GeneralInformation

Hostnames	isptestproxy.ru weld58.ru www.weld58.ru
Domains	isptestproxy.ru weld58.ru
Country	Russian Federation
City	Moscow
Organization	ServTech LLC
ISP	ServTech LTD
ASN	AS208626

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51766

5.3Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

OpenPorts

53 80 143 443 465

669421342 | 2024-04-04T11:26:12.878623

53 / tcp

PowerDNS Authoritative Server 4.1.14
Resolver ID: isp10.coopertino.ru

669421342 | 2024-04-03T12:12:34.611209

53 / udp

PowerDNS Authoritative Server 4.1.14
Resolver ID: isp10.coopertino.ru

480415441 | 2024-04-02T01:40:07.624325

80 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Date: Tue, 02 Apr 2024 01:40:07 GMT
Content-Type: text/html
Content-Length: 8263
Connection: keep-alive
ETag: "61550762-2047"

312936668 | 2024-04-09T00:06:23.281920

143 / tcp

* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a4:31:50:d0:85:7c:8f:08
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=isp10.coopertino.ru/emailAddress=root@isp10.coopertino.ru
        Validity
            Not Before: Apr 22 19:00:41 2020 GMT
            Not After : Apr 20 19:00:41 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=isp10.coopertino.ru/emailAddress=root@isp10.coopertino.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d9:81:e2:14:82:1f:10:96:62:93:11:f4:3d:11:
                    ba:f2:ff:7f:a6:55:6a:75:08:cf:86:1c:eb:ba:f4:
                    9f:fc:3f:d0:d3:d3:c0:41:d8:57:4f:ad:fd:fb:21:
                    0f:f2:7a:f5:4a:6b:09:4d:2d:2a:e5:24:ba:8b:72:
                    0e:ba:94:a0:79:68:a6:de:b3:89:86:92:75:8d:a5:
                    d7:d3:d4:6a:bf:1a:5b:cb:e7:b7:97:c6:91:66:ca:
                    19:92:7e:43:db:6d:51:a6:50:74:54:9f:4e:24:50:
                    61:50:7e:22:b8:ac:56:a9:71:75:15:6f:db:91:e9:
                    7c:47:5a:0c:d3:c0:b2:df:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                45:D5:98:B8:3F:D7:14:EB:BA:BE:ED:42:6A:85:BA:F6:34:E5:15:AE
            X509v3 Authority Key Identifier: 
                45:D5:98:B8:3F:D7:14:EB:BA:BE:ED:42:6A:85:BA:F6:34:E5:15:AE
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        15:da:17:37:a9:5d:7c:99:67:f9:9f:15:29:de:61:79:36:21:
        24:2e:d8:70:cd:b0:07:78:4a:f6:6e:b2:35:31:c6:c6:52:16:
        99:97:36:a7:8c:03:19:84:51:a2:63:6c:6b:76:7a:ef:7c:23:
        3b:b5:22:84:7d:47:30:59:ec:f6:b1:96:61:98:ed:d5:24:ca:
        e8:66:1e:58:47:b6:b2:c0:be:f4:01:4b:24:a6:33:e3:da:a1:
        5b:ef:4c:6c:83:04:39:e1:bf:9e:9e:30:cd:92:10:74:85:c8:
        35:de:30:70:00:e8:f4:27:34:04:fc:a6:33:02:37:c0:31:3d:
        d5:99

480415441 | 2024-04-12T16:51:19.999527

443 / tcp

HTTP/1.1 403 Forbidden
Server: nginx
Date: Fri, 12 Apr 2024 16:51:19 GMT
Content-Type: text/html
Content-Length: 8263
Connection: keep-alive
ETag: "61550762-2047"

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:e5:13:bf:c3:15:c4:69:0a:5f:60:49:2d:50:43:9b:21:f1
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Jan 27 23:58:17 2024 GMT
            Not After : Apr 26 23:58:16 2024 GMT
        Subject: CN=weld58.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:58:09:a6:f4:20:55:c1:d2:28:a1:f1:b2:0d:
                    7c:a0:e0:b5:66:2e:78:58:c6:68:58:22:cc:3c:f9:
                    e2:eb:db:cc:ef:f9:16:32:f0:97:ed:e0:2a:69:72:
                    a8:db:b0:bb:6f:87:4f:ea:b9:7e:9e:45:65:8f:0e:
                    aa:5e:ca:8c:3f:d4:8a:44:03:88:eb:56:07:5d:8c:
                    1f:93:0c:81:d4:c1:d9:3c:df:9e:06:56:bd:93:48:
                    10:2b:cd:01:64:8f:e3:3d:5d:84:a5:2d:1b:c5:62:
                    8e:65:fd:5c:0c:95:9a:9c:ce:c5:5b:89:01:4d:e2:
                    85:81:98:d1:42:33:32:94:64:a7:e8:f4:fa:16:a6:
                    c4:63:ba:bb:ee:0b:db:29:37:3a:4d:06:90:a9:b3:
                    6e:29:c9:d3:c8:22:1e:1d:83:0d:b8:bc:2e:5c:8d:
                    6d:e7:7e:e2:1f:5a:29:8b:18:8b:7c:17:ee:6b:b6:
                    23:3f:89:ee:9c:d8:9e:e8:5f:c6:0b:2f:89:07:da:
                    22:dc:90:4e:36:f0:d8:2a:3d:88:e9:9c:2d:f6:ec:
                    53:ad:55:f1:ef:12:b3:a2:d2:fb:74:34:c8:bc:76:
                    8c:6b:2f:7c:00:01:63:21:88:d8:10:75:67:cf:7b:
                    ba:29:4d:61:8c:f9:40:50:22:81:34:05:d0:a9:c8:
                    6f:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                02:2B:2A:C9:66:AD:D6:B5:44:01:34:09:6B:7C:87:E6:35:9A:DD:17
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:weld58.ru, DNS:www.weld58.ru
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Jan 28 00:58:17.907 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:75:13:EA:6E:85:A0:1F:53:96:B3:6A:91:
                                F3:C1:93:5C:A9:AE:E3:F2:26:F9:C8:F0:57:1B:9F:99:
                                EA:BE:C6:92:02:21:00:87:52:85:42:1A:B4:9E:23:5A:
                                E5:D6:D1:EF:B7:AA:41:1C:C9:53:B9:B4:BE:7A:46:12:
                                71:92:01:1E:76:63:52
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Jan 28 00:58:17.910 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FF:2F:A7:6C:F5:9B:63:6F:77:02:03:
                                33:B8:B3:1B:29:A4:75:BF:E4:EA:E8:1D:24:7E:69:33:
                                CB:17:C2:98:BD:02:21:00:C9:CF:FB:D5:D0:AF:A7:99:
                                76:DD:E7:D9:3D:14:08:3E:A0:30:F9:3E:DB:2A:17:2B:
                                AD:19:30:2D:72:D7:AB:E9
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        74:e1:cd:58:3b:37:ff:3b:f9:ce:cf:f4:dc:b1:2a:01:75:a3:
        52:5b:fa:fe:2a:32:da:80:f5:01:99:fe:22:c6:52:62:29:3d:
        73:bd:e1:59:32:53:f8:d3:26:d5:e3:72:cc:69:b0:4a:a6:f1:
        4e:8a:9a:31:58:d0:8f:c5:6f:fa:dd:d9:41:53:98:43:c6:63:
        60:32:24:ef:76:72:a3:34:9d:a4:93:87:57:3d:e8:ae:29:5b:
        1c:a2:10:a1:d4:5b:41:81:45:37:7a:d7:14:6d:5d:b9:a4:fd:
        d0:bb:fb:12:d0:88:0a:9b:30:73:fd:2b:ce:7d:1a:b6:bc:ae:
        68:3e:df:28:54:fd:ee:3a:4d:72:36:84:da:3b:95:d3:31:73:
        e0:c5:da:dc:b1:bb:31:a6:04:d6:d3:7e:16:a1:95:24:bf:70:
        2e:3b:e7:ac:eb:29:6f:8d:f9:63:bb:1e:12:f4:fa:93:b3:df:
        ea:36:2c:c0:59:a5:b3:00:84:72:24:7e:d2:e9:96:24:25:5a:
        c6:e9:79:ad:04:f3:98:f2:c8:12:32:a3:94:13:9a:4e:36:ce:
        d5:44:21:fd:4a:d3:95:cd:27:46:a3:95:57:df:fc:67:e8:e5:
        8c:58:16:ba:0e:98:57:db:f9:cb:48:81:e4:65:56:1e:47:65:
        b3:3c:46:14

-613120935 | 2024-04-12T13:59:34.449654

465 / tcp

220 isp10.coopertino.ru ESMTP Exim 4.96 Fri, 12 Apr 2024 16:59:03 +0300
250-isp10.coopertino.ru Hello gk7kkujogy.com [224.87.2.0]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPECONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a4:31:50:d0:85:7c:8f:08
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=isp10.coopertino.ru/emailAddress=root@isp10.coopertino.ru
        Validity
            Not Before: Apr 22 19:00:41 2020 GMT
            Not After : Apr 20 19:00:41 2030 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=isp10.coopertino.ru/emailAddress=root@isp10.coopertino.ru
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:d9:81:e2:14:82:1f:10:96:62:93:11:f4:3d:11:
                    ba:f2:ff:7f:a6:55:6a:75:08:cf:86:1c:eb:ba:f4:
                    9f:fc:3f:d0:d3:d3:c0:41:d8:57:4f:ad:fd:fb:21:
                    0f:f2:7a:f5:4a:6b:09:4d:2d:2a:e5:24:ba:8b:72:
                    0e:ba:94:a0:79:68:a6:de:b3:89:86:92:75:8d:a5:
                    d7:d3:d4:6a:bf:1a:5b:cb:e7:b7:97:c6:91:66:ca:
                    19:92:7e:43:db:6d:51:a6:50:74:54:9f:4e:24:50:
                    61:50:7e:22:b8:ac:56:a9:71:75:15:6f:db:91:e9:
                    7c:47:5a:0c:d3:c0:b2:df:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                45:D5:98:B8:3F:D7:14:EB:BA:BE:ED:42:6A:85:BA:F6:34:E5:15:AE
            X509v3 Authority Key Identifier: 
                45:D5:98:B8:3F:D7:14:EB:BA:BE:ED:42:6A:85:BA:F6:34:E5:15:AE
            X509v3 Basic Constraints: 
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        15:da:17:37:a9:5d:7c:99:67:f9:9f:15:29:de:61:79:36:21:
        24:2e:d8:70:cd:b0:07:78:4a:f6:6e:b2:35:31:c6:c6:52:16:
        99:97:36:a7:8c:03:19:84:51:a2:63:6c:6b:76:7a:ef:7c:23:
        3b:b5:22:84:7d:47:30:59:ec:f6:b1:96:61:98:ed:d5:24:ca:
        e8:66:1e:58:47:b6:b2:c0:be:f4:01:4b:24:a6:33:e3:da:a1:
        5b:ef:4c:6c:83:04:39:e1:bf:9e:9e:30:cd:92:10:74:85:c8:
        35:de:30:70:00:e8:f4:27:34:04:fc:a6:33:02:37:c0:31:3d:
        d5:99

193.135.134.165

Last Seen: 2024-04-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

669421342 | 2024-04-04T11:26:12.878623
53 / tcp

669421342 | 2024-04-03T12:12:34.611209
53 / udp

480415441 | 2024-04-02T01:40:07.624325
80 / tcp

nginx

312936668 | 2024-04-09T00:06:23.281920
143 / tcp

480415441 | 2024-04-12T16:51:19.999527
443 / tcp

nginx

-613120935 | 2024-04-12T13:59:34.449654
465 / tcp

Exim smtpd4.96

Products

Pricing

Contact Us

193.135.134.165

Last Seen: 2024-04-12

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

669421342 | 2024-04-04T11:26:12.878623 53 / tcp

669421342 | 2024-04-03T12:12:34.611209 53 / udp

480415441 | 2024-04-02T01:40:07.624325 80 / tcp

nginx

312936668 | 2024-04-09T00:06:23.281920 143 / tcp

480415441 | 2024-04-12T16:51:19.999527 443 / tcp

nginx

-613120935 | 2024-04-12T13:59:34.449654 465 / tcp

Exim smtpd4.96

Products

Pricing

Contact Us

669421342 | 2024-04-04T11:26:12.878623
53 / tcp

669421342 | 2024-04-03T12:12:34.611209
53 / udp

480415441 | 2024-04-02T01:40:07.624325
80 / tcp

312936668 | 2024-04-09T00:06:23.281920
143 / tcp

480415441 | 2024-04-12T16:51:19.999527
443 / tcp

-613120935 | 2024-04-12T13:59:34.449654
465 / tcp