Hostnames |
backandbodychiropractic.com autodiscover.backandbodychiropractic.com cpanel.backandbodychiropractic.com mail.backandbodychiropractic.com webdisk.backandbodychiropractic.com webmail.backandbodychiropractic.com www.backandbodychiropractic.com mi3-sr19.supercp.com |
Domains | backandbodychiropractic.com supercp.com |
Country | United States |
City | Detroit |
Organization | A2 Hosting, Inc. |
ISP | A2 Hosting, Inc. |
ASN | AS55293 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2022-37454 | The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface. |
CVE-2022-31629 | In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a `__Host-` or `__Secure-` cookie by PHP applications. |
CVE-2022-31628 | In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop. |
CVE-2017-8923 | 7.5The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string. |
CVE-2013-2220 | 7.5Buffer overflow in the radius_get_vendor_attr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large Vendor Specific Attributes (VSA) length value. |
CVE-2007-3205 | 5.0The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin. |
-1002743178 | 2024-04-01T04:58:08.26524821 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 80 allowed. 220-Local time is now 23:57. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 530 Login authentication failed 214-The following SITE commands are recognized ALIAS CHMOD IDLE UTIME 214 Pure-FTPd - http://pureftpd.org/ 211-Extensions supported: UTF8 EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD PRET AUTH TLS PBSZ PROT TVFS ESTA PASV EPSV ESTP 211 End.
Certificate: Data: Version: 3 (0x2) Serial Number: 03:b3:70:b6:25:d2:2f:99:8a:5b:2d:60:8c:7b:ce:65:95:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 15 02:51:30 2024 GMT Not After : May 15 02:51:29 2024 GMT Subject: CN=*.supercp.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cd:04:83:de:f4:14:a9:ac:e9:be:bb:0f:bd:71: bb:9c:bd:8f:b6:7b:a1:d7:ac:c1:6c:e3:b0:9c:ca: 00:e3:23:c0:63:dd:08:c2:21:a6:a2:4a:f0:6a:27: 0b:35:ea:58:14:87:45:ec:ec:b6:5b:63:81:43:f3: f1:a9:f0:65:4b:a4:5c:ff:89:84:49:0a:61:a0:3d: a6:10:e6:5c:1c:c8:1a:a0:ec:7b:09:ea:a2:45:e8: 9b:ac:ff:5b:42:34:f6:a0:95:dd:06:e4:3e:ed:b4: 01:ea:6e:0e:4d:c7:4d:b4:8d:74:31:0a:da:d8:34: 1b:e9:0d:33:17:5a:4e:88:76:1e:c2:d6:98:28:1f: ce:99:f8:32:c8:1e:80:f7:83:ce:01:1e:43:26:25: 33:d4:2e:55:b1:4e:c7:86:85:76:9b:1a:de:fd:b8: aa:18:27:70:af:f7:69:ac:97:06:7b:ec:68:dd:3b: b6:61:6d:54:a6:7a:1d:c8:0e:ea:f5:68:eb:3a:a6: a4:b0:6c:2a:2d:5c:da:30:4f:83:ae:ce:b4:43:10: 61:e8:a4:a0:9d:2a:8a:05:c1:cb:e8:8c:8b:cd:49: 31:95:52:67:a9:4a:17:9b:4b:02:ae:cb:19:51:27: 24:a1:1a:4a:93:f1:dd:80:fd:e0:68:d1:63:3b:f5: 71:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 5C:01:52:C8:12:4D:36:E3:65:94:0C:70:81:61:85:D3:B1:1C:34:FC X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.supercp.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Feb 15 03:51:30.486 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:78:FC:C7:FC:18:90:A0:79:0C:1A:2B:7D: 02:2A:94:60:82:81:EC:B9:08:88:70:6C:AA:19:EA:67: B1:82:67:7A:02:21:00:D7:DE:EC:6D:B7:60:E3:A6:75: 15:24:DB:79:37:DE:15:E1:EF:70:5A:EE:02:2D:2F:13: 04:EE:8E:16:58:B1:8B Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Feb 15 03:51:30.490 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:42:8A:AA:62:05:57:B1:99:4C:6F:7F:22: A2:89:DC:D2:DA:DE:B6:0C:7A:C6:6E:6A:59:38:37:AA: D4:ED:E9:E4:02:20:72:71:A2:B2:7C:83:52:D0:78:56: FA:DB:AE:BB:C3:B7:D3:AF:34:14:27:32:9D:EA:AB:95: A2:65:CB:06:D3:FD Signature Algorithm: sha256WithRSAEncryption Signature Value: 49:54:55:c1:e8:fc:ad:e9:c4:73:24:de:60:be:9a:25:56:8a: 09:f1:6b:90:cb:01:c0:a6:c0:1e:46:3f:1d:1f:e4:49:3b:8e: bb:9f:6e:f2:aa:06:f1:c6:15:a9:8b:a6:9a:ce:c2:74:b3:d6: 24:84:58:8d:00:c1:14:eb:95:8e:b0:4b:be:89:ad:38:23:7d: cf:a8:d1:d5:bc:2d:61:35:f6:26:45:df:ee:93:56:df:27:c5: 3c:7b:44:f9:3d:a6:58:d4:5e:16:91:3b:59:11:2e:65:1f:b7: 1a:c4:b6:5a:d3:d9:10:da:af:84:37:94:b9:ad:33:13:08:65: 4d:e6:9f:17:ef:7f:d2:89:37:03:13:9a:ce:cf:c0:ad:fa:8a: 18:03:bd:fd:80:d4:84:ca:dd:c4:1d:b6:b4:1a:9b:51:0d:5d: 64:e3:43:e4:b4:50:96:0f:bf:4f:73:3f:8d:f0:56:a6:4d:15: dd:62:66:ba:35:6c:53:89:d3:1a:8f:0a:7a:30:35:66:17:a6: 62:fd:97:a9:e3:31:63:fa:ea:57:45:3c:05:e3:02:78:c5:58: 43:52:d8:a4:a9:2b:79:dc:2d:73:60:76:e2:b2:46:6c:4d:c4: 58:2e:84:36:6b:7f:d1:48:c0:4b:1d:17:45:b1:28:d0:67:ed: 0d:f7:be:3b
1484539911 | 2024-04-24T01:46:24.86831880 / tcp
HTTP/1.1 301 Moved Permanently Date: Wed, 24 Apr 2024 01:46:22 GMT Server: Apache X-Powered-By: PHP/7.2.34 X-Redirect-By: WordPress Strict-Transport-Security: max-age=63072000; includeSubDomains X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Location: https://www.drgoff.com/ Cache-Control: max-age=300 Expires: Wed, 24 Apr 2024 01:51:22 GMT X-Endurance-Cache-Level: 2 Content-Length: 0 Content-Type: text/html; charset=UTF-8
1559185454 | 2024-04-03T09:43:20.986839143 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 03:b3:70:b6:25:d2:2f:99:8a:5b:2d:60:8c:7b:ce:65:95:58 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Feb 15 02:51:30 2024 GMT Not After : May 15 02:51:29 2024 GMT Subject: CN=*.supercp.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cd:04:83:de:f4:14:a9:ac:e9:be:bb:0f:bd:71: bb:9c:bd:8f:b6:7b:a1:d7:ac:c1:6c:e3:b0:9c:ca: 00:e3:23:c0:63:dd:08:c2:21:a6:a2:4a:f0:6a:27: 0b:35:ea:58:14:87:45:ec:ec:b6:5b:63:81:43:f3: f1:a9:f0:65:4b:a4:5c:ff:89:84:49:0a:61:a0:3d: a6:10:e6:5c:1c:c8:1a:a0:ec:7b:09:ea:a2:45:e8: 9b:ac:ff:5b:42:34:f6:a0:95:dd:06:e4:3e:ed:b4: 01:ea:6e:0e:4d:c7:4d:b4:8d:74:31:0a:da:d8:34: 1b:e9:0d:33:17:5a:4e:88:76:1e:c2:d6:98:28:1f: ce:99:f8:32:c8:1e:80:f7:83:ce:01:1e:43:26:25: 33:d4:2e:55:b1:4e:c7:86:85:76:9b:1a:de:fd:b8: aa:18:27:70:af:f7:69:ac:97:06:7b:ec:68:dd:3b: b6:61:6d:54:a6:7a:1d:c8:0e:ea:f5:68:eb:3a:a6: a4:b0:6c:2a:2d:5c:da:30:4f:83:ae:ce:b4:43:10: 61:e8:a4:a0:9d:2a:8a:05:c1:cb:e8:8c:8b:cd:49: 31:95:52:67:a9:4a:17:9b:4b:02:ae:cb:19:51:27: 24:a1:1a:4a:93:f1:dd:80:fd:e0:68:d1:63:3b:f5: 71:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 5C:01:52:C8:12:4D:36:E3:65:94:0C:70:81:61:85:D3:B1:1C:34:FC X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.supercp.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Feb 15 03:51:30.486 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:78:FC:C7:FC:18:90:A0:79:0C:1A:2B:7D: 02:2A:94:60:82:81:EC:B9:08:88:70:6C:AA:19:EA:67: B1:82:67:7A:02:21:00:D7:DE:EC:6D:B7:60:E3:A6:75: 15:24:DB:79:37:DE:15:E1:EF:70:5A:EE:02:2D:2F:13: 04:EE:8E:16:58:B1:8B Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Feb 15 03:51:30.490 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:42:8A:AA:62:05:57:B1:99:4C:6F:7F:22: A2:89:DC:D2:DA:DE:B6:0C:7A:C6:6E:6A:59:38:37:AA: D4:ED:E9:E4:02:20:72:71:A2:B2:7C:83:52:D0:78:56: FA:DB:AE:BB:C3:B7:D3:AF:34:14:27:32:9D:EA:AB:95: A2:65:CB:06:D3:FD Signature Algorithm: sha256WithRSAEncryption Signature Value: 49:54:55:c1:e8:fc:ad:e9:c4:73:24:de:60:be:9a:25:56:8a: 09:f1:6b:90:cb:01:c0:a6:c0:1e:46:3f:1d:1f:e4:49:3b:8e: bb:9f:6e:f2:aa:06:f1:c6:15:a9:8b:a6:9a:ce:c2:74:b3:d6: 24:84:58:8d:00:c1:14:eb:95:8e:b0:4b:be:89:ad:38:23:7d: cf:a8:d1:d5:bc:2d:61:35:f6:26:45:df:ee:93:56:df:27:c5: 3c:7b:44:f9:3d:a6:58:d4:5e:16:91:3b:59:11:2e:65:1f:b7: 1a:c4:b6:5a:d3:d9:10:da:af:84:37:94:b9:ad:33:13:08:65: 4d:e6:9f:17:ef:7f:d2:89:37:03:13:9a:ce:cf:c0:ad:fa:8a: 18:03:bd:fd:80:d4:84:ca:dd:c4:1d:b6:b4:1a:9b:51:0d:5d: 64:e3:43:e4:b4:50:96:0f:bf:4f:73:3f:8d:f0:56:a6:4d:15: dd:62:66:ba:35:6c:53:89:d3:1a:8f:0a:7a:30:35:66:17:a6: 62:fd:97:a9:e3:31:63:fa:ea:57:45:3c:05:e3:02:78:c5:58: 43:52:d8:a4:a9:2b:79:dc:2d:73:60:76:e2:b2:46:6c:4d:c4: 58:2e:84:36:6b:7f:d1:48:c0:4b:1d:17:45:b1:28:d0:67:ed: 0d:f7:be:3b
-1498520214 | 2024-04-24T01:46:15.225447443 / tcp
HTTP/1.1 301 Moved Permanently Date: Wed, 24 Apr 2024 01:46:14 GMT Server: Apache Strict-Transport-Security: max-age=63072000; includeSubDomains X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Location: http://www.drgoff.com/ Content-Length: 230 Content-Type: text/html; charset=iso-8859-1
Certificate: Data: Version: 3 (0x2) Serial Number: 03:30:b5:b7:99:c2:a5:cf:43:18:78:21:b5:0c:75:5d:92:4f Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3 Validity Not Before: Sep 19 23:08:39 2019 GMT Not After : Dec 18 23:08:39 2019 GMT Subject: CN=backandbodychiropractic.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:e1:ce:88:09:ab:6c:fa:6c:8d:a9:25:54:e1:e5: 9f:a8:56:79:e3:56:c6:62:ed:c1:c8:e9:df:fb:9a: 17:f3:93:28:0a:81:78:41:48:31:07:1d:7a:a6:2a: 3e:e8:ca:b5:58:d4:15:91:98:3c:82:8a:f8:c2:a7: d9:8f:6d:68:ec:79:df:0a:8a:6e:f5:4e:13:8f:4d: 3b:ba:5b:a7:77:f2:dc:6a:5c:2d:56:ef:a1:a1:d8: 63:db:f5:ca:82:32:a6:1f:21:ab:d7:d5:d5:0e:2b: 8a:e9:83:6e:da:d9:57:d9:4c:e2:27:5c:93:a2:6e: 70:3a:5c:84:3b:fc:56:fd:9d:8b:ba:6e:f0:09:a6: d0:73:79:15:cf:c8:15:c6:87:72:7e:f5:96:aa:39: 4f:08:a8:f1:c6:38:b1:4c:56:75:c7:8d:36:e5:e7: 56:5f:dc:25:2c:3e:76:0c:f4:26:ee:95:be:e2:b0: 71:f5:40:9f:66:0c:a7:bb:a1:57:af:17:a6:a0:ff: a4:7d:6d:f8:66:28:1d:f2:56:54:a0:ad:0e:1c:a0: 28:85:af:85:04:5d:e5:dd:d6:16:1f:65:02:0b:94: fe:bd:04:a2:43:c3:3f:a3:4a:af:1e:23:43:c4:4f: aa:94:4a:80:6f:10:90:b0:98:d8:26:b8:c5:8b:4c: fa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: CD:21:DF:CA:49:66:32:73:1E:51:AF:F7:AB:C5:55:11:1E:CF:27:E5 X509v3 Authority Key Identifier: A8:4A:6A:63:04:7D:DD:BA:E6:D1:39:B7:A6:45:65:EF:F3:A8:EC:A1 Authority Information Access: OCSP - URI:http://ocsp.int-x3.letsencrypt.org CA Issuers - URI:http://cert.int-x3.letsencrypt.org/ X509v3 Subject Alternative Name: DNS:autodiscover.backandbodychiropractic.com, DNS:backandbodychiropractic.com, DNS:cpanel.backandbodychiropractic.com, DNS:mail.backandbodychiropractic.com, DNS:webdisk.backandbodychiropractic.com, DNS:webmail.backandbodychiropractic.com, DNS:www.backandbodychiropractic.com X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 Policy: 1.3.6.1.4.1.44947.1.1.1 CPS: http://cps.letsencrypt.org CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : E2:69:4B:AE:26:E8:E9:40:09:E8:86:1B:B6:3B:83:D4: 3E:E7:FE:74:88:FB:A4:8F:28:93:01:9D:DD:F1:DB:FE Timestamp : Sep 20 00:08:40.304 2019 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:58:04:4B:00:AD:15:3A:33:F3:E7:7F:5B: 4B:1D:85:80:7E:D8:1F:60:02:B0:BE:56:7F:BB:BE:A4: 4A:7C:D6:83:02:21:00:8E:D3:94:AA:18:F3:EF:57:18: A5:85:CC:56:87:93:30:3E:C1:1F:FC:0A:CF:94:F5:8F: 5A:20:C4:B2:F8:85:7A Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 29:3C:51:96:54:C8:39:65:BA:AA:50:FC:58:07:D4:B7: 6F:BF:58:7A:29:72:DC:A4:C3:0C:F4:E5:45:47:F4:78 Timestamp : Sep 20 00:08:39.836 2019 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:CA:25:88:D0:05:FC:64:95:12:1D:C0: 93:88:05:36:25:95:73:70:7B:4D:9C:4F:40:D5:9D:03: A3:9C:B4:00:EB:02:21:00:9F:0A:E8:E2:25:82:D2:7F: EB:C2:FA:BA:93:66:E1:12:DF:1B:1B:BC:56:4A:F6:C4: 22:1C:5D:91:71:4F:A2:5C Signature Algorithm: sha256WithRSAEncryption Signature Value: 19:83:fd:ef:4a:ef:85:8f:52:1d:4e:19:55:d8:6d:79:19:0b: 94:f7:f4:58:ab:32:11:cc:47:f7:07:75:77:26:8a:36:d0:07: c5:bf:1f:75:45:3d:55:3a:3f:f2:7e:b9:0a:12:73:b3:ad:b4: af:3e:e3:76:99:a8:1b:ae:11:8c:b1:3a:e9:4c:26:c3:6e:a6: fb:81:db:35:33:e0:49:74:56:78:e4:60:66:63:91:f1:31:14: 00:dc:71:ef:9b:54:2e:53:9c:ff:bc:0a:41:2f:b6:6c:75:50: af:3e:72:ae:00:75:a5:fd:c2:a3:22:9c:2e:e9:32:b9:e1:95: 40:9d:e2:8c:c8:b4:96:14:9c:af:55:2a:dc:b3:bc:f8:29:7d: 4d:86:8e:e4:c4:b8:75:ce:e4:ec:3d:6c:f0:1b:8f:33:77:c9: 97:19:98:ad:df:6b:d9:ea:42:13:93:b0:d0:b6:d8:21:a4:42: d0:5b:cd:0e:a5:0d:73:75:04:bc:35:02:e1:c6:a1:9f:db:3d: 8f:e6:d1:fd:ef:14:85:ea:11:32:4d:74:36:1e:c4:85:7a:af: 1d:c7:56:a6:ce:e5:d6:0e:1b:20:98:0e:97:8b:2a:8c:31:77: 4a:1c:da:f3:21:f6:43:a2:1b:db:4e:46:e9:57:bb:bb:52:ab: db:64:c7:89