NetNTLMv1 Help!

[zerospace]

Ok, I've been bouncing my head off my desk for several days now on this.  First, an assumption I am working off of is that netntlmv1 and MSCHAPv2 are same/same?

What I've tried.

EBE2F20936540E6500000000000000000000000000000000:FBF97203E1B703515A1BF44FF5EA5C621623DAC7065DA58F:1122334455667788

Code:

***@*** ~/D/h/src> chapcrack radius -C 1122334455667788 -R FBF97203E1B703515A1BF44FF5EA5C621623DAC7065DA58F
Cracking K3................
                     C1 = fbf97203e1b70351
                     C2 = 5a1bf44ff5ea5c62
                     C3 = 1623dac7065da58f
                      P = 1122334455667788

Oh, so I assume it must be ESS.  Sooo

Code:

***@*** ~/D/h/src> ./ct3_to_ntlm.bin fd5717880e4b5e13 7ab2b26a22061831 e81d062fe3f8fb9f00000000000000000000000000000000
08a8

Ok, great, but I want to double check this, so...

Code:

***@*** ~/D/h/src> perl -e 'print pack ("H*", "112233445566778803FE97E316101F32")' | md5sum

b66a63d54cfe005c88b054d53f5e3dc0  -

and then 

Code:

***@*** ~/D/h/src> hashcat64.bin -m14000 --potfile-disable --quiet -a 3 -1 charsets/DES_full.charset --hex-charset 99223BFDCF216B9B:b66a63d54cfe005c ?1?1000000000000

And... Nothing.

So, I guess I have 3 questions,

1. Am I right in my assumptions that the process for MSCHAPv2 should work for NETNTLMv1?

2. If so, what am I doing wrong in my manual check of the ESS?

3. Once I have the C1,C2, and K3, where do I go from there to get the ntlm?

Thanks!

I've been using the following threads as guidelines.
https://hashcat.net/forum/thread-5948.html
https://hashcat.net/forum/thread-5912.html