GeneralInformation

Country	Russian Federation
City	Moscow
Organization	Chang Way Technologies Co. Limited
ISP	Chang Way Technologies Co. Limited
ASN	AS57523

Vulnerabilities

CVE-2020-0796

10.0A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client.

OpenPorts

135 445 3389 5357

-1534899671 | 2024-05-04T01:18:25.993794

135 / tcp

Microsoft RPC Endpoint Mapper

51a227ae-825b-41f2-b4a9-1ac9557a1018
  version: v1.0
  annotation: Ngc Pop Key Service
  ncacn_ip_tcp: 176.111.174.153:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\DESKTOP-MS48TG3\pipe\lsass

8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
  version: v1.0
  annotation: Ngc Pop Key Service
  ncacn_ip_tcp: 176.111.174.153:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\DESKTOP-MS48TG3\pipe\lsass

b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
  version: v2.0
  annotation: KeyIso
  ncacn_ip_tcp: 176.111.174.153:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\DESKTOP-MS48TG3\pipe\lsass

12345778-1234-abcd-ef00-0123456789ac
  version: v1.0
  protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
  provider: samsrv.dll
  ncacn_ip_tcp: 176.111.174.153:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\DESKTOP-MS48TG3\pipe\lsass

d95afe70-a6d5-4259-822e-2c84da1ddb0d
  version: v1.0
  protocol: [MS-RSP]: Remote Shutdown Protocol
  provider: wininit.exe
  ncacn_ip_tcp: 176.111.174.153:49665
  ncalrpc: WindowsShutdown
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0C79C0

76f226c3-ec14-4325-8a99-6a46348418af
  version: v1.0
  provider: winlogon.exe
  ncalrpc: WindowsShutdown
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0C79C0
  ncalrpc: WMsgKRpc0DC3D1
  ncalrpc: WMsgKRpc04ABF02

fc48cd89-98d6-4628-9839-86f7a3e4161a
  version: v1.0
  ncalrpc: dabrpc
  ncalrpc: csebpub
  ncalrpc: LRPC-a43d94359c6687625e
  ncalrpc: LRPC-7a238e88edd7cb04ec
  ncalrpc: LRPC-c7232fff036ba3ab29
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

d09bdeb5-6171-4a34-bfe2-06fa82652568
  version: v1.0
  ncalrpc: csebpub
  ncalrpc: LRPC-a43d94359c6687625e
  ncalrpc: LRPC-7a238e88edd7cb04ec
  ncalrpc: LRPC-c7232fff036ba3ab29
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-7a238e88edd7cb04ec
  ncalrpc: LRPC-c7232fff036ba3ab29
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-c7232fff036ba3ab29
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-2a36425570d5a5b5f6
  ncalrpc: LRPC-291a8da8de376d38f2
  ncalrpc: LRPC-e7981077bc271039de
  ncalrpc: LRPC-e7981077bc271039de

697dcda9-3ba9-4eb2-9247-e11f1901b0d2
  version: v1.0
  ncalrpc: LRPC-a43d94359c6687625e
  ncalrpc: LRPC-7a238e88edd7cb04ec
  ncalrpc: LRPC-c7232fff036ba3ab29
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

9b008953-f195-4bf9-bde0-4471971e58ed
  version: v1.0
  ncalrpc: LRPC-7a238e88edd7cb04ec
  ncalrpc: LRPC-c7232fff036ba3ab29
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

0d47017b-b33b-46ad-9e18-fe96456c5078
  version: v1.0
  ncalrpc: umpo

95406f0b-b239-4318-91bb-cea3a46ff0dc
  version: v1.0
  ncalrpc: umpo

4ed8abcc-f1e2-438b-981f-bb0e8abc010c
  version: v1.0
  ncalrpc: umpo

0ff1f646-13bb-400a-ab50-9a78f2b7a85a
  version: v1.0
  ncalrpc: umpo

6982a06e-5fe2-46b1-b39c-a2c545bfa069
  version: v1.0
  ncalrpc: umpo

082a3471-31b6-422a-b931-a54401960c62
  version: v1.0
  ncalrpc: umpo

fae436b0-b864-4a87-9eda-298547cd82f2
  version: v1.0
  ncalrpc: umpo

e53d94ca-7464-4839-b044-09a2fb8b3ae5
  version: v1.0
  ncalrpc: umpo

178d84be-9291-4994-82c6-3f909aca5a03
  version: v1.0
  ncalrpc: umpo

4dace966-a243-4450-ae3f-9b7bcb5315b8
  version: v2.0
  ncalrpc: umpo

1832bcf6-cab8-41d4-85d2-c9410764f75a
  version: v1.0
  ncalrpc: umpo

c521facf-09a9-42c5-b155-72388595cbf0
  version: v0.0
  ncalrpc: umpo

2c7fd9ce-e706-4b40-b412-953107ef9bb0
  version: v0.0
  ncalrpc: umpo

88abcbc3-34ea-76ae-8215-767520655a23
  version: v0.0
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

76c217bc-c8b4-4201-a745-373ad9032b1a
  version: v1.0
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

55e6b932-1979-45d6-90c5-7f6270724112
  version: v1.0
  ncalrpc: LRPC-cb6df520cb9fff0985
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
  version: v1.0
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

20c40295-8dba-48e6-aebf-3e78ef3bb144
  version: v2.0
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

2513bcbe-6cd4-4348-855e-7efb3c336dd3
  version: v2.0
  ncalrpc: OLE64335BD7CA52B8BA61870F703093
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
  version: v1.0
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
  version: v1.0
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
  version: v1.0
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
  version: v1.0
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

2d98a740-581d-41b9-aa0d-a88b9d5ce938
  version: v1.0
  ncalrpc: LRPC-dbc90735abab15d18e
  ncalrpc: actkernel
  ncalrpc: umpo

dd59071b-3215-4c59-8481-972edadc0f6a
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

0361ae94-0316-4c6c-8ad8-c594375800e2
  version: v1.0
  ncalrpc: umpo

5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
  version: v1.0
  ncalrpc: umpo

bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
  version: v1.0
  ncalrpc: umpo

3b338d89-6cfa-44b8-847e-531531bc9992
  version: v1.0
  ncalrpc: umpo

8782d3b9-ebbd-4644-a3d8-e8725381919b
  version: v1.0
  ncalrpc: umpo

085b0334-e454-4d91-9b8c-4134f9e793f3
  version: v1.0
  ncalrpc: umpo

4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
  version: v1.0
  ncalrpc: umpo

c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
  version: v1.0
  annotation: Impl friendly name
  provider: sysntfy.dll
  ncalrpc: LRPC-fab41ceaadd445631a
  ncalrpc: IUserProfile2
  ncalrpc: LRPC-f149d471cf9958479b
  ncalrpc: senssvc
  ncalrpc: LRPC-1173941525aad2adfa

f3f09ffd-fbcf-4291-944d-70ad6e0e73bb
  version: v1.0
  ncalrpc: LRPC-1d0cd0bb5f218d6f24

e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
  version: v1.0
  ncalrpc: LRPC-78a25178644bf674f8

880fd55e-43b9-11e0-b1a8-cf4edfd72085
  version: v1.0
  annotation: KAPI Service endpoint
  ncalrpc: LRPC-136a9773a780fafa9f
  ncalrpc: OLEB2A300FA6BE8C2B29F26253E55DA
  ncalrpc: LRPC-2a36425570d5a5b5f6

5222821f-d5e2-4885-84f1-5f6185a0ec41
  version: v1.0
  ncalrpc: LRPC-87006479e21811b5d3

3a9ef155-691d-4449-8d05-09ad57031823
  version: v1.0
  ncacn_ip_tcp: 176.111.174.153:49667
  ncalrpc: LRPC-fea630c2545209db91
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\atsvc
  ncalrpc: LRPC-f30606bd7e2100b0d1

86d35949-83c9-4044-b424-db363231fd0c
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: schedsvc.dll
  ncacn_ip_tcp: 176.111.174.153:49667
  ncalrpc: LRPC-fea630c2545209db91
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\atsvc
  ncalrpc: LRPC-f30606bd7e2100b0d1

33d84484-3626-47ee-8c6f-e7e98b113be1
  version: v2.0
  ncalrpc: LRPC-fea630c2545209db91
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\atsvc
  ncalrpc: LRPC-f30606bd7e2100b0d1

378e52b0-c0a9-11cf-822d-00aa0051e40f
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\atsvc
  ncalrpc: LRPC-f30606bd7e2100b0d1

1ff70682-0a51-30e8-076d-740be8cee98b
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\atsvc
  ncalrpc: LRPC-f30606bd7e2100b0d1

0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
  version: v1.0
  provider: schedsvc.dll
  ncalrpc: LRPC-f30606bd7e2100b0d1

a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
  version: v1.0
  ncalrpc: LRPC-78a1cff867aa8c5df8
  ncalrpc: LRPC-291a8da8de376d38f2

f6beaff7-1e19-4fbb-9f8f-b89e2018337c
  version: v1.0
  annotation: Event log TCPIP
  protocol: [MS-EVEN6]: EventLog Remoting Protocol
  provider: wevtsvc.dll
  ncacn_ip_tcp: 176.111.174.153:49666
  ncacn_np: \\DESKTOP-MS48TG3\pipe\eventlog
  ncalrpc: eventlog

7ea70bcf-48af-4f6a-8968-6a440754d5fa
  version: v1.0
  annotation: NSI server endpoint
  provider: nsisvc.dll
  ncalrpc: LRPC-9c300c4747931b30fd

0d3c7f20-1c8d-4654-a1b3-51563b298bda
  version: v1.0
  annotation: UserMgrCli
  ncalrpc: LRPC-1d19e43b575b13033b
  ncalrpc: OLE392CE7AC718650222E174FC0B916

b18fbab6-56f8-4702-84e0-41053293a869
  version: v1.0
  annotation: UserMgrCli
  ncalrpc: LRPC-1d19e43b575b13033b
  ncalrpc: OLE392CE7AC718650222E174FC0B916

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
  version: v1.0
  annotation: DHCPv6 Client LRPC Endpoint
  provider: dhcpcsvc6.dll
  ncalrpc: dhcpcsvc6
  ncalrpc: dhcpcsvc

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
  version: v1.0
  annotation: DHCP Client LRPC Endpoint
  provider: dhcpcsvc.dll
  ncalrpc: dhcpcsvc

4c8d0bef-d7f1-49f0-9102-caa05f58d114
  version: v1.0
  ncalrpc: nlaapi
  ncalrpc: nlaplg

30b044a5-a225-43f0-b3a4-e060df91f9c1
  version: v1.0
  provider: certprop.dll
  ncalrpc: LRPC-1bc7efeaa4abb52aa3

509bc7ae-77be-4ee8-b07c-0d096bb44345
  version: v1.0
  ncalrpc: LRPC-7b0317234c6e6d2bea
  ncalrpc: OLEFC06B1C38A7C65C9EE46412C056C

7f1343fe-50a9-4927-a778-0c5859517bac
  version: v1.0
  annotation: DfsDs service
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\wkssvc
  ncalrpc: LRPC-3d082fa74c71bc960a

eb081a0d-10ee-478a-a1dd-50995283e7a8
  version: v3.0
  annotation: Witness Client Test Interface
  ncalrpc: LRPC-3d082fa74c71bc960a

f2c9b409-c1c9-4100-8639-d8ab1486694a
  version: v1.0
  annotation: Witness Client Upcall Server
  ncalrpc: LRPC-3d082fa74c71bc960a

30adc50c-5cbc-46ce-9a0e-91914789e23c
  version: v1.0
  annotation: NRP server endpoint
  provider: nrpsrv.dll
  ncalrpc: LRPC-7553db80cce87675ec
  ncalrpc: DNSResolver

29770a8f-829b-4158-90a2-78cd488501f7
  version: v1.0
  ncacn_ip_tcp: 176.111.174.153:49668
  ncacn_np: \\DESKTOP-MS48TG3\pipe\SessEnvPublicRpc
  ncalrpc: SessEnvPrivateRpc
  ncalrpc: LRPC-1173941525aad2adfa

b58aa02e-2884-4e97-8176-4ee06d794184
  version: v1.0
  provider: sysmain.dll
  ncalrpc: LRPC-4b9ee90252522b5533

76f03f96-cdfd-44fc-a22c-64950a001209
  version: v1.0
  protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 176.111.174.153:49669
  ncalrpc: LRPC-3e47b8736b13447f60

4a452661-8290-4b36-8fbe-7f4093a94978
  version: v1.0
  provider: spoolsv.exe
  ncacn_ip_tcp: 176.111.174.153:49669
  ncalrpc: LRPC-3e47b8736b13447f60

ae33069b-a2a8-46ee-a235-ddfd339be281
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 176.111.174.153:49669
  ncalrpc: LRPC-3e47b8736b13447f60

0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 176.111.174.153:49669
  ncalrpc: LRPC-3e47b8736b13447f60

12345678-1234-abcd-ef00-0123456789ab
  version: v1.0
  protocol: [MS-RPRN]: Print System Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 176.111.174.153:49669
  ncalrpc: LRPC-3e47b8736b13447f60

c2d1b5dd-fa81-4460-9dd6-e7658b85454b
  version: v1.0
  ncalrpc: LRPC-9074adbcb58cd97bc5
  ncalrpc: OLE2BADEF90CB933B1411CB3EF66C7F

f44e62af-dab1-44c2-8013-049a9de417d6
  version: v1.0
  ncalrpc: LRPC-9074adbcb58cd97bc5
  ncalrpc: OLE2BADEF90CB933B1411CB3EF66C7F

7aeb6705-3ae6-471a-882d-f39c109edc12
  version: v1.0
  ncalrpc: LRPC-9074adbcb58cd97bc5
  ncalrpc: OLE2BADEF90CB933B1411CB3EF66C7F

e7f76134-9ef5-4949-a2d6-3368cc0988f3
  version: v1.0
  ncalrpc: LRPC-9074adbcb58cd97bc5
  ncalrpc: OLE2BADEF90CB933B1411CB3EF66C7F

b37f900a-eae4-4304-a2ab-12bb668c0188
  version: v1.0
  ncalrpc: LRPC-9074adbcb58cd97bc5
  ncalrpc: OLE2BADEF90CB933B1411CB3EF66C7F

abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
  version: v1.0
  ncalrpc: LRPC-9074adbcb58cd97bc5
  ncalrpc: OLE2BADEF90CB933B1411CB3EF66C7F

2fb92682-6599-42dc-ae13-bd2ca89bd11c
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-2ae23fed3ab700bec1
  ncalrpc: LRPC-b8d951435c681b1b62
  ncalrpc: LRPC-ded6b3567e8750a1b1
  ncalrpc: LRPC-091cfd617039b51873

f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
  version: v1.0
  annotation: Fw APIs
  ncalrpc: LRPC-b8d951435c681b1b62
  ncalrpc: LRPC-ded6b3567e8750a1b1
  ncalrpc: LRPC-091cfd617039b51873

7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-ded6b3567e8750a1b1
  ncalrpc: LRPC-091cfd617039b51873

dd490425-5325-4565-b774-7e27d6c09c24
  version: v1.0
  annotation: Base Firewall Engine API
  provider: BFE.DLL
  ncalrpc: LRPC-091cfd617039b51873

a398e520-d59a-4bdd-aa7a-3c1e0303a511
  version: v1.0
  annotation: IKE/Authip API
  provider: IKEEXT.DLL
  ncalrpc: LRPC-b661a33fb0bed7462f

c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
  version: v1.0
  annotation: Adh APIs
  ncalrpc: OLED1A354A48148428AA76CCAEC4D5B
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-87e62f1bb1ac5e6a6c

c36be077-e14b-4fe9-8abc-e856ef4f048b
  version: v1.0
  annotation: Proxy Manager client server endpoint
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-87e62f1bb1ac5e6a6c

2e6035b2-e8f1-41a7-a044-656b439c4c34
  version: v1.0
  annotation: Proxy Manager provider server endpoint
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-87e62f1bb1ac5e6a6c

552d076a-cb29-4e44-8b6a-d15e59e2c0af
  version: v1.0
  annotation: IP Transition Configuration endpoint
  provider: iphlpsvc.dll
  ncalrpc: LRPC-87e62f1bb1ac5e6a6c

367abb81-9844-35f1-ad32-98f038001003
  version: v2.0
  protocol: [MS-SCMR]: Service Control Manager Remote Protocol
  provider: services.exe
  ncacn_ip_tcp: 176.111.174.153:49670

1a0d010f-1c33-432c-b0f5-8cf4e8053099
  version: v1.0
  annotation: IdSegSrv service
  ncalrpc: LRPC-a772ec1a4a4870eef2

98716d03-89ac-44c7-bb8c-285824e51c4a
  version: v1.0
  annotation: XactSrv service
  provider: srvsvc.dll
  ncalrpc: LRPC-a772ec1a4a4870eef2

650a7e26-eab8-5533-ce43-9c1dfce11511
  version: v1.0
  annotation: Vpn APIs
  ncalrpc: LRPC-16a58a15294c014e08
  ncalrpc: VpnikeRpc
  ncalrpc: RasmanLrpc
  ncacn_np: \\DESKTOP-MS48TG3\PIPE\ROUTER

6b5bdd1e-528c-422c-af8c-a4079be4fe48
  version: v1.0
  annotation: Remote Fw APIs
  protocol: [MS-FASP]: Firewall and Advanced Security Protocol
  provider: FwRemoteSvr.dll
  ncacn_ip_tcp: 176.111.174.153:49671
  ncalrpc: ipsec

98cd761e-e77d-41c8-a3c0-0fb756d90ec2
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

d22895ef-aff4-42c5-a5b2-b14466d34ab4
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

e38f5360-8572-473e-b696-1b46873beeab
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

95095ec8-32ea-4eb0-a3e2-041f97b36168
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

4c9dbf19-d39e-4bb9-90ee-8f7179b20283
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

d4051bde-9cdd-4910-b393-4aa85ec3c482
  version: v1.0
  ncalrpc: LRPC-6f2e8a4c087d1d67aa

a4b8d482-80ce-40d6-934d-b22a01a44fe7
  version: v1.0
  annotation: LicenseManager
  ncalrpc: LicenseServiceEndpoint

c27f3c08-92ba-478c-b446-b419c4cef0e2
  version: v1.0
  ncalrpc: LRPC-200d39009837ebad2d

5b665b9a-a086-4e26-ae24-96ab050b0ec3
  version: v1.0
  annotation: Device Association Framework AEP Store Access RPC Interface
  ncalrpc: LRPC-1a7501af0fda6051a0

bd84cd86-9825-4376-813d-334c543f89b1
  version: v1.0
  annotation: Device Association Framework Query RPC Interface
  ncalrpc: LRPC-1a7501af0fda6051a0

2e7d4935-59d2-4312-a2c8-41900aa5495f
  version: v1.0
  annotation: Device Association Framework Challenge RPC Interface
  ncalrpc: LRPC-1a7501af0fda6051a0

a1d4eae7-39f8-4bca-8e72-832767f5082a
  version: v1.0
  annotation: Device Association Framework Inbound RPC Interface
  ncalrpc: LRPC-1a7501af0fda6051a0

850cee52-3038-4277-b9b4-e05db8b2c35c
  version: v1.0
  annotation: Device Association Framework Association RPC Interface
  ncalrpc: LRPC-1a7501af0fda6051a0

4b112204-0e19-11d3-b42b-0000f81feb9f
  version: v1.0
  provider: ssdpsrv.dll
  ncalrpc: LRPC-6546e8406227b76832

12e65dd8-887f-41ef-91bf-8d816c42c2e7
  version: v1.0
  annotation: Secure Desktop LRPC interface
  provider: winlogon.exe
  ncalrpc: WMsgKRpc04ABF02

54b4c689-969a-476f-8dc2-990885e9f562
  version: v0.0
  ncalrpc: LRPC-800fdf575631d3b467

be6293d3-2827-4dda-8057-8588240124c9
  version: v0.0
  ncalrpc: LRPC-800fdf575631d3b467

b1ef227e-dfa5-421e-82bb-67a6a129c496
  version: v0.0
  ncalrpc: LRPC-ffe803a0e5aa014d40
  ncalrpc: OLE506C9E30CF99DEADA5039C79357F

0fc77b1a-95d8-4a2e-a0c0-cff54237462b
  version: v0.0
  ncalrpc: LRPC-ffe803a0e5aa014d40
  ncalrpc: OLE506C9E30CF99DEADA5039C79357F

8ec21e98-b5ce-4916-a3d6-449fa428a007
  version: v0.0
  ncalrpc: LRPC-ffe803a0e5aa014d40
  ncalrpc: OLE506C9E30CF99DEADA5039C79357F

0767a036-0d22-48aa-ba69-b619480f38cb
  version: v1.0
  annotation: PcaSvc
  provider: pcasvc.dll
  ncalrpc: LRPC-5a1f63d8cceb79ddbf

58e604e8-9adb-4d2e-a464-3b0683fb1480
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-7898d95307705f8b13

fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-7898d95307705f8b13

5f54ce7d-5b79-4175-8584-cb65313a0e98
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-7898d95307705f8b13

201ef99a-7fa0-444c-9399-19ba84f12a1a
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-7898d95307705f8b13

0497b57d-2e66-424f-a0c6-157cd5d41700
  version: v1.0
  annotation: AppInfo
  ncalrpc: LRPC-7898d95307705f8b13

43890c94-bfd7-4655-ad6a-b4a68397cdcb
  version: v0.0
  ncalrpc: LRPC-33077a9132466e5e57
  ncalrpc: OLE881A024A1C1534E90D73D7AE2BBD

c8ba73d2-3d55-429c-8e9a-c44f006f69fc
  version: v0.0
  ncalrpc: LRPC-33077a9132466e5e57
  ncalrpc: OLE881A024A1C1534E90D73D7AE2BBD

e8748f69-a2a4-40df-9366-62dbeb696e26
  version: v0.0
  ncalrpc: LRPC-33077a9132466e5e57
  ncalrpc: OLE881A024A1C1534E90D73D7AE2BBD

923c9623-db7f-4b34-9e6d-e86580f8ca2a
  version: v1.0
  ncalrpc: LRPC-33077a9132466e5e57
  ncalrpc: OLE881A024A1C1534E90D73D7AE2BBD

0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd
  version: v1.0
  ncalrpc: LRPC-33077a9132466e5e57
  ncalrpc: OLE881A024A1C1534E90D73D7AE2BBD

d2716e94-25cb-4820-bc15-537866578562
  version: v1.0
  ncalrpc: LRPC-33077a9132466e5e57
  ncalrpc: OLE881A024A1C1534E90D73D7AE2BBD

7a20fcec-dec4-4c59-be57-212e8f65d3de
  version: v1.0
  ncalrpc: LRPC-f0d80b726eb5536f72

06bba54a-be05-49f9-b0a0-30f790261023
  version: v1.0
  annotation: Security Center
  provider: wscsvc.dll
  ncalrpc: LRPC-671fa278eddbdeee8f
  ncalrpc: OLE396FE46B08AD4A43D0D1E8229B86

bf4dc912-e52f-4904-8ebe-9317c1bdd497
  version: v1.0
  ncalrpc: LRPC-1fe433a1851ff693e9
  ncalrpc: OLEDD5540A07031C72F976E37DA651E

4be96a0f-9f52-4729-a51d-c70610f118b0
  version: v1.0
  annotation: wbiosrvc
  provider: wbiosrvc.dll
  ncalrpc: LRPC-d87a09506f20f3308d

c0e9671e-33c6-4438-9464-56b2e1b1c7b4
  version: v1.0
  annotation: wbiosrvc
  provider: wbiosrvc.dll
  ncalrpc: LRPC-d87a09506f20f3308d

ff9fd3c4-742e-45e0-91dd-2f5bc632a1df
  version: v1.0
  annotation: appxsvc
  ncalrpc: LRPC-831a5a1acd5b5f1af7

ae2dc901-312d-41df-8b79-e835e63db874
  version: v1.0
  annotation: appxsvc
  ncalrpc: LRPC-831a5a1acd5b5f1af7

169c453b-5955-4672-be44-21f61e9ef18f
  version: v1.0
  annotation: INgcContainerEnum
  ncalrpc: LRPC-5a86f703839e98528d

3473dd4d-2e88-4006-9cba-22570909dd10
  version: v5.256
  annotation: WinHttp Auto-Proxy Service
  ncalrpc: 870f83cf-bb15-4773-9056-0ba4e27c8661
  ncalrpc: LRPC-d0617abad312675adc

-1166656618 | 2024-05-04T02:48:33.218523

445 / tcp

SMB Status:
  Authentication: enabled
  SMB Version: 2
  Capabilities: raw-mode

-1945201152 | 2024-04-27T09:09:59.263418

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 10 (version 2004)/Windows Server (version 2004)
  OS Build: 10.0.19041
  Target Name: DESKTOP-MS48TG3
  NetBIOS Domain Name: DESKTOP-MS48TG3
  NetBIOS Computer Name: DESKTOP-MS48TG3
  DNS Domain Name: DESKTOP-MS48TG3
  FQDN: DESKTOP-MS48TG3

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5d:10:d6:80:d5:30:e4:b8:43:ed:5a:4f:55:e2:29:6d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DESKTOP-MS48TG3
        Validity
            Not Before: Dec 20 07:15:16 2023 GMT
            Not After : Jun 20 07:15:16 2024 GMT
        Subject: CN=DESKTOP-MS48TG3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c3:d0:5f:c3:2c:1f:be:f9:1b:23:44:70:d2:70:
                    7e:7e:68:eb:24:04:3f:ef:dd:15:ad:a8:d8:c6:f7:
                    9d:73:92:f4:a0:d5:79:20:46:d0:60:33:1e:51:d2:
                    aa:34:c6:ab:e4:9b:32:cb:4f:77:bf:18:78:2e:15:
                    bb:e4:3d:14:55:66:24:4a:e4:84:91:df:c7:bc:69:
                    2c:2a:e6:26:fd:56:17:1f:88:5d:92:71:cf:1a:fb:
                    9e:be:49:70:9c:12:b8:c7:ff:53:c2:ff:a1:97:f5:
                    25:f9:fa:2c:ab:8b:73:a4:25:4b:0b:09:f2:32:49:
                    cc:dd:49:7a:15:9e:42:e2:ea:25:d1:11:df:66:00:
                    f4:07:63:3b:35:d3:46:b0:8e:9a:9f:14:e5:4d:6e:
                    5f:c2:5b:22:ca:08:7c:6d:77:1c:4a:b2:4f:03:94:
                    2b:56:7e:b3:95:6e:47:c1:1c:78:f2:05:6a:45:e3:
                    52:db:64:28:f4:44:3b:ca:92:dc:cf:dc:02:35:e7:
                    89:c4:ea:6c:1f:2f:20:e6:5d:d6:59:30:14:71:53:
                    93:3c:0c:92:79:8a:61:b2:83:34:66:19:be:81:e9:
                    27:fb:24:b1:1a:0b:5c:7b:06:ab:6d:2e:67:3c:70:
                    15:25:c3:96:e5:3c:45:30:f3:d5:a6:38:76:71:89:
                    61:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        76:dd:74:29:2c:3b:66:5e:d6:58:af:c7:39:50:5d:e0:91:c0:
        41:a3:d9:39:c5:cd:9d:37:14:df:46:8f:96:de:a7:d1:72:28:
        f8:d2:45:dc:e0:9e:9d:5b:c0:85:d6:fe:9b:b2:e1:e7:b2:b7:
        49:26:6c:ba:56:f2:81:fd:76:a8:8b:cd:6d:f5:2e:8c:1e:ed:
        26:20:4e:ce:e5:0e:e2:53:d2:8d:09:0c:ee:60:e4:e8:ad:58:
        35:db:ea:f8:aa:ae:3d:61:e7:d9:71:86:e4:10:f0:3e:5b:5d:
        d9:48:2f:0f:1c:b1:c7:ea:22:e5:2b:4c:d0:8f:59:34:2e:a2:
        6e:f0:53:21:f1:a5:48:03:d3:48:4f:ae:9b:ee:f0:00:bb:93:
        a2:5f:1d:f8:fe:61:07:32:ac:18:62:d5:8c:55:d9:ee:9b:9d:
        81:81:4c:27:63:88:30:f4:97:95:2b:e2:58:c9:fb:0b:3c:bf:
        48:8c:75:a1:eb:ae:06:d9:10:9a:73:dd:80:f4:37:ff:bf:ee:
        83:c5:71:e1:0d:fa:2a:ea:72:fa:d2:c0:71:32:8a:60:65:08:
        ed:4a:d8:cf:cf:33:76:f0:18:21:9a:b5:3e:43:47:03:9e:19:
        c2:8c:cb:9e:e6:27:57:71:cc:bd:79:ff:c0:fd:d5:30:89:92:
        c2:05:94:29

-1684583448 | 2024-04-16T00:38:03.592649

5357 / tcp

HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 16 Apr 2024 00:38:03 GMT
Connection: close
Content-Length: 326

176.111.174.153

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1534899671 | 2024-05-04T01:18:25.993794
135 / tcp

Microsoft RPC Endpoint Mapper

-1166656618 | 2024-05-04T02:48:33.218523
445 / tcp

-1945201152 | 2024-04-27T09:09:59.263418
3389 / tcp

Remote Desktop Protocol

-1684583448 | 2024-04-16T00:38:03.592649
5357 / tcp

Products

Pricing

Contact Us

176.111.174.153

Last Seen: 2024-05-04

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1534899671 | 2024-05-04T01:18:25.993794 135 / tcp

Microsoft RPC Endpoint Mapper

-1166656618 | 2024-05-04T02:48:33.218523 445 / tcp

-1945201152 | 2024-04-27T09:09:59.263418 3389 / tcp

Remote Desktop Protocol

-1684583448 | 2024-04-16T00:38:03.592649 5357 / tcp

Products

Pricing

Contact Us

-1534899671 | 2024-05-04T01:18:25.993794
135 / tcp

-1166656618 | 2024-05-04T02:48:33.218523
445 / tcp

-1945201152 | 2024-04-27T09:09:59.263418
3389 / tcp

-1684583448 | 2024-04-16T00:38:03.592649
5357 / tcp