GeneralInformation

Hostnames	xuehusang.cn www.xuehusang.cn
Domains	xuehusang.cn
Cloud Provider	Tencent Cloud
Country	China
City	Shanghai
Organization	Tencent cloud computing (Beijing) Co., Ltd.
ISP	Shenzhen Tencent Computer Systems Company Limited
ASN	AS45090

WebTechnologies

JavaScript graphics

JavaScript libraries

Miscellaneous

UI frameworks

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443 1337 3000 3001 8888 9090

895483537 | 2024-09-09T14:29:24.484485

22 / tcp

SSH-2.0-OpenSSH_7.4
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDUhmfE+fGWIY0UyE6nxYglhuD2ycUOTTuSC/eOvWLT8zsW
/OY3JjBnZHonGUuZgZR93ekmeu5xuAASMMPhkL0Kvl4qtoK8bqpugpUj6nGYj4O/o1xada6X2Uj1
7kJ3n3RjVwXYR3HbXA3/ZsNQ7xTdGT/ZHYc/w1RSHPk2cl36RDmUY6Jjiv12R58XLLuI2qjRsnQk
S9ofaLh7Ww60ZITi5PEf5HGI+av5lIMGDotG3ZlH9ikT5dzqBzJnfR+Vg3ES1qxpY9oZPXry3n00
F1YmYlRReYzNAJTqScQtpUSvihUjbsXQuiDs/S5iM4wF+pxqNz1OpxKPLi/TNpjQhmgV
Fingerprint: e6:50:c7:31:16:7c:f7:3f:b3:32:60:18:07:b6:3a:26

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	aes128-ctr
	aes192-ctr
	aes256-ctr

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

CVE-2008-3844 CVE-2021-41617 CVE-2020-15778 CVE-2020-14145 CVE-2019-6111 13 moreCVE-2019-6110 CVE-2019-6109 CVE-2018-15919 CVE-2018-15473 CVE-2017-15906 CVE-2016-20012 CVE-2007-2768 CVE-2023-51767 CVE-2023-51385 CVE-2023-48795 CVE-2023-38408 CVE-2021-36368 CVE-2018-20685

-2100514759 | 2024-09-13T06:21:55.420021

80 / tcp

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 13 Sep 2024 06:21:54 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://111.229.112.197/
Strict-Transport-Security: max-age=31536000

723978865 | 2024-09-15T20:32:01.533814

443 / tcp

雪狐冰屋 - 雪狐桑的个人网站

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 15 Sep 2024 20:32:01 GMT
Content-Type: text/html
Content-Length: 72818
Last-Modified: Mon, 09 Sep 2024 08:15:45 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "66deaeb1-11c72"
Strict-Transport-Security: max-age=31536000
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            bb:15:85:79:ce:98:8e:93:a7:fc:f3:ba:51:da:ec:82
        Signature Algorithm: sha384WithRSAEncryption
        Issuer: C=CN, O=TrustAsia Technologies, Inc., CN=TrustAsia RSA DV TLS CA G2
        Validity
            Not Before: Aug 25 00:00:00 2024 GMT
            Not After : Nov 23 23:59:59 2024 GMT
        Subject: CN=xuehusang.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:da:ad:38:b7:58:8f:f8:b9:47:13:6c:d5:9b:da:
                    0b:fc:f9:70:1a:9e:46:09:4d:98:11:ec:a9:c4:c5:
                    5c:2d:88:11:73:f9:f7:e7:f5:25:e7:c5:a2:48:6c:
                    c0:8e:cd:92:de:8f:54:9f:f0:f6:f0:5e:c1:fd:2f:
                    bf:5a:0b:46:01:2f:ee:e4:e1:18:35:27:1a:cf:d6:
                    72:ae:06:dd:46:52:4e:f8:bb:42:4d:9c:8d:5b:30:
                    bd:96:a6:7a:81:7e:85:f2:66:40:b0:d5:e4:d7:db:
                    2d:ed:e8:ab:26:49:b8:ce:d0:de:83:5e:23:0e:41:
                    26:df:33:c1:5d:3b:98:c4:8b:89:0c:4a:49:63:cd:
                    18:6a:a7:19:56:8c:37:6c:d1:48:ab:b4:cf:6d:32:
                    86:b5:29:5d:d9:e1:f5:56:92:26:0d:58:c1:da:00:
                    cb:0f:9c:fa:13:78:98:55:c0:f1:2d:37:22:23:69:
                    da:73:56:30:99:90:e9:6e:00:21:b1:bf:a4:7d:a9:
                    42:3e:dd:7b:9f:81:52:29:5b:f4:f2:1f:47:61:b2:
                    bd:af:64:04:63:2d:09:1d:cf:b3:75:d9:7c:0b:9a:
                    83:b7:eb:b2:65:7e:1e:76:d4:66:ca:8d:df:6f:8a:
                    e6:3f:b1:e8:ea:f6:44:62:89:8f:af:b4:30:ef:80:
                    b1:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                5F:3A:7C:11:10:7E:0C:67:71:61:DC:8B:A3:B5:00:03:67:F5:57:1C
            X509v3 Subject Key Identifier: 
                82:F1:6A:B1:D5:D8:11:BA:49:97:33:95:DD:8C:EE:38:52:F9:68:4E
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.49
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.trust-provider.cn/TrustAsiaRSADVTLSCAG2.crt
                OCSP - URI:http://ocsp.trust-provider.cn
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Aug 25 14:20:31.815 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:77:F5:AC:12:B4:C6:BE:3F:34:EF:C7:58:
                                26:5C:A9:88:07:1B:84:3E:19:73:8E:9A:27:5A:3C:4C:
                                46:CA:2B:85:02:21:00:9B:68:3E:A7:7E:F2:CE:3F:FB:
                                64:02:C4:1B:B9:9F:0D:2F:CA:E1:98:77:D4:D1:BF:BE:
                                6C:42:85:E5:46:CC:A3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Aug 25 14:20:31.777 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:19:42:61:96:A1:B4:84:33:A5:33:24:DA:
                                AC:5F:2E:CB:75:BA:74:7D:A5:0E:4C:68:C5:EA:5F:4E:
                                94:7A:2F:F8:02:20:5D:D8:F9:37:5D:21:45:7D:A8:41:
                                73:85:3E:91:91:7E:A2:73:6A:00:57:20:BE:25:5D:DF:
                                88:24:01:2B:81:71
            X509v3 Subject Alternative Name: 
                DNS:xuehusang.cn, DNS:www.xuehusang.cn
    Signature Algorithm: sha384WithRSAEncryption
    Signature Value:
        39:e6:02:61:66:47:a3:87:26:28:d0:9c:41:7d:ae:66:fd:a3:
        7c:94:58:a6:b5:fd:c5:77:3e:9f:ac:3c:45:65:9c:a5:74:8f:
        f7:36:cf:25:8b:79:bd:9e:ef:f5:8e:0a:67:89:e1:68:36:05:
        05:6c:f7:d1:96:d5:b1:aa:bd:3f:9c:7e:d9:b4:53:20:b6:c7:
        ef:16:c6:91:c1:53:f4:d5:a6:82:7f:4a:08:c8:0c:f4:5f:ff:
        6f:c7:a7:ec:fe:d7:10:7e:1a:47:de:2b:53:a5:47:56:4a:9c:
        f8:6f:37:b6:ab:85:bf:a7:56:68:39:26:ed:60:73:fb:35:42:
        a5:5e:f0:5d:18:cb:5b:82:bf:bb:30:99:d2:db:d4:0a:2c:46:
        6a:d2:da:fe:00:e1:a6:ec:79:c0:fb:3d:dd:16:63:60:9a:3c:
        71:2c:0f:3f:78:17:c7:a9:30:66:ab:27:28:95:09:4a:0e:32:
        e1:54:84:ad:c7:5e:43:e9:47:df:9a:fe:d6:67:c1:1b:63:41:
        fa:41:65:c4:12:de:da:90:43:9f:77:0c:d4:c0:65:a4:d5:95:
        95:c5:fa:69:fa:31:b8:74:97:0a:ea:97:bc:ea:e4:fc:9e:16:
        a9:6b:af:88:30:8a:bf:84:5e:48:b0:47:86:6b:a0:14:51:60:
        e5:a5:b5:ba:34:bc:bc:fe:35:2b:68:d6:6f:c3:b2:49:17:c5:
        fd:a8:c7:05:09:7c:a5:d4:dd:65:b5:01:1b:95:33:41:34:ed:
        17:05:01:b0:03:f3:49:7f:b1:e6:a5:3c:0e:5c:79:f1:3e:c5:
        74:92:31:74:84:26:f4:53:04:15:22:f2:e9:d3:44:1a:c4:d1:
        97:85:b2:13:58:68:69:a3:c7:1f:e4:5b:c1:dd:d9:83:82:28:
        95:bd:11:99:ed:cc:cf:be:53:ec:75:db:90:bb:41:09:80:3f:
        d0:92:d1:b2:fe:14:42:14:43:34:8c:14:db:20:9a:e3:78:43:
        40:25:58:b3:1f:28

CVE-2020-11023 CVE-2020-11022 CVE-2019-11358 CVE-2015-9251

-1806498129 | 2024-09-13T14:09:26.832031

1337 / tcp

HTTP/1.1 200 OK
X-Powered-By: Sails <sailsjs.org>
Content-Type: text/html; charset=utf-8
Content-Length: 22881
ETag: W/"5961-XBWc+T7N04mt82I/BS7GqA"
Date: Fri, 13 Sep 2024 14:09:26 GMT
Connection: keep-alive

<!DOCTYPE html>
<html id="konga">
<head>
    <title>Konga</title>

    <base href="">

    <!-- Viewport mobile tag for sensible mobile support -->
    <meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">

    <!--
        Stylesheets and Preprocessors
        ==============================

        You can always bring in CSS files manually with `<link>` tags, or asynchronously
        using a solution like AMD (RequireJS).  Or, if you like, you can take advantage
        of Sails' conventional asset pipeline (boilerplate Gruntfile).

        By default, stylesheets from your `assets/styles` folder are included
        here automatically (between STYLES and STYLES END). Both CSS (.css) and LESS (.less)
        are supported. In production, your styles will be minified and concatenated into
        a single file.

        To customize any part of the built-in behavior, just edit `tasks/pipeline.js`.
        For example, here are a few things you could do:

            + Change the order of your CSS files
            + Import stylesheets from other directories
            + Use a different or additional preprocessor, like SASS, SCSS or Stylus
    -->

    <!--<link href="https://fonts.googleapis.com/icon?family=Material+Icons" rel="stylesheet">-->

    <!--STYLES-->
    <link rel="stylesheet" href="bower_components/angular-loading-bar/build/loading-bar.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/angular-xeditable/dist/css/xeditable.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/angular-toastr/dist/angular-toastr.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/bootstrap-switch/dist/css/bootstrap3/bootstrap-switch.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/angular-spinkit/build/angular-spinkit.min.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/angular-chips/dist/main.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/angular-json-human/dist/angular-json-human.css?r=0.14.9">
    <link rel="stylesheet" href="bower_components/mdi/css/materialdesignicons.css?r=0.14.9">
    <link rel="stylesheet" href="styles/importer.css?r=0.14.9">
    <!--STYLES END-->
</head>

<body class="body">
<div ng-controller="MainController" data-ng-cloak class="ng-cloak">
    <div data-ui-view="sidenav" ng-if="$state.name.indexOf('auth') < 0 && $state.name.indexOf('error') < 0"></div>
    <div class="main-container-wrapper" ng-class="{'full-width no-margin clear-left':$state.name.indexOf('auth') > -1}">
        <div data-ui-view="header"></div>
        <div class="alert alert-fixed-top alert-success alert-dismissible" ng-if="$stateParams.activated">
            <button type="button" class="close" data-dismiss="alert" aria-label="Close"><span
                        aria-hidden="true">&times;</span></button>
            <strong>Neat!</strong> Your account is activated.
        </div>
        <div class="main-container-wrapper-static">
            <div class="container-fluid">

                <div class="main-container container">
                    <div ng-if="isAuthenticated() && $state.name != 'admin' && $state.name != 'dashboard'"
                         class="page-head">
                        <h3 class="page-title">
                            <!--<span ng-bind-html="$state.data.prefix" class="page-title-prefix"></span>-->
                            <span ng-bind-html="$state.data.pageName"></span>&nbsp;
                            <div ng-show="loading" id="spinner" data-spinner='{"radius": 15,"strokeWidth":3}'
                                 style="display: inline-block;"></div>
                        </h3>
                        <p ng-if="$state.data.pageDescription" class="help-block"
                           ng-bind-html="$state.data.pageDescription"></p>
                        <ui-breadcrumbs ng-if="$state.data.displayName" displayname-property="data.displayName"
                                        template-url="js/app/core/layout/partials/uiBreadcrumbs.tpl.html">
                        </ui-breadcrumbs>
                    </div>
                    <br><br>
                    <div data-ui-view="content" class="main-container-inner"></div>
                </div>
            </div>

        </div>
        <div data-ui-view="footer"></div>
    </div>
</div>

<script>
  window.enableLogs = true;
  window.konga_version = "0.14.9";
  window.no_auth = false;
  window.initAngular = true;
</script>
<!--
    Client-side Templates
    ========================

    HTML templates are important prerequisites of modern, rich client applications.
    To work their magic, frameworks like Backbone, Angular, Ember, and Knockout require
    that you load these templates client-side.

    By default, your Gruntfile is configured to automatically load and precompile
    client-side JST templat

1059934583 | 2024-09-13T04:16:57.102900

3000 / tcp

Grafana

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Xss-Protection: 1; mode=block
Date: Fri, 13 Sep 2024 04:16:56 GMT
Transfer-Encoding: chunked

-1246004407 | 2024-09-03T07:16:22.483860

3001 / tcp

HTTP/1.1 400 Bad Request
Connection: close

-125639075 | 2024-09-09T17:13:51.922066

8888 / tcp

404 Not Found

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 146
Server: nginx
Connection: keep-alive
Date: Mon, 09 Sep 2024 17:13:51 GMT

473073123 | 2024-09-14T07:48:43.861230

9090 / tcp

Prometheus Time Series Collection and Processing Server

HTTP/1.1 200 OK
Date: Sat, 14 Sep 2024 07:48:43 GMT
Content-Length: 734
Content-Type: text/html; charset=utf-8

111.229.112.197

Last Seen: 2024-09-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

895483537 | 2024-09-09T14:29:24.484485
22 / tcp

OpenSSH7.4

-2100514759 | 2024-09-13T06:21:55.420021
80 / tcp

nginx

723978865 | 2024-09-15T20:32:01.533814
443 / tcp

nginx

-1806498129 | 2024-09-13T14:09:26.832031
1337 / tcp

1059934583 | 2024-09-13T04:16:57.102900
3000 / tcp

Grafana (Enterprise)11.1.0

-1246004407 | 2024-09-03T07:16:22.483860
3001 / tcp

-125639075 | 2024-09-09T17:13:51.922066
8888 / tcp

nginx

473073123 | 2024-09-14T07:48:43.861230
9090 / tcp

Products

Pricing

Contact Us

111.229.112.197

Last Seen: 2024-09-15

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 22 Port 443 Latest CVSS

OpenPorts

895483537 | 2024-09-09T14:29:24.484485 22 / tcp

OpenSSH7.4

-2100514759 | 2024-09-13T06:21:55.420021 80 / tcp

nginx

723978865 | 2024-09-15T20:32:01.533814 443 / tcp

nginx

-1806498129 | 2024-09-13T14:09:26.832031 1337 / tcp

1059934583 | 2024-09-13T04:16:57.102900 3000 / tcp

Grafana (Enterprise)11.1.0

-1246004407 | 2024-09-03T07:16:22.483860 3001 / tcp

-125639075 | 2024-09-09T17:13:51.922066 8888 / tcp

nginx

473073123 | 2024-09-14T07:48:43.861230 9090 / tcp

Products

Pricing

Contact Us

Vulnerabilities

895483537 | 2024-09-09T14:29:24.484485
22 / tcp

-2100514759 | 2024-09-13T06:21:55.420021
80 / tcp

723978865 | 2024-09-15T20:32:01.533814
443 / tcp

-1806498129 | 2024-09-13T14:09:26.832031
1337 / tcp

1059934583 | 2024-09-13T04:16:57.102900
3000 / tcp

-1246004407 | 2024-09-03T07:16:22.483860
3001 / tcp

-125639075 | 2024-09-09T17:13:51.922066
8888 / tcp

473073123 | 2024-09-14T07:48:43.861230
9090 / tcp