520-d59a-4bdd-aa7a-3c1e0303a511 version: v1.0 annotation: IKE/Authip API provider: IKEEXT.DLL ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 3a9ef155-691d-4449-8d05-09ad57031823 version: v1.0 ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 142.93.179.227:49154 ncalrpc: ubpmtaskhostchannel ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\WIN-SKB3PU6SP61\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: senssvc ncalrpc: OLE6B5D5AD49B2CE8B39515003644D4 ncalrpc: IUserProfile2 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 annotation: Group Policy RPC Interface provider: gpsvc.dll ncalrpc: LRPC-344de2961c18fafe62 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncacn_np: \\WIN-SKB3PU6SP61\PIPE\W32TIME_ALT ncalrpc: W32TIME_ALT ncalrpc: LRPC-40927f1e5b7610ea3a ncalrpc: OLE641B7C2223C184BA3BECBEBC5F63 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-40927f1e5b7610ea3a ncalrpc: OLE641B7C2223C184BA3BECBEBC5F63 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-34a3396498daab5d0c ncalrpc: LRPC-a0b7b9b76fa0af7ef1 f47433c3-3e9d-4157-aad4-83aa1f5c2d4c version: v1.0 annotation: Fw APIs ncalrpc: LRPC-34a3396498daab5d0c ncalrpc: LRPC-a0b7b9b76fa0af7ef1 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-34a3396498daab5d0c ncalrpc: LRPC-a0b7b9b76fa0af7ef1 dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-a0b7b9b76fa0af7ef1 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\WIN-SKB3PU6SP61\PIPE\wkssvc ncalrpc: LRPC-7419c05a240bf3598c ncalrpc: DNSResolver eb081a0d-10ee-478a-a1dd-50995283e7a8 version: v3.0 annotation: Witness Client Test Interface ncalrpc: LRPC-7419c05a240bf3598c ncalrpc: DNSResolver f2c9b409-c1c9-4100-8639-d8ab1486694a version: v1.0 annotation: Witness Client Upcall Server ncalrpc: LRPC-7419c05a240bf3598c ncalrpc: DNSResolver 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 142.93.179.227:49156 6b5bdd1e-528c-422c-af8c-a4079be4fe48 version: v1.0 annotation: Remote Fw APIs protocol: [MS-FASP]: Firewall and Advanced Security Protocol provider: FwRemoteSvr.dll ncacn_ip_tcp: 142.93.179.227:49157 b2507c30-b126-494a-92ac-ee32b6eeb039 version: v1.0 ncalrpc: LRPC-604c804767fe3638c1 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 142.93.179.227:49158 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\WIN-SKB3PU6SP61\pipe\lsass 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-235c5b84f37419f3b2 ncalrpc: LRPC-235c5b84f37419f3b2 ncalrpc: LRPC-235c5b84f37419f3b2 12e65dd8-887f-41ef-91bf-8d816c42c2e7 version: v1.0 annotation: Secure Desktop LRPC interface provider: winlogon.exe ncalrpc: WMsgKRpc0615CE2
1209695045 | 2024-04-26T05:17:48.920603137 / udp
NetBIOS Response: Server Name: WIN-SKB3PU6SP61 MAC Address: 6E:46:06:B3:6B:12 Names: WIN-SKB3PU6SP61 <0x20> WIN-SKB3PU6SP61 <0x0> WORKGROUP <0x0> Additional Interfaces: 32.108.0.4
6E:46:06:B3:6B:12 Unknown
1818522863 | 2024-04-19T19:00:39.463230995 / tcp
+OK Dovecot ready. <5a86.1.6622bf50.stCGUOPgizd8RPygBZu0kw==@frosty-mayer.142-93-179-227.plesk.page> +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5 .
Certificate: Data: Version: 3 (0x2) Serial Number: 1713552626 (0x6622bcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Apr 19 18:50:29 2024 GMT Not After : Apr 19 18:50:29 2025 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:9a:92:e6:9f:c5:99:3f:8a:9c:d1:3f:40:c1:6e: 6b:af:e8:88:b7:94:e9:30:df:47:01:ae:5a:11:87: ba:d6:d0:c1:8f:2c:5b:02:b6:42:13:37:e5:36:e0: 64:ae:5b:f2:ba:c7:42:b8:05:f2:16:4c:92:f7:44: ef:46:6e:17:83:c9:98:be:c1:87:ed:17:f1:ea:31: 43:b0:bc:79:8a:a0:fa:95:a9:7d:bc:aa:fe:6f:12: e6:23:7f:5a:5a:2f:29:7b:84:cd:ba:a1:95:89:4c: 57:c3:b6:70:b7:ed:b0:b2:2c:d8:6b:4e:b1:a6:fe: 73:09:1c:a7:78:bc:76:81:70:80:f7:3b:96:81:19: 5d:7c:ad:3b:81:35:5c:a1:1b:37:5a:e3:26:2b:3f: 5d:66:26:7d:62:22:88:b8:ab:9b:c9:be:28:42:ff: bb:86:6f:c7:ec:69:a6:36:36:17:bb:1f:37:de:ab: 9a:f8:57:0f:86:b8:52:ee:a0:34:ef:da:31:6e:df: 5f:9d:d6:f2:33:32:ce:c4:4a:11:91:d5:34:71:a7: 39:9c:ce:14:c1:10:bf:44:07:5f:41:2c:ca:f7:f0: 11:d9:91:75:e7:00:8c:de:a2:36:94:2d:34:96:4f: db:5a:ce:ab:48:de:82:eb:fe:45:87:51:e9:12:4a: a5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 4C:11:92:2A:F3:D4:B3:48:2F:A0:35:21:21:48:6A:DF:2D:70:E9:04 Signature Algorithm: sha256WithRSAEncryption Signature Value: 4a:22:e6:ef:a5:dc:e3:3b:61:94:25:22:b7:19:1f:c6:9a:df: ed:7b:99:e1:75:60:45:c6:15:03:a5:cd:c8:dd:a9:93:07:51: 99:09:16:55:d3:06:6a:42:35:18:93:a1:21:eb:07:b3:c3:6f: d3:c5:47:9a:f0:f8:31:aa:cf:22:cc:df:f0:30:c5:c0:16:d9: b3:d0:40:d0:ee:da:1e:a5:40:ca:3a:d1:2c:88:2d:68:2f:47: f4:d5:fc:a0:bc:e2:47:24:cd:97:41:91:cb:ef:09:75:be:e3: 99:4b:65:13:65:f7:47:e6:3a:66:d8:4d:ae:f3:20:9b:83:13: 97:06:c5:38:30:17:c7:81:d5:53:fb:ce:2f:6f:d5:68:06:16: 14:98:e0:ba:d2:71:8e:53:d7:7f:e9:4b:2b:61:af:50:32:f9: 1a:74:05:94:cc:ce:18:f9:93:e8:b8:4e:d8:02:0c:f5:2e:cf: 94:f2:56:27:9a:94:ca:e2:14:62:d5:10:83:d5:97:bf:0c:93: 5d:bc:41:87:b6:20:5a:b4:9f:b3:02:f3:37:47:b2:e7:31:be: ce:5f:82:6b:b6:40:0d:ef:f7:f9:f1:26:7a:25:2a:eb:29:0b: b9:dc:7a:0c:fe:3f:aa:b8:16:00:b2:cd:b8:0d:60:2e:64:5c: 59:ab:ec:a6
1489525118 | 2024-05-03T01:34:30.4885855985 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Fri, 03 May 2024 01:34:30 GMT Connection: close Content-Length: 315 WinRM NTLM Info: OS: Windows Server 2012 R2 OS Build: 6.3.9600 Target Name: WIN-SKB3PU6SP61 NetBIOS Domain Name: WIN-SKB3PU6SP61 NetBIOS Computer Name: WIN-SKB3PU6SP61 DNS Domain Name: WIN-SKB3PU6SP61 FQDN: WIN-SKB3PU6SP61