GeneralInformation

Hostnames	autodiscover.msb-anwaelte.at mail.msb-anwaelte.at attachments.mail.msb-anwaelte.at mail02.msb-anwaelte.at mail2016.msb-anwaelte.at attachments.mail2016.msb-anwaelte.at
Domains	msb-anwaelte.at
Country	Austria
City	Zell am See
Organization	SALZBURG AG fur Energie, Verkehr und Telekommunikation
ISP	SALZBURG AG fur Energie, Verkehr und Telekommunikation
ASN	AS8445

WebTechnologies

Web frameworks

Microsoft ASP.NET

Webmail

Outlook Web App15.1.2507

OpenPorts

21 25 80 443 1443 5060 5061

21 / tcp

-1660163383 | 2025-01-19T23:56:05.803167

220 MSB Anwaelte
530 Login or password incorrect!
214-The following commands are recognized:
   ABOR   ADAT   ALLO   APPE   AUTH   CDUP   CLNT   CWD 
   DELE   EPRT   EPSV   FEAT   HASH   HELP   LIST   MDTM
   MFMT   MKD    MLSD   MLST   MODE   NLST   NOOP   NOP 
   OPTS   PASS   PASV   PBSZ   PORT   PROT   PWD    QUIT
   REST   RETR   RMD    RNFR   RNTO   SITE   SIZE   STOR
   STRU   SYST   TYPE   USER   XCUP   XCWD   XMKD   XPWD
   XRMD
214 Have a nice day.
211-Features:
 MDTM
 REST STREAM
 SIZE
 MLST type*;size*;modify*;
 MLSD
 AUTH SSL
 AUTH TLS
 PROT
 PBSZ
 UTF8
 CLNT
 MFMT
 EPSV
 EPRT
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1125120159 (0x430ff89f)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=AT
        Validity
            Not Before: Sep  1 12:04:28 2020 GMT
            Not After : Sep  1 12:04:28 2021 GMT
        Subject: C=AT
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a5:4e:2f:3c:06:72:53:9e:eb:3e:54:c8:5e:55:
                    8c:e4:80:2e:3a:e3:52:d2:32:71:dd:1d:f1:45:87:
                    ca:3e:df:f6:7f:4f:73:44:35:71:1b:17:12:5d:b5:
                    19:89:52:4d:b6:2f:99:ad:5a:f3:9e:86:71:0e:83:
                    48:b3:d2:47:36:a3:cc:61:d0:02:bb:12:1a:7b:1e:
                    39:5d:b5:4d:de:db:47:b0:3c:55:bc:f9:30:9b:a9:
                    24:f8:20:12:65:e8:4f:9e:f8:73:db:cf:c0:ff:5d:
                    e8:13:ac:1e:75:f6:d2:c3:12:c6:bc:0f:a6:6b:21:
                    53:72:f0:1d:c8:a4:32:9d:ba:41:57:a8:5b:83:fd:
                    bf:ea:76:16:ab:42:37:13:c7:6d:fc:34:6c:f5:b8:
                    d9:e0:e4:0e:04:e9:d7:f2:e9:34:66:df:4c:3b:99:
                    99:c5:23:86:f4:fa:53:3c:24:9e:55:2a:be:41:5a:
                    a4:88:f8:1e:b1:3e:9b:a4:3d:66:76:1f:80:87:de:
                    86:1b:0a:fa:cd:2f:a0:53:eb:da:45:71:2e:00:8a:
                    ab:19:32:fb:2a:11:4e:79:18:2c:84:29:07:cc:6c:
                    ea:6a:a2:84:16:44:5a:9a:20:34:fb:dd:d5:c7:3d:
                    77:7c:80:47:1b:a4:fb:ee:c2:f5:e9:21:c3:9e:42:
                    2a:2b
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        71:a0:97:15:a3:9c:4d:5c:38:7d:c0:f9:ac:52:53:fa:77:7f:
        b8:84:10:f2:3d:e0:6b:8f:1f:8d:0c:ec:90:f0:83:e4:4d:fd:
        f7:8e:19:13:dc:83:01:74:34:3b:25:89:ba:7e:27:f2:30:ad:
        75:db:0c:8d:9e:3b:ba:92:09:dd:c1:e9:0c:9c:b3:9c:b2:42:
        d4:dd:a4:16:ab:4d:05:37:4a:b2:98:98:b9:60:54:d1:94:14:
        34:df:e1:b3:aa:e0:44:d6:8e:19:17:8f:d9:5f:0c:d7:3a:18:
        15:56:52:92:f0:ef:3b:ac:45:c2:ba:ef:e0:56:26:cf:58:34:
        37:58:5d:ca:6d:d8:f3:28:2a:e7:50:9e:5c:a6:e0:67:31:fc:
        b8:56:c2:72:7b:b6:ea:69:ef:05:b1:2e:3a:53:e6:0f:33:46:
        4a:f6:42:92:72:86:d5:a0:12:1a:27:8a:8d:73:3d:ea:5e:5f:
        a2:c9:a3:5b:12:e1:39:bb:dc:88:4f:3e:94:1e:33:9f:78:3e:
        4b:39:e6:94:1d:64:fe:f9:b4:fb:17:37:16:76:eb:e1:3b:e9:
        fc:17:e8:fb:a7:34:90:27:84:69:a7:bd:a7:2c:a0:e1:d8:63:
        a1:23:d6:a8:de:f4:85:ce:b1:b3:db:dd:0d:c3:ff:e9:08:2b:
        e4:37:c5:8b

25 / tcp

-1967563411 | 2025-01-06T07:21:04.154774

220 Mail2016.kanzlei.local Microsoft ESMTP MAIL Service ready at Mon, 6 Jan 2025 08:20:55 +0100
250-Mail2016.kanzlei.local Hello [224.22.82.136]
250-SIZE 52428800
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250 XRDST

SMTP NTLM Info:
  OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
  OS Build: 10.0.14393
  Target Name: KANZLEI
  NetBIOS Domain Name: KANZLEI
  NetBIOS Computer Name: MAIL2016
  DNS Domain Name: kanzlei.local
  DNS Tree Name: kanzlei.local
  FQDN: Mail2016.kanzlei.local

80 / tcp

0 | 2025-01-13T06:21:29.211711

Hashes

hash

1550556241

http.dom_hash

http.html_hash

http.server_hash

608434861

HTTP/1.1 403 Forbidden
Server: Microsoft-IIS/10.0
Date: Mon, 13 Jan 2025 06:21:29 GMT
Content-Length: 0

443 / tcp

-1354010348 | 2025-01-15T14:54:35.998010

Hashes

hash

-963460464

http.dom_hash

35052746

http.favicon.hash

1768726119

http.html_hash

-1354010348

http.server_hash

608434861

http.title_hash

-480606949

Outlook

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
request-id: fc4e652b-e0ad-496f-9700-1842f3130701
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 15 Jan 2025 14:54:35 GMT
Content-Length: 58703


Microsoft Exchange:
  Name: Exchange Server 2016 CU23 Nov24SUv2
  Build Number: 15.1.2507.44
  Build Date: November 27, 2024

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:1e:64:3b:2b:31:c3:28:4c:94:f4:3a:8d:73:24:8a:78:9f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Jan 13 06:20:55 2025 GMT
            Not After : Apr 13 06:20:54 2025 GMT
        Subject: CN=mail.msb-anwaelte.at
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bc:60:49:39:9c:49:4b:0f:48:50:0b:60:4f:87:
                    2b:a3:f6:07:f0:16:c3:23:45:62:a1:7f:b9:da:3c:
                    f7:eb:c0:90:5c:52:00:39:15:36:80:66:0b:99:6d:
                    e4:7d:87:32:80:77:9c:0a:69:24:44:6d:48:68:2f:
                    09:dc:bf:6b:94:69:8a:d7:4c:64:7e:97:32:cc:3e:
                    0d:f5:43:06:0a:04:d4:21:68:68:14:63:09:b0:0c:
                    78:a6:3f:c4:d5:ba:44:2a:4d:7f:ef:45:54:6c:f3:
                    ca:6f:ab:c7:fa:21:50:20:ef:c3:39:32:14:c7:76:
                    d6:07:04:07:f2:af:12:5f:56:e2:2a:ac:02:b7:35:
                    93:48:d2:32:32:40:15:b0:3e:47:56:c2:ad:76:15:
                    69:31:d6:da:33:47:5c:0d:6a:d3:d8:53:0a:2b:4d:
                    c4:01:60:97:40:12:6c:f8:1f:4f:fa:05:13:0e:37:
                    34:12:55:fe:cd:96:4a:02:17:3d:47:ef:50:2b:8c:
                    bc:d8:38:bf:75:f6:ba:62:75:41:eb:94:03:28:e8:
                    31:01:35:27:0a:f8:d9:84:c2:98:99:65:2d:73:28:
                    f5:31:10:74:5a:8e:e0:04:fa:10:dd:05:e8:88:62:
                    89:17:bf:f9:f5:bb:db:09:5c:bb:41:83:49:d2:81:
                    90:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                86:8D:E0:9E:31:0A:5E:0D:A0:DD:CA:E7:76:CD:49:1A:2F:52:A0:06
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:attachments.mail.msb-anwaelte.at, DNS:attachments.mail2016.msb-anwaelte.at, DNS:autodiscover.msb-anwaelte.at, DNS:mail.msb-anwaelte.at, DNS:mail02.msb-anwaelte.at, DNS:mail2016.msb-anwaelte.at
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan 13 07:19:25.325 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F7:AA:4E:82:5F:A2:E4:A9:EB:DB:2E:
                                6B:AE:AB:58:95:0B:61:35:84:56:37:37:94:80:5D:49:
                                48:68:FE:17:5E:02:21:00:86:A4:A2:FD:63:BA:66:58:
                                47:FC:34:54:C1:8D:2C:7C:EB:2C:6E:6C:F5:D9:E8:8D:
                                8F:FC:44:DF:2A:9D:66:33
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Jan 13 07:19:25.341 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:33:10:6B:6E:67:19:33:9C:3F:BD:FC:5F:
                                43:A1:7E:9F:8B:D5:B1:5D:62:67:83:13:07:69:8C:C3:
                                0E:26:42:F6:02:20:03:D7:1F:3D:7D:EA:8F:0D:3B:4F:
                                BF:B1:18:76:E4:A8:35:43:20:B7:DF:C6:DC:10:7D:27:
                                2B:70:8D:92:5F:A9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        00:65:b8:5f:0b:12:51:88:f3:08:ef:90:54:a0:31:77:01:0f:
        5a:da:05:42:56:4d:c8:33:4d:5e:b9:96:44:b9:13:be:8a:e1:
        69:1c:45:cb:4b:bd:54:9d:33:99:52:76:9f:40:cd:eb:71:44:
        b0:26:1c:08:78:bf:f2:9b:08:4e:11:c8:a0:1a:1e:14:d7:23:
        df:cd:cf:c2:88:47:58:61:cb:d4:40:cb:80:a4:9e:a9:30:ff:
        da:54:4d:e0:a4:ec:9c:c5:88:35:8f:79:8a:71:f6:de:83:30:
        d4:35:66:ae:e8:12:d2:6a:99:c3:7b:00:56:d2:7f:7a:d5:cb:
        50:0a:f9:c5:7f:32:67:e8:cb:c2:55:bb:84:bd:ad:2b:7b:68:
        b6:35:94:d3:c2:18:1e:de:46:44:b7:56:f9:75:a7:b6:6d:83:
        43:fd:02:5e:86:c0:62:81:d9:f3:18:1f:31:03:11:2b:4b:70:
        9f:af:77:e4:6a:1d:cb:27:b6:d8:f4:76:0d:b1:64:90:33:ae:
        8f:ff:5b:c7:fb:f6:bb:d1:e0:bc:27:db:18:17:75:9f:1d:43:
        22:91:be:70:97:83:b0:14:8d:f0:20:4a:e4:50:00:76:f1:06:
        4d:ba:3c:ad:4e:b8:fc:04:0e:98:2c:2e:6f:27:d8:f0:07:70:
        96:79:b6:6e

1443 / tcp

0 | 2025-01-07T17:41:13.208756

Hashes

hash

494276366

http.dom_hash

http.favicon.hash

-1295577382

http.html_hash

http.server_hash

-730820314

HTTP/1.1 301 Moved Permanently
Date: Tue, 07 Jan 2025 17:41:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=qnbqtfmj5pdgkk9u1l6u1j3okf; expires=Tue, 14 Jan 2025 17:41:13 GMT; Max-Age=604800; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=qnbqtfmj5pdgkk9u1l6u1j3okf; expires=Tue, 14 Jan 2025 17:41:13 GMT; Max-Age=604800; path=/; HttpOnly; SameSite=None; Partitioned;
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
location: https://95.81.38.17:1443/
Server: wildix-http-server

5060 / udp

-339444982 | 2025-01-16T07:32:16.074095

SIP/2.0 200 OK
Via: SIP/2.0/UDP nm;branch=foo;rport=26810;received=224.120.117.223
From: <sip:nm@nm>;tag=root
To: <sip:nm2@nm2>;tag=a6a1c5f60faecf035a1ae5b6e96e979a-1e840000
Call-ID: 50000
CSeq: 42 OPTIONS
X-KEY: f385fc7301e6d32d82bd9dab2adc8631
Server: Wildix GW 20241025.2~08549757
Content-Length: 0

95.81.38.17

Last Seen: 2025-01-20

Tags:

GeneralInformation

WebTechnologies

OpenPorts

21 / tcp

-1660163383 | 2025-01-19T23:56:05.803167

25 / tcp

-1967563411 | 2025-01-06T07:21:04.154774

Microsoft Exchange smtpd

80 / tcp

0 | 2025-01-13T06:21:29.211711

Hashes

Microsoft IIS httpd10.0

443 / tcp

-1354010348 | 2025-01-15T14:54:35.998010

Hashes

Outlook Web App

1443 / tcp

0 | 2025-01-07T17:41:13.208756

Hashes

Wildix Collaboration

5060 / udp

-339444982 | 2025-01-16T07:32:16.074095

Products

Pricing

Contact Us

95.81.38.17

Last Seen: 2025-01-20

Tags:

GeneralInformation

WebTechnologies

OpenPorts

21 / tcp -1660163383 | 2025-01-19T23:56:05.803167

25 / tcp -1967563411 | 2025-01-06T07:21:04.154774

Microsoft Exchange smtpd

80 / tcp 0 | 2025-01-13T06:21:29.211711

Hashes

Microsoft IIS httpd10.0

443 / tcp -1354010348 | 2025-01-15T14:54:35.998010

Hashes

Outlook Web App

1443 / tcp 0 | 2025-01-07T17:41:13.208756

Hashes

Wildix Collaboration

5060 / udp -339444982 | 2025-01-16T07:32:16.074095

Products

Pricing

Contact Us

21 / tcp

-1660163383 | 2025-01-19T23:56:05.803167

25 / tcp

-1967563411 | 2025-01-06T07:21:04.154774

80 / tcp

0 | 2025-01-13T06:21:29.211711

443 / tcp

-1354010348 | 2025-01-15T14:54:35.998010

1443 / tcp

0 | 2025-01-07T17:41:13.208756

5060 / udp

-339444982 | 2025-01-16T07:32:16.074095