GeneralInformation

Hostnames	ip213-165-86-117.pbiaas.com rbscan.realitybird.com
Domains	pbiaas.com realitybird.com
Country	Germany
City	Berlin
Organization	IONOS SE
ISP	IONOS SE
ASN	AS8560

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

80 443 3306 3389 8000 8443

-2102100557 | 2024-11-03T10:46:47.114174

80 / tcp

Reality Bird

HTTP/1.1 200 OK
Date: Sun, 03 Nov 2024 10:46:53 GMT
Server: Apache/2.4.59 (Win64) OpenSSL/3.1.5 PHP/8.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Thu, 31 Oct 2024 15:25:50 GMT
ETag: "2bd-625c76eecdb80"
Accept-Ranges: bytes
Content-Length: 701
Content-Type: text/html

554409522 | 2024-11-12T19:53:41.482041

443 / tcp

Reality Bird

HTTP/1.1 200 OK
Date: Tue, 12 Nov 2024 19:53:48 GMT
Server: Apache/2.4.59 (Win64) OpenSSL/3.1.5 PHP/8.2.18 mod_fcgid/2.3.10-dev
Last-Modified: Tue, 12 Nov 2024 15:52:22 GMT
ETag: "2bd-626b933e95980"
Accept-Ranges: bytes
Content-Length: 701
Content-Type: text/html

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:69:8d:bc:e8:26:01:ec:27:14:5c:56:14:a1:14:30:45:63
        Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, O=Let's Encrypt, CN=E6
        Validity
            Not Before: Aug 21 08:53:04 2024 GMT
            Not After : Nov 19 08:53:03 2024 GMT
        Subject: CN=rbscan.realitybird.com
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:a6:63:ca:69:4a:e5:d0:2d:5e:e6:29:e2:ed:a8:
                    11:85:ff:7e:b3:e7:e4:ec:e5:b4:f3:51:2b:e1:01:
                    97:76:4a:17:b7:2b:c4:b0:ec:92:bf:2f:2f:1a:4f:
                    5f:25:58:fd:7c:eb:72:74:ab:de:f1:4a:29:9f:c1:
                    0e:65:7d:9d:0c
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                B0:9B:A7:2D:78:E8:59:C3:53:24:17:62:D4:45:AC:1E:83:CA:CA:E3
            X509v3 Authority Key Identifier: 
                93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2
            Authority Information Access: 
                OCSP - URI:http://e6.o.lencr.org
                CA Issuers - URI:http://e6.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:rbscan.realitybird.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Aug 21 09:51:35.016 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D3:40:EC:E6:77:72:2C:33:7C:1F:6C:
                                06:3D:82:1C:60:4C:3E:61:BF:7D:BB:A0:8F:1B:B2:90:
                                0D:5A:63:8B:36:02:20:2B:94:B3:61:7B:01:7C:66:87:
                                BA:88:AB:1A:52:C0:74:59:BA:08:A6:11:CC:4F:CE:FE:
                                8A:29:22:AB:6A:50:B8
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Aug 21 09:51:35.031 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:21:05:09:58:F3:E1:30:DC:39:42:D9:67:
                                AD:ED:B6:24:FF:C6:B6:71:6D:11:7F:DB:0A:CA:06:A5:
                                B1:25:E3:D5:02:20:21:7A:BB:2B:6F:81:F0:9E:7F:36:
                                81:E2:18:7C:0A:D0:91:C1:52:54:F2:1C:D4:C9:76:65:
                                54:2B:06:77:D6:FA
    Signature Algorithm: ecdsa-with-SHA384
    Signature Value:
        30:65:02:30:66:cb:02:e3:ee:de:a3:8c:57:8f:70:91:7c:f6:
        4b:06:81:3d:4f:11:0c:14:fa:bd:52:89:f5:23:1d:27:84:14:
        f4:a4:25:02:16:96:f4:22:a1:44:6d:0b:c4:10:0b:96:02:31:
        00:e9:bc:fb:f2:e7:f7:4f:b6:66:10:d9:d3:b0:03:dd:e9:d7:
        d8:a9:0c:12:6a:32:01:d1:d6:fa:3b:75:98:cc:1f:a9:81:12:
        e7:d5:84:56:a1:77:e5:1c:b8:e6:0c:07:3a

-257141639 | 2024-11-04T19:47:15.763959

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 8.3.0
  Capabilities: 65535
  Server Language: 255
  Server Status: 2
  Extended Server Capabilities: 57343
  Authentication Plugin: caching_sha2_password

CVE-2024-21166 CVE-2024-21160 CVE-2024-21159 CVE-2024-21135

2085196229 | 2024-11-04T00:53:39.967162

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
  OS Build: 10.0.17763
  Target Name: WIN-2SAC2KUF188
  NetBIOS Domain Name: WIN-2SAC2KUF188
  NetBIOS Computer Name: WIN-2SAC2KUF188
  DNS Domain Name: WIN-2SAC2KUF188
  FQDN: WIN-2SAC2KUF188

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            79:47:07:b3:e6:32:d1:9f:48:54:c3:ba:60:08:51:27
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=WIN-2SAC2KUF188
        Validity
            Not Before: Jun 23 08:52:22 2024 GMT
            Not After : Dec 23 08:52:22 2024 GMT
        Subject: CN=WIN-2SAC2KUF188
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b7:90:1b:66:a3:ec:d0:a3:4f:49:cd:0c:30:5d:
                    8a:f9:ba:ed:c1:65:68:d1:9b:ce:b4:2f:1e:25:3d:
                    00:ec:03:fb:e6:d8:65:72:c0:a5:b0:57:94:5e:16:
                    b8:30:be:73:a9:89:af:40:9d:7d:45:37:98:80:0d:
                    33:00:40:dc:2c:c4:00:50:55:87:19:d1:83:00:3f:
                    f7:f2:34:a0:eb:17:e0:ea:13:5e:02:a1:fe:26:e9:
                    c8:71:84:52:f6:f4:fa:f1:0f:0e:09:c5:d2:28:69:
                    10:6a:77:07:98:09:a1:77:07:ac:21:d7:68:94:0a:
                    5b:22:1d:88:93:99:04:72:34:81:83:b2:58:6d:8d:
                    80:bf:b2:3e:7b:61:e6:21:81:2e:11:e7:8b:93:da:
                    9b:dd:e5:6f:4c:60:55:ed:09:bd:b0:89:3a:93:64:
                    ea:12:a9:4b:b0:4f:e2:d3:38:34:e4:c1:53:fc:98:
                    e0:11:66:6d:1f:e5:5d:26:92:4e:f4:ee:dd:df:38:
                    8c:aa:f8:6c:a4:cb:b2:96:b7:ae:35:2c:16:66:0d:
                    56:57:42:11:e6:74:9d:32:a9:a2:29:31:06:83:a9:
                    d8:36:f7:7d:ad:a2:08:4d:89:8e:f5:5d:70:ee:9c:
                    40:6f:30:87:5c:97:7c:86:ef:8b:55:37:6a:6b:cc:
                    6f:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        aa:a3:f9:3f:60:bf:8b:3e:8b:43:6d:9f:e3:fa:09:ed:23:b7:
        71:93:56:fa:e9:82:bb:2e:ce:33:45:aa:d4:6a:e6:0f:b4:60:
        34:cf:ff:1b:2d:48:a7:a3:d5:07:f4:db:85:e9:3f:b4:32:d6:
        94:60:11:b3:01:3e:58:31:6a:02:31:ab:d7:f8:4c:18:6b:3c:
        40:11:1d:49:81:53:1a:38:6d:38:1c:4e:0a:f8:91:6f:44:d6:
        71:f0:62:65:7d:3f:ee:9c:37:06:7b:84:dc:c4:03:bd:00:bd:
        ee:df:bb:ee:19:80:bf:89:f8:37:c6:8c:60:93:77:80:0f:26:
        30:e6:23:2c:c7:55:5e:a0:48:a2:97:a0:18:6b:f7:ef:e3:11:
        91:6d:41:4c:eb:f1:bd:4f:09:0e:a6:ba:11:6d:ae:98:0a:f7:
        41:d5:95:1e:31:a7:54:9f:14:e8:b7:9f:88:33:8c:9c:68:84:
        af:22:5c:fc:bd:42:f4:b3:80:04:8f:7e:95:3f:87:2e:ef:07:
        a4:ca:50:1d:49:c6:94:67:a4:6f:4c:0f:15:b8:47:0e:41:1f:
        1d:f4:dc:48:4a:24:97:bf:e6:cd:88:70:09:b3:84:60:93:f9:
        e7:5e:72:9f:11:07:70:be:b3:ba:5c:96:13:c2:91:4b:eb:e7:
        22:59:b3:d3

-503133456 | 2024-11-05T00:30:29.666890

8443 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: text/html; charset=utf-8
Content-Length: 4
ETag: W/"4-4nTu/3aMY5YIjsbrCR9L9NR6seA"
Date: Tue, 05 Nov 2024 00:30:36 GMT
Connection: keep-alive
Keep-Alive: timeout=5

work

213.165.86.117

Last Seen: 2024-11-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-2102100557 | 2024-11-03T10:46:47.114174
80 / tcp

Apache httpd2.4.59

554409522 | 2024-11-12T19:53:41.482041
443 / tcp

Apache httpd2.4.59

-257141639 | 2024-11-04T19:47:15.763959
3306 / tcp

MySQL8.3.0

2085196229 | 2024-11-04T00:53:39.967162
3389 / tcp

Remote Desktop Protocol

-503133456 | 2024-11-05T00:30:29.666890
8443 / tcp

Products

Pricing

Contact Us

213.165.86.117

Last Seen: 2024-11-12

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 3306 Latest CVSS

OpenPorts

-2102100557 | 2024-11-03T10:46:47.114174 80 / tcp

Apache httpd2.4.59

554409522 | 2024-11-12T19:53:41.482041 443 / tcp

Apache httpd2.4.59

-257141639 | 2024-11-04T19:47:15.763959 3306 / tcp

MySQL8.3.0

2085196229 | 2024-11-04T00:53:39.967162 3389 / tcp

Remote Desktop Protocol

-503133456 | 2024-11-05T00:30:29.666890 8443 / tcp

Products

Pricing

Contact Us

Vulnerabilities

-2102100557 | 2024-11-03T10:46:47.114174
80 / tcp

554409522 | 2024-11-12T19:53:41.482041
443 / tcp

-257141639 | 2024-11-04T19:47:15.763959
3306 / tcp

2085196229 | 2024-11-04T00:53:39.967162
3389 / tcp

-503133456 | 2024-11-05T00:30:29.666890
8443 / tcp