GeneralInformation

Hostnames	alfa-track.com
Domains	alfa-track.com
Country	Russian Federation
City	Saint Petersburg
Organization	SatNet ISP
ISP	Computer information technology Ltd.
ASN	AS48257

WebTechnologies

JavaScript libraries

jQuery3.4.1

FancyBox

Swiper

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2022-41742	NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted audio or video file. The issue affects only NGINX products that are built with the module ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.
CVE-2022-41741	NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker memory, resulting in its termination or potential other impact using a specially crafted audio or video file. The issue affects only NGINX products that are built with the ngx_http_mp4_module, when the mp4 directive is used in the configuration file. Further, the attack is possible only if an attacker can trigger processing of a specially crafted audio or video file with the module ngx_http_mp4_module.
CVE-2020-23064	Cross Site Scripting vulnerability in jQuery 2.2.0 through 3.x before 3.5.0 allows a remote attacker to execute arbitrary code via the <options> element.
CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.

OpenPorts

22 80 443 5432 5900 8090

678251195 | 2024-05-03T16:39:12.963512

22 / tcp

SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCq+fRoxs1r1ANjkUNSbcAbTh5+otSJe7UNu9QMBbo9j4fC
NsU5iyD6p6duvx+7QR/VkgLufX15P9OPgfU4Il0O9rJw6jwcAVI1e9LyAZUj4p7xz5SdsWBU5d0C
v3sKmxvB8XHKTjJRqk8CAc+qRVA/5F8pBjdZnDwAOw/YHSqtGd5SsakCJx5DE12PlNfUyP0pl5NG
UVtd2pdhn+IriiyWKNCVhIhq7bH64STtw4eEXxd7YivHbhO+Vwa9dex0XH2Br3W1e3VF++jicPYB
mb+XvMgdplJnplG5H8G4GTzBrk8oNEKfP7ud7HyodAaf8bLh9QnHux0+9jaduao6u2Fq158cw74O
umPMG+2oPoW8+9lTG0cfl09RHtxttxCt0b0efr76ge6p3IIKoo0oIIe480Pcu02wjoVk+csu7Oy5
/+VRb3mfQLASUh/tKcOEEY9xY0krYP8i1SxwahxG9OYQWRhpSUfIXANY4mNbAmOGyl+ewogJYqRR
cklFiFzbfF0=
Fingerprint: 5f:4c:71:ce:2b:d5:57:a2:e2:4f:ee:50:ac:a1:14:3d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	sntrup761x25519-sha512@openssh.com
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

743213151 | 2024-05-01T22:44:42.825078

80 / tcp

HTTP/1.1 404 Not Found
Server: nginx/1.23.1
Date: Wed, 01 May 2024 22:44:42 GMT
Content-Type: text/html
Content-Length: 555
Connection: keep-alive

1783118207 | 2024-04-22T10:46:27.644452

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.23.1
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 22 Apr 2024 10:46:27 GMT
Cache-Control: max-age=0, no-cache
X-Page-Speed: 1.15.0.0-8917

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:97:63:d5:4a:de:d6:4b:d0:62:00:d0:f9:75:c3:99:4c:0b
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr  7 04:19:41 2024 GMT
            Not After : Jul  6 04:19:40 2024 GMT
        Subject: CN=alfa-track.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a4:ef:f6:18:de:18:1c:83:d4:ec:45:ba:57:58:
                    e9:4d:67:3a:15:ff:8a:24:29:73:bc:5a:dd:4e:a5:
                    8c:2a:da:38:50:ec:f5:97:0f:d0:97:d2:0f:3e:7d:
                    4b:85:d3:1f:5d:6e:38:83:9e:65:3a:0f:b6:4c:91:
                    22:64:c3:51:c2:29:8e:11:b8:cc:de:de:3c:93:d1:
                    14:5c:a6:81:ee:c1:bf:fe:16:31:e5:ba:50:10:6c:
                    4b:74:3f:69:87:41:90:19:ae:a2:f5:6c:0a:34:71:
                    f7:90:6a:94:ac:68:3d:17:1e:a4:6c:d3:d5:fe:cf:
                    3c:42:1b:50:b5:fb:f6:99:92:af:a8:ee:bf:89:0a:
                    2b:61:37:90:b1:4f:4e:7f:70:30:1f:3a:b8:a9:b1:
                    f5:a0:e4:0d:f6:85:a8:4b:f7:44:4b:38:9e:01:39:
                    34:06:1c:56:8e:c6:0a:75:28:87:f7:e4:59:64:33:
                    14:b5:c9:96:53:e6:96:5d:48:76:50:13:65:52:00:
                    78:71:56:d3:24:a8:c9:5f:b8:f3:f6:ce:86:53:3c:
                    af:89:31:9c:82:b3:e5:45:b6:88:59:40:de:02:e8:
                    9d:8d:1b:16:5a:50:de:90:d7:5c:3e:e5:92:a7:6e:
                    2d:08:3c:2a:3f:07:cb:76:36:06:e6:45:c1:e9:94:
                    ea:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                8D:64:82:50:C0:E4:3E:66:BA:25:71:4F:95:46:AA:42:21:99:5A:A0
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:alfa-track.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr  7 05:19:41.588 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:0A:EB:CF:AE:F0:23:DD:AF:6B:19:25:1F:
                                A6:B1:9C:3A:01:63:21:DD:70:09:01:5A:79:EA:8D:53:
                                E3:93:AA:DF:02:21:00:C3:4B:31:B0:ED:80:39:7D:F6:
                                F5:A7:CA:61:E9:53:D0:8B:5D:7E:9B:0C:DA:25:B6:76:
                                AC:DE:03:A4:4B:97:12
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
                                4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
                    Timestamp : Apr  7 05:19:41.782 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:58:93:6A:65:F4:8E:64:26:00:47:38:C2:
                                FB:C2:60:D7:27:CB:A3:33:34:AA:F3:7E:5B:13:8B:26:
                                B0:89:31:D1:02:21:00:FD:2B:F9:3F:5F:62:C0:BF:FA:
                                1F:FF:4B:0B:64:E0:B3:CB:9D:9D:9A:61:75:65:5C:25:
                                7F:CA:B7:9A:84:3E:50
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5f:3a:8f:4c:49:e3:af:ec:5e:ee:f6:80:c6:22:38:ad:c3:57:
        71:ff:71:bd:b5:da:c9:01:45:9b:77:02:ee:d3:94:cb:15:e6:
        34:19:5e:02:82:ec:0d:30:a2:4e:94:f2:66:a7:63:3d:ed:16:
        b1:4a:ff:7a:10:8e:b5:73:ba:58:65:23:a8:ef:17:a7:41:e9:
        10:3b:93:2e:5b:50:a8:f2:25:d0:30:e4:c8:41:20:db:be:79:
        b8:90:18:df:24:73:65:52:2b:8a:ca:d1:7d:b2:a5:25:80:ad:
        bd:94:6e:f7:c2:7d:46:21:66:45:03:62:62:9d:d6:98:b9:b8:
        84:c6:ee:ba:3f:ed:20:5e:1c:2f:73:1e:27:ae:3b:73:a5:e3:
        34:62:8a:0a:d7:6d:f8:88:18:c0:47:60:42:de:76:2d:1c:00:
        d4:10:6a:2a:89:f9:8d:eb:31:fa:ea:2a:d3:8d:f9:74:06:77:
        ce:f8:a0:99:f3:ec:1d:85:a5:91:d8:70:e3:8f:e1:95:a6:90:
        8a:e9:15:25:9e:23:c0:36:b8:40:57:30:ee:37:c6:6d:61:e5:
        84:2a:c6:c9:d8:29:5e:94:9d:35:1a:fa:a5:53:94:71:dd:c6:
        10:96:8a:1b:f0:53:70:8f:22:09:ee:f0:0a:75:0f:53:98:a3:
        da:3f:ab:f7

-726790289 | 2024-05-06T04:15:03.096684

5432 / tcp

PostgreSQL
fe_sendauth: no password supplied

-1550144573 | 2024-04-28T18:54:57.044016

5900 / tcp

RFB 005.000

VNC:
  Protocol Version: 5.0
  Security Types:
    5: RA2
    13: RealVNC
    129: Tight Unix Login Authentication
    133: RealVNC
    192: RealVNC

-1011007639 | 2024-05-02T06:31:48.058939

8090 / tcp

HTTP/1.1 401 
Content-Length: 0
Date: Thu, 02 May 2024 06:31:31 GMT

217.71.232.130

Last Seen: 2024-05-06

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

678251195 | 2024-05-03T16:39:12.963512
22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

743213151 | 2024-05-01T22:44:42.825078
80 / tcp

nginx1.23.1

1783118207 | 2024-04-22T10:46:27.644452
443 / tcp

nginx1.23.1

-726790289 | 2024-05-06T04:15:03.096684
5432 / tcp

PostgreSQL13.10 - 13.12

-1550144573 | 2024-04-28T18:54:57.044016
5900 / tcp

RealVNC Enterprise5.3 or later

-1011007639 | 2024-05-02T06:31:48.058939
8090 / tcp

Products

Pricing

Contact Us

217.71.232.130

Last Seen: 2024-05-06

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

678251195 | 2024-05-03T16:39:12.963512 22 / tcp

OpenSSH8.9p1 Ubuntu-3ubuntu0.6

743213151 | 2024-05-01T22:44:42.825078 80 / tcp

nginx1.23.1

1783118207 | 2024-04-22T10:46:27.644452 443 / tcp

nginx1.23.1

-726790289 | 2024-05-06T04:15:03.096684 5432 / tcp

PostgreSQL13.10 - 13.12

-1550144573 | 2024-04-28T18:54:57.044016 5900 / tcp

RealVNC Enterprise5.3 or later

-1011007639 | 2024-05-02T06:31:48.058939 8090 / tcp

Products

Pricing

Contact Us

678251195 | 2024-05-03T16:39:12.963512
22 / tcp

743213151 | 2024-05-01T22:44:42.825078
80 / tcp

1783118207 | 2024-04-22T10:46:27.644452
443 / tcp

-726790289 | 2024-05-06T04:15:03.096684
5432 / tcp

-1550144573 | 2024-04-28T18:54:57.044016
5900 / tcp

-1011007639 | 2024-05-02T06:31:48.058939
8090 / tcp