GeneralInformation

Hostnames	ec2-18-215-185-65.compute-1.amazonaws.com agents.playaresorts.com
Domains	amazonaws.com playaresorts.com
Cloud Provider	Amazon
Cloud Region	us-east-1
Cloud Service	EC2
Country	United States
City	Ashburn
Organization	Amazon Technologies Inc.
ISP	Amazon.com, Inc.
ASN	AS14618

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

22 80 443

204663487 | 2024-09-21T04:31:55.089371

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDcIumOx7pBYOQW1vB5VXRPuwNeoecfq+Qmcp8eEIOkA3z4
Gajd5hF46r2F0l+bugcpPQ3/hGD0WJvlpYiVd7R6wCh5IYkcvG3AOT0jKVXxbJWQTQSPIDTryql/
pnj301z4mSxwOhRBu5yYH6lwQO5ITuxzyLdZO/kdALKKEE6sBh6enVVDCq9+8IPpgjBhA8LzZkrG
GYTj61mNaZjPYr+FfFK5lUa9od40oe0AMCL0fhY/9BSEKdcdsi2zhECgctAK3rDkMo77iGDgrELN
zMyBVW7NX42Ylw8mNt+a64AsXn3GQynjeSovQFaRwn4ebKAfkNDwD0rBGi6ooJqNAYmer8Oa0Gkv
NKM/h6wFnEdFBy/PiFI5Hx/z80ewaFbjdvv5MnpuHk8pq72xY6FujMQG7FpToqiRdXaX6cCQiz1+
REQKefXq+Vbf0oSXpdq3pR1RwlGjKbaB1rs6TiRU/82KN7zHhoeh23OxIhyIBt1M/KurgjT/oXsU
okTxAc3y6Pc=
Fingerprint: 08:47:3a:07:b9:0d:a4:d4:6c:3c:11:e6:ef:fe:2d:cd

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-158149353 | 2024-10-02T16:53:41.046160

80 / tcp

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Wed, 02 Oct 2024 16:53:41 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive
Vary: Accept-Encoding

CVE-2021-23017 CVE-2021-3618 CVE-2023-44487

1417001743 | 2024-10-07T14:16:24.894790

443 / tcp

Redirecting to https://agentcashplus.com/

HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
dvs_server_name: pl1
Date: Mon, 07 Oct 2024 14:16:24 GMT
Location: https://agentcashplus.com/
Set-Cookie: XSRF-TOKEN=eyJpdiI6ImVEaDJKaVNDbmxqTW5PeFhvWU5hV2c9PSIsInZhbHVlIjoidS9yQ2tRWTZlNVo3RkpydXRSbnpucVhWaEEzN1E5bVY3cnZWKzAyZUo1N1ppSnNIdDVpUGZ0cjlXSnZQUVo5RkdXL1VvNTRyaFJJTG5ZOVdnSnd4N2M5MUUxUnNLNFJsREJKUFdqRnRraGk5L0UrUkQ4MUIzcG8rbVVPWUdYYm4iLCJtYWMiOiIzYWMyZGNjNTkzMTA2NjFhNWE5ZDY0ZGQ1NGM3MTYyZDE0NzVlZjk5NjI1OTI5ZDRiOTMyMDUwOTYzZTk4NDBjIiwidGFnIjoiIn0%3D; expires=Mon, 07-Oct-2024 16:16:24 GMT; Max-Age=7200; path=/
Set-Cookie: playaresorts_session=eyJpdiI6IldMQnMrR0dwVnFuS1AvQTZpLzVjM0E9PSIsInZhbHVlIjoib3VlcG55VFUrVEI1UHpSTHgwOStPejhuRmcwQ0habkJyVmU2MHdrTlBVRGljaGs3ZkJWNDdhQ3ZVdlNBT0E0MjdlUk9GOVZhYVVMVVhKSHFRTHBUbEt3S1pKV01lMU5ZUXJVaHd4VVkvc1NZcW1MQVJ5bXhLc0tlajN0YkJoY3IiLCJtYWMiOiI4OTliOGExNTEyYjI4ZjI0ZTExZWQ5ODJkNWQyZDgzYjIwN2Y3NTI2MDcwN2E4OTA4YTM3NTNjM2U0NTkzOWYzIiwidGFnIjoiIn0%3D; expires=Mon, 07-Oct-2024 16:16:24 GMT; Max-Age=7200; path=/; httponly
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:39:1a:74:d5:b3:2c:96:65:9d:41:71:b8:95:ed:8f:0c:11
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E5
        Validity
            Not Before: Aug 31 06:03:41 2024 GMT
            Not After : Nov 29 06:03:40 2024 GMT
        Subject: CN=agents.playaresorts.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:52:53:3b:d4:bb:97:33:ed:29:d0:b7:91:e2:c2:
                    08:9b:58:ee:e2:a7:f7:65:bf:dc:24:f2:d5:dd:0e:
                    5a:a7:c3:cc:fa:08:82:75:1e:ec:45:61:1e:af:d0:
                    d5:c0:58:67:8b:42:4a:ef:92:e1:99:64:d9:28:f8:
                    a2:c6:09:ef:2b:12:33:5d:13:e8:7f:d7:71:13:7b:
                    fa:19:5a:18:e5:3a:bd:35:2c:4e:28:09:b2:22:b1:
                    c7:92:d6:8d:a8:fe:c0
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                98:98:5F:7C:3C:52:AC:D6:4F:EB:92:C7:0F:1A:B1:B5:0F:29:E7:A8
            X509v3 Authority Key Identifier: 
                9F:2B:5F:CF:3C:21:4F:9D:04:B7:ED:2B:2C:C4:C6:70:8B:D2:D7:0D
            Authority Information Access: 
                OCSP - URI:http://e5.o.lencr.org
                CA Issuers - URI:http://e5.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:agents.playaresorts.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Aug 31 07:02:11.444 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:DC:96:E5:8F:FF:D3:D7:E0:CC:3E:DD:
                                1B:8D:73:3B:69:33:95:D0:8B:70:FD:38:F8:F8:1C:FA:
                                A0:A8:BE:B2:67:02:20:32:01:A5:57:DE:8C:71:BB:BD:
                                1D:7E:38:1A:E6:7F:FA:9C:36:2D:E6:54:09:92:9B:F6:
                                A0:54:4E:99:84:FE:2E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Aug 31 07:02:11.582 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:8B:1C:2D:79:2D:74:53:B1:6E:6F:73:
                                27:0A:A1:7D:A4:20:19:FA:00:F6:F6:B2:98:E3:20:24:
                                4B:F8:CC:67:F8:02:21:00:83:1D:38:53:AE:9C:13:BD:
                                DA:D6:20:0D:FB:F1:C7:88:15:21:80:19:0C:A9:DD:1D:
                                53:3C:08:87:4A:F0:2B:3A
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:66:49:b4:bf:9a:fa:9e:75:3d:33:cf:8a:83:54:
        32:fa:cb:c7:62:71:39:1d:9e:8f:58:3d:fd:2b:f0:d5:50:7c:
        7d:02:68:c4:d9:46:2e:c3:9e:d3:3d:e3:10:a1:f8:32:02:31:
        00:b9:ea:60:b7:66:0b:37:24:36:a7:f9:90:8b:1e:f3:d8:76:
        ad:c6:59:84:8b:7c:ac:c5:11:aa:9d:b3:ff:9a:d6:c4:14:0c:
        c4:fe:69:91:09:db:0a:0e:c3:2c:0d:6b:d1

18.215.185.65

Last Seen: 2024-10-07

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

204663487 | 2024-09-21T04:31:55.089371
22 / tcp

OpenSSH8.2p1 Ubuntu 4ubuntu0.11

-158149353 | 2024-10-02T16:53:41.046160
80 / tcp

nginx1.18.0

1417001743 | 2024-10-07T14:16:24.894790
443 / tcp

nginx

Products

Pricing

Contact Us

18.215.185.65

Last Seen: 2024-10-07

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Latest CVSS

OpenPorts

204663487 | 2024-09-21T04:31:55.089371 22 / tcp

OpenSSH8.2p1 Ubuntu 4ubuntu0.11

-158149353 | 2024-10-02T16:53:41.046160 80 / tcp

nginx1.18.0

1417001743 | 2024-10-07T14:16:24.894790 443 / tcp

nginx

Products

Pricing

Contact Us

Vulnerabilities

204663487 | 2024-09-21T04:31:55.089371
22 / tcp

-158149353 | 2024-10-02T16:53:41.046160
80 / tcp

1417001743 | 2024-10-07T14:16:24.894790
443 / tcp