GeneralInformation

Hostnames	info.sitesblog.com
Domains	sitesblog.com
Country	Netherlands
City	Zwolle
Organization	IT WEB LTD
ISP	IT WEB LTD
ASN	AS200313

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

CVE-2021-3618

5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

21 22 53 80 143 443 993 995

1906305604 | 2024-05-06T09:45:20.799216

21 / tcp

220 FTP Server ready.
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    AUTH    CCC*    CONF*   ENC*    MIC*    
 PBSZ    PROT    TYPE    STRU    MODE    RETR    STOR    STOU    
 APPE    REST    ABOR    USER    PASS    ACCT*   REIN*   LIST    
 NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@localhost
211-Features:
 LANG ru-RU;ko-KR;ja-JP;it-IT;fr-FR;es-ES;en-US*;bg-BG;zh-TW;zh-CN
 MDTM
 SSCN
 TVFS
 MFMT
 SIZE
 PROT
 CCC
 PBSZ
 AUTH TLS
 MFF modify;UNIX.group;UNIX.mode;
 REST STREAM
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
 UTF8
 EPRT
 EPSV
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            99:11:72:dc:ad:36:3c:f1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Validity
            Not Before: Mar 18 13:14:15 2021 GMT
            Not After : Mar 16 13:14:15 2031 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c5:d4:cc:77:6e:be:af:25:e4:04:66:d1:64:03:
                    43:04:07:8e:77:57:53:17:df:1b:10:6c:e4:b3:92:
                    56:29:76:8c:cc:7a:9a:d9:04:92:62:cb:aa:d4:91:
                    b4:95:a4:d6:e1:a7:0a:54:2d:6c:6b:3d:33:7f:3c:
                    44:da:6e:dc:27:b2:a4:46:f5:6f:4d:a7:19:11:dc:
                    8b:c7:16:4b:02:82:3c:95:ac:db:86:c3:ee:c9:0f:
                    7a:09:2d:e0:56:b0:04:9c:e3:ee:6c:f4:de:1c:5b:
                    5d:25:b7:7f:74:52:8e:7c:aa:88:90:1b:8c:1a:86:
                    08:e3:b6:0c:75:2b:5c:40:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D1:F1:04:42:A2:7E:3A:97:7E:7A:06:BF:06:01:74:FD:C0:C0:9D:0D
            X509v3 Authority Key Identifier: 
                D1:F1:04:42:A2:7E:3A:97:7E:7A:06:BF:06:01:74:FD:C0:C0:9D:0D
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        38:a0:7c:bc:9f:d5:0c:59:0b:21:44:21:65:ba:cc:c4:b8:da:
        9f:ce:c1:c8:13:fb:69:bc:f8:12:a3:38:dc:5c:8c:47:88:18:
        8d:03:f5:9b:3a:71:dd:b4:75:40:0e:58:f7:44:bd:d8:ad:5b:
        0d:c9:8b:59:de:b7:2f:86:b8:f2:61:30:44:e3:21:56:16:12:
        3c:e7:03:b3:b7:f4:ea:31:18:a5:c5:fa:24:32:45:e8:d4:7b:
        35:df:b6:c7:af:92:50:b5:98:d3:a9:21:77:15:ad:18:d9:40:
        d4:af:85:6d:cb:91:74:91:b2:f5:2e:cf:35:4c:b2:92:d9:d9:
        3e:0c

1230822146 | 2024-04-25T13:39:44.674126

22 / tcp

SSH-2.0-OpenSSH_6.6.1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC7nGrxWa+HrZcvdd40AODq+Xe3DB3MADvfY7tZVW7MVJ7I
CPF0m/l0iCPY4J2qkN5Cyeg+uNKSe8TPNhBxejvBJgoTEbxlwjjCi2jcG7C4TjsKQzZGE7IxfidL
LQIQmUgxyFhOpS9G2Bn2KdP5KfCYJ95DbMT+DtBwkvHKK7Ac6Gj2Xx66jZU7uIIQ7U0aLZgPvjm1
a5DjX0SBaKVj6dyVsKBtwfFAbLiw1UXhRt3Yx6mbiMw3xjFyGe2RJgv9bTJ7k57xMFp3ct/RGUQf
aBqyhc2JsSBYceTU/LHX4blNTZYeE/4wxGVUvSixitEZKZcJccwBUUey/bnvDzo9fUtZ
Fingerprint: 2a:ff:4a:18:f6:ce:36:a5:5f:a2:6f:ce:f0:b9:0f:5b

Kex Algorithms:
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group-exchange-sha1
	diffie-hellman-group14-sha1
	diffie-hellman-group1-sha1

Server Host Key Algorithms:
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr
	arcfour256
	arcfour128
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com
	chacha20-poly1305@openssh.com
	aes128-cbc
	3des-cbc
	blowfish-cbc
	cast128-cbc
	aes192-cbc
	aes256-cbc
	arcfour
	rijndael-cbc@lysator.liu.se

MAC Algorithms:
	hmac-md5-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-ripemd160-etm@openssh.com
	hmac-sha1-96-etm@openssh.com
	hmac-md5-96-etm@openssh.com
	hmac-md5
	hmac-sha1
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-ripemd160
	hmac-ripemd160@openssh.com
	hmac-sha1-96
	hmac-md5-96

Compression Algorithms:
	none
	zlib@openssh.com

1577366992 | 2024-04-19T08:05:38.594012

53 / tcp

9.11.4-P2-RedHat-9.11.4-26.P2.el7_9.4
Resolver name: luxe-indi

772258679 | 2024-05-08T20:14:08.777828

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Wed, 08 May 2024 20:12:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://195.242.110.71:443/

-506930052 | 2024-05-05T05:08:10.329020

143 / tcp

* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            8b:b6:5a:a5:23:7d:71:fd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Validity
            Not Before: Mar 18 13:12:51 2021 GMT
            Not After : Mar 16 13:12:51 2031 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c2:a8:52:8f:bb:3a:0f:c3:24:cc:85:a8:57:e9:
                    ef:0b:7b:f8:e8:70:30:2a:97:a6:09:2a:33:75:3d:
                    89:36:37:c9:7a:a5:13:ba:43:55:5a:6a:3d:1c:ca:
                    94:b9:2b:3d:f0:e1:01:25:47:c6:b4:44:aa:18:e9:
                    87:c4:bb:98:cc:8d:bb:cf:c6:70:ed:87:85:6a:df:
                    3b:30:46:fe:b2:f1:37:fc:0e:3c:ec:30:e7:d4:83:
                    f7:c2:5e:06:83:b0:04:ac:02:5a:8b:0c:b0:c5:64:
                    7f:39:27:03:87:24:c0:42:e2:24:b8:1e:cd:d0:b5:
                    f4:9e:f2:ad:b9:1d:f5:97:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                0F:C9:C6:41:45:5D:5E:42:07:44:65:18:12:A4:27:0A:E7:D0:F4:25
            X509v3 Authority Key Identifier: 
                0F:C9:C6:41:45:5D:5E:42:07:44:65:18:12:A4:27:0A:E7:D0:F4:25
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a5:fa:75:27:34:00:01:c2:5b:be:01:b8:ad:33:68:f8:47:d2:
        16:0b:d9:e0:ec:fb:b4:77:06:9a:db:d5:6d:c0:1c:6e:4f:80:
        af:3b:23:2b:f0:e7:c4:60:d3:14:db:52:b1:31:d3:0a:a2:c6:
        11:f2:f7:ba:43:ef:23:72:51:25:de:9c:a8:c5:1e:4b:cf:8e:
        24:50:e7:a0:d9:83:7f:3d:71:42:69:ad:28:05:26:10:f4:0f:
        c4:bb:e9:2e:45:4b:87:73:49:68:57:29:e4:d9:c3:90:ab:7d:
        0d:95:5b:c9:26:33:c4:2b:40:32:5c:59:85:ba:3e:a2:67:bc:
        e1:c4

793560149 | 2024-05-08T20:14:10.613342

443 / tcp

HTTP/1.1 400 Bad Request
Server: nginx/1.20.1
Date: Wed, 08 May 2024 20:12:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close

-1708341480 | 2024-04-23T07:04:25.346250

993 / tcp

* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            8b:b6:5a:a5:23:7d:71:fd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Validity
            Not Before: Mar 18 13:12:51 2021 GMT
            Not After : Mar 16 13:12:51 2031 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c2:a8:52:8f:bb:3a:0f:c3:24:cc:85:a8:57:e9:
                    ef:0b:7b:f8:e8:70:30:2a:97:a6:09:2a:33:75:3d:
                    89:36:37:c9:7a:a5:13:ba:43:55:5a:6a:3d:1c:ca:
                    94:b9:2b:3d:f0:e1:01:25:47:c6:b4:44:aa:18:e9:
                    87:c4:bb:98:cc:8d:bb:cf:c6:70:ed:87:85:6a:df:
                    3b:30:46:fe:b2:f1:37:fc:0e:3c:ec:30:e7:d4:83:
                    f7:c2:5e:06:83:b0:04:ac:02:5a:8b:0c:b0:c5:64:
                    7f:39:27:03:87:24:c0:42:e2:24:b8:1e:cd:d0:b5:
                    f4:9e:f2:ad:b9:1d:f5:97:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                0F:C9:C6:41:45:5D:5E:42:07:44:65:18:12:A4:27:0A:E7:D0:F4:25
            X509v3 Authority Key Identifier: 
                0F:C9:C6:41:45:5D:5E:42:07:44:65:18:12:A4:27:0A:E7:D0:F4:25
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a5:fa:75:27:34:00:01:c2:5b:be:01:b8:ad:33:68:f8:47:d2:
        16:0b:d9:e0:ec:fb:b4:77:06:9a:db:d5:6d:c0:1c:6e:4f:80:
        af:3b:23:2b:f0:e7:c4:60:d3:14:db:52:b1:31:d3:0a:a2:c6:
        11:f2:f7:ba:43:ef:23:72:51:25:de:9c:a8:c5:1e:4b:cf:8e:
        24:50:e7:a0:d9:83:7f:3d:71:42:69:ad:28:05:26:10:f4:0f:
        c4:bb:e9:2e:45:4b:87:73:49:68:57:29:e4:d9:c3:90:ab:7d:
        0d:95:5b:c9:26:33:c4:2b:40:32:5c:59:85:ba:3e:a2:67:bc:
        e1:c4

-1830824801 | 2024-04-16T05:27:26.031571

995 / tcp

+OK Dovecot ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN CRAM-MD5
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            8b:b6:5a:a5:23:7d:71:fd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Validity
            Not Before: Mar 18 13:12:51 2021 GMT
            Not After : Mar 16 13:12:51 2031 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=luxe-indi.com/emailAddress=root@luxe-indi.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c2:a8:52:8f:bb:3a:0f:c3:24:cc:85:a8:57:e9:
                    ef:0b:7b:f8:e8:70:30:2a:97:a6:09:2a:33:75:3d:
                    89:36:37:c9:7a:a5:13:ba:43:55:5a:6a:3d:1c:ca:
                    94:b9:2b:3d:f0:e1:01:25:47:c6:b4:44:aa:18:e9:
                    87:c4:bb:98:cc:8d:bb:cf:c6:70:ed:87:85:6a:df:
                    3b:30:46:fe:b2:f1:37:fc:0e:3c:ec:30:e7:d4:83:
                    f7:c2:5e:06:83:b0:04:ac:02:5a:8b:0c:b0:c5:64:
                    7f:39:27:03:87:24:c0:42:e2:24:b8:1e:cd:d0:b5:
                    f4:9e:f2:ad:b9:1d:f5:97:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                0F:C9:C6:41:45:5D:5E:42:07:44:65:18:12:A4:27:0A:E7:D0:F4:25
            X509v3 Authority Key Identifier: 
                0F:C9:C6:41:45:5D:5E:42:07:44:65:18:12:A4:27:0A:E7:D0:F4:25
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a5:fa:75:27:34:00:01:c2:5b:be:01:b8:ad:33:68:f8:47:d2:
        16:0b:d9:e0:ec:fb:b4:77:06:9a:db:d5:6d:c0:1c:6e:4f:80:
        af:3b:23:2b:f0:e7:c4:60:d3:14:db:52:b1:31:d3:0a:a2:c6:
        11:f2:f7:ba:43:ef:23:72:51:25:de:9c:a8:c5:1e:4b:cf:8e:
        24:50:e7:a0:d9:83:7f:3d:71:42:69:ad:28:05:26:10:f4:0f:
        c4:bb:e9:2e:45:4b:87:73:49:68:57:29:e4:d9:c3:90:ab:7d:
        0d:95:5b:c9:26:33:c4:2b:40:32:5c:59:85:ba:3e:a2:67:bc:
        e1:c4

195.242.110.71

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1906305604 | 2024-05-06T09:45:20.799216
21 / tcp

1230822146 | 2024-04-25T13:39:44.674126
22 / tcp

OpenSSH6.6.1

1577366992 | 2024-04-19T08:05:38.594012
53 / tcp

772258679 | 2024-05-08T20:14:08.777828
80 / tcp

nginx1.20.1

-506930052 | 2024-05-05T05:08:10.329020
143 / tcp

793560149 | 2024-05-08T20:14:10.613342
443 / tcp

nginx1.20.1

-1708341480 | 2024-04-23T07:04:25.346250
993 / tcp

-1830824801 | 2024-04-16T05:27:26.031571
995 / tcp

Products

Pricing

Contact Us

195.242.110.71

Last Seen: 2024-05-08

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1906305604 | 2024-05-06T09:45:20.799216 21 / tcp

1230822146 | 2024-04-25T13:39:44.674126 22 / tcp

OpenSSH6.6.1

1577366992 | 2024-04-19T08:05:38.594012 53 / tcp

772258679 | 2024-05-08T20:14:08.777828 80 / tcp

nginx1.20.1

-506930052 | 2024-05-05T05:08:10.329020 143 / tcp

793560149 | 2024-05-08T20:14:10.613342 443 / tcp

nginx1.20.1

-1708341480 | 2024-04-23T07:04:25.346250 993 / tcp

-1830824801 | 2024-04-16T05:27:26.031571 995 / tcp

Products

Pricing

Contact Us

1906305604 | 2024-05-06T09:45:20.799216
21 / tcp

1230822146 | 2024-04-25T13:39:44.674126
22 / tcp

1577366992 | 2024-04-19T08:05:38.594012
53 / tcp

772258679 | 2024-05-08T20:14:08.777828
80 / tcp

-506930052 | 2024-05-05T05:08:10.329020
143 / tcp

793560149 | 2024-05-08T20:14:10.613342
443 / tcp

-1708341480 | 2024-04-23T07:04:25.346250
993 / tcp

-1830824801 | 2024-04-16T05:27:26.031571
995 / tcp