Hostnames |
cre-lab.com cpanel.cre-lab.com cpcalendars.cre-lab.com cpcontacts.cre-lab.com mail.cre-lab.com webdisk.cre-lab.com webmail.cre-lab.com www.cre-lab.com illuminati.myhostingservice.net www.illuminati.myhostingservice.net |
Domains | cre-lab.com myhostingservice.net |
Country | United States |
City | Durham |
Organization | VeeroTech Systems LLC |
ISP | NetActuate, Inc |
ASN | AS394344 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-51766 | Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not. |
CVE-2022-37452 | Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set. |
CVE-2022-37451 | Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc. |
CVE-2021-38371 | 5.0The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending. |
CVE-2021-27216 | 6.3Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options. |
CVE-2020-8015 | 7.2A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1. |
CVE-2020-28026 | 9.3Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root. |
CVE-2020-28025 | 5.0Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory. |
CVE-2020-28024 | 7.5Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF. |
CVE-2020-28023 | 5.0Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client. |
CVE-2020-28022 | 7.5Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands. |
CVE-2020-28021 | 9.0Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command. |
CVE-2020-28019 | 5.0Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA. |
CVE-2020-28018 | 7.5Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL. |
CVE-2020-28017 | 7.5Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption. |
CVE-2020-28016 | 7.2Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because "-F ''" is mishandled by parse_fix_phrase. |
CVE-2020-28015 | 7.2Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. Local users can alter the behavior of root processes because a recipient address can have a newline character. |
CVE-2020-28014 | 5.6Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten. |
CVE-2020-28013 | 7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy. |
CVE-2020-28012 | 7.2Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag. |
CVE-2020-28011 | 7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root. |
CVE-2020-28010 | 7.2Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms). |
CVE-2020-28009 | 7.2Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation may be impractical because of the execution time needed to overflow (multiple days). |
CVE-2020-28008 | 7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution. |
CVE-2020-28007 | 7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem. |
CVE-2020-12783 | 5.0Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c. |
-833952537 | 2024-04-11T18:39:22.84230621 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 13:39. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized ALIAS CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD AUTH TLS PBSZ PROT UTF8 TVFS ESTA PASV EPSV SPSV ESTP 211 End.
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
-302322441 | 2024-04-27T05:48:30.93407026 / tcp
220-illuminati.myhostingservice.net ESMTP Exim 4.93 #2 Sat, 27 Apr 2024 01:48:31 -0400 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n
1952082069 | 2024-04-12T18:29:15.195146110 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE STLS USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
0 | 2024-04-18T06:18:49.539009443 / tcp
Certificate: Data: Version: 3 (0x2) Serial Number: c3:85:f2:cd:6b:40:83:94:8a:0e:1f:96:f6:85:dd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Mar 31 00:00:00 2024 GMT Not After : Jun 29 23:59:59 2024 GMT Subject: CN=cre-lab.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c3:3c:18:0f:1d:e2:52:53:75:79:fc:9d:ca:e0: 16:af:e5:81:95:16:31:5a:f7:f6:7a:b0:fa:7a:06: b2:71:92:5d:51:ab:d1:74:ed:07:30:91:1a:a7:7c: df:49:e4:44:32:6e:e0:ab:85:78:6e:8c:f5:30:8b: 5d:b3:25:f8:3f:14:3d:ad:4e:b2:f4:68:79:4a:db: 8e:61:76:ea:43:44:47:f5:b3:dd:42:64:bd:52:3d: ce:83:d2:3f:3f:50:88:f9:02:48:f3:84:01:a3:11: 8a:95:45:f1:66:7b:7a:4d:aa:08:26:36:c7:ce:ef: b8:70:ac:63:9a:6b:91:8b:4b:5c:57:f9:bc:51:97: d6:5b:e3:b6:5c:52:89:13:be:6f:62:42:8c:9f:f6: 37:88:a5:09:41:ec:1a:39:b6:3d:2c:3b:ec:e9:64: 57:ce:e1:3c:c4:6b:af:51:73:80:dd:5d:37:dd:37: ef:a0:01:bd:c0:83:51:0a:3b:42:dc:5c:a1:bf:dd: fd:cf:c1:8f:97:cc:02:ca:3a:de:34:ea:25:80:eb: f8:fb:27:ab:c3:f0:a2:49:58:6c:9f:06:fe:4e:ff: 5a:00:da:3c:a4:57:e1:c9:2f:33:5c:3e:09:9f:cf: 5e:ae:5d:5e:63:dd:a4:bb:55:02:57:86:e1:03:0a: 0e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 08:10:83:62:DE:00:15:07:76:12:9C:65:D8:F1:64:9C:05:21:FB:C8 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Mar 31 07:17:48.675 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:AF:37:CE:56:2D:F0:FA:5F:83:B8:7F: F9:A3:98:C5:AE:53:D6:07:97:76:CD:CB:A7:FB:F3:33: 46:F9:4E:FB:79:02:21:00:9C:08:BB:0C:B7:89:8F:55: 53:60:13:EB:C3:C1:21:15:FC:05:B2:F2:2E:BF:53:8A: 24:A3:95:A8:C6:FD:F6:8E Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Mar 31 07:17:48.603 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:62:CF:BC:8B:DB:97:E8:EE:DD:2A:F4:BA: 14:9B:82:9A:78:51:E0:70:72:60:AB:57:80:98:D4:F0: 22:AD:83:F0:02:21:00:FE:B1:56:6E:0A:6E:71:E2:7E: 5A:60:E8:A5:B5:09:24:0D:CC:10:9C:63:BE:5C:1D:50: F8:0E:CB:CF:80:4E:A9 X509v3 Subject Alternative Name: DNS:cre-lab.com, DNS:cpanel.cre-lab.com, DNS:cpcalendars.cre-lab.com, DNS:cpcontacts.cre-lab.com, DNS:mail.cre-lab.com, DNS:webdisk.cre-lab.com, DNS:webmail.cre-lab.com, DNS:www.cre-lab.com Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:c7:21:d5:1c:60:85:16:a7:8d:53:d3:fb:be:76:7e:be:98: 65:15:e1:ff:1c:15:5e:5e:30:29:1b:d9:79:35:08:6c:7a:86: 52:3d:5f:06:57:54:5b:76:5e:df:5e:c3:28:4a:0e:53:a4:51: 91:a6:2e:33:56:da:67:ca:bb:eb:e9:a0:a6:40:41:1b:c6:35: db:84:aa:e1:b9:28:9c:b0:00:6a:32:bd:38:e0:4f:69:49:c2: 0c:6b:ef:36:2f:75:78:b3:6a:d5:d8:26:bf:25:42:89:6b:13: 7a:e8:35:bd:98:ca:81:36:e6:1c:8a:88:b3:ad:05:1c:23:62: f3:90:2a:d4:34:89:45:8f:89:f7:41:80:c0:4d:67:46:d2:e0: 43:69:c2:a4:3a:c0:aa:48:25:21:36:f1:4d:3f:98:50:7f:3f: 15:bc:1d:a0:5b:74:96:0a:07:11:ca:01:b0:9d:13:7c:e7:b1: 51:0d:d0:0d:97:a4:b1:93:db:7d:53:54:23:7a:56:ba:c3:cc: de:01:43:73:6b:e7:b3:f0:2c:a0:02:55:dc:bb:bb:bf:64:8a: 30:49:4f:cc:c8:cb:23:64:71:2e:4e:d1:0b:9f:fd:1f:cd:4c: be:76:d7:33:69:04:a7:06:4c:93:0e:12:4b:49:56:db:5a:3d: b3:a5:ac:ca
217077758 | 2024-04-12T18:23:51.038312465 / tcp
220-illuminati.myhostingservice.net ESMTP Exim 4.93 #2 Fri, 12 Apr 2024 14:23:05 -0400 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-illuminati.myhostingservice.net Hello 224.81.251.89 [224.81.251.89] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
-806369279 | 2024-03-31T18:31:11.859574587 / tcp
220-illuminati.myhostingservice.net ESMTP Exim 4.93 #2 Sun, 31 Mar 2024 14:30:27 -0400 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-illuminati.myhostingservice.net Hello 224.220.143.43 [224.220.143.43] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
-1132241830 | 2024-04-18T20:57:28.527535993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
-1001764030 | 2024-04-22T11:20:06.949906995 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
446714342 | 2024-04-21T10:05:51.7242122082 / tcp
HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset="utf-8" Date: Sun, 21 Apr 2024 10:05:51 GMT Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: cpsession=%3agRtRmYwsO_ZiFYW_%2ce3c27537c2b958ba89aca3b4409016ba; HttpOnly; path=/; port=2082 Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: Horde=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2082 Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Set-Cookie: imp_key=expired; HttpOnly; domain=192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2082 Cache-Control: no-cache, no-store, must-revalidate, private Content-Length: 37639
-10819469 | 2024-04-24T13:50:23.6177772083 / tcp
HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset="utf-8" Date: Wed, 24 Apr 2024 13:50:23 GMT Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: cpsession=%3a2ZXTTjrO43Piu1rB%2caef604c18cc38c64fbf51d49ec545e15; HttpOnly; path=/; port=2083; secure Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2083; secure Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: imp_key=expired; HttpOnly; domain=192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083 Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083 Cache-Control: no-cache, no-store, must-revalidate, private Content-Length: 40682
Certificate: Data: Version: 3 (0x2) Serial Number: 9a:9d:34:e2:31:6f:9f:70:7d:f2:96:47:a4:02:9a:ca Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 2 00:00:00 2023 GMT Not After : Nov 1 23:59:59 2024 GMT Subject: CN=illuminati.myhostingservice.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cb:5a:86:f8:d0:17:ec:ec:37:fe:4d:14:c4:2f: e5:81:5a:4b:29:93:88:28:00:f9:8a:1e:2e:c7:ae: d9:e8:c6:e9:f4:b7:df:b7:65:46:7e:ac:f8:ef:78: 04:b8:2e:46:54:ab:50:cc:c4:7c:0f:5c:47:ab:37: 05:1a:c9:b1:a1:35:88:42:9c:8c:1d:59:07:b9:1f: 0b:66:75:27:fb:8a:4e:3c:df:e5:ae:78:d7:ce:cd: 5b:2e:d7:28:ef:44:61:e5:b1:73:1d:e5:ea:4a:0d: 79:e6:2b:4f:a4:82:0e:0c:16:e2:3d:32:fb:de:13: d1:e3:1a:c2:4f:21:32:28:48:06:ef:a1:a0:9e:7b: f0:82:60:4d:cc:98:cf:30:32:b9:59:27:7a:b9:42: f0:4a:1e:7e:18:98:77:be:88:07:8b:27:c0:25:01: 3f:eb:b5:24:94:43:45:7d:41:2e:fe:cc:57:d3:4b: ff:a0:04:ac:a6:c7:a1:f3:a3:c3:5d:57:2b:04:60: 7a:1c:91:5f:67:dc:ec:76:2a:94:21:db:95:89:37: fe:1d:e4:05:97:a9:de:76:f5:19:53:eb:6f:b9:5a: b4:a2:fb:10:81:2e:aa:13:31:76:8b:20:4c:96:aa: eb:32:fb:3f:d5:eb:6e:a3:42:f3:d9:8e:ff:ff:3c: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 07:37:CE:2E:2D:25:A5:46:7E:62:9E:5C:A1:A2:79:EA:0B:74:B5:CD X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:illuminati.myhostingservice.net, DNS:www.illuminati.myhostingservice.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Nov 2 06:00:17.768 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:43:B8:68:FF:35:54:75:E3:A0:1F:47:9C: AB:5C:D9:93:D0:72:18:59:0C:42:26:AE:56:90:EF:73: E2:9F:06:10:02:20:40:19:70:19:EB:0C:10:7C:7D:18: 40:3E:12:25:04:B0:64:06:02:B4:E9:17:99:21:7A:93: E3:8F:71:A7:8E:1A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Nov 2 06:00:17.846 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:C2:10:1D:8D:B9:CB:D9:33:C7:36:D1: 93:02:26:2B:0D:81:C9:B7:A4:90:6A:21:88:C4:FA:04: 97:34:4E:1E:71:02:20:5D:50:3F:B9:45:16:91:2F:66: 08:81:0E:DA:3A:2D:91:2E:C3:4A:41:6E:42:7F:90:B7: D5:8C:F8:D4:A6:FC:ED Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Nov 2 06:00:17.814 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:E0:63:14:FC:D2:49:EE:C3:62:6F:4C: EC:B6:E2:89:83:F1:28:50:FE:32:EC:53:E3:66:9D:3E: BD:2A:84:61:BF:02:20:0C:01:88:81:D8:55:58:ED:66: 05:1A:03:CB:49:C9:DC:15:45:76:1C:4B:7E:17:10:85: D7:BD:92:1C:B9:60:06 Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:8e:b8:36:9d:65:b5:d1:00:dc:ac:a1:8b:f6:ab:86:42:f9: 60:94:b1:25:e8:25:7a:bf:6d:b3:c1:84:4e:bb:d0:25:c5:cd: 9d:d7:33:d5:87:62:11:58:bd:0e:89:38:e0:d9:8a:3b:d4:21: a5:fa:a1:d1:a9:d9:04:f7:3b:c2:fc:5e:88:3d:b2:5a:d2:03: 10:a2:11:87:7c:9d:65:af:25:9b:d8:11:c4:b4:c5:e3:76:d1: 97:2e:b6:8c:ee:b3:6e:f4:2f:f2:6e:4f:65:05:38:32:c0:13: d1:82:20:9b:50:66:69:51:13:3b:a9:62:8e:59:02:c3:a9:67: 45:42:d5:f1:90:d0:d2:4a:28:01:ff:54:d6:ee:6a:be:a2:b4: cd:08:e3:fe:54:60:13:6a:f4:cc:b2:f7:01:f4:4e:f3:e3:d0: 89:48:49:20:7e:9f:e4:86:47:80:f4:2d:b9:34:70:30:16:f6: 10:bf:a2:f0:09:cb:aa:75:a4:f0:1e:7c:49:09:de:3d:bc:8e: 8a:6d:81:63:7f:1a:4a:6b:af:48:3a:23:97:f5:54:2d:88:b8: 20:bc:d0:14:87:b7:e2:01:29:cd:5b:8c:13:3e:e7:9b:bb:b2: 32:77:93:03:d7:06:39:48:d6:2c:ce:2d:75:7b:18:da:86:6c: df:10:3a:29
843771216 | 2024-04-25T21:02:45.1367222086 / tcp
HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset="utf-8" Date: Thu, 25 Apr 2024 21:02:44 GMT Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: whostmgrsession=%3ajxn3Ynt1AiC4lfsD%2c4701f92dbf6069f38cd0c859c703865e; HttpOnly; path=/; port=2086 Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: Horde=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2086 Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Set-Cookie: imp_key=expired; HttpOnly; domain=192.138.189.105; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2086 Cache-Control: no-cache, no-store, must-revalidate, private Content-Length: 37291
-1119226501 | 2024-04-23T16:04:55.5573072087 / tcp
HTTP/1.1 301 Moved Content-length: 128 Location: https://illuminati.myhostingservice.net:2087 Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache <html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://illuminati.myhostingservice.net:2087"></head><body></body></html>