GeneralInformation

Hostnames	12copy.de www.12copy.de trading-house.de www.trading-house.de static.232.192.251.148.clients.your-server.de
Domains	12copy.de trading-house.de your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940

WebTechnologies

Authentication

Google Sign-in

CDN

Unpkg

JavaScript frameworks

JavaScript libraries

Miscellaneous

Programming languages

Node.js

Tag managers

Google Tag Manager

UI frameworks

Bootstrap6

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

80 443 9090 9998 9999

1651973090 | 2024-05-21T11:33:46.322314

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 21 May 2024 11:33:46 GMT
Content-Type: text/html
Content-Length: 612
Last-Modified: Fri, 10 Nov 2023 11:09:45 GMT
Connection: keep-alive
ETag: "654e0f79-264"
Accept-Ranges: bytes

-2034276303 | 2024-05-21T11:41:09.433027

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 21 May 2024 11:41:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: PHPSESSID=fogg3robkegb2r3ttpus5vl7t7; path=/
Pragma: no-cache
Set-Cookie: ref=markuslock; expires=Wed, 21-May-2025 11:41:06 GMT; Max-Age=31536000; path=/
Set-Cookie: ref=markuslock; expires=Wed, 21-May-2025 11:41:06 GMT; Max-Age=31536000; path=/
Set-Cookie: ref=markuslock; expires=Wed, 21-May-2025 11:41:06 GMT; Max-Age=31536000; path=/
Link: </assets/css/A.libs.bundle.css.pagespeed.cf.osGJs7AvTS.css>; rel=preload; as=style; nopush
Link: </js/jquery.min.js.pagespeed.jm.vSq_cOaZon.js>; rel=preload; as=script; nopush
Link: </assets/js/vendor.bundle.js>; rel=preload; as=script; nopush
Link: </assets/js/theme.bundle.js>; rel=preload; as=script; nopush
Cache-Control: max-age=0, no-cache
backend_server: trading-house.net
Age: 0
X-Cache: MISS
X-backend: trading-house.net
X-Cache-Hits: 0
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:80:9c:45:df:aa:e8:b8:b7:8b:93:65:a4:24:30:93:2e:c2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May 20 19:40:06 2024 GMT
            Not After : Aug 18 19:40:05 2024 GMT
        Subject: CN=12copy.de
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub:
                    04:d4:06:d2:b7:d7:a7:ae:e2:1b:c0:ca:c5:82:5f:
                    c8:7d:be:66:cf:5a:19:87:b4:23:0c:28:74:60:2f:
                    b6:72:ec:0f:00:75:e3:4a:b1:60:31:37:a8:92:3d:
                    bd:13:ca:85:a4:ef:de:ad:ef:a4:ce:38:52:8f:14:
                    0d:1f:a7:bb:84
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                F3:5F:1E:B0:C6:F7:80:2F:A0:1D:E6:D9:29:F7:10:48:5C:7A:DC:02
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:12copy.de, DNS:trading-house.de, DNS:www.12copy.de, DNS:www.trading-house.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : May 20 20:40:07.005 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D7:1F:29:13:2D:AE:10:D0:39:4B:6F:
                                9D:45:AE:62:9F:D3:A2:B2:95:F1:EA:26:11:06:81:12:
                                BC:AE:A6:08:48:02:20:27:CE:5F:8F:25:6A:3A:BC:0B:
                                C0:36:A8:FD:EE:2F:D5:05:6A:DA:7A:3A:05:E2:6B:1D:
                                DD:18:D0:0C:1F:FD:FA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May 20 20:40:07.040 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:EA:78:78:03:78:0A:E1:FA:88:AA:86:
                                06:37:4D:2F:41:CA:38:A9:95:3C:C5:6B:1D:EC:FC:4C:
                                E1:FC:C0:DD:3F:02:21:00:E5:FF:AE:70:B5:0A:8D:81:
                                8B:0E:8D:DC:9C:77:EF:65:55:57:B1:92:B3:D6:06:40:
                                49:C1:8C:F0:A2:77:CB:81
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        35:1e:d6:07:31:ed:0e:8e:27:c4:0c:a2:4a:bd:66:2f:6e:fb:
        f0:20:a6:d7:74:62:6b:94:6a:ff:f7:41:6b:45:66:89:1d:47:
        19:27:95:29:bb:e4:ca:6a:79:96:e9:7e:45:14:5f:9c:d5:7a:
        f6:57:d1:3e:2f:3d:fc:32:1d:19:20:b9:18:90:cc:75:85:45:
        32:9c:ea:30:6f:5b:11:6b:4a:36:3d:ec:e9:84:7f:c0:d0:ae:
        f8:c9:a5:d2:6e:12:fd:3b:91:31:bc:13:f6:ea:0a:5d:12:9a:
        34:2e:27:ac:77:4f:a9:a6:84:77:7b:c4:ca:29:40:eb:c8:d1:
        b1:58:c4:c8:b6:d0:9a:9c:ba:03:32:3f:ee:38:4a:e5:15:93:
        65:c8:89:aa:65:d2:ce:eb:4d:eb:ba:35:d3:69:a0:7b:e4:9f:
        d5:61:a3:49:d5:b8:09:a7:fc:d2:52:89:40:d5:e5:e4:49:fc:
        86:cd:ce:85:bb:17:e9:84:f4:87:97:70:7f:3c:f5:5e:96:9f:
        7e:e1:8f:d8:23:57:f6:a5:cf:3c:ea:c2:5b:24:de:c9:45:9c:
        f7:87:ec:8a:6e:f1:fd:a0:d7:0e:f9:b3:01:88:ff:16:94:b1:
        00:00:d3:f1:91:a9:64:11:7a:f0:22:97:91:e6:bd:74:63:98:
        e6:3a:1f:61

-667122488 | 2024-05-09T07:50:40.547604

9090 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 09 May 2024 07:50:19 GMT
Content-Type: image/jpeg
E-Tag: b87e27ccb6ee2bd984424df4ebba2a0a
Expires: Thu, 09 May 2024 09:51:19 GMT
Cache-Control: max-age=60, s-maxage=10
backend_server: mdb
X-Varnish: 32770
Age: 0
Via: 1.1 varnish (Varnish/6.0)
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive

-1711521995 | 2024-05-23T04:27:18.775196

9998 / tcp

HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 23 May 2024 04:27:15 GMT
Content-Type: text/html
Content-Length: 150
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx</center>
</body>
</html>

726621046 | 2024-05-04T07:27:15.802136

9999 / tcp

HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Vary: Accept-Encoding
Pragma: no-cache
E-Tag: 6666cd76f96956469e7be39d750cc7d9
X-Host: 148.251.192.232
Date: Sat, 04 May 2024 07:27:15 GMT
Cache-Control: max-age=0, no-cache
backend_server: proteus
Age: 0
X-Cache: MISS
X-backend: proteus
X-Cache-Hits: 0
Accept-Ranges: bytes
Transfer-Encoding: chunked
Connection: keep-alive

148.251.192.232

Last Seen: 2024-05-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1651973090 | 2024-05-21T11:33:46.322314
80 / tcp

nginx1.18.0

-2034276303 | 2024-05-21T11:41:09.433027
443 / tcp

nginx1.18.0

-667122488 | 2024-05-09T07:50:40.547604
9090 / tcp

nginx

-1711521995 | 2024-05-23T04:27:18.775196
9998 / tcp

nginx

726621046 | 2024-05-04T07:27:15.802136
9999 / tcp

Products

Pricing

Contact Us

148.251.192.232

Last Seen: 2024-05-23

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1651973090 | 2024-05-21T11:33:46.322314 80 / tcp

nginx1.18.0

-2034276303 | 2024-05-21T11:41:09.433027 443 / tcp

nginx1.18.0

-667122488 | 2024-05-09T07:50:40.547604 9090 / tcp

nginx

-1711521995 | 2024-05-23T04:27:18.775196 9998 / tcp

nginx

726621046 | 2024-05-04T07:27:15.802136 9999 / tcp

Products

Pricing

Contact Us

1651973090 | 2024-05-21T11:33:46.322314
80 / tcp

-2034276303 | 2024-05-21T11:41:09.433027
443 / tcp

-667122488 | 2024-05-09T07:50:40.547604
9090 / tcp

-1711521995 | 2024-05-23T04:27:18.775196
9998 / tcp

726621046 | 2024-05-04T07:27:15.802136
9999 / tcp