GeneralInformation

Hostnames	football.ua ill.in.ua korrespondent.net kp.ua
Domains	football.ua ill.in.ua korrespondent.net kp.ua
Country	Ukraine
City	Kyiv
Organization	LLC Ukrainian Media Holding
ISP	LLC Ukrainian Media Holding
ASN	AS197203
Operating System	Windows

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2009-2521

Stack consumption vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows remote authenticated users to cause a denial of service (daemon crash) via a list (ls) -R command containing a wildcard that references a subdirectory, followed by a .. (dot dot), aka "IIS FTP Service DoS Vulnerability."

CVE-2008-1446

Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Information Services (IIS) 5.0 through 7.0 on Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to execute arbitrary code via an HTTP POST request that triggers an outbound IPP connection from a web server to a machine operated by the attacker, aka "Integer Overflow in IPP Service Vulnerability."

OpenPorts

21 80 443

-820955125 | 2024-04-14T06:54:18.790493

21 / tcp

220 FileZilla Server 0.9.60 beta
530 This server does not allow plain FTP. You have to use FTP over TLS.
214-The following commands are recognized:
   ABOR   ADAT   ALLO   APPE   AUTH   CDUP   CLNT   CWD 
   DELE   EPRT   EPSV   FEAT   HASH   HELP   LIST   MDTM
   MFMT   MKD    MLSD   MLST   MODE   NLST   NOOP   NOP 
   OPTS   PASS   PASV   PBSZ   PORT   PROT   PWD    QUIT
   REST   RETR   RMD    RNFR   RNTO   SITE   SIZE   STOR
   STRU   SYST   TYPE   USER   XCUP   XCWD   XMKD   XPWD
   XRMD
214 Have a nice day.
211-Features:
 MDTM
 REST STREAM
 SIZE
 MLST type*;size*;modify*;
 MLSD
 AUTH SSL
 AUTH TLS
 PROT
 PBSZ
 UTF8
 CLNT
 MFMT
 EPSV
 EPRT
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:39:cf:0c:8a:cc:08:a3:a2:de:88:12:d6:d0:79:21:7f:ac
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Sep 29 20:03:34 2021 GMT
            Not After : Dec 28 20:03:33 2021 GMT
        Subject: CN=*.korrespondent.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a3:e8:2a:5b:8d:3f:ef:17:03:98:a0:29:99:0c:
                    8e:44:ec:ac:62:26:1b:93:28:40:e9:6d:78:78:a9:
                    d1:57:60:16:3d:62:8e:20:73:f1:27:41:c2:da:e1:
                    6f:20:bd:bb:4e:61:d5:2d:7d:1d:32:8e:f6:e6:56:
                    12:6a:73:62:03:f6:7f:0b:b8:09:8f:01:c5:c7:ea:
                    2e:e5:a9:27:3e:d8:6d:b5:2b:72:93:19:01:d6:c1:
                    c2:aa:08:d6:b4:ae:cf:1e:d7:cc:e5:ea:7e:3b:62:
                    39:04:85:6f:4a:ef:c0:53:16:6d:b9:05:12:66:1c:
                    1e:7a:6d:76:11:a5:53:28:92:9d:c4:52:c0:d0:2f:
                    52:7a:4b:28:c0:99:d5:3b:31:18:eb:fa:97:46:fb:
                    d4:37:c6:78:9e:cc:f5:3a:85:63:91:3f:e0:bd:4b:
                    6f:d2:ff:73:6e:2b:c6:fa:74:2b:37:b8:a0:e8:c4:
                    25:c0:54:e4:bb:8e:35:51:03:aa:79:5e:88:84:48:
                    aa:4c:1b:90:49:f1:74:22:15:ca:ae:28:cd:6c:0a:
                    45:8b:e5:77:0d:9b:20:3d:fd:67:82:1c:88:2e:36:
                    cd:1b:6f:ac:f7:f8:8d:d1:7a:58:60:80:51:06:c3:
                    b3:f4:fa:9c:82:9e:aa:8e:bc:64:d1:e5:0e:b9:6b:
                    5a:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                C9:F2:D3:7B:42:99:AD:CA:12:A1:3B:40:E9:6E:FD:B7:2D:A8:AA:7E
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.football.ua, DNS:*.ill.in.ua, DNS:*.korrespondent.net, DNS:*.kp.ua, DNS:*.vgorode.ua, DNS:football.ua, DNS:korrespondent.net, DNS:kp.ua
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                Policy: 1.3.6.1.4.1.44947.1.1.1
                  CPS: http://cps.letsencrypt.org
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 5C:DC:43:92:FE:E6:AB:45:44:B1:5E:9A:D4:56:E6:10:
                                37:FB:D5:FA:47:DC:A1:73:94:B2:5E:E6:F6:C7:0E:CA
                    Timestamp : Sep 29 21:03:34.179 2021 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:14:B3:14:EB:6D:3F:A0:1D:46:79:B6:A4:
                                B6:BE:9D:BC:86:8F:7A:77:3A:F0:A2:5A:33:38:44:46:
                                03:D6:CA:DD:02:20:62:65:36:1E:92:EA:7A:4A:11:DF:
                                39:F5:6B:60:72:C7:63:40:5C:36:66:5E:88:21:13:DD:
                                87:A4:5B:96:D7:7A
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89:
                                79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7
                    Timestamp : Sep 29 21:03:34.225 2021 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:71:C4:EE:A8:08:23:08:60:3A:8F:9E:EF:
                                3C:BB:A5:80:74:E2:C4:11:FB:BB:1B:E1:7C:59:7B:05:
                                05:2A:2D:41:02:21:00:FA:AF:59:05:81:04:08:7C:3F:
                                71:AD:29:63:E3:8A:7B:5A:ED:80:0B:AE:89:13:7B:59:
                                21:0E:13:E7:BF:91:B7
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        30:28:f9:f9:02:96:7a:ab:03:6b:23:e2:a5:30:85:c4:cf:d8:
        61:c7:fe:34:dc:80:af:34:04:3c:ed:ba:72:f0:06:1f:49:6f:
        ae:f3:70:ab:5c:5b:1c:24:ec:81:0e:dd:69:f5:60:3a:62:87:
        cd:33:2e:5c:de:44:e0:33:3f:11:13:aa:7b:69:d5:af:44:c6:
        bb:7a:4e:b1:85:9d:44:62:c6:36:27:c4:1c:67:0d:6b:a9:f0:
        97:b6:39:f2:79:95:6d:86:af:fa:0a:55:49:c2:62:c1:34:38:
        20:0a:34:88:59:5e:a7:ef:4a:65:d1:69:55:61:6e:f9:71:9d:
        9d:5e:d6:11:56:9c:d0:32:f4:45:18:ee:85:6a:ed:ae:b4:63:
        1e:99:47:76:18:64:5b:b0:78:ef:2e:00:52:2b:a3:b3:59:a0:
        27:b5:15:4b:f8:a0:ca:bd:b3:46:68:fc:ec:f1:f0:3c:12:45:
        9e:25:d4:8f:d3:15:0c:84:0d:6c:bb:a8:d5:11:ae:9f:fb:99:
        21:cb:95:52:76:63:24:d9:c5:36:67:c8:92:91:a7:d9:91:38:
        fb:c9:bb:c5:69:32:c3:c6:04:3c:e8:dc:55:55:89:2a:da:05:
        4f:6f:1c:f7:cd:36:ce:8c:53:64:be:54:d3:af:59:06:47:cc:
        b9:96:3e:41

1489525118 | 2024-04-16T08:28:58.157376

80 / tcp

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 16 Apr 2024 08:28:57 GMT
Connection: close
Content-Length: 315

-985096807 | 2024-04-10T12:12:44.591526

443 / tcp

HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/7.0
X-Powered-By: ASP.NET
Date: Wed, 10 Apr 2024 12:12:43 GMT
Content-Length: 1233

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            d7:6a:fa:49:82:7a:40:39:b3:fc:86:24:4c:49:27:e8
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA
        Validity
            Not Before: Sep 19 00:00:00 2023 GMT
            Not After : Oct  1 23:59:59 2024 GMT
        Subject: CN=*.ill.in.ua
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ca:cb:21:45:29:ff:85:bd:e3:62:4f:51:28:1f:
                    7e:73:0e:be:51:9d:21:a2:7c:0e:60:ac:ca:fa:33:
                    d3:29:04:4e:9d:5c:78:3e:97:22:61:60:bc:89:43:
                    e7:f2:3e:db:9b:0e:72:94:da:ed:84:79:94:c9:7b:
                    52:4f:d4:b6:42:20:74:1e:c9:29:46:fd:24:af:b2:
                    55:61:c1:c1:8d:a4:37:cc:73:12:9b:99:c4:d0:ec:
                    00:be:1d:4d:9a:a4:7b:7b:d2:8c:e7:00:e7:5d:ad:
                    26:1b:a2:59:bd:b8:81:fe:d2:b4:6b:8a:18:98:8a:
                    a1:00:69:39:06:97:f9:8c:e1:d5:65:15:c3:76:d0:
                    17:d9:63:3b:ae:55:21:83:ed:dd:71:9f:c3:a6:59:
                    ec:38:81:27:a1:f9:3c:be:3b:38:bb:f1:ab:b8:4d:
                    f9:8d:2f:f7:2e:41:5d:9e:41:58:e3:de:78:e5:29:
                    18:aa:27:de:58:61:6a:08:f4:aa:6f:0d:7f:28:fc:
                    f8:11:9e:0d:ce:d7:8c:bf:b5:c7:ac:a1:f9:48:5f:
                    54:cd:42:14:09:c8:d5:e3:ef:3d:f0:ae:73:29:fa:
                    b2:a4:25:ab:b0:be:bc:1d:5a:4f:2e:79:b0:a7:e8:
                    64:cf:aa:0a:55:96:34:62:48:a6:6f:e4:d1:a0:f4:
                    f1:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1
            X509v3 Subject Key Identifier: 
                79:D7:20:53:68:A1:55:7A:93:BE:A1:3B:2D:D0:22:38:36:64:D2:10
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.7
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            Authority Information Access: 
                CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
                OCSP - URI:http://ocsp.sectigo.com
            X509v3 Subject Alternative Name: 
                DNS:*.ill.in.ua, DNS:ill.in.ua
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Sep 19 19:55:26.463 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:46:E8:FF:F3:FA:9D:44:D2:E2:62:E0:78:
                                BC:ED:8F:F0:72:02:AB:EA:8D:C0:7E:F3:71:4E:20:A9:
                                27:61:15:1B:02:21:00:86:1B:0A:46:44:CD:C1:23:95:
                                26:31:CF:E5:4B:8F:24:A9:A9:77:ED:9B:E5:EA:23:2C:
                                C3:B2:AE:AA:9B:28:20
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Sep 19 19:55:26.555 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:CB:3A:6A:01:68:00:C3:D2:D1:4F:F7:
                                3F:0B:D2:C0:D9:F5:A1:EB:65:76:BA:C7:EF:56:AF:94:
                                CA:20:F8:8B:B2:02:21:00:E8:92:78:C2:59:4C:3E:2A:
                                14:4C:20:79:DF:2A:AF:38:4C:F7:8E:FE:F9:D5:53:4B:
                                44:55:14:F5:9F:86:FD:1B
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Sep 19 19:55:26.503 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:B4:3B:55:B6:E6:D0:C5:38:DF:4E:70:
                                C5:8E:EA:08:49:67:35:C8:4B:2D:9C:B6:86:4C:2C:36:
                                B6:6E:CF:D3:C4:02:21:00:BE:81:02:63:50:AE:1F:4F:
                                A0:73:A3:3F:18:5B:0B:B5:A0:70:65:D6:E2:FC:8D:E5:
                                A6:1E:63:FE:A8:54:7C:6E
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5e:a0:0a:72:0c:6d:ea:1a:86:76:45:38:28:fd:07:69:c5:a2:
        ec:98:a2:95:e0:cf:e3:1b:19:61:f8:7a:5d:b3:17:1c:62:8d:
        79:41:1c:51:55:b7:0a:e1:91:1a:55:ba:d8:05:9a:34:db:b0:
        0a:84:65:f5:3a:84:a3:0d:49:0e:9b:17:7d:8d:96:b7:4f:9b:
        49:a2:07:8c:a6:ac:e6:94:c1:6f:9f:ce:3e:38:3d:e2:98:00:
        db:b7:47:08:fd:94:71:6c:b1:d2:7b:c7:84:19:7e:97:c3:5d:
        b6:2d:78:4b:65:cd:3c:16:0f:a1:0e:80:c7:a8:bf:73:22:6e:
        1a:1b:d9:97:23:e4:8d:aa:4e:20:7c:1d:4f:a0:bc:a8:7c:31:
        52:be:76:97:4f:68:04:1d:fa:47:2d:f7:4b:8b:9f:df:f3:22:
        e6:6e:4c:f9:f4:ae:f4:49:0c:04:60:48:ee:f2:9d:15:60:16:
        32:30:62:c6:96:77:2a:55:07:5a:1d:72:58:0e:2f:18:08:fc:
        2f:39:5b:e9:4a:cd:1d:e5:52:3e:26:20:6b:90:57:5f:60:4f:
        44:e3:be:3c:3b:12:8f:e7:a3:4e:7d:82:2f:c1:53:66:33:24:
        e0:4d:38:de:dc:13:d5:99:7e:85:43:44:3c:9f:27:d9:66:3c:
        1f:b7:ee:32

193.29.200.140

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-820955125 | 2024-04-14T06:54:18.790493
21 / tcp

1489525118 | 2024-04-16T08:28:58.157376
80 / tcp

Microsoft HTTPAPI httpd2.0

-985096807 | 2024-04-10T12:12:44.591526
443 / tcp

Microsoft IIS httpd7.0

Products

Pricing

Contact Us

193.29.200.140

Last Seen: 2024-04-16

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-820955125 | 2024-04-14T06:54:18.790493 21 / tcp

1489525118 | 2024-04-16T08:28:58.157376 80 / tcp

Microsoft HTTPAPI httpd2.0

-985096807 | 2024-04-10T12:12:44.591526 443 / tcp

Microsoft IIS httpd7.0

Products

Pricing

Contact Us

-820955125 | 2024-04-14T06:54:18.790493
21 / tcp

1489525118 | 2024-04-16T08:28:58.157376
80 / tcp

-985096807 | 2024-04-10T12:12:44.591526
443 / tcp