GeneralInformation

Country	China
City	Shanghai
Organization	China Unicom
ISP	CHINA UNICOM China169 Backbone
ASN	AS4837

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

1433 3389 4369 5672 5985 8000

2136602117 | 2024-09-04T12:47:29.758610

1433 / tcp

MS-SQL NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: SERVER-AB843672
  NetBIOS Domain Name: SERVER-AB843672
  NetBIOS Computer Name: SERVER-AB843672
  DNS Domain Name: Server-ab843672-622e-4eb1-88dc-d64696aabca6
  FQDN: Server-ab843672-622e-4eb1-88dc-d64696aabca6

2015888482 | 2024-09-01T12:12:49.870538

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: SERVER-AB843672
  NetBIOS Domain Name: SERVER-AB843672
  NetBIOS Computer Name: SERVER-AB843672
  DNS Domain Name: Server-ab843672-622e-4eb1-88dc-d64696aabca6
  FQDN: Server-ab843672-622e-4eb1-88dc-d64696aabca6

Administrator
am Windows Server 2012R2

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3a:fa:96:83:0c:3a:a3:94:4d:73:35:0a:0e:2c:9c:f6
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: CN=Server-ab843672-622e-4eb1-88dc-d64696aabca6
        Validity
            Not Before: May 27 05:48:41 2024 GMT
            Not After : Nov 26 05:48:41 2024 GMT
        Subject: CN=Server-ab843672-622e-4eb1-88dc-d64696aabca6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:97:04:8d:0d:af:89:2c:1c:15:b7:1a:a4:29:b0:
                    50:aa:9b:91:f0:3e:3d:f6:1a:a8:c9:77:64:3c:c5:
                    c6:54:05:86:8c:98:c8:a5:62:05:36:0e:4f:a6:2b:
                    8e:87:94:84:b4:92:c9:ac:3b:df:a8:41:54:8a:a4:
                    a3:bc:89:01:fd:23:76:36:3e:b7:e2:70:57:66:5d:
                    ab:0e:6d:a0:65:6d:da:31:1a:29:07:88:80:ca:dc:
                    af:f1:0a:7c:43:6d:36:f0:43:0c:e3:9d:f1:dd:ac:
                    55:e0:13:b1:21:69:55:63:57:1d:a8:db:83:ce:0d:
                    fa:09:19:6f:7b:bd:93:69:71:d0:03:4e:5c:b4:cd:
                    e1:ae:fe:10:ca:28:9a:8d:9b:03:f5:f4:22:2b:2c:
                    2e:ff:98:a8:89:74:de:60:b5:ed:ec:34:5a:b8:83:
                    2e:7d:67:df:da:83:f4:5a:ed:c3:0e:a6:9a:46:0b:
                    42:c5:9d:88:57:f9:82:3d:c0:5d:bd:4b:04:6d:de:
                    5a:4a:55:fc:23:92:29:44:65:8b:fb:37:23:10:31:
                    63:a0:5c:de:92:40:a1:71:28:10:dd:5a:e4:4f:f2:
                    52:24:75:f2:8d:49:ae:9d:77:de:e9:66:8d:1d:7e:
                    f0:37:c5:d2:4c:57:ad:a7:32:d1:8b:e7:b7:f7:d9:
                    8d:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2a:f3:4b:37:35:ce:0a:48:b7:94:0b:2f:d4:93:59:86:9c:49:
        da:39:a3:5e:11:26:42:6b:e4:e1:14:9e:77:5d:f0:60:3c:e6:
        51:11:9d:20:66:1f:76:fc:f9:ea:dd:97:74:90:5b:f0:04:38:
        c3:da:ec:42:d9:ba:13:42:da:01:70:b1:b6:ad:48:0f:5a:98:
        72:ab:5b:a3:b5:de:44:91:c8:f6:ee:f6:3e:38:f5:1d:0f:2f:
        13:b6:69:02:8f:48:17:48:5d:6c:4f:7c:56:c8:12:19:e3:21:
        b4:64:3d:70:d7:20:7e:62:1d:e2:cd:b5:ad:89:b7:d4:3f:9e:
        f4:56:44:fa:da:7d:33:90:ac:2e:77:e3:a4:e3:27:59:09:34:
        7e:35:80:df:09:58:05:60:4c:8a:25:d5:ec:c5:f3:f0:c6:3a:
        5d:f9:ed:a5:9f:64:b5:c0:f3:d0:24:5a:20:49:04:c8:cc:24:
        0f:b6:a0:d9:4e:b5:2d:d1:05:14:a0:4a:a7:80:1a:20:e4:36:
        4b:11:86:9a:3d:f3:c0:22:56:1c:2b:2f:12:ff:40:01:75:b0:
        4b:df:3b:18:7f:80:61:86:d8:35:b2:b0:c8:25:85:e6:dc:88:
        be:0a:9a:7c:73:a6:7e:08:4f:bc:78:e8:6c:7b:90:07:aa:ff:
        06:c2:46:6d

MAC Addresses

D6:46:96:AA:BC:A6
    Unknown

50704379 | 2024-09-08T05:21:35.634149

4369 / tcp

Erlang Port Mapper Daemon:
  nodes:
    rabbit: 25672

-1267291479 | 2024-09-08T05:21:37.447774

5672 / tcp

AMQP:
  Protocol Version: 0-9
  Product: RabbitMQ
  Product Version: 3.6.6
  Platform: Erlang/OTP
  Capabilities:
    Exchange Exchange Bindings: True
    Connection.blocked: True
    Authentication Failure Close: True
    Direct Reply To: True
    Basic.nack: True
    Per Consumer Qos: True
    Consumer Priorities: True
    Consumer Cancel Notify: True
    Publisher Confirms: True

CVE-2021-22116 CVE-2023-46118 CVE-2022-31008 CVE-2021-32719 CVE-2021-32718

1489525118 | 2024-09-07T12:54:06.078992

5985 / tcp

Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sat, 07 Sep 2024 12:54:05 GMT
Connection: close
Content-Length: 315


WinRM NTLM Info:
  OS: Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: SERVER-AB843672
  NetBIOS Domain Name: SERVER-AB843672
  NetBIOS Computer Name: SERVER-AB843672
  DNS Domain Name: Server-ab843672-622e-4eb1-88dc-d64696aabca6
  FQDN: Server-ab843672-622e-4eb1-88dc-d64696aabca6

837105424 | 2024-09-02T02:08:23.582128

8000 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Mon, 02 Sep 2024 02:08:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 102
Last-Modified: Fri, 16 Nov 2018 02:21:59 GMT
Connection: keep-alive
ETag: "5bee29c7-66"
Accept-Ranges: bytes

CVE-2021-23017 CVE-2021-3618 CVE-2019-20372 CVE-2023-44487

61.240.149.150

Last Seen: 2024-09-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

2136602117 | 2024-09-04T12:47:29.758610
1433 / tcp

MS-SQL Server 2016 RTM13.0.1601.0

2015888482 | 2024-09-01T12:12:49.870538
3389 / tcp

Remote Desktop Protocol

50704379 | 2024-09-08T05:21:35.634149
4369 / tcp

Erlang Port Mapper Daemon

-1267291479 | 2024-09-08T05:21:37.447774
5672 / tcp

RabbitMQ3.6.6

1489525118 | 2024-09-07T12:54:06.078992
5985 / tcp

WinRM

837105424 | 2024-09-02T02:08:23.582128
8000 / tcp

nginx1.16.1

Products

Pricing

Contact Us

61.240.149.150

Last Seen: 2024-09-08

Tags:

GeneralInformation

Vulnerabilities All ports Port 5672 Port 8000 Latest CVSS

OpenPorts

2136602117 | 2024-09-04T12:47:29.758610 1433 / tcp

MS-SQL Server 2016 RTM13.0.1601.0

2015888482 | 2024-09-01T12:12:49.870538 3389 / tcp

Remote Desktop Protocol

50704379 | 2024-09-08T05:21:35.634149 4369 / tcp

Erlang Port Mapper Daemon

-1267291479 | 2024-09-08T05:21:37.447774 5672 / tcp

RabbitMQ3.6.6

1489525118 | 2024-09-07T12:54:06.078992 5985 / tcp

WinRM

837105424 | 2024-09-02T02:08:23.582128 8000 / tcp

nginx1.16.1

Products

Pricing

Contact Us

Vulnerabilities

2136602117 | 2024-09-04T12:47:29.758610
1433 / tcp

2015888482 | 2024-09-01T12:12:49.870538
3389 / tcp

50704379 | 2024-09-08T05:21:35.634149
4369 / tcp

-1267291479 | 2024-09-08T05:21:37.447774
5672 / tcp

1489525118 | 2024-09-07T12:54:06.078992
5985 / tcp

837105424 | 2024-09-02T02:08:23.582128
8000 / tcp