GeneralInformation

Hostnames	wager125544.vds
Domains	vds.
Country	Netherlands
City	Zwolle
Organization	Friendhosting LTD
ISP	ITL LLC
ASN	AS21100

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-51766	Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.
CVE-2022-37452	Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set.
CVE-2022-37451	Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc.
CVE-2021-38371	5.0The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending.

OpenPorts

21 25 80 110 143 443 465 587 993 995 3306 3333 8888

202943014 | 2024-04-27T23:40:17.053064

21 / tcp

220 ProFTPD Server (Debian) [::ffff:185.198.166.72]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD     XCWD    CDUP    XCUP    SMNT*   QUIT    PORT    PASV    
214-EPRT    EPSV    ALLO    RNFR    RNTO    DELE    MDTM    RMD     
214-XRMD    MKD     XMKD    PWD     XPWD    SIZE    SYST    HELP    
214-NOOP    FEAT    OPTS    HOST    CLNT    AUTH*   CCC*    CONF*   
214-ENC*    MIC*    PBSZ*   PROT*   TYPE    STRU    MODE    RETR    
214-STOR    STOU    APPE    REST    ABOR    RANG    USER    PASS    
214-ACCT*   REIN*   LIST    NLST    STAT    SITE    MLSD    MLST    
214 Direct comments to root@0.0.0.0
211-Features:
211-CLNT
211-EPRT
211-EPSV
211-HOST
211-LANG ru-RU.UTF-8;ru-RU;en-US.UTF-8*;en-US
211-MDTM
211-MFF modify;UNIX.group;UNIX.mode;
211-MFMT
211-MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
211-RANG STREAM
211-REST STREAM
211-SITE COPY
211-SITE MKDIR
211-SITE RMDIR
211-SITE SYMLINK
211-SITE UTIME
211-SIZE
211-TVFS
211-UTF8
211 End

1282826601 | 2024-04-26T19:40:31.163309

25 / tcp

220 wager125544.vds ESMTP Exim 4.94.2 Fri, 26 Apr 2024 15:40:04 -0400
250-wager125544.vds Hello 0csszr6hpqmlheq.net [224.76.122.226]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH LOGIN PLAIN
250-CHUNKING
250-STARTTLS
250-SMTPUTF8
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=EE, ST=Tallinn, L=Tallinn, O=CompanyName, OU=User, CN=etc
        Validity
            Not Before: Jul  5 13:08:15 2023 GMT
            Not After : Jul  4 13:08:15 2024 GMT
        Subject: C=EE, ST=Tallinn, L=Tallinn, O=CompanyName, OU=User, CN=etc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:d6:88:fd:4a:81:cf:ea:3f:41:1f:29:f4:96:
                    55:15:72:49:b5:ef:72:f1:53:17:e1:a9:48:08:9d:
                    06:75:9d:53:29:b7:ae:e2:b1:83:70:4e:eb:fc:5c:
                    c3:37:df:a9:fa:9d:0d:2b:4a:80:e9:eb:0f:80:d2:
                    c8:e6:39:68:78:99:8d:ac:01:de:33:f1:63:00:9c:
                    90:1e:96:b8:06:c3:8a:fa:c9:da:79:6b:06:0a:84:
                    1c:89:a5:82:5c:7f:53:7e:42:3e:e1:4d:55:21:04:
                    90:87:47:33:2c:c6:2a:81:dd:62:49:b8:e3:f7:fd:
                    38:6c:b5:54:e9:3e:1f:40:96:5b:25:dc:ee:5b:b7:
                    0f:cb:6b:5b:ce:4e:be:3d:30:b0:74:e9:58:86:73:
                    89:cf:c3:1a:77:2f:c4:34:a3:d3:8f:80:62:f5:09:
                    ad:82:41:7e:86:ec:d9:a0:2f:3a:16:82:00:46:8f:
                    cd:db:78:db:c6:38:4d:62:60:f6:0d:cf:ff:e6:8e:
                    7f:51:ef:45:b1:55:8b:93:db:99:15:63:bb:a8:fa:
                    f3:16:19:33:a8:dd:cb:2a:d8:18:29:ed:d1:9a:d8:
                    db:b9:4b:3d:56:60:41:85:85:8c:4c:4b:26:93:cb:
                    f8:ae:52:3c:7c:dd:c4:4d:42:32:c4:35:1e:b2:34:
                    f7:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        36:ef:0d:b4:4d:ac:b3:56:38:28:63:a6:06:e5:05:bf:c0:ed:
        6d:61:39:0c:e2:6a:23:3a:7b:2d:24:c2:73:48:d7:d0:54:0b:
        c7:eb:52:eb:68:59:51:38:4e:bc:93:44:b5:d3:52:f2:2b:b8:
        36:06:24:fe:31:bc:9d:3a:71:6c:e0:84:8c:98:8a:6a:be:b0:
        91:81:8c:b4:dc:80:94:1b:b6:b4:e2:f4:0e:db:8a:1f:6d:86:
        46:4e:1f:52:82:5d:f8:23:fb:33:0c:fd:32:1d:67:80:99:ab:
        4d:e7:3e:ca:dc:e6:26:a7:7d:00:62:2f:bf:d6:d8:b5:69:83:
        d8:b3:13:0f:b0:9e:97:46:9d:69:6f:16:06:7d:48:6e:d8:87:
        13:ef:c1:3f:90:48:b0:45:7d:64:9b:ac:c1:aa:30:ba:be:f9:
        87:da:31:71:b2:3e:dd:13:9a:7b:36:92:df:d1:0f:cd:a3:b7:
        e2:1d:e5:28:a1:bc:4c:21:54:07:ea:fc:54:4a:cc:66:6e:45:
        37:b7:69:a5:45:9e:9c:dc:09:3f:90:50:54:e2:b9:8b:43:70:
        a2:a0:07:3c:ea:5f:ed:b9:42:6d:b2:fd:bb:7f:82:39:1b:34:
        7c:4f:be:e7:15:14:64:c0:4c:51:7f:a8:6d:42:1b:2d:af:be:
        9f:88:62:2d

234041667 | 2024-04-30T13:46:02.422121

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Tue, 30 Apr 2024 13:46:02 GMT
Content-Type: text/html
Content-Length: 15793
Last-Modified: Mon, 03 Jul 2023 11:28:35 GMT
Connection: keep-alive
ETag: "64a2b0e3-3db1"
Accept-Ranges: bytes

1475482970 | 2024-04-27T22:20:25.721431

110 / tcp

+OK Dovecot (Debian) ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
STLS
USER
SASL PLAIN LOGIN
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:b1:50:fd:88:83:a3:44:3d:f7:70:40:42:06:ae:df:6a:96:00:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=wager125544.vds
        Validity
            Not Before: Jul  5 13:07:27 2023 GMT
            Not After : Jul  2 13:07:27 2033 GMT
        Subject: CN=wager125544.vds
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:1f:27:35:7f:75:2f:91:21:56:89:5b:1e:3c:
                    9f:1a:67:b0:20:81:a0:7b:02:38:e6:b7:3d:0d:68:
                    52:c9:b9:de:1f:68:b3:ca:49:6b:90:aa:6a:63:f8:
                    97:f6:6b:ce:b8:fc:4b:ca:95:15:d9:19:f4:08:63:
                    10:ea:45:b9:08:3c:45:96:95:ea:34:9b:df:58:67:
                    e7:89:e6:ac:c7:e4:38:76:48:51:75:ec:84:44:0a:
                    60:7a:d3:26:89:2e:c6:12:8e:e8:ac:4a:70:0e:08:
                    73:aa:75:cf:35:04:f3:9a:4a:83:0d:45:be:5b:1f:
                    60:84:97:fc:da:12:a5:5e:fa:72:78:55:e8:96:94:
                    40:a7:ed:1e:5a:d9:c4:cd:2c:59:5d:cd:1b:bd:0b:
                    47:e6:e3:2f:63:ed:e7:b3:43:df:cc:82:b8:d0:c1:
                    db:dc:d9:91:49:86:9a:91:65:91:2b:58:19:7a:c1:
                    d3:86:43:02:8c:98:34:f2:60:4e:8e:74:fa:32:12:
                    6f:c4:76:54:44:ce:49:99:fa:6e:63:73:26:07:58:
                    fe:96:66:14:0c:bc:77:1d:bc:60:12:58:0b:70:5a:
                    01:71:13:2a:4c:dc:d4:7a:05:48:fc:87:2b:d9:64:
                    c4:01:f6:e1:39:12:6f:d4:ab:76:94:dc:95:08:40:
                    7a:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:wager125544.vds
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:09:36:0a:81:fd:7b:6e:fa:3f:3d:47:12:87:e5:17:35:24:
        08:fc:c9:96:35:29:5c:3e:63:45:16:bf:63:8a:c9:54:62:21:
        cc:30:de:98:23:21:61:b6:2b:f5:f1:cb:99:0d:bf:44:46:85:
        72:b7:4b:97:4f:6c:63:55:b9:76:40:8f:35:00:e7:f8:4e:bb:
        1d:23:14:be:cd:d6:51:29:dc:14:c5:d5:89:82:ae:56:d0:f0:
        3c:9b:c3:c6:22:45:dc:70:1c:cc:88:68:cc:c5:92:5d:48:59:
        03:5c:f8:e7:51:ef:b7:c5:35:7d:be:f6:d6:ab:97:67:2e:81:
        d8:7a:c8:a7:38:17:f4:1d:13:d9:fe:5d:f4:85:a1:d0:09:27:
        a9:94:7a:23:d0:14:55:19:7a:68:5f:93:57:b1:47:e9:46:24:
        47:fa:20:92:35:f6:57:06:de:86:29:ff:73:de:8b:cc:e0:14:
        1e:a4:a7:27:1c:5c:2f:c8:b3:38:07:0a:97:9b:15:ef:af:0e:
        4b:ab:f3:aa:2e:cd:78:1c:3c:a7:f7:ca:c6:df:02:de:97:96:
        b4:54:ff:57:cb:29:ed:77:74:5f:82:58:7a:35:15:4d:b4:4f:
        c0:46:e0:a5:03:99:34:e0:b7:a9:7e:c2:f6:1c:a6:93:29:2f:
        84:2d:39:72

1133575510 | 2024-04-24T21:11:46.804147

143 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:b1:50:fd:88:83:a3:44:3d:f7:70:40:42:06:ae:df:6a:96:00:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=wager125544.vds
        Validity
            Not Before: Jul  5 13:07:27 2023 GMT
            Not After : Jul  2 13:07:27 2033 GMT
        Subject: CN=wager125544.vds
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:1f:27:35:7f:75:2f:91:21:56:89:5b:1e:3c:
                    9f:1a:67:b0:20:81:a0:7b:02:38:e6:b7:3d:0d:68:
                    52:c9:b9:de:1f:68:b3:ca:49:6b:90:aa:6a:63:f8:
                    97:f6:6b:ce:b8:fc:4b:ca:95:15:d9:19:f4:08:63:
                    10:ea:45:b9:08:3c:45:96:95:ea:34:9b:df:58:67:
                    e7:89:e6:ac:c7:e4:38:76:48:51:75:ec:84:44:0a:
                    60:7a:d3:26:89:2e:c6:12:8e:e8:ac:4a:70:0e:08:
                    73:aa:75:cf:35:04:f3:9a:4a:83:0d:45:be:5b:1f:
                    60:84:97:fc:da:12:a5:5e:fa:72:78:55:e8:96:94:
                    40:a7:ed:1e:5a:d9:c4:cd:2c:59:5d:cd:1b:bd:0b:
                    47:e6:e3:2f:63:ed:e7:b3:43:df:cc:82:b8:d0:c1:
                    db:dc:d9:91:49:86:9a:91:65:91:2b:58:19:7a:c1:
                    d3:86:43:02:8c:98:34:f2:60:4e:8e:74:fa:32:12:
                    6f:c4:76:54:44:ce:49:99:fa:6e:63:73:26:07:58:
                    fe:96:66:14:0c:bc:77:1d:bc:60:12:58:0b:70:5a:
                    01:71:13:2a:4c:dc:d4:7a:05:48:fc:87:2b:d9:64:
                    c4:01:f6:e1:39:12:6f:d4:ab:76:94:dc:95:08:40:
                    7a:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:wager125544.vds
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:09:36:0a:81:fd:7b:6e:fa:3f:3d:47:12:87:e5:17:35:24:
        08:fc:c9:96:35:29:5c:3e:63:45:16:bf:63:8a:c9:54:62:21:
        cc:30:de:98:23:21:61:b6:2b:f5:f1:cb:99:0d:bf:44:46:85:
        72:b7:4b:97:4f:6c:63:55:b9:76:40:8f:35:00:e7:f8:4e:bb:
        1d:23:14:be:cd:d6:51:29:dc:14:c5:d5:89:82:ae:56:d0:f0:
        3c:9b:c3:c6:22:45:dc:70:1c:cc:88:68:cc:c5:92:5d:48:59:
        03:5c:f8:e7:51:ef:b7:c5:35:7d:be:f6:d6:ab:97:67:2e:81:
        d8:7a:c8:a7:38:17:f4:1d:13:d9:fe:5d:f4:85:a1:d0:09:27:
        a9:94:7a:23:d0:14:55:19:7a:68:5f:93:57:b1:47:e9:46:24:
        47:fa:20:92:35:f6:57:06:de:86:29:ff:73:de:8b:cc:e0:14:
        1e:a4:a7:27:1c:5c:2f:c8:b3:38:07:0a:97:9b:15:ef:af:0e:
        4b:ab:f3:aa:2e:cd:78:1c:3c:a7:f7:ca:c6:df:02:de:97:96:
        b4:54:ff:57:cb:29:ed:77:74:5f:82:58:7a:35:15:4d:b4:4f:
        c0:46:e0:a5:03:99:34:e0:b7:a9:7e:c2:f6:1c:a6:93:29:2f:
        84:2d:39:72

234041667 | 2024-04-26T21:29:49.847666

443 / tcp

HTTP/1.1 200 OK
Server: nginx/1.24.0
Date: Fri, 26 Apr 2024 21:29:49 GMT
Content-Type: text/html
Content-Length: 15793
Last-Modified: Mon, 03 Jul 2023 11:28:35 GMT
Connection: keep-alive
ETag: "64a2b0e3-3db1"
Accept-Ranges: bytes

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=, ST=, L=, O=FASTPANEL, OU=, CN=parking
        Validity
            Not Before: Jul  5 13:07:42 2023 GMT
            Not After : Jul  4 13:07:42 2024 GMT
        Subject: C=, ST=, L=, O=FASTPANEL, OU=, CN=parking
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:ca:9b:4a:58:9e:bb:62:56:39:52:c9:13:a7:1f:
                    c7:e2:6a:4e:71:d7:b4:91:e7:13:9a:90:04:c4:39:
                    30:93:cc:6a:2d:c6:c8:91:40:53:8b:e8:b4:17:1e:
                    fa:b4:83:c8:8d:31:22:5d:58:db:0e:fe:b0:cd:1d:
                    b3:c7:3a:93:6b:7e:2f:f6:a8:f1:0c:46:00:08:54:
                    e4:c0:ca:ae:43:ba:af:b6:bc:71:75:fd:13:d8:1a:
                    d2:f8:d1:bc:12:3c:be:55:f9:6e:49:a0:d8:27:b6:
                    42:74:f7:b8:5e:8f:ba:ae:b8:24:bc:f0:d9:ec:32:
                    06:af:b5:2e:4e:34:ae:79:80:f4:83:eb:40:cf:ee:
                    8d:4e:a7:24:e7:51:a5:06:36:9e:00:a1:47:70:bf:
                    e4:ee:00:3c:f5:14:ab:f2:ff:2b:6d:17:8f:db:08:
                    31:45:0f:1e:df:eb:c0:64:5c:58:a4:45:9c:be:6b:
                    e3:a2:de:db:e4:38:69:d6:fd:57:4f:15:3e:38:3f:
                    96:d4:51:8d:ee:16:44:1e:e0:63:1b:57:8c:64:56:
                    96:6e:3f:78:e6:90:ee:ef:09:85:08:57:0b:93:51:
                    54:e3:43:8d:e5:47:51:6a:07:f0:c2:10:ab:ba:09:
                    7d:8c:4c:28:c4:0c:f6:20:e1:c3:7e:5b:c0:47:07:
                    bf:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        06:d2:e9:36:15:22:b4:15:37:ea:79:c1:53:b0:5c:18:5a:f6:
        be:29:fa:39:56:63:3b:a7:0c:ef:1c:95:2d:94:18:fa:21:af:
        56:bc:69:ad:89:e1:d9:50:36:0a:45:e3:d4:c5:28:9a:3e:f3:
        21:a8:3a:2d:f8:e3:50:5f:cb:ad:c8:7c:40:ce:b0:4d:bb:3f:
        80:6c:05:a2:38:6b:29:53:b9:4d:40:2f:68:f8:bc:6c:ae:15:
        27:44:39:00:36:08:29:de:1b:94:11:89:94:f3:5f:98:e8:0b:
        4f:93:84:d6:40:80:d0:cc:03:35:56:ac:e4:3d:82:b5:d5:1d:
        09:7a:bb:c0:ab:b5:c4:87:ed:cf:9f:34:9c:0b:9a:c6:d2:73:
        97:e3:b3:a6:53:36:ab:a6:df:c8:92:17:08:62:b4:65:77:89:
        01:ed:ac:c5:1b:46:14:2b:41:52:9d:6c:ca:3e:e9:d1:2f:77:
        94:f0:1f:c0:e1:ce:d0:d4:5b:df:12:82:52:35:ad:b8:2b:c5:
        05:2c:8e:b4:67:01:45:d7:17:03:0e:43:b1:e4:a2:aa:69:0d:
        53:69:7b:e5:a9:c6:fe:8c:cb:b4:7e:b7:26:d8:28:8b:27:93:
        13:02:ec:f7:f5:ff:4d:3d:fc:c7:0d:38:37:c3:0e:4c:3f:3b:
        65:f9:57:53

1958565710 | 2024-04-24T04:43:24.413442

465 / tcp

220 wager125544.vds ESMTP Exim 4.94.2 Wed, 24 Apr 2024 00:43:08 -0400
250-wager125544.vds Hello 0obo3oc904rp.com [224.129.158.183]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH LOGIN PLAIN
250-CHUNKING
250-SMTPUTF8
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=EE, ST=Tallinn, L=Tallinn, O=CompanyName, OU=User, CN=etc
        Validity
            Not Before: Jul  5 13:08:15 2023 GMT
            Not After : Jul  4 13:08:15 2024 GMT
        Subject: C=EE, ST=Tallinn, L=Tallinn, O=CompanyName, OU=User, CN=etc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:d6:88:fd:4a:81:cf:ea:3f:41:1f:29:f4:96:
                    55:15:72:49:b5:ef:72:f1:53:17:e1:a9:48:08:9d:
                    06:75:9d:53:29:b7:ae:e2:b1:83:70:4e:eb:fc:5c:
                    c3:37:df:a9:fa:9d:0d:2b:4a:80:e9:eb:0f:80:d2:
                    c8:e6:39:68:78:99:8d:ac:01:de:33:f1:63:00:9c:
                    90:1e:96:b8:06:c3:8a:fa:c9:da:79:6b:06:0a:84:
                    1c:89:a5:82:5c:7f:53:7e:42:3e:e1:4d:55:21:04:
                    90:87:47:33:2c:c6:2a:81:dd:62:49:b8:e3:f7:fd:
                    38:6c:b5:54:e9:3e:1f:40:96:5b:25:dc:ee:5b:b7:
                    0f:cb:6b:5b:ce:4e:be:3d:30:b0:74:e9:58:86:73:
                    89:cf:c3:1a:77:2f:c4:34:a3:d3:8f:80:62:f5:09:
                    ad:82:41:7e:86:ec:d9:a0:2f:3a:16:82:00:46:8f:
                    cd:db:78:db:c6:38:4d:62:60:f6:0d:cf:ff:e6:8e:
                    7f:51:ef:45:b1:55:8b:93:db:99:15:63:bb:a8:fa:
                    f3:16:19:33:a8:dd:cb:2a:d8:18:29:ed:d1:9a:d8:
                    db:b9:4b:3d:56:60:41:85:85:8c:4c:4b:26:93:cb:
                    f8:ae:52:3c:7c:dd:c4:4d:42:32:c4:35:1e:b2:34:
                    f7:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        36:ef:0d:b4:4d:ac:b3:56:38:28:63:a6:06:e5:05:bf:c0:ed:
        6d:61:39:0c:e2:6a:23:3a:7b:2d:24:c2:73:48:d7:d0:54:0b:
        c7:eb:52:eb:68:59:51:38:4e:bc:93:44:b5:d3:52:f2:2b:b8:
        36:06:24:fe:31:bc:9d:3a:71:6c:e0:84:8c:98:8a:6a:be:b0:
        91:81:8c:b4:dc:80:94:1b:b6:b4:e2:f4:0e:db:8a:1f:6d:86:
        46:4e:1f:52:82:5d:f8:23:fb:33:0c:fd:32:1d:67:80:99:ab:
        4d:e7:3e:ca:dc:e6:26:a7:7d:00:62:2f:bf:d6:d8:b5:69:83:
        d8:b3:13:0f:b0:9e:97:46:9d:69:6f:16:06:7d:48:6e:d8:87:
        13:ef:c1:3f:90:48:b0:45:7d:64:9b:ac:c1:aa:30:ba:be:f9:
        87:da:31:71:b2:3e:dd:13:9a:7b:36:92:df:d1:0f:cd:a3:b7:
        e2:1d:e5:28:a1:bc:4c:21:54:07:ea:fc:54:4a:cc:66:6e:45:
        37:b7:69:a5:45:9e:9c:dc:09:3f:90:50:54:e2:b9:8b:43:70:
        a2:a0:07:3c:ea:5f:ed:b9:42:6d:b2:fd:bb:7f:82:39:1b:34:
        7c:4f:be:e7:15:14:64:c0:4c:51:7f:a8:6d:42:1b:2d:af:be:
        9f:88:62:2d

121263846 | 2024-04-29T06:43:28.089102

587 / tcp

220 wager125544.vds ESMTP Exim 4.94.2 Mon, 29 Apr 2024 02:43:19 -0400
250-wager125544.vds Hello 224.227.225.203 [224.227.225.203]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-PIPE_CONNECT
250-AUTH LOGIN PLAIN
250-CHUNKING
250-STARTTLS
250-SMTPUTF8
250 HELP

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=EE, ST=Tallinn, L=Tallinn, O=CompanyName, OU=User, CN=etc
        Validity
            Not Before: Jul  5 13:08:15 2023 GMT
            Not After : Jul  4 13:08:15 2024 GMT
        Subject: C=EE, ST=Tallinn, L=Tallinn, O=CompanyName, OU=User, CN=etc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:c6:d6:88:fd:4a:81:cf:ea:3f:41:1f:29:f4:96:
                    55:15:72:49:b5:ef:72:f1:53:17:e1:a9:48:08:9d:
                    06:75:9d:53:29:b7:ae:e2:b1:83:70:4e:eb:fc:5c:
                    c3:37:df:a9:fa:9d:0d:2b:4a:80:e9:eb:0f:80:d2:
                    c8:e6:39:68:78:99:8d:ac:01:de:33:f1:63:00:9c:
                    90:1e:96:b8:06:c3:8a:fa:c9:da:79:6b:06:0a:84:
                    1c:89:a5:82:5c:7f:53:7e:42:3e:e1:4d:55:21:04:
                    90:87:47:33:2c:c6:2a:81:dd:62:49:b8:e3:f7:fd:
                    38:6c:b5:54:e9:3e:1f:40:96:5b:25:dc:ee:5b:b7:
                    0f:cb:6b:5b:ce:4e:be:3d:30:b0:74:e9:58:86:73:
                    89:cf:c3:1a:77:2f:c4:34:a3:d3:8f:80:62:f5:09:
                    ad:82:41:7e:86:ec:d9:a0:2f:3a:16:82:00:46:8f:
                    cd:db:78:db:c6:38:4d:62:60:f6:0d:cf:ff:e6:8e:
                    7f:51:ef:45:b1:55:8b:93:db:99:15:63:bb:a8:fa:
                    f3:16:19:33:a8:dd:cb:2a:d8:18:29:ed:d1:9a:d8:
                    db:b9:4b:3d:56:60:41:85:85:8c:4c:4b:26:93:cb:
                    f8:ae:52:3c:7c:dd:c4:4d:42:32:c4:35:1e:b2:34:
                    f7:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        36:ef:0d:b4:4d:ac:b3:56:38:28:63:a6:06:e5:05:bf:c0:ed:
        6d:61:39:0c:e2:6a:23:3a:7b:2d:24:c2:73:48:d7:d0:54:0b:
        c7:eb:52:eb:68:59:51:38:4e:bc:93:44:b5:d3:52:f2:2b:b8:
        36:06:24:fe:31:bc:9d:3a:71:6c:e0:84:8c:98:8a:6a:be:b0:
        91:81:8c:b4:dc:80:94:1b:b6:b4:e2:f4:0e:db:8a:1f:6d:86:
        46:4e:1f:52:82:5d:f8:23:fb:33:0c:fd:32:1d:67:80:99:ab:
        4d:e7:3e:ca:dc:e6:26:a7:7d:00:62:2f:bf:d6:d8:b5:69:83:
        d8:b3:13:0f:b0:9e:97:46:9d:69:6f:16:06:7d:48:6e:d8:87:
        13:ef:c1:3f:90:48:b0:45:7d:64:9b:ac:c1:aa:30:ba:be:f9:
        87:da:31:71:b2:3e:dd:13:9a:7b:36:92:df:d1:0f:cd:a3:b7:
        e2:1d:e5:28:a1:bc:4c:21:54:07:ea:fc:54:4a:cc:66:6e:45:
        37:b7:69:a5:45:9e:9c:dc:09:3f:90:50:54:e2:b9:8b:43:70:
        a2:a0:07:3c:ea:5f:ed:b9:42:6d:b2:fd:bb:7f:82:39:1b:34:
        7c:4f:be:e7:15:14:64:c0:4c:51:7f:a8:6d:42:1b:2d:af:be:
        9f:88:62:2d

1664207957 | 2024-04-20T06:45:50.905161

993 / tcp

* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:b1:50:fd:88:83:a3:44:3d:f7:70:40:42:06:ae:df:6a:96:00:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=wager125544.vds
        Validity
            Not Before: Jul  5 13:07:27 2023 GMT
            Not After : Jul  2 13:07:27 2033 GMT
        Subject: CN=wager125544.vds
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:1f:27:35:7f:75:2f:91:21:56:89:5b:1e:3c:
                    9f:1a:67:b0:20:81:a0:7b:02:38:e6:b7:3d:0d:68:
                    52:c9:b9:de:1f:68:b3:ca:49:6b:90:aa:6a:63:f8:
                    97:f6:6b:ce:b8:fc:4b:ca:95:15:d9:19:f4:08:63:
                    10:ea:45:b9:08:3c:45:96:95:ea:34:9b:df:58:67:
                    e7:89:e6:ac:c7:e4:38:76:48:51:75:ec:84:44:0a:
                    60:7a:d3:26:89:2e:c6:12:8e:e8:ac:4a:70:0e:08:
                    73:aa:75:cf:35:04:f3:9a:4a:83:0d:45:be:5b:1f:
                    60:84:97:fc:da:12:a5:5e:fa:72:78:55:e8:96:94:
                    40:a7:ed:1e:5a:d9:c4:cd:2c:59:5d:cd:1b:bd:0b:
                    47:e6:e3:2f:63:ed:e7:b3:43:df:cc:82:b8:d0:c1:
                    db:dc:d9:91:49:86:9a:91:65:91:2b:58:19:7a:c1:
                    d3:86:43:02:8c:98:34:f2:60:4e:8e:74:fa:32:12:
                    6f:c4:76:54:44:ce:49:99:fa:6e:63:73:26:07:58:
                    fe:96:66:14:0c:bc:77:1d:bc:60:12:58:0b:70:5a:
                    01:71:13:2a:4c:dc:d4:7a:05:48:fc:87:2b:d9:64:
                    c4:01:f6:e1:39:12:6f:d4:ab:76:94:dc:95:08:40:
                    7a:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:wager125544.vds
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:09:36:0a:81:fd:7b:6e:fa:3f:3d:47:12:87:e5:17:35:24:
        08:fc:c9:96:35:29:5c:3e:63:45:16:bf:63:8a:c9:54:62:21:
        cc:30:de:98:23:21:61:b6:2b:f5:f1:cb:99:0d:bf:44:46:85:
        72:b7:4b:97:4f:6c:63:55:b9:76:40:8f:35:00:e7:f8:4e:bb:
        1d:23:14:be:cd:d6:51:29:dc:14:c5:d5:89:82:ae:56:d0:f0:
        3c:9b:c3:c6:22:45:dc:70:1c:cc:88:68:cc:c5:92:5d:48:59:
        03:5c:f8:e7:51:ef:b7:c5:35:7d:be:f6:d6:ab:97:67:2e:81:
        d8:7a:c8:a7:38:17:f4:1d:13:d9:fe:5d:f4:85:a1:d0:09:27:
        a9:94:7a:23:d0:14:55:19:7a:68:5f:93:57:b1:47:e9:46:24:
        47:fa:20:92:35:f6:57:06:de:86:29:ff:73:de:8b:cc:e0:14:
        1e:a4:a7:27:1c:5c:2f:c8:b3:38:07:0a:97:9b:15:ef:af:0e:
        4b:ab:f3:aa:2e:cd:78:1c:3c:a7:f7:ca:c6:df:02:de:97:96:
        b4:54:ff:57:cb:29:ed:77:74:5f:82:58:7a:35:15:4d:b4:4f:
        c0:46:e0:a5:03:99:34:e0:b7:a9:7e:c2:f6:1c:a6:93:29:2f:
        84:2d:39:72

127848054 | 2024-04-27T07:37:05.938625

995 / tcp

+OK Dovecot (Debian) ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
USER
SASL PLAIN LOGIN
.

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2e:b1:50:fd:88:83:a3:44:3d:f7:70:40:42:06:ae:df:6a:96:00:fb
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=wager125544.vds
        Validity
            Not Before: Jul  5 13:07:27 2023 GMT
            Not After : Jul  2 13:07:27 2033 GMT
        Subject: CN=wager125544.vds
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d8:1f:27:35:7f:75:2f:91:21:56:89:5b:1e:3c:
                    9f:1a:67:b0:20:81:a0:7b:02:38:e6:b7:3d:0d:68:
                    52:c9:b9:de:1f:68:b3:ca:49:6b:90:aa:6a:63:f8:
                    97:f6:6b:ce:b8:fc:4b:ca:95:15:d9:19:f4:08:63:
                    10:ea:45:b9:08:3c:45:96:95:ea:34:9b:df:58:67:
                    e7:89:e6:ac:c7:e4:38:76:48:51:75:ec:84:44:0a:
                    60:7a:d3:26:89:2e:c6:12:8e:e8:ac:4a:70:0e:08:
                    73:aa:75:cf:35:04:f3:9a:4a:83:0d:45:be:5b:1f:
                    60:84:97:fc:da:12:a5:5e:fa:72:78:55:e8:96:94:
                    40:a7:ed:1e:5a:d9:c4:cd:2c:59:5d:cd:1b:bd:0b:
                    47:e6:e3:2f:63:ed:e7:b3:43:df:cc:82:b8:d0:c1:
                    db:dc:d9:91:49:86:9a:91:65:91:2b:58:19:7a:c1:
                    d3:86:43:02:8c:98:34:f2:60:4e:8e:74:fa:32:12:
                    6f:c4:76:54:44:ce:49:99:fa:6e:63:73:26:07:58:
                    fe:96:66:14:0c:bc:77:1d:bc:60:12:58:0b:70:5a:
                    01:71:13:2a:4c:dc:d4:7a:05:48:fc:87:2b:d9:64:
                    c4:01:f6:e1:39:12:6f:d4:ab:76:94:dc:95:08:40:
                    7a:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: 
                CA:FALSE
            X509v3 Subject Alternative Name: 
                DNS:wager125544.vds
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        5a:09:36:0a:81:fd:7b:6e:fa:3f:3d:47:12:87:e5:17:35:24:
        08:fc:c9:96:35:29:5c:3e:63:45:16:bf:63:8a:c9:54:62:21:
        cc:30:de:98:23:21:61:b6:2b:f5:f1:cb:99:0d:bf:44:46:85:
        72:b7:4b:97:4f:6c:63:55:b9:76:40:8f:35:00:e7:f8:4e:bb:
        1d:23:14:be:cd:d6:51:29:dc:14:c5:d5:89:82:ae:56:d0:f0:
        3c:9b:c3:c6:22:45:dc:70:1c:cc:88:68:cc:c5:92:5d:48:59:
        03:5c:f8:e7:51:ef:b7:c5:35:7d:be:f6:d6:ab:97:67:2e:81:
        d8:7a:c8:a7:38:17:f4:1d:13:d9:fe:5d:f4:85:a1:d0:09:27:
        a9:94:7a:23:d0:14:55:19:7a:68:5f:93:57:b1:47:e9:46:24:
        47:fa:20:92:35:f6:57:06:de:86:29:ff:73:de:8b:cc:e0:14:
        1e:a4:a7:27:1c:5c:2f:c8:b3:38:07:0a:97:9b:15:ef:af:0e:
        4b:ab:f3:aa:2e:cd:78:1c:3c:a7:f7:ca:c6:df:02:de:97:96:
        b4:54:ff:57:cb:29:ed:77:74:5f:82:58:7a:35:15:4d:b4:4f:
        c0:46:e0:a5:03:99:34:e0:b7:a9:7e:c2:f6:1c:a6:93:29:2f:
        84:2d:39:72

1869929217 | 2024-04-27T22:25:31.275589

3306 / tcp

MySQL:
  Error Message: Host '224.227.225.203' is not allowed to connect to this MySQL server
  Error Code: 1130

32436757 | 2024-04-24T06:25:11.527199

3333 / tcp

SSH-2.0-OpenSSH_8.4p1 Debian-5+deb11u1
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQDFX3BChX5SeREgkb21s/4Ul1DUj7xo/BQgQVLwrDHpWdI4
1T7AGKFwQ8DLcm+wlAIB6apsQk6TC1sxn8C2cHRW9VSCWa2NCW89ghYkn4eIP41rjuliloW9RBHX
f6WfjDWf/OgSChIIgr/AUfVRBDwRWkmo3OW/HsRsx5+xzYtQMPf0OQV4/Nz1ROxRLEtbZ6ts5bw8
fTgogUyWZ2rA/+xuTfYneRDbx+W9VwQuWLRcX105tkIQ1PBEiQ8y31wjPPmJfeY5dKRkTyVKsO4x
Rms9gZzJOm5WABmMlZCWbI3emKL0yNrKP/IxyAK07XPF7wG7QBCyDkwx/HdCgz9LvUYwmiCbqch9
X3NV4gLyEWwOukV6/F8jQJ3m6bUw8L0Ajf61BNIyDyM70WIcJPt2+1VlL191dMc+IpsTDVvUchIi
DOMRG/OcOhYCQGU6SnLkaZR1jrP2Pg6SGXc1PCYjLw2HFapu417k43oiV+lcpf7drGT5Oa8Wi1oo
OGrlESZ3vZE=
Fingerprint: 36:2f:03:fa:7c:81:99:ea:8a:17:cf:58:a0:1f:2e:ea

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256

Server Host Key Algorithms:
	rsa-sha2-512
	rsa-sha2-256
	ssh-rsa
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-23674247 | 2024-04-22T14:16:17.430213

8888 / tcp

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Mon, 22 Apr 2024 14:16:17 GMT
Content-Type: text/html
Content-Length: 138
Connection: close
Location: https://185.198.166.72:8888/

185.198.166.72

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

202943014 | 2024-04-27T23:40:17.053064
21 / tcp

1282826601 | 2024-04-26T19:40:31.163309
25 / tcp

Exim smtpd4.94.2

234041667 | 2024-04-30T13:46:02.422121
80 / tcp

nginx1.24.0

1475482970 | 2024-04-27T22:20:25.721431
110 / tcp

1133575510 | 2024-04-24T21:11:46.804147
143 / tcp

234041667 | 2024-04-26T21:29:49.847666
443 / tcp

nginx1.24.0

1958565710 | 2024-04-24T04:43:24.413442
465 / tcp

Exim smtpd4.94.2

121263846 | 2024-04-29T06:43:28.089102
587 / tcp

Exim smtpd4.94.2

1664207957 | 2024-04-20T06:45:50.905161
993 / tcp

127848054 | 2024-04-27T07:37:05.938625
995 / tcp

1869929217 | 2024-04-27T22:25:31.275589
3306 / tcp

MySQL

32436757 | 2024-04-24T06:25:11.527199
3333 / tcp

OpenSSH8.4p1 Debian 5+deb11u1

-23674247 | 2024-04-22T14:16:17.430213
8888 / tcp

nginx

Products

Pricing

Contact Us

185.198.166.72

Last Seen: 2024-04-30

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

202943014 | 2024-04-27T23:40:17.053064 21 / tcp

1282826601 | 2024-04-26T19:40:31.163309 25 / tcp

234041667 | 2024-04-30T13:46:02.422121 80 / tcp

1475482970 | 2024-04-27T22:20:25.721431 110 / tcp

1133575510 | 2024-04-24T21:11:46.804147 143 / tcp

234041667 | 2024-04-26T21:29:49.847666 443 / tcp

1958565710 | 2024-04-24T04:43:24.413442 465 / tcp

121263846 | 2024-04-29T06:43:28.089102 587 / tcp

1664207957 | 2024-04-20T06:45:50.905161 993 / tcp

127848054 | 2024-04-27T07:37:05.938625 995 / tcp

1869929217 | 2024-04-27T22:25:31.275589 3306 / tcp

32436757 | 2024-04-24T06:25:11.527199 3333 / tcp

-23674247 | 2024-04-22T14:16:17.430213 8888 / tcp

Products

Pricing

Contact Us

202943014 | 2024-04-27T23:40:17.053064
21 / tcp

1282826601 | 2024-04-26T19:40:31.163309
25 / tcp

234041667 | 2024-04-30T13:46:02.422121
80 / tcp

1475482970 | 2024-04-27T22:20:25.721431
110 / tcp

1133575510 | 2024-04-24T21:11:46.804147
143 / tcp

234041667 | 2024-04-26T21:29:49.847666
443 / tcp

1958565710 | 2024-04-24T04:43:24.413442
465 / tcp

121263846 | 2024-04-29T06:43:28.089102
587 / tcp

1664207957 | 2024-04-20T06:45:50.905161
993 / tcp

127848054 | 2024-04-27T07:37:05.938625
995 / tcp

1869929217 | 2024-04-27T22:25:31.275589
3306 / tcp

32436757 | 2024-04-24T06:25:11.527199
3333 / tcp

-23674247 | 2024-04-22T14:16:17.430213
8888 / tcp