GeneralInformation

Hostnames	aimyplus.com rdns.120.138.28.78.sth.nz
Domains	aimyplus.com sth.nz
Country	New Zealand
City	Auckland
Organization	SiteHost New Zealand
ISP	SiteHost New Zealand
ASN	AS45179

WebTechnologies

JavaScript libraries

jQuery

jQuery UI1.10.2

Snap.svg

Security

reCAPTCHA

UI frameworks

Material Design Lite

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 135 443 445 1801 3389 5985

2059788206 | 2024-11-01T12:19:00.782269

80 / tcp

Document Moved

HTTP/1.1 302 Redirect
Content-Type: text/html; charset=UTF-8
Location: https://120.138.28.78/
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Fri, 01 Nov 2024 12:19:07 GMT
Content-Length: 145

CVE-2014-4078

470858261 | 2024-10-29T06:12:46.922633

135 / tcp

Microsoft RPC Endpoint Mapper

d95afe70-a6d5-4259-822e-2c84da1ddb0d
  version: v1.0
  protocol: [MS-RSP]: Remote Shutdown Protocol
  provider: wininit.exe
  ncacn_ip_tcp: 120.138.28.78:49152
  ncalrpc: WindowsShutdown
  ncacn_np: \\CENTRALSTAT2\PIPE\InitShutdown
  ncalrpc: WMsgKRpc05F4C0

76f226c3-ec14-4325-8a99-6a46348418af
  version: v1.0
  provider: winlogon.exe
  ncalrpc: WindowsShutdown
  ncacn_np: \\CENTRALSTAT2\PIPE\InitShutdown
  ncalrpc: WMsgKRpc05F4C0
  ncalrpc: WMsgKRpc02E53F42
  ncalrpc: WMsgKRpc156983A37E3
  ncalrpc: WMsgKRpc18C6B3E7A75
  ncalrpc: WMsgKRpc192F006CCB6
  ncalrpc: WMsgKRpc23C51624A07

9b008953-f195-4bf9-bde0-4471971e58ed
  version: v1.0
  ncalrpc: dabrpc
  ncalrpc: LRPC-b7caa14e6b5697e67b
  ncacn_np: \\CENTRALSTAT2\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-74b00df2440e992696
  ncalrpc: actkernel
  ncalrpc: umpo

697dcda9-3ba9-4eb2-9247-e11f1901b0d2
  version: v1.0
  ncalrpc: LRPC-b7caa14e6b5697e67b
  ncacn_np: \\CENTRALSTAT2\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-74b00df2440e992696
  ncalrpc: actkernel
  ncalrpc: umpo

c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
  version: v1.0
  annotation: Impl friendly name
  provider: sysntfy.dll
  ncalrpc: LRPC-74b00df2440e992696
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-1b61c128f0f548f690
  ncalrpc: DeviceSetupManager
  ncacn_np: \\CENTRALSTAT2\PIPE\srvsvc
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2
  ncalrpc: IUserProfile2
  ncalrpc: IUserProfile2

0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

2d98a740-581d-41b9-aa0d-a88b9d5ce938
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

3b338d89-6cfa-44b8-847e-531531bc9992
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

8782d3b9-ebbd-4644-a3d8-e8725381919b
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

085b0334-e454-4d91-9b8c-4134f9e793f3
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
  version: v1.0
  annotation: DHCPv6 Client LRPC Endpoint
  provider: dhcpcsvc6.dll
  ncalrpc: dhcpcsvc6
  ncalrpc: dhcpcsvc
  ncalrpc: LRPC-dd3a98d01a64b7866a
  ncacn_ip_tcp: 120.138.28.78:49153
  ncacn_np: \\CENTRALSTAT2\pipe\eventlog
  ncalrpc: eventlog

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
  version: v1.0
  annotation: DHCP Client LRPC Endpoint
  provider: dhcpcsvc.dll
  ncalrpc: dhcpcsvc
  ncalrpc: LRPC-dd3a98d01a64b7866a
  ncacn_ip_tcp: 120.138.28.78:49153
  ncacn_np: \\CENTRALSTAT2\pipe\eventlog
  ncalrpc: eventlog

abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
  version: v1.0
  annotation: Wcm Service
  ncalrpc: LRPC-dd3a98d01a64b7866a
  ncacn_ip_tcp: 120.138.28.78:49153
  ncacn_np: \\CENTRALSTAT2\pipe\eventlog
  ncalrpc: eventlog

30adc50c-5cbc-46ce-9a0e-91914789e23c
  version: v1.0
  annotation: NRP server endpoint
  provider: nrpsrv.dll
  ncalrpc: LRPC-dd3a98d01a64b7866a
  ncacn_ip_tcp: 120.138.28.78:49153
  ncacn_np: \\CENTRALSTAT2\pipe\eventlog
  ncalrpc: eventlog

f6beaff7-1e19-4fbb-9f8f-b89e2018337c
  version: v1.0
  annotation: Event log TCPIP
  protocol: [MS-EVEN6]: EventLog Remoting Protocol
  provider: wevtsvc.dll
  ncacn_ip_tcp: 120.138.28.78:49153
  ncacn_np: \\CENTRALSTAT2\pipe\eventlog
  ncalrpc: eventlog

8c7daf44-b6dc-11d1-9a4c-0020af6e7c57
  version: v1.0
  annotation: Group Policy RPC Interface
  provider: appmgmts.dll
  ncalrpc: LRPC-56a16a910b82b4c99e

58e604e8-9adb-4d2e-a464-3b0683fb1480
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncacn_np: \\CENTRALSTAT2\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-1b61c128f0f548f690
  ncalrpc: DeviceSetupManager
  ncacn_np: \\CENTRALSTAT2\PIPE\srvsvc
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncacn_np: \\CENTRALSTAT2\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-1b61c128f0f548f690
  ncalrpc: DeviceSetupManager
  ncacn_np: \\CENTRALSTAT2\PIPE\srvsvc
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

5f54ce7d-5b79-4175-8584-cb65313a0e98
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncacn_np: \\CENTRALSTAT2\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-1b61c128f0f548f690
  ncalrpc: DeviceSetupManager
  ncacn_np: \\CENTRALSTAT2\PIPE\srvsvc
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

201ef99a-7fa0-444c-9399-19ba84f12a1a
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncacn_np: \\CENTRALSTAT2\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-1b61c128f0f548f690
  ncalrpc: DeviceSetupManager
  ncacn_np: \\CENTRALSTAT2\PIPE\srvsvc
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

30b044a5-a225-43f0-b3a4-e060df91f9c1
  version: v1.0
  provider: certprop.dll
  ncalrpc: LRPC-1b61c128f0f548f690
  ncalrpc: DeviceSetupManager
  ncacn_np: \\CENTRALSTAT2\PIPE\srvsvc
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

1a0d010f-1c33-432c-b0f5-8cf4e8053099
  version: v1.0
  annotation: IdSegSrv service
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

98716d03-89ac-44c7-bb8c-285824e51c4a
  version: v1.0
  annotation: XactSrv service
  provider: srvsvc.dll
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
  version: v1.0
  annotation: Adh APIs
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

c36be077-e14b-4fe9-8abc-e856ef4f048b
  version: v1.0
  annotation: Proxy Manager client server endpoint
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

2e6035b2-e8f1-41a7-a044-656b439c4c34
  version: v1.0
  annotation: Proxy Manager provider server endpoint
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

552d076a-cb29-4e44-8b6a-d15e59e2c0af
  version: v1.0
  annotation: IP Transition Configuration endpoint
  provider: iphlpsvc.dll
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

a398e520-d59a-4bdd-aa7a-3c1e0303a511
  version: v1.0
  annotation: IKE/Authip API
  provider: IKEEXT.DLL
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

3a9ef155-691d-4449-8d05-09ad57031823
  version: v1.0
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

86d35949-83c9-4044-b424-db363231fd0c
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: schedsvc.dll
  ncacn_ip_tcp: 120.138.28.78:49154
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

378e52b0-c0a9-11cf-822d-00aa0051e40f
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

1ff70682-0a51-30e8-076d-740be8cee98b
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\CENTRALSTAT2\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
  version: v1.0
  provider: schedsvc.dll
  ncalrpc: senssvc
  ncalrpc: OLEE35A5D08887DFECF6BC90859A806
  ncalrpc: IUserProfile2

2eb08e3e-639f-4fba-97b1-14f878961076
  version: v1.0
  annotation: Group Policy RPC Interface
  provider: gpsvc.dll
  ncalrpc: LRPC-85fe3b20710e4617ef

3473dd4d-2e88-4006-9cba-22570909dd10
  version: v5.256
  annotation: WinHttp Auto-Proxy Service
  ncacn_np: \\CENTRALSTAT2\PIPE\W32TIME_ALT
  ncalrpc: W32TIME_ALT
  ncalrpc: LRPC-72860c3087477af42b
  ncalrpc: OLE36C1708D319FF94A03282EC59E5B

7ea70bcf-48af-4f6a-8968-6a440754d5fa
  version: v1.0
  annotation: NSI server endpoint
  provider: nsisvc.dll
  ncalrpc: LRPC-72860c3087477af42b
  ncalrpc: OLE36C1708D319FF94A03282EC59E5B

2fb92682-6599-42dc-ae13-bd2ca89bd11c
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-5e2f1b29c3f3af2806
  ncalrpc: LRPC-c63dec67d4afc94922

f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
  version: v1.0
  annotation: Fw APIs
  ncalrpc: LRPC-5e2f1b29c3f3af2806
  ncalrpc: LRPC-c63dec67d4afc94922

7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-5e2f1b29c3f3af2806
  ncalrpc: LRPC-c63dec67d4afc94922

dd490425-5325-4565-b774-7e27d6c09c24
  version: v1.0
  annotation: Base Firewall Engine API
  provider: BFE.DLL
  ncalrpc: LRPC-c63dec67d4afc94922

7f1343fe-50a9-4927-a778-0c5859517bac
  version: v1.0
  annotation: DfsDs service
  ncacn_np: \\CENTRALSTAT2\PIPE\wkssvc
  ncalrpc: LRPC-6eddd4df510229cd4d
  ncalrpc: DNSResolver

eb081a0d-10ee-478a-a1dd-50995283e7a8
  version: v3.0
  annotation: Witness Client Test Interface
  ncalrpc: LRPC-6eddd4df510229cd4d
  ncalrpc: DNSResolver

f2c9b409-c1c9-4100-8639-d8ab1486694a
  version: v1.0
  annotation: Witness Client Upcall Server
  ncalrpc: LRPC-6eddd4df510229cd4d
  ncalrpc: DNSResolver

76f03f96-cdfd-44fc-a22c-64950a001209
  version: v1.0
  protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 120.138.28.78:49155
  ncalrpc: LRPC-fac8c39a3072cf1434

4a452661-8290-4b36-8fbe-7f4093a94978
  version: v1.0
  provider: spoolsv.exe
  ncacn_ip_tcp: 120.138.28.78:49155
  ncalrpc: LRPC-fac8c39a3072cf1434

ae33069b-a2a8-46ee-a235-ddfd339be281
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 120.138.28.78:49155
  ncalrpc: LRPC-fac8c39a3072cf1434

0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 120.138.28.78:49155
  ncalrpc: LRPC-fac8c39a3072cf1434

12345678-1234-abcd-ef00-0123456789ab
  version: v1.0
  protocol: [MS-RPRN]: Print System Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 120.138.28.78:49155
  ncalrpc: LRPC-fac8c39a3072cf1434

1a9134dd-7b39-45ba-ad88-44d01ca47f28
  version: v1.0
  annotation: Message Queuing - RemoteRead V1
  protocol: [MS-MQRR]: Message Queuing (MSMQ):
  provider: mqqm.dll
  ncacn_ip_tcp: 120.138.28.78:2105
  ncacn_ip_tcp: 120.138.28.78:2103
  ncacn_ip_tcp: 120.138.28.78:2107
  ncacn_ip_tcp: 120.138.28.78:49156
  ncalrpc: QMMgmtFacility$centralstat2
  ncalrpc: QMsvc$centralstat2

1088a980-eae5-11d0-8d9b-00a02453c337
  version: v1.0
  annotation: Message Queuing - QM2QM V1
  protocol: [MS-MQQP]: Message Queuing (MSMQ):
  provider: mqqm.dll
  ncacn_ip_tcp: 120.138.28.78:2105
  ncacn_ip_tcp: 120.138.28.78:2103
  ncacn_ip_tcp: 120.138.28.78:2107
  ncacn_ip_tcp: 120.138.28.78:49156
  ncalrpc: QMMgmtFacility$centralstat2
  ncalrpc: QMsvc$centralstat2

76d12b80-3467-11d3-91ff-0090272f9ea3
  version: v1.0
  annotation: Message Queuing - QMRT V2
  protocol: [MS-MQMP]: Message Queuing (MSMQ):
  provider: mqqm.dll
  ncacn_ip_tcp: 120.138.28.78:2105
  ncacn_ip_tcp: 120.138.28.78:2103
  ncacn_ip_tcp: 120.138.28.78:2107
  ncacn_ip_tcp: 120.138.28.78:49156
  ncalrpc: QMMgmtFacility$centralstat2
  ncalrpc: QMsvc$centralstat2

fdb3a030-065f-11d1-bb9b-00a024ea5525
  version: v1.0
  annotation: Message Queuing - QMRT V1
  protocol: [MS-MQMP]: Message Queuing (MSMQ):
  provider: mqqm.dll
  ncacn_ip_tcp: 120.138.28.78:2105
  ncacn_ip_tcp: 120.138.28.78:2103
  ncacn_ip_tcp: 120.138.28.78:2107
  ncacn_ip_tcp: 120.138.28.78:49156
  ncalrpc: QMMgmtFacility$centralstat2
  ncalrpc: QMsvc$centralstat2

367abb81-9844-35f1-ad32-98f038001003
  version: v2.0
  protocol: [MS-SCMR]: Service Control Manager Remote Protocol
  provider: services.exe
  ncacn_ip_tcp: 120.138.28.78:49158

b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
  version: v2.0
  annotation: KeyIso
  ncacn_ip_tcp: 120.138.28.78:49160
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\CENTRALSTAT2\pipe\lsass

12345778-1234-abcd-ef00-0123456789ac
  version: v1.0
  protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
  provider: samsrv.dll
  ncacn_ip_tcp: 120.138.28.78:49160
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\CENTRALSTAT2\pipe\lsass

906b0ce0-c70b-1067-b317-00dd010662da
  version: v1.0
  protocol: [MS-CMPO]: MSDTC Connection Manager:
  provider: msdtcprx.dll
  ncalrpc: LRPC-ca3753ce0eab2a09e7
  ncalrpc: OLEFD9BF348B25E3F920EB9205331D4
  ncalrpc: LRPC-c5d8cd1625d436844a
  ncalrpc: LRPC-c5d8cd1625d436844a
  ncalrpc: LRPC-c5d8cd1625d436844a

12e65dd8-887f-41ef-91bf-8d816c42c2e7
  version: v1.0
  annotation: Secure Desktop LRPC interface
  provider: winlogon.exe
  ncalrpc: WMsgKRpc02E53F42

6b5bdd1e-528c-422c-af8c-a4079be4fe48
  version: v1.0
  annotation: Remote Fw APIs
  protocol: [MS-FASP]: Firewall and Advanced Security Protocol
  provider: FwRemoteSvr.dll
  ncacn_ip_tcp: 120.138.28.78:58725
  ncalrpc: ipsec

b2507c30-b126-494a-92ac-ee32b6eeb039
  version: v1.0
  ncalrpc: LRPC-f92634d85280766e83
  ncalrpc: LRPC-24b99166a4641b1e5b
  ncalrpc: LRPC-f912990e9bf6ca8709
  ncalrpc: LRPC-b243bddd15ddba0ce4

902523293 | 2024-11-04T02:50:55.136747

443 / tcp

NotAuthorized Url - AIMY

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Set-Cookie: ASP.NET_SessionId=3x3mw0lqpv0n3a3towr0xbf3; path=/; HttpOnly
X-AspNetMvc-Version: 5.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 04 Nov 2024 02:51:10 GMT
Content-Length: 8419

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:24:f7:c4:83:ea:b9:01:47:90:d2:0f:51:3a:2c:53
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert Inc, OU=www.digicert.com, CN=GeoTrust TLS RSA CA G1
        Validity
            Not Before: Sep 26 00:00:00 2024 GMT
            Not After : Aug 31 23:59:59 2025 GMT
        Subject: CN=*.aimyplus.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d3:8b:b1:f2:f2:46:cd:4c:26:f8:2d:1d:bf:a7:
                    95:d7:4a:30:38:30:44:5e:db:b6:2b:f0:40:9d:4a:
                    2d:2c:14:96:51:ed:60:3a:27:bf:cd:b1:fa:c1:37:
                    01:92:37:b5:d8:71:e4:ce:b7:76:c2:6a:56:36:15:
                    2f:3f:38:db:ec:c0:df:1c:78:31:48:d8:69:d8:f6:
                    27:33:b1:eb:db:81:b8:e2:97:02:84:2b:40:10:68:
                    fa:90:47:d8:bc:da:d5:83:40:6e:4e:93:f3:77:58:
                    ba:32:93:86:45:b1:6c:ef:d6:25:ac:d3:22:33:9a:
                    76:70:c0:60:4b:21:5c:7b:47:fb:f8:51:0f:30:fd:
                    39:0c:a6:2b:1c:26:a2:b8:10:ca:83:6e:6c:6f:af:
                    e5:4f:6b:b9:51:c2:ee:4e:fe:33:c5:81:0d:30:a3:
                    38:01:9f:de:e5:d2:3a:60:53:6e:0d:7d:f0:f1:1d:
                    0c:b4:5a:fb:14:28:70:0d:98:7e:5b:e4:9b:b8:91:
                    ef:b7:89:3c:84:a5:b6:0a:6b:a1:fb:3c:38:95:b7:
                    d9:d2:ac:d0:0d:14:71:a6:38:f7:d5:38:0c:7f:5e:
                    fd:d6:14:3f:b9:33:57:8c:8b:c8:57:9c:c5:9e:66:
                    cd:e0:a3:97:11:20:be:3f:68:6c:86:05:2b:41:3b:
                    dc:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                94:4F:D4:5D:8B:E4:A4:E2:A6:80:FE:FD:D8:F9:00:EF:A3:BE:02:57
            X509v3 Subject Key Identifier: 
                A8:DC:C0:2D:AE:C5:99:83:B9:2B:7E:92:78:26:D3:E2:45:86:FA:21
            X509v3 Subject Alternative Name: 
                DNS:*.aimyplus.com, DNS:aimyplus.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://cdp.geotrust.com/GeoTrustTLSRSACAG1.crl
            Authority Information Access: 
                OCSP - URI:http://status.geotrust.com
                CA Issuers - URI:http://cacerts.geotrust.com/GeoTrustTLSRSACAG1.crt
            X509v3 Basic Constraints: critical
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
                                3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
                    Timestamp : Sep 26 01:18:30.982 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:87:97:9E:85:ED:32:5E:1D:52:20:A4:
                                DF:A5:12:52:B9:65:C9:6D:54:2C:22:AF:B1:82:DE:8B:
                                97:DC:43:01:44:02:21:00:FB:B2:F2:6A:11:76:1C:51:
                                03:23:C7:F7:59:E5:5C:B0:3C:DD:A2:47:CA:C7:5A:54:
                                E1:33:1B:57:77:8E:5F:44
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E6:D2:31:63:40:77:8C:C1:10:41:06:D7:71:B9:CE:C1:
                                D2:40:F6:96:84:86:FB:BA:87:32:1D:FD:1E:37:8E:50
                    Timestamp : Sep 26 01:18:30.911 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D7:52:83:46:5A:5D:E0:AD:93:7D:C3:
                                C3:28:2B:AA:9C:36:0F:90:47:55:F5:B5:CA:C5:A5:C1:
                                D2:9C:13:AA:23:02:20:31:A8:AE:C7:80:BB:A0:DC:1E:
                                D2:FA:3B:95:19:29:FD:73:4D:0C:29:C8:C3:5B:C1:9C:
                                2A:A3:82:72:AC:6E:BA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
                                22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
                    Timestamp : Sep 26 01:18:30.901 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:1E:DD:F5:B9:13:53:1E:AB:7C:FD:DE:12:
                                2B:AD:E1:43:53:C3:10:83:A3:D5:9A:F7:18:AB:1D:AB:
                                9B:36:2C:19:02:20:05:01:B7:62:3A:9A:04:23:C0:E8:
                                B4:1C:10:06:D3:94:18:96:A9:D0:70:00:5F:9E:0A:EE:
                                2E:9A:09:EC:5C:62
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        14:ca:30:b4:3d:20:81:0c:4d:a5:23:d9:32:bc:83:73:c1:fa:
        f4:c7:d5:84:d4:fd:91:f5:8b:ce:94:60:03:c7:aa:43:8f:fa:
        68:c3:b4:87:62:32:e0:44:6a:59:2b:41:6e:2a:9a:e2:83:40:
        02:d9:bf:d0:8d:e1:27:29:e0:ac:81:f5:99:64:47:84:94:f4:
        20:72:bf:a0:59:72:98:4b:c4:bc:3d:02:11:f7:80:5c:e5:6c:
        9f:d7:3d:16:29:6d:6f:d8:25:19:4b:3e:39:ca:0e:80:d9:dc:
        c4:56:37:a3:9d:d1:c3:a7:5a:9f:bf:12:50:2c:90:f0:0f:b4:
        8f:b2:7b:c6:ff:02:58:fa:21:c8:fd:5d:6c:9c:20:4a:37:e1:
        77:a2:5b:d2:ed:c5:09:5e:5d:48:26:2c:b6:c6:82:4c:08:ca:
        06:7a:53:e6:42:6a:5f:22:64:62:8f:4a:89:07:6f:cf:53:74:
        52:d0:f9:85:dd:cd:ed:1d:68:73:d5:d0:bf:b7:28:ad:7b:f7:
        f9:c8:a8:63:7c:4d:74:ad:f7:1d:c4:bb:d9:fc:a8:fe:25:ac:
        40:77:60:76:20:39:0c:7f:67:58:e7:dd:b3:0e:dd:ba:be:f4:
        d7:6b:1e:51:ac:30:68:b4:36:7c:c2:39:16:80:25:29:3c:b2:
        db:43:f8:c7

CVE-2014-4078

-1166656618 | 2024-11-10T15:52:08.246288

445 / tcp

SMB Status:
  Authentication: enabled
  SMB Version: 2
  Capabilities: raw-mode

-1625200441 | 2024-11-07T18:27:33.111992

1801 / tcp

\x10Z\x0b\x00LIOR<\x02\x00\x00\xff\xff\xff\xff\x00\x00\x12\x00\x06U=Q6\xdf\xc7@\x96C\x17\\<\xe7l\xaa\xba\x81\x1c\xde7S\x16O\x8a\x8e\xbb\xdd\xd2\xe1\x99\xa9\x00\x00\x00\x00\x10\x02\x00\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

102286802 | 2024-11-09T07:24:02.921489

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: CENTRALSTAT2
  NetBIOS Domain Name: CENTRALSTAT2
  NetBIOS Computer Name: CENTRALSTAT2
  DNS Domain Name: centralstat2
  FQDN: centralstat2

Administrator onboarding
gm Windows Server 2012 R2

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:90:2d:2a:51:63:2a:85:4d:e7:0b:60:b4:3d:7b:82
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=centralstat2
        Validity
            Not Before: Oct 26 12:58:39 2024 GMT
            Not After : Apr 27 12:58:39 2025 GMT
        Subject: CN=centralstat2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:de:34:47:d1:60:7f:22:e6:99:69:a4:37:e8:48:
                    8b:1d:bd:6f:f5:42:00:f5:64:74:f2:50:88:2f:35:
                    97:df:ae:aa:3d:39:f1:b5:ca:fc:ae:38:ce:34:8b:
                    47:2f:2e:4e:95:fa:38:01:9e:76:c6:08:64:44:3d:
                    53:10:19:70:35:b8:8a:61:42:a7:ec:30:d9:a5:1a:
                    07:63:a3:0b:2a:5f:5c:7c:18:2a:f0:7c:46:d6:22:
                    87:48:93:77:d7:70:88:32:cf:fb:d4:78:a3:f0:c7:
                    17:12:bf:cd:2e:18:08:b6:5f:da:e2:5c:39:0f:db:
                    3b:d4:ca:a6:43:90:8c:34:07:a5:e4:9a:33:51:f7:
                    85:f8:5f:e8:ef:9a:ad:ea:a6:f2:cb:46:29:2c:48:
                    a2:ca:7b:cc:ef:e2:4c:39:98:f4:f6:61:9b:0c:1a:
                    af:94:a1:72:f9:89:24:bf:13:5f:91:c1:6a:e0:2d:
                    10:30:f4:69:af:44:e4:59:80:f8:15:f3:f2:c7:96:
                    e2:c3:b1:30:06:09:06:bb:da:c2:31:06:2a:79:26:
                    f7:2c:02:18:14:ea:17:17:b5:78:35:da:c5:74:74:
                    9f:c8:fb:fe:09:3d:c5:21:7b:03:a5:dd:e6:de:87:
                    2e:b6:03:ae:60:9f:10:2b:22:58:80:a4:cc:21:2c:
                    8a:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        db:d9:87:c3:d3:6e:fe:87:95:b2:c3:da:aa:13:87:a2:1a:b4:
        62:76:f7:7f:ad:b9:a8:5d:3e:87:06:93:d9:9e:bc:9d:3d:7b:
        1f:09:2d:8f:56:4f:a1:dd:88:c7:4f:19:d3:86:9d:29:6d:f4:
        41:e2:cd:cb:8e:35:2a:fb:cf:57:e1:3d:69:f2:c6:8c:9d:23:
        b6:e5:02:f8:dc:19:11:53:4e:e6:54:a9:e5:f9:27:6f:95:10:
        24:a4:ca:fe:18:dc:55:a9:06:5a:46:13:b7:fd:75:98:65:a8:
        5c:c8:d8:ca:8c:04:d0:39:2b:41:9b:39:10:20:b1:17:66:15:
        e5:0d:33:6b:ab:54:12:63:f5:20:e7:c2:7a:96:b2:b7:8b:ae:
        91:f7:dd:b0:58:4f:57:bf:22:78:4c:56:10:88:5d:99:a6:1e:
        bf:53:27:c8:b6:c3:b7:25:0c:a6:0a:e7:83:2a:06:a9:01:fd:
        2e:e8:85:55:fc:d4:32:74:89:11:27:03:d0:86:03:82:03:86:
        ff:73:0c:66:77:c5:1b:ef:7b:59:4f:63:28:c8:b1:fa:0b:93:
        36:b4:52:55:e9:08:46:35:71:cd:f1:a0:30:25:4c:e5:db:e5:
        09:63:de:37:a4:f4:40:89:3e:0c:f4:9f:ea:6a:72:a0:6f:bb:
        c2:b6:a1:58

1489525118 | 2024-11-03T16:45:38.137524

5985 / tcp

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 03 Nov 2024 16:45:52 GMT
Connection: close
Content-Length: 315


WinRM NTLM Info:
  OS: Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: CENTRALSTAT2
  NetBIOS Domain Name: CENTRALSTAT2
  NetBIOS Computer Name: CENTRALSTAT2
  DNS Domain Name: centralstat2
  FQDN: centralstat2

120.138.28.78

Last Seen: 2024-11-10

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

2059788206 | 2024-11-01T12:19:00.782269
80 / tcp

Microsoft IIS httpd8.5

470858261 | 2024-10-29T06:12:46.922633
135 / tcp

Microsoft RPC Endpoint Mapper

902523293 | 2024-11-04T02:50:55.136747
443 / tcp

Microsoft IIS httpd8.5

-1166656618 | 2024-11-10T15:52:08.246288
445 / tcp

-1625200441 | 2024-11-07T18:27:33.111992
1801 / tcp

Microsoft Message Queuing

102286802 | 2024-11-09T07:24:02.921489
3389 / tcp

Remote Desktop Protocol

1489525118 | 2024-11-03T16:45:38.137524
5985 / tcp

WinRM

Products

Pricing

Contact Us

120.138.28.78

Last Seen: 2024-11-10

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Latest CVSS

OpenPorts

2059788206 | 2024-11-01T12:19:00.782269 80 / tcp

Microsoft IIS httpd8.5

470858261 | 2024-10-29T06:12:46.922633 135 / tcp

Microsoft RPC Endpoint Mapper

902523293 | 2024-11-04T02:50:55.136747 443 / tcp

Microsoft IIS httpd8.5

-1166656618 | 2024-11-10T15:52:08.246288 445 / tcp

-1625200441 | 2024-11-07T18:27:33.111992 1801 / tcp

Microsoft Message Queuing

102286802 | 2024-11-09T07:24:02.921489 3389 / tcp

Remote Desktop Protocol

1489525118 | 2024-11-03T16:45:38.137524 5985 / tcp

WinRM

Products

Pricing

Contact Us

Vulnerabilities

2059788206 | 2024-11-01T12:19:00.782269
80 / tcp

470858261 | 2024-10-29T06:12:46.922633
135 / tcp

902523293 | 2024-11-04T02:50:55.136747
443 / tcp

-1166656618 | 2024-11-10T15:52:08.246288
445 / tcp

-1625200441 | 2024-11-07T18:27:33.111992
1801 / tcp

102286802 | 2024-11-09T07:24:02.921489
3389 / tcp

1489525118 | 2024-11-03T16:45:38.137524
5985 / tcp