GeneralInformation

Hostnames	capitecbank.org cpanel.capitecbank.org cpcalendars.capitecbank.org cpcontacts.capitecbank.org mail.capitecbank.org webdisk.capitecbank.org webmail.capitecbank.org www.capitecbank.org server.livesurf.net www.server.livesurf.net ppsretirement.co.za cpanel.ppsretirement.co.za cpcalendars.ppsretirement.co.za cpcontacts.ppsretirement.co.za mail.ppsretirement.co.za webdisk.ppsretirement.co.za webmail.ppsretirement.co.za www.ppsretirement.co.za capitecbank-org.travelcreek.com www.capitecbank-org.travelcreek.com ppskickstart.travelcreek.com www.ppskickstart.travelcreek.com ppsretirement-coza.travelcreek.com www.ppsretirement-coza.travelcreek.com sahba.co.za.travelcreek.com www.sahba.co.za.travelcreek.com
Domains	capitecbank.org livesurf.net ppsretirement.co.za travelcreek.com
Country	South Africa
City	Johannesburg
Organization	Afrihost Cloud
ISP	Afrihost (Pty) Ltd
ASN	AS37611

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51766	Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.
CVE-2022-37452	Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.
CVE-2022-37451	Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.
CVE-2021-38371	5.0The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.
CVE-2021-27216	6.3Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options.
CVE-2020-8015	7.2A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.
CVE-2020-28026	9.3Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.
CVE-2020-28025	5.0Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory.
CVE-2020-28024	7.5Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF.
CVE-2020-28023	5.0Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client.
CVE-2020-28022	7.5Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands.
CVE-2020-28021	9.0Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command.
CVE-2020-28019	5.0Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA.
CVE-2020-28018	7.5Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL.
CVE-2020-28017	7.5Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption.
CVE-2020-28016	7.2Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because "-F ''" is mishandled by parse_fix_phrase.
CVE-2020-28015	7.2Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. Local users can alter the behavior of root processes because a recipient address can have a newline character.
CVE-2020-28014	5.6Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten.
CVE-2020-28013	7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy.
CVE-2020-28012	7.2Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag.
CVE-2020-28011	7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.
CVE-2020-28010	7.2Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms).
CVE-2020-28009	7.2Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation may be impractical because of the execution time needed to overflow (multiple days).
CVE-2020-28008	7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution.
CVE-2020-28007	7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem.
CVE-2020-12783	5.0Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c.

OpenPorts

21 53 80 443 465 587 993 995 2082 2083 2087 2095 2096 3306

-832061097 | 2024-04-16T16:27:57.218808

21 / tcp

220 ProFTPD Server (ProFTPD) [::ffff:154.0.160.152]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
 CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
 EPRT    EPSV    ALLO*   RNFR    RNTO    DELE    MDTM    RMD     
 XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
 NOOP    FEAT    OPTS    HOST    CLNT    AUTH    CCC*    CONF*   
 ENC*    MIC*    PBSZ    PROT    TYPE    STRU    MODE    RETR    
 STOR    STOU    APPE    REST    ABOR    USER    PASS    ACCT*   
 REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@154.0.160.152
211-Features:
 AUTH TLS
 CCC
 CLNT
 EPRT
 EPSV
 HOST
 MDTM
 MFF modify;UNIX.group;UNIX.mode;
 MFMT
 MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
 PBSZ
 PROT
 REST STREAM
 SIZE
 SSCN
 TVFS
211 End

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:ba:70:1d:e9:b6:59:7c:1e:c1:82:0d:79:ad:94:6c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Oct 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=server.livesurf.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:64:f6:0d:4d:94:69:b3:2f:99:a9:62:7a:b3:
                    75:35:8f:60:f6:1d:e0:21:1a:57:c2:4d:e3:91:93:
                    37:97:0f:a3:78:6a:8d:86:bc:dc:55:75:7d:4b:c9:
                    a6:5d:43:e0:ee:8c:c4:79:7a:d1:09:11:80:48:0f:
                    a3:00:b0:58:8f:7e:49:c1:3b:ec:b4:4e:e4:dd:a6:
                    77:2a:06:5e:a5:e7:b9:cd:82:0a:07:15:0e:84:0b:
                    62:10:23:05:5f:5c:13:09:72:8f:40:3c:8d:59:bd:
                    22:68:73:3a:f7:c8:22:ee:55:01:38:db:d8:47:43:
                    11:69:0b:3b:ed:25:64:69:02:a0:69:33:73:12:c0:
                    94:1c:83:5c:e3:20:d8:59:a2:b7:45:dc:9d:62:33:
                    64:7f:ab:85:10:b6:0d:ca:db:f1:83:5a:63:42:2a:
                    5e:50:38:94:a3:f1:f2:30:8a:f7:f0:81:0e:ed:f4:
                    a7:6f:81:81:c6:0b:f8:d0:03:aa:06:4d:6d:03:3c:
                    19:4a:5a:8a:bd:34:a1:9d:1b:a5:da:9e:b5:ce:0d:
                    28:2d:16:29:06:d5:01:97:09:30:f9:fa:5e:df:7c:
                    52:14:f3:e1:27:eb:6e:4a:67:ff:ab:31:cb:1f:ca:
                    a8:e8:6b:e7:98:ee:a6:cb:fa:b4:10:b9:87:be:39:
                    eb:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                E9:3E:16:D6:FB:AF:CF:74:E9:C1:66:50:EE:A0:55:B8:2B:99:92:2A
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:server.livesurf.net, DNS:www.server.livesurf.net
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct 25 22:38:24.224 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:13:B4:A5:1E:17:08:16:16:00:59:
                                77:F9:23:BC:A2:66:19:4F:A9:C2:3F:F9:5F:C3:35:88:
                                7E:FF:B5:37:2F:02:21:00:BD:20:EA:06:BD:08:37:E9:
                                E6:77:C0:DD:7A:94:B4:FA:1B:E4:B8:20:32:98:44:80:
                                DE:80:39:7E:27:79:C7:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 25 22:38:24.316 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:DA:2F:C8:4A:0A:7A:13:10:B7:ED:A3:
                                8B:DF:D0:58:E7:B1:06:63:D2:B5:BE:F4:AA:07:BF:E1:
                                48:76:4C:F4:02:20:12:EC:B7:B0:C0:EA:0D:D5:E0:BD:
                                03:49:CA:3E:6B:F3:3B:72:96:F1:10:31:38:6D:16:EC:
                                9C:9E:0C:44:0B:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 25 22:38:24.270 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:69:8B:FE:EF:35:80:8C:36:61:E0:31:E9:
                                17:4E:5E:6C:94:64:AD:F6:53:93:CB:67:01:D5:68:CA:
                                84:9B:7A:64:02:21:00:DF:D1:72:28:04:00:D9:85:83:
                                6B:55:89:70:C1:78:EC:26:0A:C4:65:2B:13:E1:79:B6:
                                04:6E:C1:82:36:49:03
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:d1:32:bc:62:ed:4e:ce:c7:b6:bd:7f:73:ac:1f:61:45:5a:
        c1:0b:dc:d5:20:57:87:21:9e:bb:b6:d7:18:a0:63:d0:5b:17:
        9f:3b:0d:cc:99:68:77:3a:b9:69:ae:54:9b:d1:61:be:74:0c:
        63:25:b7:e1:88:4a:97:50:d5:3e:ba:ab:ca:5d:8b:cc:af:6e:
        16:07:96:f4:b4:71:9a:fe:db:28:96:28:ec:0c:7e:f2:f2:04:
        c4:e4:39:37:ac:86:37:5d:cd:4d:5e:0c:42:bf:24:ea:0a:74:
        6b:90:ee:7f:5a:f6:5b:1b:07:c6:57:e9:a0:86:3b:88:cb:91:
        ac:8b:8e:00:db:89:1c:fb:a2:42:2e:4c:b7:23:b0:a4:aa:25:
        fa:ed:ab:35:9d:43:ba:6b:43:0d:1a:db:e6:ce:ed:6b:42:77:
        05:c3:d1:d8:91:fa:e5:e6:73:0b:b8:bd:df:b0:cd:06:15:44:
        67:48:46:ba:44:e4:82:f0:d5:12:e5:17:09:02:ed:2c:67:ea:
        54:0a:40:ed:be:c3:4b:25:e4:7d:5e:2c:d0:29:49:9a:db:08:
        5c:7d:95:2a:73:07:f7:d2:0b:ca:63:7c:5c:4c:da:93:61:15:
        ab:f7:a1:c7:4a:f4:39:21:6c:84:9c:a7:ac:5e:2f:5b:c7:9d:
        b4:9d:d5:a3

-1623301419 | 2024-04-08T17:35:58.998241

53 / tcp

9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.8
Resolver name: server.livesurf.net

-1623301419 | 2024-04-12T15:51:15.500846

53 / udp

9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.8
Resolver name: server.livesurf.net

-278538428 | 2024-04-22T20:21:46.907973

80 / tcp

HTTP/1.1 200 OK
Date: Mon, 22 Apr 2024 20:21:46 GMT
Server: Apache
Vary: Accept-Encoding
Transfer-Encoding: chunked
Content-Type: text/html

-435348087 | 2024-04-22T19:56:48.498868

443 / tcp

HTTP/1.1 301 Moved Permanently
Date: Mon, 22 Apr 2024 19:52:04 GMT
Server: Apache
Location: http://www.capitecbank.co.za
Content-Length: 302
Content-Type: text/html; charset=iso-8859-1

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:62:9f:d6:2a:49:88:6a:3c:aa:e6:c7:78:24:66:34:48:31
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Apr 14 18:10:28 2024 GMT
            Not After : Jul 13 18:10:27 2024 GMT
        Subject: CN=webmail.ppsretirement.co.za
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:e0:27:c5:cf:fe:e4:ba:33:3f:84:d1:ce:09:19:
                    f2:c7:e1:af:41:96:62:bd:6b:73:82:9c:1e:b5:ec:
                    d0:ff:21:79:e9:05:cd:12:dd:ac:fe:d7:ca:9f:ea:
                    cc:66:29:9c:01:ba:da:e9:a6:5d:50:8f:89:99:ba:
                    6c:b7:d5:43:64:13:44:79:d2:53:02:d7:30:87:0c:
                    ca:0a:1e:7f:44:aa:f7:84:8f:a0:4e:1e:47:8d:b4:
                    13:80:b5:13:3f:91:8c:53:6a:35:90:88:a3:a3:be:
                    de:23:a6:2b:8a:cb:b0:0b:51:19:8e:ea:69:5e:af:
                    5c:fb:4a:73:6d:52:a8:39:d2:f6:37:be:5c:95:0a:
                    a7:0a:72:11:71:34:fb:10:1b:c9:0c:b2:9d:f5:79:
                    38:2a:1b:c3:65:fc:eb:7b:b6:87:28:8d:b2:d6:eb:
                    e1:73:98:29:35:1d:69:3a:ea:ed:ee:71:86:b2:64:
                    07:6a:41:dc:20:11:0a:a9:6b:00:2c:d8:f1:fb:e2:
                    97:e8:68:72:70:4c:15:55:4f:81:2d:df:04:6f:cc:
                    08:d4:e3:04:db:bb:27:a7:3c:5e:6d:cc:2d:f9:af:
                    d0:f6:0a:9c:61:95:fb:8a:4c:4d:51:f0:42:e3:4d:
                    96:5b:72:0f:e5:b4:67:34:69:62:a5:57:c4:f3:c5:
                    12:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                3D:AA:A0:E5:40:AF:64:85:FB:9C:AE:4F:2D:77:5D:0B:99:21:0B:08
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:capitecbank-org.travelcreek.com, DNS:capitecbank.org, DNS:cpanel.capitecbank.org, DNS:cpanel.ppsretirement.co.za, DNS:cpcalendars.capitecbank.org, DNS:cpcalendars.ppsretirement.co.za, DNS:cpcontacts.capitecbank.org, DNS:cpcontacts.ppsretirement.co.za, DNS:mail.capitecbank.org, DNS:mail.ppsretirement.co.za, DNS:ppskickstart.travelcreek.com, DNS:ppsretirement-coza.travelcreek.com, DNS:ppsretirement.co.za, DNS:sahba.co.za.travelcreek.com, DNS:webdisk.capitecbank.org, DNS:webdisk.ppsretirement.co.za, DNS:webmail.capitecbank.org, DNS:webmail.ppsretirement.co.za, DNS:www.capitecbank-org.travelcreek.com, DNS:www.capitecbank.org, DNS:www.ppskickstart.travelcreek.com, DNS:www.ppsretirement-coza.travelcreek.com, DNS:www.ppsretirement.co.za, DNS:www.sahba.co.za.travelcreek.com
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Apr 14 19:10:29.180 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:1E:E0:82:AF:E3:22:53:7C:F8:CE:EA:53:
                                73:F1:97:D7:D0:3C:72:53:8A:B9:B1:5E:2D:8C:7E:DB:
                                E0:4C:12:63:02:21:00:B2:C1:17:BA:33:01:88:C1:B4:
                                8F:1A:D5:28:B3:C6:8E:28:ED:62:AE:C2:6D:D1:54:F4:
                                99:8A:BE:12:AF:B9:88
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
                                83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
                    Timestamp : Apr 14 19:10:29.231 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:60:08:2E:98:E9:DA:C5:85:B2:9F:5B:80:
                                B6:2C:58:B7:8B:C5:D7:57:90:96:2C:04:68:43:B5:79:
                                BA:7B:3C:E2:02:21:00:C1:8F:4D:C8:96:03:37:2D:21:
                                0E:CA:AD:D8:79:4F:10:7C:90:55:B6:27:26:31:93:80:
                                56:B4:EE:A2:CB:FD:79
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        41:1d:cb:21:d2:85:9a:cb:e4:ef:9f:cd:b7:79:4f:e2:3b:ab:
        d2:a6:e8:ec:94:80:2c:a7:b7:b3:93:9d:1a:54:cd:4b:5f:0c:
        0c:2e:63:57:8a:d2:d3:ff:48:56:63:a4:b6:98:99:a3:24:7b:
        a4:46:63:a6:39:14:d5:08:24:ed:04:cf:4e:0e:25:43:66:03:
        6a:75:50:fd:c3:5a:54:7d:20:bd:92:e9:6e:bb:d5:3d:5b:72:
        0d:9c:de:fa:16:1b:00:c4:07:94:5a:ba:5d:34:b0:4e:fd:00:
        ac:9a:cf:0e:a1:fb:83:b0:1e:a3:15:ac:ad:31:75:23:4f:fa:
        92:f4:fc:2f:69:3f:82:4a:25:87:9e:9f:7e:e9:1e:bc:d7:6c:
        e6:66:72:50:13:e7:e9:6f:76:a6:83:9d:1c:7f:46:d3:5f:6b:
        03:1d:09:44:85:eb:d2:da:8d:ac:ac:3c:21:d1:f5:e2:45:09:
        5e:db:00:07:84:28:6c:fc:f0:c6:f1:cd:95:dd:eb:db:f7:ff:
        20:0c:9e:01:7e:d0:65:7a:f2:b1:db:6a:79:da:09:d6:00:b0:
        0a:ff:a4:88:7e:c6:d4:b0:49:f3:3d:41:34:4c:5a:02:3c:f4:
        47:18:65:64:a6:d4:cc:36:cb:d5:61:ae:4a:7c:ae:ed:be:5b:
        43:60:b3:c7

1327195470 | 2024-04-18T17:29:08.075421

465 / tcp

220-server.livesurf.net ESMTP Exim 4.93 #2 Thu, 18 Apr 2024 19:28:36 +0200 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-server.livesurf.net Hello 224.67.118.205 [224.67.118.205]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:ba:70:1d:e9:b6:59:7c:1e:c1:82:0d:79:ad:94:6c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Oct 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=server.livesurf.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:64:f6:0d:4d:94:69:b3:2f:99:a9:62:7a:b3:
                    75:35:8f:60:f6:1d:e0:21:1a:57:c2:4d:e3:91:93:
                    37:97:0f:a3:78:6a:8d:86:bc:dc:55:75:7d:4b:c9:
                    a6:5d:43:e0:ee:8c:c4:79:7a:d1:09:11:80:48:0f:
                    a3:00:b0:58:8f:7e:49:c1:3b:ec:b4:4e:e4:dd:a6:
                    77:2a:06:5e:a5:e7:b9:cd:82:0a:07:15:0e:84:0b:
                    62:10:23:05:5f:5c:13:09:72:8f:40:3c:8d:59:bd:
                    22:68:73:3a:f7:c8:22:ee:55:01:38:db:d8:47:43:
                    11:69:0b:3b:ed:25:64:69:02:a0:69:33:73:12:c0:
                    94:1c:83:5c:e3:20:d8:59:a2:b7:45:dc:9d:62:33:
                    64:7f:ab:85:10:b6:0d:ca:db:f1:83:5a:63:42:2a:
                    5e:50:38:94:a3:f1:f2:30:8a:f7:f0:81:0e:ed:f4:
                    a7:6f:81:81:c6:0b:f8:d0:03:aa:06:4d:6d:03:3c:
                    19:4a:5a:8a:bd:34:a1:9d:1b:a5:da:9e:b5:ce:0d:
                    28:2d:16:29:06:d5:01:97:09:30:f9:fa:5e:df:7c:
                    52:14:f3:e1:27:eb:6e:4a:67:ff:ab:31:cb:1f:ca:
                    a8:e8:6b:e7:98:ee:a6:cb:fa:b4:10:b9:87:be:39:
                    eb:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                E9:3E:16:D6:FB:AF:CF:74:E9:C1:66:50:EE:A0:55:B8:2B:99:92:2A
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:server.livesurf.net, DNS:www.server.livesurf.net
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct 25 22:38:24.224 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:13:B4:A5:1E:17:08:16:16:00:59:
                                77:F9:23:BC:A2:66:19:4F:A9:C2:3F:F9:5F:C3:35:88:
                                7E:FF:B5:37:2F:02:21:00:BD:20:EA:06:BD:08:37:E9:
                                E6:77:C0:DD:7A:94:B4:FA:1B:E4:B8:20:32:98:44:80:
                                DE:80:39:7E:27:79:C7:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 25 22:38:24.316 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:DA:2F:C8:4A:0A:7A:13:10:B7:ED:A3:
                                8B:DF:D0:58:E7:B1:06:63:D2:B5:BE:F4:AA:07:BF:E1:
                                48:76:4C:F4:02:20:12:EC:B7:B0:C0:EA:0D:D5:E0:BD:
                                03:49:CA:3E:6B:F3:3B:72:96:F1:10:31:38:6D:16:EC:
                                9C:9E:0C:44:0B:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 25 22:38:24.270 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:69:8B:FE:EF:35:80:8C:36:61:E0:31:E9:
                                17:4E:5E:6C:94:64:AD:F6:53:93:CB:67:01:D5:68:CA:
                                84:9B:7A:64:02:21:00:DF:D1:72:28:04:00:D9:85:83:
                                6B:55:89:70:C1:78:EC:26:0A:C4:65:2B:13:E1:79:B6:
                                04:6E:C1:82:36:49:03
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:d1:32:bc:62:ed:4e:ce:c7:b6:bd:7f:73:ac:1f:61:45:5a:
        c1:0b:dc:d5:20:57:87:21:9e:bb:b6:d7:18:a0:63:d0:5b:17:
        9f:3b:0d:cc:99:68:77:3a:b9:69:ae:54:9b:d1:61:be:74:0c:
        63:25:b7:e1:88:4a:97:50:d5:3e:ba:ab:ca:5d:8b:cc:af:6e:
        16:07:96:f4:b4:71:9a:fe:db:28:96:28:ec:0c:7e:f2:f2:04:
        c4:e4:39:37:ac:86:37:5d:cd:4d:5e:0c:42:bf:24:ea:0a:74:
        6b:90:ee:7f:5a:f6:5b:1b:07:c6:57:e9:a0:86:3b:88:cb:91:
        ac:8b:8e:00:db:89:1c:fb:a2:42:2e:4c:b7:23:b0:a4:aa:25:
        fa:ed:ab:35:9d:43:ba:6b:43:0d:1a:db:e6:ce:ed:6b:42:77:
        05:c3:d1:d8:91:fa:e5:e6:73:0b:b8:bd:df:b0:cd:06:15:44:
        67:48:46:ba:44:e4:82:f0:d5:12:e5:17:09:02:ed:2c:67:ea:
        54:0a:40:ed:be:c3:4b:25:e4:7d:5e:2c:d0:29:49:9a:db:08:
        5c:7d:95:2a:73:07:f7:d2:0b:ca:63:7c:5c:4c:da:93:61:15:
        ab:f7:a1:c7:4a:f4:39:21:6c:84:9c:a7:ac:5e:2f:5b:c7:9d:
        b4:9d:d5:a3

-92198663 | 2024-04-23T06:30:00.942055

587 / tcp

220-server.livesurf.net ESMTP Exim 4.93 #2 Tue, 23 Apr 2024 08:29:06 +0200 
220-We do not authorize the use of this system to transport unsolicited, 
220 and/or bulk e-mail.
250-server.livesurf.net Hello 224.111.106.80 [224.111.106.80]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:ba:70:1d:e9:b6:59:7c:1e:c1:82:0d:79:ad:94:6c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Oct 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=server.livesurf.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:64:f6:0d:4d:94:69:b3:2f:99:a9:62:7a:b3:
                    75:35:8f:60:f6:1d:e0:21:1a:57:c2:4d:e3:91:93:
                    37:97:0f:a3:78:6a:8d:86:bc:dc:55:75:7d:4b:c9:
                    a6:5d:43:e0:ee:8c:c4:79:7a:d1:09:11:80:48:0f:
                    a3:00:b0:58:8f:7e:49:c1:3b:ec:b4:4e:e4:dd:a6:
                    77:2a:06:5e:a5:e7:b9:cd:82:0a:07:15:0e:84:0b:
                    62:10:23:05:5f:5c:13:09:72:8f:40:3c:8d:59:bd:
                    22:68:73:3a:f7:c8:22:ee:55:01:38:db:d8:47:43:
                    11:69:0b:3b:ed:25:64:69:02:a0:69:33:73:12:c0:
                    94:1c:83:5c:e3:20:d8:59:a2:b7:45:dc:9d:62:33:
                    64:7f:ab:85:10:b6:0d:ca:db:f1:83:5a:63:42:2a:
                    5e:50:38:94:a3:f1:f2:30:8a:f7:f0:81:0e:ed:f4:
                    a7:6f:81:81:c6:0b:f8:d0:03:aa:06:4d:6d:03:3c:
                    19:4a:5a:8a:bd:34:a1:9d:1b:a5:da:9e:b5:ce:0d:
                    28:2d:16:29:06:d5:01:97:09:30:f9:fa:5e:df:7c:
                    52:14:f3:e1:27:eb:6e:4a:67:ff:ab:31:cb:1f:ca:
                    a8:e8:6b:e7:98:ee:a6:cb:fa:b4:10:b9:87:be:39:
                    eb:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                E9:3E:16:D6:FB:AF:CF:74:E9:C1:66:50:EE:A0:55:B8:2B:99:92:2A
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:server.livesurf.net, DNS:www.server.livesurf.net
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct 25 22:38:24.224 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:13:B4:A5:1E:17:08:16:16:00:59:
                                77:F9:23:BC:A2:66:19:4F:A9:C2:3F:F9:5F:C3:35:88:
                                7E:FF:B5:37:2F:02:21:00:BD:20:EA:06:BD:08:37:E9:
                                E6:77:C0:DD:7A:94:B4:FA:1B:E4:B8:20:32:98:44:80:
                                DE:80:39:7E:27:79:C7:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 25 22:38:24.316 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:DA:2F:C8:4A:0A:7A:13:10:B7:ED:A3:
                                8B:DF:D0:58:E7:B1:06:63:D2:B5:BE:F4:AA:07:BF:E1:
                                48:76:4C:F4:02:20:12:EC:B7:B0:C0:EA:0D:D5:E0:BD:
                                03:49:CA:3E:6B:F3:3B:72:96:F1:10:31:38:6D:16:EC:
                                9C:9E:0C:44:0B:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 25 22:38:24.270 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:69:8B:FE:EF:35:80:8C:36:61:E0:31:E9:
                                17:4E:5E:6C:94:64:AD:F6:53:93:CB:67:01:D5:68:CA:
                                84:9B:7A:64:02:21:00:DF:D1:72:28:04:00:D9:85:83:
                                6B:55:89:70:C1:78:EC:26:0A:C4:65:2B:13:E1:79:B6:
                                04:6E:C1:82:36:49:03
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:d1:32:bc:62:ed:4e:ce:c7:b6:bd:7f:73:ac:1f:61:45:5a:
        c1:0b:dc:d5:20:57:87:21:9e:bb:b6:d7:18:a0:63:d0:5b:17:
        9f:3b:0d:cc:99:68:77:3a:b9:69:ae:54:9b:d1:61:be:74:0c:
        63:25:b7:e1:88:4a:97:50:d5:3e:ba:ab:ca:5d:8b:cc:af:6e:
        16:07:96:f4:b4:71:9a:fe:db:28:96:28:ec:0c:7e:f2:f2:04:
        c4:e4:39:37:ac:86:37:5d:cd:4d:5e:0c:42:bf:24:ea:0a:74:
        6b:90:ee:7f:5a:f6:5b:1b:07:c6:57:e9:a0:86:3b:88:cb:91:
        ac:8b:8e:00:db:89:1c:fb:a2:42:2e:4c:b7:23:b0:a4:aa:25:
        fa:ed:ab:35:9d:43:ba:6b:43:0d:1a:db:e6:ce:ed:6b:42:77:
        05:c3:d1:d8:91:fa:e5:e6:73:0b:b8:bd:df:b0:cd:06:15:44:
        67:48:46:ba:44:e4:82:f0:d5:12:e5:17:09:02:ed:2c:67:ea:
        54:0a:40:ed:be:c3:4b:25:e4:7d:5e:2c:d0:29:49:9a:db:08:
        5c:7d:95:2a:73:07:f7:d2:0b:ca:63:7c:5c:4c:da:93:61:15:
        ab:f7:a1:c7:4a:f4:39:21:6c:84:9c:a7:ac:5e:2f:5b:c7:9d:
        b4:9d:d5:a3

-1132241830 | 2024-04-04T05:39:55.125656

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:ba:70:1d:e9:b6:59:7c:1e:c1:82:0d:79:ad:94:6c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Oct 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=server.livesurf.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:64:f6:0d:4d:94:69:b3:2f:99:a9:62:7a:b3:
                    75:35:8f:60:f6:1d:e0:21:1a:57:c2:4d:e3:91:93:
                    37:97:0f:a3:78:6a:8d:86:bc:dc:55:75:7d:4b:c9:
                    a6:5d:43:e0:ee:8c:c4:79:7a:d1:09:11:80:48:0f:
                    a3:00:b0:58:8f:7e:49:c1:3b:ec:b4:4e:e4:dd:a6:
                    77:2a:06:5e:a5:e7:b9:cd:82:0a:07:15:0e:84:0b:
                    62:10:23:05:5f:5c:13:09:72:8f:40:3c:8d:59:bd:
                    22:68:73:3a:f7:c8:22:ee:55:01:38:db:d8:47:43:
                    11:69:0b:3b:ed:25:64:69:02:a0:69:33:73:12:c0:
                    94:1c:83:5c:e3:20:d8:59:a2:b7:45:dc:9d:62:33:
                    64:7f:ab:85:10:b6:0d:ca:db:f1:83:5a:63:42:2a:
                    5e:50:38:94:a3:f1:f2:30:8a:f7:f0:81:0e:ed:f4:
                    a7:6f:81:81:c6:0b:f8:d0:03:aa:06:4d:6d:03:3c:
                    19:4a:5a:8a:bd:34:a1:9d:1b:a5:da:9e:b5:ce:0d:
                    28:2d:16:29:06:d5:01:97:09:30:f9:fa:5e:df:7c:
                    52:14:f3:e1:27:eb:6e:4a:67:ff:ab:31:cb:1f:ca:
                    a8:e8:6b:e7:98:ee:a6:cb:fa:b4:10:b9:87:be:39:
                    eb:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                E9:3E:16:D6:FB:AF:CF:74:E9:C1:66:50:EE:A0:55:B8:2B:99:92:2A
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:server.livesurf.net, DNS:www.server.livesurf.net
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct 25 22:38:24.224 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:13:B4:A5:1E:17:08:16:16:00:59:
                                77:F9:23:BC:A2:66:19:4F:A9:C2:3F:F9:5F:C3:35:88:
                                7E:FF:B5:37:2F:02:21:00:BD:20:EA:06:BD:08:37:E9:
                                E6:77:C0:DD:7A:94:B4:FA:1B:E4:B8:20:32:98:44:80:
                                DE:80:39:7E:27:79:C7:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 25 22:38:24.316 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:DA:2F:C8:4A:0A:7A:13:10:B7:ED:A3:
                                8B:DF:D0:58:E7:B1:06:63:D2:B5:BE:F4:AA:07:BF:E1:
                                48:76:4C:F4:02:20:12:EC:B7:B0:C0:EA:0D:D5:E0:BD:
                                03:49:CA:3E:6B:F3:3B:72:96:F1:10:31:38:6D:16:EC:
                                9C:9E:0C:44:0B:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 25 22:38:24.270 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:69:8B:FE:EF:35:80:8C:36:61:E0:31:E9:
                                17:4E:5E:6C:94:64:AD:F6:53:93:CB:67:01:D5:68:CA:
                                84:9B:7A:64:02:21:00:DF:D1:72:28:04:00:D9:85:83:
                                6B:55:89:70:C1:78:EC:26:0A:C4:65:2B:13:E1:79:B6:
                                04:6E:C1:82:36:49:03
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:d1:32:bc:62:ed:4e:ce:c7:b6:bd:7f:73:ac:1f:61:45:5a:
        c1:0b:dc:d5:20:57:87:21:9e:bb:b6:d7:18:a0:63:d0:5b:17:
        9f:3b:0d:cc:99:68:77:3a:b9:69:ae:54:9b:d1:61:be:74:0c:
        63:25:b7:e1:88:4a:97:50:d5:3e:ba:ab:ca:5d:8b:cc:af:6e:
        16:07:96:f4:b4:71:9a:fe:db:28:96:28:ec:0c:7e:f2:f2:04:
        c4:e4:39:37:ac:86:37:5d:cd:4d:5e:0c:42:bf:24:ea:0a:74:
        6b:90:ee:7f:5a:f6:5b:1b:07:c6:57:e9:a0:86:3b:88:cb:91:
        ac:8b:8e:00:db:89:1c:fb:a2:42:2e:4c:b7:23:b0:a4:aa:25:
        fa:ed:ab:35:9d:43:ba:6b:43:0d:1a:db:e6:ce:ed:6b:42:77:
        05:c3:d1:d8:91:fa:e5:e6:73:0b:b8:bd:df:b0:cd:06:15:44:
        67:48:46:ba:44:e4:82:f0:d5:12:e5:17:09:02:ed:2c:67:ea:
        54:0a:40:ed:be:c3:4b:25:e4:7d:5e:2c:d0:29:49:9a:db:08:
        5c:7d:95:2a:73:07:f7:d2:0b:ca:63:7c:5c:4c:da:93:61:15:
        ab:f7:a1:c7:4a:f4:39:21:6c:84:9c:a7:ac:5e:2f:5b:c7:9d:
        b4:9d:d5:a3

-1001764030 | 2024-04-21T13:32:15.457551

995 / tcp

+OK Dovecot ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            52:ba:70:1d:e9:b6:59:7c:1e:c1:82:0d:79:ad:94:6c
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority
        Validity
            Not Before: Oct 25 00:00:00 2023 GMT
            Not After : Oct 24 23:59:59 2024 GMT
        Subject: CN=server.livesurf.net
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c0:64:f6:0d:4d:94:69:b3:2f:99:a9:62:7a:b3:
                    75:35:8f:60:f6:1d:e0:21:1a:57:c2:4d:e3:91:93:
                    37:97:0f:a3:78:6a:8d:86:bc:dc:55:75:7d:4b:c9:
                    a6:5d:43:e0:ee:8c:c4:79:7a:d1:09:11:80:48:0f:
                    a3:00:b0:58:8f:7e:49:c1:3b:ec:b4:4e:e4:dd:a6:
                    77:2a:06:5e:a5:e7:b9:cd:82:0a:07:15:0e:84:0b:
                    62:10:23:05:5f:5c:13:09:72:8f:40:3c:8d:59:bd:
                    22:68:73:3a:f7:c8:22:ee:55:01:38:db:d8:47:43:
                    11:69:0b:3b:ed:25:64:69:02:a0:69:33:73:12:c0:
                    94:1c:83:5c:e3:20:d8:59:a2:b7:45:dc:9d:62:33:
                    64:7f:ab:85:10:b6:0d:ca:db:f1:83:5a:63:42:2a:
                    5e:50:38:94:a3:f1:f2:30:8a:f7:f0:81:0e:ed:f4:
                    a7:6f:81:81:c6:0b:f8:d0:03:aa:06:4d:6d:03:3c:
                    19:4a:5a:8a:bd:34:a1:9d:1b:a5:da:9e:b5:ce:0d:
                    28:2d:16:29:06:d5:01:97:09:30:f9:fa:5e:df:7c:
                    52:14:f3:e1:27:eb:6e:4a:67:ff:ab:31:cb:1f:ca:
                    a8:e8:6b:e7:98:ee:a6:cb:fa:b4:10:b9:87:be:39:
                    eb:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65
            X509v3 Subject Key Identifier: 
                E9:3E:16:D6:FB:AF:CF:74:E9:C1:66:50:EE:A0:55:B8:2B:99:92:2A
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.6449.1.2.2.52
                  CPS: https://sectigo.com/CPS
                Policy: 2.23.140.1.2.1
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl
            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt
                OCSP - URI:http://ocsp.comodoca.com
            X509v3 Subject Alternative Name: 
                DNS:server.livesurf.net, DNS:www.server.livesurf.net
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
                                B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
                    Timestamp : Oct 25 22:38:24.224 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:9C:13:B4:A5:1E:17:08:16:16:00:59:
                                77:F9:23:BC:A2:66:19:4F:A9:C2:3F:F9:5F:C3:35:88:
                                7E:FF:B5:37:2F:02:21:00:BD:20:EA:06:BD:08:37:E9:
                                E6:77:C0:DD:7A:94:B4:FA:1B:E4:B8:20:32:98:44:80:
                                DE:80:39:7E:27:79:C7:AA
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
                                91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
                    Timestamp : Oct 25 22:38:24.316 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:27:DA:2F:C8:4A:0A:7A:13:10:B7:ED:A3:
                                8B:DF:D0:58:E7:B1:06:63:D2:B5:BE:F4:AA:07:BF:E1:
                                48:76:4C:F4:02:20:12:EC:B7:B0:C0:EA:0D:D5:E0:BD:
                                03:49:CA:3E:6B:F3:3B:72:96:F1:10:31:38:6D:16:EC:
                                9C:9E:0C:44:0B:C3
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : Oct 25 22:38:24.270 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:20:69:8B:FE:EF:35:80:8C:36:61:E0:31:E9:
                                17:4E:5E:6C:94:64:AD:F6:53:93:CB:67:01:D5:68:CA:
                                84:9B:7A:64:02:21:00:DF:D1:72:28:04:00:D9:85:83:
                                6B:55:89:70:C1:78:EC:26:0A:C4:65:2B:13:E1:79:B6:
                                04:6E:C1:82:36:49:03
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        72:d1:32:bc:62:ed:4e:ce:c7:b6:bd:7f:73:ac:1f:61:45:5a:
        c1:0b:dc:d5:20:57:87:21:9e:bb:b6:d7:18:a0:63:d0:5b:17:
        9f:3b:0d:cc:99:68:77:3a:b9:69:ae:54:9b:d1:61:be:74:0c:
        63:25:b7:e1:88:4a:97:50:d5:3e:ba:ab:ca:5d:8b:cc:af:6e:
        16:07:96:f4:b4:71:9a:fe:db:28:96:28:ec:0c:7e:f2:f2:04:
        c4:e4:39:37:ac:86:37:5d:cd:4d:5e:0c:42:bf:24:ea:0a:74:
        6b:90:ee:7f:5a:f6:5b:1b:07:c6:57:e9:a0:86:3b:88:cb:91:
        ac:8b:8e:00:db:89:1c:fb:a2:42:2e:4c:b7:23:b0:a4:aa:25:
        fa:ed:ab:35:9d:43:ba:6b:43:0d:1a:db:e6:ce:ed:6b:42:77:
        05:c3:d1:d8:91:fa:e5:e6:73:0b:b8:bd:df:b0:cd:06:15:44:
        67:48:46:ba:44:e4:82:f0:d5:12:e5:17:09:02:ed:2c:67:ea:
        54:0a:40:ed:be:c3:4b:25:e4:7d:5e:2c:d0:29:49:9a:db:08:
        5c:7d:95:2a:73:07:f7:d2:0b:ca:63:7c:5c:4c:da:93:61:15:
        ab:f7:a1:c7:4a:f4:39:21:6c:84:9c:a7:ac:5e:2f:5b:c7:9d:
        b4:9d:d5:a3

-1496996647 | 2024-04-21T02:06:47.868159

2082 / tcp

HTTP/1.1 301 Moved
Content-length: 111
Location: https://154.0.160.152:2083/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

-1284483238 | 2024-04-21T02:06:54.756237

2083 / tcp

HTTP/1.1 301 Moved
Content-length: 116
Location: https://server.livesurf.net:2083
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

39907048 | 2024-04-22T15:43:57.376527

2087 / tcp

HTTP/1.1 301 Moved
Content-length: 116
Location: https://server.livesurf.net:2087
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

<html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://server.livesurf.net:2087"></head><body></body></html>

-1541671869 | 2024-04-15T21:10:22.673052

2095 / tcp

HTTP/1.1 301 Moved
Content-length: 111
Location: https://154.0.160.152:2096/
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private

-416332297 | 2024-04-15T21:10:27.970912

2096 / tcp

HTTP/1.1 301 Moved
Content-length: 116
Location: https://server.livesurf.net:2096
Content-type: text/html; charset="utf-8"
Cache-Control: no-cache, no-store, must-revalidate, private
Pragma: no-cache

1491040117 | 2024-04-19T02:23:00.186375

3306 / tcp

MariaDB:
  Protocol Version: 10
  Version: 10.2.36-MariaDB
  Capabilities: 63486
  Server Language: 8
  Server Status: 2
  Extended Server Capabilities: 33215
  Authentication Plugin: mysql_native_password

154.0.160.152

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-832061097 | 2024-04-16T16:27:57.218808
21 / tcp

-1623301419 | 2024-04-08T17:35:58.998241
53 / tcp

-1623301419 | 2024-04-12T15:51:15.500846
53 / udp

-278538428 | 2024-04-22T20:21:46.907973
80 / tcp

Apache httpd

-435348087 | 2024-04-22T19:56:48.498868
443 / tcp

Apache httpd

1327195470 | 2024-04-18T17:29:08.075421
465 / tcp

Exim smtpd4.93

-92198663 | 2024-04-23T06:30:00.942055
587 / tcp

Exim smtpd4.93

-1132241830 | 2024-04-04T05:39:55.125656
993 / tcp

-1001764030 | 2024-04-21T13:32:15.457551
995 / tcp

-1496996647 | 2024-04-21T02:06:47.868159
2082 / tcp

-1284483238 | 2024-04-21T02:06:54.756237
2083 / tcp

39907048 | 2024-04-22T15:43:57.376527
2087 / tcp

-1541671869 | 2024-04-15T21:10:22.673052
2095 / tcp

-416332297 | 2024-04-15T21:10:27.970912
2096 / tcp

1491040117 | 2024-04-19T02:23:00.186375
3306 / tcp

MariaDB10.2.36-MariaDB

Products

Pricing

Contact Us

154.0.160.152

Last Seen: 2024-04-23

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-832061097 | 2024-04-16T16:27:57.218808 21 / tcp

-1623301419 | 2024-04-08T17:35:58.998241 53 / tcp

-1623301419 | 2024-04-12T15:51:15.500846 53 / udp

-278538428 | 2024-04-22T20:21:46.907973 80 / tcp

Apache httpd

-435348087 | 2024-04-22T19:56:48.498868 443 / tcp

Apache httpd

1327195470 | 2024-04-18T17:29:08.075421 465 / tcp

Exim smtpd4.93

-92198663 | 2024-04-23T06:30:00.942055 587 / tcp

Exim smtpd4.93

-1132241830 | 2024-04-04T05:39:55.125656 993 / tcp

-1001764030 | 2024-04-21T13:32:15.457551 995 / tcp

-1496996647 | 2024-04-21T02:06:47.868159 2082 / tcp

-1284483238 | 2024-04-21T02:06:54.756237 2083 / tcp

39907048 | 2024-04-22T15:43:57.376527 2087 / tcp

-1541671869 | 2024-04-15T21:10:22.673052 2095 / tcp

-416332297 | 2024-04-15T21:10:27.970912 2096 / tcp

1491040117 | 2024-04-19T02:23:00.186375 3306 / tcp

MariaDB10.2.36-MariaDB

Products

Pricing

Contact Us

-832061097 | 2024-04-16T16:27:57.218808
21 / tcp

-1623301419 | 2024-04-08T17:35:58.998241
53 / tcp

-1623301419 | 2024-04-12T15:51:15.500846
53 / udp

-278538428 | 2024-04-22T20:21:46.907973
80 / tcp

-435348087 | 2024-04-22T19:56:48.498868
443 / tcp

1327195470 | 2024-04-18T17:29:08.075421
465 / tcp

-92198663 | 2024-04-23T06:30:00.942055
587 / tcp

-1132241830 | 2024-04-04T05:39:55.125656
993 / tcp

-1001764030 | 2024-04-21T13:32:15.457551
995 / tcp

-1496996647 | 2024-04-21T02:06:47.868159
2082 / tcp

-1284483238 | 2024-04-21T02:06:54.756237
2083 / tcp

39907048 | 2024-04-22T15:43:57.376527
2087 / tcp

-1541671869 | 2024-04-15T21:10:22.673052
2095 / tcp

-416332297 | 2024-04-15T21:10:27.970912
2096 / tcp

1491040117 | 2024-04-19T02:23:00.186375
3306 / tcp