39.106.106.207
{
"scan_id": 1748787635,
"ip": "39.106.106.207",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "39.104.0.0/14",
"postal_code": "",
"coordinates": {
"latitude": "39.911",
"longitude": "116.395"
},
"geo_point": "39.911, 116.395",
"locale_code": "en",
"continent": "Asia",
"country_code": "CN",
"country_name": "China",
"city": "Beijing"
},
"location_updated_at": "2025-06-02T16:31:52Z",
"asn": {
"number": "AS37963",
"organization": "Hangzhou Alibaba Advertising Co.,Ltd.",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "39.104.0.0/14",
"organization": "Hangzhou Alibaba Advertising Co.,Ltd.",
"descr": "Hangzhou Alibaba Advertising Co.,Ltd.",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:26:59Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-06-02T16:31:52Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-06-02T16:42:33Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-06-02T16:31:52Z"
}
],
"services": [
{
"port": 21,
"protocol": "tcp",
"name": "ftp",
"version": "2.0.8 or later",
"product": "vsftpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:vsftpd:vsftpd",
"part": "a",
"vendor": "vsftpd",
"product": "vsftpd",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ftp": {
"banner": "220 Welcome to www.net.cn FTP service.\r\n"
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-03T16:52:13.412Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<head> \n <meta http-equiv=\"refresh\" content=\"1;url=https://wanwang.aliyun.com/hosting/ipvisit_stop\"> \n</head>\n",
"body_murmur": 1953085623,
"body_sha256": "13e7bb8bc25e80fc749fe388c5f01008dc358c3ac18775d944fbcbe4fdfed2ab",
"component": [
"Apache HTTP Server"
],
"content_length": -1,
"headers": {
"accept_ranges": [
"bytes"
],
"content_type": [
"text/html"
],
"date": [
"Mon, 02 Jun 2025 03:09:54 GMT"
],
"etag": [
"\"1c07de-74-5b9677688cc40\""
],
"last_modified": [
"Thu, 21 Jan 2021 11:35:05 GMT"
],
"server": [
"Apache"
],
"vary": [
"Accept-Encoding,User-Agent"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "39.106.106.207",
"path": "",
"scheme": "http"
}
},
"status_code": 200
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "http://39.106.106.207/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-02T03:09:59.144Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<head> \n <meta http-equiv=\"refresh\" content=\"1;url=https://wanwang.aliyun.com/hosting/ipvisit_stop\"> \n</head>\n",
"body_murmur": 1953085623,
"body_sha256": "13e7bb8bc25e80fc749fe388c5f01008dc358c3ac18775d944fbcbe4fdfed2ab",
"component": [
"Apache HTTP Server"
],
"content_length": -1,
"headers": {
"accept_ranges": [
"bytes"
],
"content_type": [
"text/html"
],
"date": [
"Sat, 31 May 2025 01:08:47 GMT"
],
"etag": [
"\"1c07de-74-5b9677688cc40\""
],
"last_modified": [
"Thu, 21 Jan 2021 11:35:05 GMT"
],
"server": [
"Apache"
],
"vary": [
"Accept-Encoding,User-Agent"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "39.106.106.207",
"path": "",
"scheme": "https"
}
},
"status_code": 200
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA"
],
"ocsp_urls": [
"http://ocsp2.digicert.com"
]
},
"authority_key_id": "55744fb2724ff560ba50d1d7e6515c9a01871ad7",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"cps": [
"https://www.digicert.com/CPS"
],
"id": "2.16.840.1.114412.1.2"
},
{
"id": "2.23.140.1.2.1"
}
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : BB:D9:DF:BC:1F:8A:71:B5:93:94:23:97:AA:92:7B:47:\n 38:57:95:0A:AB:52:E8:1A:90:96:64:36:8E:1E:D1:85\n Timestamp : Aug 13 04:30:18.502 2018 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:35:8C:D0:1E:99:4F:B7:4C:16:B8:88:3F:\n 04:95:65:4F:2C:38:0B:12:36:01:D5:61:B7:05:55:01:\n 1C:A2:06:19:02:21:00:90:98:90:CA:0E:49:22:A5:F2:\n 01:9E:65:CB:6E:C3:53:F0:5D:A3:08:55:0F:B2:D4:A3:\n 18:FE:09:BE:D7:97:63\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 87:75:BF:E7:59:7C:F8:8C:43:99:5F:BD:F3:6E:FF:56:\n 8D:47:56:36:FF:4A:B5:60:C1:B4:EA:FF:5E:A0:83:0F\n Timestamp : Aug 13 04:30:18.645 2018 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:72:E6:05:73:EE:2D:7B:96:28:BE:08:72:\n 6D:A8:2C:73:4A:AA:3E:C7:A5:D2:0E:24:86:0F:0C:30:\n 87:9F:5F:4F:02:20:61:F2:7B:D9:C9:4E:F0:3E:46:53:\n 64:74:0E:51:7D:73:B8:DA:53:99:75:49:64:79:10:EE:\n B9:65:9A:8F:74:26",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"www.webhostingtest1.com",
"webhostingtest1.com"
]
},
"subject_key_id": "7cdc347728525420cd57e1de451ee60ecd930d77"
},
"fingerprint_md5": "DA927240D6F7931A3CFC20E54A3B9037",
"fingerprint_sha1": "CBD7FF510FE7C639F9FF2AB58575880762A7E93D",
"fingerprint_sha256": "FF684E3024306689A3B6A9EA788CFB9053A00922AD2D061BD5147831BCC2BB71",
"issuer": {
"common_name": [
"Encryption Everywhere DV TLS CA - G1"
],
"country": [
"US"
],
"organization": [
"DigiCert Inc"
],
"organizational_unit": [
"www.digicert.com"
]
},
"issuer_dn": "/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=Encryption Everywhere DV TLS CA - G1",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "11331574086489893915831814072162559579",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "30450220358cd01e994fb74c16b8883f0495654f2c380b123601d561b70555011ca20619022100909890ca0e4922a5f2019e65cb6ec353f05da308550fb2d4a318fe09bed79763"
},
"timestamp": "2018-08-13T04:30:18.502000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "8775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3044022072e60573ee2d7b9628be08726da82c734aaa3ec7a5d20e24860f0c30879f5f4f022061f27bd9c94ef03e465364740e517d73b8da53997549647910eeb9659a8f7426"
},
"timestamp": "2018-08-13T04:30:18.645000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"www.webhostingtest1.com"
]
},
"subject_alt_name": {
"dns_names": [
"www.webhostingtest1.com",
"webhostingtest1.com"
],
"extended_dns_names": [
{
"domain": "webhostingtest1",
"fld": "webhostingtest1.com",
"subdomain": "www",
"tld": "com"
},
{
"domain": "webhostingtest1",
"fld": "webhostingtest1.com",
"tld": "com"
}
]
},
"subject_dn": "/CN=www.webhostingtest1.com",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "ca6ab919ad18dc501b8e8af3f2b2d3ded75974063591dc078861beb461bcae7e",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "2e6b7ab693b4fdef9531ad0efb989c4d1af957fb6366b54ee6d087f0348ee654",
"tbs_noct_fingerprint": "da092c2c79277b2aefc78c9ceb72a58203c9f27b1341c43622a87593d4fbe4cf",
"validation_level": "DV",
"validity": {
"length_seconds": 31579200,
"not_after": "2019-08-13T12:00:00",
"not_before": "2018-08-13T00:00:00"
},
"version": 2
},
"fingerprint_sha256": "FF684E3024306689A3B6A9EA788CFB9053A00922AD2D061BD5147831BCC2BB71",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://39.106.106.207/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-31T07:39:59.505Z"
}
],
"services_hash": "3ffe4e804241eba67a778cf605d6cd3adde0ec33497417a69fa9e85d6244a792",
"last_updated_at": "2025-06-03T16:52:13.412Z",
"banner": [
"ftp",
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
}
}
}