| Hostnames |
mail.schoebe.net mail.spurweite-n.de v1.spurweite-n.de www.spurweite-n.de |
| Domains | schoebe.net spurweite-n.de |
| Country | Germany |
| City | Frankfurt am Main |
| Organization | WebJanssen ISP ltd & Co KG |
| ISP | WebJanssen ISP ltd & Co KG |
| ASN | AS29471 |
-370734890 | 2024-11-05T03:27:06.40658821 / tcp
220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
ABOR
ACCT
ADAT *
ALLO
APPE
AUTH
CCC
CDUP
CWD
DELE
ENC *
EPRT
EPSV
FEAT
HELP
HOST
LANG
LIST
MDTM
MIC *
MKD
MODE
NLST
NOOP
OPTS
PASS
PASV
PBSZ
PORT
PROT
PWD
QUIT
REIN
REST
RETR
RMD
RNFR
RNTO
SITE
SIZE
SMNT
STAT
STOR
STOU
STRU
SYST
TYPE
USER
XCUP
XCWD
XMKD
XPWD
XRMD
214 HELP command successful.
211-Extended features supported:
LANG EN*
UTF8
AUTH TLS;TLS-C;SSL;TLS-P;
PBSZ
PROT C;P;
CCC
HOST
SIZE
MDTM
REST STREAM
211 END
118417191 | 2024-10-26T17:55:42.38182925 / tcp
220 mail.spurweite-n.de ESMTP MailEnable Service, Version: 10.48-- ready at 10/26/24 19:54:59 250-spurweite-n.de [224.154.64.188], this server offers 5 extensions 250-AUTH LOGIN 250-SIZE 40960000 250-HELP 250-AUTH=LOGIN 250 STARTTLS
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:13:fe:6e:d1:de:fa:fe:0d:11:39:0d:4f:75:8b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Sep 20 00:00:00 2024 GMT
Not After : Sep 26 23:59:59 2025 GMT
Subject: CN=www.spurweite-n.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:c9:33:f2:14:af:c9:41:ba:f2:f8:cb:4f:87:
c3:c9:62:bf:42:19:6d:e9:a8:95:3d:b1:ab:bd:b8:
bc:9b:b9:30:d7:dd:07:40:20:f4:29:63:9b:ea:8e:
b6:61:d8:0a:61:1e:e8:79:0a:a2:e2:d1:4b:55:d4:
3a:05:91:cb:58:e2:f3:b3:4a:dc:68:cd:62:f2:e8:
9c:ce:5e:f5:65:fd:04:73:8a:22:4b:7b:8c:76:92:
19:de:76:13:b0:17:7b:c0:6c:5b:1f:9f:e4:02:4f:
a9:7e:30:27:64:d2:0d:23:18:1f:87:f2:81:6f:1f:
cb:2d:dc:cc:e8:99:b7:6f:de:8d:91:ab:fc:7f:95:
40:af:12:be:0c:7f:a1:81:0c:5b:d3:9b:92:95:ad:
14:22:35:05:0c:ae:5a:56:37:66:97:01:06:01:b3:
d6:a5:ff:de:f9:7d:e1:8a:6c:56:df:3a:00:db:73:
7e:f4:0d:f4:51:53:88:c6:78:d1:5d:74:d9:e4:de:
a8:7e:5b:37:1c:5b:fd:15:13:db:f5:6f:8e:6f:6b:
2b:95:df:d7:4e:22:05:7a:4f:5b:a3:26:3d:be:fc:
07:7f:84:43:6f:70:9f:00:ba:15:8a:b1:a3:97:91:
4d:4e:00:44:49:e9:ba:1e:bd:bc:95:1b:0a:38:f4:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
73:25:65:F5:EF:9C:8B:93:7F:E2:2B:D9:C4:BC:D4:D8:46:DB:BD:EC
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
Timestamp : Sep 20 16:18:03.803 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:7C:E2:6C:D5:FD:24:06:F4:0D:16:DA:D6:
8E:A6:DF:2F:62:2D:6B:8D:51:02:89:AC:B2:91:47:F6:
9B:EE:E1:BF:02:21:00:B0:E0:B2:FC:5D:69:DC:08:15:
33:5B:D1:58:03:C5:FC:B9:76:A4:B9:63:DA:52:A5:FB:
3D:3A:A9:1C:0E:81:E6
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Sep 20 16:18:03.824 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:26:50:26:61:28:5D:68:2F:01:47:9F:ED:
F3:E4:65:E8:8A:D6:D9:E8:AA:27:13:22:0F:30:32:F2:
32:B2:6C:1F:02:20:76:93:80:30:6B:B4:79:D2:68:D0:
91:D7:FE:A4:DD:85:A0:6C:98:CC:C7:8F:17:9A:F8:B5:
7D:56:00:BE:B6:7A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Sep 20 16:18:03.775 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FC:2D:C4:C5:EC:A1:F2:46:87:D1:3E:
3F:00:9F:1C:C0:0B:4A:57:D3:BB:27:FE:46:46:52:FE:
E9:93:87:C7:9C:02:20:50:4F:05:B3:55:BE:67:46:A5:
2B:42:6C:A0:EA:42:3F:FC:CD:65:03:5A:77:5D:BE:F1:
CF:FF:4C:42:24:B6:04
X509v3 Subject Alternative Name:
DNS:www.spurweite-n.de, DNS:mail.schoebe.net, DNS:mail.spurweite-n.de
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
20:60:b1:c8:b6:5b:80:f7:81:bb:0b:ca:7f:07:c7:ab:d4:70:
8a:7b:81:b7:d7:a3:33:3d:a0:d7:dc:e6:8c:b9:7f:f7:c1:b2:
fc:6f:54:7b:d2:b8:b8:43:81:c8:d6:30:e6:c4:41:cf:c4:dd:
cb:98:8a:4c:da:ca:8e:79:88:70:7c:e4:21:7b:40:34:de:1a:
65:e3:ae:55:04:f9:13:2e:4a:b3:d2:4e:8a:2f:e3:8b:bf:55:
95:44:2a:15:79:63:87:4f:4f:a1:93:f4:ec:6d:d4:56:f4:aa:
25:36:e7:a9:17:84:94:ba:7c:17:ad:6e:f2:36:27:96:73:07:
2a:f4:c7:c3:b2:56:bb:15:ce:39:08:ad:b0:6a:90:d8:e9:ef:
16:0c:28:9a:b0:54:30:61:49:23:33:7c:13:30:5a:8a:04:e5:
4d:14:bd:f9:eb:a3:49:ff:95:71:51:50:8b:92:28:b1:cd:67:
c3:08:32:7c:ab:9a:77:ff:0f:22:de:37:9e:8b:87:3b:06:1b:
3a:c7:78:d4:4c:ed:b2:68:af:80:c4:ed:6d:04:d0:e0:c3:20:
62:11:7d:bf:e2:80:f6:4d:73:20:ea:10:c9:98:72:a1:6a:b2:
00:10:26:ee:2a:9a:df:e1:49:68:5b:2e:d3:4d:dc:c2:c3:b0:
9b:1b:9e:cc
1489525118 | 2024-11-02T13:31:54.92648680 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Sat, 02 Nov 2024 13:31:54 GMT Connection: close Content-Length: 315
37714663 | 2024-11-06T14:06:01.301016135 / tcp
Microsoft RPC Endpoint Mapper d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 195.140.209.200:49664 ncalrpc: WindowsShutdown ncacn_np: \\SPURWEITE-N\PIPE\InitShutdown ncalrpc: WMsgKRpc0443F0 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\SPURWEITE-N\PIPE\InitShutdown ncalrpc: WMsgKRpc0443F0 ncalrpc: WMsgKRpc044681 9b008953-f195-4bf9-bde0-4471971e58ed version: v1.0 ncalrpc: LRPC-802e61c175bf6d399f ncalrpc: dabrpc ncalrpc: csebpub ncalrpc: LRPC-3f68dfc85357710336 ncalrpc: LRPC-c953f9a4cdc6bb54bf ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo d09bdeb5-6171-4a34-bfe2-06fa82652568 version: v1.0 ncalrpc: csebpub ncalrpc: LRPC-3f68dfc85357710336 ncalrpc: LRPC-c953f9a4cdc6bb54bf ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-c953f9a4cdc6bb54bf ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-5f29e3be8c05d7d4c5 ncalrpc: LRPC-89ec0c1a3600af4594 ncalrpc: LRPC-27cba3b2a67c335181 697dcda9-3ba9-4eb2-9247-e11f1901b0d2 version: v1.0 ncalrpc: LRPC-3f68dfc85357710336 ncalrpc: LRPC-c953f9a4cdc6bb54bf ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 857fb1be-084f-4fb5-b59c-4b2c4be5f0cf version: v1.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo b8cadbaf-e84b-46b9-84f2-6f71c03f9e55 version: v1.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 20c40295-8dba-48e6-aebf-3e78ef3bb144 version: v1.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 2513bcbe-6cd4-4348-855e-7efb3c336dd3 version: v1.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 88abcbc3-34ea-76ae-8215-767520655a23 version: v0.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 76c217bc-c8b4-4201-a745-373ad9032b1a version: v1.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 55e6b932-1979-45d6-90c5-7f6270724112 version: v1.0 ncalrpc: LRPC-79b396e84c175cf099 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 4dace966-a243-4450-ae3f-9b7bcb5315b8 version: v1.0 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 1832bcf6-cab8-41d4-85d2-c9410764f75a version: v1.0 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo c521facf-09a9-42c5-b155-72388595cbf0 version: v0.0 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 2c7fd9ce-e706-4b40-b412-953107ef9bb0 version: v0.0 ncalrpc: OLE6E1FB82F0A2A62794B5B552343B4 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e version: v1.0 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo c605f9fb-f0a3-4e2a-a073-73560f8d9e3e version: v1.0 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0 version: v1.0 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 8bfc3be1-6def-4e2d-af74-7c47cd0ade4a version: v1.0 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo 2d98a740-581d-41b9-aa0d-a88b9d5ce938 version: v1.0 ncacn_np: \\SPURWEITE-N\pipe\LSM_API_service ncalrpc: LSMApi ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-097624308247d42af1 ncalrpc: actkernel ncalrpc: umpo ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 5824833b-3c1a-4ad2-bdfd-c31d19e23ed2 version: v1.0 ncalrpc: actkernel ncalrpc: umpo bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 3b338d89-6cfa-44b8-847e-531531bc9992 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 8782d3b9-ebbd-4644-a3d8-e8725381919b version: v1.0 ncalrpc: actkernel ncalrpc: umpo 085b0334-e454-4d91-9b8c-4134f9e793f3 version: v1.0 ncalrpc: actkernel ncalrpc: umpo 4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9 version: v1.0 ncalrpc: actkernel ncalrpc: umpo bf4dc912-e52f-4904-8ebe-9317c1bdd497 version: v1.0 ncalrpc: LRPC-d83f2ccde9f259366b ncalrpc: trkwks ncacn_np: \\SPURWEITE-N\pipe\trkwks ncalrpc: TSUMRPD_PRINT_DRV_LPC_API ncalrpc: LRPC-5208c6f6f2b6286403 ncalrpc: OLEA9253EBD92A49C53D361C6B7B308 ncalrpc: LRPC-e1fdb8cdee044a73d0 ncalrpc: LRPC-5f29e3be8c05d7d4c5 0767a036-0d22-48aa-ba69-b619480f38cb version: v1.0 annotation: PcaSvc provider: pcasvc.dll ncalrpc: TSUMRPD_PRINT_DRV_LPC_API ncalrpc: LRPC-5208c6f6f2b6286403 ncalrpc: OLEA9253EBD92A49C53D361C6B7B308 ncalrpc: LRPC-e1fdb8cdee044a73d0 ncalrpc: LRPC-5f29e3be8c05d7d4c5 e40f7b57-7a25-4cd3-a135-7f7d3df9d16b version: v1.0 annotation: Network Connection Broker server endpoint ncalrpc: LRPC-5208c6f6f2b6286403 ncalrpc: OLEA9253EBD92A49C53D361C6B7B308 ncalrpc: LRPC-e1fdb8cdee044a73d0 ncalrpc: LRPC-5f29e3be8c05d7d4c5 880fd55e-43b9-11e0-b1a8-cf4edfd72085 version: v1.0 annotation: KAPI Service endpoint ncalrpc: LRPC-5208c6f6f2b6286403 ncalrpc: OLEA9253EBD92A49C53D361C6B7B308 ncalrpc: LRPC-e1fdb8cdee044a73d0 ncalrpc: LRPC-5f29e3be8c05d7d4c5 5222821f-d5e2-4885-84f1-5f6185a0ec41 version: v1.0 annotation: Network Connection Broker server endpoint for NCB Reset module ncalrpc: LRPC-e1fdb8cdee044a73d0 ncalrpc: LRPC-5f29e3be8c05d7d4c5 51a227ae-825b-41f2-b4a9-1ac9557a1018 version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 195.140.209.200:49665 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\SPURWEITE-N\pipe\lsass 8fb74744-b2ff-4c00-be0d-9ef9a191fe1b version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 195.140.209.200:49665 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\SPURWEITE-N\pipe\lsass b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v2.0 annotation: KeyIso ncacn_ip_tcp: 195.140.209.200:49665 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\SPURWEITE-N\pipe\lsass 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 195.140.209.200:49665 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\SPURWEITE-N\pipe\lsass f3f09ffd-fbcf-4291-944d-70ad6e0e73bb version: v1.0 ncalrpc: LRPC-9407063fae032f191a 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 ncalrpc: dhcpcsvc ncacn_ip_tcp: 195.140.209.200:49666 ncacn_np: \\SPURWEITE-N\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-0438fbbf59d138c8e4 ncalrpc: LRPC-89ec0c1a3600af4594 ncalrpc: LRPC-27cba3b2a67c335181 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncacn_ip_tcp: 195.140.209.200:49666 ncacn_np: \\SPURWEITE-N\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-0438fbbf59d138c8e4 ncalrpc: LRPC-89ec0c1a3600af4594 ncalrpc: LRPC-27cba3b2a67c335181 f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 195.140.209.200:49666 ncacn_np: \\SPURWEITE-N\pipe\eventlog ncalrpc: eventlog ncalrpc: LRPC-0438fbbf59d138c8e4 ncalrpc: LRPC-89ec0c1a3600af4594 ncalrpc: LRPC-27cba3b2a67c335181 a500d4c6-0dd1-4543-bc0c-d5f93486eaf8 version: v1.0 ncalrpc: LRPC-0438fbbf59d138c8e4 ncalrpc: LRPC-89ec0c1a3600af4594 ncalrpc: LRPC-27cba3b2a67c335181 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncalrpc: LRPC-27cba3b2a67c335181 c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1 version: v1.0 annotation: Adh APIs ncalrpc: LRPC-d556139fae77176cef ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 c36be077-e14b-4fe9-8abc-e856ef4f048b version: v1.0 annotation: Proxy Manager client server endpoint ncalrpc: LRPC-d556139fae77176cef ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 2e6035b2-e8f1-41a7-a044-656b439c4c34 version: v1.0 annotation: Proxy Manager provider server endpoint ncalrpc: LRPC-d556139fae77176cef ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncalrpc: LRPC-d556139fae77176cef ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 0d3c7f20-1c8d-4654-a1b3-51563b298bda version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-d556139fae77176cef ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 b18fbab6-56f8-4702-84e0-41053293a869 version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-d556139fae77176cef ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 29770a8f-829b-4158-90a2-78cd488501f7 version: v1.0 ncacn_np: \\SPURWEITE-N\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 3a9ef155-691d-4449-8d05-09ad57031823 version: v1.0 ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 195.140.209.200:49667 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 33d84484-3626-47ee-8c6f-e7e98b113be1 version: v2.0 ncalrpc: LRPC-c20c2d8f036cbf1f78 ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncalrpc: LRPC-8d84160ec8f66cc720 ncalrpc: ubpmtaskhostchannel ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\SPURWEITE-N\PIPE\atsvc ncalrpc: DeviceSetupManager ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: OLE5A3732CD8F276825BFEDAA94FCE5 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 annotation: Group Policy RPC Interface provider: gpsvc.dll ncalrpc: LRPC-57cc2f4cdea7f56202 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncacn_np: \\SPURWEITE-N\PIPE\W32TIME_ALT ncalrpc: W32TIME_ALT ncalrpc: LRPC-07a5dccb1024401ee5 ncalrpc: OLE78CB0BAA95CF97B88ED9099805B3 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-07a5dccb1024401ee5 ncalrpc: OLE78CB0BAA95CF97B88ED9099805B3 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-652859ac93c12fe3a5 ncalrpc: LRPC-95f6c11e44582e52c6 ncalrpc: LRPC-ad70e1a524db0fc3fe f47433c3-3e9d-4157-aad4-83aa1f5c2d4c version: v1.0 annotation: Fw APIs ncalrpc: LRPC-652859ac93c12fe3a5 ncalrpc: LRPC-95f6c11e44582e52c6 ncalrpc: LRPC-ad70e1a524db0fc3fe 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-652859ac93c12fe3a5 ncalrpc: LRPC-95f6c11e44582e52c6 ncalrpc: LRPC-ad70e1a524db0fc3fe dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-95f6c11e44582e52c6 ncalrpc: LRPC-ad70e1a524db0fc3fe df4df73a-c52d-4e3a-8003-8437fdf8302a version: v0.0 annotation: WM_WindowManagerRPC\Server ncalrpc: LRPC-ad70e1a524db0fc3fe 7aeb6705-3ae6-471a-882d-f39c109edc12 version: v1.0 ncalrpc: LRPC-193b055221e4f99a75 e7f76134-9ef5-4949-a2d6-3368cc0988f3 version: v1.0 ncalrpc: LRPC-193b055221e4f99a75 b3781086-6a54-489b-91c8-51d067172ab7 version: v1.0 ncalrpc: LRPC-193b055221e4f99a75 b37f900a-eae4-4304-a2ab-12bb668c0188 version: v1.0 ncalrpc: LRPC-193b055221e4f99a75 abfb6ca3-0c5e-4734-9285-0aee72fe8d1c version: v1.0 ncalrpc: LRPC-193b055221e4f99a75 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\SPURWEITE-N\PIPE\wkssvc ncalrpc: nlaapi ncalrpc: nlaplg ncalrpc: DNSResolver eb081a0d-10ee-478a-a1dd-50995283e7a8 version: v3.0 annotation: Witness Client Test Interface ncalrpc: nlaapi ncalrpc: nlaplg ncalrpc: DNSResolver f2c9b409-c1c9-4100-8639-d8ab1486694a version: v1.0 annotation: Witness Client Upcall Server ncalrpc: nlaapi ncalrpc: nlaplg ncalrpc: DNSResolver 1a0d010f-1c33-432c-b0f5-8cf4e8053099 version: v1.0 annotation: IdSegSrv service ncalrpc: LRPC-b56f2bf966bcf71c0a 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncalrpc: LRPC-b56f2bf966bcf71c0a 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 195.140.209.200:49668 e38f5360-8572-473e-b696-1b46873beeab version: v1.0 ncalrpc: LRPC-19fb7cef4f8817514d 4c9dbf19-d39e-4bb9-90ee-8f7179b20283 version: v1.0 ncalrpc: LRPC-19fb7cef4f8817514d 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-9878d5b240b44c1f1a ncalrpc: LRPC-9878d5b240b44c1f1a ncalrpc: LRPC-9878d5b240b44c1f1a 4b112204-0e19-11d3-b42b-0000f81feb9f version: v1.0 provider: ssdpsrv.dll ncalrpc: LRPC-55f39c70662beec19d
-1447682351 | 2024-10-24T10:50:26.767682443 / tcp
HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: text/html Expires: Thu, 24 Oct 2024 10:49:23 GMT Server: Microsoft-IIS/10.0 Set-Cookie: ASPSESSIONIDCGRRQQCA=ACDJLFMAAACPPIJENNLAKFBG; secure; path=/ X-Powered-By: ASP.NET Date: Thu, 24 Oct 2024 10:50:25 GMT Content-Length: 121693
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:13:fe:6e:d1:de:fa:fe:0d:11:39:0d:4f:75:8b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Sep 20 00:00:00 2024 GMT
Not After : Sep 26 23:59:59 2025 GMT
Subject: CN=www.spurweite-n.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:c9:33:f2:14:af:c9:41:ba:f2:f8:cb:4f:87:
c3:c9:62:bf:42:19:6d:e9:a8:95:3d:b1:ab:bd:b8:
bc:9b:b9:30:d7:dd:07:40:20:f4:29:63:9b:ea:8e:
b6:61:d8:0a:61:1e:e8:79:0a:a2:e2:d1:4b:55:d4:
3a:05:91:cb:58:e2:f3:b3:4a:dc:68:cd:62:f2:e8:
9c:ce:5e:f5:65:fd:04:73:8a:22:4b:7b:8c:76:92:
19:de:76:13:b0:17:7b:c0:6c:5b:1f:9f:e4:02:4f:
a9:7e:30:27:64:d2:0d:23:18:1f:87:f2:81:6f:1f:
cb:2d:dc:cc:e8:99:b7:6f:de:8d:91:ab:fc:7f:95:
40:af:12:be:0c:7f:a1:81:0c:5b:d3:9b:92:95:ad:
14:22:35:05:0c:ae:5a:56:37:66:97:01:06:01:b3:
d6:a5:ff:de:f9:7d:e1:8a:6c:56:df:3a:00:db:73:
7e:f4:0d:f4:51:53:88:c6:78:d1:5d:74:d9:e4:de:
a8:7e:5b:37:1c:5b:fd:15:13:db:f5:6f:8e:6f:6b:
2b:95:df:d7:4e:22:05:7a:4f:5b:a3:26:3d:be:fc:
07:7f:84:43:6f:70:9f:00:ba:15:8a:b1:a3:97:91:
4d:4e:00:44:49:e9:ba:1e:bd:bc:95:1b:0a:38:f4:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
73:25:65:F5:EF:9C:8B:93:7F:E2:2B:D9:C4:BC:D4:D8:46:DB:BD:EC
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
Timestamp : Sep 20 16:18:03.803 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:7C:E2:6C:D5:FD:24:06:F4:0D:16:DA:D6:
8E:A6:DF:2F:62:2D:6B:8D:51:02:89:AC:B2:91:47:F6:
9B:EE:E1:BF:02:21:00:B0:E0:B2:FC:5D:69:DC:08:15:
33:5B:D1:58:03:C5:FC:B9:76:A4:B9:63:DA:52:A5:FB:
3D:3A:A9:1C:0E:81:E6
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Sep 20 16:18:03.824 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:26:50:26:61:28:5D:68:2F:01:47:9F:ED:
F3:E4:65:E8:8A:D6:D9:E8:AA:27:13:22:0F:30:32:F2:
32:B2:6C:1F:02:20:76:93:80:30:6B:B4:79:D2:68:D0:
91:D7:FE:A4:DD:85:A0:6C:98:CC:C7:8F:17:9A:F8:B5:
7D:56:00:BE:B6:7A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Sep 20 16:18:03.775 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FC:2D:C4:C5:EC:A1:F2:46:87:D1:3E:
3F:00:9F:1C:C0:0B:4A:57:D3:BB:27:FE:46:46:52:FE:
E9:93:87:C7:9C:02:20:50:4F:05:B3:55:BE:67:46:A5:
2B:42:6C:A0:EA:42:3F:FC:CD:65:03:5A:77:5D:BE:F1:
CF:FF:4C:42:24:B6:04
X509v3 Subject Alternative Name:
DNS:www.spurweite-n.de, DNS:mail.schoebe.net, DNS:mail.spurweite-n.de
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
20:60:b1:c8:b6:5b:80:f7:81:bb:0b:ca:7f:07:c7:ab:d4:70:
8a:7b:81:b7:d7:a3:33:3d:a0:d7:dc:e6:8c:b9:7f:f7:c1:b2:
fc:6f:54:7b:d2:b8:b8:43:81:c8:d6:30:e6:c4:41:cf:c4:dd:
cb:98:8a:4c:da:ca:8e:79:88:70:7c:e4:21:7b:40:34:de:1a:
65:e3:ae:55:04:f9:13:2e:4a:b3:d2:4e:8a:2f:e3:8b:bf:55:
95:44:2a:15:79:63:87:4f:4f:a1:93:f4:ec:6d:d4:56:f4:aa:
25:36:e7:a9:17:84:94:ba:7c:17:ad:6e:f2:36:27:96:73:07:
2a:f4:c7:c3:b2:56:bb:15:ce:39:08:ad:b0:6a:90:d8:e9:ef:
16:0c:28:9a:b0:54:30:61:49:23:33:7c:13:30:5a:8a:04:e5:
4d:14:bd:f9:eb:a3:49:ff:95:71:51:50:8b:92:28:b1:cd:67:
c3:08:32:7c:ab:9a:77:ff:0f:22:de:37:9e:8b:87:3b:06:1b:
3a:c7:78:d4:4c:ed:b2:68:af:80:c4:ed:6d:04:d0:e0:c3:20:
62:11:7d:bf:e2:80:f6:4d:73:20:ea:10:c9:98:72:a1:6a:b2:
00:10:26:ee:2a:9a:df:e1:49:68:5b:2e:d3:4d:dc:c2:c3:b0:
9b:1b:9e:cc
304705049 | 2024-10-29T13:18:19.250137445 / tcp
SMB Status: Authentication: enabled SMB Version: 1 OS: Windows Server 2016 Standard 14393 Software: Windows Server 2016 Standard 6.3 Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
2036899646 | 2024-10-26T07:49:02.602995993 / tcp
* OK IMAP4rev1 server ready at 10/26/24 09:48:46 * CAPABILITY IMAP4rev1 IMAP4 AUTH=LOGIN AUTH=CRAM-MD5 IDLE CHILDREN UIDPLUS CLIENTID A001 OK CAPABILITY completed A002 BAD UNKNOWN Command A003 BAD UNKNOWN Command * BYE IMAP4rev1 server terminating connection A004 OK LOGOUT Initiated
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:13:fe:6e:d1:de:fa:fe:0d:11:39:0d:4f:75:8b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Sep 20 00:00:00 2024 GMT
Not After : Sep 26 23:59:59 2025 GMT
Subject: CN=www.spurweite-n.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:c9:33:f2:14:af:c9:41:ba:f2:f8:cb:4f:87:
c3:c9:62:bf:42:19:6d:e9:a8:95:3d:b1:ab:bd:b8:
bc:9b:b9:30:d7:dd:07:40:20:f4:29:63:9b:ea:8e:
b6:61:d8:0a:61:1e:e8:79:0a:a2:e2:d1:4b:55:d4:
3a:05:91:cb:58:e2:f3:b3:4a:dc:68:cd:62:f2:e8:
9c:ce:5e:f5:65:fd:04:73:8a:22:4b:7b:8c:76:92:
19:de:76:13:b0:17:7b:c0:6c:5b:1f:9f:e4:02:4f:
a9:7e:30:27:64:d2:0d:23:18:1f:87:f2:81:6f:1f:
cb:2d:dc:cc:e8:99:b7:6f:de:8d:91:ab:fc:7f:95:
40:af:12:be:0c:7f:a1:81:0c:5b:d3:9b:92:95:ad:
14:22:35:05:0c:ae:5a:56:37:66:97:01:06:01:b3:
d6:a5:ff:de:f9:7d:e1:8a:6c:56:df:3a:00:db:73:
7e:f4:0d:f4:51:53:88:c6:78:d1:5d:74:d9:e4:de:
a8:7e:5b:37:1c:5b:fd:15:13:db:f5:6f:8e:6f:6b:
2b:95:df:d7:4e:22:05:7a:4f:5b:a3:26:3d:be:fc:
07:7f:84:43:6f:70:9f:00:ba:15:8a:b1:a3:97:91:
4d:4e:00:44:49:e9:ba:1e:bd:bc:95:1b:0a:38:f4:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
73:25:65:F5:EF:9C:8B:93:7F:E2:2B:D9:C4:BC:D4:D8:46:DB:BD:EC
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
Timestamp : Sep 20 16:18:03.803 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:7C:E2:6C:D5:FD:24:06:F4:0D:16:DA:D6:
8E:A6:DF:2F:62:2D:6B:8D:51:02:89:AC:B2:91:47:F6:
9B:EE:E1:BF:02:21:00:B0:E0:B2:FC:5D:69:DC:08:15:
33:5B:D1:58:03:C5:FC:B9:76:A4:B9:63:DA:52:A5:FB:
3D:3A:A9:1C:0E:81:E6
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Sep 20 16:18:03.824 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:26:50:26:61:28:5D:68:2F:01:47:9F:ED:
F3:E4:65:E8:8A:D6:D9:E8:AA:27:13:22:0F:30:32:F2:
32:B2:6C:1F:02:20:76:93:80:30:6B:B4:79:D2:68:D0:
91:D7:FE:A4:DD:85:A0:6C:98:CC:C7:8F:17:9A:F8:B5:
7D:56:00:BE:B6:7A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Sep 20 16:18:03.775 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FC:2D:C4:C5:EC:A1:F2:46:87:D1:3E:
3F:00:9F:1C:C0:0B:4A:57:D3:BB:27:FE:46:46:52:FE:
E9:93:87:C7:9C:02:20:50:4F:05:B3:55:BE:67:46:A5:
2B:42:6C:A0:EA:42:3F:FC:CD:65:03:5A:77:5D:BE:F1:
CF:FF:4C:42:24:B6:04
X509v3 Subject Alternative Name:
DNS:www.spurweite-n.de, DNS:mail.schoebe.net, DNS:mail.spurweite-n.de
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
20:60:b1:c8:b6:5b:80:f7:81:bb:0b:ca:7f:07:c7:ab:d4:70:
8a:7b:81:b7:d7:a3:33:3d:a0:d7:dc:e6:8c:b9:7f:f7:c1:b2:
fc:6f:54:7b:d2:b8:b8:43:81:c8:d6:30:e6:c4:41:cf:c4:dd:
cb:98:8a:4c:da:ca:8e:79:88:70:7c:e4:21:7b:40:34:de:1a:
65:e3:ae:55:04:f9:13:2e:4a:b3:d2:4e:8a:2f:e3:8b:bf:55:
95:44:2a:15:79:63:87:4f:4f:a1:93:f4:ec:6d:d4:56:f4:aa:
25:36:e7:a9:17:84:94:ba:7c:17:ad:6e:f2:36:27:96:73:07:
2a:f4:c7:c3:b2:56:bb:15:ce:39:08:ad:b0:6a:90:d8:e9:ef:
16:0c:28:9a:b0:54:30:61:49:23:33:7c:13:30:5a:8a:04:e5:
4d:14:bd:f9:eb:a3:49:ff:95:71:51:50:8b:92:28:b1:cd:67:
c3:08:32:7c:ab:9a:77:ff:0f:22:de:37:9e:8b:87:3b:06:1b:
3a:c7:78:d4:4c:ed:b2:68:af:80:c4:ed:6d:04:d0:e0:c3:20:
62:11:7d:bf:e2:80:f6:4d:73:20:ea:10:c9:98:72:a1:6a:b2:
00:10:26:ee:2a:9a:df:e1:49:68:5b:2e:d3:4d:dc:c2:c3:b0:
9b:1b:9e:cc
-471102630 | 2024-11-04T00:38:53.003725995 / tcp
+OK Welcome to MailEnable POP3 Server +OK Capability list follows TOP USER UIDL .
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:13:fe:6e:d1:de:fa:fe:0d:11:39:0d:4f:75:8b:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
Validity
Not Before: Sep 20 00:00:00 2024 GMT
Not After : Sep 26 23:59:59 2025 GMT
Subject: CN=www.spurweite-n.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:c9:33:f2:14:af:c9:41:ba:f2:f8:cb:4f:87:
c3:c9:62:bf:42:19:6d:e9:a8:95:3d:b1:ab:bd:b8:
bc:9b:b9:30:d7:dd:07:40:20:f4:29:63:9b:ea:8e:
b6:61:d8:0a:61:1e:e8:79:0a:a2:e2:d1:4b:55:d4:
3a:05:91:cb:58:e2:f3:b3:4a:dc:68:cd:62:f2:e8:
9c:ce:5e:f5:65:fd:04:73:8a:22:4b:7b:8c:76:92:
19:de:76:13:b0:17:7b:c0:6c:5b:1f:9f:e4:02:4f:
a9:7e:30:27:64:d2:0d:23:18:1f:87:f2:81:6f:1f:
cb:2d:dc:cc:e8:99:b7:6f:de:8d:91:ab:fc:7f:95:
40:af:12:be:0c:7f:a1:81:0c:5b:d3:9b:92:95:ad:
14:22:35:05:0c:ae:5a:56:37:66:97:01:06:01:b3:
d6:a5:ff:de:f9:7d:e1:8a:6c:56:df:3a:00:db:73:
7e:f4:0d:f4:51:53:88:c6:78:d1:5d:74:d9:e4:de:
a8:7e:5b:37:1c:5b:fd:15:13:db:f5:6f:8e:6f:6b:
2b:95:df:d7:4e:22:05:7a:4f:5b:a3:26:3d:be:fc:
07:7f:84:43:6f:70:9f:00:ba:15:8a:b1:a3:97:91:
4d:4e:00:44:49:e9:ba:1e:bd:bc:95:1b:0a:38:f4:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
X509v3 Subject Key Identifier:
73:25:65:F5:EF:9C:8B:93:7F:E2:2B:D9:C4:BC:D4:D8:46:DB:BD:EC
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.6449.1.2.2.7
CPS: https://sectigo.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
OCSP - URI:http://ocsp.sectigo.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
Timestamp : Sep 20 16:18:03.803 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:7C:E2:6C:D5:FD:24:06:F4:0D:16:DA:D6:
8E:A6:DF:2F:62:2D:6B:8D:51:02:89:AC:B2:91:47:F6:
9B:EE:E1:BF:02:21:00:B0:E0:B2:FC:5D:69:DC:08:15:
33:5B:D1:58:03:C5:FC:B9:76:A4:B9:63:DA:52:A5:FB:
3D:3A:A9:1C:0E:81:E6
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Sep 20 16:18:03.824 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:26:50:26:61:28:5D:68:2F:01:47:9F:ED:
F3:E4:65:E8:8A:D6:D9:E8:AA:27:13:22:0F:30:32:F2:
32:B2:6C:1F:02:20:76:93:80:30:6B:B4:79:D2:68:D0:
91:D7:FE:A4:DD:85:A0:6C:98:CC:C7:8F:17:9A:F8:B5:
7D:56:00:BE:B6:7A
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
Timestamp : Sep 20 16:18:03.775 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FC:2D:C4:C5:EC:A1:F2:46:87:D1:3E:
3F:00:9F:1C:C0:0B:4A:57:D3:BB:27:FE:46:46:52:FE:
E9:93:87:C7:9C:02:20:50:4F:05:B3:55:BE:67:46:A5:
2B:42:6C:A0:EA:42:3F:FC:CD:65:03:5A:77:5D:BE:F1:
CF:FF:4C:42:24:B6:04
X509v3 Subject Alternative Name:
DNS:www.spurweite-n.de, DNS:mail.schoebe.net, DNS:mail.spurweite-n.de
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
20:60:b1:c8:b6:5b:80:f7:81:bb:0b:ca:7f:07:c7:ab:d4:70:
8a:7b:81:b7:d7:a3:33:3d:a0:d7:dc:e6:8c:b9:7f:f7:c1:b2:
fc:6f:54:7b:d2:b8:b8:43:81:c8:d6:30:e6:c4:41:cf:c4:dd:
cb:98:8a:4c:da:ca:8e:79:88:70:7c:e4:21:7b:40:34:de:1a:
65:e3:ae:55:04:f9:13:2e:4a:b3:d2:4e:8a:2f:e3:8b:bf:55:
95:44:2a:15:79:63:87:4f:4f:a1:93:f4:ec:6d:d4:56:f4:aa:
25:36:e7:a9:17:84:94:ba:7c:17:ad:6e:f2:36:27:96:73:07:
2a:f4:c7:c3:b2:56:bb:15:ce:39:08:ad:b0:6a:90:d8:e9:ef:
16:0c:28:9a:b0:54:30:61:49:23:33:7c:13:30:5a:8a:04:e5:
4d:14:bd:f9:eb:a3:49:ff:95:71:51:50:8b:92:28:b1:cd:67:
c3:08:32:7c:ab:9a:77:ff:0f:22:de:37:9e:8b:87:3b:06:1b:
3a:c7:78:d4:4c:ed:b2:68:af:80:c4:ed:6d:04:d0:e0:c3:20:
62:11:7d:bf:e2:80:f6:4d:73:20:ea:10:c9:98:72:a1:6a:b2:
00:10:26:ee:2a:9a:df:e1:49:68:5b:2e:d3:4d:dc:c2:c3:b0:
9b:1b:9e:cc
-1189368043 | 2024-11-08T07:47:36.8783653306 / tcp
MySQL: Protocol Version: 10 Version: 5.7.44-log Capabilities: 65535 Server Language: 8 Server Status: 2 Extended Server Capabilities: 49663 Authentication Plugin: mysql_native_password
-1797900994 | 2024-11-04T18:09:17.3368193389 / tcp
Remote Desktop Protocol \x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00 Remote Desktop Protocol NTLM Info: OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607) OS Build: 10.0.14393 Target Name: SPURWEITE-N NetBIOS Domain Name: SPURWEITE-N NetBIOS Computer Name: SPURWEITE-N DNS Domain Name: Spurweite-N FQDN: Spurweite-N Admin Ingo ee
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:b1:f7:36:ee:24:5f:ae:4e:13:1b:55:03:cc:8b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Spurweite-N
Validity
Not Before: Jun 29 17:06:07 2024 GMT
Not After : Dec 29 17:06:07 2024 GMT
Subject: CN=Spurweite-N
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ad:db:e2:47:e4:6c:f0:d0:c1:58:57:7f:9b:eb:
bd:05:62:b6:0c:93:d7:e6:29:e4:d5:dd:61:4d:e5:
a5:24:15:25:75:21:1b:8a:fe:ab:52:31:f5:98:92:
c4:80:da:1d:3f:01:2b:dc:c7:6a:b4:3c:05:b5:98:
e8:e4:26:17:db:1c:80:61:5f:8f:a0:c5:b6:ec:77:
be:e8:42:66:82:71:e5:5f:d6:e8:f4:b7:a1:cb:eb:
50:87:e8:e0:e0:86:28:4f:db:d5:c0:be:5e:65:a2:
36:68:26:24:db:aa:d7:56:84:1a:60:4d:72:b5:b5:
76:9d:cf:b4:8c:7d:dc:50:47:33:c6:8d:8a:1e:4c:
ad:63:c6:65:0b:87:03:fb:af:96:2e:d4:dd:89:58:
4c:ad:1a:59:d6:81:39:e4:2a:8e:ad:b7:21:fb:7b:
44:b1:0a:1c:5c:0b:d6:d9:9c:99:78:b2:1f:8b:a5:
77:b4:57:7c:ff:2e:d7:c7:75:69:83:fe:ef:6e:65:
93:b2:09:ab:8f:00:09:61:78:af:e2:94:b1:0e:2e:
b4:f5:89:06:54:45:61:a8:f4:88:ec:5a:ad:79:9d:
bc:8e:23:95:4a:e4:63:b8:d3:b1:f7:1a:33:72:94:
a7:61:4f:f9:57:87:e3:e0:f1:d8:c6:80:a0:dd:a2:
e7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4a:d1:c5:85:b8:21:f8:09:d8:89:3e:05:e0:ca:26:6c:9b:d3:
13:e1:35:1b:be:73:91:49:ce:55:31:ac:bf:44:83:09:8c:2c:
e7:e1:a5:fa:5b:a2:4d:21:20:fd:18:01:dd:e5:46:16:08:12:
5e:06:ed:33:67:93:b4:c6:a7:88:02:62:83:6e:79:53:8d:82:
e6:e7:c4:8c:e9:a2:5d:0a:11:da:b4:26:cd:c7:d3:56:9b:cd:
99:12:5e:f3:12:82:b4:58:45:0a:16:f9:78:55:03:21:af:65:
3a:14:66:2a:31:e5:e7:9e:a4:fc:d3:a3:1d:d2:6e:db:13:6c:
b6:00:e5:21:05:04:a5:e2:d6:76:54:84:97:59:08:7a:1d:4d:
e3:f4:4b:a7:dd:55:e1:02:a8:cd:6c:de:ca:c1:5e:88:88:d4:
32:ac:66:87:44:f7:40:25:f4:09:4d:a1:06:b2:16:49:f2:e6:
3c:92:9b:05:6c:15:7f:e4:d9:d3:d8:9e:fb:8c:1e:da:50:c7:
41:00:06:75:75:9a:ee:80:3b:f8:0a:dc:05:29:28:6f:25:48:
cd:6b:11:b6:0f:10:12:97:37:a8:94:77:55:a7:97:85:e8:6a:
bc:66:48:6e:a6:0f:80:8d:54:32:d4:81:0f:50:f1:7a:d8:f9:
73:4a:3f:c8