GeneralInformation

Country	United States
City	Phoenix
Organization	CenturyLink Communications, LLC
ISP	CenturyLink Communications, LLC
ASN	AS209

Vulnerabilities

CVE-2020-0796

10.0A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server or client.

OpenPorts

80 135 139 445 1911 5357

1494382418 | 2024-05-08T15:01:47.093140

80 / tcp

HTTP/1.1 200 OK
date: Wed, 08 May 2024 15:01:47 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
transfer-encoding: chunked
x-frame-options: sameorigin
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store
set-cookie: niagara_session=s39ebc9e9e688844ac03db174514434430fb53a40ec6ca4313c; path=/
server: Niagara Web Server/3.8.111

-138097910 | 2024-05-07T05:15:42.574429

135 / tcp

Microsoft RPC Endpoint Mapper

51a227ae-825b-41f2-b4a9-1ac9557a1018
  version: v1.0
  annotation: Ngc Pop Key Service
  ncacn_ip_tcp: 192.168.1.112:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\ONC-HONEYWELL\pipe\lsass

8fb74744-b2ff-4c00-be0d-9ef9a191fe1b
  version: v1.0
  annotation: Ngc Pop Key Service
  ncacn_ip_tcp: 192.168.1.112:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\ONC-HONEYWELL\pipe\lsass

b25a52bf-e5dd-4f4a-aea6-8ca7272a0e86
  version: v2.0
  annotation: KeyIso
  ncacn_ip_tcp: 192.168.1.112:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\ONC-HONEYWELL\pipe\lsass

12345778-1234-abcd-ef00-0123456789ac
  version: v1.0
  protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
  provider: samsrv.dll
  ncacn_ip_tcp: 192.168.1.112:49664
  ncalrpc: samss lpc
  ncalrpc: SidKey Local End Point
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSA_EAS_ENDPOINT
  ncalrpc: LSA_IDPEXT_ENDPOINT
  ncalrpc: lsacap
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncacn_np: \\ONC-HONEYWELL\pipe\lsass

d95afe70-a6d5-4259-822e-2c84da1ddb0d
  version: v1.0
  protocol: [MS-RSP]: Remote Shutdown Protocol
  provider: wininit.exe
  ncacn_ip_tcp: 192.168.1.112:49665
  ncalrpc: WindowsShutdown
  ncacn_np: \\ONC-HONEYWELL\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0100270

76f226c3-ec14-4325-8a99-6a46348418af
  version: v1.0
  provider: winlogon.exe
  ncalrpc: WindowsShutdown
  ncacn_np: \\ONC-HONEYWELL\PIPE\InitShutdown
  ncalrpc: WMsgKRpc0100270
  ncalrpc: WMsgKRpc0105AE1

fc48cd89-98d6-4628-9839-86f7a3e4161a
  version: v1.0
  ncalrpc: dabrpc
  ncalrpc: csebpub
  ncalrpc: LRPC-95098fd9c66184e82d
  ncalrpc: LRPC-e2a11fc38147fdaa2e
  ncalrpc: LRPC-6f6622aea4712a2b37
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

d09bdeb5-6171-4a34-bfe2-06fa82652568
  version: v1.0
  ncalrpc: csebpub
  ncalrpc: LRPC-95098fd9c66184e82d
  ncalrpc: LRPC-e2a11fc38147fdaa2e
  ncalrpc: LRPC-6f6622aea4712a2b37
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-e2a11fc38147fdaa2e
  ncalrpc: LRPC-6f6622aea4712a2b37
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-6f6622aea4712a2b37
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo
  ncalrpc: LRPC-c497f0b72f441ca9f9
  ncalrpc: LRPC-a3676b95116aae8968
  ncalrpc: LRPC-2533b0f56e4ea0016a
  ncalrpc: LRPC-d109b8c589283855d1
  ncalrpc: LRPC-286e64ff30d0d72798
  ncalrpc: OLE09EC3EC4C854249E1A5E2AA8A0A8
  ncalrpc: LRPC-fcbf6e3d4015633c17
  ncalrpc: OLE163B1F524BEE45028A37E1D50F4D
  ncalrpc: LRPC-fcbf6e3d4015633c17
  ncalrpc: OLE163B1F524BEE45028A37E1D50F4D
  ncalrpc: LRPC-11349edd3a86e44536

697dcda9-3ba9-4eb2-9247-e11f1901b0d2
  version: v1.0
  ncalrpc: LRPC-95098fd9c66184e82d
  ncalrpc: LRPC-e2a11fc38147fdaa2e
  ncalrpc: LRPC-6f6622aea4712a2b37
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

9b008953-f195-4bf9-bde0-4471971e58ed
  version: v1.0
  ncalrpc: LRPC-e2a11fc38147fdaa2e
  ncalrpc: LRPC-6f6622aea4712a2b37
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

0d47017b-b33b-46ad-9e18-fe96456c5078
  version: v1.0
  ncalrpc: umpo

95406f0b-b239-4318-91bb-cea3a46ff0dc
  version: v1.0
  ncalrpc: umpo

4ed8abcc-f1e2-438b-981f-bb0e8abc010c
  version: v1.0
  ncalrpc: umpo

0ff1f646-13bb-400a-ab50-9a78f2b7a85a
  version: v1.0
  ncalrpc: umpo

6982a06e-5fe2-46b1-b39c-a2c545bfa069
  version: v1.0
  ncalrpc: umpo

082a3471-31b6-422a-b931-a54401960c62
  version: v1.0
  ncalrpc: umpo

fae436b0-b864-4a87-9eda-298547cd82f2
  version: v1.0
  ncalrpc: umpo

e53d94ca-7464-4839-b044-09a2fb8b3ae5
  version: v1.0
  ncalrpc: umpo

178d84be-9291-4994-82c6-3f909aca5a03
  version: v1.0
  ncalrpc: umpo

4dace966-a243-4450-ae3f-9b7bcb5315b8
  version: v2.0
  ncalrpc: umpo

1832bcf6-cab8-41d4-85d2-c9410764f75a
  version: v1.0
  ncalrpc: umpo

c521facf-09a9-42c5-b155-72388595cbf0
  version: v0.0
  ncalrpc: umpo

2c7fd9ce-e706-4b40-b412-953107ef9bb0
  version: v0.0
  ncalrpc: umpo

88abcbc3-34ea-76ae-8215-767520655a23
  version: v0.0
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

76c217bc-c8b4-4201-a745-373ad9032b1a
  version: v1.0
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

55e6b932-1979-45d6-90c5-7f6270724112
  version: v1.0
  ncalrpc: LRPC-27303dc234b51a8f5c
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

857fb1be-084f-4fb5-b59c-4b2c4be5f0cf
  version: v1.0
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

20c40295-8dba-48e6-aebf-3e78ef3bb144
  version: v2.0
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

2513bcbe-6cd4-4348-855e-7efb3c336dd3
  version: v2.0
  ncalrpc: OLE2ACDD28E94EB72894C21FB41F936
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

0d3e2735-cea0-4ecc-a9e2-41a2d81aed4e
  version: v1.0
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

c605f9fb-f0a3-4e2a-a073-73560f8d9e3e
  version: v1.0
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

1b37ca91-76b1-4f5e-a3c7-2abfc61f2bb0
  version: v1.0
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

8bfc3be1-6def-4e2d-af74-7c47cd0ade4a
  version: v1.0
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

2d98a740-581d-41b9-aa0d-a88b9d5ce938
  version: v1.0
  ncalrpc: LRPC-211f883f948b1c980d
  ncalrpc: actkernel
  ncalrpc: umpo

dd59071b-3215-4c59-8481-972edadc0f6a
  version: v1.0
  ncalrpc: actkernel
  ncalrpc: umpo

0361ae94-0316-4c6c-8ad8-c594375800e2
  version: v1.0
  ncalrpc: umpo

5824833b-3c1a-4ad2-bdfd-c31d19e23ed2
  version: v1.0
  ncalrpc: umpo

bdaa0970-413b-4a3e-9e5d-f6dc9d7e0760
  version: v1.0
  ncalrpc: umpo

3b338d89-6cfa-44b8-847e-531531bc9992
  version: v1.0
  ncalrpc: umpo

8782d3b9-ebbd-4644-a3d8-e8725381919b
  version: v1.0
  ncalrpc: umpo

085b0334-e454-4d91-9b8c-4134f9e793f3
  version: v1.0
  ncalrpc: umpo

4bec6bb8-b5c2-4b6f-b2c1-5da5cf92d0d9
  version: v1.0
  ncalrpc: umpo

c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
  version: v1.0
  annotation: Impl friendly name
  provider: sysntfy.dll
  ncalrpc: LRPC-7b6ed964af716ec342
  ncalrpc: LRPC-b02b6c83e267a37c17
  ncalrpc: senssvc
  ncalrpc: IUserProfile2
  ncalrpc: LRPC-a7b59d6d178a0a1ead

12e65dd8-887f-41ef-91bf-8d816c42c2e7
  version: v1.0
  annotation: Secure Desktop LRPC interface
  provider: winlogon.exe
  ncalrpc: WMsgKRpc0105AE1

e40f7b57-7a25-4cd3-a135-7f7d3df9d16b
  version: v1.0
  ncalrpc: LRPC-35de96aa5eca7bc238

880fd55e-43b9-11e0-b1a8-cf4edfd72085
  version: v1.0
  annotation: KAPI Service endpoint
  ncalrpc: LRPC-f0348254ebac9f238d
  ncalrpc: OLE7EF9547BA8F1C2F7E5D57C63A30C
  ncalrpc: LRPC-c497f0b72f441ca9f9

5222821f-d5e2-4885-84f1-5f6185a0ec41
  version: v1.0
  ncalrpc: LRPC-dee7022f06e330a448

a500d4c6-0dd1-4543-bc0c-d5f93486eaf8
  version: v1.0
  ncalrpc: LRPC-cfab0dff6acfdcb43f
  ncalrpc: LRPC-a3676b95116aae8968

f6beaff7-1e19-4fbb-9f8f-b89e2018337c
  version: v1.0
  annotation: Event log TCPIP
  protocol: [MS-EVEN6]: EventLog Remoting Protocol
  provider: wevtsvc.dll
  ncacn_ip_tcp: 192.168.1.112:49666
  ncacn_np: \\ONC-HONEYWELL\pipe\eventlog
  ncalrpc: eventlog

2acb9d68-b434-4b3e-b966-e06b4b3a84cb
  version: v1.0
  provider: bthserv.dll
  ncalrpc: LRPC-2978f7d0a8cb12f63c
  ncalrpc: LRPC-2533b0f56e4ea0016a
  ncalrpc: LRPC-d109b8c589283855d1
  ncalrpc: LRPC-286e64ff30d0d72798
  ncalrpc: OLE09EC3EC4C854249E1A5E2AA8A0A8

5dea026d-f999-40b1-a234-2164fd086783
  version: v1.0
  ncalrpc: LRPC-d109b8c589283855d1
  ncalrpc: LRPC-286e64ff30d0d72798
  ncalrpc: OLE09EC3EC4C854249E1A5E2AA8A0A8

0a533b58-0ed9-4085-b6e8-95795e147972
  version: v1.0
  ncalrpc: LRPC-286e64ff30d0d72798
  ncalrpc: OLE09EC3EC4C854249E1A5E2AA8A0A8

7ea70bcf-48af-4f6a-8968-6a440754d5fa
  version: v1.0
  annotation: NSI server endpoint
  provider: nsisvc.dll
  ncalrpc: LRPC-06b81f67c4b6ae2661

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
  version: v1.0
  annotation: DHCP Client LRPC Endpoint
  provider: dhcpcsvc.dll
  ncalrpc: dhcpcsvc
  ncalrpc: dhcpcsvc6

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
  version: v1.0
  annotation: DHCPv6 Client LRPC Endpoint
  provider: dhcpcsvc6.dll
  ncalrpc: dhcpcsvc6

3a9ef155-691d-4449-8d05-09ad57031823
  version: v1.0
  ncacn_ip_tcp: 192.168.1.112:49667
  ncalrpc: LRPC-744bc461c5b45137c7
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\ONC-HONEYWELL\PIPE\atsvc
  ncalrpc: LRPC-da1b1432ac9d229c00

86d35949-83c9-4044-b424-db363231fd0c
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: schedsvc.dll
  ncacn_ip_tcp: 192.168.1.112:49667
  ncalrpc: LRPC-744bc461c5b45137c7
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\ONC-HONEYWELL\PIPE\atsvc
  ncalrpc: LRPC-da1b1432ac9d229c00

33d84484-3626-47ee-8c6f-e7e98b113be1
  version: v2.0
  ncalrpc: LRPC-744bc461c5b45137c7
  ncalrpc: ubpmtaskhostchannel
  ncacn_np: \\ONC-HONEYWELL\PIPE\atsvc
  ncalrpc: LRPC-da1b1432ac9d229c00

378e52b0-c0a9-11cf-822d-00aa0051e40f
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\ONC-HONEYWELL\PIPE\atsvc
  ncalrpc: LRPC-da1b1432ac9d229c00

1ff70682-0a51-30e8-076d-740be8cee98b
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\ONC-HONEYWELL\PIPE\atsvc
  ncalrpc: LRPC-da1b1432ac9d229c00

0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
  version: v1.0
  provider: schedsvc.dll
  ncalrpc: LRPC-da1b1432ac9d229c00

4c8d0bef-d7f1-49f0-9102-caa05f58d114
  version: v1.0
  ncalrpc: nlaapi
  ncalrpc: nlaplg

5b665b9a-a086-4e26-ae24-96ab050b0ec3
  version: v1.0
  annotation: Device Association Framework AEP Store Access RPC Interface
  ncalrpc: LRPC-07830f25ee6e7abd92

bd84cd86-9825-4376-813d-334c543f89b1
  version: v1.0
  annotation: Device Association Framework Query RPC Interface
  ncalrpc: LRPC-07830f25ee6e7abd92

2e7d4935-59d2-4312-a2c8-41900aa5495f
  version: v1.0
  annotation: Device Association Framework Challenge RPC Interface
  ncalrpc: LRPC-07830f25ee6e7abd92

a1d4eae7-39f8-4bca-8e72-832767f5082a
  version: v1.0
  annotation: Device Association Framework Inbound RPC Interface
  ncalrpc: LRPC-07830f25ee6e7abd92

850cee52-3038-4277-b9b4-e05db8b2c35c
  version: v1.0
  annotation: Device Association Framework Association RPC Interface
  ncalrpc: LRPC-07830f25ee6e7abd92

3473dd4d-2e88-4006-9cba-22570909dd10
  version: v5.256
  annotation: WinHttp Auto-Proxy Service
  ncalrpc: efb960f0-5af5-4ca0-a260-073730592006
  ncalrpc: LRPC-5a722510d47feddda1

30adc50c-5cbc-46ce-9a0e-91914789e23c
  version: v1.0
  annotation: NRP server endpoint
  provider: nrpsrv.dll
  ncalrpc: LRPC-69b092989febdad8f0
  ncalrpc: DNSResolver

0d3c7f20-1c8d-4654-a1b3-51563b298bda
  version: v1.0
  annotation: UserMgrCli
  ncalrpc: LRPC-b93d262771d16a9592
  ncalrpc: OLE3AA0104717A124E6807096DC36DD

b18fbab6-56f8-4702-84e0-41053293a869
  version: v1.0
  annotation: UserMgrCli
  ncalrpc: LRPC-b93d262771d16a9592
  ncalrpc: OLE3AA0104717A124E6807096DC36DD

b58aa02e-2884-4e97-8176-4ee06d794184
  version: v1.0
  provider: sysmain.dll
  ncalrpc: LRPC-03a7586341096578d8

c2d1b5dd-fa81-4460-9dd6-e7658b85454b
  version: v1.0
  ncalrpc: LRPC-16a485a31c4a9fa66f
  ncalrpc: OLEDC00DF2F6C05D87623E25CE991CC

f44e62af-dab1-44c2-8013-049a9de417d6
  version: v1.0
  ncalrpc: LRPC-16a485a31c4a9fa66f
  ncalrpc: OLEDC00DF2F6C05D87623E25CE991CC

7aeb6705-3ae6-471a-882d-f39c109edc12
  version: v1.0
  ncalrpc: LRPC-16a485a31c4a9fa66f
  ncalrpc: OLEDC00DF2F6C05D87623E25CE991CC

e7f76134-9ef5-4949-a2d6-3368cc0988f3
  version: v1.0
  ncalrpc: LRPC-16a485a31c4a9fa66f
  ncalrpc: OLEDC00DF2F6C05D87623E25CE991CC

b37f900a-eae4-4304-a2ab-12bb668c0188
  version: v1.0
  ncalrpc: LRPC-16a485a31c4a9fa66f
  ncalrpc: OLEDC00DF2F6C05D87623E25CE991CC

abfb6ca3-0c5e-4734-9285-0aee72fe8d1c
  version: v1.0
  ncalrpc: LRPC-16a485a31c4a9fa66f
  ncalrpc: OLEDC00DF2F6C05D87623E25CE991CC

af7fead8-c34a-461f-8894-6d6f0e5eddcd
  version: v1.0
  ncalrpc: LRPC-aac0982a11eb282b06
  ncalrpc: OLEA592EB3E6D9E1F706F10E60F7D04
  ncalrpc: LRPC-1b045c0c9855cf9ca3
  ncalrpc: LRPC-a7b59d6d178a0a1ead

266f33b4-c7c1-4bd1-8f52-ddb8f2214eb0
  version: v1.0
  annotation: Wlan Service LowPriv
  ncalrpc: LRPC-1b045c0c9855cf9ca3
  ncalrpc: LRPC-a7b59d6d178a0a1ead

266f33b4-c7c1-4bd1-8f52-ddb8f2214ea9
  version: v1.0
  annotation: Wlan Service
  provider: wlansvc.dll
  ncalrpc: LRPC-1b045c0c9855cf9ca3
  ncalrpc: LRPC-a7b59d6d178a0a1ead

25952c5d-7976-4aa1-a3cb-c35f7ae79d1b
  version: v1.256
  annotation: Wireless Diagnostics
  ncalrpc: LRPC-a7b59d6d178a0a1ead

7f1343fe-50a9-4927-a778-0c5859517bac
  version: v1.0
  annotation: DfsDs service
  ncacn_np: \\ONC-HONEYWELL\PIPE\wkssvc
  ncalrpc: LRPC-20085c6859f41b5b34

eb081a0d-10ee-478a-a1dd-50995283e7a8
  version: v3.0
  annotation: Witness Client Test Interface
  ncalrpc: LRPC-20085c6859f41b5b34

f2c9b409-c1c9-4100-8639-d8ab1486694a
  version: v1.0
  annotation: Witness Client Upcall Server
  ncalrpc: LRPC-20085c6859f41b5b34

2fb92682-6599-42dc-ae13-bd2ca89bd11c
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-8a15335dc3635bb55b
  ncalrpc: LRPC-3d769d1243534ccf07
  ncalrpc: LRPC-4934ced084897ab202
  ncalrpc: LRPC-6980203ab49b567de3

f47433c3-3e9d-4157-aad4-83aa1f5c2d4c
  version: v1.0
  annotation: Fw APIs
  ncalrpc: LRPC-3d769d1243534ccf07
  ncalrpc: LRPC-4934ced084897ab202
  ncalrpc: LRPC-6980203ab49b567de3

7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-4934ced084897ab202
  ncalrpc: LRPC-6980203ab49b567de3

dd490425-5325-4565-b774-7e27d6c09c24
  version: v1.0
  annotation: Base Firewall Engine API
  provider: BFE.DLL
  ncalrpc: LRPC-6980203ab49b567de3

a398e520-d59a-4bdd-aa7a-3c1e0303a511
  version: v1.0
  annotation: IKE/Authip API
  provider: IKEEXT.DLL
  ncalrpc: LRPC-5cde8dd9734955947d

c49a5a70-8a7f-4e70-ba16-1e8f1f193ef1
  version: v1.0
  annotation: Adh APIs
  ncalrpc: OLE66685CD42F9C3E0D616D9C29BA1C
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-6b3efd0cee9dc4b406

c36be077-e14b-4fe9-8abc-e856ef4f048b
  version: v1.0
  annotation: Proxy Manager client server endpoint
  ncalrpc: OLE66685CD42F9C3E0D616D9C29BA1C
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-6b3efd0cee9dc4b406

2e6035b2-e8f1-41a7-a044-656b439c4c34
  version: v1.0
  annotation: Proxy Manager provider server endpoint
  ncalrpc: TeredoControl
  ncalrpc: TeredoDiagnostics
  ncalrpc: LRPC-6b3efd0cee9dc4b406

552d076a-cb29-4e44-8b6a-d15e59e2c0af
  version: v1.0
  annotation: IP Transition Configuration endpoint
  provider: iphlpsvc.dll
  ncalrpc: LRPC-6b3efd0cee9dc4b406

1a0d010f-1c33-432c-b0f5-8cf4e8053099
  version: v1.0
  annotation: IdSegSrv service
  ncalrpc: LRPC-41393b0ed1ea0b3fea

98716d03-89ac-44c7-bb8c-285824e51c4a
  version: v1.0
  annotation: XactSrv service
  provider: srvsvc.dll
  ncalrpc: LRPC-41393b0ed1ea0b3fea

0f96ee82-4639-4ed6-888d-8af68287c0a9
  version: v1.0
  ncalrpc: RstMgmtRpcEndpoint

7635805d-a473-451a-94b2-5d674d953d39
  version: v1.256
  ncalrpc: RstMgmtRpcEndpoint

94f974af-f072-4e68-85c9-d265b55306fe
  version: v1.256
  ncalrpc: RstMgmtRpcEndpoint

650a7e26-eab8-5533-ce43-9c1dfce11511
  version: v1.0
  annotation: Vpn APIs
  ncalrpc: LRPC-4cd2a94051f8b58b0f
  ncalrpc: VpnikeRpc
  ncalrpc: RasmanLrpc
  ncacn_np: \\ONC-HONEYWELL\PIPE\ROUTER

6b5bdd1e-528c-422c-af8c-a4079be4fe48
  version: v1.0
  annotation: Remote Fw APIs
  protocol: [MS-FASP]: Firewall and Advanced Security Protocol
  provider: FwRemoteSvr.dll
  ncacn_ip_tcp: 192.168.1.112:49671
  ncalrpc: ipsec

509bc7ae-77be-4ee8-b07c-0d096bb44345
  version: v1.0
  ncalrpc: LRPC-531092b4971aef4250
  ncalrpc: OLED3DF00D3854404BEADF6885FA58A

a00e7603-27b5-4a1a-8452-d001f41188a9
  version: v1.0
  ncalrpc: SECOMNRpcEndpoint.{2F0652D5-A8C1-4125-9DE2-115DFCD3504B}

4b112204-0e19-11d3-b42b-0000f81feb9f
  version: v1.0
  provider: ssdpsrv.dll
  ncalrpc: LRPC-41ab7d4740f12f7611

367abb81-9844-35f1-ad32-98f038001003
  version: v2.0
  protocol: [MS-SCMR]: Service Control Manager Remote Protocol
  provider: services.exe
  ncacn_ip_tcp: 192.168.1.112:49672

98cd761e-e77d-41c8-a3c0-0fb756d90ec2
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

d22895ef-aff4-42c5-a5b2-b14466d34ab4
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

e38f5360-8572-473e-b696-1b46873beeab
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

95095ec8-32ea-4eb0-a3e2-041f97b36168
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

fd8be72b-a9cd-4b2c-a9ca-4ded242fbe4d
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

4c9dbf19-d39e-4bb9-90ee-8f7179b20283
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

d4051bde-9cdd-4910-b393-4aa85ec3c482
  version: v1.0
  ncalrpc: LRPC-9b9ab7a72c036c1cad
  ncalrpc: OLEDF5CC478553993C04F61580ABD58

c27f3c08-92ba-478c-b446-b419c4cef0e2
  version: v1.0
  ncalrpc: LRPC-b3d37e07e4e5684f93

b1ef227e-dfa5-421e-82bb-67a6a129c496
  version: v0.0
  ncalrpc: LRPC-d5fab22b8f75623bed
  ncalrpc: OLE738F782173251B83097B54A21D91

0fc77b1a-95d8-4a2e-a0c0-cff54237462b
  version: v0.0
  ncalrpc: LRPC-d5fab22b8f75623bed
  ncalrpc: OLE738F782173251B83097B54A21D91

8ec21e98-b5ce-4916-a3d6-449fa428a007
  version: v0.0
  ncalrpc: LRPC-d5fab22b8f75623bed
  ncalrpc: OLE738F782173251B83097B54A21D91

58e604e8-9adb-4d2e-a464-3b0683fb1480
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-99cb8ee60ec4ddbe78

fd7a0523-dc70-43dd-9b2e-9c5ed48225b1
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-99cb8ee60ec4ddbe78

5f54ce7d-5b79-4175-8584-cb65313a0e98
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-99cb8ee60ec4ddbe78

201ef99a-7fa0-444c-9399-19ba84f12a1a
  version: v1.0
  annotation: AppInfo
  provider: appinfo.dll
  ncalrpc: LRPC-99cb8ee60ec4ddbe78

0497b57d-2e66-424f-a0c6-157cd5d41700
  version: v1.0
  annotation: AppInfo
  ncalrpc: LRPC-99cb8ee60ec4ddbe78

0767a036-0d22-48aa-ba69-b619480f38cb
  version: v1.0
  annotation: PcaSvc
  provider: pcasvc.dll
  ncalrpc: LRPC-5137e5cece8ba0f0bf

a4b8d482-80ce-40d6-934d-b22a01a44fe7
  version: v1.0
  annotation: LicenseManager
  ncalrpc: LicenseServiceEndpoint

54b4c689-969a-476f-8dc2-990885e9f562
  version: v0.0
  ncalrpc: LRPC-9cb8364c80d42102f1

be6293d3-2827-4dda-8057-8588240124c9
  version: v0.0
  ncalrpc: LRPC-9cb8364c80d42102f1

caaa9188-2b56-486f-b07f-71a679722189
  version: v1.0
  ncalrpc: RealtekAudioRpcEndpoint

923c9623-db7f-4b34-9e6d-e86580f8ca2a
  version: v1.0
  ncalrpc: OLE1AB882149869A595A3EC18394DE0
  ncalrpc: LRPC-9bc238f51e4a2ed867

0c53aa2e-fb1c-49c5-bfb6-c54f8e5857cd
  version: v1.0
  ncalrpc: OLE1AB882149869A595A3EC18394DE0
  ncalrpc: LRPC-9bc238f51e4a2ed867

d2716e94-25cb-4820-bc15-537866578562
  version: v1.0
  ncalrpc: OLE1AB882149869A595A3EC18394DE0
  ncalrpc: LRPC-9bc238f51e4a2ed867

43890c94-bfd7-4655-ad6a-b4a68397cdcb
  version: v0.0
  ncalrpc: LRPC-9bc238f51e4a2ed867

c8ba73d2-3d55-429c-8e9a-c44f006f69fc
  version: v0.0
  ncalrpc: LRPC-9bc238f51e4a2ed867

e8748f69-a2a4-40df-9366-62dbeb696e26
  version: v0.0
  ncalrpc: LRPC-9bc238f51e4a2ed867

7a20fcec-dec4-4c59-be57-212e8f65d3de
  version: v1.0
  ncalrpc: LRPC-a695cf97d62c00fdae

06bba54a-be05-49f9-b0a0-30f790261023
  version: v1.0
  annotation: Security Center
  provider: wscsvc.dll
  ncalrpc: LRPC-5788270a95b3a44a1c
  ncalrpc: OLEAB00AD7856F1E965E01D928388E1

76f03f96-cdfd-44fc-a22c-64950a001209
  version: v1.0
  protocol: [MS-PAR]: Print System Asynchronous Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 192.168.1.112:50043
  ncalrpc: LRPC-184b06a0c5110acb29

4a452661-8290-4b36-8fbe-7f4093a94978
  version: v1.0
  provider: spoolsv.exe
  ncacn_ip_tcp: 192.168.1.112:50043
  ncalrpc: LRPC-184b06a0c5110acb29

ae33069b-a2a8-46ee-a235-ddfd339be281
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 192.168.1.112:50043
  ncalrpc: LRPC-184b06a0c5110acb29

0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
  version: v1.0
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 192.168.1.112:50043
  ncalrpc: LRPC-184b06a0c5110acb29

12345678-1234-abcd-ef00-0123456789ab
  version: v1.0
  protocol: [MS-RPRN]: Print System Remote Protocol
  provider: spoolsv.exe
  ncacn_ip_tcp: 192.168.1.112:50043
  ncalrpc: LRPC-184b06a0c5110acb29

bf4dc912-e52f-4904-8ebe-9317c1bdd497
  version: v1.0
  ncalrpc: LRPC-326ebed7714e29ba20
  ncalrpc: OLE537DD3C5F756110AD16F5D1AF902

c503f532-443a-4c69-8300-ccd1fbdb3839
  version: v2.0
  ncalrpc: LRPC-0ed11b137833ec0948
  ncalrpc: OLE4385406A7A0BD03BF67F3158FB10

4be96a0f-9f52-4729-a51d-c70610f118b0
  version: v1.0
  annotation: wbiosrvc
  provider: wbiosrvc.dll
  ncalrpc: LRPC-a2a3f3f59544ed66b3

c0e9671e-33c6-4438-9464-56b2e1b1c7b4
  version: v1.0
  annotation: wbiosrvc
  provider: wbiosrvc.dll
  ncalrpc: LRPC-a2a3f3f59544ed66b3

ba4aa15a-be94-47fb-9bfb-fef110e7efad
  version: v1.0
  annotation: DevQueryBroker client query RPC interface
  ncalrpc: LRPC-fc6c3708de89345c80

e6f89680-fc98-11e3-80d4-10604b681cfa
  version: v1.0
  annotation: INgcGidsHandler
  ncalrpc: LRPC-a91fae200703741c3d

7642249b-84c2-4404-b6eb-1e0a2458839a
  version: v1.0
  annotation: INgcSecureBioHandler
  ncalrpc: LRPC-a91fae200703741c3d

2d24ff0b-1bab-404c-a0fd-42c85577bf68
  version: v1.0
  annotation: INgcHandler
  ncalrpc: LRPC-a91fae200703741c3d

8bef2320-f308-4720-b913-0129cecfa6b9
  version: v1.0
  annotation: IVscProvisioningHandler
  ncalrpc: LRPC-a91fae200703741c3d

30034843-029d-46ec-8fff-5d12987f85c4
  version: v1.0
  annotation: INgcProvisioningHandler
  ncalrpc: LRPC-a91fae200703741c3d

-757264002 | 2024-04-24T19:25:41.875660

139 / tcp

\x83\x00\x00\x01\x8f

-1166656618 | 2024-05-09T01:56:37.075047

445 / tcp

SMB Status:
  Authentication: enabled
  SMB Version: 2
  Capabilities: raw-mode

-1822406705 | 2024-05-11T14:01:44.364915

1911 / tcp

fox a 0 -1 fox hello
{
fox.version=s:1.0.1
id=i:129764
hostName=s:ONC-Honeywell
hostAddress=s:192.168.1.112
app.name=s:Station
app.version=s:3.8.111
vm.name=s:Java HotSpot(TM) 64-Bit Server VM
vm.version=s:25.74-b02
os.name=s:Windows 10
os.version=s:10.0
station.name=s:ONCSupervisor
lang=s:en
timeZone=s:America/Phoenix;-25200000;0;null;null
hostId=s:Win-75DB-9DAF-FE3F-2454
vmUuid=s:010fc4ae-496b-407e-9843-5ead9f07e308
brandId=s:WebsOpen
sysInfo=o:bog 73[<bog version="1.0">
<p m="b=baja" t="b:Facets" v="realms=s:ONC"/>
</bog>
]
realms=s:ONC
authAgentTypeSpecs=s:fox:FoxUsernamePasswordAuthAgent
};;

-1684583448 | 2024-05-06T15:43:05.375375

5357 / tcp

HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 06 May 2024 15:43:05 GMT
Connection: close
Content-Length: 326

71.36.224.64

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1494382418 | 2024-05-08T15:01:47.093140
80 / tcp

Tridium Niagara httpd3.8.111

-138097910 | 2024-05-07T05:15:42.574429
135 / tcp

Microsoft RPC Endpoint Mapper

-757264002 | 2024-04-24T19:25:41.875660
139 / tcp

-1166656618 | 2024-05-09T01:56:37.075047
445 / tcp

-1822406705 | 2024-05-11T14:01:44.364915
1911 / tcp

Niagara Fox3.8.111

-1684583448 | 2024-05-06T15:43:05.375375
5357 / tcp

Products

Pricing

Contact Us

71.36.224.64

Last Seen: 2024-05-11

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1494382418 | 2024-05-08T15:01:47.093140 80 / tcp

Tridium Niagara httpd3.8.111

-138097910 | 2024-05-07T05:15:42.574429 135 / tcp

Microsoft RPC Endpoint Mapper

-757264002 | 2024-04-24T19:25:41.875660 139 / tcp

-1166656618 | 2024-05-09T01:56:37.075047 445 / tcp

-1822406705 | 2024-05-11T14:01:44.364915 1911 / tcp

Niagara Fox3.8.111

-1684583448 | 2024-05-06T15:43:05.375375 5357 / tcp

Products

Pricing

Contact Us

1494382418 | 2024-05-08T15:01:47.093140
80 / tcp

-138097910 | 2024-05-07T05:15:42.574429
135 / tcp

-757264002 | 2024-04-24T19:25:41.875660
139 / tcp

-1166656618 | 2024-05-09T01:56:37.075047
445 / tcp

-1822406705 | 2024-05-11T14:01:44.364915
1911 / tcp

-1684583448 | 2024-05-06T15:43:05.375375
5357 / tcp