LeakIX - Host manage-cl.flatfy.io

Domain manage-cl.flatfy.io

Germany

Hetzner Online GmbH

Server vulnerable to Log4J CVE-2021-44228

The reply originated from a backend server, the originating frontend server has been included in the report for reference.

It is critical to patch log4j or the application using since the issues is exploited in the wild and leads to RCE.

IP: 178.63.104.139
Domain: manage-cl.flatfy.io
Port: 443
URL: https://manage-cl.flatfy.io

First seen 2022-01-01 16:49

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4d2f29a3c458d16b5812a4d30e7a22e0a

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 180.564043ms
Orignal request was to 195.201.249.244:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b203138302e3536343034336d730a4f7269676e616c20726571756573742077617320746f203139352e3230312e3234392e3234343a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2022-01-01 16:49

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4b646c92052fc37f90409f4ac0cde87d4

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 267.305028ms
Orignal request was to 195.201.249.244:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b203236372e3330353032386d730a4f7269676e616c20726571756573742077617320746f203139352e3230312e3234392e3234343a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2022-01-01 16:49

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4e90e4df6e7f8d78320ed21e2787845b4

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 320.891198ms
Orignal request was to 195.201.249.244:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b203332302e3839313139386d730a4f7269676e616c20726571756573742077617320746f203139352e3230312e3234392e3234343a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2022-01-01 16:49

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa499867e9c7cbbc15588d9ef50627212e6

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 217.335132ms
Orignal request was to 195.201.249.244:443
This event's HTTP and SSL details are preserved from the orignal request.

Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b203231372e3333353133326d730a4f7269676e616c20726571756573742077617320746f203139352e3230312e3234392e3234343a3434330a54686973206576656e742773204854545020616e642053534c2064657461696c7320617265207072657365727665642066726f6d20746865206f7269676e616c20726571756573742e0a

Found on 2022-01-01 16:49

Create report

Domain summary

manage-cl.flatfy.io 4

1 recorded

IP summary

178.63.104.139 1

1 recorded