LeakIX - Host 59.124.24.35

Host 59.124.24.35

Taiwan

Data Communication Business Group

Software information

Apache-Coyote 1.1

tcp/80

Open SMB file sharing detected

Malicious users exploiting this vulnerability may be able to read and/or write information to shared directories.

This may also include IPC services and lead to remote code execution.

IP: 59.124.24.35
Port: 445

First seen 2022-06-13 19:35
Last seen 2024-05-08 13:03
Open for 694 days
- Severity: high
  Fingerprint: 22420ce026fa767d3962741c23bfd32f75afa13e817ad4de068ebcbe8260a040
```
Found open SMB shares with Guest login
ADMIN$
C$
D
D$
Excel
FTP
IPC$
print$
Users
wineasy2
X
X$
刀模
打樣廠 EPSON WF-2630
附件
```
  Found on 2024-05-08 13:03
Create report

Open service 59.124.24.35:445

2024-05-08 13:03

SMB NTLMSSP handshake results:
Found Windows 6.1 build 7601
NbComputerName: SQL
NbDomainName: SQL
DNSComputerName: SQL
DNSDomainName: SQL

Found 3 days ago by SmbPlugin

Create report

Open service 59.124.24.35:445

2024-04-30 19:06

SMB NTLMSSP handshake results:
Found Windows 6.1 build 7601
NbComputerName: SQL
NbDomainName: SQL
DNSComputerName: SQL
DNSDomainName: SQL

Found 2024-04-30 by SmbPlugin

Create report

Open service 59.124.24.35:445

2024-04-26 05:09

SMB NTLMSSP handshake results:
Found Windows 6.1 build 7601
NbComputerName: SQL
NbDomainName: SQL
DNSComputerName: SQL
DNSDomainName: SQL

Found 2024-04-26 by SmbPlugin

Create report

Open service 59.124.24.35:80

2024-04-25 03:30

HTTP/1.1 200 OK
Set-Cookie: JSESSIONID=FCDDEE908B2330208A6359E715E01249; Path=/
Content-Type: text/html;charset=UTF-8
Content-Length: 921
Date: Thu, 25 Apr 2024 03:30:21 GMT
Server: Apache-Coyote/1.1
Connection: close

Page title: 明昊彩色印刷股份有限公司

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">


















<script src="/js/DataCheck.js"></script>








<html>
<head>
<meta http-equiv="Content-Language" content="zh-tw" />

<!-- Facebook og 設定 -->
<meta property="og:title" content="明昊彩色印刷股份有限公司"></meta>
<meta property="og:url" content="http://59.124.24.35/"></meta>
<meta property="og:image" content="http://59.124.24.35/images/logo.png"></meta>
<meta property="og:description" content="明昊彩色印刷股份有限公司"></meta>
<!-- Facebook og 設定 -->


<meta http-equiv="refresh" content="0; url=web/index/index.jsp" />

<title>明昊彩色印刷股份有限公司</title>
<style type="text/css">
#main {
	height: 768px;
	width: 1024px;
	margin-right: auto;
	margin-left: auto;
}
</style>
</head>
<body>
<div id="main"></div>
</body>
</html>

Found 2024-04-25 by HttpPlugin

Create report

Open service 59.124.24.35:445

2024-04-18 18:38

SMB NTLMSSP handshake results:
Found Windows 6.1 build 7601
NbComputerName: SQL
NbDomainName: SQL
DNSComputerName: SQL
DNSDomainName: SQL

Found 2024-04-18 by SmbPlugin

Create report

Domain summary

No record

Host 59.124.24.35

Taiwan

Software information

Open SMB file sharing detected

Create report

Create report

Create report

Create report

Create report

Domain summary