GeneralInformation

Hostnames	alexkeram.ru autodiscover.alexkeram.ru mail.alexkeram.ru owa.alexkeram.ru www.alexkeram.ru 194-67-86-170.cloudvps.regruhosting.ru
Domains	alexkeram.ru regruhosting.ru
Country	Russian Federation
City	Moscow
Organization	Reg.Ru Hosting
ISP	"Domain names registrar REG.RU", Ltd
ASN	AS197695

WebTechnologies

CDN

jQuery CDN

JavaScript libraries

jQuery1.12.4

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

22 80 443

-2012910328 | 2024-04-25T13:25:30.707198

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDuGAe/Rk+b3fSxnUajnJvz6iiRYE0v6d6g5XdAcQ+dJZyb
CpAGY6D35NncCQW1H0LxFFK9MCZCMvOezGsw1KD5qJ7M1WyBksSAT+au0zqSp4NPlEfKQFpFWZfk
uqzBKyYCpgnJNA6BhnMcU/usa1m9s43ilqSK+ydjxeya2iYxlz0Fy5nR/x5klOpLvmtjVe6qksx9
aNnO98ThDbIzmrGkzYW53PA71owokinqu6UbHsVMc7hDW4StKiorseuYk3nJEuO/SbMRB7JFbTD5
pxlsF7z6a2KrHThJZhsAp1FIlowKnXSelxIL3UbLBHObfvnZaAVo4dehSqOxkex1UOfpKlRLORa0
qWv1J3zPyR39mryuuo/gj07YpGH563RfTaKuzCezA+8YcZAL9+SaZ85BnaZZZv9hO+bUSYk0Sthk
6d1QEXVaK9BMRQ6R7Ga44YXdQZB9ByPDWbSkJJYAjBTJNUvJ2JDYMJpn/ss2rec8m3vhkQDEIGJf
A7Hsh1s/Nlc=
Fingerprint: 6f:b9:e7:2f:84:d9:2b:ef:27:d1:f3:0c:c4:62:af:99

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1584412971 | 2024-04-28T10:14:53.008727

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Sun, 28 Apr 2024 10:14:51 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://alexkeram.ru/

-1828341890 | 2024-04-30T04:43:53.351579

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 30 Apr 2024 04:43:53 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 31027
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            76:c1:29:d6:04:21:b2:21:e0:11:0f:9f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 DV TLS CA 2020
        Validity
            Not Before: Feb  8 12:13:28 2023 GMT
            Not After : Mar 11 12:13:27 2024 GMT
        Subject: CN=www.alexkeram.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (4096 bit)
                Modulus:
                    00:bc:a2:ce:91:38:2a:a4:ea:24:ba:37:02:c5:9e:
                    db:58:fa:fa:78:e5:d2:58:c2:f7:53:25:bb:c2:3f:
                    60:fd:d9:13:9d:89:0a:5d:ef:45:69:7f:02:26:5e:
                    d6:91:63:35:b5:8b:0c:fd:57:7f:6c:74:bc:7a:c1:
                    c3:f5:c8:05:11:83:62:8e:f5:dd:71:8c:98:0d:9e:
                    3c:38:0d:a5:e2:ff:05:79:85:d0:f7:c4:c9:59:04:
                    a1:9f:02:1e:d4:1e:e0:f8:88:81:4c:cd:68:e4:74:
                    81:1c:3f:d0:23:d0:b6:b8:20:dc:37:ce:66:02:32:
                    a6:b5:7c:8a:be:4a:f2:fa:2b:c0:45:72:13:d5:d1:
                    b8:b3:cd:00:9b:84:60:84:80:c0:66:d7:38:c3:23:
                    18:69:6f:c3:71:87:15:d1:1e:20:cf:c7:3a:b9:1f:
                    86:d7:5b:1b:9f:38:7d:92:6d:5f:bf:a4:35:20:ef:
                    80:f4:97:65:4a:17:ec:cb:04:48:65:2b:c9:9c:06:
                    ca:b8:c0:f8:f3:29:dd:33:68:35:f6:dd:1f:27:4a:
                    01:18:e2:5c:91:67:44:9f:b6:85:af:97:a0:51:f0:
                    80:ed:0c:8d:1c:07:99:e7:75:2b:91:ee:4d:73:4b:
                    8b:75:82:67:9d:0f:6e:f9:79:9e:0e:60:aa:35:9a:
                    c5:f8:e8:a3:1a:3b:a5:29:2e:48:ec:8c:4d:d0:56:
                    6b:82:ca:74:7f:2b:5d:63:39:11:b5:92:45:04:6f:
                    7a:ea:03:79:a7:f5:21:bc:e7:0e:dd:79:b2:87:f6:
                    bd:ab:6c:38:36:cf:50:37:b0:df:02:6b:0b:d5:b9:
                    3e:4a:49:67:7e:d9:c9:a3:78:74:ba:c3:be:5d:88:
                    7c:e9:84:01:7e:d2:40:98:f6:e4:d9:9b:66:ad:dd:
                    f3:ab:27:47:e4:a1:8f:01:3d:27:38:18:8d:b3:97:
                    44:06:58:2d:c3:2c:98:f0:82:3c:07:bd:67:57:2e:
                    e1:09:f9:c6:dc:1c:1d:02:6c:64:ed:de:5c:25:6c:
                    8b:4b:af:e2:e8:03:7a:86:c4:4a:42:ef:94:98:23:
                    ae:4b:9c:10:72:2f:bb:b4:4b:5e:03:10:3e:78:a1:
                    aa:f5:0f:16:42:c6:fa:a5:09:a0:a0:39:f8:2d:34:
                    25:0f:67:6a:7b:f3:d9:53:ac:59:81:4a:56:ff:fb:
                    a7:72:4e:ed:18:86:5a:07:2f:27:03:40:e9:8f:ad:
                    88:f2:ae:ba:91:0b:7d:5a:a3:94:23:65:b0:6d:29:
                    e0:7d:29:06:a1:9f:12:51:a9:89:ac:c4:09:2f:13:
                    a8:fa:6f:a7:40:4d:39:4b:fb:99:20:4d:06:0e:f6:
                    37:ef:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3dvtlsca2020
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.4146.1.10
                  CPS: https://www.globalsign.com/repository/
                Policy: 2.23.140.1.2.1
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
            X509v3 Subject Alternative Name: 
                DNS:www.alexkeram.ru, DNS:autodiscover.alexkeram.ru, DNS:mail.alexkeram.ru, DNS:owa.alexkeram.ru, DNS:alexkeram.ru
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                0D:98:C0:73:7F:AB:BD:BD:D9:47:4B:49:AD:0A:4A:0C:AC:3E:C7:7C
            X509v3 Subject Key Identifier: 
                BD:B3:BF:9B:3C:9E:56:C7:49:B4:71:79:FD:CA:CB:CE:D7:AF:9E:29
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 73:D9:9E:89:1B:4C:96:78:A0:20:7D:47:9D:E6:B2:C6:
                                1C:D0:51:5E:71:19:2A:8C:6B:80:10:7A:C1:77:72:B5
                    Timestamp : Feb  8 12:13:36.173 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5D:AF:74:6E:BF:B4:7F:B1:73:91:CC:3E:
                                CF:C7:71:B0:6E:EB:BA:86:77:CE:D5:E9:9F:CA:B6:81:
                                76:68:29:8C:02:20:4C:02:27:30:E2:69:D2:80:30:D9:
                                FB:C3:B4:31:7F:A2:25:97:96:AF:78:DA:3D:16:16:1B:
                                1F:9F:88:72:36:9E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb  8 12:13:36.150 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:20:55:E8:6E:44:CB:B5:97:CD:99:11:DC:
                                75:D0:71:A4:89:4A:F0:4C:E7:8B:5C:70:9E:A6:3E:2E:
                                4D:BF:43:71:02:20:13:C2:D6:81:12:73:93:B9:9B:CD:
                                43:B0:E1:33:2C:14:BE:BA:71:79:54:61:61:97:10:6A:
                                D6:9E:FD:2C:23:71
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb  8 12:13:36.189 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:F6:B5:5A:C0:ED:44:DB:7D:6D:7B:D9:
                                73:94:4B:9F:E3:71:47:35:3E:B5:8E:8F:1A:21:8A:64:
                                61:AA:12:FA:BF:02:20:00:E8:C3:3F:32:60:20:AF:AA:
                                0C:84:E0:99:B3:A0:A5:68:0F:76:91:05:4E:52:82:10:
                                D9:61:4F:97:32:3E:40
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9a:26:b8:04:cf:25:01:01:86:92:bc:ac:06:e9:ae:58:d8:94:
        17:a7:68:60:d4:d8:6f:d1:b3:0d:88:39:41:62:dc:71:cd:b9:
        00:0d:6d:90:ca:52:b3:90:15:98:02:eb:33:28:d4:9e:94:79:
        55:8b:7f:4f:21:0a:4e:bc:b3:69:94:17:83:cb:13:e5:b9:9d:
        68:b1:69:5d:25:e1:ee:32:a1:63:77:30:ce:f9:eb:1f:da:1e:
        7b:42:fd:ea:5d:2e:97:91:80:75:2f:d8:8f:c1:5e:14:8d:a1:
        4a:b3:28:95:39:07:e3:51:5c:78:4d:9d:4b:d2:c1:47:41:f1:
        93:69:5b:ee:0b:17:15:61:e2:d2:65:2e:83:54:76:a3:16:6d:
        f5:61:55:2f:62:a5:02:b8:17:59:7f:63:e2:49:fc:bf:40:7b:
        ef:eb:72:3c:d4:85:82:a3:af:08:4b:d6:b1:77:a3:96:43:0f:
        a5:2c:49:44:25:8d:de:76:e0:9f:02:6d:20:5e:4a:34:76:1f:
        11:de:3e:43:19:ee:85:cb:14:68:b6:ea:bd:8f:29:1b:f0:f7:
        9f:cb:87:02:59:fc:d2:cb:19:15:ae:15:4f:2f:0c:6e:88:07:
        33:28:47:f5:8f:0f:9f:9d:51:c8:51:3d:a1:66:fd:38:a2:f7:
        77:d7:cb:71

194.67.86.170

Last Seen: 2024-04-30

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2012910328 | 2024-04-25T13:25:30.707198
22 / tcp

OpenSSH8.4p1 Debian 5

1584412971 | 2024-04-28T10:14:53.008727
80 / tcp

nginx1.18.0

-1828341890 | 2024-04-30T04:43:53.351579
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

194.67.86.170

Last Seen: 2024-04-30

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-2012910328 | 2024-04-25T13:25:30.707198 22 / tcp

OpenSSH8.4p1 Debian 5

1584412971 | 2024-04-28T10:14:53.008727 80 / tcp

nginx1.18.0

-1828341890 | 2024-04-30T04:43:53.351579 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

-2012910328 | 2024-04-25T13:25:30.707198
22 / tcp

1584412971 | 2024-04-28T10:14:53.008727
80 / tcp

-1828341890 | 2024-04-30T04:43:53.351579
443 / tcp