Hostnames |
autoconfig.dafr33k.com autodiscover.dafr33k.com crown.dafr33k.com autoconfig.markplover.com autodiscover.markplover.com autoconfig.strange.gg autodiscover.strange.gg mail.strange.gg |
Domains | dafr33k.com markplover.com strange.gg |
Country | United States |
City | Buffalo |
Organization | Hudson Valley Host |
ISP | HostPapa |
ASN | AS36352 |
-1747632463 | 2024-06-04T03:08:31.39958122 / tcp
SSH-2.0-OpenSSH_7.4 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDB9SCDGx8XHZ4w1+yQAUIh4bG215BuFuRNnKh3Jx4o4wVc lnUSiulTS5GVDgxs/UfBopOAAMXmv9wRweVMim1M9yvBKrwpKnuZpwTBVn+9JjNWFETGFawvj8o5 f/ED2/fovhhUP1D24bgdzRq2pqb/qfKJy1HAJ8Nov4i+8TmgURSB6fi+4J17NaaOQvPG4FGR6pda 69vx+kRdqfjIJZVwe2/+m7VR1ghERypqA0LhtdY2gAydxQO78XQ+MN9HscvGweKSRfet/2AYKE+Z qyR6A/fHAn6bGu+oj96x3GZ1PL4URqoD4eW4gJgWSoTDX7T0J1ChCydmMUkWaeeOVQYL Fingerprint: 6a:b7:a9:52:b9:d5:9c:fe:0d:80:eb:90:ac:f1:09:c3 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group-exchange-sha1 diffie-hellman-group14-sha256 diffie-hellman-group14-sha1 diffie-hellman-group1-sha1 Server Host Key Algorithms: ssh-rsa rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com aes128-cbc aes192-cbc aes256-cbc blowfish-cbc cast128-cbc 3des-cbc MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
-578395823 | 2024-06-10T18:22:12.02789025 / tcp
220-crown.dafr33k.com ESMTP Postcow
-2100514759 | 2024-06-12T03:56:58.62994080 / tcp
HTTP/1.1 301 Moved Permanently Server: nginx Date: Wed, 12 Jun 2024 03:56:58 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://107.175.246.218/
626147375 | 2024-06-14T11:57:21.890488443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Fri, 14 Jun 2024 11:57:21 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Set-Cookie: PHPSESSID=bf5aba44b3bf301f6403ad6971756f13; path=/; secure; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Strict-Transport-Security: max-age=15768000; X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block X-Robots-Tag: none X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-Permitted-Cross-Domain-Policies: none Referrer-Policy: strict-origin
Certificate: Data: Version: 3 (0x2) Serial Number: 03:f8:2b:ad:3c:ea:2a:97:88:1e:53:05:39:64:77:9a:83:79 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: May 29 12:07:34 2024 GMT Not After : Aug 27 12:07:33 2024 GMT Subject: CN=crown.dafr33k.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (4096 bit) Modulus: 00:d5:08:cc:26:bc:6c:1b:22:e6:6a:e1:c7:67:c2: dc:46:07:21:03:a8:a3:eb:f9:61:45:4d:ab:d8:1d: 93:9d:91:2e:2a:2f:a9:da:21:de:cf:48:32:66:4a: 11:04:27:96:41:69:40:43:5b:d8:0d:c8:14:36:cf: 4f:c4:00:bd:7c:c7:d4:28:9c:3b:0d:21:10:cd:05: c6:70:07:54:8d:ec:70:60:97:41:2c:51:06:fa:05: 70:e5:ea:06:b9:e3:dc:8a:2c:33:06:3f:08:44:2e: 4b:ca:a4:7a:f4:0e:57:ba:70:69:65:63:c2:bf:10: f9:27:f9:dc:57:2f:06:46:2e:1e:ff:6d:b6:e4:a3: 84:25:36:b2:19:7b:0c:40:67:1c:88:a0:fd:a5:ce: 94:d4:b9:65:44:4c:98:af:b8:4c:97:9f:c8:e5:69: aa:8e:1d:31:3c:92:ef:40:ac:33:c5:67:d3:c6:74: 4a:26:12:b4:f3:bc:56:b3:ab:52:a0:1d:1c:05:28: 55:3e:5b:67:8b:0b:93:23:20:80:23:67:41:6a:ae: 67:5e:30:09:48:74:40:c7:27:66:86:b8:ae:56:6c: 84:fa:24:62:3e:60:85:b2:dc:6b:a5:12:ae:3b:f3: 2c:0d:48:2c:8e:ff:92:7c:47:68:9e:48:af:6f:f9: 3a:bb:a6:3f:f3:a0:1a:93:a4:47:11:8f:51:00:e5: b6:3f:a6:c4:1b:16:af:e8:10:98:ec:42:b5:a0:56: fc:b0:f1:a1:18:4d:5f:88:38:36:6a:a7:28:d1:6a: 92:22:e4:25:4b:a7:b9:fe:4d:5a:80:e6:23:06:5d: 75:83:58:63:3e:2c:4c:7a:c8:d0:c0:40:a4:e1:95: 0e:27:e7:75:f7:32:fa:19:92:82:e1:7d:1d:fa:80: ba:34:30:eb:20:98:d2:f2:cb:41:7e:97:9d:2f:87: 93:91:a0:2a:5d:7d:a5:65:8b:c6:55:9c:51:e0:41: b4:25:52:c9:77:9c:3b:7f:b2:04:6c:6a:aa:18:c0: 8a:c5:cf:17:15:fd:c3:62:fe:72:85:4c:59:89:9b: 8e:84:10:aa:8e:a3:b6:8c:2b:4a:1f:81:57:5b:f2: 9e:bb:e7:4f:b3:74:5c:a3:5e:8f:bc:cb:46:f3:44: 62:60:1d:75:89:32:c9:59:91:5b:d1:d3:60:29:20: c1:97:c7:35:15:c3:15:d1:74:35:0d:69:62:da:9c: cf:49:0a:87:2a:3d:d7:1f:5b:d5:70:30:bb:87:a4: c1:51:3d:d6:df:a4:af:f6:8f:32:cd:9f:55:c4:bc: e9:ee:f3:23:fc:72:80:33:fb:9b:0f:b7:70:86:ef: 5b:15:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 26:0E:96:51:83:76:9F:95:D3:BE:D7:80:2E:C2:80:E7:A3:60:3D:9B X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:autoconfig.dafr33k.com, DNS:autoconfig.markplover.com, DNS:autoconfig.strange.gg, DNS:autodiscover.dafr33k.com, DNS:autodiscover.markplover.com, DNS:autodiscover.strange.gg, DNS:crown.dafr33k.com, DNS:mail.strange.gg X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : May 29 13:07:34.353 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:D4:63:19:6F:1D:E5:E4:56:DB:BE:E7: 42:93:11:9D:50:4D:6F:19:BF:C5:08:25:10:DC:31:88: 10:9B:3A:5F:78:02:21:00:BF:0F:EC:62:C9:9D:34:A0: 71:E9:36:5C:80:59:1B:2D:F5:6B:35:EB:17:7F:8C:ED: D3:92:33:90:A8:12:24:73 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : May 29 13:07:34.413 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:96:8F:BE:37:52:26:09:55:06:B1:5B: E4:81:9B:F5:76:0C:A5:B5:BD:8C:C4:E0:40:90:BB:EB: 86:C6:89:D1:C1:02:20:42:33:EA:56:AF:4A:76:34:4E: 73:DD:4F:03:F8:C8:01:B6:AD:50:E2:08:76:29:10:B5: 3B:FB:4B:5E:6E:1E:13 Signature Algorithm: sha256WithRSAEncryption Signature Value: 06:36:aa:9c:3e:61:d7:47:ae:81:87:60:4a:a0:be:eb:56:be: 76:0b:26:a0:0a:ad:d4:0b:33:03:8a:4e:5b:6d:eb:69:14:94: 14:95:1e:0c:fb:13:7b:32:0d:67:de:c2:bb:bf:25:d3:4c:15: 74:f2:c4:75:50:68:21:48:d6:20:54:23:50:7e:a4:cd:57:fb: e9:da:f8:a9:71:df:29:6a:2c:f0:db:ef:3a:80:fc:03:5c:2d: a8:76:74:88:e3:b9:26:0e:72:65:d5:d8:de:ed:76:19:63:a9: 45:c9:bc:e3:3b:bd:99:1d:e4:05:c1:31:2a:cf:08:91:c4:d9: 42:d7:c7:8c:3c:9e:85:0a:65:e7:68:7d:bb:52:0b:63:c0:6f: fc:fd:d3:97:b5:67:b0:e2:6f:53:5b:84:33:e4:54:a2:0a:d3: b9:b5:0c:ce:b0:c8:02:47:f2:fe:fc:73:ce:f8:6d:90:01:d9: e2:3e:e8:05:63:cc:43:99:47:f9:a5:1f:19:3c:80:16:ed:b5: cb:f2:75:7a:17:8b:a1:df:d0:5c:5a:b8:50:22:04:7d:20:7b: 84:19:83:10:ec:57:04:a6:f0:3a:5e:1d:0f:fc:80:89:ae:bb: 9d:3c:65:58:ba:fc:5b:ac:6b:00:3b:74:cd:40:b3:f7:71:7b: e6:a1:41:8f
-1003699069 | 2024-06-13T19:05:46.819278465 / tcp
220 crown.dafr33k.com ESMTP Postcow 250-crown.dafr33k.com 250-PIPELINING 250-SIZE 104857600 250-ETRN 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250-SMTPUTF8 250 CHUNKING
Certificate: Data: Version: 3 (0x2) Serial Number: 03:f8:2b:ad:3c:ea:2a:97:88:1e:53:05:39:64:77:9a:83:79 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: May 29 12:07:34 2024 GMT Not After : Aug 27 12:07:33 2024 GMT Subject: CN=crown.dafr33k.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (4096 bit) Modulus: 00:d5:08:cc:26:bc:6c:1b:22:e6:6a:e1:c7:67:c2: dc:46:07:21:03:a8:a3:eb:f9:61:45:4d:ab:d8:1d: 93:9d:91:2e:2a:2f:a9:da:21:de:cf:48:32:66:4a: 11:04:27:96:41:69:40:43:5b:d8:0d:c8:14:36:cf: 4f:c4:00:bd:7c:c7:d4:28:9c:3b:0d:21:10:cd:05: c6:70:07:54:8d:ec:70:60:97:41:2c:51:06:fa:05: 70:e5:ea:06:b9:e3:dc:8a:2c:33:06:3f:08:44:2e: 4b:ca:a4:7a:f4:0e:57:ba:70:69:65:63:c2:bf:10: f9:27:f9:dc:57:2f:06:46:2e:1e:ff:6d:b6:e4:a3: 84:25:36:b2:19:7b:0c:40:67:1c:88:a0:fd:a5:ce: 94:d4:b9:65:44:4c:98:af:b8:4c:97:9f:c8:e5:69: aa:8e:1d:31:3c:92:ef:40:ac:33:c5:67:d3:c6:74: 4a:26:12:b4:f3:bc:56:b3:ab:52:a0:1d:1c:05:28: 55:3e:5b:67:8b:0b:93:23:20:80:23:67:41:6a:ae: 67:5e:30:09:48:74:40:c7:27:66:86:b8:ae:56:6c: 84:fa:24:62:3e:60:85:b2:dc:6b:a5:12:ae:3b:f3: 2c:0d:48:2c:8e:ff:92:7c:47:68:9e:48:af:6f:f9: 3a:bb:a6:3f:f3:a0:1a:93:a4:47:11:8f:51:00:e5: b6:3f:a6:c4:1b:16:af:e8:10:98:ec:42:b5:a0:56: fc:b0:f1:a1:18:4d:5f:88:38:36:6a:a7:28:d1:6a: 92:22:e4:25:4b:a7:b9:fe:4d:5a:80:e6:23:06:5d: 75:83:58:63:3e:2c:4c:7a:c8:d0:c0:40:a4:e1:95: 0e:27:e7:75:f7:32:fa:19:92:82:e1:7d:1d:fa:80: ba:34:30:eb:20:98:d2:f2:cb:41:7e:97:9d:2f:87: 93:91:a0:2a:5d:7d:a5:65:8b:c6:55:9c:51:e0:41: b4:25:52:c9:77:9c:3b:7f:b2:04:6c:6a:aa:18:c0: 8a:c5:cf:17:15:fd:c3:62:fe:72:85:4c:59:89:9b: 8e:84:10:aa:8e:a3:b6:8c:2b:4a:1f:81:57:5b:f2: 9e:bb:e7:4f:b3:74:5c:a3:5e:8f:bc:cb:46:f3:44: 62:60:1d:75:89:32:c9:59:91:5b:d1:d3:60:29:20: c1:97:c7:35:15:c3:15:d1:74:35:0d:69:62:da:9c: cf:49:0a:87:2a:3d:d7:1f:5b:d5:70:30:bb:87:a4: c1:51:3d:d6:df:a4:af:f6:8f:32:cd:9f:55:c4:bc: e9:ee:f3:23:fc:72:80:33:fb:9b:0f:b7:70:86:ef: 5b:15:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 26:0E:96:51:83:76:9F:95:D3:BE:D7:80:2E:C2:80:E7:A3:60:3D:9B X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:autoconfig.dafr33k.com, DNS:autoconfig.markplover.com, DNS:autoconfig.strange.gg, DNS:autodiscover.dafr33k.com, DNS:autodiscover.markplover.com, DNS:autodiscover.strange.gg, DNS:crown.dafr33k.com, DNS:mail.strange.gg X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : May 29 13:07:34.353 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:D4:63:19:6F:1D:E5:E4:56:DB:BE:E7: 42:93:11:9D:50:4D:6F:19:BF:C5:08:25:10:DC:31:88: 10:9B:3A:5F:78:02:21:00:BF:0F:EC:62:C9:9D:34:A0: 71:E9:36:5C:80:59:1B:2D:F5:6B:35:EB:17:7F:8C:ED: D3:92:33:90:A8:12:24:73 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : May 29 13:07:34.413 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:96:8F:BE:37:52:26:09:55:06:B1:5B: E4:81:9B:F5:76:0C:A5:B5:BD:8C:C4:E0:40:90:BB:EB: 86:C6:89:D1:C1:02:20:42:33:EA:56:AF:4A:76:34:4E: 73:DD:4F:03:F8:C8:01:B6:AD:50:E2:08:76:29:10:B5: 3B:FB:4B:5E:6E:1E:13 Signature Algorithm: sha256WithRSAEncryption Signature Value: 06:36:aa:9c:3e:61:d7:47:ae:81:87:60:4a:a0:be:eb:56:be: 76:0b:26:a0:0a:ad:d4:0b:33:03:8a:4e:5b:6d:eb:69:14:94: 14:95:1e:0c:fb:13:7b:32:0d:67:de:c2:bb:bf:25:d3:4c:15: 74:f2:c4:75:50:68:21:48:d6:20:54:23:50:7e:a4:cd:57:fb: e9:da:f8:a9:71:df:29:6a:2c:f0:db:ef:3a:80:fc:03:5c:2d: a8:76:74:88:e3:b9:26:0e:72:65:d5:d8:de:ed:76:19:63:a9: 45:c9:bc:e3:3b:bd:99:1d:e4:05:c1:31:2a:cf:08:91:c4:d9: 42:d7:c7:8c:3c:9e:85:0a:65:e7:68:7d:bb:52:0b:63:c0:6f: fc:fd:d3:97:b5:67:b0:e2:6f:53:5b:84:33:e4:54:a2:0a:d3: b9:b5:0c:ce:b0:c8:02:47:f2:fe:fc:73:ce:f8:6d:90:01:d9: e2:3e:e8:05:63:cc:43:99:47:f9:a5:1f:19:3c:80:16:ed:b5: cb:f2:75:7a:17:8b:a1:df:d0:5c:5a:b8:50:22:04:7d:20:7b: 84:19:83:10:ec:57:04:a6:f0:3a:5e:1d:0f:fc:80:89:ae:bb: 9d:3c:65:58:ba:fc:5b:ac:6b:00:3b:74:cd:40:b3:f7:71:7b: e6:a1:41:8f
-1645171419 | 2024-06-05T03:35:13.809686587 / tcp
220 crown.dafr33k.com ESMTP Postcow\r\n