Hostnames |
vmi471605.contaboserver.net traidnt.net cpanel.traidnt.net cpcalendars.traidnt.net cpcontacts.traidnt.net mail.traidnt.net webdisk.traidnt.net webmail.traidnt.net www.traidnt.net |
Domains | contaboserver.net traidnt.net |
Country | Germany |
City | Munich |
Organization | Contabo GmbH |
ISP | M-net Telekommunikations GmbH |
ASN | AS8767 |
Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.
CVE-2023-51766 | 5.3Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not. |
CVE-2022-37452 | 9.8Exim before 4.95 has a heap-based buffer overflow for the alias list in host_name_lookup in host.c when sender_host_name is set. |
CVE-2022-37451 | 7.5Exim before 4.96 has an invalid free in pam_converse in auths/call_pam.c because store_free is not used after store_malloc. |
CVE-2021-38371 | 7.5The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending. |
CVE-2021-27216 | 6.3Exim 4 before 4.94.2 has Execution with Unnecessary Privileges. By leveraging a delete_pid_file race condition, a local user can delete arbitrary files as root. This involves the -oP and -oPX options. |
CVE-2020-8015 | 7.8A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1. |
CVE-2020-28026 | 9.8Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root. |
CVE-2020-28025 | 7.5Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkim_finish_bodyhash does not validate the relationship between sig->bodyhash.len and b->bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory. |
CVE-2020-28024 | 9.8Exim 4 before 4.94.2 allows Buffer Underwrite that may result in unauthenticated remote attackers executing arbitrary commands, because smtp_ungetc was only intended to push back characters, but can actually push back non-character error codes such as EOF. |
CVE-2020-28023 | 7.5Exim 4 before 4.94.2 allows Out-of-bounds Read. smtp_setup_msg may disclose sensitive information from process memory to an unauthenticated SMTP client. |
CVE-2020-28022 | 9.8Exim 4 before 4.94.2 has Improper Restriction of Write Operations within the Bounds of a Memory Buffer. This occurs when processing name=value pairs within MAIL FROM and RCPT TO commands. |
CVE-2020-28021 | 8.8Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command. |
CVE-2020-28019 | 7.5Exim 4 before 4.94.2 has Improper Initialization that can lead to recursion-based stack consumption or other consequences. This occurs because use of certain getc functions is mishandled when a client uses BDAT instead of DATA. |
CVE-2020-28018 | 9.8Exim 4 before 4.94.2 allows Use After Free in smtp_reset in certain situations that may be common for builds with OpenSSL. |
CVE-2020-28017 | 9.8Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow in receive_add_recipient via an e-mail message with fifty million recipients. NOTE: remote exploitation may be difficult because of resource consumption. |
CVE-2020-28016 | 7.8Exim 4 before 4.94.2 allows an off-by-two Out-of-bounds Write because "-F ''" is mishandled by parse_fix_phrase. |
CVE-2020-28015 | 7.8Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. Local users can alter the behavior of root processes because a recipient address can have a newline character. |
CVE-2020-28014 | 6.1Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. The -oP option is available to the exim user, and allows a denial of service because root-owned files can be overwritten. |
CVE-2020-28013 | 7.8Exim 4 before 4.94.2 allows Heap-based Buffer Overflow because it mishandles "-F '.('" on the command line, and thus may allow privilege escalation from any user to root. This occurs because of the interpretation of negative sizes in strncpy. |
CVE-2020-28012 | 7.8Exim 4 before 4.94.2 allows Exposure of File Descriptor to Unintended Control Sphere because rda_interpret uses a privileged pipe that lacks a close-on-exec flag. |
CVE-2020-28011 | 7.8Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root. |
CVE-2020-28010 | 7.8Exim 4 before 4.94.2 allows Out-of-bounds Write because the main function, while setuid root, copies the current working directory pathname into a buffer that is too small (on some common platforms). |
CVE-2020-28009 | 7.8Exim 4 before 4.94.2 allows Integer Overflow to Buffer Overflow because get_stdinput allows unbounded reads that are accompanied by unbounded increases in a certain size variable. NOTE: exploitation may be impractical because of the execution time needed to overflow (multiple days). |
CVE-2020-28008 | 7.8Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the spool directory (owned by a non-root user), an attacker can write to a /var/spool/exim4/input spool header file, in which a crafted recipient address can indirectly lead to command execution. |
CVE-2020-28007 | 7.8Exim 4 before 4.94.2 allows Execution with Unnecessary Privileges. Because Exim operates as root in the log directory (owned by a non-root user), a symlink or hard link attack allows overwriting critical root-owned files anywhere on the filesystem. |
CVE-2020-12783 | 7.5Exim through 4.93 has an out-of-bounds read in the SPA authenticator that could result in SPA/NTLM authentication bypass in auths/spa.c and auths/auth-spa.c. |
1163863967 | 2024-05-07T10:41:58.14547053 / tcp
PowerDNS Authoritative Server 4.1.14 (built Sep 23 2020 09:14:39 by root@rpmbuild-64-centos-7.dev.cpanel.net) Resolver ID: vmi471605.contaboserver.net
1163863967 | 2024-05-02T03:45:29.89038253 / udp
PowerDNS Authoritative Server 4.1.14 (built Sep 23 2020 09:14:39 by root@rpmbuild-64-centos-7.dev.cpanel.net) Resolver ID: vmi471605.contaboserver.net
292676471 | 2024-05-05T16:17:32.88562780 / tcp
HTTP/1.1 200 OK Date: Sun, 05 May 2024 16:17:32 GMT Server: Apache Transfer-Encoding: chunked Content-Type: text/html
1952082069 | 2024-04-28T12:42:13.113078110 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE STLS USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
-1345205424 | 2024-05-07T03:00:07.020712111 / tcp
Portmap Program Version Protocol Port portmapper 4 tcp 111 portmapper 3 tcp 111 portmapper 2 tcp 111 portmapper 4 udp 111 portmapper 3 udp 111 portmapper 2 udp 111
-1345205424 | 2024-05-07T18:54:34.812410111 / udp
Portmap Program Version Protocol Port portmapper 4 tcp 111 portmapper 3 tcp 111 portmapper 2 tcp 111 portmapper 4 udp 111 portmapper 3 udp 111 portmapper 2 udp 111
1559185454 | 2024-05-03T03:47:03.332150143 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
-864200357 | 2024-05-03T04:57:39.003487443 / tcp
HTTP/1.1 200 OK Date: Fri, 03 May 2024 04:57:38 GMT Server: Apache Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8
Certificate: Data: Version: 3 (0x2) Serial Number: f8:89:27:c5:4b:b6:c4:b7:04:12:99:7f:44:29:21:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Nov 4 00:00:00 2020 GMT Not After : Feb 2 23:59:59 2021 GMT Subject: CN=traidnt.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a6:5b:55:34:3f:50:50:05:63:0b:d1:24:2e:5b: 51:a1:b7:c7:08:d4:2f:43:37:7e:46:a5:2d:a5:ce: 94:18:69:25:c9:65:6c:fc:76:aa:b4:02:40:06:c4: 20:98:8d:ac:53:9b:c1:a5:e5:c4:7d:23:43:6f:f2: c0:95:7f:7d:d5:7c:a0:01:38:4f:99:d5:91:45:fe: aa:3b:47:34:56:4d:62:a4:b6:95:3d:d4:ae:2a:b6: 1a:6f:7e:ad:e5:84:ea:14:5a:57:80:38:f9:0f:ec: b2:39:38:72:aa:6d:af:a7:70:5f:a7:ac:8e:dd:2f: d7:d7:cf:e3:90:1b:a1:cb:a3:a0:7e:c9:21:d7:7a: 94:ad:d6:a8:d7:cc:9a:43:5a:29:b8:e2:08:0e:41: 95:0d:c9:fe:a2:6b:ff:5e:3e:67:52:98:fc:da:bb: 3d:5c:0a:bd:b7:81:12:78:aa:de:e5:6f:cb:a0:26: 74:6e:f3:2b:d9:6a:b6:6f:ee:67:ee:1c:06:f9:ee: e6:59:66:a5:a2:62:24:ff:26:23:d2:15:4a:fe:de: d3:3f:ac:de:7b:46:7f:2e:d6:82:c3:23:13:0d:f4: ad:7d:e6:d1:ab:9e:55:d3:84:e7:20:0a:a2:48:2e: 83:12:ce:94:dd:48:c7:9a:2f:35:bf:c7:ae:17:89: 79:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 4C:44:35:22:DB:52:02:5F:07:50:37:8D:C4:C3:30:5D:6B:95:A1:D0 X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 7D:3E:F2:F8:8F:FF:88:55:68:24:C2:C0:CA:9E:52:89: 79:2B:C5:0E:78:09:7F:2E:6A:97:68:99:7E:22:F0:D7 Timestamp : Nov 4 23:59:11.292 2020 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:B8:F0:AB:E0:DD:3A:DF:3B:77:16:FC: EC:72:80:B2:99:8D:2B:24:A7:AA:BC:F8:E1:1A:CC:0C: 88:63:B5:F6:DB:02:20:7E:4F:29:0D:6A:59:3B:60:83: 62:03:6C:B8:61:2A:B8:5A:65:F9:02:AA:80:38:6B:23: 94:DE:A5:26:92:72:F6 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 94:20:BC:1E:8E:D5:8D:6C:88:73:1F:82:8B:22:2C:0D: D1:DA:4D:5E:6C:4F:94:3D:61:DB:4E:2F:58:4D:A2:C2 Timestamp : Nov 4 23:59:11.373 2020 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:3E:BD:E3:5C:BC:0E:A2:59:84:A4:CF:62: 70:39:1B:E3:69:F3:83:C0:FD:9F:9A:AF:D4:D2:EF:E2: D1:DB:0B:14:02:20:4D:4F:4B:FD:A4:F3:12:96:36:F8: 7F:7E:4F:AA:A9:F0:85:21:0D:4D:D0:52:0A:05:FB:61: 0C:6F:BD:97:02:65 X509v3 Subject Alternative Name: DNS:traidnt.net, DNS:cpanel.traidnt.net, DNS:cpcalendars.traidnt.net, DNS:cpcontacts.traidnt.net, DNS:mail.traidnt.net, DNS:webdisk.traidnt.net, DNS:webmail.traidnt.net, DNS:www.traidnt.net Signature Algorithm: sha256WithRSAEncryption Signature Value: 17:8e:f8:74:0f:4d:98:6f:57:41:af:1b:c9:7c:a6:d9:91:24: 91:c2:26:d1:45:db:80:16:fa:5d:f3:2c:c6:55:19:77:1c:22: 64:1c:b6:02:8b:8d:ce:6f:fe:48:76:7c:12:f5:8e:6a:54:5d: f9:20:ba:db:d6:0d:d8:85:a4:c8:ff:d7:e7:ba:63:34:6d:57: b2:36:69:8d:79:59:24:67:1b:dd:1b:b6:e8:27:0e:88:9c:e7: 9c:db:97:a5:6b:cf:33:7b:68:7b:48:bf:02:22:79:c3:1e:12: f3:18:d8:b8:a1:86:9f:6e:57:8c:5b:64:f0:fa:0e:3e:af:7b: 2e:45:52:b4:c2:d6:e9:6c:c6:18:74:01:94:8a:18:39:b0:b2: d7:8e:79:13:a5:50:e8:d2:81:47:92:0e:c5:43:40:64:b1:0e: 8a:8e:f6:e5:38:b3:69:c8:d5:e7:63:fb:c4:8a:eb:73:8b:97: 6d:d4:e8:15:c5:7f:32:40:b5:22:06:f7:d0:c1:50:ac:fd:db: 33:51:9e:f1:08:d7:86:0b:81:a5:fd:2d:3f:0a:01:56:9c:46: 7b:51:52:d0:d7:9b:31:04:2d:8f:32:5e:fe:b8:38:d7:1c:e7: a7:9c:41:2b:14:1c:db:84:06:d0:a9:56:da:5f:27:0b:c0:3f: 0a:0b:ad:77
-1184629812 | 2024-04-16T11:14:03.188689465 / tcp
220-vmi471605.contaboserver.net ESMTP Exim 4.93 #2 Tue, 16 Apr 2024 13:13:52 +0200 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-vmi471605.contaboserver.net Hello 224.126.124.16 [224.126.124.16] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-AUTH PLAIN LOGIN 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
-524547730 | 2024-05-06T21:47:39.976529587 / tcp
220-vmi471605.contaboserver.net ESMTP Exim 4.93 #2 Mon, 06 May 2024 23:46:57 +0200 220-We do not authorize the use of this system to transport unsolicited, 220 and/or bulk e-mail. 250-vmi471605.contaboserver.net Hello 73wcrwi4wct.com [224.45.39.191] 250-SIZE 52428800 250-8BITMIME 250-PIPELINING 250-STARTTLS 250 HELP
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
-1132241830 | 2024-04-24T05:35:17.885584993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ AUTH=PLAIN AUTH=LOGIN A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
-1001764030 | 2024-04-26T02:51:53.384613995 / tcp
+OK Dovecot ready. +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN .
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
2046721985 | 2024-04-24T10:57:45.4023952082 / tcp
HTTP/1.1 301 Moved Content-length: 125 Location: https://vmi471605.contaboserver.net:2083/ Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private
1893303570 | 2024-04-25T15:47:51.4478572083 / tcp
HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset="utf-8" Date: Thu, 25 Apr 2024 15:47:50 GMT Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Set-Cookie: cprelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: cpsession=%3a0pNCifr3ZTGnrLMJ%2cde17ff23c7650caa7ab0ebb8e72a9933; HttpOnly; path=/; port=2083; secure Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2083; secure Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: imp_key=expired; HttpOnly; domain=93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083; secure Set-Cookie: Horde=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083 Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2083 Cache-Control: no-cache, no-store, must-revalidate, private X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 38074
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a
515228858 | 2024-05-03T03:36:57.3561162086 / tcp
HTTP/1.1 301 Moved Content-length: 125 Location: https://vmi471605.contaboserver.net:2087/ Content-type: text/html; charset="utf-8" Cache-Control: no-cache, no-store, must-revalidate, private
1091527214 | 2024-05-05T23:11:53.1415422087 / tcp
HTTP/1.1 200 OK Connection: close Content-Type: text/html; charset="utf-8" Date: Sun, 05 May 2024 23:11:53 GMT Cache-Control: no-cache, no-store, must-revalidate, private Pragma: no-cache Set-Cookie: whostmgrrelogin=no; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: whostmgrsession=%3aXXHMWGEa4NLr07xX%2c895ea2f25e1870f4f69c303e4fa44297; HttpOnly; path=/; port=2087; secure Set-Cookie: roundcube_sessid=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: roundcube_sessauth=expired; HttpOnly; domain=93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: Horde=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: Horde=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/horde; port=2087; secure Set-Cookie: PPA_ID=expired; HttpOnly; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: imp_key=expired; HttpOnly; domain=93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087; secure Set-Cookie: Horde=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087 Set-Cookie: horde_secret_key=expired; HttpOnly; domain=.93.104.214.173; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/; port=2087 Cache-Control: no-cache, no-store, must-revalidate, private X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff Content-Length: 37741
Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d8:7e:3f:49:fd:8a:12:fe:be:0b:84:63:9c:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, ST=TX, L=Houston, O=cPanel, Inc., CN=cPanel, Inc. Certification Authority Validity Not Before: Aug 24 00:00:00 2023 GMT Not After : Aug 23 23:59:59 2024 GMT Subject: CN=vmi471605.contaboserver.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:bf:a0:3d:17:b5:ab:fe:ca:22:e2:e1:f4:da:85: 8f:c6:f0:dd:aa:aa:50:32:cc:6e:be:f8:00:f5:b6: 50:88:82:2c:14:ca:0b:b4:92:71:ab:55:62:28:4a: 6f:4e:ca:56:cb:5f:be:fa:a8:0e:31:9f:f2:9f:68: b6:d2:60:d4:5d:93:10:bf:a6:48:d7:3a:d0:00:87: de:4d:a0:52:3c:f5:d4:73:0e:eb:a5:26:f0:c2:a6: db:1e:42:8a:de:81:53:17:44:df:1c:6c:b5:80:df: a8:54:fd:c5:d3:26:b3:00:0a:a6:18:2b:7e:44:f5: ce:27:76:75:9b:b4:60:fd:5d:df:a4:60:6b:c9:d8: 70:3f:e0:42:5f:28:de:d4:4d:df:b8:06:7f:af:a8: fc:7c:a5:07:b9:1d:67:1c:08:67:1a:a2:1c:bb:e0: 77:9e:35:e0:4f:6d:77:8b:7b:9e:56:f8:9b:ce:9d: f5:3b:9b:d7:89:5e:17:09:ae:96:aa:55:ef:1e:07: 60:41:50:a7:16:c2:fc:c8:32:80:79:5b:dc:f1:9d: 66:3a:cd:ab:71:11:e9:a6:d4:35:72:0e:0a:11:15: 1e:ba:fd:9a:8d:27:45:7f:41:0a:9f:b9:d4:05:1e: d2:a1:14:f6:e8:12:44:5c:d9:df:8b:2a:44:b3:86: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7E:03:5A:65:41:6B:A7:7E:0A:E1:B8:9D:08:EA:1D:8E:1D:6A:C7:65 X509v3 Subject Key Identifier: 28:C1:00:F9:A6:46:3A:DA:F7:C1:49:AF:CB:D6:B5:4E:82:DF:31:FA X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Basic Constraints: critical CA:FALSE X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Certificate Policies: Policy: 1.3.6.1.4.1.6449.1.2.2.52 CPS: https://sectigo.com/CPS Policy: 2.23.140.1.2.1 X509v3 CRL Distribution Points: Full Name: URI:http://crl.comodoca.com/cPanelIncCertificationAuthority.crl Authority Information Access: CA Issuers - URI:http://crt.comodoca.com/cPanelIncCertificationAuthority.crt OCSP - URI:http://ocsp.comodoca.com X509v3 Subject Alternative Name: DNS:vmi471605.contaboserver.net CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Aug 24 19:27:47.095 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FE:69:16:05:F0:85:34:97:FD:BC:32: E8:03:F4:C3:50:7A:D7:4A:79:CA:BB:63:0E:1C:8F:D6: 23:F3:EA:61:4C:02:20:20:7A:E2:0E:B8:E9:22:86:18: EA:0D:28:8D:DA:56:82:BB:3D:6C:63:77:17:0E:2F:07: AD:86:2A:34:0C:3D:B0 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DA:B6:BF:6B:3F:B5:B6:22:9F:9B:C2:BB:5C:6B:E8:70: 91:71:6C:BB:51:84:85:34:BD:A4:3D:30:48:D7:FB:AB Timestamp : Aug 24 19:27:47.180 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:B1:2E:06:9B:40:65:E9:9B:61:D7:83: EC:D7:F6:16:51:8C:06:45:FD:4F:DE:71:83:34:45:7D: 2F:6F:62:90:59:02:21:00:82:E8:DF:7C:4E:D4:1E:3A: 51:10:70:E1:3B:B8:68:9B:49:C9:D9:92:A1:2D:D1:00: 1D:37:20:C7:CF:16:8E:81 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 24 19:27:47.203 2023 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:E4:3F:ED:C3:1C:EC:9A:EA:C2:B2:63: 35:4D:66:50:B1:E6:8C:35:77:A9:1F:E1:D5:86:B6:3A: A0:92:40:76:72:02:21:00:A7:C5:54:67:ED:E4:3E:4B: A3:31:C7:B2:AC:7F:AE:E6:71:09:CD:FA:FA:2E:C2:AF: 4A:57:72:49:53:FC:B0:D0 Signature Algorithm: sha256WithRSAEncryption Signature Value: 47:dc:77:7c:45:14:c3:e6:58:94:fa:99:f0:3f:a1:9a:c3:01: e8:bd:2a:eb:7f:f7:6a:cc:b9:d7:7d:0a:53:85:36:91:c8:81: 46:a6:ce:85:0f:4f:62:29:3c:78:3f:c1:e6:72:8c:e9:f7:9c: 76:85:ac:43:e2:90:98:5c:e3:43:2f:41:0c:e1:1c:80:f3:49: 96:a1:9d:1b:98:f0:1b:95:26:61:96:eb:5c:f3:06:d3:67:c4: d0:58:dd:fb:e9:f2:51:a4:d2:33:a9:56:5f:fe:c6:94:da:2e: 13:c1:7e:e8:f5:cc:5e:84:50:d0:dd:5b:e4:c0:32:9c:e2:33: b9:4d:73:27:34:4a:cb:5f:8e:a8:1e:79:2a:ac:33:c0:e9:0b: 11:3d:1c:f4:6b:c5:78:1a:61:b4:26:f3:8a:52:cc:16:05:7f: 34:cd:ea:7a:b4:b6:60:23:65:04:83:d8:c2:3c:bc:eb:4e:8c: 26:6f:47:ca:65:48:f9:8b:8b:af:1f:59:70:e7:97:72:0e:68: 2b:de:3a:2b:52:f2:2b:15:d4:32:8f:a5:6f:d4:66:08:13:f4: 67:11:bf:34:f0:bc:42:7e:c0:7c:33:82:7f:61:c4:cb:41:7b: e2:00:db:47:d5:8f:e2:d1:29:94:cf:79:5c:4e:17:6d:cc:1c: 89:52:17:7a