173.212.252.219
{
"scan_id": 1750863046,
"ip": "173.212.252.219",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "173.212.252.0/23",
"postal_code": "67630",
"coordinates": {
"latitude": "48.9742",
"longitude": "8.1851"
},
"geo_point": "48.9742, 8.1851",
"locale_code": "en",
"continent": "Europe",
"country_code": "FR",
"country_name": "France",
"city": "Lauterbourg"
},
"location_updated_at": "2025-06-24T00:49:46Z",
"asn": {
"number": "AS51167",
"organization": "Contabo GmbH",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "",
"organization": "",
"descr": "",
"_encoding": {
"raw": ""
}
},
"whois_updated_at": "0001-01-01T00:00:00Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-06-24T00:49:46Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-06-24T01:00:45Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-06-24T00:49:46Z"
}
],
"hostnames": [
{
"name": "exchange.dataassociate.co.za",
"last_updated_at": "2025-06-26T00:34:27.40146829Z"
}
],
"services": [
{
"port": 25,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Microsoft Exchange smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:exchange_server",
"part": "a",
"vendor": "microsoft",
"product": "exchange_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 merlin.exchange.local Microsoft ESMTP MAIL Service ready at Mon, 23 Jun 2025 02:54:14 +0200\r\n"
}
},
"cve": [
{
"id": "CVE-1999-1322",
"score": 4.6,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-23T02:54:16.73Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "8.5",
"product": "Microsoft IIS httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:internet_information_services:8.5",
"part": "a",
"vendor": "microsoft",
"product": "internet_information_services",
"version": "8\\.5",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"component": [
"Windows Server",
"IIS:8.5"
],
"headers": {
"content_length": [
"0"
],
"date": [
"Sun, 22 Jun 2025 17:29:00 GMT"
],
"server": [
"Microsoft-IIS/8.5"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "173.212.252.219",
"path": "",
"scheme": "http"
}
},
"status_code": 403
}
},
"cve": [
{
"id": "CVE-2014-4078",
"score": 5.1,
"severity": "medium"
}
],
"url": "http://173.212.252.219/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-22T19:29:01.799Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "8.5",
"product": "Microsoft IIS httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:microsoft:internet_information_services:8.5",
"part": "a",
"vendor": "microsoft",
"product": "internet_information_services",
"version": "8\\.5",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r11.i.lencr.org/"
]
},
"authority_key_id": "c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r11.c.lencr.org/39.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:\n 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0\n Timestamp : Jun 4 05:26:37.550 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:79:42:E8:46:11:15:05:76:17:8E:02:C7:\n A1:E9:2E:4F:DD:C3:DB:6E:82:68:23:18:FF:F6:D9:3B:\n 10:1D:48:A9:02:21:00:F6:3E:9D:9F:82:A6:6A:48:64:\n 67:52:4A:4E:19:E5:60:0D:43:3B:5A:53:19:11:44:36:\n 95:5A:C3:50:64:A1:A1\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:\n 3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A\n Timestamp : Jun 4 05:26:37.608 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:20:5E:7C:EA:E6:FD:D1:D7:0E:C4:67:ED:47:\n 00:0E:AA:E7:D0:EE:D3:50:35:41:34:B5:9E:4A:89:AD:\n 25:49:39:4A:02:21:00:86:6D:B7:84:EC:41:2E:A0:21:\n 0F:E4:47:BD:B2:68:78:FF:69:5E:C1:69:2C:35:08:2F:\n FF:E2:82:60:65:23:E9",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"autodiscover.agirnunco.co.za",
"autodiscover.assetprotect.co.za",
"autodiscover.deviantdesign.co.za",
"autodiscover.jbconsulting.co.za",
"autodiscover.sieffoptom.co.za",
"autodiscover.smart-worx.co.za",
"autodiscover.specsfin.co.za",
"autodiscover.specsfin.com",
"exchange.dataassociate.co.za",
"mail.data-associate.net"
]
},
"subject_key_id": "baa83701cd592e2b27a3325e8ca93dcfac099d17"
},
"fingerprint_md5": "AB79F9EC6D9C970932DDE85F14998ADA",
"fingerprint_sha1": "17FF92F3F73403F38CDE36211D9CF8362AC79E8B",
"fingerprint_sha256": "F3FC32F0459CA34C571F589C314D799ED0480F898F5DD741BD413D3AA8848853",
"issuer": {
"common_name": [
"R11"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R11",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-07-01T16:10:11",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "448861307611863818961541466364497862931366",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304502207942e84611150576178e02c7a1e92e4fddc3db6e82682318fff6d93b101d48a9022100f63e9d9f82a66a486467524a4e19e5600d433b5a5319114436955ac35064a1a1"
},
"timestamp": "2025-06-04T05:26:37.550000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "304502205e7ceae6fdd1d70ec467ed47000eaae7d0eed350354134b59e4a89ad2549394a022100866db784ec412ea0210fe447bdb26878ff695ec1692c35082fffe282606523e9"
},
"timestamp": "2025-06-04T05:26:37.608000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"exchange.dataassociate.co.za"
]
},
"subject_alt_name": {
"dns_names": [
"exchange.dataassociate.co.za",
"autodiscover.agirnunco.co.za",
"autodiscover.assetprotect.co.za",
"autodiscover.deviantdesign.co.za",
"autodiscover.jbconsulting.co.za",
"autodiscover.sieffoptom.co.za",
"autodiscover.smart-worx.co.za",
"autodiscover.specsfin.co.za",
"autodiscover.specsfin.com",
"mail.data-associate.net"
],
"extended_dns_names": [
{
"domain": "dataassociate",
"fld": "dataassociate.co.za",
"subdomain": "exchange",
"tld": "co.za"
},
{
"domain": "agirnunco",
"fld": "agirnunco.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "assetprotect",
"fld": "assetprotect.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "deviantdesign",
"fld": "deviantdesign.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "jbconsulting",
"fld": "jbconsulting.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "sieffoptom",
"fld": "sieffoptom.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "smart-worx",
"fld": "smart-worx.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "specsfin",
"fld": "specsfin.co.za",
"subdomain": "autodiscover",
"tld": "co.za"
},
{
"domain": "specsfin",
"fld": "specsfin.com",
"subdomain": "autodiscover",
"tld": "com"
},
{
"domain": "data-associate",
"fld": "data-associate.net",
"subdomain": "mail",
"tld": "net"
}
]
},
"subject_dn": "/CN=exchange.dataassociate.co.za",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "ff4baf63f40598aafe6ebe7f5e87d3832fe82362aee440565fc246fe5c8a72f9",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 3072,
"modulus": "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"
}
},
"tbs_fingerprint": "3ec91b2841a16f8e8ff5bf4d2909b63e67db6b60a4427df4e08e1cf61a598695",
"tbs_noct_fingerprint": "9bb0dd61569978039a47ebfe321c5c4743a982097dadab29a4516cbca386a022",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2025-09-02T04:28:06",
"not_before": "2025-06-04T04:28:07"
},
"version": 2
},
"fingerprint_sha256": "F3FC32F0459CA34C571F589C314D799ED0480F898F5DD741BD413D3AA8848853",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-2014-4078",
"score": 5.1,
"severity": "medium"
}
],
"url": "http://173.212.252.219:443/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-22T16:29:52.565Z"
},
{
"port": 445,
"protocol": "tcp",
"name": "microsoft-ds",
"version": "",
"product": "Microsoft Windows Server 2008 R2 - 2012 microsoft-ds",
"extra_info": "workgroup: EXCHANGE",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smb": {
"capabilities": {
"dfs_support": true,
"leasing_support": true,
"multicredit_support": true
},
"has_ntlm": true,
"negotiation": {
"authentication_types": [
"1.3.6.1.4.1.311.2.2.30",
"1.2.840.48018.1.2.2",
"1.2.840.113554.1.2.2",
"1.2.840.113554.1.2.2.3",
"1.3.6.1.4.1.311.2.2.10"
],
"capabilities": 7,
"credits": 1,
"dialect_revision": 528,
"flags": 1,
"protocol_id": "AAAAAP5TTUI=",
"security_mode": 3,
"server_guid": "AAAAAAAAAAAAAAAAAAAAACzQmAcZjtxBp8BcWuymVEE=",
"server_start_time": "2025-06-14T23:37:14Z",
"system_time": "2025-06-23T03:08:54Z"
},
"smbv1_support": false,
"version": "2.1.0"
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-23T05:08:56.044Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Microsoft Exchange smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:exchange_server",
"part": "a",
"vendor": "microsoft",
"product": "exchange_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 merlin.exchange.local Microsoft ESMTP MAIL Service ready at Mon, 23 Jun 2025 12:47:46 +0200\r\n"
}
},
"cve": [
{
"id": "CVE-1999-1322",
"score": 4.6,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-23T12:47:47.591Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Microsoft Exchange smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:exchange_server",
"part": "a",
"vendor": "microsoft",
"product": "exchange_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 merlin.exchange.local Microsoft ESMTP MAIL Service ready at Thu, 19 Jun 2025 06:49:57 +0200\r\n"
}
},
"cve": [
{
"id": "CVE-1999-1322",
"score": 4.6,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-19T06:49:58.699Z"
},
{
"port": 2525,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Microsoft Exchange smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:microsoft:exchange_server",
"part": "a",
"vendor": "microsoft",
"product": "exchange_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
},
{
"uri": "cpe:/o:microsoft:windows",
"part": "o",
"vendor": "microsoft",
"product": "windows",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 merlin.exchange.local Microsoft ESMTP MAIL Service ready at Wed, 25 Jun 2025 23:40:07 +0200\r\n"
}
},
"cve": [
{
"id": "CVE-1999-1322",
"score": 4.6,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-25T23:40:09.324Z"
},
{
"port": 5060,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-19T13:17:00.155Z"
}
],
"services_hash": "fc28cf82ea7c03ac81d08f6cf380255d654da7147d23d565b06afdad902c0949",
"last_updated_at": "2025-06-25T23:40:09.324Z",
"banner": [
"smtp",
"http",
"tls",
"smb"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-1322": {
"id": "CVE-1999-1322",
"references": [
"http://marc.info/?l=ntbugtraq&m=91096758513985&w=2",
"http://marc.info/?l=ntbugtraq&m=91133714919229&w=2",
"http://marc.info/?l=ntbugtraq&m=91096758513985&w=2",
"http://marc.info/?l=ntbugtraq&m=91133714919229&w=2"
],
"score": 4.6,
"services": [
"2525/smtp"
],
"severity": "medium",
"summary": "The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains usernames and passwords in plaintext.",
"vector_string": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
"weakness": "NVD-CWE-Other"
},
"CVE-2014-4078": {
"id": "CVE-2014-4078",
"references": [
"http://www.securityfocus.com/bid/70937",
"http://www.securitytracker.com/id/1031194",
"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-076"
],
"score": 5.1,
"services": [
"80/http"
],
"severity": "medium",
"summary": "The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the \"IP Address and Domain Restrictions\" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP request, aka \"IIS Security Feature Bypass Vulnerability.\"",
"vector_string": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
"weakness": "CWE-264"
}
}
}