GeneralInformation

Country	United States
City	San Jose
Organization	PEG TECH INC
ISP	PEG TECH INC
ASN	AS54600

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2014-4078

5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."

OpenPorts

21 80 888 3306 8888

-1521289231 | 2024-05-12T06:09:56.359386

21 / tcp

220 FileZilla Server version 0.9.46 beta written by Tim Kosse (Tim.Kosse@gmx.de) Please visit http://sourceforge.
530 Login or password incorrect!
214-The following commands are recognized:
   ABOR   ADAT   ALLO   APPE   AUTH   CDUP   CLNT   CWD 
   DELE   EPRT   EPSV   FEAT   HASH   HELP   LIST   MDTM
   MFMT   MKD    MLSD   MLST   MODE   NLST   NOOP   NOP 
   OPTS   P@SW   PASS   PASV   PBSZ   PORT   PROT   PWD 
   QUIT   REST   RETR   RMD    RNFR   RNTO   SITE   SIZE
   STOR   STRU   SYST   TYPE   USER   XCUP   XCWD   XMKD
   XPWD   XRMD
214 Have a nice day.
211-Features:
 MDTM
 REST STREAM
 SIZE
 MLST type*;size*;modify*;
 MLSD
 UTF8
 CLNT
 MFMT
211 End

1489525118 | 2024-05-11T16:38:18.005426

80 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sat, 11 May 2024 16:38:13 GMT
Connection: close
Content-Length: 315

1355394294 | 2024-05-08T07:26:13.866970

888 / tcp

HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Wed, 08 May 2024 07:26:06 GMT
Content-Length: 1157

924379546 | 2024-05-14T18:31:32.307993

3306 / tcp

MySQL:
  Error Message: Host '224.252.176.248' is not allowed to connect to this MySQL server
  Error Code: 1130

-85749389 | 2024-05-06T13:49:48.575729

8888 / tcp

HTTP/1.1 404 NOT FOUND
Content-Type: text/html
Content-Length: 138
Server: nginx
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Set-Cookie: e69a582b850b778be4b8f24612c62168=c948b3cc-965a-4ee8-8d0c-9cfd29cabc44.2MNIrqcmh-MW-CG9qot-GG1ylYg; Expires=Tue, 07-May-2024 13:49:43 GMT; HttpOnly; Path=/
Date: Mon, 06 May 2024 13:49:43 GMT

108.186.213.197

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1521289231 | 2024-05-12T06:09:56.359386
21 / tcp

1489525118 | 2024-05-11T16:38:18.005426
80 / tcp

Microsoft HTTPAPI httpd2.0

1355394294 | 2024-05-08T07:26:13.866970
888 / tcp

Microsoft IIS httpd8.5

924379546 | 2024-05-14T18:31:32.307993
3306 / tcp

MySQL

-85749389 | 2024-05-06T13:49:48.575729
8888 / tcp

nginx

Products

Pricing

Contact Us

108.186.213.197

Last Seen: 2024-05-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1521289231 | 2024-05-12T06:09:56.359386 21 / tcp

1489525118 | 2024-05-11T16:38:18.005426 80 / tcp

Microsoft HTTPAPI httpd2.0

1355394294 | 2024-05-08T07:26:13.866970 888 / tcp

Microsoft IIS httpd8.5

924379546 | 2024-05-14T18:31:32.307993 3306 / tcp

MySQL

-85749389 | 2024-05-06T13:49:48.575729 8888 / tcp

nginx

Products

Pricing

Contact Us

-1521289231 | 2024-05-12T06:09:56.359386
21 / tcp

1489525118 | 2024-05-11T16:38:18.005426
80 / tcp

1355394294 | 2024-05-08T07:26:13.866970
888 / tcp

924379546 | 2024-05-14T18:31:32.307993
3306 / tcp

-85749389 | 2024-05-06T13:49:48.575729
8888 / tcp