GeneralInformation

Hostnames	querybilisim.com terminatormbd.com
Domains	querybilisim.com terminatormbd.com
Country	Turkey
City	Istanbul
Organization	Poyraz Hosting Network
ISP	TEKNOSOS BILISIM HIZMETLERI VE TIC. LTD. STI.
ASN	AS207459

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000 6379

-1014708741 | 2024-04-20T08:36:12.082052

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBHXnIrXtKZhN16NSyz+BTp6y
bDuRez3vC/oPPuwgezJEm0nDo67z8WKlr7H5HSb7ePGjxRDUa1GbuvaToZZOcGA=
Fingerprint: fc:57:e4:a2:d2:77:f0:4a:81:26:6f:8c:89:82:c9:be

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-03T16:21:25.258256

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 03 May 2024 16:21:25 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://91.151.90.209/

517297425 | 2024-05-06T05:43:06.848735

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 05:43:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: mVfe4QD_Td
x-envoy-upstream-service-time: 43
x-cache: Hit from cloudfront
via: 1.1 0fff86d337ea968bc372d93a73e04032.cloudfront.net (CloudFront)
x-amz-cf-pop: IST50-P2
x-amz-cf-id: udqJY_9Dcl8r0IGVxBUoA8iAqhKkBzDyET_CddLeV8X-xt7hx-uqCA==
age: 85
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:ea:9e:69:9f:92:6b:b9:fa:19:70:07:54:33:65:2a:6e:bc
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 26 06:00:07 2024 GMT
            Not After : Jul 25 06:00:06 2024 GMT
        Subject: CN=terminatormbd.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:93:48:1d:2e:6a:c4:25:93:68:bc:84:49:e3:a1:
                    a6:0b:4b:b2:44:27:09:48:d1:d8:e9:df:e7:66:ae:
                    b1:21:86:2d:31:d2:4c:d4:63:69:09:45:1f:0c:8e:
                    3f:fc:30:06:cd:e4:a0:08:e8:65:d7:48:97:a1:c1:
                    18:a4:89:eb:c3:68:c5:34:13:6b:78:58:fd:0b:c7:
                    ea:dd:eb:09:71:1f:be:d4:78:06:97:3f:53:6c:6a:
                    56:2b:36:03:97:eb:eb:e2:c7:5b:22:ce:39:60:f5:
                    99:d7:81:8b:8e:f7:e5:89:0c:33:bc:14:aa:73:7e:
                    52:1a:ac:2c:e6:a1:bb:53:e8:01:f2:36:33:99:54:
                    8c:1a:e9:03:a2:83:9c:01:5f:b2:c9:d9:8d:7a:a8:
                    ee:e4:9b:5f:de:b5:55:4c:fb:08:a9:68:ca:32:e4:
                    c0:8f:1a:34:51:f0:3a:83:4c:3f:68:95:c3:d8:7e:
                    bf:6b:4e:d0:0d:74:a6:54:2e:8c:9b:f1:d2:c2:5c:
                    61:a5:b6:d5:d8:ae:d3:75:cd:bd:2c:25:e9:56:c5:
                    22:68:f8:68:16:e6:6c:1f:02:49:04:0e:dd:5e:c9:
                    51:d5:88:6a:e8:c3:b8:4d:c0:f1:ac:cf:d8:98:b1:
                    38:d5:f2:b9:e0:fa:41:e4:a1:db:82:00:ab:e9:e7:
                    85:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FB:ED:1A:EF:05:E7:7A:AB:78:E8:B9:33:CF:24:EE:22:60:1C:F0:E2
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.terminatormbd.com, DNS:terminatormbd.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Apr 26 07:00:07.411 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:2B:78:0F:4A:B7:28:B6:ED:07:CD:DA:1C:
                                C5:F8:B0:5E:5F:5E:0B:CD:31:FC:13:88:DC:D7:02:DC:
                                F6:00:41:65:02:20:19:0E:2F:40:22:5A:E2:CA:FA:76:
                                D8:27:34:60:2E:A1:EA:2A:0A:80:B5:DA:4E:9C:D0:AF:
                                33:74:7E:09:32:03
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 26 07:00:07.407 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:33:51:FA:56:34:80:DC:5C:59:D6:E0:16:
                                0B:DF:DB:58:A6:70:A2:AE:3A:1E:1E:C6:54:7A:B7:12:
                                E0:73:BB:69:02:21:00:C4:D4:A6:2F:78:C5:EC:96:58:
                                F1:19:FA:A4:D2:05:63:EC:E5:59:B2:2B:FB:02:F2:C9:
                                A2:67:37:8E:1E:B7:B9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        9f:23:cc:b4:f9:33:1b:3a:89:5e:b1:cc:f2:9b:b5:5a:f1:08:
        f0:15:05:17:07:4e:5d:ce:0a:84:b4:eb:ac:fe:83:4c:8b:75:
        df:8f:b1:5f:fc:c0:d5:39:29:1d:eb:36:00:4d:58:b2:ae:fa:
        72:7e:6c:28:3a:c4:ca:b8:8b:b8:2c:df:5f:02:e3:7d:69:a9:
        44:2d:db:18:c0:d2:39:06:e4:5a:d0:e1:1a:93:af:ef:7c:82:
        b2:8a:06:e3:da:31:45:ec:70:a1:0c:38:7e:c8:30:b5:68:c6:
        8a:0f:46:1d:37:19:c6:2c:fe:13:e4:c1:55:b6:47:c9:a0:a3:
        af:f9:9a:c0:4c:3d:ab:5b:0f:ce:f4:23:21:b1:f4:7d:53:0b:
        b6:fe:27:7a:6b:e2:18:2f:0e:53:12:2c:e0:57:d5:27:4b:13:
        c0:1a:2e:60:81:63:6c:48:b5:c1:92:63:28:25:d9:c9:79:ee:
        83:e3:f6:35:19:37:db:c5:9a:35:d9:2a:e5:ff:da:aa:5f:9e:
        4e:46:f7:ef:96:29:dd:02:52:47:bd:31:5a:87:07:17:54:0a:
        e5:2b:7c:a3:01:3b:e3:74:d5:30:a0:06:a9:3f:7d:9c:ee:63:
        83:f1:78:47:21:8c:d7:b9:e6:16:f0:2a:89:53:b5:bc:4a:bc:
        5c:aa:8b:48

-1438226743 | 2024-05-07T06:33:51.255501

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Tue, 07 May 2024 06:33:51 GMT
x-trace: b9ILkfMF0
server: envoy
x-envoy-upstream-service-time: 137
x-cache: Miss from cloudfront
via: 1.1 89613046bee18c96945e96f35b26953e.cloudfront.net (CloudFront)
x-amz-cf-pop: IST50-P2
x-amz-cf-id: YbtCiPHoTHdjKhKx1MzNJW3emZn4RsV1kcI70dswb4E1OswxbOMhuw==
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-05-06T03:40:13.610662

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

1474554865 | 2024-05-05T12:11:36.800905

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1261705
ETag: W/"134089-lH4LGW/qJ+ChkcCajW3+8XsVijM"
Date: Sun, 05 May 2024 12:11:31 GMT
Connection: keep-alive
Keep-Alive: timeout=5

1152042554 | 2024-05-03T11:17:54.493533

6379 / tcp

# Server
redis_version:7.2.4
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:2a5e82a4865cf90d
redis_mode:standalone
os:Linux 5.15.0-101-generic x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:12.2.0
process_id:1
process_supervised:no
run_id:d5489c82b66fc314ad0a425bda99e7fca993de5f
tcp_port:6379
server_time_usec:1714735074077025
uptime_in_seconds:618043
uptime_in_days:7
hz:10
configured_hz:10
lru_clock:3459042
executable:/data/redis-server
config_file:
io_threads_active:0
listener0:name=tcp,bind=*,bind=-::*,port=6379

# Clients
connected_clients:3
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0
total_blocking_keys:0
total_blocking_keys_on_nokey:0

# Memory
used_memory:21119272
used_memory_human:20.14M
used_memory_rss:27148288
used_memory_rss_human:25.89M
used_memory_peak:39029512
used_memory_peak_human:37.22M
used_memory_peak_perc:54.11%
used_memory_overhead:1886192
used_memory_startup:865896
used_memory_dataset:19233080
used_memory_dataset_perc:94.96%
allocator_allocated:21344936
allocator_active:23404544
allocator_resident:27766784
total_system_memory:24995995648
total_system_memory_human:23.28G
used_memory_lua:68608
used_memory_vm_eval:68608
used_memory_lua_human:67.00K
used_memory_scripts_eval:35672
number_of_cached_scripts:17
number_of_functions:0
number_of_libraries:0
used_memory_vm_functions:32768
used_memory_vm_total:101376
used_memory_vm_total_human:99.00K
used_memory_functions:184
used_memory_scripts:35856
used_memory_scripts_human:35.02K
maxmemory:268435456
maxmemory_human:256.00M
maxmemory_policy:allkeys-lru
allocator_frag_ratio:1.10
allocator_frag_bytes:2059608
allocator_rss_ratio:1.19
allocator_rss_bytes:4362240
rss_overhead_ratio:0.98
rss_overhead_bytes:-618496
mem_fragmentation_ratio:1.29
mem_fragmentation_bytes:6069032
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_total_replication_buffers:0
mem_clients_slaves:0
mem_clients_normal:3856
mem_cluster_links:0
mem_aof_buffer:0
mem_allocator:jemalloc-5.3.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
async_loading:0
current_cow_peak:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:274846
rdb_bgsave_in_progress:0
rdb_last_save_time:1714117031
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:-1
rdb_current_bgsave_time_sec:-1
rdb_saves:0
rdb_last_cow_size:0
rdb_last_load_keys_expired:0
rdb_last_load_keys_loaded:0
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_rewrites:0
aof_rewrites_consecutive_failures:0
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:106
total_commands_processed:615823
instantaneous_ops_per_sec:0
total_net_input_bytes:341396536
total_net_output_bytes:3106657
total_net_repl_input_bytes:1539152
total_net_repl_output_bytes:0
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
instantaneous_input_repl_kbps:0.00
instantaneous_output_repl_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:108701
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:79569
evicted_keys:0
evicted_clients:0
total_eviction_exceeded_time:0
current_eviction_exceeded_time:0
keyspace_hits:1384
keyspace_misses:416698
pubsub_channels:0
pubsub_patterns:0
pubsubshard_channels:0
latest_fork_usec:0
total_forks:0
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
total_active_defrag_time:0
current_active_defrag_time:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:210
dump_payload_sanitizations:0
total_reads_processed:263606
total_writes_processed:263434
io_threaded_reads_processed:0
io_threaded_writes_processed:0
reply_buffer_shrinks:117
reply_buffer_expands:49
eventloop_cycles:6419421
eventloop_duration_sum:1294251480
eventloop_duration_cmd_sum:2115906
instantaneous_eventloop_cycles_per_sec:9
instantaneous_eventloop_duration_usec:210
acl_access_denied_auth:0
acl_access_denied_cmd:0
acl_access_denied_key:0
acl_access_denied_channel:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:291ec26e57592832b0ae9a6878dfcfb721df4b58
master_replid2:625d1c99da27a8f0743c77751cd138f0720afe26
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:605.345928
used_cpu_user:895.900159
used_cpu_sys_children:0.003235
used_cpu_user_children:0.005489
used_cpu_sys_main_thread:605.238943
used_cpu_user_main_thread:895.799696

# Modules

# Errorstats
errorstat_ERR:count=210

# Cluster
cluster_enabled:0

# Keyspace
db0:keys=11226,expires=11225,avg_ttl=15497176

# Keys
# NOTE: more keys available in the database
0OxwW74SHzG7xoWS9Ixi9KgnT1nfDycfQ1R9qOqqf2U
C38CW3Bmy6gpclEskTwi-VoBl9ogIU__5vm_wexi7Fs
_Wr65G4phFGwwApweq6KTrmRj12uHUkQ6sUbGmt2CzE
VBXWU2li0h5KnxyQc3nrRBDKYKKb7ebMmfO1Vdc_xEs
5_w7KPF0BVbSZHEw8jXZYCpaDXD7cH1SC9tj1dkQbQo
fFd0RK72VdUmNClbYTi46fmv3gKEb9QIFkPCahD9JV0
G9BZKjrxsgh9TIfrHziMzcxL8Cz3BJiQ6zfixHLZras
_v4rLO2m31gVpF-0CBL5oP_M11lGeiBzoin457RAdgA
tVBPwJcUq8ZBVOizrPjSLdiPTPRFMc6J5-pUVnzM8IQ
zPCvvs3HNaHLribZQvfih2KV0iDRQQIB2kb_bg-CUWU
UjARLVPRxS7qMQGbjEj1YJDmNytyVV6UlCaeUCZMLYo

# Connected Clients
id=3 addr=172.27.0.5:34652 laddr=172.27.0.2:6379 fd=8 name= age=618038 idle=34 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=4 addr=172.27.0.5:34658 laddr=172.27.0.2:6379 fd=9 name= age=618038 idle=485 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=0 qbuf-free=0 argv-mem=0 multi-mem=0 rbs=1024 rbp=0 obl=0 oll=0 omem=0 tot-mem=1928 events=r cmd=set user=default redir=-1 resp=2 lib-name= lib-ver=
id=124 addr=224.189.252.26:50520 laddr=172.27.0.2:6379 fd=10 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 ssub=0 multi=-1 qbuf=26 qbuf-free=20448 argv-mem=10 multi-mem=0 rbs=1024 rbp=569 obl=0 oll=0 omem=0 tot-mem=22426 events=r cmd=client|list user=default redir=-1 resp=2 lib-name= lib-ver=

91.151.90.209

Last Seen: 2024-05-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1014708741 | 2024-04-20T08:36:12.082052
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-03T16:21:25.258256
80 / tcp

nginx1.18.0

517297425 | 2024-05-06T05:43:06.848735
443 / tcp

nginx1.18.0

-1438226743 | 2024-05-07T06:33:51.255501
3000 / tcp

-1246004407 | 2024-05-06T03:40:13.610662
4000 / tcp

1474554865 | 2024-05-05T12:11:36.800905
5000 / tcp

1152042554 | 2024-05-03T11:17:54.493533
6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

91.151.90.209

Last Seen: 2024-05-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1014708741 | 2024-04-20T08:36:12.082052 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

589765266 | 2024-05-03T16:21:25.258256 80 / tcp

nginx1.18.0

517297425 | 2024-05-06T05:43:06.848735 443 / tcp

nginx1.18.0

-1438226743 | 2024-05-07T06:33:51.255501 3000 / tcp

-1246004407 | 2024-05-06T03:40:13.610662 4000 / tcp

1474554865 | 2024-05-05T12:11:36.800905 5000 / tcp

1152042554 | 2024-05-03T11:17:54.493533 6379 / tcp

Redis key-value store7.2.4

Products

Pricing

Contact Us

-1014708741 | 2024-04-20T08:36:12.082052
22 / tcp

589765266 | 2024-05-03T16:21:25.258256
80 / tcp

517297425 | 2024-05-06T05:43:06.848735
443 / tcp

-1438226743 | 2024-05-07T06:33:51.255501
3000 / tcp

-1246004407 | 2024-05-06T03:40:13.610662
4000 / tcp

1474554865 | 2024-05-05T12:11:36.800905
5000 / tcp

1152042554 | 2024-05-03T11:17:54.493533
6379 / tcp