Hostnames |
SCIphar.com www.SCIphar.com |
Domains | SCIphar.com |
Country | China |
City | Xi’an |
Organization | CHINANET Shanxi(SN) province network |
ISP | China Telecom (Group) |
ASN | AS4835 |
1429503136 | 2024-09-01T10:13:00.56733421 / tcp
220 Microsoft FTP Service 530 User anonymous cannot log in. 214-The following commands are recognized(* ==>'s unimplemented). ABOR ACCT ALLO APPE CDUP CWD DELE FEAT HELP LIST MDTM MKD MODE NLST NOOP OPTS PASS PASV PORT PWD QUIT REIN REST RETR RMD RNFR RNTO SITE SIZE SMNT STAT STOR STOU STRU SYST TYPE USER XCUP XCWD XMKD XPWD XRMD 214 HELP command successful. 530 Please login with USER and PASS.
360478453 | 2024-09-05T20:51:38.79074880 / tcp
HTTP/1.1 400 Bad Request Content-Type: text/html Date: Thu, 05 Sep 2024 20:51:26 GMT Connection: close Content-Length: 39
-1490462510 | 2024-09-22T00:30:34.192711135 / tcp
Microsoft RPC Endpoint Mapper d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 117.34.25.229:49152 ncalrpc: WindowsShutdown ncacn_np: \\WINDOWS-J86POD9\PIPE\InitShutdown ncalrpc: WMsgKRpc05CD60 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\WINDOWS-J86POD9\PIPE\InitShutdown ncalrpc: WMsgKRpc05CD60 ncalrpc: WMsgKRpc05CF91 c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: LRPC-235b2f5908f0028d1b ncacn_np: \\WINDOWS-J86POD9\PIPE\srvsvc ncacn_ip_tcp: 117.34.25.229:49155 ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 ncalrpc: LRPC-725bfbfcf4eeb4c1cc 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 ncalrpc: dhcpcsvc ncacn_ip_tcp: 117.34.25.229:49153 ncacn_np: \\WINDOWS-J86POD9\pipe\eventlog ncalrpc: eventlog 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncacn_ip_tcp: 117.34.25.229:49153 ncacn_np: \\WINDOWS-J86POD9\pipe\eventlog ncalrpc: eventlog 30adc50c-5cbc-46ce-9a0e-91914789e23c version: v1.0 annotation: NRP server endpoint provider: nrpsrv.dll ncacn_ip_tcp: 117.34.25.229:49153 ncacn_np: \\WINDOWS-J86POD9\pipe\eventlog ncalrpc: eventlog f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 117.34.25.229:49153 ncacn_np: \\WINDOWS-J86POD9\pipe\eventlog ncalrpc: eventlog 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncacn_np: \\WINDOWS-J86POD9\PIPE\srvsvc ncacn_ip_tcp: 117.34.25.229:49155 ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 98716d03-89ac-44c7-bb8c-285824e51c4a version: v1.0 annotation: XactSrv service provider: srvsvc.dll ncacn_ip_tcp: 117.34.25.229:49155 ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 552d076a-cb29-4e44-8b6a-d15e59e2c0af version: v1.0 annotation: IP Transition Configuration endpoint provider: iphlpsvc.dll ncacn_ip_tcp: 117.34.25.229:49155 ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 a398e520-d59a-4bdd-aa7a-3c1e0303a511 version: v1.0 annotation: IKE/Authip API provider: IKEEXT.DLL ncacn_ip_tcp: 117.34.25.229:49155 ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 117.34.25.229:49155 ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\WINDOWS-J86POD9\PIPE\atsvc ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: senssvc ncalrpc: OLED53C27F060D147E681A78F0D0611 ncalrpc: IUserProfile2 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 provider: gpsvc.dll ncalrpc: IUserProfile2 b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86 version: v1.0 annotation: KeyIso provider: keyiso.dll ncacn_ip_tcp: 117.34.25.229:49154 ncalrpc: samss lpc ncalrpc: dsrole ncacn_np: \\WINDOWS-J86POD9\PIPE\protected_storage ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncalrpc: LRPC-47643b4de7a77e4219 ncacn_np: \\WINDOWS-J86POD9\pipe\lsass 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 117.34.25.229:49154 ncalrpc: samss lpc ncalrpc: dsrole ncacn_np: \\WINDOWS-J86POD9\PIPE\protected_storage ncalrpc: protected_storage ncalrpc: lsasspirpc ncalrpc: lsapolicylookup ncalrpc: LSARPC_ENDPOINT ncalrpc: securityevent ncalrpc: audit ncalrpc: LRPC-47643b4de7a77e4219 ncacn_np: \\WINDOWS-J86POD9\pipe\lsass 24019106-a203-4642-b88d-82dae9158929 version: v1.0 provider: authui.dll ncalrpc: LRPC-e24959af064262258f 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncacn_np: \\WINDOWS-J86POD9\PIPE\W32TIME_ALT ncalrpc: W32TIME_ALT ncalrpc: LRPC-b3967a01b9771a6c29 ncalrpc: OLEDCA6BA1E30E34679BBAF4359437B 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-b3967a01b9771a6c29 ncalrpc: OLEDCA6BA1E30E34679BBAF4359437B 266f33b4-c7c1-4bd1-8f52-ddb8f2214ea9 version: v1.0 annotation: Wlan Service provider: wlansvc.dll ncalrpc: LRPC-725bfbfcf4eeb4c1cc 25952c5d-7976-4aa1-a3cb-c35f7ae79d1b version: v1.256 annotation: Wireless Diagnostics ncalrpc: LRPC-725bfbfcf4eeb4c1cc 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-c525928b192809852e 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-c525928b192809852e dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-c525928b192809852e 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 annotation: Spooler function endpoint provider: spoolsv.exe ncalrpc: spoolss ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 annotation: Spooler base remote object endpoint protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncalrpc: spoolss 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 annotation: Spooler function endpoint protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncalrpc: spoolss 12345678-1234-abcd-ef00-0123456789ab version: v1.0 annotation: IPSec Policy agent endpoint protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncalrpc: LRPC-73077359d321140f8d ncacn_ip_tcp: 117.34.25.229:49156 6b5bdd1e-528c-422c-af8c-a4079be4fe48 version: v1.0 annotation: Remote Fw APIs protocol: [MS-FASP]: Firewall and Advanced Security Protocol provider: FwRemoteSvr.dll ncacn_ip_tcp: 117.34.25.229:49156 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 117.34.25.229:49158 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-2bd428e3f25db8b818 ncalrpc: LRPC-2bd428e3f25db8b818 ncalrpc: LRPC-2bd428e3f25db8b818 ncalrpc: LRPC-2bd428e3f25db8b818
-1215379977 | 2024-09-17T01:52:40.202273137 / udp
NetBIOS Response: Server Name: WINDOWS-J86POD9 MAC Address: 00:15:5D:B0:DB:E6 Names: WINDOWS-J86POD9 <0x0> WORKGROUP <0x0> WINDOWS-J86POD9 <0x20> Additional Interfaces: 172.16.25.157
00:15:5D:B0:DB:E6 OUI: 00:15:5D Organization: Microsoft Corporation Assignment: MA-L Registration Date: 2005-08-04
360478453 | 2024-09-04T04:57:12.480079443 / tcp
HTTP/1.1 400 Bad Request Server: nginx/1.11.5 Date: Wed, 04 Sep 2024 04:57:05 GMT Content-Type: text/html Content-Length: 39 Connection: keep-alive
Certificate: Data: Version: 3 (0x2) Serial Number: 04:65:84:44:3a:05:38:08:38:a7:f7:7a:66:7c:cf:0f Signature Algorithm: sha256WithRSAEncryption Issuer: C=CN, O=TrustAsia Technologies, Inc., OU=Domain Validated SSL, CN=TrustAsia TLS RSA CA Validity Not Before: May 3 00:00:00 2018 GMT Not After : May 3 12:00:00 2019 GMT Subject: CN=SCIphar.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:91:f5:10:04:c1:36:dc:c7:1e:29:cd:98:60:ec: 68:be:d9:0d:07:c6:74:7c:fb:e5:7b:cc:d4:9c:58: 0f:17:4d:09:96:04:e2:9e:c5:6e:53:45:a8:cb:eb: d9:f2:82:18:a9:3f:65:36:79:6a:e3:7c:d0:ec:b0: ff:4f:ed:39:18:94:a1:9d:45:0c:07:38:e2:3c:d2: 18:37:12:e4:7c:5b:4f:74:7c:aa:be:de:26:5d:98: 9f:4a:35:36:0a:af:26:89:a3:0b:b6:3d:7d:33:98: 59:f0:9b:f6:9a:e4:23:9d:d4:c4:30:b7:fd:26:a0: 64:c7:d6:5a:65:23:8a:e4:95:07:80:7c:59:9d:10: 30:c6:31:a6:01:4c:21:0d:32:98:ee:ee:8a:6b:a9: a3:8c:04:8a:06:e0:73:9c:ab:57:cd:0f:e7:99:9f: 40:d4:ff:5b:29:71:81:9d:bf:87:1f:ce:50:c8:17: 4d:66:ac:cc:9d:20:54:6b:b2:f1:7c:65:e7:7b:08: b6:a8:a3:d8:62:06:3d:50:06:32:26:0e:9b:8d:da: c2:3c:0a:16:94:d4:e2:c2:d5:a3:aa:f9:b2:61:b6: 9b:f4:7e:94:a9:d6:ab:40:3b:09:af:bd:a5:77:50: 87:23:63:16:ea:84:26:0c:b3:06:8e:77:8f:5e:1b: 59:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7F:D3:99:F3:A0:47:0E:31:00:56:56:22:8E:B7:CC:9E:DD:CA:01:8A X509v3 Subject Key Identifier: 2D:BF:2F:76:86:3C:80:9C:4F:DF:C7:31:C0:C6:1A:2A:00:69:8C:83 X509v3 Subject Alternative Name: DNS:SCIphar.com, DNS:www.SCIphar.com X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 2.16.840.1.114412.1.2 CPS: https://www.digicert.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: OCSP - URI:http://ocsp2.digicert.com CA Issuers - URI:http://cacerts.digitalcertvalidation.com/TrustAsiaTLSRSACA.crt X509v3 Basic Constraints: CA:FALSE CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47: 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85 Timestamp : May 3 01:30:19.242 2018 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:A3:4B:F0:D7:F0:5E:07:C4:BF:76:1B: A3:0B:E6:2A:A7:FD:DD:CD:78:CC:FE:63:BE:4F:90:CF: 3F:97:D7:B0:BE:02:21:00:E3:1F:33:EA:17:49:7F:D6: E1:FD:93:F1:BB:5F:68:70:0A:D3:0E:20:3F:95:8C:23: AC:46:58:D3:21:C6:9A:B1 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 6F:53:76:AC:31:F0:31:19:D8:99:00:A4:51:15:FF:77: 15:1C:11:D9:02:C1:00:29:06:8D:B2:08:9A:37:D9:13 Timestamp : May 3 01:30:19.417 2018 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:2D:EA:DF:9A:8F:76:AB:C4:B1:7A: 72:0F:24:59:41:3C:EF:FB:A6:B2:9C:0F:4A:47:2D:C6: 21:0F:89:3B:47:02:20:6B:E8:35:22:54:C9:E5:E3:EB: 0E:DC:2D:29:FA:9B:BB:B6:03:23:25:5C:53:29:AC:D4: 26:2D:46:F9:FF:AE:2B Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:cd:5c:0d:91:89:a5:a9:fd:7b:58:59:1a:ca:7e:1d:6e:98: f3:9d:52:70:6a:0f:1a:73:37:93:78:bd:73:72:96:f5:b9:b6: b4:7c:8d:7f:92:ce:ee:d8:8e:0b:d0:04:4b:01:c4:8c:69:34: 1b:47:7b:90:5c:cd:7d:e4:27:f4:78:5a:1f:5b:b2:ab:bd:7b: 44:b0:b1:47:d2:d4:d3:3d:62:6e:74:62:8f:2d:19:91:8a:9d: 62:0a:65:0b:ce:0e:67:e4:84:8d:cf:b8:f6:11:9b:d0:3b:d4: 2d:3c:cd:79:20:79:a6:42:54:c8:84:bc:84:af:a4:56:b2:c1: 08:a0:3d:b1:a2:3f:01:e7:f4:93:d9:b6:26:7f:8e:e8:20:0b: 58:0f:67:85:8e:64:8d:f9:8a:05:cc:f1:91:81:56:90:e1:27: fd:6c:13:d3:6b:e8:62:26:3d:2f:82:4d:61:58:51:15:e9:1a: 0a:09:29:b0:4d:ee:2e:d7:29:3b:97:15:47:ea:ae:72:59:07: f8:c7:f1:18:c1:c7:3a:82:9b:11:32:65:48:86:ba:8d:96:58: 86:db:7c:7d:3a:f5:ff:5d:f5:c5:32:0d:7d:9b:40:81:c0:c0: 6b:65:b2:c6:b6:56:8f:8a:01:d5:02:3b:03:46:b6:b4:26:c8: 69:7e:2a:d5
-998406261 | 2024-09-10T07:11:37.3546713306 / tcp
MySQL: Error Message: Host '224.160.46.133' is not allowed to connect to this MySQL server Error Code: 1130
-85749389 | 2024-09-16T16:03:06.8103398888 / tcp
HTTP/1.1 404 NOT FOUND Content-Type: text/html Content-Length: 138 Server: nginx Connection: keep-alive X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Set-Cookie: 4b6a498102aaa32671661ff081496215=4a049f30-fe7a-416a-98f9-a98e3ce2e41f.Kfuni5l17ihW26UU7VnWY--Y5RE; Expires=Tue, 17-Sep-2024 16:03:06 GMT; HttpOnly; Path=/ Date: Mon, 16 Sep 2024 16:03:06 GMT