GeneralInformation

Hostnames	bizfire.com members.bizfire.com www.bizfire.com cooplists.com www.cooplists.com discountroomdeals.com www.discountroomdeals.com domainleadpro.com www.domainleadpro.com endurancefitnesstraining.co entrepreneurstime.com getpaiddotcom.com getpaidtobuildalist.com getwebfire.com www.getwebfire.com giveawayspecial.com giveawayspecials.com 207-5-160-197.static.gwi.net hotelvoucherprogram.com jvupdates.com livecallbonus.com loseweightsociety.com marketinghangout.co mediabash.co myfreegearteam.com www.myfreegearteam.com mygearnews.com myownsurvey.com mypayout.com www.mypayout.com ourgiveawayspecials.com patriotpat.com personaldevelopmentgameplan.com pioneerpayton.com pioneerpeyton.com profitbuildingonline.com profitpartnerinfo.com profitpartnerprogram.com www.profitpartnerprogram.com redeemcouponvoucher.com www.redeemcouponvoucher.com stealthpromoter.com www.stealthpromoter.com survivalbriefing.com survivalgrid.co timermagic.com www.timermagic.com todaysgiveawaydeal.com traffic-zombie.com www.traffic-zombie.com tweetleadfinder.com www.tweetleadfinder.com vacationvoucherprogram.com www.vacationvoucherprogram.com viralsurveyfire.com helpdesk.webfire.com leadfracking.webfire.com wfseoauthority.com wfseoexpert.com wfseoexperts.com wfseoresources.com wfseoupdate.com wfupdates.com www.wfupdates.com
Domains	bizfire.com cooplists.com discountroomdeals.com domainleadpro.com endurancefitnesstraining.co entrepreneurstime.com getpaiddotcom.com getpaidtobuildalist.com getwebfire.com giveawayspecial.com giveawayspecials.com gwi.net hotelvoucherprogram.com jvupdates.com livecallbonus.com loseweightsociety.com marketinghangout.co mediabash.co myfreegearteam.com mygearnews.com myownsurvey.com mypayout.com ourgiveawayspecials.com patriotpat.com personaldevelopmentgameplan.com pioneerpayton.com pioneerpeyton.com profitbuildingonline.com profitpartnerinfo.com profitpartnerprogram.com redeemcouponvoucher.com stealthpromoter.com survivalbriefing.com survivalgrid.co timermagic.com todaysgiveawaydeal.com traffic-zombie.com tweetleadfinder.com vacationvoucherprogram.com viralsurveyfire.com webfire.com wfseoauthority.com wfseoexpert.com wfseoexperts.com wfseoresources.com wfseoupdate.com wfupdates.com
Country	United States
City	Skowhegan
Organization	GWI
ISP	Biddeford Internet Corp
ASN	AS5760
Operating System	Ubuntu

WebTechnologies

JavaScript libraries

jQuery1.3.2

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-7656	4.3jquery prior to 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be executed.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2012-6708	4.3jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '<' character anywhere in the string, giving attackers more flexibility when attempting to construct a malicious payload. In fixed versions, jQuery only deems the input to be HTML if it explicitly starts with the '<' character, limiting exploitability only to attackers who can control the beginning of a string, which is far less common.
CVE-2011-4969	4.3Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.

OpenPorts

22 26 80 111 443 3306

-354416093 | 2024-05-14T18:24:50.099668

22 / tcp

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC+caXfrsNGyCAsmtcueMCSUAI+a8fvBoD5HgxzrACc4sGD
td/JIQsWa2JX1qiA7EB+gT1s7Zx5C4zfJ86v0j7Ge8Tdw4jT24r6TMxHWqdA9cUMhtDwDRzljMwa
8+o9XLvRv8VS/25ZV21tPzg8A1zORJth7zOzUvHfBR7I6gfdJSJ0aBULvTX5IE0CSnlAGcmn4pkF
/f77/pGATwzU0Gu/inRgVUWyNSRW3PblbydafaJljWLMBor62VAlVpLF/ig3DE7iNrEd6BVHbk6h
nzRWHDqyFMjXkmUI5IAXk/oLV9Xum9Ib+VWuGIvXzHWyBzbU96shxUjppTtDPD5IuDnR
Fingerprint: 42:c6:9a:8b:c7:e5:aa:a4:c7:24:39:f0:71:03:71:64

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-199895488 | 2024-05-05T05:43:05.693404

26 / tcp

220 mynotificationcenter.com ESMTP\r\n

1729988612 | 2024-05-05T01:20:47.800640

80 / tcp

HTTP/1.1 200 OK
Date: Sun, 05 May 2024 01:20:47 GMT
Server: Apache
Set-Cookie: PHPSESSID=m4iqk2u2lf3p2hbv26horo4po6; path=/; domain=automatedtraffic.com
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-cache
Pragma: no-cache
Set-Cookie: pm_main_id_9=16; expires=Tue, 20-Apr-2027 01:20:47 GMT; Max-Age=93312000; path=/; domain=automatedtraffic.com
Set-Cookie: stat_pm_sh_year_16=1; expires=Mon, 05-May-2025 01:20:47 GMT; Max-Age=31536000; path=/; domain=automatedtraffic.com
Set-Cookie: stat_pm_sh_session_16=1; path=/; domain=automatedtraffic.com
Set-Cookie: check_cookies=1; path=/
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

-1345205424 | 2024-05-01T04:36:21.704541

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-05-08T13:05:03.256349

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-2134919795 | 2024-05-13T22:48:10.425160

443 / tcp

HTTP/1.1 200 OK
Date: Mon, 13 May 2024 22:48:10 GMT
Server: Apache
Set-Cookie: PHPSESSID=h65o81iduerhceptdmns323rc0; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Length: 110
Content-Type: text/html; charset=UTF-8

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:d9:d0:cc:73:59:fd:c8:ab:ea:76:da:57:d7:21:33:9e:be
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 16 16:08:40 2024 GMT
            Not After : Jul 15 16:08:39 2024 GMT
        Subject: CN=www.timermagic.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:b2:8a:b4:9c:70:84:af:27:32:53:2c:77:db:
                    60:f9:e1:04:c4:a1:23:50:18:ac:f8:73:4a:a1:6e:
                    2e:e1:a9:51:ff:c0:f1:2b:4a:52:1e:c7:12:b4:9e:
                    99:44:b0:02:73:3a:b3:8e:4e:c4:42:83:71:a3:2d:
                    3f:7f:b8:96:8a:10:00:fd:1d:cf:4b:3b:49:0d:e2:
                    cc:6b:27:c3:8b:b5:ac:6b:2a:09:65:2f:6b:33:9e:
                    e8:96:70:d3:2d:29:5c:54:1b:14:fe:cf:81:47:59:
                    e8:83:a3:76:82:e8:1c:dc:27:46:68:ed:59:25:24:
                    b5:84:1c:81:03:de:7b:97:a6:4e:67:34:67:eb:94:
                    de:bc:35:fe:99:60:ec:1b:56:ad:c7:75:d3:b2:c2:
                    90:18:90:cd:c5:63:78:d4:8d:43:1e:1e:ff:8b:03:
                    9e:33:a6:a8:e2:e5:ec:f4:dd:99:72:e4:a7:0d:9f:
                    db:6f:a8:32:2e:b3:85:27:2c:ec:b5:33:cb:4e:48:
                    a0:90:13:37:b5:78:eb:67:b9:79:a3:f5:38:da:86:
                    6c:18:26:5e:9d:5a:68:e0:5b:08:25:c3:30:94:fa:
                    f3:51:3d:c9:54:19:99:00:b4:d8:7d:54:20:96:ed:
                    f0:1b:17:c8:a0:c4:c4:a6:82:44:9d:40:ef:2c:c9:
                    79:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7B:E8:39:7E:36:45:55:EA:E8:F1:18:97:23:A2:0D:C8:F9:58:72:85
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:bizfire.com, DNS:cooplists.com, DNS:discountroomdeals.com, DNS:domainleadpro.com, DNS:endurancefitnesstraining.co, DNS:entrepreneurstime.com, DNS:getpaiddotcom.com, DNS:getpaidtobuildalist.com, DNS:getwebfire.com, DNS:giveawayspecial.com, DNS:giveawayspecials.com, DNS:helpdesk.webfire.com, DNS:hotelvoucherprogram.com, DNS:jvupdates.com, DNS:leadfracking.webfire.com, DNS:livecallbonus.com, DNS:loseweightsociety.com, DNS:marketinghangout.co, DNS:mediabash.co, DNS:members.bizfire.com, DNS:myfreegearteam.com, DNS:mygearnews.com, DNS:myownsurvey.com, DNS:mypayout.com, DNS:ourgiveawayspecials.com, DNS:patriotpat.com, DNS:personaldevelopmentgameplan.com, DNS:pioneerpayton.com, DNS:pioneerpeyton.com, DNS:profitbuildingonline.com, DNS:profitpartnerinfo.com, DNS:profitpartnerprogram.com, DNS:redeemcouponvoucher.com, DNS:stealthpromoter.com, DNS:survivalbriefing.com, DNS:survivalgrid.co, DNS:timermagic.com, DNS:todaysgiveawaydeal.com, DNS:traffic-zombie.com, DNS:tweetleadfinder.com, DNS:vacationvoucherprogram.com, DNS:viralsurveyfire.com, DNS:wfseoauthority.com, DNS:wfseoexpert.com, DNS:wfseoexperts.com, DNS:wfseoresources.com, DNS:wfseoupdate.com, DNS:wfupdates.com, DNS:www.bizfire.com, DNS:www.cooplists.com, DNS:www.discountroomdeals.com, DNS:www.domainleadpro.com, DNS:www.getwebfire.com, DNS:www.myfreegearteam.com, DNS:www.mypayout.com, DNS:www.profitpartnerprogram.com, DNS:www.redeemcouponvoucher.com, DNS:www.stealthpromoter.com, DNS:www.timermagic.com, DNS:www.traffic-zombie.com, DNS:www.tweetleadfinder.com, DNS:www.vacationvoucherprogram.com, DNS:www.wfupdates.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 16 17:08:40.295 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4A:C8:CC:66:11:1A:ED:0F:15:7F:B7:89:
                                B1:ED:07:FF:41:23:D4:6B:94:17:C0:50:4B:76:C8:2C:
                                2F:55:CB:8B:02:20:77:01:00:3B:62:43:1A:49:1E:49:
                                8F:0D:0E:DE:3B:81:FB:0F:A6:5A:A0:62:77:14:BE:EE:
                                47:3C:AC:84:C7:71
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 16 17:08:40.293 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:8B:33:2A:F8:2A:AB:B5:D0:27:82:2F:
                                A6:D5:7D:39:50:5B:03:99:63:DF:9D:66:4B:75:C9:5F:
                                2F:05:21:71:24:02:20:1C:9A:8D:18:A3:EE:F2:B7:19:
                                24:2E:DE:D8:46:BA:01:69:92:BA:D2:E3:5D:90:AD:1A:
                                2E:84:6F:39:0F:06:FF
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        08:23:95:99:df:81:ff:d9:98:2b:0a:e0:fc:5d:f9:19:19:4c:
        c6:bf:64:87:6a:04:b1:b8:58:8b:44:38:49:e8:d7:c5:20:6b:
        62:2c:7b:3d:76:6c:cf:ac:2d:a6:16:30:5a:ee:67:6f:5e:6e:
        e5:50:39:13:44:a3:3c:d0:19:8f:45:e4:4f:43:78:a0:84:43:
        94:9a:11:5d:4f:1e:c3:55:69:24:68:dd:ff:78:58:3f:44:cd:
        de:b1:e6:65:c0:37:60:47:11:49:ee:44:80:66:10:f4:0e:82:
        bd:41:22:98:14:53:78:0e:bc:7d:e5:d2:80:c4:20:71:97:18:
        04:74:ba:99:d5:e8:e5:55:6e:8c:0d:5e:b1:02:ec:52:96:c3:
        65:0a:7f:01:22:5f:89:7f:43:8a:8a:87:32:bf:bb:d8:c3:32:
        d4:cb:ee:4c:5f:f9:28:49:12:b4:b0:b4:18:1f:95:cc:c0:84:
        14:41:5d:a6:af:6a:c3:f9:1f:d9:87:22:eb:3f:cc:c2:5c:0d:
        52:c8:d4:b0:14:e0:90:95:cb:f9:96:96:13:7b:d6:ef:8e:3d:
        33:f8:b5:98:c0:ee:61:e4:8d:6d:5e:71:69:aa:48:76:78:9d:
        6d:d1:3e:cc:99:b3:3e:9f:6c:72:d4:37:f6:bc:69:d6:3c:a0:
        1d:b0:1c:43

-464484707 | 2024-05-09T15:39:22.344427

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.7.33-0ubuntu0.16.04.1
  Capabilities: 65535
  Server Language: 8
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

207.5.160.197

Last Seen: 2024-05-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-354416093 | 2024-05-14T18:24:50.099668
22 / tcp

OpenSSH7.2p2 Ubuntu-4ubuntu2.10

-199895488 | 2024-05-05T05:43:05.693404
26 / tcp

1729988612 | 2024-05-05T01:20:47.800640
80 / tcp

Apache httpd

-1345205424 | 2024-05-01T04:36:21.704541
111 / tcp

-1345205424 | 2024-05-08T13:05:03.256349
111 / udp

-2134919795 | 2024-05-13T22:48:10.425160
443 / tcp

Apache httpd

-464484707 | 2024-05-09T15:39:22.344427
3306 / tcp

MySQL5.7.33-0ubuntu0.16.04.1

Products

Pricing

Contact Us

207.5.160.197

Last Seen: 2024-05-14

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-354416093 | 2024-05-14T18:24:50.099668 22 / tcp

OpenSSH7.2p2 Ubuntu-4ubuntu2.10

-199895488 | 2024-05-05T05:43:05.693404 26 / tcp

1729988612 | 2024-05-05T01:20:47.800640 80 / tcp

Apache httpd

-1345205424 | 2024-05-01T04:36:21.704541 111 / tcp

-1345205424 | 2024-05-08T13:05:03.256349 111 / udp

-2134919795 | 2024-05-13T22:48:10.425160 443 / tcp

Apache httpd

-464484707 | 2024-05-09T15:39:22.344427 3306 / tcp

MySQL5.7.33-0ubuntu0.16.04.1

Products

Pricing

Contact Us

-354416093 | 2024-05-14T18:24:50.099668
22 / tcp

-199895488 | 2024-05-05T05:43:05.693404
26 / tcp

1729988612 | 2024-05-05T01:20:47.800640
80 / tcp

-1345205424 | 2024-05-01T04:36:21.704541
111 / tcp

-1345205424 | 2024-05-08T13:05:03.256349
111 / udp

-2134919795 | 2024-05-13T22:48:10.425160
443 / tcp

-464484707 | 2024-05-09T15:39:22.344427
3306 / tcp