| Hostnames | cpanel06.iyibirhost.com |
| Domains | iyibirhost.com |
| Country | Turkey |
| City | Istanbul |
| Organization | Bilintel Bilisim Ticaret Limited Sirketi |
| ISP | Onur Ekren |
| ASN | AS203576 |
| Operating System | Windows 10 Pro 19045 |
| CVE-2020-0796 | 10.0A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client. |
993302783 | 2024-04-04T14:29:42.083773135 / tcp
Microsoft RPC Endpoint Mapper 51a227ae-825b-41f2-b4a9-1ac9557a1018 version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 194.110.169.40:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\DESKTOP-VQ3NMC3\pipe\lsass 8fb74744-b2ff-4c00-be0d-9ef9a191fe1b version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 194.110.169.40:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\DESKTOP-VQ3NMC3\pipe\lsass b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v2.0 annotation: KeyIso ncacn_ip_tcp: 194.110.169.40:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\DESKTOP-VQ3NMC3\pipe\lsass 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 194.110.169.40:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\DESKTOP-VQ3NMC3\pipe\lsass d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 194.110.169.40:49665 ncalrpc: WindowsShutdown ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\InitShutdown ncalrpc: WMsgKRpc091760 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\InitShutdown ncalrpc: WMsgKRpc091760 ncalrpc: WMsgKRpc0940A1 ncalrpc: WMsgKRpc05DFE5B2 fc48cd89-98d6-4628-9839-86f7a3e4161a version: v1.0 ncalrpc: dabrpc ncalrpc: csebpub ncalrpc: LRPC-2c8ac2127b36836bd2 ncalrpc: LRPC-3af187e1ac5591cd97 ncalrpc: LRPC-c816a4407c0026775f ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo d09bdeb5-6171-4a34-bfe2-06fa82652568 version: v1.0 ncalrpc: csebpub ncalrpc: LRPC-2c8ac2127b36836bd2 ncalrpc: LRPC-3af187e1ac5591cd97 ncalrpc: LRPC-c816a4407c0026775f ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-3af187e1ac5591cd97 ncalrpc: LRPC-c816a4407c0026775f ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-c816a4407c0026775f ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-3e26f1d77884b86173 ncalrpc: LRPC-ce2755f6531008d1ad ncalrpc: LRPC-b60700d268580e1c85 ncalrpc: OLE1F4F8DDFE996595F644F87D13F39 ncalrpc: LRPC-b60700d268580e1c85 ncalrpc: OLE1F4F8DDFE996595F644F87D13F39 ncalrpc: LRPC-8980a6b2c00c83fb75 697dcda9-3ba9-4eb2-9247-e11f1901b0d2 version: v1.0 ncalrpc: LRPC-2c8ac2127b36836bd2 ncalrpc: LRPC-3af187e1ac5591cd97 ncalrpc: LRPC-c816a4407c0026775f ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 9b008953-f195-4bf9-bde0-4471971e58ed version: v1.0 ncalrpc: LRPC-3af187e1ac5591cd97 ncalrpc: LRPC-c816a4407c0026775f ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 0d47017b-b33b-46ad-9e18-fe96456c5078 version: v1.0 ncalrpc: umpo 95406f0b-b239-4318-91bb-cea3a46ff0dc version: v1.0 ncalrpc: umpo 4ed8abcc-f1e2-438b-981f-bb0e8abc010c version: v1.0 ncalrpc: umpo 0ff1f646-13bb-400a-ab50-9a78f2b7a85a version: v1.0 ncalrpc: umpo 6982a06e-5fe2-46b1-b39c-a2c545bfa069 version: v1.0 ncalrpc: umpo 082a3471-31b6-422a-b931-a54401960c62 version: v1.0 ncalrpc: umpo fae436b0-b864-4a87-9eda-298547cd82f2 version: v1.0 ncalrpc: umpo e53d94ca-7464-4839-b044-09a2fb8b3ae5 version: v1.0 ncalrpc: umpo 178d84be-9291-4994-82c6-3f909aca5a03 version: v1.0 ncalrpc: umpo 4dace966-a243-4450-ae3f-9b7bcb5315b8 version: v2.0 ncalrpc: umpo 1832bcf6-cab8-41d4-85d2-c9410764f75a version: v1.0 ncalrpc: umpo c521facf-09a9-42c5-b155-72388595cbf0 version: v0.0 ncalrpc: umpo 2c7fd9ce-e706-4b40-b412-953107ef9bb0 version: v0.0 ncalrpc: umpo 88abcbc3-34ea-76ae-8215-767520655a23 version: v0.0 ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 76c217bc-c8b4-4201-a745-373ad9032b1a version: v1.0 ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 55e6b932-1979-45d6-90c5-7f6270724112 version: v1.0 ncalrpc: LRPC-81c58c047b4abf6e14 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 857fb1be-084f-4fb5-b59c-4b2c4be5f0cf version: v1.0 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 20c40295-8dba-48e6-aebf-3e78ef3bb144 version: v2.0 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 2513bcbe-6cd4-4348-855e-7efb3c336dd3 version: v2.0 ncalrpc: OLE5A7D752C5CBDBD1B34EB0370869A ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e version: v1.0 ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo c605f9fb-f0a3-4e2a-a073-73560f8d9e3e version: v1.0 ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0 version: v1.0 ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 8bfc3be1-6def-4e2d-af74-7c47cd0ade4a version: v1.0 ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo 2d98a740-581d-41b9-aa0d-a88b9d5ce938 version: v1.0 ncalrpc: LRPC-5a3fd3e8557ee7b03b ncalrpc: actkernel ncalrpc: umpo dd59071b-3215-4c59-8481-972edadc0f6a version: v1.0 ncalrpc: actkernel ncalrpc: umpo 0361ae94-0316-4c6c-8ad8-c594375800e2 version: v1.0 ncalrpc: umpo 5824833b-3c1a-4ad2-bdfd-c31d19e23ed2 version: v1.0 ncalrpc: umpo bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760 version: v1.0 ncalrpc: umpo 3b338d89-6cfa-44b8-847e-531531bc9992 version: v1.0 ncalrpc: umpo 8782d3b9-ebbd-4644-a3d8-e8725381919b version: v1.0 ncalrpc: umpo 085b0334-e454-4d91-9b8c-4134f9e793f3 version: v1.0 ncalrpc: umpo 4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9 version: v1.0 ncalrpc: umpo c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-33195205e75fd85cdb ncalrpc: IUserProfile2 ncalrpc: LRPC-fc1f6f2bd0430e845b ncalrpc: senssvc ncalrpc: LRPC-552824e270308844ba ncalrpc: LRPC-f99adf9ad66c2e5779 e40f7b57-7a25-4cd3-a135-7f7d3df9d16b version: v1.0 ncalrpc: LRPC-8c1c0e0ba91f9aff67 880fd55e-43b9-11e0-b1a8-cf4edfd72085 version: v1.0 annotation: KAPI Service endpoint ncalrpc: LRPC-2729925743f6aa6754 ncalrpc: OLEC75D1E5CE0A3B038FD97F3B449F3 ncalrpc: LRPC-3e26f1d77884b86173 5222821f-d5e2-4885-84f1-5f6185a0ec41 version: v1.0 ncalrpc: LRPC-7a469ecc86b53ca83b a500d4c6-0dd1-4543-bc0c-d5f93486eaf8 version: v1.0 ncalrpc: LRPC-6d7194e1a62551464c ncalrpc: LRPC-ce2755f6531008d1ad f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 194.110.169.40:49666 ncacn_np: \\DESKTOP-VQ3NMC3\pipe\eventlog ncalrpc: eventlog 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-811cd2e6f8dcb2eac8 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 3a9ef155-691d-4449-8d05-09ad57031823 version: v1.0 ncacn_ip_tcp: 194.110.169.40:49667 ncalrpc: LRPC-21fe69029c58b2ea68 ncalrpc: ubpmtaskhostchannel ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\atsvc ncalrpc: LRPC-4beeae534fc9df8e99 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 194.110.169.40:49667 ncalrpc: LRPC-21fe69029c58b2ea68 ncalrpc: ubpmtaskhostchannel ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\atsvc ncalrpc: LRPC-4beeae534fc9df8e99 33d84484-3626-47ee-8c6f-e7e98b113be1 version: v2.0 ncalrpc: LRPC-21fe69029c58b2ea68 ncalrpc: ubpmtaskhostchannel ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\atsvc ncalrpc: LRPC-4beeae534fc9df8e99 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\atsvc ncalrpc: LRPC-4beeae534fc9df8e99 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\atsvc ncalrpc: LRPC-4beeae534fc9df8e99 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: LRPC-4beeae534fc9df8e99 4c8d0bef-d7f1-49f0-9102-caa05f58d114 version: v1.0 ncalrpc: nlaapi ncalrpc: nlaplg 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\DESKTOP-VQ3NMC3\PIPE\wkssvc ncalrpc: LRPC-212ddac503ab24cb51 eb081a0d-10ee-478a-a1dd-50995283e7a8 version: v3.0 annotation: Witness Client Test Interface ncalrpc: LRPC-212ddac503ab24cb51 f2c9b409-c1c9-4100-8639-d8ab1486694a version: v1.0 annotation: Witness Client Upcall Server ncalrpc: LRPC-212ddac503ab24cb51 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncalrpc: LRPC-afc127e3bc4c01b46a 29770a8f-829b-4158-90a2-78cd488501f7 version: v1.0 ncacn_ip_tcp: 194.110.169.40:49668 ncacn_np: \\DESKTOP-VQ3NMC3\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: LRPC-552824e270308844ba 0d3c7f20-1c8d-4654-a1b3-51563b298bda version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-b70f13b22189b7cfd0 ncalrpc: OLECF493EEC0185E164D12DEE7E484A b18fbab6-56f8-4702-84e0-41053293a869 version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-b70f13b22189b7cfd0 ncalrpc: OLECF493EEC0185E164D12DEE7E484A 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncalrpc: LRPC-c0890d3c72b1f0305e ncalrpc: DNSResolver f3f09ffd-fbcf-4291-944d-70ad6e0e73bb version: v1.0 ncalrpc: LRPC-7722c2f9b11bf78036 ncalrpc: LRPC-58210719777554205e 76f03f96-cdfd-44fc-a22c-64950a001209 version: v1.0 protocol: [MS-PAR]: Print System Asynchronous Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 194.110.169.40:49669 ncalrpc: LRPC-849053f3495d6fa7cd 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 provider: spoolsv.exe ncacn_ip_tcp: 194.110.169.40:49669 ncalrpc: LRPC-849053f3495d6fa7cd ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 194.110.169.40:49669 ncalrpc: LRPC-849053f3495d6fa7cd 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 194.110.169.40:49669 ncalrpc: LRPC-849053f3495d6fa7cd 12345678-1234-abcd-ef00-0123456789ab version: v1.0 protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 194.110.169.40:49669 ncalrpc: LRPC-849053f3495d6fa7cd c2d1b5dd-fa81-4460-9dd6-e7658b85454b version: v1.0 ncalrpc: LRPC-df1ef04a34c680d5c1 ncalrpc: OLEC5DC96DE20EE88CE6443E66F1C80 f44e62af-dab1-44c2-8013-049a9de417d6 version: v1.0 ncalrpc: LRPC-df1ef04a34c680d5c1 ncalrpc: OLEC5DC96DE20EE88CE6443E66F1C80 7aeb6705-3ae6-471a-882d-f39c109edc12 version: v1.0 ncalrpc: LRPC-df1ef04a34c680d5c1 ncalrpc: OLEC5DC96DE20EE88CE6443E66F1C80 e7f76134-9ef5-4949-a2d6-3368cc0988f3 version: v1.0 ncalrpc: LRPC-df1ef04a34c680d5c1 ncalrpc: OLEC5DC96DE20EE88CE6443E66F1C80 b37f900a-eae4-4304-a2ab-12bb668c0188 version: v1.0 ncalrpc: LRPC-df1ef04a34c680d5c1 ncalrpc: OLEC5DC96DE20EE88CE6443E66F1C80 abfb6ca3-0c5e-4734-9285-0aee72fe8d1c version: v1.0 ncalrpc: LRPC-df1ef04a34c680d5c1 ncalrpc: OLEC5DC96DE20EE88CE6443E66F1C80 509bc7ae-77be-4ee8-b07c-0d096bb44345 version: v1.0 ncalrpc: LRPC-c8f13c89393b7e6d99 ncalrpc: OLE175FF3CC0AAE07B16D12D3F92A90 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-13b6cc67b033d464e5 ncalrpc: LRPC-26593c1012015d7428 ncalrpc: LRPC-cbee96a0758d460d5f ncalrpc: LRPC-5230978c45670902e3 f47433c3-3e9d-4157-aad4-83aa1f5c2d4c version: v1.0 annotation: Fw APIs ncalrpc: LRPC-26593c1012015d7428 ncalrpc: LRPC-cbee96a0758d460d5f ncalrpc: LRPC-5230978c45670902e3 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-cbee96a0758d460d5f ncalrpc: LRPC-5230978c45670902e3 dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-5230978c45670902e3 1a0d010f-1c33-432c-b0f5-8cf4e8053099 version: v1.0 annotation: IdSegSrv service ncalrpc: LRPC-c47d39bee216cc0cac 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncalrpc: LRPC-c47d39bee216cc0cac a398e520-d59a-4bdd-aa7a-3c1e0303a511 version: v1.0 annotation: IKE/Authip API provider: IKEEXT.DLL ncalrpc: LRPC-d69d6223ff99806f3d ba4aa15a-be94-47fb-9bfb-fef110e7efad version: v1.0 annotation: DevQueryBroker client query RPC interface ncalrpc: LRPC-983fe0b205c6fc17e7 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 194.110.169.40:49671 c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1 version: v1.0 annotation: Adh APIs ncalrpc: OLE894B532F8678EF589667426214C9 ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-ff0638100587707756 c36be077-e14b-4fe9-8abc-e856ef4f048b version: v1.0 annotation: Proxy Manager client server endpoint ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-ff0638100587707756 2e6035b2-e8f1-41a7-a044-656b439c4c34 version: v1.0 annotation: Proxy Manager provider server endpoint ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-ff0638100587707756 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncalrpc: LRPC-ff0638100587707756 c27f3c08-92ba-478c-b446-b419c4cef0e2 version: v1.0 ncalrpc: LRPC-f87cbea08e82e4694e b58aa02e-2884-4e97-8176-4ee06d794184 version: v1.0 provider: sysmain.dll ncalrpc: LRPC-49daa9790c370ecfd0 6b5bdd1e-528c-422c-af8c-a4079be4fe48 version: v1.0 annotation: Remote Fw APIs protocol: [MS-FASP]: Firewall and Advanced Security Protocol provider: FwRemoteSvr.dll ncacn_ip_tcp: 194.110.169.40:49675 ncalrpc: ipsec 5b665b9a-a086-4e26-ae24-96ab050b0ec3 version: v1.0 annotation: Device Association Framework AEP Store Access RPC Interface ncalrpc: LRPC-505017567fb1a86d2a bd84cd86-9825-4376-813d-334c543f89b1 version: v1.0 annotation: Device Association Framework Query RPC Interface ncalrpc: LRPC-505017567fb1a86d2a 2e7d4935-59d2-4312-a2c8-41900aa5495f version: v1.0 annotation: Device Association Framework Challenge RPC Interface ncalrpc: LRPC-505017567fb1a86d2a a1d4eae7-39f8-4bca-8e72-832767f5082a version: v1.0 annotation: Device Association Framework Inbound RPC Interface ncalrpc: LRPC-505017567fb1a86d2a 850cee52-3038-4277-b9b4-e05db8b2c35c version: v1.0 annotation: Device Association Framework Association RPC Interface ncalrpc: LRPC-505017567fb1a86d2a 1d45e083-478f-437c-9618-3594ced8c235 version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 98cd761e-e77d-41c8-a3c0-0fb756d90ec2 version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 d22895ef-aff4-42c5-a5b2-b14466d34ab4 version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 e38f5360-8572-473e-b696-1b46873beeab version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 95095ec8-32ea-4eb0-a3e2-041f97b36168 version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 4c9dbf19-d39e-4bb9-90ee-8f7179b20283 version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 d4051bde-9cdd-4910-b393-4aa85ec3c482 version: v1.0 ncalrpc: LRPC-81899eda4c62943b1c ncalrpc: OLEE0B1315D9B5FD43EF6B41BCCBBE9 7df1ceae-de4e-4e6f-ab14-49636e7c2052 version: v1.0 ncalrpc: LRPC-19a377eb9461e9f3d1 4b112204-0e19-11d3-b42b-0000f81feb9f version: v1.0 provider: ssdpsrv.dll ncalrpc: LRPC-ed068a417d8dd1b700 c503f532-443a-4c69-8300-ccd1fbdb3839 version: v2.0 ncalrpc: LRPC-792fbfe123cbbfaf2d ncalrpc: OLE9F28404B8247ED1FBCB08F0B267E a4b8d482-80ce-40d6-934d-b22a01a44fe7 version: v1.0 annotation: LicenseManager ncalrpc: LicenseServiceEndpoint 0767a036-0d22-48aa-ba69-b619480f38cb version: v1.0 annotation: PcaSvc provider: pcasvc.dll ncalrpc: LRPC-70f04280c34a4f38bc 54b4c689-969a-476f-8dc2-990885e9f562 version: v0.0 ncalrpc: LRPC-a960273801357d45aa be6293d3-2827-4dda-8057-8588240124c9 version: v0.0 ncalrpc: LRPC-a960273801357d45aa 7a20fcec-dec4-4c59-be57-212e8f65d3de version: v1.0 ncalrpc: LRPC-6915243c5647ea85d8 06bba54a-be05-49f9-b0a0-30f790261023 version: v1.0 annotation: Security Center provider: wscsvc.dll ncalrpc: LRPC-f1d5afc3070aec91d7 ncalrpc: OLEDC103F0467ED1C2E71AE7AD8BC5D 12e65dd8-887f-41ef-91bf-8d816c42c2e7 version: v1.0 annotation: Secure Desktop LRPC interface provider: winlogon.exe ncalrpc: WMsgKRpc05DFE5B2 58e604e8-9adb-4d2e-a464-3b0683fb1480 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-80c6df05063ffb4d96 fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-80c6df05063ffb4d96 5f54ce7d-5b79-4175-8584-cb65313a0e98 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-80c6df05063ffb4d96 201ef99a-7fa0-444c-9399-19ba84f12a1a version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-80c6df05063ffb4d96 0497b57d-2e66-424f-a0c6-157cd5d41700 version: v1.0 annotation: AppInfo ncalrpc: LRPC-80c6df05063ffb4d96 b1ef227e-dfa5-421e-82bb-67a6a129c496 version: v0.0 ncalrpc: LRPC-fc8f98f3753f163ffa ncalrpc: OLE853069A8FB60998977FDF8F9C3B3 0fc77b1a-95d8-4a2e-a0c0-cff54237462b version: v0.0 ncalrpc: LRPC-fc8f98f3753f163ffa ncalrpc: OLE853069A8FB60998977FDF8F9C3B3 8ec21e98-b5ce-4916-a3d6-449fa428a007 version: v0.0 ncalrpc: LRPC-fc8f98f3753f163ffa ncalrpc: OLE853069A8FB60998977FDF8F9C3B3 923c9623-db7f-4b34-9e6d-e86580f8ca2a version: v1.0 ncalrpc: OLEE6CC418AE223A01E547092275C6E ncalrpc: LRPC-f1f3cb23c06cf3a830 0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd version: v1.0 ncalrpc: OLEE6CC418AE223A01E547092275C6E ncalrpc: LRPC-f1f3cb23c06cf3a830 d2716e94-25cb-4820-bc15-537866578562 version: v1.0 ncalrpc: OLEE6CC418AE223A01E547092275C6E ncalrpc: LRPC-f1f3cb23c06cf3a830 43890c94-bfd7-4655-ad6a-b4a68397cdcb version: v0.0 ncalrpc: LRPC-f1f3cb23c06cf3a830 c8ba73d2-3d55-429c-8e9a-c44f006f69fc version: v0.0 ncalrpc: LRPC-f1f3cb23c06cf3a830 e8748f69-a2a4-40df-9366-62dbeb696e26 version: v0.0 ncalrpc: LRPC-f1f3cb23c06cf3a830 bf4dc912-e52f-4904-8ebe-9317c1bdd497 version: v1.0 ncalrpc: LRPC-315a6b6a7cadccdf39 ncalrpc: OLEE84EFE30A7AE7289D5DDA6D0195C 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncalrpc: 27d8fdf6-0a59-4884-8dc3-5901cdf3df7e ncalrpc: LRPC-e4d832998fe015e183 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 annotation: Group Policy RPC Interface provider: gpsvc.dll ncalrpc: LRPC-08706fd2f86a119ab7
-1174961252 | 2024-04-16T18:29:15.969728445 / tcp
SMB Status: Authentication: enabled SMB Version: 1 OS: Windows 10 Pro 19045 Software: Windows 10 Pro 6.3 Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
-1684583448 | 2024-04-08T15:40:15.1662535357 / tcp
HTTP/1.1 503 Service Unavailable Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Mon, 08 Apr 2024 15:40:15 GMT Connection: close Content-Length: 326