Hostnames |
cirrussoftltd.com cpanel.cirrussoftltd.com cpcalendars.cirrussoftltd.com cpcontacts.cirrussoftltd.com mail.cirrussoftltd.com webdisk.cirrussoftltd.com webmail.cirrussoftltd.com www.cirrussoftltd.com serverhost1.serverhost1.net www.serverhost1.serverhost1.net |
Domains | cirrussoftltd.com serverhost1.net |
Country | United Kingdom |
City | Gloucester |
Organization | Fasthosts Internet Limited |
ISP | IONOS SE |
ASN | AS8560 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-51766 | Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not. |
CVE-2022-37452 | Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set. |
CVE-2022-37451 | Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc. |
CVE-2021-38371 | 5.0The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending. |
CVE-2021-27216 | 6.3Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options. |
CVE-2020-8015 | 7.2A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1. |
CVE-2020-28026 | 9.3Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root. |
CVE-2020-28025 | 5.0Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory. |
CVE-2020-28024 | 7.5Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF. |
CVE-2020-28023 | 5.0Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client. |
CVE-2020-28022 | 7.5Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands. |
CVE-2020-28021 | 9.0Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command. |
CVE-2020-28019 | 5.0Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA. |
CVE-2020-28018 | 7.5Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL. |
CVE-2020-28017 | 7.5Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption. |
CVE-2020-28016 | 7.2Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because "-F ''" is mishandled by parse_fix_phrase. |
CVE-2020-28015 | 7.2Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. Local users can alter the behavior of root processes because a recipient address can have a newline character. |
CVE-2020-28014 | 5.6Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten. |
CVE-2020-28013 | 7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy. |
CVE-2020-28012 | 7.2Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag. |
CVE-2020-28011 | 7.2Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root. |
CVE-2020-28010 | 7.2Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms). |
CVE-2020-28009 | 7.2Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation may be impractical because of the execution time needed to overflow (multiple days). |
CVE-2020-28008 | 7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution. |
CVE-2020-28007 | 7.2Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem. |
CVE-2020-12783 | 5.0Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c. |
-1647595002 | 2024-05-13T01:33:25.14934121 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 01:33. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized ALIAS CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD AUTH TLS PBSZ PROT UTF8 TVFS ESTA PASV EPSV SPSV ESTP 211 End.
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
-1186328093 | 2024-05-14T04:32:40.30535953 / tcp
9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.8 Resolver name: serverhost1.serverhost1.net
-1186328093 | 2024-04-19T20:53:06.76820753 / udp
9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.8 Resolver name: serverhost1.serverhost1.net
2070441294 | 2024-05-08T13:57:46.09922980 / tcp
HTTP/1.1 200 OK Date: Wed, 08 May 2024 13:57:45 GMT Server: Apache Last-Modified: Fri, 18 Aug 2017 20:15:01 GMT Accept-Ranges: bytes Content-Length: 1418 Content-Type: text/html
1952082069 | 2024-05-03T17:55:30.049506110 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE STLS USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
1559185454 | 2024-05-13T17:19:01.095941143 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
2070441294 | 2024-05-16T00:47:57.713330443 / tcp
HTTP/1.1 200 OK Date: Thu, 16 May 2024 00:47:55 GMT Server: Apache Last-Modified: Fri, 18 Aug 2017 20:15:01 GMT Accept-Ranges: bytes Content-Length: 1418 Content-Type: text/html
Certificate: Data: Version: 3 (0x2) Serial Number: 03:17:88:b4:50:e1:0f:65:2c:60:1e:d0:7a:26:69:60:6b:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Apr 9 22:06:11 2024 GMT Not After : Jul 8 22:06:10 2024 GMT Subject: CN=mail.cirrussoftltd.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:9e:45:89:7d:49:d2:84:74:7c:56:a4:c2:67:53: 2a:de:d0:22:e9:b3:c5:71:5c:82:2e:7c:97:eb:e2: 06:8b:1c:16:1f:57:b0:69:f2:0e:0f:06:95:93:47: e5:0d:f6:61:49:b1:43:c5:bc:88:77:b9:09:b0:90: 5f:71:8e:e2:ed:79:69:54:77:63:91:0d:b8:90:45: 96:96:c9:d3:3e:c0:9a:17:3c:e2:e9:1c:39:f4:68: 3b:c9:60:4c:fa:f1:3d:b8:e5:b7:fa:a2:fd:3a:f6: ce:1a:bc:17:07:b6:2e:6c:29:81:18:43:82:ed:0c: 24:23:40:be:91:03:39:6b:40:4d:f0:61:0a:ea:0e: 21:c0:7d:fe:f0:90:52:b6:dd:78:79:68:44:5d:1a: 74:52:da:96:c0:8e:06:f3:45:9b:1a:6e:50:b7:cf: 0b:b2:bf:93:4d:bb:e7:f1:68:54:08:8a:a7:f5:fa: 5c:b0:76:79:be:36:1c:db:09:1f:6e:7f:9e:e1:18: 12:28:a0:28:fd:e3:09:18:24:d4:d4:2e:dc:71:b1: ec:39:ed:02:b2:f3:58:30:df:49:b8:10:f5:1b:cc: 89:83:1f:db:e4:45:fc:2a:cc:3a:b2:1b:cd:18:4f: 12:21:b8:7d:42:19:5c:5a:29:cf:94:05:c3:9f:e6: 61:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 50:45:EE:63:DF:A9:4F:06:61:C3:67:D1:52:20:CB:F4:03:8D:69:7A X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:cirrussoftltd.com, DNS:cpanel.cirrussoftltd.com, DNS:cpcalendars.cirrussoftltd.com, DNS:cpcontacts.cirrussoftltd.com, DNS:mail.cirrussoftltd.com, DNS:webdisk.cirrussoftltd.com, DNS:webmail.cirrussoftltd.com, DNS:www.cirrussoftltd.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Apr 9 23:06:11.616 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:43:02:1F:34:6E:CE:AB:12:33:18:D2:2E:D1:27:DD: 06:78:CC:63:5A:77:19:6C:B7:C5:4B:46:C8:0C:76:03: FC:26:E5:02:20:37:8D:7C:BB:D3:CA:44:3B:8B:22:4C: 31:73:34:7D:E4:57:87:57:16:63:76:A3:A8:16:74:61: 6A:2F:88:15:8A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Apr 9 23:06:12.668 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:00:95:78:55:C9:50:D2:0A:E9:52:88:9B: 7C:AA:A3:2F:F9:41:6B:30:CB:33:47:67:92:2E:C8:79: 69:64:25:E0:02:20:07:23:E3:BA:3A:DB:DF:C3:E7:B5: 6B:17:37:27:97:64:F3:4B:93:3D:D1:03:0A:2A:44:5D: F7:E5:BF:DE:59:DF Signature Algorithm: sha256WithRSAEncryption Signature Value: 72:ba:34:10:d6:21:9c:1e:ef:c3:bd:db:7b:13:54:a9:b6:ec: fa:78:6d:92:2e:4a:3f:72:4e:93:06:ab:53:52:b7:07:12:b9: 49:ef:93:5f:30:6e:3a:44:4e:f0:d8:7f:7e:4f:28:94:73:4e: 51:dd:f3:05:b4:6d:13:52:15:39:14:17:cb:2d:9b:11:0a:2f: 0c:57:c4:e9:a3:5d:96:38:fa:f7:80:9e:c7:38:d9:d8:01:97: 5b:17:b1:01:fa:ee:5b:1d:51:88:3d:c9:ef:43:44:3f:98:5b: 5c:93:23:65:06:a3:f3:a8:e0:c3:2b:3b:ff:9c:d5:a4:03:9e: b9:3a:bf:ef:4d:43:f6:d9:6c:6a:3c:0a:09:c0:f3:2a:85:12: fe:c6:14:f1:90:54:f9:ea:26:48:a9:fa:bd:de:7a:1a:65:0c: 3c:b8:e5:9e:f1:9a:57:c2:72:a7:f5:8a:c0:ef:12:9b:7b:78: 55:81:8a:a7:64:b5:be:ce:22:99:e7:fb:b2:28:df:7e:4c:1a: c1:d3:74:c5:cd:42:18:1e:85:1d:e9:1e:fe:71:4f:5a:fb:7c: 08:8b:b8:49:45:70:e1:eb:42:b2:5c:67:a9:a6:a6:1e:18:57: 09:8f:24:eb:80:d0:00:70:89:1e:43:f6:a7:b5:a6:7c:ba:94: 9e:b3:2f:4d
1578732956 | 2024-05-12T13:56:07.288913465 / tcp
220-serverhost1.serverhost1.net ESMTP Exim 4.93 #2 Sun, 12 May 2024 14:55:52 +0100 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-serverhost1.serverhost1.net Hello 1p58tsf8qmbz.com [224.17.131.108] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
-911592367 | 2024-05-07T21:43:35.794678587 / tcp
220-serverhost1.serverhost1.net ESMTP Exim 4.93 #2 Tue, 07 May 2024 22:42:41 +0100 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-serverhost1.serverhost1.net Hello 224.69.17.43 [224.69.17.43] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
-1132241830 | 2024-05-15T09:08:06.147594993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
-1001764030 | 2024-05-11T16:25:59.738196995 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: 7a:93:07:ee:c6:e7:47:11:1a:a3:74:90:71:a6:34:2e Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Oct 3 00:00:00 2023 GMT Not After : Oct 2 23:59:59 2024 GMT Subject: CN=serverhost1.serverhost1.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:ca:7b:81:b0:8a:21:b7:82:e5:37:46:3c:60: 85:15:fc:47:8f:9a:9d:ba:32:71:67:03:e7:c7:4a: 7b:67:3c:51:e0:d2:61:4d:0b:5e:cb:c0:d4:03:4e: 46:df:02:c4:f7:f8:96:32:19:7d:98:49:95:23:67: b9:85:51:8f:0d:b3:cb:ea:0c:d1:2e:64:d6:fe:c6: 3a:c3:83:42:36:b2:04:73:1b:a8:e6:39:db:9c:cf: 25:03:cf:a7:64:da:f8:7b:da:78:e0:df:ab:9e:1b: 1d:e0:72:8a:41:88:89:2a:81:73:ce:a4:f8:55:c6: 74:17:22:55:b8:60:86:3f:24:fa:ef:c5:cc:9a:e1: 41:70:65:7d:a1:b7:44:9e:e5:49:8c:d2:69:36:4f: 40:c7:20:de:42:07:b4:83:37:2f:29:48:34:2c:76: 79:b5:db:00:66:76:09:d6:0d:33:0d:6b:49:c5:2f: 8f:43:06:e0:ab:32:9e:a3:7b:e5:fc:f5:02:d8:0a: 7c:a2:30:1d:c5:6c:1a:67:03:b6:de:c4:8a:41:ba: 9c:51:df:bf:6e:d9:36:86:55:fa:12:57:7c:7b:0b: af:c5:4f:c0:12:2d:f5:28:96:cb:58:c3:7e:7b:15: 7e:a0:41:b2:0b:9e:36:55:5f:8c:2d:12:fe:df:39: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4F:E9:E5:C2:DD:88:3E:66:29:2C:EB:9E:C1:73:66:0C:CB:12:79:52 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:serverhost1.serverhost1.net, DNS:www.serverhost1.serverhost1.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Oct 3 20:48:57.946 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:90:D9:A0:6F:98:EB:77:16:10:15:04: 4F:C7:26:47:71:BE:51:B7:5E:C7:4C:4D:E7:3B:4C:8B: F2:E1:75:AD:26:02:21:00:A2:B7:BD:0E:41:63:ED:4F: 26:B1:99:60:6F:EE:A3:6A:9C:BC:EB:E0:A8:F1:A2:62: FC:BE:4E:CD:15:2D:91:D8 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Oct 3 20:48:58.002 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:73:CB:FE:41:6B:D6:BA:A4:69:D2:FA:61: 92:73:16:FF:1B:69:5F:5F:8F:78:AC:94:B2:33:40:FF: 98:BB:33:2B:02:20:20:50:8A:5F:94:79:7C:47:2E:E9: 3E:64:8C:50:7C:56:95:8C:59:B2:96:D3:8C:5A:2D:22: EB:93:81:FB:52:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Oct 3 20:48:58.060 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:5D:12:F4:3B:C6:ED:B9:C3:91:A8:A9:17: F7:4E:85:12:F9:F2:0A:FF:5D:E4:F5:46:74:87:F5:4C: 01:E6:44:5C:02:21:00:A7:05:1C:DE:E2:5A:2E:9A:95: 05:E8:49:1C:91:CD:F7:7F:6C:A7:BC:1B:37:13:72:84: A2:69:1E:6D:FA:B5:14 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:bb:3d:03:ab:26:b4:14:9d:e6:6b:f5:69:72:2b:8b:aa:e8: a6:5b:5d:8d:c5:30:6f:88:40:16:a0:51:0b:78:e9:5e:cb:a2: 9f:34:81:51:ee:08:3b:c3:3e:61:5d:b4:3c:ab:07:3c:3f:41: 64:0a:81:20:59:50:4c:d4:29:74:09:51:90:8f:0e:08:a0:b6: b8:be:d9:f0:86:d2:03:83:67:d7:b7:f3:61:c6:55:84:d6:c3: 18:41:b4:5a:f7:34:92:33:13:7d:44:1f:e8:7f:93:16:a7:7a: 65:61:e4:1b:a3:8f:27:2d:1d:8a:b6:a3:78:3b:f2:3c:9a:80: 53:d9:1b:4a:cf:28:18:2b:03:63:12:fb:77:7c:33:9a:7d:6b: ab:56:61:9e:6d:22:e3:dd:a5:24:0a:e8:d7:53:e6:ae:fe:b6: 39:27:17:5f:b4:4d:20:36:b1:1a:7a:b6:5e:a9:1b:d9:7c:38: 18:ea:29:39:a8:1e:c2:c0:00:86:d2:43:cd:2d:33:bd:57:58: c9:53:1e:f4:91:52:81:cb:aa:2f:1f:7b:a8:af:70:1a:a9:86: ab:69:50:82:fb:42:16:5d:a6:df:55:1d:cc:04:2f:aa:7a:36: 16:38:3b:8e:53:0f:02:95:36:e3:a3:9b:f2:56:cf:d5:26:56: 67:0b:cd:44
1850993738 | 2024-05-04T05:47:06.8088152086 / tcp
HTTP/1.1 301 Moved Content-length: 112 Location: https://213.171.223.68:2087/ Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private
-693939296 | 2024-05-10T18:51:35.3885532087 / tcp
HTTP/1.1 301 Moved Content-length: 124 Location: https://serverhost1.serverhost1.net:2087 Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache <html><head><META HTTP-EQUIV="refresh" CONTENT="2;URL=https://serverhost1.serverhost1.net:2087"></head><body></body></html>
-602982391 | 2024-05-15T02:26:34.6192402095 / tcp
HTTP/1.1 301 Moved Content-length: 112 Location: https://213.171.223.68:2096/ Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private
-796661113 | 2024-05-15T02:26:36.8570622096 / tcp
HTTP/1.1 301 Moved Content-length: 124 Location: https://serverhost1.serverhost1.net:2096 Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache
-2104190608 | 2024-05-14T11:13:11.8738653306 / tcp
MySQL: Error Message: Host '224.100.62.222' is not allowed to connect to this MySQL server Error Code: 1130