LeakIX - Host 125.212.192.144

Host 125.212.192.144

Vietnam

CHT Compamy Ltd

CentOS Linux 7 (Core) 3.10.0-1160.71.1.el7.x86_64

Software information

Microsoft-IIS 10.0

tcp/443

SSH is potenitally vulnerable

WARNING: This plugin will generate false positive and is purely informative:

regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)

IP: 125.212.192.144
Port: 22

First seen 2024-09-10 15:34
Last seen 2024-12-22 00:02
Open for 102 days
- Severity: info
  Fingerprint: 3f43e0ebb5dce37ab8b59eb50d52828d37a3aa8437a3aa8437a3aa8437a3aa84
```
Found potentially vulnerable SSH version:
SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.5
WARNING, RISK IS ESTIMATED FALSE POSITIVE ARE LIKELY
```
  Found on 2024-12-22 00:02
Create report

ElasticSearch is publicly available

Elasticsearch and/or Kibana is currently open without authentication.

This results in all the database data made available publicly.

IP: 125.212.192.144
Port: 9201
URL: http://125.212.192.144:9201

First seen 2023-01-28 20:11
Last seen 2023-06-10 07:43
Open for 132 days

Severity: high
Fingerprint: 831cb76b8e05df4623bd4bd53b9afcd8d5ce1e679ebe257e80b413a3298255ca

Indices: 5, document count: 1744, size: 1.4 MB
Found index product with 32 documents (7.0 kB)
Found index contacts with 29 documents (160.8 kB)
Found index calalog with 68 documents (67.5 kB)
Found index user_action_log with 1599 documents (1.1 MB)
Found index productnew with 16 documents (8.3 kB)

Found on 2023-02-21 11:03

1.4 MBytes 1744 rows

Severity: high
Fingerprint: 831cb76b8e05df466bf7050b53a392ce48ae39ede75689085fac39ba303b613d

Indices: 5, document count: 1743, size: 1.3 MB
Found index product with 32 documents (7.0 kB)
Found index contacts with 29 documents (160.8 kB)
Found index calalog with 68 documents (67.5 kB)
Found index user_action_log with 1598 documents (1.1 MB)
Found index productnew with 16 documents (8.3 kB)

Found on 2023-01-28 20:11

1.3 MBytes 1743 rows

Create report

CentOS Web Panel outdated
The following CentOS Web Panel is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2022-44877
IP: 125.212.192.144
Port: 2087
URL: https://125.212.192.144:2087

First seen 2023-01-06 20:47
Last seen 2023-01-06 23:51
- Severity: critical
  Fingerprint: b200c4085dcca515084ebea24b907d604b907d604b907d604b907d604b907d60
```
Found outdated CentOS Web Panel vulnerable to RCE
Found CVE-2022-44877
```
  Found on 2023-01-06 20:47
Create report
CentOS Web Panel outdated
The following CentOS Web Panel is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2022-44877
IP: 125.212.192.144
Port: 2031
URL: https://125.212.192.144:2031

First seen 2023-01-06 22:09
- Severity: critical
  Fingerprint: b200c4085dcca515084ebea24b907d604b907d604b907d604b907d604b907d60
```
Found outdated CentOS Web Panel vulnerable to RCE
Found CVE-2022-44877
```
  Found on 2023-01-06 22:09
Create report

Open service 125.212.192.144:22

2024-12-22 00:02
Found 10 hours ago by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-12-19 22:24
Found 3 days ago by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-12-18 00:01
Found 2024-12-18 by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-12-15 23:09
Found 2024-12-15 by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-12-13 23:06
Found 2024-12-13 by SSHOpenPlugin
Create report

Open service 125.212.192.144:443 · songthuong.vn

2024-12-12 01:51

HTTP/1.1 200 OK
cache-control: private
content-type: text/html; charset=utf-8
server: Microsoft-IIS/10.0
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: SMARTSTORE.VISITOR=a95c9239-1b22-4746-babc-71b4a1710eee; expires=Fri, 12-Dec-2025 01:52:05 GMT; path=/; secure; HttpOnly; SameSite=Lax
x-powered-by: ASP.NET
date: Thu, 12 Dec 2024 01:52:05 GMT
content-length: 222707
connection: close

Page title: Bệnh viện đa khoa sông thương


<!DOCTYPE html>
<html  id="" lang="vi" dir="ltr" data-pnotify-firstpos1="0">
<head>
    <meta charset="utf-8">
    <title itemprop="name">Bệnh viện đa khoa sông thương</title>
    <meta http-equiv="x-ua-compatible" content="ie=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, minimum-scale=1.0, user-scalable=no, viewport-fit=cover, shrink-to-fit=no">
    <meta name="HandheldFriendly" content="true">
    <meta name="description" content="Chăm sóc bằng tài năng, y đức và sự thấu cảm" />
    <meta name="keywords" content="" />
    <meta name="generator" content="Smartstore 4.1.1.0" />
    <meta property="sm:root" content="/" />

<!-- font Inter -->
<link rel="preconnect" href="https://fonts.googleapis.com">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link href="https://fonts.googleapis.com/css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap" rel="stylesheet">
<link href="https://fonts.googleapis.com/css2?family=EB+Garamond:ital,wght@0,400;0,500;0,600;0,700;0,800;1,400;1,500;1,600;1,700;1,800&display=swap" rel="stylesheet">
<link href="https://fonts.googleapis.com/css2?family=Work+Sans:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap" rel="stylesheet">

<link href="https://fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap" rel="stylesheet">



    



<script>
    try {
        if (typeof navigator === 'undefined') navigator = {};
        html = document.documentElement;
        if (/Edge\/\d+/.test(navigator.userAgent)) { html.className += ' edge' }
        else if ('mozMatchesSelector' in html) { html.className += ' moz' }
        else if (/iPad|iPhone|iPod/.test(navigator.userAgent) && !window.MSStream) { html.className += ' ios' }
        else if ('webkitMatchesSelector' in html) { html.className += ' wkit' }
        else if (/constructor/i.test(window.HTMLElement)) { html.className += ' safari' };
        html.className += (this.top === this.window ? ' not-' : ' ') + 'framed';
    } catch (e) { }
</script>
<!--[if !IE]>-->
<script>var ieMode = 0; try { if (document.documentMode) { ieMode = document.documentMode; html.className += ' ie iepost8 ie' + document.documentMode } else { html.className += ' not-ie' }; } catch (e) { }; navigator.isIE = ieMode</script>
<!-- <![endif]-->

<script>
    if (navigator.isIE) {
        document.addEventListener('DOMContentLoaded', function () {
            // Add html alert after header, before content
            const alert = document.createElement('div');
            alert.className = 'container alert alert-warning mt-3';
            alert.innerText = "Bạn đang sử dụng một trình duyệt không được hỗ trợ! Vui lòng cân nhắc chuyển sang trình duyệt hiện đại như Google Chrome, Firefox hoặc Opera để tận hưởng trọn vẹn trải nghiệm mua sắm của bạn.";
            const page = document.getElementsByClassName('page-main');
            if (page.length < 1) return;

            const content = document.getElementById('content-wrapper');
            if (!content) return;

            page[0].insertBefore(alert, content);
        });
    }
</script>

    
    <meta name="accept-language" content="vi-VN"/>


<script>
	window.Res = {
 "Common.Notification": "Thông báo",  "Common.Close": "Gần",  "Common.On": "Trên",  "Common.OK": "OK",  "Common.Cancel": "Hủy bỏ",  "Common.Off": "Tắt",  "Common.CtrlKey": "Ctrl",  "Common.ShiftKey": "Ca",  "Common.AltKey": "Alt",  "Common.DelKey": "Del",  "Common.EnterKey": "Đi vào",  "Common.EscKey": "\tEsc",  "Products.Longdesc.More": "Cho xem nhiều hơn",  "Products.Longdesc.Less": "Hiện ít hơn",  "Jquery.Validate.Email": "Vui lòng nhập một địa chỉ email hợp lệ.",  "Jquery.Validate.Required": "Lĩnh vực này là bắt buộc.",  "Jquery.Validate.Remote": "Vui

Found 2024-12-12 by HttpPlugin

Create report

Open service 125.212.192.144:80 · songthuong.vn

2024-12-12 01:51
```
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://songthuong.vn/
connection: close
```
Found 2024-12-12 by HttpPlugin
Create report
Open service 125.212.192.144:22

2024-12-12 00:02
Found 2024-12-12 by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-12-02 00:14
Found 2024-12-02 by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-11-29 22:54
Found 2024-11-29 by SSHOpenPlugin
Create report
Open service 125.212.192.144:22

2024-11-27 22:29
Found 2024-11-27 by SSHOpenPlugin
Create report

songthuong.vn

Fingerprint:

17a9202c452e87d1977c9309fc3fdfbb2ddeb3ec1cd698c576cb47d8d67c340c

CN:

songthuong.vn

Key:

ECDSA-256

Issuer:

Not before:

2024-12-12 00:52

Not after:

2025-03-12 00:52

Data leak

Size

1.4 MB

Collections

Rows

1744

Domain summary

songthuong.vn 1

1 recorded

Host 125.212.192.144

Vietnam

Software information

SSH is potenitally vulnerable

ElasticSearch is publicly available

CentOS Web Panel outdated

CentOS Web Panel outdated

songthuong.vn

Data leak

Domain summary