-1620522170 | 2024-05-15T09:13:26.947668
135 /
tcp
Microsoft RPC Endpoint Mapper
51a227ae-825b-41f2-b4a9-1ac9557a1018
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 94.247.42.151:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\VPS-307454\pipe\lsass
8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
version: v1.0
annotation: Ngc Pop Key Service
ncacn_ip_tcp: 94.247.42.151:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\VPS-307454\pipe\lsass
b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
version: v2.0
annotation: KeyIso
ncacn_ip_tcp: 94.247.42.151:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\VPS-307454\pipe\lsass
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 94.247.42.151:49664
ncalrpc: samss lpc
ncalrpc: SidKey Local End Point
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSA_EAS_ENDPOINT
ncalrpc: LSA_IDPEXT_ENDPOINT
ncalrpc: lsacap
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncacn_np: \\VPS-307454\pipe\lsass
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 94.247.42.151:49665
ncalrpc: WindowsShutdown
ncacn_np: \\VPS-307454\PIPE\InitShutdown
ncalrpc: WMsgKRpc07BD40
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\VPS-307454\PIPE\InitShutdown
ncalrpc: WMsgKRpc07BD40
ncalrpc: WMsgKRpc07E391
ncalrpc: WMsgKRpc071EEDBC2
fc48cd89-98d6-4628-9839-86f7a3e4161a
version: v1.0
ncalrpc: dabrpc
ncalrpc: csebpub
ncalrpc: LRPC-d26c15e65061b34824
ncalrpc: LRPC-5d27b971875d2a6866
ncalrpc: LRPC-c667aa77b315bd388c
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
d09bdeb5-6171-4a34-bfe2-06fa82652568
version: v1.0
ncalrpc: csebpub
ncalrpc: LRPC-d26c15e65061b34824
ncalrpc: LRPC-5d27b971875d2a6866
ncalrpc: LRPC-c667aa77b315bd388c
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-5d27b971875d2a6866
ncalrpc: LRPC-c667aa77b315bd388c
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-c667aa77b315bd388c
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
ncalrpc: LRPC-30af3e9c84572ad9bd
ncalrpc: LRPC-5203dafa8eb44f2bcf
697dcda9-3ba9-4eb2-9247-e11f1901b0d2
version: v1.0
ncalrpc: LRPC-d26c15e65061b34824
ncalrpc: LRPC-5d27b971875d2a6866
ncalrpc: LRPC-c667aa77b315bd388c
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
9b008953-f195-4bf9-bde0-4471971e58ed
version: v1.0
ncalrpc: LRPC-5d27b971875d2a6866
ncalrpc: LRPC-c667aa77b315bd388c
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
0d47017b-b33b-46ad-9e18-fe96456c5078
version: v1.0
ncalrpc: umpo
95406f0b-b239-4318-91bb-cea3a46ff0dc
version: v1.0
ncalrpc: umpo
4ed8abcc-f1e2-438b-981f-bb0e8abc010c
version: v1.0
ncalrpc: umpo
0ff1f646-13bb-400a-ab50-9a78f2b7a85a
version: v1.0
ncalrpc: umpo
6982a06e-5fe2-46b1-b39c-a2c545bfa069
version: v1.0
ncalrpc: umpo
082a3471-31b6-422a-b931-a54401960c62
version: v1.0
ncalrpc: umpo
fae436b0-b864-4a87-9eda-298547cd82f2
version: v1.0
ncalrpc: umpo
e53d94ca-7464-4839-b044-09a2fb8b3ae5
version: v1.0
ncalrpc: umpo
178d84be-9291-4994-82c6-3f909aca5a03
version: v1.0
ncalrpc: umpo
4dace966-a243-4450-ae3f-9b7bcb5315b8
version: v2.0
ncalrpc: umpo
1832bcf6-cab8-41d4-85d2-c9410764f75a
version: v1.0
ncalrpc: umpo
c521facf-09a9-42c5-b155-72388595cbf0
version: v0.0
ncalrpc: umpo
2c7fd9ce-e706-4b40-b412-953107ef9bb0
version: v0.0
ncalrpc: umpo
88abcbc3-34ea-76ae-8215-767520655a23
version: v0.0
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
76c217bc-c8b4-4201-a745-373ad9032b1a
version: v1.0
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
55e6b932-1979-45d6-90c5-7f6270724112
version: v1.0
ncalrpc: LRPC-cbf9a07c423e8b69c5
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
version: v1.0
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
20c40295-8dba-48e6-aebf-3e78ef3bb144
version: v2.0
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
2513bcbe-6cd4-4348-855e-7efb3c336dd3
version: v2.0
ncalrpc: OLE8AE38488F704ACD95D7E77206E07
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
version: v1.0
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
version: v1.0
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
version: v1.0
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
version: v1.0
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
2d98a740-581d-41b9-aa0d-a88b9d5ce938
version: v1.0
ncalrpc: LRPC-2e9b9c68d4d2902420
ncacn_np: \\VPS-307454\pipe\LSM_API_service
ncalrpc: LSMApi
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-ba75bfa55cdcccca62
ncalrpc: actkernel
ncalrpc: umpo
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
dd59071b-3215-4c59-8481-972edadc0f6a
version: v1.0
ncalrpc: actkernel
ncalrpc: umpo
0361ae94-0316-4c6c-8ad8-c594375800e2
version: v1.0
ncalrpc: umpo
5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
version: v1.0
ncalrpc: umpo
bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
version: v1.0
ncalrpc: umpo
3b338d89-6cfa-44b8-847e-531531bc9992
version: v1.0
ncalrpc: umpo
8782d3b9-ebbd-4644-a3d8-e8725381919b
version: v1.0
ncalrpc: umpo
085b0334-e454-4d91-9b8c-4134f9e793f3
version: v1.0
ncalrpc: umpo
4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
version: v1.0
ncalrpc: umpo
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncalrpc: bf5bbbf0-0f5e-4d79-87bf-f62cb51fc902
ncalrpc: LRPC-34b5e498c82f3ead70
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
ncacn_ip_tcp: 94.247.42.151:49666
ncacn_np: \\VPS-307454\pipe\eventlog
ncalrpc: eventlog
ncalrpc: LRPC-a4f1b74980edc37a57
ncalrpc: LRPC-30af3e9c84572ad9bd
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
ncacn_ip_tcp: 94.247.42.151:49666
ncacn_np: \\VPS-307454\pipe\eventlog
ncalrpc: eventlog
ncalrpc: LRPC-a4f1b74980edc37a57
ncalrpc: LRPC-30af3e9c84572ad9bd
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncacn_ip_tcp: 94.247.42.151:49666
ncacn_np: \\VPS-307454\pipe\eventlog
ncalrpc: eventlog
ncalrpc: LRPC-a4f1b74980edc37a57
ncalrpc: LRPC-30af3e9c84572ad9bd
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 94.247.42.151:49666
ncacn_np: \\VPS-307454\pipe\eventlog
ncalrpc: eventlog
ncalrpc: LRPC-a4f1b74980edc37a57
ncalrpc: LRPC-30af3e9c84572ad9bd
a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
version: v1.0
ncalrpc: LRPC-a4f1b74980edc37a57
ncalrpc: LRPC-30af3e9c84572ad9bd
bf4dc912-e52f-4904-8ebe-9317c1bdd497
version: v1.0
ncalrpc: LRPC-cace470c8f73747423
ncalrpc: LRPC-1447bc03a9dbdcbb4b
ncalrpc: trkwks
ncacn_np: \\VPS-307454\pipe\trkwks
ncalrpc: LRPC-3d81901eca0a0493d6
ncalrpc: TSUMRPD_PRINT_DRV_LPC_API
ncalrpc: OLE0050AA4F5A91A589E87F4395FBE2
ncalrpc: LRPC-5203dafa8eb44f2bcf
d249bd56-4cc0-4fd3-8ce6-6fe050d590cb
version: v0.0
ncalrpc: LRPC-1447bc03a9dbdcbb4b
ncalrpc: trkwks
ncacn_np: \\VPS-307454\pipe\trkwks
ncalrpc: LRPC-3d81901eca0a0493d6
ncalrpc: TSUMRPD_PRINT_DRV_LPC_API
ncalrpc: OLE0050AA4F5A91A589E87F4395FBE2
ncalrpc: LRPC-5203dafa8eb44f2bcf
d8140e00-5c46-4ae6-80ac-2f9a76df224c
version: v0.0
ncalrpc: LRPC-1447bc03a9dbdcbb4b
ncalrpc: trkwks
ncacn_np: \\VPS-307454\pipe\trkwks
ncalrpc: LRPC-3d81901eca0a0493d6
ncalrpc: TSUMRPD_PRINT_DRV_LPC_API
ncalrpc: OLE0050AA4F5A91A589E87F4395FBE2
ncalrpc: LRPC-5203dafa8eb44f2bcf
0767a036-0d22-48aa-ba69-b619480f38cb
version: v1.0
annotation: PcaSvc
provider: pcasvc.dll
ncalrpc: LRPC-1447bc03a9dbdcbb4b
ncalrpc: trkwks
ncacn_np: \\VPS-307454\pipe\trkwks
ncalrpc: LRPC-3d81901eca0a0493d6
ncalrpc: TSUMRPD_PRINT_DRV_LPC_API
ncalrpc: OLE0050AA4F5A91A589E87F4395FBE2
ncalrpc: LRPC-5203dafa8eb44f2bcf
e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
version: v1.0
ncalrpc: LRPC-85c8605621087efbb3
b58aa02e-2884-4e97-8176-4ee06d794184
version: v1.0
provider: sysmain.dll
ncalrpc: LRPC-1447bc03a9dbdcbb4b
ncalrpc: trkwks
ncacn_np: \\VPS-307454\pipe\trkwks
ncalrpc: LRPC-3d81901eca0a0493d6
ncalrpc: TSUMRPD_PRINT_DRV_LPC_API
ncalrpc: OLE0050AA4F5A91A589E87F4395FBE2
ncalrpc: LRPC-5203dafa8eb44f2bcf
880fd55e-43b9-11e0-b1a8-cf4edfd72085
version: v1.0
annotation: KAPI Service endpoint
ncalrpc: LRPC-3d81901eca0a0493d6
ncalrpc: TSUMRPD_PRINT_DRV_LPC_API
ncalrpc: OLE0050AA4F5A91A589E87F4395FBE2
ncalrpc: LRPC-5203dafa8eb44f2bcf
5222821f-d5e2-4885-84f1-5f6185a0ec41
version: v1.0
ncalrpc: LRPC-1715df1a86b2914d07
a4b8d482-80ce-40d6-934d-b22a01a44fe7
version: v1.0
annotation: LicenseManager
ncalrpc: LicenseServiceEndpoint
3f787932-3452-4363-8651-6ea97bb373bb
version: v1.0
annotation: NSP Rpc Interface
ncalrpc: LRPC-5adbb8f46a128f5c64
ncalrpc: OLEB0966AEA3B30AC0C86D2439913CE
ncalrpc: LRPC-9ca571d8525d251475
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-9ca571d8525d251475
8c7daf44-b6dc-11d1-9a4c-0020af6e7c57
version: v1.0
annotation: Group Policy RPC Interface
provider: appmgmts.dll
ncalrpc: LRPC-8e8e5789b8a8f959cd
58e604e8-9adb-4d2e-a464-3b0683fb1480
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
5f54ce7d-5b79-4175-8584-cb65313a0e98
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
201ef99a-7fa0-444c-9399-19ba84f12a1a
version: v1.0
annotation: AppInfo
provider: appinfo.dll
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
0497b57d-2e66-424f-a0c6-157cd5d41700
version: v1.0
annotation: AppInfo
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
version: v1.0
annotation: Adh APIs
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
0d3c7f20-1c8d-4654-a1b3-51563b298bda
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
b18fbab6-56f8-4702-84e0-41053293a869
version: v1.0
annotation: UserMgrCli
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
c36be077-e14b-4fe9-8abc-e856ef4f048b
version: v1.0
annotation: Proxy Manager client server endpoint
ncalrpc: LRPC-3295d7bc7e6a181b57
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
2e6035b2-e8f1-41a7-a044-656b439c4c34
version: v1.0
annotation: Proxy Manager provider server endpoint
ncalrpc: TeredoControl
ncalrpc: TeredoDiagnostics
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncalrpc: DeviceSetupManager
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
3a9ef155-691d-4449-8d05-09ad57031823
version: v1.0
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
33d84484-3626-47ee-8c6f-e7e98b113be1
version: v2.0
ncalrpc: LRPC-3599e1975ff1eeee32
ncalrpc: ubpmtaskhostchannel
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
29770a8f-829b-4158-90a2-78cd488501f7
version: v1.0
ncacn_ip_tcp: 94.247.42.151:49667
ncacn_np: \\VPS-307454\pipe\SessEnvPublicRpc
ncalrpc: SessEnvPrivateRpc
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\VPS-307454\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLEE65D579195EB9364834EDCD93FA3
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
annotation: Group Policy RPC Interface
provider: gpsvc.dll
ncalrpc: LRPC-f9c6ad29c21c0b7858
650a7e26-eab8-5533-ce43-9c1dfce11511
version: v1.0
annotation: Vpn APIs
ncalrpc: LRPC-72591b06144f4893b3
ncalrpc: VpnikeRpc
ncalrpc: LRPC-f17283ff5981c5e79e
ncacn_np: \\VPS-307454\PIPE\ROUTER
ncalrpc: RasmanLrpc
f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
version: v1.0
ncalrpc: LRPC-cbe8bb5f55df8d9a8c
ncalrpc: LRPC-3131ac77b1f33ebb08
8ec21e98-b5ce-4916-a3d6-449fa428a007
version: v0.0
ncalrpc: OLEAD2A7B824D62F744BC2B0F7B8183
ncalrpc: LRPC-9258562a9d3570dfd3
0fc77b1a-95d8-4a2e-a0c0-cff54237462b
version: v0.0
ncalrpc: OLEAD2A7B824D62F744BC2B0F7B8183
ncalrpc: LRPC-9258562a9d3570dfd3
b1ef227e-dfa5-421e-82bb-67a6a129c496
version: v0.0
ncalrpc: OLEAD2A7B824D62F744BC2B0F7B8183
ncalrpc: LRPC-9258562a9d3570dfd3
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc071EEDBC2
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-7d2076444b208a753c
ncalrpc: LRPC-7d2076444b208a753c
ncalrpc: LRPC-7d2076444b208a753c
c503f532-443a-4c69-8300-ccd1fbdb3839
version: v2.0
ncalrpc: OLE5ABBAF42E16E1969D7B184F1991E
ncalrpc: LRPC-2887d26c00c8abd5a0
509bc7ae-77be-4ee8-b07c-0d096bb44345
version: v1.0
ncalrpc: OLE46606C4C3CF94D0EE9B0D944A1A1
ncalrpc: LRPC-62227c84261e856621
7df1ceae-de4e-4e6f-ab14-49636e7c2052
version: v1.0
ncalrpc: LRPC-5c5b8e8586a273e54d
d4051bde-9cdd-4910-b393-4aa85ec3c482
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
4c9dbf19-d39e-4bb9-90ee-8f7179b20283
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
95095ec8-32ea-4eb0-a3e2-041f97b36168
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
e38f5360-8572-473e-b696-1b46873beeab
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
d22895ef-aff4-42c5-a5b2-b14466d34ab4
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
98cd761e-e77d-41c8-a3c0-0fb756d90ec2
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
1d45e083-478f-437c-9618-3594ced8c235
version: v1.0
ncalrpc: OLEB706C18B18B90BF835DB9C103A32
ncalrpc: LRPC-1caf339641f9f1ae49
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncalrpc: LRPC-090d5bc41fb7837141
1a0d010f-1c33-432c-b0f5-8cf4e8053099
version: v1.0
annotation: IdSegSrv service
ncalrpc: LRPC-090d5bc41fb7837141
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 94.247.42.151:49669
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-b554205f9670e1f3da
ncacn_ip_tcp: 94.247.42.151:49668
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: LRPC-b554205f9670e1f3da
ncacn_ip_tcp: 94.247.42.151:49668
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: LRPC-b554205f9670e1f3da
ncacn_ip_tcp: 94.247.42.151:49668
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
provider: spoolsv.exe
ncalrpc: LRPC-b554205f9670e1f3da
ncacn_ip_tcp: 94.247.42.151:49668
76f03f96-cdfd-44fc-a22c-64950a001209
version: v1.0
protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-b554205f9670e1f3da
ncacn_ip_tcp: 94.247.42.151:49668
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-fc7301725eaca455d6
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-fc7301725eaca455d6
ncalrpc: LRPC-666a9229de8e8d51d3
f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
version: v1.0
annotation: Fw APIs
ncalrpc: LRPC-fc7301725eaca455d6
ncalrpc: LRPC-666a9229de8e8d51d3
ncalrpc: LRPC-484ffb1ddd6fce991c
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-fc7301725eaca455d6
ncalrpc: LRPC-666a9229de8e8d51d3
ncalrpc: LRPC-484ffb1ddd6fce991c
ncalrpc: LRPC-2a296eade461dad178
abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
version: v1.0
ncalrpc: LRPC-99beedc31f07143ac9
b37f900a-eae4-4304-a2ab-12bb668c0188
version: v1.0
ncalrpc: LRPC-99beedc31f07143ac9
f44e62af-dab1-44c2-8013-049a9de417d6
version: v1.0
ncalrpc: LRPC-99beedc31f07143ac9
c2d1b5dd-fa81-4460-9dd6-e7658b85454b
version: v1.0
ncalrpc: LRPC-99beedc31f07143ac9
13560fa9-8c09-4b56-a1fd-04d083b9b2a1
version: v1.0
ncalrpc: LRPC-99beedc31f07143ac9
f2c9b409-c1c9-4100-8639-d8ab1486694a
version: v1.0
annotation: Witness Client Upcall Server
ncalrpc: nlaplg
eb081a0d-10ee-478a-a1dd-50995283e7a8
version: v3.0
annotation: Witness Client Test Interface
ncalrpc: nlaplg
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncalrpc: nlaplg
ncalrpc: nlaapi
ncalrpc: DNSResolver
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncalrpc: nlaplg
ncalrpc: nlaapi
ncalrpc: DNSResolver
ncacn_np: \\VPS-307454\PIPE\wkssvc
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncalrpc: LRPC-f17283ff5981c5e79e
-757264002 | 2024-04-25T02:34:21.964052
139 /
tcp
-1166656618 | 2024-05-17T06:44:32.987223
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
222976701 | 2024-05-02T01:46:42.262943
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: VPS-307454
NetBIOS Domain Name: VPS-307454
NetBIOS Computer Name: VPS-307454
DNS Domain Name: VPS-307454
FQDN: VPS-307454
; Administrator
SES
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:b5:a2:e5:42:82:fc:a4:45:9e:b8:05:bd:eb:a7:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=VPS-307454
Validity
Not Before: Apr 13 10:22:32 2024 GMT
Not After : Oct 13 10:22:32 2024 GMT
Subject: CN=VPS-307454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ca:9a:a8:00:fd:43:78:11:6b:24:bc:a2:86:89:
2a:63:d3:4e:07:f9:32:e5:95:db:66:57:74:6e:6c:
95:d5:2b:c8:ca:cc:96:58:04:65:e9:69:ef:58:55:
47:e8:fe:3b:2c:74:45:cf:c8:7f:3e:f5:c6:cd:05:
84:20:0d:03:9a:ce:75:6a:e0:66:fe:e3:76:3b:43:
a3:2c:85:5e:d0:68:59:33:df:59:e0:7e:60:8d:a0:
88:c0:e0:79:da:74:9f:22:bc:fe:21:8b:83:78:72:
aa:25:8f:1f:b6:07:4c:7e:a2:09:6c:db:9d:11:a7:
a7:95:75:be:21:6c:58:a5:f8:04:e7:c0:4c:c5:ca:
5e:a6:e9:96:ad:a3:2f:82:c8:ec:ae:b3:ec:04:63:
0f:8f:92:59:ee:61:32:cc:b7:6b:04:b2:74:15:30:
fc:58:24:16:4a:d2:2b:dc:52:b0:68:eb:c9:25:af:
41:38:8d:56:07:42:b6:9e:66:cf:af:ca:ae:ea:7c:
ee:28:40:74:88:95:a7:a9:83:f9:8d:de:be:1e:aa:
c1:d5:9b:2c:6e:2e:12:e7:51:44:79:1e:86:e6:83:
8c:70:0c:54:c6:cb:40:be:20:bc:a0:97:87:df:fe:
6f:df:90:6a:46:d9:e8:92:ec:0b:b3:c7:b8:b9:70:
71:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
29:72:b0:cd:d4:31:8c:7e:6a:e3:2e:d7:12:a0:c8:d7:b1:b7:
0e:d6:48:cd:3a:a0:c2:5d:2f:a6:c4:1c:73:26:54:9f:96:b2:
a8:23:a5:0e:c8:d5:94:cb:2e:3d:c9:43:b5:fc:a6:c5:d9:ec:
98:5e:b1:c2:9a:c7:c4:73:50:2c:16:13:f4:78:a1:89:c9:45:
b4:02:25:e6:1e:9b:e7:79:30:6e:8e:be:8a:b6:4a:17:bf:b0:
bf:11:d8:71:a6:38:02:50:e8:c0:d5:a1:13:f9:08:6c:44:b6:
19:34:66:ef:a0:b8:2b:99:77:7b:83:87:f5:10:c4:7d:d8:f3:
0b:82:26:bc:53:95:99:39:d3:16:f2:96:68:36:be:10:59:10:
c5:75:9c:63:4f:a7:0b:15:68:1c:e9:6a:28:c8:df:cc:c2:d4:
3a:76:9f:bf:72:1e:ca:dd:39:46:f4:73:bc:6e:04:9f:d6:ea:
ad:3d:07:07:74:6f:f2:94:41:69:68:b3:57:e2:5f:21:b7:88:
f7:00:94:bf:dd:aa:2c:fd:99:37:76:06:38:4f:db:d3:a8:fd:
98:10:4c:ea:76:d8:6b:04:de:b1:cf:5e:81:ab:f2:87:76:0b:
be:2c:58:a5:88:27:a9:db:62:d1:bf:69:f6:41:31:50:e4:7d:
c2:eb:d5:13
-1684583448 | 2024-05-16T23:20:21.694160
5357 /
tcp
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 16 May 2024 23:20:21 GMT
Connection: close
Content-Length: 326
1489525118 | 2024-05-17T12:37:09.534538
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Fri, 17 May 2024 12:37:09 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: VPS-307454
NetBIOS Domain Name: VPS-307454
NetBIOS Computer Name: VPS-307454
DNS Domain Name: VPS-307454
FQDN: VPS-307454
