1369739246 | 2024-05-24T07:23:21.025013
135 /
tcp
Microsoft RPC Endpoint Mapper
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 198.12.89.32:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\DESKTOP-E4F55FE\pipe\lsass
8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 198.12.89.32:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\DESKTOP-E4F55FE\pipe\lsass
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 198.12.89.32:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\DESKTOP-E4F55FE\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 198.12.89.32:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\DESKTOP-E4F55FE\pipe\lsass
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 198.12.89.32:49665
ncalrpc: WindowsShutdown
ncacn_np: \\DESKTOP-E4F55FE\PIPE\InitShutdown
ncalrpc: WMsgKRpc0589D0
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\DESKTOP-E4F55FE\PIPE\InitShutdown
ncalrpc: WMsgKRpc0589D0
ncalrpc: WMsgKRpc05B0C1
ncalrpc: WMsgKRpc0AA6732
fc48cd89-98d6-4628-9839-86f7a3e4161a
version: v1.0
ncalrpc: dabrpc
ncalrpc: csebpub
ncalrpc: LRPC-5b4c11e846640f2f73
ncalrpc: LRPC-010ae0de31afc17bf9
ncalrpc: LRPC-7444e32e2ecddead5e
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
d09bdeb5-6171-4a34-bfe2-06fa82652568
version: v1.0
ncalrpc: csebpub
ncalrpc: LRPC-5b4c11e846640f2f73
ncalrpc: LRPC-010ae0de31afc17bf9
ncalrpc: LRPC-7444e32e2ecddead5e
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-010ae0de31afc17bf9
ncalrpc: LRPC-7444e32e2ecddead5e
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-7444e32e2ecddead5e
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-d28e14bc183b0b14bb
ncalrpc: LRPC-b4135639f80992270e
ncalrpc: LRPC-c7bf923060ee22d780
ncalrpc: LRPC-18cdc67cfa4729e286
ncalrpc: OLE137F37B4D0A1D6FBEF9FC3D79D3D
ncalrpc: LRPC-18cdc67cfa4729e286
ncalrpc: OLE137F37B4D0A1D6FBEF9FC3D79D3D
697dcda9-3ba9-4eb2-9247-e11f1901b0d2
version: v1.0
ncalrpc: LRPC-5b4c11e846640f2f73
ncalrpc: LRPC-010ae0de31afc17bf9
ncalrpc: LRPC-7444e32e2ecddead5e
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-010ae0de31afc17bf9
ncalrpc: LRPC-7444e32e2ecddead5e
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
0d47017b-b33b-46ad-9e18-fe96456c5078
version: v1.0
ncalrpc: umpo
95406f0b-b239-4318-91bb-cea3a46ff0dc
version: v1.0
ncalrpc: umpo
4ed8abcc-f1e2-438b-981f-bb0e8abc010c
version: v1.0
ncalrpc: umpo
0ff1f646-13bb-400a-ab50-9a78f2b7a85a
version: v1.0
ncalrpc: umpo
6982a06e-5fe2-46b1-b39c-a2c545bfa069
version: v1.0
ncalrpc: umpo
082a3471-31b6-422a-b931-a54401960c62
version: v1.0
ncalrpc: umpo
fae436b0-b864-4a87-9eda-298547cd82f2
version: v1.0
ncalrpc: umpo
e53d94ca-7464-4839-b044-09a2fb8b3ae5
version: v1.0
ncalrpc: umpo
178d84be-9291-4994-82c6-3f909aca5a03
version: v1.0
ncalrpc: umpo
4dace966-a243-4450-ae3f-9b7bcb5315b8
version: v2.0
ncalrpc: umpo
1832bcf6-cab8-41d4-85d2-c9410764f75a
version: v1.0
ncalrpc: umpo
c521facf-09a9-42c5-b155-72388595cbf0
version: v0.0
ncalrpc: umpo
2c7fd9ce-e706-4b40-b412-953107ef9bb0
version: v0.0
ncalrpc: umpo
88abcbc3-34ea-76ae-8215-767520655a23
version: v0.0
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
76c217bc-c8b4-4201-a745-373ad9032b1a
version: v1.0
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
55e6b932-1979-45d6-90c5-7f6270724112
version: v1.0
ncalrpc: LRPC-34e2cf884bb97f33a5
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
version: v1.0
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
20c40295-8dba-48e6-aebf-3e78ef3bb144
version: v2.0
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
2513bcbe-6cd4-4348-855e-7efb3c336dd3
version: v2.0
ncalrpc: OLE219CCD2DECC5DA63A37436EA13F5
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
version: v1.0
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
version: v1.0
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
version: v1.0
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
version: v1.0
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
2d98a740-581d-41b9-aa0d-a88b9d5ce938
version: v1.0
ncalrpc: LRPC-96e8dcf4a508e76764
ncalrpc: actkernel
ncalrpc: umpo
dd59071b-3215-4c59-8481-972edadc0f6a
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
0361ae94-0316-4c6c-8ad8-c594375800e2
version: v1.0
ncalrpc: umpo
5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
version: v1.0
ncalrpc: umpo
bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
version: v1.0
ncalrpc: umpo
3b338d89-6cfa-44b8-847e-531531bc9992
version: v1.0
ncalrpc: umpo
8782d3b9-ebbd-4644-a3d8-e8725381919b
version: v1.0
ncalrpc: umpo
085b0334-e454-4d91-9b8c-4134f9e793f3
version: v1.0
ncalrpc: umpo
4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
version: v1.0
ncalrpc: umpo
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-ffcc29e300826bafb4
ncalrpc: IUserProfile2
ncalrpc: LRPC-470acb181805e528a7
ncalrpc: senssvc
ncalrpc: LRPC-e9606119cd3e6f4c63
ncalrpc: LRPC-4590694f42b896288c
f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
version: v1.0
ncalrpc: LRPC-2811670d94a07299fd
e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
version: v1.0
ncalrpc: LRPC-1b1152a0681cc38491
880fd55e-43b9-11e0-b1a8-cf4edfd72085
version: v1.0
annotation: KAPI Service endpoint
ncalrpc: LRPC-f2f1e6ed5d884c4fe4
ncalrpc: OLE1ED8E85EBAE2F696F327AE3087A8
ncalrpc: LRPC-d28e14bc183b0b14bb
5222821f-d5e2-4885-84f1-5f6185a0ec41
version: v1.0
ncalrpc: LRPC-4806f8217117fd79be
a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
version: v1.0
ncalrpc: LRPC-6ba4fe21cc27a0df68
ncalrpc: LRPC-b4135639f80992270e
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncacn_ip_tcp: 198.12.89.32:49667
ncalrpc: LRPC-9e15202c1bf7593826
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\DESKTOP-E4F55FE\PIPE\atsvc
ncalrpc: LRPC-63e76762f1ecf8f96e
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 198.12.89.32:49667
ncalrpc: LRPC-9e15202c1bf7593826
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\DESKTOP-E4F55FE\PIPE\atsvc
ncalrpc: LRPC-63e76762f1ecf8f96e
33d84484-3626-47ee-8c6f-e7e98b113be1
version: v2.0
ncalrpc: LRPC-9e15202c1bf7593826
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\DESKTOP-E4F55FE\PIPE\atsvc
ncalrpc: LRPC-63e76762f1ecf8f96e
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\DESKTOP-E4F55FE\PIPE\atsvc
ncalrpc: LRPC-63e76762f1ecf8f96e
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\DESKTOP-E4F55FE\PIPE\atsvc
ncalrpc: LRPC-63e76762f1ecf8f96e
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: LRPC-63e76762f1ecf8f96e
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 198.12.89.32:49666
ncacn_np: \\DESKTOP-E4F55FE\pipe\eventlog
ncalrpc: eventlog
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-976b7ea19f689bf63c
509bc7ae-77be-4ee8-b07c-0d096bb44345
version: v1.0
ncalrpc: LRPC-8a963575e3ba23f7d4
ncalrpc: OLE49AB2E90AF59BFC04995E51F5BE2
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: dhcpcsvc
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
0d3c7f20-1c8d-4654-a1b3-51563b298bda
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-85f9017c9079592b40
ncalrpc: OLED055F7A5A3A5CA40639F49BA8B48
b18fbab6-56f8-4702-84e0-41053293a869
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-85f9017c9079592b40
ncalrpc: OLED055F7A5A3A5CA40639F49BA8B48
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-97333ab14cbd30f101
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\DESKTOP-E4F55FE\PIPE\wkssvc
ncalrpc: LRPC-9c1b6872ff0c6c3b43
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: LRPC-9c1b6872ff0c6c3b43
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: LRPC-9c1b6872ff0c6c3b43
4c8d0bef-d7f1-49f0-9102-caa05f58d114
version: v1.0
ncalrpc: nlaapi
ncalrpc: nlaplg
29770a8f-829b-4158-90a2-78cd488501f7
version: v1.0
ncacn_ip_tcp: 198.12.89.32:49668
ncacn_np: \\DESKTOP-E4F55FE\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-e9606119cd3e6f4c63
b58aa02e-2884-4e97-8176-4ee06d794184
version: v1.0
provider: sysmain.dll
ncalrpc: LRPC-e79c3c9b7cc6a43a24
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: LRPC-13c6c076e0dd0ed235
ncalrpc: DNSResolver
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncalrpc: b0ca3f6b-6097-4a17-98da-1a96a5aa9230
ncalrpc: LRPC-2e1fff19f516d9bdba
76f03f96-cdfd-44fc-a22c-64950a001209
version: v1.0
protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 198.12.89.32:49670
ncalrpc: LRPC-040eb0d844ce9686f1
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
provider: spoolsv.exe
ncacn_ip_tcp: 198.12.89.32:49670
ncalrpc: LRPC-040eb0d844ce9686f1
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 198.12.89.32:49670
ncalrpc: LRPC-040eb0d844ce9686f1
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 198.12.89.32:49670
ncalrpc: LRPC-040eb0d844ce9686f1
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 198.12.89.32:49670
ncalrpc: LRPC-040eb0d844ce9686f1
c2d1b5dd-fa81-4460-9dd6-e7658b85454b
version: v1.0
ncalrpc: LRPC-61538a63c388a77502
ncalrpc: OLEAC67E5B567A3C20EC3C08B012C6D
f44e62af-dab1-44c2-8013-049a9de417d6
version: v1.0
ncalrpc: LRPC-61538a63c388a77502
ncalrpc: OLEAC67E5B567A3C20EC3C08B012C6D
7aeb6705-3ae6-471a-882d-f39c109edc12
version: v1.0
ncalrpc: LRPC-61538a63c388a77502
ncalrpc: OLEAC67E5B567A3C20EC3C08B012C6D
e7f76134-9ef5-4949-a2d6-3368cc0988f3
version: v1.0
ncalrpc: LRPC-61538a63c388a77502
ncalrpc: OLEAC67E5B567A3C20EC3C08B012C6D
b37f900a-eae4-4304-a2ab-12bb668c0188
version: v1.0
ncalrpc: LRPC-61538a63c388a77502
ncalrpc: OLEAC67E5B567A3C20EC3C08B012C6D
abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
version: v1.0
ncalrpc: LRPC-61538a63c388a77502
ncalrpc: OLEAC67E5B567A3C20EC3C08B012C6D
54b4c689-969a-476f-8dc2-990885e9f562
version: v0.0
ncalrpc: LRPC-526e1b03c4cd89fe48
be6293d3-2827-4dda-8057-8588240124c9
version: v0.0
ncalrpc: LRPC-526e1b03c4cd89fe48
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-754d1348242afaec73
ncalrpc: LRPC-f5a77de859ed3d1aba
ncalrpc: LRPC-8cf931f8f153359793
ncalrpc: LRPC-65a1cf2ba6d552f3c7
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-f5a77de859ed3d1aba
ncalrpc: LRPC-8cf931f8f153359793
ncalrpc: LRPC-65a1cf2ba6d552f3c7
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-8cf931f8f153359793
ncalrpc: LRPC-65a1cf2ba6d552f3c7
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-65a1cf2ba6d552f3c7
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncalrpc: LRPC-1dffa61fe8deebedcc
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncalrpc: LRPC-1dffa61fe8deebedcc
c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
version: v1.0
annotation: Adh APIs
ncalrpc: OLE0EAA73B41C353F6FF2200ED7F27D
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-7b0bbe5d131e3ac8aa
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-7b0bbe5d131e3ac8aa
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-7b0bbe5d131e3ac8aa
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncalrpc: LRPC-7b0bbe5d131e3ac8aa
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncalrpc: LRPC-ad474cc643b659e223
ba4aa15a-be94-47fb-9bfb-fef110e7efad
version: v1.0
annotation: DevQueryBroker client query RPC interface
ncalrpc: LRPC-c879eede744057c036
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 198.12.89.32:49673
650a7e26-eab8-5533-ce43-9c1dfce11511
version: v1.0
annotation: Vpn APIs
ncalrpc: LRPC-bb445f3b442720c056
ncalrpc: VpnikeRpc
ncalrpc: RasmanLrpc
ncacn_np: \\DESKTOP-E4F55FE\PIPE\ROUTER
c27f3c08-92ba-478c-b446-b419c4cef0e2
version: v1.0
ncalrpc: LRPC-360b54f3d8351d8587
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 198.12.89.32:49676
ncalrpc: ipsec
1d45e083-478f-437c-9618-3594ced8c235
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
98cd761e-e77d-41c8-a3c0-0fb756d90ec2
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
d22895ef-aff4-42c5-a5b2-b14466d34ab4
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
e38f5360-8572-473e-b696-1b46873beeab
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
95095ec8-32ea-4eb0-a3e2-041f97b36168
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
4c9dbf19-d39e-4bb9-90ee-8f7179b20283
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
d4051bde-9cdd-4910-b393-4aa85ec3c482
version: v1.0
ncalrpc: LRPC-58e517ccb7cfd0459e
ncalrpc: OLEAF46938F6B164165EAF62CC5D41E
7df1ceae-de4e-4e6f-ab14-49636e7c2052
version: v1.0
ncalrpc: LRPC-722ab4a45279ab43a4
c503f532-443a-4c69-8300-ccd1fbdb3839
version: v2.0
ncalrpc: LRPC-17d33df90d8f9db513
ncalrpc: OLE210187C9CCDFA7B406EB1CCD3B3C
7a20fcec-dec4-4c59-be57-212e8f65d3de
version: v1.0
ncalrpc: LRPC-5066c7ed34f71b72cb
06bba54a-be05-49f9-b0a0-30f790261023
version: v1.0
annotation: Security Center
provider: wscsvc.dll
ncalrpc: LRPC-2fc61d81718651567b
ncalrpc: OLE44619E536BD20F47AA56A9D6DEBF
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc0AA6732
169c453b-5955-4672-be44-21f61e9ef18f
version: v1.0
annotation: INgcContainerEnum
ncalrpc: LRPC-1cafd01851d8ed8848
b1ef227e-dfa5-421e-82bb-67a6a129c496
version: v0.0
ncalrpc: LRPC-6fd13722f517289f23
ncalrpc: OLE8D855B54C6891774DF6FD46F2C31
0fc77b1a-95d8-4a2e-a0c0-cff54237462b
version: v0.0
ncalrpc: LRPC-6fd13722f517289f23
ncalrpc: OLE8D855B54C6891774DF6FD46F2C31
8ec21e98-b5ce-4916-a3d6-449fa428a007
version: v0.0
ncalrpc: LRPC-6fd13722f517289f23
ncalrpc: OLE8D855B54C6891774DF6FD46F2C31
0767a036-0d22-48aa-ba69-b619480f38cb
version: v1.0
annotation: PcaSvc
provider: pcasvc.dll
ncalrpc: LRPC-90d4f8389d7b62fe94
a4b8d482-80ce-40d6-934d-b22a01a44fe7
version: v1.0
annotation: LicenseManager
ncalrpc: LicenseServiceEndpoint
58e604e8-9adb-4d2e-a464-3b0683fb1480
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-dc0c651e7fa6698046
fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-dc0c651e7fa6698046
5f54ce7d-5b79-4175-8584-cb65313a0e98
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-dc0c651e7fa6698046
201ef99a-7fa0-444c-9399-19ba84f12a1a
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-dc0c651e7fa6698046
0497b57d-2e66-424f-a0c6-157cd5d41700
version: v1.0
annotation: AppInfo
ncalrpc: LRPC-dc0c651e7fa6698046
4b112204-0e19-11d3-b42b-0000f81feb9f
version: v1.0
provider: ssdpsrv.dll
ncalrpc: LRPC-3763512258857eb3d2
923c9623-db7f-4b34-9e6d-e86580f8ca2a
version: v1.0
ncalrpc: LRPC-29ba1446ed5f323348
ncalrpc: OLE1E3F1067461D9025A367530ED725
0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd
version: v1.0
ncalrpc: LRPC-29ba1446ed5f323348
ncalrpc: OLE1E3F1067461D9025A367530ED725
d2716e94-25cb-4820-bc15-537866578562
version: v1.0
ncalrpc: LRPC-29ba1446ed5f323348
ncalrpc: OLE1E3F1067461D9025A367530ED725
4be96a0f-9f52-4729-a51d-c70610f118b0
version: v1.0
annotation: wbiosrvc
provider: wbiosrvc.dll
ncalrpc: LRPC-0383c390a3fa735351
c0e9671e-33c6-4438-9464-56b2e1b1c7b4
version: v1.0
annotation: wbiosrvc
provider: wbiosrvc.dll
ncalrpc: LRPC-0383c390a3fa735351
ff9fd3c4-742e-45e0-91dd-2f5bc632a1df
version: v1.0
annotation: appxsvc
ncalrpc: LRPC-4d74ef975354debb53
ae2dc901-312d-41df-8b79-e835e63db874
version: v1.0
annotation: appxsvc
ncalrpc: LRPC-4d74ef975354debb53
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
annotation: Group Policy RPC Interface
provider: gpsvc.dll
ncalrpc: LRPC-7d3693467075b6cb72
-1166656618 | 2024-05-04T20:36:40.842898
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
-1172049577 | 2024-05-20T23:12:02.904123
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 2004)/Windows Server (version 2004)
OS Build: 10.0.19041
Target Name: DESKTOP-E4F55FE
NetBIOS Domain Name: DESKTOP-E4F55FE
NetBIOS Computer Name: DESKTOP-E4F55FE
DNS Domain Name: DESKTOP-E4F55FE
FQDN: DESKTOP-E4F55FE
INTE Ite po
p
a.
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:99:85:89:47:50:95:b1:4d:80:ab:55:f0:73:d5:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DESKTOP-E4F55FE
Validity
Not Before: Apr 18 04:50:36 2024 GMT
Not After : Oct 18 04:50:36 2024 GMT
Subject: CN=DESKTOP-E4F55FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d6:0b:6f:d5:7a:4d:a3:c8:ad:51:0b:99:1c:ef:
ee:a0:6c:ea:07:ec:a5:df:47:b0:33:a6:02:c1:17:
bd:69:ef:b6:95:46:b1:b1:71:a6:ec:37:b9:26:6a:
e9:b7:3c:7d:42:e0:fe:a6:23:42:79:99:86:53:8a:
a0:92:16:fc:59:83:7f:51:d5:b0:1e:b1:a8:27:9d:
bd:b3:30:86:c6:b3:e1:9a:a5:e3:70:2b:91:e4:9c:
0c:9c:ce:4a:54:9b:e0:1c:5e:c6:0d:db:d1:cf:05:
8d:49:22:db:38:61:cc:8d:50:b6:84:30:be:c0:76:
eb:ea:cd:d4:20:9c:b6:19:e5:6d:77:7e:72:1c:b8:
a6:05:9d:45:10:e4:aa:54:77:a6:d0:70:09:b7:b6:
5d:11:bd:eb:a6:58:f5:02:4f:8e:ae:27:f0:c2:fb:
60:7d:24:e6:63:67:d7:1c:37:04:1a:b4:27:d4:84:
64:38:a4:c4:1a:b5:f3:bf:a3:32:11:5d:aa:d5:ae:
89:88:f3:c0:7e:32:60:7f:17:f5:d0:ea:d4:9e:7d:
09:bb:3a:c2:a2:d6:36:cb:52:96:69:94:f7:c9:18:
a9:3a:a8:d3:57:a1:d9:6a:7a:37:5b:51:67:72:0f:
dd:fb:c3:66:c2:11:0e:5a:73:c0:1f:45:2e:cd:0b:
36:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
5f:f1:7a:4f:23:46:f6:67:e8:8f:cb:c2:9d:c2:bd:22:03:d9:
4d:f7:80:05:90:ec:bc:28:bc:b6:42:46:70:6d:c3:1d:cf:3d:
4b:43:b7:80:69:b9:f2:66:b7:97:df:7a:53:54:27:eb:f8:e6:
e0:7e:9b:de:f0:a3:ff:06:e3:57:3e:f8:06:5a:f3:a1:92:23:
1f:4b:e6:94:04:d2:4f:84:0b:34:9c:b4:03:ec:42:e8:bc:60:
82:2e:fa:a7:0a:9b:8f:7a:a6:47:5d:a9:67:91:65:41:7c:32:
6f:75:3b:9e:38:2b:07:15:1d:c9:e6:92:cf:8f:84:19:5f:ae:
b4:e5:02:0f:10:10:f4:e0:fb:2d:c6:76:7e:66:8c:08:db:04:
16:3d:43:07:d3:13:2b:69:46:5d:7f:7f:56:61:9a:33:d6:4b:
e7:57:a0:86:9a:f0:a1:14:db:3a:b1:33:aa:fa:82:5b:2b:c2:
94:dc:2a:d1:d0:57:4a:44:b0:78:3c:f6:6d:bb:ff:31:29:f5:
80:5c:dc:47:3f:ee:fe:c2:59:0a:da:de:8a:bf:d6:20:22:50:
a7:48:e0:de:55:1c:61:68:ce:a6:9a:2a:1b:3a:cd:fa:fd:02:
72:8c:9e:c1:61:0d:a8:e4:00:87:84:09:2a:6e:11:58:61:e5:
d4:4f:1e:d8
-1684583448 | 2024-05-18T00:08:43.560531
5357 /
tcp
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sat, 18 May 2024 00:08:43 GMT
Connection: close
Content-Length: 326
