GeneralInformation

Hostnames	185zy.com
Domains	185zy.com
Country	China
City	Hangzhou
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963
Operating System	Windows

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

21 22 80 443 3389 8080 8081

928609965 | 2024-12-26T20:55:27.112834

21 / tcp

220 Serv-U FTP Server v15.1 ready...
530 Sorry, no ANONYMOUS access allowed.
214-The following commands are recognized (* => unimplemented).
    OPTS    CLNT    CSID    NOOP    HELP    FEAT    HOST    USER    PASS
    REIN    QUIT    ACCT*   SMNT*   SITE    ABOR    SYST    STAT    AUTH
    PBSZ    PROT    CCC     SSCN    CWD     XCWD    CDUP    XCUP    PWD
    XPWD    MKD     XMKD    RMD     XRMD    RMDA    DSIZ    AVBL    PORT
    EPRT    PASV    EPSV    TYPE    STRU    MODE    RETR    STOR    APPE
    STOU    THMB    ALLO    REST    SIZE    RNFR    RNTO    DELE    XDEL
    MDTM    MFMT    MFCT    MFF     XCRC    XMD5    XSHA1   XSHA256 XSHA512
    COMB    LIST    NLST    MLST    MLSD
214 End
211-Extensions supported
 UTF8
 OPTS MODE;MLST;UTF8
 CLNT
 CSID Name; Version;
 HOST domain
 SITE PSWD;SET;ZONE;CHMOD;MSG;EXEC;HELP
 AUTH TLS;SSL;TLS-C;TLS-P;
 PBSZ
 PROT
 CCC
 SSCN
 RMDA directoryname
 DSIZ
 AVBL
 EPRT
 EPSV
 MODE Z
 THMB BMP|JPEG|GIF|TIFF|PNG max_width max_height pathname
 REST STREAM
 SIZE
 MDTM
 MDTM YYYYMMDDHHMMSS[+-TZ];filename
 MFMT
 MFCT
 MFF Create;Modify;
 XCRC filename;start;end
 XMD5 filename;start;end
 XSHA1 filename;start;end
 XSHA256 filename;start;end
 XSHA512 filename;start;end
 COMB target;source_list
 MLST Type*;Size*;Create;Modify*;Perm;Win32.ea;Win32.dt;Win32.dl
211 End (for details use "HELP commmand" where command is the command of interest)

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
        Validity
            Not Before: Apr 29 15:53:05 2009 GMT
            Not After : Apr 27 15:53:05 2019 GMT
        Subject: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c2:87:da:9d:72:fd:62:f5:8e:a7:0f:0a:6c:a4:
                    b6:96:d4:ea:2c:76:ba:ed:3a:5d:2d:ee:e8:a8:7f:
                    6f:d0:62:cd:11:4e:64:f5:0d:54:73:d0:3d:12:37:
                    07:8d:8e:d0:7f:e7:4e:bd:a4:56:8d:32:d8:44:87:
                    9f:75:80:da:e7:8a:9c:72:d8:50:36:67:3e:f1:e5:
                    fb:f4:bf:f0:1b:4e:39:93:ba:32:b5:e0:66:03:06:
                    f3:10:4c:0e:7c:8c:67:f5:35:64:67:d3:e0:a4:26:
                    f8:42:a9:8e:1e:ca:59:18:81:77:67:e1:8e:50:80:
                    64:18:a0:4b:cd:f4:fe:b3:75
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2a:1d:4e:32:3d:96:9a:dd:3d:59:81:24:5e:4e:64:cb:2f:c5:
        70:e2:4a:ef:8c:97:a8:76:60:94:7d:0c:09:39:a0:9d:19:da:
        60:ee:6e:71:27:a5:46:df:16:94:36:a2:a1:dd:34:39:3f:65:
        69:0b:a2:59:74:9a:77:64:e7:bd:27:04:3d:8e:6e:59:29:be:
        51:73:d9:36:13:e3:fa:e2:44:27:8d:a0:0d:20:5c:25:7d:b8:
        a5:f3:95:de:da:45:83:83:80:af:bf:06:7e:9e:83:82:dc:44:
        e5:7e:c0:d7:ed:0f:54:24:7d:e1:ed:0c:30:58:1d:36:2f:91:
        67:98

-1910120767 | 2024-12-25T03:33:21.909496

22 / tcp

SSH-2.0-Serv-U_15.1.5.10
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAAAgQDCh9qdcv1i9Y6nDwpspLaW1OosdrrtOl0t7uiof2/QYs0R
TmT1DVRz0D0SNweNjtB/5069pFaNMthEh591gNrnipxy2FA2Zz7x5fv0v/AbTjmTujK14GYDBvMQ
TA58jGf1NWRn0+CkJvhCqY4eylkYgXdn4Y5QgGQYoEvN9P6zdQ==
Fingerprint: e4:dd:11:2e:82:34:ab:62:59:1c:c8:62:1d:4b:48:99

Kex Algorithms:
	diffie-hellman-group1-sha1
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa

Encryption Algorithms:
	aes128-cbc
	rijndael128-cbc
	3des-cbc
	blowfish-cbc
	aes192-cbc
	rijndael192-cbc
	aes256-cbc
	rijndael256-cbc
	rijndael-cbc@lysator.liu.se
	cast128-cbc
	rijndael-cbc@lysator.liu.se
	aes128-ctr
	aes192-ctr
	aes256-ctr

MAC Algorithms:
	hmac-md5
	hmac-sha1
	hmac-sha1-96
	hmac-sha2-256
	hmac-sha2-256-96
	hmac-sha2-512
	hmac-sha2-512-96

Compression Algorithms:
	zlib
	none

-119375469 | 2024-12-30T22:53:14.392853

80 / tcp

IIS7

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Wed, 19 Aug 2020 08:51:26 GMT
Accept-Ranges: bytes
ETag: "dead85ec576d61:0"
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET
Date: Mon, 30 Dec 2024 22:53:14 GMT
Content-Length: 689

CVE-2010-3972 CVE-2010-2730 CVE-2010-1899

1489525118 | 2024-12-29T21:03:14.493898

443 / tcp

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 29 Dec 2024 21:03:14 GMT
Connection: close
Content-Length: 315

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            b4:84:c2:1e:c6:cd:21:af:ec:9f:34:b7:1d:e8:21:0d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, O=WoTrus CA Limited, CN=WoTrus DV Server CA  [Run by the Issuer]
        Validity
            Not Before: Jul 21 00:00:00 2024 GMT
            Not After : Jul 21 23:59:59 2025 GMT
        Subject: CN=*.185zy.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b8:82:c6:ba:a1:37:ca:6b:4f:18:27:08:0b:69:
                    cd:45:76:4f:21:c8:62:10:ac:53:76:8c:07:c2:f5:
                    02:3e:b3:21:b7:32:49:a0:a7:83:7b:72:a1:74:da:
                    d0:ca:15:eb:ab:5f:cd:12:e6:a0:bb:e8:24:07:f4:
                    4e:a2:95:c6:98:d9:fe:29:ed:96:3c:e3:6d:72:f1:
                    13:d2:a5:ae:6d:a5:55:72:26:d9:e6:b3:07:d3:8e:
                    bd:0a:20:31:96:07:42:3e:9f:24:c2:ef:62:d0:57:
                    5d:65:11:17:6d:e1:f0:54:16:f8:66:70:d2:e1:dd:
                    ae:ea:bc:6b:c1:99:c2:3f:f8:ac:35:0f:f6:0b:4e:
                    9d:bd:38:e4:9e:eb:c9:c3:b7:c4:d9:c4:5c:b9:9f:
                    90:70:82:ce:18:a6:dd:41:0b:75:6c:53:87:48:d9:
                    aa:11:4d:39:24:8a:28:77:d3:f0:44:2a:23:96:2a:
                    54:47:eb:dd:5c:99:fa:ee:91:d4:ba:1b:28:36:a8:
                    a8:d9:3f:13:de:a8:3c:6a:3f:7f:fd:2c:39:e7:a6:
                    03:79:ab:3f:24:07:6f:e1:84:90:7b:c0:b2:d5:17:
                    29:d2:10:b4:66:ef:54:24:07:fa:58:e5:99:6d:76:
                    1a:bb:c2:1a:17:56:0d:32:b7:2e:b3:39:2a:e9:c0:
                    9b:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                99:9B:2D:F6:8B:F0:A3:DB:89:D4:9E:FB:E5:74:2F:68:D2:90:4F:E4
            X509v3 Subject Key Identifier: 
                C0:24:8C:56:99:27:10:4A:8A:52:AA:A1:77:1D:7E:50:D8:42:55:96
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.22
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.crlocsp.cn/WoTrusDVServerCA_2.crl
            Authority Information Access: 
                CA Issuers - URI:http://aia.crlocsp.cn/WoTrusDVServerCA_2.crt
                OCSP - URI:http://ocsp.crlocsp.cn
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:
                                3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A
                    Timestamp : Jul 21 04:48:37.701 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:42:0D:38:5B:DE:1E:42:BB:09:9A:00:C6:
                                C2:0A:AC:16:4C:F6:BC:6C:7B:8D:EA:81:03:F7:B8:1C:
                                2D:90:5C:13:02:20:58:A9:93:76:68:D8:6C:1D:21:3A:
                                DD:24:FE:BF:85:2C:CF:C1:81:F3:F2:D4:C8:8E:6F:7D:
                                57:EF:1E:7A:37:DC
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:
                                47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34
                    Timestamp : Jul 21 04:48:37.594 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AB:7A:7C:6E:36:0F:C4:34:F1:D5:FA:
                                12:FC:91:7E:E1:4F:43:5B:02:10:35:3E:38:EF:F5:E6:
                                5C:13:DA:12:E0:02:21:00:8A:D3:47:59:A0:EA:2D:C6:
                                87:25:40:C2:2C:29:74:E6:24:47:C7:65:32:88:BD:07:
                                19:77:F8:E4:E0:49:4E:7F
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13:
                                F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A
                    Timestamp : Jul 21 04:48:37.592 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8B:64:81:86:FC:95:39:87:69:6D:58:
                                6D:09:67:2A:8C:54:D3:4C:CF:6F:25:7F:A0:45:8B:C1:
                                AA:ED:E3:4D:A5:02:21:00:CC:26:C7:56:13:16:05:C2:
                                0E:97:C3:4C:1E:95:81:9D:EB:42:4F:FC:63:4C:8A:57:
                                57:99:66:FF:C6:1A:A9:98
            X509v3 Subject Alternative Name: 
                DNS:*.185zy.com, DNS:185zy.com
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        50:7c:41:69:bc:87:6a:46:77:c1:64:08:0d:16:58:80:dd:2d:
        b2:8b:82:a6:d4:3f:8c:a6:bf:15:aa:e0:ea:dd:9a:f0:7d:e3:
        48:fe:d1:df:11:df:0f:32:d5:5a:60:c4:03:50:bb:c0:a8:80:
        f7:51:ce:ef:42:9b:4f:a6:9c:5e:b5:ad:5b:25:53:fa:ac:ac:
        9a:84:32:71:f2:f1:93:f6:63:ca:7f:ba:2d:c0:d1:98:c1:4d:
        30:aa:34:f7:af:09:10:7e:54:c8:86:35:4d:78:89:b0:c0:bd:
        e2:38:ad:80:25:7d:8f:0d:f6:ae:f7:74:92:d4:1f:ae:c7:0d:
        c9:f2:93:0c:ff:c7:ad:47:7c:c8:63:bb:36:d8:6d:ad:a5:76:
        1f:3d:9c:84:62:1f:0f:c8:0b:64:81:ed:b3:4a:3c:fe:e2:0f:
        1d:c0:55:6f:f0:cc:80:25:de:a6:b0:ce:b4:a8:dc:a4:ae:7c:
        15:d5:35:53:43:3d:8b:ae:7d:aa:59:21:75:7d:3b:b5:fd:5b:
        89:e6:ac:44:f5:09:9c:8e:b8:00:29:25:b5:92:e7:46:f0:83:
        27:80:d6:a6:d9:4f:36:f5:4c:52:57:68:79:14:2a:fc:9b:5e:
        b5:6d:45:2e:00:3b:ea:4f:44:c1:3d:f6:2c:d1:72:8f:9d:e5:
        a2:4c:ca:27

194498261 | 2024-12-27T23:45:01.587310

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\t\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 7/Windows Server 2008 R2
  OS Build: 6.1.7601
  Target Name: iZ6bxfx7l8h7qkZ
  NetBIOS Domain Name: iZ6bxfx7l8h7qkZ
  NetBIOS Computer Name: iZ6bxfx7l8h7qkZ
  DNS Domain Name: iZ6bxfx7l8h7qkZ
  FQDN: iZ6bxfx7l8h7qkZ

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            77:92:43:06:ef:e8:71:bf:46:f9:98:17:e3:a8:f8:80
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=iZ6bxfx7l8h7qkZ
        Validity
            Not Before: Oct  8 16:56:56 2024 GMT
            Not After : Apr  9 16:56:56 2025 GMT
        Subject: CN=iZ6bxfx7l8h7qkZ
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d7:21:84:5b:45:b5:8d:34:3e:bf:f0:3d:7d:ab:
                    21:d7:c9:91:2a:7a:b1:87:77:c5:c1:df:b6:8b:be:
                    2a:7b:7f:f7:ca:37:5a:af:37:3d:67:39:af:58:f7:
                    d0:e5:76:6d:0e:64:7b:10:4e:55:df:13:9d:83:76:
                    75:9f:15:ac:f2:94:e1:40:bc:c6:cd:90:d7:35:89:
                    b7:bb:ec:9e:28:51:e8:10:bf:1b:74:bf:71:99:5b:
                    7d:c6:76:b6:9d:45:0e:83:aa:41:fb:b6:5c:ff:e1:
                    29:fd:52:3a:58:3e:0c:11:a6:05:ec:ef:d4:60:0e:
                    d3:00:10:e0:c2:01:67:78:5a:c8:01:17:7f:c0:12:
                    86:2a:c4:43:60:ce:e8:a7:81:38:68:43:90:91:f1:
                    42:e0:2c:1a:97:d4:5b:9b:91:dc:55:be:c2:c7:82:
                    9b:59:34:3d:e7:a3:43:dd:d4:83:5e:79:a1:57:3e:
                    0d:8f:4a:f4:3f:a6:4f:b4:82:80:12:a8:3e:e9:a2:
                    fe:e0:f9:f5:2b:3d:df:44:ed:d7:c1:0b:26:c2:c6:
                    c7:a9:72:68:3f:e2:14:ee:7d:5d:34:55:29:3a:25:
                    b3:ff:70:a4:32:fe:55:c1:f0:2f:5a:0b:57:b7:d2:
                    a6:eb:96:21:67:75:37:dc:f6:06:8d:72:da:5d:78:
                    e7:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        41:9b:15:57:25:da:64:97:a6:b2:fb:cf:45:7d:5b:d3:5c:9b:
        d1:21:53:df:92:ca:ea:a5:82:33:3b:6b:2b:3f:6b:61:e3:49:
        ab:e9:f4:da:8c:d5:1c:4e:58:f5:f3:93:73:2e:ed:e8:88:c8:
        e6:f7:58:f0:cb:3c:ac:9f:48:b7:7b:21:ac:98:77:0a:ee:51:
        9c:dc:d1:33:5a:0f:0e:ba:3f:7e:99:ed:49:d8:9a:29:3e:d0:
        7e:dd:54:09:ed:ae:36:29:cc:37:8f:7d:3d:e2:6f:fa:3e:b8:
        f7:1f:9e:ed:e2:80:5a:f3:32:3f:23:4c:7a:be:8b:66:70:2f:
        00:c5:4a:d2:66:33:3b:92:07:58:7e:a4:12:06:71:75:f7:2e:
        5e:4b:cd:62:88:87:e9:b5:53:11:7e:a5:49:df:01:c9:bd:ce:
        1f:cd:e9:72:82:e6:08:0e:a1:15:50:82:67:78:db:0a:4c:e1:
        71:79:bf:41:cf:de:2d:1a:2f:f1:72:9c:d6:3e:24:fc:ac:fd:
        83:ed:99:13:7c:ab:79:8f:40:32:af:39:6c:06:11:af:a2:34:
        44:c7:8c:b9:a3:19:d3:3c:ae:b2:43:46:1a:59:89:ee:5e:2a:
        8f:1a:36:35:54:ce:a2:7c:e8:65:81:03:8d:68:ad:6d:80:e8:
        ba:10:07:bf

1298793639 | 2024-12-25T17:15:09.297355

8080 / tcp

Bad Request

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Wed, 25 Dec 2024 17:15:09 GMT
Connection: close
Content-Length: 334

-1949296613 | 2024-12-09T05:18:30.798980

8081 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 09 Dec 2024 05:18:30 GMT
Connection: close
Content-Length: 334

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd">
<HTML><HEAD><TITLE>Bad Request</TITLE>
<META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD>
<BODY><h2>Bad Request - Invalid Hostname</h2>
<hr><p>HTTP Error 400. The request hostname is invalid.</p>
</BODY></HTML>

47.110.226.135

Last Seen: 2024-12-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

928609965 | 2024-12-26T20:55:27.112834
21 / tcp

Serv-U ftpd15.1

-1910120767 | 2024-12-25T03:33:21.909496
22 / tcp

-119375469 | 2024-12-30T22:53:14.392853
80 / tcp

Microsoft IIS httpd7.5

1489525118 | 2024-12-29T21:03:14.493898
443 / tcp

Microsoft HTTPAPI httpd2.0

194498261 | 2024-12-27T23:45:01.587310
3389 / tcp

Remote Desktop Protocol

1298793639 | 2024-12-25T17:15:09.297355
8080 / tcp

Microsoft HTTPAPI httpd2.0

-1949296613 | 2024-12-09T05:18:30.798980
8081 / tcp

Microsoft HTTPAPI httpd2.0

Products

Pricing

Contact Us

47.110.226.135

Last Seen: 2024-12-30

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

928609965 | 2024-12-26T20:55:27.112834 21 / tcp

Serv-U ftpd15.1

-1910120767 | 2024-12-25T03:33:21.909496 22 / tcp

-119375469 | 2024-12-30T22:53:14.392853 80 / tcp

Microsoft IIS httpd7.5

1489525118 | 2024-12-29T21:03:14.493898 443 / tcp

Microsoft HTTPAPI httpd2.0

194498261 | 2024-12-27T23:45:01.587310 3389 / tcp

Remote Desktop Protocol

1298793639 | 2024-12-25T17:15:09.297355 8080 / tcp

Microsoft HTTPAPI httpd2.0

-1949296613 | 2024-12-09T05:18:30.798980 8081 / tcp

Microsoft HTTPAPI httpd2.0

Products

Pricing

Contact Us

Vulnerabilities

928609965 | 2024-12-26T20:55:27.112834
21 / tcp

-1910120767 | 2024-12-25T03:33:21.909496
22 / tcp

-119375469 | 2024-12-30T22:53:14.392853
80 / tcp

1489525118 | 2024-12-29T21:03:14.493898
443 / tcp

194498261 | 2024-12-27T23:45:01.587310
3389 / tcp

1298793639 | 2024-12-25T17:15:09.297355
8080 / tcp

-1949296613 | 2024-12-09T05:18:30.798980
8081 / tcp