-119375469 | 2024-10-12T19:12:22.520938
80 /
tcp
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Tue, 08 Aug 2017 01:02:51 GMT
Accept-Ranges: bytes
ETag: "a1b7e5ee2fd31:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Sat, 12 Oct 2024 19:12:22 GMT
Content-Length: 689
-1155349521 | 2024-10-25T19:47:36.997642
110 /
tcp
HTTP/1.0 200 OK
Server: Proxy
Unauthorized ...
IP Address: 224.222.221.230
MAC Address:
Server Time: 2024-10-26 03:47:36
Auth Result: 无效用户.
1545511145 | 2024-10-12T01:40:05.044411
135 /
tcp
Microsoft RPC Endpoint Mapper
d95afe70-a6d5-4259-822e-2c84da1ddb0d
version: v1.0
protocol: [MS-RSP]: Remote Shutdown Protocol
provider: wininit.exe
ncacn_ip_tcp: 172.24.124.208:49152
ncalrpc: WindowsShutdown
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\InitShutdown
ncalrpc: WMsgKRpc0FAE90
76f226c3-ec14-4325-8a99-6a46348418af
version: v1.0
provider: winlogon.exe
ncalrpc: WindowsShutdown
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\InitShutdown
ncalrpc: WMsgKRpc0FAE90
ncalrpc: WMsgKRpc0FC281
c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
version: v1.0
annotation: Impl friendly name
provider: sysntfy.dll
ncalrpc: LRPC-2911fba3f0f3972a0d
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\srvsvc
ncacn_ip_tcp: 172.24.124.208:49154
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
ncalrpc: IUserProfile2
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
version: v1.0
annotation: DHCPv6 Client LRPC Endpoint
provider: dhcpcsvc6.dll
ncalrpc: dhcpcsvc6
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 172.24.124.208:49153
ncacn_np: \\iZy8pdh2tba4n7Z\pipe\eventlog
ncalrpc: eventlog
3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
version: v1.0
annotation: DHCP Client LRPC Endpoint
provider: dhcpcsvc.dll
ncalrpc: dhcpcsvc
ncacn_ip_tcp: 172.24.124.208:49153
ncacn_np: \\iZy8pdh2tba4n7Z\pipe\eventlog
ncalrpc: eventlog
30adc50c-5cbc-46ce-9a0e-91914789e23c
version: v1.0
annotation: NRP server endpoint
provider: nrpsrv.dll
ncacn_ip_tcp: 172.24.124.208:49153
ncacn_np: \\iZy8pdh2tba4n7Z\pipe\eventlog
ncalrpc: eventlog
f6beaff7-1e19-4fbb-9f8f-b89e2018337c
version: v1.0
annotation: Event log TCPIP
protocol: [MS-EVEN6]: EventLog Remoting Protocol
provider: wevtsvc.dll
ncacn_ip_tcp: 172.24.124.208:49153
ncacn_np: \\iZy8pdh2tba4n7Z\pipe\eventlog
ncalrpc: eventlog
30b044a5-a225-43f0-b3a4-e060df91f9c1
version: v1.0
provider: certprop.dll
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\srvsvc
ncacn_ip_tcp: 172.24.124.208:49154
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
98716d03-89ac-44c7-bb8c-285824e51c4a
version: v1.0
annotation: XactSrv service
provider: srvsvc.dll
ncacn_ip_tcp: 172.24.124.208:49154
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
552d076a-cb29-4e44-8b6a-d15e59e2c0af
version: v1.0
annotation: IP Transition Configuration endpoint
provider: iphlpsvc.dll
ncacn_ip_tcp: 172.24.124.208:49154
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
a398e520-d59a-4bdd-aa7a-3c1e0303a511
version: v1.0
annotation: IKE/Authip API
provider: IKEEXT.DLL
ncacn_ip_tcp: 172.24.124.208:49154
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
86d35949-83c9-4044-b424-db363231fd0c
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: schedsvc.dll
ncacn_ip_tcp: 172.24.124.208:49154
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
378e52b0-c0a9-11cf-822d-00aa0051e40f
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
1ff70682-0a51-30e8-076d-740be8cee98b
version: v1.0
protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
provider: taskcomp.dll
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\atsvc
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
version: v1.0
provider: schedsvc.dll
ncalrpc: senssvc
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
2eb08e3e-639f-4fba-97b1-14f878961076
version: v1.0
provider: gpsvc.dll
ncalrpc: OLE3D88C05251C9457E8D8E48FB0CB2
ncalrpc: IUserProfile2
3473dd4d-2e88-4006-9cba-22570909dd10
version: v5.256
annotation: WinHttp Auto-Proxy Service
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\W32TIME_ALT
ncalrpc: W32TIME_ALT
ncalrpc: LRPC-60f19336d554326317
ncalrpc: OLEA5274611A48743558377ACBE6072
7ea70bcf-48af-4f6a-8968-6a440754d5fa
version: v1.0
annotation: NSI server endpoint
provider: nsisvc.dll
ncalrpc: LRPC-60f19336d554326317
ncalrpc: OLEA5274611A48743558377ACBE6072
24019106-a203-4642-b88d-82dae9158929
version: v1.0
provider: authui.dll
ncalrpc: LRPC-c7cb4bb4e76fc6e132
2fb92682-6599-42dc-ae13-bd2ca89bd11c
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-9541eb5e50e64689de
7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
version: v1.0
annotation: Fw APIs
provider: MPSSVC.dll
ncalrpc: LRPC-9541eb5e50e64689de
dd490425-5325-4565-b774-7e27d6c09c24
version: v1.0
annotation: Base Firewall Engine API
provider: BFE.DLL
ncalrpc: LRPC-9541eb5e50e64689de
4a452661-8290-4b36-8fbe-7f4093a94978
version: v1.0
annotation: Spooler function endpoint
provider: spoolsv.exe
ncalrpc: spoolss
ae33069b-a2a8-46ee-a235-ddfd339be281
version: v1.0
annotation: Spooler base remote object endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
version: v1.0
annotation: Spooler function endpoint
protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
provider: spoolsv.exe
ncalrpc: spoolss
12345778-1234-abcd-ef00-0123456789ac
version: v1.0
protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
provider: samsrv.dll
ncacn_ip_tcp: 172.24.124.208:49168
ncalrpc: samss lpc
ncalrpc: dsrole
ncacn_np: \\iZy8pdh2tba4n7Z\PIPE\protected_storage
ncalrpc: protected_storage
ncalrpc: lsasspirpc
ncalrpc: lsapolicylookup
ncalrpc: LSARPC_ENDPOINT
ncalrpc: securityevent
ncalrpc: audit
ncalrpc: LRPC-820052017828e5f25a
ncacn_np: \\iZy8pdh2tba4n7Z\pipe\lsass
367abb81-9844-35f1-ad32-98f038001003
version: v2.0
protocol: [MS-SCMR]: Service Control Manager Remote Protocol
provider: services.exe
ncacn_ip_tcp: 172.24.124.208:49192
12345678-1234-abcd-ef00-0123456789ab
version: v1.0
annotation: IPSec Policy agent endpoint
protocol: [MS-RPRN]: Print System Remote Protocol
provider: spoolsv.exe
ncalrpc: LRPC-9575560ae400b51b50
ncacn_ip_tcp: 172.24.124.208:49193
6b5bdd1e-528c-422c-af8c-a4079be4fe48
version: v1.0
annotation: Remote Fw APIs
protocol: [MS-FASP]: Firewall and Advanced Security Protocol
provider: FwRemoteSvr.dll
ncacn_ip_tcp: 172.24.124.208:49193
906b0ce0-c70b-1067-b317-00dd010662da
version: v1.0
protocol: [MS-CMPO]: MSDTC Connection Manager:
provider: msdtcprx.dll
ncalrpc: LRPC-fe9305dd8481742f02
ncalrpc: LRPC-fe9305dd8481742f02
ncalrpc: LRPC-fe9305dd8481742f02
ncalrpc: LRPC-fe9305dd8481742f02
-1790679306 | 2024-10-21T03:49:24.814256
443 /
tcp
HTTP/1.1 500 Internal Server Error
Content-Type: text/html
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 21 Oct 2024 03:49:24 GMT
Content-Length: 1141
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:8a:d0:89:14:5f:d9:7d:5a:07:02:07:fe:5d:52:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=Encryption Everywhere DV TLS CA - G1
Validity
Not Before: Jul 23 00:00:00 2020 GMT
Not After : Jul 24 12:00:00 2021 GMT
Subject: CN=shop.12062.cn
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:9d:1b:35:b0:dc:8f:cc:b1:32:93:60:45:d6:91:
c0:fa:49:da:d7:9f:40:db:5c:76:a2:89:41:38:4d:
d0:0e:73:d8:dd:03:e8:f3:c1:3a:ca:8d:48:ef:f7:
ff:85:f4:c7:b4:30:e9:be:a3:0a:7d:74:f5:92:88:
92:cf:23:62:bd:e7:d3:c2:db:3e:76:e3:44:6c:6f:
47:c5:77:d9:28:58:06:3b:c2:96:d1:76:97:64:84:
9e:91:27:b5:ae:a0:81:fc:b5:b7:53:b5:d1:8b:26:
10:9b:6d:7d:c9:bd:c8:a5:93:b3:92:70:04:7e:b2:
96:18:0f:73:d0:76:90:50:0c:b0:42:47:f0:9f:d2:
14:15:68:78:98:bd:43:22:2d:e4:7b:c1:90:c7:d3:
8e:72:d7:c8:a3:82:ee:58:f6:de:16:cf:87:72:eb:
49:1e:c9:bc:a9:3b:96:6a:0a:61:dd:cb:52:f6:1b:
00:26:17:81:ae:01:bc:9d:e8:a4:58:c2:7b:23:ab:
c2:fd:08:c9:ea:93:68:76:3a:f9:5c:18:11:ec:15:
48:a3:b0:cb:24:6f:37:46:75:f1:77:6e:e9:5c:5a:
dc:cc:a9:d1:4d:2f:68:8d:c1:23:af:4d:d1:fe:33:
62:17:99:4e:3c:be:66:84:e1:7f:03:ef:81:d7:c8:
83:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
55:74:4F:B2:72:4F:F5:60:BA:50:D1:D7:E6:51:5C:9A:01:87:1A:D7
X509v3 Subject Key Identifier:
87:6F:AB:B8:AB:5C:71:4A:AC:36:F7:BA:58:91:DD:74:99:AB:F4:4E
X509v3 Subject Alternative Name:
DNS:shop.12062.cn
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies:
Policy: 2.16.840.1.114412.1.2
CPS: https://www.digicert.com/CPS
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.digicert.com
CA Issuers - URI:http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
X509v3 Basic Constraints:
CA:FALSE
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : F6:5C:94:2F:D1:77:30:22:14:54:18:08:30:94:56:8E:
E3:4D:13:19:33:BF:DF:0C:2F:20:0B:CC:4E:F1:64:E3
Timestamp : Jul 23 06:21:11.128 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:C4:1B:F2:DA:BA:A6:32:46:BB:EA:A2:
BB:B7:71:17:82:CD:1D:97:E2:63:FB:08:34:0A:0A:47:
66:5B:C8:D9:DA:02:20:39:D6:B0:70:EF:26:F1:31:87:
05:AB:05:E7:AF:9D:3B:E6:F4:D5:5A:04:EE:F7:D9:CE:
BD:7E:EC:FC:05:55:EE
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
Timestamp : Jul 23 06:21:11.167 2020 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:49:00:CF:1E:E6:BD:5B:01:37:3B:35:CA:
20:12:33:93:C6:43:D9:1C:D5:17:C9:AD:24:1D:A9:4B:
06:18:4C:40:02:20:63:FD:F7:DA:9F:2A:F0:35:BA:6C:
B9:5F:3E:DF:B8:1B:FF:D9:F2:D7:41:81:82:66:1D:46:
E4:A8:84:B6:E8:66
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
79:6c:b2:d9:15:76:74:e0:55:84:25:ce:ef:9f:ea:86:05:5f:
32:5d:f2:34:c4:b7:1e:95:a4:ce:c1:60:fe:5a:ea:f1:47:b4:
24:f9:de:63:82:bd:80:f3:53:94:6b:80:ad:b6:db:40:73:c1:
8b:f9:bf:9f:3b:29:c0:33:62:eb:ec:fe:26:c3:9d:0a:72:b5:
0f:2b:5f:f7:fa:42:ab:d1:55:60:65:ad:da:65:c7:d0:2a:bb:
51:14:dc:58:60:90:5f:57:19:8a:20:e5:3f:5a:99:0a:49:e5:
0c:b0:b2:11:83:b5:85:26:d3:b4:5b:ef:8b:79:3f:e9:ed:f5:
87:fa:e5:f8:0c:61:ee:85:75:da:f6:aa:d0:99:bf:92:b8:c0:
8d:cb:47:97:3a:3a:d0:95:5b:ef:c0:89:d4:e0:6b:99:5d:38:
37:c6:3d:6f:15:93:dd:24:ff:3e:22:36:8b:90:8b:5e:ea:1c:
fa:02:ee:d3:17:5d:cc:9b:23:d7:2b:4c:d4:93:55:28:ab:3b:
c6:e2:94:8c:36:31:d3:df:cd:9d:2c:f5:51:06:e9:1b:5b:c1:
9f:0c:cd:61:e7:ce:f3:e0:ff:8b:3b:1f:67:8d:a8:43:8a:be:
d8:70:31:d1:01:a0:7b:9f:f8:1f:6c:df:22:a6:36:1f:1e:b8:
0e:c1:9d:96
-540420592 | 2024-10-21T12:06:34.850163
1433 /
tcp
MS-SQL NTLM Info:
OS: Windows 7/Windows Server 2008 R2
OS Build: 6.1.7601
Target Name: iZy8pdh2tba4n7Z
NetBIOS Domain Name: iZy8pdh2tba4n7Z
NetBIOS Computer Name: iZy8pdh2tba4n7Z
DNS Domain Name: iZy8pdh2tba4n7Z
FQDN: iZy8pdh2tba4n7Z
-167670381 | 2024-10-26T16:41:30.419019
3306 /
tcp
MySQL:
Protocol Version: 10
Version: 5.5.28
Capabilities: 63487
Server Language: 8
Server Status: 2
Extended Server Capabilities: 32783
Authentication Plugin: mysql_native_password