A.185 53 151 170 185 53 151 171 185 53 151 172 185 53 151 174 185 53 151 189 F3ek7r

185.53.151.170,185.53.151.171,185.53.151.172,185.
53
BIZ SERVE IT
Report generated by Nessus™ Mon, 14 Nov 2022 18:23:35 +0545
TABLE OF CONTENTS
Vulnerabilities by Host
• 185.53.151.170...........................................................................................................................................................4
• 185.53.151.171.........................................................................................................................................................61
• 185.53.151.172.........................................................................................................................................................87
• 185.53.151.174.......................................................................................................................................................113
• 185.53.151.189.......................................................................................................................................................139
Vulnerabilities by Host
185.53.151.170
0 2 4 0 36
CRITICAL HIGH MEDIUM LOW INFO
Scan Information
Start time: Mon Nov 14 18:08:45 2022

End time: Mon Nov 14 18:22:03 2022
Host Information
IP: 185.53.151.170
OS: Microsoft Windows
Vulnerabilities
42873 - SSL Medium Strength Cipher Suites Supported (SWEET32)
Synopsis
The remote service supports the use of medium strength SSL ciphers.
Description
The remote host supports the use of SSL ciphers that offer medium strength encryption. Nessus regards
medium strength as any encryption that uses key lengths at least 64 bits and less than 112 bits, or else that
uses the 3DES encryption suite.
Note that it is considerably easier to circumvent medium strength encryption if the attacker is on the same
physical network.
See Also
https://www.openssl.org/blog/blog/2016/08/24/sweet32/
https://sweet32.info
Solution
Reconfigure the affected application if possible to avoid use of medium strength ciphers.
Risk Factor
Medium
185.53.151.170 4
CVSS v3.0 Base Score
7.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
References
CVE CVE-2016-2183
Plugin Information
Published: 2009/11/23, Modified: 2021/02/03
Plugin Output
tcp/443/www
Medium Strength Ciphers (> 64-bit and < 112-bit key, or 3DES)
Name Code KEX Auth Encryption MAC

---------------------- ---------- --- ---- --------------------- ---
ECDHE-RSA-DES-CBC3-SHA 0xC0, 0x12 ECDH RSA 3DES-CBC(168)
SHA1
DES-CBC3-SHA 0x00, 0x0A RSA RSA 3DES-CBC(168)
SHA1
The fields above are :
{Tenable ciphername}
{Cipher ID code}
Kex={key exchange}
Auth={authentication}
Encrypt={symmetric encryption method}
MAC={message authentication code}
{export flag}
185.53.151.170 5
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
References
CVE CVE-2016-2183
Plugin Information
Plugin Output
tcp/587/smtp
185.53.151.170 6

---------------------- ---------- --- ---- --------------------- ---
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.170 7
51192 - SSL Certificate Cannot Be Trusted
Synopsis
The SSL certificate for this service cannot be trusted.
Description
The server's X.509 certificate cannot be trusted. This situation can occur in three different ways, in which
the chain of trust can be broken, as stated below :
- First, the top of the certificate chain sent by the server might not be descended from a known public
certificate authority. This can occur either when the top of the chain is an unrecognized, self-signed
certificate, or when intermediate certificates are missing that would connect the top of the certificate chain
to a known public certificate authority.
- Second, the certificate chain may contain a certificate that is not valid at the time of the scan. This can
occur either when the scan occurs before one of the certificate's 'notBefore' dates, or after one of the
certificate's 'notAfter' dates.
- Third, the certificate chain may contain a signature that either didn't match the certificate's information
or could not be verified. Bad signatures can be fixed by getting the certificate with the bad signature to be
re-signed by its issuer. Signatures that could not be verified are the result of the certificate's issuer using a
signing algorithm that Nessus either does not support or does not recognize.
If the remote host is a public host in production, any break in the chain makes it more difficult for users
to verify the authenticity and identity of the web server. This could make it easier to carry out man-in-the-
middle attacks against the remote host.
See Also
https://www.itu.int/rec/T-REC-X.509/en
https://en.wikipedia.org/wiki/X.509
Solution
Purchase or generate a proper SSL certificate for this service.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
6.4 (CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N)
185.53.151.170 8
Plugin Information
Plugin Output
tcp/587/smtp
The following certificate was at the top of the certificate

chain sent by the remote host, but it is signed by an unknown
certificate authority :
|-Subject : CN=S85EXC
|-Issuer : CN=S85EXC
185.53.151.170 9
57582 - SSL Self-Signed Certificate
Synopsis
The SSL certificate chain for this service ends in an unrecognized self-signed certificate.
Description
The X.509 certificate chain for this service is not signed by a recognized certificate authority. If the remote
host is a public host in production, this nullifies the use of SSL as anyone could establish a man-in-the-
middle attack against the remote host.
Note that this plugin does not check for certificate chains that end in a certificate that is not self-signed, but
is signed by an unrecognized certificate authority.
Solution
Purchase or generate a proper SSL certificate for this service.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
6.4 (CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N)
Plugin Information
Plugin Output
tcp/587/smtp
The following certificate was found at the top of the certificate

chain sent by the remote host, but is self-signed and was not
found in the list of known certificate authorities :
|-Subject : CN=S85EXC
185.53.151.170 10
104743 - TLS Version 1.0 Protocol Detection
Synopsis
The remote service encrypts traffic using an older version of TLS.
Description
The remote service accepts connections encrypted using TLS 1.0. TLS 1.0 has a number of cryptographic
design flaws. Modern implementations of TLS 1.0 mitigate these problems, but newer versions of TLS like
1.2 and 1.3 are designed against these flaws and should be used whenever possible.
As of March 31, 2020, Endpoints that aren’t enabled for TLS 1.2 and higher will no longer function properly
with major web browsers and major vendors.
PCI DSS v3.2 requires that TLS 1.0 be disabled entirely by June 30, 2018, except for POS POI terminals (and
the SSL/TLS termination points to which they connect) that can be verified as not being susceptible to any
known exploits.
See Also
https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00
Solution
Enable support for TLS 1.2 and 1.3, and disable support for TLS 1.0.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N)
6.1 (CVSS2#AV:N/AC:H/Au:N/C:C/I:P/A:N)
Plugin Information
Plugin Output
tcp/587/smtp
TLSv1 is enabled and the server supports at least one cipher.
185.53.151.170 11
157288 - TLS Version 1.1 Protocol Deprecated
Synopsis
Description
The remote service accepts connections encrypted using TLS 1.1. TLS 1.1 lacks support for current and
recommended cipher suites. Ciphers that support encryption before MAC computation, and authenticated
encryption modes such as GCM cannot be used with TLS 1.1
As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 and higher will no longer function
properly with major web browsers and major vendors.
See Also
https://datatracker.ietf.org/doc/html/rfc8996
http://www.nessus.org/u?c8ae820d
Solution
Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.
Risk Factor
Medium
6.5 (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N)
6.1 (CVSS2#AV:N/AC:H/Au:N/C:C/I:P/A:N)
Plugin Information
Plugin Output
tcp/587/smtp
TLSv1.1 is enabled and the server supports at least one cipher.
185.53.151.170 12
45590 - Common Platform Enumeration (CPE)
Synopsis
It was possible to enumerate CPE names that matched on the remote system.
Description
By using information obtained from a Nessus scan, this plugin reports CPE (Common Platform
Enumeration) matches for various hardware and software products found on a host.
Note that if an official CPE is not available for the product, this plugin computes the best possible CPE
based on the information available from the scan.
See Also
http://cpe.mitre.org/
https://nvd.nist.gov/products/cpe
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
The remote operating system matched the following CPE :
cpe:/o:microsoft:windows -> Microsoft Windows
Following application CPE matched on the remote system :
cpe:/a:microsoft:exchange_server -> Microsoft Exchange Server
185.53.151.170 13
54615 - Device Type
Synopsis
It is possible to guess the remote device type.
Description
Based on the remote operating system, it is possible to determine what the remote system type is (eg: a
printer, router, general-purpose computer, etc).
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : general-purpose

Confidence level : 80
185.53.151.170 14
108804 - Microsoft Exchange Server Detection (Uncredentialed)
Synopsis
The remote host is running an Exchange Server.
Description
One or more Microsoft Exchange servers are listening on the remote host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
Path :
Version : unknown
Source : SMTP
185.53.151.170 15
11219 - Nessus SYN scanner
Synopsis
It is possible to determine which TCP ports are open.
Description
This plugin is a SYN 'half-open' port scanner. It shall be reasonably quick even against a firewalled target.
Note that SYN scans are less intrusive than TCP (full connect) scans against broken services, but they might
cause problems for less robust firewalls and also leave unclosed connections on the remote target, if the
network is loaded.
Solution
Protect your target with an IP filter.
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
Port 80/tcp was found to be open
185.53.151.170 16
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.170 17
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
185.53.151.170 18
19506 - Nessus Scan Information
Synopsis
This plugin displays information about the Nessus scan.
Description
This plugin displays, for each tested host, information about the scan itself :
- The version of the plugin set.

- The type of scanner (Nessus or Nessus Home).
- The version of the Nessus Engine.
- The port scanner(s) used.
- The port range scanned.
- The ping round trip time
- Whether credentialed or third-party patch management checks are possible.
- Whether the display of superseded patches is enabled
- The date of the scan.
- The duration of the scan.
- The number of hosts scanned in parallel.
- The number of checks done in parallel.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Information about this scan :
Nessus version : 10.3.0

Nessus build : 20080
Plugin feed version : 202209080349
Scanner edition used : Nessus
ERROR: Your plugins have not been updated since 2022/9/8

Performing a scan with an older plugin set will yield out-of-date results and
produce an incomplete audit. Please run nessus-update-plugins to get the
185.53.151.170 19
newest vulnerability checks from Nessus.org.
Scanner OS : LINUX
Scanner distribution : ubuntu1404-x86-64
Scan type : Normal
Scan name : 185.53.151.170,185.53.151.171,185.53.151.172,185.53.151.174,185.53.151.189
Scan policy used : Advanced Scan
Scanner IP : 192.168.1.200
Port scanner(s) : nessus_syn_scanner
Port range : default
Ping RTT : 190.693 ms
Thorough tests : no
Experimental tests : no
Plugin debugging enabled : no
Paranoia level : 1
Report verbosity : 1
Safe checks : yes
Optimize the test : yes
Credentialed checks : no
Patch management checks : None
Display superseded patches : yes (supersedence plugin launched)
CGI scanning : disabled
Web application tests : disabled
Max hosts : 100
Max checks : 5
Recv timeout : 5
Backports : None
Allow post-scan editing : Yes
Scan Start Date : 2022/11/14 18:08 +0545
Scan duration : 778 sec
185.53.151.170 20
11936 - OS Identification
Synopsis
It is possible to guess the remote operating system.
Description
Using a combination of remote probes (e.g., TCP/IP, SMB, HTTP, NTP, SNMP, etc.), it is possible to guess
the name of the remote operating system in use. It is also possible sometimes to guess the version of the
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Microsoft Windows

Method : SMTP
Not all fingerprints could give a match. If you think some or all of
the following could be used to identify the host's operating system,
please email them to os-signatures@nessus.org. Be sure to include a
brief description of the host itself, such as the actual operating
system or product / model names.
SMTP:220 S85EXC.pfg.local Microsoft ESMTP MAIL Service ready at Mon, 14 Nov 2022 13:25:39 +0100
SinFP:!:
P1:B11113:F0x12:W8190:O0204ffff:M536:
P2:B11113:F0x12:W8190:O0204ffff0103030801010402:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190300_7_p=587R
SSLcert:!:i/CN:ZeroSSL RSA Domain Secure Site CAi/O:ZeroSSLs/CN:*.poltronafraugroup.com
5b61aebb9d4a6e8306ecc841b786bbfdcd5044a7
i/CN:S85EXCs/CN:S85EXC
e8a07bcc8c43fa069465653372501c150f98d40c
The remote host is running Microsoft Windows
185.53.151.170 21
10919 - Open Port Re-check
Synopsis
Previously open ports are now closed.
Description
One of several ports that were previously open are now closed or unresponsive.
There are several possible reasons for this :
- The scan may have caused a service to freeze or stop running.
- An administrator may have stopped a particular service during the scanning process.
This might be an availability problem related to the following :
- A network outage has been experienced during the scan, and the remote network cannot be reached
anymore by the scanner.
- This scanner may has been blacklisted by the system administrator or by an automatic intrusion
detection / prevention system that detected the scan.
- The remote host is now down, either because a user turned it off during the scan or because a select
denial of service was effective.
In any case, the audit of the remote host might be incomplete and may need to be done again.
Solution
- Increase checks_read_timeout and/or reduce max_checks.
- Disable any IPS during the Nessus scan
Risk Factor
None
References
XREF IAVB:0001-B-0509
Plugin Information
Plugin Output
tcp/0
185.53.151.170 22
Port 587 was detected as being open but is now closed
185.53.151.170 23
54580 - SMTP Authentication Methods
Synopsis
The remote mail server supports authentication.
Description
The remote SMTP server advertises that it supports authentication.
See Also
https://tools.ietf.org/html/rfc4422
Solution
Review the list of methods and whether they're available over an encrypted channel.
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
The following authentication methods are advertised by the SMTP

server without encryption :
GSSAPI
LOGIN
NTLM
185.53.151.170 24
108659 - SMTP Host Information in NTLM SSP
Synopsis
Nessus can obtain information about the host by examining the NTLM SSP message.
Description
Nessus can obtain information about the host by examining the NTLM SSP challenge issued during NTLM
authentication, over STMP.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
Nessus was able to obtain the following information about the host, by
parsing the SMTP server's NTLM SSP message:
Target Name: PFG

NetBIOS Domain Name: PFG
NetBIOS Computer Name: S85EXC
DNS Domain Name: pfg.local
DNS Computer Name: S85EXC.pfg.local
DNS Tree Name: pfg.local
Product Version: 10.0.14393
185.53.151.170 25
10263 - SMTP Server Detection
Synopsis
An SMTP server is listening on the remote port.
Description
The remote host is running a mail (SMTP) server on this port.
Since SMTP servers are the targets of spammers, it is recommended you disable it if you do not use it.
Solution
Disable this service if you do not use it, or filter incoming traffic to this port.
Risk Factor
None
References
XREF IAVT:0001-T-0932
Plugin Information
Plugin Output
tcp/587/smtp
Remote SMTP server banner :
220 S85EXC.pfg.local Microsoft ESMTP MAIL Service ready at Mon, 14 Nov 2022 13:25:39 +0100
185.53.151.170 26
42088 - SMTP Service STARTTLS Command Support
Synopsis
The remote mail service supports encrypting traffic.
Description
The remote SMTP service supports the use of the 'STARTTLS' command to switch from a cleartext to an
encrypted communications channel.
See Also
https://en.wikipedia.org/wiki/STARTTLS
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
Here is the SMTP service's SSL certificate that Nessus was able to
collect after sending a 'STARTTLS' command :
------------------------------ snip ------------------------------

Subject Name:
Common Name: S85EXC
Issuer Name:
Common Name: S85EXC
Serial Number: 64 4A 76 7C 5F 0A C5 8D 4F 2F B2 1E AB 65 80 DF
Version: 3
Signature Algorithm: SHA-256 With RSA Encryption
Not Valid Before: Mar 07 09:37:13 2021 GMT

Not Valid After: Feb 28 09:37:13 2051 GMT
185.53.151.170 27
Public Key Info:
Algorithm: RSA Encryption

Key Length: 4096 bits
Public Key: 00 97 E6 CC 12 5C 42 04 1E DC A1 34 E4 83 14 FE 98 C4 5F AA
43 E6 E7 42 4B F1 C6 D3 26 73 ED 00 73 8C 14 9A CA D1 38 EC
DC 7D 28 FC B1 4B E3 0D E5 31 F4 FD 02 84 3E B4 9F 67 06 29
7A 38 46 32 48 88 4F 88 F8 30 1E 46 C4 45 09 3A 59 E5 BB 28
FD D5 70 DF B4 1D 2D 34 6B 39 1E 6F 74 CF FC 8A 47 03 95 2D
EB 79 94 42 68 AB CE 0B 49 47 86 BE F0 0A B5 BA 59 A2 D9 A2
C3 EB D0 6F 50 71 22 86 D4 D5 73 36 E9 60 D8 5E 6F 5C D4 66
7A 1F F7 9B 1E F3 92 3B B7 61 B2 5C 84 DE 81 A1 0C CC 0C 8F
26 A3 71 67 71 C7 4E E1 70 14 35 6E 40 5F F7 93 38 59 8F 89
E9 F1 A6 4E CB BD D6 22 37 F1 4B 86 BF C8 B9 FC AA 93 97 93
F6 C1 70 8F 70 1E A3 26 DF D4 8D C6 A1 57 02 88 19 51 59 71
A4 A8 AE 22 63 C6 9D 74 78 6C 21 F9 2E 9C 19 10 54 44 CC C2
44 2C 00 93 1C A9 5B 1C A5 F9 DF 3B 49 57 EB 02 B8 E5 0A 34
94 A2 FD 04 99 F2 DC B3 F7 F2 49 1C 52 09 11 20 1C D0 FE EC
47 5E B3 38 A2 75 53 18 16 BA 68 9E BF A6 64 67 3F 22 CA E7
CA 7F C6 54 3B A1 E5 5F EA 8D 40 8C F0 38 DF D1 92 74 B8 2C
19 AA 5B C3 D5 72 0D E3 90 0C 71 99 85 67 00 EE D3 E8 EA 11
01 3B 60 A7 D9 B2 5F BB FB 13 56 47 53 FB 40 DF 92 88 2E AE
85 DD A8 64 DD 7E 05 A7 17 74 A9 B3 83 AC CB 04 09 38 09 C3
16 DA 95 0D 0E 2B 5A F7 F1 27 DF 0F C9 5D 1D 63 69 BC 00 1B
E2 23 7B 9E 09 8A 29 B7 1D 9C 38 30 3D B9 C [...]
185.53.151.170 28
56984 - SSL / TLS Versions Supported
Synopsis
The remote service encrypts communications.
Description
This plugin detects which SSL and TLS versions are supported by the remote service for encrypting
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports TLSv1.2.
185.53.151.170 29
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
This port supports TLSv1.0/TLSv1.1/TLSv1.2.
185.53.151.170 30
10863 - SSL Certificate Information
Synopsis
This plugin displays the SSL certificate.
Description
This plugin connects to every SSL-related port and attempts to extract and dump the X.509 certificate.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Common Name: *.poltronafraugroup.com
Issuer Name:
Country: AT
Organization: ZeroSSL
Common Name: ZeroSSL RSA Domain Secure Site CA
Serial Number: 00 AC 04 35 EF 15 36 80 68 A6 23 96 B8 CB 25 46 ED
Version: 3
Not Valid Before: Jan 26 00:00:00 2022 GMT

Not Valid After: Jan 26 23:59:59 2023 GMT
Public Key Info:

Public Key: 00 C1 19 D1 37 A5 B2 6F DD F9 F7 25 81 8E B0 9C 75 26 B8 F8
C9 51 BD 83 5D 13 0A C8 E4 39 05 B5 80 DE 0A 78 07 11 51 27
51 3B 77 AA 20 96 72 CB CE F2 A2 42 BD FB 0C 9C 0B 51 EA 10
AC FE 4E B5 0B 19 D3 40 1A 2F 95 28 98 68 8E 64 FB 1F 9E 04
D8 60 BB BA 1C 5F B1 8A 3E 7E 0D 93 2E 80 A3 90 89 CC F8 5E
DA 56 9D 42 5D 98 E5 7C 3B FB CE 00 71 00 B4 43 82 4F 64 C6
B5 A2 D8 FC 00 83 B1 30 F4 9D 20 DB 4F 29 95 8A E6 D7 57 96
B5 B1 65 D8 B4 29 6C 60 58 39 F5 7B E5 C1 04 A7 51 A6 CA 66
C8 37 78 0E B0 BE 57 7A DA 28 9E 67 E8 E3 76 68 E7 2B 45 D9
185.53.151.170 31
2E E0 88 0D 8A C9 0F A2 06 16 DB 53 DC 91 CB A7 36 63 B0 8E
25 B2 DF 8B 33 86 55 97 55 58 11 F7 74 8E BB 93 A2 B8 1C 88
B5 0E 86 7E E4 D7 40 3D 30 23 43 B9 5F 8E 3F 09 68 5A 55 CA
3B 0F 8E 0F CA 27 20 0A 64 13 75 D5 28 E2 DC 1C 5F
Exponent: 01 00 01
Signature Length: 512 bytes / 4096 bits

Signature: 00 04 D4 3B 75 38 5D 5E 8E 53 DE DC 99 D3 51 F2 8E 37 93 5D
87 63 6A FA E2 0F 47 9E 9D 25 E3 50 7A F8 FB D7 3F CD 7B F8
17 B0 7B 59 34 AF B6 4A 79 3B 94 BF 64 B7 14 01 F4 93 26 4E
46 DB F8 62 BC 80 DD A2 25 89 01 62 82 C0 BA 65 8E 85 DA 5B
71 65 12 9D 87 5E 29 1B 7E 2E 57 84 03 5E 63 1D E9 2A 43 3B
A7 F3 F6 36 AA B7 D9 99 C3 C3 FE 2D DE 6C D9 4B 74 33 AF 9A
03 37 24 FB 77 B1 99 DB B8 8A CD AB CB 55 18 DB A8 0D 14 80
55 8B 49 74 CF EA D0 D2 52 39 F6 69 1F 32 FA ED 6A 1C E7 17
E0 B7 03 0F 0F F7 00 87 99 [...]
185.53.151.170 32
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
Subject Name:
Common Name: S85EXC
Issuer Name:
Common Name: S85EXC
Serial Number: 64 4A 76 7C 5F 0A C5 8D 4F 2F B2 1E AB 65 80 DF
Version: 3
Not Valid Before: Mar 07 09:37:13 2021 GMT

Not Valid After: Feb 28 09:37:13 2051 GMT
Public Key Info:

Public Key: 00 97 E6 CC 12 5C 42 04 1E DC A1 34 E4 83 14 FE 98 C4 5F AA
43 E6 E7 42 4B F1 C6 D3 26 73 ED 00 73 8C 14 9A CA D1 38 EC
DC 7D 28 FC B1 4B E3 0D E5 31 F4 FD 02 84 3E B4 9F 67 06 29
7A 38 46 32 48 88 4F 88 F8 30 1E 46 C4 45 09 3A 59 E5 BB 28
FD D5 70 DF B4 1D 2D 34 6B 39 1E 6F 74 CF FC 8A 47 03 95 2D
EB 79 94 42 68 AB CE 0B 49 47 86 BE F0 0A B5 BA 59 A2 D9 A2
C3 EB D0 6F 50 71 22 86 D4 D5 73 36 E9 60 D8 5E 6F 5C D4 66
7A 1F F7 9B 1E F3 92 3B B7 61 B2 5C 84 DE 81 A1 0C CC 0C 8F
26 A3 71 67 71 C7 4E E1 70 14 35 6E 40 5F F7 93 38 59 8F 89
E9 F1 A6 4E CB BD D6 22 37 F1 4B 86 BF C8 B9 FC AA 93 97 93
F6 C1 70 8F 70 1E A3 26 DF D4 8D C6 A1 57 02 88 19 51 59 71
185.53.151.170 33
A4 A8 AE 22 63 C6 9D 74 78 6C 21 F9 2E 9C 19 10 54 44 CC C2
44 2C 00 93 1C A9 5B 1C A5 F9 DF 3B 49 57 EB 02 B8 E5 0A 34
94 A2 FD 04 99 F2 DC B3 F7 F2 49 1C 52 09 11 20 1C D0 FE EC
47 5E B3 38 A2 75 53 18 16 BA 68 9E BF A6 64 67 3F 22 CA E7
CA 7F C6 54 3B A1 E5 5F EA 8D 40 8C F0 38 DF D1 92 74 B8 2C
19 AA 5B C3 D5 72 0D E3 90 0C 71 99 85 67 00 EE D3 E8 EA 11
01 3B 60 A7 D9 B2 5F BB FB 13 56 47 53 FB 40 DF 92 88 2E AE
85 DD A8 64 DD 7E 05 A7 17 74 A9 B3 83 AC CB 04 09 38 09 C3
16 DA 95 0D 0E 2B 5A F7 F1 27 DF 0F C9 5D 1D 63 69 BC 00 1B
E2 23 7B 9E 09 8A 29 B7 1D 9C 38 30 3D B9 C2 42 78 54 96 EC
23 B0 EA C3 BD A7 72 BE 95 D8 1E 2D 71 E8 79 D4 F0 40 CC 10
95 40 8B 34 3C 1B 0C 5E 01 4D 65 C8 09 6C B7 62 10 20 31 D2
19 1E [...]
185.53.151.170 34
70544 - SSL Cipher Block Chaining Cipher Suites Supported
Synopsis
The remote service supports the use of SSL Cipher Block Chaining ciphers, which combine previous blocks
with subsequent ones.
Description
The remote host supports the use of SSL ciphers that operate in Cipher Block Chaining (CBC) mode. These
cipher suites offer additional security over Electronic Codebook (ECB) mode, but have the potential to leak
information if used improperly.
See Also
https://www.openssl.org/docs/manmaster/man1/ciphers.html
http://www.nessus.org/u?cc4a822a
https://www.openssl.org/~bodo/tls-cbc.txt
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Here is the list of SSL CBC ciphers supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
High Strength Ciphers (>= 112-bit key)

---------------------- ---------- --- ---- --------------------- ---
ECDHE-RSA-AES128-SHA 0xC0, 0x13 ECDH RSA AES-CBC(128)
SHA1
185.53.151.170 35
SHA1
AES256-SHA 0x00, 0x35 RSA RSA AES-CBC(256)
SHA1
ECDHE-RSA-AES128-SHA256 0xC0, 0x27 ECDH RSA AES-CBC(128)
SHA256
SHA384
RSA-AES128-SHA256 0x00, 0x3C RSA RSA AES-CBC(128)
SHA256
RSA-AES256-SHA256 0x00, 0x3D RSA RSA AES-CBC(256)
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.170 36
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
AES128-SHA 0x00, 0x2F RSA RSA AES-CBC(128)
SHA1
185.53.151.170 37
SHA1
SHA256
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.170 38
21643 - SSL Cipher Suites Supported
Synopsis
The remote service encrypts communications using SSL.
Description
This plugin detects which SSL ciphers are supported by the remote service for encrypting communications.
See Also
https://www.openssl.org/docs/man1.0.2/man1/ciphers.html
http://www.nessus.org/u?e17ffced
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Here is the list of SSL ciphers supported by the remote server :

Each group is reported per SSL Version.
SSL Version : TLSv12


---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
ECDHE-RSA-AES128-SHA256 0xC0, 0x2F ECDH RSA AES-GCM(128)
SHA256
ECDHE-RSA-AES256-SHA384 0xC0, 0x30 ECDH RSA AES-GCM(256)
SHA384
ECDHE-RSA-CHACHA20-POLY1305 0xCC, 0xA8 ECDH RSA ChaCha20-Poly1305(256)
SHA256
185.53.151.170 39
RSA-AES128-SHA256 0x00, 0x9C RSA RSA AES-GCM(128)
SHA256
RSA-AES256-SHA384 0x00, 0x9D RSA RSA AES-GCM(256)
SHA384
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
RSA-AES256-SHA256 0x00, 0x3D RSA RS [...]
185.53.151.170 40
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp



---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA256
SHA384
SHA1
185.53.151.170 41
SHA1
SHA1
SHA256
SHA256
SHA256


---------------------- ---------- --- ---- --------------------- ---
DES-CBC3-SHA 0x00, 0x0A RSA RSA 3DES-CBC(168) [...]
185.53.151.170 42
57041 - SSL Perfect Forward Secrecy Cipher Suites Supported
Synopsis
The remote service supports the use of SSL Perfect Forward Secrecy ciphers, which maintain confidentiality
even if the key is stolen.
Description
The remote host supports the use of SSL ciphers that offer Perfect Forward Secrecy (PFS) encryption. These
cipher suites ensure that recorded SSL traffic cannot be broken at a future date if the server's private key is
compromised.
See Also
https://en.wikipedia.org/wiki/Diffie-Hellman_key_exchange
https://en.wikipedia.org/wiki/Perfect_forward_secrecy
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Here is the list of SSL PFS ciphers supported by the remote server :

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
185.53.151.170 43
SHA256
SHA1
SHA1
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.170 44
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA1
SHA256
{Cipher ID code}
185.53.151.170 45
Kex={key exchange}
{export flag}
185.53.151.170 46
94761 - SSL Root Certification Authority Certificate Information
Synopsis
A root Certification Authority certificate was found at the top of the certificate chain.
Description
The remote service uses an SSL certificate chain that contains a self-signed root Certification Authority
certificate at the top of the chain.
See Also
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/
cc778623(v=ws.10)
Solution
Ensure that use of this root Certification Authority certificate complies with your organization's acceptable
use and security policies.
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
The following root Certification Authority certificate was found :
|-Subject : C=US/ST=New Jersey/L=Jersey City/O=The USERTRUST Network/CN=USERTrust RSA

Certification Authority
|-Issuer : C=US/ST=New Jersey/L=Jersey City/O=The USERTRUST Network/CN=USERTrust RSA
|-Valid From : Feb 01 00:00:00 2010 GMT
|-Valid To : Jan 18 23:59:59 2038 GMT
|-Signature Algorithm : SHA-384 With RSA Encryption
185.53.151.170 47
51891 - SSL Session Resume Supported
Synopsis
The remote host allows resuming SSL sessions.
Description
This script detects whether a host allows resuming SSL sessions by performing a full SSL handshake to
receive a session ID, and then reconnecting with the previously used session ID. If the server accepts the
session ID in the second connection, the server maintains a cache of sessions that can be resumed.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports resuming TLSv1 sessions.
185.53.151.170 48
156899 - SSL/TLS Recommended Cipher Suites
Synopsis
The remote host advertises discouraged SSL/TLS ciphers.
Description
The remote host has open SSL/TLS ports which advertise discouraged cipher suites. It is recommended to
only enable support for the following cipher suites:
TLSv1.3:
- 0x13,0x01 TLS_AES_128_GCM_SHA256
- 0x13,0x03 TLS_CHACHA20_POLY1305_SHA256
TLSv1.2:
- 0xC0,0x2B ECDHE-ECDSA-AES128-GCM-SHA256
- 0xC0,0x2F ECDHE-RSA-AES128-GCM-SHA256
- 0xC0,0x2C ECDHE-ECDSA-AES256-GCM-SHA384
- 0xC0,0x30 ECDHE-RSA-AES256-GCM-SHA384
- 0xCC,0xA9 ECDHE-ECDSA-CHACHA20-POLY1305
- 0xCC,0xA8 ECDHE-RSA-CHACHA20-POLY1305
- 0x00,0x9E DHE-RSA-AES128-GCM-SHA256
- 0x00,0x9F DHE-RSA-AES256-GCM-SHA384
This is the recommended configuration for the vast majority of services, as it is highly secure and
compatible with nearly every client released in the last five (or more) years.
See Also
https://wiki.mozilla.org/Security/Server_Side_TLS
https://ssl-config.mozilla.org/
Solution
Only enable support for recommened cipher suites.
Risk Factor
None
Plugin Information
185.53.151.170 49
Plugin Output
tcp/443/www
The remote host has listening SSL/TLS ports which advertise the discouraged cipher suites outlined
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.170 50
Synopsis
Description
TLSv1.3:
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
185.53.151.170 51
Plugin Output
tcp/587/smtp
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA256
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.170 52
22964 - Service Detection
Synopsis
The remote service could be identified.
Description
Nessus was able to identify the remote service by its banner or by looking at the error message it sends
when it receives an HTTP request.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/80/www
A web server is running on this port.
185.53.151.170 53
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
A TLSv1.2 server answered on this port.
tcp/443/www
A web server is running on this port through TLSv1.2.
185.53.151.170 54
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
An SMTP server is running on this port.
185.53.151.170 55
84821 - TLS ALPN Supported Protocol Enumeration
Synopsis
The remote host supports the TLS ALPN extension.
Description
The remote host supports the TLS ALPN extension. This plugin enumerates the protocols the extension
supports.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
http/1.1
185.53.151.170 56
Synopsis
Description
The remote service accepts connections encrypted using TLS 1.1.

TLS 1.1 lacks support for current and recommended cipher suites.
Ciphers that support encryption before MAC computation, and authenticated encryption modes such as
GCM cannot be used with TLS 1.1
As of March 31, 2020, Endpoints that are not enabled for TLS 1.2 and higher will no longer function
properly with major web browsers and major vendors.
See Also
https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-00
http://www.nessus.org/u?c8ae820d
Solution
Enable support for TLS 1.2 and/or 1.3, and disable support for TLS 1.1.
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
185.53.151.170 57
Synopsis
The remote service encrypts traffic using a version of TLS.
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.170 58
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/587/smtp
185.53.151.170 59
10287 - Traceroute Information
Synopsis
It was possible to obtain traceroute information.
Description
Makes a traceroute to the remote host.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0
For your information, here is the traceroute from 192.168.1.200 to 185.53.151.170 :

192.168.1.200
192.168.1.1
124.41.228.1
202.79.40.129
202.79.40.184
103.225.212.161
103.225.212.145
195.66.227.25
103.225.212.145
195.66.227.25
46.243.33.37
46.243.38.178
185.53.151.170
Hop Count: 12
185.53.151.170 60
185.53.151.171
0 1 0 0 19
Scan Information

End time: Mon Nov 14 18:16:00 2022
Host Information
IP: 185.53.151.171
OS: Microsoft Windows Server 2012 R2
Vulnerabilities
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
185.53.151.171 61
References
CVE CVE-2016-2183
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.171 62
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
cpe:/o:microsoft:windows_server_2012:r2 -> Microsoft Windows Server 2012
185.53.151.171 63
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote device type : unknown

185.53.151.171 64
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.171 65
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0


185.53.151.171 66
Scanner OS : LINUX
Scan type : Normal
Scan name : 185.53.151.170,185.53.151.171,185.53.151.172,185.53.151.174,185.53.151.189
Scanner IP : 192.168.1.200
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 100
Max checks : 5
Recv timeout : 5
Backports : None
Scan Start Date : 2022/11/14 18:08 +0545
185.53.151.171 67
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
Remote operating system : Microsoft Windows Server 2012 R2

Method : MLSinFP

SinFP:!:
P1:B11113:F0x12:W8190:O0204ffff:M536:
P2:B11113:F0x12:W8190:O0204ffff0103030801010402:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190300_7_p=443R
The remote host is running Microsoft Windows Server 2012 R2
185.53.151.171 68
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports TLSv1.3/TLSv1.2.
185.53.151.171 69
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: AT
Version: 3

Public Key Info:

C9 51 BD 83 5D 13 0A C8 E4 39 05 B5 80 DE 0A 78 07 11 51 27
DA 56 9D 42 5D 98 E5 7C 3B FB CE 00 71 00 B4 43 82 4F 64 C6
B5 A2 D8 FC 00 83 B1 30 F4 9D 20 DB 4F 29 95 8A E6 D7 57 96
B5 B1 65 D8 B4 29 6C 60 58 39 F5 7B E5 C1 04 A7 51 A6 CA 66
C8 37 78 0E B0 BE 57 7A DA 28 9E 67 E8 E3 76 68 E7 2B 45 D9
185.53.151.171 70
25 B2 DF 8B 33 86 55 97 55 58 11 F7 74 8E BB 93 A2 B8 1C 88
B5 0E 86 7E E4 D7 40 3D 30 23 43 B9 5F 8E 3F 09 68 5A 55 CA
3B 0F 8E 0F CA 27 20 0A 64 13 75 D5 28 E2 DC 1C 5F
Exponent: 01 00 01

17 B0 7B 59 34 AF B6 4A 79 3B 94 BF 64 B7 14 01 F4 93 26 4E
71 65 12 9D 87 5E 29 1B 7E 2E 57 84 03 5E 63 1D E9 2A 43 3B
E0 B7 03 0F 0F F7 00 87 99 [...]
185.53.151.171 71
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.171 72
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.171 73
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
TLS_AES_128_GCM_SHA256 0x13, 0x01 - - AES-GCM(128)
AEAD
AEAD
TLS_CHACHA20_POLY1305_SHA256 0x13, 0x03 - - ChaCha20-Poly1305(256)
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.171 74
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA256
SHA384
SHA1
ECDHE- [...]
185.53.151.171 75
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
185.53.151.171 76
SHA256
SHA1
SHA1
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.171 77
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Jan 18 23:59:59 2038 GMT
185.53.151.171 78
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.171 79
Synopsis
Description
TLSv1.3:
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
185.53.151.171 80
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.171 81
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
185.53.151.171 82
Synopsis
Description
supports.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
http/1.1
185.53.151.171 83
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.171 84
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.171 85
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

192.168.1.200
192.168.1.1
124.41.228.1
202.79.40.129
202.79.40.184
103.225.212.161
103.225.212.145
195.66.227.25
103.225.212.145
195.66.227.25
46.243.33.37
46.243.38.178
185.53.151.171
Hop Count: 12
185.53.151.171 86
185.53.151.172
0 1 0 0 19
Scan Information

End time: Mon Nov 14 18:15:59 2022
Host Information
IP: 185.53.151.172
Vulnerabilities
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
185.53.151.172 87
References
CVE CVE-2016-2183
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.172 88
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
185.53.151.172 89
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

185.53.151.172 90
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.172 91
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0


185.53.151.172 92
Scanner OS : LINUX
Scan type : Normal
Scan name : 185.53.151.170,185.53.151.171,185.53.151.172,185.53.151.174,185.53.151.189
Scanner IP : 192.168.1.200
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 100
Max checks : 5
Recv timeout : 5
Backports : None
Scan Start Date : 2022/11/14 18:08 +0545
185.53.151.172 93
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : MLSinFP

SinFP:!:
P1:B11113:F0x12:W8190:O0204ffff:M536:
P2:B11113:F0x12:W8190:O0204ffff0103030801010402:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190300_7_p=443R
185.53.151.172 94
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.172 95
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: AT
Version: 3

Public Key Info:

C9 51 BD 83 5D 13 0A C8 E4 39 05 B5 80 DE 0A 78 07 11 51 27
DA 56 9D 42 5D 98 E5 7C 3B FB CE 00 71 00 B4 43 82 4F 64 C6
B5 A2 D8 FC 00 83 B1 30 F4 9D 20 DB 4F 29 95 8A E6 D7 57 96
B5 B1 65 D8 B4 29 6C 60 58 39 F5 7B E5 C1 04 A7 51 A6 CA 66
C8 37 78 0E B0 BE 57 7A DA 28 9E 67 E8 E3 76 68 E7 2B 45 D9
185.53.151.172 96
25 B2 DF 8B 33 86 55 97 55 58 11 F7 74 8E BB 93 A2 B8 1C 88
B5 0E 86 7E E4 D7 40 3D 30 23 43 B9 5F 8E 3F 09 68 5A 55 CA
3B 0F 8E 0F CA 27 20 0A 64 13 75 D5 28 E2 DC 1C 5F
Exponent: 01 00 01

17 B0 7B 59 34 AF B6 4A 79 3B 94 BF 64 B7 14 01 F4 93 26 4E
71 65 12 9D 87 5E 29 1B 7E 2E 57 84 03 5E 63 1D E9 2A 43 3B
E0 B7 03 0F 0F F7 00 87 99 [...]
185.53.151.172 97
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.172 98
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.172 99
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.172 100
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA256
SHA384
SHA1
ECDHE- [...]
185.53.151.172 101
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
185.53.151.172 102
SHA256
SHA1
SHA1
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.172 103
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Jan 18 23:59:59 2038 GMT
185.53.151.172 104
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.172 105
Synopsis
Description
TLSv1.3:
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
185.53.151.172 106
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.172 107
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
185.53.151.172 108
Synopsis
Description
supports.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
http/1.1
185.53.151.172 109
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.172 110
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.172 111
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

192.168.1.200
192.168.1.1
124.41.228.1
202.79.40.129
202.79.40.184
103.225.212.161
103.225.212.145
195.66.227.25
103.225.212.145
195.66.227.25
46.243.33.37
46.243.38.178
185.53.151.172
Hop Count: 12
185.53.151.172 112
185.53.151.174
0 1 0 0 19
Scan Information

End time: Mon Nov 14 18:15:58 2022
Host Information
IP: 185.53.151.174
Vulnerabilities
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
185.53.151.174 113
References
CVE CVE-2016-2183
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.174 114
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
185.53.151.174 115
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

185.53.151.174 116
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.174 117
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0


185.53.151.174 118
Scanner OS : LINUX
Scan type : Normal
Scan name : 185.53.151.170,185.53.151.171,185.53.151.172,185.53.151.174,185.53.151.189
Scanner IP : 192.168.1.200
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 100
Max checks : 5
Recv timeout : 5
Backports : None
Scan Start Date : 2022/11/14 18:08 +0545
185.53.151.174 119
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : MLSinFP

SinFP:!:
P1:B11113:F0x12:W8190:O0204ffff:M536:
P2:B11113:F0x12:W8190:O0204ffff0103030801010402:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190300_7_p=443R
185.53.151.174 120
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.174 121
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: AT
Version: 3

Public Key Info:

C9 51 BD 83 5D 13 0A C8 E4 39 05 B5 80 DE 0A 78 07 11 51 27
DA 56 9D 42 5D 98 E5 7C 3B FB CE 00 71 00 B4 43 82 4F 64 C6
B5 A2 D8 FC 00 83 B1 30 F4 9D 20 DB 4F 29 95 8A E6 D7 57 96
B5 B1 65 D8 B4 29 6C 60 58 39 F5 7B E5 C1 04 A7 51 A6 CA 66
C8 37 78 0E B0 BE 57 7A DA 28 9E 67 E8 E3 76 68 E7 2B 45 D9
185.53.151.174 122
25 B2 DF 8B 33 86 55 97 55 58 11 F7 74 8E BB 93 A2 B8 1C 88
B5 0E 86 7E E4 D7 40 3D 30 23 43 B9 5F 8E 3F 09 68 5A 55 CA
3B 0F 8E 0F CA 27 20 0A 64 13 75 D5 28 E2 DC 1C 5F
Exponent: 01 00 01

17 B0 7B 59 34 AF B6 4A 79 3B 94 BF 64 B7 14 01 F4 93 26 4E
71 65 12 9D 87 5E 29 1B 7E 2E 57 84 03 5E 63 1D E9 2A 43 3B
E0 B7 03 0F 0F F7 00 87 99 [...]
185.53.151.174 123
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.174 124
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.174 125
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.174 126
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA256
SHA384
SHA1
ECDHE- [...]
185.53.151.174 127
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
185.53.151.174 128
SHA256
SHA1
SHA1
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.174 129
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Jan 18 23:59:59 2038 GMT
185.53.151.174 130
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.174 131
Synopsis
Description
TLSv1.3:
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
185.53.151.174 132
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.174 133
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
tcp/443/www
185.53.151.174 134
Synopsis
Description
supports.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
http/1.1
185.53.151.174 135
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.174 136
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.174 137
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

192.168.1.200
192.168.1.1
124.41.228.1
202.79.40.129
202.79.40.184
103.225.212.161
103.225.212.145
195.66.227.25
103.225.212.145
195.66.227.25
46.243.33.37
46.243.38.178
185.53.151.174
Hop Count: 12
185.53.151.174 138
185.53.151.189
1 1 0 0 23
Scan Information

End time: Mon Nov 14 18:23:35 2022
Host Information
IP: 185.53.151.189
Vulnerabilities
20007 - SSL Version 2 and 3 Protocol Detection
Synopsis
The remote service encrypts traffic using a protocol with known weaknesses.
Description
The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are
affected by several cryptographic flaws, including:
- An insecure padding scheme with CBC ciphers.
- Insecure session renegotiation and resumption schemes.
An attacker can exploit these flaws to conduct man-in-the-middle attacks or to decrypt communications
between the affected service and clients.
Although SSL/TLS has a secure means for choosing the highest supported version of the protocol (so
that these versions will be used only if the client or server support nothing better), many web browsers
implement this in an unsafe way that allows an attacker to downgrade a connection (such as in POODLE).
Therefore, it is recommended that these protocols be disabled entirely.
NIST has determined that SSL 3.0 is no longer acceptable for secure communications. As of the date of
enforcement found in PCI DSS v3.1, any version of SSL will not meet the PCI SSC's definition of 'strong
cryptography'.
See Also
185.53.151.189 139
https://www.schneier.com/academic/paperfiles/paper-ssl.pdf
http://www.nessus.org/u?b06c7e95
http://www.nessus.org/u?247c4540
https://www.openssl.org/~bodo/ssl-poodle.pdf
http://www.nessus.org/u?5d15ba70
https://www.imperialviolet.org/2014/10/14/poodle.html
Solution
Consult the application's documentation to disable SSL 2.0 and 3.0.

Use TLS 1.2 (with approved cipher suites) or higher instead.
Risk Factor
Critical
9.8 (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
Plugin Information
Plugin Output
tcp/443/www
- SSLv3 is enabled and the server supports at least one cipher.

Explanation: TLS 1.0 and SSL 3.0 cipher suites may be used with SSLv3

---------------------- ---------- --- ---- --------------------- ---
ECDHE-RSA-DES-CBC3-SHA ECDH RSA 3DES-CBC(168)
SHA1
DES-CBC3-SHA RSA RSA 3DES-CBC(168)
SHA1

---------------------- ---------- --- ---- --------------------- ---
185.53.151.189 140
ECDHE-RSA-AES128-SHA ECDH RSA AES-CBC(128)
SHA1
ECDHE-RSA-AES256-SHA ECDH RSA AES-CBC(256)
SHA1
AES256-SHA RSA RSA AES-CBC(256)
SHA1
ECDHE-RSA-AES128-SHA256 ECDH RSA AES-CBC(128)
SHA256
ECDHE-RSA-AES256-SHA384 ECDH RSA AES-CBC(256)
SHA384
RSA-AES128-SHA256 RSA RSA AES-CBC(128)
SHA256
RSA-AES256-SHA256 RSA RSA AES-CBC(256)
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.189 141
Synopsis
Description
physical network.
See Also
Solution
Risk Factor
Medium
References
CVE CVE-2016-2183
Plugin Information
Plugin Output
tcp/443/www
185.53.151.189 142

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.189 143
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0
185.53.151.189 144
54615 - Device Type
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

185.53.151.189 145
84502 - HSTS Missing From HTTPS Server
Synopsis
The remote web server is not enforcing HSTS.
Description
The remote HTTPS server is not enforcing HTTP Strict Transport Security (HSTS). HSTS is an optional
response header that can be configured on the server to instruct the browser to only communicate via
HTTPS. The lack of HSTS allows downgrade attacks, SSL-stripping man-in-the-middle attacks, and weakens
cookie-hijacking protections.
See Also
Solution
Configure the remote web server to use HSTS.
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
The remote HTTPS server does not send the HTTP

"Strict-Transport-Security" header.
185.53.151.189 146
10107 - HTTP Server Type and Version
Synopsis
A web server is running on the remote host.
Description
This plugin attempts to determine the type and the version of the remote web server.
Solution
n/a
Risk Factor
None
References
XREF IAVT:0001-T-0931
Plugin Information
Plugin Output
tcp/443/www
The remote web server type is :
PRTG
185.53.151.189 147
24260 - HyperText Transfer Protocol (HTTP) Information
Synopsis
Some information about the remote HTTP configuration can be extracted.
Description
This test gives some information about the remote HTTP protocol - the version used, whether HTTP Keep-
Alive and HTTP pipelining are enabled, etc...
This test is informational only and does not denote any security problem.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Response Code : HTTP/1.1 302 Moved Temporarily
Protocol version : HTTP/1.1

SSL : yes
Keep-Alive : no
Options allowed : (Not implemented)
Headers :
Connection: close
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 0
Date: Mon, 14 Nov 2022 12:32:49 GMT
Expires: 0
Cache-Control: no-cache
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: PRTG
Location: /index.htm
Response Body :
185.53.151.189 148
Synopsis
Description
network is loaded.
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.189 149
Synopsis
Description

Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0


185.53.151.189 150
Scanner OS : LINUX
Scan type : Normal
Scan name : 185.53.151.170,185.53.151.171,185.53.151.172,185.53.151.174,185.53.151.189
Scanner IP : 192.168.1.200
Thorough tests : no
Paranoia level : 1
Safe checks : yes
Max hosts : 100
Max checks : 5
Recv timeout : 5
Backports : None
Scan Start Date : 2022/11/14 18:08 +0545
185.53.151.189 151
Synopsis
Description
operating system.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/0

Method : MLSinFP
HTTP:!:Server: PRTG

SinFP:!:
P1:B11113:F0x12:W8190:O0204ffff:M536:
P2:B11113:F0x12:W8190:O0204ffff0103030801010402:M1460:
P3:B00000:F0x00:W0:O0:M0
P4:190300_7_p=443R
185.53.151.189 152
Synopsis
Description
communications.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports TLSv1.3/SSLv3/TLSv1.2.
185.53.151.189 153
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
Subject Name:
Issuer Name:
Country: AT
Version: 3

Public Key Info:

C9 51 BD 83 5D 13 0A C8 E4 39 05 B5 80 DE 0A 78 07 11 51 27
DA 56 9D 42 5D 98 E5 7C 3B FB CE 00 71 00 B4 43 82 4F 64 C6
B5 A2 D8 FC 00 83 B1 30 F4 9D 20 DB 4F 29 95 8A E6 D7 57 96
B5 B1 65 D8 B4 29 6C 60 58 39 F5 7B E5 C1 04 A7 51 A6 CA 66
C8 37 78 0E B0 BE 57 7A DA 28 9E 67 E8 E3 76 68 E7 2B 45 D9
185.53.151.189 154
25 B2 DF 8B 33 86 55 97 55 58 11 F7 74 8E BB 93 A2 B8 1C 88
B5 0E 86 7E E4 D7 40 3D 30 23 43 B9 5F 8E 3F 09 68 5A 55 CA
3B 0F 8E 0F CA 27 20 0A 64 13 75 D5 28 E2 DC 1C 5F
Exponent: 01 00 01

17 B0 7B 59 34 AF B6 4A 79 3B 94 BF 64 B7 14 01 F4 93 26 4E
71 65 12 9D 87 5E 29 1B 7E 2E 57 84 03 5E 63 1D E9 2A 43 3B
E0 B7 03 0F 0F F7 00 87 99 [...]
185.53.151.189 155
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.189 156
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.189 157
Synopsis
Description
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www



---------------------- ---------- --- ---- --------------------- ---
AEAD
AEAD
AEAD


---------------------- ---------- --- ---- --------------------- ---
SHA1
185.53.151.189 158
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA256
SHA256
SHA384
SHA1
ECDHE- [...]
185.53.151.189 159
Synopsis
Description
compromised.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

---------------------- ---------- --- ---- --------------------- ---
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
185.53.151.189 160
SHA256
SHA1
SHA1
SHA256
SHA384
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.189 161
Synopsis
Description
See Also
cc778623(v=ws.10)
Solution
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www

|-Valid To : Jan 18 23:59:59 2038 GMT
185.53.151.189 162
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
This port supports resuming SSLv3 / TLSv1 sessions.
185.53.151.189 163
Synopsis
Description
TLSv1.3:
TLSv1.2:
See Also
Solution
Risk Factor
None
Plugin Information
185.53.151.189 164
Plugin Output
tcp/443/www
below:

---------------------- ---------- --- ---- --------------------- ---
SHA1
SHA1

---------------------- ---------- --- ---- --------------------- ---
SHA256
SHA384
SHA1
SHA1
SHA1
SHA256
SHA384
SHA256
SHA256
{Cipher ID code}
Kex={key exchange}
{export flag}
185.53.151.189 165
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
A web server is running on this port through SSLv3.
tcp/443/www
An SSLv3 server answered on this port.
185.53.151.189 166
Synopsis
Description
supports.
See Also
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
http/1.1
185.53.151.189 167
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.189 168
Synopsis
Description
See Also
Solution
N/A
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
185.53.151.189 169
Synopsis
Description
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
udp/0

192.168.1.200
192.168.1.1
124.41.228.1
202.79.40.129
202.79.40.184
103.225.212.161
103.225.212.145
195.66.227.25
103.225.212.145
195.66.227.25
46.243.33.37
46.243.38.178
185.53.151.189
Hop Count: 12
185.53.151.189 170
10386 - Web Server No 404 Error Code Check
Synopsis
The remote web server does not return 404 error codes.
Description
The remote web server is configured such that it does not return '404 Not Found' error codes when a
nonexistent file is requested, perhaps returning instead a site map, search page or authentication page.
Nessus has enabled some counter measures for this. However, they might be insufficient. If a great
number of security holes are produced for this port, they might not all be accurate.
Solution
n/a
Risk Factor
None
Plugin Information
Plugin Output
tcp/443/www
CGI scanning will be disabled for this host because the host responds
to requests for non-existent URLs with HTTP code 302
rather than 404. The requested URL was :
https://185.53.151.189/JfGU2TjTYPoc.html
185.53.151.189 171

A.185 53 151 170 185 53 151 171 185 53 151 172 185 53 151 174 185 53 151 189 F3ek7r

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

A.185 53 151 170 185 53 151 171 185 53 151 172 185 53 151 174 185 53 151 189 F3ek7r

Uploaded by

Copyright:

Available Formats

185.53.151.170,185.53.151.171,185.53.151.172,185.

Start time: Mon Nov 14 18:08:45 2022

CVSS v2.0 Base Score

Published: 2009/11/23, Modified: 2021/02/03

Name Code KEX Auth Encryption MAC

The fields above are :

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 2009/11/23, Modified: 2021/02/03

Name Code KEX Auth Encryption MAC

The fields above are :

The SSL certificate for this service cannot be trusted.

Purchase or generate a proper SSL certificate for this service.

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 2010/12/15, Modified: 2020/04/27

The following certificate was at the top of the certificate

Purchase or generate a proper SSL certificate for this service.

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 2012/01/17, Modified: 2022/06/14

The following certificate was found at the top of the certificate

The remote service encrypts traffic using an older version of TLS.

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 2017/11/22, Modified: 2020/03/31

TLSv1 is enabled and the server supports at least one cipher.

The remote service encrypts traffic using an older version of TLS.

CVSS v3.0 Base Score

CVSS v2.0 Base Score

Published: 2022/04/04, Modified: 2022/04/11

TLSv1.1 is enabled and the server supports at least one cipher.

Published: 2010/04/21, Modified: 2022/08/22

The remote operating system matched the following CPE :

cpe:/o:microsoft:windows -> Microsoft Windows

Following application CPE matched on the remote system :

cpe:/a:microsoft:exchange_server -> Microsoft Exchange Server

It is possible to guess the remote device type.

Published: 2011/05/23, Modified: 2011/05/23

Remote device type : general-purpose

The remote host is running an Exchange Server.

Published: 2018/04/03, Modified: 2022/08/22

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2022/08/15

Port 80/tcp was found to be open

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2022/08/15

Port 443/tcp was found to be open

It is possible to determine which TCP ports are open.

Protect your target with an IP filter.

Published: 2009/02/04, Modified: 2022/08/15

Port 587/tcp was found to be open

This plugin displays information about the Nessus scan.

- The version of the plugin set.

Published: 2005/08/26, Modified: 2022/06/09

Information about this scan :

Nessus version : 10.3.0

ERROR: Your plugins have not been updated since 2022/9/8

It is possible to guess the remote operating system.

Published: 2003/12/09, Modified: 2022/03/09

Remote operating system : Microsoft Windows