Hostnames |
www.manjamo.at suspicious-mayer.70-35-195-114.plesk.page |
Domains | manjamo.at plesk.page |
Country | United States |
City | Kansas City |
Organization | IONOS Inc. |
ISP | IONOS SE |
ASN | AS8560 |
-467889440 | 2024-09-01T22:38:53.64129521 / tcp
220 ProFTPD Server (ProFTPD) [70.35.195.114] 530 Login incorrect. 214-The following commands are recognized (* =>'s unimplemented): CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV EPRT EPSV ALLO RNFR RNTO DELE MDTM RMD XRMD MKD XMKD PWD XPWD SIZE SYST HELP NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF* ENC* MIC* PBSZ PROT TYPE STRU MODE RETR STOR STOU APPE REST ABOR RANG USER PASS ACCT* REIN* LIST NLST STAT SITE MLSD MLST 214 Direct comments to root@0.0.0.0 211-Features: AUTH TLS CCC CLNT CSID EPRT EPSV HOST LANG en-US.UTF-8* MDTM MFF modify;UNIX.group;UNIX.mode; MFMT MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*; PBSZ PROT RANG STREAM REST STREAM SIZE SSCN TVFS UTF8 211 End
Certificate: Data: Version: 3 (0x2) Serial Number: 03:1e:f0:2c:5a:61:58:6f:10:9d:9e:d2:07:06:9c:e7:5d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R10 Validity Not Before: Aug 28 18:44:33 2024 GMT Not After : Nov 26 18:44:32 2024 GMT Subject: CN=suspicious-mayer.70-35-195-114.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:8e:cf:8a:d5:6a:c4:52:9d:ba:36:5f:db:76:f4: 92:05:66:e7:95:56:d9:7b:f6:34:a2:9a:a1:9f:0f: de:a6:ec:85:b5:1e:1f:95:ea:21:b4:7d:54:e9:5b: 3b:60:fc:00:48:05:d7:b0:5c:88:11:1e:42:fa:b8: ad:c8:99:a5:af:e8:02:34:48:ec:64:e8:45:f0:71: db:03:e4:96:dc:ed:73:a1:ba:38:a4:89:43:68:d0: e5:37:e2:7e:f7:6a:b7:f4:ba:ff:77:65:01:5d:53: 05:ae:3d:06:89:4e:75:43:c2:54:4c:34:c8:6e:39: 9f:ec:eb:69:34:1e:0d:c1:34:43:90:97:28:97:24: b9:4c:7a:a7:23:99:3b:2a:41:1e:39:3c:4e:c9:3f: fb:93:e7:5e:e6:0f:7d:a4:c4:a2:4e:2c:e4:1e:1d: 00:43:eb:08:b2:00:4c:49:37:34:c6:7c:89:9d:a7: 7b:77:50:68:23:26:a4:8a:98:2c:e3:a7:28:78:14: 5d:87:64:7b:b3:b5:f7:06:27:8b:84:f5:27:4f:ba: 6b:e8:2f:80:31:23:2a:00:90:33:26:31:6a:b1:b4: ef:65:99:fe:a7:b9:97:fd:2d:e5:f0:ea:81:0f:69: e1:82:0e:d9:cb:84:7b:4a:93:37:24:fe:e6:81:f1: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 39:EF:44:91:C5:94:A3:E5:EE:21:63:FA:6E:71:09:7C:CB:2E:9A:92 X509v3 Authority Key Identifier: BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8 Authority Information Access: OCSP - URI:http://r10.o.lencr.org CA Issuers - URI:http://r10.i.lencr.org/ X509v3 Subject Alternative Name: DNS:suspicious-mayer.70-35-195-114.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Aug 28 19:43:03.977 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:44:6E:12:C1:64:A1:4B:47:89:9A:E7:B9: 35:06:41:D2:E0:60:F2:18:21:16:6C:94:0D:97:6F:80: A3:53:FA:2F:02:20:18:01:A2:59:48:C1:9E:34:54:BB: 51:83:02:B0:64:8E:C8:66:F3:AF:15:CC:A9:46:87:E8: AE:3C:5A:C9:C4:10 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 28 19:43:03.971 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:42:6D:8C:A8:02:77:32:26:75:16:47:7E: 0F:B2:B0:16:A1:A2:6B:A2:D0:17:B9:9D:03:34:5E:E3: B6:7A:F0:05:02:20:7E:82:83:5D:88:7B:2A:E1:2C:21: BC:F7:B5:9B:8D:C9:35:EA:04:4E:62:E8:63:E3:A3:BA: 4B:EC:7E:2C:65:90 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7d:a7:c2:0d:5c:ca:ac:30:f5:2e:70:09:f5:0c:b6:03:bf:ee: 89:12:cf:97:51:1e:16:c9:b5:33:4d:31:30:74:44:07:a8:d5: 78:fe:14:db:d1:fd:1b:ab:d6:16:85:36:90:51:bd:97:01:d2: 70:6d:a5:fd:51:d1:6f:1f:fb:ad:05:2e:8f:00:5d:b1:e9:2b: 36:86:74:6c:34:7d:1e:45:b0:7c:6a:61:14:ba:c3:fe:a0:70: c4:c3:34:0b:b0:dc:2b:a5:f6:71:25:43:83:52:98:23:e8:8f: 20:5b:87:8f:0f:9d:59:57:29:7b:8b:68:01:cc:85:eb:ec:b3: e9:27:20:bc:9b:2e:11:3b:0a:66:e8:83:1a:4c:39:ee:6c:34: 38:a4:b1:1d:b4:f8:de:65:04:30:d2:58:dc:05:f6:5f:86:8a: d3:50:47:df:d3:24:b9:04:ae:6d:25:ef:fc:ec:c8:bf:ef:5f: 30:02:ef:32:ba:99:44:81:9f:5c:50:21:df:2e:47:8b:22:a4: 73:72:01:d3:dd:70:ef:91:07:a1:d6:9e:37:ff:f8:69:d7:83: ae:df:ca:a9:90:f6:c4:a5:de:ce:e4:80:9d:57:ac:1a:dc:74: 04:4a:b8:0a:81:e4:e2:9f:9f:fc:31:98:89:41:08:f9:86:97: 11:6a:ae:bc
-2009434168 | 2024-09-03T21:11:50.48405222 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJtrrtYa8Bvsw9KQbsYy5WFN QgsVsISIcKoNjifcGg6L71vNoFD+W4S4dlbDdzIEoZaueEELZ7F6wg41rj7AX/U= Fingerprint: d6:0a:d5:80:12:3c:01:25:e6:b8:63:36:b5:d3:c6:c0 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
-3493066 | 2024-09-04T21:56:38.65487525 / tcp
220 suspicious-mayer.70-35-195-114.plesk.page ESMTP Postfix (Ubuntu) 250-suspicious-mayer.70-35-195-114.plesk.page 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN
Certificate: Data: Version: 3 (0x2) Serial Number: 1693518139 (0x64f1093b) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 31 21:42:20 2023 GMT Not After : Aug 30 21:42:20 2024 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1: e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33: a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34: 64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4: 74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21: 0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa: 05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29: a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de: 09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c: 98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5: 88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc: 47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81: a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66: 37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26: 2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3: e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22: 80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34: 93:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21 Signature Algorithm: sha256WithRSAEncryption Signature Value: ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90: 18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f: b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9: 39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b: b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a: 31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84: 27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9: 94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44: a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1: b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c: af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61: c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98: 7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a: 17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88: c2:85:58:b6
1947672031 | 2024-09-09T23:55:23.34612580 / tcp
HTTP/1.1 200 OK Server: nginx Date: Mon, 09 Sep 2024 23:55:23 GMT Content-Type: text/html Content-Length: 432 Connection: keep-alive Last-Modified: Mon, 13 Feb 2023 12:26:33 GMT ETag: "1b0-5f493f5195040" Accept-Ranges: bytes Vary: Accept-Encoding
-2003651141 | 2024-09-01T02:44:55.418079443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Sun, 01 Sep 2024 02:44:54 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Sun, 01 Sep 2024 02:44:54 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff
Certificate: Data: Version: 3 (0x2) Serial Number: 03:1e:f0:2c:5a:61:58:6f:10:9d:9e:d2:07:06:9c:e7:5d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R10 Validity Not Before: Aug 28 18:44:33 2024 GMT Not After : Nov 26 18:44:32 2024 GMT Subject: CN=suspicious-mayer.70-35-195-114.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:8e:cf:8a:d5:6a:c4:52:9d:ba:36:5f:db:76:f4: 92:05:66:e7:95:56:d9:7b:f6:34:a2:9a:a1:9f:0f: de:a6:ec:85:b5:1e:1f:95:ea:21:b4:7d:54:e9:5b: 3b:60:fc:00:48:05:d7:b0:5c:88:11:1e:42:fa:b8: ad:c8:99:a5:af:e8:02:34:48:ec:64:e8:45:f0:71: db:03:e4:96:dc:ed:73:a1:ba:38:a4:89:43:68:d0: e5:37:e2:7e:f7:6a:b7:f4:ba:ff:77:65:01:5d:53: 05:ae:3d:06:89:4e:75:43:c2:54:4c:34:c8:6e:39: 9f:ec:eb:69:34:1e:0d:c1:34:43:90:97:28:97:24: b9:4c:7a:a7:23:99:3b:2a:41:1e:39:3c:4e:c9:3f: fb:93:e7:5e:e6:0f:7d:a4:c4:a2:4e:2c:e4:1e:1d: 00:43:eb:08:b2:00:4c:49:37:34:c6:7c:89:9d:a7: 7b:77:50:68:23:26:a4:8a:98:2c:e3:a7:28:78:14: 5d:87:64:7b:b3:b5:f7:06:27:8b:84:f5:27:4f:ba: 6b:e8:2f:80:31:23:2a:00:90:33:26:31:6a:b1:b4: ef:65:99:fe:a7:b9:97:fd:2d:e5:f0:ea:81:0f:69: e1:82:0e:d9:cb:84:7b:4a:93:37:24:fe:e6:81:f1: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 39:EF:44:91:C5:94:A3:E5:EE:21:63:FA:6E:71:09:7C:CB:2E:9A:92 X509v3 Authority Key Identifier: BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8 Authority Information Access: OCSP - URI:http://r10.o.lencr.org CA Issuers - URI:http://r10.i.lencr.org/ X509v3 Subject Alternative Name: DNS:suspicious-mayer.70-35-195-114.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Aug 28 19:43:03.977 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:44:6E:12:C1:64:A1:4B:47:89:9A:E7:B9: 35:06:41:D2:E0:60:F2:18:21:16:6C:94:0D:97:6F:80: A3:53:FA:2F:02:20:18:01:A2:59:48:C1:9E:34:54:BB: 51:83:02:B0:64:8E:C8:66:F3:AF:15:CC:A9:46:87:E8: AE:3C:5A:C9:C4:10 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 28 19:43:03.971 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:42:6D:8C:A8:02:77:32:26:75:16:47:7E: 0F:B2:B0:16:A1:A2:6B:A2:D0:17:B9:9D:03:34:5E:E3: B6:7A:F0:05:02:20:7E:82:83:5D:88:7B:2A:E1:2C:21: BC:F7:B5:9B:8D:C9:35:EA:04:4E:62:E8:63:E3:A3:BA: 4B:EC:7E:2C:65:90 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7d:a7:c2:0d:5c:ca:ac:30:f5:2e:70:09:f5:0c:b6:03:bf:ee: 89:12:cf:97:51:1e:16:c9:b5:33:4d:31:30:74:44:07:a8:d5: 78:fe:14:db:d1:fd:1b:ab:d6:16:85:36:90:51:bd:97:01:d2: 70:6d:a5:fd:51:d1:6f:1f:fb:ad:05:2e:8f:00:5d:b1:e9:2b: 36:86:74:6c:34:7d:1e:45:b0:7c:6a:61:14:ba:c3:fe:a0:70: c4:c3:34:0b:b0:dc:2b:a5:f6:71:25:43:83:52:98:23:e8:8f: 20:5b:87:8f:0f:9d:59:57:29:7b:8b:68:01:cc:85:eb:ec:b3: e9:27:20:bc:9b:2e:11:3b:0a:66:e8:83:1a:4c:39:ee:6c:34: 38:a4:b1:1d:b4:f8:de:65:04:30:d2:58:dc:05:f6:5f:86:8a: d3:50:47:df:d3:24:b9:04:ae:6d:25:ef:fc:ec:c8:bf:ef:5f: 30:02:ef:32:ba:99:44:81:9f:5c:50:21:df:2e:47:8b:22:a4: 73:72:01:d3:dd:70:ef:91:07:a1:d6:9e:37:ff:f8:69:d7:83: ae:df:ca:a9:90:f6:c4:a5:de:ce:e4:80:9d:57:ac:1a:dc:74: 04:4a:b8:0a:81:e4:e2:9f:9f:fc:31:98:89:41:08:f9:86:97: 11:6a:ae:bc
-1098405430 | 2024-09-05T15:32:16.621109587 / tcp
220 suspicious-mayer.70-35-195-114.plesk.page ESMTP Postfix (Ubuntu) 250-suspicious-mayer.70-35-195-114.plesk.page 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN
Certificate: Data: Version: 3 (0x2) Serial Number: 1693518139 (0x64f1093b) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 31 21:42:20 2023 GMT Not After : Aug 30 21:42:20 2024 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1: e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33: a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34: 64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4: 74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21: 0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa: 05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29: a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de: 09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c: 98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5: 88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc: 47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81: a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66: 37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26: 2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3: e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22: 80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34: 93:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21 Signature Algorithm: sha256WithRSAEncryption Signature Value: ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90: 18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f: b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9: 39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b: b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a: 31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84: 27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9: 94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44: a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1: b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c: af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61: c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98: 7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a: 17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88: c2:85:58:b6
-628402902 | 2024-09-11T03:16:11.366055993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready. * CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5 A001 OK Pre-login capabilities listed, post-login capabilities have more. * ID ("name" "Dovecot") A002 OK ID completed. A003 BAD Error in IMAP command received by server. * BYE Logging out A004 OK Logout completed.
Certificate: Data: Version: 3 (0x2) Serial Number: 1693518139 (0x64f1093b) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 31 21:42:20 2023 GMT Not After : Aug 30 21:42:20 2024 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1: e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33: a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34: 64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4: 74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21: 0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa: 05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29: a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de: 09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c: 98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5: 88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc: 47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81: a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66: 37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26: 2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3: e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22: 80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34: 93:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21 Signature Algorithm: sha256WithRSAEncryption Signature Value: ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90: 18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f: b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9: 39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b: b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a: 31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84: 27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9: 94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44: a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1: b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c: af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61: c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98: 7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a: 17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88: c2:85:58:b6
-84169523 | 2024-09-07T21:52:17.786225995 / tcp
+OK Dovecot ready. <6ed56.1.66dccb0c.c19AhGo1NGxfb/ZA1x9Qvg==@suspicious-mayer> +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5 .
Certificate: Data: Version: 3 (0x2) Serial Number: 1693518139 (0x64f1093b) Signature Algorithm: sha256WithRSAEncryption Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Validity Not Before: Aug 31 21:42:20 2023 GMT Not After : Aug 30 21:42:20 2024 GMT Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1: e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33: a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34: 64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4: 74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21: 0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa: 05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29: a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de: 09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c: 98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5: 88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc: 47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81: a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66: 37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26: 2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3: e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22: 80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34: 93:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: 2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21 Signature Algorithm: sha256WithRSAEncryption Signature Value: ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90: 18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f: b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9: 39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b: b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a: 31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84: 27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9: 94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44: a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1: b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c: af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61: c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98: 7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a: 17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88: c2:85:58:b6
827304889 | 2024-08-30T18:54:56.7095698443 / tcp
HTTP/1.1 200 OK Server: sw-cp-server Date: Fri, 30 Aug 2024 18:54:56 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Fri, 30 Aug 2024 18:54:56 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff
Certificate: Data: Version: 3 (0x2) Serial Number: 03:1e:f0:2c:5a:61:58:6f:10:9d:9e:d2:07:06:9c:e7:5d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R10 Validity Not Before: Aug 28 18:44:33 2024 GMT Not After : Nov 26 18:44:32 2024 GMT Subject: CN=suspicious-mayer.70-35-195-114.plesk.page Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:8e:cf:8a:d5:6a:c4:52:9d:ba:36:5f:db:76:f4: 92:05:66:e7:95:56:d9:7b:f6:34:a2:9a:a1:9f:0f: de:a6:ec:85:b5:1e:1f:95:ea:21:b4:7d:54:e9:5b: 3b:60:fc:00:48:05:d7:b0:5c:88:11:1e:42:fa:b8: ad:c8:99:a5:af:e8:02:34:48:ec:64:e8:45:f0:71: db:03:e4:96:dc:ed:73:a1:ba:38:a4:89:43:68:d0: e5:37:e2:7e:f7:6a:b7:f4:ba:ff:77:65:01:5d:53: 05:ae:3d:06:89:4e:75:43:c2:54:4c:34:c8:6e:39: 9f:ec:eb:69:34:1e:0d:c1:34:43:90:97:28:97:24: b9:4c:7a:a7:23:99:3b:2a:41:1e:39:3c:4e:c9:3f: fb:93:e7:5e:e6:0f:7d:a4:c4:a2:4e:2c:e4:1e:1d: 00:43:eb:08:b2:00:4c:49:37:34:c6:7c:89:9d:a7: 7b:77:50:68:23:26:a4:8a:98:2c:e3:a7:28:78:14: 5d:87:64:7b:b3:b5:f7:06:27:8b:84:f5:27:4f:ba: 6b:e8:2f:80:31:23:2a:00:90:33:26:31:6a:b1:b4: ef:65:99:fe:a7:b9:97:fd:2d:e5:f0:ea:81:0f:69: e1:82:0e:d9:cb:84:7b:4a:93:37:24:fe:e6:81:f1: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 39:EF:44:91:C5:94:A3:E5:EE:21:63:FA:6E:71:09:7C:CB:2E:9A:92 X509v3 Authority Key Identifier: BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8 Authority Information Access: OCSP - URI:http://r10.o.lencr.org CA Issuers - URI:http://r10.i.lencr.org/ X509v3 Subject Alternative Name: DNS:suspicious-mayer.70-35-195-114.plesk.page X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Aug 28 19:43:03.977 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:44:6E:12:C1:64:A1:4B:47:89:9A:E7:B9: 35:06:41:D2:E0:60:F2:18:21:16:6C:94:0D:97:6F:80: A3:53:FA:2F:02:20:18:01:A2:59:48:C1:9E:34:54:BB: 51:83:02:B0:64:8E:C8:66:F3:AF:15:CC:A9:46:87:E8: AE:3C:5A:C9:C4:10 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2: 32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B Timestamp : Aug 28 19:43:03.971 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:42:6D:8C:A8:02:77:32:26:75:16:47:7E: 0F:B2:B0:16:A1:A2:6B:A2:D0:17:B9:9D:03:34:5E:E3: B6:7A:F0:05:02:20:7E:82:83:5D:88:7B:2A:E1:2C:21: BC:F7:B5:9B:8D:C9:35:EA:04:4E:62:E8:63:E3:A3:BA: 4B:EC:7E:2C:65:90 Signature Algorithm: sha256WithRSAEncryption Signature Value: 7d:a7:c2:0d:5c:ca:ac:30:f5:2e:70:09:f5:0c:b6:03:bf:ee: 89:12:cf:97:51:1e:16:c9:b5:33:4d:31:30:74:44:07:a8:d5: 78:fe:14:db:d1:fd:1b:ab:d6:16:85:36:90:51:bd:97:01:d2: 70:6d:a5:fd:51:d1:6f:1f:fb:ad:05:2e:8f:00:5d:b1:e9:2b: 36:86:74:6c:34:7d:1e:45:b0:7c:6a:61:14:ba:c3:fe:a0:70: c4:c3:34:0b:b0:dc:2b:a5:f6:71:25:43:83:52:98:23:e8:8f: 20:5b:87:8f:0f:9d:59:57:29:7b:8b:68:01:cc:85:eb:ec:b3: e9:27:20:bc:9b:2e:11:3b:0a:66:e8:83:1a:4c:39:ee:6c:34: 38:a4:b1:1d:b4:f8:de:65:04:30:d2:58:dc:05:f6:5f:86:8a: d3:50:47:df:d3:24:b9:04:ae:6d:25:ef:fc:ec:c8:bf:ef:5f: 30:02:ef:32:ba:99:44:81:9f:5c:50:21:df:2e:47:8b:22:a4: 73:72:01:d3:dd:70:ef:91:07:a1:d6:9e:37:ff:f8:69:d7:83: ae:df:ca:a9:90:f6:c4:a5:de:ce:e4:80:9d:57:ac:1a:dc:74: 04:4a:b8:0a:81:e4:e2:9f:9f:fc:31:98:89:41:08:f9:86:97: 11:6a:ae:bc