GeneralInformation

Country	Chile
City	Santiago
Organization	Comercial Satex Ltda.
ISP	Gtd Internet S.A.
ASN	AS14259

WebTechnologies

JavaScript libraries

jQuery

Web frameworks

Microsoft ASP.NET

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 4100 4117 8080 8090 8092 37777

1489525118 | 2025-01-02T17:46:38.298493

80 / tcp

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 02 Jan 2025 17:44:27 GMT
Connection: close
Content-Length: 315

848362218 | 2025-01-01T18:03:57.035738

443 / tcp

Fireware XTM User Authentication

HTTP/1.1 200 OK
Date: Wed, 01 Jan 2025 18:03:56 GMT
Content-Type: text/html
Content-Length: 727
Last-Modified: Wed, 13 May 2020 17:26:44 GMT
Connection: keep-alive
ETag: "5ebc2dd4-2d7"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1599790506 (0x5f5addaa)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: O=WatchGuard, OU=Fireware, CN=Fireware web CA
        Validity
            Not Before: Aug 12 02:15:07 2020 GMT
            Not After : Sep  9 02:15:07 2030 GMT
        Subject: O=WatchGuard, OU=Fireware, CN=Fireware web CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d2:50:01:94:44:59:31:5e:b5:8e:94:c4:df:8f:
                    fc:c6:39:1f:af:6b:7e:64:1a:5e:78:65:92:57:23:
                    d6:5e:b1:0f:59:a2:52:ef:5b:a3:2d:06:47:17:f0:
                    09:8f:cc:b2:f5:3c:cd:be:05:66:b3:43:35:b7:1b:
                    76:df:b2:1a:b8:7f:c1:61:7e:75:41:dc:7c:7e:b6:
                    65:73:34:b3:bc:40:c5:c1:85:66:68:91:ea:df:84:
                    b6:ac:75:5f:a3:7e:a9:2b:f7:9d:cd:97:94:0d:8b:
                    04:d9:f1:4b:c4:a6:a8:97:65:5f:96:4e:b0:2e:c2:
                    fa:2a:46:aa:e5:9a:99:26:db:e1:c1:e5:6b:42:06:
                    9f:1d:d9:0f:4a:db:f2:e4:80:3d:36:3b:18:37:06:
                    ad:7a:0f:c9:5b:b4:0b:37:2e:81:48:20:5c:96:7e:
                    ae:d5:9b:e2:ee:07:42:3f:08:91:28:07:82:4a:66:
                    01:2e:6c:a4:20:cd:39:7e:d8:06:b5:46:84:b4:1e:
                    0f:46:7e:50:c8:45:67:13:a8:65:a3:ad:cd:07:28:
                    8a:d8:0a:a6:80:cf:db:f8:cf:c7:1a:79:93:55:30:
                    f5:7a:8e:b7:33:d1:4d:56:7f:39:3f:ff:2c:ca:23:
                    9a:98:a8:fd:ec:79:b3:3b:77:e4:48:ec:b8:05:cd:
                    6b:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: 
                Digital Signature, Key Encipherment, Certificate Sign, CRL Sign
            X509v3 Basic Constraints: 
                CA:TRUE
            X509v3 Subject Key Identifier: 
                52:8C:C4:DA:B8:6E:F6:E2:C6:81:5D:6C:3F:78:73:9C:74:31:C5:E1
            X509v3 Authority Key Identifier: 
                52:8C:C4:DA:B8:6E:F6:E2:C6:81:5D:6C:3F:78:73:9C:74:31:C5:E1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        27:ec:3a:41:3e:b4:38:7f:a7:dc:e9:83:a5:dd:bb:bb:30:8d:
        ac:e1:ad:1f:0a:81:86:0a:89:0c:32:eb:dc:db:be:cf:33:82:
        0b:73:5f:ae:17:ee:e4:45:6f:57:00:3b:e2:96:19:be:62:6f:
        a7:17:e4:db:d9:da:a9:79:25:b2:79:e4:24:7d:0b:e4:dd:d9:
        ab:db:d0:cb:e8:20:6d:8f:ab:90:0e:ea:7c:41:0d:22:06:24:
        66:a9:9d:66:c1:34:40:b2:06:9d:b9:71:dc:89:b3:ec:8a:79:
        4c:77:29:b6:0d:09:43:12:59:b1:c6:c5:17:bc:72:20:67:a8:
        4c:45:56:97:ac:1a:04:4a:3e:c2:9b:ea:6e:71:73:e8:fa:08:
        bb:a0:9e:6f:6a:4a:47:c6:22:ad:a5:ca:48:a8:24:8f:06:72:
        87:02:e3:f3:c0:a0:68:f1:c8:f5:0a:26:bd:5a:b5:47:57:75:
        ee:0f:fa:cd:5d:f6:f3:b3:1d:22:00:d5:57:53:f5:06:82:e8:
        6f:a0:a5:a0:a1:22:48:c6:46:79:f6:cc:a8:ba:48:f1:d9:15:
        a4:6c:d2:a3:f0:dc:f1:31:74:2b:96:cc:c5:b2:89:c2:33:e4:
        a1:1f:30:ad:7c:de:90:bf:9d:2c:b1:1d:6d:73:8d:49:c8:7c:
        ab:69:d7:a4

-540162627 | 2024-12-31T12:31:11.861529

4100 / tcp

307 Temporary Redirect

HTTP/1.1 307 Temporary Redirect
Date: Tue, 31 Dec 2024 12:31:11 GMT
Content-Type: text/html
Content-Length: 152
Connection: close
Location: https://201.238.196.125:4100/
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'

914076305 | 2024-12-08T04:49:11.837435

4117 / tcp

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Date: Sun, 08 Dec 2024 04:49:11 GMT
Content-Type: text/html
Content-Length: 638
Connection: close

-540162627 | 2024-12-30T11:09:49.085753

8080 / tcp

307 Temporary Redirect

HTTP/1.1 307 Temporary Redirect
Date: Mon, 30 Dec 2024 11:09:48 GMT
Content-Type: text/html
Content-Length: 152
Connection: close
Location: https://201.238.196.125:8080/
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Content-Security-Policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'
X-Webkit-CSP: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'; font-src 'self'; object-src 'self'; media-src 'self'; child-src 'self'

1633788256 | 2024-12-22T13:21:10.747854

8090 / tcp

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/7.5
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=syy2xvoxd5xzn0mpllggl55x; path=/; HttpOnly; SameSite=Lax
X-Powered-By: ASP.NET
Date: Sun, 22 Dec 2024 13:18:58 GMT
Content-Length: 7667

CVE-2010-3972 CVE-2010-2730 CVE-2010-1899

221557970 | 2024-12-24T12:49:03.440999

8092 / tcp

WEB SERVICE

HTTP/1.1 200 OK
CONNECTION: close
Date: Tue, 24 Dec 2024 09:49:02 GMT
Last-Modified: Fri, 29 Dec 2017 08:22:51 GMT
Etag: "1514535771:62bc"
CONTENT-LENGTH: 25276
CACHE-CONTROL: max-age=0
P3P: CP=CAO PSA OUR
CONTENT-TYPE: text/html


Dahua XVR:
  Web Version: 3.2.7.91796
  Plugin:
    Version: 3.1.0.512511
    Mac Version: 1.0.0.1
    ClassID: C5950D30-EEB1-4c54-9D06-B1CDEC73164D
    Name: WebView_L.Plugin.1

1625054940 | 2025-01-04T14:07:54.375213

37777 / tcp

Dahua XVR:
  Firmware Version: 3.218.0000002.1
  Serial Number: 4C076CFPAPB0D9E

201.238.196.125

Last Seen: 2025-01-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1489525118 | 2025-01-02T17:46:38.298493
80 / tcp

Microsoft HTTPAPI httpd2.0

848362218 | 2025-01-01T18:03:57.035738
443 / tcp

-540162627 | 2024-12-31T12:31:11.861529
4100 / tcp

914076305 | 2024-12-08T04:49:11.837435
4117 / tcp

-540162627 | 2024-12-30T11:09:49.085753
8080 / tcp

1633788256 | 2024-12-22T13:21:10.747854
8090 / tcp

Microsoft IIS httpd7.5

221557970 | 2024-12-24T12:49:03.440999
8092 / tcp

Dahua XVR

1625054940 | 2025-01-04T14:07:54.375213
37777 / tcp

Dahua XVR3.218.0000002.1

Products

Pricing

Contact Us

201.238.196.125

Last Seen: 2025-01-04

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 8090 Latest CVSS

OpenPorts

1489525118 | 2025-01-02T17:46:38.298493 80 / tcp

Microsoft HTTPAPI httpd2.0

848362218 | 2025-01-01T18:03:57.035738 443 / tcp

-540162627 | 2024-12-31T12:31:11.861529 4100 / tcp

914076305 | 2024-12-08T04:49:11.837435 4117 / tcp

-540162627 | 2024-12-30T11:09:49.085753 8080 / tcp

1633788256 | 2024-12-22T13:21:10.747854 8090 / tcp

Microsoft IIS httpd7.5

221557970 | 2024-12-24T12:49:03.440999 8092 / tcp

Dahua XVR

1625054940 | 2025-01-04T14:07:54.375213 37777 / tcp

Dahua XVR3.218.0000002.1

Products

Pricing

Contact Us

Vulnerabilities

1489525118 | 2025-01-02T17:46:38.298493
80 / tcp

848362218 | 2025-01-01T18:03:57.035738
443 / tcp

-540162627 | 2024-12-31T12:31:11.861529
4100 / tcp

914076305 | 2024-12-08T04:49:11.837435
4117 / tcp

-540162627 | 2024-12-30T11:09:49.085753
8080 / tcp

1633788256 | 2024-12-22T13:21:10.747854
8090 / tcp

221557970 | 2024-12-24T12:49:03.440999
8092 / tcp

1625054940 | 2025-01-04T14:07:54.375213
37777 / tcp