-25297454 | 2025-04-04T00:11:40.627785
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
Set-Cookie: ASP.NET_SessionId=f1qfkx553jai4155y04hakeu; path=/; HttpOnly
X-AspNet-Version: 2.0.50727
X-Powered-By: ASP.NET
Date: Fri, 04 Apr 2025 00:11:37 GMT
Content-Length: 6588
Vulnerabilities
135 /
tcp
1260547035 | 2025-04-04T19:28:43.915958
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 107.155.67.98:49152
ncalrpc: WindowsShutdown
ncacn_np: \\SERVER1\PIPE\InitShutdown
ncalrpc: WMsgKRpc0317090
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\SERVER1\PIPE\InitShutdown
ncalrpc: WMsgKRpc0317090
ncalrpc: WMsgKRpc0A88652
ncalrpc: WMsgKRpc0E515E0D53
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-b062a5cc10b59c58d4
ncacn_np: \\SERVER1\PIPE\srvsvc
ncacn_ip_tcp: 107.155.67.98:49154
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncalrpc: dhcpcsvc6
ncacn_ip_tcp: 107.155.67.98:49153
ncacn_np: \\SERVER1\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncacn_ip_tcp: 107.155.67.98:49153
ncacn_np: \\SERVER1\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncacn_ip_tcp: 107.155.67.98:49153
ncacn_np: \\SERVER1\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 107.155.67.98:49153
ncacn_np: \\SERVER1\pipe\eventlog
ncalrpc: eventlog
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncacn_np: \\SERVER1\PIPE\srvsvc
ncacn_ip_tcp: 107.155.67.98:49154
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 107.155.67.98:49154
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncacn_ip_tcp: 107.155.67.98:49154
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncacn_ip_tcp: 107.155.67.98:49154
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 107.155.67.98:49154
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\SERVER1\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLE9A381254E3F24CB591D3AA3E2330
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
provider: gpsvc.dll
ncalrpc: IUserProfile2
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncacn_np: \\SERVER1\PIPE\W32TIME_ALT
ncalrpc: W32TIME_ALT
ncalrpc: LRPC-7e8d4c31c30b22e65e
ncalrpc: OLE45512FA1ED1E461084719337B7F9
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-7e8d4c31c30b22e65e
ncalrpc: OLE45512FA1ED1E461084719337B7F9
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-a52ba90ffc5b02e0d2
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-a52ba90ffc5b02e0d2
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-a52ba90ffc5b02e0d2
7f1343fe-50a9-4927-a778-0c5859517bac
version: v1.0
annotation: DfsDs service
ncacn_np: \\SERVER1\PIPE\wkssvc
ncalrpc: DNSResolver
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
annotation: Spooler function endpoint
provider: spoolsv.exe
ncalrpc: spoolss
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
annotation: Spooler base remote object endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
annotation: Spooler function endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
annotation: IPSec Policy agent endpoint
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-2c67cb7a23da04cd6f
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 107.155.67.98:49157
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 107.155.67.98:49165
ncalrpc: samss lpc
ncalrpc: dsrole
ncacn_np: \\SERVER1\PIPE\protected_storage
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncalrpc: LRPC-06b9ec28a730f8cb9b
ncacn_np: \\SERVER1\pipe\lsass
12e65dd8-887f-41ef-91bf-8d816c42c2e7
version: v1.0
annotation: Secure Desktop LRPC interface
provider: winlogon.exe
ncalrpc: WMsgKRpc0A88652
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-225b12dc731b89a90e
ncalrpc: LRPC-225b12dc731b89a90e
ncalrpc: LRPC-225b12dc731b89a90e
ncalrpc: LRPC-225b12dc731b89a90e
24019106-a203-4642-b88d-82dae9158929
version: v1.0
provider: authui.dll
ncalrpc: LRPC-ae8cc5f01987f59481
137 /
udp
2021158702 | 2025-04-04T19:32:46.408598
NetBIOS Response:
Server Name: SERVER1
MAC Address: 00:25:90:F9:EF:2A
Names:
SERVER1 <0x0>
WORKGROUP <0x0>
SERVER1 <0x20>
Additional Interfaces:
32.32.32.1MAC Addresses
00:25:90:F9:EF:2A
OUI: 00:25:90
Organization: Super Micro Computer, Inc.
Assignment: MA-L
Registration Date: 2009-03-22
139 /
tcp
-757264002 | 2025-03-13T14:24:56.664638
-843581295 | 2025-04-04T10:01:54.346050
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
Strict-Transport-Security: max-age=31536000
X-AspNet-Version: 4.0.30319
Set-Cookie: CacheId=WV1K3FHHCB155BQB; expires=Sat, 05-Apr-2025 10:01:51 GMT; path=/
Set-Cookie: Cookie=K7T6RL8F; expires=Mon, 19-Aug-2052 10:01:51 GMT; path=/
X-Powered-By: ASP.NET
Date: Fri, 04 Apr 2025 10:01:51 GMT
Content-Length: 59364
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:26:26:b8:3e:08:06:fd:01:9d:36:08:24:ea:d0:22:94:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Apr 1 11:45:11 2025 GMT
Not After : Jun 30 11:45:10 2025 GMT
Subject: CN=weegy.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:89:ef:c5:c6:12:3d:a6:7f:9e:8a:a4:24:fe:b6:
8a:b5:fb:38:37:38:0b:6b:7e:28:99:50:0f:a6:3c:
a1:37:23:94:26:ac:d5:b7:23:c3:26:f7:ed:91:53:
6b:98:d4:0f:da:53:52:1e:83:60:b2:2f:83:df:1e:
dd:c8:93:60:51:4e:10:43:f4:73:58:60:04:07:03:
6a:68:9b:2a:ad:d4:78:22:a5:78:61:39:e9:e4:6e:
24:4d:46:b7:6a:65:31:85:96:0a:4d:d8:ec:bd:6f:
35:3b:d3:48:b5:02:36:61:20:2e:84:a9:70:d2:bf:
2e:b6:10:aa:2a:13:3f:7f:8f:15:4e:dd:1d:9e:e7:
da:dd:f0:6b:89:5e:9b:b6:17:b7:b4:65:10:58:ad:
fb:a4:0b:d4:ad:d2:b9:4d:53:88:b3:2e:b7:8b:a4:
28:79:92:07:e5:4e:85:4b:6c:fe:1e:a9:3b:76:68:
29:e3:a9:1f:01:8b:bf:cc:43:72:97:27:b8:52:ee:
36:42:78:13:09:ae:12:48:f1:ec:4f:5b:8d:c6:a1:
1c:2e:8e:b9:ec:43:5f:af:cd:ae:31:28:8b:21:2a:
a0:50:49:d3:e6:ad:76:24:26:37:00:3d:51:12:22:
56:65:c0:4b:43:ce:b2:ed:02:e3:a2:09:f1:db:fd:
4d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
CC:FB:08:06:91:BF:26:EE:05:D5:EB:E7:CB:53:14:51:CE:97:78:E1
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:weegy.com, DNS:www.weegy.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
X509v3 CRL Distribution Points:
Full Name:
URI:http://r11.c.lencr.org/85.crl
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Apr 1 12:43:41.844 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:43:CD:01:9A:25:62:4A:33:EF:6E:DC:5C:
22:E6:D1:BD:E8:ED:BA:EA:D0:9A:7C:BB:72:24:EB:82:
69:F9:D9:D1:02:20:75:E4:2B:7C:81:1D:12:B5:B7:AE:
C4:7D:45:AC:B1:17:F5:32:53:B7:74:AA:EC:8F:AD:79:
BB:CA:E0:47:8C:81
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Apr 1 12:43:43.831 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:DE:B6:2E:1F:BD:6D:CD:A5:33:9C:F8:
61:1C:E0:04:63:A6:67:7C:A4:9C:19:15:56:63:D0:D0:
06:D4:62:20:43:02:21:00:F8:24:A9:18:2B:8B:AC:59:
D6:57:64:29:3D:04:97:31:E8:A8:A5:79:8D:55:B0:D5:
B9:35:38:EF:D1:01:22:4E
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
22:10:76:67:de:3e:89:d4:ce:ce:11:90:16:7b:d2:41:cd:f1:
3f:b9:2b:ac:bd:7d:86:8b:48:71:1f:5e:1e:f9:79:1e:91:62:
95:e6:ae:c4:46:a9:00:c2:9e:62:0e:7a:e1:1e:8d:ec:25:94:
27:45:e5:b0:94:47:f3:83:ba:30:b7:99:88:13:a0:15:65:8e:
95:67:29:08:32:63:49:c4:9a:f6:51:06:78:bc:36:11:0d:7f:
b6:6d:a8:f0:fc:77:d9:ef:96:99:42:ea:48:86:fc:80:d5:7e:
bf:1a:59:7b:4e:f5:78:06:69:65:20:3d:89:a4:44:a7:5c:ca:
44:50:61:e1:2e:89:d4:b6:bf:75:97:47:dc:d1:e5:2b:f4:dd:
d1:2f:1f:ca:ef:d7:ad:35:d7:9d:2f:18:a3:7a:85:a2:cd:11:
0b:66:0c:e6:b4:22:d9:f4:00:4a:0d:55:73:8a:8f:0f:8f:33:
99:1d:87:20:52:52:a9:2d:87:a4:95:43:db:c5:58:a1:ac:18:
35:d1:f2:17:1d:08:c7:aa:00:3b:5c:63:ce:73:26:0e:6d:ae:
74:b1:ed:75:8c:7a:40:8b:14:7a:f6:9d:cd:82:44:24:01:ac:
4c:21:22:17:96:b4:20:28:6d:1b:19:6f:1c:dd:68:35:51:a9:
df:a3:a8:3e
Vulnerabilities
445 /
tcp
2074933174 | 2025-04-04T09:01:49.280071
SMB Status:
Authentication: enabled
SMB Version: 1
OS: Windows Server 2008 R2 Enterprise 7601 Service Pack 1
Software: Windows Server 2008 R2 Enterprise 6.1
Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode
1935 /
tcp
1549277766 | 2025-04-02T11:00:58.282309
