GeneralInformation

Hostnames	imingo.net vision.imingo.net
Domains	imingo.net
Country	France
City	Cormontreuil
Organization	IMINGO SERVICES
ISP	IMINGO SERVICES
ASN	AS41770

Vulnerabilities

CVE-2015-4000

4.3The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to conduct cipher-downgrade attacks by rewriting a ClientHello with DHE replaced by DHE_EXPORT and then rewriting a ServerHello with DHE_EXPORT replaced by DHE, aka the "Logjam" issue.

CVE-2015-0204

4.3The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and facilitate brute-force decryption by offering a weak ephemeral RSA key in a noncompliant role, related to the "FREAK" issue. NOTE: the scope of this CVE is only client code based on OpenSSL, not EXPORT_RSA issues associated with servers or other TLS implementations.

OpenPorts

25 80 110 143 443 3306

548848203 | 2024-05-02T03:45:15.903333

25 / tcp

220 vision.imingo.net ESMTP Postfix
250-vision.imingo.net
250-PIPELINING
250-SIZE 47185920
250-VRFY
250-ETRN
250 8BITMIME

-185795962 | 2024-05-01T08:57:36.828916

80 / tcp

HTTP/1.1 302 Found
Date: Wed, 01 May 2024 08:57:36 GMT
Server: Apache
Vary: *
Location: http://www.imingo.net/fr/
Transfer-Encoding: chunked
Content-Type: text/html

387538492 | 2024-05-03T14:06:52.614209

110 / tcp

+OK Hello there.
+OK Here's what I can do:
STLS
TOP
USER
LOGIN-DELAY 10
PIPELINING
UIDL
IMPLEMENTATION Courier Mail Server
.

2119682659 | 2024-04-29T16:19:57.224753

143 / tcp

* OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE STARTTLS] Courier-IMAP ready. Copyright 1998-2003 Double Precision, Inc.  See COPYING for distribution information.
* CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE STARTTLS
A001 OK CAPABILITY completed
A002 NO Error in IMAP command received by server.
A003 NO Error in IMAP command received by server.
* BYE Courier-IMAP server shutting down
A004 OK LOGOUT completed

-1197830475 | 2024-05-03T23:03:29.581284

443 / tcp

HTTP/1.1 401 Authorization Required
Date: Fri, 03 May 2024 23:03:29 GMT
Server: Apache
WWW-Authenticate: Basic realm="Permission exig�e"
Transfer-Encoding: chunked
Content-Type: text/html; charset=iso-8859-1

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:b8:90:97:24:5f:57:cb:3e:f2:6b:48:35:b5:fe:c2:9a:54
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Mar 11 14:31:56 2024 GMT
            Not After : Jun  9 14:31:55 2024 GMT
        Subject: CN=imingo.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:92:c5:04:f9:90:cd:79:b1:44:3e:41:84:e3:2c:
                    da:da:af:da:57:5d:34:41:19:4d:ce:55:d2:b5:ab:
                    0b:e6:b3:b8:c7:e6:75:88:37:d7:c9:3f:7d:35:c6:
                    b2:16:69:9d:16:17:85:5b:bd:1c:21:8f:ca:92:45:
                    f1:ea:32:f0:0a:53:65:1e:ca:0e:bd:0c:bc:fb:b6:
                    21:b7:f2:7a:50:be:10:d4:b3:47:bc:ba:a9:7b:ad:
                    f4:1c:47:ee:80:0d:9b:b7:f1:d9:f6:28:a2:b4:d1:
                    81:fe:9d:af:07:ea:d9:09:34:9b:b5:05:0e:0b:0b:
                    50:28:2b:6d:7a:48:27:9b:c0:53:0d:39:64:59:71:
                    d9:91:5c:d6:88:80:89:d3:39:87:ad:8a:e2:62:5a:
                    4d:bb:e0:73:56:ac:3b:4b:cf:27:b1:16:a4:9e:93:
                    c2:f9:52:26:3a:e4:18:f2:28:51:e3:cc:9c:1d:96:
                    b7:5d:74:92:3e:32:55:30:88:0f:8d:6f:9d:9a:ec:
                    04:95:6a:fd:7d:26:a0:e8:46:22:f0:84:1a:2b:85:
                    bf:4f:33:50:cc:fc:6e:cc:7e:c5:02:9d:09:54:5a:
                    17:22:ad:86:e4:76:11:c4:e1:9f:8f:ef:2a:2a:8a:
                    05:77:1b:8f:0d:76:bd:13:73:1f:0c:9d:7b:30:43:
                    42:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                BD:03:66:FB:B2:A3:28:F6:E8:D4:4D:C9:1D:32:28:4A:BE:E4:5B:DB
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:*.imingo.net, DNS:imingo.net
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : Mar 11 15:31:56.146 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:66:4E:35:09:D9:71:DA:1C:77:19:04:63:
                                63:28:3B:47:A7:13:EB:A3:37:84:79:3A:7F:B3:64:70:
                                E6:98:63:FE:02:20:2C:80:0A:6E:9D:60:02:47:B6:7D:
                                5A:A7:EC:08:FB:DB:E5:A0:B9:91:53:D2:1C:4A:99:17:
                                9B:28:B0:ED:A1:1E
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Mar 11 15:31:56.217 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:74:B2:F6:43:C4:6B:3B:F1:46:CD:61:D0:
                                47:11:7D:5D:8C:CB:91:44:BF:7C:F8:D5:B3:BA:63:71:
                                CF:86:13:20:02:21:00:97:8E:F5:2B:69:93:CE:40:7A:
                                E0:6F:24:1F:BB:53:60:64:15:4A:B0:23:82:F5:2D:B6:
                                58:2F:CE:23:65:11:41
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        b9:69:5d:5c:1c:25:cb:dc:31:a3:d6:8f:c0:84:9d:3b:b8:60:
        06:6b:55:51:14:fe:92:0d:16:a4:01:b5:2a:92:28:81:4f:b4:
        39:3b:e0:06:6c:50:94:d0:a9:f1:af:29:7a:12:df:b6:81:e2:
        fc:d4:50:68:41:e8:e6:30:9d:ef:5c:5b:90:f5:9c:5a:1a:dc:
        fc:e1:47:e8:8b:56:78:8d:32:b9:9f:4f:1b:89:e6:21:d1:d4:
        4c:a1:62:c0:fe:dc:c2:fb:6d:02:80:c3:e3:2e:a0:27:fb:69:
        4a:b2:8e:e0:49:bb:f2:5f:95:c2:0b:8b:18:75:ca:fd:7c:1c:
        06:87:3f:f5:07:89:45:06:37:63:31:8c:ee:8b:6f:44:25:28:
        38:79:b2:b8:75:e5:2f:c6:9e:39:bb:9f:ec:e6:b6:1d:2d:fe:
        56:6e:63:de:bf:be:f0:4d:b0:3d:92:b8:ff:10:f2:ee:33:7e:
        48:cc:cd:0b:fb:40:9f:8a:7b:65:29:d2:81:d8:eb:b8:39:9b:
        80:5b:7d:49:b4:80:39:bc:c6:71:be:b6:25:24:f5:c1:24:88:
        8d:f5:a4:1d:2d:6f:47:2b:96:25:66:f4:de:8d:57:d9:52:aa:
        44:a0:11:0f:1b:d1:d4:fa:3f:d5:95:3e:ed:77:ef:43:06:da:
        5f:85:f1:93

1849628504 | 2024-04-23T23:11:02.122121

3306 / tcp

MySQL:
  Error Message: Host '224.148.70.51' is not allowed to connect to this MySQL server
  Error Code: 1130

81.28.98.66

Last Seen: 2024-05-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

548848203 | 2024-05-02T03:45:15.903333
25 / tcp

Postfix smtpd

-185795962 | 2024-05-01T08:57:36.828916
80 / tcp

Apache httpd

387538492 | 2024-05-03T14:06:52.614209
110 / tcp

2119682659 | 2024-04-29T16:19:57.224753
143 / tcp

-1197830475 | 2024-05-03T23:03:29.581284
443 / tcp

Apache httpd

1849628504 | 2024-04-23T23:11:02.122121
3306 / tcp

MySQL

Products

Pricing

Contact Us

81.28.98.66

Last Seen: 2024-05-03

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

548848203 | 2024-05-02T03:45:15.903333 25 / tcp

Postfix smtpd

-185795962 | 2024-05-01T08:57:36.828916 80 / tcp

Apache httpd

387538492 | 2024-05-03T14:06:52.614209 110 / tcp

2119682659 | 2024-04-29T16:19:57.224753 143 / tcp

-1197830475 | 2024-05-03T23:03:29.581284 443 / tcp

Apache httpd

1849628504 | 2024-04-23T23:11:02.122121 3306 / tcp

MySQL

Products

Pricing

Contact Us

548848203 | 2024-05-02T03:45:15.903333
25 / tcp

-185795962 | 2024-05-01T08:57:36.828916
80 / tcp

387538492 | 2024-05-03T14:06:52.614209
110 / tcp

2119682659 | 2024-04-29T16:19:57.224753
143 / tcp

-1197830475 | 2024-05-03T23:03:29.581284
443 / tcp

1849628504 | 2024-04-23T23:11:02.122121
3306 / tcp