LeakIX - Host 45.127.110.22

Host 45.127.110.22

India

Wireline Solution India Pvt Ltd.

WSO2 product looks outdated
The following WSO2 product is publicly accessible and looks out-dated :

It is critical to update to a safe version as soon as possible since a vulnerability allow remote attackers to achieve RCE (Remote code execution) on the service. Those vulnerabilities are currently used in ransomware campaign and could damage your network.

Reference:

https://www.cvedetails.com/cve/CVE-2022-29464
IP: 45.127.110.22
Port: 9443
URL: https://45.127.110.22:9443

First seen 2023-07-18 22:05
Last seen 2024-12-21 23:30
Open for 522 days
- Severity: critical
  Fingerprint: 0ac2efb9e7a4e4a89a803d6200fae19000fae19000fae19000fae19000fae190
```
Found WSO2 product:
Vulnerable to CVE-2022-29464
```
  Found on 2024-12-21 23:30
Create report
Open SMB file sharing detected

Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.

This may also include IPC services and lead to remote code execution.

IP: 45.127.110.22
Port: 445

First seen 2024-01-16 17:16
Last seen 2024-12-21 22:23
Open for 340 days
- Severity: high
  Fingerprint: 22420ce026fa767d3962741c23bfd32f75afa13eb25d195ea821ba6c221ed954
```
Found open SMB shares with Guest login
ADMIN$
C$
D$
IPC$
Users
```
  Found on 2024-12-21 22:23
Create report

2024-12-21 23:30

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=9F8F2FD02BEDC8D39EC4EC7FC8F34589; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Sat, 21 Dec 2024 23:30:16 GMT
Connection: close
Server: WSO2 Carbon Server

Found 12 hours ago by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-21 22:23

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 13 hours ago by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-12-19 22:43

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=21DE85FD6ED3377A345CCC1406168EC0; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Thu, 19 Dec 2024 22:43:28 GMT
Connection: close
Server: WSO2 Carbon Server

Found 3 days ago by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-19 21:06

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 3 days ago by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-12-17 23:43

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=2ED816F6B1282B6D87F58EAD50E6A165; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Tue, 17 Dec 2024 23:43:22 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-17 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-17 21:14

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-12-17 by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-12-15 22:13

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=B308419ADCAC5B785CF871DAD59D2FB4; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Sun, 15 Dec 2024 22:13:51 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-15 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-15 21:08

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-12-15 by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-12-13 21:30

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=0DE073531DD28586D9F3C0F6F271CECD; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Fri, 13 Dec 2024 21:30:09 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-13 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-13 21:15

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-12-13 by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-12-11 21:57

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=B1BDC319D516E427686A80A0421A1DDE; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Wed, 11 Dec 2024 21:58:00 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-11 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-11 21:09

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-12-11 by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-12-01 22:40

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=E3F1334C360CBEA741005112109C5815; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Sun, 01 Dec 2024 22:40:30 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-12-01 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-12-01 21:26

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-12-01 by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-11-29 23:21

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=892D7DF7707DB7BDF162183F747A9D32; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Fri, 29 Nov 2024 23:21:21 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-11-29 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-11-29 22:17

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-11-29 by SmbPlugin

Create report

Open service 45.127.110.22:9443

2024-11-27 22:40

HTTP/1.1 302 
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: JSESSIONID=54F1B982619163BF924BDE0D1057597D; Path=/; Secure; HttpOnly
Location: https://45.127.110.22/carbon
Content-Length: 0
Date: Wed, 27 Nov 2024 22:40:39 GMT
Connection: close
Server: WSO2 Carbon Server

Found 2024-11-27 by HttpPlugin

Create report

Open service 45.127.110.22:445

2024-11-27 22:12

SMB NTLMSSP handshake results:
Found Windows 10.0 build 17763
NbComputerName: SSI-ERPFIS-P01
NbDomainName: SSI-ERPFIS-P01
DNSComputerName: SSI-ERPFIS-P01
DNSDomainName: SSI-ERPFIS-P01

Found 2024-11-27 by SmbPlugin

Create report

localhost

Fingerprint:

3612ad8f01b4ecf4714f0bc8e071b6403dd34c4dde62d81dd4b91d1aa356dee6

CN:

localhost

Key:

RSA-2048

Issuer:

localhost

Not before:

2019-10-23 07:30

Not after:

2022-01-25 07:30

Domain summary

No record

Host 45.127.110.22

India

WSO2 product looks outdated

Open SMB file sharing detected

localhost

Domain summary