GeneralInformation

Hostnames	move-host.ru
Domains	move-host.ru
Country	Russian Federation
City	Moscow
Organization	JSC IOT
ISP	JSC IOT
ASN	AS29182

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

OpenPorts

21 25 53 80 110 143 443 587 777 993 995

-1751139831 | 2025-01-03T21:05:50.398161

21 / tcp

220 ProFTPD Server (Debian) [::ffff:79.143.73.217]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO    RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
 ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    RANG    USER    PASS    
 ACCT*   REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@move-host.ru
211-Features:
 CLNT
 EPRT
 EPSV
 HOST
 LANG ru-RU.UTF-8;ru-RU;en-US.UTF-8*;en-US
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
 RANG STREAM
 REST STREAM
 SITE COPY
 SITE MKDIR
 SITE RMDIR
 SITE SYMLINK
 SITE UTIME
 SIZE
 TVFS
 UTF8
211 End

89113802 | 2024-12-19T21:36:06.576565

25 / tcp

220 move-host.ru ESMTP Exim 4.94.2 Fri, 20 Dec 2024 00:35:51 +0300
250-move-host.ru Hello t1b1w8bov7wp.com [224.84.0.70]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250-SMTPUTF8
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1d:f3:e5:29:83:47:2f:81:0f:b7:f2:2e:e5:3b:13:83:fa:1d:85:ff
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=move-host/emailAddress=root@move-host
        Validity
            Not Before: Dec 29 15:10:39 2022 GMT
            Not After : Dec 26 15:10:39 2032 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=move-host/emailAddress=root@move-host
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:f3:c9:e6:46:07:c0:33:5e:70:74:2a:a1:2f:
                    20:fd:4b:56:38:5e:47:70:34:ab:f1:2f:85:b7:4e:
                    1e:5e:b4:dd:2e:c5:b9:3c:1a:58:3c:9a:fb:5f:e5:
                    0e:23:71:18:1e:24:98:72:a9:5a:b9:ae:d9:f1:50:
                    02:a4:56:40:43:80:44:12:f5:6d:b8:12:bd:07:6f:
                    8e:76:8d:10:2b:37:a7:a9:7d:3a:34:fe:69:a4:fc:
                    4e:ff:04:a2:67:d3:c3:fe:58:78:b0:73:38:48:59:
                    91:8d:bc:fd:97:fb:62:2f:39:9e:08:6e:89:ac:02:
                    3e:83:3e:3e:a4:09:44:3a:61:a6:ff:41:04:47:7c:
                    aa:33:88:d7:d5:fd:04:bb:e0:8b:d2:ad:34:34:7d:
                    e5:db:9b:16:c5:8e:05:cc:35:74:7d:8f:7d:49:3c:
                    78:9d:a5:f9:ce:c2:70:a7:2c:42:97:15:b2:b0:12:
                    92:07:2a:61:83:47:35:fb:74:68:bc:2f:30:ee:6f:
                    b8:fc:ff:ab:c5:67:d3:cb:b8:65:57:36:17:0e:2d:
                    02:d7:53:40:1f:38:cc:4b:a6:49:cc:9a:c4:f3:9a:
                    c9:c6:a2:f3:3d:4e:10:1b:e7:87:50:cb:ae:c7:48:
                    7b:ac:34:f1:89:14:ea:ce:a9:47:82:59:f1:e0:cb:
                    61:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                CB:B5:65:89:D3:5F:F1:A9:71:DA:4E:EF:1D:97:9B:DD:62:AB:11:49
            X509v3 Authority Key Identifier: 
                CB:B5:65:89:D3:5F:F1:A9:71:DA:4E:EF:1D:97:9B:DD:62:AB:11:49
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        58:d9:1a:5c:31:31:9b:9a:2e:cc:9f:a0:a0:88:dc:77:1a:48:
        c5:88:2a:e5:dc:12:93:4e:4b:23:51:39:f4:8a:b1:f3:71:60:
        03:b5:d4:5e:ee:aa:67:7f:a9:13:38:d3:f4:71:45:a7:bc:1f:
        d4:92:85:7c:6e:02:8e:8f:9f:07:24:d5:a7:39:97:8e:a3:3f:
        67:f7:f3:41:53:2b:52:07:fd:96:cb:f2:39:a8:34:d1:eb:41:
        7a:e2:2d:f2:7a:eb:00:b3:d6:15:80:4b:47:32:7e:0e:72:90:
        dc:2f:bc:b4:56:4c:4a:1f:3e:e3:a1:9c:aa:d8:0d:76:c9:54:
        30:d9:08:4a:fe:0a:ed:f4:33:da:ff:2f:2b:95:24:00:07:3c:
        54:ec:3f:c4:0a:0a:f3:bd:1b:cb:88:4f:3a:fc:f9:bf:2d:f1:
        eb:0c:eb:07:4d:6d:59:7a:cf:cd:67:79:2a:fe:a1:4b:ca:5d:
        26:9e:47:38:fb:ab:94:f9:ba:76:03:e6:4c:f3:e4:ae:45:d2:
        12:ea:c0:6c:97:9e:19:bc:72:c7:c3:f1:83:f9:0e:55:83:0d:
        13:05:fa:14:80:cf:ca:ae:92:bb:69:50:77:41:95:af:fb:23:
        b4:c7:b3:e2:80:ea:7b:99:61:06:7b:e9:6b:7a:69:0d:60:ca:
        f0:96:f9:25

CVE-2022-37452 CVE-2022-37451 CVE-2021-38371 CVE-2023-51766

2020131735 | 2025-01-04T00:46:36.476658

53 / tcp

9.16.50-Debian
Resolver name: move-host

2020131735 | 2024-12-22T03:38:38.553812

53 / udp

9.16.50-Debian
Resolver name: move-host

1584412971 | 2025-01-04T11:50:59.753125

80 / tcp

301 Moved Permanently

HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0
Date: Sat, 04 Jan 2025 11:50:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://mail.tekhflot.ru:443/

CVE-2023-44487 CVE-2021-23017 CVE-2021-3618

-1083873233 | 2024-12-31T22:55:41.005315

110 / tcp

+OK Dovecot (Debian) ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
STLS
USER
SASL PLAIN LOGIN CRAM-MD5
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1d:f3:e5:29:83:47:2f:81:0f:b7:f2:2e:e5:3b:13:83:fa:1d:85:ff
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=move-host/emailAddress=root@move-host
        Validity
            Not Before: Dec 29 15:10:39 2022 GMT
            Not After : Dec 26 15:10:39 2032 GMT
        Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=move-host/emailAddress=root@move-host
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:a7:f3:c9:e6:46:07:c0:33:5e:70:74:2a:a1:2f:
                    20:fd:4b:56:38:5e:47:70:34:ab:f1:2f:85:b7:4e:
                    1e:5e:b4:dd:2e:c5:b9:3c:1a:58:3c:9a:fb:5f:e5:
                    0e:23:71:18:1e:24:98:72:a9:5a:b9:ae:d9:f1:50:
                    02:a4:56:40:43:80:44:12:f5:6d:b8:12:bd:07:6f:
                    8e:76:8d:10:2b:37:a7:a9:7d:3a:34:fe:69:a4:fc:
                    4e:ff:04:a2:67:d3:c3:fe:58:78:b0:73:38:48:59:
                    91:8d:bc:fd:97:fb:62:2f:39:9e:08:6e:89:ac:02:
                    3e:83:3e:3e:a4:09:44:3a:61:a6:ff:41:04:47:7c:
                    aa:33:88:d7:d5:fd:04:bb:e0:8b:d2:ad:34:34:7d:
                    e5:db:9b:16:c5:8e:05:cc:35:74:7d:8f:7d:49:3c:
                    78:9d:a5:f9:ce:c2:70:a7:2c:42:97:15:b2:b0:12:
                    92:07:2a:61:83:47:35:fb:74:68:bc:2f:30:ee:6f:
                    b8:fc:ff:ab:c5:67:d3:cb:b8:65:57:36:17:0e:2d:
                    02:d7:53:40:1f:38:cc:4b:a6:49:cc:9a:c4:f3:9a:
                    c9:c6:a2:f3:3d:4e:10:1b:e7:87:50:cb:ae:c7:48:
                    7b:ac:34:f1:89:14:ea:ce:a9:47:82:59:f1:e0:cb:
                    61:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                CB:B5:65:89:D3:5F:F1:A9:71:DA:4E:EF:1D:97:9B:DD:62:AB:11:49
            X509v3 Authority Key Identifier: 
                CB:B5:65:89:D3:5F:F1:A9:71:DA:4E:EF:1D:97:9B:DD:62:AB:11:49
            X509v3 Basic Constraints: critical
                CA:TRUE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        58:d9:1a:5c:31:31:9b:9a:2e:cc:9f:a0:a0:88:dc:77:1a:48:
        c5:88:2a:e5:dc:12:93:4e:4b:23:51:39:f4:8a:b1:f3:71:60:
        03:b5:d4:5e:ee:aa:67:7f:a9:13:38:d3:f4:71:45:a7:bc:1f:
        d4:92:85:7c:6e:02:8e:8f:9f:07:24:d5:a7:39:97:8e:a3:3f:
        67:f7:f3:41:53:2b:52:07:fd:96:cb:f2:39:a8:34:d1:eb:41:
        7a:e2:2d:f2:7a:eb:00:b3:d6:15:80:4b:47:32:7e:0e:72:90:
        dc:2f:bc:b4:56:4c:4a:1f:3e:e3:a1:9c:aa:d8:0d:76:c9:54:
        30:d9:08:4a:fe:0a:ed:f4:33:da:ff:2f:2b:95:24:00:07:3c:
        54:ec:3f:c4:0a:0a:f3:bd:1b:cb:88:4f:3a:fc:f9:bf:2d:f1:
        eb:0c:eb:07:4d:6d:59:7a:cf:cd:67:79:2a:fe:a1:4b:ca:5d:
        26:9e:47:38:fb:ab:94:f9:ba:76:03:e6:4c:f3:e4:ae:45:d2:
        12:ea:c0:6c:97:9e:19:bc:72:c7:c3:f1:83:f9:0e:55:83:0d:
        13:05:fa:14:80:cf:ca:ae:92:bb:69:50:77:41:95:af:fb:23:
        b4:c7:b3:e2:80:ea:7b:99:61:06:7b:e9:6b:7a:69:0d:60:ca:
        f0:96:f9:25

175038010 | 2024-12-26T20:18:53.203452

143 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

2128602611 | 2025-01-05T16:58:59.208233

443 / tcp

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0
Date: Sun, 05 Jan 2025 16:58:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: close

CVE-2023-44487 CVE-2021-23017 CVE-2021-3618

-1212666809 | 2025-01-04T06:23:37.543313

587 / tcp

220 move-host.ru ESMTP Exim 4.94.2 Sat, 04 Jan 2025 09:23:37 +0300\r\n

CVE-2022-37452 CVE-2022-37451 CVE-2021-38371 CVE-2023-51766

-811388280 | 2024-12-20T08:18:23.246406

777 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u3
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQClXn/dIepQHG+Bf/hTbV33nbtOpFfB5+Q74F0P5AYbMxpw
H5NB1y0C450RwCJvwkvW4gVb8uO473Tyn46LiyD2i38x2aRd8eZV1an9jjB4t/+r772HF+umEid7
GPTFhbfZ38IKQsJ/P1ZbB4MutEotDYFMIpUItnOGvi5bAKJF2HwMhM+TXM6uc9DxdnrdkGYD6CJv
I2vIEd2nOxrquJGtQ5q8xw3djtxNUQkk9nB+CcEUk7yuvQpicBlJSXIXZj14wUgvWcHEPSJ27mn6
fUk+F07WC+FcJaVhAFoao8MaWbS3RFrOdZhp/EltR1AB3vx3jR6K/cY0CX+fghA6byHHFK9vO4Lp
EDP2DcP0jI0I3Wa4gWObqP5F3L96aiZ7suKSk/ULvXqjUW125C0oG0BCCgv+dAQGf5foszpvQ4WH
AI6CBdgjz9BZhX6VbUJUkvAiYNrqiAFiSO+CpX3RY63PAxCV6WBDF0vVTQhuN008qAcEuTG55fYq
iNoSnogGfAk=
Fingerprint: 10:e2:82:3a:48:bb:d2:e0:71:02:eb:2a:65:a2:84:1d

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	kex-strict-s-v00@openssh.com

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

1117004044 | 2024-12-31T06:31:35.521469

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

-1076830913 | 2024-12-14T20:27:10.625597

995 / tcp

+OK Dovecot (Debian) ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN CRAM-MD5
.

79.143.73.217

Last Seen: 2025-01-05

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1751139831 | 2025-01-03T21:05:50.398161
21 / tcp

89113802 | 2024-12-19T21:36:06.576565
25 / tcp

Exim smtpd4.94.2

2020131735 | 2025-01-04T00:46:36.476658
53 / tcp

2020131735 | 2024-12-22T03:38:38.553812
53 / udp

1584412971 | 2025-01-04T11:50:59.753125
80 / tcp

nginx1.18.0

-1083873233 | 2024-12-31T22:55:41.005315
110 / tcp

175038010 | 2024-12-26T20:18:53.203452
143 / tcp

2128602611 | 2025-01-05T16:58:59.208233
443 / tcp

nginx1.18.0

-1212666809 | 2025-01-04T06:23:37.543313
587 / tcp

Exim smtpd4.94.2

-811388280 | 2024-12-20T08:18:23.246406
777 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1117004044 | 2024-12-31T06:31:35.521469
993 / tcp

-1076830913 | 2024-12-14T20:27:10.625597
995 / tcp

Products

Pricing

Contact Us

79.143.73.217

Last Seen: 2025-01-05

Tags:

GeneralInformation

Vulnerabilities All ports Port 25 Port 80 Port 443 Port 587 Latest CVSS

OpenPorts

-1751139831 | 2025-01-03T21:05:50.398161 21 / tcp

89113802 | 2024-12-19T21:36:06.576565 25 / tcp

Exim smtpd4.94.2

2020131735 | 2025-01-04T00:46:36.476658 53 / tcp

2020131735 | 2024-12-22T03:38:38.553812 53 / udp

1584412971 | 2025-01-04T11:50:59.753125 80 / tcp

nginx1.18.0

-1083873233 | 2024-12-31T22:55:41.005315 110 / tcp

175038010 | 2024-12-26T20:18:53.203452 143 / tcp

2128602611 | 2025-01-05T16:58:59.208233 443 / tcp

nginx1.18.0

-1212666809 | 2025-01-04T06:23:37.543313 587 / tcp

Exim smtpd4.94.2

-811388280 | 2024-12-20T08:18:23.246406 777 / tcp

OpenSSH8.4p1 Debian 5+deb11u3

1117004044 | 2024-12-31T06:31:35.521469 993 / tcp

-1076830913 | 2024-12-14T20:27:10.625597 995 / tcp

Products

Pricing

Contact Us

Vulnerabilities

-1751139831 | 2025-01-03T21:05:50.398161
21 / tcp

89113802 | 2024-12-19T21:36:06.576565
25 / tcp

2020131735 | 2025-01-04T00:46:36.476658
53 / tcp

2020131735 | 2024-12-22T03:38:38.553812
53 / udp

1584412971 | 2025-01-04T11:50:59.753125
80 / tcp

-1083873233 | 2024-12-31T22:55:41.005315
110 / tcp

175038010 | 2024-12-26T20:18:53.203452
143 / tcp

2128602611 | 2025-01-05T16:58:59.208233
443 / tcp

-1212666809 | 2025-01-04T06:23:37.543313
587 / tcp

-811388280 | 2024-12-20T08:18:23.246406
777 / tcp

1117004044 | 2024-12-31T06:31:35.521469
993 / tcp

-1076830913 | 2024-12-14T20:27:10.625597
995 / tcp