GeneralInformation

Hostnames	1doklad.ru www.1doklad.ru
Domains	1doklad.ru
Country	Russian Federation
City	Saint Petersburg
Organization	Selectel Network
ISP	OOO "Network of data-centers "Selectel"
ASN	AS49505
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 123 443

-1392203225 | 2024-05-15T01:33:15.067961

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDVpYCt3SejFOSY/NjC9YroPvgPMbN/WF4Dt/BagXSPoKOW
QdlT6xvqDklo+MsBJ4Ik7DGSIhTnroRqeZIsLlo+pPvi/UDVcmPeQ/WlfOEUuakZmXmh/E558n59
/wWkghPr+ejdsVj05hPukehXfpz4Y8EGpPlIp64JqRbvOUOVe4gW98dTx6o5ke5RIiGp12j8BjNy
C+fdeMqnZoTobOlX6dDnR6KxcjyGan1/VR+F2eyLdfZgzPSsFHASTer4nCco73uToyLpTuk2vHiL
Fx9Cu4Lv8OSy0ZluluIBRsGWqp8gCb/gu6/Xp2yjSvbEFzLVWFmIeFDwhmTJMJ4EdTiDXgYKJ/9c
e5uQ7Ew8EkbdOyn1tXDF3kt7rVW00fDTmuCIuGKn+KiVe1Z6ZRke+vq0WdvK9sIBbAWKaxjjpBYH
6IwZF86f4M1omkHnMGOwL5bIINHKmsM+qIU5BukEjrAWXafpKjrn/ACZ9EEl8+hhsttV+3rf7UuL
J/vaIImgh5c=
Fingerprint: 47:fa:dd:bf:87:01:7f:96:27:1e:e3:bc:00:7c:cf:c2

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-12T07:15:06.281480

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 12 May 2024 07:15:05 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://alpha-alpha.ru

-680419641 | 2024-05-02T20:41:49.764519

123 / udp

NTP
protocolversion: 3
stratum: 3
leap: 0
precision: -24
rootdelay: 0.0173492431641
rootdisp: 219.672119141
refid: 3160215571
reftime: 3909027879.26
poll: 3

589765266 | 2024-05-10T01:53:02.581380

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 10 May 2024 01:53:02 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://alpha-alpha.ru

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:18:2c:2e:83:2b:2e:d9:af:de:76:bb:67:44:bf:ee:ce:d6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 31 02:45:21 2024 GMT
            Not After : Jun 29 02:45:20 2024 GMT
        Subject: CN=1doklad.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:ed:e4:5a:da:2d:5b:12:a8:e5:c2:94:96:d1:
                    14:03:b7:04:e0:f8:c9:23:62:dd:87:f6:b7:b0:0e:
                    9e:70:6f:02:d7:4f:53:66:36:5e:aa:10:8f:d4:1e:
                    9b:a3:c2:fb:bb:92:47:74:cc:67:9f:e2:88:c2:07:
                    d1:89:8a:7f:e3:ad:3c:fe:05:45:3f:f9:46:8b:60:
                    d8:dd:fb:a9:48:df:05:42:6c:aa:50:d4:85:d2:84:
                    3a:1b:b7:a7:7c:65:a0:b0:0b:77:92:69:98:ff:6d:
                    c7:76:0f:57:b8:75:f8:7a:88:23:81:45:e5:8b:b6:
                    29:2e:71:38:a9:a6:32:7d:6a:a0:3e:58:96:bd:87:
                    4a:97:6b:37:cf:48:3f:8c:9b:6f:12:bf:83:cf:d6:
                    32:5f:12:f2:e4:fc:89:06:f0:22:9a:de:d3:51:89:
                    1b:0b:86:79:07:6d:b7:e3:87:e9:7c:2b:43:bb:3f:
                    de:6c:f0:dc:29:16:74:8a:43:9f:3e:85:f0:45:1b:
                    54:aa:8d:5b:87:39:ce:10:bc:28:51:37:c4:9e:57:
                    4c:19:29:81:3b:2d:76:78:2e:f6:e2:0a:9b:f7:00:
                    8e:87:92:67:96:16:79:58:4c:e4:bf:5b:ef:25:a2:
                    99:d7:20:d6:2e:b1:17:f0:01:60:3b:e5:bd:02:23:
                    30:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                7F:23:20:0A:36:A7:39:62:4C:E6:04:CC:87:A4:F8:92:94:39:0C:E0
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:1doklad.ru, DNS:www.1doklad.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 31 03:45:22.175 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7D:63:39:4E:DC:64:C9:3E:BB:B0:4D:A0:
                                B6:2F:39:CE:D5:43:54:59:39:26:AC:31:01:81:0E:7C:
                                6E:0B:E2:91:02:21:00:B8:10:C6:D5:63:79:18:E2:6E:
                                5B:AE:60:70:60:82:A5:64:DD:B7:C3:A1:55:C8:53:24:
                                38:06:C1:9A:B7:02:AB
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 31 03:45:22.231 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7A:14:78:BC:09:58:EB:8A:61:4C:32:22:
                                A3:53:48:AC:E3:A4:56:0B:DA:C4:39:E7:9E:B2:87:54:
                                9D:96:0F:C9:02:20:0C:D0:51:8B:E1:00:8B:57:85:9F:
                                C8:EA:C9:41:58:0F:24:BF:39:0A:50:AF:B8:D9:7B:65:
                                5B:B0:B8:42:40:E6
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a5:8d:c3:64:83:0a:1a:5d:43:44:a8:5c:f9:14:0b:01:ca:24:
        71:98:f6:b4:e8:f6:6b:ec:db:8f:bb:57:68:b9:5c:24:e5:17:
        8e:bf:d3:62:a6:46:1b:4d:05:4b:a5:cf:ba:b7:92:80:ca:78:
        a5:52:79:02:a6:63:18:4f:cc:50:09:35:5c:2b:20:0f:d2:04:
        25:13:1f:76:1d:52:63:54:91:38:f7:6f:0e:3b:48:83:51:9e:
        14:91:57:1d:25:cf:93:24:af:7b:41:42:96:15:49:e5:1a:a8:
        79:5d:62:e1:91:f7:2f:65:a7:10:43:8e:af:b4:3e:38:11:d6:
        ac:9b:ec:45:db:0a:c7:73:49:d7:7e:a6:3a:6b:06:2a:3d:73:
        47:46:27:7d:a7:ac:d3:04:cf:57:ab:89:b5:41:8b:3f:fb:0c:
        5f:88:40:46:d2:86:75:a5:af:7f:62:89:54:7d:f8:9f:4a:a2:
        d6:6c:22:f9:13:03:40:d0:68:58:8a:b7:13:18:e7:ad:c1:4c:
        19:32:3f:e8:01:86:22:0c:2f:ca:c3:26:b3:b9:e5:ae:ec:a3:
        56:ea:3f:9d:76:a6:bc:ad:ec:66:6c:b1:d9:fb:d0:16:24:72:
        5d:44:8a:93:34:78:db:12:2d:a7:ed:2f:e8:c1:10:ea:53:29:
        96:88:74:4e

188.68.202.37

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1392203225 | 2024-05-15T01:33:15.067961
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.4

589765266 | 2024-05-12T07:15:06.281480
80 / tcp

nginx1.18.0

-680419641 | 2024-05-02T20:41:49.764519
123 / udp

589765266 | 2024-05-10T01:53:02.581380
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

188.68.202.37

Last Seen: 2024-05-15

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1392203225 | 2024-05-15T01:33:15.067961 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.4

589765266 | 2024-05-12T07:15:06.281480 80 / tcp

nginx1.18.0

-680419641 | 2024-05-02T20:41:49.764519 123 / udp

589765266 | 2024-05-10T01:53:02.581380 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-1392203225 | 2024-05-15T01:33:15.067961
22 / tcp

589765266 | 2024-05-12T07:15:06.281480
80 / tcp

-680419641 | 2024-05-02T20:41:49.764519
123 / udp

589765266 | 2024-05-10T01:53:02.581380
443 / tcp