GeneralInformation

Hostnames	cms.shwenoteapp.com right-far.quarantine-pnap.web-hosting.com
Domains	shwenoteapp.com web-hosting.com
Country	United States
City	Phoenix
Organization	Namecheap, Inc.
ISP	Namecheap, Inc.
ASN	AS22612

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 111 443 3000 4000

237086122 | 2024-04-17T13:04:44.033292

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC3dxSlmSsH3qhg+KkIyYFfsURxcGofPsN2dEJ2WS4Ypd3k
szIXP8SmTvwYXeYu3jsBzq/mXOvFej4Ep8WYsOJ8fRnXrrxaV7TWrKx5DoNDpeGM3Q8Z9cUGGz2v
l054CXrIzK2yEZxqm9WEaZAcjdfbw7zkErOAtt+iELdvsa2l6CICgWbsgsu72tBXMz3/XeXV2eQl
+TFKNiO4yaer9biBYJGXCW61uMsJKPxiA9x+OuwwAsIdO5SJcttEKuyKA0FyqjKR83yK8S+l2TAU
0Vm1mbBWauq+LcO4GbvPJL9bFiPa7LCvyltorZzaKQfF1OuB8ibh8bYFRvrQuj8c/aLd
Fingerprint: 0e:0e:26:b4:c0:c6:f4:8f:00:8f:b3:da:e3:10:7c:d6

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

677579724 | 2024-04-15T13:57:11.974900

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 13:57:11 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

-1345205424 | 2024-04-01T04:07:54.683647

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-19T04:03:11.164175

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

1771690559 | 2024-04-15T17:33:39.652909

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 17:33:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:be:5a:26:d7:8f:78:c0:4c:79:d2:c8:8b:1d:97:29:18:03
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar  6 02:12:34 2024 GMT
            Not After : Jun  4 02:12:33 2024 GMT
        Subject: CN=cms.shwenoteapp.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:48:0b:fc:4e:96:df:97:3f:8b:43:5e:92:5f:
                    89:58:24:82:44:9e:78:9e:9d:8e:1a:75:fa:cb:50:
                    41:39:85:e4:6e:54:af:18:00:fc:c2:1e:82:eb:f6:
                    1c:eb:d1:d1:78:18:59:d3:74:9e:ff:95:d4:d9:81:
                    f4:09:28:02:10:4c:e1:5e:4b:9c:66:94:70:f2:8e:
                    d3:4f:d1:cc:b5:21:c7:b6:e2:2b:0e:ce:e7:81:d3:
                    05:59:ac:37:80:fa:88:45:91:8c:4c:b3:d6:98:bb:
                    62:5e:61:ce:28:df:a1:02:e3:a5:49:d2:99:b4:0a:
                    7f:f4:99:fa:d1:7f:c1:af:54:7a:70:82:e8:b6:ae:
                    a5:97:a9:54:19:68:9b:87:b2:68:4b:27:50:aa:53:
                    46:48:67:f9:2a:70:91:1a:a9:f9:1b:5f:4e:0e:44:
                    57:92:8d:7b:1c:33:ac:91:62:85:1c:15:1c:60:c2:
                    f0:a1:5b:f6:9b:16:46:a5:f5:fe:59:41:ee:49:67:
                    78:a5:9c:41:e5:14:ee:e8:6d:c0:07:5c:a4:63:0e:
                    19:ec:96:82:8d:b9:4c:9a:00:69:41:d2:35:0b:73:
                    a1:79:85:26:ba:e5:a7:9a:49:39:9a:60:b9:a4:31:
                    14:af:49:cb:b6:cd:73:7b:1b:8e:2f:c0:b0:04:a2:
                    38:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                16:D2:1A:3C:9E:C8:BC:71:B0:F2:D6:F3:5F:12:81:AC:65:A5:8A:42
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cms.shwenoteapp.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar  6 03:12:34.328 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:7F:FF:B8:B9:93:77:96:C0:28:A7:76:15:
                                C2:9C:3E:76:A0:F3:29:0B:48:F5:A0:77:AA:3C:8D:53:
                                50:4C:89:58:02:20:47:22:F1:F0:00:91:2F:AE:84:05:
                                12:C7:21:62:CA:A6:16:7F:A3:0B:44:1C:EF:34:00:B6:
                                C0:55:79:41:07:23
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar  6 03:12:34.825 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AF:40:04:FC:A9:43:93:AF:3E:B4:3C:
                                EA:B9:17:58:A4:B9:EE:D2:8A:D6:DF:B5:29:FF:1F:4D:
                                1E:B5:F0:71:F8:02:20:12:CD:28:5A:4F:12:B0:A3:1F:
                                4F:F1:B2:AE:A4:53:75:79:8B:D8:F0:CE:D8:71:7B:3D:
                                4A:59:5D:01:A5:54:E9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        28:fe:2c:9e:9f:16:08:94:33:03:a5:5c:0b:a0:a6:53:36:63:
        92:d8:d9:a9:d7:8b:4c:86:b9:d1:40:f1:71:8a:df:f9:e9:fb:
        7d:aa:5e:1d:e6:2a:67:78:bf:fb:17:a7:bb:79:1c:59:c2:cd:
        8e:67:7f:8d:ed:28:e3:fd:b2:4e:e0:65:c5:d6:02:ae:b3:8d:
        90:94:76:25:28:69:b6:ef:56:c3:ca:20:27:c2:c8:bf:1c:4d:
        41:c1:0d:60:bb:3b:30:7d:0b:45:e0:ea:c9:18:43:ab:59:68:
        6a:52:92:5d:d6:a7:f8:4c:4d:31:d6:4f:ea:9e:1c:ee:30:06:
        c0:7b:0f:d8:ad:11:9e:f1:9b:57:50:e0:c9:1c:7e:74:bd:20:
        d2:9c:46:e3:29:da:c0:da:ee:65:cf:9c:15:1a:91:06:d9:18:
        eb:9e:f3:01:d3:44:c5:2c:70:22:3a:00:07:c0:39:15:81:ff:
        e7:09:38:b1:74:a7:d6:dd:a5:0c:11:f4:c2:9d:88:0b:aa:a3:
        48:bd:f9:40:57:9f:c0:28:22:d3:e9:bd:b6:f1:2e:eb:a3:a2:
        72:12:db:35:4a:d6:db:73:f5:cc:bb:23:7e:08:66:36:5b:5e:
        95:0e:d7:8b:20:86:fb:0b:be:b6:92:cc:01:62:04:99:0e:87:
        65:5b:8b:b8

895132412 | 2024-03-23T02:24:53.309809

3000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Next.js
Content-Type: text/html; charset=utf-8
Cache-Control: private, no-cache, no-store, max-age=0, must-revalidate
Vary: Accept-Encoding
Date: Sat, 23 Mar 2024 02:24:52 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked

-1246004407 | 2024-04-19T06:49:11.516102

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

192.64.114.167

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

237086122 | 2024-04-17T13:04:44.033292
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-15T13:57:11.974900
80 / tcp

nginx1.18.0

-1345205424 | 2024-04-01T04:07:54.683647
111 / tcp

-1345205424 | 2024-04-19T04:03:11.164175
111 / udp

1771690559 | 2024-04-15T17:33:39.652909
443 / tcp

nginx1.18.0

895132412 | 2024-03-23T02:24:53.309809
3000 / tcp

-1246004407 | 2024-04-19T06:49:11.516102
4000 / tcp

Products

Pricing

Contact Us

192.64.114.167

Last Seen: 2024-04-19

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

237086122 | 2024-04-17T13:04:44.033292 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

677579724 | 2024-04-15T13:57:11.974900 80 / tcp

nginx1.18.0

-1345205424 | 2024-04-01T04:07:54.683647 111 / tcp

-1345205424 | 2024-04-19T04:03:11.164175 111 / udp

1771690559 | 2024-04-15T17:33:39.652909 443 / tcp

nginx1.18.0

895132412 | 2024-03-23T02:24:53.309809 3000 / tcp

-1246004407 | 2024-04-19T06:49:11.516102 4000 / tcp

Products

Pricing

Contact Us

237086122 | 2024-04-17T13:04:44.033292
22 / tcp

677579724 | 2024-04-15T13:57:11.974900
80 / tcp

-1345205424 | 2024-04-01T04:07:54.683647
111 / tcp

-1345205424 | 2024-04-19T04:03:11.164175
111 / udp

1771690559 | 2024-04-15T17:33:39.652909
443 / tcp

895132412 | 2024-03-23T02:24:53.309809
3000 / tcp

-1246004407 | 2024-04-19T06:49:11.516102
4000 / tcp