| Hostnames |
mail.ambiance.ge multimedia.gruni.edu.ge mail.holding.com.ge mail.mepco.ge mail.nanex.ge www4.proservice.ge www.www4.proservice.ge mail.shavnabada.ge mail.swgeorgia.ge |
| Domains | ambiance.ge gruni.edu.ge holding.com.ge mepco.ge nanex.ge proservice.ge shavnabada.ge swgeorgia.ge |
| Country | Georgia |
| City | Tbilisi |
| Organization | Proservice LLC |
| ISP | Caucasus Online Ltd. |
| ASN | AS20771 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
| CVE-2023-51766 | Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not. |
| CVE-2022-37451 | Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc. |
550844732 | 2024-05-03T08:43:00.55510521 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 12:30. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: UTF8 EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD PRET AUTH TLS PBSZ PROT TVFS ESTA PASV EPSV SPSV ESTP 211 End.
1363263410 | 2024-04-30T11:57:44.11074380 / tcp
HTTP/1.1 200 OK Date: Tue, 30 Apr 2024 11:44:55 GMT Server: Apache/2 Last-Modified: Tue, 14 Dec 2021 15:54:58 GMT ETag: "261-5d31d360fd9e0" Accept-Ranges: bytes Content-Length: 609 Vary: Accept-Encoding,User-Agent Content-Type: text/html
-1463518829 | 2024-04-20T19:15:03.026258110 / tcp
+OK Dovecot DA ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE STLS USER SASL PLAIN .
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
1312135932 | 2024-05-03T16:08:30.119155143 / tcp
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN] Dovecot DA ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
1363263410 | 2024-05-03T07:48:56.316935443 / tcp
HTTP/1.1 200 OK Date: Fri, 03 May 2024 07:31:19 GMT Server: Apache/2 Last-Modified: Tue, 14 Dec 2021 15:54:58 GMT ETag: "261-5d31d360fd9e0" Accept-Ranges: bytes Content-Length: 609 Vary: Accept-Encoding,User-Agent Content-Type: text/html
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
1553958964 | 2024-04-26T18:40:51.163053465 / tcp
220 www4.proservice.ge ESMTP Exim 4.95 Fri, 26 Apr 2024 22:27:38 +0400 250-www4.proservice.ge Hello c5y7hma2ec.com [224.39.97.225] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-PIPE_CONNECT 250-AUTH PLAIN LOGIN 250 HELP
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
-1606401620 | 2024-05-02T13:10:22.483756587 / tcp
220 www4.proservice.ge ESMTP Exim 4.95 Thu, 02 May 2024 16:56:52 +0400 250-www4.proservice.ge Hello 224.220.42.33 [224.220.42.33] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-PIPE_CONNECT 250-AUTH PLAIN LOGIN 250-STARTTLS 250 HELP
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
-1065447965 | 2024-05-03T14:14:04.870804993 / tcp
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN] Dovecot DA ready.
* CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE AUTH=PLAIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
-1407073078 | 2024-04-28T09:26:33.647128995 / tcp
+OK Dovecot DA ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN .
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e5:a2:44:82:b5:b5:e9:11:8e:97:c4:0a:75:98:de:93:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Apr 14 19:27:29 2024 GMT
Not After : Jul 13 19:27:28 2024 GMT
Subject: CN=mail.ambiance.ge
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (384 bit)
pub:
04:09:c8:a1:67:56:65:6e:52:a7:e9:f8:ac:bb:37:
c4:5c:6e:56:11:e6:08:c1:7c:c6:f4:76:c0:87:2e:
a5:c0:28:81:9b:3b:d9:df:38:ce:cb:eb:d2:3b:4f:
62:7d:b0:d1:f7:26:2b:2f:f0:77:34:45:06:d7:d1:
96:86:b0:cf:80:bd:fe:ff:51:9d:28:2f:c6:7a:50:
bd:a0:b0:b1:47:05:c8:f5:f6:c2:7e:43:f3:86:88:
67:9b:f3:34:b1:89:03
ASN1 OID: secp384r1
NIST CURVE: P-384
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
B5:92:4F:E1:7F:53:53:61:81:AA:B7:A3:76:D9:C4:97:FF:92:ED:40
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:mail.ambiance.ge, DNS:mail.holding.com.ge, DNS:mail.mepco.ge, DNS:mail.nanex.ge, DNS:mail.shavnabada.ge, DNS:mail.swgeorgia.ge, DNS:multimedia.gruni.edu.ge, DNS:www.www4.proservice.ge, DNS:www4.proservice.ge
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
Timestamp : Apr 14 20:27:29.796 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:94:BE:B9:D7:D9:79:AD:CC:92:24:58:
FF:EE:93:21:41:34:E6:80:93:39:0E:5D:AD:B0:6C:43:
84:EB:8B:F2:B0:02:21:00:95:37:BE:FB:B7:20:B5:3B:
26:C0:7E:FA:0E:AE:7D:1E:50:E5:2F:1C:92:00:7B:35:
3C:BE:35:8D:81:3D:DE:DD
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32:
4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C
Timestamp : Apr 14 20:27:29.988 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:43:02:1F:2D:19:C8:D6:7F:D1:90:06:B5:E5:4D:11:
83:2D:25:E9:63:05:E2:60:B1:08:2C:58:35:91:40:2B:
26:54:2B:02:20:42:99:34:21:AF:B3:AD:47:DF:07:8F:
2B:6D:9F:56:73:33:05:FA:11:E3:8F:99:CE:DF:AA:7D:
3D:80:BC:0F:D3
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4e:fb:34:98:b5:ee:9e:26:e5:29:fc:84:64:d5:da:b4:fe:1a:
26:47:89:a2:8a:c7:07:48:02:07:1c:45:78:34:d4:ef:ff:03:
e9:d7:85:0e:0f:9e:52:15:09:92:79:97:b7:c1:5f:6c:38:3a:
b5:16:5e:24:ca:43:56:99:28:79:96:3f:43:26:e9:06:1f:bc:
bf:2b:bb:23:87:4b:72:c7:20:4a:c2:77:fe:55:ed:6b:57:93:
46:a8:2a:d1:9a:bb:e6:31:4e:37:90:a5:5d:23:38:ce:e6:7d:
b4:7f:2f:44:9d:d0:f7:e9:b9:63:b1:71:9c:75:2f:dc:ec:15:
79:46:96:9c:09:17:7d:bd:20:b4:8c:44:e6:c5:a6:3a:86:07:
8b:ff:fc:bf:de:19:ad:57:46:21:76:72:a8:3f:01:b0:3a:ea:
94:2e:67:bf:1b:28:8d:49:1a:f5:14:5a:ed:bb:a3:be:5a:a5:
df:98:75:d7:cc:39:55:3b:0f:27:4b:d9:01:16:08:ff:75:f1:
d6:b2:37:5c:01:7c:ad:75:b1:84:95:22:12:c0:13:ce:3a:88:
0c:f8:1b:a3:1d:bd:fd:3c:2e:25:60:67:88:5e:8b:69:a7:40:
d6:1f:3c:cb:8f:72:94:a9:3e:6d:4c:2e:c5:ec:e4:8b:61:71:
26:6f:3f:5a
669445267 | 2024-05-03T04:04:06.1551992222 / tcp
HTTP/1.0 400 Bad Request x-use-https: yes Conent-Type: text/html
-745545 | 2024-04-23T14:01:41.7415673306 / tcp
MySQL: Error Message: Host '224.10.189.212' is not allowed to connect to this MySQL server Error Code: 1130