-104396712 | 2024-04-13T18:01:06.554067
21 /
tcp
220-FileZilla Server 1.3.0
220 Please visit https://filezilla-project.org/
530 Login incorrect.
214-The following commands are recognized.
NOP USER TYPE SYST SIZE RNTO RNFR RMD REST QUIT
HELP XMKD MLST MKD EPSV XCWD NOOP AUTH OPTS DELE
CWD CDUP APPE STOR ALLO RETR PWD FEAT CLNT MFMT
MODE XRMD PROT ADAT ABOR XPWD MDTM LIST MLSD PBSZ
NLST EPRT PASS STRU PASV STAT PORT
214 Help ok.
211-Features:
MDTM
REST STREAM
SIZE
MLST type*;size*;modify*;perm*;
MLSD
AUTH SSL
AUTH TLS
PROT
PBSZ
UTF8
TVFS
EPSV
EPRT
MFMT
211 End
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:3f:0d:89:84:c7:85:3c:45:6b:c8:55:d2:4d:bc:ee:09:17:3d:ec
Signature Algorithm: ecdsa-with-SHA256
Issuer: CN=filezilla-server self signed certificate
Validity
Not Before: Apr 22 12:51:58 2022 GMT
Not After : Apr 23 12:56:58 2023 GMT
Subject: CN=filezilla-server self signed certificate
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:55:53:7f:2a:75:a2:23:56:bf:3e:b6:25:a7:c2:
02:e7:de:c6:14:01:4c:27:1b:2e:0c:23:16:1b:10:
3f:45:de:7e:a5:1b:03:5c:47:10:73:2d:13:c3:8f:
ea:3a:f7:2a:27:ea:87:5b:dd:a2:f5:95:35:0a:e2:
84:89:f2:5b:ea
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Basic Constraints: critical
CA:FALSE
Signature Algorithm: ecdsa-with-SHA256
Signature Value:
30:44:02:20:57:ec:07:40:f6:4a:85:d9:37:3c:f6:c9:bf:7e:
85:9e:ef:16:77:85:fa:71:f7:77:27:55:cb:25:a9:c5:cf:79:
02:20:42:06:fa:91:9c:ae:f4:fd:25:68:10:d3:40:cc:16:b8:
2e:3f:69:63:79:5a:b4:af:61:34:59:00:bf:f0:f0:d1
430172547 | 2024-03-31T05:33:22.080408
135 /
tcp
Microsoft RPC Endpoint Mapper
04eeb297-cbf4-466b-8a2a-bfd6a2f10bba
version: v1.0
annotation: EFSK RPC Interface
provider: efssvc.dll
ncacn_np: \\TIGER22\pipe\efsrpc
ncalrpc: LRPC-68cab6c396454c18e7
df1941c5-fe89-4e79-bf10-463657acf44d
version: v1.0
annotation: EFS RPC Interface
provider: efssvc.dll
ncacn_np: \\TIGER22\pipe\efsrpc
ncalrpc: LRPC-68cab6c396454c18e7
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 188.165.222.227:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\TIGER22\pipe\lsass
8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 188.165.222.227:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\TIGER22\pipe\lsass
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 188.165.222.227:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\TIGER22\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 188.165.222.227:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\TIGER22\pipe\lsass
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 188.165.222.227:49665
ncalrpc: WindowsShutdown
ncacn_np: \\TIGER22\PIPE\InitShutdown
ncalrpc: WMsgKRpc096120
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\TIGER22\PIPE\InitShutdown
ncalrpc: WMsgKRpc096120
ncalrpc: WMsgKRpc09C741
ncalrpc: WMsgKRpc05B32FCE2
fc48cd89-98d6-4628-9839-86f7a3e4161a
version: v1.0
ncalrpc: dabrpc
ncalrpc: csebpub
ncalrpc: LRPC-cec899006cb215ae98
ncalrpc: LRPC-aa9eb4d32442c7f0f0
ncalrpc: LRPC-c99b8370792bb112e4
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
d09bdeb5-6171-4a34-bfe2-06fa82652568
version: v1.0
ncalrpc: csebpub
ncalrpc: LRPC-cec899006cb215ae98
ncalrpc: LRPC-aa9eb4d32442c7f0f0
ncalrpc: LRPC-c99b8370792bb112e4
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-aa9eb4d32442c7f0f0
ncalrpc: LRPC-c99b8370792bb112e4
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-c99b8370792bb112e4
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-419b287bb456bc6d60
ncalrpc: LRPC-bc41649cd691e204ad
ncalrpc: LRPC-b6bcc97e9666de6180
ncalrpc: OLE011AFB57BEC9D86A085581927254
ncalrpc: LRPC-b6bcc97e9666de6180
ncalrpc: OLE011AFB57BEC9D86A085581927254
ncalrpc: LRPC-38593fd835a6978d2f
697dcda9-3ba9-4eb2-9247-e11f1901b0d2
version: v1.0
ncalrpc: LRPC-cec899006cb215ae98
ncalrpc: LRPC-aa9eb4d32442c7f0f0
ncalrpc: LRPC-c99b8370792bb112e4
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-aa9eb4d32442c7f0f0
ncalrpc: LRPC-c99b8370792bb112e4
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
0d47017b-b33b-46ad-9e18-fe96456c5078
version: v1.0
ncalrpc: umpo
95406f0b-b239-4318-91bb-cea3a46ff0dc
version: v1.0
ncalrpc: umpo
4ed8abcc-f1e2-438b-981f-bb0e8abc010c
version: v1.0
ncalrpc: umpo
0ff1f646-13bb-400a-ab50-9a78f2b7a85a
version: v1.0
ncalrpc: umpo
6982a06e-5fe2-46b1-b39c-a2c545bfa069
version: v1.0
ncalrpc: umpo
082a3471-31b6-422a-b931-a54401960c62
version: v1.0
ncalrpc: umpo
fae436b0-b864-4a87-9eda-298547cd82f2
version: v1.0
ncalrpc: umpo
e53d94ca-7464-4839-b044-09a2fb8b3ae5
version: v1.0
ncalrpc: umpo
178d84be-9291-4994-82c6-3f909aca5a03
version: v1.0
ncalrpc: umpo
4dace966-a243-4450-ae3f-9b7bcb5315b8
version: v2.0
ncalrpc: umpo
1832bcf6-cab8-41d4-85d2-c9410764f75a
version: v1.0
ncalrpc: umpo
c521facf-09a9-42c5-b155-72388595cbf0
version: v0.0
ncalrpc: umpo
2c7fd9ce-e706-4b40-b412-953107ef9bb0
version: v0.0
ncalrpc: umpo
88abcbc3-34ea-76ae-8215-767520655a23
version: v0.0
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
76c217bc-c8b4-4201-a745-373ad9032b1a
version: v1.0
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
55e6b932-1979-45d6-90c5-7f6270724112
version: v1.0
ncalrpc: LRPC-3e861ffc42346a8f56
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
version: v1.0
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
20c40295-8dba-48e6-aebf-3e78ef3bb144
version: v2.0
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
2513bcbe-6cd4-4348-855e-7efb3c336dd3
version: v2.0
ncalrpc: OLEC547AD00F4CB919C70DE8B51D768
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
version: v1.0
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
version: v1.0
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
version: v1.0
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
version: v1.0
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
2d98a740-581d-41b9-aa0d-a88b9d5ce938
version: v1.0
ncalrpc: LRPC-7a57e3c404f117273d
ncalrpc: actkernel
ncalrpc: umpo
dd59071b-3215-4c59-8481-972edadc0f6a
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
0361ae94-0316-4c6c-8ad8-c594375800e2
version: v1.0
ncalrpc: umpo
5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
version: v1.0
ncalrpc: umpo
bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
version: v1.0
ncalrpc: umpo
3b338d89-6cfa-44b8-847e-531531bc9992
version: v1.0
ncalrpc: umpo
8782d3b9-ebbd-4644-a3d8-e8725381919b
version: v1.0
ncalrpc: umpo
085b0334-e454-4d91-9b8c-4134f9e793f3
version: v1.0
ncalrpc: umpo
4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
version: v1.0
ncalrpc: umpo
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-886255245943179389
ncalrpc: IUserProfile2
ncalrpc: LRPC-1d7679b1b782661f1e
ncalrpc: senssvc
ncalrpc: LRPC-323002956ffa305627
ncalrpc: LRPC-1ca8a071a0fea81ca8
a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
version: v1.0
ncalrpc: LRPC-677859fe81d38d5863
ncalrpc: LRPC-419b287bb456bc6d60
e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
version: v1.0
ncalrpc: LRPC-77bcf5d88d51af8956
880fd55e-43b9-11e0-b1a8-cf4edfd72085
version: v1.0
annotation: KAPI Service endpoint
ncalrpc: LRPC-13428406626465006a
ncalrpc: OLE29FA0265EE2DE66198C4E446E4E4
ncalrpc: LRPC-bc41649cd691e204ad
5222821f-d5e2-4885-84f1-5f6185a0ec41
version: v1.0
ncalrpc: LRPC-06d9133d485408533f
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 188.165.222.227:49666
ncacn_np: \\TIGER22\pipe\eventlog
ncalrpc: eventlog
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-bf831cabd8745f5ee3
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
4c8d0bef-d7f1-49f0-9102-caa05f58d114
version: v1.0
ncalrpc: nlaapi
ncalrpc: nlaplg
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncacn_ip_tcp: 188.165.222.227:49667
ncalrpc: LRPC-a51b29f2b5a7cadee8
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\TIGER22\PIPE\atsvc
ncalrpc: LRPC-b486feb2f566a30148
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 188.165.222.227:49667
ncalrpc: LRPC-a51b29f2b5a7cadee8
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\TIGER22\PIPE\atsvc
ncalrpc: LRPC-b486feb2f566a30148
33d84484-3626-47ee-8c6f-e7e98b113be1
version: v2.0
ncalrpc: LRPC-a51b29f2b5a7cadee8
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\TIGER22\PIPE\atsvc
ncalrpc: LRPC-b486feb2f566a30148
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\TIGER22\PIPE\atsvc
ncalrpc: LRPC-b486feb2f566a30148
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\TIGER22\PIPE\atsvc
ncalrpc: LRPC-b486feb2f566a30148
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: LRPC-b486feb2f566a30148
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\TIGER22\PIPE\wkssvc
ncalrpc: LRPC-37e2b986f38bd194b9
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: LRPC-37e2b986f38bd194b9
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: LRPC-37e2b986f38bd194b9
29770a8f-829b-4158-90a2-78cd488501f7
version: v1.0
ncacn_ip_tcp: 188.165.222.227:49668
ncacn_np: \\TIGER22\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-323002956ffa305627
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-5bdeb6e9c249262ffa
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncalrpc: bface753-aa38-48de-9618-b40b1f830848
ncalrpc: LRPC-355f2860679182b501
c2d1b5dd-fa81-4460-9dd6-e7658b85454b
version: v1.0
ncalrpc: LRPC-1eabc5cf153ca3fa93
ncalrpc: OLE90BAB74D14D57B2D4E41B1467662
f44e62af-dab1-44c2-8013-049a9de417d6
version: v1.0
ncalrpc: LRPC-1eabc5cf153ca3fa93
ncalrpc: OLE90BAB74D14D57B2D4E41B1467662
7aeb6705-3ae6-471a-882d-f39c109edc12
version: v1.0
ncalrpc: LRPC-1eabc5cf153ca3fa93
ncalrpc: OLE90BAB74D14D57B2D4E41B1467662
e7f76134-9ef5-4949-a2d6-3368cc0988f3
version: v1.0
ncalrpc: LRPC-1eabc5cf153ca3fa93
ncalrpc: OLE90BAB74D14D57B2D4E41B1467662
b37f900a-eae4-4304-a2ab-12bb668c0188
version: v1.0
ncalrpc: LRPC-1eabc5cf153ca3fa93
ncalrpc: OLE90BAB74D14D57B2D4E41B1467662
abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
version: v1.0
ncalrpc: LRPC-1eabc5cf153ca3fa93
ncalrpc: OLE90BAB74D14D57B2D4E41B1467662
76f03f96-cdfd-44fc-a22c-64950a001209
version: v1.0
protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 188.165.222.227:49669
ncalrpc: LRPC-01f7675c63a20c6e68
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
provider: spoolsv.exe
ncacn_ip_tcp: 188.165.222.227:49669
ncalrpc: LRPC-01f7675c63a20c6e68
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 188.165.222.227:49669
ncalrpc: LRPC-01f7675c63a20c6e68
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 188.165.222.227:49669
ncalrpc: LRPC-01f7675c63a20c6e68
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 188.165.222.227:49669
ncalrpc: LRPC-01f7675c63a20c6e68
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: LRPC-0a2aa71ee2c754962f
ncalrpc: DNSResolver
c27f3c08-92ba-478c-b446-b419c4cef0e2
version: v1.0
ncalrpc: LRPC-a9a3aa61f40f86fff1
b58aa02e-2884-4e97-8176-4ee06d794184
version: v1.0
provider: sysmain.dll
ncalrpc: LRPC-9253873fc2b36b8dd1
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-c9890fedf55c7fc557
ncalrpc: LRPC-181f19f9a8878b243d
ncalrpc: LRPC-b90022c91f380491e5
ncalrpc: LRPC-81f079e4bbf621f87a
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-181f19f9a8878b243d
ncalrpc: LRPC-b90022c91f380491e5
ncalrpc: LRPC-81f079e4bbf621f87a
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-b90022c91f380491e5
ncalrpc: LRPC-81f079e4bbf621f87a
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-81f079e4bbf621f87a
c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
version: v1.0
annotation: Adh APIs
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-2df6fc34ee88acca11
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-2df6fc34ee88acca11
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-2df6fc34ee88acca11
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncalrpc: LRPC-2df6fc34ee88acca11
0d3c7f20-1c8d-4654-a1b3-51563b298bda
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-44ec40a85a96f4b4ab
ncalrpc: OLEF7DC0F60F3243876393612460D48
b18fbab6-56f8-4702-84e0-41053293a869
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-44ec40a85a96f4b4ab
ncalrpc: OLEF7DC0F60F3243876393612460D48
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncalrpc: LRPC-b9898ecd7d500a7e99
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncalrpc: LRPC-b9898ecd7d500a7e99
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncalrpc: LRPC-e7a5afe0cec0f6f878
e64b9aee-f372-4312-9a14-8f1502b5c8e3
version: v1.0
ncalrpc: LRPC-f320bb7b84fb6ea957
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 188.165.222.227:49671
ncalrpc: ipsec
e7a216af-1ec1-447f-8d3f-a87278db564d
version: v1.0
ncalrpc: LRPC-d62f25d7af2f828027
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 188.165.222.227:49672
26268c86-e770-433e-86ef-5f3ba6731fba
version: v1.0
ncalrpc: LRPC-a4471b4617d919f085
ncalrpc: OLED8CB8CDE92B450BFFED5684BC66D
015163bb-e769-45e1-afaf-dff7e782b560
version: v1.0
ncalrpc: LRPC-17d5734684fc98f282
f1c37891-201f-4aa3-94b1-a5d131b04920
version: v1.0
ncalrpc: LRPC-17d5734684fc98f282
1d45e083-478f-437c-9618-3594ced8c235
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
98cd761e-e77d-41c8-a3c0-0fb756d90ec2
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
d22895ef-aff4-42c5-a5b2-b14466d34ab4
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
e38f5360-8572-473e-b696-1b46873beeab
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
95095ec8-32ea-4eb0-a3e2-041f97b36168
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
4c9dbf19-d39e-4bb9-90ee-8f7179b20283
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
d4051bde-9cdd-4910-b393-4aa85ec3c482
version: v1.0
ncalrpc: LRPC-d7b0644af4811691e3
ncalrpc: OLEA55A87C8A370051B2FACFCC6E25E
7df1ceae-de4e-4e6f-ab14-49636e7c2052
version: v1.0
ncalrpc: LRPC-676a9ca6a3851846e6
f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
version: v1.0
ncalrpc: LRPC-10f53b85d3da77fc91
509bc7ae-77be-4ee8-b07c-0d096bb44345
version: v1.0
ncalrpc: LRPC-7dd08153d8eae82d79
ncalrpc: OLEBA84E4249BBAC594413804E200BE
0767a036-0d22-48aa-ba69-b619480f38cb
version: v1.0
annotation: PcaSvc
provider: pcasvc.dll
ncalrpc: LRPC-d722716567eaf75571
4b112204-0e19-11d3-b42b-0000f81feb9f
version: v1.0
provider: ssdpsrv.dll
ncalrpc: LRPC-aef367b73e87568da8
c503f532-443a-4c69-8300-ccd1fbdb3839
version: v2.0
ncalrpc: LRPC-2b3b291dd803792e15
ncalrpc: OLE48A579781D55A78C717E026EA9A7
a111f1c5-5923-47c0-9a68-d0bafb577901
version: v1.0
annotation: NetSetup API
ncalrpc: LRPC-367acced505bcfe28a
54b4c689-969a-476f-8dc2-990885e9f562
version: v0.0
ncalrpc: LRPC-109b8d03cde61e3b03
be6293d3-2827-4dda-8057-8588240124c9
version: v0.0
ncalrpc: LRPC-109b8d03cde61e3b03
7a20fcec-dec4-4c59-be57-212e8f65d3de
version: v1.0
ncalrpc: LRPC-784297faf7c021be66
06bba54a-be05-49f9-b0a0-30f790261023
version: v1.0
annotation: Security Center
provider: wscsvc.dll
ncalrpc: LRPC-24769b4c7b2a4c450d
ncalrpc: OLE759DDD2C42EA2934F9BD34B913D4
bf4dc912-e52f-4904-8ebe-9317c1bdd497
version: v1.0
ncalrpc: LRPC-c05a82145fd7c0eb79
ncalrpc: OLE2662E5F3CED6E8D785A2BA00FDAA
a4b8d482-80ce-40d6-934d-b22a01a44fe7
version: v1.0
annotation: LicenseManager
ncalrpc: LicenseServiceEndpoint
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc05B32FCE2
b1ef227e-dfa5-421e-82bb-67a6a129c496
version: v0.0
ncalrpc: LRPC-a7bad0595bc741fd81
ncalrpc: OLE8A7CF62606039B3225F835E0E0F1
0fc77b1a-95d8-4a2e-a0c0-cff54237462b
version: v0.0
ncalrpc: LRPC-a7bad0595bc741fd81
ncalrpc: OLE8A7CF62606039B3225F835E0E0F1
8ec21e98-b5ce-4916-a3d6-449fa428a007
version: v0.0
ncalrpc: LRPC-a7bad0595bc741fd81
ncalrpc: OLE8A7CF62606039B3225F835E0E0F1
58e604e8-9adb-4d2e-a464-3b0683fb1480
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-b6262ac1bd152d2d83
fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-b6262ac1bd152d2d83
5f54ce7d-5b79-4175-8584-cb65313a0e98
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-b6262ac1bd152d2d83
201ef99a-7fa0-444c-9399-19ba84f12a1a
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-b6262ac1bd152d2d83
0497b57d-2e66-424f-a0c6-157cd5d41700
version: v1.0
annotation: AppInfo
ncalrpc: LRPC-b6262ac1bd152d2d83
43890c94-bfd7-4655-ad6a-b4a68397cdcb
version: v0.0
ncalrpc: LRPC-51d260b5dab08d28f3
ncalrpc: OLED419C69DE229921E39435D55BF04
c8ba73d2-3d55-429c-8e9a-c44f006f69fc
version: v0.0
ncalrpc: LRPC-51d260b5dab08d28f3
ncalrpc: OLED419C69DE229921E39435D55BF04
e8748f69-a2a4-40df-9366-62dbeb696e26
version: v0.0
ncalrpc: LRPC-51d260b5dab08d28f3
ncalrpc: OLED419C69DE229921E39435D55BF04
923c9623-db7f-4b34-9e6d-e86580f8ca2a
version: v1.0
ncalrpc: LRPC-51d260b5dab08d28f3
ncalrpc: OLED419C69DE229921E39435D55BF04
0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd
version: v1.0
ncalrpc: LRPC-51d260b5dab08d28f3
ncalrpc: OLED419C69DE229921E39435D55BF04
d2716e94-25cb-4820-bc15-537866578562
version: v1.0
ncalrpc: LRPC-51d260b5dab08d28f3
ncalrpc: OLED419C69DE229921E39435D55BF04
4be96a0f-9f52-4729-a51d-c70610f118b0
version: v1.0
annotation: wbiosrvc
provider: wbiosrvc.dll
ncalrpc: LRPC-a83e5adbc40ac27cf7
c0e9671e-33c6-4438-9464-56b2e1b1c7b4
version: v1.0
annotation: wbiosrvc
provider: wbiosrvc.dll
ncalrpc: LRPC-a83e5adbc40ac27cf7
169c453b-5955-4672-be44-21f61e9ef18f
version: v1.0
annotation: INgcContainerEnum
ncalrpc: LRPC-0049d36d3cc061a963
ba4aa15a-be94-47fb-9bfb-fef110e7efad
version: v1.0
annotation: DevQueryBroker client query RPC interface
ncalrpc: LRPC-c73aae5cdf4cf28f62
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
annotation: Group Policy RPC Interface
provider: gpsvc.dll
ncalrpc: LRPC-8e74ddd9ea585cbfb9
-757264002 | 2024-03-30T10:30:07.077907
139 /
tcp
-1174961252 | 2024-04-20T04:32:14.702206
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 1
OS: Windows 10 Pro 19045
Software: Windows 10 Pro 6.3
Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
-376411788 | 2024-04-15T00:33:32.990241
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 2004)/Windows Server (version 2004)
OS Build: 10.0.19041
Target Name: TIGER22
NetBIOS Domain Name: TIGER22
NetBIOS Computer Name: TIGER22
DNS Domain Name: TIGER22
FQDN: TIGER22
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:8f:1a:85:57:92:cf:a9:4d:06:fb:bc:ae:57:74:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=TIGER22
Validity
Not Before: Dec 2 00:59:15 2023 GMT
Not After : Jun 2 00:59:15 2024 GMT
Subject: CN=TIGER22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a7:6e:f4:f3:0a:42:03:95:ab:e5:22:10:12:5f:
06:d5:63:a9:60:ae:0f:05:2a:d6:0f:62:65:36:bb:
57:8b:5b:ad:ab:20:82:67:38:2c:67:de:72:36:00:
ab:bb:49:07:ef:30:82:aa:75:b0:c7:2d:bb:cc:3f:
3b:17:22:b3:03:04:6a:2b:30:09:fa:9f:37:25:ad:
ca:21:e2:61:ac:69:31:f4:d5:03:99:c2:a5:7d:6d:
cc:10:31:e6:67:df:66:bf:cc:fb:cf:9f:36:23:29:
33:11:f9:c7:27:e7:a2:09:3e:49:34:eb:d5:b1:6e:
e7:74:bc:bc:25:41:a4:69:9a:d4:5a:4e:c8:79:ef:
66:77:dc:80:b1:b8:11:4c:09:21:0b:3b:27:28:09:
d9:5d:0a:86:02:72:6e:72:33:47:f1:b4:f1:73:0d:
e4:73:eb:1e:10:65:06:79:17:5a:77:41:a3:a3:7c:
93:ce:ed:80:6b:99:8e:6c:c5:bd:88:60:02:d4:42:
65:24:4a:aa:8c:49:96:dc:28:c3:b0:b5:6e:db:16:
94:e5:3f:dc:f1:3b:98:1a:7f:ec:42:48:6c:43:7c:
95:b3:31:66:91:b1:37:b6:23:38:58:53:f5:c4:1a:
dc:a8:da:1c:9b:58:9e:b5:56:be:6a:d9:04:99:de:
ad:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4f:9b:f4:5c:76:b7:55:64:ac:23:fc:82:d3:e9:f8:f2:31:5b:
49:de:f8:49:aa:4a:7f:95:ea:15:e0:01:8d:3a:b8:b2:c2:e7:
9d:69:67:a6:a3:16:d0:a3:22:2a:39:13:e6:31:24:c7:3f:62:
0a:99:a2:4b:5f:c1:0f:b3:e4:17:e0:c5:a8:00:f3:10:fc:4e:
83:1b:7c:28:01:6e:f4:77:f0:2e:c4:94:88:f6:70:11:da:f0:
16:a7:e3:c3:fa:aa:9f:25:79:14:e3:ef:4c:ba:fc:a9:2f:98:
a7:7a:ed:d9:0d:5a:d6:c9:14:e0:5b:66:fc:70:de:82:7e:4f:
d3:4e:a9:9d:45:d6:58:0a:72:92:ca:a0:f4:f8:fd:3c:12:3a:
88:68:fe:3a:d8:84:c0:e9:76:38:86:e5:01:08:d3:2f:53:87:
0a:ab:23:e3:eb:50:16:a6:9f:9a:1d:61:19:f9:21:6e:f6:1d:
49:16:49:28:96:2f:c3:d8:34:c5:0a:7b:1a:8d:46:5f:a1:23:
11:b7:c5:95:06:c8:0c:8d:18:ac:b9:45:bf:b4:b0:ab:aa:12:
bd:80:f5:38:53:de:d0:b0:cd:e1:b5:d3:72:86:6b:84:36:40:
59:55:b3:6f:71:45:df:14:9c:75:3f:18:ea:dc:b5:62:52:70:
6a:60:5b:2b
870263482 | 2024-04-17T05:41:41.036368
6881 /
udp
DHT Nodes
66.22.55.182 59328
39.108.23.95 10983
99.51.136.205 47025
64.130.178.162 44364
109.100.64.77 6385
17.83.105.69 16103
241.66.198.72 20465
74.86.117.161 48383
19.250.26.225 16632
155.60.72.17 56233
21.4.254.77 7624
209.172.203.222 30761
31.50.254.151 6881
64.141.46.81 14506
245.138.208.16 64456
54.23.168.232 48361
23.100.78.108 24959
4.0.71.228 61187
74.143.38.28 14428
51.218.146.209 36574
135.45.7.48 1535
180.114.147.131 17907
50.36.62.134 40241
173.235.41.105 20643
122.72.1.22 38340
180.71.41.169 32925
74.60.19.38 55104
54.155.5.210 41923
250.53.49.122 27626
127.237.185.197 61906
84.2.72.105 62268
110.149.242.48 27000
57.70.245.126 49650
134.17.54.126 30075
55122492 | 2024-04-01T15:15:07.363259
8080 /
tcp
HTTP/1.1 401 Unauthorized
Content-Length: 0
Content-Type: text/plain; charset=UTF-8
Date: Mon, 01 Apr 2024 15:15:07 GMT
WWW-Authenticate: Digest realm="calibre", nonce="413570b297ced9170011:79f312f1c26239ada3a931fef48f81b1a02ea3dbb043ef92dc0ac0b8c49300e1", algorithm="MD5", qop="auth"
