GeneralInformation

Country	China
City	Shenzhen
Organization	CHINANET Guangdong province network
ISP	CHINANET-BACKBONE
ASN	AS4134

WebTechnologies

JavaScript libraries

jQuery

UI frameworks

Bootstrap

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

1723 7547 8001 8081 8087 9010 9090 19000

261189147 | 2024-05-11T01:55:19.571183

1723 / tcp

PPTP:
  Firmware: 1
  Hostname: local
  Vendor: linux

-2006410025 | 2024-05-06T09:40:53.747597

7547 / tcp

HTTP/1.1 404 Not Found
Server: gSOAP/2.7
Content-Type: text/xml; charset=utf-8
Content-Length: 460
Connection: close

97390088 | 2024-05-12T17:35:56.981150

8001 / tcp

HTTP/1.1 200 OK
Server: nginx/1.23.3
Date: Sun, 12 May 2024 17:35:56 GMT
Content-Type: text/html
Content-Length: 80236
Last-Modified: Fri, 27 Oct 2023 09:43:27 GMT
Connection: keep-alive
ETag: "653b863f-1396c"
Accept-Ranges: bytes

-1232104165 | 2024-05-12T19:26:42.252997

8081 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 12 May 2024 19:26:42 GMT
Content-Type: text/html
Content-Length: 77966
Last-Modified: Tue, 30 Apr 2024 04:17:54 GMT
Connection: keep-alive
ETag: "663070f2-1308e"
Accept-Ranges: bytes

<!DOCTYPE html><html lang=zh-cmn-Hans><head><meta charset=utf-8><meta http-equiv=X-UA-Compatible content="IE=edge"><meta name=viewport content="width=device-width,initial-scale=1"><title>接点工业互联网智造平台</title><link rel=icon href=/yellowlogo.png><script src=/cdn/babel-polyfill/polyfill_7_2_5.js></script><style>html,
    body,
    #app {
      height: 100%;
      margin: 0px;
      padding: 0px;
    }
    .chromeframe {
      margin: 0.2em 0;
      background: #ccc;
      color: #000;
      padding: 0.2em 0;
    }
    #loader-wrapper {
      position: fixed;
      top: 0;
      left: 0;
      width: 100%;
      height: 100%;
      z-index: 999999;
    }
    #loader {
      display: block;
      position: relative;
      left: 50%;
      top: 50%;
      width: 120px;
      height: 120px;
      margin: -75px 0 0 -75px;
      border-radius: 50%;
      border: 3px solid transparent;
      /* COLOR 1 */
      border-top-color: #FFF;
      -webkit-animation: spin 2s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -ms-animation: spin 2s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -moz-animation: spin 2s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -o-animation: spin 2s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      animation: spin 2s linear infinite;
      /* Chrome, Firefox 16+, IE 10+, Opera */
      z-index: 1001;
    }
    #loader:before {
      content: "";
      position: absolute;
      top: 5px;
      left: 5px;
      right: 5px;
      bottom: 5px;
      border-radius: 50%;
      border: 3px solid transparent;
      /* COLOR 2 */
      border-top-color: #FFF;
      -webkit-animation: spin 3s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -moz-animation: spin 3s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -o-animation: spin 3s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -ms-animation: spin 3s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      animation: spin 3s linear infinite;
      /* Chrome, Firefox 16+, IE 10+, Opera */
    }
    #loader:after {
      content: "";
      position: absolute;
      top: 15px;
      left: 15px;
      right: 15px;
      bottom: 15px;
      border-radius: 50%;
      border: 3px solid transparent;
      border-top-color: #FFF;
      /* COLOR 3 */
      -moz-animation: spin 1.5s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -o-animation: spin 1.5s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -ms-animation: spin 1.5s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      -webkit-animation: spin 1.5s linear infinite;
      /* Chrome, Opera 15+, Safari 5+ */
      animation: spin 1.5s linear infinite;
      /* Chrome, Firefox 16+, IE 10+, Opera */
    }
    @-webkit-keyframes spin {
      0% {
        -webkit-transform: rotate(0deg);
        /* Chrome, Opera 15+, Safari 3.1+ */
        -ms-transform: rotate(0deg);
        /* IE 9 */
        transform: rotate(0deg);
        /* Firefox 16+, IE 10+, Opera */
      }
      100% {
        -webkit-transform: rotate(360deg);
        /* Chrome, Opera 15+, Safari 3.1+ */
        -ms-transform: rotate(360deg);
        /* IE 9 */
        transform: rotate(360deg);
        /* Firefox 16+, IE 10+, Opera */
      }
    }
    @keyframes spin {
      0% {
        -webkit-transform: rotate(0deg);
        /* Chrome, Opera 15+, Safari 3.1+ */
        -ms-transform: rotate(0deg);
        /* IE 9 */
        transform: rotate(0deg);
        /* Firefox 16+, IE 10+, Opera */
      }
      100% {
        -webkit-transform: rotate(360deg);
        /* Chrome, Opera 15+, Safari 3.1+ */
        -ms-transform: rotate(360deg);
        /* IE 9 */
        transform: rotate(360deg);
        /* Firefox 16+, IE 10+, Opera */
      }
    }
    #loader-wrapper .loader-section {
      position: fixed;
      top: 0;
      width: 51%;
      height: 100%;
      background: #49a9ee;
      /* Old browsers */
      z-index: 1000;
      -webkit-transform: translateX(0);
      /* Chrome, Opera 15+, Safari 3.1+ */
      -ms-transform: translateX(0);
      /* IE 9 */
      transform: translateX(0);
      /* Firefox 16+, IE 10+, Opera */
    }
    #loader-wrapper .loader-section.section-left {
      left: 0;
    }
    #loader-wrapper .loader-section.section-right {
      right: 0;
    }
    /* Loaded */
    .loaded #loader-wrapper .loader-section.section-left {
      -webkit-transform: translateX(-100%);
      /* Chrome, Opera 15+, Safari 3.1+ */
      -ms-transform: translateX(-100%);
      /* IE 9 */
      transform: translateX(-100%);
      /* Firefox 16+, IE 10+, Opera */
      -webkit-transition: all 0.

1102602053 | 2024-05-13T18:36:47.799223

8087 / tcp

HTTP/1.1 400 
Content-Type: text/html;charset=utf-8
Content-Language: en
Content-Length: 800
Date: Mon, 13 May 2024 18:36:47 GMT
Connection: close

<!doctype html><html lang="en"><head><title>HTTP Status 400 – Bad Request</title><style type="text/css">h1 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:22px;} h2 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:16px;} h3 {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;font-size:14px;} body {font-family:Tahoma,Arial,sans-serif;color:black;background-color:white;} b {font-family:Tahoma,Arial,sans-serif;color:white;background-color:#525D76;} p {font-family:Tahoma,Arial,sans-serif;background:white;color:black;font-size:12px;} a {color:black;} a.name {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 400 – Bad Request</h1></body></html>

-841725133 | 2024-05-10T14:42:52.505087

9010 / tcp

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 2976
Content-Type: text/html; charset=utf-8
Last-Modified: Fri, 10 May 2024 14:42:52 GMT
Server: MinIO Console
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
Date: Fri, 10 May 2024 14:42:52 GMT
Connection: close

551256977 | 2024-05-09T17:18:25.917870

9090 / tcp

HTTP/1.1 200 
Set-Cookie: uid=7db51b8b-d9cd-4438-ba26-0bd91e02b557; Path=/; HttpOnly
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Thu, 09 May 2024 17:18:23 GMT

-234916641 | 2024-05-10T14:42:50.566339

19000 / tcp

HTTP/1.1 307 Temporary Redirect
Content-Type: text/html; charset=utf-8
Location: http://61.140.160.40:9010
Vary: Origin
Date: Fri, 10 May 2024 14:42:50 GMT
Content-Length: 61

61.140.160.40

Last Seen: 2024-05-13

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

261189147 | 2024-05-11T01:55:19.571183
1723 / tcp

PPTP

-2006410025 | 2024-05-06T09:40:53.747597
7547 / tcp

97390088 | 2024-05-12T17:35:56.981150
8001 / tcp

nginx1.23.3

-1232104165 | 2024-05-12T19:26:42.252997
8081 / tcp

nginx1.20.1

1102602053 | 2024-05-13T18:36:47.799223
8087 / tcp

-841725133 | 2024-05-10T14:42:52.505087
9010 / tcp

MinIO Server

551256977 | 2024-05-09T17:18:25.917870
9090 / tcp

-234916641 | 2024-05-10T14:42:50.566339
19000 / tcp

Products

Pricing

Contact Us

61.140.160.40

Last Seen: 2024-05-13

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

261189147 | 2024-05-11T01:55:19.571183 1723 / tcp

PPTP

-2006410025 | 2024-05-06T09:40:53.747597 7547 / tcp

97390088 | 2024-05-12T17:35:56.981150 8001 / tcp

nginx1.23.3

-1232104165 | 2024-05-12T19:26:42.252997 8081 / tcp

nginx1.20.1

1102602053 | 2024-05-13T18:36:47.799223 8087 / tcp

-841725133 | 2024-05-10T14:42:52.505087 9010 / tcp

MinIO Server

551256977 | 2024-05-09T17:18:25.917870 9090 / tcp

-234916641 | 2024-05-10T14:42:50.566339 19000 / tcp

Products

Pricing

Contact Us

261189147 | 2024-05-11T01:55:19.571183
1723 / tcp

-2006410025 | 2024-05-06T09:40:53.747597
7547 / tcp

97390088 | 2024-05-12T17:35:56.981150
8001 / tcp

-1232104165 | 2024-05-12T19:26:42.252997
8081 / tcp

1102602053 | 2024-05-13T18:36:47.799223
8087 / tcp

-841725133 | 2024-05-10T14:42:52.505087
9010 / tcp

551256977 | 2024-05-09T17:18:25.917870
9090 / tcp

-234916641 | 2024-05-10T14:42:50.566339
19000 / tcp