Hostnames |
cv6.onedmmo2049.top chan.zgchome.com |
Domains | onedmmo2049.top zgchome.com |
Country | Iran, Islamic Republic of |
City | Shiraz |
Organization | MTserver.ir |
ISP | Giti Secure Cloud LLC |
ASN | AS204104 |
1681304016 | 2024-09-05T17:02:21.88319922 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.10 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBH9FejVoyEAZgoIMNwi+fgEU jU42IP4ddXEiZ2eLNEHEC+TR++UWsINsSsHLWObkae67H62rh91vI8q1mN4skR8= Fingerprint: 95:10:32:ac:08:f7:c6:0e:09:0b:d4:cb:be:4c:dd:3e Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
1078784832 | 2024-09-09T02:23:26.37709680 / tcp
HTTP/1.1 200 OK Server: nginx/1.26.1 Date: Mon, 09 Sep 2024 02:23:25 GMT Content-Type: text/html; charset=utf-8 Content-Length: 82049 Connection: keep-alive content-security-policy: default-src 'self' https://*.search.brave.com https://*.safesearch.brave.com; worker-src 'self' blob:; connect-src 'self' https://*.search.brave.com https://*.safesearch.brave.com https://search-ads-confirmation.brave.com https://search.anonymous.ads.brave.com https://ads-serve.brave.com https://payment.rewards.brave.com; font-src 'self' data: https://cdn.search.brave.com; img-src 'self' data: https://*.search.brave.com https://*.safesearch.brave.com; manifest-src 'self' data: https://cdn.search.brave.com; object-src 'none'; script-src 'self' 'wasm-unsafe-eval' 'sha256-814SnTyn5ALg8TJXV+oyKfWuNiBuC4efTpUrmrxoOCg=' 'sha256-SmTwPjqn0XvcfrmE4x0RbrJTxpXaEf2fSzIn0kj7ckI=' https://cdn.search.brave.com 'nonce-QNs4n3lH/Nrw1rmFUZh+qw=='; style-src 'self' 'unsafe-inline' https://cdn.search.brave.com; base-uri 'self'; frame-ancestors 'self'; upgrade-insecure-requests ETag: "16lupt5" Link: <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/inter-latin-400-normal.BOOGhInR.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/inter-latin-600-normal.D273HNI0.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/poppins-latin-400-normal.cpxAROuN.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/poppins-latin-600-normal.zEkxB9Mr.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/0.BjjluxQy.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/scroll.CCA36CJC.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/Suggest.CAiCv4ly.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/DSButton.DWeRjWN0.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/SettingsCard.BcLw19mT.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/6.CuqIeYTx.css>; rel="preload";as="style"; nopush Cache-Control: max-age=300 X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Onion-Location: https://search.brave4u7jddbv7cyviptqjc7jusxh72uik7zt6adtckl5f4nwy2v72qd.onion/ Vary: Accept-Encoding X-Cache: Miss from cloudfront Via: 1.1 a9cd237416fb828127279373bfd596ca.cloudfront.net (CloudFront) X-Amz-Cf-Pop: CDG50-P2 Alt-Svc: h3=":443"; ma=86400 X-Amz-Cf-Id: -V5X2uHHIUq9l_aPshTjN3EsWoyxxk7Tbc3V47XKzkDs6u1-koz0Mw==
331022341 | 2024-08-31T02:54:44.528236443 / tcp
HTTP/1.1 200 OK Server: nginx/1.26.1 Date: Sat, 31 Aug 2024 02:54:44 GMT Content-Type: text/html; charset=utf-8 Content-Length: 81850 Connection: keep-alive content-security-policy: default-src 'self' https://*.search.brave.com https://*.safesearch.brave.com; worker-src 'self' blob:; connect-src 'self' https://*.search.brave.com https://*.safesearch.brave.com https://search-ads-confirmation.brave.com https://search.anonymous.ads.brave.com https://ads-serve.brave.com https://payment.rewards.brave.com; font-src 'self' data: https://cdn.search.brave.com; img-src 'self' data: https://*.search.brave.com https://*.safesearch.brave.com; manifest-src 'self' data: https://cdn.search.brave.com; object-src 'none'; script-src 'self' 'wasm-unsafe-eval' 'sha256-814SnTyn5ALg8TJXV+oyKfWuNiBuC4efTpUrmrxoOCg=' 'sha256-SmTwPjqn0XvcfrmE4x0RbrJTxpXaEf2fSzIn0kj7ckI=' https://cdn.search.brave.com 'nonce-YXyVepzUlwK5lILWJp06Dw=='; style-src 'self' 'unsafe-inline' https://cdn.search.brave.com; base-uri 'self'; frame-ancestors 'self'; upgrade-insecure-requests ETag: "1aws219" Link: <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/inter-latin-400-normal.BOOGhInR.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/inter-latin-600-normal.D273HNI0.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/poppins-latin-400-normal.cpxAROuN.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/poppins-latin-600-normal.zEkxB9Mr.woff2>; rel="preload"; crossorigin="anonymous"; as="font"; type="font/woff2"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/0.2kszajxc.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/scroll.DNJCPN5q.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/Suggest.CAiCv4ly.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/DSButton.DWeRjWN0.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/SettingsCard.BcLw19mT.css>; rel="preload";as="style"; nopush, <https://cdn.search.brave.com/serp/v2/_app/immutable/assets/6.CuqIeYTx.css>; rel="preload";as="style"; nopush Cache-Control: max-age=300 X-Content-Type-Options: nosniff Referrer-Policy: strict-origin-when-cross-origin Strict-Transport-Security: max-age=31536000; includeSubDomains; preload X-Download-Options: noopen X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block Onion-Location: https://search.brave4u7jddbv7cyviptqjc7jusxh72uik7zt6adtckl5f4nwy2v72qd.onion/ Vary: Accept-Encoding X-Cache: Miss from cloudfront Via: 1.1 7bf85fcd0812bc8811f794ae1fccfd96.cloudfront.net (CloudFront) X-Amz-Cf-Pop: LHR3-C2 Alt-Svc: h3=":443"; ma=86400 X-Amz-Cf-Id: F9nnGPpiKUvGpbPry_RmVziqTQY2waBgYSem3hJnrP3TkV4dX9XvXQ==
Certificate: Data: Version: 3 (0x2) Serial Number: 04:6f:73:08:90:32:ce:be:9d:b0:2e:56:7d:69:1d:da:97:fa Signature Algorithm: ecdsa-with-SHA384 Issuer: C=US, O=Let's Encrypt, CN=E6 Validity Not Before: Aug 13 14:27:50 2024 GMT Not After : Nov 11 14:27:49 2024 GMT Subject: CN=cv6.onedmmo2049.top Subject Public Key Info: Public Key Algorithm: id-ecPublicKey Public-Key: (256 bit) pub: 04:77:34:04:14:4c:45:bc:88:01:6f:54:c3:ec:77: f2:0d:c0:f5:4c:e3:e0:c9:b0:40:d5:08:da:71:cd: 26:5f:f1:de:c4:49:1e:db:84:c1:ab:eb:8e:1d:8a: f3:24:95:dd:f0:d9:8d:39:9c:d9:b5:55:66:d7:21: 44:fd:d9:2c:17 ASN1 OID: prime256v1 NIST CURVE: P-256 X509v3 extensions: X509v3 Key Usage: critical Digital Signature X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 3E:59:51:99:93:F7:95:40:8F:4E:5B:13:6B:FB:C6:47:D2:D3:BA:A7 X509v3 Authority Key Identifier: 93:27:46:98:03:A9:51:68:8E:98:D6:C4:42:48:DB:23:BF:58:94:D2 Authority Information Access: OCSP - URI:http://e6.o.lencr.org CA Issuers - URI:http://e6.i.lencr.org/ X509v3 Subject Alternative Name: DNS:cv6.onedmmo2049.top X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Aug 13 15:26:20.535 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:A2:7E:EC:4E:3A:AA:2E:1D:B5:38:AA: 09:58:23:72:0A:C6:82:13:BE:5A:39:1A:2D:05:A4:31: 1C:C5:39:FE:6F:02:20:3D:6C:99:60:23:22:DC:50:5A: 21:F5:67:60:C9:14:54:61:D9:F8:1A:5B:0E:7B:4C:7A: 58:2F:9F:61:8A:2D:F1 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB: 83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA Timestamp : Aug 13 15:26:20.548 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:BD:4A:D3:41:27:A9:8C:D6:E7:DE:6B: 11:6B:F3:DA:AD:D5:CE:7E:E8:27:AE:F4:E9:7E:60:86: DA:70:BB:32:27:02:20:3E:D0:BA:5C:11:B0:55:07:4B: 10:1A:1C:A7:55:01:75:98:E2:C9:83:C0:C5:4A:43:7A: F9:FB:44:26:FF:A5:AA Signature Algorithm: ecdsa-with-SHA384 Signature Value: 30:66:02:31:00:8c:70:c3:99:f2:58:6a:b6:ed:3b:fb:7a:91: 4f:0d:3a:ec:1f:1d:ba:ca:f5:de:26:81:36:2e:97:22:78:26: 7b:6e:1a:97:15:d7:9a:3a:55:5d:e9:8a:43:ca:4a:7c:68:02: 31:00:96:2b:6f:04:94:9a:99:e2:e0:12:7e:bd:a3:40:d8:fc: b1:67:d6:d1:a2:62:c5:38:b7:eb:cb:ef:40:2e:b8:52:8e:f6: 4e:5f:bd:73:48:d5:93:27:e0:a9:b9:e8:be:bf