nginx
tcp/443
openresty
tcp/80
Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.
This may also include IPC services and lead to remote code execution.
Severity: high
Fingerprint: 22420ce026fa767de22ea8c39203e3659bf8c3f7a7836fed95379dc339d482d6
Found open SMB shares with NT AUTHORITY/ANONYMOUS LOGON Photos-Space Bilder homes IPC$ nobody
Severity: high
Fingerprint: 22420ce026fa767de22ea8c3dca3277bdc23fb05dc23fb05dc23fb05dc23fb05
Found open SMB shares with NT AUTHORITY/ANONYMOUS LOGON Plex-Media IPC$
Open service 5.146.63.200:445
2024-12-22 00:59
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:443 · dgspace.de
2024-12-21 00:06
HTTP/1.1 200 OK Server: nginx Date: Sat, 21 Dec 2024 00:06:04 GMT Content-Type: text/html Content-Length: 988 Last-Modified: Mon, 16 Dec 2024 17:35:35 GMT Connection: close ETag: "676064e7-3dc" Accept-Ranges: bytes Page title: Welcome to our server <html> <head> <title>Welcome to our server</title> <style> body{ font-family: Helvetica, Arial, sans-serif; } .message{ width:330px; padding:20px 40px; margin:0 auto; background-color:#f9f9f9; border:1px solid #ddd; } center{ margin:40px 0; } h1{ font-size: 18px; line-height: 26px; } p{ font-size: 12px; } </style> </head> <body> <div class="message"> <h1>Welcome to our server</h1> <p>The website is currently being setup under this address.</p> <p>For help and support, please contact: <a href="me@example.com">me@example.com</a></p> </div> </body> </html>
Open service 5.146.63.200:443 · eng.xstream.dns-cloud.net
2024-12-21 00:03
HTTP/1.1 200 OK Server: nginx Date: Sat, 21 Dec 2024 00:03:06 GMT Content-Type: text/html Content-Length: 988 Last-Modified: Mon, 16 Dec 2024 17:35:35 GMT Connection: close ETag: "676064e7-3dc" Accept-Ranges: bytes Page title: Welcome to our server <html> <head> <title>Welcome to our server</title> <style> body{ font-family: Helvetica, Arial, sans-serif; } .message{ width:330px; padding:20px 40px; margin:0 auto; background-color:#f9f9f9; border:1px solid #ddd; } center{ margin:40px 0; } h1{ font-size: 18px; line-height: 26px; } p{ font-size: 12px; } </style> </head> <body> <div class="message"> <h1>Welcome to our server</h1> <p>The website is currently being setup under this address.</p> <p>For help and support, please contact: <a href="me@example.com">me@example.com</a></p> </div> </body> </html>
Open service 5.146.63.200:80 · eng.xstream.dns-cloud.net
2024-12-21 00:03
HTTP/1.1 403 Forbidden Server: openresty Date: Sat, 21 Dec 2024 00:03:05 GMT Content-Type: text/html; charset=utf-8 Content-Length: 141 Connection: close Set-Cookie: TWISTED_SESSION=fb3c55e2b393f571a996ea22dc7d09d24497c555b503905cb047ad95983ac0a6; Path=/ Page title: 403 - Forbidden <html> <head><title>403 - Forbidden</title></head> <body> <h1>Forbidden</h1> <p>403.6 IP address rejected</p> </body> </html>
Open service 5.146.63.200:445
2024-12-20 00:35
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-12-18 01:48
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-12-15 23:54
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-12-14 00:03
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-12-12 01:00
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-12-02 01:38
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-11-30 00:59
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:445
2024-11-28 01:05
SMB NTLMSSP handshake results: Found non-Windows 6.1 build 0
Open service 5.146.63.200:9000
2024-11-20 15:58
HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=31536000 Content-Length: 19300 Content-Type: text/html; charset=utf-8 Last-Modified: Mon, 14 Oct 2024 22:02:57 GMT Vary: Accept-Encoding X-Content-Type-Options: nosniff X-Csrf-Token: X-Xss-Protection: 1; mode=block Date: Wed, 20 Nov 2024 15:58:50 GMT Connection: close Page title: Portainer <!doctype html><html lang="en" ng-app="portainer" ng-strict-di data-edition="CE"><head><meta charset="utf-8"/><title>Portainer</title><meta name="description" content=""/><meta name="author" content="Portainer.io"/><meta http-equiv="cache-control" content="no-cache"/><meta http-equiv="expires" content="0"/><meta http-equiv="pragma" content="no-cache"/><meta name="robots" content="noindex"/><base id="base"/><script>// http://localhost:49000 is a docker extension specific url (see /build/docker-extension/docker-compose.yml) if (window.origin == 'http://localhost:49000') { // we are loading the app from a local file as in docker extension document.getElementById('base').href = 'http://localhost:49000/'; window.ddExtension = true; } else { var path = window.location.pathname.replace(/^\/+|\/+$/g, ''); var basePath = path ? '/' + path + '/' : '/'; document.getElementById('base').href = basePath; }</script><!--[if lt IE 9]> <script src="//html5shim.googlecode.com/svn/trunk/html5.js"></script> <![endif]--><link rel="apple-touch-icon" sizes="180x180" href="63a301f0574f1a696ce6.png"/><link rel="icon" type="image/png" sizes="32x32" href="2dcfc527d067d4ae3424.png"/><link rel="icon" type="image/png" sizes="16x16" href="112a479c093f4729251d.png"/><link rel="mask-icon" href="data:image/svg+xml;base64,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