GeneralInformation

Country	China
City	Shenzhen
Organization	CHINANET Guangdong province network
ISP	CHINANET-BACKBONE
ASN	AS4134

Vulnerabilities

CVE-2019-0708

10.0A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

OpenPorts

1801 3389

348514286 | 2024-05-15T01:40:45.388251

1801 / tcp

\x10Z\x0b\x00LIOR<\x02\x00\x00\xff\xff\xff\xff\x00\x00\x12\x00\x06U=Q6\xdf\xc7@\x96C\x17\\<\xe7l\xaa\xab\\f\xe7\xebV\x11A\xacj\xdb\x00\xe8\x17\xbe\xd5\x00\x00\x00\x00\x10\x02\x00\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

1680891709 | 2024-04-30T06:55:42.364537

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x01\x08\x00\x02\x00\x00\x00

Administrator
4 Windows Server-2008rz
Standard

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:00:4a:04:dd:88:7d:9e:4f:f5:72:e2:8d:e4:84:34
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=WIN-BQ99SE60ETT
        Validity
            Not Before: Jan 12 17:00:11 2024 GMT
            Not After : Jul 13 17:00:11 2024 GMT
        Subject: CN=WIN-BQ99SE60ETT
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a0:0e:a8:8a:1f:ee:77:6b:3b:9e:47:4b:63:9e:
                    25:91:7f:a7:d1:61:c7:2e:a9:10:de:a0:46:4a:67:
                    f4:e5:fb:6f:59:6e:e8:5d:92:04:7c:a6:88:0b:e0:
                    ec:1e:86:d0:ef:c4:67:f7:58:b9:1a:9a:0e:8a:d8:
                    cb:7f:82:be:89:96:62:ec:aa:32:e5:13:1a:a4:99:
                    eb:1b:53:13:5e:f0:ba:19:cf:fd:f3:57:9f:8b:01:
                    35:02:c4:e5:4a:0e:0e:08:e4:57:6a:2c:22:d1:74:
                    37:9e:a8:ff:d6:5c:dc:2f:05:90:44:86:84:15:27:
                    d1:2b:b9:1a:40:39:22:ec:e9:a4:2b:47:42:85:97:
                    f4:d3:2e:b9:9d:f7:c5:88:4e:e2:a3:41:8f:e7:89:
                    8a:c8:a0:17:99:bd:79:d1:1a:e3:3b:33:2f:a3:5f:
                    80:68:63:10:fb:03:39:a4:c1:c6:ba:98:96:0a:39:
                    e5:22:6b:c7:db:84:9a:ae:b8:ce:e4:61:fa:7c:47:
                    58:25:c0:e8:aa:37:19:37:0a:ca:16:3b:e6:18:64:
                    aa:06:1f:d7:09:5b:a2:d8:cb:3f:46:6d:ca:bb:6e:
                    6b:67:5f:5c:cc:1a:d5:91:70:41:4c:f5:88:1b:a5:
                    4d:f8:67:3f:ab:43:a2:14:cd:a7:a1:f0:f6:f5:ea:
                    6d:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        62:fa:a4:f8:fc:6a:fa:e3:ec:69:6e:67:ca:63:36:e8:63:b1:
        ac:f2:70:d1:6b:71:07:45:ba:e7:8e:5b:c2:ac:f1:5c:ce:d5:
        7a:6e:f0:be:f7:12:7e:a9:6d:ad:d3:69:9f:9c:1b:9c:1c:2a:
        f7:5a:4c:da:9e:95:65:0c:01:10:5b:49:61:93:7b:c8:c5:44:
        d7:70:5f:97:2a:be:76:0e:d3:f2:a9:4e:12:f7:f8:b8:63:b8:
        0c:79:9b:1e:96:2d:31:1e:82:93:fa:71:bb:3f:36:74:08:f9:
        6e:8b:b4:2d:99:7d:7b:3a:85:2b:45:8e:e9:37:6d:46:07:ec:
        03:fd:1e:b4:b3:66:2f:a9:9c:31:15:c3:d9:3e:11:3c:e6:f2:
        f4:10:da:de:7f:e7:0f:c7:ab:be:61:c8:2a:62:cd:f3:bf:2a:
        42:d9:ec:7f:e9:0e:68:1d:0d:37:63:d4:d3:72:42:7f:7a:ee:
        97:1b:60:7b:93:92:d3:2e:30:8f:37:7a:7b:98:a3:28:77:05:
        50:b7:bf:cd:9c:f0:0c:eb:7f:e4:8a:2f:af:2a:05:23:a1:e1:
        32:c1:61:75:76:19:f7:48:0e:ab:10:a8:01:a1:bc:c2:83:55:
        ff:0b:a2:7b:82:f6:0c:e8:ff:e5:b6:42:49:9a:f1:44:f9:8f:
        28:93:9e:02

219.134.95.204

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

348514286 | 2024-05-15T01:40:45.388251
1801 / tcp

Microsoft Message Queuing

1680891709 | 2024-04-30T06:55:42.364537
3389 / tcp

Remote Desktop Protocol

Products

Pricing

Contact Us

219.134.95.204

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

348514286 | 2024-05-15T01:40:45.388251 1801 / tcp

Microsoft Message Queuing

1680891709 | 2024-04-30T06:55:42.364537 3389 / tcp

Remote Desktop Protocol

Products

Pricing

Contact Us

348514286 | 2024-05-15T01:40:45.388251
1801 / tcp

1680891709 | 2024-04-30T06:55:42.364537
3389 / tcp