Hostnames |
aiminspections.com ec2-54-184-172-243.us-west-2.compute.amazonaws.com |
Domains | aiminspections.com amazonaws.com |
Cloud Provider | Amazon |
Cloud Region | us-west-2 |
Cloud Service | EC2 |
Country | United States |
City | Boardman |
Organization | Amazon.com, Inc. |
ISP | Amazon.com, Inc. |
ASN | AS16509 |
Operating System | Windows |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2014-4078 | 5.1The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka "IIS Security Feature Bypass Vulnerability." |
34007693 | 2024-05-20T12:41:40.08066180 / tcp
HTTP/1.1 301 Moved Permanently Date: Mon, 20 May 2024 12:41:39 GMT Content-Type: text/html Content-Length: 0 Connection: keep-alive Cache-Control: private Location: https://marketconnect.aiminspections.com/marketconnect/ Server: Microsoft-IIS/8.5 X-AspNet-Version: 4.0.30319 Provided-by: Magical Elves
653303055 | 2024-05-15T15:04:31.692264443 / tcp
HTTP/1.1 200 OK Date: Wed, 15 May 2024 15:04:31 GMT Content-Type: text/html Content-Length: 403 Connection: keep-alive Last-Modified: Wed, 03 Jan 2024 16:45:36 GMT Accept-Ranges: bytes ETag: "2f178a46643eda1:0" Server: Microsoft-IIS/8.5 x-frame-options: DENY Provided-by: Magical Elves Content-Security-Policy: default-src 'self'; font-src 'self' 'unsafe-eval' https://fonts.gstatic.com; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com https://www.googletagmanager.com https://unpkg.com https://fonts.googleapis.com https://www.google-analytics.com https://www.paypal.com https://ajax.aspnetcdn.com; connect-src 'self' 'unsafe-eval' https://www.google-analytics.com https://www.sandbox.paypal.com https://www.paypal.com; style-src 'self' 'unsafe-Inline' https://unpkg.com https://fonts.googleapis.com; img-src 'self' https://www.paypalobjects.com https://t.paypal.com http://crdqa.aiminspections.com http://images.cdn.manheim.com https://craas-images.s3.amazonaws.com http://craas-images.s3.amazonaws.com https://aim-mco-img-qa.s3.amazonaws.com https://aim-mco-dev.s3-us-west-2.amazonaws.com http://crd.aiminspections.com http://craas-images-qa.s3.amazonaws.com http://craas-images-uat.s3.amazonaws.com https://craas-images-demo.s3.amazonaws.com https://craas-images-uat.s3.amazonaws.com http://mmsc400.manheim.com http://crddev.aiminspections.com https://aim-mco-img-prod.s3.amazonaws.com https://craas-images-qa.s3.amazonaws.com https://images.cdn.manheim.com https://aim-mco-img-dev.s3.amazonaws.com data: ; frame-src 'self' https://tpc.googlesyndication.com https://www.paypal.com https://www.sandbox.paypal.com https://test.authorize.net https://accept.authorize.net; frame-ancestors 'self' *.aimdealerinspections.com https://test.authorize.net https://accept.authorize.net X-XSS-Protection: 1; mode=block
Certificate: Data: Version: 3 (0x2) Serial Number: c9:f8:a7:03:c7:e2:58:94:2d:86:dc:37:3e:6d:62:6b Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Aug 18 00:00:00 2023 GMT Not After : Aug 17 23:59:59 2024 GMT Subject: CN=*.aiminspections.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ad:45:de:f3:44:60:18:40:30:7b:6f:d7:88:91: 7e:eb:d9:89:5d:9d:d4:1c:85:d0:4c:26:5c:e1:8d: 7d:ac:a2:c6:54:81:70:0f:f6:00:10:78:52:bc:45: bf:b7:81:ac:c7:41:f7:bd:bf:01:11:77:ce:12:ba: 1c:df:63:69:a6:48:87:68:a4:96:1a:24:91:12:fb: f2:1d:f5:ad:f9:eb:db:4b:7b:60:58:73:25:e4:d5: c5:74:55:e7:a4:20:f0:23:da:6f:c5:57:29:99:52: 2b:8e:cb:60:24:12:56:7b:c6:02:d6:96:ac:cb:b9: d4:66:a3:f3:3d:f6:92:18:77:be:6a:6e:9b:42:91: 03:cf:fc:60:da:a3:f6:59:84:b3:3c:30:eb:a8:ab: 83:43:09:82:7d:7e:93:c6:66:1f:18:eb:66:6e:93: 4c:53:ae:a1:84:46:4a:75:c7:29:21:ce:1c:3c:f3: d1:ef:e5:66:6f:56:d2:c0:74:ca:1f:80:80:ae:b1: 9b:03:15:78:38:c2:37:b7:45:5f:f1:a4:6c:6c:67: a4:3a:9f:f8:15:fe:31:9b:dd:b6:d7:fc:e5:81:cb: 26:d0:92:0d:ef:20:bf:c5:bc:88:d1:9d:90:cd:8b: d7:eb:ee:b0:fe:66:44:41:f9:d9:31:02:3b:a3:76: 2b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 5B:75:A8:67:C5:7C:A4:A8:63:50:6C:A9:09:C7:F0:96:F3:FB:37:7D X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.aiminspections.com, DNS:aiminspections.com CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 18 23:11:05.563 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:C2:55:21:C6:92:FF:1B:6D:B1:EB:84: 35:3A:7B:50:E5:75:BB:AF:FC:A6:B5:15:DA:3A:A6:D4: 0C:25:DA:14:0E:02:21:00:C8:76:46:56:0D:8A:84:C2: DE:02:75:92:96:D0:58:33:CD:07:A5:9B:C4:12:3F:80: AF:7E:0C:78:78:C6:61:60 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 18 23:11:05.650 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:85:11:44:09:DA:8C:C8:01:1F:CF:1C: E3:BC:8D:F8:45:B6:7A:1A:5D:5B:58:92:BF:65:71:10: A0:06:D8:14:4A:02:21:00:A3:00:6B:FC:6B:FA:60:C1: 3D:64:0E:38:99:E2:06:7A:AE:75:72:7B:D8:24:1D:A5: 66:2C:43:E2:F6:19:CE:88 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 18 23:11:05.686 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:FE:1A:B4:1D:54:FA:82:4C:48:C6:69: 9B:AE:E5:8C:B8:63:F1:24:2D:7E:D0:AC:A9:EC:AC:B4: 32:44:9C:82:F9:02:21:00:D0:BA:95:11:DC:FC:DE:C7: FE:A2:FA:66:7D:95:3E:80:5C:57:42:4C:68:34:2C:12: B6:76:F3:45:61:17:7A:FA Signature Algorithm: sha256WithRSAEncryption Signature Value: 71:86:4c:07:5f:cf:f1:04:b6:f4:10:f1:93:83:02:2b:ea:06: 73:f4:54:98:99:09:c6:47:32:11:09:e8:b9:e2:bf:f1:3c:a9: 39:bd:f9:b7:8c:78:0c:7d:78:d1:21:4a:c7:dc:3a:83:fa:fc: 40:98:74:1c:64:dd:db:d0:f9:80:f3:12:ed:1b:c7:ec:19:63: 99:4a:93:8e:ed:a8:7d:b2:3a:cd:92:5d:3d:22:e5:78:3d:9a: a0:9d:d9:92:5c:f1:e8:68:fd:8b:5e:bb:ab:10:92:7d:ff:b3: 41:d8:0e:3e:1e:ec:70:ce:93:68:b1:8b:3d:4a:b3:60:eb:70: 0b:14:a8:36:49:68:3c:63:8d:11:fd:c6:3f:e7:d9:8c:d2:8e: 8d:4a:0d:b5:fe:96:c1:b0:83:ca:d3:2f:c7:a8:8a:27:18:af: 95:ec:c6:e4:a1:93:da:1e:ca:cb:1b:65:31:6f:07:b2:21:3f: bc:e2:d6:ca:2a:21:6b:bf:43:d5:d9:cd:77:4c:b4:69:cc:ab: e1:fa:33:6d:9b:28:77:12:e7:0c:c4:bb:62:3d:ce:fc:98:6e: 64:2b:9e:0b:d1:6d:4e:37:bd:b8:32:17:99:d1:24:6f:7a:ae: b1:37:0a:17:fb:31:eb:90:45:8e:01:37:1e:15:48:5f:59:45: c2:cb:76:0a