182.92.2.215
{
"scan_id": 1763964649,
"ip": "182.92.2.215",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.92.0.0/16",
"postal_code": "",
"coordinates": {
"latitude": "39.911",
"longitude": "116.395"
},
"geo_point": "39.911, 116.395",
"locale_code": "en",
"continent": "Asia",
"country_code": "CN",
"country_name": "China",
"city": "Beijing"
},
"location_updated_at": "2025-11-25T00:43:12Z",
"asn": {
"number": "AS37963",
"organization": "Hangzhou Alibaba Advertising Co.,Ltd.",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.92.0.0/20",
"organization": "China Internet Network Information Center",
"descr": "China Internet Network Information Center,\nFloor1, Building No.1 C/-Chinese Academy of Sciences,\n4, South 4th Street,\nHaidian District,",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:27:07Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-11-25T00:43:12Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-11-25T06:26:46Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-11-25T00:43:12Z"
}
],
"services": [
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "7.5",
"product": "Microsoft IIS httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:internet_information_services:7.5",
"part": "a",
"vendor": "microsoft",
"product": "internet_information_services",
"version": "7\\.5",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\r\n<html xmlns=\"http://www.w3.org/1999/xhtml\">\r\n<head>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\"/>\r\n<title>404 - 找不到文件或目录。</title>\r\n<style type=\"text/css\">\r\n<!--\r\nbody{margin:0;font-size:.7em;font-family:Verdana, Arial, Helvetica, sans-serif;background:#EEEEEE;}\r\nfieldset{padding:0 15px 10px 15px;} \r\nh1{font-size:2.4em;margin:0;color:#FFF;}\r\nh2{font-size:1.7em;margin:0;color:#CC0000;} \r\nh3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} \r\n#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 2%;font-family:\"trebuchet MS\", Verdana, sans-serif;color:#FFF;\r\nbackground-color:#555555;}\r\n#content{margin:0 0 0 2%;position:relative;}\r\n.content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}\r\n-->\r\n</style>\r\n</head>\r\n<body>\r\n<div id=\"header\"><h1>服务器错误</h1></div>\r\n<div id=\"content\">\r\n <div class=\"content-container\"><fieldset>\r\n <h2>404 - 找不到文件或目录。</h2>\r\n <h3>您要查找的资源可能已被删除,已更改名称或者暂时不可用。</h3>\r\n </fieldset></div>\r\n</div>\r\n</body>\r\n</html>\r\n",
"body_murmur": 4251770,
"body_sha256": "9b342ae7f25d65bdb817d8c995f3211ac398e41575fc5d149d994c1dcb008f0a",
"component": [
"IIS:7.5",
"Windows Server"
],
"content_length": -1,
"favicon": {
"md5_hash": "d130295c70012c0f55a2925d6e8c1de7",
"murmur_hash": 2135888298,
"path": "http://182.92.2.215:80/favicon.ico",
"size": 4286
},
"headers": {
"access_control_allow_origin": [
"*"
],
"cache_control": [
"private"
],
"content_type": [
"text/html"
],
"date": [
"Fri, 28 Nov 2025 00:29:49 GMT"
],
"server": [
"Microsoft-IIS/7.5"
],
"unknown": [
{
"key": "access_control_allow_headers",
"value": [
"Content-Type, api_key, Authorization"
]
}
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.92.2.215",
"path": "",
"scheme": "http"
}
},
"status_code": 404,
"title": "404 - 找不到文件或目录。",
"transfer_encoding": [
"chunked"
]
}
},
"cve": [
{
"id": "CVE-2010-1899",
"score": 4.3,
"severity": "medium"
},
{
"id": "CVE-2010-2730",
"score": 9.3,
"severity": "high"
},
{
"id": "CVE-2010-3972",
"score": 10,
"severity": "high"
}
],
"url": "http://182.92.2.215/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-28T00:29:52.189Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "https",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "ssl",
"modules": {
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://e8.i.lencr.org/"
]
},
"authority_key_id": "8f0d13a2f62e7ed1506c3318385d598e237291ca",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://e8.c.lencr.org/109.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 49:9C:9B:69:DE:1D:7C:EC:FC:36:DE:CD:87:64:A6:B8:\n 5B:AF:0A:87:80:19:D1:55:52:FB:E9:EB:29:DD:F8:C3\n Timestamp : Nov 23 10:52:34.058 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:47:D6:2F:90:99:4F:2C:3F:CF:AC:\n D8:5B:23:B8:CD:D1:5E:26:9D:36:8E:A4:F8:83:B5:99:\n 42:FB:A9:F2:73:02:20:38:CA:76:B6:67:2B:B5:C5:77:\n FC:C2:31:75:B4:14:34:EB:67:D2:D4:39:D0:94:79:E9:\n 3E:18:EB:C5:93:2F:50\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:\n DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21\n Timestamp : Nov 23 10:52:34.033 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:44:F6:11:F7:43:AA:5C:90:F4:3D:27:B1:\n EF:D3:18:ED:E9:9C:C8:4A:F2:D1:BF:92:A7:F7:58:1B:\n 89:BC:D6:4A:02:21:00:8A:C3:62:0B:E4:28:61:2F:C8:\n 7F:75:21:52:FF:91:AF:B4:6F:FA:2A:2B:85:D3:44:5E:\n BE:17:2C:49:F8:E6:73",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": false
},
"subject_alt_name": {
"dns_names": [
"p.u7pk.cn"
]
},
"subject_key_id": "5525df0520d9d8be56dc0d5efca14010e98ef003"
},
"fingerprint_md5": "D6CF2AAF519726CB111DD1F87BAD7D18",
"fingerprint_sha1": "8D3F3955A042C784F918F6CA2146EACCDD040221",
"fingerprint_sha256": "A00AB3849E0D302CA083FF6D92F24C46F0F6FA49202ECA3207ACFE03BD55708E",
"issuer": {
"common_name": [
"E8"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=E8",
"jarm": "27d27d27d00027d1ec27d27d27d27dd3b67dd3674d9af9dd91c1955a35d0e9",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-07T01:20:36",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "500184724142697635838627248904015694187884",
"signature": {
"algorithm": {
"name": "ecdsa-with-SHA384",
"oid": "1.2.840.10045.4.3.3"
},
"self_signed": false,
"value": "MzA2NDAyMzA0ZjM3MWJiNGM5ZDFkMjQ4NTM5YmMyNTU4YzBiNGMxZjNiZDk3MWZmOWEzMWNiNjRiYTJlOWU0YWNmNTM4ZjFlMjQ1N2ExYjE3ZjU1NTI5YjM3YmQ5ZmRlYWIwYjgwYzMwMjMwNzU1ZWJkNDg4MDIxMmFhZjkxOTI5ZjIzZmZiYzBlOTdhMDU5NDgzYjI3M2Y5YzA0ZmRjMmNjODljZGU3M2FjY2UyYjAzMzFhMWJlN2IxYTBkZGRhYTQyZjZlMjNlZjA5"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "499c9b69de1d7cecfc36decd8764a6b85baf0a878019d15552fbe9eb29ddf8c3",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b647d62f90994f2c3fcfacd85b23b8cdd15e269d368ea4f883b59942fba9f273022038ca76b6672bb5c577fcc23175b41434eb67d2d439d09479e93e18ebc5932f50"
},
"timestamp": "2025-11-23T10:52:34.058000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "0e5794bcf3aea93e331b2c9907b3f790df9bc23d713225dd21a925ac61c54e21",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022044f611f743aa5c90f43d27b1efd318ede99cc84af2d1bf92a7f7581b89bcd64a0221008ac3620be428612fc87f752152ff91afb46ffa2a2b85d3445ebe172c49f8e673"
},
"timestamp": "2025-11-23T10:52:34.033000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"p.u7pk.cn"
]
},
"subject_alt_name": {
"dns_names": [
"p.u7pk.cn"
],
"extended_dns_names": [
{
"domain": "u7pk",
"fld": "u7pk.cn",
"subdomain": "p",
"tld": "cn"
}
]
},
"subject_dn": "/CN=p.u7pk.cn",
"subject_key_info": {
"_key": "ecdsa",
"dh": [],
"dsa": [],
"ecdsa": {
"b": "\"Zc65d8aa:93e7b3ebbdUv9886bce1d06b0ccSb0f6;ce<>'d2`K\"",
"curve": "p256",
"gx": "k17d1f2e1,BGf8bce6e5ca4@f2w03}81-eb3a0f4a19Ed898c296",
"gy": "Oe3Be2fe1a7f9b8ee7ebJ|0f9e16+ce3Wk1^cecbb6@h7bfQf5",
"length": 256,
"p": "ffffffff00000001000000000000000000000000ffffffffffffffffffffffff",
"x": "35787507724874110240221702916698009680144901767770260055283536548394445384194",
"y": "12290131581489745216904906624154651016687135936061503451715161947448833202964"
},
"fingerprint_sha256": "9a7aadf85f8d2a265d2c796fe84996fb7b2dbf4350e17569e6549bb6660a5db2",
"key_algorithm": "Elliptic_curve_cryptography",
"rsa": []
},
"tbs_fingerprint": "24d979059cf7262d699e67c2f82c06b97581a9335e89ae98aedb32bfbec1fdb8",
"tbs_noct_fingerprint": "57583762c22058eeda906c701d49a7e05b272c0bdfa3ecfbaa9dee8553349ecc",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-02-21T09:54:02",
"not_before": "2025-11-23T09:54:03"
},
"version": 2
},
"fingerprint_sha256": "A00AB3849E0D302CA083FF6D92F24C46F0F6FA49202ECA3207ACFE03BD55708E",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"url": "https://182.92.2.215/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-28T01:27:30.869Z"
}
],
"services_hash": "85f1e6dd5f651081cd25927205257c3656e1790e98260857b7b354b696e98c7a",
"last_updated_at": "2025-11-28T01:27:30.869Z",
"banner": [
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-2010-1899": {
"id": "CVE-2010-1899",
"references": [
"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-065",
"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7127"
],
"score": 4.3,
"services": [
"80/http"
],
"severity": "medium",
"summary": "Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka \"IIS Repeated Parameter Request Denial of Service Vulnerability.\"",
"vector_string": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"weakness": "CWE-119"
},
"CVE-2010-2730": {
"id": "CVE-2010-2730",
"references": [
"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-065",
"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6933"
],
"score": 9.3,
"services": [
"80/http"
],
"severity": "high",
"summary": "Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka \"Request Header Buffer Overflow Vulnerability.\"",
"vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"weakness": "CWE-119"
},
"CVE-2010-3972": {
"id": "CVE-2010-3972",
"references": [
"http://blogs.technet.com/b/srd/archive/2011/01/07/assessing-the-risk-of-public-issues-currently-being-tracked-by-the-msrc.aspx",
"http://secunia.com/advisories/42713",
"http://www.exploit-db.com/exploits/15803",
"http://www.kb.cert.org/vuls/id/842372",
"http://www.securityfocus.com/bid/45542",
"http://www.securitytracker.com/id?1024921",
"http://www.vupen.com/english/advisories/2010/3305",
"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-004",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/64248",
"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12370"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP command, aka \"IIS FTP Service Heap Buffer Overrun Vulnerability.\" NOTE: some of these details are obtained from third party information.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "CWE-119"
}
}
}