GeneralInformation

Hostnames	flirt-butik.ru www.flirt-butik.ru
Domains	flirt-butik.ru
Country	Russian Federation
City	Moscow
Organization	JSC IOT
ISP	JSC IOT
ASN	AS29182

WebTechnologies

CMS

1C-Bitrix

Ecommerce

1C-Bitrix

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51713	make_ftp_cmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics.
CVE-2023-48795	The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.
CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-46854	mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2020-9272	5.0ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.
CVE-2019-20372	5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.
CVE-2019-19272	5.0An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer (a variable initialized to NULL) leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup.
CVE-2019-19271	5.0An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A wrong iteration variable, used when checking a client certificate against CRL entries (installed by a system administrator), can cause some CRL entries to be ignored, and can allow clients whose certificates have been revoked to proceed with a connection to the server.
CVE-2019-19269	4.0An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup.

OpenPorts

21 22 25 53 80 123 143 443 465 587 993 995 1500

-357697942 | 2024-04-02T07:11:19.410476

21 / tcp

220 ProFTPD 1.3.5e Server (Debian) [::ffff:188.120.247.173]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
214-EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
214-XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
214-NOOP    FEAT    OPTS    AUTH    CCC*    CONF*   ENC*    MIC*    
214-PBSZ    PROT    TYPE    STRU    MODE    RETR    STOR    STOU    
214-APPE    REST    ABOR    USER    PASS    ACCT*   REIN*   LIST    
214-NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@flirt-butik.ru
211-Features:
 UTF8
 LANG en-US*
 EPRT
 SITE SYMLINK
 EPSV
 SITE UTIME
 MDTM
 SITE RMDIR
 SSCN
 TVFS
 SITE COPY
 MFMT
 SIZE
 PROT
 CCC
 SITE MKDIR
 PBSZ
 AUTH TLS
 MFF modify;UNIX.group;UNIX.mode;
 REST STREAM
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6e:63:6b:09:cf:13:df:3f:5d:07:8b:3b:2a:f4:95:c4:2c:d1:68:7a
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=example.com/emailAddress=root@flirt-butik
        Validity
            Not Before: Jul  7 05:18:35 2020 GMT
            Not After : Jul  5 05:18:35 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=example.com/emailAddress=root@flirt-butik
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:e8:e0:8d:24:84:b5:df:77:26:9f:ac:3f:38:63:
                    1b:47:dc:f7:60:b4:a3:6d:91:e2:8b:c6:90:76:0e:
                    81:42:d2:8b:1c:6c:d9:66:f8:f9:82:07:6e:00:1b:
                    c9:96:51:e6:52:2c:13:f7:7e:67:a5:5c:46:12:13:
                    c0:c9:18:18:00:d0:0e:7e:1f:16:99:a5:30:ff:47:
                    49:2b:72:94:55:cd:a6:ea:e1:e8:0f:6e:4a:2c:6e:
                    f1:fc:2e:f2:93:f1:38:51:ed:98:48:9b:3e:0b:13:
                    04:c3:69:93:22:dd:b2:43:11:e5:8b:1c:a0:6e:6e:
                    b5:d0:d2:1e:6a:36:f8:71:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E6:4D:FE:EA:BE:01:2F:B2:B8:C9:2A:52:D8:6B:4E:7E:A0:84:20:11
            X509v3 Authority Key Identifier: 
                E6:4D:FE:EA:BE:01:2F:B2:B8:C9:2A:52:D8:6B:4E:7E:A0:84:20:11
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        94:e3:00:22:7f:1e:d0:d5:87:cd:60:7f:fc:03:63:f7:24:09:
        09:26:06:48:9a:c5:25:f0:bd:7e:15:40:10:85:29:07:6f:84:
        66:28:70:66:b4:dd:a6:0c:0e:d6:60:a2:8f:7c:e0:d8:51:32:
        e2:4f:18:64:be:b8:aa:a5:81:6d:85:dc:82:16:01:f5:3d:2b:
        0e:8f:c2:88:46:f2:13:4f:4e:61:90:f4:3a:4b:de:94:56:d2:
        a8:8d:57:75:e2:1c:4b:9c:51:8c:06:dc:57:50:7f:d8:22:47:
        a0:cc:33:d4:6d:fa:cd:7f:ab:9d:4b:52:83:bd:00:ea:b8:76:
        03:f6

-1827838290 | 2024-04-14T10:57:44.112442

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDTv0rwfzqZ0tMQMAhk4MD1+rnEpBredT0foDzA/Z0vd3tT
btoJInIFHSOYE8zn73bstK4G3sKiCZINS+dX0YOYmUePcVbVTMPqp+5WE5Be8+uuyJrdn4Swduye
+kQp7807Mifzq3vul2D3byjSXGnIcFderTMSjJK37yYfVRUMLwu783BdNwUWjl0J3aOn1vhv/Dxr
nFLQdQTqBZS0aOQ1BbOFdjmaj1sYnS8TnzCLvG/R8Ifyb+OOMdoLAMryogLDn2R+1TdihOR13F9R
qeoEijbfR5L3db2T/FXD6EjcUMZddu0xV66qXjPBJfLTpQy9CZk0L0yowCFwEphjYkjP
Fingerprint: 8a:cb:8f:ce:8a:12:b1:0a:63:7c:3b:b1:ed:2c:42:7a

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-1500518944 | 2024-03-20T07:20:11.277022

25 / tcp

220 flirt-butik.ru ESMTP Exim 4.90_1 Ubuntu Wed, 20 Mar 2024 10:19:52 +0300
250-flirt-butik.ru Hello 224.225.163.6 [224.225.163.6]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:2e:46:69:26:ef:ab:f6:c9:28:c2:64:ac:d4:0b:30:a1:de:d3:64
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Validity
            Not Before: Jul  7 05:17:39 2020 GMT
            Not After : Jul  5 05:17:39 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:ad:28:29:f1:8a:1d:f3:ad:0e:a2:60:f5:86:81:
                    38:85:93:62:6f:50:da:02:98:1b:b2:04:ce:34:5c:
                    53:e9:91:4b:5b:fb:a0:68:fb:6d:1b:ff:d3:27:54:
                    4b:ad:b0:00:07:03:a4:74:14:6c:5a:6e:e9:f6:5f:
                    d5:9f:1d:c4:8e:e3:79:b5:e3:35:b6:11:94:5d:7f:
                    68:b2:5d:e8:90:a1:7a:20:77:73:6b:b2:57:37:18:
                    0b:13:36:74:a3:60:50:69:25:3f:7e:f7:eb:70:36:
                    5d:e6:6f:ed:67:c8:03:c0:55:0a:b2:50:c2:fa:1d:
                    56:76:51:b8:e5:d4:25:f8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Authority Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:15:01:18:19:98:43:ec:64:06:74:2a:fc:b8:a0:7e:ea:69:
        78:09:19:5f:78:45:27:da:d2:94:39:00:47:d4:b1:40:5a:3e:
        52:af:aa:d2:68:29:33:fb:55:3e:72:5c:ff:38:95:22:42:5a:
        0f:5a:b1:d8:80:80:fb:ec:de:db:2c:9a:7b:f6:fc:f6:41:ff:
        3e:16:b7:2f:dc:04:6d:b6:d8:ac:fe:be:78:52:1c:e5:4a:d8:
        30:2d:7f:31:dd:2e:9f:c2:ab:87:16:66:85:ae:7a:c0:52:df:
        b4:bc:6d:41:95:83:ff:1d:2f:66:0b:26:53:95:90:ac:99:b9:
        52:20

489652828 | 2024-03-28T23:16:55.969093

53 / tcp

9.11.3-1ubuntu1.12-Ubuntu
Resolver name: flirt-butik.ru

489652828 | 2024-04-13T21:07:39.129771

53 / udp

9.11.3-1ubuntu1.12-Ubuntu
Resolver name: flirt-butik.ru

-1984879341 | 2024-04-09T13:59:26.225170

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Tue, 09 Apr 2024 13:59:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://188.120.247.173:443/
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

-935897793 | 2024-04-13T23:14:02.025684

123 / udp

NTP
protocolversion: 3
stratum: 2
leap: 0
precision: -24
rootdelay: 0.00210571289062
rootdisp: 0.0313415527344
refid: 3267274753
reftime: 3922037938.58
poll: 3

-736911125 | 2024-03-30T17:57:53.413984

143 / tcp

* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot (Ubuntu) ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:2e:46:69:26:ef:ab:f6:c9:28:c2:64:ac:d4:0b:30:a1:de:d3:64
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Validity
            Not Before: Jul  7 05:17:39 2020 GMT
            Not After : Jul  5 05:17:39 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:ad:28:29:f1:8a:1d:f3:ad:0e:a2:60:f5:86:81:
                    38:85:93:62:6f:50:da:02:98:1b:b2:04:ce:34:5c:
                    53:e9:91:4b:5b:fb:a0:68:fb:6d:1b:ff:d3:27:54:
                    4b:ad:b0:00:07:03:a4:74:14:6c:5a:6e:e9:f6:5f:
                    d5:9f:1d:c4:8e:e3:79:b5:e3:35:b6:11:94:5d:7f:
                    68:b2:5d:e8:90:a1:7a:20:77:73:6b:b2:57:37:18:
                    0b:13:36:74:a3:60:50:69:25:3f:7e:f7:eb:70:36:
                    5d:e6:6f:ed:67:c8:03:c0:55:0a:b2:50:c2:fa:1d:
                    56:76:51:b8:e5:d4:25:f8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Authority Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:15:01:18:19:98:43:ec:64:06:74:2a:fc:b8:a0:7e:ea:69:
        78:09:19:5f:78:45:27:da:d2:94:39:00:47:d4:b1:40:5a:3e:
        52:af:aa:d2:68:29:33:fb:55:3e:72:5c:ff:38:95:22:42:5a:
        0f:5a:b1:d8:80:80:fb:ec:de:db:2c:9a:7b:f6:fc:f6:41:ff:
        3e:16:b7:2f:dc:04:6d:b6:d8:ac:fe:be:78:52:1c:e5:4a:d8:
        30:2d:7f:31:dd:2e:9f:c2:ab:87:16:66:85:ae:7a:c0:52:df:
        b4:bc:6d:41:95:83:ff:1d:2f:66:0b:26:53:95:90:ac:99:b9:
        52:20

1683467248 | 2024-04-12T01:37:15.887516

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 12 Apr 2024 01:37:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (48f03b282c038a752a7d81f86854f4b2)
X-DevSrv-CMS: Bitrix
Set-Cookie: PHPSESSID=GodFHyjROMxJHXKJdWd11jwpHkZmZpvn; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Strict-Transport-Security: max-age=31536000;
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:a6:17:c5:7c:33:e0:8d:20:7b:19:ab:1b:07:fd:86:74:c6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb 14 23:55:19 2024 GMT
            Not After : May 14 23:55:18 2024 GMT
        Subject: CN=flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ea:ec:01:8e:f6:02:db:b2:59:14:a8:64:ca:3f:
                    c7:50:a2:71:5c:72:00:11:e7:0f:c0:ac:cb:db:dc:
                    f4:f3:9d:a0:e9:c9:76:5c:9b:c3:c2:6c:d0:10:b9:
                    13:0d:43:f8:9e:80:c5:fa:1d:be:f2:30:51:1d:ee:
                    5d:76:c3:b7:21:b9:49:cd:28:26:ab:a1:3d:14:a3:
                    b2:b5:9c:c7:fa:43:e5:09:34:4d:e5:76:d0:d4:69:
                    e0:c2:46:bd:eb:6a:c2:8c:1b:53:3d:89:58:7c:a0:
                    65:b6:77:9b:bb:e7:30:a9:60:71:85:7a:e0:ca:78:
                    23:11:0e:a7:45:b3:a2:2b:8f:e6:60:7c:7c:bf:72:
                    44:02:41:e3:43:37:b4:b1:93:37:f5:f0:6f:46:51:
                    b7:0d:38:db:9e:f4:64:24:8a:58:59:66:06:c0:24:
                    e3:b5:a4:3e:80:b9:45:eb:6e:92:ae:87:4b:f3:08:
                    b7:6f:0f:c3:91:ff:f0:d3:69:6f:be:0b:ff:46:2f:
                    01:ff:24:58:5a:db:55:5f:c1:ff:73:16:01:bd:b6:
                    0a:cc:7b:e4:50:8e:0d:e8:a4:29:bf:1b:22:0e:fb:
                    1f:b2:96:44:07:ad:f6:af:47:2d:8d:f3:1c:de:80:
                    e9:57:f9:f5:eb:05:1d:fd:41:71:7f:38:62:a1:b5:
                    cc:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                6A:A1:AD:61:94:6A:20:CC:EC:D4:B6:A6:52:EF:BB:F8:F1:3C:96:6A
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:flirt-butik.ru, DNS:www.flirt-butik.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Feb 15 00:55:19.930 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5A:42:30:11:65:F1:3E:47:0B:4D:49:18:
                                D8:A3:31:F5:DE:E3:81:2F:4A:11:7A:E5:F7:F3:AC:04:
                                9A:DD:DC:01:02:20:55:DD:32:4E:DB:27:5A:65:FA:47:
                                5A:A3:7D:59:19:8A:FA:B9:17:F5:07:5A:EA:56:73:83:
                                CD:B4:68:63:1B:0A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Feb 15 00:55:19.934 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:DD:E2:96:B3:89:C2:5D:B3:86:FD:86:
                                57:02:BE:56:67:03:F5:4F:78:C4:4F:9A:75:B9:49:00:
                                45:AF:A8:39:24:02:20:11:C4:C8:B6:27:60:79:EC:CD:
                                7C:3E:D1:49:29:9B:17:F6:E7:48:7B:BD:16:1B:33:AD:
                                4A:CC:05:EA:B7:18:B7
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5d:1c:fe:e8:78:dc:75:37:aa:41:c7:25:72:c2:35:33:3c:e1:
        3d:c7:ec:7d:e5:62:38:cc:f5:16:c4:dd:36:dc:f2:58:ca:74:
        9a:38:01:01:10:7c:78:d4:60:32:3c:b7:a9:9f:e5:75:cf:a8:
        d8:57:fc:04:66:4b:3c:ca:0e:40:1e:7a:80:1d:88:0e:db:1d:
        e8:fd:9e:18:df:47:8e:f3:05:fa:ce:b3:df:ff:a5:2f:7e:83:
        b9:59:81:2c:13:8b:82:19:eb:fb:66:b8:1d:74:57:2a:52:94:
        72:40:36:99:9a:e2:57:da:5b:34:81:b1:02:f6:7f:ea:3a:b4:
        13:2d:b1:14:a6:90:6f:73:f0:e1:17:32:f5:da:7f:1f:b3:7d:
        5d:e7:59:04:53:d4:df:8e:51:e3:56:d0:ef:69:e7:32:e4:4c:
        e6:80:cb:8c:1e:ad:de:9a:07:e9:c3:af:41:ab:60:8a:83:33:
        4c:b4:fe:71:7e:73:5f:fe:79:2e:0f:36:90:8f:25:88:45:c1:
        d6:1b:83:51:52:ed:5a:62:7e:35:61:a7:0f:3b:89:16:29:fa:
        d3:ad:f6:da:8f:68:bb:1c:3c:28:39:e4:b9:2d:f2:c2:b5:fd:
        78:65:bd:72:f0:37:64:aa:ba:6b:fe:4b:03:a6:7b:3a:56:ce:
        7f:9a:26:2f

1811392518 | 2024-04-03T09:43:09.444367

465 / tcp

220 flirt-butik.ru ESMTP Exim 4.90_1 Ubuntu Wed, 03 Apr 2024 12:42:58 +0300
250-flirt-butik.ru Hello 224.78.218.116 [224.78.218.116]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:2e:46:69:26:ef:ab:f6:c9:28:c2:64:ac:d4:0b:30:a1:de:d3:64
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Validity
            Not Before: Jul  7 05:17:39 2020 GMT
            Not After : Jul  5 05:17:39 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:ad:28:29:f1:8a:1d:f3:ad:0e:a2:60:f5:86:81:
                    38:85:93:62:6f:50:da:02:98:1b:b2:04:ce:34:5c:
                    53:e9:91:4b:5b:fb:a0:68:fb:6d:1b:ff:d3:27:54:
                    4b:ad:b0:00:07:03:a4:74:14:6c:5a:6e:e9:f6:5f:
                    d5:9f:1d:c4:8e:e3:79:b5:e3:35:b6:11:94:5d:7f:
                    68:b2:5d:e8:90:a1:7a:20:77:73:6b:b2:57:37:18:
                    0b:13:36:74:a3:60:50:69:25:3f:7e:f7:eb:70:36:
                    5d:e6:6f:ed:67:c8:03:c0:55:0a:b2:50:c2:fa:1d:
                    56:76:51:b8:e5:d4:25:f8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Authority Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:15:01:18:19:98:43:ec:64:06:74:2a:fc:b8:a0:7e:ea:69:
        78:09:19:5f:78:45:27:da:d2:94:39:00:47:d4:b1:40:5a:3e:
        52:af:aa:d2:68:29:33:fb:55:3e:72:5c:ff:38:95:22:42:5a:
        0f:5a:b1:d8:80:80:fb:ec:de:db:2c:9a:7b:f6:fc:f6:41:ff:
        3e:16:b7:2f:dc:04:6d:b6:d8:ac:fe:be:78:52:1c:e5:4a:d8:
        30:2d:7f:31:dd:2e:9f:c2:ab:87:16:66:85:ae:7a:c0:52:df:
        b4:bc:6d:41:95:83:ff:1d:2f:66:0b:26:53:95:90:ac:99:b9:
        52:20

436817721 | 2024-04-16T04:06:53.220645

587 / tcp

220 flirt-butik.ru ESMTP Exim 4.90_1 Ubuntu Tue, 16 Apr 2024 07:06:32 +0300
250-flirt-butik.ru Hello 224.71.101.161 [224.71.101.161]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:2e:46:69:26:ef:ab:f6:c9:28:c2:64:ac:d4:0b:30:a1:de:d3:64
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Validity
            Not Before: Jul  7 05:17:39 2020 GMT
            Not After : Jul  5 05:17:39 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:ad:28:29:f1:8a:1d:f3:ad:0e:a2:60:f5:86:81:
                    38:85:93:62:6f:50:da:02:98:1b:b2:04:ce:34:5c:
                    53:e9:91:4b:5b:fb:a0:68:fb:6d:1b:ff:d3:27:54:
                    4b:ad:b0:00:07:03:a4:74:14:6c:5a:6e:e9:f6:5f:
                    d5:9f:1d:c4:8e:e3:79:b5:e3:35:b6:11:94:5d:7f:
                    68:b2:5d:e8:90:a1:7a:20:77:73:6b:b2:57:37:18:
                    0b:13:36:74:a3:60:50:69:25:3f:7e:f7:eb:70:36:
                    5d:e6:6f:ed:67:c8:03:c0:55:0a:b2:50:c2:fa:1d:
                    56:76:51:b8:e5:d4:25:f8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Authority Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:15:01:18:19:98:43:ec:64:06:74:2a:fc:b8:a0:7e:ea:69:
        78:09:19:5f:78:45:27:da:d2:94:39:00:47:d4:b1:40:5a:3e:
        52:af:aa:d2:68:29:33:fb:55:3e:72:5c:ff:38:95:22:42:5a:
        0f:5a:b1:d8:80:80:fb:ec:de:db:2c:9a:7b:f6:fc:f6:41:ff:
        3e:16:b7:2f:dc:04:6d:b6:d8:ac:fe:be:78:52:1c:e5:4a:d8:
        30:2d:7f:31:dd:2e:9f:c2:ab:87:16:66:85:ae:7a:c0:52:df:
        b4:bc:6d:41:95:83:ff:1d:2f:66:0b:26:53:95:90:ac:99:b9:
        52:20

-2047833726 | 2024-03-19T09:04:02.432926

993 / tcp

* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot (Ubuntu) ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:2e:46:69:26:ef:ab:f6:c9:28:c2:64:ac:d4:0b:30:a1:de:d3:64
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Validity
            Not Before: Jul  7 05:17:39 2020 GMT
            Not After : Jul  5 05:17:39 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:ad:28:29:f1:8a:1d:f3:ad:0e:a2:60:f5:86:81:
                    38:85:93:62:6f:50:da:02:98:1b:b2:04:ce:34:5c:
                    53:e9:91:4b:5b:fb:a0:68:fb:6d:1b:ff:d3:27:54:
                    4b:ad:b0:00:07:03:a4:74:14:6c:5a:6e:e9:f6:5f:
                    d5:9f:1d:c4:8e:e3:79:b5:e3:35:b6:11:94:5d:7f:
                    68:b2:5d:e8:90:a1:7a:20:77:73:6b:b2:57:37:18:
                    0b:13:36:74:a3:60:50:69:25:3f:7e:f7:eb:70:36:
                    5d:e6:6f:ed:67:c8:03:c0:55:0a:b2:50:c2:fa:1d:
                    56:76:51:b8:e5:d4:25:f8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Authority Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:15:01:18:19:98:43:ec:64:06:74:2a:fc:b8:a0:7e:ea:69:
        78:09:19:5f:78:45:27:da:d2:94:39:00:47:d4:b1:40:5a:3e:
        52:af:aa:d2:68:29:33:fb:55:3e:72:5c:ff:38:95:22:42:5a:
        0f:5a:b1:d8:80:80:fb:ec:de:db:2c:9a:7b:f6:fc:f6:41:ff:
        3e:16:b7:2f:dc:04:6d:b6:d8:ac:fe:be:78:52:1c:e5:4a:d8:
        30:2d:7f:31:dd:2e:9f:c2:ab:87:16:66:85:ae:7a:c0:52:df:
        b4:bc:6d:41:95:83:ff:1d:2f:66:0b:26:53:95:90:ac:99:b9:
        52:20

958054138 | 2024-04-11T23:17:51.948288

995 / tcp

+OK Dovecot (Ubuntu) ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN CRAM-MD5
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:2e:46:69:26:ef:ab:f6:c9:28:c2:64:ac:d4:0b:30:a1:de:d3:64
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Validity
            Not Before: Jul  7 05:17:39 2020 GMT
            Not After : Jul  5 05:17:39 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=flirt-butik/emailAddress=root@flirt-butik.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:ad:28:29:f1:8a:1d:f3:ad:0e:a2:60:f5:86:81:
                    38:85:93:62:6f:50:da:02:98:1b:b2:04:ce:34:5c:
                    53:e9:91:4b:5b:fb:a0:68:fb:6d:1b:ff:d3:27:54:
                    4b:ad:b0:00:07:03:a4:74:14:6c:5a:6e:e9:f6:5f:
                    d5:9f:1d:c4:8e:e3:79:b5:e3:35:b6:11:94:5d:7f:
                    68:b2:5d:e8:90:a1:7a:20:77:73:6b:b2:57:37:18:
                    0b:13:36:74:a3:60:50:69:25:3f:7e:f7:eb:70:36:
                    5d:e6:6f:ed:67:c8:03:c0:55:0a:b2:50:c2:fa:1d:
                    56:76:51:b8:e5:d4:25:f8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Authority Key Identifier: 
                C5:72:05:F5:53:E4:65:2D:59:C6:32:04:1B:BC:BB:AE:47:72:8A:5B
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        1e:15:01:18:19:98:43:ec:64:06:74:2a:fc:b8:a0:7e:ea:69:
        78:09:19:5f:78:45:27:da:d2:94:39:00:47:d4:b1:40:5a:3e:
        52:af:aa:d2:68:29:33:fb:55:3e:72:5c:ff:38:95:22:42:5a:
        0f:5a:b1:d8:80:80:fb:ec:de:db:2c:9a:7b:f6:fc:f6:41:ff:
        3e:16:b7:2f:dc:04:6d:b6:d8:ac:fe:be:78:52:1c:e5:4a:d8:
        30:2d:7f:31:dd:2e:9f:c2:ab:87:16:66:85:ae:7a:c0:52:df:
        b4:bc:6d:41:95:83:ff:1d:2f:66:0b:26:53:95:90:ac:99:b9:
        52:20

387602374 | 2024-03-25T23:01:35.500667

1500 / tcp

HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: close
Location: https://188.120.247.173/
Date: Mon, 25 Mar 2024 23:01:35 GMT

188.120.247.173

Last Seen: 2024-04-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-357697942 | 2024-04-02T07:11:19.410476
21 / tcp

ProFTPD1.3.5e

-1827838290 | 2024-04-14T10:57:44.112442
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.3

-1500518944 | 2024-03-20T07:20:11.277022
25 / tcp

Exim smtpd4.90_1

489652828 | 2024-03-28T23:16:55.969093
53 / tcp

489652828 | 2024-04-13T21:07:39.129771
53 / udp

-1984879341 | 2024-04-09T13:59:26.225170
80 / tcp

nginx1.16.1

-935897793 | 2024-04-13T23:14:02.025684
123 / udp

-736911125 | 2024-03-30T17:57:53.413984
143 / tcp

1683467248 | 2024-04-12T01:37:15.887516
443 / tcp

nginx1.16.1

1811392518 | 2024-04-03T09:43:09.444367
465 / tcp

Exim smtpd4.90_1

436817721 | 2024-04-16T04:06:53.220645
587 / tcp

Exim smtpd4.90_1

-2047833726 | 2024-03-19T09:04:02.432926
993 / tcp

958054138 | 2024-04-11T23:17:51.948288
995 / tcp

387602374 | 2024-03-25T23:01:35.500667
1500 / tcp

Products

Pricing

Contact Us

188.120.247.173

Last Seen: 2024-04-16

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-357697942 | 2024-04-02T07:11:19.410476 21 / tcp

ProFTPD1.3.5e

-1827838290 | 2024-04-14T10:57:44.112442 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.3

-1500518944 | 2024-03-20T07:20:11.277022 25 / tcp

Exim smtpd4.90_1

489652828 | 2024-03-28T23:16:55.969093 53 / tcp

489652828 | 2024-04-13T21:07:39.129771 53 / udp

-1984879341 | 2024-04-09T13:59:26.225170 80 / tcp

nginx1.16.1

-935897793 | 2024-04-13T23:14:02.025684 123 / udp

-736911125 | 2024-03-30T17:57:53.413984 143 / tcp

1683467248 | 2024-04-12T01:37:15.887516 443 / tcp

nginx1.16.1

1811392518 | 2024-04-03T09:43:09.444367 465 / tcp

Exim smtpd4.90_1

436817721 | 2024-04-16T04:06:53.220645 587 / tcp

Exim smtpd4.90_1

-2047833726 | 2024-03-19T09:04:02.432926 993 / tcp

958054138 | 2024-04-11T23:17:51.948288 995 / tcp

387602374 | 2024-03-25T23:01:35.500667 1500 / tcp

Products

Pricing

Contact Us

-357697942 | 2024-04-02T07:11:19.410476
21 / tcp

-1827838290 | 2024-04-14T10:57:44.112442
22 / tcp

-1500518944 | 2024-03-20T07:20:11.277022
25 / tcp

489652828 | 2024-03-28T23:16:55.969093
53 / tcp

489652828 | 2024-04-13T21:07:39.129771
53 / udp

-1984879341 | 2024-04-09T13:59:26.225170
80 / tcp

-935897793 | 2024-04-13T23:14:02.025684
123 / udp

-736911125 | 2024-03-30T17:57:53.413984
143 / tcp

1683467248 | 2024-04-12T01:37:15.887516
443 / tcp

1811392518 | 2024-04-03T09:43:09.444367
465 / tcp

436817721 | 2024-04-16T04:06:53.220645
587 / tcp

-2047833726 | 2024-03-19T09:04:02.432926
993 / tcp

958054138 | 2024-04-11T23:17:51.948288
995 / tcp

387602374 | 2024-03-25T23:01:35.500667
1500 / tcp