-1592827392 | 2024-05-06T17:29:19.625349
135 /
tcp
Microsoft RPC Endpoint Mapper
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 91.208.240.158:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\M192-168-1-237\pipe\lsass
8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 91.208.240.158:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\M192-168-1-237\pipe\lsass
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 91.208.240.158:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\M192-168-1-237\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 91.208.240.158:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\M192-168-1-237\pipe\lsass
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 91.208.240.158:49665
ncalrpc: WindowsShutdown
ncacn_np: \\M192-168-1-237\PIPE\InitShutdown
ncalrpc: WMsgKRpc0114CB0
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\M192-168-1-237\PIPE\InitShutdown
ncalrpc: WMsgKRpc0114CB0
ncalrpc: WMsgKRpc0182961
ncalrpc: WMsgKRpc035084E02
fc48cd89-98d6-4628-9839-86f7a3e4161a
version: v1.0
ncalrpc: dabrpc
ncalrpc: csebpub
ncalrpc: LRPC-c7cd3006794f2ae576
ncalrpc: LRPC-e54578cd3c172f1bbc
ncalrpc: LRPC-85b53149469d32ee3d
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
d09bdeb5-6171-4a34-bfe2-06fa82652568
version: v1.0
ncalrpc: csebpub
ncalrpc: LRPC-c7cd3006794f2ae576
ncalrpc: LRPC-e54578cd3c172f1bbc
ncalrpc: LRPC-85b53149469d32ee3d
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-e54578cd3c172f1bbc
ncalrpc: LRPC-85b53149469d32ee3d
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-85b53149469d32ee3d
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-91a7c16ccf1ab26e38
ncalrpc: LRPC-245383f8ebc0da3af0
ncalrpc: LRPC-50e8f4c8882014bebf
697dcda9-3ba9-4eb2-9247-e11f1901b0d2
version: v1.0
ncalrpc: LRPC-c7cd3006794f2ae576
ncalrpc: LRPC-e54578cd3c172f1bbc
ncalrpc: LRPC-85b53149469d32ee3d
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-e54578cd3c172f1bbc
ncalrpc: LRPC-85b53149469d32ee3d
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
0d47017b-b33b-46ad-9e18-fe96456c5078
version: v1.0
ncalrpc: umpo
95406f0b-b239-4318-91bb-cea3a46ff0dc
version: v1.0
ncalrpc: umpo
4ed8abcc-f1e2-438b-981f-bb0e8abc010c
version: v1.0
ncalrpc: umpo
0ff1f646-13bb-400a-ab50-9a78f2b7a85a
version: v1.0
ncalrpc: umpo
6982a06e-5fe2-46b1-b39c-a2c545bfa069
version: v1.0
ncalrpc: umpo
082a3471-31b6-422a-b931-a54401960c62
version: v1.0
ncalrpc: umpo
fae436b0-b864-4a87-9eda-298547cd82f2
version: v1.0
ncalrpc: umpo
e53d94ca-7464-4839-b044-09a2fb8b3ae5
version: v1.0
ncalrpc: umpo
178d84be-9291-4994-82c6-3f909aca5a03
version: v1.0
ncalrpc: umpo
4dace966-a243-4450-ae3f-9b7bcb5315b8
version: v2.0
ncalrpc: umpo
1832bcf6-cab8-41d4-85d2-c9410764f75a
version: v1.0
ncalrpc: umpo
c521facf-09a9-42c5-b155-72388595cbf0
version: v0.0
ncalrpc: umpo
2c7fd9ce-e706-4b40-b412-953107ef9bb0
version: v0.0
ncalrpc: umpo
88abcbc3-34ea-76ae-8215-767520655a23
version: v0.0
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
76c217bc-c8b4-4201-a745-373ad9032b1a
version: v1.0
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
55e6b932-1979-45d6-90c5-7f6270724112
version: v1.0
ncalrpc: LRPC-2c0fa730da028393f4
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
version: v1.0
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
20c40295-8dba-48e6-aebf-3e78ef3bb144
version: v2.0
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
2513bcbe-6cd4-4348-855e-7efb3c336dd3
version: v2.0
ncalrpc: OLE1B9306B887B7B9EFB93697B9B8D1
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
version: v1.0
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
version: v1.0
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
version: v1.0
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
version: v1.0
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
2d98a740-581d-41b9-aa0d-a88b9d5ce938
version: v1.0
ncalrpc: LRPC-d7c102850c4daf25a3
ncalrpc: actkernel
ncalrpc: umpo
dd59071b-3215-4c59-8481-972edadc0f6a
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
0361ae94-0316-4c6c-8ad8-c594375800e2
version: v1.0
ncalrpc: umpo
5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
version: v1.0
ncalrpc: umpo
bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
version: v1.0
ncalrpc: umpo
3b338d89-6cfa-44b8-847e-531531bc9992
version: v1.0
ncalrpc: umpo
8782d3b9-ebbd-4644-a3d8-e8725381919b
version: v1.0
ncalrpc: umpo
085b0334-e454-4d91-9b8c-4134f9e793f3
version: v1.0
ncalrpc: umpo
4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
version: v1.0
ncalrpc: umpo
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-ecff4606fb0f2eaae5
ncalrpc: IUserProfile2
ncalrpc: LRPC-d6f7e1a2165f489edd
ncalrpc: senssvc
ncalrpc: LRPC-27bada958aef419c9d
e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
version: v1.0
ncalrpc: LRPC-58199c5725c0203620
880fd55e-43b9-11e0-b1a8-cf4edfd72085
version: v1.0
annotation: KAPI Service endpoint
ncalrpc: LRPC-a594933d1e2f737bfa
ncalrpc: OLE928FB89E017EE9196D5BAD3345F0
ncalrpc: LRPC-91a7c16ccf1ab26e38
5222821f-d5e2-4885-84f1-5f6185a0ec41
version: v1.0
ncalrpc: LRPC-a1c63bdab879c44e9f
a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
version: v1.0
ncalrpc: LRPC-5f59b5c105be692b0e
ncalrpc: LRPC-245383f8ebc0da3af0
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncacn_ip_tcp: 91.208.240.158:49667
ncalrpc: LRPC-4c8ba9b975f79218c7
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\M192-168-1-237\PIPE\atsvc
ncalrpc: LRPC-dc833f41328c8d4e13
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 91.208.240.158:49667
ncalrpc: LRPC-4c8ba9b975f79218c7
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\M192-168-1-237\PIPE\atsvc
ncalrpc: LRPC-dc833f41328c8d4e13
33d84484-3626-47ee-8c6f-e7e98b113be1
version: v2.0
ncalrpc: LRPC-4c8ba9b975f79218c7
ncalrpc: ubpmtaskhostchannel
ncacn_np: \\M192-168-1-237\PIPE\atsvc
ncalrpc: LRPC-dc833f41328c8d4e13
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\M192-168-1-237\PIPE\atsvc
ncalrpc: LRPC-dc833f41328c8d4e13
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\M192-168-1-237\PIPE\atsvc
ncalrpc: LRPC-dc833f41328c8d4e13
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: LRPC-dc833f41328c8d4e13
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 91.208.240.158:49666
ncacn_np: \\M192-168-1-237\pipe\eventlog
ncalrpc: eventlog
f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
version: v1.0
ncalrpc: LRPC-c04d92fd8b9bee2a80
ncalrpc: LRPC-87814e4f2d6b3259e0
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-9afc113077db669ece
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
0d3c7f20-1c8d-4654-a1b3-51563b298bda
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-6e1cf615cdbadc081a
ncalrpc: OLE796742CCF26908280E09B7C51125
b18fbab6-56f8-4702-84e0-41053293a869
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-6e1cf615cdbadc081a
ncalrpc: OLE796742CCF26908280E09B7C51125
4c8d0bef-d7f1-49f0-9102-caa05f58d114
version: v1.0
ncalrpc: nlaapi
ncalrpc: nlaplg
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-3df814458fff674834
509bc7ae-77be-4ee8-b07c-0d096bb44345
version: v1.0
ncalrpc: LRPC-4b3cca17e91557d128
ncalrpc: OLED7310C5F2F72F3C119B16A7329A1
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\M192-168-1-237\PIPE\wkssvc
ncalrpc: LRPC-759915f3dadc909af1
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: LRPC-759915f3dadc909af1
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: LRPC-759915f3dadc909af1
29770a8f-829b-4158-90a2-78cd488501f7
version: v1.0
ncacn_ip_tcp: 91.208.240.158:49668
ncacn_np: \\M192-168-1-237\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncalrpc: LRPC-27bada958aef419c9d
b58aa02e-2884-4e97-8176-4ee06d794184
version: v1.0
provider: sysmain.dll
ncalrpc: LRPC-946ba856ea00b3d180
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: LRPC-9b26a7c565586365ff
ncalrpc: DNSResolver
c2d1b5dd-fa81-4460-9dd6-e7658b85454b
version: v1.0
ncalrpc: LRPC-a0c851448b19a05fe8
ncalrpc: OLE4B4712DCD09DD5C05B5B4F93B1C2
f44e62af-dab1-44c2-8013-049a9de417d6
version: v1.0
ncalrpc: LRPC-a0c851448b19a05fe8
ncalrpc: OLE4B4712DCD09DD5C05B5B4F93B1C2
7aeb6705-3ae6-471a-882d-f39c109edc12
version: v1.0
ncalrpc: LRPC-a0c851448b19a05fe8
ncalrpc: OLE4B4712DCD09DD5C05B5B4F93B1C2
e7f76134-9ef5-4949-a2d6-3368cc0988f3
version: v1.0
ncalrpc: LRPC-a0c851448b19a05fe8
ncalrpc: OLE4B4712DCD09DD5C05B5B4F93B1C2
b37f900a-eae4-4304-a2ab-12bb668c0188
version: v1.0
ncalrpc: LRPC-a0c851448b19a05fe8
ncalrpc: OLE4B4712DCD09DD5C05B5B4F93B1C2
abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
version: v1.0
ncalrpc: LRPC-a0c851448b19a05fe8
ncalrpc: OLE4B4712DCD09DD5C05B5B4F93B1C2
76f03f96-cdfd-44fc-a22c-64950a001209
version: v1.0
protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 91.208.240.158:49669
ncalrpc: LRPC-bff805021d1c018679
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
provider: spoolsv.exe
ncacn_ip_tcp: 91.208.240.158:49669
ncalrpc: LRPC-bff805021d1c018679
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 91.208.240.158:49669
ncalrpc: LRPC-bff805021d1c018679
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 91.208.240.158:49669
ncalrpc: LRPC-bff805021d1c018679
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncacn_ip_tcp: 91.208.240.158:49669
ncalrpc: LRPC-bff805021d1c018679
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-afb4ac727f88e8ae74
ncalrpc: LRPC-2e85a680d14082c7be
ncalrpc: LRPC-35542335087389a060
ncalrpc: LRPC-9eaa1f824e6d74e5ec
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-2e85a680d14082c7be
ncalrpc: LRPC-35542335087389a060
ncalrpc: LRPC-9eaa1f824e6d74e5ec
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-35542335087389a060
ncalrpc: LRPC-9eaa1f824e6d74e5ec
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-9eaa1f824e6d74e5ec
c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
version: v1.0
annotation: Adh APIs
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-37cf413f6adf2d460e
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-37cf413f6adf2d460e
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: LRPC-37cf413f6adf2d460e
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncalrpc: LRPC-37cf413f6adf2d460e
e64b9aee-f372-4312-9a14-8f1502b5c8e3
version: v1.0
ncalrpc: LRPC-4485d0ad6f3c84d17f
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncalrpc: LRPC-5a61c7d71b333f19d9
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncalrpc: LRPC-3613e3336e929bfee2
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncalrpc: LRPC-3613e3336e929bfee2
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 91.208.240.158:49670
ncalrpc: ipsec
98cd761e-e77d-41c8-a3c0-0fb756d90ec2
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
d22895ef-aff4-42c5-a5b2-b14466d34ab4
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
e38f5360-8572-473e-b696-1b46873beeab
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
95095ec8-32ea-4eb0-a3e2-041f97b36168
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
4c9dbf19-d39e-4bb9-90ee-8f7179b20283
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
d4051bde-9cdd-4910-b393-4aa85ec3c482
version: v1.0
ncalrpc: LRPC-007ad7a36b5730e4bd
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 91.208.240.158:49671
54b4c689-969a-476f-8dc2-990885e9f562
version: v0.0
ncalrpc: LRPC-695379c8a36eef5c4e
be6293d3-2827-4dda-8057-8588240124c9
version: v0.0
ncalrpc: LRPC-695379c8a36eef5c4e
e7a216af-1ec1-447f-8d3f-a87278db564d
version: v1.0
ncalrpc: LRPC-280ffcd8c9361880e7
c27f3c08-92ba-478c-b446-b419c4cef0e2
version: v1.0
ncalrpc: LRPC-a03ba0da28bf0e37e0
26268c86-e770-433e-86ef-5f3ba6731fba
version: v1.0
ncalrpc: LRPC-e3f1569e7fcbc531ff
ncalrpc: OLEA737CFE763BA868D2CF29139FA2C
7a20fcec-dec4-4c59-be57-212e8f65d3de
version: v1.0
ncalrpc: LRPC-bd04e1a2415e061673
06bba54a-be05-49f9-b0a0-30f790261023
version: v1.0
annotation: Security Center
provider: wscsvc.dll
ncalrpc: LRPC-c7aad24ce5ad1c2cd4
ncalrpc: OLE061427AC64692E659E7383063D7C
0767a036-0d22-48aa-ba69-b619480f38cb
version: v1.0
annotation: PcaSvc
provider: pcasvc.dll
ncalrpc: LRPC-b8cbfd2d6e836e8725
bf4dc912-e52f-4904-8ebe-9317c1bdd497
version: v1.0
ncalrpc: LRPC-77ee25011a4ca486f2
ncalrpc: OLE259530C346538FDB1C87BBCCBC32
4b112204-0e19-11d3-b42b-0000f81feb9f
version: v1.0
provider: ssdpsrv.dll
ncalrpc: LRPC-164e6d8b595d20beac
a4b8d482-80ce-40d6-934d-b22a01a44fe7
version: v1.0
annotation: LicenseManager
ncalrpc: LicenseServiceEndpoint
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc035084E02
b1ef227e-dfa5-421e-82bb-67a6a129c496
version: v0.0
ncalrpc: LRPC-21b7ddac74907651a0
ncalrpc: OLE3D69C4A23208770C9554F3A591E2
0fc77b1a-95d8-4a2e-a0c0-cff54237462b
version: v0.0
ncalrpc: LRPC-21b7ddac74907651a0
ncalrpc: OLE3D69C4A23208770C9554F3A591E2
8ec21e98-b5ce-4916-a3d6-449fa428a007
version: v0.0
ncalrpc: LRPC-21b7ddac74907651a0
ncalrpc: OLE3D69C4A23208770C9554F3A591E2
58e604e8-9adb-4d2e-a464-3b0683fb1480
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-fffb1a5041eeb006a2
fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-fffb1a5041eeb006a2
5f54ce7d-5b79-4175-8584-cb65313a0e98
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-fffb1a5041eeb006a2
201ef99a-7fa0-444c-9399-19ba84f12a1a
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-fffb1a5041eeb006a2
0497b57d-2e66-424f-a0c6-157cd5d41700
version: v1.0
annotation: AppInfo
ncalrpc: LRPC-fffb1a5041eeb006a2
923c9623-db7f-4b34-9e6d-e86580f8ca2a
version: v1.0
ncalrpc: OLEB4C9A1002B4E276577A9378A2567
ncalrpc: LRPC-14985dda2e8435e0db
0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd
version: v1.0
ncalrpc: OLEB4C9A1002B4E276577A9378A2567
ncalrpc: LRPC-14985dda2e8435e0db
d2716e94-25cb-4820-bc15-537866578562
version: v1.0
ncalrpc: OLEB4C9A1002B4E276577A9378A2567
ncalrpc: LRPC-14985dda2e8435e0db
43890c94-bfd7-4655-ad6a-b4a68397cdcb
version: v0.0
ncalrpc: LRPC-14985dda2e8435e0db
c8ba73d2-3d55-429c-8e9a-c44f006f69fc
version: v0.0
ncalrpc: LRPC-14985dda2e8435e0db
e8748f69-a2a4-40df-9366-62dbeb696e26
version: v0.0
ncalrpc: LRPC-14985dda2e8435e0db
ba4aa15a-be94-47fb-9bfb-fef110e7efad
version: v1.0
annotation: DevQueryBroker client query RPC interface
ncalrpc: LRPC-5f54547f4648f04182
c503f532-443a-4c69-8300-ccd1fbdb3839
version: v2.0
ncalrpc: LRPC-0d68925ba20e74c123
ncalrpc: OLE07C80E43249A8F64B106D1F92E04
4be96a0f-9f52-4729-a51d-c70610f118b0
version: v1.0
annotation: wbiosrvc
provider: wbiosrvc.dll
ncalrpc: LRPC-aa86038ede1a9afeaf
c0e9671e-33c6-4438-9464-56b2e1b1c7b4
version: v1.0
annotation: wbiosrvc
provider: wbiosrvc.dll
ncalrpc: LRPC-aa86038ede1a9afeaf
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncalrpc: 7ae58578-9be0-44fe-94cd-f0ec6154141f
ncalrpc: LRPC-7e41da3e6845ecf80a
-1166656618 | 2024-04-27T19:34:56.213919
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
181940962 | 2024-05-12T01:09:10.569539
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 2004)/Windows Server (version 2004)
OS Build: 10.0.19041
Target Name: M192-168-1-237
NetBIOS Domain Name: M192-168-1-237
NetBIOS Computer Name: M192-168-1-237
DNS Domain Name: m192-168-1-237
FQDN: m192-168-1-237
Administrator
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:20:93:a1:e2:b4:63:af:4d:66:cf:62:52:ee:36:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=m192-168-1-237
Validity
Not Before: Feb 9 00:21:48 2024 GMT
Not After : Aug 10 00:21:48 2024 GMT
Subject: CN=m192-168-1-237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:bd:a9:be:1b:c9:cb:9a:1a:ed:95:86:9d:d9:6f:
09:65:c7:58:92:9a:9c:5a:ec:02:da:70:d5:80:9e:
db:46:2f:41:5d:a3:48:9a:c8:4a:07:43:00:96:d0:
20:8a:b2:fc:f9:ac:47:30:c9:e7:45:ed:b6:1d:2d:
3e:57:ce:79:7c:1c:1b:9e:e0:3e:e5:ff:28:f4:14:
5e:13:65:c9:22:03:f3:92:25:f1:1f:fe:d7:8f:b8:
d6:13:1e:75:db:c1:22:de:a3:04:fa:1b:18:ff:95:
f1:ea:59:63:36:20:58:8d:72:49:b9:26:20:2c:11:
d3:e0:47:99:ee:83:f7:b8:c3:21:aa:b5:29:43:dc:
4d:1e:2d:41:f2:dd:3e:09:85:3b:2c:64:01:86:17:
c2:fa:7f:80:ac:69:65:ce:b4:ad:2d:e5:28:4b:6a:
83:fd:75:38:1e:4b:10:a2:50:c1:c9:cd:da:01:62:
07:b4:b6:84:bd:48:31:4d:2a:c7:af:75:be:3b:5e:
83:52:da:0b:f8:96:e4:c7:5d:9c:98:f4:e9:02:65:
19:4d:76:c0:02:a8:3b:f8:c8:b6:b9:d1:98:51:f0:
5d:0a:a9:13:ed:a1:bb:81:24:02:96:cc:2a:28:1a:
da:0f:95:ee:97:81:2e:e7:5b:45:9a:1b:be:52:07:
50:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
8e:c5:4e:eb:64:d1:01:65:ff:9d:48:c5:ae:e7:64:0d:f5:8f:
85:9e:d2:af:d5:d9:74:98:e6:05:fb:45:4c:24:13:b6:39:4a:
e4:bc:d0:81:e2:08:50:23:af:b2:60:17:a9:58:d1:05:8e:b4:
76:d4:07:99:ee:1c:78:73:fd:88:8a:ab:75:33:10:7e:8e:dc:
49:86:81:36:85:70:9c:e2:71:8b:1f:12:00:45:dd:09:04:d2:
f9:09:e9:b0:96:d0:28:53:42:49:eb:0c:c8:66:22:f4:19:d1:
91:73:cb:fd:e5:34:81:50:64:4f:03:a1:c5:a2:b5:fd:59:58:
c4:79:42:6c:c9:1b:86:c0:5f:c3:de:7c:46:27:0b:da:e9:e8:
b2:c5:2b:9a:1b:93:6b:64:b5:36:38:10:7b:70:90:88:0a:96:
8e:75:a7:87:9b:1e:e4:87:67:0f:b3:85:f5:9c:4b:20:8b:53:
7f:69:3e:c9:f0:6a:bd:b5:8f:f6:3a:5f:35:43:35:06:59:9d:
86:96:13:6b:20:77:73:22:0a:5e:1f:e1:5d:5e:09:55:1a:64:
f9:4b:06:4b:d5:02:d9:42:7c:ed:df:7b:99:a8:96:9b:a3:70:
f0:50:45:1f:14:fe:03:eb:83:d1:1f:ae:df:99:bc:b0:02:cc:
1d:84:74:41
-1684583448 | 2024-05-15T17:37:07.471852
5357 /
tcp
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Wed, 15 May 2024 17:37:10 GMT
Connection: close
Content-Length: 326
