GeneralInformation

Country	China
City	Shenzhen
Organization	CHINANET Guangdong province network
ISP	China Telecom Next Generation Carrier Network
ASN	AS4809
Operating System	Windows

WebTechnologies

CDN

Alibaba Cloud CDN

JavaScript graphics

ECharts

JavaScript libraries

jQuery1.10.2

Bootbox.js

SignalR2.4.1

UI frameworks

Bootstrap

Web frameworks

Microsoft ASP.NET

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

21 8008 8009 8010 8082 8443 9000

21 / tcp

815932431 | 2025-01-29T22:34:03.793372

220 NASFTPD Turbo station 1.3.6 Server (ProFTPD) [::ffff:192.168.0.18]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
 ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
 REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@192.168.4.18
211-Features:
 CLNT
 EPRT
 EPSV
 HOST
 LANG en-US*
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
 REST STREAM
 SIZE
 TVFS
 UTF8
211 End

8008 / tcp

-183793334 | 2025-02-05T22:38:28.536658

Hashes

hash

2141062275

http.dom_hash

1018886782

http.favicon.hash

-242833173

http.html_hash

-183793334

http.server_hash

608434861

同享人力资源管理平台

HTTP/1.1 200 OK
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=gumh3cyymnqytaw11b5sjmsi; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
P3P: CP=CAO PSA OUR
Access-Control-Allow-Methods: OPTIONS,POST,GET
Access-Control-Allow-Headers: x-requested-with,content-type
Access-Control-Allow-Origin: *
Date: Wed, 05 Feb 2025 22:38:28 GMT

8009 / tcp

-223854607 | 2025-02-07T01:57:55.188629

Hashes

hash

-1286203593

http.dom_hash

869425566

http.html_hash

-223854607

http.server_hash

608434861

同享人力资源人脸服务程序

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=rhsupnrcxpi0swqgefpbpdlc; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Fri, 07 Feb 2025 01:57:54 GMT
Content-Length: 641

8010 / tcp

-2115881854 | 2025-01-30T02:56:42.791932

Hashes

hash

-1295887507

http.dom_hash

-2135329488

http.favicon.hash

-791211602

http.html_hash

-2115881854

http.server_hash

608434861

同享移动HR

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Thu, 15 Aug 2024 03:22:34 GMT
Accept-Ranges: bytes
ETag: "039a85ec2eeda1:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Thu, 30 Jan 2025 02:56:36 GMT
Content-Length: 9090

CVE-2020-11023 CVE-2020-11022 CVE-2019-11358 CVE-2015-9251

8082 / tcp

-540162627 | 2025-01-31T04:54:50.590826

Hashes

hash

-1668066913

http.dom_hash

-2060582466

http.html_hash

-540162627

http.title_hash

272813868

307 Temporary Redirect

HTTP/1.1 307 Temporary Redirect
Date: Fri, 31 Jan 2025 04:54:50 GMT
Content-Type: text/html
Content-Length: 152
Connection: close
Location: https://116.6.76.130:8082/
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'

8443 / tcp

848362218 | 2025-02-01T20:49:25.092895

Hashes

hash

1746059354

http.dom_hash

-57637167

http.html_hash

848362218

http.title_hash

-1611226372

Fireware XTM User Authentication

HTTP/1.1 200 OK
Date: Sat, 01 Feb 2025 20:49:24 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Fri, 28 Apr 2023 03:44:55 GMT
Connection: keep-alive
ETag: "644b4137-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1596683416 (0x5f2b7498)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: O=WatchGuard, OU=Fireware, CN=Fireware web CA
        Validity
            Not Before: Jul  7 03:10:16 2020 GMT
            Not After : Aug  4 03:10:16 2030 GMT
        Subject: O=WatchGuard, OU=Fireware, CN=Fireware web CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:f5:3d:d2:b8:8b:f7:1b:00:4e:42:ea:9a:bf:
                    72:94:81:86:69:f5:9f:61:e6:eb:6e:fe:b6:4a:59:
                    8f:d4:8a:a2:9e:fa:97:ee:85:da:45:58:ab:ea:57:
                    a2:d5:7d:ab:be:4f:5f:9a:04:a0:24:7c:bb:a9:f7:
                    56:7c:16:e0:e1:b1:a7:41:aa:c2:2a:9e:7b:bb:8a:
                    80:50:37:2e:1d:f3:21:63:6e:f9:bc:00:5b:2d:2e:
                    7c:86:c0:f8:85:cd:f8:78:61:43:d2:fd:8c:09:e8:
                    1c:0d:0d:6d:8a:5e:4d:37:e2:54:f2:8d:23:a4:b3:
                    37:be:a9:81:b7:d3:c5:65:8e:1c:ff:f7:1f:2e:a2:
                    e2:1a:36:42:71:19:3c:03:7f:d0:dc:78:b5:41:35:
                    8e:3d:86:be:45:9c:37:eb:00:cf:76:a4:b7:3c:de:
                    cd:c8:98:8b:b0:fc:3b:1d:82:2e:39:af:55:13:03:
                    ed:95:c5:1a:e6:ef:4f:e3:a5:54:cf:56:e3:b1:ef:
                    36:1c:1d:44:89:c0:10:d6:86:93:4f:13:79:67:50:
                    e5:ef:42:f6:86:84:7a:c0:9d:49:88:46:86:93:16:
                    bc:a4:12:5e:21:81:f2:2c:ff:f8:f4:55:84:19:ca:
                    f9:b6:6a:b7:ec:4d:8d:47:78:62:05:ad:07:3e:8e:
                    9b:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: 
                Digital Signature, Key Encipherment, Certificate Sign, CRL Sign
            X509v3 Basic Constraints: 
                CA:TRUE
            X509v3 Subject Key Identifier: 
                B7:AC:EB:C2:9B:0C:56:AC:5A:14:48:9A:93:31:2E:D2:D8:A0:9D:74
            X509v3 Authority Key Identifier: 
                B7:AC:EB:C2:9B:0C:56:AC:5A:14:48:9A:93:31:2E:D2:D8:A0:9D:74
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        aa:3e:36:d0:d7:08:ca:58:99:3c:c8:14:3d:94:11:ac:c1:2c:
        e5:e9:c2:73:6a:6c:d7:82:da:4f:6b:a3:7b:d5:db:22:5c:e5:
        2c:a3:5c:ba:fa:7d:f6:ad:34:69:f9:fd:12:ee:82:11:bb:b8:
        08:cb:a7:a8:30:03:11:4a:5c:ba:e2:cf:af:af:48:3b:ec:b8:
        ad:13:47:14:42:83:c7:1f:51:68:85:d3:05:0d:7f:d2:ae:4d:
        a5:3d:67:4d:2c:ec:60:49:81:6a:b3:a3:9b:46:a4:17:33:22:
        be:83:46:74:bf:2b:38:44:11:3d:c9:42:03:3e:8b:67:43:39:
        2a:9b:97:3a:61:48:aa:fc:af:dc:64:76:7a:61:d2:03:b5:aa:
        df:ed:11:92:43:fb:7d:38:4e:f7:90:f4:45:45:64:a9:d1:d0:
        e1:92:5e:d9:57:62:d8:97:c7:25:2c:44:bb:48:16:61:4c:00:
        c8:27:b2:1f:cc:eb:69:6e:27:63:91:d1:99:b0:6e:05:6d:fd:
        a7:7a:8b:4c:15:38:6f:44:9d:0e:a6:b2:d3:72:55:1c:71:07:
        2c:44:03:74:e4:20:06:42:32:6c:95:8b:4d:fe:91:55:6d:f6:
        29:b8:0b:e2:88:4f:41:9d:66:d9:de:7b:fe:16:c7:5d:45:39:
        eb:53:35:6f

9000 / tcp

-183793334 | 2025-01-11T10:54:29.144889

Hashes

hash

2146881808

http.dom_hash

1018886782

http.favicon.hash

-242833173

http.html_hash

-183793334

http.server_hash

608434861

同享人力资源管理平台

HTTP/1.1 200 OK
Cache-Control: private
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=42xityc3lnjikh2hwu2t3rrg; path=/; HttpOnly
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
P3P: CP=CAO PSA OUR
Access-Control-Allow-Methods: OPTIONS,POST,GET
Access-Control-Allow-Headers: x-requested-with,content-type
Access-Control-Allow-Origin: *
Date: Sat, 11 Jan 2025 10:54:28 GMT

116.6.76.130

Last Seen: 2025-02-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

21 / tcp

815932431 | 2025-01-29T22:34:03.793372

8008 / tcp

-183793334 | 2025-02-05T22:38:28.536658

Hashes

Microsoft IIS httpd10.0

8009 / tcp

-223854607 | 2025-02-07T01:57:55.188629

Hashes

Microsoft IIS httpd10.0

8010 / tcp

-2115881854 | 2025-01-30T02:56:42.791932

Hashes

Microsoft IIS httpd10.0

8082 / tcp

-540162627 | 2025-01-31T04:54:50.590826

Hashes

8443 / tcp

848362218 | 2025-02-01T20:49:25.092895

Hashes

9000 / tcp

-183793334 | 2025-01-11T10:54:29.144889

Hashes

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

116.6.76.130

Last Seen: 2025-02-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 8010 Latest CVSS

OpenPorts

21 / tcp 815932431 | 2025-01-29T22:34:03.793372

8008 / tcp -183793334 | 2025-02-05T22:38:28.536658

Hashes

Microsoft IIS httpd10.0

8009 / tcp -223854607 | 2025-02-07T01:57:55.188629

Hashes

Microsoft IIS httpd10.0

8010 / tcp -2115881854 | 2025-01-30T02:56:42.791932

Hashes

Microsoft IIS httpd10.0

8082 / tcp -540162627 | 2025-01-31T04:54:50.590826

Hashes

8443 / tcp 848362218 | 2025-02-01T20:49:25.092895

Hashes

9000 / tcp -183793334 | 2025-01-11T10:54:29.144889

Hashes

Microsoft IIS httpd10.0

Products

Pricing

Contact Us

Vulnerabilities

21 / tcp

815932431 | 2025-01-29T22:34:03.793372

8008 / tcp

-183793334 | 2025-02-05T22:38:28.536658

8009 / tcp

-223854607 | 2025-02-07T01:57:55.188629

8010 / tcp

-2115881854 | 2025-01-30T02:56:42.791932

8082 / tcp

-540162627 | 2025-01-31T04:54:50.590826

8443 / tcp

848362218 | 2025-02-01T20:49:25.092895

9000 / tcp

-183793334 | 2025-01-11T10:54:29.144889