GeneralInformation

Hostnames	api.questjsq.com
Domains	questjsq.com
Country	China
City	Shanghai
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443

1239523529 | 2024-04-23T07:17:29.974758

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDANi9PEXnmYveQo+EGwmMhOW2uGopj2vYYhWqAGQdyh8Ec
x1UmCIomrqtOTnGpIXwQFMB5EX8Sv5Duhxl+yT+1qIDsL7M2j8+h7XIt3IZMlaMMCSVd07dIdHF6
fRVv2gaj1Ec1+tVYscWWsFYORqtdXzLnLjmo9mHZMsCkeWupVmsopUO72NPuNTNk8GbUCccVc4u4
yJ6jbEM8l6Pr1NIHAJo7EeCey4/Y4W2rzMPuI2Wn4T9MjaSEETk4ccut6pZU9d8X0dJ0C3IlX0c6
ZfgnkQLpoKGsDn4SUHd3lC870o3swPuwkJNpEaR294ZyGjjvGt+FNYnaRbws/WyplMoY9KapC/Rz
t3AolSD/YfjJisorbLeUEI3YIAcWXjsi17Gr8q62OzeFof+gSXIsuFyycdvMexGkd2d7LwK40Tg5
5w6VcnJUMTLmpdl3l6FeJvDLFEjTNZfVbk8WF2DZWIbuISXVrFi35v7Q++KduL9ssw5Susba1ihH
1y/cM9+0ONs=
Fingerprint: 01:75:a1:2d:fb:9e:30:8e:b0:19:26:b9:98:af:0d:8e

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-158149353 | 2024-04-27T14:46:37.968311

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Sat, 27 Apr 2024 14:46:37 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

-1060095501 | 2024-05-07T05:48:14.406144

443 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Tue, 07 May 2024 05:48:14 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 139
Connection: keep-alive
X-Powered-By: Express
Content-Security-Policy: default-src 'none'
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:50:34:03:13:a4:fe:35:31:68:26:fd:5e:e6:90:8b:15:4b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 19 02:43:20 2024 GMT
            Not After : Jun 17 02:43:19 2024 GMT
        Subject: CN=api.questjsq.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b9:ab:cd:d8:20:ad:37:71:1f:5e:cd:04:74:03:
                    8f:08:41:0d:fb:47:90:45:6f:fd:51:e0:a5:d6:09:
                    b1:b4:c9:64:54:48:7c:c5:2b:0e:9d:90:b7:a8:ff:
                    e3:24:37:7a:61:49:76:39:18:52:0a:5e:43:64:34:
                    53:57:c9:c7:13:3b:c6:3a:04:12:71:a0:0e:38:ee:
                    6f:b8:58:b5:d5:5b:b6:13:1e:e4:02:43:08:33:74:
                    64:4d:67:28:79:8a:fc:22:96:f4:a1:11:d3:55:47:
                    31:d3:b4:a4:3c:f3:30:72:68:38:1f:b6:c2:e4:9c:
                    0e:e5:29:df:c2:74:8f:4c:ec:48:a8:8b:d2:fc:b3:
                    91:f6:2d:15:5b:1a:c4:6c:34:f1:93:73:c2:6c:e3:
                    64:f4:5f:bc:db:d5:5b:a1:1e:d9:80:0c:a9:ed:73:
                    85:f8:54:c7:35:14:46:7d:7c:8b:ed:5e:49:23:b0:
                    6a:a7:61:75:b3:6e:b0:5b:b2:49:0c:cf:23:cf:60:
                    64:b9:dc:9f:00:7b:7f:1b:c6:b0:42:6f:52:81:df:
                    ba:a6:8e:9a:c0:ce:b2:2f:23:86:05:74:6c:ce:6d:
                    13:f9:e5:55:59:ec:72:bc:4b:e9:8a:e2:2c:84:e8:
                    90:1a:59:2e:ea:99:4d:09:dc:68:d6:3a:8b:e5:50:
                    51:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                78:47:73:0C:6B:B5:A1:01:4A:28:C3:14:E1:A4:AB:42:EF:32:6F:90
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:api.questjsq.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 19 03:43:20.342 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:EA:D3:52:A2:8D:28:14:00:63:E9:3C:
                                B2:25:12:5B:A3:36:0E:8B:11:DD:52:9A:C8:51:97:25:
                                CA:90:08:B6:C4:02:20:33:51:F1:05:7F:69:3B:0E:AE:
                                6A:B8:47:79:3B:71:66:54:47:FC:9D:04:57:C0:70:B5:
                                EA:35:D7:06:1D:CF:E9
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Mar 19 03:43:20.359 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:C1:03:AD:97:D6:46:72:D1:E6:8F:43:
                                42:A9:C8:93:5C:C4:67:3B:FC:07:33:41:2A:E2:83:93:
                                6B:71:4D:95:52:02:20:04:EA:27:90:42:50:93:91:3C:
                                5F:D0:B4:3B:53:11:5B:B6:8A:D5:B5:17:30:BF:CC:85:
                                68:2F:53:43:37:CF:9B
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9a:a6:1a:1c:fc:72:ad:4a:ad:32:9b:88:4e:6d:83:e3:dd:f6:
        14:37:07:2d:fb:bc:a7:4e:c3:ef:fb:64:1c:84:45:97:0c:69:
        05:8e:8e:48:6c:9b:73:fd:d6:1e:b0:a7:e8:66:05:ba:2e:41:
        db:c2:7f:1a:40:36:6a:0d:36:b6:d9:0b:b0:df:46:d6:12:40:
        29:ce:55:80:c8:23:5f:6e:24:13:55:13:b9:22:26:42:78:5f:
        1b:5c:9c:27:e5:bc:03:33:35:1a:d6:26:d4:25:0e:32:4f:26:
        79:09:5c:71:c8:82:f2:da:e2:df:bb:c4:1a:ac:c9:31:03:62:
        db:10:0e:b6:49:32:e4:f6:fc:1d:08:73:6d:d8:f3:46:ae:62:
        74:08:fe:1e:4d:fd:cd:87:fa:31:66:67:ba:07:43:7b:57:9c:
        81:a3:74:dc:ec:16:94:fb:55:2e:0f:29:13:f9:4e:1d:d2:a5:
        2b:59:bf:cd:be:10:e2:4a:d5:a6:80:8b:82:a0:d1:3b:b8:4d:
        a4:2e:96:51:79:1b:83:32:f8:1f:8f:6c:df:f1:04:8a:b2:8d:
        22:75:f6:3f:1e:db:28:97:d7:2c:14:73:7d:f7:f0:d1:3a:eb:
        11:23:b9:8f:7f:8e:a8:8a:d8:74:c9:5c:41:e9:75:c5:96:ca:
        08:40:38:de

47.116.203.172

Last Seen: 2024-05-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1239523529 | 2024-04-23T07:17:29.974758
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u2

-158149353 | 2024-04-27T14:46:37.968311
80 / tcp

nginx1.18.0

-1060095501 | 2024-05-07T05:48:14.406144
443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

47.116.203.172

Last Seen: 2024-05-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

1239523529 | 2024-04-23T07:17:29.974758 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u2

-158149353 | 2024-04-27T14:46:37.968311 80 / tcp

nginx1.18.0

-1060095501 | 2024-05-07T05:48:14.406144 443 / tcp

nginx1.18.0

Products

Pricing

Contact Us

1239523529 | 2024-04-23T07:17:29.974758
22 / tcp

-158149353 | 2024-04-27T14:46:37.968311
80 / tcp

-1060095501 | 2024-05-07T05:48:14.406144
443 / tcp