2035781205 | 2024-08-21T07:56:51.744513
22 /
tcp
SSH-2.0-OpenSSH_8.0
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDD5cZN/31Mo9fBNS5RJLttU8YbXrNx4cJHAAGSLrDg5owH
ADEv8OhQSogUVNHyMIViMSFejS8eTwPBsCRdXyKeI2IJtPBTT12t0pbuLXNcBBDtu6nifBcDqx/m
7RuUsDj+ad3ORKiFl3FTIzPD/w09eT9dhutARMheMBW1Aczj/qobi/KnYQ/QqoKQlnjcMJd42w3N
qJn81YpIupCMCXkCrtF5cXUd0CPmH9SRBjXOXEcbjLa4mf/Cbm/T34FgNdHR4qDCR/XJ7dAygHtd
/UrKjKOIrEbue4G5LnjCg6xOB8hhnAHGUPsfL5414c+QEdPQ/m0pAjULSzE+emDml0X1
Fingerprint: 64:d2:74:d3:dc:02:c6:51:b0:a9:21:3b:72:c0:75:a8
Kex Algorithms:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group-exchange-sha256
diffie-hellman-group14-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group-exchange-sha1
diffie-hellman-group14-sha1
kex-strict-s-v00@openssh.com
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ssh-rsa
ecdsa-sha2-nistp256
ssh-ed25519
Encryption Algorithms:
aes256-gcm@openssh.com
chacha20-poly1305@openssh.com
aes256-ctr
aes256-cbc
aes128-gcm@openssh.com
aes128-ctr
aes128-cbc
MAC Algorithms:
hmac-sha2-256-etm@openssh.com
hmac-sha1-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-512-etm@openssh.com
hmac-sha2-256
hmac-sha1
umac-128@openssh.com
hmac-sha2-512
Compression Algorithms:
none
zlib@openssh.com
1260280782 | 2024-09-07T15:41:28.952054
53 /
tcp
PowerDNS Authoritative Server 4.9.1 (built Jul 24 2024 22:38:26 by root@bh-centos-8.dev.cpanel.net)
Resolver ID: famv11.famatech.com
1260280782 | 2024-09-07T13:49:10.701784
53 /
udp
PowerDNS Authoritative Server 4.9.1 (built Jul 24 2024 22:38:26 by root@bh-centos-8.dev.cpanel.net)
Resolver ID: famv11.famatech.com
-1771975814 | 2024-09-09T06:13:34.948291
80 /
tcp
HTTP/1.1 403 Forbidden
Content-Length: 571
Content-Type: text/html
Date: Mon, 09 Sep 2024 06:13:34 GMT
Server: Caddy
Server: nginx/1.14.1
1426766296 | 2024-09-08T23:12:30.332286
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 51.89.153.153:49664
ncalrpc: WindowsShutdown
ncacn_np: \\NS3143173\PIPE\InitShutdown
ncalrpc: WMsgKRpc07A230
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\NS3143173\PIPE\InitShutdown
ncalrpc: WMsgKRpc07A230
ncalrpc: WMsgKRpc0CB9C1
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-fd8566514c33dd7296
ncalrpc: IUserProfile2
ncalrpc: LRPC-e1d558f5fb1486bc52
ncalrpc: LRPC-d35e72a7191efa94fd
ncalrpc: senssvc
ncalrpc: LRPC-a9478ebcb4f763cd9b
d09bdeb5-6171-4a34-bfe2-06fa82652568
version: v1.0
ncalrpc: csebpub
ncalrpc: LRPC-886695d68d2afaf39e
ncalrpc: LRPC-c292ba7bfaf32e10a6
ncalrpc: LRPC-c7f1777f303cdf6a94
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-c292ba7bfaf32e10a6
ncalrpc: LRPC-c7f1777f303cdf6a94
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-c7f1777f303cdf6a94
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-283cdbb322650d52d7
697dcda9-3ba9-4eb2-9247-e11f1901b0d2
version: v1.0
ncalrpc: LRPC-886695d68d2afaf39e
ncalrpc: LRPC-c292ba7bfaf32e10a6
ncalrpc: LRPC-c7f1777f303cdf6a94
ncalrpc: actkernel
ncalrpc: umpo
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-c292ba7bfaf32e10a6
ncalrpc: LRPC-c7f1777f303cdf6a94
ncalrpc: actkernel
ncalrpc: umpo
f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
version: v1.0
ncalrpc: LRPC-3a065d048a41285d04
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: LRPC-0d4ab0b56e8da96396
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
annotation: Group Policy RPC Interface
provider: gpsvc.dll
ncalrpc: LRPC-c4f59fa67be948aa9f
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 51.89.153.153:49665
ncacn_np: \\NS3143173\pipe\eventlog
ncalrpc: eventlog
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-8c135c149bbf6ccbf0
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncacn_ip_tcp: 51.89.153.153:49666
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\NS3143173\PIPE\atsvc
ncalrpc: LRPC-ed310538fc1ea873d7
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 51.89.153.153:49666
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\NS3143173\PIPE\atsvc
ncalrpc: LRPC-ed310538fc1ea873d7
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\NS3143173\PIPE\atsvc
ncalrpc: LRPC-ed310538fc1ea873d7
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\NS3143173\PIPE\atsvc
ncalrpc: LRPC-ed310538fc1ea873d7
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: LRPC-ed310538fc1ea873d7
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: dhcpcsvc
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\NS3143173\PIPE\wkssvc
ncalrpc: LRPC-8e161a721d85ca7d53
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: LRPC-8e161a721d85ca7d53
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: LRPC-8e161a721d85ca7d53
a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
version: v1.0
ncalrpc: LRPC-9f00a363ce06b65820
ncalrpc: LRPC-283cdbb322650d52d7
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-a5635866739c0b9f6a
29770a8f-829b-4158-90a2-78cd488501f7
version: v1.0
ncacn_ip_tcp: 51.89.153.153:49667
ncacn_np: \\NS3143173\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-a9478ebcb4f763cd9b
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-6ac6b8f0c0d6bb0f3b
ncalrpc: LRPC-267a76c3511a2e6db5
ncalrpc: LRPC-a5dcbf2e5e2ce1f8d6
ncalrpc: LRPC-efc4562ef82242e55f
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-267a76c3511a2e6db5
ncalrpc: LRPC-a5dcbf2e5e2ce1f8d6
ncalrpc: LRPC-efc4562ef82242e55f
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-a5dcbf2e5e2ce1f8d6
ncalrpc: LRPC-efc4562ef82242e55f
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-efc4562ef82242e55f
0d3c7f20-1c8d-4654-a1b3-51563b298bda
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-2e143d07fc36340b5d
ncalrpc: OLE7F9E983675FF13CA256DFA13F278
b18fbab6-56f8-4702-84e0-41053293a869
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-2e143d07fc36340b5d
ncalrpc: OLE7F9E983675FF13CA256DFA13F278
b58aa02e-2884-4e97-8176-4ee06d794184
version: v1.0
provider: sysmain.dll
ncalrpc: LRPC-cc6117fb1a43e99aa6
df4df73a-c52d-4e3a-8003-8437fdf8302a
version: v0.0
annotation: WM_WindowManagerRPC\Server
ncalrpc: LRPC-ab84ddc4ed17639aca
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-0d295161197566ac81
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-0d295161197566ac81
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncalrpc: LRPC-0d295161197566ac81
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncalrpc: LRPC-32f1d51b47ba7432cf
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncalrpc: LRPC-32f1d51b47ba7432cf
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 51.89.153.153:49768
98cd761e-e77d-41c8-a3c0-0fb756d90ec2
version: v1.0
ncalrpc: LRPC-75ec5e81ec9c6af272
d22895ef-aff4-42c5-a5b2-b14466d34ab4
version: v1.0
ncalrpc: LRPC-75ec5e81ec9c6af272
e38f5360-8572-473e-b696-1b46873beeab
version: v1.0
ncalrpc: LRPC-75ec5e81ec9c6af272
95095ec8-32ea-4eb0-a3e2-041f97b36168
version: v1.0
ncalrpc: LRPC-75ec5e81ec9c6af272
fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
version: v1.0
ncalrpc: LRPC-75ec5e81ec9c6af272
4c9dbf19-d39e-4bb9-90ee-8f7179b20283
version: v1.0
ncalrpc: LRPC-75ec5e81ec9c6af272
e7a216af-1ec1-447f-8d3f-a87278db564d
version: v1.0
ncalrpc: LRPC-1f18cf77d0baaeb2ea
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 51.89.153.153:49971
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\NS3143173\pipe\lsass
8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 51.89.153.153:49971
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\NS3143173\pipe\lsass
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 51.89.153.153:49971
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\NS3143173\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 51.89.153.153:49971
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\NS3143173\pipe\lsass
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-3408fe29ff7ddf814d
ncalrpc: LRPC-3408fe29ff7ddf814d
ncalrpc: LRPC-3408fe29ff7ddf814d
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncalrpc: 522354c2-5332-4930-8ca1-ca7bf09649fc
ncalrpc: LRPC-19a3b50f012e1a49f0
-742352478 | 2024-09-13T18:10:03.786010
443 /
tcp
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 2374
Content-Type: text/html
Date: Fri, 13 Sep 2024 18:09:58 GMT
Etag: "575121c4c469d51:0"
Last-Modified: Thu, 12 Sep 2019 23:49:50 GMT
Server: Caddy
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:f8:5b:bc:4c:85:39:3a:7b:1b:4d:72:d2:fa:65:f1:d3:89
Signature Algorithm: ecdsa-with-SHA384
Issuer: C=US, O=Let's Encrypt, CN=E6
Validity
Not Before: Aug 19 21:42:12 2024 GMT
Not After : Nov 17 21:42:11 2024 GMT
Subject: CN=activate.famatech.com
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:94:8b:56:0f:09:82:3e:ce:c3:27:cc:85:16:0e:
e7:f5:bb:cc:40:a7:c8:d1:f8:e2:1b:59:2b:a7:6a:
3a:5e:63:9c:2b:2d:e3:94:6e:e7:1e:1c:79:ab:eb:
cf:d4:4f:2b:17:af:68:46:9c:d7:32:b2:8a:e8:5b:
9e:7c:69:e7:b8
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
F9:DC:67:B3:00:AB:57:CB:AA:CC:12:F6:A2:8D:6B:6F:52:26:B4:A0
X509v3 Authority Key Identifier:
93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
Authority Information Access:
OCSP - URI:http://e6.o.lencr.org
CA Issuers - URI:http://e6.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:activate.famatech.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 19 22:40:42.139 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:C9:48:EB:35:12:CC:7E:4F:5C:C8:FA:
60:5D:D9:08:DB:06:BF:35:32:10:DA:BA:F3:43:8A:54:
B2:B2:58:B6:DD:02:21:00:C6:13:03:9A:14:D2:76:09:
D9:EA:AE:42:2B:7A:4B:C4:DE:B3:FB:01:04:9C:0C:10:
6F:BC:52:45:AB:C4:39:EB
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 19 22:40:42.140 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:CD:DD:9A:26:56:EF:09:12:F0:F6:A9:
23:4D:D1:1F:7B:D6:14:26:41:77:ED:F6:B7:48:A8:80:
F8:20:9C:8F:5B:02:20:3E:B2:C8:20:4B:15:0A:E8:CE:
A9:D6:99:55:50:82:3A:77:47:03:D7:1F:1C:1B:4F:87:
65:54:D9:61:9B:EF:E2
Signature Algorithm: ecdsa-with-SHA384
Signature Value:
30:65:02:31:00:df:6c:32:21:28:14:f0:60:6c:93:00:8d:c9:
7e:23:b6:55:b7:ba:42:2c:4e:9b:31:0c:8b:0e:ec:dd:31:fa:
ec:9b:45:11:91:65:be:15:78:21:1d:cb:fa:10:6e:02:b1:02:
30:0b:d7:eb:bb:7d:22:fa:9d:b2:19:2c:03:8f:40:26:0a:4f:
a1:5f:ca:c1:ca:1c:4d:30:2f:c1:29:42:61:ff:b2:cd:50:7c:
39:e7:97:12:60:54:ca:96:8b:33:3d:04:f5
-1166656618 | 2024-09-14T09:59:01.446635
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
1582465354 | 2024-09-13T02:31:25.172990
2087 /
tcp
HTTP/1.1 200 OK
Connection: close
Content-Type: text/html; charset="utf-8"
Date: Fri, 13 Sep 2024 02:31:24 GMT
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache
Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
Set-Cookie: whostmgrsession=%3a0bQjV1sdEBnvSM2P%2c30cf624c29975c1fac1552ca7c5818a5; HttpOnly; path=/; port=2087; secure
Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=51.89.153.153; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Length: 37511
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:e0:ae:43:62:fc:84:83:95:bf:84:6b:35:38:a6:33:d4:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Jul 21 21:41:14 2024 GMT
Not After : Oct 19 21:41:13 2024 GMT
Subject: CN=famv11.famatech.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a9:4d:be:aa:94:cd:e4:c0:d8:d6:b7:f4:55:3b:
8c:39:30:a5:cf:e2:d2:0d:df:b0:25:46:11:17:79:
42:9b:f3:a2:51:c2:d6:82:0a:b5:78:99:0d:17:b3:
0a:47:d6:14:37:60:eb:77:8d:16:eb:af:45:41:11:
d3:87:2e:3c:9b:ea:05:22:74:f3:06:ad:4e:48:3c:
63:45:49:cf:cc:ed:45:7f:31:ac:06:30:06:1d:d2:
d4:4e:f8:8a:5d:f5:db:e7:d2:6c:7f:26:6e:22:ef:
1d:8e:14:7a:a5:00:9a:69:5c:70:91:de:2e:80:dc:
ec:ff:b7:86:bd:8b:9d:25:91:88:15:65:e6:02:47:
dd:df:49:81:cd:f6:60:0c:d8:93:a9:78:b3:05:4f:
ef:bc:ea:c5:84:79:a9:eb:ad:3a:1e:80:11:93:61:
f8:0b:46:75:04:f3:04:a8:2f:ba:54:b4:13:f9:f3:
c2:c5:ea:fc:1f:a6:cd:23:65:b5:6c:82:11:9b:0f:
f6:47:3d:9e:54:2e:34:22:c0:41:a6:80:4a:0e:81:
cb:93:c9:a3:70:75:44:52:7d:e4:be:38:be:91:ca:
e8:c7:89:ba:85:ef:62:0e:bf:26:77:a1:32:25:39:
ad:96:b7:70:18:8d:9c:0f:75:04:e7:64:8a:9d:a3:
23:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
7C:0E:7D:5F:EF:FD:64:A9:3B:CC:00:43:1B:D7:E6:D1:65:87:E5:66
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:autoconfig.famv11.famatech.com, DNS:autodiscover.famv11.famatech.com, DNS:cpanel.famv11.famatech.com, DNS:cpcalendars.famv11.famatech.com, DNS:cpcontacts.famv11.famatech.com, DNS:famv11.famatech.com, DNS:ipv6.famv11.famatech.com, DNS:mail.famv11.famatech.com, DNS:webdisk.famv11.famatech.com, DNS:webmail.famv11.famatech.com, DNS:whm.famv11.famatech.com, DNS:www.famv11.famatech.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Jul 21 22:41:14.993 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:F2:C1:09:33:72:8B:19:45:A2:DA:03:
D6:0A:10:55:C2:E7:15:85:D0:F5:72:19:4E:8E:EE:82:
FC:C9:A9:F5:C7:02:21:00:CF:B5:0F:F8:8D:B2:3F:77:
3F:DC:0A:F0:5A:21:56:16:89:F0:59:07:27:6C:AA:70:
05:67:94:70:2E:97:B7:40
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Jul 21 22:41:15.003 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:78:BD:DB:09:34:37:9F:95:2A:51:68:C0:
4E:C2:82:88:24:2B:CB:45:B0:5C:09:07:BE:D1:05:0D:
D2:66:C7:D8:02:21:00:FE:B0:BA:DB:CE:74:DA:7C:8B:
7E:AD:4D:7C:4C:57:4F:02:7A:1D:70:7E:75:8F:05:BD:
1E:12:DC:FA:FD:B5:B1
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
5c:03:9b:ed:b8:79:5c:ba:35:5c:a2:1e:e7:3b:28:64:bc:b5:
1a:cd:1b:0d:6d:22:82:ca:18:f3:41:97:9d:e9:0a:db:7d:9e:
51:77:2d:f3:0a:11:c2:4e:49:68:a8:1d:2d:f8:0a:1a:30:7f:
f9:23:04:df:27:b2:09:da:1a:8e:7e:d5:a1:18:7e:a6:f9:35:
1c:28:ee:23:ee:8e:37:41:c6:93:f5:71:b6:43:0a:e5:e0:b7:
46:47:14:0b:30:8c:85:94:5c:a4:9b:13:bd:0d:9b:f1:d6:60:
7e:f1:fa:89:c8:5b:27:6a:8f:86:04:78:a8:53:af:b1:cf:1b:
63:38:e3:aa:4c:98:c1:aa:1b:81:a6:9b:31:32:21:9e:1b:ac:
56:96:a8:19:8f:89:e9:f6:dc:99:d0:c9:05:97:b0:ac:23:60:
21:48:da:77:cb:1f:5b:13:e2:d1:30:09:76:a7:6a:f0:0a:bd:
4b:88:2c:25:25:47:65:96:c1:7f:81:6a:f9:44:ce:d8:04:3f:
1e:69:b4:34:40:9b:5c:88:0a:6d:de:f9:2d:91:ab:a0:61:90:
d7:ff:d1:5c:63:6c:95:b5:d7:56:f6:84:b2:c9:5d:ee:b3:eb:
90:7f:36:2d:63:f5:61:8f:06:44:6e:3c:8c:c1:82:4c:8b:a7:
82:f0:cd:b1
1717575905 | 2024-09-14T05:00:43.610326
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: NS3143173
NetBIOS Domain Name: NS3143173
NetBIOS Computer Name: NS3143173
DNS Domain Name: ns3143173
FQDN: ns3143173
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:ba:b5:e3:4d:5c:78:a3:48:ae:96:f2:40:55:0f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ns3143173
Validity
Not Before: Aug 4 10:03:08 2024 GMT
Not After : Feb 3 10:03:08 2025 GMT
Subject: CN=ns3143173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:f0:bf:0d:25:72:6d:de:0b:7d:aa:c9:67:01:18:
fe:fc:12:93:c8:5e:34:9b:74:66:c9:0c:78:fb:be:
c8:33:ef:4c:67:98:de:10:5c:3d:31:f5:f2:21:8f:
ff:0e:d6:ff:a4:56:0a:32:79:a6:77:b4:5f:11:fd:
b0:a2:66:9c:d6:46:71:4d:28:13:5c:49:25:94:a3:
bb:4c:15:e7:83:bb:50:eb:c1:96:89:37:8e:4c:11:
b5:20:04:a2:33:2f:8b:d4:f2:10:91:d2:f0:0d:e0:
e0:36:b2:aa:24:4b:4d:db:5a:c4:42:27:a6:c9:79:
86:87:77:03:73:96:78:5d:af:42:59:92:3e:d5:0f:
04:59:1a:60:28:b8:07:41:a3:38:43:34:81:03:09:
1d:61:d7:37:5d:f7:8f:d1:4c:ed:49:8b:43:e9:95:
3e:65:7f:1f:ff:6b:28:1f:46:c6:68:9d:37:f5:68:
0a:fe:f6:13:14:d0:a7:08:e9:8b:96:e6:40:5f:99:
b3:1c:96:b3:53:fa:5a:0f:88:00:16:4d:f4:09:7c:
eb:09:d8:9f:40:c8:a1:86:57:40:e8:1a:52:a7:7c:
cb:07:a4:fe:dd:d8:cc:1a:99:60:5e:03:03:08:b1:
e0:e8:4f:9f:23:ce:5d:6a:0b:c1:4e:d3:41:d4:e2:
c3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
84:52:89:35:80:87:f4:94:c2:7c:20:80:c3:f1:6c:6a:3b:7c:
ea:8c:18:78:42:ce:73:9d:92:2f:8c:ae:d1:51:91:d7:b3:e5:
67:84:50:29:81:7b:17:87:64:54:d7:47:ca:b5:38:8c:25:17:
02:43:d3:29:c1:f6:66:e6:7e:38:05:2f:ff:29:b6:80:7f:66:
50:da:1a:24:90:16:de:7e:91:15:d7:a1:49:3a:79:87:7f:ed:
b4:70:a4:25:3d:b0:43:4b:2d:17:03:ad:a4:47:18:0c:e1:b9:
d2:89:7b:af:26:73:03:38:7e:7c:c3:ad:94:08:a2:8b:b0:67:
c0:f2:d6:04:d0:b6:e6:0d:e6:f5:23:25:03:84:e2:c5:35:37:
88:30:06:d7:f5:2d:ef:cd:aa:80:fe:26:26:8f:03:36:8f:ab:
91:07:1b:f2:91:30:24:d6:54:9f:eb:30:80:5c:cd:fa:d5:41:
91:88:c0:79:82:0c:2d:51:01:6f:ff:f7:f7:32:0d:d3:e2:5d:
ef:9f:fe:d3:16:df:0c:e5:d8:37:52:ab:17:6a:a6:df:d1:f9:
1a:74:83:df:96:54:21:2b:10:52:13:d1:2e:73:f5:cc:84:d4:
1a:ab:ce:32:01:e1:5e:1e:26:14:08:84:81:46:b1:8f:2b:97:
75:e6:48:02
-71177449 | 2024-08-27T09:58:08.042156
4899 /
tcp
����%��������
��������������������������������
