| Hostnames |
www.manjamo.at suspicious-mayer.70-35-195-114.plesk.page |
| Domains | manjamo.at plesk.page |
| Country | United States |
| City | Kansas City |
| Organization | IONOS Inc. |
| ISP | IONOS SE |
| ASN | AS8560 |
-467889440 | 2024-09-01T22:38:53.64129521 / tcp
220 ProFTPD Server (ProFTPD) [70.35.195.114] 530 Login incorrect. 214-The following commands are recognized (* =>'s unimplemented): CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV EPRT EPSV ALLO RNFR RNTO DELE MDTM RMD XRMD MKD XMKD PWD XPWD SIZE SYST HELP NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF* ENC* MIC* PBSZ PROT TYPE STRU MODE RETR STOR STOU APPE REST ABOR RANG USER PASS ACCT* REIN* LIST NLST STAT SITE MLSD MLST 214 Direct comments to root@0.0.0.0 211-Features: AUTH TLS CCC CLNT CSID EPRT EPSV HOST LANG en-US.UTF-8* MDTM MFF modify;UNIX.group;UNIX.mode; MFMT MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*; PBSZ PROT RANG STREAM REST STREAM SIZE SSCN TVFS UTF8 211 End
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:1e:f0:2c:5a:61:58:6f:10:9d:9e:d2:07:06:9c:e7:5d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Aug 28 18:44:33 2024 GMT
Not After : Nov 26 18:44:32 2024 GMT
Subject: CN=suspicious-mayer.70-35-195-114.plesk.page
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:8e:cf:8a:d5:6a:c4:52:9d:ba:36:5f:db:76:f4:
92:05:66:e7:95:56:d9:7b:f6:34:a2:9a:a1:9f:0f:
de:a6:ec:85:b5:1e:1f:95:ea:21:b4:7d:54:e9:5b:
3b:60:fc:00:48:05:d7:b0:5c:88:11:1e:42:fa:b8:
ad:c8:99:a5:af:e8:02:34:48:ec:64:e8:45:f0:71:
db:03:e4:96:dc:ed:73:a1:ba:38:a4:89:43:68:d0:
e5:37:e2:7e:f7:6a:b7:f4:ba:ff:77:65:01:5d:53:
05:ae:3d:06:89:4e:75:43:c2:54:4c:34:c8:6e:39:
9f:ec:eb:69:34:1e:0d:c1:34:43:90:97:28:97:24:
b9:4c:7a:a7:23:99:3b:2a:41:1e:39:3c:4e:c9:3f:
fb:93:e7:5e:e6:0f:7d:a4:c4:a2:4e:2c:e4:1e:1d:
00:43:eb:08:b2:00:4c:49:37:34:c6:7c:89:9d:a7:
7b:77:50:68:23:26:a4:8a:98:2c:e3:a7:28:78:14:
5d:87:64:7b:b3:b5:f7:06:27:8b:84:f5:27:4f:ba:
6b:e8:2f:80:31:23:2a:00:90:33:26:31:6a:b1:b4:
ef:65:99:fe:a7:b9:97:fd:2d:e5:f0:ea:81:0f:69:
e1:82:0e:d9:cb:84:7b:4a:93:37:24:fe:e6:81:f1:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
39:EF:44:91:C5:94:A3:E5:EE:21:63:FA:6E:71:09:7C:CB:2E:9A:92
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:suspicious-mayer.70-35-195-114.plesk.page
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 28 19:43:03.977 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:44:6E:12:C1:64:A1:4B:47:89:9A:E7:B9:
35:06:41:D2:E0:60:F2:18:21:16:6C:94:0D:97:6F:80:
A3:53:FA:2F:02:20:18:01:A2:59:48:C1:9E:34:54:BB:
51:83:02:B0:64:8E:C8:66:F3:AF:15:CC:A9:46:87:E8:
AE:3C:5A:C9:C4:10
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 28 19:43:03.971 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:42:6D:8C:A8:02:77:32:26:75:16:47:7E:
0F:B2:B0:16:A1:A2:6B:A2:D0:17:B9:9D:03:34:5E:E3:
B6:7A:F0:05:02:20:7E:82:83:5D:88:7B:2A:E1:2C:21:
BC:F7:B5:9B:8D:C9:35:EA:04:4E:62:E8:63:E3:A3:BA:
4B:EC:7E:2C:65:90
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
7d:a7:c2:0d:5c:ca:ac:30:f5:2e:70:09:f5:0c:b6:03:bf:ee:
89:12:cf:97:51:1e:16:c9:b5:33:4d:31:30:74:44:07:a8:d5:
78:fe:14:db:d1:fd:1b:ab:d6:16:85:36:90:51:bd:97:01:d2:
70:6d:a5:fd:51:d1:6f:1f:fb:ad:05:2e:8f:00:5d:b1:e9:2b:
36:86:74:6c:34:7d:1e:45:b0:7c:6a:61:14:ba:c3:fe:a0:70:
c4:c3:34:0b:b0:dc:2b:a5:f6:71:25:43:83:52:98:23:e8:8f:
20:5b:87:8f:0f:9d:59:57:29:7b:8b:68:01:cc:85:eb:ec:b3:
e9:27:20:bc:9b:2e:11:3b:0a:66:e8:83:1a:4c:39:ee:6c:34:
38:a4:b1:1d:b4:f8:de:65:04:30:d2:58:dc:05:f6:5f:86:8a:
d3:50:47:df:d3:24:b9:04:ae:6d:25:ef:fc:ec:c8:bf:ef:5f:
30:02:ef:32:ba:99:44:81:9f:5c:50:21:df:2e:47:8b:22:a4:
73:72:01:d3:dd:70:ef:91:07:a1:d6:9e:37:ff:f8:69:d7:83:
ae:df:ca:a9:90:f6:c4:a5:de:ce:e4:80:9d:57:ac:1a:dc:74:
04:4a:b8:0a:81:e4:e2:9f:9f:fc:31:98:89:41:08:f9:86:97:
11:6a:ae:bc
-2009434168 | 2024-09-03T21:11:50.48405222 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJtrrtYa8Bvsw9KQbsYy5WFN QgsVsISIcKoNjifcGg6L71vNoFD+W4S4dlbDdzIEoZaueEELZ7F6wg41rj7AX/U= Fingerprint: d6:0a:d5:80:12:3c:01:25:e6:b8:63:36:b5:d3:c6:c0 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
-3493066 | 2024-09-04T21:56:38.65487525 / tcp
220 suspicious-mayer.70-35-195-114.plesk.page ESMTP Postfix (Ubuntu) 250-suspicious-mayer.70-35-195-114.plesk.page 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1693518139 (0x64f1093b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Validity
Not Before: Aug 31 21:42:20 2023 GMT
Not After : Aug 30 21:42:20 2024 GMT
Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1:
e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33:
a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34:
64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4:
74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21:
0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa:
05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29:
a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de:
09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c:
98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5:
88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc:
47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81:
a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66:
37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26:
2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3:
e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22:
80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Subject Key Identifier:
2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90:
18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f:
b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9:
39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b:
b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a:
31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84:
27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9:
94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44:
a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1:
b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c:
af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61:
c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98:
7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a:
17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88:
c2:85:58:b6
1947672031 | 2024-09-09T23:55:23.34612580 / tcp
HTTP/1.1 200 OK Server: nginx Date: Mon, 09 Sep 2024 23:55:23 GMT Content-Type: text/html Content-Length: 432 Connection: keep-alive Last-Modified: Mon, 13 Feb 2023 12:26:33 GMT ETag: "1b0-5f493f5195040" Accept-Ranges: bytes Vary: Accept-Encoding
-2003651141 | 2024-09-01T02:44:55.418079443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Sun, 01 Sep 2024 02:44:54 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Sun, 01 Sep 2024 02:44:54 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:1e:f0:2c:5a:61:58:6f:10:9d:9e:d2:07:06:9c:e7:5d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Aug 28 18:44:33 2024 GMT
Not After : Nov 26 18:44:32 2024 GMT
Subject: CN=suspicious-mayer.70-35-195-114.plesk.page
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:8e:cf:8a:d5:6a:c4:52:9d:ba:36:5f:db:76:f4:
92:05:66:e7:95:56:d9:7b:f6:34:a2:9a:a1:9f:0f:
de:a6:ec:85:b5:1e:1f:95:ea:21:b4:7d:54:e9:5b:
3b:60:fc:00:48:05:d7:b0:5c:88:11:1e:42:fa:b8:
ad:c8:99:a5:af:e8:02:34:48:ec:64:e8:45:f0:71:
db:03:e4:96:dc:ed:73:a1:ba:38:a4:89:43:68:d0:
e5:37:e2:7e:f7:6a:b7:f4:ba:ff:77:65:01:5d:53:
05:ae:3d:06:89:4e:75:43:c2:54:4c:34:c8:6e:39:
9f:ec:eb:69:34:1e:0d:c1:34:43:90:97:28:97:24:
b9:4c:7a:a7:23:99:3b:2a:41:1e:39:3c:4e:c9:3f:
fb:93:e7:5e:e6:0f:7d:a4:c4:a2:4e:2c:e4:1e:1d:
00:43:eb:08:b2:00:4c:49:37:34:c6:7c:89:9d:a7:
7b:77:50:68:23:26:a4:8a:98:2c:e3:a7:28:78:14:
5d:87:64:7b:b3:b5:f7:06:27:8b:84:f5:27:4f:ba:
6b:e8:2f:80:31:23:2a:00:90:33:26:31:6a:b1:b4:
ef:65:99:fe:a7:b9:97:fd:2d:e5:f0:ea:81:0f:69:
e1:82:0e:d9:cb:84:7b:4a:93:37:24:fe:e6:81:f1:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
39:EF:44:91:C5:94:A3:E5:EE:21:63:FA:6E:71:09:7C:CB:2E:9A:92
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:suspicious-mayer.70-35-195-114.plesk.page
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 28 19:43:03.977 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:44:6E:12:C1:64:A1:4B:47:89:9A:E7:B9:
35:06:41:D2:E0:60:F2:18:21:16:6C:94:0D:97:6F:80:
A3:53:FA:2F:02:20:18:01:A2:59:48:C1:9E:34:54:BB:
51:83:02:B0:64:8E:C8:66:F3:AF:15:CC:A9:46:87:E8:
AE:3C:5A:C9:C4:10
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 28 19:43:03.971 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:42:6D:8C:A8:02:77:32:26:75:16:47:7E:
0F:B2:B0:16:A1:A2:6B:A2:D0:17:B9:9D:03:34:5E:E3:
B6:7A:F0:05:02:20:7E:82:83:5D:88:7B:2A:E1:2C:21:
BC:F7:B5:9B:8D:C9:35:EA:04:4E:62:E8:63:E3:A3:BA:
4B:EC:7E:2C:65:90
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
7d:a7:c2:0d:5c:ca:ac:30:f5:2e:70:09:f5:0c:b6:03:bf:ee:
89:12:cf:97:51:1e:16:c9:b5:33:4d:31:30:74:44:07:a8:d5:
78:fe:14:db:d1:fd:1b:ab:d6:16:85:36:90:51:bd:97:01:d2:
70:6d:a5:fd:51:d1:6f:1f:fb:ad:05:2e:8f:00:5d:b1:e9:2b:
36:86:74:6c:34:7d:1e:45:b0:7c:6a:61:14:ba:c3:fe:a0:70:
c4:c3:34:0b:b0:dc:2b:a5:f6:71:25:43:83:52:98:23:e8:8f:
20:5b:87:8f:0f:9d:59:57:29:7b:8b:68:01:cc:85:eb:ec:b3:
e9:27:20:bc:9b:2e:11:3b:0a:66:e8:83:1a:4c:39:ee:6c:34:
38:a4:b1:1d:b4:f8:de:65:04:30:d2:58:dc:05:f6:5f:86:8a:
d3:50:47:df:d3:24:b9:04:ae:6d:25:ef:fc:ec:c8:bf:ef:5f:
30:02:ef:32:ba:99:44:81:9f:5c:50:21:df:2e:47:8b:22:a4:
73:72:01:d3:dd:70:ef:91:07:a1:d6:9e:37:ff:f8:69:d7:83:
ae:df:ca:a9:90:f6:c4:a5:de:ce:e4:80:9d:57:ac:1a:dc:74:
04:4a:b8:0a:81:e4:e2:9f:9f:fc:31:98:89:41:08:f9:86:97:
11:6a:ae:bc
-1098405430 | 2024-09-05T15:32:16.621109587 / tcp
220 suspicious-mayer.70-35-195-114.plesk.page ESMTP Postfix (Ubuntu) 250-suspicious-mayer.70-35-195-114.plesk.page 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1693518139 (0x64f1093b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Validity
Not Before: Aug 31 21:42:20 2023 GMT
Not After : Aug 30 21:42:20 2024 GMT
Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1:
e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33:
a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34:
64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4:
74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21:
0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa:
05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29:
a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de:
09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c:
98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5:
88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc:
47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81:
a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66:
37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26:
2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3:
e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22:
80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Subject Key Identifier:
2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90:
18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f:
b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9:
39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b:
b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a:
31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84:
27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9:
94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44:
a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1:
b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c:
af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61:
c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98:
7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a:
17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88:
c2:85:58:b6
-628402902 | 2024-09-11T03:16:11.366055993 / tcp
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1693518139 (0x64f1093b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Validity
Not Before: Aug 31 21:42:20 2023 GMT
Not After : Aug 30 21:42:20 2024 GMT
Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1:
e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33:
a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34:
64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4:
74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21:
0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa:
05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29:
a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de:
09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c:
98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5:
88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc:
47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81:
a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66:
37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26:
2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3:
e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22:
80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Subject Key Identifier:
2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90:
18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f:
b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9:
39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b:
b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a:
31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84:
27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9:
94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44:
a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1:
b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c:
af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61:
c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98:
7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a:
17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88:
c2:85:58:b6
-84169523 | 2024-09-07T21:52:17.786225995 / tcp
+OK Dovecot ready. <6ed56.1.66dccb0c.c19AhGo1NGxfb/ZA1x9Qvg==@suspicious-mayer> +OK CAPA TOP UIDL RESP-CODES PIPELINING AUTH-RESP-CODE USER SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5 .
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1693518139 (0x64f1093b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Validity
Not Before: Aug 31 21:42:20 2023 GMT
Not After : Aug 30 21:42:20 2024 GMT
Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c4:79:b7:8a:6d:be:48:c3:ee:0f:16:fd:ca:b1:
e2:54:62:ac:24:b7:58:c4:7a:cb:cd:a2:63:26:33:
a8:51:ba:0c:53:6c:86:0a:9f:a5:48:29:89:8a:34:
64:18:91:3c:67:ce:11:9c:14:77:32:ab:89:b5:b4:
74:e2:a3:23:c8:de:6e:ca:9a:ba:79:c2:f0:b5:21:
0d:17:ba:4d:2a:87:b6:ba:2c:93:51:8e:b1:42:fa:
05:ba:31:5d:12:35:1b:a5:39:d1:c7:83:bc:c3:29:
a5:92:b8:0f:4b:fc:c2:b0:c0:0a:ce:62:ac:b3:de:
09:c0:a8:40:c4:bc:83:45:a1:1e:0b:f3:22:f5:8c:
98:fd:ea:2e:5a:c6:90:7f:a2:40:ca:3d:3f:f2:a5:
88:f0:0d:62:24:01:b0:fb:89:3d:a1:41:4a:d3:fc:
47:e7:ea:ab:10:46:73:14:eb:60:73:dc:bb:2a:81:
a1:48:fb:26:ea:64:77:db:d1:a6:c9:62:97:a0:66:
37:f7:1b:46:54:e7:31:60:03:f5:07:89:e8:bc:26:
2b:d6:83:be:fd:0b:00:ce:3c:79:a3:15:44:db:a3:
e6:7b:d1:d4:75:5a:71:d2:a2:32:86:51:e4:f4:22:
80:76:ff:78:89:bd:82:42:3e:6b:37:5f:53:74:34:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Subject Key Identifier:
2B:39:9F:29:A1:DF:8F:10:F4:B6:65:80:E7:5F:94:03:32:99:4A:21
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
ab:d4:06:7e:56:07:77:ef:55:c5:97:ac:a0:b4:9d:88:ec:90:
18:ce:fc:69:0a:fc:67:23:97:94:d8:c0:ef:6a:df:de:6d:4f:
b3:27:c7:cc:02:e7:1c:7e:14:86:7a:62:c6:18:ed:75:ea:b9:
39:4d:f2:2e:4c:2c:27:72:38:94:7f:48:93:b7:a4:dd:c9:8b:
b2:69:db:06:8d:57:e1:96:2b:6d:54:1d:fb:4f:87:53:5b:4a:
31:e1:d8:50:00:d6:12:fb:4c:23:43:f5:cc:1c:9b:ce:37:84:
27:be:9e:75:d4:ff:1f:1a:2c:9a:86:7b:2d:37:f5:2a:f5:c9:
94:72:b4:f8:c1:f7:12:4f:2b:69:d6:4a:d1:06:65:05:6b:44:
a3:23:b2:aa:9d:15:54:28:e0:f1:68:d9:be:b2:09:13:c3:f1:
b8:92:37:f9:5d:28:89:9c:b2:ca:5b:47:b4:2f:7b:27:54:6c:
af:e1:a7:0a:b3:67:34:53:d8:27:5d:ca:d3:07:1d:db:51:61:
c8:05:6d:c5:c5:04:f2:11:d3:a7:77:f7:47:55:9a:0f:a6:98:
7e:df:69:7d:32:ac:15:60:74:5f:2c:d8:e3:a5:95:00:9b:8a:
17:5f:d4:6b:e3:f1:1a:72:45:8d:09:4b:7e:54:84:f7:82:88:
c2:85:58:b6
827304889 | 2024-08-30T18:54:56.7095698443 / tcp
HTTP/1.1 200 OK Server: sw-cp-server Date: Fri, 30 Aug 2024 18:54:56 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Expires: Fri, 28 May 1999 00:00:00 GMT Last-Modified: Fri, 30 Aug 2024 18:54:56 GMT Cache-Control: no-store, no-cache, must-revalidate Cache-Control: post-check=0, pre-check=0 Pragma: no-cache P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA" X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:1e:f0:2c:5a:61:58:6f:10:9d:9e:d2:07:06:9c:e7:5d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Aug 28 18:44:33 2024 GMT
Not After : Nov 26 18:44:32 2024 GMT
Subject: CN=suspicious-mayer.70-35-195-114.plesk.page
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:8e:cf:8a:d5:6a:c4:52:9d:ba:36:5f:db:76:f4:
92:05:66:e7:95:56:d9:7b:f6:34:a2:9a:a1:9f:0f:
de:a6:ec:85:b5:1e:1f:95:ea:21:b4:7d:54:e9:5b:
3b:60:fc:00:48:05:d7:b0:5c:88:11:1e:42:fa:b8:
ad:c8:99:a5:af:e8:02:34:48:ec:64:e8:45:f0:71:
db:03:e4:96:dc:ed:73:a1:ba:38:a4:89:43:68:d0:
e5:37:e2:7e:f7:6a:b7:f4:ba:ff:77:65:01:5d:53:
05:ae:3d:06:89:4e:75:43:c2:54:4c:34:c8:6e:39:
9f:ec:eb:69:34:1e:0d:c1:34:43:90:97:28:97:24:
b9:4c:7a:a7:23:99:3b:2a:41:1e:39:3c:4e:c9:3f:
fb:93:e7:5e:e6:0f:7d:a4:c4:a2:4e:2c:e4:1e:1d:
00:43:eb:08:b2:00:4c:49:37:34:c6:7c:89:9d:a7:
7b:77:50:68:23:26:a4:8a:98:2c:e3:a7:28:78:14:
5d:87:64:7b:b3:b5:f7:06:27:8b:84:f5:27:4f:ba:
6b:e8:2f:80:31:23:2a:00:90:33:26:31:6a:b1:b4:
ef:65:99:fe:a7:b9:97:fd:2d:e5:f0:ea:81:0f:69:
e1:82:0e:d9:cb:84:7b:4a:93:37:24:fe:e6:81:f1:
d6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
39:EF:44:91:C5:94:A3:E5:EE:21:63:FA:6E:71:09:7C:CB:2E:9A:92
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:suspicious-mayer.70-35-195-114.plesk.page
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Aug 28 19:43:03.977 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:44:6E:12:C1:64:A1:4B:47:89:9A:E7:B9:
35:06:41:D2:E0:60:F2:18:21:16:6C:94:0D:97:6F:80:
A3:53:FA:2F:02:20:18:01:A2:59:48:C1:9E:34:54:BB:
51:83:02:B0:64:8E:C8:66:F3:AF:15:CC:A9:46:87:E8:
AE:3C:5A:C9:C4:10
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
Timestamp : Aug 28 19:43:03.971 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:42:6D:8C:A8:02:77:32:26:75:16:47:7E:
0F:B2:B0:16:A1:A2:6B:A2:D0:17:B9:9D:03:34:5E:E3:
B6:7A:F0:05:02:20:7E:82:83:5D:88:7B:2A:E1:2C:21:
BC:F7:B5:9B:8D:C9:35:EA:04:4E:62:E8:63:E3:A3:BA:
4B:EC:7E:2C:65:90
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
7d:a7:c2:0d:5c:ca:ac:30:f5:2e:70:09:f5:0c:b6:03:bf:ee:
89:12:cf:97:51:1e:16:c9:b5:33:4d:31:30:74:44:07:a8:d5:
78:fe:14:db:d1:fd:1b:ab:d6:16:85:36:90:51:bd:97:01:d2:
70:6d:a5:fd:51:d1:6f:1f:fb:ad:05:2e:8f:00:5d:b1:e9:2b:
36:86:74:6c:34:7d:1e:45:b0:7c:6a:61:14:ba:c3:fe:a0:70:
c4:c3:34:0b:b0:dc:2b:a5:f6:71:25:43:83:52:98:23:e8:8f:
20:5b:87:8f:0f:9d:59:57:29:7b:8b:68:01:cc:85:eb:ec:b3:
e9:27:20:bc:9b:2e:11:3b:0a:66:e8:83:1a:4c:39:ee:6c:34:
38:a4:b1:1d:b4:f8:de:65:04:30:d2:58:dc:05:f6:5f:86:8a:
d3:50:47:df:d3:24:b9:04:ae:6d:25:ef:fc:ec:c8:bf:ef:5f:
30:02:ef:32:ba:99:44:81:9f:5c:50:21:df:2e:47:8b:22:a4:
73:72:01:d3:dd:70:ef:91:07:a1:d6:9e:37:ff:f8:69:d7:83:
ae:df:ca:a9:90:f6:c4:a5:de:ce:e4:80:9d:57:ac:1a:dc:74:
04:4a:b8:0a:81:e4:e2:9f:9f:fc:31:98:89:41:08:f9:86:97:
11:6a:ae:bc