Hostnames |
vmi2075301.contaboserver.net hopeful-curie.45-159-223-104.plesk.page |
Domains | contaboserver.net plesk.page |
Country | Germany |
City | Frankfurt am Main |
Organization | Contabo GmbH |
ISP | Contabo GmbH |
ASN | AS51167 |
Operating System | Windows |
-370734890 | 2024-10-23T00:07:16.15660421 / tcp
220 Microsoft FTP Service 530 User cannot log in. 214-The following commands are recognized (* ==>'s unimplemented). ABOR ACCT ADAT * ALLO APPE AUTH CCC CDUP CWD DELE ENC * EPRT EPSV FEAT HELP HOST LANG LIST MDTM MIC * MKD MODE NLST NOOP OPTS PASS PASV PBSZ PORT PROT PWD QUIT REIN REST RETR RMD RNFR RNTO SITE SIZE SMNT STAT STOR STOU STRU SYST TYPE USER XCUP XCWD XMKD XPWD XRMD 214 HELP command successful. 211-Extended features supported: LANG EN* UTF8 AUTH TLS;TLS-C;SSL;TLS-P; PBSZ PROT C;P; CCC HOST SIZE MDTM REST STREAM 211 END
Certificate: Data: Version: 3 (0x2) Serial Number: 487140 (0x76ee4) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 10 17:03:59 2024 GMT Not After : Aug 10 17:03:59 2025 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ab:b4:c7:a0:f1:f2:22:93:0d:2e:ff:09:86:7a: 0a:a3:02:52:3b:d7:9c:4f:ea:95:28:ba:e1:d1:2e: 35:d4:9a:04:b9:54:d6:f9:d7:91:0b:6a:74:58:87: 60:2c:b5:f9:b4:c2:ee:8d:01:b3:cb:1e:bb:85:f0: 6c:52:d3:eb:16:06:05:31:30:b2:8e:eb:fc:4d:24: 98:f8:04:73:06:92:be:eb:2f:c8:51:f6:46:4a:df: 6e:34:82:69:a1:ca:a7:87:97:b1:4f:cd:3d:eb:a0: 9e:bd:5f:04:8f:7b:64:3d:af:dc:73:e7:54:92:51: b0:72:35:1a:b0:cf:cf:2b:a9:9e:86:80:db:8b:a3: b0:b3:0b:35:11:4f:36:6c:bd:b5:97:cd:b8:39:b7: a3:d0:d7:f4:96:94:73:29:b9:0a:b8:45:91:ce:08: a2:ec:ac:97:18:ca:06:66:8c:df:9d:e0:2c:25:9c: 1f:bb:3d:5b:b2:ea:f0:65:21:47:b7:88:3d:de:eb: ef:e9:75:a1:e5:c0:1c:99:fb:65:39:6e:2f:bf:dd: 8c:fe:87:32:37:56:7f:20:2e:4e:51:d1:51:ec:6e: 34:f2:ae:50:71:ee:d5:ed:11:43:f5:0a:93:66:0b: 29:0c:c7:17:07:39:5d:2c:b4:38:a5:1c:55:7b:08: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 X509v3 Authority Key Identifier: keyid:62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:07:6E:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 6d:ac:47:9d:ef:ed:73:08:16:48:6f:f4:67:17:34:a9:4b:87: 41:92:22:af:25:52:2d:12:01:f5:10:78:e4:af:fa:bb:d1:ca: e6:ee:cf:eb:d9:7d:f4:86:13:f9:a3:3e:c5:7b:89:01:75:79: c7:44:88:77:88:b5:e7:9e:ca:9d:95:03:14:0c:9b:7d:40:2b: 3f:fa:0f:51:da:17:48:01:14:64:8e:7c:79:14:55:1d:1e:45: 71:77:78:19:9e:79:b6:89:f2:8a:f2:d4:95:a0:ad:e0:89:a0: 93:54:10:b2:83:40:96:5e:b0:fe:b4:3a:67:0d:49:2d:d9:52: 1c:43:f8:04:84:f6:f8:9f:5f:85:02:0b:13:93:c2:f2:cf:95: ea:d1:ad:b5:b5:40:44:b9:b4:87:b9:14:bf:ff:94:79:1b:f2: 11:df:0c:ab:73:ff:23:cb:04:85:77:9a:bb:68:96:fc:a7:4d: 77:75:9c:38:de:b8:72:0e:02:02:33:24:84:76:fe:2d:38:a0: 99:40:4b:4c:f8:a4:48:ef:e2:7b:58:46:56:69:e0:03:3c:06: e4:d6:0a:94:67:fe:bf:cd:b2:8f:da:30:82:59:3c:42:1f:49: 90:f8:fc:79:e2:84:f7:f0:7a:10:ac:61:c1:78:2d:46:82:c5: b0:52:99:84
-968062923 | 2024-10-17T13:43:43.96295625 / tcp
220 VMI2075301.home ESMTP MailEnable Service, Version: 10.48-- ready at 10/17/24 16:43:00 250-home [224.154.64.188], this server offers 5 extensions 250-AUTH LOGIN 250-SIZE 40960000 250-HELP 250-AUTH=LOGIN 250 STARTTLS
Certificate: Data: Version: 3 (0x2) Serial Number: 487140 (0x76ee4) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 10 17:03:59 2024 GMT Not After : Aug 10 17:03:59 2025 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ab:b4:c7:a0:f1:f2:22:93:0d:2e:ff:09:86:7a: 0a:a3:02:52:3b:d7:9c:4f:ea:95:28:ba:e1:d1:2e: 35:d4:9a:04:b9:54:d6:f9:d7:91:0b:6a:74:58:87: 60:2c:b5:f9:b4:c2:ee:8d:01:b3:cb:1e:bb:85:f0: 6c:52:d3:eb:16:06:05:31:30:b2:8e:eb:fc:4d:24: 98:f8:04:73:06:92:be:eb:2f:c8:51:f6:46:4a:df: 6e:34:82:69:a1:ca:a7:87:97:b1:4f:cd:3d:eb:a0: 9e:bd:5f:04:8f:7b:64:3d:af:dc:73:e7:54:92:51: b0:72:35:1a:b0:cf:cf:2b:a9:9e:86:80:db:8b:a3: b0:b3:0b:35:11:4f:36:6c:bd:b5:97:cd:b8:39:b7: a3:d0:d7:f4:96:94:73:29:b9:0a:b8:45:91:ce:08: a2:ec:ac:97:18:ca:06:66:8c:df:9d:e0:2c:25:9c: 1f:bb:3d:5b:b2:ea:f0:65:21:47:b7:88:3d:de:eb: ef:e9:75:a1:e5:c0:1c:99:fb:65:39:6e:2f:bf:dd: 8c:fe:87:32:37:56:7f:20:2e:4e:51:d1:51:ec:6e: 34:f2:ae:50:71:ee:d5:ed:11:43:f5:0a:93:66:0b: 29:0c:c7:17:07:39:5d:2c:b4:38:a5:1c:55:7b:08: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 X509v3 Authority Key Identifier: keyid:62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:07:6E:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 6d:ac:47:9d:ef:ed:73:08:16:48:6f:f4:67:17:34:a9:4b:87: 41:92:22:af:25:52:2d:12:01:f5:10:78:e4:af:fa:bb:d1:ca: e6:ee:cf:eb:d9:7d:f4:86:13:f9:a3:3e:c5:7b:89:01:75:79: c7:44:88:77:88:b5:e7:9e:ca:9d:95:03:14:0c:9b:7d:40:2b: 3f:fa:0f:51:da:17:48:01:14:64:8e:7c:79:14:55:1d:1e:45: 71:77:78:19:9e:79:b6:89:f2:8a:f2:d4:95:a0:ad:e0:89:a0: 93:54:10:b2:83:40:96:5e:b0:fe:b4:3a:67:0d:49:2d:d9:52: 1c:43:f8:04:84:f6:f8:9f:5f:85:02:0b:13:93:c2:f2:cf:95: ea:d1:ad:b5:b5:40:44:b9:b4:87:b9:14:bf:ff:94:79:1b:f2: 11:df:0c:ab:73:ff:23:cb:04:85:77:9a:bb:68:96:fc:a7:4d: 77:75:9c:38:de:b8:72:0e:02:02:33:24:84:76:fe:2d:38:a0: 99:40:4b:4c:f8:a4:48:ef:e2:7b:58:46:56:69:e0:03:3c:06: e4:d6:0a:94:67:fe:bf:cd:b2:8f:da:30:82:59:3c:42:1f:49: 90:f8:fc:79:e2:84:f7:f0:7a:10:ac:61:c1:78:2d:46:82:c5: b0:52:99:84
-681919461 | 2024-10-22T08:20:05.91327980 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Thu, 25 Jan 2024 15:25:14 GMT Accept-Ranges: bytes ETag: "0e95fb1a24fda1:0" Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET Date: Tue, 22 Oct 2024 08:20:04 GMT Content-Length: 1686
-471102630 | 2024-10-24T08:00:16.138876110 / tcp
+OK Welcome to MailEnable POP3 Server +OK Capability list follows TOP USER UIDL .
-354971969 | 2024-10-21T00:34:58.449840135 / tcp
Microsoft RPC Endpoint Mapper 51a227ae-825b-41f2-b4a9-1ac9557a1018 version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 45.159.223.104:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI2075301\pipe\lsass 8fb74744-b2ff-4c00-be0d-9ef9a191fe1b version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 45.159.223.104:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI2075301\pipe\lsass b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v2.0 annotation: KeyIso ncacn_ip_tcp: 45.159.223.104:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI2075301\pipe\lsass 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 45.159.223.104:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI2075301\pipe\lsass d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 45.159.223.104:49665 ncalrpc: WindowsShutdown ncacn_np: \\VMI2075301\PIPE\InitShutdown ncalrpc: WMsgKRpc055CF0 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\VMI2075301\PIPE\InitShutdown ncalrpc: WMsgKRpc055CF0 ncalrpc: WMsgKRpc058B61 d09bdeb5-6171-4a34-bfe2-06fa82652568 version: v1.0 ncalrpc: csebpub ncalrpc: LRPC-8b062193d460e034b8 ncalrpc: LRPC-de548635edfeb03451 ncalrpc: LRPC-d19776f4e12d69bce0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-de548635edfeb03451 ncalrpc: LRPC-d19776f4e12d69bce0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-d19776f4e12d69bce0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-3e93a15151fc87e593 ncalrpc: LRPC-ea0c65ee28f80713da 697dcda9-3ba9-4eb2-9247-e11f1901b0d2 version: v1.0 ncalrpc: LRPC-8b062193d460e034b8 ncalrpc: LRPC-de548635edfeb03451 ncalrpc: LRPC-d19776f4e12d69bce0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 9b008953-f195-4bf9-bde0-4471971e58ed version: v1.0 ncalrpc: LRPC-de548635edfeb03451 ncalrpc: LRPC-d19776f4e12d69bce0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 0d47017b-b33b-46ad-9e18-fe96456c5078 version: v1.0 ncalrpc: umpo 95406f0b-b239-4318-91bb-cea3a46ff0dc version: v1.0 ncalrpc: umpo 4ed8abcc-f1e2-438b-981f-bb0e8abc010c version: v1.0 ncalrpc: umpo 0ff1f646-13bb-400a-ab50-9a78f2b7a85a version: v1.0 ncalrpc: umpo 6982a06e-5fe2-46b1-b39c-a2c545bfa069 version: v1.0 ncalrpc: umpo 082a3471-31b6-422a-b931-a54401960c62 version: v1.0 ncalrpc: umpo fae436b0-b864-4a87-9eda-298547cd82f2 version: v1.0 ncalrpc: umpo e53d94ca-7464-4839-b044-09a2fb8b3ae5 version: v1.0 ncalrpc: umpo 178d84be-9291-4994-82c6-3f909aca5a03 version: v1.0 ncalrpc: umpo 4dace966-a243-4450-ae3f-9b7bcb5315b8 version: v2.0 ncalrpc: umpo 1832bcf6-cab8-41d4-85d2-c9410764f75a version: v1.0 ncalrpc: umpo c521facf-09a9-42c5-b155-72388595cbf0 version: v0.0 ncalrpc: umpo 2c7fd9ce-e706-4b40-b412-953107ef9bb0 version: v0.0 ncalrpc: umpo 88abcbc3-34ea-76ae-8215-767520655a23 version: v0.0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 76c217bc-c8b4-4201-a745-373ad9032b1a version: v1.0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 55e6b932-1979-45d6-90c5-7f6270724112 version: v1.0 ncalrpc: LRPC-d64dddb3411442c733 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 857fb1be-084f-4fb5-b59c-4b2c4be5f0cf version: v1.0 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 20c40295-8dba-48e6-aebf-3e78ef3bb144 version: v2.0 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 2513bcbe-6cd4-4348-855e-7efb3c336dd3 version: v2.0 ncalrpc: OLE608E0B9D3F870E834A755711D09F ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e version: v1.0 ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo c605f9fb-f0a3-4e2a-a073-73560f8d9e3e version: v1.0 ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0 version: v1.0 ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 8bfc3be1-6def-4e2d-af74-7c47cd0ade4a version: v1.0 ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo 2d98a740-581d-41b9-aa0d-a88b9d5ce938 version: v1.0 ncalrpc: LRPC-c3fdb8dd955f6ebb43 ncalrpc: actkernel ncalrpc: umpo dd59071b-3215-4c59-8481-972edadc0f6a version: v1.0 ncalrpc: actkernel ncalrpc: umpo 0361ae94-0316-4c6c-8ad8-c594375800e2 version: v1.0 ncalrpc: umpo 5824833b-3c1a-4ad2-bdfd-c31d19e23ed2 version: v1.0 ncalrpc: umpo bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760 version: v1.0 ncalrpc: umpo 3b338d89-6cfa-44b8-847e-531531bc9992 version: v1.0 ncalrpc: umpo 8782d3b9-ebbd-4644-a3d8-e8725381919b version: v1.0 ncalrpc: umpo 085b0334-e454-4d91-9b8c-4134f9e793f3 version: v1.0 ncalrpc: umpo 4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9 version: v1.0 ncalrpc: umpo c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-5ce3e51681de2a6a12 ncalrpc: LRPC-d044ea4d6c261823ef ncalrpc: IUserProfile2 ncalrpc: LRPC-07b8d5375470d37be9 ncalrpc: senssvc ncalrpc: LRPC-2959376c865da83d6d e40f7b57-7a25-4cd3-a135-7f7d3df9d16b version: v1.0 ncalrpc: LRPC-b71395b7fbb6796a39 880fd55e-43b9-11e0-b1a8-cf4edfd72085 version: v1.0 annotation: KAPI Service endpoint ncalrpc: LRPC-30db85746b256ac4d1 ncalrpc: OLE6E065E18641E8C8D54C892114AB4 ncalrpc: LRPC-3e93a15151fc87e593 5222821f-d5e2-4885-84f1-5f6185a0ec41 version: v1.0 ncalrpc: LRPC-8202cc6ca591c601e0 a500d4c6-0dd1-4543-bc0c-d5f93486eaf8 version: v1.0 ncalrpc: LRPC-0bda23de1e047575ec ncalrpc: LRPC-ea0c65ee28f80713da f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 45.159.223.104:49666 ncacn_np: \\VMI2075301\pipe\eventlog ncalrpc: eventlog 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-d55c4f8100c648f21d 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 annotation: Group Policy RPC Interface provider: gpsvc.dll ncalrpc: LRPC-15741ca878f48263bf 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 3a9ef155-691d-4449-8d05-09ad57031823 version: v1.0 ncacn_ip_tcp: 45.159.223.104:49667 ncalrpc: LRPC-cbc9379b7014d1adf9 ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI2075301\PIPE\atsvc ncalrpc: LRPC-78b0c318858fd5524e 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 45.159.223.104:49667 ncalrpc: LRPC-cbc9379b7014d1adf9 ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI2075301\PIPE\atsvc ncalrpc: LRPC-78b0c318858fd5524e 33d84484-3626-47ee-8c6f-e7e98b113be1 version: v2.0 ncalrpc: LRPC-cbc9379b7014d1adf9 ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI2075301\PIPE\atsvc ncalrpc: LRPC-78b0c318858fd5524e 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\VMI2075301\PIPE\atsvc ncalrpc: LRPC-78b0c318858fd5524e 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\VMI2075301\PIPE\atsvc ncalrpc: LRPC-78b0c318858fd5524e 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: LRPC-78b0c318858fd5524e 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncalrpc: LRPC-9c378b0ecfbf2e7654 3f787932-3452-4363-8651-6ea97bb373bb version: v1.0 annotation: NSP Rpc Interface ncalrpc: LRPC-41ac92280ff71787ea ncalrpc: OLEF1A516A995E6E2066A2969C47617 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\VMI2075301\PIPE\wkssvc ncalrpc: LRPC-af0401354723a90a51 eb081a0d-10ee-478a-a1dd-50995283e7a8 version: v3.0 annotation: Witness Client Test Interface ncalrpc: LRPC-af0401354723a90a51 f2c9b409-c1c9-4100-8639-d8ab1486694a version: v1.0 annotation: Witness Client Upcall Server ncalrpc: LRPC-af0401354723a90a51 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncalrpc: LRPC-17f07914d7ee73c17c ncalrpc: DNSResolver 29770a8f-829b-4158-90a2-78cd488501f7 version: v1.0 ncacn_ip_tcp: 45.159.223.104:49668 ncacn_np: \\VMI2075301\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: LRPC-2959376c865da83d6d 0d3c7f20-1c8d-4654-a1b3-51563b298bda version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-f7f156b8c14ff1a876 ncalrpc: OLE4B2D848DE7D5927C73EEB8CB6C0D b18fbab6-56f8-4702-84e0-41053293a869 version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-f7f156b8c14ff1a876 ncalrpc: OLE4B2D848DE7D5927C73EEB8CB6C0D 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncalrpc: bfa59126-d04c-4f89-a742-24623ab9653e ncalrpc: LRPC-56df25cabea7be9397 13560fa9-8c09-4b56-a1fd-04d083b9b2a1 version: v1.0 ncalrpc: LRPC-2b00bb2f77ddf1799a ncalrpc: OLEAF439407CBB92BEDDA0BA0C49F9F c2d1b5dd-fa81-4460-9dd6-e7658b85454b version: v1.0 ncalrpc: LRPC-2b00bb2f77ddf1799a ncalrpc: OLEAF439407CBB92BEDDA0BA0C49F9F f44e62af-dab1-44c2-8013-049a9de417d6 version: v1.0 ncalrpc: LRPC-2b00bb2f77ddf1799a ncalrpc: OLEAF439407CBB92BEDDA0BA0C49F9F b37f900a-eae4-4304-a2ab-12bb668c0188 version: v1.0 ncalrpc: LRPC-2b00bb2f77ddf1799a ncalrpc: OLEAF439407CBB92BEDDA0BA0C49F9F abfb6ca3-0c5e-4734-9285-0aee72fe8d1c version: v1.0 ncalrpc: LRPC-2b00bb2f77ddf1799a ncalrpc: OLEAF439407CBB92BEDDA0BA0C49F9F 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-64f6c8ff1d707534a3 ncalrpc: LRPC-89d6d91927d0a882c9 ncalrpc: LRPC-ee6e1a2584f847a7f7 ncalrpc: LRPC-f9988ad0546a84da81 f47433c3-3e9d-4157-aad4-83aa1f5c2d4c version: v1.0 annotation: Fw APIs ncalrpc: LRPC-89d6d91927d0a882c9 ncalrpc: LRPC-ee6e1a2584f847a7f7 ncalrpc: LRPC-f9988ad0546a84da81 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-ee6e1a2584f847a7f7 ncalrpc: LRPC-f9988ad0546a84da81 dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-f9988ad0546a84da81 76f03f96-cdfd-44fc-a22c-64950a001209 version: v1.0 protocol: [MS-PAR]: Print System Asynchronous Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 45.159.223.104:49669 ncalrpc: LRPC-57fb37fde2d58830eb 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 provider: spoolsv.exe ncacn_ip_tcp: 45.159.223.104:49669 ncalrpc: LRPC-57fb37fde2d58830eb ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 45.159.223.104:49669 ncalrpc: LRPC-57fb37fde2d58830eb 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 45.159.223.104:49669 ncalrpc: LRPC-57fb37fde2d58830eb 12345678-1234-abcd-ef00-0123456789ab version: v1.0 protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 45.159.223.104:49669 ncalrpc: LRPC-57fb37fde2d58830eb c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1 version: v1.0 annotation: Adh APIs ncalrpc: OLE31C266E3A0DF9B670845F13C8A09 ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-c6751b993f54f93c10 c36be077-e14b-4fe9-8abc-e856ef4f048b version: v1.0 annotation: Proxy Manager client server endpoint ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-c6751b993f54f93c10 2e6035b2-e8f1-41a7-a044-656b439c4c34 version: v1.0 annotation: Proxy Manager provider server endpoint ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-c6751b993f54f93c10 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncalrpc: LRPC-c6751b993f54f93c10 b58aa02e-2884-4e97-8176-4ee06d794184 version: v1.0 provider: sysmain.dll ncalrpc: LRPC-b6c676e6094bf8d53d 1a0d010f-1c33-432c-b0f5-8cf4e8053099 version: v1.0 annotation: IdSegSrv service ncalrpc: LRPC-0403ccb5ca55a0ba2e 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncalrpc: LRPC-0403ccb5ca55a0ba2e 1d45e083-478f-437c-9618-3594ced8c235 version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 98cd761e-e77d-41c8-a3c0-0fb756d90ec2 version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 d22895ef-aff4-42c5-a5b2-b14466d34ab4 version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 e38f5360-8572-473e-b696-1b46873beeab version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 95095ec8-32ea-4eb0-a3e2-041f97b36168 version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 4c9dbf19-d39e-4bb9-90ee-8f7179b20283 version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 d4051bde-9cdd-4910-b393-4aa85ec3c482 version: v1.0 ncalrpc: LRPC-e31672a91463270f15 ncalrpc: OLEB3437E44535787821C63BF515C90 7df1ceae-de4e-4e6f-ab14-49636e7c2052 version: v1.0 ncalrpc: LRPC-225a3c25cdb87d6c1a 50abc2a4-574d-40b3-9d66-ee4fd5fba076 version: v5.0 protocol: [MS-DNSP]: Domain Name Service (DNS) Server Management provider: dns.exe ncacn_ip_tcp: 45.159.223.104:49670 650a7e26-eab8-5533-ce43-9c1dfce11511 version: v1.0 annotation: Vpn APIs ncalrpc: LRPC-084504f9c249d35573 ncalrpc: VpnikeRpc ncalrpc: RasmanLrpc ncacn_np: \\VMI2075301\PIPE\ROUTER 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 45.159.223.104:49672 f3f09ffd-fbcf-4291-944d-70ad6e0e73bb version: v1.0 ncalrpc: LRPC-61cd3095c9e0446e96 509bc7ae-77be-4ee8-b07c-0d096bb44345 version: v1.0 ncalrpc: LRPC-ffe57f6fd77ff6a28d ncalrpc: OLE18653EB9CF37507BD31B30356A81 c503f532-443a-4c69-8300-ccd1fbdb3839 version: v2.0 ncalrpc: LRPC-8f25260b6d17c7eb94 ncalrpc: OLE4B9EC02DF2784B03CEB69A1D1367 0767a036-0d22-48aa-ba69-b619480f38cb version: v1.0 annotation: PcaSvc provider: pcasvc.dll ncalrpc: LRPC-62abe80e8e52939ea8 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-dbfa5437e4411a5f9a ncalrpc: LRPC-dbfa5437e4411a5f9a ncalrpc: LRPC-dbfa5437e4411a5f9a d249bd56-4cc0-4fd3-8ce6-6fe050d590cb version: v0.0 ncalrpc: LRPC-71bd0e04e4e23e76f0 d8140e00-5c46-4ae6-80ac-2f9a76df224c version: v0.0 ncalrpc: LRPC-71bd0e04e4e23e76f0 bf4dc912-e52f-4904-8ebe-9317c1bdd497 version: v1.0 ncalrpc: LRPC-767a31e385393fed43 ncalrpc: OLEA033D9C7959835565FCB4A078262 58e604e8-9adb-4d2e-a464-3b0683fb1480 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-ef45561da67904e37e fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-ef45561da67904e37e 5f54ce7d-5b79-4175-8584-cb65313a0e98 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-ef45561da67904e37e 201ef99a-7fa0-444c-9399-19ba84f12a1a version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-ef45561da67904e37e 0497b57d-2e66-424f-a0c6-157cd5d41700 version: v1.0 annotation: AppInfo ncalrpc: LRPC-ef45561da67904e37e
-1528628992 | 2024-10-05T19:26:54.451134443 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 Pragma: no-cache Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8 Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Sat, 05 Oct 2024 19:26:53 GMT Server: Microsoft-IIS/10.0 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Powered-By: ASP.NET X-Content-Type-Options: nosniff X-Powered-By: ARR/3.0 X-Powered-By: ASP.NET Date: Sat, 05 Oct 2024 19:26:53 GMT
Certificate: Data: Version: 3 (0x2) Serial Number: 03:d3:35:44:01:8a:03:a5:10:6b:c3:ef:38:47:8f:01:8b:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R11 Validity Not Before: Aug 10 15:22:23 2024 GMT Not After : Nov 8 15:22:22 2024 GMT Subject: CN=hopeful-curie.45-159-223-104.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:9b:e9:e6:41:04:84:50:8b:a3:45:da:79:c8:76: 20:a7:8b:c9:1f:6e:70:a2:10:14:5b:d7:a6:b1:06: 9b:63:7e:16:fb:f5:65:54:8a:f0:6e:a6:06:d9:93: 30:6d:14:e5:08:16:85:80:5c:cb:78:93:61:fb:87: cf:99:f4:b5:a3:5f:46:01:f1:27:d0:94:b9:37:32: 42:2b:38:be:2d:4f:c4:03:85:69:93:be:58:51:7b: 03:e8:85:11:c8:6d:80:6a:9e:54:65:85:80:50:04: ad:a9:76:ee:cb:c8:9f:04:5c:8f:e8:35:56:8f:6b: a8:ad:5a:1b:56:da:f8:b5:f7:10:c6:ec:12:62:e3: 1c:8d:f7:f4:37:a1:1e:42:c8:d4:0b:9a:d8:6c:7d: 59:d7:e6:d1:eb:7c:cd:d0:10:1d:c7:d8:19:c6:68: 53:79:22:b3:d8:df:32:b7:fd:36:ed:f7:27:7f:df: 64:b3:52:67:90:9f:89:d5:51:cf:4c:17:fb:43:cc: 7a:dd:9d:fd:24:41:96:31:1f:63:2b:05:9f:5d:2b: 9f:11:9d:f4:75:f4:36:8f:c5:74:54:93:7f:43:25: e5:7d:60:bd:f6:94:e1:8a:f5:1a:d9:2f:5b:81:70: e0:36:19:0c:34:0e:ed:59:e5:2f:77:e6:93:c4:13: 64:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 59:D1:7A:6D:88:2B:53:3B:FB:39:BA:58:10:04:80:58:DB:4A:4B:75 X509v3 Authority Key Identifier: C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9 Authority Information Access: OCSP - URI:http://r11.o.lencr.org CA Issuers - URI:http://r11.i.lencr.org/ X509v3 Subject Alternative Name: DNS:hopeful-curie.45-159-223-104.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Aug 10 16:20:53.778 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C1:30:73:73:9B:05:1B:73:81:E4:05: C9:0F:DB:E0:E5:93:E9:9D:57:A7:78:71:3A:9D:52:9E: 5E:6A:A5:CD:9E:02:20:5E:86:B2:3A:D5:47:3B:B5:31: EE:5D:3E:A1:7B:9A:40:C6:5D:68:1B:AB:0A:EF:48:1C: A6:C9:37:A3:3E:79:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 10 16:20:53.863 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:D3:3C:64:08:9A:B8:09:14:B8:F1:41: 99:7E:B6:AC:C4:20:8D:41:C2:AC:96:F6:81:0F:1F:D3: 92:16:0D:BC:59:02:20:57:A7:1F:D3:B1:2C:7E:CB:9F: 7B:F4:71:FB:65:83:12:C3:D9:59:78:C4:85:A5:7A:8C: DB:87:E5:D4:51:05:ED Signature Algorithm: sha256WithRSAEncryption Signature Value: 51:7b:eb:db:be:e4:b8:27:fa:ee:e8:39:11:24:32:77:d5:ed: c9:7d:1c:0b:d0:58:f0:44:d6:ae:75:83:e6:7d:40:ba:9a:62: 84:0c:0a:fd:c6:10:64:d2:ad:bf:f6:18:a2:51:dc:17:ea:09: 84:fa:96:f2:30:95:88:19:a0:1b:43:43:33:51:18:03:e8:65: 2e:39:f4:80:ff:88:93:35:21:97:03:71:fb:cc:fe:7b:a5:8f: b4:29:e2:44:01:bc:dd:a4:40:f9:61:9b:4e:65:e9:c5:c9:e6: 71:9b:e2:06:e6:90:96:58:77:d9:a8:c6:e9:83:51:34:78:5f: e3:07:20:cb:ee:df:38:b2:3d:0a:d1:57:46:93:03:80:bf:b1: 83:29:6b:01:78:29:03:bd:c2:f6:f7:24:3c:17:86:73:58:2b: 69:8b:29:94:a6:66:1b:6d:99:b7:b8:2c:e2:69:0a:eb:21:26: 80:b0:28:db:ae:26:90:cf:ab:4d:df:d3:e6:62:54:a0:39:d9: 25:5a:c5:98:e4:cf:b6:d1:16:9f:fc:7d:0d:eb:dd:98:21:ae: ff:8e:bf:11:4c:ce:c8:a1:df:ac:55:50:97:fd:8b:30:c9:28: 88:6b:ac:1a:91:ba:db:d0:21:47:ef:a6:80:d6:5f:69:20:13: 3e:45:72:cf
1673564189 | 2024-10-20T07:04:37.557348465 / tcp
220 VMI2075301.home ESMTP MailEnable Service, Version: 10.48-- ready at 10/20/24 10:04:20 250-home [224.10.112.4], this server offers 5 extensions 250-AUTH LOGIN 250-SIZE 40960000 250-HELP 250-AUTH=LOGIN 250 CLIENTID
Certificate: Data: Version: 3 (0x2) Serial Number: 487140 (0x76ee4) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 10 17:03:59 2024 GMT Not After : Aug 10 17:03:59 2025 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ab:b4:c7:a0:f1:f2:22:93:0d:2e:ff:09:86:7a: 0a:a3:02:52:3b:d7:9c:4f:ea:95:28:ba:e1:d1:2e: 35:d4:9a:04:b9:54:d6:f9:d7:91:0b:6a:74:58:87: 60:2c:b5:f9:b4:c2:ee:8d:01:b3:cb:1e:bb:85:f0: 6c:52:d3:eb:16:06:05:31:30:b2:8e:eb:fc:4d:24: 98:f8:04:73:06:92:be:eb:2f:c8:51:f6:46:4a:df: 6e:34:82:69:a1:ca:a7:87:97:b1:4f:cd:3d:eb:a0: 9e:bd:5f:04:8f:7b:64:3d:af:dc:73:e7:54:92:51: b0:72:35:1a:b0:cf:cf:2b:a9:9e:86:80:db:8b:a3: b0:b3:0b:35:11:4f:36:6c:bd:b5:97:cd:b8:39:b7: a3:d0:d7:f4:96:94:73:29:b9:0a:b8:45:91:ce:08: a2:ec:ac:97:18:ca:06:66:8c:df:9d:e0:2c:25:9c: 1f:bb:3d:5b:b2:ea:f0:65:21:47:b7:88:3d:de:eb: ef:e9:75:a1:e5:c0:1c:99:fb:65:39:6e:2f:bf:dd: 8c:fe:87:32:37:56:7f:20:2e:4e:51:d1:51:ec:6e: 34:f2:ae:50:71:ee:d5:ed:11:43:f5:0a:93:66:0b: 29:0c:c7:17:07:39:5d:2c:b4:38:a5:1c:55:7b:08: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 X509v3 Authority Key Identifier: keyid:62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:07:6E:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 6d:ac:47:9d:ef:ed:73:08:16:48:6f:f4:67:17:34:a9:4b:87: 41:92:22:af:25:52:2d:12:01:f5:10:78:e4:af:fa:bb:d1:ca: e6:ee:cf:eb:d9:7d:f4:86:13:f9:a3:3e:c5:7b:89:01:75:79: c7:44:88:77:88:b5:e7:9e:ca:9d:95:03:14:0c:9b:7d:40:2b: 3f:fa:0f:51:da:17:48:01:14:64:8e:7c:79:14:55:1d:1e:45: 71:77:78:19:9e:79:b6:89:f2:8a:f2:d4:95:a0:ad:e0:89:a0: 93:54:10:b2:83:40:96:5e:b0:fe:b4:3a:67:0d:49:2d:d9:52: 1c:43:f8:04:84:f6:f8:9f:5f:85:02:0b:13:93:c2:f2:cf:95: ea:d1:ad:b5:b5:40:44:b9:b4:87:b9:14:bf:ff:94:79:1b:f2: 11:df:0c:ab:73:ff:23:cb:04:85:77:9a:bb:68:96:fc:a7:4d: 77:75:9c:38:de:b8:72:0e:02:02:33:24:84:76:fe:2d:38:a0: 99:40:4b:4c:f8:a4:48:ef:e2:7b:58:46:56:69:e0:03:3c:06: e4:d6:0a:94:67:fe:bf:cd:b2:8f:da:30:82:59:3c:42:1f:49: 90:f8:fc:79:e2:84:f7:f0:7a:10:ac:61:c1:78:2d:46:82:c5: b0:52:99:84
-1480567751 | 2024-10-19T19:41:59.576911993 / tcp
* OK IMAP4rev1 server ready at 10/19/24 22:41:47 * CAPABILITY IMAP4rev1 IMAP4 AUTH=LOGIN AUTH=CRAM-MD5 IDLE CHILDREN XLIST UIDPLUS SPECIAL-USE CLIENTID A001 OK CAPABILITY completed A002 BAD UNKNOWN Command A003 BAD UNKNOWN Command * BYE IMAP4rev1 server terminating connection A004 OK LOGOUT Initiated
Certificate: Data: Version: 3 (0x2) Serial Number: 487140 (0x76ee4) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 10 17:03:59 2024 GMT Not After : Aug 10 17:03:59 2025 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ab:b4:c7:a0:f1:f2:22:93:0d:2e:ff:09:86:7a: 0a:a3:02:52:3b:d7:9c:4f:ea:95:28:ba:e1:d1:2e: 35:d4:9a:04:b9:54:d6:f9:d7:91:0b:6a:74:58:87: 60:2c:b5:f9:b4:c2:ee:8d:01:b3:cb:1e:bb:85:f0: 6c:52:d3:eb:16:06:05:31:30:b2:8e:eb:fc:4d:24: 98:f8:04:73:06:92:be:eb:2f:c8:51:f6:46:4a:df: 6e:34:82:69:a1:ca:a7:87:97:b1:4f:cd:3d:eb:a0: 9e:bd:5f:04:8f:7b:64:3d:af:dc:73:e7:54:92:51: b0:72:35:1a:b0:cf:cf:2b:a9:9e:86:80:db:8b:a3: b0:b3:0b:35:11:4f:36:6c:bd:b5:97:cd:b8:39:b7: a3:d0:d7:f4:96:94:73:29:b9:0a:b8:45:91:ce:08: a2:ec:ac:97:18:ca:06:66:8c:df:9d:e0:2c:25:9c: 1f:bb:3d:5b:b2:ea:f0:65:21:47:b7:88:3d:de:eb: ef:e9:75:a1:e5:c0:1c:99:fb:65:39:6e:2f:bf:dd: 8c:fe:87:32:37:56:7f:20:2e:4e:51:d1:51:ec:6e: 34:f2:ae:50:71:ee:d5:ed:11:43:f5:0a:93:66:0b: 29:0c:c7:17:07:39:5d:2c:b4:38:a5:1c:55:7b:08: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 X509v3 Authority Key Identifier: keyid:62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:07:6E:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 6d:ac:47:9d:ef:ed:73:08:16:48:6f:f4:67:17:34:a9:4b:87: 41:92:22:af:25:52:2d:12:01:f5:10:78:e4:af:fa:bb:d1:ca: e6:ee:cf:eb:d9:7d:f4:86:13:f9:a3:3e:c5:7b:89:01:75:79: c7:44:88:77:88:b5:e7:9e:ca:9d:95:03:14:0c:9b:7d:40:2b: 3f:fa:0f:51:da:17:48:01:14:64:8e:7c:79:14:55:1d:1e:45: 71:77:78:19:9e:79:b6:89:f2:8a:f2:d4:95:a0:ad:e0:89:a0: 93:54:10:b2:83:40:96:5e:b0:fe:b4:3a:67:0d:49:2d:d9:52: 1c:43:f8:04:84:f6:f8:9f:5f:85:02:0b:13:93:c2:f2:cf:95: ea:d1:ad:b5:b5:40:44:b9:b4:87:b9:14:bf:ff:94:79:1b:f2: 11:df:0c:ab:73:ff:23:cb:04:85:77:9a:bb:68:96:fc:a7:4d: 77:75:9c:38:de:b8:72:0e:02:02:33:24:84:76:fe:2d:38:a0: 99:40:4b:4c:f8:a4:48:ef:e2:7b:58:46:56:69:e0:03:3c:06: e4:d6:0a:94:67:fe:bf:cd:b2:8f:da:30:82:59:3c:42:1f:49: 90:f8:fc:79:e2:84:f7:f0:7a:10:ac:61:c1:78:2d:46:82:c5: b0:52:99:84
-471102630 | 2024-10-20T23:11:16.688696995 / tcp
+OK Welcome to MailEnable POP3 Server +OK Capability list follows TOP USER UIDL .
Certificate: Data: Version: 3 (0x2) Serial Number: 487140 (0x76ee4) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 10 17:03:59 2024 GMT Not After : Aug 10 17:03:59 2025 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ab:b4:c7:a0:f1:f2:22:93:0d:2e:ff:09:86:7a: 0a:a3:02:52:3b:d7:9c:4f:ea:95:28:ba:e1:d1:2e: 35:d4:9a:04:b9:54:d6:f9:d7:91:0b:6a:74:58:87: 60:2c:b5:f9:b4:c2:ee:8d:01:b3:cb:1e:bb:85:f0: 6c:52:d3:eb:16:06:05:31:30:b2:8e:eb:fc:4d:24: 98:f8:04:73:06:92:be:eb:2f:c8:51:f6:46:4a:df: 6e:34:82:69:a1:ca:a7:87:97:b1:4f:cd:3d:eb:a0: 9e:bd:5f:04:8f:7b:64:3d:af:dc:73:e7:54:92:51: b0:72:35:1a:b0:cf:cf:2b:a9:9e:86:80:db:8b:a3: b0:b3:0b:35:11:4f:36:6c:bd:b5:97:cd:b8:39:b7: a3:d0:d7:f4:96:94:73:29:b9:0a:b8:45:91:ce:08: a2:ec:ac:97:18:ca:06:66:8c:df:9d:e0:2c:25:9c: 1f:bb:3d:5b:b2:ea:f0:65:21:47:b7:88:3d:de:eb: ef:e9:75:a1:e5:c0:1c:99:fb:65:39:6e:2f:bf:dd: 8c:fe:87:32:37:56:7f:20:2e:4e:51:d1:51:ec:6e: 34:f2:ae:50:71:ee:d5:ed:11:43:f5:0a:93:66:0b: 29:0c:c7:17:07:39:5d:2c:b4:38:a5:1c:55:7b:08: d0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 X509v3 Authority Key Identifier: keyid:62:46:36:81:BB:E7:59:76:58:8A:B0:6E:D5:10:71:F3:3B:43:D4:88 DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com serial:07:6E:E4 Signature Algorithm: sha256WithRSAEncryption Signature Value: 6d:ac:47:9d:ef:ed:73:08:16:48:6f:f4:67:17:34:a9:4b:87: 41:92:22:af:25:52:2d:12:01:f5:10:78:e4:af:fa:bb:d1:ca: e6:ee:cf:eb:d9:7d:f4:86:13:f9:a3:3e:c5:7b:89:01:75:79: c7:44:88:77:88:b5:e7:9e:ca:9d:95:03:14:0c:9b:7d:40:2b: 3f:fa:0f:51:da:17:48:01:14:64:8e:7c:79:14:55:1d:1e:45: 71:77:78:19:9e:79:b6:89:f2:8a:f2:d4:95:a0:ad:e0:89:a0: 93:54:10:b2:83:40:96:5e:b0:fe:b4:3a:67:0d:49:2d:d9:52: 1c:43:f8:04:84:f6:f8:9f:5f:85:02:0b:13:93:c2:f2:cf:95: ea:d1:ad:b5:b5:40:44:b9:b4:87:b9:14:bf:ff:94:79:1b:f2: 11:df:0c:ab:73:ff:23:cb:04:85:77:9a:bb:68:96:fc:a7:4d: 77:75:9c:38:de:b8:72:0e:02:02:33:24:84:76:fe:2d:38:a0: 99:40:4b:4c:f8:a4:48:ef:e2:7b:58:46:56:69:e0:03:3c:06: e4:d6:0a:94:67:fe:bf:cd:b2:8f:da:30:82:59:3c:42:1f:49: 90:f8:fc:79:e2:84:f7:f0:7a:10:ac:61:c1:78:2d:46:82:c5: b0:52:99:84
-532748452 | 2024-10-25T15:15:57.5587763389 / tcp
Remote Desktop Protocol \x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00 Remote Desktop Protocol NTLM Info: OS: Windows Server 2022 OS Build: 10.0.20348 Target Name: VMI2075301 NetBIOS Domain Name: VMI2075301 NetBIOS Computer Name: VMI2075301 DNS Domain Name: vmi2075301 FQDN: vmi2075301 - Other user SES Password Sign-in options
Certificate: Data: Version: 3 (0x2) Serial Number: 62:b4:1f:70:86:ee:ef:87:4d:5f:92:a6:32:1b:00:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=vmi2075301 Validity Not Before: Aug 9 14:40:05 2024 GMT Not After : Feb 8 14:40:05 2025 GMT Subject: CN=vmi2075301 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b9:00:15:2e:fd:14:4c:1c:c9:5d:91:2e:f7:d9: 84:a3:ea:ce:21:73:3d:2f:15:74:67:3f:da:34:ec: 48:80:87:89:af:87:ea:43:22:e8:a8:2f:f2:9e:89: 7c:af:d1:f1:67:67:73:fd:14:ba:9b:e9:f4:ea:03: b3:f8:19:48:3b:43:d6:86:ec:68:86:b4:f4:8a:fa: ec:1f:56:47:89:8c:81:61:67:88:70:c6:08:19:1f: 78:14:f3:a8:24:7a:60:76:43:6b:75:de:d8:ed:40: 19:c9:39:bc:20:1c:ef:fa:cd:0b:a2:fa:59:01:e9: 83:35:79:d5:97:a2:d3:37:cb:16:f0:39:26:c2:3a: 6d:8d:5a:5c:ab:1a:f6:1c:bb:47:7c:55:98:02:c5: 68:25:36:65:19:03:b8:b3:73:8a:91:d6:bb:7f:28: 3b:db:35:d0:5f:25:64:6f:9e:5b:b5:56:84:26:8d: 9c:76:4a:ef:ae:f6:d8:c1:94:29:8c:3d:7a:28:f4: be:a8:2e:71:a1:bb:f9:73:d9:c9:cb:08:e6:dc:a4: 88:9d:48:13:3c:eb:42:f4:55:9c:69:62:d4:f6:e0: d2:ef:94:9c:4e:0e:21:9e:6e:3a:56:ad:32:84:c6: c5:2a:ac:d6:b2:15:2d:6e:fb:ca:c3:01:03:c9:6a: 68:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Key Usage: Key Encipherment, Data Encipherment Signature Algorithm: sha256WithRSAEncryption Signature Value: 06:fb:34:ae:e2:98:b0:78:ea:2e:12:0a:38:27:b6:7a:1f:32: 7d:27:2c:c4:50:bd:86:af:40:1d:b7:29:9f:3a:f7:77:0a:46: 31:aa:e4:f5:ec:32:30:ce:63:94:db:db:0b:48:2d:3c:49:77: 01:e9:ee:48:26:e7:ea:03:36:91:ad:b8:c9:0c:dc:06:ad:93: 57:d2:ef:6e:0d:4d:bf:25:d2:56:cc:f4:39:ef:88:74:9d:52: 47:c4:62:8b:77:d2:3d:29:53:14:ad:db:10:ea:09:47:49:77: b5:58:47:20:b6:ed:7c:ca:1f:c6:e1:ee:41:b7:25:37:d9:95: fe:a0:e8:a6:54:ca:94:3b:09:7b:49:19:74:b6:c4:5b:55:cf: 34:3a:17:b1:c2:75:04:28:eb:73:ba:f1:93:f0:ea:a6:5a:49: 0e:43:75:86:d6:9c:82:34:d1:25:1a:44:da:df:18:20:d2:d7: ff:a4:bd:57:70:ac:26:91:75:da:6f:03:5c:9b:79:84:f8:cd: 10:cf:e6:fe:50:d5:2b:be:5d:7f:b5:6b:40:d1:92:da:f2:58: 66:85:68:18:56:c6:ae:b4:ad:3c:73:ae:a1:15:70:9a:a8:11: 73:95:b8:a0:7e:79:08:58:01:47:44:ce:bf:fc:3f:b5:3e:2c: e7:0e:49:d7
401625406 | 2024-10-10T10:19:22.3633588443 / tcp
HTTP/1.1 200 OK Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 Pragma: no-cache Transfer-Encoding: chunked Content-Type: text/html; charset=utf-8 Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Thu, 10 Oct 2024 10:19:21 GMT Server: Microsoft-IIS/10.0 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Powered-By: ASP.NET X-Content-Type-Options: nosniff Date: Thu, 10 Oct 2024 10:19:20 GMT
Certificate: Data: Version: 3 (0x2) Serial Number: 03:c5:4a:8e:d5:52:67:92:17:95:87:a0:09:81:f5:4e:32:73 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R11 Validity Not Before: Oct 9 13:42:43 2024 GMT Not After : Jan 7 13:42:42 2025 GMT Subject: CN=hopeful-curie.45-159-223-104.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:be:97:12:c8:e1:88:6c:28:69:3e:68:31:5d:91: c6:e3:18:97:99:1b:f1:2c:b3:e3:05:2e:82:d9:bd: f5:ab:71:07:f6:cb:7b:e3:63:8c:db:48:0a:7b:94: fa:75:0b:05:73:39:96:27:45:0a:34:a2:a9:8e:2c: d5:1b:47:93:92:bb:06:9f:5a:e1:73:9c:f9:e0:6e: 5e:b8:a6:32:c4:0c:5c:19:f1:71:e9:00:2b:39:1d: 21:c2:ec:2e:c2:8e:95:68:d8:a8:e7:19:92:59:a1: 50:f5:b9:79:5c:9e:f6:98:05:a4:eb:a6:32:f6:4e: f2:11:3f:54:ad:60:91:46:61:ae:5a:90:24:42:49: f5:cf:5d:f4:02:1f:84:bc:21:92:5c:cb:47:76:43: 99:35:a3:04:19:54:a8:90:3e:dd:25:7c:bc:78:6e: 2f:cb:17:c1:6e:2a:ff:66:5b:83:f8:7d:fa:5a:58: 1c:42:00:28:ed:a0:e7:15:fa:d0:d9:48:c0:00:f1: a3:ff:bc:c8:6b:6a:bf:37:ab:31:f1:97:24:93:10: a0:a6:52:27:c0:44:99:d7:84:cc:b9:2c:6a:17:23: ca:ec:01:d1:44:38:02:05:11:6f:de:51:a2:31:57: 8e:89:f7:b2:38:8b:57:3d:a5:f6:1a:d4:ed:10:0f: f9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 60:A4:3C:88:50:03:49:5A:D9:A4:DB:D0:7D:FB:F9:FC:26:15:B8:40 X509v3 Authority Key Identifier: C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9 Authority Information Access: OCSP - URI:http://r11.o.lencr.org CA Issuers - URI:http://r11.i.lencr.org/ X509v3 Subject Alternative Name: DNS:hopeful-curie.45-159-223-104.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Oct 9 14:41:13.597 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:AC:A6:66:61:46:F2:B4:F8:0C:2B:F0: 80:1A:49:37:B9:F9:8F:C3:3E:FE:7A:CA:BF:7A:BD:CB: 10:7F:95:CA:C4:02:20:39:E2:5F:68:7A:05:4E:12:2F: AE:E3:99:34:62:07:B2:26:0E:0F:B8:A2:FE:8E:A9:FC: 10:73:00:AF:6C:81:5B Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0: 87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8 Timestamp : Oct 9 14:41:13.902 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:20:34:E1:31:B5:0B:A2:A5:37:23:43:B3: 97:2A:9E:67:CE:8C:C0:10:B9:FB:EC:76:12:4A:E9:5F: 89:39:55:D0:02:21:00:A7:5C:FF:6C:FB:47:C8:37:11: 9C:3C:90:D9:69:17:F3:EB:52:49:7A:DE:7B:E0:9C:D5: B5:E6:9A:F3:4E:16:32 Signature Algorithm: sha256WithRSAEncryption Signature Value: 85:d5:74:7c:ba:6a:84:60:78:81:ef:8c:1a:89:7b:44:39:2a: 11:a1:66:94:1c:9e:fd:b4:dd:0f:bf:03:28:06:0b:a8:c1:16: 81:3c:56:77:bd:c1:a1:07:00:04:dd:c5:20:9e:9f:7d:89:7b: cb:d4:b8:a4:c6:10:82:a3:a5:f9:27:7e:2b:16:79:e2:f2:44: d4:48:7c:c6:16:71:84:5c:91:6e:99:01:b9:dd:d1:af:f8:f7: 04:d5:ab:87:2f:59:78:90:ce:8b:fb:09:03:3c:9e:88:f3:2f: d5:1b:44:c4:10:9f:2d:05:ad:e3:c9:0c:d3:72:49:24:7d:ca: e5:43:c7:a0:92:eb:25:f8:b5:f5:00:7e:f2:8a:24:3f:fb:5c: 40:a1:58:3b:8a:6f:c7:e7:e6:ec:b8:b2:dc:aa:ef:ff:d3:d9: 73:68:50:f2:12:0f:f0:e3:0d:0b:cb:bf:f4:f9:9f:07:9a:6f: 10:3b:4e:e7:9a:e1:3f:12:7b:65:0e:45:61:02:19:c1:d2:70: 6c:a2:86:fc:04:03:c6:0c:5b:49:1a:22:44:db:d0:ce:fe:a2: 5a:7d:90:34:b0:59:23:d6:73:db:54:e3:32:8d:83:5f:d2:e1: 0a:fc:36:92:fb:5f:9c:4e:cb:78:b3:d7:b7:73:33:2a:97:5f: 14:c2:7f:4b
1636058553 | 2024-10-25T17:57:24.9866308880 / tcp
HTTP/1.1 303 See Other Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0 Pragma: no-cache Content-Type: text/html; charset=UTF-8 Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Fri, 25 Oct 2024 17:57:24 GMT Location: http://45.159.223.104/login.php Server: Microsoft-IIS/10.0 P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Powered-By: ASP.NET X-Content-Type-Options: nosniff Date: Fri, 25 Oct 2024 17:57:24 GMT Content-Length: 0