GeneralInformation

Hostnames	server1.reply4u.com stalcalc-api.net server1.stalcalc-api.net www.stalcalc-api.net
Domains	reply4u.com stalcalc-api.net
Country	United States
City	Phoenix
Organization	Namecheap, Inc.
ISP	Namecheap, Inc.
ASN	AS22612

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 25 81 111 443 3001

1287197568 | 2024-04-24T11:19:41.051530

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC8BmCsgqa7z0aedIgRC8TQHZ+EI9p+/HwJUsGucfd7WRfy
tbSzf/bnM8MtKUPH429Rm524/AGV5I8Zl+4WtshB0mtho3XG507zfGHedUaZzBM+CFcvsgy76k/i
7I+JiE9TVQJBnWjzYsPykj8VvvvYzKSvsxH7p7anzLYl/sbftksEEtirM/Km3HuPWpvBnG7mCUxg
4oT5jZO+b+iNwNKKzcs2GqrajSE8vWngBPgR04jO9vyKFVnrI4jlqPndKLLKgzTSesQe0+ithpzh
Taz5V9r7lng0WzXVmrEbbOxER983CHC23qTHxsE6EcSoFX2tluBexLgRvdutUe7tcavD
Fingerprint: d9:08:4e:a8:2f:ce:77:cc:5d:0e:6a:28:23:32:89:32

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

743674910 | 2024-04-20T15:24:07.744994

25 / tcp

220 server1.stalcalc-api.net ESMTP Postfix (Ubuntu)
250-server1.stalcalc-api.net
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-SMTPUTF8
250 CHUNKING

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:6a:97:bc:6f:01:ae:56:6f:19:f5:4a:44:db:d4:e0:65:3e:b8:a1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=server1.stalcalc-api.net
        Validity
            Not Before: Mar 17 17:40:52 2023 GMT
            Not After : Mar 14 17:40:52 2033 GMT
        Subject: CN=server1.stalcalc-api.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ee:7c:7c:38:62:80:82:55:09:31:31:17:31:0c:
                    df:d4:bb:f7:13:6a:ab:44:35:0c:aa:56:13:1d:08:
                    ef:3b:48:f8:79:5e:4a:09:37:8b:dd:2f:1c:d6:30:
                    4b:83:6a:94:9d:d3:1c:91:3c:4b:8e:8a:0d:03:8e:
                    c3:04:dc:a6:7a:f3:05:1d:17:0b:3e:6f:9c:e5:d1:
                    f0:81:3d:8f:df:c3:91:01:ba:da:b6:0a:9d:1c:9b:
                    c7:29:1e:e8:d5:82:06:2a:a7:83:33:47:98:b7:58:
                    02:41:09:8e:87:3c:0a:74:7c:fd:7b:9d:84:af:26:
                    8c:23:6f:b1:67:25:ca:cc:0e:ff:87:96:4c:d4:50:
                    00:e9:fb:b8:0d:c8:28:7c:34:d8:98:64:84:ea:3c:
                    9a:bd:cd:d8:4f:9a:03:64:13:02:91:47:ca:b3:9c:
                    11:19:10:d7:13:7b:bf:86:12:57:94:38:8f:83:d5:
                    d9:37:03:95:dd:86:d2:b4:85:e8:02:47:25:f3:f2:
                    d0:62:b3:84:5d:23:f0:4c:d7:27:0d:c5:50:27:e2:
                    9c:6a:ab:05:8f:0b:58:28:e5:d2:16:3e:1f:fc:98:
                    e9:05:0a:4f:67:d4:60:d7:3c:cc:54:72:b4:7d:6b:
                    f1:92:a5:c5:19:e7:79:78:60:93:39:a3:7e:6f:fd:
                    d0:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:server1.stalcalc-api.net
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        23:4a:81:f5:f5:a7:0f:f4:11:a7:27:db:88:6a:fd:73:4e:b5:
        f1:9d:0f:c3:89:59:cb:a4:db:e8:b4:d1:98:e4:a3:35:60:f3:
        9d:70:30:d4:4f:40:34:8c:cf:11:06:6f:64:c1:81:ce:83:2c:
        25:9d:0a:27:11:f1:e8:f9:9b:cb:82:35:7c:ba:3b:ad:81:fe:
        6d:f3:66:f3:5b:9c:29:6a:38:c8:94:07:a4:21:eb:fb:2e:ac:
        e3:a2:93:ef:f1:7a:bc:31:e4:39:b6:7e:10:dd:e0:00:81:50:
        69:a6:03:ec:b8:a5:2e:cc:0b:66:7c:c8:4f:54:18:3c:1f:bb:
        77:b0:19:4a:8c:a9:4c:38:81:86:1b:6b:44:23:a6:b4:2d:53:
        50:e6:b6:07:91:cf:ef:36:e0:a3:51:79:52:f3:e5:f1:84:11:
        87:48:b0:c9:d3:a0:c3:85:4a:64:0b:5b:b8:79:c6:e1:71:3a:
        da:1a:c4:8e:c6:d3:16:59:c8:6c:1a:c5:6a:ad:e5:0b:29:bb:
        6e:39:bd:f9:52:aa:e0:72:f9:5c:06:df:3f:c2:cb:48:69:c2:
        7c:7b:23:fa:04:9c:a8:99:1c:bb:b5:db:7d:c5:74:fa:b5:c3:
        c7:de:09:4a:01:a6:e7:d6:72:54:42:7c:fa:6f:13:f4:06:c3:
        23:6e:6b:42

589765266 | 2024-04-22T16:02:29.442410

81 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 16:02:29 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://stalcalc-api.net/

-1345205424 | 2024-04-24T00:25:43.088401

111 / tcp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

-1345205424 | 2024-04-21T19:53:16.587526

111 / udp

Portmap
Program	Version	Protocol	Port
portmapper	4	tcp	111
portmapper	3	tcp	111
portmapper	2	tcp	111
portmapper	4	udp	111
portmapper	3	udp	111
portmapper	2	udp	111

1651973090 | 2024-04-22T16:02:31.781752

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 22 Apr 2024 16:02:31 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 21 Apr 2020 14:09:01 GMT
Connection: keep-alive
ETag: "5e9efe7d-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            74:11:d4:da:0c:23:03:1e:8d:b3:80:a0:a1:88:0d:b4
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Jan 31 00:00:00 2024 GMT
            Not After : Jan 31 23:59:59 2025 GMT
        Subject: CN=stalcalc-api.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bc:00:2f:42:bf:cc:a2:67:09:86:ea:83:dc:c6:
                    a2:fe:66:8a:1e:f8:c4:fd:9b:18:53:92:0f:0a:2a:
                    89:ec:6d:6e:ea:2d:5e:13:49:d6:3a:18:99:f7:54:
                    c6:bb:9e:38:de:86:2f:c4:ee:17:d6:ab:99:7b:b4:
                    fc:38:fa:41:76:a2:f5:26:02:77:08:fb:6c:26:b1:
                    d8:f6:2d:d9:ec:23:22:c2:55:cd:2b:16:b2:74:24:
                    9f:fd:0c:f1:22:b0:a7:77:9b:dd:b1:61:eb:7d:3d:
                    e6:7d:ee:66:fa:84:79:5d:2f:d5:66:1e:a1:7a:8b:
                    61:76:88:b1:2e:a0:3a:28:e1:ed:f6:e7:32:09:03:
                    c6:e7:d6:a9:6e:20:f7:df:e8:7c:c9:a6:48:7a:df:
                    ee:53:b7:39:53:c4:43:c9:ff:eb:3a:20:00:30:34:
                    6b:9c:c8:6b:a3:17:c5:8a:63:f7:e0:89:41:cb:f0:
                    96:c8:36:06:50:86:87:3e:11:a9:57:44:0a:0d:90:
                    7d:21:68:87:15:19:bf:ef:55:ca:3d:54:30:1f:6a:
                    2c:67:82:a4:62:f4:8f:4d:e1:a7:80:c6:65:13:f1:
                    c7:86:02:8b:b7:df:dd:fb:67:14:c5:1d:2e:5b:98:
                    a4:78:b6:ea:a6:3f:f2:ae:fe:19:e5:ea:72:fa:4f:
                    12:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                DE:93:9F:E4:DE:F6:00:E9:14:F0:6A:A3:BE:3E:E7:67:ED:43:0A:61
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:stalcalc-api.net, DNS:www.stalcalc-api.net
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
                                1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
                    Timestamp : Jan 31 12:00:45.434 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:0A:60:F0:3E:22:2B:2E:01:BD:9B:A8:F1:
                                3D:22:73:CD:E0:E0:76:81:C6:07:70:73:A0:52:37:8F:
                                EA:56:52:9B:02:20:67:3E:57:AF:C5:1B:9A:1D:14:4F:
                                7C:66:1E:2B:D1:1C:59:5E:24:09:AC:26:E4:CB:42:1D:
                                B3:34:2D:F3:16:A6
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
                                D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
                    Timestamp : Jan 31 12:00:45.381 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:9E:38:D9:DF:63:D6:14:ED:49:25:4B:
                                CB:87:46:7E:49:4E:E3:D5:0F:69:CD:5C:4F:44:D0:56:
                                A6:BC:89:FA:16:02:20:44:37:12:71:2B:57:D2:44:AF:
                                C8:31:2F:5C:6E:F1:D9:D4:C2:C1:46:CD:7B:03:32:F5:
                                A1:16:D7:62:CE:BA:1A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
                                1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
                    Timestamp : Jan 31 12:00:45.398 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:29:7D:D2:00:00:AD:99:B8:5F:3C:29:4A:
                                84:02:C2:63:98:58:04:4E:CA:30:6A:47:AD:8F:07:42:
                                1A:B3:14:80:02:21:00:C7:4D:46:F8:2B:E5:D5:A6:A1:
                                96:B4:C2:67:93:CA:CC:68:3A:3E:FD:49:97:90:E6:86:
                                22:B6:50:E4:1D:76:46
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b3:e3:65:0c:ef:71:20:98:4b:b0:9a:45:6d:f6:79:1e:b9:81:
        c3:18:b2:2e:e9:2c:ff:19:d6:02:73:25:17:16:d9:73:5e:10:
        22:45:9b:ca:76:03:ce:39:d6:85:de:b4:70:79:5b:c9:f9:ca:
        f3:f2:b1:c6:1c:c1:53:b9:fa:5a:2d:3d:a6:05:ed:8d:bb:b3:
        77:21:6c:44:2c:c9:bf:72:69:08:9a:e1:71:f7:e3:11:29:29:
        b5:1c:5b:04:6d:ed:66:68:75:5a:76:46:77:15:79:94:0b:67:
        7f:f6:86:0a:15:76:66:ce:a1:4e:c7:47:65:8a:43:de:1e:9a:
        33:d5:2a:ec:b7:03:8a:43:95:7c:25:89:03:af:3f:c5:d3:e6:
        52:8c:c5:ea:43:55:ca:c5:3d:04:aa:57:f1:c2:e0:c6:55:d3:
        2b:27:2b:8b:77:d2:26:7f:16:a8:90:7a:cb:38:4f:0f:44:35:
        d5:03:9f:d8:e7:f1:ee:39:38:91:67:83:de:f6:e9:e1:13:40:
        5a:13:d4:5a:e4:46:6a:b7:f2:7b:30:e2:7b:7f:48:b8:4a:c3:
        14:33:de:77:32:93:e0:96:27:05:6f:19:d2:a8:df:56:ed:6b:
        3c:82:00:c1:43:e0:4a:8a:88:15:36:c2:e8:3a:30:0c:02:5a:
        3f:b4:be:50

-2007444694 | 2024-04-24T05:28:03.788207

3001 / tcp

HTTP/1.1 404 Not Found
X-Powered-By: Express
Vary: Origin
Access-Control-Allow-Credentials: true
Content-Type: application/json; charset=utf-8
Content-Length: 63
ETag: W/"3f-GR0G8sZfNVmVbqqGkyrPOefU7Ys"
Date: Wed, 24 Apr 2024 05:28:03 GMT
Connection: keep-alive
Keep-Alive: timeout=5

{"statusCode":404,"message":"Cannot GET /","error":"Not Found"}

199.192.21.209

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1287197568 | 2024-04-24T11:19:41.051530
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

743674910 | 2024-04-20T15:24:07.744994
25 / tcp

Postfix smtpd

589765266 | 2024-04-22T16:02:29.442410
81 / tcp

nginx1.18.0

-1345205424 | 2024-04-24T00:25:43.088401
111 / tcp

-1345205424 | 2024-04-21T19:53:16.587526
111 / udp

1651973090 | 2024-04-22T16:02:31.781752
443 / tcp

nginx1.18.0

-2007444694 | 2024-04-24T05:28:03.788207
3001 / tcp

Products

Pricing

Contact Us

199.192.21.209

Last Seen: 2024-04-24

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1287197568 | 2024-04-24T11:19:41.051530 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

743674910 | 2024-04-20T15:24:07.744994 25 / tcp

Postfix smtpd

589765266 | 2024-04-22T16:02:29.442410 81 / tcp

nginx1.18.0

-1345205424 | 2024-04-24T00:25:43.088401 111 / tcp

-1345205424 | 2024-04-21T19:53:16.587526 111 / udp

1651973090 | 2024-04-22T16:02:31.781752 443 / tcp

nginx1.18.0

-2007444694 | 2024-04-24T05:28:03.788207 3001 / tcp

Products

Pricing

Contact Us

1287197568 | 2024-04-24T11:19:41.051530
22 / tcp

743674910 | 2024-04-20T15:24:07.744994
25 / tcp

589765266 | 2024-04-22T16:02:29.442410
81 / tcp

-1345205424 | 2024-04-24T00:25:43.088401
111 / tcp

-1345205424 | 2024-04-21T19:53:16.587526
111 / udp

1651973090 | 2024-04-22T16:02:31.781752
443 / tcp

-2007444694 | 2024-04-24T05:28:03.788207
3001 / tcp