LeakIX - Host 37.143.14.70

Host 37.143.14.70

Russia

EuroByte LLC

SSH is potenitally vulnerable

WARNING: This plugin will generate false positive and is purely informative:

regreSSHion: RCE in OpenSSH's server, on glibc-based Linux systems (CVE-2024-6387)

IP: 37.143.14.70
Port: 22

First seen 2024-07-03 20:28
Last seen 2024-12-21 22:27
Open for 171 days
- Severity: info
  Fingerprint: 3f43e0ebb5dce37ab8b59eb563aa8aaf4222caca4222caca4222caca4222caca
```
Found potentially vulnerable SSH version:
SSH-2.0-OpenSSH_9.2p1 Debian-2+deb12u1
WARNING, RISK IS ESTIMATED FALSE POSITIVE ARE LIKELY
```
  Found on 2024-12-21 22:27
Create report

Server vulnerable to Log4J CVE-2021-44228

The reply originated from a backend server, the originating frontend server has been included in the report for reference.

It is critical to patch log4j or the application using since the issues is exploited in the wild and leads to RCE.

IP: 37.143.14.70
Port: 443
URL: https://37.143.14.70

First seen 2021-12-11 04:49
Last seen 2021-12-31 09:06
Open for 20 days

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a53981bff34fe087d9e7315cb6e7315cb6

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 2.829457304s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20322e383239343537333034730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4cab2e64d05b001736ba2e6276ba2e627

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 2.559267184s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b20322e353539323637313834730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123c1e7ec36bc64e8fc201cdafc201cdafc

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 1.872951952s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20312e383732393531393532730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f88804599319012378d47a9e87c1d3d4f43da2aef43da2ae

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 228.575962ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203232382e3537353936326d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4431b59833d9c16893147a3d43147a3d4

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 650.71452ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b203635302e37313435326d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5b0b76d1b561fd89189b715cc89b715cc

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 910.339275ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b203931302e3333393237356d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4df254e58a3101b1ed16e4cd7d16e4cd7

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 1.161541218s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b20312e313631353431323138730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123fdcf754b9a40006126168d9a26168d9a

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 1.311610292s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20312e333131363130323932730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a511d4e25b3623add176850bb276850bb2

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 1.460721892s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20312e343630373231383932730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb72e446b3b9bd184718a9669df8a9669df

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 1.596026786s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20312e353936303236373836730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f888045993190123d5ac06d1c761a1e7a386ac9ca386ac9c

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 2.688552868s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b20322e363838353532383638730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7dfd89f085f50c7eef85f40a1f85f40a1

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 2.426619344s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20322e343236363139333434730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa4bf8b54b673391d7c5f6b4e815f6b4e81

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 80.43712ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b2038302e34333731326d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7fb4356aeb1350c049d5e9deb9d5e9deb

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 2.950541537s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20322e393530353431353337730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a5b5f5fb85a7d75c5bffbb2452ffbb2452

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 2.025486999s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b20322e303235343836393939730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459e94669a544dc7f7dfff77283d9100496d9100496

Received reply after a Log4j payload from this host
Ping was received because of query value
Reply took 364.198271ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f662071756572792076616c75650a5265706c7920746f6f6b203336342e3139383237316d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7d49edc2e7eaa15848633996386339963

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 499.420789ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b203439392e3432303738396d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459931901232917f676076fdf3c3d1ddc083d1ddc08

Received reply after a Log4j payload from this host
Ping was received because of query argument
Reply took 769.844958ms
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620717565727920617267756d656e740a5265706c7920746f6f6b203736392e3834343935386d730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459b0628eb7327541a959f4176fe459cf97e459cf97

Received reply after a Log4j payload from this host
Ping was received because of User-Agent
Reply took 1.037059072s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620557365722d4167656e740a5265706c7920746f6f6b20312e303337303539303732730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459ed3e1aa41ef95efd4d5a46034e4f5aeb4e4f5aeb

Received reply after a Log4j payload from this host
Ping was received because of X-Forwared-Host
Reply took 1.731216015s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a50696e67207761732072656365697665642062656361757365206f6620582d466f7277617265642d486f73740a5265706c7920746f6f6b20312e373331323136303135730a

Found on 2021-12-31 09:06

Severity: critical
Fingerprint: aff4d642200b0639f8880459415c1e4bc40a8161ecd3dc79ecd3dc79ecd3dc79

Received reply after a Log4j payload from this host
Reply took 6.356317832s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a5265706c7920746f6f6b20362e333536333137383332730a

Found on 2021-12-11 04:49

Severity: critical
Fingerprint: aff4d642200b0639f8880459f167727a1fa478e03f5fadc03f5fadc03f5fadc0

Received reply after a Log4j payload from this host
Reply took 3.26914316s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a5265706c7920746f6f6b20332e3236393134333136730a

Found on 2021-12-11 04:49

Severity: critical
Fingerprint: aff4d642200b0639f8880459b98424400d3eb7361c02a3351c02a3351c02a335

Received reply after a Log4j payload from this host
Reply took 9.451906852s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a5265706c7920746f6f6b20392e343531393036383532730a

Found on 2021-12-11 04:49

Severity: critical
Fingerprint: aff4d642200b0639f888045992b33580e5f987767c1158207c1158207c115820

Received reply after a Log4j payload from this host
Reply took 12.588060643s
Orignal reply:
5265636569766564207265706c792061667465722061204c6f67346a207061796c6f61642066726f6d207468697320686f73740a5265706c7920746f6f6b2031322e353838303630363433730a

Found on 2021-12-11 04:49

Create report

Open service 37.143.14.70:22

2024-12-21 22:27
Found 13 hours ago by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-12-19 21:04
Found 3 days ago by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-12-17 21:17
Found 2024-12-17 by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-12-15 21:04
Found 2024-12-15 by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-12-13 21:34
Found 2024-12-13 by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-12-11 22:36
Found 2024-12-11 by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-12-01 22:44
Found 2024-12-01 by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-11-29 21:19
Found 2024-11-29 by SSHOpenPlugin
Create report
Open service 37.143.14.70:22

2024-11-27 21:15
Found 2024-11-27 by SSHOpenPlugin
Create report
Open service 37.143.14.70:8443

2024-11-20 16:24
Found 2024-11-20 by HttpPlugin
Create report

Fingerprint:

900a4605209f21c5c4e8b499cc6df4526feec7c59b589fb04895befaa61d0c3a

CN:

54.36.89.176

Key:

RSA-2048

Issuer:

54.36.89.176

Not before:

2023-08-07 07:59

Not after:

2033-08-04 07:59

Domain summary

No record

Host 37.143.14.70

Russia

SSH is potenitally vulnerable

Server vulnerable to Log4J CVE-2021-44228

Domain summary