Hostnames |
vmi445382.contaboserver.net awesome-grothendieck.161-97-111-22.plesk.page |
Domains | contaboserver.net plesk.page |
Country | Germany |
City | Nürnberg |
Organization | Contabo GmbH |
ISP | Contabo GmbH |
ASN | AS51167 |
Operating System | Windows |
-370734890 | 2024-04-26T17:03:44.04203021 / tcp
220 Microsoft FTP Service 530 User cannot log in. 214-The following commands are recognized (* ==>'s unimplemented). ABOR ACCT ADAT * ALLO APPE AUTH CCC CDUP CWD DELE ENC * EPRT EPSV FEAT HELP HOST LANG LIST MDTM MIC * MKD MODE NLST NOOP OPTS PASS PASV PBSZ PORT PROT PWD QUIT REIN REST RETR RMD RNFR RNTO SITE SIZE SMNT STAT STOR STOU STRU SYST TYPE USER XCUP XCWD XMKD XPWD XRMD 214 HELP command successful. 211-Extended features supported: LANG EN* UTF8 AUTH TLS;TLS-C;SSL;TLS-P; PBSZ PROT C;P; CCC HOST SIZE MDTM REST STREAM 211 END
Certificate: Data: Version: 3 (0x2) Serial Number: 24246375 (0x171f867) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Sep 10 11:39:51 2020 GMT Not After : Sep 10 11:39:51 2021 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cf:5b:0a:c3:45:93:01:0e:d2:00:51:44:93:22: 55:cb:c1:62:e2:56:3c:73:45:68:e0:00:31:da:6a: 59:67:be:f7:2c:11:cd:af:fb:ae:66:3c:f8:81:e2: ff:87:3a:1d:ef:17:1c:ca:41:40:9e:61:97:ea:83: 94:ff:4f:8f:02:91:74:1e:e2:58:b0:7f:83:cf:b4: 85:8f:66:8d:3a:e6:82:a5:93:d5:bd:8b:30:26:99: c5:9c:a6:e1:ab:08:4f:73:28:10:3f:28:dd:8b:39: 01:ae:ee:f0:7d:14:a6:65:f1:28:02:75:10:9e:00: 5e:5e:b3:36:64:1d:ba:9f:37:f6:4c:39:12:b5:24: f4:d0:ed:79:74:f9:64:3d:dd:69:3e:27:4c:32:e6: 66:b9:21:b1:9f:c7:d9:26:78:da:74:80:e1:db:4b: 71:7e:90:81:07:7c:c6:be:2b:1d:df:7f:d8:91:12: 35:fa:11:b9:b6:82:8f:ce:ea:84:db:d9:a7:79:2e: 96:d1:bd:cc:51:03:92:7b:8e:32:67:e5:e2:39:80: 7c:1b:30:2e:dd:09:29:15:ef:6f:35:8a:76:ee:86: 7c:15:ae:59:56:5f:31:1b:ae:85:cc:8a:e2:4d:25: b3:fd:65:a9:33:ba:19:1c:8d:80:c9:27:cc:76:4f: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF X509v3 Authority Key Identifier: keyid:8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:01:71:F8:67 Signature Algorithm: sha256WithRSAEncryption Signature Value: cd:74:87:3c:7b:a5:e5:d4:a4:45:de:58:ce:e5:1d:b1:9a:22: 23:81:56:03:62:3a:54:e0:d9:78:14:cb:43:9b:e4:bc:c7:ad: 7b:31:ff:35:5e:65:8e:98:00:93:bc:96:d1:f3:c9:a5:23:3c: 46:f3:ab:63:47:bc:ea:37:08:76:da:92:54:2a:90:3f:0e:a8: 59:bb:c0:ab:98:22:b5:7c:ca:9c:af:c6:cf:b7:c2:26:09:e6: e4:24:da:73:3a:ff:7c:6b:7b:35:f1:30:96:60:13:37:69:2d: 72:39:fa:7b:97:be:99:32:0b:d5:5d:df:7b:03:02:11:02:ac: d4:a0:8e:4a:dc:54:d9:cf:ae:1c:bb:ab:f7:72:92:03:a7:f6: bc:f2:0b:3f:03:87:79:00:32:c9:96:3a:e3:5a:65:2d:03:7d: ce:1c:ff:ea:60:ac:2c:0e:62:65:0a:51:a7:ec:d6:6f:49:79: 2e:2a:f4:6c:80:95:e0:8f:d0:cc:5f:d3:3e:e6:b1:16:57:2f: 2c:02:2f:eb:d8:57:c7:6d:fb:aa:a6:5b:11:b6:01:6f:b9:a2: 47:91:bc:e0:fa:21:80:be:dc:b4:21:42:d5:4f:3d:8b:40:65: 7d:41:82:b4:f2:34:73:f4:51:09:b6:ee:76:5a:c0:62:2f:c3: 56:56:62:e0
1984324002 | 2024-05-02T10:44:47.21383425 / tcp
220 VMI445382.home ESMTP MailEnable Service, Version: 10.27-- ready at 05/02/24 03:43:47 250-home [224.236.50.74], this server offers 5 extensions 250-AUTH LOGIN 250-SIZE 40960000 250-HELP 250-AUTH=LOGIN 250 STARTTLS
Certificate: Data: Version: 3 (0x2) Serial Number: 24246375 (0x171f867) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Sep 10 11:39:51 2020 GMT Not After : Sep 10 11:39:51 2021 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cf:5b:0a:c3:45:93:01:0e:d2:00:51:44:93:22: 55:cb:c1:62:e2:56:3c:73:45:68:e0:00:31:da:6a: 59:67:be:f7:2c:11:cd:af:fb:ae:66:3c:f8:81:e2: ff:87:3a:1d:ef:17:1c:ca:41:40:9e:61:97:ea:83: 94:ff:4f:8f:02:91:74:1e:e2:58:b0:7f:83:cf:b4: 85:8f:66:8d:3a:e6:82:a5:93:d5:bd:8b:30:26:99: c5:9c:a6:e1:ab:08:4f:73:28:10:3f:28:dd:8b:39: 01:ae:ee:f0:7d:14:a6:65:f1:28:02:75:10:9e:00: 5e:5e:b3:36:64:1d:ba:9f:37:f6:4c:39:12:b5:24: f4:d0:ed:79:74:f9:64:3d:dd:69:3e:27:4c:32:e6: 66:b9:21:b1:9f:c7:d9:26:78:da:74:80:e1:db:4b: 71:7e:90:81:07:7c:c6:be:2b:1d:df:7f:d8:91:12: 35:fa:11:b9:b6:82:8f:ce:ea:84:db:d9:a7:79:2e: 96:d1:bd:cc:51:03:92:7b:8e:32:67:e5:e2:39:80: 7c:1b:30:2e:dd:09:29:15:ef:6f:35:8a:76:ee:86: 7c:15:ae:59:56:5f:31:1b:ae:85:cc:8a:e2:4d:25: b3:fd:65:a9:33:ba:19:1c:8d:80:c9:27:cc:76:4f: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF X509v3 Authority Key Identifier: keyid:8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:01:71:F8:67 Signature Algorithm: sha256WithRSAEncryption Signature Value: cd:74:87:3c:7b:a5:e5:d4:a4:45:de:58:ce:e5:1d:b1:9a:22: 23:81:56:03:62:3a:54:e0:d9:78:14:cb:43:9b:e4:bc:c7:ad: 7b:31:ff:35:5e:65:8e:98:00:93:bc:96:d1:f3:c9:a5:23:3c: 46:f3:ab:63:47:bc:ea:37:08:76:da:92:54:2a:90:3f:0e:a8: 59:bb:c0:ab:98:22:b5:7c:ca:9c:af:c6:cf:b7:c2:26:09:e6: e4:24:da:73:3a:ff:7c:6b:7b:35:f1:30:96:60:13:37:69:2d: 72:39:fa:7b:97:be:99:32:0b:d5:5d:df:7b:03:02:11:02:ac: d4:a0:8e:4a:dc:54:d9:cf:ae:1c:bb:ab:f7:72:92:03:a7:f6: bc:f2:0b:3f:03:87:79:00:32:c9:96:3a:e3:5a:65:2d:03:7d: ce:1c:ff:ea:60:ac:2c:0e:62:65:0a:51:a7:ec:d6:6f:49:79: 2e:2a:f4:6c:80:95:e0:8f:d0:cc:5f:d3:3e:e6:b1:16:57:2f: 2c:02:2f:eb:d8:57:c7:6d:fb:aa:a6:5b:11:b6:01:6f:b9:a2: 47:91:bc:e0:fa:21:80:be:dc:b4:21:42:d5:4f:3d:8b:40:65: 7d:41:82:b4:f2:34:73:f4:51:09:b6:ee:76:5a:c0:62:2f:c3: 56:56:62:e0
-1872514138 | 2024-05-06T13:23:48.33715080 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Fri, 07 Feb 2020 14:23:47 GMT Accept-Ranges: bytes ETag: "805b9a35c2ddd51:0" Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Mon, 06 May 2024 13:23:48 GMT Content-Length: 444
-471102630 | 2024-05-08T22:03:09.087744110 / tcp
+OK Welcome to MailEnable POP3 Server +OK Capability list follows TOP USER UIDL .
1154928198 | 2024-05-07T00:22:21.094927135 / tcp
Microsoft RPC Endpoint Mapper d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 161.97.111.22:49664 ncalrpc: WindowsShutdown ncacn_np: \\VMI445382\PIPE\InitShutdown ncalrpc: WMsgKRpc044450 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\VMI445382\PIPE\InitShutdown ncalrpc: WMsgKRpc044450 ncalrpc: WMsgKRpc047901 ncalrpc: WMsgKRpc18542B50492 fc48cd89-98d6-4628-9839-86f7a3e4161a version: v1.0 ncalrpc: LRPC-a72ad5cb83f4405e97 ncalrpc: dabrpc ncalrpc: csebpub ncalrpc: LRPC-c7dcf207dd267d6d46 ncalrpc: LRPC-e3a93b87f87112478e ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 9b008953-f195-4bf9-bde0-4471971e58ed version: v1.0 ncalrpc: LRPC-a72ad5cb83f4405e97 ncalrpc: dabrpc ncalrpc: csebpub ncalrpc: LRPC-c7dcf207dd267d6d46 ncalrpc: LRPC-e3a93b87f87112478e ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo d09bdeb5-6171-4a34-bfe2-06fa82652568 version: v1.0 ncalrpc: csebpub ncalrpc: LRPC-c7dcf207dd267d6d46 ncalrpc: LRPC-e3a93b87f87112478e ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-e3a93b87f87112478e ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-c70484582a6283d07e ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 161.97.111.22:49665 ncacn_np: \\VMI445382\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-aa55ae687774e79e66 ncalrpc: LRPC-678baa0adf5aa21c19 ncalrpc: LRPC-68273b3445d9d5a58e ncalrpc: DeviceSetupManager ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 697dcda9-3ba9-4eb2-9247-e11f1901b0d2 version: v1.0 ncalrpc: LRPC-c7dcf207dd267d6d46 ncalrpc: LRPC-e3a93b87f87112478e ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 857fb1be-084f-4fb5-b59c-4b2c4be5f0cf version: v1.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo b8cadbaf-e84b-46b9-84f2-6f71c03f9e55 version: v1.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 20c40295-8dba-48e6-aebf-3e78ef3bb144 version: v1.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 2513bcbe-6cd4-4348-855e-7efb3c336dd3 version: v1.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 88abcbc3-34ea-76ae-8215-767520655a23 version: v0.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 76c217bc-c8b4-4201-a745-373ad9032b1a version: v1.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 55e6b932-1979-45d6-90c5-7f6270724112 version: v1.0 ncalrpc: LRPC-e3cb73bd75954b49fc ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 4dace966-a243-4450-ae3f-9b7bcb5315b8 version: v1.0 ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 1832bcf6-cab8-41d4-85d2-c9410764f75a version: v1.0 ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo c521facf-09a9-42c5-b155-72388595cbf0 version: v0.0 ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 2c7fd9ce-e706-4b40-b412-953107ef9bb0 version: v0.0 ncalrpc: OLE311A53374B44D7C577BC36596B9B ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e version: v1.0 ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo c605f9fb-f0a3-4e2a-a073-73560f8d9e3e version: v1.0 ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0 version: v1.0 ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 8bfc3be1-6def-4e2d-af74-7c47cd0ade4a version: v1.0 ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo 2d98a740-581d-41b9-aa0d-a88b9d5ce938 version: v1.0 ncacn_np: \\VMI445382\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-9cd613dc35411d1ef9 ncalrpc: actkernel ncalrpc: umpo ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 5824833b-3c1a-4ad2-bdfd-c31d19e23ed2 version: v1.0 ncalrpc: actkernel ncalrpc: umpo bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 3b338d89-6cfa-44b8-847e-531531bc9992 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 8782d3b9-ebbd-4644-a3d8-e8725381919b version: v1.0 ncalrpc: actkernel ncalrpc: umpo 085b0334-e454-4d91-9b8c-4134f9e793f3 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9 version: v1.0 ncalrpc: actkernel ncalrpc: umpo f3f09ffd-fbcf-4291-944d-70ad6e0e73bb version: v1.0 ncalrpc: LRPC-399bbeb95e547cafbe a500d4c6-0dd1-4543-bc0c-d5f93486eaf8 version: v1.0 ncalrpc: LRPC-97af1a493427cd48f8 ncalrpc: LRPC-c70484582a6283d07e ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 161.97.111.22:49665 ncacn_np: \\VMI445382\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-aa55ae687774e79e66 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 161.97.111.22:49665 ncacn_np: \\VMI445382\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-aa55ae687774e79e66 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 161.97.111.22:49665 ncacn_np: \\VMI445382\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-aa55ae687774e79e66 f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 161.97.111.22:49665 ncacn_np: \\VMI445382\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-aa55ae687774e79e66 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncalrpc: LRPC-aa55ae687774e79e66 bf4dc912-e52f-4904-8ebe-9317c1bdd497 version: v1.0 ncalrpc: LRPC-1ab86be3715c0a672d ncalrpc: trkwks ncacn_np: \\VMI445382\pipe\trkwks ncalrpc: LRPC-c803421c9d42eac90e ncalrpc: TSUMRPD_PRINT_DRV_LPC_API ncalrpc: OLED325E1FD375D36DB302F4E501C3F ncalrpc: LRPC-5f4ef5c78612af26dc ncalrpc: LRPC-678baa0adf5aa21c19 0767a036-0d22-48aa-ba69-b619480f38cb version: v1.0 annotation: PcaSvc provider: pcasvc.dll ncalrpc: LRPC-c803421c9d42eac90e ncalrpc: TSUMRPD_PRINT_DRV_LPC_API ncalrpc: OLED325E1FD375D36DB302F4E501C3F ncalrpc: LRPC-5f4ef5c78612af26dc ncalrpc: LRPC-678baa0adf5aa21c19 e40f7b57-7a25-4cd3-a135-7f7d3df9d16b version: v1.0 annotation: Network Connection Broker server endpoint ncalrpc: LRPC-c803421c9d42eac90e ncalrpc: TSUMRPD_PRINT_DRV_LPC_API ncalrpc: OLED325E1FD375D36DB302F4E501C3F ncalrpc: LRPC-5f4ef5c78612af26dc ncalrpc: LRPC-678baa0adf5aa21c19 880fd55e-43b9-11e0-b1a8-cf4edfd72085 version: v1.0 annotation: KAPI Service endpoint ncalrpc: LRPC-c803421c9d42eac90e ncalrpc: TSUMRPD_PRINT_DRV_LPC_API ncalrpc: OLED325E1FD375D36DB302F4E501C3F ncalrpc: LRPC-5f4ef5c78612af26dc ncalrpc: LRPC-678baa0adf5aa21c19 5222821f-d5e2-4885-84f1-5f6185a0ec41 version: v1.0 annotation: Network Connection Broker server endpoint for NCB Reset module ncalrpc: LRPC-5f4ef5c78612af26dc ncalrpc: LRPC-678baa0adf5aa21c19 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-305ec1fe997774719b ncalrpc: LRPC-75f45238f6f1930819 ncalrpc: LRPC-000538415414d343d6 f47433c3-3e9d-4157-aad4-83aa1f5c2d4c version: v1.0 annotation: Fw APIs ncalrpc: LRPC-305ec1fe997774719b ncalrpc: LRPC-75f45238f6f1930819 ncalrpc: LRPC-000538415414d343d6 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-305ec1fe997774719b ncalrpc: LRPC-75f45238f6f1930819 ncalrpc: LRPC-000538415414d343d6 dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-75f45238f6f1930819 ncalrpc: LRPC-000538415414d343d6 df4df73a-c52d-4e3a-8003-8437fdf8302a version: v0.0 annotation: WM_WindowManagerRPC\Server ncalrpc: LRPC-000538415414d343d6 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncacn_np: \\VMI445382\PIPE\W32TIME_ALT ncalrpc: W32TIME_ALT ncalrpc: LRPC-36991e120c05915f4a ncalrpc: OLEA2433C07775A0039ABF5D911E847 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-36991e120c05915f4a ncalrpc: OLEA2433C07775A0039ABF5D911E847 fb9a3757-cff0-4db0-b9fc-bd6c131612fd version: v1.0 annotation: AppInfo ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 58e604e8-9adb-4d2e-a464-3b0683fb1480 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 5f54ce7d-5b79-4175-8584-cb65313a0e98 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 201ef99a-7fa0-444c-9399-19ba84f12a1a version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1 version: v1.0 annotation: Adh APIs ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 c36be077-e14b-4fe9-8abc-e856ef4f048b version: v1.0 annotation: Proxy Manager client server endpoint ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 2e6035b2-e8f1-41a7-a044-656b439c4c34 version: v1.0 annotation: Proxy Manager provider server endpoint ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 a398e520-d59a-4bdd-aa7a-3c1e0303a511 version: v1.0 annotation: IKE/Authip API provider: IKEEXT.DLL ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 0d3c7f20-1c8d-4654-a1b3-51563b298bda version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 b18fbab6-56f8-4702-84e0-41053293a869 version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-481c1e751048e804b0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 29770a8f-829b-4158-90a2-78cd488501f7 version: v1.0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 3a9ef155-691d-4449-8d05-09ad57031823 version: v1.0 ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 161.97.111.22:49667 ncacn_ip_tcp: 161.97.111.22:49666 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 33d84484-3626-47ee-8c6f-e7e98b113be1 version: v2.0 ncalrpc: LRPC-ce5950ffb11276673b ncacn_np: \\VMI445382\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\VMI445382\PIPE\atsvc ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncalrpc: LRPC-a84a07831a9d3f52a9 ncalrpc: senssvc ncalrpc: OLE90CB7FD90B9E8E3B28977B149B1E ncalrpc: IUserProfile2 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 annotation: Group Policy RPC Interface provider: gpsvc.dll ncalrpc: LRPC-3e58bedbe64cb51978 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\VMI445382\PIPE\wkssvc ncalrpc: nlaplg ncalrpc: LRPC-afe1b3856fb9a5525b eb081a0d-10ee-478a-a1dd-50995283e7a8 version: v3.0 annotation: Witness Client Test Interface ncalrpc: LRPC-afe1b3856fb9a5525b f2c9b409-c1c9-4100-8639-d8ab1486694a version: v1.0 annotation: Witness Client Upcall Server ncalrpc: LRPC-afe1b3856fb9a5525b 7aeb6705-3ae6-471a-882d-f39c109edc12 version: v1.0 ncalrpc: LRPC-03ea69b7317f95ad7f e7f76134-9ef5-4949-a2d6-3368cc0988f3 version: v1.0 ncalrpc: LRPC-03ea69b7317f95ad7f b3781086-6a54-489b-91c8-51d067172ab7 version: v1.0 ncalrpc: LRPC-03ea69b7317f95ad7f b37f900a-eae4-4304-a2ab-12bb668c0188 version: v1.0 ncalrpc: LRPC-03ea69b7317f95ad7f abfb6ca3-0c5e-4734-9285-0aee72fe8d1c version: v1.0 ncalrpc: LRPC-03ea69b7317f95ad7f 76f03f96-cdfd-44fc-a22c-64950a001209 version: v1.0 protocol: [MS-PAR]: Print System Asynchronous Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 161.97.111.22:49668 ncalrpc: LRPC-e16f59535cf7baa35f 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 provider: spoolsv.exe ncacn_ip_tcp: 161.97.111.22:49668 ncalrpc: LRPC-e16f59535cf7baa35f ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 161.97.111.22:49668 ncalrpc: LRPC-e16f59535cf7baa35f 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 161.97.111.22:49668 ncalrpc: LRPC-e16f59535cf7baa35f 12345678-1234-abcd-ef00-0123456789ab version: v1.0 protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 161.97.111.22:49668 ncalrpc: LRPC-e16f59535cf7baa35f 1a0d010f-1c33-432c-b0f5-8cf4e8053099 version: v1.0 annotation: IdSegSrv service ncalrpc: LRPC-beff8744fcc124cef3 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncalrpc: LRPC-beff8744fcc124cef3 c503f532-443a-4c69-8300-ccd1fbdb3839 version: v2.0 ncalrpc: OLED680B41C2C567E7842459B3DEAB2 ncalrpc: LRPC-48df36422bed1fc0e7 d2716e94-25cb-4820-bc15-537866578562 version: v1.0 ncalrpc: OLE2278074BA2963824528B9AD689CE ncalrpc: LRPC-6b302402129773a2e0 0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd version: v1.0 ncalrpc: OLE2278074BA2963824528B9AD689CE ncalrpc: LRPC-6b302402129773a2e0 923c9623-db7f-4b34-9e6d-e86580f8ca2a version: v1.0 ncalrpc: OLE2278074BA2963824528B9AD689CE ncalrpc: LRPC-6b302402129773a2e0 8ec21e98-b5ce-4916-a3d6-449fa428a007 version: v0.0 ncalrpc: OLE9AEDF77F6F3B9B209202599253BB ncalrpc: LRPC-c33bbfedb5d13b3ca1 0fc77b1a-95d8-4a2e-a0c0-cff54237462b version: v0.0 ncalrpc: OLE9AEDF77F6F3B9B209202599253BB ncalrpc: LRPC-c33bbfedb5d13b3ca1 b1ef227e-dfa5-421e-82bb-67a6a129c496 version: v0.0 ncalrpc: OLE9AEDF77F6F3B9B209202599253BB ncalrpc: LRPC-c33bbfedb5d13b3ca1 12e65dd8-887f-41ef-91bf-8d816c42c2e7 version: v1.0 annotation: Secure Desktop LRPC interface provider: winlogon.exe ncalrpc: WMsgKRpc18542B50492 4b112204-0e19-11d3-b42b-0000f81feb9f version: v1.0 provider: ssdpsrv.dll ncalrpc: LRPC-59aeea589ec186c907 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-c1dc0357e21c94aac9 ncalrpc: LRPC-c1dc0357e21c94aac9 ncalrpc: LRPC-c1dc0357e21c94aac9 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 161.97.111.22:49671 4c9dbf19-d39e-4bb9-90ee-8f7179b20283 version: v1.0 ncalrpc: LRPC-751a2cbedb08157a92 e38f5360-8572-473e-b696-1b46873beeab version: v1.0 ncalrpc: LRPC-751a2cbedb08157a92 50abc2a4-574d-40b3-9d66-ee4fd5fba076 version: v5.0 protocol: [MS-DNSP]: Domain Name Service (DNS) Server Management provider: dns.exe ncacn_ip_tcp: 161.97.111.22:49670 6b5bdd1e-528c-422c-af8c-a4079be4fe48 version: v1.0 annotation: Remote Fw APIs protocol: [MS-FASP]: Firewall and Advanced Security Protocol provider: FwRemoteSvr.dll ncalrpc: ipsec ncacn_ip_tcp: 161.97.111.22:49669 b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v2.0 annotation: KeyIso ncacn_np: \\VMI445382\pipe\lsass ncalrpc: audit ncalrpc: securityevent ncalrpc: LSARPC_ENDPOINT ncalrpc: lsacap ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: LSA_EAS_ENDPOINT ncalrpc: lsapolicylookup ncalrpc: lsasspirpc ncalrpc: protected_storage ncalrpc: SidKey Local End Point ncalrpc: samss lpc 8fb74744-b2ff-4c00-be0d-9ef9a191fe1b version: v1.0 annotation: Ngc Pop Key Service ncacn_np: \\VMI445382\pipe\lsass ncalrpc: audit ncalrpc: securityevent ncalrpc: LSARPC_ENDPOINT ncalrpc: lsacap ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: LSA_EAS_ENDPOINT ncalrpc: lsapolicylookup ncalrpc: lsasspirpc ncalrpc: protected_storage ncalrpc: SidKey Local End Point ncalrpc: samss lpc 51a227ae-825b-41f2-b4a9-1ac9557a1018 version: v1.0 annotation: Ngc Pop Key Service ncacn_np: \\VMI445382\pipe\lsass ncalrpc: audit ncalrpc: securityevent ncalrpc: LSARPC_ENDPOINT ncalrpc: lsacap ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: LSA_EAS_ENDPOINT ncalrpc: lsapolicylookup ncalrpc: lsasspirpc ncalrpc: protected_storage ncalrpc: SidKey Local End Point ncalrpc: samss lpc 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_np: \\VMI445382\pipe\lsass ncalrpc: audit ncalrpc: securityevent ncalrpc: LSARPC_ENDPOINT ncalrpc: lsacap ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: LSA_EAS_ENDPOINT ncalrpc: lsapolicylookup ncalrpc: lsasspirpc ncalrpc: protected_storage ncalrpc: SidKey Local End Point ncalrpc: samss lpc ncacn_ip_tcp: 161.97.111.22:49675
36163585 | 2024-05-09T13:20:17.033146443 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 Pragma: no-cache Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8 Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Thu, 09 May 2024 13:20:16 GMT Server: Microsoft-IIS/10.0 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" Set-Cookie: plesk-ext-social-login-jwt-session=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJwbGVzayIsImlhdCI6MTcxNTI2MDgxNiwiZGF0YSI6eyJzdGF0ZS1nb29nbGUiOiJjenFSaExmczhNV3Y2OGU2NkVWcGlMT0ZvbWFTOWJXUU1sTUI3bm5JfHJlZGlyZWN0LXBsZXNrPWh0dHBzJTNBJTJGJTJGMTYxLjk3LjExMS4yMiUyRm1vZHVsZXMlMkZzb2NpYWwtbG9naW4lMkZwdWJsaWMlMkZsb2dpbi5waHAlM0Zwcm92aWRlciUzRGdvb2dsZSUyNnN1Y2Nlc3NfcmVkaXJlY3RfdXJsJTNEJTI1MkYiLCJzdGF0ZS1naXRodWIiOiJ5b21TQ05FbTllN1hsaWVrcjFwUzBoaFdVSERZb3ZoQ09weFY5bWZEfHJlZGlyZWN0LXBsZXNrPWh0dHBzJTNBJTJGJTJGMTYxLjk3LjExMS4yMiUyRm1vZHVsZXMlMkZzb2NpYWwtbG9naW4lMkZwdWJsaWMlMkZsb2dpbi5waHAlM0Zwcm92aWRlciUzRGdpdGh1YiUyNnN1Y2Nlc3NfcmVkaXJlY3RfdXJsJTNEJTI1MkYiLCJzdGF0ZS1mYWNlYm9vayI6InBlQlhLRzdTNGprWXBoN3ZZUm84cXZkazJHOFN3NDg1T3hqTkdUXC9SfHJlZGlyZWN0LXBsZXNrPWh0dHBzJTNBJTJGJTJGMTYxLjk3LjExMS4yMiUyRm1vZHVsZXMlMkZzb2NpYWwtbG9naW4lMkZwdWJsaWMlMkZsb2dpbi5waHAlM0Zwcm92aWRlciUzRGZhY2Vib29rJTI2c3VjY2Vzc19yZWRpcmVjdF91cmwlM0QlMjUyRiJ9fQ.s2Az3uiGTK_x4_6Ux8OG-ws-JoyVjMG7TE1fPZvO2y8; path=/; secure; HttpOnly X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Powered-By: ASP.NET X-Powered-By: ARR/3.0 X-Powered-By: ASP.NET Date: Thu, 09 May 2024 13:20:16 GMT
Certificate: Data: Version: 3 (0x2) Serial Number: 03:44:9d:92:fe:7a:df:2d:3c:80:4a:b0:48:a2:cd:96:53:3b Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Mar 30 18:43:09 2024 GMT Not After : Jun 28 18:43:08 2024 GMT Subject: CN=awesome-grothendieck.161-97-111-22.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:d9:7b:2e:54:a5:6f:92:32:62:51:d7:f7:3b: ec:67:e3:bd:f2:66:60:db:74:b9:89:41:20:63:68: 1f:02:80:2b:6a:59:e3:eb:f9:ff:a7:ad:a7:29:70: aa:e7:aa:84:9a:2e:4f:78:66:e3:c1:08:b9:22:52: ff:35:9f:8c:3f:5a:47:4e:74:32:76:90:75:12:33: d1:48:18:19:43:34:43:82:12:ab:ca:60:ae:c1:23: e0:2d:a9:3c:0a:1c:da:db:24:a5:b5:06:d9:0e:63: 5d:3c:ce:82:c9:91:f3:32:2a:7d:6e:52:66:e1:62: 05:a6:61:bb:2b:c3:9c:16:67:ba:1f:ab:3e:32:b3: 0e:7d:d4:67:2f:8f:b4:ed:8a:ee:2f:53:6b:67:a1: 44:9d:c1:fe:b8:cd:11:5b:4e:ca:55:c8:4a:9f:d5: 3b:03:0f:92:e8:64:8d:1b:19:d6:91:06:8f:7e:ba: 0c:19:d9:5a:6b:f8:73:ae:cd:3c:26:6b:52:3e:55: 40:f8:56:35:78:77:b3:31:61:06:ad:7b:41:e4:e4: a4:d7:b0:1a:f2:a0:d8:82:6e:14:44:9d:3b:f4:81: dc:77:62:9d:12:24:40:e8:43:f3:28:a8:29:7f:35: ca:e9:a2:c7:31:18:bc:b4:40:1a:f8:bc:98:75:01: e7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: C1:5B:C4:9B:9A:24:78:AD:BA:2B:96:93:8C:DB:8A:35:BE:BE:C0:E7 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:awesome-grothendieck.161-97-111-22.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Mar 30 19:43:09.996 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:6B:E4:19:7A:27:FA:49:74:83:31:13:E2: 98:80:6A:92:2D:76:92:68:1E:3D:7A:4F:7A:DB:D3:B6: 85:6D:86:CB:02:21:00:D7:4E:F6:B7:0A:56:1F:6B:D3: E1:15:58:2D:7E:56:C1:8D:AB:76:8F:13:8B:B2:63:7D: 80:00:61:96:97:B4:87 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Mar 30 19:43:10.009 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:12:21:54:CD:A8:F9:BB:6D:70:7C:6C:9C: 3C:F9:30:1C:D8:54:E3:71:E3:02:93:0D:A9:81:1A:C4: 27:53:CB:B1:02:21:00:F1:0E:E3:66:EF:F9:B3:CC:A7: 41:D4:D5:B3:C7:50:73:E3:5D:5D:19:9B:30:0D:06:32: 0C:91:2D:D7:40:EA:EC Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:d4:e8:02:34:e3:22:bb:c6:c3:10:66:b8:d2:10:d2:40:c1: d3:43:36:fd:fb:5b:f8:98:b7:02:8b:22:07:d3:3b:74:10:35: 3a:90:22:3c:ab:4b:4c:3b:af:e2:7b:50:4f:85:fb:48:e0:a6: 37:b8:ab:71:5b:48:bd:15:d6:35:21:97:f0:50:09:bc:79:75: a5:41:bb:4e:36:5c:56:92:5d:3e:e1:a3:86:67:0b:74:7a:c1: 4e:1f:1f:92:02:01:9b:83:3d:a4:c8:b4:73:ea:dc:ce:f0:b4: 65:60:05:df:a2:bd:8a:02:fc:0c:0c:1f:5a:d7:d1:7a:6f:16: 27:64:aa:c2:2d:a4:27:3e:39:e9:8d:e4:f9:6e:ac:50:21:35: 16:d9:ad:4f:12:e7:5b:1c:92:44:91:bb:11:22:3c:dd:3f:19: 59:f4:75:36:f8:59:4a:af:46:2d:7b:7f:3b:fd:ab:d1:0b:c5: 9b:68:59:03:75:f3:b7:39:87:63:35:18:53:c5:80:5c:02:88: b2:4b:7f:ab:f5:1e:93:4a:ea:e0:f9:46:e7:ee:a3:82:8c:25: 7f:10:73:c2:0e:67:01:fc:fc:d5:d5:d1:b4:84:58:c3:05:07: 53:2c:82:47:dd:2c:5c:02:e2:5b:6b:5d:6e:57:cd:75:7f:22: c3:36:22:83
1702712738 | 2024-04-25T12:35:14.841441445 / tcp
SMB Status: Authentication: enabled SMB Version: 1 OS: Windows Server 2016 Datacenter 14393 Software: Windows Server 2016 Datacenter 6.3 Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
972792023 | 2024-04-30T09:10:17.162877465 / tcp
220 VMI445382.home ESMTP MailEnable Service, Version: 10.27-- ready at 04/30/24 02:10:07 250-home [224.132.116.159], this server offers 4 extensions 250-AUTH LOGIN 250-SIZE 40960000 250-HELP 250 AUTH=LOGIN
Certificate: Data: Version: 3 (0x2) Serial Number: 24246375 (0x171f867) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Sep 10 11:39:51 2020 GMT Not After : Sep 10 11:39:51 2021 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cf:5b:0a:c3:45:93:01:0e:d2:00:51:44:93:22: 55:cb:c1:62:e2:56:3c:73:45:68:e0:00:31:da:6a: 59:67:be:f7:2c:11:cd:af:fb:ae:66:3c:f8:81:e2: ff:87:3a:1d:ef:17:1c:ca:41:40:9e:61:97:ea:83: 94:ff:4f:8f:02:91:74:1e:e2:58:b0:7f:83:cf:b4: 85:8f:66:8d:3a:e6:82:a5:93:d5:bd:8b:30:26:99: c5:9c:a6:e1:ab:08:4f:73:28:10:3f:28:dd:8b:39: 01:ae:ee:f0:7d:14:a6:65:f1:28:02:75:10:9e:00: 5e:5e:b3:36:64:1d:ba:9f:37:f6:4c:39:12:b5:24: f4:d0:ed:79:74:f9:64:3d:dd:69:3e:27:4c:32:e6: 66:b9:21:b1:9f:c7:d9:26:78:da:74:80:e1:db:4b: 71:7e:90:81:07:7c:c6:be:2b:1d:df:7f:d8:91:12: 35:fa:11:b9:b6:82:8f:ce:ea:84:db:d9:a7:79:2e: 96:d1:bd:cc:51:03:92:7b:8e:32:67:e5:e2:39:80: 7c:1b:30:2e:dd:09:29:15:ef:6f:35:8a:76:ee:86: 7c:15:ae:59:56:5f:31:1b:ae:85:cc:8a:e2:4d:25: b3:fd:65:a9:33:ba:19:1c:8d:80:c9:27:cc:76:4f: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF X509v3 Authority Key Identifier: keyid:8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:01:71:F8:67 Signature Algorithm: sha256WithRSAEncryption Signature Value: cd:74:87:3c:7b:a5:e5:d4:a4:45:de:58:ce:e5:1d:b1:9a:22: 23:81:56:03:62:3a:54:e0:d9:78:14:cb:43:9b:e4:bc:c7:ad: 7b:31:ff:35:5e:65:8e:98:00:93:bc:96:d1:f3:c9:a5:23:3c: 46:f3:ab:63:47:bc:ea:37:08:76:da:92:54:2a:90:3f:0e:a8: 59:bb:c0:ab:98:22:b5:7c:ca:9c:af:c6:cf:b7:c2:26:09:e6: e4:24:da:73:3a:ff:7c:6b:7b:35:f1:30:96:60:13:37:69:2d: 72:39:fa:7b:97:be:99:32:0b:d5:5d:df:7b:03:02:11:02:ac: d4:a0:8e:4a:dc:54:d9:cf:ae:1c:bb:ab:f7:72:92:03:a7:f6: bc:f2:0b:3f:03:87:79:00:32:c9:96:3a:e3:5a:65:2d:03:7d: ce:1c:ff:ea:60:ac:2c:0e:62:65:0a:51:a7:ec:d6:6f:49:79: 2e:2a:f4:6c:80:95:e0:8f:d0:cc:5f:d3:3e:e6:b1:16:57:2f: 2c:02:2f:eb:d8:57:c7:6d:fb:aa:a6:5b:11:b6:01:6f:b9:a2: 47:91:bc:e0:fa:21:80:be:dc:b4:21:42:d5:4f:3d:8b:40:65: 7d:41:82:b4:f2:34:73:f4:51:09:b6:ee:76:5a:c0:62:2f:c3: 56:56:62:e0
-471102630 | 2024-05-05T07:37:40.932836995 / tcp
+OK Welcome to MailEnable POP3 Server +OK Capability list follows TOP USER UIDL .
Certificate: Data: Version: 3 (0x2) Serial Number: 24246375 (0x171f867) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Sep 10 11:39:51 2020 GMT Not After : Sep 10 11:39:51 2021 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cf:5b:0a:c3:45:93:01:0e:d2:00:51:44:93:22: 55:cb:c1:62:e2:56:3c:73:45:68:e0:00:31:da:6a: 59:67:be:f7:2c:11:cd:af:fb:ae:66:3c:f8:81:e2: ff:87:3a:1d:ef:17:1c:ca:41:40:9e:61:97:ea:83: 94:ff:4f:8f:02:91:74:1e:e2:58:b0:7f:83:cf:b4: 85:8f:66:8d:3a:e6:82:a5:93:d5:bd:8b:30:26:99: c5:9c:a6:e1:ab:08:4f:73:28:10:3f:28:dd:8b:39: 01:ae:ee:f0:7d:14:a6:65:f1:28:02:75:10:9e:00: 5e:5e:b3:36:64:1d:ba:9f:37:f6:4c:39:12:b5:24: f4:d0:ed:79:74:f9:64:3d:dd:69:3e:27:4c:32:e6: 66:b9:21:b1:9f:c7:d9:26:78:da:74:80:e1:db:4b: 71:7e:90:81:07:7c:c6:be:2b:1d:df:7f:d8:91:12: 35:fa:11:b9:b6:82:8f:ce:ea:84:db:d9:a7:79:2e: 96:d1:bd:cc:51:03:92:7b:8e:32:67:e5:e2:39:80: 7c:1b:30:2e:dd:09:29:15:ef:6f:35:8a:76:ee:86: 7c:15:ae:59:56:5f:31:1b:ae:85:cc:8a:e2:4d:25: b3:fd:65:a9:33:ba:19:1c:8d:80:c9:27:cc:76:4f: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF X509v3 Authority Key Identifier: keyid:8A:AF:8E:1F:86:AE:C2:F2:DD:A6:82:C6:5E:B5:D3:8D:55:37:02:FF DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:01:71:F8:67 Signature Algorithm: sha256WithRSAEncryption Signature Value: cd:74:87:3c:7b:a5:e5:d4:a4:45:de:58:ce:e5:1d:b1:9a:22: 23:81:56:03:62:3a:54:e0:d9:78:14:cb:43:9b:e4:bc:c7:ad: 7b:31:ff:35:5e:65:8e:98:00:93:bc:96:d1:f3:c9:a5:23:3c: 46:f3:ab:63:47:bc:ea:37:08:76:da:92:54:2a:90:3f:0e:a8: 59:bb:c0:ab:98:22:b5:7c:ca:9c:af:c6:cf:b7:c2:26:09:e6: e4:24:da:73:3a:ff:7c:6b:7b:35:f1:30:96:60:13:37:69:2d: 72:39:fa:7b:97:be:99:32:0b:d5:5d:df:7b:03:02:11:02:ac: d4:a0:8e:4a:dc:54:d9:cf:ae:1c:bb:ab:f7:72:92:03:a7:f6: bc:f2:0b:3f:03:87:79:00:32:c9:96:3a:e3:5a:65:2d:03:7d: ce:1c:ff:ea:60:ac:2c:0e:62:65:0a:51:a7:ec:d6:6f:49:79: 2e:2a:f4:6c:80:95:e0:8f:d0:cc:5f:d3:3e:e6:b1:16:57:2f: 2c:02:2f:eb:d8:57:c7:6d:fb:aa:a6:5b:11:b6:01:6f:b9:a2: 47:91:bc:e0:fa:21:80:be:dc:b4:21:42:d5:4f:3d:8b:40:65: 7d:41:82:b4:f2:34:73:f4:51:09:b6:ee:76:5a:c0:62:2f:c3: 56:56:62:e0
-1437060235 | 2024-05-06T03:25:56.8281913306 / tcp
MariaDB: Error Message: Host '224.29.5.228' is not allowed to connect to this MariaDB server Error Code: 1130
-1764541555 | 2024-05-05T01:03:16.7783263389 / tcp
Remote Desktop Protocol \x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00 Remote Desktop Protocol NTLM Info: OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607) OS Build: 10.0.14393 Target Name: VMI445382 NetBIOS Domain Name: VMI445382 NetBIOS Computer Name: VMI445382 DNS Domain Name: vmi445382 FQDN: vmi445382 - Otheruser SES Password Sign-in options
Certificate: Data: Version: 3 (0x2) Serial Number: 12:1c:2b:a3:f0:12:29:93:41:c9:24:d2:62:4e:20:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=vmi445382 Validity Not Before: Dec 31 10:39:10 2023 GMT Not After : Jul 1 10:39:10 2024 GMT Subject: CN=vmi445382 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:e1:dd:2e:fa:ac:c6:a9:65:45:7f:13:92:37:71: 42:99:dd:47:fe:56:ab:bb:cb:02:9a:26:f8:e0:f7: 0b:a6:66:a5:37:58:e7:93:ab:db:dd:b9:b3:54:2d: d7:1b:07:7b:ce:e0:0c:55:8a:d4:df:62:47:a8:3b: bb:15:02:5d:d9:53:f0:66:7b:c2:45:2a:a4:27:18: 61:3a:97:df:bb:d9:df:40:36:f7:af:53:14:71:65: 32:d8:55:d3:e7:be:c3:dd:f4:44:55:2f:f2:17:c6: b3:9d:9c:3b:2f:88:e6:cb:db:77:11:48:86:1c:e8: e8:1c:6d:8c:24:20:e3:42:33:61:dd:be:45:61:fe: be:e1:5e:8d:4c:1d:db:e4:24:16:f2:25:5a:e5:9d: d6:91:5d:7d:d8:2f:be:b6:30:c2:8f:14:1a:15:38: cd:53:ec:97:99:09:b6:62:86:53:05:d1:bf:49:e5: ec:4d:a9:4b:0d:d2:4c:35:1b:4f:75:56:97:cc:77: 1b:20:4c:23:ed:ee:1c:33:c8:e9:9b:5c:90:19:19: 4b:e9:12:fb:d3:9f:4b:3a:1f:17:33:30:ea:23:6a: e8:55:f5:11:8c:fc:77:22:9b:b9:ad:c9:42:1f:8b: 9e:34:6a:b1:24:c4:0f:87:4a:8a:20:36:01:65:4f: 4c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Key Usage: Key Encipherment, Data Encipherment Signature Algorithm: sha256WithRSAEncryption Signature Value: d5:28:d2:ae:16:ed:52:01:53:65:cf:cc:4e:5e:91:e6:ef:5a: 29:0e:3e:25:c6:7f:87:68:8d:5e:c7:23:91:c1:df:f8:ba:a2: 82:66:bc:0c:28:37:36:e7:5d:81:49:95:59:c0:ce:b0:44:c2: 22:70:16:99:bc:57:5a:fb:2e:af:95:5c:37:6b:38:20:19:af: 88:7d:58:0f:24:31:96:0e:61:f7:24:62:6b:7c:19:4c:24:52: f8:b6:ef:45:2c:b1:46:53:ae:c3:f3:71:dd:7e:01:ff:0d:4a: d8:9a:ee:2f:1b:42:fc:27:c9:9e:e2:35:13:94:70:2d:36:87: 17:22:7a:13:be:56:15:0b:d0:fb:65:14:2d:e1:45:be:29:4d: 80:f1:14:98:25:1a:6f:a8:4d:11:eb:59:df:a4:a9:4a:f1:e8: 0e:bb:4a:c1:9a:13:b2:bd:d3:67:0a:a9:88:24:c4:02:7d:d9: 97:66:9c:36:7d:95:86:78:4f:14:2e:2f:60:75:e6:09:e3:c6: 2d:b4:19:3a:de:28:67:04:82:20:67:3e:4e:71:08:f8:ec:dd: e9:04:96:05:c0:8b:a4:4d:4f:14:0f:47:4c:52:8c:47:26:f8: 94:a8:80:96:48:a3:c3:7e:10:59:95:c1:93:25:94:93:9f:a4: 76:54:99:cf
1489525118 | 2024-04-27T01:37:10.6702135985 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Sat, 27 Apr 2024 01:37:10 GMT Connection: close Content-Length: 315 WinRM NTLM Info: OS: Windows Server 2016 (version 1607) OS Build: 10.0.14393 Target Name: VMI445382 NetBIOS Domain Name: VMI445382 NetBIOS Computer Name: VMI445382 DNS Domain Name: vmi445382 FQDN: vmi445382
-1743848082 | 2024-04-17T19:36:08.1693878443 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 Pragma: no-cache Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8 Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Wed, 17 Apr 2024 19:36:07 GMT Server: Microsoft-IIS/10.0 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Set-Cookie: plesk-ext-social-login-jwt-session=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJwbGVzayIsImlhdCI6MTcxMzM4MjU2NywiZGF0YSI6eyJzdGF0ZS1nb29nbGUiOiJYZFJsdU95RE1vUHpVQU5NcTZlRUNrUmRnczlHenRhdFlLZlVxeWFifHJlZGlyZWN0LXBsZXNrPWh0dHBzJTNBJTJGJTJGMTYxLjk3LjExMS4yMiUyRm1vZHVsZXMlMkZzb2NpYWwtbG9naW4lMkZwdWJsaWMlMkZsb2dpbi5waHAlM0Zwcm92aWRlciUzRGdvb2dsZSUyNnN1Y2Nlc3NfcmVkaXJlY3RfdXJsJTNEJTI1MkYiLCJzdGF0ZS1naXRodWIiOiI3UFVLcUQ0Rjk5dE1HcDBHaXN0ZWlCXC9DaG41ZWw2Q0JFWU9YbGh3XC98cmVkaXJlY3QtcGxlc2s9aHR0cHMlM0ElMkYlMkYxNjEuOTcuMTExLjIyJTJGbW9kdWxlcyUyRnNvY2lhbC1sb2dpbiUyRnB1YmxpYyUyRmxvZ2luLnBocCUzRnByb3ZpZGVyJTNEZ2l0aHViJTI2c3VjY2Vzc19yZWRpcmVjdF91cmwlM0QlMjUyRiIsInN0YXRlLWZhY2Vib29rIjoiXC9FMVU2MklaTXM2N05UT3p4R2oydU0yb0dpRGxxRUcxVEY4blhzS1l8cmVkaXJlY3QtcGxlc2s9aHR0cHMlM0ElMkYlMkYxNjEuOTcuMTExLjIyJTJGbW9kdWxlcyUyRnNvY2lhbC1sb2dpbiUyRnB1YmxpYyUyRmxvZ2luLnBocCUzRnByb3ZpZGVyJTNEZmFjZWJvb2slMjZzdWNjZXNzX3JlZGlyZWN0X3VybCUzRCUyNTJGIn19.Ng09yp45TIYsJpCnSU5AfomrLn6MqPSV16ggskDWmrI; path=/; secure; HttpOnly X-Powered-By: ASP.NET Date: Wed, 17 Apr 2024 19:36:07 GMT
Certificate: Data: Version: 3 (0x2) Serial Number: 03:44:9d:92:fe:7a:df:2d:3c:80:4a:b0:48:a2:cd:96:53:3b Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Mar 30 18:43:09 2024 GMT Not After : Jun 28 18:43:08 2024 GMT Subject: CN=awesome-grothendieck.161-97-111-22.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:d9:7b:2e:54:a5:6f:92:32:62:51:d7:f7:3b: ec:67:e3:bd:f2:66:60:db:74:b9:89:41:20:63:68: 1f:02:80:2b:6a:59:e3:eb:f9:ff:a7:ad:a7:29:70: aa:e7:aa:84:9a:2e:4f:78:66:e3:c1:08:b9:22:52: ff:35:9f:8c:3f:5a:47:4e:74:32:76:90:75:12:33: d1:48:18:19:43:34:43:82:12:ab:ca:60:ae:c1:23: e0:2d:a9:3c:0a:1c:da:db:24:a5:b5:06:d9:0e:63: 5d:3c:ce:82:c9:91:f3:32:2a:7d:6e:52:66:e1:62: 05:a6:61:bb:2b:c3:9c:16:67:ba:1f:ab:3e:32:b3: 0e:7d:d4:67:2f:8f:b4:ed:8a:ee:2f:53:6b:67:a1: 44:9d:c1:fe:b8:cd:11:5b:4e:ca:55:c8:4a:9f:d5: 3b:03:0f:92:e8:64:8d:1b:19:d6:91:06:8f:7e:ba: 0c:19:d9:5a:6b:f8:73:ae:cd:3c:26:6b:52:3e:55: 40:f8:56:35:78:77:b3:31:61:06:ad:7b:41:e4:e4: a4:d7:b0:1a:f2:a0:d8:82:6e:14:44:9d:3b:f4:81: dc:77:62:9d:12:24:40:e8:43:f3:28:a8:29:7f:35: ca:e9:a2:c7:31:18:bc:b4:40:1a:f8:bc:98:75:01: e7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: C1:5B:C4:9B:9A:24:78:AD:BA:2B:96:93:8C:DB:8A:35:BE:BE:C0:E7 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:awesome-grothendieck.161-97-111-22.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Mar 30 19:43:09.996 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:6B:E4:19:7A:27:FA:49:74:83:31:13:E2: 98:80:6A:92:2D:76:92:68:1E:3D:7A:4F:7A:DB:D3:B6: 85:6D:86:CB:02:21:00:D7:4E:F6:B7:0A:56:1F:6B:D3: E1:15:58:2D:7E:56:C1:8D:AB:76:8F:13:8B:B2:63:7D: 80:00:61:96:97:B4:87 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Mar 30 19:43:10.009 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:12:21:54:CD:A8:F9:BB:6D:70:7C:6C:9C: 3C:F9:30:1C:D8:54:E3:71:E3:02:93:0D:A9:81:1A:C4: 27:53:CB:B1:02:21:00:F1:0E:E3:66:EF:F9:B3:CC:A7: 41:D4:D5:B3:C7:50:73:E3:5D:5D:19:9B:30:0D:06:32: 0C:91:2D:D7:40:EA:EC Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:d4:e8:02:34:e3:22:bb:c6:c3:10:66:b8:d2:10:d2:40:c1: d3:43:36:fd:fb:5b:f8:98:b7:02:8b:22:07:d3:3b:74:10:35: 3a:90:22:3c:ab:4b:4c:3b:af:e2:7b:50:4f:85:fb:48:e0:a6: 37:b8:ab:71:5b:48:bd:15:d6:35:21:97:f0:50:09:bc:79:75: a5:41:bb:4e:36:5c:56:92:5d:3e:e1:a3:86:67:0b:74:7a:c1: 4e:1f:1f:92:02:01:9b:83:3d:a4:c8:b4:73:ea:dc:ce:f0:b4: 65:60:05:df:a2:bd:8a:02:fc:0c:0c:1f:5a:d7:d1:7a:6f:16: 27:64:aa:c2:2d:a4:27:3e:39:e9:8d:e4:f9:6e:ac:50:21:35: 16:d9:ad:4f:12:e7:5b:1c:92:44:91:bb:11:22:3c:dd:3f:19: 59:f4:75:36:f8:59:4a:af:46:2d:7b:7f:3b:fd:ab:d1:0b:c5: 9b:68:59:03:75:f3:b7:39:87:63:35:18:53:c5:80:5c:02:88: b2:4b:7f:ab:f5:1e:93:4a:ea:e0:f9:46:e7:ee:a3:82:8c:25: 7f:10:73:c2:0e:67:01:fc:fc:d5:d5:d1:b4:84:58:c3:05:07: 53:2c:82:47:dd:2c:5c:02:e2:5b:6b:5d:6e:57:cd:75:7f:22: c3:36:22:83
-903098292 | 2024-05-07T19:30:24.6654428880 / tcp
HTTP/1.1 303 See Other Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 Pragma: no-cache Content-Type: text/html; charset=UTF-8 Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Tue, 07 May 2024 19:30:24 GMT Location: http://161.97.111.22/login.php?success_redirect_url=%2F Server: Microsoft-IIS/10.0 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Powered-By: ASP.NET Date: Tue, 07 May 2024 19:30:24 GMT Content-Length: 0