GeneralInformation

Hostnames	play10.tikast.com
Domains	tikast.com
Country	France
City	Paris
Organization	Scaleway Dedibox - Paris, France
ISP	SCALEWAY S.A.S.
ASN	AS12876

WebTechnologies

JavaScript libraries

jQuery

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

21 80 443 8000 8001 8005 8010 8013 8036 8037 8038 8052 8053 8056 8058 8060 8069 8083 8088 8090 8102 8123 8126 8140 8180 8200 8333 8334 8403 8405 8406 8417 8423 8446 8800 20000

-15793629 | 2024-04-24T02:56:15.008322

21 / tcp

220-Welcome to cc-ftpd.
220-You are user number 1 of 50 allowed.
220-Local time is now 04:56. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.
530 Login authentication failed
214-The following SITE commands are recognized
 CHMOD
 IDLE
 UTIME
214 cc-ftpd - http://centova.com/
211-Extensions supported:
 EPRT
 IDLE
 MDTM
 SIZE
 MFMT
 REST STREAM
 MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*;
 MLSD
 UTF8
 TVFS
 ESTA
 PASV
 EPSV
 SPSV
 ESTP
211 End.

-1164192648 | 2024-04-21T23:09:40.298127

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Sun, 21 Apr 2024 23:09:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-CC-Cache: u=CacheProvider_file; g=CacheProvider_file
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache

1704378476 | 2024-04-24T06:21:52.467100

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 24 Apr 2024 06:21:52 GMT
Content-Type: text/html
Content-Length: 14
Last-Modified: Tue, 03 Apr 2012 19:11:54 GMT
Connection: keep-alive
ETag: "4f7b4b7a-e"
Expires: Thu, 25 Apr 2024 06:21:52 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:7a:b8:a0:09:5c:ce:0c:c1:fe:32:de:c7:5e:14:9e:45:52
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 28 22:58:31 2024 GMT
            Not After : Jun 26 22:58:30 2024 GMT
        Subject: CN=play10.tikast.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a0:94:75:0c:da:3d:aa:b4:e1:11:2a:f2:cf:c7:
                    f6:94:8f:b3:c3:0d:a0:cf:fa:ec:97:52:0b:12:9b:
                    ab:4c:41:e1:7e:1a:58:b9:cf:a4:14:3f:a2:77:b6:
                    69:18:bc:e7:36:1a:61:9c:41:fe:6a:e1:db:08:86:
                    60:8d:95:74:01:67:a6:be:9e:a7:4e:d9:08:bc:cb:
                    ac:f7:5d:b0:9f:de:2b:01:45:d4:ac:95:45:11:06:
                    3e:23:f2:8d:d2:ca:a8:e2:1c:b1:77:60:7d:aa:b7:
                    82:2e:40:b7:12:3f:16:1a:1d:f9:4e:7c:c3:0b:26:
                    ab:a8:e4:79:d5:10:56:43:b5:09:56:5a:a0:ce:db:
                    a9:40:54:ea:6f:89:dc:0b:59:66:55:84:c8:ca:16:
                    c1:71:97:83:d3:62:35:03:c7:60:4a:83:be:c5:48:
                    f7:1b:f9:9e:1a:1c:f5:84:94:fc:08:ef:d2:8e:48:
                    58:c3:a3:9d:47:0a:9e:69:aa:74:88:f5:35:57:17:
                    71:97:84:ec:25:ff:42:29:18:53:5c:39:73:1a:eb:
                    76:e9:d5:ab:28:4b:ed:26:ca:e2:32:e3:6d:c8:d2:
                    8d:ae:c2:55:25:1c:61:18:5f:97:4b:ca:67:d7:61:
                    7d:a1:c7:97:54:4c:b8:33:19:09:32:4c:d1:53:9e:
                    d5:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                79:AA:5F:E1:5A:DC:35:0D:D0:6C:83:CB:4E:70:A8:3A:64:57:24:25
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:play10.tikast.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 28 23:58:31.708 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D7:09:F9:5A:D9:C4:27:E3:17:87:DA:
                                66:FF:94:93:2E:F2:91:62:5F:C3:89:8E:9D:39:47:6B:
                                96:63:7F:C4:B2:02:20:4C:63:AB:42:4E:15:44:AA:67:
                                0E:43:BE:25:E1:33:D4:21:F8:23:6B:0A:75:10:99:01:
                                6C:BA:5B:42:0B:96:CA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 28 23:58:31.753 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:37:66:36:26:6B:99:90:AB:AB:20:14:0B:
                                1D:C2:E8:8E:6A:B9:02:B3:50:33:C1:B4:CA:E1:F6:4D:
                                AA:59:92:EC:02:21:00:DB:CC:F2:CD:53:DE:E9:9D:39:
                                C6:1B:E4:B7:36:94:A2:8E:DE:E8:CB:97:56:08:CB:C2:
                                CC:44:3F:F0:3B:96:73
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        30:91:41:b1:09:7f:17:d2:1d:d3:a8:bb:c1:7c:86:9c:34:0e:
        8b:8b:4c:04:67:82:96:ff:62:37:6a:76:c9:52:e5:1e:cc:02:
        85:4e:5e:4f:8b:44:9f:42:2c:f2:cf:97:2e:1c:b1:e8:6f:fe:
        bd:94:1b:61:2f:b3:48:74:9a:1d:3e:80:5c:30:5e:c7:0f:fd:
        5b:f2:05:9c:62:e9:76:03:73:49:0e:91:1e:c2:a2:b2:f9:69:
        a3:19:54:18:9a:cd:a1:ea:c7:96:d2:55:2d:82:db:6d:73:05:
        a0:ca:c6:dc:cf:0a:c9:55:9b:9b:0a:1e:71:c4:f3:9a:f3:64:
        30:b0:2f:ad:5a:13:c2:d3:d6:77:61:f2:a3:c2:55:35:19:1f:
        57:32:40:18:e6:5b:26:d3:45:77:b1:c4:71:f9:1c:3e:b1:13:
        64:99:ec:5e:d3:56:9d:aa:3d:71:a4:b1:8b:3d:cd:5a:aa:04:
        25:d7:a9:95:92:ce:19:39:a6:df:81:f9:74:71:fe:68:bc:97:
        e2:a9:ee:be:49:34:98:53:95:25:17:f2:19:5b:aa:d2:91:59:
        7f:bc:58:88:de:35:27:4f:80:db:20:8b:bc:d3:97:83:0e:11:
        fb:d2:f5:97:67:52:7d:63:a3:18:c0:ae:87:c8:77:2c:1b:99:
        99:61:8f:6e

-1675211142 | 2024-04-14T19:54:19.597896

8000 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:2628

1560764355 | 2024-04-09T18:23:48.336504

8005 / tcp

Invalid password

-227835894 | 2024-04-17T18:30:32.519517

8010 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4709

1560764355 | 2024-04-22T14:07:03.655362

8013 / tcp

Invalid password

1560764355 | 2024-04-12T04:34:59.264448

8036 / tcp

Invalid password

55309627 | 2024-04-08T08:29:19.455641

8037 / tcp

HTTP/1.0 200 OK
Server: Icecast 2.4.2
Date: Mon, 08 Apr 2024 08:29:19 GMT
Content-Type: text/xml; charset=UTF-8
Cache-Control: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Content-Length: 2228

1560764355 | 2024-04-19T12:43:23.305305

8052 / tcp

Invalid password

-1148386469 | 2024-04-20T01:30:31.394369

8053 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4572

1560764355 | 2024-03-29T07:57:13.034034

8056 / tcp

Invalid password

-1354853456 | 2024-03-31T07:44:33.770535

8058 / tcp

HTTP/1.0 404 Not found
Content-Type: text/html

-560273844 | 2024-04-09T16:32:58.252928

8060 / tcp

HTTP/1.0 200 OK
Server: Icecast 2.4.2
Date: Tue, 09 Apr 2024 16:32:58 GMT
Content-Type: text/xml; charset=UTF-8
Cache-Control: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Content-Length: 2200

1560764355 | 2024-04-24T01:48:27.546053

8083 / tcp

Invalid password

-88938540 | 2024-04-03T09:03:44.290369

8088 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4705

-1354853456 | 2024-04-20T22:15:07.208930

8090 / tcp

HTTP/1.0 404 Not found
Content-Type: text/html

-1354853456 | 2024-04-12T01:05:57.454970

8102 / tcp

HTTP/1.0 404 Not found
Content-Type: text/html

-1334923981 | 2024-04-24T03:11:03.882566

8123 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4156

1560764355 | 2024-04-17T19:24:08.023451

8126 / tcp

Invalid password

-779819977 | 2024-04-17T16:07:16.025764

8140 / tcp

HTTP/1.0 200 OK
Server: Icecast 2.4.2
Date: Wed, 17 Apr 2024 16:07:15 GMT
Content-Type: text/xml; charset=UTF-8
Cache-Control: no-cache
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Content-Length: 2187

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
  <head>
    <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
    <title>Icecast Streaming Media Server</title>
    <link rel="stylesheet" type="text/css" href="style.css" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0, user-scalable=yes" />
  </head>
  <body><h1 id="header">Icecast2 Status</h1><div id="menu"><ul><li><a href="admin/">Administration</a></li><li><a href="status.xsl">Server Status</a></li><li><a href="server_version.xsl">Version</a></li></ul></div>
	<!-- WARNING:
	 DO NOT ATTEMPT TO PARSE ICECAST HTML OUTPUT!
	 The web interface may change completely between releases.
	 If you have a need for automatic processing of server data,
	 please read the appropriate documentation. Latest docs:
	 http://icecast.org/docs/icecast-latest/icecast2_stats.html
	-->
	<div class="roundbox"><div class="mounthead"><h3 class="mount">Mount Point /stream</h3><div class="right"><ul class="mountlist"><li><a class="play" href="/stream.m3u">M3U</a></li><li><a class="play" href="/stream.xspf">XSPF</a></li></ul></div></div><div class="mountcont"><table class="yellowkeys"><tbody><tr><td>Stream Name:</td><td>La Jefa el Palma</td></tr><tr><td>Stream Description:</td><td>La Jefa el Palmar</td></tr><tr><td>Content Type:</td><td>audio/aac</td></tr><tr><td>Stream started:</td><td class="streamstats">Wed, 17 Apr 2024 12:33:52 +0200</td></tr><tr><td>Bitrate:</td><td class="streamstats">32 </td></tr><tr><td>Listeners (current):</td><td class="streamstats">15</td></tr><tr><td>Listeners (peak):</td><td class="streamstats">27</td></tr><tr><td>Genre:</td><td class="streamstats">Various</td></tr><tr><td>Stream URL:</td><td class="streamstats"><a href="http://www.orban.com ">http://www.orban.com </a></td></tr><tr><td>Currently playing:</td><td class="streamstats">La Jefa el Palmar</td></tr></tbody></table></div></div><div id="footer">
		Support icecast development at <a href="http://www.icecast.org">www.icecast.org</a></div></body>
</html>

-197428191 | 2024-04-09T14:51:37.234367

8180 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4309

1560764355 | 2024-04-19T20:59:07.662507

8200 / tcp

Invalid password

1560764355 | 2024-04-17T12:35:21.278505

8333 / tcp

Invalid password

-760520644 | 2024-04-13T20:51:30.559396

8334 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:2150

-328587039 | 2024-04-23T06:39:01.511514

8403 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4252

-1354853456 | 2024-04-11T01:04:38.626976

8405 / tcp

HTTP/1.0 404 Not found
Content-Type: text/html

1560764355 | 2024-04-01T21:47:24.713832

8406 / tcp

Invalid password

381500736 | 2024-04-03T11:30:27.145314

8417 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4690

-1354853456 | 2024-03-28T05:20:27.705503

8423 / tcp

HTTP/1.0 404 Not found
Content-Type: text/html

-79469868 | 2024-04-13T04:44:42.381338

8446 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4537

-1232201081 | 2024-04-05T08:16:35.467359

8800 / tcp

HTTP/1.1 200 OK
Content-Type:text/html;charset=utf-8
Content-Length:4587

-903485400 | 2024-04-08T09:42:04.459688

20000 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.20.1
Date: Mon, 08 Apr 2024 09:42:04 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.20.1</center>
</body>
</html>

163.172.198.16

Last Seen: 2024-04-24

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-15793629 | 2024-04-24T02:56:15.008322 21 / tcp

-1164192648 | 2024-04-21T23:09:40.298127 80 / tcp

nginx1.20.1

1704378476 | 2024-04-24T06:21:52.467100 443 / tcp

nginx1.20.1

-1675211142 | 2024-04-14T19:54:19.597896 8000 / tcp

1560764355 | 2024-04-09T18:23:48.336504 8005 / tcp

-227835894 | 2024-04-17T18:30:32.519517 8010 / tcp

1560764355 | 2024-04-22T14:07:03.655362 8013 / tcp

1560764355 | 2024-04-12T04:34:59.264448 8036 / tcp

55309627 | 2024-04-08T08:29:19.455641 8037 / tcp

1560764355 | 2024-04-19T12:43:23.305305 8052 / tcp

-1148386469 | 2024-04-20T01:30:31.394369 8053 / tcp

1560764355 | 2024-03-29T07:57:13.034034 8056 / tcp

-1354853456 | 2024-03-31T07:44:33.770535 8058 / tcp

-560273844 | 2024-04-09T16:32:58.252928 8060 / tcp

1560764355 | 2024-04-24T01:48:27.546053 8083 / tcp

-88938540 | 2024-04-03T09:03:44.290369 8088 / tcp

-1354853456 | 2024-04-20T22:15:07.208930 8090 / tcp

-1354853456 | 2024-04-12T01:05:57.454970 8102 / tcp

-1334923981 | 2024-04-24T03:11:03.882566 8123 / tcp

1560764355 | 2024-04-17T19:24:08.023451 8126 / tcp

-779819977 | 2024-04-17T16:07:16.025764 8140 / tcp

-197428191 | 2024-04-09T14:51:37.234367 8180 / tcp

1560764355 | 2024-04-19T20:59:07.662507 8200 / tcp

1560764355 | 2024-04-17T12:35:21.278505 8333 / tcp

-760520644 | 2024-04-13T20:51:30.559396 8334 / tcp

-328587039 | 2024-04-23T06:39:01.511514 8403 / tcp

-1354853456 | 2024-04-11T01:04:38.626976 8405 / tcp

1560764355 | 2024-04-01T21:47:24.713832 8406 / tcp

381500736 | 2024-04-03T11:30:27.145314 8417 / tcp

-1354853456 | 2024-03-28T05:20:27.705503 8423 / tcp

-79469868 | 2024-04-13T04:44:42.381338 8446 / tcp

-1232201081 | 2024-04-05T08:16:35.467359 8800 / tcp

-903485400 | 2024-04-08T09:42:04.459688 20000 / tcp

nginx1.20.1

Products

Pricing

Contact Us

-15793629 | 2024-04-24T02:56:15.008322
21 / tcp

-1164192648 | 2024-04-21T23:09:40.298127
80 / tcp

1704378476 | 2024-04-24T06:21:52.467100
443 / tcp

-1675211142 | 2024-04-14T19:54:19.597896
8000 / tcp

1560764355 | 2024-04-09T18:23:48.336504
8005 / tcp

-227835894 | 2024-04-17T18:30:32.519517
8010 / tcp

1560764355 | 2024-04-22T14:07:03.655362
8013 / tcp

1560764355 | 2024-04-12T04:34:59.264448
8036 / tcp

55309627 | 2024-04-08T08:29:19.455641
8037 / tcp

1560764355 | 2024-04-19T12:43:23.305305
8052 / tcp

-1148386469 | 2024-04-20T01:30:31.394369
8053 / tcp

1560764355 | 2024-03-29T07:57:13.034034
8056 / tcp

-1354853456 | 2024-03-31T07:44:33.770535
8058 / tcp

-560273844 | 2024-04-09T16:32:58.252928
8060 / tcp

1560764355 | 2024-04-24T01:48:27.546053
8083 / tcp

-88938540 | 2024-04-03T09:03:44.290369
8088 / tcp

-1354853456 | 2024-04-20T22:15:07.208930
8090 / tcp

-1354853456 | 2024-04-12T01:05:57.454970
8102 / tcp

-1334923981 | 2024-04-24T03:11:03.882566
8123 / tcp

1560764355 | 2024-04-17T19:24:08.023451
8126 / tcp

-779819977 | 2024-04-17T16:07:16.025764
8140 / tcp

-197428191 | 2024-04-09T14:51:37.234367
8180 / tcp

1560764355 | 2024-04-19T20:59:07.662507
8200 / tcp

1560764355 | 2024-04-17T12:35:21.278505
8333 / tcp

-760520644 | 2024-04-13T20:51:30.559396
8334 / tcp

-328587039 | 2024-04-23T06:39:01.511514
8403 / tcp

-1354853456 | 2024-04-11T01:04:38.626976
8405 / tcp

1560764355 | 2024-04-01T21:47:24.713832
8406 / tcp

381500736 | 2024-04-03T11:30:27.145314
8417 / tcp

-1354853456 | 2024-03-28T05:20:27.705503
8423 / tcp

-79469868 | 2024-04-13T04:44:42.381338
8446 / tcp

-1232201081 | 2024-04-05T08:16:35.467359
8800 / tcp

-903485400 | 2024-04-08T09:42:04.459688
20000 / tcp