Host 147.45.79.165
United States
Aeza International Ltd
Software information

Microsoft-IIS Microsoft-IIS 10.0

tcp/443 tcp/80

nginx nginx

tcp/443 tcp/80

  • Server accepting anonymous credentials
    First seen 2024-09-10 14:01
    Last seen 2024-12-03 23:19
    Open for 84 days

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427ad00b503dde44400dc1ccd434

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JWAXRN2ORGU
MsvAvNbDomainName: EGCG
MsvAvDNSComputerName: WIN-JWAXRN2ORGU.EGCG.LOCAL
MsvAvDNSDomainName: EGCG.LOCAL
MsvAvDNSTreeName: EGCG.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Tue, 26 Nov 2024 19:24:40 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-12-03 23:19

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427aad6b6fada00982e8e57acc50

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JIULP73KMAZ
MsvAvNbDomainName: ASU8
MsvAvDNSComputerName: WIN-JIULP73KMAZ.ASU8.LOCAL
MsvAvDNSDomainName: ASU8.LOCAL
MsvAvDNSTreeName: ASU8.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Fri, 22 Nov 2024 22:02:12 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-11-23 22:42

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427ada1345684ae5d939c9a14dc4

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-ENBBKWW5AXR
MsvAvNbDomainName: POF8
MsvAvDNSComputerName: WIN-ENBBKWW5AXR.POF8.LOCAL
MsvAvDNSDomainName: POF8.LOCAL
MsvAvDNSTreeName: POF8.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Mon, 28 Oct 2024 19:27:53 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-11-09 23:01

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427a1b5aace64885086ea32973d4

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-6B99U1E3L53
MsvAvNbDomainName: 86WK
MsvAvDNSComputerName: WIN-6B99U1E3L53.86WK.LOCAL
MsvAvDNSDomainName: 86WK.LOCAL
MsvAvDNSTreeName: 86WK.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Wed, 16 Oct 2024 17:23:52 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-10-27 22:11

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427af61160224efbb19b9a17dfd4

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-6UGRL2WQW7H
MsvAvNbDomainName: 6656
MsvAvDNSComputerName: WIN-6UGRL2WQW7H.6656.LOCAL
MsvAvDNSDomainName: 6656.LOCAL
MsvAvDNSTreeName: 6656.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Fri, 11 Oct 2024 00:43:09 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-10-13 21:29

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427a8eb31faef97444ec6febd69c

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-E6OHWYGE8QC
MsvAvNbDomainName: RD7M
MsvAvDNSComputerName: WIN-E6OHWYGE8QC.RD7M.LOCAL
MsvAvDNSDomainName: RD7M.LOCAL
MsvAvDNSTreeName: RD7M.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Thu, 03 Oct 2024 20:12:02 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-10-05 22:36

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427a4be17b42f33abd776b02acb4

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-8TFXDAGEKMQ
MsvAvNbDomainName: JLEX
MsvAvDNSComputerName: WIN-8TFXDAGEKMQ.JLEX.LOCAL
MsvAvDNSDomainName: JLEX.LOCAL
MsvAvDNSTreeName: JLEX.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Fri, 06 Sep 2024 14:23:01 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-09-13 22:35
    Create report
  • Server accepting anonymous credentials
    First seen 2024-10-29 09:10
    Last seen 2024-11-27 22:57
    Open for 29 days

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427ad00b503dde44400dc1ccd434

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JWAXRN2ORGU
MsvAvNbDomainName: EGCG
MsvAvDNSComputerName: WIN-JWAXRN2ORGU.EGCG.LOCAL
MsvAvDNSDomainName: EGCG.LOCAL
MsvAvDNSTreeName: EGCG.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Tue, 26 Nov 2024 19:24:40 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-11-27 22:57

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427aad6b6fada00982e8e57acc50

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JIULP73KMAZ
MsvAvNbDomainName: ASU8
MsvAvDNSComputerName: WIN-JIULP73KMAZ.ASU8.LOCAL
MsvAvDNSDomainName: ASU8.LOCAL
MsvAvDNSTreeName: ASU8.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Fri, 22 Nov 2024 22:02:12 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-11-23 22:02

    • Fingerprint: 40fea8e6a9bd2c3671ce48dbe86f199c98a4427ada1345684ae5d939c9a14dc4

      Server didn't refuse ANONYMOUS NTLM connection
Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-ENBBKWW5AXR
MsvAvNbDomainName: POF8
MsvAvDNSComputerName: WIN-ENBBKWW5AXR.POF8.LOCAL
MsvAvDNSDomainName: POF8.LOCAL
MsvAvDNSTreeName: POF8.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Mon, 28 Oct 2024 19:27:53 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
      Found on 2024-10-29 09:10
    Create report
  • SSH is potenitally vulnerable
    IP: 147.45.79.165
    Port: 22
    First seen 2024-07-03 18:21
    Last seen 2024-07-04 00:02
    Create report

  • Open service 147.45.79.165:80

    2024-12-22 00:24 

    HTTP/1.1 200 OK
Server: nginx
Date: Sun, 22 Dec 2024 00:24:25 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2588
Connection: close
Vary: Accept-Encoding
Last-Modified: Sat, 21 Dec 2024 17:21:30 GMT
ETag: "a1c-629cafe80614d"
Accept-Ranges: bytes
Vary: Accept-Encoding

Page title: Success!

<!DOCTYPE html>
<html lang="en">
	<head>
		<meta charset="utf-8" />
		<meta name="viewport" content="width=device-width, initial-scale=1" />
		<title>Success!</title>
		<style>
			body {
				background-color: #f5f5f5;
				margin-top: 8%;
				color: #5d5d5d;
				font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial,
					"Noto Sans", sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol",
					"Noto Color Emoji";
				text-shadow: 0px 1px 1px rgba(255, 255, 255, 0.75);
				text-align: center;
			}

			h1 {
				font-size: 2.45em;
				font-weight: 700;
				color: #5d5d5d;
				letter-spacing: -0.02em;
				margin-bottom: 30px;
				margin-top: 30px;
			}

			.container {
				width: 100%;
				margin-right: auto;
				margin-left: auto;
			}

			.animate__animated {
				animation-duration: 1s;
				animation-fill-mode: both;
			}

			.animate__fadeIn {
				animation-name: fadeIn;
			}

			.info {
				color: #5594cf;
				fill: #5594cf;
			}

			.error {
				color: #c92127;
				fill: #c92127;
			}

			.warning {
				color: #ffcc33;
				fill: #ffcc33;
			}

			.success {
				color: #5aba47;
				fill: #5aba47;
			}

			.icon-large {
				height: 132px;
				width: 132px;
			}

			.description-text {
				color: #707070;
				letter-spacing: -0.01em;
				font-size: 1.25em;
				line-height: 20px;
			}

			.footer {
				margin-top: 40px;
				font-size: 0.7em;
			}

			.animate__delay-1s {
				animation-delay: 1s;
			}

			@keyframes fadeIn {
				from {
					opacity: 0;
				}
				to {
					opacity: 1;
				}
			}
		</style>
	</head>
	<body>
		<div class="container">
			<div class="row">
				<div class="col">
					<div class="animate__animated animate__fadeIn">
						<i class="success">
							<svg
								class="success icon-large fa-check-circle"
								xmlns="http://www.w3.org/2000/svg"
								viewBox="0 0 512 512"
							>
								<path
									d="M504 256c0 136.967-111.033 248-248 248S8 392.967 8 256 119.033 8 256 8s248 111.033 248 248zM227.314 387.314l184-184c6.248-6.248 6.248-16.379 0-22.627l-22.627-22.627c-6.248-6.249-16.379-6.249-22.628 0L216 308.118l-70.059-70.059c-6.248-6.248-16.379-6.248-22.628 0l-22.627 22.627c-6.248 6.248-6.248 16.379 0 22.627l104 104c6.249 6.249 16.379 6.249 22.628.001z"
								></path>
							</svg>
						</i>
					</div>
					<h1 class="animate__animated animate__fadeIn">Success!</h1>
					<div class="description-text animate__animated animate__fadeIn animate__delay-1s">
						<p>Your new web server is ready to use.</p>
					</div>
				</div>
			</div>
		</div>
	</body>
</html>
    Found 10 hours ago by HttpPlugin
    Create report

  • Open service 147.45.79.165:443

    2024-12-21 23:01 

    HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 21 Dec 2024 23:01:58 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: http://147.45.79.165/

Page title: 301 Moved Permanently

<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>nginx</center>
</body>
</html>
    Found 11 hours ago by HttpPlugin
    Create report

  • Open service 147.45.79.165:80

    2024-12-02 00:42 

    Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JWAXRN2ORGU
MsvAvNbDomainName: EGCG
MsvAvDNSComputerName: WIN-JWAXRN2ORGU.EGCG.LOCAL
MsvAvDNSDomainName: EGCG.LOCAL
MsvAvDNSTreeName: EGCG.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Tue, 26 Nov 2024 19:24:40 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
    Found 2024-12-02 by HttpNTLM
    Create report

  • Open service 147.45.79.165:80

    2024-12-02 00:42 

    HTTP/1.1 401 Unauthorized
Content-Type: text/html
Server: Microsoft-IIS/10.0
Date: Tue, 26 Nov 2024 19:24:40 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Content-Length: 1264

Page title: 401 - Unauthorized: Access is denied due to invalid credentials.

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>
    Found 2024-12-02 by HttpPlugin
    Create report

  • Open service 147.45.79.165:80

    2024-11-30 00:23 

    HTTP/1.1 401 Unauthorized
Content-Type: text/html
Server: Microsoft-IIS/10.0
Date: Tue, 26 Nov 2024 19:24:40 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Content-Length: 1264

Page title: 401 - Unauthorized: Access is denied due to invalid credentials.

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>
    Found 2024-11-30 by HttpPlugin
    Create report

  • Open service 147.45.79.165:80

    2024-11-30 00:23 

    Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JWAXRN2ORGU
MsvAvNbDomainName: EGCG
MsvAvDNSComputerName: WIN-JWAXRN2ORGU.EGCG.LOCAL
MsvAvDNSDomainName: EGCG.LOCAL
MsvAvDNSTreeName: EGCG.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Tue, 26 Nov 2024 19:24:40 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
    Found 2024-11-30 by HttpNTLM
    Create report

  • Open service 147.45.79.165:80

    2024-11-28 00:43 

    HTTP/1.1 401 Unauthorized
Content-Type: text/html
Server: Microsoft-IIS/10.0
Date: Tue, 26 Nov 2024 19:24:40 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Content-Length: 1264

Page title: 401 - Unauthorized: Access is denied due to invalid credentials.

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>
    Found 2024-11-28 by HttpPlugin
    Create report

  • Open service 147.45.79.165:80

    2024-11-28 00:43 

    Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JWAXRN2ORGU
MsvAvNbDomainName: EGCG
MsvAvDNSComputerName: WIN-JWAXRN2ORGU.EGCG.LOCAL
MsvAvDNSDomainName: EGCG.LOCAL
MsvAvDNSTreeName: EGCG.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Tue, 26 Nov 2024 19:24:40 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
    Found 2024-11-28 by HttpNTLM
    Create report

  • Open service 147.45.79.165:443

    2024-11-27 22:57 

    HTTP/1.1 401 Unauthorized
Content-Type: text/html
Server: Microsoft-IIS/10.0
Date: Tue, 26 Nov 2024 19:24:40 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
Content-Length: 1264

Page title: 401 - Unauthorized: Access is denied due to invalid credentials.

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"/>
<title>401 - Unauthorized: Access is denied due to invalid credentials.</title>
<style type="text/css">
<!--
body{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}
fieldset{padding:0 15px 10px 15px;} 
h1{font-size:2.4em;margin:0;color:#FFF;}
h2{font-size:1.7em;margin:0;color:#CC0000;} 
h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;
background-color:#555555;}
#content{margin:0 0 0 2%;position:relative;}
.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}
-->
</style>
</head>
<body>
<div id="header"><h1>Server Error</h1></div>
<div id="content">
 <div class="content-container"><fieldset>
  <h2>401 - Unauthorized: Access is denied due to invalid credentials.</h2>
  <h3>You do not have permission to view this directory or page using the credentials that you supplied.</h3>
 </fieldset></div>
</div>
</body>
</html>
    Found 2024-11-27 by HttpPlugin
    Create report

  • Open service 147.45.79.165:443

    2024-11-27 22:57 

    Found NTLM information:
Running Windows 10.0 build 20348
MsvAvNbComputerName: WIN-JWAXRN2ORGU
MsvAvNbDomainName: EGCG
MsvAvDNSComputerName: WIN-JWAXRN2ORGU.EGCG.LOCAL
MsvAvDNSDomainName: EGCG.LOCAL
MsvAvDNSTreeName: EGCG.LOCAL

200 OK
Content-Length: 0
Content-Type: text/html
Date: Tue, 26 Nov 2024 19:24:40 GMT
Server: Microsoft-IIS/10.0
Www-Authenticate: NTLM
    Found 2024-11-27 by HttpNTLM
    Create report
Fingerprint:
2240c1813a76a3247e54523e7c9eeda146ff698a7e587c647faebc71747be5cc
CN:
igorous-yard-n1.aeza.network
Key:
RSA-4096
Issuer:
igorous-yard-n1.aeza.network
Not before:
2024-12-21 17:21
Not after:
2025-12-21 17:21
Fingerprint:
4bc888b1093509d51665e67216c2dd0f7b73b7a11269d997620001a44e10046b
CN:
Key:
RSA-2048
Issuer:
Not before:
2024-09-06 13:33
Not after:
2034-09-04 13:33
Domain summary
No record

© 2024 LeakIX
About LeakIX - Credits - Take-down and blacklist requests - Security issues - Terms and conditions - Cookie policy - Legal notice