GeneralInformation

Hostnames	MAIL01.bigboho.com ns35.hostinglotus.net mail.thaiticketmajor.net
Domains	bigboho.com hostinglotus.net thaiticketmajor.net
Country	Thailand
City	Bangkok
Organization	CAT TELECOM Data Comm. Dept, IDC Office
ISP	CAT Telecom Public Company Limited
ASN	AS9335
Operating System	Windows

WebTechnologies

Web frameworks

Microsoft ASP.NET

Webmail

Outlook Web App15.2.1748

Vulnerabilities

2020(1)

CVE-2020-0796

10A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client.

OpenPorts

25 53 80 81 88 389 443 444 445 465 587 593 636 2525 3268 3269 5357 5985 6001

25 / tcp

-1982390914 | 2025-04-06T10:26:27.050344

220 MAIL01.bigboho.com Microsoft ESMTP MAIL Service ready at Sun, 6 Apr 2025 17:25:27 +0700
250-MAIL01.bigboho.com Hello [224.150.242.109]
250-SIZE 37748736
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-SMTPUTF8
250 XRDST

SMTP NTLM Info:
  OS: Windows Server 2022
  OS Build: 10.0.20348
  Target Name: BIGBOHO
  NetBIOS Domain Name: BIGBOHO
  NetBIOS Computer Name: MAIL01
  DNS Domain Name: bigboho.com
  DNS Tree Name: bigboho.com
  FQDN: MAIL01.bigboho.com

53 / udp

-553166942 | 2025-04-01T15:32:33.132004

Recursion: enabled

80 / tcp

0 | 2025-03-27T09:58:18.063892

Hashes

hash

825961656

http.dom_hash

http.html_hash

http.server_hash

608434861

HTTP/1.1 403 Forbidden
Server: Microsoft-IIS/10.0
Date: Thu, 27 Mar 2025 09:57:36 GMT
Content-Length: 0

81 / tcp

-985096807 | 2025-03-16T06:35:25.634639

Hashes

hash

-95138010

http.dom_hash

-1228880548

http.html_hash

-985096807

http.server_hash

608434861

http.title_hash

-1129182714

403 - Forbidden: Access is denied.

HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sun, 16 Mar 2025 06:34:55 GMT
Content-Length: 1233

88 / udp

-727652549 | 2025-04-09T04:20:40.260055

Microsoft Windows Kerberos
Server Time: 2025-04-09 04:04:07Z

389 / tcp

17166471 | 2025-03-29T11:54:03.030949

0\x84\x00\x00\x0b\xf6\x02\x01\x02d\x84\x00\x00\x0b\xed\x04\x000\x84\x00\x00\x0b\xe50\x84\x00\x00\x00\x99\x04\x12supportedExtension1\x84\x00\x00\x00\x7f\x04\x161.3.6.1.4.1.1466.20037\x04\x1a1.3.6.1.4.1.1466.101.119.1\x04\x171.2.840.113556.1.4.1781\x04\x171.3.6.1.4.1.4203.1.11.3\x04\x171.2.840.113556.1.4.22120\x84\x00\x00\x00I\x04\x17supportedSASLMechanisms1\x84\x00\x00\x00*\x04\x06GSSAPI\x04\nGSS-SPNEGO\x04\x08EXTERNAL\x04\nDIGEST-MD50\x84\x00\x00\x00"\x04\x14supportedLDAPVersion1\x84\x00\x00\x00\x06\x04\x013\x04\x0120\x84\x00\x00\x01\x9a\x04\x15supportedLDAPPolicies1\x84\x00\x00\x01}\x04\x0eMaxPoolThreads\x04\x19MaxPercentDirSyncRequests\x04\x0fMaxDatagramRecv\x04\x10MaxReceiveBuffer\x04\x0fInitRecvTimeout\x04\x0eMaxConnections\x04\x0fMaxConnIdleTime\x04\x0bMaxPageSize\x04\x16MaxBatchReturnMessages\x04\x10MaxQueryDuration\x04\x12MaxDirSyncDuration\x04\x10MaxTempTableSize\x04\x10MaxResultSetSize\x04\rMinResultSets\x04\x14MaxResultSetsPerConn\x04\x16MaxNotificationPerConn\x04\x0bMaxValRange\x04\x15MaxValRangeTransitive\x04\x11ThreadMemoryLimit\x04\x18SystemMemoryLimitPercent0\x84\x00\x00\x03\xf4\x04\x10supportedControl1\x84\x00\x00\x03\xdc\x04\x161.2.840.113556.1.4.319\x04\x161.2.840.113556.1.4.801\x04\x161.2.840.113556.1.4.473\x04\x161.2.840.113556.1.4.528\x04\x161.2.840.113556.1.4.417\x04\x161.2.840.113556.1.4.619\x04\x161.2.840.113556.1.4.841\x04\x161.2.840.113556.1.4.529\x04\x161.2.840.113556.1.4.805\x04\x161.2.840.113556.1.4.521\x04\x161.2.840.113556.1.4.970\x04\x171.2.840.113556.1.4.1338\x04\x161.2.840.113556.1.4.474\x04\x171.2.840.113556.1.4.1339\x04\x171.2.840.113556.1.4.1340\x04\x171.2.840.113556.1.4.1413\x04\x172.16.840.1.113730.3.4.9\x04\x182.16.840.1.113730.3.4.10\x04\x171.2.840.113556.1.4.1504\x04\x171.2.840.113556.1.4.1852\x04\x161.2.840.113556.1.4.802\x04\x171.2.840.113556.1.4.1907\x04\x171.2.840.113556.1.4.1948\x04\x171.2.840.113556.1.4.1974\x04\x171.2.840.113556.1.4.1341\x04\x171.2.840.113556.1.4.2026\x04\x171.2.840.113556.1.4.2064\x04\x171.2.840.113556.1.4.2065\x04\x171.2.840.113

389 / udp

1890219123 | 2025-04-01T06:19:28.360904

0\x84\x00\x00\x0b\x85\x02\x01\x07d\x84\x00\x00\x0b|\x04\x000\x84\x00\x00\x0bt0\x84\x00\x00\x00\x1e\x04\x13domainFunctionality1\x84\x00\x00\x00\x03\x04\x0170\x84\x00\x00\x00\x1e\x04\x13forestFunctionality1\x84\x00\x00\x00\x03\x04\x0170\x84\x00\x00\x00(\x04\x1ddomainControllerFunctionality1\x84\x00\x00\x00\x03\x04\x0170\x84\x00\x00\x002\x04\x17rootDomainNamingContext1\x84\x00\x00\x00\x13\x04\x11DC=bigboho,DC=com0\x84\x00\x00\x008\x04\x0fldapServiceName1\x84\x00\x00\x00!\x04\x1fbigboho.com:mail01$@BIGBOHO.COM0\x84\x00\x00\x00"\x04\x14isGlobalCatalogReady1\x84\x00\x00\x00\x06\x04\x04TRUE0\x84\x00\x00\x00I\x04\x17supportedSASLMechanisms1\x84\x00\x00\x00*\x04\x06GSSAPI\x04\nGSS-SPNEGO\x04\x08EXTERNAL\x04\nDIGEST-MD50\x84\x00\x00\x00"\x04\x14supportedLDAPVersion1\x84\x00\x00\x00\x06\x04\x013\x04\x0120\x84\x00\x00\x01\x9a\x04\x15supportedLDAPPolicies1\x84\x00\x00\x01}\x04\x0eMaxPoolThreads\x04\x19MaxPercentDirSyncRequests\x04\x0fMaxDatagramRecv\x04\x10MaxReceiveBuffer\x04\x0fInitRecvTimeout\x04\x0eMaxConnections\x04\x0fMaxConnIdleTime\x04\x0bMaxPageSize\x04\x16MaxBatchReturnMessages\x04\x10MaxQueryDuration\x04\x12MaxDirSyncDuration\x04\x10MaxTempTableSize\x04\x10MaxResultSetSize\x04\rMinResultSets\x04\x14MaxResultSetsPerConn\x04\x16MaxNotificationPerConn\x04\x0bMaxValRange\x04\x15MaxValRangeTransitive\x04\x11ThreadMemoryLimit\x04\x18SystemMemoryLimitPercent0\x84\x00\x00\x03\xf4\x04\x10supportedControl1\x84\x00\x00\x03\xdc\x04\x161.2.840.113556.1.4.319\x04\x161.2.840.113556.1.4.801\x04\x161.2.840.113556.1.4.473\x04\x161.2.840.113556.1.4.528\x04\x161.2.840.113556.1.4.417\x04\x161.2.840.113556.1.4.619\x04\x161.2.840.113556.1.4.841\x04\x161.2.840.113556.1.4.529\x04\x161.2.840.113556.1.4.805\x04\x161.2.840.113556.1.4.521\x04\x161.2.840.113556.1.4.970\x04\x171.2.840.113556.1.4.1338\x04\x161.2.840.113556.1.4.474\x04\x171.2.840.113556.1.4.1339\x04\x171.2.840.113556.1.4.1340\x04\x171.2.840.113556.1.4.1413\x04\x172.16.840.1.113730.3.4.9\x04\x182.16.840.1.113730.3.4.10\x04\x171.2.840.113556.1.4.1504\x04\x171.2.840.113556.1.4.1852\x04\x161.2.840.113556.1.4.802\x04\x171.2.840.113556.1.4.1907\x04\x171.2.840.113556.1.4.1948\x04\x171.2.840.113556.1.4.1974\x04\x171.2.840.113556.1.4@\x06\x00\x00+z\xebgJ79\x03\xea\x05\x00\x00\xea\x05\x00\x00\x01\x00\x00 V\x00d\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x11\x00\x08\x00\x02\x00\x00\x00\x01\x00\x00\x06\xdc8\xe1\xa1uAE\xd2\xdc8\xe1\xa1\x98\x00\x00\x00*z\xebgf%;6<\x00\xc8\n\xa9\xf1E\xd2\xdc8\xe1\xa1uA\x08\x00E(\x05\xdc\xba\xf4 \xb9t\x114pz\x9b\x10}\xb9\x8e\xec$.1341\x04\x171.2.840.113556.1.4.2026\x04\x171.2.840.113556.1.4.2064\x04\x171.2.840.113556.1.4.2065\x04\x171.2.840.113556.1.4.2066\x04\x171.2.840.113556.1.4.2090\x04\x171.2.840.113556.1.4.2205\x04\x171.2.840.113556.1.4.2204\x04\x171.2.840.113556.1.4.2206\x04\x171.2.840.113556.1.4.2211\x04\x171.2.840.113556.1.4.2239\x04\x171.2.840.113556.1.4.2255\x04\x171.2.840.113556.1.4.2256\x04\x171.2.840.113556.1.4.2309\x04\x171.2.840.113556.1.4.2330\x04\x171.2.840.113556.1.4.23540\x84\x00\x00\x00\xb2\x04\x15supportedCapabilities1\x84\x00\x00\x00\x95\x04\x161.2.840.113556.1.4.800\x04\x171.2.840.113556.1.4.1670\x04\x171.2.840.113556.1.4.1791\x04\x171.2.840.113556.1.4.1935\x04\x171.2.840.113556.1.4.2080\x04\x171.2.840.113556.1.4.22370\x84\x00\x00\x00T\x04\x11subschemaSubentry1\x84\x00\x00\x00;\x049CN=Aggregate,CN=Schema,CN=Configuration,DC=bigboho,DC=com0\x84\x00\x00\x00o\x04\nserverName1\x84\x00\x00\x00]\x04[CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com0\x84\x00\x00\x00I\x04\x13schemaNamingContext1\x84\x00\x00\x00.\x04,CN=Schema,CN=Configuration,DC=bigboho,DC=com0\x84\x00\x00\x00\xc5\x04\x0enamingContexts1\x84\x00\x00\x00\xaf\x04\x11DC=bigboho,DC=com\x04"CN=Configuration,DC=bigboho,DC=com\x04,CN=Schema,CN=Configuration,DC=bigboho,DC=com\x04#DC=DomainDnsZones,DC=bigboho,DC=com\x04#DC=ForestDnsZones,DC=bigboho,DC=com0\x84\x00\x00\x00\x1c\x04\x0eisSynchronized1\x84\x00\x00\x00\x06\x04\x04TRUE0\x84\x00\x00\x00#\x04\x13highestCommittedUSN1\x84\x00\x00\x00\x08\x04\x065795070\x84\x00\x00\x00\x83\x04\rdsServiceName1\x84\x00\x00\x00n\x04lCN=NTDS Settings,CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com0\x84\x00\x00\x00\'\x04\x0bdnsHostName1\x84\x00\x00\x00\x14\x04\x12MAIL01.bigboho.com0\x84\x00\x00\x00/\x04\x14defaultNamingContext1\x84\x00\x00\x00\x13\x04\x11DC=bigboho,DC=com0\x84\x00\x00\x00&\x04\x0bcurrentTime1\x84\x00

443 / tcp

968619571 | 2025-04-03T16:18:01.120576

Hashes

hash

1239092885

http.dom_hash

35052746

http.favicon.hash

1768726119

http.html_hash

968619571

http.server_hash

608434861

http.title_hash

-480606949

Outlook

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/10.0
request-id: 83864761-a1f0-4be5-9300-40e2592da339
X-Frame-Options: SAMEORIGIN
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Thu, 03 Apr 2025 16:17:01 GMT
Content-Length: 58721


Microsoft Exchange:
  Name: Exchange Server 2019 CU15 (2025H1)
  Build Number: 15.2.1748.10
  Build Date: February 10, 2025

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1e:20:42:40:9c:12:fc:a6:4b:a5:16:5c:db:3b:13:0f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=MAIL01
        Validity
            Not Before: Feb 12 12:50:56 2025 GMT
            Not After : Feb 12 12:50:56 2030 GMT
        Subject: CN=MAIL01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e6:54:2f:b2:53:cf:b1:79:3a:9d:4a:66:fe:01:
                    51:3e:b0:11:34:6f:a5:ce:e4:b8:10:e0:3b:ff:74:
                    5f:e5:47:ac:20:cb:39:1c:4f:f4:33:9d:e8:bc:9b:
                    f4:20:df:86:06:3f:c1:ec:6e:79:d5:ab:88:2e:5a:
                    4d:ea:bf:bd:32:c2:39:e0:c1:a7:82:31:19:f4:36:
                    42:67:d9:92:4d:f8:61:93:e8:7d:97:a0:37:c1:75:
                    e5:c9:fc:f5:7e:f6:f3:3a:08:81:92:d5:7b:f1:0f:
                    4d:be:0f:35:a1:89:93:a4:e2:ec:e5:26:fc:b7:46:
                    4b:15:0c:f3:27:5e:1d:d7:74:4d:12:c0:38:3c:ec:
                    27:c3:21:dc:d3:3f:74:bc:26:7c:a4:a8:3a:ab:2f:
                    a9:c5:56:63:44:97:aa:9c:0f:f8:8a:b7:f1:f6:31:
                    09:0a:6b:58:8e:a1:7b:2c:3c:bf:d1:e1:a3:1a:c0:
                    cc:f2:b7:89:de:f2:67:e9:74:42:59:b1:42:ad:52:
                    23:e7:ec:ca:58:53:18:bb:d0:75:6d:6e:b6:9b:b5:
                    72:2b:4d:01:d0:eb:31:2d:ca:5a:9f:72:d7:f3:24:
                    be:ed:87:9d:af:58:0e:6d:42:0a:2c:c6:08:1f:13:
                    85:28:e2:48:51:54:97:f3:a6:c2:29:d1:3e:e0:c5:
                    39:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Subject Alternative Name: 
                DNS:MAIL01, DNS:MAIL01.bigboho.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3d:b5:04:d9:62:11:f0:0d:33:ce:e1:8f:b6:79:60:83:83:f0:
        8a:1d:ea:9c:d0:a2:4d:fd:d0:da:13:94:ae:58:3e:24:05:7c:
        a8:2b:7f:7b:58:3a:38:11:b5:d0:67:44:83:a9:10:25:f2:3c:
        e7:b6:b3:dd:34:15:9e:b2:b4:a8:21:37:e3:dc:30:57:35:e2:
        9e:27:3e:19:a9:e4:bd:2e:9c:86:12:a1:75:8d:3c:42:1c:74:
        8d:c0:8d:ca:12:29:6e:a5:47:f3:2f:0a:ab:ad:b8:6a:bb:1f:
        0a:63:e3:f5:d0:57:85:2a:fe:6e:c5:d3:7c:4b:49:de:c5:18:
        40:9a:6b:8f:99:0b:7b:47:0e:6a:c8:71:45:2b:b6:6d:ba:a5:
        2c:3e:f5:89:a7:4b:77:f7:de:ff:1f:f0:40:9e:40:5d:2a:e5:
        c6:56:4b:0e:e8:0a:e0:fb:51:e1:df:37:53:74:9d:a0:79:29:
        75:72:f9:4d:25:7e:a6:04:a5:e0:38:89:53:80:1b:f6:8a:cc:
        dd:a2:1a:b5:04:fc:54:b6:aa:ac:62:11:46:34:7d:18:6a:ef:
        a7:31:64:5a:8e:01:f4:58:14:9c:51:2d:d7:cb:ed:1a:81:e0:
        54:93:a2:39:d5:d1:63:e4:44:6e:6a:d9:46:64:a9:64:54:be:
        b3:51:8b:06

444 / tcp

946310393 | 2025-04-02T07:13:15.251041

Hashes

hash

86343971

http.dom_hash

882968181

http.html_hash

946310393

http.server_hash

608434861

http.title_hash

-954158227

Runtime Error

HTTP/1.1 500 Internal Server Error
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Wed, 02 Apr 2025 07:12:28 GMT
Content-Length: 3490

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1e:20:42:40:9c:12:fc:a6:4b:a5:16:5c:db:3b:13:0f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=MAIL01
        Validity
            Not Before: Feb 12 12:50:56 2025 GMT
            Not After : Feb 12 12:50:56 2030 GMT
        Subject: CN=MAIL01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e6:54:2f:b2:53:cf:b1:79:3a:9d:4a:66:fe:01:
                    51:3e:b0:11:34:6f:a5:ce:e4:b8:10:e0:3b:ff:74:
                    5f:e5:47:ac:20:cb:39:1c:4f:f4:33:9d:e8:bc:9b:
                    f4:20:df:86:06:3f:c1:ec:6e:79:d5:ab:88:2e:5a:
                    4d:ea:bf:bd:32:c2:39:e0:c1:a7:82:31:19:f4:36:
                    42:67:d9:92:4d:f8:61:93:e8:7d:97:a0:37:c1:75:
                    e5:c9:fc:f5:7e:f6:f3:3a:08:81:92:d5:7b:f1:0f:
                    4d:be:0f:35:a1:89:93:a4:e2:ec:e5:26:fc:b7:46:
                    4b:15:0c:f3:27:5e:1d:d7:74:4d:12:c0:38:3c:ec:
                    27:c3:21:dc:d3:3f:74:bc:26:7c:a4:a8:3a:ab:2f:
                    a9:c5:56:63:44:97:aa:9c:0f:f8:8a:b7:f1:f6:31:
                    09:0a:6b:58:8e:a1:7b:2c:3c:bf:d1:e1:a3:1a:c0:
                    cc:f2:b7:89:de:f2:67:e9:74:42:59:b1:42:ad:52:
                    23:e7:ec:ca:58:53:18:bb:d0:75:6d:6e:b6:9b:b5:
                    72:2b:4d:01:d0:eb:31:2d:ca:5a:9f:72:d7:f3:24:
                    be:ed:87:9d:af:58:0e:6d:42:0a:2c:c6:08:1f:13:
                    85:28:e2:48:51:54:97:f3:a6:c2:29:d1:3e:e0:c5:
                    39:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Subject Alternative Name: 
                DNS:MAIL01, DNS:MAIL01.bigboho.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3d:b5:04:d9:62:11:f0:0d:33:ce:e1:8f:b6:79:60:83:83:f0:
        8a:1d:ea:9c:d0:a2:4d:fd:d0:da:13:94:ae:58:3e:24:05:7c:
        a8:2b:7f:7b:58:3a:38:11:b5:d0:67:44:83:a9:10:25:f2:3c:
        e7:b6:b3:dd:34:15:9e:b2:b4:a8:21:37:e3:dc:30:57:35:e2:
        9e:27:3e:19:a9:e4:bd:2e:9c:86:12:a1:75:8d:3c:42:1c:74:
        8d:c0:8d:ca:12:29:6e:a5:47:f3:2f:0a:ab:ad:b8:6a:bb:1f:
        0a:63:e3:f5:d0:57:85:2a:fe:6e:c5:d3:7c:4b:49:de:c5:18:
        40:9a:6b:8f:99:0b:7b:47:0e:6a:c8:71:45:2b:b6:6d:ba:a5:
        2c:3e:f5:89:a7:4b:77:f7:de:ff:1f:f0:40:9e:40:5d:2a:e5:
        c6:56:4b:0e:e8:0a:e0:fb:51:e1:df:37:53:74:9d:a0:79:29:
        75:72:f9:4d:25:7e:a6:04:a5:e0:38:89:53:80:1b:f6:8a:cc:
        dd:a2:1a:b5:04:fc:54:b6:aa:ac:62:11:46:34:7d:18:6a:ef:
        a7:31:64:5a:8e:01:f4:58:14:9c:51:2d:d7:cb:ed:1a:81:e0:
        54:93:a2:39:d5:d1:63:e4:44:6e:6a:d9:46:64:a9:64:54:be:
        b3:51:8b:06

445 / tcp

-1166656618 | 2025-04-03T07:33:05.493590

SMB Status:
  Authentication: enabled
  SMB Version: 2
  Capabilities: raw-mode

Vulnerabilities

465 / tcp

787354333 | 2025-03-29T05:21:24.850230

220 MAIL01.bigboho.com Microsoft ESMTP MAIL Service ready at Sat, 29 Mar 2025 12:20:41 +0700\r\n

587 / tcp

-1783920186 | 2025-04-01T03:07:01.727041

220 MAIL01.bigboho.com Microsoft ESMTP MAIL Service ready at Tue, 1 Apr 2025 10:06:06 +0700
250-MAIL01.bigboho.com Hello [224.2.174.95]
250-SIZE 37748736
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-AUTH GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250 SMTPUTF8

SMTP NTLM Info:
  OS: Windows Server 2022
  OS Build: 10.0.20348
  Target Name: BIGBOHO
  NetBIOS Domain Name: BIGBOHO
  NetBIOS Computer Name: MAIL01
  DNS Domain Name: bigboho.com
  DNS Tree Name: bigboho.com
  FQDN: MAIL01.bigboho.com

593 / tcp

-1178803597 | 2025-04-06T14:51:05.729123

ncacn_http/1.0

Microsoft RPC Endpoint Mapper over HTTP

51a227ae-825b-41f2-b4a9-1ac9557a1018
  version: v1.0
  annotation: Ngc Pop Key Service
  ncacn_ip_tcp: 122.155.16.125:6834
  ncalrpc: NETLOGON_LRPC
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
  version: v1.0
  annotation: Ngc Pop Key Service
  ncacn_ip_tcp: 122.155.16.125:6834
  ncalrpc: NETLOGON_LRPC
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
  version: v2.0
  annotation: KeyIso
  ncacn_ip_tcp: 122.155.16.125:6834
  ncalrpc: NETLOGON_LRPC
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

12345678-1234-abcd-ef00-01234567cffb
  version: v1.0
  protocol: [MS-NRPC]: Netlogon Remote Protocol
  provider: netlogon.dll
  ncacn_ip_tcp: 122.155.16.125:6834
  ncalrpc: NETLOGON_LRPC
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

0b1c2170-5732-4e0e-8cd3-d9b16f3b84d7
  version: v0.0
  annotation: RemoteAccessCheck
  protocol: [MS-RAA]: Remote Authorization API Protocol
  ncalrpc: NETLOGON_LRPC
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass
  ncalrpc: NETLOGON_LRPC
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

12345778-1234-abcd-ef00-0123456789ab
  version: v0.0
  protocol: [MS-LSAT]: Local Security Authority (Translation Methods) Remote
  provider: lsasrv.dll
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

f5cc5a18-4264-101a-8c59-08002b2f8426
  version: v56.0
  annotation: MS NT Directory NSP Interface
  protocol: [MS-NSPI]: Name Service Provider Interface (NSPI) Protocol
  provider: ntdsai.dll
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

e3514235-4b06-11d1-ab04-00c04fc2dcd2
  version: v4.0
  annotation: MS NT Directory DRS Interface
  protocol: [MS-DRSR]: Directory Replication Service (DRS) Remote Protocol
  provider: ntdsai.dll
  ncacn_np: \\MAIL01\pipe\8ada03979d9e042a
  ncacn_ip_http: 122.155.16.125:6828
  ncalrpc: NTDS_LPC
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
  version: v1.0
  annotation: Impl friendly name
  provider: sysntfy.dll
  ncacn_ip_tcp: 122.155.16.125:6404
  ncalrpc: OLEA1FB6995C62DE357D1528F0B9E77
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass
  ncalrpc: LRPC-44625f51f71a234dcd
  ncalrpc: LRPC-1cb70062534bc942f5
  ncalrpc: LRPC-c878045fd628ea581e
  ncalrpc: senssvc
  ncalrpc: IUserProfile2

12345778-1234-abcd-ef00-0123456789ac
  version: v1.0
  protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
  provider: samsrv.dll
  ncacn_ip_tcp: 122.155.16.125:6400
  ncalrpc: MicrosoftLaps_LRPC_0fb2f016-fe45-4a08-a7f9-a467f5e5fa0b
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\MAIL01\pipe\lsass

d95afe70-a6d5-4259-822e-2c84da1ddb0d
  version: v1.0
  protocol: [MS-RSP]: Remote Shutdown Protocol
  provider: wininit.exe
  ncacn_ip_tcp: 122.155.16.125:6401
  ncalrpc: WindowsShutdown
  ncacn_np: \\MAIL01\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0829A0

76f226c3-ec14-4325-8a99-6a46348418af
  version: v1.0
  provider: winlogon.exe
  ncalrpc: WindowsShutdown
  ncacn_np: \\MAIL01\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0829A0
  ncalrpc: WMsgKRpc083201

fc48cd89-98d6-4628-9839-86f7a3e4161a
  version: v1.0
  ncalrpc: dabrpc
  ncalrpc: csebpub
  ncalrpc: LRPC-4b385a63ac6fb5eb33
  ncalrpc: LRPC-098d9ff64b7d4d3d73
  ncalrpc: LRPC-cb1d619eda46186a8a
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

d09bdeb5-6171-4a34-bfe2-06fa82652568
  version: v1.0
  ncalrpc: csebpub
  ncalrpc: LRPC-4b385a63ac6fb5eb33
  ncalrpc: LRPC-098d9ff64b7d4d3d73
  ncalrpc: LRPC-cb1d619eda46186a8a
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-098d9ff64b7d4d3d73
  ncalrpc: LRPC-cb1d619eda46186a8a
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-cb1d619eda46186a8a
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-b2cf2ad108c97544ea
  ncalrpc: LRPC-46412976e575552c87

697dcda9-3ba9-4eb2-9247-e11f1901b0d2
  version: v1.0
  ncalrpc: LRPC-4b385a63ac6fb5eb33
  ncalrpc: LRPC-098d9ff64b7d4d3d73
  ncalrpc: LRPC-cb1d619eda46186a8a
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

9b008953-f195-4bf9-bde0-4471971e58ed
  version: v1.0
  ncalrpc: LRPC-098d9ff64b7d4d3d73
  ncalrpc: LRPC-cb1d619eda46186a8a
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

0d47017b-b33b-46ad-9e18-fe96456c5078
  version: v1.0
  ncalrpc: umpo

95406f0b-b239-4318-91bb-cea3a46ff0dc
  version: v1.0
  ncalrpc: umpo

4ed8abcc-f1e2-438b-981f-bb0e8abc010c
  version: v1.0
  ncalrpc: umpo

0ff1f646-13bb-400a-ab50-9a78f2b7a85a
  version: v1.0
  ncalrpc: umpo

6982a06e-5fe2-46b1-b39c-a2c545bfa069
  version: v1.0
  ncalrpc: umpo

082a3471-31b6-422a-b931-a54401960c62
  version: v1.0
  ncalrpc: umpo

fae436b0-b864-4a87-9eda-298547cd82f2
  version: v1.0
  ncalrpc: umpo

e53d94ca-7464-4839-b044-09a2fb8b3ae5
  version: v1.0
  ncalrpc: umpo

178d84be-9291-4994-82c6-3f909aca5a03
  version: v1.0
  ncalrpc: umpo

4dace966-a243-4450-ae3f-9b7bcb5315b8
  version: v2.0
  ncalrpc: umpo

1832bcf6-cab8-41d4-85d2-c9410764f75a
  version: v1.0
  ncalrpc: umpo

c521facf-09a9-42c5-b155-72388595cbf0
  version: v0.0
  ncalrpc: umpo

2c7fd9ce-e706-4b40-b412-953107ef9bb0
  version: v0.0
  ncalrpc: umpo

88abcbc3-34ea-76ae-8215-767520655a23
  version: v0.0
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

76c217bc-c8b4-4201-a745-373ad9032b1a
  version: v1.0
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

55e6b932-1979-45d6-90c5-7f6270724112
  version: v1.0
  ncalrpc: LRPC-b752b6805b91055b2d
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
  version: v1.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

20c40295-8dba-48e6-aebf-3e78ef3bb144
  version: v2.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

2513bcbe-6cd4-4348-855e-7efb3c336dd3
  version: v2.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
  version: v1.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
  version: v1.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
  version: v1.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
  version: v1.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

2d98a740-581d-41b9-aa0d-a88b9d5ce938
  version: v1.0
  ncalrpc: LRPC-f38ef4c2eb7e96d037
  ncalrpc: OLEBE03A75B4090BC74E0E416BEF49B
  ncalrpc: actkernel
  ncalrpc: umpo

dd59071b-3215-4c59-8481-972edadc0f6a
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

0361ae94-0316-4c6c-8ad8-c594375800e2
  version: v1.0
  ncalrpc: umpo

5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
  version: v1.0
  ncalrpc: umpo

bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
  version: v1.0
  ncalrpc: umpo

3b338d89-6cfa-44b8-847e-531531bc9992
  version: v1.0
  ncalrpc: umpo

8782d3b9-ebbd-4644-a3d8-e8725381919b
  version: v1.0
  ncalrpc: umpo

085b0334-e454-4d91-9b8c-4134f9e793f3
  version: v1.0
  ncalrpc: umpo

4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
  version: v1.0
  ncalrpc: umpo

e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
  version: v1.0
  ncalrpc: LRPC-5a298a5b6f15361cb2

880fd55e-43b9-11e0-b1a8-cf4edfd72085
  version: v1.0
  annotation: KAPI Service endpoint
  ncalrpc: LRPC-d9af83829624bf3ba8
  ncalrpc: OLE403F8A2ED3096C18FD2975B94331
  ncalrpc: LRPC-b2cf2ad108c97544ea

5222821f-d5e2-4885-84f1-5f6185a0ec41
  version: v1.0
  ncalrpc: LRPC-191e96651772804f06

12e65dd8-887f-41ef-91bf-8d816c42c2e7
  version: v1.0
  annotation: Secure Desktop LRPC interface
  provider: winlogon.exe
  ncalrpc: WMsgKRpc083201

a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
  version: v1.0
  ncalrpc: LRPC-faa71279f899c31d9a
  ncalrpc: LRPC-46412976e575552c87

f6beaff7-1e19-4fbb-9f8f-b89e2018337c
  version: v1.0
  annotation: Event log TCPIP
  protocol: [MS-EVEN6]: EventLog Remoting Protocol
  provider: wevtsvc.dll
  ncacn_ip_tcp: 122.155.16.125:6402
  ncacn_np: \\MAIL01\pipe\eventlog
  ncalrpc: eventlog

7ea70bcf-48af-4f6a-8968-6a440754d5fa
  version: v1.0
  annotation: NSI server endpoint
  provider: nsisvc.dll
  ncalrpc: LRPC-ec4806051f5ff91a56

2eb08e3e-639f-4fba-97b1-14f878961076
  version: v1.0
  annotation: Group Policy RPC Interface
  provider: gpsvc.dll
  ncalrpc: LRPC-2cfeac011f861ca1d0

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
  version: v1.0
  annotation: DHCP Client LRPC Endpoint
  provider: dhcpcsvc.dll
  ncalrpc: dhcpcsvc
  ncalrpc: dhcpcsvc6

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
  version: v1.0
  annotation: DHCPv6 Client LRPC Endpoint
  provider: dhcpcsvc6.dll
  ncalrpc: dhcpcsvc6

3a9ef155-691d-4449-8d05-09ad57031823
  version: v1.0
  ncacn_ip_tcp: 122.155.16.125:6403
  ncalrpc: LRPC-159af007438ab81afe
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\MAIL01\PIPE\atsvc
  ncalrpc: LRPC-83bd042a72eee0dfbc

86d35949-83c9-4044-b424-db363231fd0c
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: schedsvc.dll
  ncacn_ip_tcp: 122.155.16.125:6403
  ncalrpc: LRPC-159af007438ab81afe
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\MAIL01\PIPE\atsvc
  ncalrpc: LRPC-83bd042a72eee0dfbc

33d84484-3626-47ee-8c6f-e7e98b113be1
  version: v2.0
  ncalrpc: LRPC-159af007438ab81afe
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\MAIL01\PIPE\atsvc
  ncalrpc: LRPC-83bd042a72eee0dfbc

378e52b0-c0a9-11cf-822d-00aa0051e40f
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\MAIL01\PIPE\atsvc
  ncalrpc: LRPC-83bd042a72eee0dfbc

1ff70682-0a51-30e8-076d-740be8cee98b
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\MAIL01\PIPE\atsvc
  ncalrpc: LRPC-83bd042a72eee0dfbc

0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
  version: v1.0
  provider: schedsvc.dll
  ncalrpc: LRPC-83bd042a72eee0dfbc

30adc50c-5cbc-46ce-9a0e-91914789e23c
  version: v1.0
  annotation: NRP server endpoint
  provider: nrpsrv.dll
  ncalrpc: LRPC-f6cbef8f308628a7ce
  ncalrpc: DNSResolver

2fb92682-6599-42dc-ae13-bd2ca89bd11c
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-00b8702f36a2842bf1
  ncalrpc: LRPC-912c70b295cec6cc4b
  ncalrpc: LRPC-c85f17735711ac78e0
  ncalrpc: LRPC-70a0ae16f0a323a726

f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
  version: v1.0
  annotation: Fw APIs
  ncalrpc: LRPC-912c70b295cec6cc4b
  ncalrpc: LRPC-c85f17735711ac78e0
  ncalrpc: LRPC-70a0ae16f0a323a726

7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-c85f17735711ac78e0
  ncalrpc: LRPC-70a0ae16f0a323a726

dd490425-5325-4565-b774-7e27d6c09c24
  version: v1.0
  annotation: Base Firewall Engine API
  provider: BFE.DLL
  ncalrpc: LRPC-70a0ae16f0a323a726

3473dd4d-2e88-4006-9cba-22570909dd10
  version: v5.256
  annotation: WinHttp Auto-Proxy Service
  ncalrpc: da15d208-0618-4ebd-a6d1-f53f66c6d38d
  ncalrpc: LRPC-e484ab56c5d027c828

7f1343fe-50a9-4927-a778-0c5859517bac
  version: v1.0
  annotation: DfsDs service
  ncacn_np: \\MAIL01\PIPE\wkssvc
  ncalrpc: LRPC-5af8c4ada884544a2b

eb081a0d-10ee-478a-a1dd-50995283e7a8
  version: v3.0
  annotation: Witness Client Test Interface
  ncalrpc: LRPC-5af8c4ada884544a2b

f2c9b409-c1c9-4100-8639-d8ab1486694a
  version: v1.0
  annotation: Witness Client Upcall Server
  ncalrpc: LRPC-5af8c4ada884544a2b

3f787932-3452-4363-8651-6ea97bb373bb
  version: v1.0
  annotation: NSP Rpc Interface
  ncalrpc: LRPC-c07e22172de0bfe285
  ncalrpc: OLEAB672ACA2DFDAB5527F68FF59E0C

13560fa9-8c09-4b56-a1fd-04d083b9b2a1
  version: v1.0
  ncalrpc: LRPC-c3fbec75c314365774
  ncalrpc: OLEAAE987084FC146BA357937524554

c2d1b5dd-fa81-4460-9dd6-e7658b85454b
  version: v1.0
  ncalrpc: LRPC-c3fbec75c314365774
  ncalrpc: OLEAAE987084FC146BA357937524554

f44e62af-dab1-44c2-8013-049a9de417d6
  version: v1.0
  ncalrpc: LRPC-c3fbec75c314365774
  ncalrpc: OLEAAE987084FC146BA357937524554

b37f900a-eae4-4304-a2ab-12bb668c0188
  version: v1.0
  ncalrpc: LRPC-c3fbec75c314365774
  ncalrpc: OLEAAE987084FC146BA357937524554

abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
  version: v1.0
  ncalrpc: LRPC-c3fbec75c314365774
  ncalrpc: OLEAAE987084FC146BA357937524554

0d3c7f20-1c8d-4654-a1b3-51563b298bda
  version: v1.0
  annotation: UserMgrCli
  ncalrpc: LRPC-0bb34087a24bfe215f
  ncalrpc: OLEE22834EF4CB9593905056086AA94

b18fbab6-56f8-4702-84e0-41053293a869
  version: v1.0
  annotation: UserMgrCli
  ncalrpc: LRPC-0bb34087a24bfe215f
  ncalrpc: OLEE22834EF4CB9593905056086AA94

1a0d010f-1c33-432c-b0f5-8cf4e8053099
  version: v1.0
  annotation: IdSegSrv service
  ncalrpc: LRPC-4fe87033b75a14a688

98716d03-89ac-44c7-bb8c-285824e51c4a
  version: v1.0
  annotation: XactSrv service
  provider: srvsvc.dll
  ncalrpc: LRPC-4fe87033b75a14a688

76f03f96-cdfd-44fc-a22c-64950a001209
  version: v1.0
  protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 122.155.16.125:6829
  ncalrpc: LRPC-6233427515a0693e31

4a452661-8290-4b36-8fbe-7f4093a94978
  version: v1.0
  provider: spoolsv.exe
  ncacn_ip_tcp: 122.155.16.125:6829
  ncalrpc: LRPC-6233427515a0693e31

ae33069b-a2a8-46ee-a235-ddfd339be281
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 122.155.16.125:6829
  ncalrpc: LRPC-6233427515a0693e31

0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 122.155.16.125:6829
  ncalrpc: LRPC-6233427515a0693e31

12345678-1234-abcd-ef00-0123456789ab
  version: v1.0
  protocol: [MS-RPRN]: Print System Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 122.155.16.125:6829
  ncalrpc: LRPC-6233427515a0693e31

b58aa02e-2884-4e97-8176-4ee06d794184
  version: v1.0
  provider: sysmain.dll
  ncalrpc: LRPC-467991ab09416a39c7

c36be077-e14b-4fe9-8abc-e856ef4f048b
  version: v1.0
  annotation: Proxy Manager client server endpoint
  ncalrpc: OLE25C51F98D43156B88814619C1D6E
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-83c6659bb5400ad6cc

2e6035b2-e8f1-41a7-a044-656b439c4c34
  version: v1.0
  annotation: Proxy Manager provider server endpoint
  ncalrpc: OLE25C51F98D43156B88814619C1D6E
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-83c6659bb5400ad6cc

c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
  version: v1.0
  annotation: Adh APIs
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-83c6659bb5400ad6cc

552d076a-cb29-4e44-8b6a-d15e59e2c0af
  version: v1.0
  annotation: IP Transition Configuration endpoint
  provider: iphlpsvc.dll
  ncalrpc: LRPC-83c6659bb5400ad6cc

1d45e083-478f-437c-9618-3594ced8c235
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

98cd761e-e77d-41c8-a3c0-0fb756d90ec2
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

d22895ef-aff4-42c5-a5b2-b14466d34ab4
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

e38f5360-8572-473e-b696-1b46873beeab
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

95095ec8-32ea-4eb0-a3e2-041f97b36168
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

4c9dbf19-d39e-4bb9-90ee-8f7179b20283
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

d4051bde-9cdd-4910-b393-4aa85ec3c482
  version: v1.0
  ncalrpc: LRPC-97707a463f12fc8a74
  ncalrpc: OLE933D55609C85506C80BB2041EF5B

7df1ceae-de4e-4e6f-ab14-49636e7c2052
  version: v1.0
  ncalrpc: LRPC-a9a2d304735e3b342d

906b0ce0-c70b-1067-b317-00dd010662da
  version: v1.0
  protocol: [MS-CMPO]: MSDTC Connection Manager:
  provider: msdtcprx.dll
  ncalrpc: LRPC-2fb7b3b208e1c8a152
  ncalrpc: OLE6C2E82881220311E390A39700FA5
  ncalrpc: LRPC-03c1d7a095ce56e5df
  ncalrpc: LRPC-03c1d7a095ce56e5df
  ncalrpc: LRPC-03c1d7a095ce56e5df

50abc2a4-574d-40b3-9d66-ee4fd5fba076
  version: v5.0
  protocol: [MS-DNSP]: Domain Name Service (DNS) Server Management
  provider: dns.exe
  ncacn_ip_tcp: 122.155.16.125:6850

897e2e5f-93f3-4376-9c9c-fd2277495c27
  version: v1.0
  annotation: Frs2 Service
  protocol: [MS-FRS2]: Distributed File System Replication Protocol
  provider: dfsrmig.exe
  ncacn_ip_tcp: 122.155.16.125:6855
  ncalrpc: OLE6F5E7843D08300E4D2A52EDD8D51

5df3c257-334b-4e96-9efb-a0619255be09
  version: v1.0
  annotation: 1284	MSExchangeThrottling
  ncalrpc: LRPC-e79a241004d89cadad
  ncacn_ip_tcp: 122.155.16.125:6942
  ncalrpc: OLE334E63EF4F94F908BD100CF891FD
  ncalrpc: LRPC-e79a241004d89cadad
  ncacn_ip_tcp: 122.155.16.125:6942
  ncalrpc: OLE334E63EF4F94F908BD100CF891FD
  ncalrpc: LRPC-3d0142b5788d8dc93f
  ncacn_ip_tcp: 122.155.16.125:6944
  ncalrpc: OLE7DA8A969DDE8298AB76632DB828C
  ncalrpc: LRPC-3d0142b5788d8dc93f
  ncacn_ip_tcp: 122.155.16.125:6944
  ncalrpc: OLE7DA8A969DDE8298AB76632DB828C
  ncalrpc: LRPC-63f761cd2a8433fa03
  ncacn_ip_tcp: 122.155.16.125:6962
  ncalrpc: OLE3D08BFA796DE7ADAC2652F2C0B00
  ncalrpc: LRPC-63f761cd2a8433fa03
  ncacn_ip_tcp: 122.155.16.125:6962
  ncalrpc: OLE3D08BFA796DE7ADAC2652F2C0B00
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLEB3991232ABDA01C4C965E29E530D
  ncacn_ip_tcp: 122.155.16.125:43721
  ncalrpc: LRPC-59823d417cfa2febc8
  ncalrpc: OLEB3991232ABDA01C4C965E29E530D
  ncacn_ip_tcp: 122.155.16.125:43721
  ncalrpc: LRPC-59823d417cfa2febc8
  ncalrpc: OLEB3991232ABDA01C4C965E29E530D
  ncacn_ip_tcp: 122.155.16.125:43721
  ncalrpc: LRPC-59823d417cfa2febc8
  ncalrpc: OLEC6AC489027B2536390C748FE3D81
  ncacn_ip_tcp: 122.155.16.125:43341
  ncalrpc: LRPC-6d93c2f2c3bc7465bb
  ncalrpc: OLEC6AC489027B2536390C748FE3D81
  ncacn_ip_tcp: 122.155.16.125:43341
  ncalrpc: LRPC-6d93c2f2c3bc7465bb
  ncalrpc: OLEC6AC489027B2536390C748FE3D81
  ncacn_ip_tcp: 122.155.16.125:43341
  ncalrpc: LRPC-6d93c2f2c3bc7465bb
  ncalrpc: OLEE3859DFBF84159524467CEA858FA
  ncacn_ip_tcp: 122.155.16.125:42285
  ncalrpc: LRPC-d8f4e5013ab45572f7
  ncalrpc: OLEE3859DFBF84159524467CEA858FA
  ncacn_ip_tcp: 122.155.16.125:42285
  ncalrpc: LRPC-d8f4e5013ab45572f7
  ncalrpc: OLE6F0B908605E3DC18C8CBAD79CBB0
  ncacn_ip_tcp: 122.155.16.125:8104
  ncalrpc: LRPC-4e9b39e62e4d9e2e7c
  ncalrpc: OLE6F0B908605E3DC18C8CBAD79CBB0
  ncacn_ip_tcp: 122.155.16.125:8104
  ncalrpc: LRPC-4e9b39e62e4d9e2e7c
  ncalrpc: OLEF605A4BE8BAD84CD99507061872C
  ncacn_ip_tcp: 122.155.16.125:7966
  ncalrpc: LRPC-ee3dadf845183d1e49
  ncalrpc: OLEF605A4BE8BAD84CD99507061872C
  ncacn_ip_tcp: 122.155.16.125:7966
  ncalrpc: LRPC-ee3dadf845183d1e49
  ncalrpc: OLE68A50998260A5AD78333402920B3
  ncacn_ip_tcp: 122.155.16.125:7781
  ncalrpc: LRPC-7706c1b6e6589f57a0
  ncalrpc: OLE68A50998260A5AD78333402920B3
  ncacn_ip_tcp: 122.155.16.125:7781
  ncalrpc: LRPC-7706c1b6e6589f57a0
  ncalrpc: OLE2DC59143945C825A16CD1D65090D
  ncacn_ip_tcp: 122.155.16.125:7605
  ncalrpc: LRPC-eca87ef76886fa22db
  ncalrpc: OLE2DC59143945C825A16CD1D65090D
  ncacn_ip_tcp: 122.155.16.125:7605
  ncalrpc: LRPC-eca87ef76886fa22db
  ncalrpc: OLE4310F348792FE7ABDFC01B48442E
  ncacn_ip_tcp: 122.155.16.125:7574
  ncalrpc: LRPC-1e864dacf0ae2fcbf4
  ncalrpc: OLE4310F348792FE7ABDFC01B48442E
  ncacn_ip_tcp: 122.155.16.125:7574
  ncalrpc: LRPC-1e864dacf0ae2fcbf4
  ncalrpc: OLE4310F348792FE7ABDFC01B48442E
  ncacn_ip_tcp: 122.155.16.125:7574
  ncalrpc: LRPC-1e864dacf0ae2fcbf4
  ncalrpc: OLE57DDFAB47AE6271F96B33804CFB6
  ncacn_ip_tcp: 122.155.16.125:7558
  ncalrpc: LRPC-c2cc3fcc8532d517d7
  ncalrpc: OLE57DDFAB47AE6271F96B33804CFB6
  ncacn_ip_tcp: 122.155.16.125:7558
  ncalrpc: LRPC-c2cc3fcc8532d517d7
  ncalrpc: OLEB8AC0AC4CA04B493E5E0B5BFFE53
  ncacn_ip_tcp: 122.155.16.125:7548
  ncalrpc: LRPC-5835ebc30277221936
  ncalrpc: OLEB8AC0AC4CA04B493E5E0B5BFFE53
  ncacn_ip_tcp: 122.155.16.125:7548
  ncalrpc: LRPC-5835ebc30277221936
  ncalrpc: OLEB8AC0AC4CA04B493E5E0B5BFFE53
  ncacn_ip_tcp: 122.155.16.125:7548
  ncalrpc: LRPC-5835ebc30277221936
  ncalrpc: OLE5C9ED3EF5EA2981AECAEAB8E2101
  ncacn_ip_tcp: 122.155.16.125:7524
  ncalrpc: LRPC-d90a473d386ef13b6a
  ncalrpc: OLE5C9ED3EF5EA2981AECAEAB8E2101
  ncacn_ip_tcp: 122.155.16.125:7524
  ncalrpc: LRPC-d90a473d386ef13b6a
  ncalrpc: OLECE2A09EE4E882E99DAE334EFA12E
  ncacn_ip_tcp: 122.155.16.125:7506
  ncalrpc: LRPC-ca2c2685a96b2789bf
  ncalrpc: OLECE2A09EE4E882E99DAE334EFA12E
  ncacn_ip_tcp: 122.155.16.125:7506
  ncalrpc: LRPC-ca2c2685a96b2789bf
  ncalrpc: OLE6F91CD2EABFD232B7399E8C33D64
  ncacn_ip_tcp: 122.155.16.125:7443
  ncalrpc: LRPC-57e5546f2abdbccc63
  ncalrpc: OLE6F91CD2EABFD232B7399E8C33D64
  ncacn_ip_tcp: 122.155.16.125:7443
  ncalrpc: LRPC-57e5546f2abdbccc63
  ncalrpc: OLE657004EBA656E208BA2DC783489D
  ncacn_ip_tcp: 122.155.16.125:7411
  ncalrpc: LRPC-073154e4922e223a50
  ncalrpc: OLE657004EBA656E208BA2DC783489D
  ncacn_ip_tcp: 122.155.16.125:7411
  ncalrpc: LRPC-073154e4922e223a50
  ncalrpc: OLE657004EBA656E208BA2DC783489D
  ncacn_ip_tcp: 122.155.16.125:7411
  ncalrpc: LRPC-073154e4922e223a50
  ncalrpc: OLEFF7E2451B306C8F06BDEE355E7EB
  ncacn_ip_tcp: 122.155.16.125:7401
  ncalrpc: LRPC-84d73233e06dbfe7d5
  ncalrpc: OLEFF7E2451B306C8F06BDEE355E7EB
  ncacn_ip_tcp: 122.155.16.125:7401
  ncalrpc: LRPC-84d73233e06dbfe7d5
  ncalrpc: OLE012740A1366D1E1C51293220F5BE
  ncacn_ip_tcp: 122.155.16.125:7284
  ncalrpc: LRPC-c6a718449b84b62663
  ncalrpc: OLE012740A1366D1E1C51293220F5BE
  ncacn_ip_tcp: 122.155.16.125:7284
  ncalrpc: LRPC-c6a718449b84b62663
  ncalrpc: OLE0D3CBE69DD9CBE8A70AD712C6C1B
  ncacn_ip_tcp: 122.155.16.125:7272
  ncalrpc: LRPC-f59e21c8a69b56c9d3
  ncalrpc: OLE0D3CBE69DD9CBE8A70AD712C6C1B
  ncacn_ip_tcp: 122.155.16.125:7272
  ncalrpc: LRPC-f59e21c8a69b56c9d3
  ncalrpc: OLE103433D4FF11EEE245F26DF59DCF
  ncacn_ip_tcp: 122.155.16.125:7243
  ncalrpc: LRPC-6821434d7fcb53484b
  ncalrpc: OLE103433D4FF11EEE245F26DF59DCF
  ncacn_ip_tcp: 122.155.16.125:7243
  ncalrpc: LRPC-6821434d7fcb53484b
  ncalrpc: OLE103433D4FF11EEE245F26DF59DCF
  ncacn_ip_tcp: 122.155.16.125:7243
  ncalrpc: LRPC-6821434d7fcb53484b
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLE878CE6C109FD29B89298139929A3
  ncacn_ip_tcp: 122.155.16.125:7163
  ncalrpc: LRPC-97d65d592ee5ff3f2a
  ncalrpc: OLE878CE6C109FD29B89298139929A3
  ncacn_ip_tcp: 122.155.16.125:7163
  ncalrpc: LRPC-97d65d592ee5ff3f2a
  ncalrpc: OLE154E43D70ACDBC4356C8BD666A52
  ncacn_ip_tcp: 122.155.16.125:7139
  ncalrpc: LRPC-09942c8e640c9fb59f
  ncalrpc: OLE154E43D70ACDBC4356C8BD666A52
  ncacn_ip_tcp: 122.155.16.125:7139
  ncalrpc: LRPC-09942c8e640c9fb59f
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096
  ncalrpc: OLEBE84AF7D0A58A33D67B7ABEB9C92
  ncacn_ip_tcp: 122.155.16.125:7075
  ncalrpc: LRPC-77273300fe2dc88b7f
  ncalrpc: OLEBE84AF7D0A58A33D67B7ABEB9C92
  ncacn_ip_tcp: 122.155.16.125:7075
  ncalrpc: LRPC-77273300fe2dc88b7f
  ncalrpc: OLEE5087B5CEFCAF8E9C77BF3DF5CC9
  ncacn_ip_tcp: 122.155.16.125:7063
  ncalrpc: LRPC-95139fd9a5e980d63b
  ncalrpc: OLEE5087B5CEFCAF8E9C77BF3DF5CC9
  ncacn_ip_tcp: 122.155.16.125:7063
  ncalrpc: LRPC-95139fd9a5e980d63b
  ncalrpc: OLE35565EA9DEE8016C74D8CE94E804
  ncacn_ip_tcp: 122.155.16.125:7048
  ncalrpc: LRPC-4f87c0213a785ace84
  ncalrpc: OLE35565EA9DEE8016C74D8CE94E804
  ncacn_ip_tcp: 122.155.16.125:7048
  ncalrpc: LRPC-4f87c0213a785ace84
  ncalrpc: OLE3888995A7D9AD74AAA934FA9A8BA
  ncacn_ip_tcp: 122.155.16.125:7046
  ncalrpc: LRPC-545a4f928cb5a61114
  ncalrpc: OLE3888995A7D9AD74AAA934FA9A8BA
  ncacn_ip_tcp: 122.155.16.125:7046
  ncalrpc: LRPC-545a4f928cb5a61114
  ncalrpc: OLE843EF1F249AF15F910EB975D1338
  ncacn_ip_tcp: 122.155.16.125:7033
  ncalrpc: LRPC-12b547d999e4b076fa
  ncalrpc: OLE843EF1F249AF15F910EB975D1338
  ncacn_ip_tcp: 122.155.16.125:7033
  ncalrpc: LRPC-12b547d999e4b076fa
  ncalrpc: OLE78356EBD9DB6D6EDEB1231BFDF06
  ncacn_ip_tcp: 122.155.16.125:7027
  ncalrpc: LRPC-a7a07f534b91630bd8
  ncalrpc: OLE78356EBD9DB6D6EDEB1231BFDF06
  ncacn_ip_tcp: 122.155.16.125:7027
  ncalrpc: LRPC-a7a07f534b91630bd8
  ncalrpc: OLE90EF8776EC9E87317A9A43CBEC28
  ncacn_ip_tcp: 122.155.16.125:7022
  ncalrpc: LRPC-9483b269b9d6173586
  ncalrpc: OLE90EF8776EC9E87317A9A43CBEC28
  ncacn_ip_tcp: 122.155.16.125:7022
  ncalrpc: LRPC-9483b269b9d6173586
  ncalrpc: OLE14C6D6E3DEB15E2B96E18897608D
  ncacn_ip_tcp: 122.155.16.125:7019
  ncalrpc: LRPC-762979eaa68eb1ba80
  ncalrpc: OLE14C6D6E3DEB15E2B96E18897608D
  ncacn_ip_tcp: 122.155.16.125:7019
  ncalrpc: LRPC-762979eaa68eb1ba80
  ncalrpc: OLE349031AA662718B5805752D869BA
  ncacn_ip_tcp: 122.155.16.125:6977
  ncalrpc: LRPC-0e0918a2f0511f328e
  ncalrpc: OLE349031AA662718B5805752D869BA
  ncacn_ip_tcp: 122.155.16.125:6977
  ncalrpc: LRPC-0e0918a2f0511f328e
  ncalrpc: OLE9D8725DDC0D08F29DB7756C48612
  ncacn_ip_tcp: 122.155.16.125:6975
  ncalrpc: LRPC-7d8b96e6efebeda31f
  ncalrpc: OLE9D8725DDC0D08F29DB7756C48612
  ncacn_ip_tcp: 122.155.16.125:6975
  ncalrpc: LRPC-7d8b96e6efebeda31f
  ncalrpc: OLEF787FCF4C549B7059798BFDDB68F
  ncacn_ip_tcp: 122.155.16.125:6970
  ncalrpc: LRPC-eeb102d2e65dbb592a
  ncalrpc: OLEF787FCF4C549B7059798BFDDB68F
  ncacn_ip_tcp: 122.155.16.125:6970
  ncalrpc: LRPC-eeb102d2e65dbb592a
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

4d88f820-8c32-4453-9e30-7297e2fcf025
  version: v1.0
  ncalrpc: LRPC-e79a241004d89cadad
  ncacn_ip_tcp: 122.155.16.125:6942
  ncalrpc: OLE334E63EF4F94F908BD100CF891FD

f1f21151-7185-4170-ac8d-9bb077c29bd3
  version: v1.0
  ncalrpc: LRPC-c398bed8aa6a8726fc
  ncacn_ip_tcp: 122.155.16.125:6952
  ncalrpc: OLEF3C26DDBD76AEA31B9FFEFA6FDB0

5a4d59fe-42ac-4c6e-b554-b12c6af35956
  version: v1.0
  ncalrpc: LRPC-63f761cd2a8433fa03
  ncacn_ip_tcp: 122.155.16.125:6962
  ncalrpc: OLE3D08BFA796DE7ADAC2652F2C0B00

245a2854-fcdf-4215-adf4-0b4c364e79fb
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

d014c423-0d54-40a3-90dc-56c7a6071e6f
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

b396a3ff-9203-4c75-a367-244cf29b419f
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

8fd9e884-86a5-4b2f-bc7c-2adaa75d0469
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

37c6221b-cc4b-47ae-8366-7449f2fe9a06
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

20434699-5e7e-47d6-95f6-698c4a0ec2f0
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

d9318e75-8a8b-4abb-88e7-aceb01f09e60
  version: v1.0
  ncalrpc: LRPC-5c49ffdecd66eaec0e
  ncacn_ip_tcp: 122.155.16.125:6965
  ncalrpc: OLE1A277FFD678A9B03C94B608509DA

c503f532-443a-4c69-8300-ccd1fbdb3839
  version: v2.0
  ncalrpc: OLE9D3D2CAA39431C0E363F97B20D4D
  ncalrpc: LRPC-909ec98499a816490e

f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
  version: v1.0
  ncalrpc: LRPC-9bb0ae39e2ba04725c

a4b8d482-80ce-40d6-934d-b22a01a44fe7
  version: v1.0
  annotation: LicenseManager
  ncalrpc: LicenseServiceEndpoint

bf4dc912-e52f-4904-8ebe-9317c1bdd497
  version: v1.0
  ncalrpc: OLEECD84EA62154C36970D5DA2BF144
  ncalrpc: LRPC-a6c942ac5685498150

8ec21e98-b5ce-4916-a3d6-449fa428a007
  version: v0.0
  ncalrpc: OLE60D6F88085E1B9E9D4F631675AF0
  ncalrpc: LRPC-e73e99a54a916b91b5

0fc77b1a-95d8-4a2e-a0c0-cff54237462b
  version: v0.0
  ncalrpc: OLE60D6F88085E1B9E9D4F631675AF0
  ncalrpc: LRPC-e73e99a54a916b91b5

b1ef227e-dfa5-421e-82bb-67a6a129c496
  version: v0.0
  ncalrpc: OLE60D6F88085E1B9E9D4F631675AF0
  ncalrpc: LRPC-e73e99a54a916b91b5

0767a036-0d22-48aa-ba69-b619480f38cb
  version: v1.0
  annotation: PcaSvc
  provider: pcasvc.dll
  ncalrpc: LRPC-ba943e1b77b88faf09

8384fc47-956a-4d1e-ab2a-1205014f96ec
  version: v1.0
  ncalrpc: OLE012740A1366D1E1C51293220F5BE
  ncacn_ip_tcp: 122.155.16.125:7284
  ncalrpc: LRPC-c6a718449b84b62663

bd5790c9-d855-42b0-990f-3dfed8c184b3
  version: v1.0
  ncalrpc: OLE012740A1366D1E1C51293220F5BE
  ncacn_ip_tcp: 122.155.16.125:7284
  ncalrpc: LRPC-c6a718449b84b62663

640aa52e-d472-443a-952c-4d3fe97f480c
  version: v1.0
  ncalrpc: OLE012740A1366D1E1C51293220F5BE
  ncacn_ip_tcp: 122.155.16.125:7284
  ncalrpc: LRPC-c6a718449b84b62663

41f5fae1-e0ac-414c-a721-0d287466cb23
  version: v1.0
  ncalrpc: OLE012740A1366D1E1C51293220F5BE
  ncacn_ip_tcp: 122.155.16.125:7284
  ncalrpc: LRPC-c6a718449b84b62663

d8140e00-5c46-4ae6-80ac-2f9a76df224c
  version: v0.0
  ncalrpc: LRPC-6d1c10f819e2fa9913

d249bd56-4cc0-4fd3-8ce6-6fe050d590cb
  version: v0.0
  ncalrpc: LRPC-6d1c10f819e2fa9913

89742ace-a9ed-11cf-9c0c-08002be7ae86
  version: v2.0
  annotation: Exchange Server STORE Admin20 Interface
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

99e64010-b032-11d0-97a4-00c04fd6551d
  version: v4.0
  annotation: Exchange Server STORE Admin40 Interface
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

da107c01-2b50-44d7-9d5f-bfd4fd8e95ed
  version: v5.0
  annotation: Exchange Server STORE Admin50 Interface
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

938fe036-ede6-4f6c-966e-a3d7300279c8
  version: v0.256
  annotation: EmsmdbPool Interface
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

9b48e5eb-b4cd-4b6d-ae73-656e0a777bda
  version: v0.256
  annotation: EmsmdbPoolNotify Interface
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

10f24e8e-0fa6-11d2-a910-00c04f990f3b
  version: v1.0
  annotation: 7d1aaf16-6465-44ab-908d-f4ea7cc5aa8e
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768

1453c42c-0fa6-11d2-a910-00c04f990f3b
  version: v1.0
  annotation: 7d1aaf16-6465-44ab-908d-f4ea7cc5aa8e
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768

bf6dd426-77b4-44b3-984e-d413fc075562
  version: v2.0
  annotation: 7d1aaf16-6465-44ab-908d-f4ea7cc5aa8e
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768

0e4a0156-dd5d-11d2-8c2f-00c04fb6bcde
  version: v1.0
  annotation: 7d1aaf16-6465-44ab-908d-f4ea7cc5aa8e
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768

a9e05b20-6f57-4e24-a540-52412017e6ff
  version: v1.0
  annotation: 7d1aaf16-6465-44ab-908d-f4ea7cc5aa8e
  ncalrpc: OLEE49898DB42D804B214B727B01D50
  ncacn_ip_tcp: 122.155.16.125:7198
  ncalrpc: LRPC-9b9970f775990e2768

4a020372-bb0a-4031-a5a7-7c6896522c00
  version: v1.0
  ncalrpc: OLE878CE6C109FD29B89298139929A3
  ncacn_ip_tcp: 122.155.16.125:7163
  ncalrpc: LRPC-97d65d592ee5ff3f2a

76c0d124-a18e-49d4-adf1-d8c6ba868ea6
  version: v1.0
  ncalrpc: OLE878CE6C109FD29B89298139929A3
  ncacn_ip_tcp: 122.155.16.125:7163
  ncalrpc: LRPC-97d65d592ee5ff3f2a

37fc1b02-da36-4b27-a745-bf2f58a98ff6
  version: v3.0
  ncalrpc: OLE154E43D70ACDBC4356C8BD666A52
  ncacn_ip_tcp: 122.155.16.125:7139
  ncalrpc: LRPC-09942c8e640c9fb59f

f224209f-9076-40f7-98ad-5416dbfa178e
  version: v3.0
  ncalrpc: OLE154E43D70ACDBC4356C8BD666A52
  ncacn_ip_tcp: 122.155.16.125:7139
  ncalrpc: LRPC-09942c8e640c9fb59f

509bc7ae-77be-4ee8-b07c-0d096bb44345
  version: v1.0
  ncalrpc: OLE6ABA11BC4383C1E9A9840A9F013B
  ncalrpc: LRPC-7b841aa3a0517ecc4a

df831451-edad-415d-905f-9d3793f92db3
  version: v0.20736
  annotation: Exchange Server STORE EmsmdbMT Proxy Interface
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

31e68719-d4fc-401a-8788-bc56169a336b
  version: v0.256
  ncalrpc: OLE8904EFA5B1D18A990BDE4999FF8F
  ncalrpc: LRPC-d494ae1c1a9f31b2a6
  ncacn_ip_tcp: 122.155.16.125:7096

367abb81-9844-35f1-ad32-98f038001003
  version: v2.0
  protocol: [MS-SCMR]: Service Control Manager Remote Protocol
  provider: services.exe
  ncacn_ip_tcp: 122.155.16.125:7070

52d3f3f5-248c-4d74-a01f-a06e41d5cd59
  version: v1.0
  ncalrpc: OLE8D0E2E5D0E9DC589A9D1B89B67B0
  ncacn_ip_tcp: 122.155.16.125:7034
  ncalrpc: LRPC-6cabd0affbcb5c5095

5261574a-4572-206e-b268-6b199213b4e4
  version: v0.256
  protocol: [MS-OXCRPC]: Wire Format Protocol
  ncalrpc: OLE14C6D6E3DEB15E2B96E18897608D
  ncacn_ip_tcp: 122.155.16.125:7019
  ncalrpc: LRPC-762979eaa68eb1ba80
  ncacn_ip_http: 122.155.16.125:6001

a4f1db00-ca47-1067-b31f-00dd010662da
  version: v0.20736
  protocol: [MS-OXCRPC]: Wire Format Protocol
  ncalrpc: OLE14C6D6E3DEB15E2B96E18897608D
  ncacn_ip_tcp: 122.155.16.125:7019
  ncalrpc: LRPC-762979eaa68eb1ba80
  ncacn_ip_http: 122.155.16.125:6001

ba3fa067-8d56-4b56-ba1f-9cbae8db3478
  version: v1.0
  ncalrpc: OLE14C6D6E3DEB15E2B96E18897608D
  ncacn_ip_tcp: 122.155.16.125:7019
  ncalrpc: LRPC-762979eaa68eb1ba80
  ncacn_ip_http: 122.155.16.125:6001

1544f5e0-613c-11d1-93df-00c04fd7bd09
  version: v1.0
  annotation: Microsoft Exchange RFR Interface
  protocol: [MS-OXABREF]: Address Book Name Service Provider Interface (NSPI) Referral Protocol
  ncalrpc: OLE14C6D6E3DEB15E2B96E18897608D
  ncacn_ip_tcp: 122.155.16.125:7019
  ncalrpc: LRPC-762979eaa68eb1ba80
  ncacn_ip_http: 122.155.16.125:6001

ecca92d9-07d1-4136-87f7-2ac4109337ee
  version: v7.0
  ncalrpc: OLE9D8725DDC0D08F29DB7756C48612
  ncacn_ip_tcp: 122.155.16.125:6975
  ncalrpc: LRPC-7d8b96e6efebeda31f

636 / tcp

444662139 | 2025-04-08T00:04:13.600854

LDAP:
  SupportedExtension:
    1.2.840.113556.1.4.1781
    1.2.840.113556.1.4.2212
    1.3.6.1.4.1.1466.101.119.1
    1.3.6.1.4.1.1466.20037
    1.3.6.1.4.1.4203.1.11.3
  SupportedSASLMechanisms:
    DIGEST-MD5
    EXTERNAL
    GSS-SPNEGO
    GSSAPI
  SupportedLDAPVersion:
    2
    3
  SupportedLDAPPolicies:
    InitRecvTimeout
    MaxBatchReturnMessages
    MaxConnIdleTime
    MaxConnections
    MaxDatagramRecv
    MaxDirSyncDuration
    MaxNotificationPerConn
    MaxPageSize
    MaxPercentDirSyncRequests
    MaxPoolThreads
    MaxQueryDuration
    MaxReceiveBuffer
    MaxResultSetSize
    MaxResultSetsPerConn
    MaxTempTableSize
    MaxValRange
    MaxValRangeTransitive
    MinResultSets
    SystemMemoryLimitPercent
    ThreadMemoryLimit
  SupportedControl:
    1.2.840.113556.1.4.1338
    1.2.840.113556.1.4.1339
    1.2.840.113556.1.4.1340
    1.2.840.113556.1.4.1341
    1.2.840.113556.1.4.1413
    1.2.840.113556.1.4.1504
    1.2.840.113556.1.4.1852
    1.2.840.113556.1.4.1907
    1.2.840.113556.1.4.1948
    1.2.840.113556.1.4.1974
    1.2.840.113556.1.4.2026
    1.2.840.113556.1.4.2064
    1.2.840.113556.1.4.2065
    1.2.840.113556.1.4.2066
    1.2.840.113556.1.4.2090
    1.2.840.113556.1.4.2204
    1.2.840.113556.1.4.2205
    1.2.840.113556.1.4.2206
    1.2.840.113556.1.4.2211
    1.2.840.113556.1.4.2239
    1.2.840.113556.1.4.2255
    1.2.840.113556.1.4.2256
    1.2.840.113556.1.4.2309
    1.2.840.113556.1.4.2330
    1.2.840.113556.1.4.2354
    1.2.840.113556.1.4.319
    1.2.840.113556.1.4.417
    1.2.840.113556.1.4.473
    1.2.840.113556.1.4.474
    1.2.840.113556.1.4.521
    1.2.840.113556.1.4.528
    1.2.840.113556.1.4.529
    1.2.840.113556.1.4.619
    1.2.840.113556.1.4.801
    1.2.840.113556.1.4.802
    1.2.840.113556.1.4.805
    1.2.840.113556.1.4.841
    1.2.840.113556.1.4.970
    2.16.840.1.113730.3.4.10
    2.16.840.1.113730.3.4.9
  SupportedCapabilities:
    1.2.840.113556.1.4.1670
    1.2.840.113556.1.4.1791
    1.2.840.113556.1.4.1935
    1.2.840.113556.1.4.2080
    1.2.840.113556.1.4.2237
    1.2.840.113556.1.4.800
  SubschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=bigboho,DC=com
  ServerName: CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com
  SchemaNamingContext: CN=Schema,CN=Configuration,DC=bigboho,DC=com
  RootDomainNamingContext: DC=bigboho,DC=com
  NamingContexts:
    CN=Configuration,DC=bigboho,DC=com
    CN=Schema,CN=Configuration,DC=bigboho,DC=com
    DC=DomainDnsZones,DC=bigboho,DC=com
    DC=ForestDnsZones,DC=bigboho,DC=com
    DC=bigboho,DC=com
  LdapServiceName: bigboho.com:mail01$@BIGBOHO.COM
  IsSynchronized: TRUE
  IsGlobalCatalogReady: TRUE
  HighestCommittedUSN: 688319
  ForestFunctionality: 7
  DsServiceName: CN=NTDS Settings,CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com
  DomainFunctionality: 7
  DnsHostName: MAIL01.bigboho.com
  DefaultNamingContext: DC=bigboho,DC=com
  CurrentTime: 20250408000310.0Z
  ConfigurationNamingContext: CN=Configuration,DC=bigboho,DC=com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1e:20:42:40:9c:12:fc:a6:4b:a5:16:5c:db:3b:13:0f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=MAIL01
        Validity
            Not Before: Feb 12 12:50:56 2025 GMT
            Not After : Feb 12 12:50:56 2030 GMT
        Subject: CN=MAIL01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e6:54:2f:b2:53:cf:b1:79:3a:9d:4a:66:fe:01:
                    51:3e:b0:11:34:6f:a5:ce:e4:b8:10:e0:3b:ff:74:
                    5f:e5:47:ac:20:cb:39:1c:4f:f4:33:9d:e8:bc:9b:
                    f4:20:df:86:06:3f:c1:ec:6e:79:d5:ab:88:2e:5a:
                    4d:ea:bf:bd:32:c2:39:e0:c1:a7:82:31:19:f4:36:
                    42:67:d9:92:4d:f8:61:93:e8:7d:97:a0:37:c1:75:
                    e5:c9:fc:f5:7e:f6:f3:3a:08:81:92:d5:7b:f1:0f:
                    4d:be:0f:35:a1:89:93:a4:e2:ec:e5:26:fc:b7:46:
                    4b:15:0c:f3:27:5e:1d:d7:74:4d:12:c0:38:3c:ec:
                    27:c3:21:dc:d3:3f:74:bc:26:7c:a4:a8:3a:ab:2f:
                    a9:c5:56:63:44:97:aa:9c:0f:f8:8a:b7:f1:f6:31:
                    09:0a:6b:58:8e:a1:7b:2c:3c:bf:d1:e1:a3:1a:c0:
                    cc:f2:b7:89:de:f2:67:e9:74:42:59:b1:42:ad:52:
                    23:e7:ec:ca:58:53:18:bb:d0:75:6d:6e:b6:9b:b5:
                    72:2b:4d:01:d0:eb:31:2d:ca:5a:9f:72:d7:f3:24:
                    be:ed:87:9d:af:58:0e:6d:42:0a:2c:c6:08:1f:13:
                    85:28:e2:48:51:54:97:f3:a6:c2:29:d1:3e:e0:c5:
                    39:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Subject Alternative Name: 
                DNS:MAIL01, DNS:MAIL01.bigboho.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3d:b5:04:d9:62:11:f0:0d:33:ce:e1:8f:b6:79:60:83:83:f0:
        8a:1d:ea:9c:d0:a2:4d:fd:d0:da:13:94:ae:58:3e:24:05:7c:
        a8:2b:7f:7b:58:3a:38:11:b5:d0:67:44:83:a9:10:25:f2:3c:
        e7:b6:b3:dd:34:15:9e:b2:b4:a8:21:37:e3:dc:30:57:35:e2:
        9e:27:3e:19:a9:e4:bd:2e:9c:86:12:a1:75:8d:3c:42:1c:74:
        8d:c0:8d:ca:12:29:6e:a5:47:f3:2f:0a:ab:ad:b8:6a:bb:1f:
        0a:63:e3:f5:d0:57:85:2a:fe:6e:c5:d3:7c:4b:49:de:c5:18:
        40:9a:6b:8f:99:0b:7b:47:0e:6a:c8:71:45:2b:b6:6d:ba:a5:
        2c:3e:f5:89:a7:4b:77:f7:de:ff:1f:f0:40:9e:40:5d:2a:e5:
        c6:56:4b:0e:e8:0a:e0:fb:51:e1:df:37:53:74:9d:a0:79:29:
        75:72:f9:4d:25:7e:a6:04:a5:e0:38:89:53:80:1b:f6:8a:cc:
        dd:a2:1a:b5:04:fc:54:b6:aa:ac:62:11:46:34:7d:18:6a:ef:
        a7:31:64:5a:8e:01:f4:58:14:9c:51:2d:d7:cb:ed:1a:81:e0:
        54:93:a2:39:d5:d1:63:e4:44:6e:6a:d9:46:64:a9:64:54:be:
        b3:51:8b:06

2525 / tcp

1621765939 | 2025-03-11T03:16:42.883356

220 MAIL01.bigboho.com Microsoft ESMTP MAIL Service ready at Tue, 11 Mar 2025 10:16:17 +0700\r\n

3268 / tcp

109608373 | 2025-03-31T14:18:55.952844

LDAP:
  SupportedExtension:
    1.2.840.113556.1.4.1781
    1.2.840.113556.1.4.2212
    1.3.6.1.4.1.1466.101.119.1
    1.3.6.1.4.1.1466.20037
    1.3.6.1.4.1.4203.1.11.3
  SupportedSASLMechanisms:
    DIGEST-MD5
    EXTERNAL
    GSS-SPNEGO
    GSSAPI
  SupportedLDAPVersion:
    2
    3
  SupportedLDAPPolicies:
    InitRecvTimeout
    MaxBatchReturnMessages
    MaxConnIdleTime
    MaxConnections
    MaxDatagramRecv
    MaxDirSyncDuration
    MaxNotificationPerConn
    MaxPageSize
    MaxPercentDirSyncRequests
    MaxPoolThreads
    MaxQueryDuration
    MaxReceiveBuffer
    MaxResultSetSize
    MaxResultSetsPerConn
    MaxTempTableSize
    MaxValRange
    MaxValRangeTransitive
    MinResultSets
    SystemMemoryLimitPercent
    ThreadMemoryLimit
  SupportedControl:
    1.2.840.113556.1.4.1338
    1.2.840.113556.1.4.1339
    1.2.840.113556.1.4.1340
    1.2.840.113556.1.4.1341
    1.2.840.113556.1.4.1413
    1.2.840.113556.1.4.1504
    1.2.840.113556.1.4.1852
    1.2.840.113556.1.4.1907
    1.2.840.113556.1.4.1948
    1.2.840.113556.1.4.1974
    1.2.840.113556.1.4.2026
    1.2.840.113556.1.4.2064
    1.2.840.113556.1.4.2065
    1.2.840.113556.1.4.2066
    1.2.840.113556.1.4.2090
    1.2.840.113556.1.4.2204
    1.2.840.113556.1.4.2205
    1.2.840.113556.1.4.2206
    1.2.840.113556.1.4.2211
    1.2.840.113556.1.4.2239
    1.2.840.113556.1.4.2255
    1.2.840.113556.1.4.2256
    1.2.840.113556.1.4.2309
    1.2.840.113556.1.4.2330
    1.2.840.113556.1.4.2354
    1.2.840.113556.1.4.319
    1.2.840.113556.1.4.417
    1.2.840.113556.1.4.473
    1.2.840.113556.1.4.474
    1.2.840.113556.1.4.521
    1.2.840.113556.1.4.528
    1.2.840.113556.1.4.529
    1.2.840.113556.1.4.619
    1.2.840.113556.1.4.801
    1.2.840.113556.1.4.802
    1.2.840.113556.1.4.805
    1.2.840.113556.1.4.841
    1.2.840.113556.1.4.970
    2.16.840.1.113730.3.4.10
    2.16.840.1.113730.3.4.9
  SupportedCapabilities:
    1.2.840.113556.1.4.1670
    1.2.840.113556.1.4.1791
    1.2.840.113556.1.4.1935
    1.2.840.113556.1.4.2080
    1.2.840.113556.1.4.2237
    1.2.840.113556.1.4.800
  SubschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=bigboho,DC=com
  ServerName: CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com
  SchemaNamingContext: CN=Schema,CN=Configuration,DC=bigboho,DC=com
  RootDomainNamingContext: DC=bigboho,DC=com
  NamingContexts:
    CN=Configuration,DC=bigboho,DC=com
    CN=Schema,CN=Configuration,DC=bigboho,DC=com
    DC=DomainDnsZones,DC=bigboho,DC=com
    DC=ForestDnsZones,DC=bigboho,DC=com
    DC=bigboho,DC=com
  LdapServiceName: bigboho.com:mail01$@BIGBOHO.COM
  IsSynchronized: TRUE
  IsGlobalCatalogReady: TRUE
  HighestCommittedUSN: 567961
  ForestFunctionality: 7
  DsServiceName: CN=NTDS Settings,CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com
  DomainFunctionality: 7
  DnsHostName: MAIL01.bigboho.com
  DefaultNamingContext: DC=bigboho,DC=com
  CurrentTime: 20250331141810.0Z
  ConfigurationNamingContext: CN=Configuration,DC=bigboho,DC=com

3269 / tcp

1913155359 | 2025-03-22T04:48:19.705262

LDAP:
  SupportedExtension:
    1.2.840.113556.1.4.1781
    1.2.840.113556.1.4.2212
    1.3.6.1.4.1.1466.101.119.1
    1.3.6.1.4.1.1466.20037
    1.3.6.1.4.1.4203.1.11.3
  SupportedSASLMechanisms:
    DIGEST-MD5
    EXTERNAL
    GSS-SPNEGO
    GSSAPI
  SupportedLDAPVersion:
    2
    3
  SupportedLDAPPolicies:
    InitRecvTimeout
    MaxBatchReturnMessages
    MaxConnIdleTime
    MaxConnections
    MaxDatagramRecv
    MaxDirSyncDuration
    MaxNotificationPerConn
    MaxPageSize
    MaxPercentDirSyncRequests
    MaxPoolThreads
    MaxQueryDuration
    MaxReceiveBuffer
    MaxResultSetSize
    MaxResultSetsPerConn
    MaxTempTableSize
    MaxValRange
    MaxValRangeTransitive
    MinResultSets
    SystemMemoryLimitPercent
    ThreadMemoryLimit
  SupportedControl:
    1.2.840.113556.1.4.1338
    1.2.840.113556.1.4.1339
    1.2.840.113556.1.4.1340
    1.2.840.113556.1.4.1341
    1.2.840.113556.1.4.1413
    1.2.840.113556.1.4.1504
    1.2.840.113556.1.4.1852
    1.2.840.113556.1.4.1907
    1.2.840.113556.1.4.1948
    1.2.840.113556.1.4.1974
    1.2.840.113556.1.4.2026
    1.2.840.113556.1.4.2064
    1.2.840.113556.1.4.2065
    1.2.840.113556.1.4.2066
    1.2.840.113556.1.4.2090
    1.2.840.113556.1.4.2204
    1.2.840.113556.1.4.2205
    1.2.840.113556.1.4.2206
    1.2.840.113556.1.4.2211
    1.2.840.113556.1.4.2239
    1.2.840.113556.1.4.2255
    1.2.840.113556.1.4.2256
    1.2.840.113556.1.4.2309
    1.2.840.113556.1.4.2330
    1.2.840.113556.1.4.2354
    1.2.840.113556.1.4.319
    1.2.840.113556.1.4.417
    1.2.840.113556.1.4.473
    1.2.840.113556.1.4.474
    1.2.840.113556.1.4.521
    1.2.840.113556.1.4.528
    1.2.840.113556.1.4.529
    1.2.840.113556.1.4.619
    1.2.840.113556.1.4.801
    1.2.840.113556.1.4.802
    1.2.840.113556.1.4.805
    1.2.840.113556.1.4.841
    1.2.840.113556.1.4.970
    2.16.840.1.113730.3.4.10
    2.16.840.1.113730.3.4.9
  SupportedCapabilities:
    1.2.840.113556.1.4.1670
    1.2.840.113556.1.4.1791
    1.2.840.113556.1.4.1935
    1.2.840.113556.1.4.2080
    1.2.840.113556.1.4.2237
    1.2.840.113556.1.4.800
  SubschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=bigboho,DC=com
  ServerName: CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com
  SchemaNamingContext: CN=Schema,CN=Configuration,DC=bigboho,DC=com
  RootDomainNamingContext: DC=bigboho,DC=com
  NamingContexts:
    CN=Configuration,DC=bigboho,DC=com
    CN=Schema,CN=Configuration,DC=bigboho,DC=com
    DC=DomainDnsZones,DC=bigboho,DC=com
    DC=ForestDnsZones,DC=bigboho,DC=com
    DC=bigboho,DC=com
  LdapServiceName: bigboho.com:mail01$@BIGBOHO.COM
  IsSynchronized: TRUE
  IsGlobalCatalogReady: TRUE
  HighestCommittedUSN: 414723
  ForestFunctionality: 7
  DsServiceName: CN=NTDS Settings,CN=MAIL01,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=bigboho,DC=com
  DomainFunctionality: 7
  DnsHostName: MAIL01.bigboho.com
  DefaultNamingContext: DC=bigboho,DC=com
  CurrentTime: 20250322044727.0Z
  ConfigurationNamingContext: CN=Configuration,DC=bigboho,DC=com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1e:20:42:40:9c:12:fc:a6:4b:a5:16:5c:db:3b:13:0f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=MAIL01
        Validity
            Not Before: Feb 12 12:50:56 2025 GMT
            Not After : Feb 12 12:50:56 2030 GMT
        Subject: CN=MAIL01
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e6:54:2f:b2:53:cf:b1:79:3a:9d:4a:66:fe:01:
                    51:3e:b0:11:34:6f:a5:ce:e4:b8:10:e0:3b:ff:74:
                    5f:e5:47:ac:20:cb:39:1c:4f:f4:33:9d:e8:bc:9b:
                    f4:20:df:86:06:3f:c1:ec:6e:79:d5:ab:88:2e:5a:
                    4d:ea:bf:bd:32:c2:39:e0:c1:a7:82:31:19:f4:36:
                    42:67:d9:92:4d:f8:61:93:e8:7d:97:a0:37:c1:75:
                    e5:c9:fc:f5:7e:f6:f3:3a:08:81:92:d5:7b:f1:0f:
                    4d:be:0f:35:a1:89:93:a4:e2:ec:e5:26:fc:b7:46:
                    4b:15:0c:f3:27:5e:1d:d7:74:4d:12:c0:38:3c:ec:
                    27:c3:21:dc:d3:3f:74:bc:26:7c:a4:a8:3a:ab:2f:
                    a9:c5:56:63:44:97:aa:9c:0f:f8:8a:b7:f1:f6:31:
                    09:0a:6b:58:8e:a1:7b:2c:3c:bf:d1:e1:a3:1a:c0:
                    cc:f2:b7:89:de:f2:67:e9:74:42:59:b1:42:ad:52:
                    23:e7:ec:ca:58:53:18:bb:d0:75:6d:6e:b6:9b:b5:
                    72:2b:4d:01:d0:eb:31:2d:ca:5a:9f:72:d7:f3:24:
                    be:ed:87:9d:af:58:0e:6d:42:0a:2c:c6:08:1f:13:
                    85:28:e2:48:51:54:97:f3:a6:c2:29:d1:3e:e0:c5:
                    39:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Subject Alternative Name: 
                DNS:MAIL01, DNS:MAIL01.bigboho.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        3d:b5:04:d9:62:11:f0:0d:33:ce:e1:8f:b6:79:60:83:83:f0:
        8a:1d:ea:9c:d0:a2:4d:fd:d0:da:13:94:ae:58:3e:24:05:7c:
        a8:2b:7f:7b:58:3a:38:11:b5:d0:67:44:83:a9:10:25:f2:3c:
        e7:b6:b3:dd:34:15:9e:b2:b4:a8:21:37:e3:dc:30:57:35:e2:
        9e:27:3e:19:a9:e4:bd:2e:9c:86:12:a1:75:8d:3c:42:1c:74:
        8d:c0:8d:ca:12:29:6e:a5:47:f3:2f:0a:ab:ad:b8:6a:bb:1f:
        0a:63:e3:f5:d0:57:85:2a:fe:6e:c5:d3:7c:4b:49:de:c5:18:
        40:9a:6b:8f:99:0b:7b:47:0e:6a:c8:71:45:2b:b6:6d:ba:a5:
        2c:3e:f5:89:a7:4b:77:f7:de:ff:1f:f0:40:9e:40:5d:2a:e5:
        c6:56:4b:0e:e8:0a:e0:fb:51:e1:df:37:53:74:9d:a0:79:29:
        75:72:f9:4d:25:7e:a6:04:a5:e0:38:89:53:80:1b:f6:8a:cc:
        dd:a2:1a:b5:04:fc:54:b6:aa:ac:62:11:46:34:7d:18:6a:ef:
        a7:31:64:5a:8e:01:f4:58:14:9c:51:2d:d7:cb:ed:1a:81:e0:
        54:93:a2:39:d5:d1:63:e4:44:6e:6a:d9:46:64:a9:64:54:be:
        b3:51:8b:06

5357 / tcp

-1684583448 | 2025-04-07T08:41:38.331473

Hashes

hash

551508970

http.dom_hash

1386055181

http.html_hash

-1684583448

http.server_hash

-761617706

http.title_hash

-1682908569

Service Unavailable

HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 07 Apr 2025 08:40:46 GMT
Connection: close
Content-Length: 326

5985 / tcp

1489525118 | 2025-04-08T01:11:25.018007

Hashes

hash

-1836436477

http.dom_hash

1386055181

http.html_hash

1489525118

http.server_hash

-761617706

http.title_hash

1009235027

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 08 Apr 2025 01:10:31 GMT
Connection: close
Content-Length: 315

6001 / tcp

1308377066 | 2025-03-22T19:05:49.273826

ncacn_http/1.0

122.155.16.125

Last Seen: 2025-04-09

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 445 Latest CVSS

OpenPorts

25 / tcp -1982390914 | 2025-04-06T10:26:27.050344

53 / udp -553166942 | 2025-04-01T15:32:33.132004

80 / tcp 0 | 2025-03-27T09:58:18.063892

Hashes

81 / tcp -985096807 | 2025-03-16T06:35:25.634639

Hashes

88 / udp -727652549 | 2025-04-09T04:20:40.260055

389 / tcp 17166471 | 2025-03-29T11:54:03.030949

389 / udp 1890219123 | 2025-04-01T06:19:28.360904

443 / tcp 968619571 | 2025-04-03T16:18:01.120576

Hashes

444 / tcp 946310393 | 2025-04-02T07:13:15.251041

Hashes

445 / tcp -1166656618 | 2025-04-03T07:33:05.493590

465 / tcp 787354333 | 2025-03-29T05:21:24.850230

587 / tcp -1783920186 | 2025-04-01T03:07:01.727041

593 / tcp -1178803597 | 2025-04-06T14:51:05.729123

636 / tcp 444662139 | 2025-04-08T00:04:13.600854

2525 / tcp 1621765939 | 2025-03-11T03:16:42.883356

3268 / tcp 109608373 | 2025-03-31T14:18:55.952844

3269 / tcp 1913155359 | 2025-03-22T04:48:19.705262

5357 / tcp -1684583448 | 2025-04-07T08:41:38.331473

Hashes

5985 / tcp 1489525118 | 2025-04-08T01:11:25.018007

Hashes

6001 / tcp 1308377066 | 2025-03-22T19:05:49.273826

Products

Pricing

Contact Us

Vulnerabilities

25 / tcp

-1982390914 | 2025-04-06T10:26:27.050344

53 / udp

-553166942 | 2025-04-01T15:32:33.132004

80 / tcp

0 | 2025-03-27T09:58:18.063892

81 / tcp

-985096807 | 2025-03-16T06:35:25.634639

88 / udp

-727652549 | 2025-04-09T04:20:40.260055

389 / tcp

17166471 | 2025-03-29T11:54:03.030949

389 / udp

1890219123 | 2025-04-01T06:19:28.360904

443 / tcp

968619571 | 2025-04-03T16:18:01.120576

444 / tcp

946310393 | 2025-04-02T07:13:15.251041

445 / tcp

-1166656618 | 2025-04-03T07:33:05.493590

465 / tcp

787354333 | 2025-03-29T05:21:24.850230

587 / tcp

-1783920186 | 2025-04-01T03:07:01.727041

593 / tcp

-1178803597 | 2025-04-06T14:51:05.729123

636 / tcp

444662139 | 2025-04-08T00:04:13.600854

2525 / tcp

1621765939 | 2025-03-11T03:16:42.883356

3268 / tcp

109608373 | 2025-03-31T14:18:55.952844

3269 / tcp

1913155359 | 2025-03-22T04:48:19.705262

5357 / tcp

-1684583448 | 2025-04-07T08:41:38.331473

5985 / tcp

1489525118 | 2025-04-08T01:11:25.018007

6001 / tcp

1308377066 | 2025-03-22T19:05:49.273826