GeneralInformation

Hostnames	iuk-sfr.de alamos.iuk-sfr.de autodiscover.iuk-sfr.de cloud.iuk-sfr.de mail.iuk-sfr.de passbolt.iuk-sfr.de fachdienst.iuk-suedfranken.de gps.iuk-suedfranken.de business-24-134-17-161.pool2.vodafone-ip.de ww-sfr.de autodiscover.ww-sfr.de mail.ww-sfr.de
Domains	iuk-sfr.de iuk-suedfranken.de vodafone-ip.de ww-sfr.de
Country	Germany
City	Bayreuth
Organization	KABEL-DEUTSCHLAND-CUSTOMER-SERVICES-28
ISP	Vodafone GmbH
ASN	AS3209

OpenPorts

25 80 443 5060

25 / tcp

2009243266 | 2025-04-02T09:10:23.179148

220 Server-Roth03.iuk-suedfranken.intern Microsoft ESMTP MAIL Service ready at Wed, 2 Apr 2025 11:10:15 +0200
250-Server-Roth03.iuk-suedfranken.intern Hello [224.71.202.31]
250-SIZE 125829120
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250 XRDST

SMTP NTLM Info:
  OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
  OS Build: 10.0.14393
  Target Name: IUK-SUEDFRANKEN
  NetBIOS Domain Name: IUK-SUEDFRANKEN
  NetBIOS Computer Name: SERVER-ROTH03
  DNS Domain Name: iuk-suedfranken.intern
  DNS Tree Name: iuk-suedfranken.intern
  FQDN: Server-Roth03.iuk-suedfranken.intern

80 / tcp

-1560955670 | 2025-04-07T07:30:18.033931

Hashes

hash

-2069865878

http.dom_hash

1713955586

http.favicon.hash

167837543

http.html_hash

-1560955670

http.robots_hash

-1022729730

http.server_hash

-675031582

http.title_hash

-1181849058

Nextcloud

HTTP/1.1 400 Bad Request
Date: Mon, 07 Apr 2025 07:30:17 GMT
Server: Apache/2.4.52 (Ubuntu)
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer
Set-Cookie: ocgp0371e31k=k50jljj7hmdt037ofe42a5as9v; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: oc_sessionPassphrase=Z0WVDI%2FMB6p1esnAwz%2BQw1sZhdTa%2B1X%2FrB%2Fp4qmosXHIIx%2BDdObslq57CZgSGq2oh8y%2F3H4oR0ZiOx3KYWUCtufnvngwZ5sUHZMQTqeFmjBnKHOne8vbToLr6ZlTDhZ5; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: ocgp0371e31k=k50jljj7hmdt037ofe42a5as9v; path=/; secure; HttpOnly; SameSite=Lax
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-KMthK3mMecg6atfzZflYydiMMDDAY8eLDe0HoN4nkNs='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Set-Cookie: ocgp0371e31k=k50jljj7hmdt037ofe42a5as9v; path=/; secure; HttpOnly; SameSite=Lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

443 / tcp

-300022727 | 2025-04-06T05:36:02.240312

Hashes

hash

1878252445

http.dom_hash

1713955586

http.favicon.hash

167837543

http.html_hash

-300022727

http.robots_hash

-1022729730

http.server_hash

-675031582

http.title_hash

-1181849058

Nextcloud

HTTP/1.1 400 Bad Request
Date: Sun, 06 Apr 2025 05:36:01 GMT
Server: Apache/2.4.52 (Ubuntu)
Strict-Transport-Security: max-age=15552000
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow
X-XSS-Protection: 1; mode=block
Referrer-Policy: no-referrer
Set-Cookie: ocgp0371e31k=v1e0mv8d2spo0do2djujr3ervv; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: oc_sessionPassphrase=CJD%2FITU22qBJJrGloCVxJuGqQy7dqg8kHZTlgDAUw%2FF1OolinREN3pr5fn4YJx%2FQZuhcezUDNRVsUd4y4Uoe6pW%2Bm3vYmZbiwqOL4Z9pLGKV5MM%2FhZrXx5YeU7UdAD5y; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: ocgp0371e31k=v1e0mv8d2spo0do2djujr3ervv; path=/; secure; HttpOnly; SameSite=Lax
Content-Security-Policy: default-src 'self'; script-src 'self' 'nonce-11XCKWvZxFd8VeYUk0UIHUgolK5lFbs68b9uVCvZM5w='; style-src 'self' 'unsafe-inline'; frame-src *; img-src * data: blob:; font-src 'self' data:; media-src *; connect-src *; object-src 'none'; base-uri 'self';
Set-Cookie: __Host-nc_sameSiteCookielax=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=lax
Set-Cookie: __Host-nc_sameSiteCookiestrict=true; path=/; httponly;secure; expires=Fri, 31-Dec-2100 23:59:59 GMT; SameSite=strict
Set-Cookie: ocgp0371e31k=v1e0mv8d2spo0do2djujr3ervv; path=/; secure; HttpOnly; SameSite=Lax
Connection: close
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:8b:aa:16:e5:35:3e:9b:a7:e0:90:cc:25:4b:c9:e0:72:01
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Mar  6 11:54:09 2025 GMT
            Not After : Jun  4 11:54:08 2025 GMT
        Subject: CN=iuk-sfr.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9c:57:57:04:de:8d:98:5c:fd:bb:50:f9:9c:3b:
                    30:2a:56:9d:e9:14:f9:60:c6:ed:3d:0c:9f:f9:8e:
                    d8:64:ee:30:31:2b:50:2c:1b:fc:e7:2d:6a:08:bc:
                    d6:71:e1:99:7e:a4:5c:5d:ee:26:b2:d7:ad:e3:2c:
                    c6:61:58:08:bb:26:cd:aa:46:59:35:7b:00:15:76:
                    92:e0:73:d6:5e:bb:d1:21:8c:24:af:49:8c:b7:5a:
                    e8:34:4a:8d:1f:12:bb:01:60:39:32:7b:47:bd:34:
                    d2:1d:a9:4f:b1:9c:5d:45:46:c2:9e:03:ca:ec:a6:
                    dc:81:bd:d6:57:29:5d:7e:b1:00:2d:22:b2:c0:19:
                    5a:7f:b9:44:60:ae:de:9e:aa:8a:e6:0e:b6:c1:98:
                    61:86:c5:a2:95:d7:99:a5:70:16:50:bd:a8:77:7e:
                    b6:93:79:27:da:c0:ab:ec:58:60:65:08:f2:61:05:
                    ea:73:bc:33:28:cd:10:30:10:d7:44:e0:69:3a:8f:
                    cb:8c:98:1f:af:08:b8:97:b6:e2:6f:04:4d:22:1a:
                    33:d7:3b:72:ac:7f:bc:c3:0b:6d:86:2e:00:04:5f:
                    0c:37:d3:8a:e7:20:83:f6:b6:bb:57:c8:5c:c9:66:
                    17:1b:8a:76:c2:8f:41:45:3e:d6:31:e4:3f:7d:19:
                    b1:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                1A:CA:98:35:40:0D:17:22:FF:8E:0C:6A:1B:EE:F3:31:0B:DA:AD:FD
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:alamos.iuk-sfr.de, DNS:autodiscover.iuk-sfr.de, DNS:autodiscover.ww-sfr.de, DNS:cloud.iuk-sfr.de, DNS:fachdienst.iuk-suedfranken.de, DNS:gps.iuk-suedfranken.de, DNS:iuk-sfr.de, DNS:mail.iuk-sfr.de, DNS:mail.ww-sfr.de, DNS:passbolt.iuk-sfr.de, DNS:ww-sfr.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
                                87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
                    Timestamp : Mar  6 12:52:39.455 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E0:0D:FA:DC:B0:EC:B2:EB:BE:29:2B:
                                67:59:38:C3:59:BE:24:69:8E:07:06:CA:73:B5:F4:E0:
                                FF:80:9A:59:71:02:21:00:B5:B8:F5:EF:19:79:28:22:
                                03:F8:78:40:47:C7:E3:B0:4D:6D:BC:FF:C7:AD:1A:E1:
                                B4:02:3B:C1:C6:BF:61:10
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar  6 12:52:39.531 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:6C:B2:60:BB:06:69:1B:E5:6D:A2:CB:4F:
                                B6:40:25:55:D7:C3:33:5D:64:29:B9:28:E8:1F:44:4B:
                                A6:19:1D:C5:02:20:16:3D:3E:78:83:2F:29:37:EA:AD:
                                10:A7:DB:55:6E:30:23:D7:6D:F2:80:B0:2A:38:E6:DB:
                                92:79:BF:CC:B0:14
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        90:4a:0b:4a:b9:5d:bd:15:e6:34:d6:57:ca:08:e7:b1:72:3f:
        69:b8:76:4c:01:94:6e:bf:1b:23:1a:2c:3d:cc:0d:28:de:e7:
        a3:ae:37:3d:a0:6d:eb:29:89:a5:51:b4:79:18:ad:7a:59:7c:
        0b:a5:0f:b8:d5:ca:ea:1e:dc:33:3f:34:54:c6:c7:a6:cb:10:
        d6:f1:ab:6e:16:96:86:9f:86:b9:1c:f6:a3:53:b4:da:3b:cd:
        97:16:4c:bd:87:d5:6a:4b:82:97:14:6f:22:b8:07:53:1e:0f:
        0a:86:d3:e9:85:c4:c6:87:3b:4b:8f:04:15:04:a4:8c:b5:a5:
        0b:77:2d:ef:68:ef:6e:c7:b6:cb:09:17:54:15:6e:81:17:67:
        a9:a3:e4:b4:fb:6a:ef:b6:64:cb:e0:5e:38:be:3b:20:7d:54:
        0b:6f:1f:58:a5:1f:07:6b:a8:36:a8:4d:33:e0:2b:f7:90:7a:
        2c:e2:cf:a7:3e:17:8c:02:f5:a9:98:03:44:53:2b:1b:b5:dd:
        88:19:27:98:52:ab:02:12:b9:d5:ef:f9:79:74:d0:da:29:36:
        bd:0f:a5:51:b9:e1:84:89:c8:9a:bb:9b:6c:01:28:7e:73:8b:
        c0:aa:07:25:9b:d3:c9:f9:91:b2:84:c6:6f:c7:28:25:98:54:
        71:36:df:5d

5060 / udp

1031479015 | 2025-03-28T03:10:43.814917

SIP/2.0 200 OK
Via: SIP/2.0/UDP nm;branch=foo;rport=26810;received=224.167.92.114
Contact: <sip:192.168.8.10:5060>
To: <sip:nm2@nm2>;tag=ce8c367a
From: <sip:nm@nm>;tag=root
Call-ID: 50000
CSeq: 42 OPTIONS
Accept: application/sdp, multipart/mixed, application/csta+xml
Accept-Language: en
Allow: INVITE, ACK, CANCEL, OPTIONS, BYE, UPDATE, NOTIFY, REFER, PRACK, INFO, MESSAGE
Supported: timer
User-Agent: Auerswald COMpact 4000/8.6B000
Content-Length: 0

24.134.17.161

Last Seen: 2025-04-07

GeneralInformation

OpenPorts

25 / tcp

2009243266 | 2025-04-02T09:10:23.179148

Microsoft Exchange smtpd

80 / tcp

-1560955670 | 2025-04-07T07:30:18.033931

Hashes

Nextcloud

443 / tcp

-300022727 | 2025-04-06T05:36:02.240312

Hashes

Nextcloud

5060 / udp

1031479015 | 2025-03-28T03:10:43.814917

Products

Pricing

Contact Us

24.134.17.161

Last Seen: 2025-04-07

GeneralInformation

OpenPorts

25 / tcp 2009243266 | 2025-04-02T09:10:23.179148

Microsoft Exchange smtpd

80 / tcp -1560955670 | 2025-04-07T07:30:18.033931

Hashes

Nextcloud

443 / tcp -300022727 | 2025-04-06T05:36:02.240312

Hashes

Nextcloud

5060 / udp 1031479015 | 2025-03-28T03:10:43.814917

Products

Pricing

Contact Us

25 / tcp

2009243266 | 2025-04-02T09:10:23.179148

80 / tcp

-1560955670 | 2025-04-07T07:30:18.033931

443 / tcp

-300022727 | 2025-04-06T05:36:02.240312

5060 / udp

1031479015 | 2025-03-28T03:10:43.814917