GeneralInformation

Hostnames

server109-228-24-78.live-servers.net

Domains

live-servers.net

Country

United Kingdom

City

London

Organization

IONOS SE

ISP

IONOS SE

ASN

AS8560

WebTechnologies

Web frameworks

Microsoft ASP.NET

OpenPorts

25 53 80 110 135 1433 1434 3389 5985 47001

25 / tcp

-375562726 | 2025-04-02T13:54:35.806873

220 mail.timelaps.co.uk ESMTP MailEnable Service, Version: 4.16-- ready at 04/02/25 14:54:33
250-timelaps.co.uk [224.120.183.255], this server offers 4 extensions
250-AUTH LOGIN
250-SIZE 5120000
250-HELP
250 AUTH=LOGIN

53 / tcp

-553166942 | 2025-04-17T11:42:51.086635

Recursion: enabled

53 / udp

-553166942 | 2025-04-24T17:51:43.582738

Recursion: enabled

80 / tcp

-254130787 | 2025-04-23T16:12:25.143850

Hashes

hash

-1482434777

http.dom_hash

1658978557

http.html_hash

-254130787

http.server_hash

-1390970405

http.title_hash

-823503343

TimeLaps - Professional Mountain Bike Timekeeping Sevices

HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 3621
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 2.0.50727
Set-Cookie: ASP.NET_SessionId=ig13eg2x4f13rgnjl0y2xy45; path=/; HttpOnly
X-Powered-By: ASP.NET
Date: Wed, 23 Apr 2025 16:12:24 GMT

Vulnerabilities

110 / tcp

-471102630 | 2025-04-20T00:58:50.972151

+OK Welcome to MailEnable POP3 Server
+OK Capability list follows
TOP
USER
UIDL
.

135 / tcp

-544890824 | 2025-04-25T05:14:55.912177

Microsoft RPC Endpoint Mapper

d95afe70-a6d5-4259-822e-2c84da1ddb0d
  version: v1.0
  protocol: [MS-RSP]: Remote Shutdown Protocol
  provider: wininit.exe
  ncacn_ip_tcp: 109.228.24.78:49152
  ncalrpc: WindowsShutdown
  ncacn_np: \\CP5-13897\PIPE\InitShutdown
  ncalrpc: WMsgKRpc065B20

76f226c3-ec14-4325-8a99-6a46348418af
  version: v1.0
  provider: winlogon.exe
  ncalrpc: WindowsShutdown
  ncacn_np: \\CP5-13897\PIPE\InitShutdown
  ncalrpc: WMsgKRpc065B20
  ncalrpc: WMsgKRpc065D51

c9ac6db5-82b7-4e55-ae8a-e464ed7b4277
  version: v1.0
  annotation: Impl friendly name
  provider: sysntfy.dll
  ncalrpc: LRPC-51f45f6dcc2c90ca2a
  ncacn_np: \\CP5-13897\PIPE\srvsvc
  ncacn_ip_tcp: 109.228.24.78:49154
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2
  ncalrpc: IUserProfile2
  ncalrpc: IUserProfile2

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6
  version: v1.0
  annotation: DHCPv6 Client LRPC Endpoint
  provider: dhcpcsvc6.dll
  ncalrpc: dhcpcsvc6
  ncalrpc: dhcpcsvc
  ncacn_ip_tcp: 109.228.24.78:49153
  ncacn_np: \\CP5-13897\pipe\eventlog
  ncalrpc: eventlog

3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5
  version: v1.0
  annotation: DHCP Client LRPC Endpoint
  provider: dhcpcsvc.dll
  ncalrpc: dhcpcsvc
  ncacn_ip_tcp: 109.228.24.78:49153
  ncacn_np: \\CP5-13897\pipe\eventlog
  ncalrpc: eventlog

30adc50c-5cbc-46ce-9a0e-91914789e23c
  version: v1.0
  annotation: NRP server endpoint
  provider: nrpsrv.dll
  ncacn_ip_tcp: 109.228.24.78:49153
  ncacn_np: \\CP5-13897\pipe\eventlog
  ncalrpc: eventlog

f6beaff7-1e19-4fbb-9f8f-b89e2018337c
  version: v1.0
  annotation: Event log TCPIP
  protocol: [MS-EVEN6]: EventLog Remoting Protocol
  provider: wevtsvc.dll
  ncacn_ip_tcp: 109.228.24.78:49153
  ncacn_np: \\CP5-13897\pipe\eventlog
  ncalrpc: eventlog

30b044a5-a225-43f0-b3a4-e060df91f9c1
  version: v1.0
  provider: certprop.dll
  ncacn_np: \\CP5-13897\PIPE\srvsvc
  ncacn_ip_tcp: 109.228.24.78:49154
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

98716d03-89ac-44c7-bb8c-285824e51c4a
  version: v1.0
  annotation: XactSrv service
  provider: srvsvc.dll
  ncacn_ip_tcp: 109.228.24.78:49154
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

552d076a-cb29-4e44-8b6a-d15e59e2c0af
  version: v1.0
  annotation: IP Transition Configuration endpoint
  provider: iphlpsvc.dll
  ncacn_ip_tcp: 109.228.24.78:49154
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

a398e520-d59a-4bdd-aa7a-3c1e0303a511
  version: v1.0
  annotation: IKE/Authip API
  provider: IKEEXT.DLL
  ncacn_ip_tcp: 109.228.24.78:49154
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

86d35949-83c9-4044-b424-db363231fd0c
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: schedsvc.dll
  ncacn_ip_tcp: 109.228.24.78:49154
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

378e52b0-c0a9-11cf-822d-00aa0051e40f
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

1ff70682-0a51-30e8-076d-740be8cee98b
  version: v1.0
  protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol
  provider: taskcomp.dll
  ncacn_np: \\CP5-13897\PIPE\atsvc
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53
  version: v1.0
  provider: schedsvc.dll
  ncalrpc: senssvc
  ncalrpc: OLE785624FF6A7641BDA5B3FBFE53A7
  ncalrpc: IUserProfile2

2eb08e3e-639f-4fba-97b1-14f878961076
  version: v1.0
  provider: gpsvc.dll
  ncalrpc: IUserProfile2

3473dd4d-2e88-4006-9cba-22570909dd10
  version: v5.256
  annotation: WinHttp Auto-Proxy Service
  ncacn_np: \\CP5-13897\PIPE\W32TIME_ALT
  ncalrpc: W32TIME_ALT
  ncalrpc: LRPC-1a3fdacde01cdd01c3
  ncalrpc: OLE52BF1D6D3B704D818541BA307720

7ea70bcf-48af-4f6a-8968-6a440754d5fa
  version: v1.0
  annotation: NSI server endpoint
  provider: nsisvc.dll
  ncalrpc: LRPC-1a3fdacde01cdd01c3
  ncalrpc: OLE52BF1D6D3B704D818541BA307720

24019106-a203-4642-b88d-82dae9158929
  version: v1.0
  provider: authui.dll
  ncalrpc: LRPC-91456ddea4cc15357b

2fb92682-6599-42dc-ae13-bd2ca89bd11c
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-5c6eb1ed13f1d2c0ed

7f9d11bf-7fb9-436b-a812-b2d50c5d4c03
  version: v1.0
  annotation: Fw APIs
  provider: MPSSVC.dll
  ncalrpc: LRPC-5c6eb1ed13f1d2c0ed

dd490425-5325-4565-b774-7e27d6c09c24
  version: v1.0
  annotation: Base Firewall Engine API
  provider: BFE.DLL
  ncalrpc: LRPC-5c6eb1ed13f1d2c0ed

7f1343fe-50a9-4927-a778-0c5859517bac
  version: v1.0
  annotation: DfsDs service
  ncacn_np: \\CP5-13897\PIPE\wkssvc
  ncalrpc: DNSResolver

4a452661-8290-4b36-8fbe-7f4093a94978
  version: v1.0
  annotation: Spooler function endpoint
  provider: spoolsv.exe
  ncalrpc: spoolss

ae33069b-a2a8-46ee-a235-ddfd339be281
  version: v1.0
  annotation: Spooler base remote object endpoint
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncalrpc: spoolss

0b6edbfa-4a24-4fc6-8a23-942b1eca65d1
  version: v1.0
  annotation: Spooler function endpoint
  protocol: [MS-PAN]: Print System Asynchronous Notification Protocol
  provider: spoolsv.exe
  ncalrpc: spoolss

50abc2a4-574d-40b3-9d66-ee4fd5fba076
  version: v5.0
  protocol: [MS-DNSP]: Domain Name Service (DNS) Server Management
  provider: dns.exe
  ncacn_ip_tcp: 109.228.24.78:49155

367abb81-9844-35f1-ad32-98f038001003
  version: v2.0
  protocol: [MS-SCMR]: Service Control Manager Remote Protocol
  provider: services.exe
  ncacn_ip_tcp: 109.228.24.78:49162

12345778-1234-abcd-ef00-0123456789ac
  version: v1.0
  protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol
  provider: samsrv.dll
  ncacn_ip_tcp: 109.228.24.78:49163
  ncalrpc: samss lpc
  ncalrpc: dsrole
  ncacn_np: \\CP5-13897\PIPE\protected_storage
  ncalrpc: protected_storage
  ncalrpc: lsasspirpc
  ncalrpc: lsapolicylookup
  ncalrpc: LSARPC_ENDPOINT
  ncalrpc: securityevent
  ncalrpc: audit
  ncalrpc: LRPC-b8b58d95663bf65b91
  ncacn_np: \\CP5-13897\pipe\lsass

12345678-1234-abcd-ef00-0123456789ab
  version: v1.0
  annotation: IPSec Policy agent endpoint
  protocol: [MS-RPRN]: Print System Remote Protocol
  provider: spoolsv.exe
  ncalrpc: LRPC-2e8dc935a826385802
  ncacn_ip_tcp: 109.228.24.78:49165

6b5bdd1e-528c-422c-af8c-a4079be4fe48
  version: v1.0
  annotation: Remote Fw APIs
  protocol: [MS-FASP]: Firewall and Advanced Security Protocol
  provider: FwRemoteSvr.dll
  ncacn_ip_tcp: 109.228.24.78:49165

906b0ce0-c70b-1067-b317-00dd010662da
  version: v1.0
  protocol: [MS-CMPO]: MSDTC Connection Manager:
  provider: msdtcprx.dll
  ncalrpc: LRPC-e4a4d0f3de8179e9f2
  ncalrpc: LRPC-e4a4d0f3de8179e9f2
  ncalrpc: LRPC-e4a4d0f3de8179e9f2
  ncalrpc: LRPC-e4a4d0f3de8179e9f2

1433 / tcp

-1404284714 | 2025-04-09T23:02:20.151085

MS-SQL NTLM Info:
  OS: Windows 7/Windows Server 2008 R2
  OS Build: 6.1.7601
  Target Name: CP5-13897
  NetBIOS Domain Name: CP5-13897
  NetBIOS Computer Name: CP5-13897
  DNS Domain Name: CP5-13897
  FQDN: CP5-13897

1434 / udp

1441532639 | 2025-04-19T11:51:42.657005

SQL Server Browser Service:
  Instance #1:
    Server Name: CP5-13897
    Instance Name: MSSQLSERVER
    Is Clustered: False
    Version: 10.50.2500.0
    TCP Port: 1433
    Named Pipe: \\CP5-13897\pipe\sql\query
    Version Name: MS-SQL Server 2008 R2 SP1RTW/PCU1

3389 / tcp

-436907398 | 2025-04-16T21:41:40.559657

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\t\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 7/Windows Server 2008 R2
  OS Build: 6.1.7601
  Target Name: CP5-13897
  NetBIOS Domain Name: CP5-13897
  NetBIOS Computer Name: CP5-13897
  DNS Domain Name: CP5-13897
  FQDN: CP5-13897

Admi nistra LY SIL LY UT
(A
Windows Web Server 200822

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            60:1d:5e:f8:c7:cc:bd:8b:4f:db:39:a8:74:2b:9b:14
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=CP5-13897
        Validity
            Not Before: Feb  2 04:01:26 2025 GMT
            Not After : Aug  4 04:01:26 2025 GMT
        Subject: CN=CP5-13897
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:ce:d5:11:8b:36:3e:50:12:14:17:9a:79:97:
                    f0:b5:ba:32:09:d2:46:ca:5c:71:c4:33:8f:be:ea:
                    7e:9e:85:67:86:1b:4d:28:54:05:85:db:67:6c:a1:
                    6b:23:5c:f9:cc:0e:8b:45:32:7e:70:32:64:29:37:
                    75:9c:e9:95:95:91:e2:e0:e2:27:fe:cd:5f:27:51:
                    71:ec:36:fb:40:57:b7:48:48:67:61:e3:66:4b:52:
                    63:e8:92:20:5d:2a:a8:93:a6:af:2b:9a:82:a5:5c:
                    8a:d3:2a:7e:61:77:bc:15:91:0f:af:57:39:b8:91:
                    9f:ce:69:0c:71:08:a6:45:62:31:f8:1c:4c:a9:03:
                    2c:65:20:31:bd:db:fd:1b:8b:28:66:ea:ab:be:40:
                    1b:c1:0b:b8:5b:31:ab:22:b4:9b:30:c7:51:a0:76:
                    b0:de:3e:6f:57:4c:97:c3:f6:1a:e6:3a:f3:44:c0:
                    e9:41:c7:5d:33:80:2d:b4:fa:6d:68:a7:69:ca:ac:
                    2c:fe:3f:d3:32:74:92:9f:ab:df:ec:a4:56:f4:cb:
                    36:b8:ab:be:eb:97:d4:70:5c:3e:70:78:ad:db:46:
                    a5:b8:59:3a:3f:09:b3:86:0b:14:e6:63:48:fc:33:
                    63:50:85:ad:a2:a6:4d:c0:76:1e:d2:7c:ef:f5:35:
                    f2:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        0c:34:88:f5:20:9a:7e:62:be:a3:e2:d3:a2:40:99:d8:3d:10:
        e2:54:4e:bd:2f:6a:f4:bf:d1:af:23:38:38:0a:20:15:52:81:
        c2:60:cb:2f:91:fe:e4:44:66:c0:69:10:53:5f:bc:af:97:b7:
        34:3c:6e:04:1e:f4:0b:25:89:f5:88:bf:b4:0d:e8:4e:99:5c:
        54:04:17:d8:14:29:11:49:e7:9f:26:c7:74:3c:86:a1:fe:82:
        aa:47:26:76:56:fe:d8:5f:77:87:09:9f:f8:d1:6f:be:bb:d9:
        a0:21:36:9e:c4:7b:7e:49:e4:08:3e:f4:94:ab:ff:7a:62:45:
        12:55:c1:d8:e9:70:f7:09:9c:85:40:c5:73:d5:d2:ff:86:b2:
        e1:88:5c:b3:0b:15:ba:5f:5a:67:63:89:ac:14:ee:0c:50:36:
        1c:f9:96:94:ac:b1:98:35:75:b0:97:71:90:e5:26:37:fa:af:
        9f:fb:b7:59:18:84:12:30:be:17:21:98:61:79:39:7f:e4:3e:
        15:91:1b:33:ad:b7:78:1d:aa:04:92:8b:80:07:8b:2b:bb:07:
        c4:65:b7:ad:f1:74:19:d2:01:c5:07:51:a7:35:97:fc:a2:b3:
        34:dc:7d:ad:a0:8e:10:42:75:6a:31:c2:64:1c:11:e8:26:33:
        b8:50:f2:6d

5985 / tcp

1489525118 | 2025-04-27T11:50:10.053861

Hashes

hash

-1497846839

http.dom_hash

1386055181

http.html_hash

1489525118

http.server_hash

-761617706

http.title_hash

1009235027

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 27 Apr 2025 11:50:09 GMT
Connection: close
Content-Length: 315


WinRM NTLM Info:
  OS: Windows Server 2008 R2
  OS Build: 6.1.7601
  Target Name: CP5-13897
  NetBIOS Domain Name: CP5-13897
  NetBIOS Computer Name: CP5-13897
  DNS Domain Name: CP5-13897
  FQDN: CP5-13897

47001 / tcp

1489525118 | 2025-04-27T23:15:47.481297

Hashes

hash

1543780145

http.dom_hash

1386055181

http.html_hash

1489525118

http.server_hash

-761617706

http.title_hash

1009235027

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 27 Apr 2025 23:15:46 GMT
Connection: close
Content-Length: 315

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2010(3)

CVE-2010-3972

10Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP command, aka "IIS FTP Service Heap Buffer Overrun Vulnerability." NOTE: some of these details are obtained from third party information.

CVE-2010-2730

9.3Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."

CVE-2010-1899

4.3Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vulnerability."

109.228.24.78

Last Seen: 2025-04-27

Tags:

GeneralInformation

WebTechnologies

OpenPorts

25 / tcp

-375562726 | 2025-04-02T13:54:35.806873

MailEnable smptd4.16--

53 / tcp

-553166942 | 2025-04-17T11:42:51.086635

53 / udp

-553166942 | 2025-04-24T17:51:43.582738

80 / tcp

-254130787 | 2025-04-23T16:12:25.143850

Hashes

Microsoft IIS httpd7.5

110 / tcp

-471102630 | 2025-04-20T00:58:50.972151

MailEnable POP3 Server

135 / tcp

-544890824 | 2025-04-25T05:14:55.912177

Microsoft RPC Endpoint Mapper

1433 / tcp

-1404284714 | 2025-04-09T23:02:20.151085

MS-SQL Server 2008 R2 SP1RTW/PCU110.50.2500.0

1434 / udp

1441532639 | 2025-04-19T11:51:42.657005

SQL Server Browser Service

3389 / tcp

-436907398 | 2025-04-16T21:41:40.559657

Remote Desktop Protocol

5985 / tcp

1489525118 | 2025-04-27T11:50:10.053861

Hashes

WinRM

47001 / tcp

1489525118 | 2025-04-27T23:15:47.481297

Hashes

Vulnerabilities

Products

Pricing

Contact Us

109.228.24.78

Last Seen: 2025-04-27

Tags:

GeneralInformation

WebTechnologies

OpenPorts

25 / tcp -375562726 | 2025-04-02T13:54:35.806873

53 / tcp -553166942 | 2025-04-17T11:42:51.086635

53 / udp -553166942 | 2025-04-24T17:51:43.582738

80 / tcp -254130787 | 2025-04-23T16:12:25.143850

Hashes

110 / tcp -471102630 | 2025-04-20T00:58:50.972151

135 / tcp -544890824 | 2025-04-25T05:14:55.912177

1433 / tcp -1404284714 | 2025-04-09T23:02:20.151085

1434 / udp 1441532639 | 2025-04-19T11:51:42.657005

3389 / tcp -436907398 | 2025-04-16T21:41:40.559657

5985 / tcp 1489525118 | 2025-04-27T11:50:10.053861

Hashes

47001 / tcp 1489525118 | 2025-04-27T23:15:47.481297

Hashes

Vulnerabilities All ports Port 80 Latest CVSS

Products

Pricing

Contact Us

25 / tcp

-375562726 | 2025-04-02T13:54:35.806873

53 / tcp

-553166942 | 2025-04-17T11:42:51.086635

53 / udp

-553166942 | 2025-04-24T17:51:43.582738

80 / tcp

-254130787 | 2025-04-23T16:12:25.143850

110 / tcp

-471102630 | 2025-04-20T00:58:50.972151

135 / tcp

-544890824 | 2025-04-25T05:14:55.912177

1433 / tcp

-1404284714 | 2025-04-09T23:02:20.151085

1434 / udp

1441532639 | 2025-04-19T11:51:42.657005

3389 / tcp

-436907398 | 2025-04-16T21:41:40.559657

5985 / tcp

1489525118 | 2025-04-27T11:50:10.053861

47001 / tcp

1489525118 | 2025-04-27T23:15:47.481297

Vulnerabilities