Hostnames | vmi1675938.contaboserver.net |
Domains | contaboserver.net |
Country | United States |
City | New York City |
Organization | Contabo GmbH |
ISP | Nubes, LLC |
ASN | AS40021 |
CVE-2020-0796 | 10.0A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client. |
-137799195 | 2024-04-21T15:48:00.531011135 / tcp
Microsoft RPC Endpoint Mapper 51a227ae-825b-41f2-b4a9-1ac9557a1018 version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 86.48.16.86:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI1675938\pipe\lsass 8fb74744-b2ff-4c00-be0d-9ef9a191fe1b version: v1.0 annotation: Ngc Pop Key Service ncacn_ip_tcp: 86.48.16.86:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI1675938\pipe\lsass b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v2.0 annotation: KeyIso ncacn_ip_tcp: 86.48.16.86:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI1675938\pipe\lsass 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 86.48.16.86:49664 ncalrpc: samss lpc ncalrpc: SidKey Local End Point ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSA_EAS_ENDPOINT ncalrpc: LSA_IDPEXT_ENDPOINT ncalrpc: lsacap ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncacn_np: \\VMI1675938\pipe\lsass d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 86.48.16.86:49665 ncalrpc: WindowsShutdown ncacn_np: \\VMI1675938\PIPE\InitShutdown ncalrpc: WMsgKRpc064EB0 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\VMI1675938\PIPE\InitShutdown ncalrpc: WMsgKRpc064EB0 ncalrpc: WMsgKRpc0679F1 fc48cd89-98d6-4628-9839-86f7a3e4161a version: v1.0 ncalrpc: dabrpc ncalrpc: csebpub ncalrpc: LRPC-1da6b0bb7012dd320b ncalrpc: LRPC-799fbf0caf35d69d9e ncalrpc: LRPC-9642246cf89ee3c0b0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo d09bdeb5-6171-4a34-bfe2-06fa82652568 version: v1.0 ncalrpc: csebpub ncalrpc: LRPC-1da6b0bb7012dd320b ncalrpc: LRPC-799fbf0caf35d69d9e ncalrpc: LRPC-9642246cf89ee3c0b0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-799fbf0caf35d69d9e ncalrpc: LRPC-9642246cf89ee3c0b0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-9642246cf89ee3c0b0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo ncalrpc: LRPC-0e5d3a4ada900bf23c ncalrpc: LRPC-8d282bd7736e461194 697dcda9-3ba9-4eb2-9247-e11f1901b0d2 version: v1.0 ncalrpc: LRPC-1da6b0bb7012dd320b ncalrpc: LRPC-799fbf0caf35d69d9e ncalrpc: LRPC-9642246cf89ee3c0b0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 9b008953-f195-4bf9-bde0-4471971e58ed version: v1.0 ncalrpc: LRPC-799fbf0caf35d69d9e ncalrpc: LRPC-9642246cf89ee3c0b0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 0d47017b-b33b-46ad-9e18-fe96456c5078 version: v1.0 ncalrpc: umpo 95406f0b-b239-4318-91bb-cea3a46ff0dc version: v1.0 ncalrpc: umpo 4ed8abcc-f1e2-438b-981f-bb0e8abc010c version: v1.0 ncalrpc: umpo 0ff1f646-13bb-400a-ab50-9a78f2b7a85a version: v1.0 ncalrpc: umpo 6982a06e-5fe2-46b1-b39c-a2c545bfa069 version: v1.0 ncalrpc: umpo 082a3471-31b6-422a-b931-a54401960c62 version: v1.0 ncalrpc: umpo fae436b0-b864-4a87-9eda-298547cd82f2 version: v1.0 ncalrpc: umpo e53d94ca-7464-4839-b044-09a2fb8b3ae5 version: v1.0 ncalrpc: umpo 178d84be-9291-4994-82c6-3f909aca5a03 version: v1.0 ncalrpc: umpo 4dace966-a243-4450-ae3f-9b7bcb5315b8 version: v2.0 ncalrpc: umpo 1832bcf6-cab8-41d4-85d2-c9410764f75a version: v1.0 ncalrpc: umpo c521facf-09a9-42c5-b155-72388595cbf0 version: v0.0 ncalrpc: umpo 2c7fd9ce-e706-4b40-b412-953107ef9bb0 version: v0.0 ncalrpc: umpo 88abcbc3-34ea-76ae-8215-767520655a23 version: v0.0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 76c217bc-c8b4-4201-a745-373ad9032b1a version: v1.0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 55e6b932-1979-45d6-90c5-7f6270724112 version: v1.0 ncalrpc: LRPC-ae00f86b14872ccba1 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 857fb1be-084f-4fb5-b59c-4b2c4be5f0cf version: v1.0 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 20c40295-8dba-48e6-aebf-3e78ef3bb144 version: v2.0 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 2513bcbe-6cd4-4348-855e-7efb3c336dd3 version: v2.0 ncalrpc: OLE7ABB31A6FCC16B0EB76C3DB1CA15 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e version: v1.0 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo c605f9fb-f0a3-4e2a-a073-73560f8d9e3e version: v1.0 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0 version: v1.0 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 8bfc3be1-6def-4e2d-af74-7c47cd0ade4a version: v1.0 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo 2d98a740-581d-41b9-aa0d-a88b9d5ce938 version: v1.0 ncalrpc: LRPC-63b37af333c24c0ce1 ncalrpc: actkernel ncalrpc: umpo dd59071b-3215-4c59-8481-972edadc0f6a version: v1.0 ncalrpc: actkernel ncalrpc: umpo 0361ae94-0316-4c6c-8ad8-c594375800e2 version: v1.0 ncalrpc: umpo 5824833b-3c1a-4ad2-bdfd-c31d19e23ed2 version: v1.0 ncalrpc: umpo bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760 version: v1.0 ncalrpc: umpo 3b338d89-6cfa-44b8-847e-531531bc9992 version: v1.0 ncalrpc: umpo 8782d3b9-ebbd-4644-a3d8-e8725381919b version: v1.0 ncalrpc: umpo 085b0334-e454-4d91-9b8c-4134f9e793f3 version: v1.0 ncalrpc: umpo 4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9 version: v1.0 ncalrpc: umpo c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-526e239d2ebcdf915f ncalrpc: LRPC-35b36ec685e982501d ncalrpc: IUserProfile2 ncalrpc: LRPC-dc6f03266235c8c554 ncalrpc: senssvc ncalrpc: LRPC-485b2d6c6ed42d25e2 12e65dd8-887f-41ef-91bf-8d816c42c2e7 version: v1.0 annotation: Secure Desktop LRPC interface provider: winlogon.exe ncalrpc: WMsgKRpc0679F1 e40f7b57-7a25-4cd3-a135-7f7d3df9d16b version: v1.0 ncalrpc: LRPC-f789347c02becbc7c1 880fd55e-43b9-11e0-b1a8-cf4edfd72085 version: v1.0 annotation: KAPI Service endpoint ncalrpc: LRPC-0f21fd2d1a626765f7 ncalrpc: OLE634A1C13125ADDF03B6CF4AF7B3C ncalrpc: LRPC-0e5d3a4ada900bf23c 5222821f-d5e2-4885-84f1-5f6185a0ec41 version: v1.0 ncalrpc: LRPC-d2b99b18d19a3a9222 a500d4c6-0dd1-4543-bc0c-d5f93486eaf8 version: v1.0 ncalrpc: LRPC-dd2f864ac2f40279db ncalrpc: LRPC-8d282bd7736e461194 f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 86.48.16.86:49666 ncacn_np: \\VMI1675938\pipe\eventlog ncalrpc: eventlog 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-15e9de94e4aa93f7f7 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 annotation: Group Policy RPC Interface provider: gpsvc.dll ncalrpc: LRPC-e55e9ff9a6a3b8acaf 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 3a9ef155-691d-4449-8d05-09ad57031823 version: v1.0 ncacn_ip_tcp: 86.48.16.86:49667 ncalrpc: LRPC-44358fbbdfcb95a500 ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI1675938\PIPE\atsvc ncalrpc: LRPC-f73fc7f5b9419a9d88 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 86.48.16.86:49667 ncalrpc: LRPC-44358fbbdfcb95a500 ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI1675938\PIPE\atsvc ncalrpc: LRPC-f73fc7f5b9419a9d88 33d84484-3626-47ee-8c6f-e7e98b113be1 version: v2.0 ncalrpc: LRPC-44358fbbdfcb95a500 ncalrpc: ubpmtaskhostchannel ncacn_np: \\VMI1675938\PIPE\atsvc ncalrpc: LRPC-f73fc7f5b9419a9d88 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\VMI1675938\PIPE\atsvc ncalrpc: LRPC-f73fc7f5b9419a9d88 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\VMI1675938\PIPE\atsvc ncalrpc: LRPC-f73fc7f5b9419a9d88 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: LRPC-f73fc7f5b9419a9d88 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncalrpc: LRPC-d527742ae6da2edb70 7f1343fe-50a9-4927-a778-0c5859517bac version: v1.0 annotation: DfsDs service ncacn_np: \\VMI1675938\PIPE\wkssvc ncalrpc: LRPC-4aa67be701064af77f eb081a0d-10ee-478a-a1dd-50995283e7a8 version: v3.0 annotation: Witness Client Test Interface ncalrpc: LRPC-4aa67be701064af77f f2c9b409-c1c9-4100-8639-d8ab1486694a version: v1.0 annotation: Witness Client Upcall Server ncalrpc: LRPC-4aa67be701064af77f 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncalrpc: LRPC-1fb88850399de63d4c ncalrpc: DNSResolver 3f787932-3452-4363-8651-6ea97bb373bb version: v1.0 annotation: NSP Rpc Interface ncalrpc: LRPC-ab26fef29a98baf3e4 ncalrpc: OLEF9B1283AEE5920C6D3EE68750F9D 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncalrpc: 52faa27e-a5b7-4910-857e-87bcbf7e123d ncalrpc: LRPC-81dbffad45f868b05c 509bc7ae-77be-4ee8-b07c-0d096bb44345 version: v1.0 ncalrpc: LRPC-7ae7fe040d3d0b2460 ncalrpc: OLEEBA3FB702759FA0B0438DA816862 29770a8f-829b-4158-90a2-78cd488501f7 version: v1.0 ncacn_ip_tcp: 86.48.16.86:49668 ncacn_np: \\VMI1675938\pipe\SessEnvPublicRpc ncalrpc: SessEnvPrivateRpc ncalrpc: LRPC-485b2d6c6ed42d25e2 13560fa9-8c09-4b56-a1fd-04d083b9b2a1 version: v1.0 ncalrpc: LRPC-8746ff8487d20e4fd4 ncalrpc: OLE2B594FE78C4BD3619B6D2A5BF67A c2d1b5dd-fa81-4460-9dd6-e7658b85454b version: v1.0 ncalrpc: LRPC-8746ff8487d20e4fd4 ncalrpc: OLE2B594FE78C4BD3619B6D2A5BF67A f44e62af-dab1-44c2-8013-049a9de417d6 version: v1.0 ncalrpc: LRPC-8746ff8487d20e4fd4 ncalrpc: OLE2B594FE78C4BD3619B6D2A5BF67A b37f900a-eae4-4304-a2ab-12bb668c0188 version: v1.0 ncalrpc: LRPC-8746ff8487d20e4fd4 ncalrpc: OLE2B594FE78C4BD3619B6D2A5BF67A abfb6ca3-0c5e-4734-9285-0aee72fe8d1c version: v1.0 ncalrpc: LRPC-8746ff8487d20e4fd4 ncalrpc: OLE2B594FE78C4BD3619B6D2A5BF67A 0d3c7f20-1c8d-4654-a1b3-51563b298bda version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-bac93b4c734a50b48f ncalrpc: OLEDB4E2BBF5BD4FAD5246A8D2A18B5 b18fbab6-56f8-4702-84e0-41053293a869 version: v1.0 annotation: UserMgrCli ncalrpc: LRPC-bac93b4c734a50b48f ncalrpc: OLEDB4E2BBF5BD4FAD5246A8D2A18B5 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-18828f6036f4d3de9d ncalrpc: LRPC-1deb7f648f0c3fcffd ncalrpc: LRPC-e144f21d80806660dd ncalrpc: LRPC-8264939beeb46a79a9 f47433c3-3e9d-4157-aad4-83aa1f5c2d4c version: v1.0 annotation: Fw APIs ncalrpc: LRPC-1deb7f648f0c3fcffd ncalrpc: LRPC-e144f21d80806660dd ncalrpc: LRPC-8264939beeb46a79a9 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-e144f21d80806660dd ncalrpc: LRPC-8264939beeb46a79a9 dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-8264939beeb46a79a9 c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1 version: v1.0 annotation: Adh APIs ncalrpc: OLE9C87993EA74ABE72F0CBB5B828F8 ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-1e4659747e83094842 c36be077-e14b-4fe9-8abc-e856ef4f048b version: v1.0 annotation: Proxy Manager client server endpoint ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-1e4659747e83094842 2e6035b2-e8f1-41a7-a044-656b439c4c34 version: v1.0 annotation: Proxy Manager provider server endpoint ncalrpc: TeredoControl ncalrpc: TeredoDiagnostics ncalrpc: LRPC-1e4659747e83094842 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncalrpc: LRPC-1e4659747e83094842 76f03f96-cdfd-44fc-a22c-64950a001209 version: v1.0 protocol: [MS-PAR]: Print System Asynchronous Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 86.48.16.86:49670 ncalrpc: LRPC-204d1bfffe9502c3f2 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 provider: spoolsv.exe ncacn_ip_tcp: 86.48.16.86:49670 ncalrpc: LRPC-204d1bfffe9502c3f2 ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 86.48.16.86:49670 ncalrpc: LRPC-204d1bfffe9502c3f2 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncacn_ip_tcp: 86.48.16.86:49670 ncalrpc: LRPC-204d1bfffe9502c3f2 12345678-1234-abcd-ef00-0123456789ab version: v1.0 protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncacn_ip_tcp: 86.48.16.86:49670 ncalrpc: LRPC-204d1bfffe9502c3f2 a398e520-d59a-4bdd-aa7a-3c1e0303a511 version: v1.0 annotation: IKE/Authip API provider: IKEEXT.DLL ncalrpc: LRPC-abf911a3a61cb7d77d 1a0d010f-1c33-432c-b0f5-8cf4e8053099 version: v1.0 annotation: IdSegSrv service ncalrpc: LRPC-44f0c5e68289fcdf14 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncalrpc: LRPC-44f0c5e68289fcdf14 1d45e083-478f-437c-9618-3594ced8c235 version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 98cd761e-e77d-41c8-a3c0-0fb756d90ec2 version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 d22895ef-aff4-42c5-a5b2-b14466d34ab4 version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 e38f5360-8572-473e-b696-1b46873beeab version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 95095ec8-32ea-4eb0-a3e2-041f97b36168 version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 4c9dbf19-d39e-4bb9-90ee-8f7179b20283 version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 d4051bde-9cdd-4910-b393-4aa85ec3c482 version: v1.0 ncalrpc: LRPC-dc233609ab778a515e ncalrpc: OLEE9F090CE9991211CD4B972AC7E52 7df1ceae-de4e-4e6f-ab14-49636e7c2052 version: v1.0 ncalrpc: LRPC-b7e03474de1e2fb0da b58aa02e-2884-4e97-8176-4ee06d794184 version: v1.0 provider: sysmain.dll ncalrpc: LRPC-41b1152d87f601580d 6b5bdd1e-528c-422c-af8c-a4079be4fe48 version: v1.0 annotation: Remote Fw APIs protocol: [MS-FASP]: Firewall and Advanced Security Protocol provider: FwRemoteSvr.dll ncacn_ip_tcp: 86.48.16.86:49671 ncalrpc: ipsec 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 86.48.16.86:49705 c503f532-443a-4c69-8300-ccd1fbdb3839 version: v2.0 ncalrpc: LRPC-5d0d41e35cdd627d23 ncalrpc: OLE3BC9CD56DA179198659B7CE28578 b1ef227e-dfa5-421e-82bb-67a6a129c496 version: v0.0 ncalrpc: LRPC-ee7284e63f9f7f7b01 ncalrpc: OLE311D03F0A91A37FE472CEDDB46EB 0fc77b1a-95d8-4a2e-a0c0-cff54237462b version: v0.0 ncalrpc: LRPC-ee7284e63f9f7f7b01 ncalrpc: OLE311D03F0A91A37FE472CEDDB46EB 8ec21e98-b5ce-4916-a3d6-449fa428a007 version: v0.0 ncalrpc: LRPC-ee7284e63f9f7f7b01 ncalrpc: OLE311D03F0A91A37FE472CEDDB46EB 0767a036-0d22-48aa-ba69-b619480f38cb version: v1.0 annotation: PcaSvc provider: pcasvc.dll ncalrpc: LRPC-2226a4bbc37ad33cd0 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-efad25776c8e018ffb ncalrpc: LRPC-efad25776c8e018ffb ncalrpc: LRPC-efad25776c8e018ffb d249bd56-4cc0-4fd3-8ce6-6fe050d590cb version: v0.0 ncalrpc: LRPC-ce3410ffc02df65a25 d8140e00-5c46-4ae6-80ac-2f9a76df224c version: v0.0 ncalrpc: LRPC-ce3410ffc02df65a25 58e604e8-9adb-4d2e-a464-3b0683fb1480 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-a116f047ae42aa0eeb fd7a0523-dc70-43dd-9b2e-9c5ed48225b1 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-a116f047ae42aa0eeb 5f54ce7d-5b79-4175-8584-cb65313a0e98 version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-a116f047ae42aa0eeb 201ef99a-7fa0-444c-9399-19ba84f12a1a version: v1.0 annotation: AppInfo provider: appinfo.dll ncalrpc: LRPC-a116f047ae42aa0eeb 0497b57d-2e66-424f-a0c6-157cd5d41700 version: v1.0 annotation: AppInfo ncalrpc: LRPC-a116f047ae42aa0eeb a4b8d482-80ce-40d6-934d-b22a01a44fe7 version: v1.0 annotation: LicenseManager ncalrpc: LicenseServiceEndpoint bf4dc912-e52f-4904-8ebe-9317c1bdd497 version: v1.0 ncalrpc: LRPC-5ccb4396f877f8e32c ncalrpc: OLE824D937B1966F8DC06FAD1E8E609 a111f1c5-5923-47c0-9a68-d0bafb577901 version: v1.0 annotation: NetSetup API ncalrpc: LRPC-e0d13a106754d261db
-757264002 | 2024-05-08T14:05:23.613974139 / tcp
\x83\x00\x00\x01\x8f
-1166656618 | 2024-05-11T04:01:00.240667445 / tcp
SMB Status: Authentication: enabled SMB Version: 2 Capabilities: raw-mode
1426611267 | 2024-05-04T08:12:38.8596193389 / tcp
Remote Desktop Protocol \x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00 Remote Desktop Protocol NTLM Info: OS: Windows Server 2022 OS Build: 10.0.20348 Target Name: VMI1675938 NetBIOS Domain Name: VMI1675938 NetBIOS Computer Name: VMI1675938 DNS Domain Name: vmi1675938 FQDN: vmi1675938 ; Administrator Administrator fpadmin
Certificate: Data: Version: 3 (0x2) Serial Number: 42:4b:3c:6c:f0:62:17:9c:43:3f:18:16:ae:a0:20:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=vmi1675938 Validity Not Before: Feb 22 08:45:23 2024 GMT Not After : Aug 23 08:45:23 2024 GMT Subject: CN=vmi1675938 Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:af:19:15:db:2a:be:d4:69:25:1b:d1:de:7a:e2: f3:89:54:e0:99:70:db:8a:16:05:06:b3:df:4a:d3: b9:81:51:90:9a:e6:af:1f:82:ab:59:7c:47:73:15: 88:46:63:b5:94:2e:b8:0a:3c:55:62:eb:3a:8e:29: cc:43:c0:8d:9d:63:3e:5a:a1:9b:aa:6d:05:42:17: 12:12:62:55:dd:fa:fd:44:e5:c4:38:a8:d9:64:12: 1f:0f:a2:ad:ee:c4:2a:b0:a2:2d:cc:61:86:ae:53: 28:1a:64:09:e8:24:a8:e9:68:7d:15:d2:9d:d9:ac: c6:be:41:5e:50:0c:36:13:80:81:41:f9:6e:b5:f6: fb:78:7e:6d:33:9c:06:e5:5f:cc:af:cd:a7:ef:27: 94:88:65:cc:22:cf:df:a8:be:ec:7f:3f:92:06:c2: 5c:31:0a:3e:1f:8b:47:f0:4c:0c:87:22:3e:d9:97: 71:e3:e3:33:cc:60:18:cc:dd:ab:5c:bf:04:3e:49: a4:09:7e:a6:17:32:68:12:7f:42:0c:d2:20:59:70: d1:50:60:bb:be:64:38:00:35:4d:76:47:e6:45:22: 7b:92:09:4b:77:bc:7d:02:8c:b7:18:30:68:a6:d8: 58:31:c4:25:92:60:65:bb:4c:92:a5:d3:a4:cc:18: 67:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Key Usage: Key Encipherment, Data Encipherment Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:71:9b:eb:4a:39:00:f5:55:42:06:5b:4c:4a:6c:f8:c7:ca: ce:19:22:93:1f:47:5d:e4:2d:e9:4c:70:95:11:f5:88:6e:65: c0:a3:92:9f:5f:d9:a4:c3:f0:66:2a:39:68:8a:31:9c:73:d3: 2a:2e:e0:89:e8:14:97:9c:a3:5f:33:d8:a5:8b:77:49:d2:40: 0a:fb:2d:9b:b8:5a:27:9a:bc:ca:bd:64:7a:e3:59:9d:6d:27: 48:fa:26:a7:0d:29:5c:fd:4c:ae:90:7e:7b:4b:e5:ee:b7:47: c9:bd:cd:9b:38:1d:1b:8d:db:d5:c2:9a:b6:d2:35:c7:6a:a9: ed:66:3a:98:8c:66:71:38:f5:c0:aa:39:bc:34:16:2c:18:b2: 13:fc:af:c7:1a:79:86:36:b5:e2:56:b3:5a:e2:95:16:5b:28: 26:c7:b4:9c:eb:c0:1e:d8:23:9e:5d:70:1f:fb:d1:cc:6f:d6: 86:2a:32:02:8a:7b:10:a7:e8:cc:39:e9:72:a3:f9:4e:c5:d6: b4:10:90:f6:bc:f2:40:49:59:21:4e:2c:c2:c6:cb:c9:3a:3b: b3:69:8d:86:e4:9b:ce:35:a1:15:e6:27:e1:29:08:69:97:2a: 7d:f2:a2:20:0c:e9:f7:97:85:46:a3:5b:09:f9:82:68:c6:f0: 64:91:82:d0
-517673057 | 2024-05-17T16:55:29.1987475432 / tcp
PostgreSQL FATAL: no pg_hba.conf entry for host "224.49.151.149", user "postgres", database "template0", SSL off
1489525118 | 2024-05-13T18:54:26.4265395985 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Mon, 13 May 2024 18:54:26 GMT Connection: close Content-Length: 315 WinRM NTLM Info: OS: Windows Server 2022 OS Build: 10.0.20348 Target Name: VMI1675938 NetBIOS Domain Name: VMI1675938 NetBIOS Computer Name: VMI1675938 DNS Domain Name: vmi1675938 FQDN: vmi1675938
-2097432915 | 2024-05-02T18:21:10.3474838081 / tcp
HTTP/1.1 200 Set-Cookie: JSESSIONID=C7953E514FE4DD0472321C7C8B3A21AB; Path=/; HttpOnly Content-Type: text/html;charset=UTF-8 Content-Language: en-US Content-Length: 3657 Date: Thu, 02 May 2024 18:21:10 GMT <!DOCTYPE html> <html lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>segware sigma - Transmitter</title> <link href="/images/favicon.png" rel="shortcut icon"/> <link href="/webjars/bootstrap/4.1.3/css/bootstrap.min.css" rel="stylesheet" /> <link href="/webjars/font-awesome/css/all.css" rel="stylesheet" /> <link href="/webjars/toastr/2.1.2/build/toastr.min.css" rel="stylesheet" /> <link href="/css/main.css" rel="stylesheet" /> <link href="/css/header.css" rel="stylesheet" /> <link href="/css/modal.css" rel="stylesheet" /> <link rel="stylesheet" href="/css/footer.css" /> <link href="/css/login.css" rel="stylesheet" /> </head> <body> <script type="text/javascript"> var fields = ["login_email", "login_pwd"]; </script> <div class="offset-md-1 col-md-10"> <div class="container container-login"> <div class="login-form"> <form action="doLogin" method="post"> <div class="row"> <div class="col-md-12"> <img alt="logo" class="login-logo mx-auto d-block" src="/images/logo-escuro.png"> </div> </div> <div class="form-group"> <input type="text" class="form-control" id="login_email" name="login_email" type="email" placeholder="E-mail" autofocus required="required"> </div> <div class="form-group"> <input type="password" class="form-control" id="login_pwd" name="login_pwd" placeholder="Password" type="password"> </div> <button id="bt-login" class="btn btn-primary btn-block btn-lg" onclick="verifySubmit()"> Login </button> </form> </div> </div> </div> <footer id="tFooter" class="footer"> <div class="social-networks"> <a href="https://cloud.segware.com.br/" target="_blank"> <svg viewBox="0 0 24 24" xmlns="http://www.w3.org/2000/svg" width="30px" height="30px" style="margin-bottom: 6px;"><path fill="rgba(255,255,255,1)" d="M22.94,16.78A12.24,12.24,0,0,0,23.76,13a4,4,0,0,0-1.57-.49,4.39,4.39,0,0,0-3.17.7.18.18,0,0,1-.25,0l0,0v-.06l-.08-.27a7.23,7.23,0,0,0-5.78-4.94A7.07,7.07,0,0,0,4.94,14c0,.18,0,.37-.05.56a10.84,10.84,0,0,0,0,1.14.2.2,0,0,1-.13.21,5,5,0,0,0-3,2.73,10.79,10.79,0,0,0,5.31,4.53,12.85,12.85,0,0,0,4.86.9,12.85,12.85,0,0,0,4.86-.9,11,11,0,0,0,3.75-2.52A11.32,11.32,0,0,0,22.94,16.78ZM20.53,3.42A11.09,11.09,0,0,0,16.78.91,12.64,12.64,0,0,0,11.92,0,12.85,12.85,0,0,0,7.06.9,11,11,0,0,0,3.29,3.41,11.32,11.32,0,0,0,.86,7.22,13,13,0,0,0,0,12a13.6,13.6,0,0,0,.46,3.59,6.53,6.53,0,0,1,1.89-1.54,9.62,9.62,0,0,1,10-8.75,9.49,9.49,0,0,1,7.81,4.79,6.58,6.58,0,0,1,3.52.16,12.43,12.43,0,0,0-.74-3A11,11,0,0,0,20.53,3.42Z"></path></svg></a> <a href="https://pt-br.facebook.com/Segware/" target="_blank"><i class="fab fa-facebook"></i></a> <a href="https://www.instagram.com/segware/" target="_blank"><i class="fab fa-instagram"></i></a> </div> <div class="footer-copyright"> <p>11.7.6.1 © 2024 Segware Security Performance </p> </div> </footer> <script src="/webjars/jquery/3.5.1/jquery.js"></script> <script src="/webjars/bootstrap/4.1.3/js/bootstrap.min.js"></script> <script src="/js/utils.js"></script> <script src="/webjars/momentjs/2.22.2/moment.js"></script> <script src="/webjars/chartjs/2.7.3/Chart.js"></script> <script src="/webjars/popper.js/1.14.6/umd/popper.js"></script> <script src="/webjars/toastr/2.1.2/toastr.js"></script> <script src="/js/manual_event.js"></script> <script src="/js/form_validator.js" ></script> </body> </html>