GeneralInformation

Hostnames	vmi1558245.contaboserver.net mpsnode.online
Domains	contaboserver.net mpsnode.online
Country	Germany
City	Frankfurt am Main
Organization	Contabo GmbH
ISP	Contabo GmbH
ASN	AS51167

WebTechnologies

CDN

PaaS

Reverse proxies

Security

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

OpenPorts

22 80 443 3000 4000 5000

-900905118 | 2024-05-07T07:26:28.473145

22 / tcp

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQDBkV+65NHwUaFCtif5dG0unuYs4pAxHQ1IW9fMHSOL2hP+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Fingerprint: 58:ec:d0:76:9a:7f:56:85:17:bc:56:01:5b:e5:05:a8

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

589765266 | 2024-05-06T17:10:54.897590

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 17:10:54 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://207.180.196.100/

-1021924379 | 2024-05-06T17:10:57.956601

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Mon, 06 May 2024 17:10:57 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 213
Connection: keep-alive
x-trace: j2sZstAV2w
x-envoy-upstream-service-time: 27
x-cache: Hit from cloudfront
via: 1.1 85b5bfb24f4c72592f8afc86bd85bd86.cloudfront.net (CloudFront)
x-amz-cf-pop: MXP64-P2
x-amz-cf-id: lf0ZPotb5ec1W1URl0wbyAA3uSmhZ2VDaljis6Ws7xc_U4yEeit9AA==
age: 20
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b3:6b:84:e3:f1:62:ce:9c:23:0d:91:a0:e0:7d:da:d8:37
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  5 14:37:29 2024 GMT
            Not After : Aug  3 14:37:28 2024 GMT
        Subject: CN=mpsnode.online
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b1:8b:57:bd:d4:31:d5:f6:02:fe:96:42:33:1f:
                    b1:46:d6:5f:c0:b6:41:b2:7e:68:99:b3:e1:e2:9b:
                    ec:5e:f5:86:59:85:8d:50:e4:04:8b:f7:17:c4:92:
                    52:5b:ac:89:ef:30:c8:a7:15:2e:18:39:25:f5:ca:
                    51:6f:51:41:57:17:29:07:6f:82:06:a7:3a:bf:75:
                    c4:c9:b5:02:df:e1:1b:a4:6a:37:06:38:f8:24:db:
                    79:4a:5e:9f:bb:45:d1:00:d6:c4:0a:6f:18:36:c1:
                    42:e2:9f:c7:e8:24:aa:8b:f9:b6:75:5a:29:c7:97:
                    86:0c:c0:3d:16:6a:aa:9c:09:00:1e:ab:1a:ba:95:
                    71:f0:fa:b0:65:2d:d1:22:d8:4e:0e:68:34:04:f7:
                    ae:ec:c5:91:e4:fc:7e:a4:d2:00:59:23:0b:1d:e6:
                    5e:2c:3d:a2:2e:3a:f5:87:92:d2:52:f9:1a:f5:5e:
                    cb:98:57:1f:f6:2e:13:86:30:85:da:03:8e:1f:6b:
                    96:4e:f0:0e:26:f8:15:5c:56:2f:96:00:8c:76:2c:
                    3e:c8:23:b9:4f:9c:18:d7:a0:9b:db:0f:83:7e:a3:
                    7f:0c:aa:43:d4:c6:c8:8c:d9:ce:e1:d9:9d:cc:05:
                    c6:08:10:7a:36:3e:2e:02:cf:d2:d7:c0:bf:1f:e4:
                    cb:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                23:FF:CB:25:54:C1:9D:5B:16:17:32:19:41:03:3B:31:31:97:04:5D
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.mpsnode.online, DNS:mpsnode.online
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
                                ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
                    Timestamp : May  5 15:37:29.100 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F7:44:4B:24:DF:2B:12:DC:39:7C:C4:
                                AD:C3:C6:D4:41:0C:B2:74:A9:A3:A3:EB:06:CD:5D:90:
                                40:F3:13:4C:08:02:21:00:98:32:ED:04:E9:F0:CB:81:
                                F3:AF:23:F2:C6:94:61:E2:B1:3F:B1:75:18:F2:D4:09:
                                EF:E4:1F:BF:7B:5F:A7:8A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : May  5 15:37:29.095 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:F1:8F:F8:FA:F8:9D:73:3C:7E:E6:49:
                                D9:51:05:22:88:43:BE:6D:CE:20:E5:E2:B6:A6:26:DF:
                                1A:34:28:DD:F8:02:21:00:8A:B0:4D:25:8E:8B:16:4C:
                                9A:F3:9B:38:F4:CF:B5:4E:0E:FA:C7:6A:07:09:A3:13:
                                EF:CE:8C:79:25:DE:B3:57
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        a9:92:eb:f6:b9:31:c5:82:3b:9e:bf:9d:21:00:84:73:e6:c4:
        49:ee:c6:94:5f:9d:08:d0:ed:4b:6e:4b:2a:fe:56:14:c9:fb:
        45:78:65:eb:6f:67:83:b2:0d:9a:ae:7a:22:0b:f4:da:b9:67:
        44:56:50:e7:4e:7f:43:48:f0:33:1d:ee:29:71:a2:87:8d:c1:
        c9:6c:8c:70:00:e5:64:23:69:54:cd:cd:79:fd:b3:e6:e3:af:
        0d:a6:71:8d:f1:cc:55:c8:f7:16:67:98:3d:21:50:bc:c2:b9:
        a1:38:97:b6:e0:be:4b:2b:fb:4a:21:d2:da:b4:c2:aa:38:4c:
        85:da:ba:63:82:96:f6:c8:b7:13:87:67:5b:c5:0a:be:be:30:
        50:6e:c5:12:57:9b:73:62:eb:8a:ea:a4:21:2a:ca:e7:a0:76:
        b4:43:c3:ad:42:66:fe:c0:f3:55:5a:5f:32:2f:63:29:93:2b:
        8e:d2:25:7e:72:e8:31:55:bb:4e:5c:ca:95:e5:6c:f4:b3:25:
        56:b2:c1:a4:60:21:20:f2:7b:00:06:73:7a:65:3a:be:b9:db:
        03:c7:18:ed:4b:58:45:7a:f5:cb:b3:f7:0d:19:c9:60:58:d8:
        09:0e:7c:7f:82:31:31:c8:57:49:e4:28:8c:19:95:38:97:dc:
        3d:54:e6:0c

1001439387 | 2024-04-20T13:59:51.808394

3000 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=utf-8
content-length: 213
date: Sat, 20 Apr 2024 13:59:16 GMT
x-trace: 30AUuBeL-R
server: envoy
x-envoy-upstream-service-time: 46
x-cache: Hit from cloudfront
via: 1.1 57fd498ade4153c5e3d48ab14f417dd6.cloudfront.net (CloudFront)
x-amz-cf-pop: MXP53-P3
x-amz-cf-id: 9batFCveLATp5FAHO6RqgddXMBpBMue2G_8Zn6dbbsgMqKTbZTxIEA==
age: 35
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=3600; includeSubDomains; preload
vary: Origin
cache-control: public, max-age=30

-1246004407 | 2024-04-12T10:53:30.553372

4000 / tcp

HTTP/1.1 400 Bad Request
Connection: close

919111341 | 2024-05-04T04:19:58.594556

5000 / tcp

HTTP/1.1 200 OK
X-Powered-By: Express
Access-Control-Allow-Origin: *
Content-Type: application/json; charset=utf-8
Content-Length: 1254978
ETag: W/"132642-msAdUz65zzc3cMbxZ9c11VTBZj0"
Date: Sat, 04 May 2024 04:19:57 GMT
Connection: keep-alive
Keep-Alive: timeout=5

207.180.196.100

Last Seen: 2024-05-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-900905118 | 2024-05-07T07:26:28.473145
22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-05-06T17:10:54.897590
80 / tcp

nginx1.18.0

-1021924379 | 2024-05-06T17:10:57.956601
443 / tcp

nginx1.18.0

1001439387 | 2024-04-20T13:59:51.808394
3000 / tcp

-1246004407 | 2024-04-12T10:53:30.553372
4000 / tcp

919111341 | 2024-05-04T04:19:58.594556
5000 / tcp

Products

Pricing

Contact Us

207.180.196.100

Last Seen: 2024-05-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-900905118 | 2024-05-07T07:26:28.473145 22 / tcp

OpenSSH8.2p1 Ubuntu-4ubuntu0.11

589765266 | 2024-05-06T17:10:54.897590 80 / tcp

nginx1.18.0

-1021924379 | 2024-05-06T17:10:57.956601 443 / tcp

nginx1.18.0

1001439387 | 2024-04-20T13:59:51.808394 3000 / tcp

-1246004407 | 2024-04-12T10:53:30.553372 4000 / tcp

919111341 | 2024-05-04T04:19:58.594556 5000 / tcp

Products

Pricing

Contact Us

-900905118 | 2024-05-07T07:26:28.473145
22 / tcp

589765266 | 2024-05-06T17:10:54.897590
80 / tcp

-1021924379 | 2024-05-06T17:10:57.956601
443 / tcp

1001439387 | 2024-04-20T13:59:51.808394
3000 / tcp

-1246004407 | 2024-04-12T10:53:30.553372
4000 / tcp

919111341 | 2024-05-04T04:19:58.594556
5000 / tcp