1893473897 | 2024-05-04T03:41:46.934710
80 /
tcp
HTTP/1.1 302 Found
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: http://www.178.251.31.58/
Server: Microsoft-IIS/8.5
X-Powered-By: VERHUISENGINE (Verhuisvriend.nl)
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 04 May 2024 03:36:36 GMT
Content-Length: 142
-1613480273 | 2024-05-04T23:55:06.660451
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 178.251.31.58:49152
ncalrpc: WindowsShutdown
ncacn_np: \\SRVWEB12\PIPE\InitShutdown
ncalrpc: WMsgKRpc0C96A0
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\SRVWEB12\PIPE\InitShutdown
ncalrpc: WMsgKRpc0C96A0
ncalrpc: WMsgKRpc0CBF61
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-365f67f53865e0e3d0
ncacn_np: \\SRVWEB12\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-2981a5fff40fba5487
ncalrpc: actkernel
ncalrpc: umpo
697dcda9-3ba9-4eb2-9247-e11f1901b0d2
version: v1.0
ncalrpc: LRPC-365f67f53865e0e3d0
ncacn_np: \\SRVWEB12\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-2981a5fff40fba5487
ncalrpc: actkernel
ncalrpc: umpo
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-2981a5fff40fba5487
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-3e1a7b9d6c11ddc0c5
ncacn_np: \\SRVWEB12\PIPE\srvsvc
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
2d98a740-581d-41b9-aa0d-a88b9d5ce938
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
3b338d89-6cfa-44b8-847e-531531bc9992
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
8782d3b9-ebbd-4644-a3d8-e8725381919b
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
085b0334-e454-4d91-9b8c-4134f9e793f3
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc0CBF61
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
ncalrpc: LRPC-d3a95411a9896b6337
ncacn_ip_tcp: 178.251.31.58:49153
ncacn_np: \\SRVWEB12\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: LRPC-d3a95411a9896b6337
ncacn_ip_tcp: 178.251.31.58:49153
ncacn_np: \\SRVWEB12\pipe\eventlog
ncalrpc: eventlog
abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
version: v1.0
annotation: Wcm Service
ncalrpc: LRPC-d3a95411a9896b6337
ncacn_ip_tcp: 178.251.31.58:49153
ncacn_np: \\SRVWEB12\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: LRPC-d3a95411a9896b6337
ncacn_ip_tcp: 178.251.31.58:49153
ncacn_np: \\SRVWEB12\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 178.251.31.58:49153
ncacn_np: \\SRVWEB12\pipe\eventlog
ncalrpc: eventlog
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-3e1a7b9d6c11ddc0c5
ncacn_np: \\SRVWEB12\PIPE\srvsvc
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
version: v1.0
annotation: Adh APIs
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 178.251.31.58:49154
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\SRVWEB12\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLE304979A96DB55018F6C2304E349C
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
annotation: Group Policy RPC Interface
provider: gpsvc.dll
ncalrpc: LRPC-34aca89721952ec09a
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncacn_np: \\SRVWEB12\PIPE\W32TIME_ALT
ncalrpc: W32TIME_ALT
ncalrpc: LRPC-a3762cd73a520f7f9e
ncalrpc: OLE737B750C0D2C92C5415E2E5AD3BC
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-a3762cd73a520f7f9e
ncalrpc: OLE737B750C0D2C92C5415E2E5AD3BC
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-09cceb00d7757b6873
ncalrpc: LRPC-c4f76a25816753db90
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-09cceb00d7757b6873
ncalrpc: LRPC-c4f76a25816753db90
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-09cceb00d7757b6873
ncalrpc: LRPC-c4f76a25816753db90
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-c4f76a25816753db90
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\SRVWEB12\PIPE\wkssvc
ncalrpc: LRPC-23e96b527da82fe6f2
ncalrpc: DNSResolver
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: LRPC-23e96b527da82fe6f2
ncalrpc: DNSResolver
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: LRPC-23e96b527da82fe6f2
ncalrpc: DNSResolver
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 178.251.31.58:49157
ncacn_ip_tcp: 178.251.31.58:49155
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRVWEB12\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 178.251.31.58:49157
ncacn_ip_tcp: 178.251.31.58:49155
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRVWEB12\pipe\lsass
0b1c2170-5732-4e0e-8cd3-d9b16f3b84d7
version: v0.0
annotation: RemoteAccessCheck
protocol: [MS-RAA]: Remote Authorization API Protocol
ncacn_ip_tcp: 178.251.31.58:49155
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRVWEB12\pipe\lsass
ncacn_ip_tcp: 178.251.31.58:49155
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRVWEB12\pipe\lsass
76f03f96-cdfd-44fc-a22c-64950a001209
version: v1.0
protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 178.251.31.58:49156
ncalrpc: LRPC-b50c6ac4e2c5a93a98
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
provider: spoolsv.exe
ncacn_ip_tcp: 178.251.31.58:49156
ncalrpc: LRPC-b50c6ac4e2c5a93a98
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 178.251.31.58:49156
ncalrpc: LRPC-b50c6ac4e2c5a93a98
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 178.251.31.58:49156
ncalrpc: LRPC-b50c6ac4e2c5a93a98
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 178.251.31.58:49156
ncalrpc: LRPC-b50c6ac4e2c5a93a98
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 178.251.31.58:49174
f763c91c-2ab1-47fa-868f-7de7efd42194
version: v1.0
annotation: VM Allow-List Provider RPC
ncalrpc: RdvVmAllowListRpc
ncalrpc: OLE4E2717DDF33CFD408ABF92DBB2C6
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-cc1187c170e0bf2f68
ncalrpc: LRPC-cc1187c170e0bf2f68
ncalrpc: LRPC-cc1187c170e0bf2f68
b2507c30-b126-494a-92ac-ee32b6eeb039
version: v1.0
ncalrpc: LRPC-accd20afbe520d40ee
143479390 | 2024-04-27T12:53:23.357517
443 /
tcp
HTTP/1.1 302 Found
Cache-Control: no-cache
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Location: https://www.178.251.31.58/
Server: Microsoft-IIS/8.5
X-Powered-By: VERHUISENGINE (Verhuisvriend.nl)
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 27 Apr 2024 12:48:15 GMT
Content-Length: 143
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
89:90:e4:ce:15:50:67:6c:a6:cc:c5:91:0c:1c:51:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Mar 26 00:00:00 2021 GMT
Not After : Mar 26 23:59:59 2022 GMT
Subject: CN=*.verhuisvriend.nl
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:cb:90:30:7f:01:2b:9f:6b:4d:66:06:66:74:8d:
51:b7:91:d3:80:6e:98:56:f5:cc:b0:07:2c:6e:3f:
6c:ad:5b:a4:60:5b:cf:aa:6a:7c:72:ae:67:6c:7c:
ea:de:a9:c9:28:86:76:07:fb:a9:be:a9:ff:59:68:
12:1c:77:3a:ac:aa:15:7d:a7:97:2e:af:e9:f4:00:
20:eb:43:97:11:53:44:6c:6d:67:9c:46:eb:80:17:
0b:88:fe:23:4c:77:2e:6d:c3:3f:fd:c6:6e:2a:91:
3a:84:ad:49:3b:81:65:70:ba:9d:38:5c:11:86:9e:
3e:ce:cc:19:22:cf:95:bb:d8:5c:f3:69:a0:bb:e2:
4c:98:3a:3d:fc:84:7d:46:6e:ef:32:0f:c5:ed:f7:
95:63:ab:eb:00:a3:86:61:1a:39:64:67:e2:8a:24:
4a:12:20:f3:e4:6f:59:1c:d7:75:ed:48:3f:53:a7:
4a:66:3a:3d:db:60:f2:2b:87:64:55:23:c8:2f:dc:
c1:7c:f5:01:8e:20:5b:6f:ae:15:89:23:93:c0:80:
6a:c9:ba:10:5c:c5:12:61:be:99:a3:41:5c:2f:1f:
b3:89:59:79:98:50:f2:23:7d:c6:6b:2c:a9:1b:fe:
25:74:52:72:83:29:7c:f5:0c:25:89:88:3a:2a:49:
5f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
EA:04:5C:97:65:86:A3:8C:5E:6C:58:ED:3F:29:DA:DA:24:DF:09:17
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
X509v3 Subject Alternative Name:
DNS:*.verhuisvriend.nl, DNS:verhuisvriend.nl
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
Timestamp : Mar 26 20:27:44.744 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:0C:8D:1F:14:2D:54:98:E7:C7:7A:D4:6C:
F3:F7:35:38:FC:3C:8A:71:6E:3A:16:EB:F7:D4:32:39:
05:E4:D6:83:02:20:00:97:D2:41:9F:09:B7:D6:86:D1:
16:AC:19:65:96:47:8A:0E:5F:E0:DC:EC:83:9F:6C:14:
4B:9D:D6:BA:74:BF
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
Timestamp : Mar 26 20:27:44.679 2021 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:5C:CB:54:C1:CD:2A:31:42:70:35:13:C8:
3B:1D:F0:05:1E:E2:1B:3C:27:C0:D8:C1:27:03:9E:CC:
48:3A:DE:6C:02:20:3A:B8:80:AD:8A:53:CA:CC:54:D5:
8F:B0:0F:E6:77:14:AC:F4:CB:25:FA:0C:C0:85:5D:8E:
BC:46:66:91:11:57
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
38:84:02:da:a1:85:48:99:11:ee:4d:ce:fb:b7:7d:09:a5:28:
f7:7f:e9:4d:d6:59:17:a4:6c:ca:c5:8a:ca:3a:68:d8:b4:79:
ec:97:b0:94:cf:56:a4:ba:fd:aa:9f:94:13:ed:38:7f:e4:3d:
1d:1d:fb:5f:d9:80:aa:9e:9f:56:e6:0e:60:79:fd:2d:9c:02:
20:3c:a7:7b:c1:50:2a:2f:52:5c:fc:78:0c:5b:85:b4:56:7f:
6e:11:07:ab:cd:22:ce:cb:6d:73:43:d3:ac:3f:e4:57:dd:ba:
f1:29:08:f1:c8:cc:16:db:39:50:19:0b:e8:99:4b:ee:9a:aa:
19:50:46:4e:37:d1:fc:21:30:8e:aa:df:82:4a:a9:02:c1:ca:
96:ea:2e:51:45:4d:57:82:85:3e:5b:e3:64:aa:73:d5:29:8d:
4e:5e:3a:32:ee:bb:9b:a5:6d:1e:92:c0:b3:28:cb:5e:9b:40:
3a:b2:42:9d:bb:df:b9:40:e2:ee:fe:c4:eb:57:0f:dd:13:c7:
5b:f0:12:79:6c:90:8f:60:97:26:38:b4:45:69:0b:c6:03:88:
ba:e4:6b:36:7c:77:d5:cc:f5:d4:99:49:4d:9c:1b:a1:3e:4d:
ff:12:94:d5:e1:86:98:10:30:53:97:34:3e:b4:6d:fe:ea:3c:
82:01:a2:08
1395180831 | 2024-05-05T01:11:27.696820
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 8.1/Windows Server 2012 R2
OS Build: 6.3.9600
Target Name: BHR
NetBIOS Domain Name: BHR
NetBIOS Computer Name: SRVWEB12
DNS Domain Name: bhr.local
DNS Tree Name: bhr.local
FQDN: srvweb12.bhr.local
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:0e:96:14:fa:03:16:92:43:bb:14:48:37:93:52:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=srvweb12.bhr.local
Validity
Not Before: Dec 12 10:48:49 2023 GMT
Not After : Jun 12 10:48:49 2024 GMT
Subject: CN=srvweb12.bhr.local
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c0:0f:77:f0:81:98:c2:dd:27:d1:91:68:fc:87:
8c:8f:07:bf:7d:5b:eb:fb:7d:05:35:33:b6:98:a8:
0c:cc:b4:19:42:92:0b:cd:c5:b7:e8:2b:25:e6:ac:
8b:23:87:aa:16:bb:93:17:ca:ba:d8:19:f6:6f:c2:
84:62:52:15:e5:e6:41:ef:67:e0:05:1c:54:60:73:
f6:06:8a:eb:2e:45:93:99:ac:ad:4c:34:98:08:bd:
71:a4:6f:cf:09:6c:52:cc:af:26:b9:42:d1:32:e5:
aa:e0:1c:0e:4e:34:ff:4b:b9:71:46:13:ed:cf:16:
79:90:e6:29:57:72:75:bc:96:75:fe:f9:18:5a:67:
b5:89:f5:57:53:69:79:fa:40:12:64:74:2b:0e:72:
ea:88:4e:64:9b:4b:b7:2e:f3:a2:bd:af:c0:cc:60:
3b:95:fb:ff:6f:d4:04:0f:ca:46:5e:93:48:de:ae:
11:5f:e3:f6:cb:2f:4b:2b:d0:f5:00:f0:67:d4:d0:
92:fe:02:e0:65:9f:23:d0:cc:80:d2:52:9a:50:cd:
ac:b1:29:76:7f:91:43:0b:6f:3e:11:b6:9b:26:f1:
ac:cb:cb:1b:bd:27:10:f2:88:f1:92:ff:e4:e1:d9:
66:72:24:0c:80:09:dc:8f:63:ed:c8:bd:bc:0c:c5:
f0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
40:ee:f1:d5:d6:46:59:6e:7b:8d:e0:10:b9:17:f4:f9:39:d2:
2d:cf:f4:6c:ab:08:c5:ea:50:5c:8e:92:44:da:97:95:f5:75:
2f:b4:6a:4b:d3:a7:d8:4c:23:c9:f8:23:44:b8:08:86:38:47:
d3:38:3c:18:76:cd:53:e6:56:e6:b8:30:de:86:f3:46:6f:36:
10:bf:89:68:f7:18:52:9f:9a:fc:fe:72:c4:92:02:da:9d:de:
64:41:84:4e:22:2e:e7:b2:b0:02:68:24:e5:a3:79:1f:4c:05:
31:b6:99:0b:6e:1f:07:af:97:92:f4:3b:fa:d7:54:6f:6e:fc:
ac:81:53:ad:04:de:47:a9:50:ff:cb:9d:8a:da:15:74:dd:ab:
b9:c3:c5:c5:44:57:6c:c8:12:0e:2c:24:71:18:78:47:3e:0d:
90:1f:ef:bf:43:e8:ec:56:c0:93:f2:88:a8:58:f0:73:3d:59:
13:32:b5:ee:fc:e5:3a:fb:c2:12:28:b6:3e:c0:81:5b:3d:fe:
d4:79:8c:df:ac:6b:94:97:b8:53:ec:58:f3:80:bc:28:65:09:
2d:fe:45:af:e3:d5:90:af:13:7b:91:de:df:90:7a:6c:7c:d1:
50:ed:7f:2e:c5:e9:60:28:57:e4:ce:e6:c6:4b:df:84:68:ea:
63:ee:67:93
1489525118 | 2024-04-30T19:05:05.095210
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 30 Apr 2024 18:59:56 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2012 R2
OS Build: 6.3.9600
Target Name: BHR
NetBIOS Domain Name: BHR
NetBIOS Computer Name: SRVWEB12
DNS Domain Name: bhr.local
DNS Tree Name: bhr.local
FQDN: srvweb12.bhr.local