182.150.56.54
{
"scan_id": 1769233337,
"ip": "182.150.56.54",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.150.48.0/20",
"postal_code": "",
"coordinates": {
"latitude": "30.6667",
"longitude": "104.0667"
},
"geo_point": "30.6667, 104.0667",
"locale_code": "en",
"continent": "Asia",
"country_code": "CN",
"country_name": "China",
"city": "Chengdu"
},
"location_updated_at": "2026-01-25T00:42:26Z",
"asn": {
"number": "AS4134",
"organization": "Chinanet",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.144.0.0/13",
"organization": "CHINANET Sichuan province network",
"descr": "CHINANET Sichuan province network,\nData Communication Division,\nChina Telecom",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T19:03:50Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2026-01-25T00:42:26Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2026-01-25T06:03:51Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2026-01-25T00:42:26Z"
}
],
"services": [
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "1.25.2",
"product": "nginx",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:igor_sysoev:nginx:1.25.2",
"part": "a",
"vendor": "igor_sysoev",
"product": "nginx",
"version": "1\\.25\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": -2010716544,
"body_sha256": "28f9848513ba60cde360fe28ac590e3f75cbd158850e0f059a05f7fdda90d41b",
"component": [
"Nginx:1.25.2"
],
"content_length": 1045,
"favicon": {
"md5_hash": "93a166465c2e83b15b428c8edbf278bc",
"murmur_hash": 90560995,
"path": "http://182.150.56.54:80/dap/logo.png",
"size": 43221
},
"headers": {
"accept_ranges": [
"bytes"
],
"connection": [
"keep-alive"
],
"content_length": [
"1045"
],
"content_type": [
"text/html"
],
"date": [
"Thu, 15 Jan 2026 02:20:25 GMT"
],
"etag": [
"\"693a7b51-415\""
],
"last_modified": [
"Thu, 11 Dec 2025 08:05:37 GMT"
],
"server": [
"nginx/1.25.2"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"body_murmur": -697320684,
"body_sha256": "50b106550c9e92036554b19e02ef2fb43974b01de15664635487afa8eb751e35",
"content_length": 169,
"location": "http://182.150.56.54/dap",
"status_code": 301,
"status_line": "301 Moved Permanently"
},
{
"body_murmur": -697320684,
"body_sha256": "50b106550c9e92036554b19e02ef2fb43974b01de15664635487afa8eb751e35",
"content_length": 169,
"location": "http://182.150.56.54/dap/",
"status_code": 301,
"status_line": "301 Moved Permanently"
}
],
"status_code": 200,
"title": "loading..."
}
},
"url": "http://182.150.56.54/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-18T14:01:56.129Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "1.25.2",
"product": "nginx",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:igor_sysoev:nginx:1.25.2",
"part": "a",
"vendor": "igor_sysoev",
"product": "nginx",
"version": "1\\.25\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": -2010716544,
"body_sha256": "28f9848513ba60cde360fe28ac590e3f75cbd158850e0f059a05f7fdda90d41b",
"component": [
"Nginx:1.25.2"
],
"content_length": 1045,
"headers": {
"accept_ranges": [
"bytes"
],
"connection": [
"keep-alive"
],
"content_length": [
"1045"
],
"content_type": [
"text/html"
],
"date": [
"Wed, 14 Jan 2026 16:44:12 GMT"
],
"etag": [
"\"693a7b51-415\""
],
"last_modified": [
"Thu, 11 Dec 2025 08:05:37 GMT"
],
"server": [
"nginx/1.25.2"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"body_murmur": -697320684,
"body_sha256": "50b106550c9e92036554b19e02ef2fb43974b01de15664635487afa8eb751e35",
"content_length": 169,
"location": "https://182.150.56.54/dap",
"status_code": 301,
"status_line": "301 Moved Permanently"
},
{
"body_murmur": -697320684,
"body_sha256": "50b106550c9e92036554b19e02ef2fb43974b01de15664635487afa8eb751e35",
"content_length": 169,
"location": "https://182.150.56.54/dap/",
"status_code": 301,
"status_line": "301 Moved Permanently"
}
],
"status_code": 200,
"title": "loading..."
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://ica.litessl.com/LiteSSLRSACA2025.crt"
]
},
"authority_key_id": "7d578b9624d62e7804dc27ac6a44bd7ba41f7fb5",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://crl.litessl.com/LiteSSLRSACA2025-Part2.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": false,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": false
},
"subject_alt_name": {
"dns_names": [
"winbi.sharewinfo.com"
]
},
"subject_key_id": "bf4f03c571d2bb583a02a908c1f721cff890e9cc"
},
"fingerprint_md5": "2C2CB2767891BB7CD70704713D06E344",
"fingerprint_sha1": "4B90A6FA5B638DB2EB59B1F3C21AF4AC63CA007D",
"fingerprint_sha256": "3EC7EDE0831BD53637A9D48F7F6EF759C4E4B5A0A8DF9ACADB5CB35169E07D60",
"issuer": {
"common_name": [
"LiteSSL RSA CA 2025"
],
"country": [
"CN"
],
"organization": [
"TrustAsia Technologies, Inc."
]
},
"jarm": "2ad2ad0002ad2ad00042d42d00000000f78d2dc0ce6e5bbc5b8149a4872356",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2026-02-02T20:51:10",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "170137629227121708039932100802773076680686454783",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "969764bf555897adf743876837084277e9f03ad5f6a4f3366e46a43f0fcaa9c6",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100c1ea9109acf76329ca09f2d6686b8cbcaba66c3668d581f2b95426d45594657a02207de1228ae0df5a7dab4ab07d99c8764eb805a392862b1670dd78caafbfa19dbf"
},
"timestamp": "2026-01-20T05:49:58.560000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "16832dabf0a9250f0ff03aa545ffc8bfc823d0874bf6042927f8e71f3313f5fa",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304502207fde71d67652288bbe2412ee21e7f3364c59577879e9ccacbe2fb89e9ed23f39022100ecd0bfe4b4167c69e19cffcd798db24339afdd16a22102d8400691f2567e9473"
},
"timestamp": "2026-01-20T05:49:58.754000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "74db9d58f7d47e9dfd787a162a991c18cf698da7c729918c9a18b0450dba44bc",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100e55d177082a650bfc0c23ac6d73bb396a808e57527a3a27816b9e2d9b16b504902204a94418ca7b8a4015566e776b3ffce660653217712442b7ea78fa74bf041b5b2"
},
"timestamp": "2026-01-20T05:49:58.181000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"winbi.sharewinfo.com"
]
},
"subject_alt_name": {
"dns_names": [
"winbi.sharewinfo.com"
],
"extended_dns_names": [
{
"domain": "sharewinfo",
"fld": "sharewinfo.com",
"subdomain": "winbi",
"tld": "com"
}
]
},
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "80c647961a55e7010d69588994a02506ce1fc205c9888dd47fac816f4f2e08e8",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048
}
},
"tbs_fingerprint": "cb6614df1b47abac4ea5a356ef4041d8cf8be36e6f598c7ba50cae296ecc21e6",
"tbs_noct_fingerprint": "d0700efac64303e579a94645ed389ed394b45552f5edd4e799696da84aa89af0",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-04-20T03:59:59",
"not_before": "2026-01-20T04:00:00"
},
"version": 2
},
"fingerprint_sha256": "3EC7EDE0831BD53637A9D48F7F6EF759C4E4B5A0A8DF9ACADB5CB35169E07D60",
"precert": false,
"tags": [
"dv",
"trusted"
]
}
},
"url": "https://182.150.56.54/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-27T11:25:49.012Z"
},
{
"port": 5000,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": 1097278764,
"body_sha256": "70018cfd8abd5e3b42397a8f534c09966b94ed3fe5620bbd3a1042ca7699e294",
"component": [
"Apache HTTP Server"
],
"content_length": -1,
"headers": {
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Sat, 24 Jan 2026 20:04:41 GMT"
],
"server": [
"Apache"
],
"vary": [
"Accept-Encoding"
]
},
"protocol": "HTTP/1.1",
"status_code": 200,
"title": "Welcome to zentao!"
}
},
"cve": [
{
"id": "CVE-1999-0070",
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"severity": "high"
},
{
"id": "CVE-2023-25690",
"severity": "critical"
}
],
"url": "http://182.150.56.54:5000/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-24T20:04:42.612Z"
},
{
"port": 8000,
"protocol": "tcp",
"name": "http",
"version": "10.0",
"product": "Microsoft IIS httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:internet_information_services:10.0",
"part": "a",
"vendor": "microsoft",
"product": "internet_information_services",
"version": "10\\.0",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body_murmur": 747566266,
"body_sha256": "c35fa503f9a2b66d934192e7cc5cb3cf4f858076e57789ecff489527f3797884",
"component": [
"IIS:10.0",
"Windows Server",
"Material Design Lite"
],
"content_length": -1,
"favicon": {
"md5_hash": "55cb386b12ed301aae7a9195cec1217b",
"murmur_hash": -769432440,
"path": "http://182.150.56.54:8000/favicon.ico",
"size": 8118
},
"headers": {
"accept_ranges": [
"bytes"
],
"access_control_allow_origin": [
"*"
],
"cache_control": [
"no-cache"
],
"content_type": [
"text/html"
],
"date": [
"Thu, 15 Jan 2026 09:38:36 GMT"
],
"etag": [
"\"fb152a67c7bbda1:0\""
],
"last_modified": [
"Tue, 11 Jun 2024 06:20:06 GMT"
],
"server": [
"Microsoft-IIS/10.0"
],
"unknown": [
{
"key": "access_control_allow_credentials",
"value": [
"true"
]
}
],
"vary": [
"Accept-Encoding"
],
"x_powered_by": [
"ASP.NET"
]
},
"protocol": "HTTP/1.1",
"status_code": 200,
"title": "数据分析平台"
}
},
"url": "http://182.150.56.54:8000/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-15T09:37:14.896Z"
}
],
"services_hash": "ef226e20c53184ff6c213831954eb8f57b6bd429e1fd260dda30b8eed82b4ce8",
"last_updated_at": "2026-01-27T11:25:49.012Z",
"banner": [
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"5000/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"5000/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"5000/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"5000/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
}
}
}