GeneralInformation

Hostnames	bitrix384.timeweb.ru zavod-start.ru www.zavod-start.ru
Domains	timeweb.ru zavod-start.ru
Country	Russian Federation
City	Saint Petersburg
Organization	TimeWeb Ltd.
ISP	TimeWeb Ltd.
ASN	AS9123

WebTechnologies

Analytics

CMS

Ecommerce

JavaScript libraries

Programming languages

PHP

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

21 22 80 443

-1873698858 | 2024-04-18T01:07:45.613223

21 / tcp

220 ProFTPD Server
530 Permission denied.
211-Features:
 UTF8
 EPRT
 EPSV
 MDTM
 PASV
 REST STREAM
 SIZE
 TVFS
211 End

1871766773 | 2024-05-02T12:28:15.628471

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.7+esm3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDSqH7x+n7TGSTlJBEcDLBTy9mETR6PUu08C7vYddukp1xa
vq0q7W5aU2OgQYCjlfkRauxS2cIekhb2CBmLWNJWUBp2iU6UCM17ZzpVf34jDQiapVJJ8YBMIiQG
BvxFF7uJ6LKgbmpenyt/a1IE0SfJIo9idnLWiPUPVbTZ17TgyYy2BhQEtAlFbtqzrfZ/oJSjQZVB
uEDycMS4kXujw7wIgDBotDxcNJ98pvZTUetXltcHQXrKWZ4WdhziMjMWmtOcxlh2hYOKWUaH86qh
C1EGPEYypmupFa7QN+k/J10QuqdHFqTQI4mPEZCLgFfKy/TqwZkwJS64PbgYdYIp5c57
Fingerprint: 60:9b:ee:9a:a3:a1:ed:1a:a3:e5:7f:d9:f3:23:ee:88

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ssh-ed25519
	ecdsa-sha2-nistp256

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

619890513 | 2024-04-28T00:04:59.203400

80 / tcp

HTTP/1.1 301 Moved Permanently
Server: nginx/1.24.0
Date: Sun, 28 Apr 2024 00:04:58 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://bitrix384.timeweb.ru/parking/?ref=188.225.63.102

-1716628957 | 2024-05-03T00:29:13.887606

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 03 May 2024 00:28:56 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 43604
Connection: keep-alive
Vary: Accept-Encoding
ETag: 2c7e99795f17bc279383d19fc462b23c
Expires: Fri, 07 Jun 1974 04:00:00 GMT
Last-Modified: Thu, 02 May 2024 18:58:00 GMT
X-Bitrix-Composite: Cache (200)

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:fc:07:14:2c:4d:5c:85:d9:63:ff:4f:ab:21:e5:51:4c:a6
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: May  2 08:16:06 2024 GMT
            Not After : Jul 31 08:16:05 2024 GMT
        Subject: CN=zavod-start.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ad:5e:ff:a8:c0:3e:cd:70:6e:a4:65:c1:22:27:
                    53:e2:08:8f:fc:b6:19:de:5c:90:e7:01:47:a5:1b:
                    2a:26:83:6c:32:1a:99:76:95:87:80:8e:8b:b9:02:
                    c1:ee:83:2b:0f:22:22:8e:fb:ad:4c:e7:1a:66:37:
                    98:8a:6a:67:f4:3a:1e:0a:0d:21:f5:f8:02:c2:49:
                    63:6e:18:c7:45:48:35:2d:37:29:7c:f7:f7:6c:e3:
                    ee:5d:63:07:b1:aa:fa:4e:e3:e3:3d:fc:2a:2b:db:
                    48:44:e9:fc:de:90:c6:69:58:00:89:6d:b6:6c:f3:
                    88:9b:d4:00:c8:88:81:c7:f5:2d:82:35:ae:21:aa:
                    4b:86:be:91:86:92:8b:79:5e:89:f0:5b:af:1f:67:
                    11:c7:8c:c4:12:71:a3:f3:89:d1:d3:c8:bf:87:b5:
                    3b:ef:ac:ba:4a:55:99:fb:4a:14:96:b9:0c:a7:eb:
                    61:d8:0a:fa:6d:51:26:b3:50:33:94:7c:2c:bb:29:
                    99:a4:2b:75:32:9b:32:fe:a1:18:98:95:60:2a:89:
                    0d:ea:29:26:4e:09:eb:44:3b:11:da:ee:04:68:22:
                    fb:ee:4e:56:7d:09:55:46:a3:7d:22:c8:9a:06:cb:
                    e7:50:6e:1b:17:1d:42:dd:4f:9f:7e:19:89:67:6c:
                    0f:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                71:07:CD:56:99:4F:C4:20:AB:5F:22:84:07:1F:A6:0E:0D:49:74:A9
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:www.zavod-start.ru, DNS:zavod-start.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : May  2 09:16:06.431 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:7A:7F:86:71:4A:79:0B:EF:07:63:9C:1C:
                                9A:06:CE:7E:6B:AF:03:55:D1:C2:96:C0:C9:C0:23:11:
                                E5:CD:0F:95:02:21:00:C1:D8:41:17:24:82:D7:E8:F3:
                                BE:DD:46:9F:A4:56:26:EE:5F:55:31:48:BC:C1:C8:19:
                                13:D0:B0:3C:C6:90:9C
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : May  2 09:16:06.628 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:E2:BE:1B:BB:46:38:92:82:83:28:91:
                                D2:94:C2:99:0A:7C:C5:90:90:60:36:80:57:D1:FB:E0:
                                F0:69:E3:0E:E0:02:21:00:D7:E9:8D:EA:90:15:F9:B6:
                                81:D1:77:2B:3C:D2:80:DA:79:66:71:45:2B:52:E2:63:
                                78:E1:D0:73:61:77:F1:86
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        7f:26:41:76:4d:5c:c7:71:ba:9f:c4:2d:69:8e:19:a7:e4:85:
        d7:37:22:21:48:9d:35:81:44:d4:0e:c3:df:f0:44:77:33:b1:
        dd:a4:f9:15:52:c0:78:2c:a7:45:38:1e:97:73:96:19:01:3e:
        db:82:fe:2b:42:d4:f1:9d:51:8e:13:2f:13:61:66:98:a5:9f:
        d0:12:dc:87:91:2c:f0:d8:db:27:69:a6:82:f5:be:9c:a1:0a:
        d5:ce:4d:5d:ff:6b:ca:99:2b:cd:d4:51:9e:b7:51:ad:b7:a1:
        81:d2:0c:99:c5:18:4b:dc:e3:71:21:d5:46:c3:b1:fb:1d:26:
        55:9e:be:95:e1:3b:9d:5c:f2:bd:4b:45:fd:18:5f:3b:30:e8:
        ee:89:80:33:02:d6:81:27:a0:16:27:72:51:4c:84:09:f3:78:
        bf:f4:d0:14:c9:68:84:6e:21:e7:18:5b:80:a5:9d:27:70:76:
        8e:38:e1:a4:a9:78:76:4e:2d:48:6e:05:6a:9c:24:bb:c0:6d:
        c4:41:ea:e8:44:1f:12:b7:3b:82:ee:90:56:60:c8:be:90:23:
        5c:cf:22:65:56:1d:1e:bc:5e:7b:b7:56:28:d2:5f:20:a6:7b:
        d6:d6:c3:10:e5:f0:b8:6c:fd:de:63:06:17:db:1b:3b:32:6d:
        78:1f:83:a1

188.225.63.102

Last Seen: 2024-05-03

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1873698858 | 2024-04-18T01:07:45.613223
21 / tcp

1871766773 | 2024-05-02T12:28:15.628471
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.7+esm3

619890513 | 2024-04-28T00:04:59.203400
80 / tcp

nginx1.24.0

-1716628957 | 2024-05-03T00:29:13.887606
443 / tcp

nginx1.24.0

Products

Pricing

Contact Us

188.225.63.102

Last Seen: 2024-05-03

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

-1873698858 | 2024-04-18T01:07:45.613223 21 / tcp

1871766773 | 2024-05-02T12:28:15.628471 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.7+esm3

619890513 | 2024-04-28T00:04:59.203400 80 / tcp

nginx1.24.0

-1716628957 | 2024-05-03T00:29:13.887606 443 / tcp

nginx1.24.0

Products

Pricing

Contact Us

-1873698858 | 2024-04-18T01:07:45.613223
21 / tcp

1871766773 | 2024-05-02T12:28:15.628471
22 / tcp

619890513 | 2024-04-28T00:04:59.203400
80 / tcp

-1716628957 | 2024-05-03T00:29:13.887606
443 / tcp