Microsoft-HTTPAPI 2.0
tcp/443 tcp/8081
Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.
This may also include IPC services and lead to remote code execution.
Severity: high
Fingerprint: 22420ce026fa767d3962741c23bfd32f75afa13ebf23ba0c278028b4278028b4
Found open SMB shares with Guest login ADMIN$ C$ IPC$ Users
Open service 216.104.44.109:445
2024-09-15 23:50
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-09-13 23:37
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-09-12 04:13
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-09-11 21:05
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:8081
2024-09-10 23:56
HTTP/1.1 400 Bad Request Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Tue, 10 Sep 2024 23:56:10 GMT Connection: close Content-Length: 334 Page title: Bad Request <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"> <HTML><HEAD><TITLE>Bad Request</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD> <BODY><h2>Bad Request - Invalid Hostname</h2> <hr><p>HTTP Error 400. The request hostname is invalid.</p> </BODY></HTML>
Open service 216.104.44.109:443
2024-09-10 09:13
HTTP/1.1 404 Not Found Content-Type: text/html; charset=us-ascii Server: Microsoft-HTTPAPI/2.0 Date: Tue, 10 Sep 2024 09:13:28 GMT Connection: close Content-Length: 315 Page title: Not Found <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN""http://www.w3.org/TR/html4/strict.dtd"> <HTML><HEAD><TITLE>Not Found</TITLE> <META HTTP-EQUIV="Content-Type" Content="text/html; charset=us-ascii"></HEAD> <BODY><h2>Not Found</h2> <hr><p>HTTP Error 404. The requested resource is not found.</p> </BODY></HTML>
Open service 216.104.44.109:3306
2024-09-10 08:24
MySQL detected
Open service 216.104.44.109:445
2024-09-09 20:16
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-09-07 20:12
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-08-17 22:44
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-08-15 20:42
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-08-13 23:13
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-08-11 23:23
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-08-09 20:15
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com
Open service 216.104.44.109:445
2024-08-07 20:06
SMB NTLMSSP handshake results: Found Windows 10.0 build 14393 NbComputerName: SV9973 NbDomainName: SV9973 DNSComputerName: sv9973.si-servers.com DNSDomainName: sv9973.si-servers.com