GeneralInformation

Hostnames	demo.pcar.us
Domains	pcar.us
Cloud Provider	DigitalOcean
Cloud Region	us-sf
Country	United States
City	San Francisco
Organization	DigitalOcean, LLC
ISP	DigitalOcean, LLC
ASN	AS14061

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 111 443 3001 3306 4000 33060

-1425579093 | 2024-05-30T16:01:36.541497

22 / tcp

SSH-2.0-OpenSSH_8.0
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC6HToXZ+A7Lro5YdRvHd7LD4MLBLm5xj2bh+G4oPYBEonc
i0AWGsp0Zl09qqRtKi75DPiHdHWpr4FQYJJhoTXbYRvVlSbercb3Jldov0cn5cWYgE6Zx+wssn7C
wcIx7R6RA+FkQyCaRFBLYrHfZIHdK3x/Ori5TUzmWY2V/nY0fTnCmm9Nt/KuCNBdZfLl3nJszVPm
cnpKsKn6YuMC8i1+hIqHnIVznbL9S5kfGWHxQqnaELjTKnQctzHkTrcYp6MdvI7VR6oFWzciRnLm
dtxeI7d6E0CHbBcChr40+pMU6kagczva1htWxWvfXda8vIUeui5yrnZOkwLpHZrBMNa4Ku6S91Ks
ui+S4+UwvSDLQgIsm4dS8vmfE0IjMA2RNOqGSXE53u4VIZ1agVy+X3NRP13Ebfia993Uk1bwqr7u
0RP7/pGwyRsZWHTpeUDoJB7rMXJh01Y82P8IWU7gIJKL1E5TuoWyEWmN6ASjn0BEIAEtd373WlnY
yRWDWzQFMuc=
Fingerprint: 74:3b:17:3e:9b:b2:20:a6:1b:e9:e1:37:65:c0:1d:00

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group14-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com
	aes256-ctr
	aes256-cbc
	aes128-gcm@openssh.com
	aes128-ctr
	aes128-cbc

MAC Algorithms:
	hmac-sha2-256-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha2-256
	hmac-sha1
	umac-128@openssh.com
	hmac-sha2-512

Compression Algorithms:
	none
	zlib@openssh.com

CVE-2008-3844 CVE-2021-41617 CVE-2020-15778 CVE-2020-14145 CVE-2019-16905 7 moreCVE-2016-20012 CVE-2007-2768 CVE-2023-51767 CVE-2023-51385 CVE-2023-48795 CVE-2023-38408 CVE-2021-36368

-478033152 | 2024-06-05T14:17:37.436504

80 / tcp

Test Page for the Nginx HTTP Server on Red Hat Enterprise Linux

HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 05 Jun 2024 14:17:37 GMT
Content-Type: text/html
Content-Length: 4057
Last-Modified: Mon, 07 Oct 2019 21:16:24 GMT
Connection: keep-alive
ETag: "5d9bab28-fd9"
Accept-Ranges: bytes

CVE-2019-9513 CVE-2019-9511 CVE-2021-23017 CVE-2021-3618 CVE-2019-20372 3 moreCVE-2019-9516 CVE-2018-16845 CVE-2023-44487

-1345205424 | 2024-06-05T02:32:06.658457

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-06-08T00:41:10.939324

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

510274493 | 2024-06-09T15:43:06.606618

443 / tcp

PCAR app

HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Sun, 09 Jun 2024 15:43:06 GMT
Content-Type: text/html
Content-Length: 3083
Last-Modified: Sat, 02 Sep 2023 17:44:04 GMT
Connection: keep-alive
ETag: "64f37464-c0b"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:40:bb:ac:f9:1f:0b:e4:38:d3:cd:63:43:6f:78:d1:c7:1d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  4 16:37:33 2024 GMT
            Not After : Aug  2 16:37:32 2024 GMT
        Subject: CN=demo.pcar.us
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b7:be:64:97:24:7b:38:4e:b9:ea:c2:e8:53:27:
                    6b:cb:8f:7f:1d:93:b2:d7:9c:50:56:7b:0c:23:53:
                    d9:b8:0d:20:55:0d:27:f2:43:a8:90:2b:6d:45:3f:
                    c9:69:1e:ef:c9:9a:c7:4e:03:6d:5b:6b:a8:05:43:
                    3d:22:d1:8a:8b:97:a6:ad:d7:56:19:dc:f9:92:48:
                    cd:3b:36:17:d3:43:18:15:fb:b2:69:5c:97:ed:15:
                    86:8c:ce:71:95:b3:23:51:d8:24:4d:e9:60:47:b8:
                    9b:4b:e3:ad:59:8b:12:2e:7f:91:f6:88:06:5f:7c:
                    ca:1d:28:6f:31:3b:e3:fb:ea:b1:a9:d5:1e:8e:68:
                    bb:ba:85:30:d4:3f:24:33:16:ff:17:5b:17:73:bd:
                    e4:e4:cf:88:a9:aa:09:35:89:e1:a4:ff:89:42:1a:
                    47:f0:7f:29:58:a3:0f:4a:bf:87:33:4f:df:74:bb:
                    c5:f0:72:3f:98:07:88:fe:7a:6c:63:a7:8e:fb:8a:
                    6f:6b:10:e5:67:d8:0e:8c:81:48:26:7b:48:20:4f:
                    1b:46:82:45:0e:73:bc:1f:11:51:11:48:0e:95:27:
                    cc:82:97:04:55:aa:76:21:15:08:92:3d:7e:eb:3a:
                    d5:31:ae:70:d0:ba:1d:1e:2b:7e:c8:76:01:27:9a:
                    81:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                DD:5B:A2:B8:FB:A4:27:61:E9:B2:8D:A9:C0:C0:4B:31:88:D9:62:01
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:demo.pcar.us
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  4 17:37:33.935 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C6:E0:58:CA:CE:8C:10:41:29:8F:15:
                                C5:E9:86:72:88:7E:78:BA:3A:2D:80:CF:87:85:FB:5C:
                                5E:B7:A0:04:FA:02:21:00:83:12:D5:C7:F9:49:01:74:
                                66:2E:EF:AF:5F:1F:FD:99:59:AF:7E:8C:F2:89:AA:48:
                                75:14:9C:B6:6B:03:3E:84
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : May  4 17:37:33.971 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:04:EE:A6:5E:3B:FD:8B:A9:6B:88:99:BC:
                                73:85:0F:DF:02:6C:E2:7B:12:BC:64:5C:7B:A3:54:2F:
                                86:7D:8C:72:02:20:38:27:50:C4:75:28:65:CE:3D:94:
                                5F:F6:C3:D2:A8:0C:0A:70:91:FF:61:95:26:CF:E2:F1:
                                D8:24:95:FA:F9:FB
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        05:68:3c:82:6f:6f:91:2a:d6:9c:32:93:2d:34:84:34:b7:5e:
        be:8f:f1:aa:42:27:10:4f:15:6b:87:7d:7a:c9:f6:71:73:17:
        d0:ba:c9:03:41:e1:2a:70:7d:9b:56:69:29:f3:47:53:49:9e:
        a5:4b:4b:a6:c3:07:f9:0d:7d:22:f2:c7:0c:6c:c3:28:52:0f:
        f1:9e:88:fb:aa:28:57:d7:e0:2b:17:56:7b:8c:b3:d6:9a:02:
        40:3d:44:5c:96:5e:f8:89:e8:65:fb:e1:44:9f:25:49:e1:37:
        f8:d9:1e:01:bf:1f:91:ba:bd:4a:f4:c5:8e:5c:a3:61:01:62:
        3d:cf:c3:a4:d5:11:c8:d7:7d:54:ff:5b:32:9a:40:14:8e:0d:
        7b:06:17:fa:ed:46:17:5a:02:43:ef:8f:07:22:f5:be:1a:4a:
        81:cb:44:c8:32:e0:e4:0e:92:fc:12:40:46:36:a7:02:4f:66:
        5e:31:93:0f:fc:8b:11:1f:a4:f2:40:26:cb:dc:50:04:1f:29:
        19:6b:bb:5c:39:e2:b4:d9:74:f2:c5:5a:b3:d7:01:93:1e:0e:
        14:8a:4e:e0:f1:f6:78:28:17:78:09:11:b2:7b:b5:b1:69:c1:
        f7:10:fc:66:25:a6:11:2a:11:b9:4e:80:7a:27:2b:97:e0:7a:
        2e:14:ef:95

CVE-2019-9513 CVE-2019-9511 CVE-2021-23017 CVE-2021-3618 CVE-2019-20372 3 moreCVE-2019-9516 CVE-2018-16845 CVE-2023-44487

-973911975 | 2024-06-10T04:13:43.809627

3001 / tcp

HTTP/1.1 302 Found
X-Frame-Options: SAMEORIGIN
Location: /dashboard
Vary: Accept
Content-Type: text/plain; charset=utf-8
Content-Length: 32
Date: Mon, 10 Jun 2024 04:13:05 GMT
Connection: keep-alive
Keep-Alive: timeout=5

Found. Redirecting to /dashboard

815199224 | 2024-05-25T10:45:34.425737

3306 / tcp

MySQL:
  Error Message: Host '224.233.51.222' is not allowed to connect to this MySQL server
  Error Code: 1130

-1246004407 | 2024-05-27T02:47:23.570567

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-795948505 | 2024-06-05T14:31:24.333412

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

104.236.159.249

Last Seen: 2024-06-10

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1425579093 | 2024-05-30T16:01:36.541497
22 / tcp

OpenSSH8.0

-478033152 | 2024-06-05T14:17:37.436504
80 / tcp

nginx1.14.1

-1345205424 | 2024-06-05T02:32:06.658457
111 / tcp

-1345205424 | 2024-06-08T00:41:10.939324
111 / udp

510274493 | 2024-06-09T15:43:06.606618
443 / tcp

nginx1.14.1

-973911975 | 2024-06-10T04:13:43.809627
3001 / tcp

815199224 | 2024-05-25T10:45:34.425737
3306 / tcp

MySQL

-1246004407 | 2024-05-27T02:47:23.570567
4000 / tcp

-795948505 | 2024-06-05T14:31:24.333412
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

104.236.159.249

Last Seen: 2024-06-10

Tags:

GeneralInformation

Vulnerabilities All ports Port 22 Port 80 Port 443 Latest CVSS

OpenPorts

-1425579093 | 2024-05-30T16:01:36.541497 22 / tcp

OpenSSH8.0

-478033152 | 2024-06-05T14:17:37.436504 80 / tcp

nginx1.14.1

-1345205424 | 2024-06-05T02:32:06.658457 111 / tcp

-1345205424 | 2024-06-08T00:41:10.939324 111 / udp

510274493 | 2024-06-09T15:43:06.606618 443 / tcp

nginx1.14.1

-973911975 | 2024-06-10T04:13:43.809627 3001 / tcp

815199224 | 2024-05-25T10:45:34.425737 3306 / tcp

MySQL

-1246004407 | 2024-05-27T02:47:23.570567 4000 / tcp

-795948505 | 2024-06-05T14:31:24.333412 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

Vulnerabilities

-1425579093 | 2024-05-30T16:01:36.541497
22 / tcp

-478033152 | 2024-06-05T14:17:37.436504
80 / tcp

-1345205424 | 2024-06-05T02:32:06.658457
111 / tcp

-1345205424 | 2024-06-08T00:41:10.939324
111 / udp

510274493 | 2024-06-09T15:43:06.606618
443 / tcp

-973911975 | 2024-06-10T04:13:43.809627
3001 / tcp

815199224 | 2024-05-25T10:45:34.425737
3306 / tcp

-1246004407 | 2024-05-27T02:47:23.570567
4000 / tcp

-795948505 | 2024-06-05T14:31:24.333412
33060 / tcp