| Hostnames |
excers.com www.excers.com letznav.com ppmdemo.letznav.com www.letznav.com 43.100.168.184.host.secureserver.net prod.sin2.secureserver.net |
| Domains | excers.com letznav.com secureserver.net |
| Country | Singapore |
| City | Singapore |
| Organization | GoDaddy.com, LLC |
| ISP | GoDaddy.com, LLC |
| ASN | AS26496 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2022-37454 | The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface. |
| CVE-2022-31629 | In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications. |
| CVE-2022-31628 | In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop. |
| CVE-2017-8923 | 7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string. |
| CVE-2013-2220 | 7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value. |
| CVE-2007-3205 | 5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin. |
273848703 | 2024-04-08T18:04:25.48571480 / tcp
HTTP/1.1 200 OK Date: Mon, 08 Apr 2024 18:04:25 GMT Server: Apache Upgrade: h2,h2c Connection: Upgrade Last-Modified: Tue, 23 Jan 2024 09:34:12 GMT ETag: "5900c92-7ab-60f99a6232d00" Accept-Ranges: bytes Content-Length: 1963 Vary: Accept-Encoding Cache-Control: no-cache, no-store, must-revalidate Pragma: no-cache Expires: 0 Content-Type: text/html
1176040384 | 2024-04-20T19:59:09.126818443 / tcp
HTTP/1.1 200 OK Date: Sat, 20 Apr 2024 19:54:25 GMT Server: Apache X-Powered-By: PHP/7.3.33 Pragma: no-cache Cache-Control: no-cache, must-revalidate Expires: Sat, 26 Jul 1997 05:00:00 GMT Set-Cookie: PHPSESSID=c0edf38e5ca8303907571278b3c5ad6b; path=/ Upgrade: h2,h2c Connection: Upgrade Vary: Accept-Encoding Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
d4:4a:b3:a6:61:b2:e7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=GoDaddy.com, Inc., OU=http:\/\/certs.godaddy.com\/repository\/, CN=Go Daddy Secure Certificate Authority - G2
Validity
Not Before: Nov 18 19:12:29 2023 GMT
Not After : Dec 19 19:12:29 2024 GMT
Subject: CN=excers.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d9:df:d6:46:b1:39:1b:c2:b4:0c:29:71:bf:34:
e2:4f:50:84:19:3c:b1:db:f4:70:7d:65:cf:e2:0b:
2f:6e:ee:ef:5a:ee:c5:84:2f:4b:e1:07:0a:b4:06:
de:58:35:60:aa:e3:bd:82:0e:98:58:70:2d:a6:03:
39:83:9e:80:62:d0:7c:74:78:ae:fd:2f:2d:2d:11:
76:58:af:26:91:64:76:ea:4c:21:f2:03:06:8b:31:
f0:7a:7c:43:fc:c7:aa:22:ce:61:6b:e9:49:12:88:
fa:3a:0a:2d:db:16:90:72:9f:a7:b2:a1:6f:91:3d:
5a:a1:04:09:f7:4d:bf:b6:08:63:50:76:6d:2c:2e:
cc:34:ee:de:fa:0b:7f:1d:57:97:b9:b8:a2:d8:31:
47:3b:0a:f1:a4:ea:eb:72:4c:48:b9:f7:55:21:39:
33:eb:96:4c:76:56:16:d1:09:e0:8a:e8:6a:d0:4d:
3d:5d:3a:69:42:0c:8b:13:b9:6a:28:64:5b:b3:f8:
fd:28:0d:c3:6e:cb:da:de:26:4f:9f:35:ed:20:7e:
85:0b:81:92:15:91:ab:a1:37:e0:c3:be:9a:dc:56:
43:aa:6a:1d:4b:55:42:da:75:4b:8d:5e:2b:21:6d:
39:37:7b:88:f2:15:7f:e6:dc:84:d2:70:2d:a0:5f:
6d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.godaddy.com/gdig2s1-11949.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114413.1.7.23.1
CPS: http://certificates.godaddy.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.godaddy.com/
CA Issuers - URI:http://certificates.godaddy.com/repository/gdig2.crt
X509v3 Authority Key Identifier:
40:C2:BD:27:8E:CC:34:83:30:A2:33:D7:FB:6C:B3:F0:B4:2C:80:CE
X509v3 Subject Alternative Name:
DNS:letznav.com, DNS:www.letznav.com, DNS:excers.com, DNS:www.excers.com, DNS:ppmdemo.letznav.com
X509v3 Subject Key Identifier:
80:9B:E5:C5:AD:14:DF:C3:87:44:46:96:61:52:EE:1F:17:66:A6:33
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Nov 18 19:12:30.286 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:03:B2:E9:97:B1:B7:24:50:CB:A5:46:AD:
20:21:38:43:70:22:DA:72:7B:44:29:05:00:99:1B:0D:
7D:71:B3:9F:02:20:4B:A1:FB:B0:36:B7:FA:52:20:32:
7B:C8:EF:96:05:26:F3:FD:10:71:4C:DB:4C:7E:6B:47:
C0:16:59:61:D0:42
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Nov 18 19:12:30.445 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:D7:55:6D:85:6E:97:06:1B:6C:94:F6:
C1:3D:2A:6F:F1:C0:14:87:93:52:87:A4:D2:E2:31:C1:
9E:5B:2C:2E:50:02:21:00:85:54:C0:31:19:C4:A9:DB:
46:46:A8:9E:93:B1:BC:08:3D:49:6D:77:3E:AF:ED:3F:
10:75:C8:15:50:EC:BA:70
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70:
91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB
Timestamp : Nov 18 19:12:30.548 2023 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:CF:BE:B7:8F:8C:67:B7:C4:29:5E:43:
FC:6F:09:9E:BB:AB:B7:22:E8:1D:4E:20:69:BC:E5:1C:
7D:4C:63:94:03:02:20:23:77:DC:D7:A4:36:11:C3:2D:
44:2E:E0:AF:0C:F3:1B:90:10:3D:06:CA:84:0C:4A:6A:
4E:80:C9:B3:E2:0A:F7
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
34:ad:b3:18:c6:eb:63:5a:4d:fc:80:3f:ce:f2:e8:22:d0:16:
22:f5:95:39:db:c5:cf:d4:f9:6d:ca:24:8a:b0:4d:3c:f9:f4:
25:20:2f:dc:50:54:60:46:26:b5:44:a2:e1:f4:c1:a5:21:64:
a0:da:af:a1:c4:be:61:e1:9f:51:9c:0a:c6:79:4b:f6:2d:0e:
b3:c5:1d:a9:fd:a3:1c:68:e9:7b:1f:5d:ea:83:33:1b:13:e5:
ba:d8:47:10:f2:38:57:db:bd:54:0b:16:2b:b3:a8:5e:12:ad:
95:59:fd:02:fa:d8:30:b1:1a:7e:23:32:4b:f4:5b:9a:5d:7a:
5f:bf:d2:23:72:5c:b0:67:09:48:c4:cc:52:25:ef:37:29:a0:
3d:de:9f:52:c5:69:e3:5a:51:1c:f8:87:b7:01:65:35:05:f2:
5c:ca:56:2d:81:d4:16:6f:66:bc:28:99:ec:89:24:0f:10:ed:
25:e0:fa:00:40:89:d4:62:6b:32:8f:65:80:88:1a:33:e6:9e:
4d:31:9d:f6:2c:61:47:92:63:c5:36:d9:60:e1:1e:a8:db:0a:
71:11:d0:1d:ef:62:4c:65:1b:3f:e7:0a:ed:62:11:8c:b8:96:
e2:68:2f:f6:73:b8:06:09:03:42:fe:eb:b0:67:16:a5:f3:fa:
3a:b4:b3:b1
-1092201195 | 2024-04-21T23:29:37.744657465 / tcp
220-sg2plzcpnl458810.prod.sin2.secureserver.net ESMTP Exim 4.96.2 #2 Sun, 21 Apr 2024 16:29:31 -0700 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-sg2plzcpnl458810.prod.sin2.secureserver.net Hello abwpg1zafnb.net [224.240.101.141] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-PIPECONNECT 250-AUTH PLAIN LOGIN 250 HELP
262336028 | 2024-04-21T01:01:05.846230587 / tcp
220-sg2plzcpnl458810.prod.sin2.secureserver.net ESMTP Exim 4.96.2 #2 Sat, 20 Apr 2024 18:00:07 -0700 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-sg2plzcpnl458810.prod.sin2.secureserver.net Hello 8c4rxghmv118y3v.org [224.76.122.226] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-PIPECONNECT 250-AUTH PLAIN LOGIN 250-STARTTLS 250 HELP
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7267432516703399672 (0x64db1b5e933aaef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
Validity
Not Before: Feb 16 18:09:08 2024 GMT
Not After : Mar 19 18:09:08 2025 GMT
Subject: CN=*.prod.sin2.secureserver.net
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d8:d0:0d:21:f0:ec:30:95:ad:e0:46:c8:34:93:
d8:98:0e:d8:c8:a3:8f:df:13:5d:8d:7f:c9:13:46:
c8:03:0f:cb:87:ea:01:37:5e:ce:62:bd:e6:c4:d8:
b3:5d:4e:d1:d5:a6:98:c0:d6:75:ca:c3:53:4e:af:
af:3a:ae:21:12:0d:65:f2:f4:7b:be:30:6c:6c:1a:
14:95:75:db:09:99:50:fd:a8:e3:76:33:61:26:1d:
07:89:4a:58:97:60:8c:7d:83:8d:58:f4:2e:a6:2f:
3c:c3:04:27:30:68:b8:2b:08:f1:18:cc:5b:0b:79:
1e:da:98:ed:6b:df:24:39:8a:6b:a8:52:52:03:4b:
61:54:9c:5f:80:33:7f:99:3d:4d:b4:25:98:7c:9a:
cf:5b:cf:03:3a:68:8e:69:72:02:0b:ba:07:d6:34:
d5:07:1f:eb:9f:47:8c:a0:55:d1:68:59:54:58:ea:
45:e0:41:23:15:be:d0:76:ce:2c:36:f7:24:ba:ea:
1f:45:b7:9b:a9:9c:d6:b0:67:80:75:3f:3b:4c:93:
2f:54:4a:22:81:24:e9:33:8f:2a:4b:b9:10:39:df:
d6:54:99:df:cf:66:a7:36:42:30:65:09:d4:54:f2:
7f:41:1f:98:d8:02:67:0f:5f:7d:cd:2f:8f:77:b9:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.starfieldtech.com/sfig2s1-677.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114414.1.7.23.1
CPS: http://certificates.starfieldtech.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.starfieldtech.com/
CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
X509v3 Authority Key Identifier:
25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
X509v3 Subject Alternative Name:
DNS:*.prod.sin2.secureserver.net, DNS:prod.sin2.secureserver.net
X509v3 Subject Key Identifier:
25:CA:B9:7D:3E:16:F5:6C:DE:6E:E7:12:B4:3D:9D:6F:1E:D1:E4:4F
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Feb 16 18:09:08.983 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:63:D7:0F:19:7D:17:58:BD:DB:E8:5C:C5:
36:40:9B:A9:24:47:1B:86:4F:E3:3A:D2:A3:E7:56:6C:
59:F2:C2:35:02:20:6E:7F:2D:13:B1:9A:C2:74:62:12:
0B:EE:B3:7F:12:45:48:43:17:07:55:5F:F3:E3:73:F8:
35:92:66:2E:C8:40
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Feb 16 18:09:09.255 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AA:FC:37:7A:31:D1:10:4A:96:97:F8:
83:0E:1A:35:D4:88:65:D3:CA:8F:90:2A:D9:5F:D4:51:
C9:DB:44:79:BC:02:21:00:93:49:9E:D6:0C:0E:79:5F:
8B:7B:53:65:EA:6D:09:46:0A:6C:4C:00:2F:F3:8F:6B:
D3:B4:A2:30:BD:DB:76:50
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 16 18:09:09.363 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:98:F9:0E:7B:C8:E3:3F:0D:25:36:C0:
5A:AE:F1:B0:69:80:30:91:BF:81:42:DA:2E:53:E6:0E:
C9:05:CF:1C:B7:02:20:6D:CC:9D:DC:30:40:1E:46:60:
F5:DD:13:E1:49:F5:4B:0F:F3:56:74:D5:28:B7:19:6B:
CA:8D:E5:FD:5C:80:C7
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
2c:3d:fe:ba:42:8d:4d:2c:d1:0a:f2:c5:8f:ca:d5:b8:12:ce:
f8:c3:91:99:3c:35:44:7d:fe:4c:0d:10:fb:2a:95:75:cc:3e:
b2:68:af:d6:f1:1f:0a:1a:ed:c0:e1:67:1d:74:5a:b0:3d:ca:
c2:e3:6a:80:21:fd:39:b2:2e:8e:f4:0b:d7:58:53:e8:09:ee:
03:69:8b:01:7b:7e:f3:db:ac:a4:1e:55:26:89:4e:c8:c3:7e:
6e:4e:11:55:c9:23:76:f3:31:f7:51:79:52:2c:b1:86:14:da:
07:10:6d:c4:c9:a5:4a:60:13:61:07:cf:d8:95:42:ed:4e:e7:
f0:31:92:61:27:8c:27:ed:6d:88:bc:df:1f:ea:3b:12:00:f7:
40:b1:72:88:70:eb:e2:20:b1:48:20:0c:b0:61:59:91:f9:a7:
dd:86:7f:b3:9d:f8:dd:72:4b:f8:a7:73:09:78:c2:6f:5c:0d:
0e:a4:b1:b6:a8:4d:c3:3f:9d:92:f5:7f:84:84:5b:6a:6e:ad:
84:06:36:d9:03:b3:80:90:f9:dc:cf:bf:d9:34:8f:e5:93:61:
e5:e1:5b:62:c0:4d:fa:db:c0:79:cd:2f:db:77:f7:07:bb:37:
6d:71:96:58:b1:de:2f:c4:f1:5e:43:2a:4a:a0:b7:f7:7b:55:
bc:ae:94:1f
-1132241830 | 2024-03-30T04:39:46.947037993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7267432516703399672 (0x64db1b5e933aaef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
Validity
Not Before: Feb 16 18:09:08 2024 GMT
Not After : Mar 19 18:09:08 2025 GMT
Subject: CN=*.prod.sin2.secureserver.net
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d8:d0:0d:21:f0:ec:30:95:ad:e0:46:c8:34:93:
d8:98:0e:d8:c8:a3:8f:df:13:5d:8d:7f:c9:13:46:
c8:03:0f:cb:87:ea:01:37:5e:ce:62:bd:e6:c4:d8:
b3:5d:4e:d1:d5:a6:98:c0:d6:75:ca:c3:53:4e:af:
af:3a:ae:21:12:0d:65:f2:f4:7b:be:30:6c:6c:1a:
14:95:75:db:09:99:50:fd:a8:e3:76:33:61:26:1d:
07:89:4a:58:97:60:8c:7d:83:8d:58:f4:2e:a6:2f:
3c:c3:04:27:30:68:b8:2b:08:f1:18:cc:5b:0b:79:
1e:da:98:ed:6b:df:24:39:8a:6b:a8:52:52:03:4b:
61:54:9c:5f:80:33:7f:99:3d:4d:b4:25:98:7c:9a:
cf:5b:cf:03:3a:68:8e:69:72:02:0b:ba:07:d6:34:
d5:07:1f:eb:9f:47:8c:a0:55:d1:68:59:54:58:ea:
45:e0:41:23:15:be:d0:76:ce:2c:36:f7:24:ba:ea:
1f:45:b7:9b:a9:9c:d6:b0:67:80:75:3f:3b:4c:93:
2f:54:4a:22:81:24:e9:33:8f:2a:4b:b9:10:39:df:
d6:54:99:df:cf:66:a7:36:42:30:65:09:d4:54:f2:
7f:41:1f:98:d8:02:67:0f:5f:7d:cd:2f:8f:77:b9:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.starfieldtech.com/sfig2s1-677.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114414.1.7.23.1
CPS: http://certificates.starfieldtech.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.starfieldtech.com/
CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
X509v3 Authority Key Identifier:
25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
X509v3 Subject Alternative Name:
DNS:*.prod.sin2.secureserver.net, DNS:prod.sin2.secureserver.net
X509v3 Subject Key Identifier:
25:CA:B9:7D:3E:16:F5:6C:DE:6E:E7:12:B4:3D:9D:6F:1E:D1:E4:4F
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Feb 16 18:09:08.983 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:63:D7:0F:19:7D:17:58:BD:DB:E8:5C:C5:
36:40:9B:A9:24:47:1B:86:4F:E3:3A:D2:A3:E7:56:6C:
59:F2:C2:35:02:20:6E:7F:2D:13:B1:9A:C2:74:62:12:
0B:EE:B3:7F:12:45:48:43:17:07:55:5F:F3:E3:73:F8:
35:92:66:2E:C8:40
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Feb 16 18:09:09.255 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AA:FC:37:7A:31:D1:10:4A:96:97:F8:
83:0E:1A:35:D4:88:65:D3:CA:8F:90:2A:D9:5F:D4:51:
C9:DB:44:79:BC:02:21:00:93:49:9E:D6:0C:0E:79:5F:
8B:7B:53:65:EA:6D:09:46:0A:6C:4C:00:2F:F3:8F:6B:
D3:B4:A2:30:BD:DB:76:50
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 16 18:09:09.363 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:98:F9:0E:7B:C8:E3:3F:0D:25:36:C0:
5A:AE:F1:B0:69:80:30:91:BF:81:42:DA:2E:53:E6:0E:
C9:05:CF:1C:B7:02:20:6D:CC:9D:DC:30:40:1E:46:60:
F5:DD:13:E1:49:F5:4B:0F:F3:56:74:D5:28:B7:19:6B:
CA:8D:E5:FD:5C:80:C7
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
2c:3d:fe:ba:42:8d:4d:2c:d1:0a:f2:c5:8f:ca:d5:b8:12:ce:
f8:c3:91:99:3c:35:44:7d:fe:4c:0d:10:fb:2a:95:75:cc:3e:
b2:68:af:d6:f1:1f:0a:1a:ed:c0:e1:67:1d:74:5a:b0:3d:ca:
c2:e3:6a:80:21:fd:39:b2:2e:8e:f4:0b:d7:58:53:e8:09:ee:
03:69:8b:01:7b:7e:f3:db:ac:a4:1e:55:26:89:4e:c8:c3:7e:
6e:4e:11:55:c9:23:76:f3:31:f7:51:79:52:2c:b1:86:14:da:
07:10:6d:c4:c9:a5:4a:60:13:61:07:cf:d8:95:42:ed:4e:e7:
f0:31:92:61:27:8c:27:ed:6d:88:bc:df:1f:ea:3b:12:00:f7:
40:b1:72:88:70:eb:e2:20:b1:48:20:0c:b0:61:59:91:f9:a7:
dd:86:7f:b3:9d:f8:dd:72:4b:f8:a7:73:09:78:c2:6f:5c:0d:
0e:a4:b1:b6:a8:4d:c3:3f:9d:92:f5:7f:84:84:5b:6a:6e:ad:
84:06:36:d9:03:b3:80:90:f9:dc:cf:bf:d9:34:8f:e5:93:61:
e5:e1:5b:62:c0:4d:fa:db:c0:79:cd:2f:db:77:f7:07:bb:37:
6d:71:96:58:b1:de:2f:c4:f1:5e:43:2a:4a:a0:b7:f7:7b:55:
bc:ae:94:1f
-1001764030 | 2024-04-09T07:55:57.896006995 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN .
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7267432516703399672 (0x64db1b5e933aaef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
Validity
Not Before: Feb 16 18:09:08 2024 GMT
Not After : Mar 19 18:09:08 2025 GMT
Subject: CN=*.prod.sin2.secureserver.net
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d8:d0:0d:21:f0:ec:30:95:ad:e0:46:c8:34:93:
d8:98:0e:d8:c8:a3:8f:df:13:5d:8d:7f:c9:13:46:
c8:03:0f:cb:87:ea:01:37:5e:ce:62:bd:e6:c4:d8:
b3:5d:4e:d1:d5:a6:98:c0:d6:75:ca:c3:53:4e:af:
af:3a:ae:21:12:0d:65:f2:f4:7b:be:30:6c:6c:1a:
14:95:75:db:09:99:50:fd:a8:e3:76:33:61:26:1d:
07:89:4a:58:97:60:8c:7d:83:8d:58:f4:2e:a6:2f:
3c:c3:04:27:30:68:b8:2b:08:f1:18:cc:5b:0b:79:
1e:da:98:ed:6b:df:24:39:8a:6b:a8:52:52:03:4b:
61:54:9c:5f:80:33:7f:99:3d:4d:b4:25:98:7c:9a:
cf:5b:cf:03:3a:68:8e:69:72:02:0b:ba:07:d6:34:
d5:07:1f:eb:9f:47:8c:a0:55:d1:68:59:54:58:ea:
45:e0:41:23:15:be:d0:76:ce:2c:36:f7:24:ba:ea:
1f:45:b7:9b:a9:9c:d6:b0:67:80:75:3f:3b:4c:93:
2f:54:4a:22:81:24:e9:33:8f:2a:4b:b9:10:39:df:
d6:54:99:df:cf:66:a7:36:42:30:65:09:d4:54:f2:
7f:41:1f:98:d8:02:67:0f:5f:7d:cd:2f:8f:77:b9:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.starfieldtech.com/sfig2s1-677.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114414.1.7.23.1
CPS: http://certificates.starfieldtech.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.starfieldtech.com/
CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
X509v3 Authority Key Identifier:
25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
X509v3 Subject Alternative Name:
DNS:*.prod.sin2.secureserver.net, DNS:prod.sin2.secureserver.net
X509v3 Subject Key Identifier:
25:CA:B9:7D:3E:16:F5:6C:DE:6E:E7:12:B4:3D:9D:6F:1E:D1:E4:4F
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Feb 16 18:09:08.983 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:63:D7:0F:19:7D:17:58:BD:DB:E8:5C:C5:
36:40:9B:A9:24:47:1B:86:4F:E3:3A:D2:A3:E7:56:6C:
59:F2:C2:35:02:20:6E:7F:2D:13:B1:9A:C2:74:62:12:
0B:EE:B3:7F:12:45:48:43:17:07:55:5F:F3:E3:73:F8:
35:92:66:2E:C8:40
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Feb 16 18:09:09.255 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AA:FC:37:7A:31:D1:10:4A:96:97:F8:
83:0E:1A:35:D4:88:65:D3:CA:8F:90:2A:D9:5F:D4:51:
C9:DB:44:79:BC:02:21:00:93:49:9E:D6:0C:0E:79:5F:
8B:7B:53:65:EA:6D:09:46:0A:6C:4C:00:2F:F3:8F:6B:
D3:B4:A2:30:BD:DB:76:50
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 16 18:09:09.363 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:98:F9:0E:7B:C8:E3:3F:0D:25:36:C0:
5A:AE:F1:B0:69:80:30:91:BF:81:42:DA:2E:53:E6:0E:
C9:05:CF:1C:B7:02:20:6D:CC:9D:DC:30:40:1E:46:60:
F5:DD:13:E1:49:F5:4B:0F:F3:56:74:D5:28:B7:19:6B:
CA:8D:E5:FD:5C:80:C7
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
2c:3d:fe:ba:42:8d:4d:2c:d1:0a:f2:c5:8f:ca:d5:b8:12:ce:
f8:c3:91:99:3c:35:44:7d:fe:4c:0d:10:fb:2a:95:75:cc:3e:
b2:68:af:d6:f1:1f:0a:1a:ed:c0:e1:67:1d:74:5a:b0:3d:ca:
c2:e3:6a:80:21:fd:39:b2:2e:8e:f4:0b:d7:58:53:e8:09:ee:
03:69:8b:01:7b:7e:f3:db:ac:a4:1e:55:26:89:4e:c8:c3:7e:
6e:4e:11:55:c9:23:76:f3:31:f7:51:79:52:2c:b1:86:14:da:
07:10:6d:c4:c9:a5:4a:60:13:61:07:cf:d8:95:42:ed:4e:e7:
f0:31:92:61:27:8c:27:ed:6d:88:bc:df:1f:ea:3b:12:00:f7:
40:b1:72:88:70:eb:e2:20:b1:48:20:0c:b0:61:59:91:f9:a7:
dd:86:7f:b3:9d:f8:dd:72:4b:f8:a7:73:09:78:c2:6f:5c:0d:
0e:a4:b1:b6:a8:4d:c3:3f:9d:92:f5:7f:84:84:5b:6a:6e:ad:
84:06:36:d9:03:b3:80:90:f9:dc:cf:bf:d9:34:8f:e5:93:61:
e5:e1:5b:62:c0:4d:fa:db:c0:79:cd:2f:db:77:f7:07:bb:37:
6d:71:96:58:b1:de:2f:c4:f1:5e:43:2a:4a:a0:b7:f7:7b:55:
bc:ae:94:1f
-501472610 | 2024-03-30T02:57:45.5799912082 / tcp
HTTP/1.1 301 Moved Content-length: 141 Location: https://sg2plzcpnl458810.prod.sin2.secureserver.net:2083/ Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private
-1419026129 | 2024-04-08T08:16:03.6513382083 / tcp
HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset="utf-8" Date: Mon, 08 Apr 2024 08:16:03 GMT Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: cpsession=%3aH6mpY_tvM3MCRYSv%2cfddb2f5ac2855fc116eed63f2553fabe; HttpOnly; path=/; port=2083; secure Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=184.168.100.43; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Cache-Control: no-cache, no-store, must-revalidate, private Content-Length: 36901
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7267432516703399672 (0x64db1b5e933aaef8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., OU=http:\/\/certs.starfieldtech.com\/repository\/, CN=Starfield Secure Certificate Authority - G2
Validity
Not Before: Feb 16 18:09:08 2024 GMT
Not After : Mar 19 18:09:08 2025 GMT
Subject: CN=*.prod.sin2.secureserver.net
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d8:d0:0d:21:f0:ec:30:95:ad:e0:46:c8:34:93:
d8:98:0e:d8:c8:a3:8f:df:13:5d:8d:7f:c9:13:46:
c8:03:0f:cb:87:ea:01:37:5e:ce:62:bd:e6:c4:d8:
b3:5d:4e:d1:d5:a6:98:c0:d6:75:ca:c3:53:4e:af:
af:3a:ae:21:12:0d:65:f2:f4:7b:be:30:6c:6c:1a:
14:95:75:db:09:99:50:fd:a8:e3:76:33:61:26:1d:
07:89:4a:58:97:60:8c:7d:83:8d:58:f4:2e:a6:2f:
3c:c3:04:27:30:68:b8:2b:08:f1:18:cc:5b:0b:79:
1e:da:98:ed:6b:df:24:39:8a:6b:a8:52:52:03:4b:
61:54:9c:5f:80:33:7f:99:3d:4d:b4:25:98:7c:9a:
cf:5b:cf:03:3a:68:8e:69:72:02:0b:ba:07:d6:34:
d5:07:1f:eb:9f:47:8c:a0:55:d1:68:59:54:58:ea:
45:e0:41:23:15:be:d0:76:ce:2c:36:f7:24:ba:ea:
1f:45:b7:9b:a9:9c:d6:b0:67:80:75:3f:3b:4c:93:
2f:54:4a:22:81:24:e9:33:8f:2a:4b:b9:10:39:df:
d6:54:99:df:cf:66:a7:36:42:30:65:09:d4:54:f2:
7f:41:1f:98:d8:02:67:0f:5f:7d:cd:2f:8f:77:b9:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 CRL Distribution Points:
Full Name:
URI:http://crl.starfieldtech.com/sfig2s1-677.crl
X509v3 Certificate Policies:
Policy: 2.16.840.1.114414.1.7.23.1
CPS: http://certificates.starfieldtech.com/repository/
Policy: 2.23.140.1.2.1
Authority Information Access:
OCSP - URI:http://ocsp.starfieldtech.com/
CA Issuers - URI:http://certificates.starfieldtech.com/repository/sfig2.crt
X509v3 Authority Key Identifier:
25:45:81:68:50:26:38:3D:3B:2D:2C:BE:CD:6A:D9:B6:3D:B3:66:63
X509v3 Subject Alternative Name:
DNS:*.prod.sin2.secureserver.net, DNS:prod.sin2.secureserver.net
X509v3 Subject Key Identifier:
25:CA:B9:7D:3E:16:F5:6C:DE:6E:E7:12:B4:3D:9D:6F:1E:D1:E4:4F
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Feb 16 18:09:08.983 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:63:D7:0F:19:7D:17:58:BD:DB:E8:5C:C5:
36:40:9B:A9:24:47:1B:86:4F:E3:3A:D2:A3:E7:56:6C:
59:F2:C2:35:02:20:6E:7F:2D:13:B1:9A:C2:74:62:12:
0B:EE:B3:7F:12:45:48:43:17:07:55:5F:F3:E3:73:F8:
35:92:66:2E:C8:40
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Feb 16 18:09:09.255 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:AA:FC:37:7A:31:D1:10:4A:96:97:F8:
83:0E:1A:35:D4:88:65:D3:CA:8F:90:2A:D9:5F:D4:51:
C9:DB:44:79:BC:02:21:00:93:49:9E:D6:0C:0E:79:5F:
8B:7B:53:65:EA:6D:09:46:0A:6C:4C:00:2F:F3:8F:6B:
D3:B4:A2:30:BD:DB:76:50
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 16 18:09:09.363 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:98:F9:0E:7B:C8:E3:3F:0D:25:36:C0:
5A:AE:F1:B0:69:80:30:91:BF:81:42:DA:2E:53:E6:0E:
C9:05:CF:1C:B7:02:20:6D:CC:9D:DC:30:40:1E:46:60:
F5:DD:13:E1:49:F5:4B:0F:F3:56:74:D5:28:B7:19:6B:
CA:8D:E5:FD:5C:80:C7
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
2c:3d:fe:ba:42:8d:4d:2c:d1:0a:f2:c5:8f:ca:d5:b8:12:ce:
f8:c3:91:99:3c:35:44:7d:fe:4c:0d:10:fb:2a:95:75:cc:3e:
b2:68:af:d6:f1:1f:0a:1a:ed:c0:e1:67:1d:74:5a:b0:3d:ca:
c2:e3:6a:80:21:fd:39:b2:2e:8e:f4:0b:d7:58:53:e8:09:ee:
03:69:8b:01:7b:7e:f3:db:ac:a4:1e:55:26:89:4e:c8:c3:7e:
6e:4e:11:55:c9:23:76:f3:31:f7:51:79:52:2c:b1:86:14:da:
07:10:6d:c4:c9:a5:4a:60:13:61:07:cf:d8:95:42:ed:4e:e7:
f0:31:92:61:27:8c:27:ed:6d:88:bc:df:1f:ea:3b:12:00:f7:
40:b1:72:88:70:eb:e2:20:b1:48:20:0c:b0:61:59:91:f9:a7:
dd:86:7f:b3:9d:f8:dd:72:4b:f8:a7:73:09:78:c2:6f:5c:0d:
0e:a4:b1:b6:a8:4d:c3:3f:9d:92:f5:7f:84:84:5b:6a:6e:ad:
84:06:36:d9:03:b3:80:90:f9:dc:cf:bf:d9:34:8f:e5:93:61:
e5:e1:5b:62:c0:4d:fa:db:c0:79:cd:2f:db:77:f7:07:bb:37:
6d:71:96:58:b1:de:2f:c4:f1:5e:43:2a:4a:a0:b7:f7:7b:55:
bc:ae:94:1f
797577637 | 2024-04-23T19:56:12.5970512087 / tcp
HTTP/1.1 301 Moved Content-length: 140 Location: https://sg2plzcpnl458810.prod.sin2.secureserver.net:2087 Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache <html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://sg2plzcpnl458810.prod.sin2.secureserver.net:2087"></head><body></body></html>
1351035179 | 2024-04-22T10:05:39.9376433306 / tcp
MariaDB: Protocol Version: 10 Version: 10.6.17-MariaDB-cll-lve Capabilities: 63486 Server Language: 8 Server Status: 2 Extended Server Capabilities: 33279 Authentication Plugin: mysql_native_password