GeneralInformation

Hostnames	60-249-187-179.hinet-ip.hinet.net
Domains	hinet.net
Country	Taiwan
City	Kaohsiung
Organization	Chunghwa Telecom Co.,Ltd.
ISP	Data Communication Business Group
ASN	AS3462
Operating System	Windows Server 2012 R2

WebTechnologies

Web frameworks

Microsoft ASP.NET

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

26 80 135 445 1433 1434 3389 5800 5900 5985 8060 8080 17000 49408 49574

515068867 | 2024-12-26T02:07:52.503598

26 / tcp

Gauss TCP 2\x00\x00\x04\x00\x00\x00\x01\x00\x00\x00

-1166248116 | 2024-12-28T07:38:59.184873

80 / tcp

鋐錕公司內部管理網站

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/8.5
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sat, 28 Dec 2024 07:38:58 GMT
Content-Length: 3745

CVE-2014-4078

941094512 | 2024-12-30T19:09:49.849476

135 / tcp

Microsoft RPC Endpoint Mapper

d95afe70-a6d5-4259-822e-2c84da1ddb0d
  version: v1.0
  protocol: [MS-RSP]: Remote Shutdown Protocol
  provider: wininit.exe
  ncacn_ip_tcp: 60.249.187.179:49153
  ncalrpc: WindowsShutdown
  ncacn_np: \\WIN2012\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0153770

76f226c3-ec14-4325-8a99-6a46348418af
  version: v1.0
  provider: winlogon.exe
  ncalrpc: WindowsShutdown
  ncacn_np: \\WIN2012\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0153770
  ncalrpc: WMsgKRpc01558F1
  ncalrpc: WMsgKRpc0B38765FD2
  ncalrpc: WMsgKRpc39BBEA5CE3

9b008953-f195-4bf9-bde0-4471971e58ed
  version: v1.0
  ncalrpc: dabrpc
  ncalrpc: LRPC-f350d9898e4ca7c495
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

697dcda9-3ba9-4eb2-9247-e11f1901b0d2
  version: v1.0
  ncalrpc: LRPC-f350d9898e4ca7c495
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
  version: v1.0
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
  version: v1.0
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
  version: v1.0
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
  version: v1.0
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

2d98a740-581d-41b9-aa0d-a88b9d5ce938
  version: v1.0
  ncacn_np: \\WIN2012\pipe\LSM_API_service
  ncalrpc: LSMApi
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo

c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
  version: v1.0
  annotation: Impl friendly name
  provider: sysntfy.dll
  ncalrpc: LRPC-667c220af5fe6ec6a0
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-0c86d8ecab0f6f98a9
  ncacn_np: \\WIN2012\PIPE\srvsvc
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2
  ncalrpc: IUserProfile2
  ncalrpc: IUserProfile2

bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

3b338d89-6cfa-44b8-847e-531531bc9992
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

8782d3b9-ebbd-4644-a3d8-e8725381919b
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

085b0334-e454-4d91-9b8c-4134f9e793f3
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

12e65dd8-887f-41ef-91bf-8d816c42c2e7
  version: v1.0
  annotation: Secure Desktop LRPC interface
  provider: winlogon.exe
  ncalrpc: WMsgKRpc01558F1

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
  version: v1.0
  annotation: DHCP Client LRPC Endpoint
  provider: dhcpcsvc.dll
  ncalrpc: dhcpcsvc
  ncalrpc: dhcpcsvc6
  ncalrpc: LRPC-fb1cfd192616158340
  ncacn_ip_tcp: 60.249.187.179:49154
  ncacn_np: \\WIN2012\pipe\eventlog
  ncalrpc: eventlog

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
  version: v1.0
  annotation: DHCPv6 Client LRPC Endpoint
  provider: dhcpcsvc6.dll
  ncalrpc: dhcpcsvc6
  ncalrpc: LRPC-fb1cfd192616158340
  ncacn_ip_tcp: 60.249.187.179:49154
  ncacn_np: \\WIN2012\pipe\eventlog
  ncalrpc: eventlog

abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
  version: v1.0
  annotation: Wcm Service
  ncalrpc: LRPC-fb1cfd192616158340
  ncacn_ip_tcp: 60.249.187.179:49154
  ncacn_np: \\WIN2012\pipe\eventlog
  ncalrpc: eventlog

30adc50c-5cbc-46ce-9a0e-91914789e23c
  version: v1.0
  annotation: NRP server endpoint
  provider: nrpsrv.dll
  ncalrpc: LRPC-fb1cfd192616158340
  ncacn_ip_tcp: 60.249.187.179:49154
  ncacn_np: \\WIN2012\pipe\eventlog
  ncalrpc: eventlog

f6beaff7-1e19-4fbb-9f8f-b89e2018337c
  version: v1.0
  annotation: Event log TCPIP
  protocol: [MS-EVEN6]: EventLog Remoting Protocol
  provider: wevtsvc.dll
  ncacn_ip_tcp: 60.249.187.179:49154
  ncacn_np: \\WIN2012\pipe\eventlog
  ncalrpc: eventlog

58e604e8-9adb-4d2e-a464-3b0683fb1480
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: DeviceSetupManager
  ncacn_np: \\WIN2012\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-0c86d8ecab0f6f98a9
  ncacn_np: \\WIN2012\PIPE\srvsvc
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: DeviceSetupManager
  ncacn_np: \\WIN2012\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-0c86d8ecab0f6f98a9
  ncacn_np: \\WIN2012\PIPE\srvsvc
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

5f54ce7d-5b79-4175-8584-cb65313a0e98
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: DeviceSetupManager
  ncacn_np: \\WIN2012\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-0c86d8ecab0f6f98a9
  ncacn_np: \\WIN2012\PIPE\srvsvc
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

201ef99a-7fa0-444c-9399-19ba84f12a1a
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: DeviceSetupManager
  ncacn_np: \\WIN2012\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-0c86d8ecab0f6f98a9
  ncacn_np: \\WIN2012\PIPE\srvsvc
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

30b044a5-a225-43f0-b3a4-e060df91f9c1
  version: v1.0
  provider: certprop.dll
  ncalrpc: LRPC-0c86d8ecab0f6f98a9
  ncacn_np: \\WIN2012\PIPE\srvsvc
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

1a0d010f-1c33-432c-b0f5-8cf4e8053099
  version: v1.0
  annotation: IdSegSrv service
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

98716d03-89ac-44c7-bb8c-285824e51c4a
  version: v1.0
  annotation: XactSrv service
  provider: srvsvc.dll
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

c36be077-e14b-4fe9-8abc-e856ef4f048b
  version: v1.0
  annotation: Proxy Manager client server endpoint
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
  version: v1.0
  annotation: Adh APIs
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

2e6035b2-e8f1-41a7-a044-656b439c4c34
  version: v1.0
  annotation: Proxy Manager provider server endpoint
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

552d076a-cb29-4e44-8b6a-d15e59e2c0af
  version: v1.0
  annotation: IP Transition Configuration endpoint
  provider: iphlpsvc.dll
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

a398e520-d59a-4bdd-aa7a-3c1e0303a511
  version: v1.0
  annotation: IKE/Authip API
  provider: IKEEXT.DLL
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

3a9ef155-691d-4449-8d05-09ad57031823
  version: v1.0
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

86d35949-83c9-4044-b424-db363231fd0c
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: schedsvc.dll
  ncacn_ip_tcp: 60.249.187.179:49155
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

378e52b0-c0a9-11cf-822d-00aa0051e40f
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

1ff70682-0a51-30e8-076d-740be8cee98b
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\WIN2012\PIPE\atsvc
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
  version: v1.0
  provider: schedsvc.dll
  ncalrpc: iscsisrvRpcEndpoint
  ncalrpc: senssvc
  ncalrpc: OLE2364DB4F2CC2DA5BDD68C21BA903
  ncalrpc: IUserProfile2

2eb08e3e-639f-4fba-97b1-14f878961076
  version: v1.0
  annotation: Group Policy RPC Interface
  provider: gpsvc.dll
  ncalrpc: LRPC-946c5470cce7e241bc

3473dd4d-2e88-4006-9cba-22570909dd10
  version: v5.256
  annotation: WinHttp Auto-Proxy Service
  ncalrpc: LRPC-b3528f127fdf268024
  ncalrpc: OLED4C5118D8B612A63C232639A9C3B

7ea70bcf-48af-4f6a-8968-6a440754d5fa
  version: v1.0
  annotation: NSI server endpoint
  provider: nsisvc.dll
  ncalrpc: LRPC-b3528f127fdf268024
  ncalrpc: OLED4C5118D8B612A63C232639A9C3B

2fb92682-6599-42dc-ae13-bd2ca89bd11c
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-0a35718b8daddcce06
  ncalrpc: LRPC-b1f8d78e0c48593ca8

f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
  version: v1.0
  annotation: Fw APIs
  ncalrpc: LRPC-0a35718b8daddcce06
  ncalrpc: LRPC-b1f8d78e0c48593ca8

7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-0a35718b8daddcce06
  ncalrpc: LRPC-b1f8d78e0c48593ca8

dd490425-5325-4565-b774-7e27d6c09c24
  version: v1.0
  annotation: Base Firewall Engine API
  provider: BFE.DLL
  ncalrpc: LRPC-b1f8d78e0c48593ca8

7f1343fe-50a9-4927-a778-0c5859517bac
  version: v1.0
  annotation: DfsDs service
  ncacn_np: \\WIN2012\PIPE\wkssvc
  ncalrpc: LRPC-0875ce5ac8338a9017
  ncalrpc: DNSResolver

eb081a0d-10ee-478a-a1dd-50995283e7a8
  version: v3.0
  annotation: Witness Client Test Interface
  ncalrpc: LRPC-0875ce5ac8338a9017
  ncalrpc: DNSResolver

f2c9b409-c1c9-4100-8639-d8ab1486694a
  version: v1.0
  annotation: Witness Client Upcall Server
  ncalrpc: LRPC-0875ce5ac8338a9017
  ncalrpc: DNSResolver

76f03f96-cdfd-44fc-a22c-64950a001209
  version: v1.0
  protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 60.249.187.179:49157
  ncalrpc: LRPC-7ceb1d01b7f78828fc

4a452661-8290-4b36-8fbe-7f4093a94978
  version: v1.0
  provider: spoolsv.exe
  ncacn_ip_tcp: 60.249.187.179:49157
  ncalrpc: LRPC-7ceb1d01b7f78828fc

ae33069b-a2a8-46ee-a235-ddfd339be281
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 60.249.187.179:49157
  ncalrpc: LRPC-7ceb1d01b7f78828fc

0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 60.249.187.179:49157
  ncalrpc: LRPC-7ceb1d01b7f78828fc

12345678-1234-abcd-ef00-0123456789ab
  version: v1.0
  protocol: [MS-RPRN]: Print System Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 60.249.187.179:49157
  ncalrpc: LRPC-7ceb1d01b7f78828fc

12345778-1234-abcd-ef00-0123456789ac
  version: v1.0
  protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
  provider: samsrv.dll
  ncacn_ip_tcp: 60.249.187.179:49158
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\WIN2012\pipe\lsass

9b3e3722-b9de-913a-4b50-525250524f50
  version: v28294.20489
  annotation: DEFER_THREAD_INIT
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-b8eb-3e0b-4b50-52524f424a53
  version: v28294.20489
  annotation: TaskManager
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-2175-40a9-4b50-525250524f50
  version: v28294.20489
  annotation: cpTEMPFILE_SYSCACHED
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-7d85-bb8f-4b50-525250524f50
  version: v28294.20489
  annotation: npTM_PROFILE
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-97cf-5c32-4b50-525250524f50
  version: v28294.20489
  annotation: native file io object streams
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-d7d6-630a-4b50-525250524f50
  version: v28294.20489
  annotation: native file io object is a stream really
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-49dd-4e78-4b50-525250524f50
  version: v28294.20489
  annotation: antimalware.oas.PenderPtr
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-3fdc-66a9-4b50-525250524f50
  version: v28294.20489
  annotation: npOBJECT_STARTUP
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-da96-8fb3-4b50-525250524f50
  version: v28294.20489
  annotation: npENGINE_INTEGRAL_PARENT_IO
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-dfbb-7d89-4b50-525250524f50
  version: v28294.20489
  annotation: npENGINE_OBJECT_SET_WRITE_ACCESS_tERROR
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-b130-2d78-4b50-525250524f50
  version: v28294.20489
  annotation: npENGINE_OBJECT_EXECUTABLE_PARENT_IO_hOBJECT
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-7dc3-c215-4b50-525250524f50
  version: v28294.20489
  annotation: npENGINE_OBJECT_READONLY_tERROR
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-56be-b1b4-4b50-525250524f50
  version: v28294.20489
  annotation: npSCAN_OBJECT_CONTEXT
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-7819-d199-4b50-525250524f50
  version: v28294.20489
  annotation: antimalware.am_core_dll.registered
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-1d09-1186-4b50-525250524f50
  version: v28294.20489
  annotation: npAVS_SCAN_AREA_ID
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-62c7-816c-4b50-525250524f50
  version: v28294.20489
  annotation: npUserContext
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-6122-0a2a-4b50-525250524f50
  version: v28294.20489
  annotation: npENGINE_VIRTUAL_OBJECT_NAME
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-c49b-fe45-4b50-525250524f50
  version: v28294.20489
  annotation: PROTOCOL_TYPE
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-0276-35b6-4b50-525250524f50
  version: v28294.20489
  annotation: MESSAGE_CHECK_ONLY
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-86c2-73eb-4b50-525250524f50
  version: v28294.20489
  annotation: MESSAGE_IS_INCOMING
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-f7aa-5ba3-4b50-525250524f50
  version: v28294.20489
  annotation: npAVS_HTTP_RSP
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-a39b-5baa-4b50-525250524f50
  version: v28294.20489
  annotation: npAVS_HTTP_REQ
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-050c-2b49-4b50-525250524f50
  version: v28294.20489
  annotation: cpTASK_MANAGER_TASK_ID
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-f9a8-d5cb-4b50-525250524f50
  version: v28294.20489
  annotation: cpTASK_MANAGER_PROFILE_NAME
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-1441-c93d-4b50-525250524f50
  version: v28294.20489
  annotation: cpTASK_MANAGER_TASK_TYPE_NAME
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-c75c-28ad-4b50-52524f424a53
  version: v28294.20489
  annotation: PRRoot
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384
  ncalrpc: PRRUniversal#CA898CE412759C16:11788
  ncalrpc: PRRNameService:11788
  ncalrpc: PRRUniversal#7B7D58C0FDD1A72E:11676
  ncalrpc: PRRNameService:11676

9b3e3722-bab3-e001-4b50-52524f424a53
  version: v28294.20489
  annotation: ai_loader_remote_object
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-7551-7dee-4b50-525250524f50
  version: v28294.20489
  annotation: cpTEMPFILE_MEMMANAGER
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384

9b3e3722-e474-f035-4b50-525250524f50
  version: v28294.20489
  annotation: cpnPRAGUE_REMOTE_API
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384
  ncalrpc: PRRUniversal#CA898CE412759C16:11788
  ncalrpc: PRRNameService:11788
  ncalrpc: PRRUniversal#7B7D58C0FDD1A72E:11676
  ncalrpc: PRRNameService:11676

9b3e3722-d801-7233-4b50-525250524f50
  version: v28294.20489
  annotation: PR_REMOTE_MANAGER_PROP
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRNameService:2384
  ncalrpc: PRRUniversal#CA898CE412759C16:11788
  ncalrpc: PRRNameService:11788
  ncalrpc: PRRUniversal#7B7D58C0FDD1A72E:11676
  ncalrpc: PRRNameService:11676

9b3e3722-d895-1b89-4b50-525250494453
  version: v28294.20489
  annotation: PRRUniversal#980FC124D4E87C97:2384
  ncalrpc: PRRUniversal#980FC124D4E87C97:2384

367abb81-9844-35f1-ad32-98f038001003
  version: v2.0
  protocol: [MS-SCMR]: Service Control Manager Remote Protocol
  provider: services.exe
  ncacn_ip_tcp: 60.249.187.179:49424

6b5bdd1e-528c-422c-af8c-a4079be4fe48
  version: v1.0
  annotation: Remote Fw APIs
  protocol: [MS-FASP]: Firewall and Advanced Security Protocol
  provider: FwRemoteSvr.dll
  ncacn_ip_tcp: 60.249.187.179:49430

76209fe5-9049-4336-ba84-632d907cb154
  version: v1.0
  annotation: Interprocess Logon Service
  ncalrpc: ReportingServices$MSRS12.HKSQL
  ncalrpc: OLECA575F1F0A2E2773C5B030D12EF1

9b3e3722-b7af-d0ea-4b50-525250494453
  version: v28294.3118
  annotation: PRRUniversal#CA898CE412759C16:11788
  ncalrpc: PRRUniversal#CA898CE412759C16:11788

906b0ce0-c70b-1067-b317-00dd010662da
  version: v1.0
  protocol: [MS-CMPO]: MSDTC Connection Manager:
  provider: msdtcprx.dll
  ncalrpc: LRPC-d3c5772da1557f0a20
  ncalrpc: LRPC-d3c5772da1557f0a20
  ncalrpc: LRPC-d3c5772da1557f0a20

b2507c30-b126-494a-92ac-ee32b6eeb039
  version: v1.0
  ncalrpc: LRPC-f73ede2479a13c5255
  ncalrpc: LRPC-f125cf6310a01be7e4

9b3e3722-0591-34bb-4b50-525250494453
  version: v28294.39981
  annotation: PRRUniversal#7B7D58C0FDD1A72E:11676
  ncalrpc: PRRUniversal#7B7D58C0FDD1A72E:11676

1688663994 | 2024-12-27T17:20:24.581922

445 / tcp

SMB Status:
  Authentication: enabled
  SMB Version: 1
  OS: Windows Server 2012 R2 Standard 9600
  Software: Windows Server 2012 R2 Standard 6.3
  Capabilities: extended-security, infolevel-passthru, large-files, large-readx, large-writex, level2-oplocks, lock-and-read, lwio, nt-find, nt-smb, nt-status, rpc-remote-api, unicode

-1985651145 | 2025-01-02T03:59:20.517223

1433 / tcp

MS-SQL NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN2012
  NetBIOS Domain Name: WIN2012
  NetBIOS Computer Name: WIN2012
  DNS Domain Name: win2012
  FQDN: win2012

-143951760 | 2025-01-04T02:17:11.757210

1434 / udp

SQL Server Browser Service:
  Instance #1:
    Server Name: WIN2012
    Instance Name: KAV_CS_ADMIN_KIT
    Is Clustered: False
    Version: 12.0.4100.1
    TCP Port: 49408
    Version Name: MS-SQL Server 2014 SP1RTW/PCU1
  Instance #2:
    Server Name: WIN2012
    Instance Name: MSSQLSERVER
    Is Clustered: False
    Version: 12.0.2000.8
    TCP Port: 1433
    Named Pipe: \\WIN2012\pipe\sql\query
    Version Name: MS-SQL Server 2014 RTM
  Instance #3:
    Server Name: WIN2012
    Instance Name: HKSQL
    Is Clustered: False
    Version: 12.0.5000.0
    TCP Port: 49574
    Named Pipe: \\WIN2012\pipe\MSSQL$HKSQL\sql\query
    Version Name: MS-SQL Server 2014 SP2RTW/PCU2

-678121909 | 2025-01-05T00:35:01.481536

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN2012
  NetBIOS Domain Name: WIN2012
  NetBIOS Computer Name: WIN2012
  DNS Domain Name: win2012
  FQDN: win2012

Administrator cad2011
lark AN
gm Windows Server 2012 R2

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1d:77:4c:df:d6:01:e5:87:47:42:27:3e:3c:63:58:eb
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=win2012
        Validity
            Not Before: Dec  1 13:23:00 2024 GMT
            Not After : Jun  2 13:23:00 2025 GMT
        Subject: CN=win2012
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:99:0c:d8:22:ad:e0:7d:53:53:b8:9b:4b:88:25:
                    6e:aa:b2:8e:1b:30:c9:d6:21:6f:67:f7:35:f8:b4:
                    01:7c:02:b6:77:bc:f2:31:0a:e8:55:e3:4b:56:04:
                    7a:e7:79:ce:70:00:46:05:87:5c:f1:f9:0f:6e:33:
                    57:42:35:65:e0:45:23:28:b3:14:94:90:7e:2c:e4:
                    10:23:12:3f:84:8d:b8:91:22:36:1f:60:3e:6c:60:
                    6e:30:69:c9:81:39:e3:ba:c2:c3:ff:f4:15:70:04:
                    2c:24:47:e2:68:d3:64:9e:44:83:4a:4b:70:99:bf:
                    f2:0c:39:d2:d2:d9:46:6e:31:79:08:6c:ed:3f:ee:
                    d3:51:cb:70:12:59:b8:6b:e5:17:f1:02:16:51:b0:
                    29:9c:cb:2e:81:a4:f7:11:13:61:8b:37:00:ae:d5:
                    2d:9b:68:14:16:69:52:e8:d9:5d:a3:3c:6d:4c:98:
                    0a:9e:f9:98:6a:3d:e6:bd:4e:25:27:2c:6a:1d:18:
                    b5:50:cc:16:f9:78:50:59:98:c3:9b:c2:0c:91:2d:
                    2e:8b:bf:2a:6a:88:22:ca:3d:46:ab:dd:7f:9c:d2:
                    5d:ed:32:4c:49:9a:b2:27:eb:45:8a:c0:58:2f:b9:
                    9e:2d:50:20:a4:71:62:bf:ce:8f:18:a9:eb:36:f5:
                    b0:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        8d:78:7c:ef:92:5a:8f:2f:63:d5:16:ed:7f:52:ee:87:29:24:
        e4:5d:98:d1:3e:32:db:f4:3a:2d:6b:ef:8f:3e:8f:90:79:74:
        d3:df:59:47:e6:85:77:28:16:40:99:c4:8a:ef:e3:e3:ad:13:
        38:ca:65:f3:3e:2a:f0:f6:28:9b:2b:86:e8:ba:e3:3c:11:ba:
        d4:16:cc:9b:a2:3d:70:a2:d2:1a:c4:7d:2c:e6:ed:33:ad:dd:
        4f:84:bb:ad:98:6f:40:3d:9c:d6:06:db:56:de:c4:8f:e3:e9:
        d3:1d:b6:78:12:d7:f5:46:2e:b5:e3:6a:e4:2a:d4:03:95:f8:
        b2:36:61:66:1d:3b:9d:ac:97:a0:33:6a:5a:01:2f:5e:52:85:
        ed:42:c5:5d:be:e1:36:b6:2c:99:4c:8c:33:46:04:f0:ca:f2:
        8e:c5:94:9b:62:70:e7:ee:cd:03:83:b1:5a:f5:c3:3d:12:7a:
        b8:33:26:57:dd:35:47:f4:9d:83:67:2f:47:ec:32:e3:d2:4c:
        22:1a:bf:3b:c8:dc:3b:1c:43:92:73:57:70:ee:42:75:78:eb:
        32:63:21:3c:18:6c:3f:50:dc:04:89:da:c1:bf:0a:6a:de:f9:
        74:8b:c2:c4:51:bc:3e:7f:62:07:4e:71:42:d7:ce:57:47:a9:
        b1:66:ca:af

-1816173470 | 2024-12-28T01:45:37.991294

5800 / tcp

[win2012]

HTTP/1.0 200 OK

117718508 | 2024-12-28T02:00:22.333366

5900 / tcp

RFB 003.008

VNC:
  Protocol Version: 3.8
  Security Types:
    2: VNC Authentication
    17: Ultra

1489525118 | 2024-12-30T09:35:39.301400

5985 / tcp

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 30 Dec 2024 09:35:39 GMT
Connection: close
Content-Length: 315


WinRM NTLM Info:
  OS: Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN2012
  NetBIOS Domain Name: WIN2012
  NetBIOS Computer Name: WIN2012
  DNS Domain Name: win2012
  FQDN: win2012

1009235027 | 2024-12-27T19:55:33.982227

8060 / tcp

HTTP/1.1 404 Not Found
Content-Length: 9
Content-Type: text/plain

-1985651145 | 2025-01-04T02:21:01.056859

49408 / tcp

MS-SQL NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN2012
  NetBIOS Domain Name: WIN2012
  NetBIOS Computer Name: WIN2012
  DNS Domain Name: win2012
  FQDN: win2012

-1985651145 | 2025-01-04T02:19:10.502541

49574 / tcp

MS-SQL NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: WIN2012
  NetBIOS Domain Name: WIN2012
  NetBIOS Computer Name: WIN2012
  DNS Domain Name: win2012
  FQDN: win2012

60.249.187.179

Last Seen: 2025-01-05

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

515068867 | 2024-12-26T02:07:52.503598
26 / tcp

-1166248116 | 2024-12-28T07:38:59.184873
80 / tcp

Microsoft IIS httpd8.5

941094512 | 2024-12-30T19:09:49.849476
135 / tcp

Microsoft RPC Endpoint Mapper

1688663994 | 2024-12-27T17:20:24.581922
445 / tcp

-1985651145 | 2025-01-02T03:59:20.517223
1433 / tcp

MS-SQL Server 2014 RTM12.0.2000.0

-143951760 | 2025-01-04T02:17:11.757210
1434 / udp

SQL Server Browser Service

-678121909 | 2025-01-05T00:35:01.481536
3389 / tcp

Remote Desktop Protocol

-1816173470 | 2024-12-28T01:45:37.991294
5800 / tcp

TightVNC Java Viewer

117718508 | 2024-12-28T02:00:22.333366
5900 / tcp

VNC

1489525118 | 2024-12-30T09:35:39.301400
5985 / tcp

WinRM

1009235027 | 2024-12-27T19:55:33.982227
8060 / tcp

-1985651145 | 2025-01-04T02:21:01.056859
49408 / tcp

MS-SQL Server 2014 SP1RTW/PCU112.0.4100.0

-1985651145 | 2025-01-04T02:19:10.502541
49574 / tcp

MS-SQL Server 2014 SP2RTW/PCU212.0.5000.0

Products

Pricing

Contact Us

60.249.187.179

Last Seen: 2025-01-05

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

515068867 | 2024-12-26T02:07:52.503598 26 / tcp

-1166248116 | 2024-12-28T07:38:59.184873 80 / tcp

941094512 | 2024-12-30T19:09:49.849476 135 / tcp

1688663994 | 2024-12-27T17:20:24.581922 445 / tcp

-1985651145 | 2025-01-02T03:59:20.517223 1433 / tcp

-143951760 | 2025-01-04T02:17:11.757210 1434 / udp

-678121909 | 2025-01-05T00:35:01.481536 3389 / tcp

-1816173470 | 2024-12-28T01:45:37.991294 5800 / tcp

117718508 | 2024-12-28T02:00:22.333366 5900 / tcp

1489525118 | 2024-12-30T09:35:39.301400 5985 / tcp

1009235027 | 2024-12-27T19:55:33.982227 8060 / tcp

-1985651145 | 2025-01-04T02:21:01.056859 49408 / tcp

-1985651145 | 2025-01-04T02:19:10.502541 49574 / tcp

Products

Pricing

Contact Us

Vulnerabilities

515068867 | 2024-12-26T02:07:52.503598
26 / tcp

-1166248116 | 2024-12-28T07:38:59.184873
80 / tcp

941094512 | 2024-12-30T19:09:49.849476
135 / tcp

1688663994 | 2024-12-27T17:20:24.581922
445 / tcp

-1985651145 | 2025-01-02T03:59:20.517223
1433 / tcp

-143951760 | 2025-01-04T02:17:11.757210
1434 / udp

-678121909 | 2025-01-05T00:35:01.481536
3389 / tcp

-1816173470 | 2024-12-28T01:45:37.991294
5800 / tcp

117718508 | 2024-12-28T02:00:22.333366
5900 / tcp

1489525118 | 2024-12-30T09:35:39.301400
5985 / tcp

1009235027 | 2024-12-27T19:55:33.982227
8060 / tcp

-1985651145 | 2025-01-04T02:21:01.056859
49408 / tcp

-1985651145 | 2025-01-04T02:19:10.502541
49574 / tcp