GeneralInformation

Hostnames	bodenheizung-24.de www.bodenheizung-24.de r44n31.meinserver.io
Domains	bodenheizung-24.de meinserver.io
Country	Germany
City	Falkenstein
Organization	Hetzner Online GmbH
ISP	Hetzner Online GmbH
ASN	AS24940
Operating System	Linux 5.10.0-18-amd64 x86_64

WebTechnologies

Analytics

Google Analytics

JavaScript frameworks

RequireJS

JavaScript libraries

Polyfill3

Tag managers

Google Tag Manager

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-46674	An issue was identified that allowed the unsafe deserialization of java objects from hadoop or spark configuration properties that could have been modified by authenticated users. Elastic would like to thank Yakov Shafranovich, with Amazon Web Services for reporting this issue.
CVE-2023-46673	It was identified that malformed scripts used in the script processor of an Ingest Pipeline could cause an Elasticsearch node to crash when calling the Simulate Pipeline API.
CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-3824	In PHP version 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE.
CVE-2023-3823	In PHP versions 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8 various XML functions rely on libxml global state to track configuration variables, like whether external entities are loaded. This state is assumed to be unchanged unless the user explicitly changes it by calling appropriate function. However, since the state is process-global, other modules - such as ImageMagick - may also use this library within the same process, and change that global state for their internal purposes, and leave it in a state where external entities loading is enabled. This can lead to the situation where external XML is parsed with external entities loaded, which can lead to disclosure of any local files accessible to PHP. This vulnerable state may persist in the same process across many requests, until the process is shut down.
CVE-2023-31419	A flaw was discovered in Elasticsearch, affecting the _search API that allowed a specially crafted query string to cause a Stack Overflow and ultimately a Denial of Service.
CVE-2023-31418	An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. An unauthenticated user could force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests. The issue was identified by Elastic Engineering and we have no indication that the issue is known or that it is being exploited in the wild.
CVE-2023-31417	Elasticsearch generally filters out sensitive information and credentials before logging to the audit log. It was found that this filtering was not applied when requests to Elasticsearch use certain deprecated URIs for APIs. The impact of this flaw is that sensitive information such as passwords and tokens might be printed in cleartext in Elasticsearch audit logs. Note that audit logging is disabled by default and needs to be explicitly enabled and even when audit logging is enabled, request bodies that could contain sensitive information are not printed to the audit log unless explicitly configured.
CVE-2021-3618	5.8ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	6.8A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2021-22144	4.0In Elasticsearch versions before 7.13.3 and 6.8.17 an uncontrolled recursion vulnerability that could lead to a denial of service attack was identified in the Elasticsearch Grok parser. A user with the ability to submit arbitrary queries to Elasticsearch could create a malicious Grok query that will crash the Elasticsearch node.
CVE-2021-22134	4.0A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and before 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents that have been updated and not yet refreshed in the index. This could result in the search disclosing the existence of documents and fields the attacker should not be able to view.
CVE-2021-22132	2.1Elasticsearch versions 7.7.0 to 7.10.1 contain an information disclosure flaw in the async search API. Users who execute an async search will improperly store the HTTP headers. An Elasticsearch user with the ability to read the .tasks index could obtain sensitive request headers of other users in the cluster. This issue is fixed in Elasticsearch 7.10.2
CVE-2020-7021	4.0Elasticsearch versions before 7.10.0 and 6.8.14 have an information disclosure issue when audit logging and the emit_request_body option is enabled. The Elasticsearch audit log could contain sensitive information such as password hashes or authentication tokens. This could allow an Elasticsearch administrator to view these details.
CVE-2013-2220	7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value.
CVE-2007-3205	5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin.

OpenPorts

22 80 443 2222 6379 9200

-1441594876 | 2024-05-02T23:52:53.373356

22 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCv83UXC2FQCD8y9s0l7r0yxakX3yrQvZM1kWOpjq9y/nZQ
6iqfpJh6b1DzawQ8o6pKW7xvplWgMInxOqE1OlDiI8kGPkj9axmnkg/3prsQ2xBKAov/TlKjpvCl
rK7fUs3K/iPFZow90S8QLMMSfnsSSYNeVoEK/qZCqdrfaNsCII/H/xCJTOloX9K3UsrSJ/l7BAa8
out3PadtB5Za93w/r4BytBayC5dv+e+kGSLj+UMFCiOpxDRCSBZwEcFi81yE+dt1JJIkZ4X+DclR
1gPd+6RbF3H9GjqA6l4DUwFNetQ48moYi72itH4S0ZX6LatwUNnd3YGUJs/3pKTyhcmcOd6+d14R
6eLnTQJjr4IcpQgZLwVsOiFR942GPd/2M5Hc9bBaTO2bx/I1FqoNEk8kYQ+1D+JXFv+q72d3Ad7u
oO4kI4UvjgbgDfFfxnCWJBcgeCQoJbwOMt3wZS9bWyJN9CHYLD78rSH9guZOKIDeuJ5ipL1tPxlP
1ydCTt5sHGk=
Fingerprint: 74:17:99:6d:6e:d5:fb:7c:c2:bf:90:26:c4:ed:ac:5d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1584412971 | 2024-05-02T19:23:57.192548

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Thu, 02 May 2024 19:23:56 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://bodenheizung-24.de/

-1251205756 | 2024-05-02T19:44:55.480447

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 02 May 2024 19:44:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/8.2.7
Set-Cookie: PHPSESSID=8e08fd8a80933aa5210ca20b5a00e9ea; expires=Thu, 02 May 2024 20:44:51 GMT; Max-Age=3600; path=/; domain=www.bodenheizung-24.de; secure; SameSite=Lax
Expires: Fri, 03 May 2024 19:44:51 GMT
Cache-Control: max-age=86400, public, s-maxage=86400
Pragma: cache
Set-Cookie: PHPSESSID=8e08fd8a80933aa5210ca20b5a00e9ea; expires=Thu, 02 May 2024 20:44:52 GMT; Max-Age=3600; path=/; domain=www.bodenheizung-24.de; secure; SameSite=Lax
X-Magento-Tags: cat_c,store_group,store,cms_b,mp_smtp_script,cms_b_page_menu,cms_b_block_footer_top,cms_b_footer_links,cms_b_payment,cms_b_brand-bottom,cms_p_45,cms_b_business_terms,cms_b_revocation,cms_b_menu_line_1_en,cms_b_menu_line_1_de,cat_p_3177,cat_p,cms_b_103,cms_b_block_sidebar_aktionsflaeche,cat_p_4975
Content-Security-Policy-Report-Only: font-src *.fontawesome.com *.alothemes.com *.magepow.com *.gstatic.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de https://seo.mageplaza.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de *.payments-amazon.com *.payments-amazon.co.uk *.payments-amazon.co.jp *.payments-amazon.jp *.payments-amazon.it *.payments-amazon.fr *.payments-amazon.es *.payments-amazon.de js.mollie.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * test.saferpay.com www.saferpay.com saferpay.com app-wallee.com www.xtento.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io d3sbl0c71oxeok.cloudfront.net dhkkzdfmpzvap.cloudfront.net d2bpzs5y44q6e0.cloudfront.net d37shgu97oizpd.cloudfront.net d1zlqll3enr74n.cloudfront.net d1jynp0fpwn93a.cloudfront.net d2cb3tokgpwh3v.cloudfront.net d1re8bfxx3pw6e.cloudfront.net d35u8xwkxs8vpe.cloudfront.net d13s9xffygp5o.cloudfront.net d388nbw0dwi1jm.cloudfront.net d11p2vtu3dppaw.cloudfront.net d3r89hiip86hka.cloudfront.net dc7snq0c8ipyk.cloudfront.net d5c7kvljggzso.cloudfront.net d2h8yg3ypfzua1.cloudfront.net d1b556x7apj5fb.cloudfront.net draz1ib3z71v2.cloudfront.net dr6hdp4s5yzfc.cloudfront.net d2bomicxw8p7ii.cloudfront.net d3aypcdgvjnnam.cloudfront.net d2a3iuf10348gy.cloudfront.net d23yuld0pofhhw.cloudfront.net *.ssl-images-amazon.com *.ssl-images-amazon.co.uk *.ssl-images-amazon.co.jp *.ssl-images-amazon.jp *.ssl-images-amazon.it *.ssl-images-amazon.fr *.ssl-images-amazon.es *.ssl-images-amazon.de *.media-amazon.com *.media-amazon.co.uk *.media-amazon.co.jp *.media-amazon.jp *.media-amazon.it *.media-amazon.fr *.media-amazon.es *.media-amazon.de static-eu.payments-amazon.com ebizmarts-website.s3.amazonaws.com downloads.mailchimp.com gallery.mailchimp.com *.alothemes.com *.magepow.com adservice.google.com *.google.co.uk *.trustedshops.com *.facebook.com *.usercentrics.eu *.bidswitch.net *.ad4m.at *.adnxs.com *.adserver01.de *.adition.com *.adnet.de ad.doubleclick.net dsum-sec.casalemedia.com pixel.rubiconproject.com usync.vrtcal.com cm.adform.net e1.emxdgt.com ad.yieldlab.net *.adcell.com *.converify.com *.adobedtm.com *.omtrdc.net *.demdex.net *.everesttech.net *.magentocommerce.com *.doubleclick.net *.paypal.com *.ytimg.com *.validator.swagger.io *.cloudfront.net *.payments-amazon.com *.s3.amazonaws.com *.mailchimp.com *.google.com *.braintreegateway.com *.saferpay.com *.app-wallee.com *.xtento.com bodenheizung-24.de ad.360yield.com *.pubmine.com *.sync.1rx.io *.unrulymedia.com https://www.mollie.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com test.saferpay.com www.saferpay.com saferpay.com app-wallee.com www.xtento.com cdn.xtento.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ *.payments-amazon.com *.payments-amazon.co.uk *.payments-amazon.co.jp *.payments-amazon.jp *.payments-amazon.it *.payments-amazon.fr *.payments-amazon.es *.payments-amazon.de chimpstatic.com downloads.mailchimp.com *.list-manage.com widget.freshworks.com m2epro.freshdesk.com https://www.googletagmanager.com https://polyfill.io s7.addthis.com *.avada.io *.alothemes.com *.magepow.com *.facebook.net *.usercentrics.eu matomo.bodenheizung-24.de *.adcell.com *.trustedshops.com *.smarketer.de *.ad-srv.net *.ad4m.at ad4m.at *.hyj.mobi *.adnet.de *.twitter.com js.mollie.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com test.saferpay.com www.saferpay.com saferpay.com app-wallee.com www.xtento.com cdn.xtento.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com downloads.mailchimp.com widget.freshworks.com m2epro.freshdesk.com *.fontawesome.com *.alothemes.com *.magepow.com fonts.googleapis.com *.adnet.de unsafe-inline assets.braintreegateway.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.amazon.com *.amazon.co.uk *.amazon.co.jp *.amazon.jp *.amazon.it *.amazon.fr *.amazon.es *.amazon.de *.amazonpay.com *.amazonpay.co.uk *.amazonpay.co.jp *.amazonpay.jp *.amazonpay.it *.amazonpay.fr *.amazonpay.es *.amazonpay.de mws.amazonservices.com mws.amazonservices.co.uk mws.amazonservices.co.jp mws.amazonservices.jp mws.amazonservices.it mws.amazonservices.fr mws.amazonservices.es mws.amazonservices.de widget.freshworks.com m2epro.freshdesk.com ekr.zdassets.com/ https://get.geojs.io *.avada.io *.alothemes.com *.magepow.com *.google-analytics.com matomo.bodenheizung-24.de *.usercentrics.eu *.doubleclick.net *.smarketer.de *.adcell.com *.ad4m.at *.trustedshops.com trustbadge.api.etrusted.com *.demdex.net *.omtrdc.net *.google.com *.googlesyndication.com bodenheizung-24.de api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com google.com test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
Content-Security-Policy: upgrade-insecure-requests;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Vary: Accept-Encoding
X-UA-Compatible: IE=edge
Strict-Transport-Security: max-age=31536000;
Content-Security-Policy: frame-ancestors *
X-Frame-Options: ALLOW-FROM *

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:cc:62:2d:66:45:45:43:4d:4e:55:94:43:80:d5:ff:08:37
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 20 11:22:31 2024 GMT
            Not After : Jul 19 11:22:30 2024 GMT
        Subject: CN=bodenheizung-24.de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c8:c0:70:6a:5d:ec:ad:c6:f5:51:c1:3c:a8:44:
                    3f:9d:6e:66:a7:40:72:e8:79:62:64:81:98:1d:14:
                    ca:5a:0f:de:20:ab:e6:c8:2c:f5:01:23:58:34:7b:
                    bf:62:51:5f:aa:e4:74:54:1f:7e:6a:73:a9:07:1d:
                    db:f8:3b:21:fc:d7:b0:97:82:ff:e3:ba:be:c8:29:
                    1f:d6:31:e6:e5:59:80:de:04:96:43:e4:af:37:44:
                    bc:ad:3f:97:a1:f7:75:0f:b9:71:70:fc:f6:f0:ea:
                    1d:4a:66:fb:01:3f:fb:90:25:97:32:bb:c2:9a:af:
                    76:9f:e3:e0:dc:57:a7:1f:16:ae:92:5d:ec:90:08:
                    5e:e8:33:24:04:bd:b7:a9:85:76:74:93:f1:64:eb:
                    4d:4a:54:86:75:98:38:01:4a:93:ea:33:31:7d:54:
                    af:77:b9:5a:cb:c4:41:48:47:4b:fa:af:71:3d:82:
                    69:12:95:8f:dc:2d:b1:af:69:9a:d9:95:65:37:4f:
                    ae:00:6a:f3:11:60:3b:ee:8e:c1:c1:eb:dc:00:8b:
                    39:3e:b5:a1:af:95:34:e8:e8:a9:78:1a:9f:28:b5:
                    a6:67:d3:31:fb:0f:3c:b1:c0:b6:2c:47:84:63:f7:
                    3d:ba:a0:37:98:55:f2:58:5d:56:89:e9:bc:70:e5:
                    d5:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                CF:0A:91:5B:67:AA:E1:30:DA:9D:3E:3F:D0:15:0C:06:DB:35:70:E6
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:bodenheizung-24.de, DNS:www.bodenheizung-24.de
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Apr 20 12:22:31.751 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:4D:A5:AD:16:F2:E2:AF:E7:AE:20:1F:7D:
                                34:FB:48:F3:26:28:1C:06:34:0B:2F:B4:2F:81:46:D4:
                                4E:56:5C:DF:02:20:0D:F9:DC:C8:6A:7B:61:F3:A2:06:
                                0A:81:7B:BB:A5:1F:CA:83:2C:81:AF:D5:15:1B:DC:B0:
                                C5:14:D9:0F:32:DA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 20 12:22:31.759 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:C1:A0:51:2D:52:3B:6F:EF:BE:47:BE:
                                64:72:8F:5E:6A:76:67:85:6E:5F:B8:D0:2D:08:23:E5:
                                08:52:E4:B6:0F:02:21:00:C3:A6:D2:54:DC:09:66:51:
                                27:26:EA:D3:4C:79:8A:D3:44:0B:01:36:26:23:F6:59:
                                6B:6A:2A:13:96:67:93:6C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        92:11:73:ca:0e:bc:6b:ea:c7:2a:04:5b:22:2e:1b:50:58:ad:
        2e:0a:81:00:3b:e7:ec:7e:61:ec:ee:76:a6:08:45:ca:57:69:
        b7:37:33:6d:5d:00:46:2a:40:35:f6:7d:4b:c1:c3:05:b3:11:
        98:ca:27:3f:d1:79:c4:a7:20:c5:77:01:3e:84:1f:dc:45:5a:
        d8:4d:37:56:31:70:92:86:3e:28:b9:6a:a0:fb:a3:4f:e5:b2:
        72:75:c5:cb:d7:fd:6b:9f:91:72:f0:e4:83:3e:65:c5:01:7d:
        e0:fa:3f:1f:b8:db:1d:9f:62:b8:4a:7b:a8:c0:0b:a6:af:5e:
        3d:da:17:a6:df:9d:73:99:ec:42:91:f6:23:17:cc:59:43:c1:
        2a:32:f7:70:69:61:8f:d8:cf:95:d5:f3:47:39:a2:01:f3:6d:
        b7:46:41:a9:fb:f6:94:94:08:ee:d5:fc:8c:1f:98:f9:05:b4:
        8f:e6:a1:73:85:c5:a0:09:36:c4:56:85:69:e5:7e:ca:49:ea:
        3e:7c:aa:76:f8:b3:97:80:7b:4c:da:a5:2d:fb:8c:74:a3:a8:
        41:27:ef:5f:a3:7c:02:56:36:f4:87:09:41:9f:ae:64:c0:2e:
        c2:1d:32:bf:8b:69:c2:31:c2:90:23:73:73:ac:c4:79:89:b2:
        4f:e0:21:60

284873657 | 2024-04-13T01:22:59.263942

2222 / tcp

SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQC74A2arKwvgzpo6yZ3Xv2R7jl7wnzOVPk3TQEO3K9oq1H3
kJHnpLoVH0zJ7fuYFYeZ15Aly0HAU6rrvTzEH/JqjUdfrQ0xMglbnC6Jn0Hx86LvrwuyV6Kh5vWg
kEl2i80U4wMGAZj4cM+hInDEwfwOTb4G/3TRJGpMfW8TAdjrIHeh1iGnq+PSnJks9Gpubn4F3wcT
d6W4wJTChteSvEIOxXwjA5/o42S3cfOnwRjwpNs5NgGa7ng27MwxGDex5myTjspl0/Xqa5XscAiX
ljnHn2sBgG7T7RrBLBbluWg4zZtVgb0YIck/FyUGu/il5t90/kqH18Ji/qjBphfiYgpN
Fingerprint: 81:22:fc:65:e6:59:47:de:5d:42:d7:2c:7c:38:36:8c

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

2083462701 | 2024-05-08T01:44:37.906710

6379 / tcp

# Server
redis_version:6.2.7
redis_git_sha1:00000000
redis_git_dirty:0
redis_build_id:faf2ce06068943e9
redis_mode:standalone
os:Linux 5.10.0-18-amd64 x86_64
arch_bits:64
monotonic_clock:POSIX clock_gettime
multiplexing_api:epoll
atomicvar_api:c11-builtin
gcc_version:11.2.1
process_id:1
process_supervised:no
run_id:4c9db48d657a53a8d8049a15385f045e498aebb1
tcp_port:6379
server_time_usec:1715132677509044
uptime_in_seconds:1019595
uptime_in_days:11
hz:10
configured_hz:10
lru_clock:3856645
executable:/data/redis-server
config_file:
io_threads_active:0

# Clients
connected_clients:1
cluster_connections:0
maxclients:10000
client_recent_max_input_buffer:8
client_recent_max_output_buffer:0
blocked_clients:0
tracking_clients:0
clients_in_timeout_table:0

# Memory
used_memory:910264
used_memory_human:888.93K
used_memory_rss:11091968
used_memory_rss_human:10.58M
used_memory_peak:930064
used_memory_peak_human:908.27K
used_memory_peak_perc:97.87%
used_memory_overhead:866560
used_memory_startup:811872
used_memory_dataset:43704
used_memory_dataset_perc:44.42%
allocator_allocated:936992
allocator_active:1220608
allocator_resident:5861376
total_system_memory:131912425472
total_system_memory_human:122.85G
used_memory_lua:68608
used_memory_lua_human:67.00K
used_memory_scripts:34200
used_memory_scripts_human:33.40K
number_of_cached_scripts:19
maxmemory:0
maxmemory_human:0B
maxmemory_policy:noeviction
allocator_frag_ratio:1.30
allocator_frag_bytes:283616
allocator_rss_ratio:4.80
allocator_rss_bytes:4640768
rss_overhead_ratio:1.89
rss_overhead_bytes:5230592
mem_fragmentation_ratio:12.79
mem_fragmentation_bytes:10224480
mem_not_counted_for_evict:0
mem_replication_backlog:0
mem_clients_slaves:0
mem_clients_normal:20488
mem_aof_buffer:0
mem_allocator:jemalloc-5.1.0
active_defrag_running:0
lazyfree_pending_objects:0
lazyfreed_objects:0

# Persistence
loading:0
current_cow_size:0
current_cow_size_age:0
current_fork_perc:0.00
current_save_keys_processed:0
current_save_keys_total:0
rdb_changes_since_last_save:0
rdb_bgsave_in_progress:0
rdb_last_save_time:1715084861
rdb_last_bgsave_status:ok
rdb_last_bgsave_time_sec:0
rdb_current_bgsave_time_sec:-1
rdb_last_cow_size:200704
aof_enabled:0
aof_rewrite_in_progress:0
aof_rewrite_scheduled:0
aof_last_rewrite_time_sec:-1
aof_current_rewrite_time_sec:-1
aof_last_bgrewrite_status:ok
aof_last_write_status:ok
aof_last_cow_size:0
module_fork_in_progress:0
module_fork_last_cow_size:0

# Stats
total_connections_received:167
total_commands_processed:591
instantaneous_ops_per_sec:0
total_net_input_bytes:42530922
total_net_output_bytes:288142
instantaneous_input_kbps:0.00
instantaneous_output_kbps:0.00
rejected_connections:0
sync_full:0
sync_partial_ok:0
sync_partial_err:0
expired_keys:0
expired_stale_perc:0.00
expired_time_cap_reached_count:0
expire_cycle_cpu_milliseconds:15890
evicted_keys:0
keyspace_hits:0
keyspace_misses:0
pubsub_channels:0
pubsub_patterns:0
latest_fork_usec:373
total_forks:37
migrate_cached_sockets:0
slave_expires_tracked_keys:0
active_defrag_hits:0
active_defrag_misses:0
active_defrag_key_hits:0
active_defrag_key_misses:0
tracking_total_keys:0
tracking_total_items:0
tracking_total_prefixes:0
unexpected_error_replies:0
total_error_replies:290
dump_payload_sanitizations:0
total_reads_processed:860
total_writes_processed:677
io_threaded_reads_processed:0
io_threaded_writes_processed:0

# Replication
role:master
connected_slaves:0
master_failover_state:no-failover
master_replid:2b12ae41d897e6d0d89d8351721d7f37526aba75
master_replid2:8337e84bbe65d7ef03e0155f75f3c63a776c3eb2
master_repl_offset:0
second_repl_offset:1
repl_backlog_active:0
repl_backlog_size:1048576
repl_backlog_first_byte_offset:0
repl_backlog_histlen:0

# CPU
used_cpu_sys:627.082922
used_cpu_user:714.009748
used_cpu_sys_children:0.013550
used_cpu_user_children:0.040229
used_cpu_sys_main_thread:626.875261
used_cpu_user_main_thread:713.920606

# Modules

# Errorstats
errorstat_ERR:count=282
errorstat_MISCONF:count=4
errorstat_READONLY:count=4

# Cluster
cluster_enabled:0

# Keyspace

# Keys


# Connected Clients
id=188 addr=224.137.181.105:51362 laddr=172.18.0.2:6379 fd=8 name= age=0 idle=0 flags=N db=0 sub=0 psub=0 multi=-1 qbuf=26 qbuf-free=40928 argv-mem=10 obl=0 oll=0 omem=0 tot-mem=61466 events=r cmd=client user=default redir=-1

-476683568 | 2024-05-05T23:49:51.245754

9200 / tcp

HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
content-length: 541


Elastic:
  Total Size: 9.38 MB
  Total Docs: 1,258
  Indices:
    magento2_product_1_v118 (2.21 MB)
    magento2_product_2_v118 (2.22 MB)
    magento2_product_3_v118 (2.2 MB)
    magento2_product_7_v118 (2.75 MB)
    read-me-to-recover-data (4.17 KB)
    website (3.87 KB)

88.198.170.129

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1441594876 | 2024-05-02T23:52:53.373356
22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1584412971 | 2024-05-02T19:23:57.192548
80 / tcp

nginx1.18.0

-1251205756 | 2024-05-02T19:44:55.480447
443 / tcp

nginx1.18.0

284873657 | 2024-04-13T01:22:59.263942
2222 / tcp

OpenSSH7.9p1 Debian 10+deb10u2

2083462701 | 2024-05-08T01:44:37.906710
6379 / tcp

Redis key-value store6.2.7

-476683568 | 2024-05-05T23:49:51.245754
9200 / tcp

Elastic7.9.3

Products

Pricing

Contact Us

88.198.170.129

Last Seen: 2024-05-08

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1441594876 | 2024-05-02T23:52:53.373356 22 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

1584412971 | 2024-05-02T19:23:57.192548 80 / tcp

nginx1.18.0

-1251205756 | 2024-05-02T19:44:55.480447 443 / tcp

nginx1.18.0

284873657 | 2024-04-13T01:22:59.263942 2222 / tcp

OpenSSH7.9p1 Debian 10+deb10u2

2083462701 | 2024-05-08T01:44:37.906710 6379 / tcp

Redis key-value store6.2.7

-476683568 | 2024-05-05T23:49:51.245754 9200 / tcp

Elastic7.9.3

Products

Pricing

Contact Us

-1441594876 | 2024-05-02T23:52:53.373356
22 / tcp

1584412971 | 2024-05-02T19:23:57.192548
80 / tcp

-1251205756 | 2024-05-02T19:44:55.480447
443 / tcp

284873657 | 2024-04-13T01:22:59.263942
2222 / tcp

2083462701 | 2024-05-08T01:44:37.906710
6379 / tcp

-476683568 | 2024-05-05T23:49:51.245754
9200 / tcp