GeneralInformation

Hostnames	hkhdc.laws.ms
Domains	laws.ms
Country	Hong Kong
City	Hong Kong
ISP	Cloudie Limited
ASN	AS55933

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-37454	The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.
CVE-2022-31629	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications.
CVE-2022-31628	In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2017-8923	7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

80 82 443 4443 5050 8040 8080 8081 8082 8098 8443 8888 8899 9000 9080 9663

-268332889 | 2024-05-16T07:51:04.350794

80 / tcp

HTTP/1.1 200 OK
Date: Thu, 16 May 2024 07:51:04 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

-1717394886 | 2024-04-30T21:02:56.269765

82 / tcp

HTTP/1.1 400 Bad Request
Date: Tue, 30 Apr 2024 21:02:56 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: qq.com

-268332889 | 2024-05-16T19:17:59.011887

443 / tcp

HTTP/1.1 200 OK
Date: Thu, 16 May 2024 19:17:58 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            f1:4b:4b:c3:b2:c3:8e:58
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
        Validity
            Not Before: Feb 23 06:34:58 2020 GMT
            Not After : Feb 22 06:34:58 2023 GMT
        Subject: C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e4:fd:10:38:07:45:6f:62:75:2a:5f:19:a2:59:
                    82:69:3c:79:50:71:b4:5b:ba:1f:38:35:97:29:dd:
                    32:86:07:e1:2c:ac:18:e1:e0:47:52:5b:2c:23:47:
                    2a:6f:6c:ca:33:4e:39:ea:0b:d2:7a:b7:c7:51:b1:
                    25:1a:cb:35:a9:d0:d2:b3:3d:66:c8:25:9f:e6:ec:
                    8a:70:45:98:90:07:43:fd:69:c6:2d:c5:e1:b0:39:
                    b5:64:d2:4b:1e:0c:75:cb:45:a9:d1:82:da:cd:d9:
                    09:c1:ba:65:5e:46:ba:22:dc:55:55:cb:c0:16:53:
                    1c:6c:29:cb:50:89:a0:a0:19:a2:ca:30:b5:07:d0:
                    91:02:64:44:17:a4:05:fb:18:ae:a6:d7:1f:cd:37:
                    c9:d2:cb:9e:ea:0d:1b:41:8c:50:f9:45:21:7a:84:
                    06:51:4a:dc:51:5a:2e:e5:da:6f:50:c7:0f:68:a9:
                    ee:75:4d:6f:fe:b2:9a:20:c7:f7:a8:a5:e8:e2:36:
                    91:c2:79:76:26:9a:14:69:31:be:82:6a:c7:ff:d2:
                    7a:65:40:5c:58:77:78:f6:b3:ec:a3:04:4e:b6:24:
                    78:af:24:55:5c:32:e2:85:57:03:61:50:09:b2:d5:
                    5c:78:ea:78:32:b8:2b:d4:b3:6b:0c:2a:46:fa:b0:
                    f6:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                6A:62:07:CD:33:F2:F8:8D:F0:60:41:34:4B:5D:23:72:EC:0A:80:4E
            X509v3 Authority Key Identifier: 
                6A:62:07:CD:33:F2:F8:8D:F0:60:41:34:4B:5D:23:72:EC:0A:80:4E
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        12:38:3e:ba:5b:8b:c9:d8:ea:f4:7c:09:c1:87:e3:b2:54:5a:
        ea:fc:6c:e2:b8:dc:41:e7:4f:c7:a3:eb:af:d6:67:cc:be:99:
        41:b4:d7:dc:db:9b:7a:64:e7:90:dd:ab:67:14:fa:9d:e6:0f:
        87:db:93:91:26:44:5c:16:06:83:6c:d9:6f:e1:a3:8c:d6:d5:
        60:7d:ce:51:f3:f3:6e:5f:e6:f8:8a:25:5f:f4:90:ce:76:71:
        87:e4:34:b8:33:77:74:87:57:ba:df:10:64:13:f9:6a:89:6e:
        86:b5:98:61:0a:2c:9b:54:0e:55:5d:90:c0:75:81:49:be:2e:
        28:81:9c:e8:7c:1b:cb:cf:61:9d:ce:8b:cd:13:ff:bf:b2:5d:
        ec:93:cb:e4:7c:f3:3a:df:12:01:3f:b8:0a:ed:76:17:6b:06:
        78:16:f2:f0:b8:4a:c1:bd:f6:67:d0:da:36:75:db:23:d0:78:
        53:3b:1f:e1:da:8d:6a:38:c9:2d:2c:bc:cf:f5:34:48:83:35:
        79:36:e3:a0:d6:ab:ee:cb:25:2a:33:25:6e:cc:50:a9:96:42:
        1d:df:be:fd:5b:72:d6:92:42:43:90:40:eb:68:03:0d:11:aa:
        95:32:0b:23:a3:8c:21:c4:56:66:dc:56:78:07:c7:a4:df:b9:
        d2:90:ba:8e

-2082051714 | 2024-05-12T23:33:27.685327

4443 / tcp

HTTP/1.1 200 OK
Date: Sun, 12 May 2024 23:33:27 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

f15

<!DOCTYPE html>
<!--[if lt IE 7]> <html class="no-js ie6 oldie" lang="en-US"> <![endif]-->
<!--[if IE 7]>    <html class="no-js ie7 oldie" lang="en-US"> <![endif]-->
<!--[if IE 8]>    <html class="no-js ie8 oldie" lang="en-US"> <![endif]-->
<!--[if gt IE 8]><!--> <html class="no-js" lang="en-US"> <!--<![endif]-->
<head>
<title>请使用域名访问</title>
<meta charset="UTF-8" />
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<meta http-equiv="X-UA-Compatible" content="IE=Edge,chrome=1" />
<meta name="robots" content="noindex, nofollow" />
<meta name="viewport" content="width=device-width,initial-scale=1" />
<style>
*, body, html {
    margin: 0;
    padding: 0;
}

body, html {
    --text-opacity: 1;
    color: #404040;
    color: rgba(64,64,64,var(--text-opacity));
    -webkit-font-smoothing: antialiased;
    -moz-osx-font-smoothing: grayscale;
    font-family: system-ui,-apple-system,BlinkMacSystemFont,Segoe UI,Roboto,Helvetica Neue,Arial,Noto Sans,sans-serif,Apple Color Emoji,Segoe UI Emoji,Segoe UI Symbol,Noto Color Emoji;
    font-size: 16px;
}
* {
    box-sizing: border-box;
}
html[Attributes Style] {
    -webkit-locale: "en-US";
}
.p-0 {
    padding: 0;
}


.w-240 {
    width: 60rem;
}

.antialiased {

-268332889 | 2024-05-15T01:39:22.741213

5050 / tcp

HTTP/1.1 200 OK
Date: Wed, 15 May 2024 01:39:22 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

-268332889 | 2024-05-06T20:24:34.331166

8080 / tcp

HTTP/1.1 200 OK
Date: Mon, 06 May 2024 20:24:15 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

1741195420 | 2024-05-13T18:56:57.588008

8081 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Mon, 13 May 2024 18:56:57 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Set-Cookie: tbdf_language=zh-cn; path=/

0

1249553080 | 2024-05-02T22:23:13.731616

8082 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 02 May 2024 22:23:13 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Set-Cookie: qjhf_language=zh-cn; path=/

-242314034 | 2024-04-19T01:22:50.331376

8098 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 19 Apr 2024 01:22:50 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Set-Cookie: szrmb_language=zh-cn; path=/

-268332889 | 2024-05-07T03:51:09.951232

8443 / tcp

HTTP/1.1 200 OK
Date: Tue, 07 May 2024 03:51:09 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            f1:4b:4b:c3:b2:c3:8e:58
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
        Validity
            Not Before: Feb 23 06:34:58 2020 GMT
            Not After : Feb 22 06:34:58 2023 GMT
        Subject: C=AU, ST=Some-State, O=Internet Widgits Pty Ltd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e4:fd:10:38:07:45:6f:62:75:2a:5f:19:a2:59:
                    82:69:3c:79:50:71:b4:5b:ba:1f:38:35:97:29:dd:
                    32:86:07:e1:2c:ac:18:e1:e0:47:52:5b:2c:23:47:
                    2a:6f:6c:ca:33:4e:39:ea:0b:d2:7a:b7:c7:51:b1:
                    25:1a:cb:35:a9:d0:d2:b3:3d:66:c8:25:9f:e6:ec:
                    8a:70:45:98:90:07:43:fd:69:c6:2d:c5:e1:b0:39:
                    b5:64:d2:4b:1e:0c:75:cb:45:a9:d1:82:da:cd:d9:
                    09:c1:ba:65:5e:46:ba:22:dc:55:55:cb:c0:16:53:
                    1c:6c:29:cb:50:89:a0:a0:19:a2:ca:30:b5:07:d0:
                    91:02:64:44:17:a4:05:fb:18:ae:a6:d7:1f:cd:37:
                    c9:d2:cb:9e:ea:0d:1b:41:8c:50:f9:45:21:7a:84:
                    06:51:4a:dc:51:5a:2e:e5:da:6f:50:c7:0f:68:a9:
                    ee:75:4d:6f:fe:b2:9a:20:c7:f7:a8:a5:e8:e2:36:
                    91:c2:79:76:26:9a:14:69:31:be:82:6a:c7:ff:d2:
                    7a:65:40:5c:58:77:78:f6:b3:ec:a3:04:4e:b6:24:
                    78:af:24:55:5c:32:e2:85:57:03:61:50:09:b2:d5:
                    5c:78:ea:78:32:b8:2b:d4:b3:6b:0c:2a:46:fa:b0:
                    f6:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                6A:62:07:CD:33:F2:F8:8D:F0:60:41:34:4B:5D:23:72:EC:0A:80:4E
            X509v3 Authority Key Identifier: 
                6A:62:07:CD:33:F2:F8:8D:F0:60:41:34:4B:5D:23:72:EC:0A:80:4E
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        12:38:3e:ba:5b:8b:c9:d8:ea:f4:7c:09:c1:87:e3:b2:54:5a:
        ea:fc:6c:e2:b8:dc:41:e7:4f:c7:a3:eb:af:d6:67:cc:be:99:
        41:b4:d7:dc:db:9b:7a:64:e7:90:dd:ab:67:14:fa:9d:e6:0f:
        87:db:93:91:26:44:5c:16:06:83:6c:d9:6f:e1:a3:8c:d6:d5:
        60:7d:ce:51:f3:f3:6e:5f:e6:f8:8a:25:5f:f4:90:ce:76:71:
        87:e4:34:b8:33:77:74:87:57:ba:df:10:64:13:f9:6a:89:6e:
        86:b5:98:61:0a:2c:9b:54:0e:55:5d:90:c0:75:81:49:be:2e:
        28:81:9c:e8:7c:1b:cb:cf:61:9d:ce:8b:cd:13:ff:bf:b2:5d:
        ec:93:cb:e4:7c:f3:3a:df:12:01:3f:b8:0a:ed:76:17:6b:06:
        78:16:f2:f0:b8:4a:c1:bd:f6:67:d0:da:36:75:db:23:d0:78:
        53:3b:1f:e1:da:8d:6a:38:c9:2d:2c:bc:cf:f5:34:48:83:35:
        79:36:e3:a0:d6:ab:ee:cb:25:2a:33:25:6e:cc:50:a9:96:42:
        1d:df:be:fd:5b:72:d6:92:42:43:90:40:eb:68:03:0d:11:aa:
        95:32:0b:23:a3:8c:21:c4:56:66:dc:56:78:07:c7:a4:df:b9:
        d2:90:ba:8e

-1717394886 | 2024-05-08T04:40:55.339676

8888 / tcp

HTTP/1.1 400 Bad Request
Date: Wed, 08 May 2024 04:40:55 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: qq.com

-1717394886 | 2024-04-21T08:55:23.952955

8899 / tcp

HTTP/1.1 400 Bad Request
Date: Sun, 21 Apr 2024 08:55:23 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: close
Server: qq.com

-268332889 | 2024-05-16T12:52:53.315994

9000 / tcp

HTTP/1.1 200 OK
Date: Thu, 16 May 2024 12:52:53 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

-268332889 | 2024-05-13T18:30:52.168206

9080 / tcp

HTTP/1.1 200 OK
Date: Mon, 13 May 2024 18:30:52 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

1359264210 | 2024-04-20T22:48:31.810655

9663 / tcp

HTTP/1.1 200 OK
Date: Sat, 20 Apr 2024 22:48:31 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: qq.com

123.108.109.26

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-268332889 | 2024-05-16T07:51:04.350794
80 / tcp

-1717394886 | 2024-04-30T21:02:56.269765
82 / tcp

-268332889 | 2024-05-16T19:17:59.011887
443 / tcp

-2082051714 | 2024-05-12T23:33:27.685327
4443 / tcp

-268332889 | 2024-05-15T01:39:22.741213
5050 / tcp

-268332889 | 2024-05-06T20:24:34.331166
8080 / tcp

1741195420 | 2024-05-13T18:56:57.588008
8081 / tcp

nginx1.20.1

1249553080 | 2024-05-02T22:23:13.731616
8082 / tcp

nginx1.20.1

-242314034 | 2024-04-19T01:22:50.331376
8098 / tcp

nginx1.20.1

-268332889 | 2024-05-07T03:51:09.951232
8443 / tcp

-1717394886 | 2024-05-08T04:40:55.339676
8888 / tcp

-1717394886 | 2024-04-21T08:55:23.952955
8899 / tcp

-268332889 | 2024-05-16T12:52:53.315994
9000 / tcp

-268332889 | 2024-05-13T18:30:52.168206
9080 / tcp

1359264210 | 2024-04-20T22:48:31.810655
9663 / tcp

Products

Pricing

Contact Us

123.108.109.26

Last Seen: 2024-05-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-268332889 | 2024-05-16T07:51:04.350794 80 / tcp

-1717394886 | 2024-04-30T21:02:56.269765 82 / tcp

-268332889 | 2024-05-16T19:17:59.011887 443 / tcp

-2082051714 | 2024-05-12T23:33:27.685327 4443 / tcp

-268332889 | 2024-05-15T01:39:22.741213 5050 / tcp

-268332889 | 2024-05-06T20:24:34.331166 8080 / tcp

1741195420 | 2024-05-13T18:56:57.588008 8081 / tcp

nginx1.20.1

1249553080 | 2024-05-02T22:23:13.731616 8082 / tcp

nginx1.20.1

-242314034 | 2024-04-19T01:22:50.331376 8098 / tcp

nginx1.20.1

-268332889 | 2024-05-07T03:51:09.951232 8443 / tcp

-1717394886 | 2024-05-08T04:40:55.339676 8888 / tcp

-1717394886 | 2024-04-21T08:55:23.952955 8899 / tcp

-268332889 | 2024-05-16T12:52:53.315994 9000 / tcp

-268332889 | 2024-05-13T18:30:52.168206 9080 / tcp

1359264210 | 2024-04-20T22:48:31.810655 9663 / tcp

Products

Pricing

Contact Us

-268332889 | 2024-05-16T07:51:04.350794
80 / tcp

-1717394886 | 2024-04-30T21:02:56.269765
82 / tcp

-268332889 | 2024-05-16T19:17:59.011887
443 / tcp

-2082051714 | 2024-05-12T23:33:27.685327
4443 / tcp

-268332889 | 2024-05-15T01:39:22.741213
5050 / tcp

-268332889 | 2024-05-06T20:24:34.331166
8080 / tcp

1741195420 | 2024-05-13T18:56:57.588008
8081 / tcp

1249553080 | 2024-05-02T22:23:13.731616
8082 / tcp

-242314034 | 2024-04-19T01:22:50.331376
8098 / tcp

-268332889 | 2024-05-07T03:51:09.951232
8443 / tcp

-1717394886 | 2024-05-08T04:40:55.339676
8888 / tcp

-1717394886 | 2024-04-21T08:55:23.952955
8899 / tcp

-268332889 | 2024-05-16T12:52:53.315994
9000 / tcp

-268332889 | 2024-05-13T18:30:52.168206
9080 / tcp

1359264210 | 2024-04-20T22:48:31.810655
9663 / tcp