Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.
This may also include IPC services and lead to remote code execution.
Severity: high
Fingerprint: 22420ce026fa767d3962741c23bfd32f75afa13eb25d195e7201d689a2fa534a
Found open SMB shares with Guest login ADMIN$ C$ D$ E$ IPC$ VM共用
Open service 114.33.143.203:445
2024-09-15 23:33
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-09-13 23:49
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-09-11 23:42
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-09-11 22:11
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:80
2024-09-11 11:16
HTTP/1.1 200 OK Content-Type: text/html Content-Length: 2681 Accept-Ranges: bytes Server: HFS 2.2f Cache-Control: no-cache Page title: HFS / <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html> <head> <meta http-equiv="content-type" content="text/html; charset=UTF-8" /> <style type="text/css"> body, th { font-family:tahoma, verdana, arial, helvetica, sans; font-weight:normal; font-size:9pt; } body { margin:0; background-color:#DDF; padding:10px; } p { margin:0 } a { text-decoration:none; background-color:Transparent; color:#05F; } a:visited { color:#55F; } a:hover { background-color:#EEF; } img { border-style:none } td { font-size:10pt; background:#FFF; border:1px solid #BBF } td img { vertical-align:top } th, th a, th a:visited { color:#555; font-size:13pt; font-weight:bold; padding-bottom:0; } #foldercomment { font-size:10pt; color:#888; background:#EEE; padding:3px; border:1px solid #DDD; border-bottom:3px solid #DDD; margin-top:2px; } #tools { text-align:right; font-size: 8pt; } #folder, .big { font-size:14pt; font-weight:bold; } #folderlabel, #folderstats, #footer { font-size: 8pt; } #body { border-bottom: 4px solid #BBF; border-top: 4px solid #BBF; border-left: 1px dotted #BBF; border-right: 1px dotted #BBF; background:#F3F3FF; padding:15px; margin:15px; } .comment { font-size:7pt; color:#888; background:#EEE; padding:3px; border:1px solid #DDD; margin-top:2px; } .button { float:right; padding:5px; padding-top:7px; margin:15px; border:2px solid black; background:white; font-size:8pt; font-weight:bold; } .button img { vertical-align:text-bottom; } .flag { font-weight:bold; font-size:8pt; background:white; color:red; text-align:center; border:1px solid red; } </style> <title>HFS /</title> <link rel="shortcut icon" href="favicon.ico" /> </head> <body> <a href="~login" class=button><img src="/~img27" /> LOGIN</a> <div id=folderlabel>folder</div> <div id=folder>/</div> <div id=body> <div id=folderstats>1 folders, 0 files - Total: 0 B</div> <table cellpadding=5> <th><a href="?sort=n">Filename</a> <th><a href="?sort=s">Filesize</a> <th><a href="?sort=t">Filetime</a> <th><a href="?sort=d">Hits</a> <tr><td> <a href="380/"><img src="/~img_folder" /> <b>380</b></a><td align=center><i>folder</i><td align=right>2024/9/4 下午 08:50:38<td align=right>15967 </table> <div id=tools> <a href="~files.lst?recursive">File list</a> <br><a href="~folder.tar?recursive">Folder archive</a> </div> </div> <div id=footer> <a href="http://www.rejetto.com/hfs/">HttpFileServer 2.2f</a> <br />Servertime: 2024/9/11 下午 07:16:08 <br />Uptime: (6 天) ��23:42:36 <br />Build-time: 0.001 </div> </body> </html>
Open service 114.33.143.203:3306
2024-09-11 10:04
MySQL detected
Open service 114.33.143.203:445
2024-09-09 22:26
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-09-07 22:46
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-08-17 21:51
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-08-15 21:15
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-08-13 22:18
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-08-11 19:51
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-08-09 22:08
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI
Open service 114.33.143.203:445
2024-08-07 22:05
SMB NTLMSSP handshake results: Found Windows 10.0 build 19041 NbComputerName: DESKTOP-1PEBIKI NbDomainName: DESKTOP-1PEBIKI DNSComputerName: DESKTOP-1PEBIKI DNSDomainName: DESKTOP-1PEBIKI