Hostnames |
vmi849934.contaboserver.net nullkode.com www.nullkode.com |
Domains | contaboserver.net nullkode.com |
Country | United States |
City | St. Louis |
Organization | Contabo Inc. |
ISP | Nubes, LLC |
ASN | AS40021 |
Operating System | Linux |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2022-37454 | The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface. |
CVE-2022-31629 | In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications. |
CVE-2022-31628 | In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop. |
CVE-2017-8923 | 7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string. |
CVE-2013-2220 | 7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value. |
CVE-2007-3205 | 5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin. |
80667810 | 2024-04-18T10:06:23.27581622 / tcp
SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u4 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAACAQCviZZEko76WCci+9w8JsCCXGDkuZrOMLBi36IgZF/Ctug+ MQgRsubfEJMz+FyqfqhHFuLlW8yWMtgZX4xfITGz4jMirx7x8TPBiUgmcSNesOJgYWSBMiTLB8YK da8puLhIOfwfVO1y4Ed/obntsow9ZMsrs+YHLiY1UVPOJV7wEkgaZwq7NeNrv5QuC4y7Ucl8zXgk ieBW55CQkXTu7AgsUnohnVsitUsQqU7eFqpuXLgsdl80+NiUqooYnfBtwxjA6or/6EtrVl8Jw6uW 2UG4QjPMQG5HYx1F5y7dUrIJeH4XLNnrozPdVJHuWbins4AoCN56z5v7wPCMZJWTIPecbxzK7Bcw iRlBcPU7tlF3/3gL6s56mrBdbmIwwUNsPt3Ts0BQZ9c4+Gxlz2uS6oioKGW0K5Vxr2cYr3A246xv modtVhNXMI1YOm4ujroIPUIPPm4DQbVd6Nhi6NUwHtq8Jda/uns3OXKTTB5xgLVvQd1WHiwwwepM DrLgtvgqL4OA2kVIFf0ah4AjyRdd7qL3hWynmj0M/vqXWcVxjESDYCAmWc+2cdSAVZeg9/7Hup23 eiMssIAt3fn7rnCcVpS8UtP3e40SZDKFJwC2XOi5AHuh4H6EEEAS71MLqXaA6YSR5QayjYbcfLZ1 BDXfgD0IEAZ0vUSFNUo1Gjw488x0Iw== Fingerprint: a4:4f:f7:cc:62:53:ea:b1:ad:fb:83:fb:0a:4c:c2:6d Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 diffie-hellman-group14-sha1 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
461245319 | 2024-03-31T15:25:21.68710125 / tcp
220 vmi849934.contaboserver.net ESMTP Postfix (Debian/GNU) 250-vmi849934.contaboserver.net 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250 CHUNKING
Certificate: Data: Version: 3 (0x2) Serial Number: 1656865281 (0x62c1c201) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Jul 3 16:21:21 2022 GMT Not After : Jul 3 16:21:21 2023 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f5:29:e5:3b:e4:59:85:3d:a7:d7:05:34:f4:1c: 12:cb:96:fd:c9:95:4e:31:96:6e:0c:21:64:b6:d5: 94:df:b7:27:08:d9:64:fe:84:24:63:8f:1c:90:9d: df:99:07:be:3c:98:b6:9c:c3:58:fc:bc:62:bf:4a: 9f:4a:47:91:b5:b5:ae:5e:19:f4:43:0f:76:98:5a: e1:2e:64:d7:87:b3:a0:cd:3e:ec:89:39:08:70:5a: 81:15:3c:c4:0a:12:db:89:f9:84:0b:d7:09:30:f7: 68:db:f8:61:3b:36:a1:ff:b1:b8:a4:2f:73:19:e0: 42:df:26:bb:21:de:8a:96:2a:f9:f3:83:e3:8b:c7: 8d:6a:48:3c:39:35:98:4a:50:cd:2e:32:93:cc:c8: e7:b9:e0:e8:d6:1c:7b:24:53:bb:c4:24:7a:cb:75: ce:c6:e1:b1:3d:05:30:64:18:f2:c7:22:85:73:98: 7c:de:3c:24:33:3f:ec:15:81:59:c5:02:84:e4:af: ff:32:33:79:c0:ca:17:b7:fe:43:01:be:b6:a4:b8: de:d8:5c:dd:b9:4c:d4:f8:f1:e2:50:b7:bf:3c:bc: b6:9d:20:2b:61:35:b9:80:f5:a7:70:aa:2f:b7:da: 9a:85:b3:88:6b:c5:fd:19:5c:7a:1c:f7:b1:b0:fe: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:f5:99:74:e1:d1:dd:cb:6b:d2:98:53:c6:af:b0:dc:f6:11: 7c:32:92:07:d8:07:91:c6:49:2d:9a:d8:66:62:2e:b7:5d:19: d1:a5:e7:01:62:ae:a0:e9:02:27:29:68:b0:c0:a8:3d:56:71: 84:d2:02:1b:3a:69:a9:25:20:0e:62:88:4e:87:4b:5f:1f:56: f3:82:6b:1a:24:f1:53:6c:9d:66:2f:fb:ce:42:ae:06:e4:9c: bc:85:ad:cc:46:d0:a7:23:54:35:63:6d:01:a9:22:13:42:24: fc:39:b8:72:3b:7c:0c:d7:df:11:16:34:13:8c:b2:82:72:74: 74:fe:1f:74:d9:b7:eb:42:8a:57:20:6e:a4:41:6c:6e:c8:cd: 05:eb:df:13:57:b7:1d:ee:00:d6:9b:93:c8:ad:ff:6c:32:a9: 60:1b:78:4c:94:11:10:7c:82:5a:0e:09:7f:09:1a:db:ab:7c: 66:90:18:5e:77:d5:5a:59:09:ad:64:ec:92:04:d5:a4:c3:e3: 1f:28:63:fe:a8:de:c3:7a:44:37:d8:0c:2d:c3:3a:b4:93:39: c5:d5:34:28:b0:d4:c6:33:f7:88:0e:5e:ed:87:19:24:14:5c: 7d:a3:af:5d:51:82:41:6c:50:f6:b9:54:ac:d5:4a:ee:63:b6: ca:22:d1:02
699091514 | 2024-03-24T14:13:55.15159453 / tcp
none Resolver name: vmi849934.contaboserver.net
699091514 | 2024-04-16T23:11:14.89728853 / udp
none Resolver name: vmi849934.contaboserver.net
-2100514759 | 2024-04-18T07:34:29.55212080 / tcp
HTTP/1.1 301 Moved Permanently Server: nginx Date: Thu, 18 Apr 2024 07:34:29 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://207.244.229.65/
-1377323991 | 2024-04-15T17:46:48.558600110 / tcp
+OK Dovecot ready. <6772.1.661d6802.lqFFtMS+ItDHxRmfVHhsEg==@vmi849934.contaboserver.net> +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE STLS USER SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5 .
Certificate: Data: Version: 3 (0x2) Serial Number: 1656865281 (0x62c1c201) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Jul 3 16:21:21 2022 GMT Not After : Jul 3 16:21:21 2023 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f5:29:e5:3b:e4:59:85:3d:a7:d7:05:34:f4:1c: 12:cb:96:fd:c9:95:4e:31:96:6e:0c:21:64:b6:d5: 94:df:b7:27:08:d9:64:fe:84:24:63:8f:1c:90:9d: df:99:07:be:3c:98:b6:9c:c3:58:fc:bc:62:bf:4a: 9f:4a:47:91:b5:b5:ae:5e:19:f4:43:0f:76:98:5a: e1:2e:64:d7:87:b3:a0:cd:3e:ec:89:39:08:70:5a: 81:15:3c:c4:0a:12:db:89:f9:84:0b:d7:09:30:f7: 68:db:f8:61:3b:36:a1:ff:b1:b8:a4:2f:73:19:e0: 42:df:26:bb:21:de:8a:96:2a:f9:f3:83:e3:8b:c7: 8d:6a:48:3c:39:35:98:4a:50:cd:2e:32:93:cc:c8: e7:b9:e0:e8:d6:1c:7b:24:53:bb:c4:24:7a:cb:75: ce:c6:e1:b1:3d:05:30:64:18:f2:c7:22:85:73:98: 7c:de:3c:24:33:3f:ec:15:81:59:c5:02:84:e4:af: ff:32:33:79:c0:ca:17:b7:fe:43:01:be:b6:a4:b8: de:d8:5c:dd:b9:4c:d4:f8:f1:e2:50:b7:bf:3c:bc: b6:9d:20:2b:61:35:b9:80:f5:a7:70:aa:2f:b7:da: 9a:85:b3:88:6b:c5:fd:19:5c:7a:1c:f7:b1:b0:fe: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:f5:99:74:e1:d1:dd:cb:6b:d2:98:53:c6:af:b0:dc:f6:11: 7c:32:92:07:d8:07:91:c6:49:2d:9a:d8:66:62:2e:b7:5d:19: d1:a5:e7:01:62:ae:a0:e9:02:27:29:68:b0:c0:a8:3d:56:71: 84:d2:02:1b:3a:69:a9:25:20:0e:62:88:4e:87:4b:5f:1f:56: f3:82:6b:1a:24:f1:53:6c:9d:66:2f:fb:ce:42:ae:06:e4:9c: bc:85:ad:cc:46:d0:a7:23:54:35:63:6d:01:a9:22:13:42:24: fc:39:b8:72:3b:7c:0c:d7:df:11:16:34:13:8c:b2:82:72:74: 74:fe:1f:74:d9:b7:eb:42:8a:57:20:6e:a4:41:6c:6e:c8:cd: 05:eb:df:13:57:b7:1d:ee:00:d6:9b:93:c8:ad:ff:6c:32:a9: 60:1b:78:4c:94:11:10:7c:82:5a:0e:09:7f:09:1a:db:ab:7c: 66:90:18:5e:77:d5:5a:59:09:ad:64:ec:92:04:d5:a4:c3:e3: 1f:28:63:fe:a8:de:c3:7a:44:37:d8:0c:2d:c3:3a:b4:93:39: c5:d5:34:28:b0:d4:c6:33:f7:88:0e:5e:ed:87:19:24:14:5c: 7d:a3:af:5d:51:82:41:6c:50:f6:b9:54:ac:d5:4a:ee:63:b6: ca:22:d1:02
-127552878 | 2024-04-12T19:41:20.035247143 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 1656865281 (0x62c1c201) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Jul 3 16:21:21 2022 GMT Not After : Jul 3 16:21:21 2023 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f5:29:e5:3b:e4:59:85:3d:a7:d7:05:34:f4:1c: 12:cb:96:fd:c9:95:4e:31:96:6e:0c:21:64:b6:d5: 94:df:b7:27:08:d9:64:fe:84:24:63:8f:1c:90:9d: df:99:07:be:3c:98:b6:9c:c3:58:fc:bc:62:bf:4a: 9f:4a:47:91:b5:b5:ae:5e:19:f4:43:0f:76:98:5a: e1:2e:64:d7:87:b3:a0:cd:3e:ec:89:39:08:70:5a: 81:15:3c:c4:0a:12:db:89:f9:84:0b:d7:09:30:f7: 68:db:f8:61:3b:36:a1:ff:b1:b8:a4:2f:73:19:e0: 42:df:26:bb:21:de:8a:96:2a:f9:f3:83:e3:8b:c7: 8d:6a:48:3c:39:35:98:4a:50:cd:2e:32:93:cc:c8: e7:b9:e0:e8:d6:1c:7b:24:53:bb:c4:24:7a:cb:75: ce:c6:e1:b1:3d:05:30:64:18:f2:c7:22:85:73:98: 7c:de:3c:24:33:3f:ec:15:81:59:c5:02:84:e4:af: ff:32:33:79:c0:ca:17:b7:fe:43:01:be:b6:a4:b8: de:d8:5c:dd:b9:4c:d4:f8:f1:e2:50:b7:bf:3c:bc: b6:9d:20:2b:61:35:b9:80:f5:a7:70:aa:2f:b7:da: 9a:85:b3:88:6b:c5:fd:19:5c:7a:1c:f7:b1:b0:fe: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:f5:99:74:e1:d1:dd:cb:6b:d2:98:53:c6:af:b0:dc:f6:11: 7c:32:92:07:d8:07:91:c6:49:2d:9a:d8:66:62:2e:b7:5d:19: d1:a5:e7:01:62:ae:a0:e9:02:27:29:68:b0:c0:a8:3d:56:71: 84:d2:02:1b:3a:69:a9:25:20:0e:62:88:4e:87:4b:5f:1f:56: f3:82:6b:1a:24:f1:53:6c:9d:66:2f:fb:ce:42:ae:06:e4:9c: bc:85:ad:cc:46:d0:a7:23:54:35:63:6d:01:a9:22:13:42:24: fc:39:b8:72:3b:7c:0c:d7:df:11:16:34:13:8c:b2:82:72:74: 74:fe:1f:74:d9:b7:eb:42:8a:57:20:6e:a4:41:6c:6e:c8:cd: 05:eb:df:13:57:b7:1d:ee:00:d6:9b:93:c8:ad:ff:6c:32:a9: 60:1b:78:4c:94:11:10:7c:82:5a:0e:09:7f:09:1a:db:ab:7c: 66:90:18:5e:77:d5:5a:59:09:ad:64:ec:92:04:d5:a4:c3:e3: 1f:28:63:fe:a8:de:c3:7a:44:37:d8:0c:2d:c3:3a:b4:93:39: c5:d5:34:28:b0:d4:c6:33:f7:88:0e:5e:ed:87:19:24:14:5c: 7d:a3:af:5d:51:82:41:6c:50:f6:b9:54:ac:d5:4a:ee:63:b6: ca:22:d1:02
-1171653338 | 2024-04-18T07:34:32.321702443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Thu, 18 Apr 2024 07:34:32 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/7.3.33 Set-Cookie: editor=6d42iq1fbipfljde0bhjb5pgtq; path=/ Vary: Accept-Encoding Cache-Control: max-age=1, private X-Powered-By: PleskLin
Certificate: Data: Version: 3 (0x2) Serial Number: 03:da:31:73:8c:87:d3:c3:7e:56:3a:7b:63:bc:75:cb:82:fa Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 27 00:44:10 2024 GMT Not After : May 27 00:44:09 2024 GMT Subject: CN=nullkode.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ac:e3:fb:a2:9b:e2:71:00:38:c4:a5:f3:ca:b7: ea:0a:eb:a6:e6:f6:22:39:89:ad:d3:f4:b5:e8:e4: 31:c7:e8:c8:87:bb:9e:16:5b:aa:7d:f7:00:67:13: 1a:87:f0:32:9b:70:87:3d:1c:d4:9d:bd:ba:4c:bd: c7:08:a2:dc:a5:49:4c:11:a3:25:1a:bf:cd:1b:7c: 8c:07:8f:51:eb:34:5b:13:38:06:f4:40:fc:0a:8c: 99:fa:af:ab:8b:39:fb:66:19:f8:c5:28:9e:b4:1f: 66:12:c6:85:96:90:7a:9b:a8:55:20:e3:e9:10:0a: 77:d1:de:93:b0:e6:a6:ae:ba:68:17:28:5f:ef:ac: 4d:3f:0b:bd:fc:cd:bd:bc:b1:db:dc:7e:c9:8a:d4: 03:56:39:41:ba:10:26:8e:40:3b:f2:e5:e9:03:6c: 42:f8:87:6e:fd:08:88:91:21:50:54:80:5c:e1:a9: 0e:a0:2f:8f:f2:35:00:f0:7c:ff:eb:b7:03:24:31: f6:96:81:bd:57:1f:dd:11:52:d7:e7:c0:65:ab:00: ea:9b:35:83:2e:d4:5a:8c:c9:03:00:e7:5d:6f:9a: fd:35:14:ad:8f:98:40:6c:10:a1:db:f6:de:16:94: a6:0b:cc:90:c1:d6:66:20:8d:63:5c:7b:42:9a:f8: 58:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: C2:67:8C:A9:82:51:11:79:08:A6:FF:BE:B4:38:CD:80:3D:37:3D:D7 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:nullkode.com, DNS:www.nullkode.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 27 01:44:10.230 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:AD:1E:0B:4A:06:F8:FD:44:95:56:B0: 0F:86:7C:7A:E9:E6:4B:13:0C:5B:90:B6:9A:6A:3C:FD: FB:1A:4A:77:21:02:20:4C:F3:2D:94:4D:DA:80:6A:9F: 50:A7:81:F2:F4:33:5D:AA:03:DF:EE:CC:CE:8B:39:1D: 31:F5:34:96:56:3C:2C Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC: 65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8 Timestamp : Feb 27 01:44:10.333 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:21:40:03:7B:A7:33:B2:B1:FA:CB:24:75: 72:BC:5B:FE:7E:17:D0:22:99:1F:E9:0B:5A:4D:D7:3C: 03:04:F8:B5:02:21:00:AC:CB:0E:53:E7:AE:A8:D7:77: E8:FF:32:3A:AD:A8:27:22:74:6B:47:05:21:A7:C2:57: D6:14:BC:EB:18:BE:41 Signature Algorithm: sha256WithRSAEncryption Signature Value: 33:7b:73:29:c5:ee:7e:15:81:4c:1c:e1:a2:05:3e:7a:da:57: 6b:14:d6:35:c5:f7:ea:87:35:47:3e:32:80:13:3c:01:ea:2f: 01:be:5e:66:a1:57:82:22:7b:0c:29:cc:41:3a:07:4a:53:27: 83:3e:2c:7d:d0:f7:08:a6:81:2e:1b:9e:16:5c:af:5f:b1:57: 6f:e7:02:c0:46:48:66:d5:9f:60:26:7a:3d:cc:87:67:ab:ce: 36:7c:2c:86:51:40:76:fa:fb:df:4d:15:aa:ef:84:b9:c7:b3: f7:26:d8:bd:d7:8c:9d:48:98:84:eb:01:54:8f:4b:0e:fd:7c: ff:0f:66:1d:ed:21:5a:78:ba:79:73:57:f5:b1:89:cd:2c:22: 76:7c:74:7f:92:6d:12:22:0c:19:6a:a9:ec:75:1f:0b:41:ed: 1e:4a:d5:a8:1e:55:35:a6:8a:2e:5d:6e:24:9b:8a:3d:c5:b9: bb:54:c5:c7:20:f0:8d:03:6e:30:41:b1:dd:8b:dc:53:05:b2: c1:65:4e:76:e3:e5:b6:02:d3:0b:32:b9:ad:57:27:ed:aa:dd: 39:81:6a:77:e1:76:4f:b8:7d:b6:9c:7d:88:d3:d9:a8:a6:b1: d0:2f:60:20:d7:d8:55:86:d2:05:15:6b:1e:ab:4b:c4:93:f4: d2:9a:de:ab
-1610551838 | 2024-04-15T22:41:34.685094465 / tcp
220 vmi849934.contaboserver.net ESMTP Postfix (Debian/GNU) 250-vmi849934.contaboserver.net 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250-DSN 250 CHUNKING
Certificate: Data: Version: 3 (0x2) Serial Number: 1656865281 (0x62c1c201) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Jul 3 16:21:21 2022 GMT Not After : Jul 3 16:21:21 2023 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f5:29:e5:3b:e4:59:85:3d:a7:d7:05:34:f4:1c: 12:cb:96:fd:c9:95:4e:31:96:6e:0c:21:64:b6:d5: 94:df:b7:27:08:d9:64:fe:84:24:63:8f:1c:90:9d: df:99:07:be:3c:98:b6:9c:c3:58:fc:bc:62:bf:4a: 9f:4a:47:91:b5:b5:ae:5e:19:f4:43:0f:76:98:5a: e1:2e:64:d7:87:b3:a0:cd:3e:ec:89:39:08:70:5a: 81:15:3c:c4:0a:12:db:89:f9:84:0b:d7:09:30:f7: 68:db:f8:61:3b:36:a1:ff:b1:b8:a4:2f:73:19:e0: 42:df:26:bb:21:de:8a:96:2a:f9:f3:83:e3:8b:c7: 8d:6a:48:3c:39:35:98:4a:50:cd:2e:32:93:cc:c8: e7:b9:e0:e8:d6:1c:7b:24:53:bb:c4:24:7a:cb:75: ce:c6:e1:b1:3d:05:30:64:18:f2:c7:22:85:73:98: 7c:de:3c:24:33:3f:ec:15:81:59:c5:02:84:e4:af: ff:32:33:79:c0:ca:17:b7:fe:43:01:be:b6:a4:b8: de:d8:5c:dd:b9:4c:d4:f8:f1:e2:50:b7:bf:3c:bc: b6:9d:20:2b:61:35:b9:80:f5:a7:70:aa:2f:b7:da: 9a:85:b3:88:6b:c5:fd:19:5c:7a:1c:f7:b1:b0:fe: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:f5:99:74:e1:d1:dd:cb:6b:d2:98:53:c6:af:b0:dc:f6:11: 7c:32:92:07:d8:07:91:c6:49:2d:9a:d8:66:62:2e:b7:5d:19: d1:a5:e7:01:62:ae:a0:e9:02:27:29:68:b0:c0:a8:3d:56:71: 84:d2:02:1b:3a:69:a9:25:20:0e:62:88:4e:87:4b:5f:1f:56: f3:82:6b:1a:24:f1:53:6c:9d:66:2f:fb:ce:42:ae:06:e4:9c: bc:85:ad:cc:46:d0:a7:23:54:35:63:6d:01:a9:22:13:42:24: fc:39:b8:72:3b:7c:0c:d7:df:11:16:34:13:8c:b2:82:72:74: 74:fe:1f:74:d9:b7:eb:42:8a:57:20:6e:a4:41:6c:6e:c8:cd: 05:eb:df:13:57:b7:1d:ee:00:d6:9b:93:c8:ad:ff:6c:32:a9: 60:1b:78:4c:94:11:10:7c:82:5a:0e:09:7f:09:1a:db:ab:7c: 66:90:18:5e:77:d5:5a:59:09:ad:64:ec:92:04:d5:a4:c3:e3: 1f:28:63:fe:a8:de:c3:7a:44:37:d8:0c:2d:c3:3a:b4:93:39: c5:d5:34:28:b0:d4:c6:33:f7:88:0e:5e:ed:87:19:24:14:5c: 7d:a3:af:5d:51:82:41:6c:50:f6:b9:54:ac:d5:4a:ee:63:b6: ca:22:d1:02
-628402902 | 2024-04-05T13:14:16.501665993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 1656865281 (0x62c1c201) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Jul 3 16:21:21 2022 GMT Not After : Jul 3 16:21:21 2023 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f5:29:e5:3b:e4:59:85:3d:a7:d7:05:34:f4:1c: 12:cb:96:fd:c9:95:4e:31:96:6e:0c:21:64:b6:d5: 94:df:b7:27:08:d9:64:fe:84:24:63:8f:1c:90:9d: df:99:07:be:3c:98:b6:9c:c3:58:fc:bc:62:bf:4a: 9f:4a:47:91:b5:b5:ae:5e:19:f4:43:0f:76:98:5a: e1:2e:64:d7:87:b3:a0:cd:3e:ec:89:39:08:70:5a: 81:15:3c:c4:0a:12:db:89:f9:84:0b:d7:09:30:f7: 68:db:f8:61:3b:36:a1:ff:b1:b8:a4:2f:73:19:e0: 42:df:26:bb:21:de:8a:96:2a:f9:f3:83:e3:8b:c7: 8d:6a:48:3c:39:35:98:4a:50:cd:2e:32:93:cc:c8: e7:b9:e0:e8:d6:1c:7b:24:53:bb:c4:24:7a:cb:75: ce:c6:e1:b1:3d:05:30:64:18:f2:c7:22:85:73:98: 7c:de:3c:24:33:3f:ec:15:81:59:c5:02:84:e4:af: ff:32:33:79:c0:ca:17:b7:fe:43:01:be:b6:a4:b8: de:d8:5c:dd:b9:4c:d4:f8:f1:e2:50:b7:bf:3c:bc: b6:9d:20:2b:61:35:b9:80:f5:a7:70:aa:2f:b7:da: 9a:85:b3:88:6b:c5:fd:19:5c:7a:1c:f7:b1:b0:fe: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:f5:99:74:e1:d1:dd:cb:6b:d2:98:53:c6:af:b0:dc:f6:11: 7c:32:92:07:d8:07:91:c6:49:2d:9a:d8:66:62:2e:b7:5d:19: d1:a5:e7:01:62:ae:a0:e9:02:27:29:68:b0:c0:a8:3d:56:71: 84:d2:02:1b:3a:69:a9:25:20:0e:62:88:4e:87:4b:5f:1f:56: f3:82:6b:1a:24:f1:53:6c:9d:66:2f:fb:ce:42:ae:06:e4:9c: bc:85:ad:cc:46:d0:a7:23:54:35:63:6d:01:a9:22:13:42:24: fc:39:b8:72:3b:7c:0c:d7:df:11:16:34:13:8c:b2:82:72:74: 74:fe:1f:74:d9:b7:eb:42:8a:57:20:6e:a4:41:6c:6e:c8:cd: 05:eb:df:13:57:b7:1d:ee:00:d6:9b:93:c8:ad:ff:6c:32:a9: 60:1b:78:4c:94:11:10:7c:82:5a:0e:09:7f:09:1a:db:ab:7c: 66:90:18:5e:77:d5:5a:59:09:ad:64:ec:92:04:d5:a4:c3:e3: 1f:28:63:fe:a8:de:c3:7a:44:37:d8:0c:2d:c3:3a:b4:93:39: c5:d5:34:28:b0:d4:c6:33:f7:88:0e:5e:ed:87:19:24:14:5c: 7d:a3:af:5d:51:82:41:6c:50:f6:b9:54:ac:d5:4a:ee:63:b6: ca:22:d1:02
-873282412 | 2024-04-13T14:43:03.774018995 / tcp
+OK Dovecot ready. <1f04.1.661a99e7.ikmhIrZjFtifq9Q2mk+x0A==@vmi849934.contaboserver.net> +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5 .
Certificate: Data: Version: 3 (0x2) Serial Number: 1656865281 (0x62c1c201) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Jul 3 16:21:21 2022 GMT Not After : Jul 3 16:21:21 2023 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:f5:29:e5:3b:e4:59:85:3d:a7:d7:05:34:f4:1c: 12:cb:96:fd:c9:95:4e:31:96:6e:0c:21:64:b6:d5: 94:df:b7:27:08:d9:64:fe:84:24:63:8f:1c:90:9d: df:99:07:be:3c:98:b6:9c:c3:58:fc:bc:62:bf:4a: 9f:4a:47:91:b5:b5:ae:5e:19:f4:43:0f:76:98:5a: e1:2e:64:d7:87:b3:a0:cd:3e:ec:89:39:08:70:5a: 81:15:3c:c4:0a:12:db:89:f9:84:0b:d7:09:30:f7: 68:db:f8:61:3b:36:a1:ff:b1:b8:a4:2f:73:19:e0: 42:df:26:bb:21:de:8a:96:2a:f9:f3:83:e3:8b:c7: 8d:6a:48:3c:39:35:98:4a:50:cd:2e:32:93:cc:c8: e7:b9:e0:e8:d6:1c:7b:24:53:bb:c4:24:7a:cb:75: ce:c6:e1:b1:3d:05:30:64:18:f2:c7:22:85:73:98: 7c:de:3c:24:33:3f:ec:15:81:59:c5:02:84:e4:af: ff:32:33:79:c0:ca:17:b7:fe:43:01:be:b6:a4:b8: de:d8:5c:dd:b9:4c:d4:f8:f1:e2:50:b7:bf:3c:bc: b6:9d:20:2b:61:35:b9:80:f5:a7:70:aa:2f:b7:da: 9a:85:b3:88:6b:c5:fd:19:5c:7a:1c:f7:b1:b0:fe: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication Signature Algorithm: sha256WithRSAEncryption Signature Value: 9d:f5:99:74:e1:d1:dd:cb:6b:d2:98:53:c6:af:b0:dc:f6:11: 7c:32:92:07:d8:07:91:c6:49:2d:9a:d8:66:62:2e:b7:5d:19: d1:a5:e7:01:62:ae:a0:e9:02:27:29:68:b0:c0:a8:3d:56:71: 84:d2:02:1b:3a:69:a9:25:20:0e:62:88:4e:87:4b:5f:1f:56: f3:82:6b:1a:24:f1:53:6c:9d:66:2f:fb:ce:42:ae:06:e4:9c: bc:85:ad:cc:46:d0:a7:23:54:35:63:6d:01:a9:22:13:42:24: fc:39:b8:72:3b:7c:0c:d7:df:11:16:34:13:8c:b2:82:72:74: 74:fe:1f:74:d9:b7:eb:42:8a:57:20:6e:a4:41:6c:6e:c8:cd: 05:eb:df:13:57:b7:1d:ee:00:d6:9b:93:c8:ad:ff:6c:32:a9: 60:1b:78:4c:94:11:10:7c:82:5a:0e:09:7f:09:1a:db:ab:7c: 66:90:18:5e:77:d5:5a:59:09:ad:64:ec:92:04:d5:a4:c3:e3: 1f:28:63:fe:a8:de:c3:7a:44:37:d8:0c:2d:c3:3a:b4:93:39: c5:d5:34:28:b0:d4:c6:33:f7:88:0e:5e:ed:87:19:24:14:5c: 7d:a3:af:5d:51:82:41:6c:50:f6:b9:54:ac:d5:4a:ee:63:b6: ca:22:d1:02
-680032334 | 2024-04-08T23:09:12.1041138443 / tcp
HTTP/1.1 200 OK Server: sw-cp-server Date: Mon, 08 Apr 2024 23:09:11 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Mon, 08 Apr 2024 23:09:11 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff
Certificate: Data: Version: 3 (0x2) Serial Number: 03:19:1e:6c:48:49:af:15:21:48:e8:e0:bd:32:7a:43:a6:9f Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 23 14:44:07 2024 GMT Not After : May 23 14:44:06 2024 GMT Subject: CN=vmi849934.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b6:ce:ab:db:2d:f8:68:58:21:63:61:2a:89:76: 10:54:73:bc:66:0e:db:e2:c6:7b:c9:fe:9d:ea:40: 94:d9:20:b2:fd:6a:18:4d:4c:ac:44:5b:c2:02:d9: f2:8d:f5:52:ec:f8:a9:66:40:10:b5:25:e8:2c:cf: f1:0a:47:c6:71:b6:4c:f2:22:5c:73:40:14:b9:15: 63:97:d2:74:e4:99:d5:c3:d5:6a:66:32:32:d0:cf: b7:ab:82:60:60:22:d9:cf:5d:7b:56:1c:07:b1:c7: fd:e1:c7:ff:d8:52:98:b1:33:24:0d:32:e7:30:3f: 46:bd:c2:32:6c:63:e9:5b:6e:6d:84:1b:e8:de:d1: 2d:71:93:cc:20:ca:67:f9:89:ff:da:9f:92:12:52: 9c:08:13:b2:d2:6c:cc:d4:8b:84:3b:3a:79:8c:3e: 55:62:5a:5c:69:92:a5:8e:45:ed:e8:3f:09:75:e3: 41:0e:65:de:14:c8:06:21:ed:a8:a5:79:4b:30:19: b6:2d:53:18:0e:35:0c:8c:d8:a5:e3:e0:dc:68:9c: ee:94:d1:01:79:27:ba:4e:8b:5f:b0:5e:38:25:03: 7a:d4:cf:a9:ed:fd:02:35:02:f3:7f:34:a5:9c:a1: 75:9a:ea:15:11:f4:03:37:7e:0c:e0:dc:3b:de:d1: bc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 76:61:FE:E3:12:99:53:08:38:5C:13:0F:D1:86:B5:7F:0D:E1:37:38 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:vmi849934.contaboserver.net X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Feb 23 15:44:07.669 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:C6:6C:2D:5E:C4:10:6E:CD:EB:D3:C6: 13:EC:5C:DB:8D:C4:46:29:26:D9:F6:CB:7F:44:61:20: 70:C9:AA:98:59:02:21:00:B4:EB:4D:17:5D:37:68:F4: 88:E7:C5:83:A7:38:53:DE:76:4C:3A:2B:74:4C:B7:14: 30:05:5D:27:DF:EA:61:9F Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B: 67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17 Timestamp : Feb 23 15:44:07.677 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FC:5B:66:80:38:8A:0D:0F:FD:D0:C2: 52:4C:3C:44:48:76:E6:C0:3B:BF:D7:25:E3:56:58:0D: 80:76:48:ED:3A:02:20:1F:A3:F1:7A:94:82:E1:C2:C1: 76:A0:7D:70:77:6C:69:59:0A:98:29:80:B9:DC:A8:4D: 1B:BB:BA:19:52:C7:26 Signature Algorithm: sha256WithRSAEncryption Signature Value: a4:8f:f7:57:4a:ae:19:e4:23:fc:f7:86:c6:57:2f:ca:5d:52: 2a:18:7a:2a:79:cb:44:6f:97:3b:a7:c4:ee:09:17:99:8a:bf: 5d:54:88:94:ea:f9:1c:48:23:f3:a5:de:e9:fb:03:9b:b1:b2: 42:22:6b:cf:28:94:3e:0d:fc:e7:e6:c5:9d:00:d5:6a:5d:2a: 89:ce:d5:b5:24:2d:c1:5d:c2:4c:23:2d:47:00:a4:2d:e3:b9: 67:c7:b9:6f:a4:62:42:38:06:ff:58:2a:7b:fd:8a:1e:f4:c7: 80:1d:58:d3:fa:62:4d:36:79:a8:73:dd:7e:af:58:1d:b6:68: 4f:88:95:1b:fc:e1:5b:48:c6:7e:d6:bd:23:19:d2:7a:f9:24: 85:98:39:12:77:01:81:6e:5a:95:ce:c6:69:f8:ca:47:7e:34: be:35:33:0a:4b:5b:34:87:d4:d0:4f:31:cb:6f:f1:5d:1d:d0: eb:6f:08:90:46:dd:75:1c:92:9f:c1:9e:d0:b3:01:bd:b1:86: b2:3b:ac:27:1a:8d:35:3f:cb:1c:d7:77:d3:45:64:e7:83:b8: 7f:cf:d1:b1:2f:ab:d8:ba:a0:17:0d:03:09:65:37:c1:46:a7: 34:c3:5a:ed:95:2f:4d:b2:21:96:dd:ed:77:62:cb:7e:8b:b1: 6e:29:9b:6e
-585632960 | 2024-04-15T10:53:08.6389138880 / tcp
HTTP/1.1 303 See Other Server: sw-cp-server Date: Mon, 15 Apr 2024 10:53:08 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Mon, 15 Apr 2024 10:53:08 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Location: http://207.244.229.65/login.php X-Content-Type-Options: nosniff 0