Hostnames |
www.aircraftbargains.com serv2.avitop.com www.avitop.com skifte.raahauge.com |
Domains | aircraftbargains.com avitop.com raahauge.com |
Country | United States |
City | Phoenix |
Organization | Armour Cloud, LLC |
ISP | Armour Cloud, LLC |
ASN | AS10489 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2009-2521 | 5.0Stack consumption vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows remote authenticated users to cause a denial of service (daemon crash) via a list (ls) -R command containing a wildcard that references a subdirectory, followed by a .. (dot dot), aka "IIS FTP Service DoS Vulnerability." |
CVE-2008-1446 | 9.0Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Information Services (IIS) 5.0 through 7.0 on Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to execute arbitrary code via an HTTP POST request that triggers an outbound IPP connection from a web server to a machine operated by the attacker, aka "Integer Overflow in IPP Service Vulnerability." |
1489525118 | 2024-04-28T16:19:13.54033180 / tcp
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Sun, 28 Apr 2024 16:18:14 GMT Connection: close Content-Length: 315
-1940838000 | 2024-05-05T03:16:12.285863135 / tcp
Microsoft RPC Endpoint Mapper 12345778-1234-abcd-ef00-0123456789ac version: v1.0 protocol: [MS-SAMR]: Security Account Manager (SAM) Remote Protocol provider: samsrv.dll ncacn_ip_tcp: 209.250.23.36:49155 ncalrpc: samss lpc ncalrpc: dsrole ncacn_np: \\PLANET1\PIPE\protected_storage ncalrpc: protected_storage ncalrpc: securityevent ncalrpc: audit ncalrpc: LRPC-7b2ed16178f3148390 ncacn_np: \\PLANET1\pipe\lsass c9ac6db5-82b7-4e55-ae8a-e464ed7b4277 version: v1.0 annotation: Impl friendly name provider: sysntfy.dll ncalrpc: samss lpc ncalrpc: dsrole ncacn_np: \\PLANET1\PIPE\protected_storage ncalrpc: protected_storage ncalrpc: securityevent ncalrpc: audit ncalrpc: LRPC-7b2ed16178f3148390 ncacn_np: \\PLANET1\pipe\lsass ncalrpc: LRPC-50a6318ee9c1a716d2 ncacn_np: \\PLANET1\PIPE\srvsvc ncalrpc: SECLOGON ncacn_ip_tcp: 209.250.23.36:49154 ncacn_np: \\PLANET1\PIPE\atsvc ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: senssvc ncalrpc: IUserProfile2 ncalrpc: IUserProfile2 ncalrpc: LRPC-73a68a4422a4f3a701 d95afe70-a6d5-4259-822e-2c84da1ddb0d version: v1.0 protocol: [MS-RSP]: Remote Shutdown Protocol provider: wininit.exe ncacn_ip_tcp: 209.250.23.36:49152 ncalrpc: WindowsShutdown ncacn_np: \\PLANET1\PIPE\InitShutdown ncalrpc: WMsgKRpc015EBA0 76f226c3-ec14-4325-8a99-6a46348418af version: v1.0 provider: winlogon.exe ncalrpc: WindowsShutdown ncacn_np: \\PLANET1\PIPE\InitShutdown ncalrpc: WMsgKRpc015EBA0 ncalrpc: WMsgKRpc01654F1 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d5 version: v1.0 annotation: DHCP Client LRPC Endpoint provider: dhcpcsvc.dll ncalrpc: dhcpcsvc ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 209.250.23.36:49153 ncacn_np: \\PLANET1\pipe\eventlog ncalrpc: eventlog 3c4728c5-f0ab-448b-bda1-6ce01eb0a6d6 version: v1.0 annotation: DHCPv6 Client LRPC Endpoint provider: dhcpcsvc6.dll ncalrpc: dhcpcsvc6 ncacn_ip_tcp: 209.250.23.36:49153 ncacn_np: \\PLANET1\pipe\eventlog ncalrpc: eventlog f6beaff7-1e19-4fbb-9f8f-b89e2018337c version: v1.0 annotation: Event log TCPIP protocol: [MS-EVEN6]: EventLog Remoting Protocol provider: wevtsvc.dll ncacn_ip_tcp: 209.250.23.36:49153 ncacn_np: \\PLANET1\pipe\eventlog ncalrpc: eventlog 30b044a5-a225-43f0-b3a4-e060df91f9c1 version: v1.0 provider: certprop.dll ncacn_np: \\PLANET1\PIPE\srvsvc ncalrpc: SECLOGON ncacn_ip_tcp: 209.250.23.36:49154 ncacn_np: \\PLANET1\PIPE\atsvc ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 a398e520-d59a-4bdd-aa7a-3c1e0303a511 version: v1.0 annotation: IKE/Authip API provider: IKEEXT.DLL ncacn_ip_tcp: 209.250.23.36:49154 ncacn_np: \\PLANET1\PIPE\atsvc ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 86d35949-83c9-4044-b424-db363231fd0c version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: schedsvc.dll ncacn_ip_tcp: 209.250.23.36:49154 ncacn_np: \\PLANET1\PIPE\atsvc ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 378e52b0-c0a9-11cf-822d-00aa0051e40f version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\PLANET1\PIPE\atsvc ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 1ff70682-0a51-30e8-076d-740be8cee98b version: v1.0 protocol: [MS-TSCH]: Task Scheduler Service Remoting Protocol provider: taskcomp.dll ncacn_np: \\PLANET1\PIPE\atsvc ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 0a74ef1c-41a4-4e06-83ae-dc74fb1cdd53 version: v1.0 provider: schedsvc.dll ncalrpc: OLE9E87B43C4BC846C0973414DE5596 ncalrpc: senssvc ncalrpc: IUserProfile2 2eb08e3e-639f-4fba-97b1-14f878961076 version: v1.0 provider: gpsvc.dll ncalrpc: LRPC-73a68a4422a4f3a701 3473dd4d-2e88-4006-9cba-22570909dd10 version: v5.256 annotation: WinHttp Auto-Proxy Service ncacn_np: \\PLANET1\PIPE\W32TIME_ALT ncalrpc: W32TIME_ALT ncacn_np: \\PLANET1\PIPE\wkssvc ncalrpc: LRPC-8eb21c26ecf75e1011 ncalrpc: OLE7F43CE6D4ABB48908C6C2AEE23B3 7ea70bcf-48af-4f6a-8968-6a440754d5fa version: v1.0 annotation: NSI server endpoint provider: nsisvc.dll ncalrpc: LRPC-8eb21c26ecf75e1011 ncalrpc: OLE7F43CE6D4ABB48908C6C2AEE23B3 2fb92682-6599-42dc-ae13-bd2ca89bd11c version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-ff6f70eb1e21b9a81e 7f9d11bf-7fb9-436b-a812-b2d50c5d4c03 version: v1.0 annotation: Fw APIs provider: MPSSVC.dll ncalrpc: LRPC-ff6f70eb1e21b9a81e dd490425-5325-4565-b774-7e27d6c09c24 version: v1.0 annotation: Base Firewall Engine API provider: BFE.DLL ncalrpc: LRPC-ff6f70eb1e21b9a81e 24019106-a203-4642-b88d-82dae9158929 version: v1.0 provider: authui.dll ncalrpc: LRPC-2f17d1b71a9c4d5bd6 4a452661-8290-4b36-8fbe-7f4093a94978 version: v1.0 annotation: Spooler function endpoint provider: spoolsv.exe ncalrpc: spoolss ae33069b-a2a8-46ee-a235-ddfd339be281 version: v1.0 annotation: Spooler base remote object endpoint protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncalrpc: spoolss 0b6edbfa-4a24-4fc6-8a23-942b1eca65d1 version: v1.0 annotation: Spooler function endpoint protocol: [MS-PAN]: Print System Asynchronous Notification Protocol provider: spoolsv.exe ncalrpc: spoolss 50abc2a4-574d-40b3-9d66-ee4fd5fba076 version: v5.0 protocol: [MS-DNSP]: Domain Name Service (DNS) Server Management provider: dns.exe ncacn_ip_tcp: 209.250.23.36:49156 12345678-1234-abcd-ef00-0123456789ab version: v1.0 annotation: IPSec Policy agent endpoint protocol: [MS-RPRN]: Print System Remote Protocol provider: spoolsv.exe ncalrpc: LRPC-7adde13b0468fd81f4 367abb81-9844-35f1-ad32-98f038001003 version: v2.0 protocol: [MS-SCMR]: Service Control Manager Remote Protocol provider: services.exe ncacn_ip_tcp: 209.250.23.36:49160 906b0ce0-c70b-1067-b317-00dd010662da version: v1.0 protocol: [MS-CMPO]: MSDTC Connection Manager: provider: msdtcprx.dll ncalrpc: LRPC-bd3b785ffc7ec635cf ncalrpc: LRPC-bd3b785ffc7ec635cf ncalrpc: LRPC-bd3b785ffc7ec635cf ncalrpc: LRPC-bd3b785ffc7ec635cf bfa951d1-2f0e-11d3-bfd1-00c04fa3490a version: v1.0 provider: aqueue.dll ncacn_ip_tcp: 209.250.23.36:49166 ncacn_np: \\PLANET1\PIPE\SMTPSVC ncacn_ip_tcp: 209.250.23.36:49165 ncalrpc: SMTPSVC_LPC ncacn_np: \\PLANET1\PIPE\INETINFO ncacn_ip_tcp: 209.250.23.36:49164 ncalrpc: INETINFO_LPC ncalrpc: OLEB41650534118418A8A14534AB50F 8cfb5d70-31a4-11cf-a7d8-00805f48a135 version: v3.0 provider: smtpsvc.dll ncacn_np: \\PLANET1\PIPE\SMTPSVC ncacn_ip_tcp: 209.250.23.36:49165 ncalrpc: SMTPSVC_LPC ncacn_np: \\PLANET1\PIPE\INETINFO ncacn_ip_tcp: 209.250.23.36:49164 ncalrpc: INETINFO_LPC ncalrpc: OLEB41650534118418A8A14534AB50F 82ad4280-036b-11cf-972c-00aa006887b0 version: v2.0 protocol: [MS-IRP]: Internet Information Services (IIS) Inetinfo Remote provider: infocomm.dll ncacn_np: \\PLANET1\PIPE\INETINFO ncacn_ip_tcp: 209.250.23.36:49164 ncalrpc: INETINFO_LPC ncalrpc: OLEB41650534118418A8A14534AB50F 2f5f6521-cb55-1059-b446-00df0bce31db version: v1.0 annotation: Unimodem LRPC Endpoint ncalrpc: unimdmsvc ncalrpc: tapsrvlpc ncacn_np: \\PLANET1\pipe\tapsrv
-1920941652 | 2024-04-29T14:30:30.807848443 / tcp
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Fri, 08 Sep 2017 01:29:18 GMT Accept-Ranges: bytes ETag: "c0bcb5e34128d31:0" Server: Microsoft-IIS/7.0 X-Powered-By: ASP.NET Date: Mon, 29 Apr 2024 14:30:24 GMT Content-Length: 17191
Certificate: Data: Version: 3 (0x2) Serial Number: b6:54:0c:a2:ff:d8:e4:ca:aa:ac:d0:b9:22:24:03:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Oct 18 00:00:00 2023 GMT Not After : Nov 16 23:59:59 2024 GMT Subject: CN=www.aircraftbargains.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a4:5b:3f:b2:f2:bd:35:f3:a2:d4:34:cf:40:50: 96:c0:e9:c1:7c:f1:12:33:6c:cd:4f:3d:3a:88:b7: 03:14:b6:10:f1:83:f0:96:08:93:39:c6:7c:64:80: c0:d4:c9:d9:01:39:8a:43:83:13:69:f7:22:8b:5d: 0d:33:31:9c:f4:61:a1:54:78:0b:d5:e0:0a:8d:de: d6:df:5c:47:80:5c:71:6a:09:c2:2b:c7:94:2d:a4: a5:01:5c:81:0b:26:21:07:f1:2a:f8:60:42:a3:23: e6:48:b3:17:cc:9d:36:d3:27:67:20:2a:fc:81:c5: 5b:1f:39:67:eb:bd:39:1a:a4:61:de:40:4d:1d:d7: 64:f3:e9:2f:e0:44:db:c3:2c:0c:37:ba:ab:c2:84: 28:23:02:5b:6c:58:7a:ac:59:47:8c:73:69:46:92: 97:fb:07:57:3c:b8:97:d6:ef:38:71:7a:de:2c:cc: 55:3c:af:9d:d9:0b:03:b7:56:b3:21:e5:c7:d9:63: 09:e3:07:bd:27:9e:0b:0c:3a:3b:60:64:58:f6:10: 9d:b6:19:ec:84:52:11:10:10:5b:82:53:b6:13:ab: 83:84:a7:9c:6f:c1:2c:68:f5:8e:64:7d:32:4a:bc: 3a:e2:5e:0b:ab:71:57:c8:e3:f2:6a:88:92:60:47: f7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: B7:DA:76:C4:85:5D:90:27:C5:28:24:00:9B:D0:54:E0:CB:41:B3:AD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 18 19:25:00.959 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:26:D7:54:91:43:0C:8A:DE:34:64:EE:89: 01:E2:81:FA:26:81:DD:0B:C5:DF:7F:26:0A:4B:A6:F2: 9B:57:B2:9A:02:21:00:D4:61:83:B2:C8:E7:21:DB:FB: FF:A0:A5:21:CA:40:04:CF:CA:C5:EF:2F:E3:EC:CE:95: 79:F7:68:8F:CB:C9:A7 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 18 19:25:01.041 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:BC:C1:36:DD:E7:11:3E:63:83:D5:66: 02:E7:F9:B7:10:33:DD:A8:2F:1F:C6:FF:5E:1A:4B:B0: 63:7F:88:82:3E:02:20:29:29:4B:C5:0B:BC:6D:9A:0F: 0C:4A:CB:AA:64:12:BA:48:2B:EE:70:5F:B3:36:7C:00: 77:BD:82:68:29:48:26 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 18 19:25:00.998 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:44:B3:02:A3:1D:26:F4:6C:1F:92:37:B7: 43:89:59:01:25:8F:9E:0B:D7:C5:4E:7C:9F:89:37:0B: E6:66:1A:F2:02:20:1E:A7:C1:92:ED:0E:7F:FA:C0:95: 66:79:9C:8B:CC:CB:DB:D7:AB:F9:EE:F2:B9:BF:0D:62: E9:77:A5:84:5B:0E X509v3 Subject Alternative Name: DNS:www.aircraftbargains.com, DNS:serv2.avitop.com, DNS:skifte.raahauge.com, DNS:www.avitop.com Signature Algorithm: sha256WithRSAEncryption Signature Value: 5f:17:55:0c:02:10:81:03:6d:fb:3d:15:27:0d:84:ae:0f:c8: c4:a6:b7:62:28:68:7a:2a:72:8e:ad:a1:53:07:01:67:3d:2b: fa:ee:bc:a4:67:84:3e:88:0f:a9:7f:b8:8e:ff:d2:bf:4b:ed: 30:65:1c:3b:01:0c:d4:68:45:7f:3c:af:6e:be:81:07:bf:fc: aa:42:b6:35:2c:b5:11:9a:69:e8:6e:0a:d9:8d:3e:14:87:db: d8:67:4f:76:5c:6d:f5:e4:62:b9:72:98:8e:72:07:11:fa:8a: 8d:e5:23:18:df:a0:4e:b1:13:e6:86:0c:a5:e7:6f:67:98:22: ef:e4:29:c5:0f:7a:3d:4a:be:3d:f7:de:f1:9f:21:74:78:d4: 39:69:6b:5c:ba:53:40:17:c2:ae:38:12:47:20:ae:53:fe:c2: 77:99:dc:2c:5b:88:b4:b1:bb:f0:43:82:da:17:75:9c:d9:c4: dc:28:35:f9:40:af:28:d6:2c:1e:36:0a:48:50:f8:1f:fb:9c: 24:39:e1:5f:10:25:80:27:af:95:6b:72:33:dc:31:58:4f:7c: c5:6c:83:34:60:11:12:68:85:91:e2:23:42:fd:e8:9f:09:bf: 57:d8:a4:a6:df:b2:15:ad:fa:2f:a1:9d:3e:3f:05:03:a1:6f: 54:70:f4:e3