1714790636 | 2024-04-23T20:08:06.375752
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 23.224.77.226:49152
ncalrpc: WindowsShutdown
ncacn_np: \\NCP1005-B3\PIPE\InitShutdown
ncalrpc: WMsgKRpc071990
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\NCP1005-B3\PIPE\InitShutdown
ncalrpc: WMsgKRpc071990
ncalrpc: WMsgKRpc0D7001
ncalrpc: WMsgKRpc04064EE52
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 23.224.77.226:49153
ncacn_np: \\NCP1005-B3\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 23.224.77.226:49153
ncacn_np: \\NCP1005-B3\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncacn_ip_tcp: 23.224.77.226:49153
ncacn_np: \\NCP1005-B3\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 23.224.77.226:49153
ncacn_np: \\NCP1005-B3\pipe\eventlog
ncalrpc: eventlog
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncacn_np: \\NCP1005-B3\PIPE\srvsvc
ncacn_ip_tcp: 23.224.77.226:49154
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncacn_np: \\NCP1005-B3\PIPE\srvsvc
ncacn_ip_tcp: 23.224.77.226:49154
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
ncalrpc: LRPC-e8c00ed74b0300ecc1
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 23.224.77.226:49154
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncacn_ip_tcp: 23.224.77.226:49154
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncacn_ip_tcp: 23.224.77.226:49154
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 23.224.77.226:49154
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\NCP1005-B3\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLE3E960CEF94264DC3AAC7726C5699
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
provider: gpsvc.dll
ncalrpc: IUserProfile2
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncacn_np: \\NCP1005-B3\PIPE\W32TIME_ALT
ncalrpc: W32TIME_ALT
ncalrpc: LRPC-1483f05fd40359e339
ncalrpc: OLEF2E1000FE6F441DAB85F883B581D
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-1483f05fd40359e339
ncalrpc: OLEF2E1000FE6F441DAB85F883B581D
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-08cbc704f0ec3aad57
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-08cbc704f0ec3aad57
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-08cbc704f0ec3aad57
24019106-a203-4642-b88d-82dae9158929
version: v1.0
provider: authui.dll
ncalrpc: LRPC-bcd19f4fb9ddb05aa8
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\NCP1005-B3\PIPE\wkssvc
ncalrpc: DNSResolver
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
annotation: Spooler function endpoint
provider: spoolsv.exe
ncalrpc: spoolss
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
annotation: Spooler base remote object endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
annotation: Spooler function endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 23.224.77.226:49155
ncalrpc: samss lpc
ncalrpc: dsrole
ncacn_np: \\NCP1005-B3\PIPE\protected_storage
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncalrpc: LRPC-789a565ef5fc626429
ncacn_np: \\NCP1005-B3\pipe\lsass
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 23.224.77.226:49156
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
annotation: IPSec Policy agent endpoint
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-8382d178e3c550f802
ncacn_ip_tcp: 23.224.77.226:49157
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 23.224.77.226:49157
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-2373b98b50b9f77217
ncalrpc: LRPC-2373b98b50b9f77217
ncalrpc: LRPC-2373b98b50b9f77217
ncalrpc: LRPC-2373b98b50b9f77217
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc04064EE52
-1547968343 | 2024-04-18T00:23:59.907427
137 /
udp
NetBIOS Response:
Server Name: NCP1005-B3
MAC Address: AC:1F:6B:AD:1B:F0
Names:
NCP1005-B3 <0x20>
NCP1005-B3 <0x0>
WORKGROUP <0x0>
MAC Addresses
AC:1F:6B:AD:1B:F0
OUI: AC:1F:6B
Organization: Super Micro Computer, Inc.
Assignment: MA-L
Registration Date: 2016-08-23
-757264002 | 2024-04-21T16:45:04.722481
139 /
tcp
554922136 | 2024-04-13T17:17:41.145199
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 1
OS: Windows Server 2008 R2 Datacenter 7601 Service Pack 1
Software: Windows Server 2008 R2 Datacenter 6.1
Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
-1660808408 | 2024-03-26T17:38:06.983060
880 /
tcp
HTTP/1.1 200 OK
Server: nginx/1.19.6
Date: Tue, 26 Mar 2024 17:38:05 GMT
Content-Type: text/html
Content-Length: 21485
Last-Modified: Thu, 18 Feb 2021 17:52:27 GMT
Connection: keep-alive
ETag: "602ea95b-53ed"
Accept-Ranges: bytes
-881101236 | 2024-04-20T17:22:04.967952
3306 /
tcp
MySQL:
Error Message: Host '224.23.43.36' is not allowed to connect to this MySQL server
Error Code: 1130
630710679 | 2024-04-25T01:47:00.176274
8009 /
tcp
<!doctype html><html lang="en"><head><title>HTTP Status 404 – Not Found</title><style type="text/css">body {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 404 – Not Found</h1><hr class="line" /><p><b>Type</b> Status Report</p><p><b>Message</b> /asdadadas</p><p><b>Description</b> The origin server did not find a current representation for the target resource or is not willing to disclose that one exists.</p><hr class="line" /><h3>Apache Tomcat/8.5.50</h3></body></html>