GeneralInformation

Hostnames	sxpls.eu static.113.79.181.135.clients.your-server.de
Domains	sxpls.eu your-server.de
Country	Finland
City	Helsinki
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

JavaScript frameworks

Prototype

RequireJS

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 8443 8880

-936214096 | 2024-04-24T06:14:45.843782

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBD51DAtfUmv+yd3fs90H1DnU
8bvbzvU7I3IrKlkW9gx6fkrQkGJCeF2TMUn+70bejpV+ZWBsfUUBP3UhcNsUUiE=
Fingerprint: 3b:59:b1:49:1c:af:35:98:c0:2e:36:ba:91:4f:70:6c

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1410093119 | 2024-04-22T10:59:05.936240

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 10:59:04 GMT
Content-Type: text/html
Content-Length: 10671
Last-Modified: Wed, 06 Mar 2024 18:20:59 GMT
Connection: keep-alive
ETag: "65e8b40b-29af"
Accept-Ranges: bytes

-770651211 | 2024-04-13T16:46:06.481135

443 / tcp

HTTP/1.1 401 Unauthorized
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 13 Apr 2024 16:46:06 GMT
Content-Type: text/html
Content-Length: 590
Connection: keep-alive
WWW-Authenticate: Basic realm="Administrator’s Area"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:0f:89:bd:ee:0d:51:ca:6f:7e:fc:32:b6:52:7d:6f:d1:dc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  8 09:28:12 2024 GMT
            Not After : Jun  6 09:28:11 2024 GMT
        Subject: CN=sxpls.eu
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c7:8a:b7:a9:dc:a5:97:d5:c9:86:d2:0e:e8:fe:
                    ae:01:e7:42:ee:8d:56:0c:14:e3:85:d8:bb:13:e8:
                    a9:11:33:cf:51:50:90:37:cf:75:e1:7d:e6:89:cb:
                    a9:c7:01:29:dc:d1:42:98:4d:45:76:1b:8a:25:37:
                    0c:d0:18:ae:2f:92:e6:c7:63:d6:0a:b9:05:4e:38:
                    d8:58:21:ae:e0:58:bb:8f:e7:95:ba:04:ac:9c:5b:
                    65:d5:28:ad:12:e8:65:7f:02:94:47:00:a5:a4:fb:
                    44:5f:a4:9f:99:95:a9:e0:38:6e:eb:2d:37:32:7c:
                    e2:1d:77:4a:f1:97:ab:da:61:da:16:39:63:66:01:
                    1b:37:85:b6:ed:88:65:b3:ed:1c:1f:4f:bc:fa:3a:
                    61:32:b3:87:02:8d:1b:41:b1:3a:f2:bb:f0:12:68:
                    f7:86:0a:cf:f7:d5:02:4a:20:9a:b1:0a:35:e9:0f:
                    5f:df:34:0a:78:e8:c6:ee:22:52:78:04:1b:34:1f:
                    3d:9f:d2:7a:6e:b3:44:90:19:9a:db:ab:b2:49:b6:
                    01:b1:21:64:6f:a2:e8:46:e5:a8:90:23:d3:43:5c:
                    46:cc:81:0c:8f:a4:7b:54:5d:dd:4e:00:20:c7:78:
                    4f:ad:1a:a6:93:2a:bc:2f:70:6c:ba:4c:a8:6d:28:
                    13:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                98:74:55:EE:4D:7C:7D:3C:00:30:3B:4C:80:B2:3A:47:28:3D:3A:02
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:sxpls.eu
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  8 10:28:12.349 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:3C:4B:F0:14:6B:03:4E:AC:EA:3A:9A:55:
                                12:2F:25:AB:27:82:27:75:D2:72:2C:94:7C:A9:83:E3:
                                E2:94:05:09:02:20:24:79:B6:F8:7D:9E:C3:3B:67:18:
                                4D:35:AB:BE:23:34:96:75:A9:91:E5:E6:20:E4:F2:38:
                                1C:E0:D0:52:2E:3B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Mar  8 10:28:12.373 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:94:48:25:68:10:6A:95:D5:BF:AC:4F:
                                C2:C5:A6:FA:8A:05:71:DC:C5:06:F2:91:11:48:43:C8:
                                BC:AD:46:0F:82:02:21:00:AC:84:05:35:F2:CE:DE:81:
                                FB:7D:33:68:F6:3D:9C:49:B7:D2:B5:E0:30:F1:7B:4D:
                                D2:C8:01:FC:B9:C7:D7:0B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7b:46:3c:86:7c:ac:df:c0:99:e1:00:fa:a2:2f:b7:0e:17:86:
        ad:ce:dc:da:65:37:b8:17:99:a9:6c:15:20:d0:f4:93:4e:ba:
        59:8f:59:86:d3:96:50:57:40:42:f0:22:ce:39:75:fb:48:ea:
        0c:fb:8f:64:75:5c:e6:04:42:f6:e0:3a:fc:ed:65:50:3d:a1:
        d1:c9:59:1b:9f:0c:ab:c8:e1:fb:8a:39:74:02:cd:92:36:e8:
        cf:d1:81:75:67:bb:1d:c9:42:24:92:da:41:cb:f7:74:7d:46:
        24:96:e4:9b:33:ae:60:00:d9:b2:37:55:0b:13:cd:66:ba:89:
        d1:75:91:1a:f9:66:ba:29:6d:73:72:26:19:52:eb:84:b7:63:
        62:84:7c:41:c5:21:e1:a4:a9:0f:fb:36:98:fc:f1:ea:08:a0:
        86:15:0a:11:a8:42:95:8b:32:e9:3c:11:84:54:c4:44:47:e1:
        b3:74:e9:86:bc:d5:10:36:2f:d2:7c:b1:84:70:c7:76:64:b9:
        db:73:ad:41:3f:a3:3f:a6:69:44:7c:bb:ff:20:04:45:70:f4:
        b8:ca:09:5a:6b:2b:d3:2a:20:d4:72:31:66:b8:de:d0:a6:86:
        6a:a2:f1:20:0a:2f:35:e6:d5:e0:e9:f2:9b:f5:a9:70:3a:80:
        1d:03:db:42

-668695510 | 2024-04-02T18:17:12.583212

8443 / tcp

HTTP/1.1 200 OK
Server: sw-cp-server
Date: Tue, 02 Apr 2024 18:17:12 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Tue, 02 Apr 2024 18:17:12 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1709749268 (0x65e8b414)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
        Validity
            Not Before: Mar  6 18:21:08 2024 GMT
            Not After : Mar  6 18:21:08 2025 GMT
        Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:91:d4:2c:20:5c:83:93:cb:82:8f:4f:76:e0:2d:
                    dc:a2:d8:e6:26:aa:d1:41:51:ba:fc:be:be:51:13:
                    a2:2e:54:6b:13:ab:59:03:44:8e:9e:cf:bd:d8:fe:
                    3c:67:25:02:c8:b1:fc:c5:82:0f:de:98:4a:32:57:
                    6a:db:dd:ff:f4:3c:f9:9a:24:3c:1b:aa:55:98:d5:
                    3d:72:39:e5:fe:b5:4a:0a:ae:48:13:7a:48:e5:c9:
                    58:c0:c6:18:3f:c2:d9:9e:a2:cf:da:11:fc:ac:50:
                    b5:1e:be:89:87:86:44:3d:2f:75:f2:c5:73:b5:25:
                    2a:e9:99:66:3f:5d:72:5f:7c:7b:7f:2e:41:03:84:
                    29:f9:45:cb:fc:d0:31:54:83:3c:cd:a8:38:8f:ee:
                    ab:a8:16:86:73:76:03:3d:52:d3:59:e6:44:83:27:
                    b6:28:79:78:61:e6:ad:63:ea:f1:37:be:a8:f2:8a:
                    a5:c7:54:e1:da:88:af:ba:53:96:45:87:2e:da:5b:
                    cf:af:66:df:1e:33:78:33:ea:e2:f3:6f:32:d4:fe:
                    14:39:ef:35:47:eb:ab:2d:41:97:e0:cd:57:ec:13:
                    3e:cb:a2:33:3f:e3:19:27:e5:c6:c9:eb:8f:3c:fa:
                    e6:e9:32:dc:3d:68:8c:43:32:67:2d:6e:cd:27:90:
                    d5:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Subject Key Identifier: 
                0D:6B:48:62:AA:DA:CB:F2:EA:EB:5C:2E:BB:60:AD:F9:54:CF:4E:DC
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        8c:18:1b:38:ea:6b:c6:4b:01:08:dc:b4:82:76:05:06:71:dd:
        39:4c:8e:c4:d9:92:4e:ad:0c:e8:be:5c:97:9c:26:39:0d:50:
        24:94:2c:27:f7:71:be:16:4d:44:49:e6:8b:ff:72:42:1d:51:
        89:ab:f1:7a:99:a8:86:4f:31:fe:5c:72:07:77:be:e7:c8:c5:
        fd:88:96:f3:29:76:ed:48:a8:22:11:5d:e1:05:96:26:8e:0e:
        f9:a0:20:14:6d:dd:4d:e0:59:cb:d5:72:44:1a:e6:07:f0:ea:
        63:96:d7:68:c8:64:6d:e6:b1:2c:69:e2:a1:b4:02:21:14:d1:
        78:82:3b:1c:0b:f9:b8:f6:02:ef:ac:f2:46:82:e9:92:44:79:
        37:d5:ac:b5:3a:73:b2:cd:96:d6:60:53:f5:d1:3b:ed:07:18:
        47:a1:eb:f6:70:11:29:de:89:1b:91:a0:e1:6d:29:74:17:06:
        54:6c:70:d2:db:8d:c9:64:44:64:66:5a:de:9b:4f:a0:d9:cb:
        5c:05:72:46:f1:71:f7:a4:bf:fc:9f:d8:2d:01:fd:23:7a:8e:
        d2:3d:25:80:68:0c:6f:e7:3a:a5:70:90:03:dd:dc:fa:f4:9f:
        22:27:ca:46:4d:e2:0d:b7:d1:df:1b:18:dc:4f:6b:52:86:05:
        43:29:8c:6c

-2145072126 | 2024-04-24T02:05:01.793274

8880 / tcp

HTTP/1.1 303 See Other
Server: sw-cp-server
Date: Wed, 24 Apr 2024 02:05:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Wed, 24 Apr 2024 02:05:01 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: http://135.181.79.113/login.php
X-Content-Type-Options: nosniff

0

135.181.79.113

Last Seen: 2024-04-24

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-936214096 | 2024-04-24T06:14:45.843782
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1410093119 | 2024-04-22T10:59:05.936240
80 / tcp

nginx1.18.0

-770651211 | 2024-04-13T16:46:06.481135
443 / tcp

nginx1.18.0

-668695510 | 2024-04-02T18:17:12.583212
8443 / tcp

-2145072126 | 2024-04-24T02:05:01.793274
8880 / tcp

Products

Pricing

Contact Us

135.181.79.113

Last Seen: 2024-04-24

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-936214096 | 2024-04-24T06:14:45.843782 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

1410093119 | 2024-04-22T10:59:05.936240 80 / tcp

nginx1.18.0

-770651211 | 2024-04-13T16:46:06.481135 443 / tcp

nginx1.18.0

-668695510 | 2024-04-02T18:17:12.583212 8443 / tcp

-2145072126 | 2024-04-24T02:05:01.793274 8880 / tcp

Products

Pricing

Contact Us

-936214096 | 2024-04-24T06:14:45.843782
22 / tcp

1410093119 | 2024-04-22T10:59:05.936240
80 / tcp

-770651211 | 2024-04-13T16:46:06.481135
443 / tcp

-668695510 | 2024-04-02T18:17:12.583212
8443 / tcp

-2145072126 | 2024-04-24T02:05:01.793274
8880 / tcp