GeneralInformation

Hostnames	cdn.dekrenof.quest dineshsalome6.sitesblog.com
Domains	dekrenof.quest sitesblog.com
Country	Netherlands
City	The Hague
Organization	IT WEB LTD
ISP	IT WEB LTD
ASN	AS200313
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

657856714 | 2024-04-23T11:00:34.174447

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCuLwWPjwISdlOBq6INsuAqeqBPJY5YkWgR363OdnJHDVcX
/MTJMuZlb3yhvS2fUw/JMfX8bzkTJUCqy3TQsquGvdAXLeJsXeegwtz3KyXguSV2xgOAQorU/IGs
rqTXOuiK/SjDJkxalaUZS/k5r9Nj30QfpZMC/xn3MsSDdak0fetDJ0p84PwqVNR4gv9oQV0jvbV7
fOu6P2MDou+Q0HKJ0lurQMlbMIuQ0H/A2Yf1885zqMordcOa8IwYtjFFrKJxXmxEGNSt5nTa6tlF
elubQ2HA7j4IF5ht5OSayyUsB/BHW1pPH8GJ6wTosalvXvI33TVftbo2ntChR5NNyl1KBykpgOmN
5vE7Tn59VjzRGfSgaGPJ4UVbo5ez57KyxGFTW54VSldWI3Q1r+1lwm0kppPm8hf5jJWdQZDPIDuv
e0e4JYBYxojI3mcuKH85jniDxplHOL6YAWdAM/gmTdVWZbepyIk1Bu0rnloHUsarSVm5pRz0Q4Aj
Oj2E3skaiL0=
Fingerprint: d0:72:ee:22:d4:bd:ad:f7:07:6b:4b:22:e0:de:16:4b

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1845118841 | 2024-04-27T08:34:01.744461

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 27 Apr 2024 08:34:01 GMT
Content-Type: text/html
Content-Length: 10918
Last-Modified: Mon, 02 Oct 2023 11:27:06 GMT
Connection: keep-alive
ETag: "651aa90a-2aa6"
Accept-Ranges: bytes

957832785 | 2024-04-22T05:23:09.443246

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 05:23:09 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:df:0c:eb:77:41:db:fc:74:93:ee:0f:5f:f9:3b:ec:2c:9e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 31 03:21:29 2024 GMT
            Not After : Jun 29 03:21:28 2024 GMT
        Subject: CN=cdn.dekrenof.quest
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:dc:a5:ee:3f:65:e8:64:a8:cc:47:b8:13:ea:8c:
                    51:bb:ab:db:40:b9:5c:cf:36:16:86:b5:5c:f6:7c:
                    f9:10:2a:7c:eb:f4:a2:0c:7f:1a:8d:a2:22:62:cc:
                    2d:de:0e:a2:c0:7c:14:41:16:83:0b:58:0a:12:65:
                    74:6a:2b:61:70:37:68:2f:06:24:d5:8e:4f:0c:f7:
                    82:ec:8d:8e:f1:24:fa:3b:71:38:fb:d3:8b:45:66:
                    b2:97:54:bc:9e:b9:cc:18:f4:f6:73:32:bd:b1:63:
                    dc:c8:35:0e:f1:d2:4c:8d:d8:92:f7:02:b8:b7:3b:
                    bb:a3:38:10:51:4d:b2:56:48:ea:05:b7:f2:cd:6e:
                    4e:14:89:df:de:07:57:32:65:dd:e9:5e:b1:a1:51:
                    19:ad:d4:a4:18:ad:a5:98:f6:43:df:c6:01:01:4d:
                    93:7e:83:16:6c:f5:d6:c5:64:01:43:36:ca:e6:81:
                    42:fc:48:d9:8f:c3:d7:95:00:e2:c8:fc:db:82:42:
                    2f:13:95:d8:e8:fc:01:34:60:b0:1b:1b:56:a1:b8:
                    65:f2:1f:d8:c2:92:5c:b5:11:2f:9d:93:25:bd:8b:
                    35:6e:77:1c:d5:77:00:31:9d:d0:a5:2f:53:09:cb:
                    ba:11:b4:72:10:0f:cb:1e:62:2a:20:c2:d7:67:d5:
                    f2:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                3A:05:FA:1E:1A:0A:B6:95:7E:14:0A:68:60:DB:F6:E7:0B:BD:30:46
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:cdn.dekrenof.quest
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Mar 31 04:21:29.617 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:71:FB:20:A8:1F:8C:6F:01:74:C9:BB:40:
                                62:19:AA:B2:3B:1E:77:F1:E2:8E:1E:C6:7B:49:CE:47:
                                3D:9F:FB:51:02:20:16:36:A7:36:11:C2:39:DB:A7:F3:
                                B7:20:45:B9:2A:42:A7:C3:80:7C:D6:03:CE:A9:D2:6B:
                                D1:2E:EC:EB:F0:EE
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 31 04:21:29.676 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:17:A0:A2:17:FB:E9:78:E0:FC:06:98:7D:
                                91:BF:D1:DF:B2:65:8C:C3:B2:C9:02:9C:0F:4D:77:8B:
                                D0:1A:96:D3:02:21:00:B1:4F:F2:DB:32:FF:E0:4E:2E:
                                AD:F6:92:82:D8:F7:CC:6A:C5:D8:F1:3B:8B:38:8D:DA:
                                A8:D9:08:C5:DD:D9:78
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        50:a9:27:42:dd:d1:96:1d:e0:df:23:ee:8d:ef:70:ca:b7:5d:
        f6:c9:e0:73:f0:5b:f1:44:f2:ab:a4:47:d0:fa:4c:10:d9:84:
        26:74:b8:40:5b:c0:8f:f7:ff:e2:01:c4:08:97:5e:fb:15:b4:
        ef:6e:33:ed:84:05:52:d8:1f:11:af:bf:91:f4:cf:28:22:41:
        48:3d:78:7f:4d:4a:f8:31:37:ec:dd:6d:8c:a4:a2:97:49:b9:
        50:01:e8:c9:73:17:90:a7:a8:8e:f9:01:1d:3c:d5:47:37:06:
        db:dd:c2:d3:9e:03:08:13:71:88:3e:cd:05:fd:46:1d:3f:46:
        02:3f:7b:bb:ed:9e:79:be:00:fa:e2:10:90:1c:0c:56:2d:fa:
        24:90:d1:ac:01:ee:61:9b:22:49:b0:f2:3b:4e:d9:c8:3a:32:
        ee:73:c3:cb:0c:7e:be:ff:a2:e1:b5:de:46:8d:63:f9:35:f1:
        ed:fe:18:c8:76:b3:b4:08:c0:df:94:23:0f:e2:4a:19:3c:65:
        7a:fa:82:06:92:59:68:db:be:d3:b2:79:ef:c3:8a:7f:c3:7c:
        53:b9:54:6a:7f:3a:9a:98:aa:c1:de:9c:ec:85:19:6b:9c:ca:
        75:39:7a:c9:82:d2:c3:c3:af:f2:ff:84:44:98:da:91:70:61:
        a7:06:a0:c6

195.242.110.196

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

657856714 | 2024-04-23T11:00:34.174447
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.5

1845118841 | 2024-04-27T08:34:01.744461
80 / tcp

nginx1.18.0

957832785 | 2024-04-22T05:23:09.443246
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

195.242.110.196

Last Seen: 2024-04-27

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

657856714 | 2024-04-23T11:00:34.174447 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.5

1845118841 | 2024-04-27T08:34:01.744461 80 / tcp

nginx1.18.0

957832785 | 2024-04-22T05:23:09.443246 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

657856714 | 2024-04-23T11:00:34.174447
22 / tcp

1845118841 | 2024-04-27T08:34:01.744461
80 / tcp

957832785 | 2024-04-22T05:23:09.443246
443 / tcp