-370734890 | 2024-05-06T01:40:14.983665
21 /
tcp
220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
ABOR
ACCT
ADAT *
ALLO
APPE
AUTH
CCC
CDUP
CWD
DELE
ENC *
EPRT
EPSV
FEAT
HELP
HOST
LANG
LIST
MDTM
MIC *
MKD
MODE
NLST
NOOP
OPTS
PASS
PASV
PBSZ
PORT
PROT
PWD
QUIT
REIN
REST
RETR
RMD
RNFR
RNTO
SITE
SIZE
SMNT
STAT
STOR
STOU
STRU
SYST
TYPE
USER
XCUP
XCWD
XMKD
XPWD
XRMD
214 HELP command successful.
211-Extended features supported:
LANG EN*
UTF8
AUTH TLS;TLS-C;SSL;TLS-P;
PBSZ
PROT C;P;
CCC
HOST
SIZE
MDTM
REST STREAM
211 END
1011050341 | 2024-05-09T17:30:06.054559
80 /
tcp
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 09 May 2024 17:30:01 GMT
Content-Length: 180
-1052699684 | 2024-05-08T19:09:18.144875
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 203.135.136.31:49152
ncalrpc: WindowsShutdown
ncacn_np: \\ASPNET4\PIPE\InitShutdown
ncalrpc: WMsgKRpc0EB4D0
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\ASPNET4\PIPE\InitShutdown
ncalrpc: WMsgKRpc0EB4D0
ncalrpc: WMsgKRpc0EEE81
ncalrpc: WMsgKRpc1A23D03892
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-966fd97b8fd71a4c65
ncacn_np: \\ASPNET4\PIPE\srvsvc
ncacn_ip_tcp: 203.135.136.31:49155
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 203.135.136.31:49153
ncacn_np: \\ASPNET4\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 203.135.136.31:49153
ncacn_np: \\ASPNET4\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncacn_ip_tcp: 203.135.136.31:49153
ncacn_np: \\ASPNET4\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 203.135.136.31:49153
ncacn_np: \\ASPNET4\pipe\eventlog
ncalrpc: eventlog
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncacn_np: \\ASPNET4\PIPE\srvsvc
ncacn_ip_tcp: 203.135.136.31:49155
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 203.135.136.31:49155
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncacn_ip_tcp: 203.135.136.31:49155
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 203.135.136.31:49155
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\ASPNET4\PIPE\atsvc
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
provider: gpsvc.dll
ncalrpc: OLE3AB035426AAE4D2DBEC47CFE5C5D
ncalrpc: senssvc
ncalrpc: IUserProfile2
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-332591a35925e22c67
ncalrpc: OLE194B051847FF4FE7A6F1569FD855
24019106-a203-4642-b88d-82dae9158929
version: v1.0
provider: authui.dll
ncalrpc: LRPC-a8da741d6052451b63
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 203.135.136.31:49154
ncalrpc: samss lpc
ncalrpc: dsrole
ncacn_np: \\ASPNET4\PIPE\protected_storage
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncalrpc: LRPC-42a1998fc6bc300811
ncacn_np: \\ASPNET4\pipe\lsass
74103b90-29af-413f-b203-a3eb4f7e95b8
version: v4.0
ncalrpc: AvastAntivirus-public-endpoint
ncalrpc: AvastAvService-FCFB76DC-1ABC-4319-A592-4B0CBD461637
ncalrpc: AvastAntivirus_tools-public-endpoint
ncalrpc: AvastToolService-FCFB76DC-1ABC-4319-A592-4B0CBD461637
ncalrpc: AvastBusinessService-FCFB76DC-1ABC-4319-A592-4B0CBD461637
ncalrpc: ServiceBridge_agentsvc-public-endpoint
ncalrpc: private-endpoint-nameServiceBridge_agentsvc
ncalrpc: AvastAvUI-FCFB76DC-1ABC-4319-A592-4B0CBD461637:2
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-c31e55002d948c78f8
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-c31e55002d948c78f8
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-c31e55002d948c78f8
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\ASPNET4\PIPE\wkssvc
ncalrpc: OLE80DB5CC031904FCB8814BFB71516
ncalrpc: keysvc2
ncalrpc: keysvc
ncacn_np: \\ASPNET4\pipe\keysvc
ncalrpc: DNSResolver
1a9134dd-7b39-45ba-ad88-44d01ca47f28
version: v1.0
annotation: Message Queuing - RemoteRead V1
protocol: [MS-MQRR]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 203.135.136.31:2105
ncacn_ip_tcp: 203.135.136.31:2103
ncacn_ip_tcp: 203.135.136.31:2107
ncacn_ip_tcp: 203.135.136.31:49167
ncalrpc: QMMgmtFacility$aspnet4
ncalrpc: QMsvc$aspnet4
1088a980-eae5-11d0-8d9b-00a02453c337
version: v1.0
annotation: Message Queuing - QM2QM V1
protocol: [MS-MQQP]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 203.135.136.31:2105
ncacn_ip_tcp: 203.135.136.31:2103
ncacn_ip_tcp: 203.135.136.31:2107
ncacn_ip_tcp: 203.135.136.31:49167
ncalrpc: QMMgmtFacility$aspnet4
ncalrpc: QMsvc$aspnet4
76d12b80-3467-11d3-91ff-0090272f9ea3
version: v1.0
annotation: Message Queuing - QMRT V2
protocol: [MS-MQMP]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 203.135.136.31:2105
ncacn_ip_tcp: 203.135.136.31:2103
ncacn_ip_tcp: 203.135.136.31:2107
ncacn_ip_tcp: 203.135.136.31:49167
ncalrpc: QMMgmtFacility$aspnet4
ncalrpc: QMsvc$aspnet4
fdb3a030-065f-11d1-bb9b-00a024ea5525
version: v1.0
annotation: Message Queuing - QMRT V1
protocol: [MS-MQMP]: Message Queuing (MSMQ):
provider: mqqm.dll
ncacn_ip_tcp: 203.135.136.31:2105
ncacn_ip_tcp: 203.135.136.31:2103
ncacn_ip_tcp: 203.135.136.31:2107
ncacn_ip_tcp: 203.135.136.31:49167
ncalrpc: QMMgmtFacility$aspnet4
ncalrpc: QMsvc$aspnet4
bfa951d1-2f0e-11d3-bfd1-00c04fa3490a
version: v1.0
provider: aqueue.dll
ncacn_ip_tcp: 203.135.136.31:49176
ncacn_np: \\ASPNET4\PIPE\SMTPSVC
ncacn_ip_tcp: 203.135.136.31:49175
ncalrpc: SMTPSVC_LPC
ncacn_np: \\ASPNET4\PIPE\INETINFO
ncacn_ip_tcp: 203.135.136.31:49168
ncalrpc: INETINFO_LPC
ncalrpc: OLED399BA382DE04B3DB966D5D4283B
8cfb5d70-31a4-11cf-a7d8-00805f48a135
version: v3.0
provider: smtpsvc.dll
ncacn_np: \\ASPNET4\PIPE\SMTPSVC
ncacn_ip_tcp: 203.135.136.31:49175
ncalrpc: SMTPSVC_LPC
ncacn_np: \\ASPNET4\PIPE\INETINFO
ncacn_ip_tcp: 203.135.136.31:49168
ncalrpc: INETINFO_LPC
ncalrpc: OLED399BA382DE04B3DB966D5D4283B
82ad4280-036b-11cf-972c-00aa006887b0
version: v2.0
protocol: [MS-IRP]: Internet Information Services (IIS) Inetinfo Remote
provider: infocomm.dll
ncacn_np: \\ASPNET4\PIPE\INETINFO
ncacn_ip_tcp: 203.135.136.31:49168
ncalrpc: INETINFO_LPC
ncalrpc: OLED399BA382DE04B3DB966D5D4283B
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 203.135.136.31:49179
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
annotation: IPSec Policy agent endpoint
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-cecf1defe0f351e13d
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-31cfa674570957dc6f
ncalrpc: OLE483DD8D8CF1E498CBACE539D4CF7
ncalrpc: LRPC-420020ad26f70aa7a3
ncalrpc: LRPC-420020ad26f70aa7a3
ncalrpc: LRPC-420020ad26f70aa7a3
ncalrpc: LRPC-420020ad26f70aa7a3
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc1A23D03892
1489525118 | 2024-05-04T23:08:33.773480
443 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sat, 04 May 2024 23:08:32 GMT
Connection: close
Content-Length: 315
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:21:51:fc:33:77:0e:4e:c4:e7:c6:25:89:3d:b8:e8:3c:55
Signature Algorithm: sha1WithRSAEncryption
Issuer: O=AlphaSSL, CN=AlphaSSL CA - G2
Validity
Not Before: Mar 25 07:57:56 2014 GMT
Not After : Mar 26 07:57:56 2015 GMT
Subject: OU=Domain Control Validated, CN=*.youdomain.hk
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d4:fe:82:cb:a9:4b:19:c3:9e:0d:7c:e3:89:39:
08:9a:f8:5e:31:c3:c7:5b:00:33:a4:70:3d:1d:74:
3a:0d:3e:f2:a8:e1:aa:3c:5a:cd:8f:55:a9:d7:c2:
ae:62:3d:0b:cc:ed:cf:3c:0d:eb:09:90:ff:98:e4:
fb:46:eb:ef:5e:4b:40:cb:d8:ba:f4:8f:58:2a:cd:
d2:51:68:cf:42:20:7e:79:44:13:ac:98:f0:54:81:
90:57:e5:fd:57:cd:ae:4c:86:c1:87:96:6f:79:8d:
a5:aa:04:ca:de:42:98:0c:90:4f:23:da:c7:ec:9b:
44:cd:4f:87:3b:30:35:a0:41:40:31:4e:4b:51:e0:
a1:d5:a4:87:a6:7f:d0:a7:d9:e2:b1:9e:66:57:e3:
32:00:7a:df:08:7d:0f:7b:3c:be:9c:d2:4b:37:d0:
15:4c:14:90:a2:7f:4d:d8:40:93:3a:61:0e:2a:f5:
4f:57:df:15:52:b4:22:ae:c7:54:96:4a:32:b3:af:
51:e7:c0:1e:44:0b:14:fa:e5:d5:38:e3:fb:58:59:
6a:8a:43:7c:9d:27:f2:ad:f4:d7:d8:a5:72:ae:fb:
bd:04:99:f9:41:61:b6:02:79:e0:e3:09:4f:ec:0f:
a3:c9:33:c3:81:a0:b1:b5:96:14:2f:40:9b:0c:0f:
17:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CPS: https://www.globalsign.com/repository/
X509v3 Subject Alternative Name:
DNS:*.youdomain.hk, DNS:youdomain.hk
X509v3 Basic Constraints:
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl2.alphassl.com/gs/gsalphag2.crl
Authority Information Access:
CA Issuers - URI:http://secure2.alphassl.com/cacert/gsalphag2.crt
OCSP - URI:http://ocsp2.globalsign.com/gsalphag2
X509v3 Subject Key Identifier:
15:52:E3:12:45:AC:3E:90:AB:7D:F1:1E:D3:FE:BA:3F:3B:AC:11:A0
X509v3 Authority Key Identifier:
14:EA:19:55:F0:0E:0D:32:C6:1F:74:33:B7:8E:66:1A:4C:12:31:1E
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
c1:d4:d9:54:1d:00:d8:e1:2b:d7:30:38:df:df:93:18:00:41:
32:a7:eb:56:3a:52:08:ec:c5:a5:ab:16:2f:08:8f:c8:68:99:
dd:de:e7:71:92:7d:29:ac:ae:0b:46:94:49:60:58:d5:8b:cd:
b8:80:b5:18:4e:16:2b:ac:e1:00:05:dd:14:84:0c:94:73:c1:
99:a0:27:8a:4e:96:1a:2c:21:e4:3a:64:0a:e4:7a:b7:ac:37:
f3:2d:a1:b6:ef:bf:8d:2b:fe:5f:7c:19:26:60:fe:f1:78:d6:
55:52:d0:33:eb:f7:ff:fd:b4:3e:7d:f9:d6:d1:72:76:66:5d:
38:85:ed:8b:2d:e9:91:68:4c:d3:49:02:75:f5:36:8b:81:8c:
df:e6:ee:69:53:e5:b6:a2:be:2c:59:84:26:6e:cb:44:2b:80:
66:8b:6c:52:2b:21:f3:c5:81:bd:4d:a8:61:66:63:f6:2a:ba:
bd:a4:66:22:56:3e:24:dc:8c:f4:73:54:93:c8:fc:11:67:d0:
57:08:27:93:7b:20:0a:b2:cd:0e:65:4c:4c:ea:76:1f:d7:5b:
f8:e6:07:5b:ed:df:f9:aa:dc:12:38:8d:4a:b6:6d:b5:97:27:
93:54:aa:04:f6:c5:75:ef:30:9d:39:2e:e9:ca:a2:15:48:ad:
59:7a:5a:94
287672796 | 2024-05-10T01:53:52.318724
1801 /
tcp
\x10Z\x0b\x00LIOR<\x02\x00\x00\xff\xff\xff\xff\x00\x00\x12\x00\x06U=Q6\xdf\xc7@\x96C\x17\\<\xe7l\xaa\xd2E\xa1\xcbG\xc5\xe0O\xbeF\x12\x1c\xad\x02 \x81\x00\x00\x00\x00\x10\x02\x00\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ