GeneralInformation

Hostnames	fs.shegeftangizan.com host.sindad.net
Domains	shegeftangizan.com sindad.net
Country	Iran, Islamic Republic of
City	Marvdasht
Organization	Sindad Network Technology PJSC
ISP	Sindad Network Technology PJSC
ASN	AS48551

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

21 22 25 80 143 443 465 587 3000 3333 9000 9091 9100 10250

906388357 | 2024-11-05T21:38:51.568115

21 / tcp

220 (vsFTPd 3.0.3)
530 Login incorrect.
530 Please login with USER and PASS.
211-Features:
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
211 End

1217576723 | 2024-10-29T03:35:39.291507

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDrPLNmEj8hRsZps4tr2owHMBfBXa5dRHEyNeoAJpeVWbcS
9AFELdEMW6YlWA/3JZdwXh7PRwkFU20DF91l6jWtKVn6EjAVga6tj42e35YjdBIcaeIX3G4QX13D
/glS8Hm+m0o2JAu/iCUMv49Gyp41AGBNCmlnnZThT9ZdBYNoBSgCiqJwAKVEsxnvDpzDPXtVprwJ
tAu/vx7+FRnHu2qXu2QGJbCGMAUar0OEUxAwZF7Y3BfBpnhRNVryDd7m8sGBmDRBpX1ol12B3aQ+
mOmhvccvazA0a8naEXc4wQyWRWW+6OeG+CtlsNzKyRs5SZ0RXsrbqOLxXl5/qevVKqnv
Fingerprint: 6b:32:69:02:ac:ce:05:ea:71:0a:71:0b:18:62:a4:82

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

287953547 | 2024-10-23T03:12:46.186142

25 / tcp

220-mail.shamsbc.com ESMTP
250-mail.shamsbc.com
250-SIZE 10240000
250-ETRN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250 CHUNKING

1887596591 | 2024-11-04T06:00:12.195795

80 / tcp

404 Not Found

HTTP/1.1 404 Not Found
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 04 Nov 2024 06:00:12 GMT
Content-Type: text/html
Content-Length: 580
Connection: keep-alive

CVE-2019-9513 CVE-2019-9511 CVE-2018-16844 CVE-2018-16843 CVE-2021-23017 5 moreCVE-2021-3618 CVE-2019-20372 CVE-2019-9516 CVE-2018-16845 CVE-2023-44487

1664207957 | 2024-10-31T17:55:14.128143

143 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

24222233 | 2024-11-03T15:49:30.908412

443 / tcp

MinIO Browser

HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Sun, 03 Nov 2024 15:49:30 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2281
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: no-store
Content-Security-Policy: block-all-mixed-content
Last-Modified: Mon, 21 Sep 2020 19:27:49 GMT
Vary: Origin
X-Amz-Request-Id: 18048011C15C00DE
X-Xss-Protection: 1; mode=block
Access-Control-Allow-Methods: PUT, GET, PATCH, POST, DELETE, OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With,*

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:20:c4:56:c2:06:35:89:c0:7e:04:3b:ea:44:bf:9a:94:bd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R10
        Validity
            Not Before: Oct  5 20:59:13 2024 GMT
            Not After : Jan  3 20:59:12 2025 GMT
        Subject: CN=fs.shegeftangizan.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:6a:ef:c2:14:f5:e7:18:4b:f9:6b:3e:28:cd:
                    45:9d:e3:55:e4:ed:60:f2:67:bb:ca:fa:58:f8:d7:
                    57:0b:98:65:cc:11:eb:5d:21:7b:b6:94:a1:bb:87:
                    1a:e5:f1:0e:12:5c:ce:86:95:67:57:0c:fd:84:4d:
                    17:b9:9a:2f:39:35:ae:c7:f1:c7:b0:ea:69:92:d1:
                    48:86:53:c2:68:64:7b:f0:14:07:27:16:ef:f5:65:
                    2f:3a:8e:ca:61:10:b2:73:58:ac:16:d9:f1:03:7e:
                    6b:67:32:cc:6f:88:55:88:93:22:0b:38:21:bf:b7:
                    f3:46:21:b7:69:ca:de:37:b1:ca:d1:5f:8a:b8:01:
                    c7:7e:ce:ec:97:bc:cb:26:79:51:a7:88:5c:1d:67:
                    27:ef:09:e0:4a:eb:72:36:23:98:80:85:fe:b8:15:
                    0c:01:72:b1:be:b2:36:d0:c4:e6:36:8c:bb:88:25:
                    4c:03:27:79:49:0b:7d:e1:f3:84:30:74:b3:52:86:
                    b0:29:6e:69:49:cc:f2:8e:cc:06:4b:e6:94:3c:2a:
                    8d:36:5f:dc:20:fd:10:8b:d4:6e:0d:66:bc:b7:62:
                    1b:df:b1:9f:38:68:f1:56:d0:f9:32:63:67:6d:99:
                    dd:e6:7e:b3:ff:22:f8:ce:ff:30:5e:e4:4f:46:8e:
                    8f:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                36:E6:45:F6:4B:F2:37:7F:A2:0C:B3:9E:24:A3:9F:EC:3F:B5:33:EC
            X509v3 Authority Key Identifier: 
                BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
            Authority Information Access: 
                OCSP - URI:http://r10.o.lencr.org
                CA Issuers - URI:http://r10.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:fs.shegeftangizan.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : E0:92:B3:FC:0C:1D:C8:E7:68:36:1F:DE:61:B9:96:4D:
                                0A:52:78:19:8A:72:D6:72:C4:B0:4D:A5:6D:6F:54:04
                    Timestamp : Oct  5 21:57:43.589 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:47:A5:18:42:2B:A1:EA:92:36:7B:53:56:
                                BD:C5:75:C3:C6:D1:BA:FA:FC:28:41:CC:19:9D:19:0E:
                                30:05:16:D4:02:21:00:D0:96:03:93:87:25:89:20:95:
                                14:FE:D5:7F:DD:77:36:E6:4C:7F:EA:AE:79:A9:12:9A:
                                61:2B:CE:F4:8D:7D:6E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Oct  5 21:57:45.575 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:75:CC:DB:56:D5:7D:0D:5A:1D:26:F2:A8:
                                CD:32:2F:58:90:7F:9D:49:4A:DF:34:AE:38:0D:5D:91:
                                ED:86:FF:4C:02:20:14:CF:21:E5:7C:6E:A1:6A:16:24:
                                41:A4:B1:6E:E6:AD:5A:41:E4:83:13:A7:7F:D4:04:91:
                                13:0C:F6:D2:CE:28
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        50:33:00:f6:02:8b:8b:38:c1:c4:0e:4f:3a:8e:27:c2:80:a6:
        36:26:be:1f:f8:82:42:b3:cb:ed:eb:66:be:95:ee:26:21:8f:
        14:54:b3:51:e4:c1:82:a0:2a:f3:39:d9:08:7c:08:82:a0:ae:
        8d:08:c3:f8:46:6e:15:51:0a:3d:49:dc:af:57:52:0a:1e:8e:
        a7:57:44:7f:1e:49:25:00:c0:2c:06:68:f7:bb:ae:49:a1:43:
        27:d2:e0:03:80:c2:d6:43:da:68:d0:73:ca:10:d7:25:94:22:
        5c:a1:20:d4:7a:11:64:35:93:75:1d:5d:4e:e2:05:52:36:00:
        c7:8e:c1:4e:52:66:16:5d:ad:33:5f:cf:7d:eb:ba:21:6d:4c:
        78:59:fe:c7:45:dd:5c:55:8f:06:c0:df:ce:4d:80:c8:8c:70:
        32:47:00:3c:ee:65:64:3f:46:24:ad:bd:21:47:a4:5b:6e:3d:
        85:ed:98:45:be:75:ed:3c:25:bc:3e:f9:e3:ee:27:84:98:c4:
        06:4f:de:bb:8d:56:a6:40:09:33:08:f6:78:d8:96:ae:81:50:
        30:35:c3:07:ef:92:6f:a3:82:55:aa:4c:85:8a:65:45:32:26:
        fe:5c:85:1e:92:47:7c:92:5a:0a:eb:e8:27:13:46:92:dd:67:
        61:cf:32:a1

CVE-2019-9513 CVE-2019-9511 CVE-2018-16844 CVE-2018-16843 CVE-2021-23017 5 moreCVE-2021-3618 CVE-2019-20372 CVE-2019-9516 CVE-2018-16845 CVE-2023-44487

1888559829 | 2024-10-30T00:38:29.200984

465 / tcp

220 mail.shamsbc.com ESMTP\r\n

-390231174 | 2024-11-04T08:11:10.517896

587 / tcp

220 mail.shamsbc.com ESMTP
250-mail.shamsbc.com
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-AUTH PLAIN LOGIN
250-AUTH=PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250 CHUNKING

-1267483542 | 2024-11-04T20:14:16.458892

3000 / tcp

Grafana

HTTP/1.1 200 OK
Cache-Control: no-store
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-Xss-Protection: 1; mode=block
Date: Mon, 04 Nov 2024 20:14:15 GMT
Transfer-Encoding: chunked

CVE-2023-6152

-685190446 | 2024-10-10T10:03:59.735877

3333 / tcp

HTTP/1.1 500 Internal Server Error
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: accept, content-type
Content-Type: application/json; charset=utf-8
Content-Length: 53
ETag: W/"35-iTRhyxGAVKyxtiZobA6LM5tLJ/M"
Date: Thu, 10 Oct 2024 10:03:59 GMT
Connection: keep-alive
Keep-Alive: timeout=5

-909616419 | 2024-10-30T04:59:14.150029

9000 / tcp

HTTP/1.1 403 Forbidden
Accept-Ranges: bytes
Content-Length: 226
Content-Security-Policy: block-all-mixed-content
Content-Type: application/xml
Server: MinIO/RELEASE.2020-10-28T08-16-50Z.hotfix.23bfe9811
Vary: Origin
X-Amz-Request-Id: 180322433C53FB8F
X-Xss-Protection: 1; mode=block
Date: Wed, 30 Oct 2024 04:59:14 GMT

<?xml version="1.0" encoding="UTF-8"?>
<Error><Code>AccessDenied</Code><Message>Access Denied.</Message><Resource>/</Resource><RequestId>180322433C53FB8F</RequestId><HostId>ac412cca-5039-41d9-b889-474b95e0376c</HostId></Error>

-542535981 | 2024-11-01T04:06:53.762041

9091 / tcp

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: /graph
Date: Fri, 01 Nov 2024 04:06:53 GMT
Content-Length: 29

<a href="/graph">Found</a>.

-1068546752 | 2024-10-18T23:35:05.274290

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goversion: go1.9.6
    revision: d42bd70f4363dced6b77d8fc311ea57b63387e4f
    version: 0.16.0
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: server2
    release: 4.15.0-213-generic
    sysname: Linux
    version: #224-Ubuntu SMP Mon Jun 19 13:30:12 UTC 2023

731197476 | 2024-11-05T03:21:49.258913

10250 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Tue, 05 Nov 2024 03:21:49 GMT
Content-Length: 19

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=server2-ca@1641110267
        Validity
            Not Before: Jan  2 06:57:47 2022 GMT
            Not After : Jan  2 06:57:47 2023 GMT
        Subject: CN=server2@1641110268
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c5:58:89:f5:11:60:2b:fe:51:40:44:2f:f8:2a:
                    f7:9d:68:09:7e:5e:df:03:52:80:e4:8f:b5:81:46:
                    a0:d0:49:45:0d:3f:18:f3:38:01:47:ed:f7:fc:76:
                    29:b1:20:d3:bd:d3:92:27:0c:53:2f:13:90:c1:ec:
                    53:26:14:84:9e:bd:78:60:d2:03:f9:ff:83:7e:62:
                    1b:94:34:1a:b0:ae:ac:8d:dc:0f:45:ee:91:af:94:
                    64:05:fb:b7:3b:a3:29:5e:11:27:c8:d3:5f:e2:dc:
                    46:f4:03:75:d8:27:21:a0:57:2f:f3:03:96:e2:56:
                    b9:1d:91:5f:c1:36:63:96:24:63:a2:30:4d:df:27:
                    30:e4:6c:f7:e0:80:3f:52:f6:70:bc:be:19:14:33:
                    37:45:50:1f:7b:b8:50:12:fc:84:19:89:11:8e:9b:
                    c5:47:ca:cb:2a:99:19:ff:f1:1c:7f:c3:0a:9b:e1:
                    8c:a7:4e:1b:33:f4:8d:8f:01:7b:3a:13:f1:d5:6e:
                    79:ed:6d:ac:0c:40:c4:ec:ad:9f:49:c7:d6:58:9c:
                    60:0d:23:c5:80:8a:a8:bc:29:a1:6c:d0:e1:01:d0:
                    9a:c9:04:d5:5e:d0:d1:ed:18:fc:cf:1a:e6:b1:70:
                    b9:06:4c:1c:b5:f3:57:6b:14:3b:53:ad:bb:2b:0c:
                    08:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Authority Key Identifier: 
                64:2E:99:FD:FE:06:94:5F:20:47:D1:E5:90:84:F3:CE:CC:4E:CE:C3
            X509v3 Subject Alternative Name: 
                DNS:server2
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        57:d7:0a:21:97:c1:20:dd:c1:b8:de:6b:a8:03:98:fb:fc:91:
        1d:ef:a2:a9:46:e9:c5:c5:79:d6:48:36:c8:ce:b7:9c:f4:8f:
        32:d6:72:11:ab:9a:0e:07:76:75:54:9e:bf:e1:9c:d2:84:9c:
        6c:1c:68:20:c3:c5:05:36:1b:2b:e7:ad:fd:fd:4f:fe:02:45:
        55:2c:7b:8c:bb:66:a2:af:eb:13:81:e1:c0:92:bc:9c:54:f5:
        d3:75:f7:b1:15:ce:5b:b3:9f:d7:eb:19:cf:65:41:bd:27:0c:
        5f:6c:fc:50:b4:82:71:17:95:05:aa:0b:df:e7:30:66:d5:ee:
        8f:6b:34:0a:1a:5f:da:bb:b0:22:c5:de:80:56:53:77:cf:3e:
        ab:c1:3f:42:a5:eb:32:d8:ba:a6:e5:8b:e0:51:0b:d3:32:8e:
        42:04:b4:c6:85:b4:4b:8d:13:6e:27:3c:c6:ea:a9:4a:92:d9:
        63:b1:44:8f:ee:94:2b:64:54:6c:ca:00:37:5a:85:db:b9:cb:
        ab:8f:a6:05:b1:86:86:2b:8a:a9:71:f9:de:50:b5:c0:9f:99:
        bd:05:1f:04:f2:71:ba:52:51:aa:48:42:4f:4d:e2:1c:32:53:
        2b:e7:16:e0:59:55:a1:1a:6e:73:fa:7e:ff:08:54:f9:dd:72:
        dc:3e:82:e2

45.159.197.84

Last Seen: 2024-11-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

906388357 | 2024-11-05T21:38:51.568115
21 / tcp

1217576723 | 2024-10-29T03:35:39.291507
22 / tcp

OpenSSH7.6p1 Ubuntu 4ubuntu0.5

287953547 | 2024-10-23T03:12:46.186142
25 / tcp

1887596591 | 2024-11-04T06:00:12.195795
80 / tcp

nginx1.14.0

1664207957 | 2024-10-31T17:55:14.128143
143 / tcp

24222233 | 2024-11-03T15:49:30.908412
443 / tcp

MinIO Server

1888559829 | 2024-10-30T00:38:29.200984
465 / tcp

-390231174 | 2024-11-04T08:11:10.517896
587 / tcp

-1267483542 | 2024-11-04T20:14:16.458892
3000 / tcp

Grafana (Open Source)10.2.0

-685190446 | 2024-10-10T10:03:59.735877
3333 / tcp

-909616419 | 2024-10-30T04:59:14.150029
9000 / tcp

-542535981 | 2024-11-01T04:06:53.762041
9091 / tcp

-1068546752 | 2024-10-18T23:35:05.274290
9100 / tcp

Prometheus Node Exporter0.16.0

731197476 | 2024-11-05T03:21:49.258913
10250 / tcp

Kubernetes

Products

Pricing

Contact Us

45.159.197.84

Last Seen: 2024-11-05

Tags:

GeneralInformation

Vulnerabilities All ports Port 80 Port 443 Port 3000 Latest CVSS

OpenPorts

906388357 | 2024-11-05T21:38:51.568115 21 / tcp

1217576723 | 2024-10-29T03:35:39.291507 22 / tcp

OpenSSH7.6p1 Ubuntu 4ubuntu0.5

287953547 | 2024-10-23T03:12:46.186142 25 / tcp

1887596591 | 2024-11-04T06:00:12.195795 80 / tcp

nginx1.14.0

1664207957 | 2024-10-31T17:55:14.128143 143 / tcp

24222233 | 2024-11-03T15:49:30.908412 443 / tcp

MinIO Server

1888559829 | 2024-10-30T00:38:29.200984 465 / tcp

-390231174 | 2024-11-04T08:11:10.517896 587 / tcp

-1267483542 | 2024-11-04T20:14:16.458892 3000 / tcp

Grafana (Open Source)10.2.0

-685190446 | 2024-10-10T10:03:59.735877 3333 / tcp

-909616419 | 2024-10-30T04:59:14.150029 9000 / tcp

-542535981 | 2024-11-01T04:06:53.762041 9091 / tcp

-1068546752 | 2024-10-18T23:35:05.274290 9100 / tcp

Prometheus Node Exporter0.16.0

731197476 | 2024-11-05T03:21:49.258913 10250 / tcp

Kubernetes

Products

Pricing

Contact Us

Vulnerabilities

906388357 | 2024-11-05T21:38:51.568115
21 / tcp

1217576723 | 2024-10-29T03:35:39.291507
22 / tcp

287953547 | 2024-10-23T03:12:46.186142
25 / tcp

1887596591 | 2024-11-04T06:00:12.195795
80 / tcp

1664207957 | 2024-10-31T17:55:14.128143
143 / tcp

24222233 | 2024-11-03T15:49:30.908412
443 / tcp

1888559829 | 2024-10-30T00:38:29.200984
465 / tcp

-390231174 | 2024-11-04T08:11:10.517896
587 / tcp

-1267483542 | 2024-11-04T20:14:16.458892
3000 / tcp

-685190446 | 2024-10-10T10:03:59.735877
3333 / tcp

-909616419 | 2024-10-30T04:59:14.150029
9000 / tcp

-542535981 | 2024-11-01T04:06:53.762041
9091 / tcp

-1068546752 | 2024-10-18T23:35:05.274290
9100 / tcp

731197476 | 2024-11-05T03:21:49.258913
10250 / tcp