GeneralInformation

Hostnames	vmi717373.contaboserver.net infinite.com.co
Domains	contaboserver.net infinite.com.co
Country	Germany
City	Düsseldorf
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167
Operating System	Windows Server 2012 R2

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2014-4078

5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability."

OpenPorts

80 443 3389

1138219898 | 2024-05-30T21:14:55.117457

80 / tcp

HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Mon, 15 Nov 2021 23:00:12 GMT
Accept-Ranges: bytes
ETag: "4b55c78b74dad71:0"
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Thu, 30 May 2024 21:14:54 GMT
Content-Length: 701

1489525118 | 2024-05-26T18:51:23.507103

443 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Sun, 26 May 2024 18:51:23 GMT
Connection: close
Content-Length: 315

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            aa:91:8d:c4:53:58:8b:14:bf:23:5c:43:9e:48:38:3e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Mar 22 00:00:00 2024 GMT
            Not After : Apr 22 23:59:59 2025 GMT
        Subject: CN=*.infinite.com.co
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a6:32:9c:17:d0:16:24:f2:1d:aa:03:e1:5b:fb:
                    1b:52:3d:13:80:41:2c:08:dc:d6:ec:46:78:bd:92:
                    10:45:6d:3b:5f:9d:b1:50:f1:51:fe:33:06:2f:66:
                    fe:0e:9f:77:ac:9b:a9:78:e9:63:e5:b0:a0:b2:d1:
                    31:af:cb:66:7f:16:4b:47:07:5a:f5:69:99:43:f8:
                    a6:16:ff:c8:ea:de:a7:4f:b4:5e:78:ca:b5:48:9d:
                    5b:df:0a:a7:f7:db:5b:ac:88:5b:90:87:86:a4:49:
                    b0:5d:3d:e2:f0:6e:a2:77:b5:9e:0c:2c:70:27:71:
                    7c:d6:3a:ca:46:3e:2f:8f:52:2f:29:a9:f3:3f:28:
                    0d:2d:62:9c:06:31:24:16:b8:79:f5:cb:4a:8e:c3:
                    94:84:1b:61:87:49:32:84:79:be:a4:47:6f:12:d8:
                    4f:32:1b:8f:fa:b1:76:b6:49:0a:15:a9:74:60:c6:
                    7a:be:39:f1:26:eb:21:c4:54:c8:b7:6e:05:c8:a0:
                    69:06:e6:fd:fe:88:7f:39:f4:8d:15:47:7c:5e:c0:
                    a6:43:00:c7:65:bf:9e:75:e9:f9:47:fe:1d:85:c8:
                    a7:86:82:67:59:2d:4f:66:bc:0d:49:ca:71:db:d1:
                    7d:ea:39:da:60:a9:1f:7e:cb:f9:d9:8a:6a:45:50:
                    bb:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                D0:79:1C:6B:D4:41:2E:DF:32:0C:85:B5:C9:B0:B6:B1:ED:0A:BE:C3
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.infinite.com.co, DNS:infinite.com.co
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Mar 22 14:11:06.853 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D8:DA:1C:99:EF:F5:79:9A:2A:E1:5A:
                                BE:B2:F1:93:20:69:C7:FF:77:F5:82:32:88:57:12:BD:
                                2A:E4:1E:70:54:02:20:7E:56:66:B6:7B:C6:5A:B6:7C:
                                13:11:0F:7C:BD:2A:01:75:97:CC:01:E2:02:D5:A0:49:
                                1C:26:0C:39:FD:E6:E4
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Mar 22 14:11:06.727 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C8:41:15:5E:CD:03:B2:2D:1E:17:5F:
                                AC:8B:25:C5:76:78:E8:63:89:D1:75:74:54:AB:65:27:
                                9A:73:9B:59:2D:02:20:5A:A9:8F:6D:A7:1A:5F:A2:36:
                                13:E5:56:AD:B3:C6:71:01:E6:21:06:29:9F:22:93:C8:
                                9A:D2:E4:38:BA:65:21
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Mar 22 14:11:06.728 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:09:E8:0A:96:73:E0:6D:BA:40:28:6E:45:
                                07:3F:4B:B9:7B:6C:27:BE:26:0E:15:C9:DB:3A:F5:7D:
                                1F:66:EB:BF:02:21:00:93:F6:66:7D:6D:B6:89:7B:5E:
                                3F:61:16:E4:01:62:13:1E:FB:FF:68:61:01:76:9F:E9:
                                8A:A1:4D:E2:FE:44:6C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        36:7c:0d:5d:7e:03:3d:1d:98:c7:7a:2d:60:fe:70:84:53:6e:
        29:19:67:7e:3b:a5:9c:30:61:60:e8:c7:7a:9d:2c:ad:0c:b6:
        91:b2:ec:f0:a5:4f:32:05:05:11:c4:f5:8b:39:27:22:67:24:
        6f:a9:b8:0b:f0:2a:57:8b:ee:de:aa:12:9b:5f:cb:ec:37:6b:
        7d:90:8c:63:8b:db:6f:52:2c:5e:06:be:e6:80:33:6a:1e:3a:
        76:59:6d:8e:c7:d1:7b:0f:66:3f:25:18:c3:e0:6a:b5:0a:d0:
        be:37:7a:fa:ff:d7:b9:a2:a4:f5:e3:f2:5a:cc:9e:de:6f:42:
        95:d5:ef:c0:7b:e4:3a:2f:8a:f8:58:76:ca:46:44:7e:44:1b:
        fe:48:a4:5c:cd:66:6c:95:e5:e6:0e:17:74:ff:8d:10:82:87:
        f1:64:ec:26:ee:ce:c6:b6:87:ca:a2:6d:64:a0:86:98:53:a7:
        bd:7b:19:7b:8c:fe:ba:79:9a:a3:8b:57:6c:d3:ae:ba:e1:f8:
        07:21:8b:43:99:84:eb:9f:8b:4a:64:01:52:2a:16:1e:e9:c7:
        ed:c2:c6:b2:10:06:15:0d:27:83:ad:6c:4f:03:b0:8d:dc:6c:
        03:52:af:a8:f1:6d:c8:51:6e:af:95:cc:6b:4c:3b:42:12:f2:
        b2:ea:29:b3

1877541823 | 2024-06-02T16:31:40.680419

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 8.1/Windows Server 2012 R2
  OS Build: 6.3.9600
  Target Name: VMI717373
  NetBIOS Domain Name: VMI717373
  NetBIOS Computer Name: VMI717373
  DNS Domain Name: vmi717373
  FQDN: vmi717373

am Windows Server 2012R2

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:b2:3e:78:40:c2:45:8a:46:74:f3:5c:80:cc:1b:ad
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=vmi717373
        Validity
            Not Before: Jan  6 07:47:01 2024 GMT
            Not After : Jul  7 07:47:01 2024 GMT
        Subject: CN=vmi717373
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:9c:bc:16:43:76:26:be:83:18:c9:be:e2:ad:53:
                    52:e3:1f:e5:9d:54:9c:d9:a8:62:3e:5a:40:0e:c9:
                    a8:15:ce:5c:3b:1a:41:f6:9b:fc:8d:83:e0:40:ec:
                    93:de:36:36:84:1c:43:f2:ea:54:0d:7c:54:9c:98:
                    b8:43:e8:73:a2:19:51:2b:a0:46:73:73:e7:85:93:
                    de:0b:fc:a4:78:81:19:54:7d:6b:b4:e7:12:55:f5:
                    4c:e9:00:94:74:bf:12:f0:8c:25:be:bd:e7:aa:61:
                    64:aa:dd:9a:88:5e:fd:6b:97:2f:8f:a9:0f:a0:00:
                    2c:f1:5a:bb:7e:e0:aa:cb:30:bf:2c:f2:c1:16:a5:
                    41:a6:8c:d1:a6:09:d2:e6:c2:30:e5:00:6f:43:d3:
                    2d:be:24:42:ff:73:19:ae:fe:79:7e:9a:6c:e3:58:
                    b0:7e:29:6b:33:2e:d6:59:4c:56:72:79:bb:ee:99:
                    2f:d8:13:0e:3c:f8:e1:a0:c5:ee:81:27:d4:76:34:
                    da:4f:66:70:d5:9d:f5:80:1f:e0:22:97:fb:bb:48:
                    11:f4:c5:e4:4d:d9:65:1c:3c:95:04:4b:cf:a0:b2:
                    72:4b:3b:4e:28:fe:f2:5e:e1:bb:33:7e:68:67:a1:
                    44:04:76:ac:2b:23:d3:97:7c:54:4b:b7:f5:67:c1:
                    87:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7b:c9:42:27:26:3f:15:17:35:82:49:e0:8e:99:b1:f8:71:8f:
        05:1a:b9:25:e7:a1:d5:39:2c:22:31:fc:3e:28:49:94:be:22:
        1c:38:bf:88:9c:6b:90:63:95:68:0e:ca:d8:3d:42:a9:f9:e0:
        04:12:e7:2c:b1:c9:1f:e7:54:2f:34:48:82:0c:89:7b:b2:82:
        ed:d1:d0:72:9b:fa:03:4c:e5:b5:df:f7:f4:99:68:30:85:21:
        53:95:ac:1d:ff:c3:76:5b:d1:6f:6c:11:11:94:cb:4f:e0:9a:
        0c:4f:8f:02:91:10:5b:b4:6b:b9:dc:c5:cc:ac:72:09:34:80:
        e2:c1:f6:0c:fb:c6:b6:0c:83:f7:04:d1:41:f8:93:ae:6b:18:
        dd:e3:73:b5:5d:30:db:d2:71:61:df:5c:d4:49:93:03:d3:95:
        3e:8a:99:0a:20:f8:71:2e:2d:95:41:81:32:12:ed:91:61:89:
        53:94:a7:a8:92:94:fd:44:da:37:4b:66:e3:51:9e:f1:7d:10:
        78:6e:6c:37:9a:eb:c7:68:91:33:95:a0:9e:e6:18:74:43:81:
        79:6e:f3:6b:7b:84:6c:0f:53:cb:cb:cc:a6:b3:00:e2:f4:b0:
        6d:93:06:0c:e5:da:27:fe:ea:9f:45:44:17:1f:4b:cd:81:38:
        6c:18:31:d5

185.252.233.80

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1138219898 | 2024-05-30T21:14:55.117457
80 / tcp

Microsoft IIS httpd8.5

1489525118 | 2024-05-26T18:51:23.507103
443 / tcp

Microsoft HTTPAPI httpd2.0

1877541823 | 2024-06-02T16:31:40.680419
3389 / tcp

Remote Desktop Protocol

Products

Pricing

Contact Us

185.252.233.80

Last Seen: 2024-06-02

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1138219898 | 2024-05-30T21:14:55.117457 80 / tcp

Microsoft IIS httpd8.5

1489525118 | 2024-05-26T18:51:23.507103 443 / tcp

Microsoft HTTPAPI httpd2.0

1877541823 | 2024-06-02T16:31:40.680419 3389 / tcp

Remote Desktop Protocol

Products

Pricing

Contact Us

1138219898 | 2024-05-30T21:14:55.117457
80 / tcp

1489525118 | 2024-05-26T18:51:23.507103
443 / tcp

1877541823 | 2024-06-02T16:31:40.680419
3389 / tcp