GeneralInformation

Hostnames	foks-donetsk.com www.foks-donetsk.com 185-46-11-166.cloudvps.regruhosting.ru
Domains	foks-donetsk.com regruhosting.ru
Country	Russian Federation
City	Mytishchi
Organization	Reg.Ru Hosting
ISP	"Domain names registrar REG.RU", Ltd
ASN	AS197695

WebTechnologies

Miscellaneous

Zabbix

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2023(1)

CVE-2023-44487

7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

2021(2)

CVE-2021-23017

7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

CVE-2021-3618

7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.

OpenPorts

22 80 443 3306 5000 8080 10051 33060

22 / tcp

902874091 | 2025-03-18T00:16:24.204565

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.11
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFQjIUDM6u9b7QmomrlxWqbB
hRGy3HCBkon0AmyPiMAq5ZDBINONHebVZdiUqwTZ3V2Vud6QeuZF1SxIY7GQLcA=
Fingerprint: fa:e4:a5:0b:80:40:4b:bc:6c:27:23:cd:b7:bc:d5:d6

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

80 / tcp

589765266 | 2025-03-24T09:26:05.018256

Hashes

hash

-1931682856

http.dom_hash

1239617585

http.html_hash

589765266

http.server_hash

967792298

http.title_hash

1522695184

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 24 Mar 2025 09:26:04 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://foks-donetsk.com/

Vulnerabilities

443 / tcp

-1746677669 | 2025-03-24T09:26:07.585942

Hashes

hash

1125426484

http.dom_hash

2145784112

http.favicon.hash

2027117142

http.html_hash

-1746677669

http.robots_hash

1011313769

http.server_hash

967792298

http.sitemap_hash

209434441

Интернет-магазин бытовой техники и электроники в Донецке (ДНР)

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 24 Mar 2025 09:26:07 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1761498
Connection: keep-alive
Vary: Accept-Encoding
Vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-nextjs-cache: HIT
X-Powered-By: Next.js
Cache-Control: s-maxage=1500, stale-while-revalidate
ETag: "2xmnexo3vv10if2"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:ee:5d:78:7f:2c:6a:65:60:6d:37:65:a7:fa:ae:44:d2:39
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R11
        Validity
            Not Before: Mar 11 17:11:43 2025 GMT
            Not After : Jun  9 17:11:42 2025 GMT
        Subject: CN=foks-donetsk.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:bb:bb:a8:1d:d9:b8:b3:1a:e7:a3:71:05:24:fd:
                    de:b7:f9:31:5c:c8:de:dd:0d:2c:c7:eb:07:2e:c0:
                    a0:93:01:62:f9:0b:f7:79:11:93:e1:4f:5d:47:67:
                    ad:06:55:c6:c0:cc:36:fe:ed:75:a7:e6:f6:f0:3e:
                    aa:c5:fc:29:05:98:7f:cd:61:ee:23:2a:e7:58:9b:
                    d4:1d:d0:bc:d7:9f:e1:5f:fa:a4:8b:c2:22:c9:6f:
                    aa:89:d9:0b:5f:fb:20:25:11:09:e3:09:98:36:80:
                    bf:06:3e:28:57:15:3b:7a:53:ab:a8:24:0b:e4:81:
                    75:46:d7:84:c7:d7:79:24:59:e9:3e:b4:5f:ec:81:
                    da:0b:e6:d2:3b:08:c3:84:6a:55:87:a0:5a:17:35:
                    fe:d7:6b:48:e2:13:fa:9e:40:a1:30:df:c8:b3:d2:
                    f1:3e:bf:fb:8d:fc:54:d0:6a:62:df:84:ee:43:ee:
                    7e:1e:55:72:26:6a:9a:32:b1:c3:78:89:10:d2:b6:
                    e3:89:9a:03:c7:98:d7:cf:d2:5a:f2:7b:c6:26:cd:
                    f9:f2:cf:c1:e4:85:56:b8:cc:da:7d:1b:da:07:6c:
                    43:3e:e1:ca:09:99:19:19:c0:ff:e4:d0:ee:10:72:
                    41:d5:a1:44:62:98:fe:c9:18:83:ed:11:c3:7d:1d:
                    15:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                FF:6F:BF:88:0E:C8:BD:97:9A:57:18:2E:48:BE:9A:7C:60:20:AF:BF
            X509v3 Authority Key Identifier: 
                C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
            Authority Information Access: 
                OCSP - URI:http://r11.o.lencr.org
                CA Issuers - URI:http://r11.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:foks-donetsk.com, DNS:www.foks-donetsk.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
                                16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
                    Timestamp : Mar 11 18:10:13.649 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A0:1C:A4:E9:C8:3C:2B:88:D2:FB:62:
                                96:6B:F1:7E:F3:09:CC:58:B0:6D:A5:D0:45:1A:E9:3C:
                                98:FE:DF:AC:6F:02:20:78:8C:52:3F:7E:D0:24:19:89:
                                1B:C1:38:B3:A5:3A:BE:9F:A6:C9:AA:12:DA:9D:86:E4:
                                2A:2B:3F:FF:DC:C5:47
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DE:85:81:D7:50:24:7C:6B:CD:CB:AF:56:37:C5:E7:81:
                                C6:4C:E4:6E:D6:17:63:9F:8F:34:A7:26:C9:E2:BD:37
                    Timestamp : Mar 11 18:10:13.650 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:AB:38:83:FB:DC:45:F4:58:FC:B3:7C:
                                ED:2E:30:DF:D0:DE:70:C0:60:CD:E1:1A:3E:90:A6:8F:
                                07:37:B1:53:B2:02:20:75:A4:35:11:AE:02:27:3F:28:
                                D4:1D:1F:44:2A:B3:12:B4:BD:11:5D:04:40:1D:49:6F:
                                28:C9:44:15:7F:B9:2C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        96:ad:0f:5d:d3:dc:ab:90:7b:a5:f7:d7:68:d6:08:9d:b1:1d:
        56:56:a1:37:0a:dd:ea:09:37:f0:05:31:c0:17:bb:79:2f:6d:
        bd:3b:f5:c9:a9:62:2c:09:bd:9d:ea:16:85:c0:7e:db:8c:15:
        73:97:a3:05:64:ed:ec:97:d3:a5:6b:03:9d:8b:51:00:96:f5:
        e4:fd:d0:28:83:ee:f4:12:6d:4b:d6:99:93:ce:6d:f3:af:2d:
        f3:db:f9:4d:a4:81:91:d6:42:f1:25:1e:8b:c5:01:7a:42:51:
        00:f8:7a:cd:76:2e:4c:2e:b6:bc:54:01:a0:31:68:94:93:43:
        d3:a7:e3:38:39:57:64:a4:a5:4f:ad:57:09:da:df:5d:cc:29:
        8a:f4:47:78:e8:5e:78:ae:45:7f:0a:18:62:95:f2:cf:f3:ee:
        cf:3c:68:10:e6:04:17:d1:05:1a:7e:9e:be:03:a5:77:db:cd:
        79:5d:6f:03:2a:c4:90:dc:7f:1b:a2:d4:a5:63:9a:1a:92:f3:
        b2:d3:02:90:49:4f:d5:72:7e:e8:18:55:04:38:2e:6f:ab:a0:
        a3:3c:79:93:f5:7f:c0:bd:55:46:43:e1:ba:85:68:0b:01:27:
        a7:6c:9a:b9:65:e2:b6:f7:c2:20:26:d6:51:7a:ce:13:e1:cf:
        14:d8:58:83

Vulnerabilities

3306 / tcp

1730917570 | 2025-03-22T11:58:49.452456

MySQL:
  Error Message: Host '224.161.245.238' is not allowed to connect to this MySQL server
  Error Code: 1130

5000 / tcp

335330650 | 2025-03-25T03:26:49.063109

Hashes

hash

-637441372

http.dom_hash

-1774827439

http.html_hash

335330650

http.server_hash

1719868276

http.title_hash

-1207101977

404 Not Found

HTTP/1.1 404 NOT FOUND
Server: Werkzeug/2.3.6 Python/3.12.3
Date: Tue, 25 Mar 2025 03:26:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 207
Connection: close

8080 / tcp

-435195191 | 2025-03-04T07:39:44.556457

Hashes

hash

1837826040

http.dom_hash

-754695990

http.favicon.hash

892542951

http.html_hash

-435195191

http.server_hash

967792298

http.title_hash

792957854

Zabbix

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 04 Mar 2025 07:39:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=hpv58edr8p63tehism4777uhnh; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN

Vulnerabilities

33060 / tcp

-795948505 | 2025-03-20T09:51:49.367055

MySQL X Protocol:
  tls: False
  authentication.mechanisms:
    MYSQL41
    SHA256_MEMORY
  doc.formats: text
  client.interactive: False
  compression:
    algorithm:
      deflate_stream
      lz4_message
      zstd_stream
  node_type: mysql
  client.pwd_expire_ok: False

185.46.11.166

Last Seen: 2025-03-25

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

22 / tcp

902874091 | 2025-03-18T00:16:24.204565

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp

589765266 | 2025-03-24T09:26:05.018256

Hashes

nginx1.18.0

443 / tcp

-1746677669 | 2025-03-24T09:26:07.585942

Hashes

nginx1.18.0

3306 / tcp

1730917570 | 2025-03-22T11:58:49.452456

MySQL

5000 / tcp

335330650 | 2025-03-25T03:26:49.063109

Hashes

8080 / tcp

-435195191 | 2025-03-04T07:39:44.556457

Hashes

nginx1.18.0

33060 / tcp

-795948505 | 2025-03-20T09:51:49.367055

MySQL X Protocol

Products

Pricing

Contact Us

185.46.11.166

Last Seen: 2025-03-25

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities All ports Port 80 Port 443 Port 8080 Latest CVSS

OpenPorts

22 / tcp 902874091 | 2025-03-18T00:16:24.204565

OpenSSH8.9p1 Ubuntu 3ubuntu0.11

80 / tcp 589765266 | 2025-03-24T09:26:05.018256

Hashes

nginx1.18.0

443 / tcp -1746677669 | 2025-03-24T09:26:07.585942

Hashes

nginx1.18.0

3306 / tcp 1730917570 | 2025-03-22T11:58:49.452456

MySQL

5000 / tcp 335330650 | 2025-03-25T03:26:49.063109

Hashes

8080 / tcp -435195191 | 2025-03-04T07:39:44.556457

Hashes

nginx1.18.0

33060 / tcp -795948505 | 2025-03-20T09:51:49.367055

MySQL X Protocol

Products

Pricing

Contact Us

Vulnerabilities

22 / tcp

902874091 | 2025-03-18T00:16:24.204565

80 / tcp

589765266 | 2025-03-24T09:26:05.018256

443 / tcp

-1746677669 | 2025-03-24T09:26:07.585942

3306 / tcp

1730917570 | 2025-03-22T11:58:49.452456

5000 / tcp

335330650 | 2025-03-25T03:26:49.063109

8080 / tcp

-435195191 | 2025-03-04T07:39:44.556457

33060 / tcp

-795948505 | 2025-03-20T09:51:49.367055