GeneralInformation

Hostnames	trackingtraffo.com ads.trackingtraffo.com rtb.trackingtraffo.com rtb-eu.trackingtraffo.com track.trackingtraffo.com track-eu.trackingtraffo.com static.100.236.55.162.clients.your-server.de
Domains	trackingtraffo.com your-server.de
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 9101

335757706 | 2024-05-17T04:21:09.246861

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJswuH2njlxEP2Kb3NyUvARl
+lozCeT1Ko4cRKNIXi3aU7TaBW3mKR+niUS8O7ofAPlmD2jAt+f6f6qgx2tD0JQ=
Fingerprint: 8a:46:06:88:78:35:9b:ca:aa:72:35:af:b7:7d:2f:f9

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

869281729 | 2024-05-17T12:36:44.001041

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 17 May 2024 12:36:43 GMT
Content-Type: text/html
Content-Length: 564
Connection: keep-alive

1765360226 | 2024-05-16T16:10:34.107169

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Date: Thu, 16 May 2024 16:10:33 GMT
Content-Type: text/html
Content-Length: 548
Connection: keep-alive

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            cb:e4:5b:cf:7c:98:f5:20:45:4c:d1:7f:28:dd:b7:2e
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Nov 23 00:00:00 2023 GMT
            Not After : Nov 22 23:59:59 2024 GMT
        Subject: CN=trackingtraffo.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:16:dc:ce:7f:9f:f0:d1:f2:f7:30:f0:0d:91:
                    f8:fa:7c:0e:5f:98:95:ef:25:98:ba:8f:08:db:0e:
                    ae:46:00:27:7f:d3:65:28:29:de:d6:c5:25:8e:48:
                    28:5b:cf:3f:db:0c:74:3c:f8:69:18:51:15:fe:d8:
                    d9:9a:57:8d:ac:15:94:8b:0c:82:e1:96:7d:5d:67:
                    a9:80:a3:33:35:df:f0:1f:6b:cb:d4:37:65:29:25:
                    43:95:e1:90:cd:9c:16:af:1d:5a:c9:5b:c1:2d:15:
                    d3:b8:15:e8:21:8b:6e:c7:61:ab:5b:45:99:86:5d:
                    7f:fd:05:af:b3:7d:4d:fd:29:42:b2:a4:d2:91:5d:
                    2f:67:02:00:af:fc:22:cc:3d:0a:bc:64:70:5c:c2:
                    91:3d:7c:46:84:1a:f2:cf:3c:32:06:6d:aa:91:56:
                    f9:7d:6e:f3:cd:c7:e1:65:d4:88:86:6a:79:0c:58:
                    d3:40:b7:ef:18:b4:2d:3f:a2:10:d4:71:bd:ff:ce:
                    00:d7:a4:46:f3:68:65:47:81:1b:16:76:fc:80:67:
                    68:1d:62:c0:a2:29:3f:e4:3b:bb:68:1f:e4:f2:c9:
                    a3:70:8b:aa:d7:eb:3a:0c:43:30:98:6f:8c:05:40:
                    d9:2f:11:04:d4:f9:4c:01:05:df:f5:ca:8e:e4:30:
                    6a:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                92:C5:DE:8E:16:71:B3:22:71:D1:B4:FB:B2:2A:E3:FC:EB:4E:7A:A6
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Nov 23 13:38:01.419 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:42:DA:24:D9:8D:35:CD:EA:72:1D:C6:2D:
                                CA:2B:66:78:8B:14:2F:D8:09:EA:A1:95:F0:86:18:8D:
                                9F:32:B3:9B:02:20:74:27:BB:02:59:6D:74:FE:83:7E:
                                76:BD:59:E3:0C:D8:40:7E:74:74:AF:EF:BC:DC:DB:B9:
                                B7:BB:46:9D:BF:94
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : Nov 23 13:38:01.590 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:26:7B:2C:36:42:68:38:BD:C5:EF:E8:37:
                                E9:D2:20:CB:38:20:2D:CA:FB:7B:13:26:6D:5B:95:AA:
                                19:56:02:01:02:20:70:74:58:D8:B3:5B:F0:8E:9D:78:
                                5C:99:54:F8:A5:16:CD:43:7D:6D:78:52:63:D6:3A:46:
                                9C:33:FD:EE:E5:02
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Nov 23 13:38:01.543 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:63:68:98:A9:BC:F0:57:9B:E3:0F:73:C1:
                                5B:12:4A:B4:F4:3A:7F:07:34:1A:F7:54:F2:45:50:FE:
                                1B:F7:86:71:02:20:5E:9B:85:97:4A:81:71:06:D7:A9:
                                18:32:3E:60:4B:4D:FE:C5:84:D9:5E:54:85:B6:C6:14:
                                23:F3:13:D3:DE:BE
            X509v3 Subject Alternative Name: 
                DNS:trackingtraffo.com, DNS:ads.trackingtraffo.com, DNS:rtb-eu.trackingtraffo.com, DNS:rtb.trackingtraffo.com, DNS:track-eu.trackingtraffo.com, DNS:track.trackingtraffo.com
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        cd:3e:f9:68:42:50:5b:27:78:19:a3:9f:b4:7b:15:99:d6:8e:
        ba:a1:54:52:f8:a9:3a:d3:a3:31:12:c6:e0:4e:de:02:80:12:
        93:41:e2:f8:e1:77:ef:b6:35:12:bb:b5:59:21:6f:a6:6a:61:
        0a:f6:84:42:3a:5c:9c:f3:62:f3:bf:a0:7c:17:e6:22:3a:d7:
        92:33:b6:65:5f:29:ee:79:93:c0:04:57:a8:7e:66:a1:df:56:
        cb:cb:95:8f:96:cf:06:9e:93:36:fe:3a:3a:f6:1d:56:6b:92:
        02:de:d8:63:85:32:bd:7f:3b:01:6b:16:da:40:23:82:f7:e9:
        08:5c:20:5f:ad:d3:5e:9e:1b:e5:45:72:67:63:04:46:89:8f:
        5b:8a:ab:76:00:97:00:3a:cf:85:00:7c:55:65:6c:14:6f:f9:
        9e:c8:08:12:45:8c:c2:43:1b:fd:c5:f7:d4:95:f7:69:9c:b7:
        77:eb:66:44:c1:45:20:19:78:49:7b:52:dd:53:85:99:29:60:
        0c:27:30:0a:38:8e:e6:2f:41:f6:02:85:a7:36:a4:19:f7:ca:
        7b:2b:01:a0:1b:46:7b:57:3e:8b:a0:b6:73:53:0c:5b:60:81:
        9f:7d:00:06:bc:ea:e2:dd:21:30:12:6f:07:14:fd:ae:62:c4:
        e6:fb:70:9e

2097264657 | 2024-04-21T15:26:42.634087

9101 / tcp

HTTP/1.1 200 OK
Date: Sun, 21 Apr 2024 15:26:42 GMT
Content-Length: 150
Content-Type: text/html; charset=utf-8


Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goversion: go1.14.4
    revision: 3715be6ae899f2a9b9dbfd9c39f3e09a7bd4559f
    version: 1.0.1
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: balancer-2
    release: 5.15.0-78-generic
    sysname: Linux
    version: #85-Ubuntu SMP Fri Jul 7 15:25:09 UTC 2023
  node_network_info:
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    enx325b9e9998d5:
      address: 32:5b:9e:99:98:d5
      broadcast: ff:ff:ff:ff:ff:ff
      device: enx325b9e9998d5
      operstate: down
    ens15:
      address: 6c:b3:11:07:25:4e
      broadcast: ff:ff:ff:ff:ff:ff
      device: ens15
      duplex: full
      operstate: up
    enp195s0f1:
      address: f0:2f:74:97:d6:c5
      broadcast: ff:ff:ff:ff:ff:ff
      device: enp195s0f1
      operstate: down
    enp195s0f0:
      address: f0:2f:74:97:d6:c4
      broadcast: ff:ff:ff:ff:ff:ff
      device: enp195s0f0
      duplex: full
      operstate: up
    enp195s0f0.4000:
      address: f0:2f:74:97:d6:c4
      broadcast: ff:ff:ff:ff:ff:ff
      device: enp195s0f0.4000
      duplex: full
      operstate: up

162.55.236.100

Last Seen: 2024-05-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

335757706 | 2024-05-17T04:21:09.246861
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

869281729 | 2024-05-17T12:36:44.001041
80 / tcp

nginx1.18.0

1765360226 | 2024-05-16T16:10:34.107169
443 / tcp

nginx

2097264657 | 2024-04-21T15:26:42.634087
9101 / tcp

Prometheus Node Exporter1.0.1

Products

Pricing

Contact Us

162.55.236.100

Last Seen: 2024-05-17

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

335757706 | 2024-05-17T04:21:09.246861 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

869281729 | 2024-05-17T12:36:44.001041 80 / tcp

nginx1.18.0

1765360226 | 2024-05-16T16:10:34.107169 443 / tcp

nginx

2097264657 | 2024-04-21T15:26:42.634087 9101 / tcp

Prometheus Node Exporter1.0.1

Products

Pricing

Contact Us

335757706 | 2024-05-17T04:21:09.246861
22 / tcp

869281729 | 2024-05-17T12:36:44.001041
80 / tcp

1765360226 | 2024-05-16T16:10:34.107169
443 / tcp

2097264657 | 2024-04-21T15:26:42.634087
9101 / tcp