-1602759524 | 2024-10-31T20:35:35.257819
25 /
tcp
220 mail.turbotec-co.com ESMTP ready
250-mail.turbotec-co.com Hello u4e85ofqukh9lc.com [224.160.46.133]
250-SIZE
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-STARTTLS
250 HELP
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:6f:80:ad:b7:0d:54:72:d0:0e:1a:b3:4c:90:8f:32:9d:6f:aa:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=AE, ST=NA, L=NA, O=ADCI Group, OU=OU, CN=sophos_CA_C22317146569-3G1T61/emailAddress=amirala.rahmani@yahoo.com
Validity
Not Before: Oct 15 15:52:34 2024 GMT
Not After : Dec 31 15:52:34 2036 GMT
Subject: C=AE, ST=NA, L=NA, O=ADCI Group, OU=OU, CN=sophos_CA_C22317146569-3G1T61/emailAddress=amirala.rahmani@yahoo.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b6:b9:22:6d:ce:e7:c1:0b:27:98:d9:d4:d7:0f:
cd:b4:4b:53:26:ba:c1:c8:b2:bc:5f:75:e2:f8:26:
e3:89:61:88:3e:69:f4:5d:1e:d4:c0:7c:09:13:80:
0b:de:ba:73:98:89:e7:e1:eb:98:90:70:81:9b:2a:
03:d1:ee:aa:1a:cf:33:01:a2:62:c5:ab:71:0c:7a:
56:c0:af:44:41:5d:e1:ea:27:4d:84:4f:38:d7:59:
78:c0:cb:9f:d8:06:97:5c:c4:2d:81:c8:8b:99:c0:
f2:09:a7:cc:7e:7c:4e:f3:6a:9f:ff:e2:b0:69:1b:
ac:f2:8a:12:4a:c3:11:d9:29:ec:53:65:00:10:be:
ad:be:84:38:4e:fa:9d:69:61:ea:5c:9c:8f:0d:34:
cc:b4:6b:70:b2:bb:cd:c5:6f:db:27:b6:3a:9c:15:
7d:00:66:8a:3c:42:56:3e:3f:04:5a:bf:1f:4b:5c:
89:47:a3:c8:3d:e4:5e:70:cd:12:9b:4e:6b:a5:27:
a7:e7:af:36:3e:23:f8:07:8f:b1:c1:2e:63:72:70:
24:f8:e4:93:7c:0d:97:02:b6:01:07:7a:f3:bd:10:
81:08:8a:18:11:46:25:f2:b5:87:58:d8:5e:9c:b0:
28:3c:54:b9:0c:82:44:b1:0f:4c:33:c0:2c:87:75:
5d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:63:81:71:57:2E:8A:CD:B8:E7:FE:6F:71:0C:32:20:36:24:90:7F
X509v3 Authority Key Identifier:
keyid:2B:63:81:71:57:2E:8A:CD:B8:E7:FE:6F:71:0C:32:20:36:24:90:7F
DirName:/C=AE/ST=NA/L=NA/O=ADCI Group/OU=OU/CN=sophos_CA_C22317146569-3G1T61/emailAddress=amirala.rahmani@yahoo.com
serial:71:6F:80:AD:B7:0D:54:72:D0:0E:1A:B3:4C:90:8F:32:9D:6F:AA:EF
X509v3 Basic Constraints:
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
b0:56:48:db:20:14:38:09:b4:f2:3e:91:23:a6:4d:2a:0f:8b:
f2:df:e3:74:d0:87:38:93:15:b0:cd:b9:f1:b8:c2:72:c6:43:
74:87:d1:83:3f:d2:f4:f0:32:77:81:44:90:7a:c0:28:fe:f3:
6a:13:47:19:82:20:ad:7e:f0:a3:b5:1d:67:a9:99:d5:39:c2:
38:05:96:6f:c8:e0:18:62:b6:75:08:38:4c:0c:8f:3a:e8:ff:
92:ae:1c:0f:c7:48:0e:c4:09:50:cf:42:da:c5:b1:39:8e:e9:
2a:29:94:cc:f6:ce:1b:b4:6d:90:b8:e1:ba:c4:c8:b1:04:10:
9f:b3:33:3c:e6:30:35:b5:a6:c9:72:61:ed:cb:7c:e1:f6:e1:
04:70:e4:3b:81:41:8d:1e:e8:77:45:68:03:f9:ec:61:8b:cc:
2d:a7:59:89:1c:ff:86:8b:0e:dd:d8:47:75:6a:62:b0:8f:c7:
c4:31:44:15:89:ec:0c:14:16:48:1a:94:23:42:69:4c:3f:ce:
e8:6b:dc:49:b9:91:32:c7:4a:81:24:8c:3f:e9:7b:87:2b:62:
b5:1d:43:58:36:97:b3:23:43:67:91:ba:36:42:0e:6f:28:c0:
ea:03:f0:ae:7c:e9:24:8d:7f:14:d3:89:4b:bf:9e:c3:4e:75:
d2:bd:bf:65
MAC Addresses
C2:23:17:14:65:69
Unknown
-553166942 | 2024-10-26T08:32:32.318129
53 /
tcp
-1173300366 | 2024-10-19T05:00:59.277252
80 /
tcp
HTTP/1.1 403 Forbidden
Server: Microsoft-IIS/8.5
Date: Sat, 19 Oct 2024 05:01:20 GMT
Content-Length: 0
-1431186287 | 2024-11-02T04:13:21.563484
443 /
tcp
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
request-id: 4800df24-6b7a-4832-aac6-8f8f7a2924c5
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 02 Nov 2024 04:13:41 GMT
Content-Length: 58704
Microsoft Exchange:
Name: Exchange Server 2016 CU22 May22SU
Build Number: 15.1.2375.28
Build Date: May 10, 2022
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:66:59:86:04:d4:75:02:93:bd:cc:13:d3:f9:1f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=PL, O=Unizeto Technologies S.A., OU=Certum Certification Authority, CN=Certum Domain Validation CA SHA2
Validity
Not Before: Jan 28 12:09:26 2024 GMT
Not After : Jan 27 12:09:25 2025 GMT
Subject: CN=*.turbotec-co.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:bd:9c:fe:a1:67:ea:29:1b:24:12:b3:2f:e9:93:
b0:39:d5:27:fb:0d:b4:61:06:49:15:e3:80:03:28:
f5:3e:71:98:b9:27:db:72:54:be:96:b4:5d:1d:15:
38:80:fa:ba:5a:1a:06:fe:1d:6a:02:25:b9:48:42:
8c:81:d4:59:d7:7a:ac:c1:aa:72:56:0d:88:c5:54:
55:b1:ad:3f:66:20:71:c7:56:4c:1e:dd:38:89:64:
9e:d1:b8:64:eb:92:50:09:49:50:4e:cf:77:bf:96:
34:20:7b:fa:06:f9:89:8e:a7:13:2d:82:e2:62:b0:
ba:40:41:82:62:62:7e:f0:ae:eb:38:e5:f3:5e:3a:
0f:2e:a9:62:63:5a:3a:94:eb:08:df:d5:28:f2:9e:
8e:fb:25:91:d2:60:46:06:06:c6:31:38:df:42:ba:
19:8d:a8:bd:ce:a3:f1:51:83:ad:86:22:76:80:38:
73:14:4c:01:4b:23:55:d9:40:a6:84:b2:59:75:8b:
b1:05:b3:31:88:f3:b6:75:e2:54:58:94:78:6e:58:
81:a6:1c:8e:51:4a:d7:e5:3f:4f:8f:81:0c:77:1a:
07:1c:81:f4:66:84:fb:91:4a:00:95:6e:63:c3:f2:
f9:a6:8b:83:99:95:79:aa:1f:6f:a1:2c:b4:83:17:
22:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.certum.pl/dvcasha2.crl
Authority Information Access:
OCSP - URI:http://dvcasha2.ocsp-certum.com
CA Issuers - URI:http://repository.certum.pl/dvcasha2.cer
X509v3 Authority Key Identifier:
E5:31:AD:BF:3A:11:96:F4:83:BC:50:3C:D4:B7:90:9B:90:EE:DE:25
X509v3 Subject Key Identifier:
97:79:90:81:C9:F0:9C:D3:37:1D:8B:50:11:09:26:29:97:BC:6D:E6
X509v3 Issuer Alternative Name:
email:dvcasha2@certum.pl
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.2.616.1.113527.2.5.1.3
CPS: https://www.certum.pl/CPS
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Subject Alternative Name:
DNS:*.turbotec-co.com, DNS:turbotec-co.com
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Jan 28 12:09:26.828 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:C3:51:DF:D5:32:87:E8:3C:25:1B:B0:
23:6F:48:CB:B7:4F:0A:99:7A:F3:8D:85:C0:73:1B:5C:
94:B8:1B:A1:BF:02:21:00:FC:E2:E6:C1:74:5B:B6:53:
80:28:1D:C4:8E:1F:A4:7B:D7:93:A8:52:01:E7:39:13:
C8:C2:62:DA:F4:D9:82:69
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Jan 28 12:09:26.523 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:52:4D:D3:67:4D:9C:00:DE:6B:29:0B:BB:
AD:88:9D:0A:2E:9A:33:33:82:7F:9B:71:99:41:9D:33:
DD:85:EB:0C:02:21:00:80:12:4F:C3:5B:EF:FC:32:89:
40:07:E0:D8:52:A4:C5:48:EA:73:96:52:85:B2:3D:DD:
AD:C2:4B:14:E6:60:07
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Jan 28 12:09:26.978 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:60:9E:FD:80:2A:C6:34:5D:7C:CB:90:AC:
A5:47:AB:65:00:09:11:28:1C:E0:E8:CF:5B:C0:F1:B2:
21:21:41:47:02:21:00:FA:4F:DE:16:27:0B:62:CB:98:
D8:FE:8B:E0:F9:2C:8A:99:A5:B3:35:1E:62:72:E1:F2:
36:50:B7:F5:5A:53:37
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
03:25:ee:56:56:99:00:2e:2d:98:8b:14:a4:44:b6:e1:a7:02:
7c:fa:4e:b2:26:99:ab:17:02:57:92:eb:d8:4c:21:66:5f:2b:
6d:4d:19:de:17:3e:c2:4b:30:43:e7:0b:a7:97:1e:32:49:f0:
e8:20:f9:ea:c9:91:34:8c:b1:79:56:e7:e3:43:c8:4a:7c:93:
57:68:13:f7:bc:2c:ae:ca:23:57:f0:17:3e:d1:9a:d8:11:be:
97:a0:35:18:39:30:5b:04:7a:6b:65:b4:9b:06:39:dd:95:3d:
36:38:24:6d:e5:f1:19:0e:15:cd:4c:aa:c1:ae:fb:0c:ea:ed:
b0:6f:6d:48:e2:45:9c:bb:72:e6:69:07:51:7a:28:2e:23:e1:
eb:cd:11:de:67:f4:9c:2e:df:0c:3b:52:c8:72:eb:47:a3:11:
49:19:41:a4:76:58:92:9e:d8:62:3b:e9:56:c1:b7:57:31:97:
f1:c2:a5:e4:eb:c8:75:bb:2a:ad:af:c2:17:7c:07:85:23:54:
70:44:78:65:91:6a:c1:2a:5b:84:81:68:5a:e6:0f:29:c3:51:
27:ef:41:bb:36:96:e6:d5:8f:19:7c:60:71:69:7a:58:fa:a8:
f8:e5:52:7b:dc:fb:3f:80:33:54:bb:b2:f1:4c:c5:4f:72:94:
59:fb:58:31
981407534 | 2024-10-07T01:18:44.885175
500 /
udp
VPN (IKE)
Initiator SPI: 347a74676365666d
Responder SPI: 3569736373627662
Next Payload: RESERVED
Version: 2.0
Exchange Type: DOI Specific Use
Flags:
Encryption: False
Commit: False
Authentication: False
Message ID: 00000000
Length: 36
1799907674 | 2024-10-12T02:31:45.513793
587 /
tcp
220 EXC-MailBox02.TCTK.com Microsoft ESMTP MAIL Service ready at Sat, 12 Oct 2024 06:02:04 +0330
250-EXC-MailBox02.TCTK.com Hello [192.168.101.96]
250-SIZE 41943040
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-AUTH GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250 CHUNKING
SMTP NTLM Info:
OS: Windows 8.1/Windows Server 2012 R2
OS Build: 6.3.9600
Target Name: TCTK
NetBIOS Domain Name: TCTK
NetBIOS Computer Name: EXC-MAILBOX02
DNS Domain Name: TCTK.com
DNS Tree Name: TCTK.com
FQDN: EXC-MailBox02.TCTK.com
