2070266226 | 2024-11-10T14:23:06.360116
25 /
tcp
220 Fortimail.somagep.ml ESMTP Smtpd; Sun, 10 Nov 2024 14:22:55 GMT
250-Fortimail.somagep.ml Hello 224.129.170.12 [224.129.170.12], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE 10485760
250-AUTH LOGIN PLAIN
250-STARTTLS
250-DELIVERBY
250 HELP
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:6f:fb:2d:0a:85:ce:24:73:ea:a8:5e:3b:96:29:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1
Validity
Not Before: May 20 00:00:00 2024 GMT
Not After : Jun 20 23:59:59 2025 GMT
Subject: C=ML, L=Bamako, O=SOMAGEP SA - Soci\xC3\xA9t\xC3\xA9 Malienne de Gestion de l'Eau Potable SA, CN=*.somagep.ml
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:be:b6:54:05:3e:8a:d6:cf:b6:29:e9:eb:b3:9f:
bc:8f:01:15:c1:44:fe:a8:f8:a0:e3:79:48:35:3e:
24:4f:d3:33:82:8c:5f:3c:73:7a:89:94:b1:cc:c1:
a7:ac:58:2e:21:fe:64:f2:0f:c9:3c:3a:08:a6:fc:
58:fb:73:d0:07:a3:ac:03:e7:3e:70:41:5f:69:b4:
f0:9a:0e:d0:99:05:84:48:1b:1b:d8:41:d4:ef:0c:
76:62:d0:3c:b1:da:cb:f8:7f:01:a9:fb:f5:29:f2:
88:82:9e:53:d6:fc:96:b2:ea:c0:6e:2c:ad:9c:38:
70:39:29:75:39:2a:03:67:22:bd:d6:77:3f:99:9a:
20:94:16:b5:e8:0f:51:3f:01:c7:11:3e:fe:17:67:
f5:6f:4a:54:18:d1:72:e1:f4:c3:11:e6:a7:15:7c:
c0:4f:29:2d:a2:0f:e4:ac:79:32:e6:c9:05:7e:f7:
7f:81:0c:61:c5:3b:e9:2e:ed:6b:76:aa:c0:e4:2f:
89:67:7e:e0:c2:42:c6:50:23:44:7f:10:2c:7d:e3:
6c:7f:79:c1:2e:be:80:3d:6c:37:9d:03:5d:e4:15:
7f:59:34:9c:df:3d:f3:b7:dc:63:91:e5:73:fa:c6:
86:83:e6:3d:82:79:18:16:22:a5:58:a6:12:e2:45:
a4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
X509v3 Subject Key Identifier:
87:61:E7:94:78:BB:1E:86:86:67:7F:45:84:FD:EE:95:79:20:0E:7C
X509v3 Subject Alternative Name:
DNS:*.somagep.ml, DNS:somagep.ml
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Authority Information Access:
OCSP - URI:http://status.thawte.com
CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
X509v3 Basic Constraints: critical
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : May 20 10:47:28.360 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6E:C4:E2:59:8B:54:07:C9:88:09:7B:93:
26:42:C3:6E:02:90:64:FB:D0:74:A7:D6:6F:15:ED:84:
61:9E:BA:D3:02:20:7C:04:AD:F5:C8:18:F9:53:CB:7C:
53:50:4E:3C:A8:86:28:64:82:99:95:77:1E:E2:FD:81:
28:4D:96:6E:3D:A9
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : May 20 10:47:28.357 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:80:F0:6E:92:61:E0:F7:38:28:0C:C2:
DC:0C:74:9C:2D:18:BB:3C:CB:F4:51:A9:35:4E:FE:5A:
47:CB:2F:41:8C:02:20:76:92:12:81:F0:D2:37:7C:99:
14:17:83:28:0F:B0:6E:3C:52:C2:B4:21:4C:6A:55:54:
4F:2A:B0:13:70:FE:47
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : May 20 10:47:28.379 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:3C:86:EB:63:92:DC:88:B9:C2:15:C6:2E:
6B:73:14:59:E8:E1:01:CA:62:17:31:09:CC:6A:32:BA:
77:53:C5:CF:02:21:00:E5:3E:7A:65:73:BC:F7:79:B5:
71:AB:60:41:F2:83:2C:E1:24:54:ED:FD:A0:EA:3E:09:
38:FF:61:2D:E9:11:8A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
1d:65:5f:6c:2d:70:80:ef:50:3d:e9:01:44:af:e0:bc:3d:f5:
75:a2:b9:6a:31:82:b7:dc:d8:44:df:9e:4f:c7:14:90:91:51:
9e:ad:e0:4d:28:fc:87:ac:25:b4:1d:99:9d:35:a7:0f:a8:8e:
24:97:ee:07:ae:b8:78:1a:b3:d5:ee:95:74:87:e2:40:fc:21:
26:15:d9:5d:cb:d0:3a:2f:53:bf:bd:34:05:06:cb:f1:bf:9e:
8c:b1:08:f4:1f:e2:6b:09:71:94:17:34:72:e0:35:85:5f:70:
1f:9d:8e:18:8b:fa:f4:85:af:f3:bc:70:84:00:18:00:24:af:
a0:28:6e:7e:8a:ae:c3:89:6a:cf:d7:fe:e2:dd:ca:4a:3a:ae:
62:49:ae:8e:fe:49:9c:c2:ca:2b:dd:d6:13:03:a8:e1:62:90:
b9:ec:1e:52:fd:67:22:72:2c:72:8d:63:d4:32:95:60:b2:23:
14:17:85:2a:a5:2c:24:c6:cc:bc:7c:8d:fb:d8:67:f5:ff:48:
56:6e:d2:05:4a:9d:03:45:a5:10:93:5c:b3:a9:3c:5b:ba:cd:
d3:3f:12:66:ef:2d:8a:9c:87:8f:1c:2c:0e:12:75:ba:e2:73:
2f:c8:d5:d4:08:8f:cf:74:99:cd:97:5e:53:4e:2d:65:ba:2c:
40:c2:ed:36
334667306 | 2024-11-06T05:40:49.415466
80 /
tcp
HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/8.0
X-Powered-By: ASP.NET
Date: Wed, 06 Nov 2024 05:41:02 GMT
Content-Length: 1268
286524029 | 2024-11-23T19:01:13.524983
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 217.64.109.250:6005
ncalrpc: WindowsShutdown
ncacn_np: \\SRV01-SS\PIPE\InitShutdown
ncalrpc: WMsgKRpc083E00
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\SRV01-SS\PIPE\InitShutdown
ncalrpc: WMsgKRpc083E00
ncalrpc: WMsgKRpc085871
ncalrpc: WMsgKRpc018DC032
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-121ddb61dbb5265b81
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
ncalrpc: LRPC-5aba02a9998871ced3
0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
2d98a740-581d-41b9-aa0d-a88b9d5ce938
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
3b338d89-6cfa-44b8-847e-531531bc9992
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
8782d3b9-ebbd-4644-a3d8-e8725381919b
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
085b0334-e454-4d91-9b8c-4134f9e793f3
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
ncalrpc: LRPC-51d51165c239c17a13
ncacn_ip_tcp: 217.64.109.250:6006
ncacn_np: \\SRV01-SS\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: LRPC-51d51165c239c17a13
ncacn_ip_tcp: 217.64.109.250:6006
ncacn_np: \\SRV01-SS\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: LRPC-51d51165c239c17a13
ncacn_ip_tcp: 217.64.109.250:6006
ncacn_np: \\SRV01-SS\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 217.64.109.250:6006
ncacn_np: \\SRV01-SS\pipe\eventlog
ncalrpc: eventlog
58e604e8-9adb-4d2e-a464-3b0683fb1480
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-e8d9d9c3fafde2dde0
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-e8d9d9c3fafde2dde0
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
5f54ce7d-5b79-4175-8584-cb65313a0e98
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-e8d9d9c3fafde2dde0
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
201ef99a-7fa0-444c-9399-19ba84f12a1a
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-e8d9d9c3fafde2dde0
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-e8d9d9c3fafde2dde0
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 10.100.8.12:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-96d4c286a865912c8a
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
880fd55e-43b9-11e0-b1a8-cf4edfd72085
version: v1.0
annotation: KAPI Service endpoint
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
version: v1.0
annotation: Network Connection Broker server endpoint
ncalrpc: LRPC-87bbf97a02f9a3d7b8
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
version: v1.0
annotation: Adh APIs
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncacn_np: \\SRV01-SS\PIPE\browser
ncacn_np: \\SRV01-SS\PIPE\srvsvc
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 217.64.109.250:6007
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\SRV01-SS\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLE9A2E9D8FE2B244C1FC916121A1CB
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
annotation: Group Policy RPC Interface
provider: gpsvc.dll
ncalrpc: LRPC-68d15c719f8bb65711
da5a86c5-12c2-4943-ab30-7f74a813d853
version: v1.0
annotation: RemoteRegistry Perflib Interface
protocol: [MS-PCQ]: Performance Counter Query Protocol
provider: regsvc.dll
ncacn_np: \\SRV01-SS\PIPE\winreg
338cd001-2244-31f1-aaaa-900038001003
version: v1.0
annotation: RemoteRegistry Interface
protocol: [MS-RRP]: Windows Remote Registry Protocol
provider: regsvc.dll
ncacn_np: \\SRV01-SS\PIPE\winreg
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncacn_np: \\SRV01-SS\PIPE\W32TIME_ALT
ncalrpc: W32TIME_ALT
ncalrpc: LRPC-0334f89d714ec1321c
ncalrpc: OLE3CD754D2762C7410BAE95EB66D19
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-0334f89d714ec1321c
ncalrpc: OLE3CD754D2762C7410BAE95EB66D19
b2507c30-b126-494a-92ac-ee32b6eeb039
version: v1.0
ncalrpc: LRPC-fed8c6e2608c058b86
ncalrpc: OLE394F8C7FF40143A2E2AA70F5D5CD
ncalrpc: LRPC-af0397a791b8282407
ncalrpc: OLEA38748FA9F745D9B64840009ADF7
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-55d6e7a0d2c416fcbe
ncalrpc: LRPC-3721d23f683ecafa50
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-55d6e7a0d2c416fcbe
ncalrpc: LRPC-3721d23f683ecafa50
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-55d6e7a0d2c416fcbe
ncalrpc: LRPC-3721d23f683ecafa50
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-3721d23f683ecafa50
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\SRV01-SS\PIPE\wkssvc
ncalrpc: LRPC-44b36bdcb071059848
ncalrpc: DNSResolver
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: LRPC-44b36bdcb071059848
ncalrpc: DNSResolver
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: LRPC-44b36bdcb071059848
ncalrpc: DNSResolver
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 217.64.109.250:6042
ncacn_ip_tcp: 217.64.109.250:6009
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRV01-SS\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 217.64.109.250:6042
ncacn_ip_tcp: 217.64.109.250:6009
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRV01-SS\pipe\lsass
0b1c2170-5732-4e0e-8cd3-d9b16f3b84d7
version: v0.0
annotation: RemoteAccessCheck
protocol: [MS-RAA]: Remote Authorization API Protocol
ncacn_ip_tcp: 217.64.109.250:6009
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRV01-SS\pipe\lsass
ncacn_ip_tcp: 217.64.109.250:6009
ncalrpc: NETLOGON_LRPC
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\SRV01-SS\pipe\lsass
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
annotation: Spooler function endpoint
provider: spoolsv.exe
ncalrpc: spoolss
ncacn_ip_tcp: 217.64.109.250:6012
ncacn_np: \\SRV01-SS\pipe\spoolss
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
annotation: Spooler function endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
ncacn_ip_tcp: 217.64.109.250:6012
ncacn_np: \\SRV01-SS\pipe\spoolss
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
annotation: Spooler base remote object endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
ncacn_ip_tcp: 217.64.109.250:6012
ncacn_np: \\SRV01-SS\pipe\spoolss
76f03f96-cdfd-44fc-a22c-64950a001209
version: v1.0
annotation: Spooler function endpoint
protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 217.64.109.250:6012
ncacn_np: \\SRV01-SS\pipe\spoolss
1a9134dd-7b39-45ba-ad88-44d01ca47f28
version: v1.0
annotation: Message Queuing - RemoteRead V1
protocol: [MS-MQRR]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 217.64.109.250:2105
ncacn_ip_tcp: 217.64.109.250:2103
ncacn_ip_tcp: 217.64.109.250:2107
ncacn_ip_tcp: 217.64.109.250:6043
ncalrpc: QMMgmtFacility$srv01-ss
ncalrpc: QMsvc$srv01-ss
1088a980-eae5-11d0-8d9b-00a02453c337
version: v1.0
annotation: Message Queuing - QM2QM V1
protocol: [MS-MQQP]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 217.64.109.250:2105
ncacn_ip_tcp: 217.64.109.250:2103
ncacn_ip_tcp: 217.64.109.250:2107
ncacn_ip_tcp: 217.64.109.250:6043
ncalrpc: QMMgmtFacility$srv01-ss
ncalrpc: QMsvc$srv01-ss
76d12b80-3467-11d3-91ff-0090272f9ea3
version: v1.0
annotation: Message Queuing - QMRT V2
protocol: [MS-MQMP]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 217.64.109.250:2105
ncacn_ip_tcp: 217.64.109.250:2103
ncacn_ip_tcp: 217.64.109.250:2107
ncacn_ip_tcp: 10.100.8.12:6043
ncalrpc: QMMgmtFacility$srv01-ss
ncalrpc: QMsvc$srv01-ss
fdb3a030-065f-11d1-bb9b-00a024ea5525
version: v1.0
annotation: Message Queuing - QMRT V1
protocol: [MS-MQMP]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 10.100.8.12:2105
ncacn_ip_tcp: 217.64.109.250:2103
ncacn_ip_tcp: 217.64.109.250:2107
ncacn_ip_tcp: 217.64.109.250:6043
ncalrpc: QMMgmtFacility$srv01-ss
ncalrpc: QMsvc$srv01-ss
3357951c-a1d1-47db-a278-ab945d063d03
version: v1.0
provider: LBService.dll
ncacn_ip_tcp: 217.64.109.250:6044
d1c2c07a-d989-48cc-a423-b73ecd518d40
version: v1.0
annotation: Veeam RPC Invoker
ncacn_ip_tcp: 217.64.109.250:6160
ncacn_ip_tcp: 217.64.109.250:6162
ncacn_ip_tcp: 217.64.109.250:6190
d107c6e0-fc35-49ba-ba03-3e192de6797d
version: v1.0
annotation: Veeam Deployer
ncacn_ip_tcp: 217.64.109.250:6160
5a4d59fe-42ac-4c6e-b554-b12c6af35956
version: v1.0
ncalrpc: LRPC-db3ed0af6b687c0b8d
ncacn_ip_tcp: 10.100.8.12:6357
ncalrpc: OLEDECD8C82225953EDEA6F598D40FA
5df3c257-334b-4e96-9efb-a0619255be09
version: v1.0
annotation: 6392 MSExchangeFrontendTransport
ncalrpc: LRPC-9f8147bdc8d6003d50
ncacn_ip_tcp: 10.100.8.12:6367
ncalrpc: OLEAEFAF006C65EF1B34185F8EC2B78
ncalrpc: LRPC-9f8147bdc8d6003d50
ncacn_ip_tcp: 217.64.109.250:6367
ncalrpc: OLEAEFAF006C65EF1B34185F8EC2B78
ncalrpc: LRPC-f2a52f3ef12801a436
ncacn_ip_tcp: 217.64.109.250:7170
ncalrpc: OLE6B61748597667DC05536DDD0FD68
ncalrpc: LRPC-f2a52f3ef12801a436
ncacn_ip_tcp: 217.64.109.250:7170
ncalrpc: OLE6B61748597667DC05536DDD0FD68
ncalrpc: LRPC-dad57a53d80edda34f
ncacn_ip_tcp: 217.64.109.250:10535
ncalrpc: OLEB09519615AD23826214562324EC1
ncalrpc: LRPC-dad57a53d80edda34f
ncacn_ip_tcp: 217.64.109.250:10535
ncalrpc: OLEB09519615AD23826214562324EC1
ncalrpc: LRPC-d304f53f284de714a1
ncacn_ip_tcp: 217.64.109.250:35812
ncalrpc: OLEEFE612F6195A93CCC05878CE6288
ncalrpc: LRPC-d304f53f284de714a1
ncacn_ip_tcp: 217.64.109.250:35812
ncalrpc: OLEEFE612F6195A93CCC05878CE6288
8fd9e884-86a5-4b2f-bc7c-2adaa75d0469
version: v1.0
ncalrpc: LRPC-f2a52f3ef12801a436
ncacn_ip_tcp: 217.64.109.250:7170
ncalrpc: OLE6B61748597667DC05536DDD0FD68
20434699-5e7e-47d6-95f6-698c4a0ec2f0
version: v1.0
ncalrpc: LRPC-f2a52f3ef12801a436
ncacn_ip_tcp: 217.64.109.250:7170
ncalrpc: OLE6B61748597667DC05536DDD0FD68
d9318e75-8a8b-4abb-88e7-aceb01f09e60
version: v1.0
ncalrpc: LRPC-f2a52f3ef12801a436
ncacn_ip_tcp: 217.64.109.250:7170
ncalrpc: OLE6B61748597667DC05536DDD0FD68
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 217.64.109.250:13905
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
annotation: IPSec Policy agent endpoint
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-376159c0d3de5faf55
ncacn_ip_tcp: 217.64.109.250:14088
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 217.64.109.250:14088
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc018DC032
a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
version: v1.0
ncalrpc: LRPC-281401996705b0de71
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-b89b3cb1379a3398b2
ncalrpc: LRPC-b89b3cb1379a3398b2
ncalrpc: LRPC-b89b3cb1379a3398b2
-1927911941 | 2024-11-25T01:17:31.983885
443 /
tcp
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.0
request-id: 4c59a541-a620-46e4-a045-fc58c6fd9b26
Set-Cookie: ClientId=ZCYVNKDYZUMNNZCWSRKQ; expires=Tue, 25-Nov-2025 01:17:09 GMT; path=/; HttpOnly
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 25 Nov 2024 01:17:09 GMT
Content-Length: 56418
Microsoft Exchange:
Name: Exchange Server 2013 CU23 Jan23SU
Build Number: 15.0.1497.45
Build Date: January 10, 2023
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:6f:fb:2d:0a:85:ce:24:73:ea:a8:5e:3b:96:29:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Thawte TLS RSA CA G1
Validity
Not Before: May 20 00:00:00 2024 GMT
Not After : Jun 20 23:59:59 2025 GMT
Subject: C=ML, L=Bamako, O=SOMAGEP SA - Soci\xC3\xA9t\xC3\xA9 Malienne de Gestion de l'Eau Potable SA, CN=*.somagep.ml
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:be:b6:54:05:3e:8a:d6:cf:b6:29:e9:eb:b3:9f:
bc:8f:01:15:c1:44:fe:a8:f8:a0:e3:79:48:35:3e:
24:4f:d3:33:82:8c:5f:3c:73:7a:89:94:b1:cc:c1:
a7:ac:58:2e:21:fe:64:f2:0f:c9:3c:3a:08:a6:fc:
58:fb:73:d0:07:a3:ac:03:e7:3e:70:41:5f:69:b4:
f0:9a:0e:d0:99:05:84:48:1b:1b:d8:41:d4:ef:0c:
76:62:d0:3c:b1:da:cb:f8:7f:01:a9:fb:f5:29:f2:
88:82:9e:53:d6:fc:96:b2:ea:c0:6e:2c:ad:9c:38:
70:39:29:75:39:2a:03:67:22:bd:d6:77:3f:99:9a:
20:94:16:b5:e8:0f:51:3f:01:c7:11:3e:fe:17:67:
f5:6f:4a:54:18:d1:72:e1:f4:c3:11:e6:a7:15:7c:
c0:4f:29:2d:a2:0f:e4:ac:79:32:e6:c9:05:7e:f7:
7f:81:0c:61:c5:3b:e9:2e:ed:6b:76:aa:c0:e4:2f:
89:67:7e:e0:c2:42:c6:50:23:44:7f:10:2c:7d:e3:
6c:7f:79:c1:2e:be:80:3d:6c:37:9d:03:5d:e4:15:
7f:59:34:9c:df:3d:f3:b7:dc:63:91:e5:73:fa:c6:
86:83:e6:3d:82:79:18:16:22:a5:58:a6:12:e2:45:
a4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
A5:8C:FE:32:CC:EB:0F:2C:D4:19:C6:08:B8:00:24:88:5D:C3:C5:B7
X509v3 Subject Key Identifier:
87:61:E7:94:78:BB:1E:86:86:67:7F:45:84:FD:EE:95:79:20:0E:7C
X509v3 Subject Alternative Name:
DNS:*.somagep.ml, DNS:somagep.ml
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.2
CPS: http://www.digicert.com/CPS
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://cdp.thawte.com/ThawteTLSRSACAG1.crl
Authority Information Access:
OCSP - URI:http://status.thawte.com
CA Issuers - URI:http://cacerts.thawte.com/ThawteTLSRSACAG1.crt
X509v3 Basic Constraints: critical
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : May 20 10:47:28.360 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:6E:C4:E2:59:8B:54:07:C9:88:09:7B:93:
26:42:C3:6E:02:90:64:FB:D0:74:A7:D6:6F:15:ED:84:
61:9E:BA:D3:02:20:7C:04:AD:F5:C8:18:F9:53:CB:7C:
53:50:4E:3C:A8:86:28:64:82:99:95:77:1E:E2:FD:81:
28:4D:96:6E:3D:A9
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : May 20 10:47:28.357 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:80:F0:6E:92:61:E0:F7:38:28:0C:C2:
DC:0C:74:9C:2D:18:BB:3C:CB:F4:51:A9:35:4E:FE:5A:
47:CB:2F:41:8C:02:20:76:92:12:81:F0:D2:37:7C:99:
14:17:83:28:0F:B0:6E:3C:52:C2:B4:21:4C:6A:55:54:
4F:2A:B0:13:70:FE:47
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
Timestamp : May 20 10:47:28.379 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:3C:86:EB:63:92:DC:88:B9:C2:15:C6:2E:
6B:73:14:59:E8:E1:01:CA:62:17:31:09:CC:6A:32:BA:
77:53:C5:CF:02:21:00:E5:3E:7A:65:73:BC:F7:79:B5:
71:AB:60:41:F2:83:2C:E1:24:54:ED:FD:A0:EA:3E:09:
38:FF:61:2D:E9:11:8A
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
1d:65:5f:6c:2d:70:80:ef:50:3d:e9:01:44:af:e0:bc:3d:f5:
75:a2:b9:6a:31:82:b7:dc:d8:44:df:9e:4f:c7:14:90:91:51:
9e:ad:e0:4d:28:fc:87:ac:25:b4:1d:99:9d:35:a7:0f:a8:8e:
24:97:ee:07:ae:b8:78:1a:b3:d5:ee:95:74:87:e2:40:fc:21:
26:15:d9:5d:cb:d0:3a:2f:53:bf:bd:34:05:06:cb:f1:bf:9e:
8c:b1:08:f4:1f:e2:6b:09:71:94:17:34:72:e0:35:85:5f:70:
1f:9d:8e:18:8b:fa:f4:85:af:f3:bc:70:84:00:18:00:24:af:
a0:28:6e:7e:8a:ae:c3:89:6a:cf:d7:fe:e2:dd:ca:4a:3a:ae:
62:49:ae:8e:fe:49:9c:c2:ca:2b:dd:d6:13:03:a8:e1:62:90:
b9:ec:1e:52:fd:67:22:72:2c:72:8d:63:d4:32:95:60:b2:23:
14:17:85:2a:a5:2c:24:c6:cc:bc:7c:8d:fb:d8:67:f5:ff:48:
56:6e:d2:05:4a:9d:03:45:a5:10:93:5c:b3:a9:3c:5b:ba:cd:
d3:3f:12:66:ef:2d:8a:9c:87:8f:1c:2c:0e:12:75:ba:e2:73:
2f:c8:d5:d4:08:8f:cf:74:99:cd:97:5e:53:4e:2d:65:ba:2c:
40:c2:ed:36
