GeneralInformation

Hostnames

consultech.com.cn

Domains

consultech.com.cn

Country

China

City

Hangzhou

Organization

Aliyun Computing Co., LTD

ISP

Hangzhou Alibaba Advertising Co.,Ltd.

ASN

AS37963

Operating System

Ubuntu

OpenPorts

23 25 80 443 7001 8060 10025

23 / tcp

-1639375218 | 2025-04-24T17:21:54.703352

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC5lZZM2neQcuui6jjsVtnPw1HLNWkSaI0M1d7jL/aDa6gI
gOWmbPVLIsCj/33AmPSib7GSyhgbDgOoRDK9EKln1pCtqhdSCbXK6M6RMmI+ovws00chV7n4Uh/C
VWtoyU+QSB5DZMu61L6d8r6iB8Qvr4CaX7IvzSnbo3b/BdLOEylYkNvNod1qdGEpBfRPJ3lR89v8
Adjo7pCSAUERua/0mEMtMtDeFCJMgGFSoQV/+P759pFabdLI0HHrK2ZIMzdp3vUebXRB9VXprpun
+mkHpSA7+wmcw++A1+Pu3w+RRj/TNBy8SyDLyVXTuDyliEgD0nBLwtJf9glndgpvwoD0ADXTjewk
teaMGnJJoHKIIHezUTU/OlsiLFSWq/mSgNnuovBQNVk+gvpgVIkS8K91EMs1Nqpwiq+x2uZTxxTX
MuJo3KYbBJxkNhSbEnJ4YXb/vkiVgH0+oCWFRSCbGoZwn3fo7WcMTRP/Cz/QRQF6rfD4/fFAF9HR
UCU58l+h4F8=
Fingerprint: 12:d5:8c:87:89:64:cf:09:32:0e:6a:97:26:c9:c8:2d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

25 / tcp

-1065549887 | 2025-04-12T22:30:10.013242

220 izbp14ur6ok3t2g7g4q7m6z.localdomain ESMTP Postfix
250-izbp14ur6ok3t2g7g4q7m6z.localdomain
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN

80 / tcp

-1427803479 | 2025-04-23T17:32:09.871748

Hashes

hash

-866831302

http.dom_hash

1239617585

http.html_hash

-1427803479

http.server_hash

-1340961475

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 23 Apr 2025 17:32:08 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://apps.consultech.com.cn/

443 / tcp

1651973090 | 2025-04-05T01:01:03.811002

Hashes

hash

-529603922

http.dom_hash

-2049760045

http.html_hash

1651973090

http.server_hash

-1340961475

http.title_hash

911614014

Welcome to nginx!

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 05 Apr 2025 01:01:03 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Tue, 17 Jul 2018 03:33:31 GMT
Connection: keep-alive
ETag: "5b4d638b-264"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:99:85:da:b8:cf:41:f9:6e:54:65:bb:8c:ea:53:9d
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, O=Beijing Xinchacha Credit Management Co., Ltd., CN=Xcc Trust DV SSL CA
        Validity
            Not Before: Feb 10 03:01:35 2025 GMT
            Not After : Feb 10 03:01:34 2026 GMT
        Subject: CN=*.consultech.com.cn
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b0:98:7e:86:86:9b:3e:7d:10:59:27:8b:78:19:
                    d0:63:f3:88:b9:f3:65:36:b9:15:fa:09:c2:16:ec:
                    3b:4f:bd:ab:ba:75:0a:49:09:f2:32:79:22:fc:f5:
                    e3:77:1c:7d:82:e0:17:b8:24:48:88:08:aa:82:1b:
                    38:38:f3:c4:0b:37:e3:23:96:d6:f4:45:cd:2b:b3:
                    bc:84:3a:4c:9e:f8:f5:76:51:fa:58:b2:4f:3d:a2:
                    3b:b9:87:90:6b:d6:6f:01:9e:5d:4e:d7:5a:d7:7e:
                    24:5f:ef:b1:4a:94:fc:3b:fb:27:19:de:93:c2:54:
                    44:c1:e2:97:3b:3d:59:7f:7d:37:82:29:11:4f:8f:
                    54:26:63:22:05:38:a8:eb:da:76:b5:5a:95:66:c1:
                    25:81:6b:2c:e6:db:7a:d4:fb:b0:97:12:2d:83:3b:
                    a2:39:54:11:8e:6a:b0:1b:e8:bf:76:b9:cd:23:d0:
                    a6:b5:86:b4:fc:54:90:8f:a3:2a:0e:ff:78:75:04:
                    a3:dd:9d:61:a2:40:10:ea:13:ab:f0:13:ae:e6:b6:
                    49:4b:cc:60:71:5a:7d:7c:1d:76:11:bb:52:02:39:
                    bd:03:36:bb:88:11:8b:da:52:6e:fb:6b:45:0e:4d:
                    17:f2:4c:28:41:55:2c:39:2e:a2:8b:e4:1b:57:8f:
                    fd:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://xinchacha2dv.crl.certum.pl/xinchacha2dv.crl
            Authority Information Access: 
                OCSP - URI:http://xinchacha2dv.ocsp-certum.com
                CA Issuers - URI:http://repository.certum.pl/xinchacha2dv.cer
            X509v3 Authority Key Identifier: 
                A1:43:8E:00:34:09:E5:7B:35:33:AE:75:89:04:F2:32:61:0F:A8:E7
            X509v3 Subject Key Identifier: 
                8E:A8:40:13:67:5D:78:2A:60:B2:D9:3B:0C:ED:72:70:F4:27:49:66
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.2.616.1.113527.2.5.1.21.3
                  CPS: https://www.certum.pl/CPS
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Subject Alternative Name: 
                DNS:*.consultech.com.cn, DNS:consultech.com.cn
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
                                DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
                    Timestamp : Feb 10 03:01:35.618 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D2:92:AB:3C:EB:9D:F6:9C:3C:34:BD:
                                F8:F0:B7:B1:C9:FB:1F:63:42:D9:7E:FD:2D:A4:59:E3:
                                3A:06:0A:2B:DC:02:20:07:17:76:8B:AF:AE:52:0D:03:
                                06:A4:95:B7:8C:7F:16:B5:D2:CC:45:95:E6:5B:8C:10:
                                B9:FE:48:55:6B:BC:8B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Feb 10 03:01:35.649 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FD:62:29:84:7C:C0:25:BB:88:2E:32:
                                B3:DC:93:65:A8:43:7B:CE:7F:46:3B:31:88:09:7D:B9:
                                57:FC:B5:1E:D2:02:21:00:B1:76:D9:0A:DB:01:F4:37:
                                B4:9A:CD:3E:60:7F:28:AA:DF:F6:0B:20:66:7D:EB:E7:
                                02:C2:9D:BA:D5:83:52:9D
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:
                                AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4
                    Timestamp : Feb 10 03:01:35.613 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:3E:57:EB:55:2D:E2:EE:A8:E5:D7:CB:03:
                                C3:F0:9C:64:E8:BE:D0:2B:6D:27:7A:66:A5:DB:51:24:
                                45:05:ED:89:02:21:00:D2:AC:2A:FF:CD:E2:F2:64:7E:
                                F9:9C:8A:E5:77:BB:9A:56:27:0E:4F:4B:47:97:D4:B7:
                                FA:77:77:D9:28:46:C7
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        50:11:83:75:87:fa:42:d3:61:c5:fe:3f:63:69:8b:e6:60:3b:
        f3:92:d0:26:9c:6b:1d:42:75:0c:b0:43:a8:87:58:b7:40:e2:
        29:6f:19:08:5e:a1:e2:d5:0f:49:66:36:44:0b:85:68:eb:39:
        ab:05:d9:6c:d3:c1:b7:82:20:ad:4d:01:b2:13:50:3d:97:b7:
        0e:46:88:bd:70:c1:a3:5f:f1:3f:f5:60:fb:64:78:d0:ce:7d:
        d9:a1:c7:e2:cb:64:be:fd:71:71:d3:09:e4:c1:48:b9:0f:f9:
        f4:bf:12:b9:7b:e2:62:19:22:55:79:53:16:f1:e3:f7:b4:af:
        61:27:f8:ee:34:31:30:46:f0:b2:f2:f8:40:7f:d4:f7:3b:e6:
        d5:7f:15:29:63:df:02:75:0c:81:78:69:7c:7f:6e:c1:05:3d:
        b2:7d:59:19:6e:b8:40:76:c2:38:cb:c9:c8:d6:38:6e:f2:4c:
        79:78:67:01:45:36:a9:94:98:7a:c5:1b:28:f7:c1:5c:34:13:
        a2:4f:ac:d9:0b:0f:c5:94:ee:25:4c:00:56:41:fc:02:f5:4e:
        f2:b2:99:40:29:c6:6b:b6:bc:25:f0:18:c1:d4:a3:8c:e0:2b:
        0f:10:2d:65:02:fa:05:6f:6b:0c:99:0e:a8:74:81:b5:02:14:
        d5:b5:2e:af

7001 / tcp

-1704230625 | 2025-04-23T01:39:47.179204

HTTP/1.1 404 Not Found
Date: Wed, 23 Apr 2025 01:39:47 GMT
Content-Length: 489
Content-Type: text/html; charset=utf-8

<!DOCTYPE html>
<html>
<head>
<title>Not Found</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>The page you requested was not found.</h1>
<p>Sorry, the page you are looking for is currently unavailable.<br/>
Please try again later.</p>
<p>The server is powered by <a href="https://github.com/fatedier/frp">frp</a>.</p>
<p><em>Faithfully yours, frp.</em></p>
</body>
</html>

8060 / tcp

-158149353 | 2025-04-03T08:56:05.247213

Hashes

hash

-115634638

http.dom_hash

1239617585

http.html_hash

-158149353

http.server_hash

-1786963686

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Thu, 03 Apr 2025 08:55:54 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

Vulnerabilities

10025 / tcp

446431813 | 2025-04-15T19:09:49.251108

MySQL:
  Protocol Version: 10
  Version: 5.7.38-log
  Capabilities: 63487
  Server Language: 33
  Server Status: 2
  Extended Server Capabilities: 33279
  Authentication Plugin: mysql_native_password

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

121.40.187.185

Last Seen: 2025-04-24

Tags:

GeneralInformation

OpenPorts

23 / tcp

-1639375218 | 2025-04-24T17:21:54.703352

OpenSSH8.2p1 Ubuntu 4ubuntu0.3

25 / tcp

-1065549887 | 2025-04-12T22:30:10.013242

Postfix smtpd

80 / tcp

-1427803479 | 2025-04-23T17:32:09.871748

Hashes

nginx

443 / tcp

1651973090 | 2025-04-05T01:01:03.811002

Hashes

nginx

7001 / tcp

-1704230625 | 2025-04-23T01:39:47.179204

8060 / tcp

-158149353 | 2025-04-03T08:56:05.247213

Hashes

nginx1.18.0

10025 / tcp

446431813 | 2025-04-15T19:09:49.251108

MySQL5.7.38-log

Vulnerabilities

Products

Pricing

Contact Us

121.40.187.185

Last Seen: 2025-04-24

Tags:

GeneralInformation

OpenPorts

23 / tcp -1639375218 | 2025-04-24T17:21:54.703352

OpenSSH8.2p1 Ubuntu 4ubuntu0.3

25 / tcp -1065549887 | 2025-04-12T22:30:10.013242

Postfix smtpd

80 / tcp -1427803479 | 2025-04-23T17:32:09.871748

Hashes

nginx

443 / tcp 1651973090 | 2025-04-05T01:01:03.811002

Hashes

nginx

7001 / tcp -1704230625 | 2025-04-23T01:39:47.179204

8060 / tcp -158149353 | 2025-04-03T08:56:05.247213

Hashes

nginx1.18.0

10025 / tcp 446431813 | 2025-04-15T19:09:49.251108

MySQL5.7.38-log

Vulnerabilities All ports Port 8060 Latest CVSS

Products

Pricing

Contact Us

23 / tcp

-1639375218 | 2025-04-24T17:21:54.703352

25 / tcp

-1065549887 | 2025-04-12T22:30:10.013242

80 / tcp

-1427803479 | 2025-04-23T17:32:09.871748

443 / tcp

1651973090 | 2025-04-05T01:01:03.811002

7001 / tcp

-1704230625 | 2025-04-23T01:39:47.179204

8060 / tcp

-158149353 | 2025-04-03T08:56:05.247213

10025 / tcp

446431813 | 2025-04-15T19:09:49.251108

Vulnerabilities