Host 159.138.170.101
South Africa
Software information
Apache 2.4.38
tcp/8080
OpenSSL 1.0.2r
tcp/8080
PHP 7.1.26
tcp/8080
-
Open SMB file sharing detected
Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.
This may also include IPC services and lead to remote code execution.
First seen 2023-05-04 09:40
Last seen 2024-12-22 00:59
Open for 597 days-
Severity: high
Fingerprint: 22420ce026fa767d3962741c23bfd32f75afa13eb25d195ea821ba6c8478d8f7Found open SMB shares with Guest login ADMIN$ C$ D$ IPC$ print$
Found on 2024-12-22 00:59
-
-
Open service 159.138.170.101:445
2024-12-22 00:59
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 9 hours ago by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-21 22:20
HTTP/1.1 302 Found Date: Sat, 21 Dec 2024 22:21:01 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 12 hours ago by HttpPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-20 00:46
HTTP/1.1 302 Found Date: Fri, 20 Dec 2024 00:46:45 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2 days ago by HttpPluginCreate report
-
Open service 159.138.170.101:445
2024-12-20 00:35
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2 days ago by SmbPluginCreate report
-
Open service 159.138.170.101:445
2024-12-18 01:46
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-12-18 by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-18 01:25
HTTP/1.1 302 Found Date: Wed, 18 Dec 2024 01:25:45 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-12-18 by HttpPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-15 23:56
HTTP/1.1 302 Found Date: Sun, 15 Dec 2024 23:56:46 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-12-15 by HttpPluginCreate report
-
Open service 159.138.170.101:445
2024-12-15 23:54
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-12-15 by SmbPluginCreate report
-
Open service 159.138.170.101:445
2024-12-14 00:07
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-12-14 by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-13 23:51
HTTP/1.1 302 Found Date: Fri, 13 Dec 2024 23:51:38 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-12-13 by HttpPluginCreate report
-
Open service 159.138.170.101:445
2024-12-12 01:05
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-12-12 by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-12 00:54
HTTP/1.1 302 Found Date: Thu, 12 Dec 2024 00:54:47 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-12-12 by HttpPluginCreate report
-
Open service 159.138.170.101:445
2024-12-02 01:40
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-12-02 by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-12-01 23:31
HTTP/1.1 302 Found Date: Sun, 01 Dec 2024 23:31:14 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-12-01 by HttpPluginCreate report
-
Open service 159.138.170.101:445
2024-11-30 01:01
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-11-30 by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-11-30 00:12
HTTP/1.1 302 Found Date: Sat, 30 Nov 2024 00:12:59 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-11-30 by HttpPluginCreate report
-
Open service 159.138.170.101:445
2024-11-28 01:02
SMB NTLMSSP handshake results: Found Windows 6.3 build 9600 NbComputerName: TOMISSERVER NbDomainName: TOMISSERVER DNSComputerName: TOMISSERVER DNSDomainName: TOMISSERVER
Found 2024-11-28 by SmbPluginCreate report
-
Open service 159.138.170.101:8080
2024-11-28 00:32
HTTP/1.1 302 Found Date: Thu, 28 Nov 2024 00:32:12 GMT Server: Apache/2.4.38 (Win64) OpenSSL/1.0.2r PHP/7.1.26 X-Powered-By: PHP/7.1.26 Location: https://159.138.170.101/dashboard/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Found 2024-11-28 by HttpPluginCreate report