Hostnames |
mydevil.net web21.mydevil.net usermd.net |
Domains | mydevil.net usermd.net |
Country | Poland |
City | Warsaw |
Organization | ATM S.A. |
ISP | Atman Sp. z o.o. |
ASN | AS57367 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-51767 | 7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. |
CVE-2023-51385 | 6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name. |
CVE-2023-51384 | 5.5In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys. |
CVE-2023-48795 | 5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust. |
CVE-2023-38408 | 9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009. |
CVE-2008-3844 | Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known. |
CVE-2007-2768 | OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243. |
-857369425 | 2024-04-19T11:14:08.27519821 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 2 of 150 allowed. 220-Local time is now 12:13. Server port: 21. 220-This is a private system - No anonymous login 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized ALIAS CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: UTF8 EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD PRET AUTH TLS PBSZ PROT ESTA PASV EPSV ESTP 211 End.
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
-686127353 | 2024-04-10T13:53:04.89180722 / tcp
SSH-2.0-OpenSSH_9.3 FreeBSD-20230719 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQCjryRFWsMxXVyfLYKRFW3frET2m/aeeyqiB+Xhwpe5DUNR KoMzUvmO1CzNotarkIPTIZcwMHnQdTWwZ1855k9mG5v37H7AXu236q8RIViPJA+BnK4wWB0fKBoM fRkewMCU+fwLFjiizzvh4KMXHTBo+4fCj2rENJKOsKmzUyDama55jO58Xbsq+RMBA7ql+ov19wgA vq1wZwd6XA7zGsxf7UC40mbqTFAut5W67p0qXxop6QEv4MSKSqodvJtSrPr5of93EQSEwEUsrm7h NtAR7l82UU424o40mJQe96Nq12yJ3n6ou5ywVBhu3v1fyB0/UNlTOyJK/w4PKusRw3cr Fingerprint: 82:70:d5:f4:6c:1f:ca:4d:c4:9f:46:41:7e:0f:a9:7b Kex Algorithms: sntrup761x25519-sha512@openssh.com curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
591226204 | 2024-04-18T00:25:40.57234425 / tcp
220 s21.mydevil.net ESMTP Exim Thu, 18 Apr 2024 02:24:50 +0200 250-s21.mydevil.net Hello 224.208.175.99 [224.208.175.99] 250-SIZE 209715200 250-8BITMIME 250-DSN 250-PIPELINING 250-PIPECONNECT 250-AUTH LOGIN PLAIN 250-CHUNKING 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
728046939 | 2024-04-17T08:39:11.54287480 / tcp
HTTP/1.1 404 Not Found Server: nginx Date: Wed, 17 Apr 2024 08:39:11 GMT Content-Type: text/html Content-Length: 3417 Connection: keep-alive ETag: "64caff9d-d59"
1952082069 | 2024-04-03T03:51:36.840272110 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE STLS USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
-1265681962 | 2024-04-12T03:46:54.545430113 / tcp
113,42622:USERID:UNIX:UNKNOWN
1345111374 | 2024-04-02T05:33:41.055221143 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
728046939 | 2024-04-16T22:53:45.190554443 / tcp
HTTP/1.1 404 Not Found Server: nginx Date: Tue, 16 Apr 2024 22:53:45 GMT Content-Type: text/html Content-Length: 3417 Connection: keep-alive ETag: "64caff9d-d59"
Certificate: Data: Version: 3 (0x2) Serial Number: b4:01:b0:fa:95:d2:76:d9:5e:13:4d:c6:88:d9:2f:05 Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Nov 20 00:00:00 2023 GMT Not After : Dec 20 23:59:59 2024 GMT Subject: CN=*.usermd.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a1:a0:86:9d:47:91:ee:a3:d4:f7:bd:db:7f:18: a3:5a:23:8d:e8:9b:81:9d:db:df:d7:17:7a:ac:2a: cb:5d:a4:b3:9a:48:55:be:01:f5:07:88:7b:e4:f6: 6d:e9:e9:98:89:25:61:3b:0a:ae:54:fe:0d:05:77: 25:f6:28:e7:4e:3d:3e:32:fd:6d:70:fc:5d:73:4c: 9b:59:c1:e3:87:06:05:fe:c7:67:38:24:28:a3:f9: f7:00:35:dc:b5:ee:5a:b5:e8:45:f5:ce:46:57:be: 44:29:ca:a5:11:1e:e1:4a:4d:17:14:ae:7b:34:5a: 5a:7e:43:e8:1b:b3:2c:1c:7a:44:2d:7f:94:1d:90: fd:4a:98:de:d4:ac:1e:7f:a5:1a:45:2a:91:b0:e3: 63:be:6a:26:f8:1b:ce:ca:ca:77:50:b6:dd:9c:e0: 1c:72:ce:57:ab:30:42:20:f6:87:36:39:96:3d:42: fb:35:61:b2:0a:6e:df:6c:c0:67:af:2f:a5:cf:bb: 64:26:f7:be:a8:ab:c6:a4:ed:20:58:bb:00:cb:46: 80:47:57:29:86:79:4b:ef:ae:89:11:fa:1d:c4:07: 9a:68:1f:37:f8:8d:12:49:d3:8c:99:7f:86:5e:6c: 1d:20:4e:cc:84:3c:5f:a5:2e:1d:a5:9b:6b:e6:ec: c7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: ED:FF:49:20:56:1B:C9:5E:9D:3D:41:83:33:B4:92:D7:3B:7E:DE:C5 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.usermd.net, DNS:usermd.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 20 00:30:53.035 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:87:F0:CD:F4:24:E0:B1:96:E9:C9:B0: 95:F1:FE:6E:68:97:BB:7E:A2:7C:5F:10:0D:68:22:5F: B9:39:38:D0:F1:02:20:60:C6:5C:FF:D8:10:16:9D:D3: C0:0D:84:D7:36:9B:F1:FE:E9:8C:67:A9:FB:2E:FE:2B: 7E:7F:77:D7:B7:55:80 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Nov 20 00:30:53.074 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:14:E0:A1:65:80:70:32:3F:49:AE:94:05: C3:F9:D4:7B:1F:C9:CA:BF:CA:AA:1B:09:A8:B2:30:3A: CF:90:D8:A7:02:20:51:2F:16:2F:15:CE:39:E7:B2:0F: B2:58:BC:FB:C4:CC:EE:5B:E1:1E:98:16:58:44:42:CE: EE:0B:7D:85:A3:8F Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 20 00:30:53.081 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:06:7B:5B:E9:EE:E9:69:C7:24:31:15:A2: F5:23:07:D4:19:DE:EF:05:C3:6B:0B:20:3F:91:3B:0E: 66:AE:F5:F8:02:21:00:D4:A9:B3:AE:90:76:D3:78:7D: 1B:20:9A:97:EB:3A:0E:EE:47:76:42:79:DA:18:C7:4E: DD:11:4D:39:07:C9:A5 Signature Algorithm: sha256WithRSAEncryption Signature Value: 6b:2b:52:3d:9d:98:45:13:fb:db:c0:a7:f2:83:1e:95:bb:5b: 0c:c6:7d:e4:ee:0b:e1:3e:19:3a:18:f7:69:41:9f:4b:b8:3f: 65:d5:92:c1:09:76:13:e2:8e:f6:35:60:10:36:f9:82:e5:cd: 22:7a:bc:cd:b4:5c:d9:94:2f:b8:30:c5:79:d3:55:ef:d1:a1: b3:25:4c:7a:fe:30:b5:5b:d5:65:ed:be:7e:65:7a:b1:ce:50: 24:a9:4d:c4:e9:39:91:6d:9b:a7:9d:28:27:f3:74:cf:58:d6: 3b:b9:45:b7:5c:48:56:56:93:e1:0c:19:e0:11:b2:f2:c0:74: f4:a0:89:20:56:40:b4:1c:f1:e9:7d:f7:94:8b:a3:af:29:eb: ea:03:cc:07:7b:2d:3c:c2:d5:d0:ec:95:14:fe:05:d0:08:3c: bb:70:39:0e:fe:22:fe:59:b4:e1:43:c8:f2:11:99:41:4e:d6: 99:c7:67:fc:e0:74:62:29:94:79:ba:98:c3:84:93:9a:26:57: d2:ce:bc:98:06:96:e9:37:8b:d8:16:a9:6a:28:93:8d:10:48: 25:e7:ef:87:5d:1b:fb:e3:92:48:d1:a0:8c:7b:e0:9a:d6:45: 3b:92:fd:61:fd:63:d1:39:46:df:a9:08:97:a7:4e:c9:cf:89: 3e:af:f4:2a
-1397485692 | 2024-04-05T12:53:51.555598465 / tcp
220 s21.mydevil.net ESMTP Exim Fri, 05 Apr 2024 14:53:33 +0200 250-s21.mydevil.net Hello o1mm9d2xu3v.net [224.21.150.158] 250-SIZE 209715200 250-8BITMIME 250-DSN 250-PIPELINING 250-PIPECONNECT 250-AUTH LOGIN PLAIN 250-CHUNKING 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
-1400083832 | 2024-04-16T07:27:27.322877587 / tcp
220 s21.mydevil.net ESMTP Exim Tue, 16 Apr 2024 09:26:38 +0200 250-s21.mydevil.net Hello 224.50.149.200 [224.50.149.200] 250-SIZE 209715200 250-8BITMIME 250-DSN 250-PIPELINING 250-PIPECONNECT 250-AUTH LOGIN PLAIN 250-CHUNKING 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
1505986360 | 2024-04-19T03:15:45.797475993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
-1001764030 | 2024-03-24T15:47:19.734538995 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: be:dc:4f:5f:9a:33:14:1d:49:f6:ef:20:4f:ab:ac:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Domain Validation Secure Server CA Validity Not Before: Feb 26 00:00:00 2024 GMT Not After : Mar 27 23:59:59 2025 GMT Subject: CN=*.mydevil.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ad:f9:b2:00:98:46:91:1a:e6:53:4a:03:d4: ee:04:c0:20:29:3a:ac:3f:99:8c:d8:ce:f4:73:51: e8:c6:a2:01:19:e2:6e:6f:4a:0a:be:fb:cf:ba:03: 8e:2e:25:f8:0a:86:7b:21:af:0d:4e:8e:0f:1a:e2: 1e:fe:a7:13:05:db:4e:40:12:cf:91:92:fa:f9:a9: 52:45:61:bb:19:62:67:9b:0e:8e:1c:12:77:f3:e1: e0:4f:6c:09:4c:9c:93:7e:9b:2a:5a:cd:2f:1f:20: f8:40:9d:a5:11:f9:a9:ef:da:5f:dd:75:7d:2f:84: 0f:0e:9a:4e:58:7a:b6:9b:92:96:72:44:e3:0e:36: e8:f9:e7:29:d3:d6:3b:d7:35:64:ec:5d:33:c8:65: 28:f3:63:22:74:47:8f:34:17:9a:d1:cd:e4:b3:10: 6e:1c:0b:3b:35:0d:8d:ef:0d:94:e0:92:7e:df:f2: 54:95:ff:7e:36:6d:d6:34:a2:d4:59:bc:31:e6:89: 86:94:67:52:24:c4:5f:79:17:81:01:6f:04:e2:66: 0a:0e:ea:59:67:43:7c:f5:2c:4f:ca:d7:cb:49:5c: a5:e5:4e:06:4b:93:5d:be:4e:1e:57:27:ec:21:7b: 2b:dc:6a:23:e5:e0:fb:dc:22:8d:01:5e:3a:7f:f3: 11:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 8D:8C:5E:C4:54:AD:8A:E1:77:E9:9B:F9:9B:05:E1:B8:01:8D:61:E1 X509v3 Subject Key Identifier: 1F:9C:8B:5C:73:87:4F:E8:75:F4:08:6A:93:76:73:A1:AB:C3:D7:3E X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.7 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 Authority Information Access: CA Issuers - URI:http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt OCSP - URI:http://ocsp.sectigo.com X509v3 Subject Alternative Name: DNS:*.mydevil.net, DNS:mydevil.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9: 1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08 Timestamp : Feb 26 01:03:17.830 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:20:68:12:34:41:ED:12:92:D8:91:5D:F5: 86:76:B5:FF:18:B5:68:40:98:3C:2A:7C:B8:89:80:DD: 78:F4:31:55:02:20:74:B0:85:D4:DD:8E:86:55:32:CB: 5C:CC:25:38:5E:75:5A:69:B1:9B:EF:51:CA:00:82:D4: 86:DC:EE:18:E3:B9 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53: D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7 Timestamp : Feb 26 01:03:17.992 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C3:B2:F0:45:CC:09:C3:DA:AB:B8:20: 04:97:1D:61:C2:F1:99:F1:19:0D:C8:2B:E5:08:B8:4E: 4E:62:52:61:64:02:20:3C:4A:C1:DF:2D:1B:5F:1E:CC: BC:59:5E:20:D0:F7:2D:53:38:18:86:A6:0D:52:45:16: D3:34:0F:CC:A3:24:1D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB: 1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF Timestamp : Feb 26 01:03:17.939 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:62:CF:4F:44:C6:2C:31:AA:95:FC:5E:AA: B4:A0:47:E5:6A:F3:CE:32:FC:1B:F7:2C:2A:EF:50:CF: FF:10:BA:C0:02:20:1E:3F:E8:FC:44:D6:1F:87:40:BF: C8:11:E1:C1:89:82:A2:E2:58:65:BD:63:E7:24:B3:F7: D8:AD:DE:97:BB:8E Signature Algorithm: sha256WithRSAEncryption Signature Value: 82:63:ea:d6:a4:6b:7f:f6:3a:2d:f4:2e:1d:ae:87:5c:fc:95: d6:a7:4d:82:d6:85:09:2b:22:a2:ba:3c:b0:03:5c:2a:41:19: e5:b0:a5:89:53:0b:a9:8a:d0:b9:49:5a:3d:c2:3d:6f:04:99: 9a:aa:24:97:c8:ad:bd:2e:5b:05:e1:64:99:1f:f5:de:e8:bf: 2e:7d:dd:28:10:7d:41:f4:25:12:f0:bc:12:1e:8f:c8:b6:4d: 33:08:03:7b:5e:9c:0b:6b:4b:3a:68:c9:11:07:71:d8:00:ab: 3e:f4:af:b6:9b:be:58:8c:c8:28:37:36:d9:32:4a:98:ed:14: d1:94:e8:a7:8e:c1:53:62:18:af:a0:2e:99:23:44:7b:ff:9e: bd:e6:c9:a3:9b:32:04:d4:76:41:33:e1:66:15:a6:49:43:66: 2e:54:88:9c:98:0d:27:a0:e6:78:bd:16:fb:3b:c4:d6:71:1b: a6:92:c7:2a:ff:49:a2:94:83:0a:bd:8f:6b:3c:e8:b3:71:18: ca:d7:1f:6b:b0:37:c4:f6:93:6e:a8:4f:9b:94:da:d2:c6:d1: da:25:01:07:42:95:ad:51:03:2a:f9:35:b1:75:df:77:c9:e6: 13:9e:3b:6c:68:63:3c:41:2c:b7:23:82:af:f4:f1:7e:a9:3d: ab:ed:fc:cf
1321638298 | 2024-04-05T06:46:31.2037121200 / tcp
HTTP/1.1 400 Content-Type: text/html;charset=utf-8 Content-Language: en Content-Length: 1967 Date: Fri, 05 Apr 2024 06:46:28 GMT Connection: close <!doctype html><html lang="en"><head><title>HTTP Status 400 – Bad Request</title><style type="text/css">body {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:no
-704562313 | 2024-04-10T21:52:54.1448383306 / tcp
MySQL: Protocol Version: 10 Version: 8.0.35 Capabilities: 65535 Server Language: 45 Server Status: 2 Extended Server Capabilities: 57343 Authentication Plugin: mysql_native_password
1280593336 | 2024-04-16T08:48:14.2816108081 / tcp
HTTP/1.1 404 Content-Type: text/html;charset=utf-8 Content-Language: en Content-Length: 682 Date: Tue, 16 Apr 2024 08:48:14 GMT <!doctype html><html lang="en"><head><title>HTTP Status 404 – Not Found</title><style type="text/css">body {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 404 – Not Found</h1><hr class="line" /><p><b>Type</b> Status Report</p><p><b>Description</b> The origin server did not find a current representation for the target resource or is not willing to disclose that one exists.</p><hr class="line" /><h3>Apache Tomcat/8.5.75</h3></body></html>
-829697469 | 2024-04-11T09:44:27.9469358085 / tcp
HTTP/1.1 200 Set-Cookie: JSESSIONID=78AD498C7B25DCBEB004234B89626496; Path=/; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: text/html;charset=UTF-8 Content-Language: en-US Transfer-Encoding: chunked Date: Thu, 11 Apr 2024 09:44:27 GMT
720857021 | 2024-04-12T05:33:59.3424938086 / tcp
HTTP/1.1 200 Set-Cookie: JSESSIONID=DDC0430C1EE963EFB02FF719B695C677; Path=/; HttpOnly X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache Expires: 0 X-Frame-Options: DENY Content-Type: text/html;charset=UTF-8 Content-Language: en-US Transfer-Encoding: chunked Date: Fri, 12 Apr 2024 05:33:58 GMT
-2115302614 | 2024-04-04T05:56:30.7928598087 / tcp
HTTP/1.1 400 Content-Type: text/html;charset=utf-8 Content-Language: en Content-Length: 1965 Date: Thu, 04 Apr 2024 05:56:30 GMT Connection: close <!doctype html><html lang="en"><head><title>HTTP Status 400 – Bad Request</title><style type="text/css">body {font-family:Tahoma,Arial,sans-serif;} h1, h2, h3, b {color:white;background-color:#525D76;} h1 {font-size:22px;} h2 {font-size:16px;} h3 {font-size:14px;} p {font-size:12px;} a {color:black;} .line {height:1px;background-color:#525D76;border:none;}</style></head><body><h1>HTTP Status 400 – Bad Request</h1><hr class="line" /><p><b>Type</b> Exception Report</p><p><b>Message</b> Invalid character found in method name [0x000x000x000x010x07...]. HTTP method names must be tokens</p><p><b>Description</b> The server cannot or will not process the request due to something that is perceived to be a client error (e.g., malformed request syntax, invalid request message framing, or deceptive request routing).</p><p><b>Exception</b></p><pre>java.lang.IllegalArgumentException: Invalid character found in method name [0x000x000x000x010x07...]. HTTP method names must be tokens org.apache.coyote.http11.Http11InputBuffer.parseRequestLine(Http11InputBuffer.java:434) org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:513) org.apache.coyote.AbstractProcessorLight.process(AbstractProcessorLight.java:65) org.apache.coyote.AbstractProtocol$ConnectionHandler.process(AbstractProtocol.java:847) org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1680) org.apache.tomcat.util.net.SocketProcessorBase.run(SocketProcessorBase.java:49) org.apache.tomcat.util.threads.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1191) org.apache.tomcat.util.threads.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:659) org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) java.base/java.lang.Thread.run(Thread.java:829) </pre><p><b>Note</b> The full stack trace of the root cause is available in the server logs.</p><hr class="line" /><h3>Apache Tomcat/8.5.75</h3></body></html>
578965141 | 2024-04-19T03:42:22.40875425565 / tcp
Minecraft Server: Version: 1.16.5 (Protocol 754) Description: A Minecraft Server Online Players: 0 Maximum Players: 20
1229807564 | 2024-03-26T01:21:36.00504027017 / tcp
MongoDB Server Information Authentication partially enabled { "storageEngines": [ "biggie", "devnull", "ephemeralForTest", "wiredTiger" ], "buildEnvironment": { "distarch": "x86_64", "cc": "cc: FreeBSD clang version 14.0.5 (https://github.com/llvm/llvm-project.git llvmorg-14.0.5-0-gc12386ae247c)", "cppdefines": "SAFEINT_USE_INTRINSICS 0 NDEBUG BOOST_THREAD_VERSION 5 BOOST_THREAD_USES_DATETIME BOOST_SYSTEM_NO_DEPRECATED BOOST_MATH_NO_LONG_DOUBLE_MATH_FUNCTIONS BOOST_ENABLE_ASSERT_DEBUG_HANDLER BOOST_LOG_NO_SHORTHAND_NAMES BOOST_LOG_USE_NATIVE_SYSLOG BOOST_LOG_WITHOUT_THREAD_ATTR ABSL_FORCE_ALIGNED_ACCESS", "cxxflags": "-O2 -fstack-protector-strong -pipe -Woverloaded-virtual -Werror=unused-result -Wpessimizing-move -Wredundant-move -Wno-undefined-var-template -Wno-instantiation-after-specialization -fsized-deallocation -Wno-defaulted-function-deleted -Wunused-exception-parameter -stdlib=libc++ -std=c++17", "linkflags": "-fstack-protector-strong -pthread -Wl,-z,now -rdynamic -fstack-protector-strong -stdlib=libc++ -fuse-ld=lld -Wl,--build-id -Wl,--hash-style=gnu -Wl,-z,noexecstack -Wl,--warn-execstack -Wl,-z,relro -flto -Wl,-z,origin -Wl,--enable-new-dtags", "ccflags": "-O2 -fstack-protector-strong -pipe -fstack-protector-strong -fno-strict-aliasing -ffp-contract=off -fno-omit-frame-pointer -fno-omit-frame-pointer -fno-strict-aliasing -fasynchronous-unwind-tables -ggdb -pthread -Wall -Wsign-compare -Wno-unknown-pragmas -Winvalid-pch -O2 -Wno-unused-local-typedefs -Wno-unused-function -Wno-unused-private-field -Wno-deprecated-declarations -Wno-tautological-constant-out-of-range-compare -Wno-tautological-constant-compare -Wno-tautological-unsigned-zero-compare -Wno-tautological-unsigned-enum-zero-compare -Wno-unused-const-variable -Wno-unused-but-set-variable -Wno-missing-braces -Wno-inconsistent-missing-override -Wno-potentially-evaluated-expression -Wno-unused-lambda-capture -Wno-exceptions -fstack-protector-strong -flto", "target_arch": "x86_64", "distmod": "", "target_os": "freebsd", "cxx": "c++: FreeBSD clang version 14.0.5 (https://github.com/llvm/llvm-project.git llvmorg-14.0.5-0-gc12386ae247c)" }, "ok": 1.0, "sysInfo": "deprecated", "modules": [], "openssl": { "compiled": "OpenSSL 1.1.1t-freebsd 7 Feb 2023", "running": "OpenSSL 1.1.1t-freebsd 7 Feb 2023" }, "javascriptEngine": "mozjs", "version": "4.4.21", "allocator": "system", "versionArray": [ 4, 4, 21, 0 ], "debug": false, "maxBsonObjectSize": 16777216, "bits": 64, "gitVersion": "07fb62484a27e3e464ecdd6c746de64e53e19e56" }
-795948505 | 2024-04-16T09:01:13.85917333060 / tcp
MySQL X Protocol: tls: False authentication.mechanisms: MYSQL41 SHA256_MEMORY doc.formats: text client.interactive: False compression: algorithm: deflate_stream lz4_message zstd_stream node_type: mysql client.pwd_expire_ok: False