GeneralInformation

Hostnames	243.36.15.194.in-addr.arpa nickslp.live
Domains	194.in-addr.arpa nickslp.live
Country	Germany
City	Frankfurt am Main
Organization	Datalix
ISP	Dominic Scholz trading as ITP-Solutions GmbH & Co. KG
ASN	AS213250
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3306 8080 25565 33060

52008377 | 2024-04-11T12:24:56.699152

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBE+kA1EPEmI1J3ljNt6VchDY
sPJVrg2fyEMFvqcc0ERis0nsuhJ/fsX4xX8q3bkav8XbTzyeaXvAUYavvZDq3jI=
Fingerprint: cc:73:cc:38:c4:7b:e8:d8:f2:6d:bc:48:e3:96:35:e7

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-04-26T20:47:03.196270

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 26 Apr 2024 20:47:01 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://nickslp.live/

219382881 | 2024-04-17T10:12:00.508941

443 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 17 Apr 2024 10:11:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://nickslp.live/

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6a:27:2a:08:77:0c:6a:41:12:ed:f9:22:90:8a:ac:3d:cf:f7:35:2e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=CloudFlare, Inc., OU=CloudFlare Origin SSL Certificate Authority, L=San Francisco, ST=California
        Validity
            Not Before: May 30 17:47:00 2023 GMT
            Not After : May 26 17:47:00 2038 GMT
        Subject: O=CloudFlare, Inc., OU=CloudFlare Origin CA, CN=CloudFlare Origin Certificate
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d2:4b:6a:5e:89:88:a4:ff:09:57:db:ad:6b:ee:
                    6c:54:01:db:8d:8c:26:4d:0e:f0:4c:5c:6c:d5:5c:
                    83:15:6c:b7:7f:85:d5:e3:6a:40:2e:07:5d:6c:22:
                    ad:bc:1e:20:91:ed:84:b6:83:89:18:de:7c:13:b4:
                    13:ca:42:d0:72:76:e5:e5:92:cb:58:5b:45:51:07:
                    5c:fd:50:ed:32:ee:5b:59:cc:e0:a5:96:82:ad:41:
                    10:fc:24:79:94:a9:6e:da:c1:73:b6:c7:c4:8e:5b:
                    99:6f:c3:99:4f:ca:07:3b:92:99:60:66:61:9c:56:
                    7a:26:56:53:d5:0f:e4:b8:e2:56:cb:16:da:35:69:
                    ff:7b:b4:24:8d:54:22:35:c5:62:91:be:fd:96:83:
                    31:e5:f1:4e:78:82:49:a0:16:00:dd:f2:f4:3a:21:
                    69:53:6a:a6:4d:b1:8e:0b:e5:c2:bb:b3:c8:c2:82:
                    b2:d0:39:cb:94:90:38:91:6e:a6:17:53:85:5e:1b:
                    c9:41:31:82:6b:7a:b3:dc:f3:e1:32:e7:24:ee:e4:
                    b6:39:ef:1b:d5:d5:d7:41:43:ab:48:c2:27:f5:c5:
                    02:22:cc:78:b7:c6:28:d1:ee:50:66:ad:47:0e:14:
                    d7:5b:14:6b:56:aa:a7:6c:1e:e5:15:31:8b:1e:d9:
                    c2:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Client Authentication, TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                67:4D:BC:FD:1B:20:BC:BC:A2:A3:40:8B:0A:E7:FA:68:B4:6E:AF:6F
            X509v3 Authority Key Identifier: 
                24:E8:53:57:5D:7C:34:40:87:A9:EB:94:DB:BA:E1:16:78:FC:29:A4
            Authority Information Access: 
                OCSP - URI:http://ocsp.cloudflare.com/origin_ca
            X509v3 Subject Alternative Name: 
                DNS:*.nickslp.live, DNS:nickslp.live
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.cloudflare.com/origin_ca.crl
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        76:b0:2e:96:74:22:f1:7c:7e:72:9d:0b:b6:17:5d:4e:f5:89:
        e8:24:b8:8d:f4:f3:a1:6a:70:20:a8:00:bb:77:73:01:e6:0d:
        db:0f:ad:3d:a5:54:7c:5a:36:cd:b2:4b:1e:da:78:7a:17:a3:
        ed:86:27:d8:0f:60:6d:33:eb:7c:9c:20:74:0a:b8:58:df:29:
        9e:05:2e:3c:1c:6c:27:a9:a8:f7:c6:14:fc:b0:6a:33:8a:04:
        d1:80:46:22:bc:ca:2e:46:a3:f4:74:fd:86:c9:14:9f:95:2e:
        0f:c6:56:44:cd:ea:7e:e5:f8:82:a6:16:62:6d:46:fc:92:e4:
        ea:6a:21:ad:ce:dc:4e:05:48:1f:e7:78:57:dc:4f:6a:09:00:
        20:f9:97:cd:65:ab:0a:59:91:25:e7:f1:3f:ed:5e:f5:d4:45:
        ce:db:90:19:84:cc:1e:a4:e6:0f:3a:17:d2:01:a2:64:83:a8:
        92:ca:a1:fb:da:f1:13:63:cb:22:07:90:10:a6:4b:e0:79:a7:
        2b:90:03:59:fb:fd:cf:cc:7b:1b:ff:5a:12:97:5a:64:38:07:
        27:b9:64:8f:96:b4:ae:a3:35:60:42:b1:fc:7b:c9:3b:e0:54:
        7b:11:2e:cd:a0:26:c3:cb:ce:fa:77:b5:02:97:62:c5:e4:34:
        68:5b:3d:e6

225015788 | 2024-04-19T19:38:22.423606

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.0.36-0ubuntu0.22.04.1
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

-677325870 | 2024-04-15T21:58:51.153050

8080 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 15 Apr 2024 21:58:51 GMT
Content-Type: text/html
Content-Length: 463
Last-Modified: Sun, 10 Dec 2023 20:26:24 GMT
Connection: keep-alive
ETag: "65761ef0-1cf"
Accept-Ranges: bytes

1981687698 | 2024-04-11T21:55:27.968576

25565 / tcp

Minecraft Server:
  Version: Purpur 1.20.4 (Protocol 765)
  Description: &4&lDominic is gay
  Online Players: 0
  Maximum Players: 20

-795948505 | 2024-04-18T06:34:20.288180

33060 / tcp

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

194.15.36.243

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

52008377 | 2024-04-11T12:24:56.699152
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-26T20:47:03.196270
80 / tcp

nginx1.18.0

219382881 | 2024-04-17T10:12:00.508941
443 / tcp

nginx1.18.0

225015788 | 2024-04-19T19:38:22.423606
3306 / tcp

MySQL8.0.36-0ubuntu0.22.04.1

-677325870 | 2024-04-15T21:58:51.153050
8080 / tcp

nginx1.18.0

1981687698 | 2024-04-11T21:55:27.968576
25565 / tcp

MinecraftPurpur 1.20.4

-795948505 | 2024-04-18T06:34:20.288180
33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

194.15.36.243

Last Seen: 2024-04-26

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

52008377 | 2024-04-11T12:24:56.699152 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-04-26T20:47:03.196270 80 / tcp

nginx1.18.0

219382881 | 2024-04-17T10:12:00.508941 443 / tcp

nginx1.18.0

225015788 | 2024-04-19T19:38:22.423606 3306 / tcp

MySQL8.0.36-0ubuntu0.22.04.1

-677325870 | 2024-04-15T21:58:51.153050 8080 / tcp

nginx1.18.0

1981687698 | 2024-04-11T21:55:27.968576 25565 / tcp

MinecraftPurpur 1.20.4

-795948505 | 2024-04-18T06:34:20.288180 33060 / tcp

MySQL X Protocol

Products

Pricing

Contact Us

52008377 | 2024-04-11T12:24:56.699152
22 / tcp

589765266 | 2024-04-26T20:47:03.196270
80 / tcp

219382881 | 2024-04-17T10:12:00.508941
443 / tcp

225015788 | 2024-04-19T19:38:22.423606
3306 / tcp

-677325870 | 2024-04-15T21:58:51.153050
8080 / tcp

1981687698 | 2024-04-11T21:55:27.968576
25565 / tcp

-795948505 | 2024-04-18T06:34:20.288180
33060 / tcp