Help
RSS
API
Feed
Maltego
Contact
Domain > nsk-obedru.72.com1.ru
×
More information on this domain is in
AlienVault OTX
Is this malicious?
Yes
No
DNS Resolutions
Date
IP Address
2015-01-17
89.108.64.96
(
ClassC
)
Port 80
HTTP/1.1 200 OKServer: nginxDate: Fri, 27 Dec 2024 14:38:42 GMTContent-Type: text/html; charsetutf-8Transfer-Encoding: chunkedConnection: keep-aliveVary: Accept-EncodingSet-Cookie: PHPSESSID06168fbceca929adf8a55be60572f59d; path/; HttpOnlyExpires: Thu, 19 Nov 1981 08:52:00 GMTCache-Control: no-store, no-cache, must-revalidatePragma: no-cacheStrict-Transport-Security: max-age15768000;X-Content-Type-Options: nosniffX-XSS-Protection: 1; modeblockX-Robots-Tag: noneX-Download-Options: noopenX-Frame-Options: SAMEORIGINX-Permitted-Cross-Domain-Policies: noneReferrer-Policy: strict-origin !DOCTYPE html>html langen-gb>head> meta charsetutf-8> meta http-equivX-UA-Compatible contentIEedge> meta nameviewport contentwidthdevice-width, initial-scale1, maximum-scale1, user-scalable0> meta nametheme-color content#F5D76E/> meta http-equivReferrer-Policy contentsame-origin> title>mailcow UI/title> link relstylesheet href/cache/23c5be9eaf94cb1d3e5c1a698f305e5549eb0c08.css> script> // check if darkmode is preferred by OS or set by localStorage if (window.matchMedia && window.matchMedia((prefers-color-scheme: dark)).matches && localStorage.getItem(theme) ! light || localStorage.getItem(theme) dark) { var head document.getElementsByTagName(head)0; var link document.createElement(link); link.id dark-mode-theme; link.rel stylesheet; link.type text/css; link.href /css/themes/mailcow-darkmode.css; head.appendChild(link); } /script> link relshortcut icon href/favicon.png typeimage/png> link relicon href/favicon.png typeimage/png>/head>body>div classoverlay>/div>form action/ methodpost idlogout>input typehidden namelogout>/form>div classcontainer my-4>div classrow mb-4 stylemargin-top: 60px> div classcol-12 col-md-7 col-lg-6 col-xl-5 ms-auto me-auto> div classcard> div classcard-header d-flex align-items-center> i classbi bi-person-fill me-2>/i> Login div classms-auto form-check form-switch my-auto d-flex align-items-center> label classform-check-label>i classbi bi-moon-fill>/i>/label> input classform-check-input ms-2 typecheckbox iddark-mode-toggle> /div> /div> div classcard-body> div classtext-center mailcow-logo mb-4>img src/img/cow_mailcow.svg altmailcow>/div> legend>mailcow UI/legend>hr /> form methodpost autofilloff> div classd-flex mt-3> label classvisually-hidden forlogin_user>Username/label> div classinput-group> div classinput-group-text>i classbi bi-person-fill>/i>/div> input namelogin_user autocorrectoff autocapitalizenone typetext idlogin_user classform-control placeholderUsername required autofocus autocompleteusername> /div> /div> div classd-flex mt-3> label classvisually-hidden forpass_user>Password/label> div classinput-group> div classinput-group-text>i classbi bi-lock-fill>/i>/div> input namepass_user typepassword idpass_user classform-control placeholderPassword required autocompletecurrent-password> /div> /div> div classd-flex mt-4 styleposition: relative> button typesubmit classbtn btn-xs-lg btn-success valueLogin>Login/button> button typebutton classbtn btn-xs-lg btn-success ms-2 idfido2-login>i classbi bi-shield-fill-check>/i> FIDO2/WebAuthn Login/button> button typebutton classbtn btn-xs-lg btn-secondary ms-auto dropdown-toggle data-bs-toggledropdown aria-haspopuptrue aria-expandedfalse> span classflag-icon flag-icon-gb>/span> /button> ul classdropdown-menu ms-auto login> li> a classdropdown-item href?langcs-cz> span classflag-icon flag-icon-cz>/span>Čeština (Czech) /a> /li> li> a classdropdown-item href?langda-dk> span classflag-icon flag-icon-dk>/span>Danish (Dansk) /a> /li> li> a classdropdown-item href?langde-de> span classflag-icon flag-icon-de>/span>Deutsch (German) /a> /li> li> a classdropdown-item active href?langen-gb> span classflag-icon flag-icon-gb>/span>English /a> /li> li> a classdropdown-item href?langes-es> span classflag-icon flag-icon-es>/span>Español (Spanish) /a> /li> li> a classdropdown-item href?langfi-fi> span classflag-icon flag-icon-fi>/span>Suomi (Finish) /a> /li> li> a classdropdown-item href?langfr-fr> span classflag-icon flag-icon-fr>/span>Français (French) /a> /li> li> a classdropdown-item href?langhu-hu> span classflag-icon flag-icon-hu>/span>Magyar (Hungarian) /a> /li> li> a classdropdown-item href?langit-it> span classflag-icon flag-icon-it>/span>Italiano (Italian) /a> /li> li> a classdropdown-item href?langko-kr> span classflag-icon flag-icon-kr>/span>한국어 (Korean) /a> /li> li> a classdropdown-item href?langlv-lv> span classflag-icon flag-icon-lv>/span>latviešu (Latvian) /a> /li> li> a classdropdown-item href?langnl-nl> span classflag-icon flag-icon-nl>/span>Nederlands (Dutch) /a> /li> li> a classdropdown-item href?langpl-pl> span classflag-icon flag-icon-pl>/span>Język Polski (Polish) /a> /li> li> a classdropdown-item href?langpt-pt> span classflag-icon flag-icon-pt>/span>Português (Portuguese) /a> /li> li> a classdropdown-item href?langro-ro> span classflag-icon flag-icon-ro>/span>Română (Romanian) /a> /li> li> a classdropdown-item href?langru-ru> span classflag-icon flag-icon-ru>/span>Pусский (Russian) /a> /li> li> a classdropdown-item href?langsk-sk> span classflag-icon flag-icon-sk>/span>Slovenčina (Slovak) /a> /li> li> a classdropdown-item href?langsv-se> span classflag-icon flag-icon-se>/span>Svenska (Swedish) /a> /li> li> a classdropdown-item href?langtr-tr> span classflag-icon flag-icon-tr>/span>Türkçe (Turkish) /a> /li> li> a classdropdown-item href?languk-ua> span classflag-icon flag-icon-ua>/span>Українська (Ukrainian) /a> /li> li> a classdropdown-item href?langzh-cn> span classflag-icon flag-icon-cn>/span>简体中文 (Simplified Chinese) /a> /li> li> a classdropdown-item href?langzh-tw> span classflag-icon flag-icon-tw>/span>繁體中文 (Traditional Chinese) /a> /li> /ul> /div> /form> div classmy-4 idfido2-alerts>/div> legend>i classbi bi-link-45deg>/i> Apps/legend>hr /> div classmy-2 d-flex flex-wrap apps> div classm-2> a href/SOGo/ rolebutton classbtn btn-primary btn-block>Webmail/a> /div> /div> /div> /div> /div>/div>div classrow> div classcol-12 col-md-7 col-lg-6 col-xl-5 ms-auto me-auto> div classcard> div classcard-header> a classbtn btn-link data-bs-togglecollapse href#collapse1>i classbi bi-patch-question-fill>/i> Show/Hide help panel/a> /div> div idcollapse1 classcard-collapse collapse> div classcard-body> p>span styleborder-bottom: 1px dotted #999;>mailcow UI/span>/p> p>b>Domain administrators/b> create, modify or delete mailboxes and aliases, change domains and read further information about their assigned domains.br>b>Mailbox users/b> are able to create time-limited aliases (spam aliases), change their password and spam filter settings./p> p>span styleborder-bottom: 1px dotted #999;>Apps/span>/p> p>Use a mailcow app to access your mails, calendar, contacts and more./p> /div> /div> /div> /div> /div>/div>div idConfirmDeleteModal classmodal fade roledialog> div classmodal-dialog> div classmodal-content> div classmodal-header> h3 classmodal-title>Confirm deletion/h3> button typebutton classbtn-close data-bs-dismissmodal>/button> /div> div classmodal-body> p idDeleteText>Please confirm your changes to the following object id/p> ul idItemsToDelete>/ul> hr> button classbtn btn-sm btn-xs-half d-block d-sm-inline btn-danger idIsConfirmed>Delete now/button> button classbtn btn-sm btn-xs-half d-block d-sm-inline btn-secondary idisCanceled>Cancel/button> /div> /div> /div>/div>!-- version modal -->div classmodal fade idshowVersionModal tabindex-1 roledialog aria-hiddentrue> div classmodal-dialog modal-lg> div classmodal-content> div classmodal-header> h5 classmodal-title>/h5> button typebutton classbtn-close data-bs-dismissmodal>/button> /div> div classmodal-body d-flex flex-column mt-2 p-4> div classspinner-border mx-auto rolestatus> span classvisually-hidden>Loading.../span> /div> /div> /div> /div>/div>!-- version modal -->script src/cache/ce65a5dfea6891cb6602fdb5511dfa79280b1eac.js>/script>script> var lang_footer {cancel:Cancel,confirm_delete:Confirm deletion,delete_now:Delete now,delete_these_items:Please confirm your changes to the following object id,hibp_check:Check against haveibeenpwned.com,hibp_nok:Matched! This is a potentially dangerous password!,hibp_ok:No match found.,loading:Please wait...,nothing_selected:Nothing selected,restart_container:Restart container,restart_container_info:b>Important:\/b> A graceful restart may take a while to complete, please wait for it to finish.,restart_now:Restart now,restarting_container:Restarting container, this may take a while}; var lang_acl {alias_domains:Add alias domains,app_passwds:Manage app passwords,bcc_maps:BCC maps,delimiter_action:Delimiter action,domain_desc:Change domain description,domain_relayhost:Change relayhost for a domain,eas_reset:Reset EAS devices,extend_sender_acl:Allow to extend sender ACL by external addresses,filters:Filters,login_as:Login as mailbox user,mailbox_relayhost:Change relayhost for a mailbox,prohibited:Prohibited by ACL,protocol_access:Change protocol access,pushover:Pushover,quarantine:Quarantine actions,quarantine_attachments:Quarantine attachments,quarantine_category:Change quarantine notification category,quarantine_notification:Change quarantine notifications,ratelimit:Rate limit,recipient_maps:Recipient maps,smtp_ip_access:Change allowed hosts for SMTP,sogo_access:Allow management of SOGo access,sogo_profile_reset:Reset SOGo profile,spam_alias:Temporary aliases,spam_policy:Blacklist\/Whitelist,spam_score:Spam score,syncjobs:Sync jobs,tls_policy:TLS policy,unlimited_quota:Unlimited quota for mailboxes}; var lang_tfa {api_register:%s uses the Yubico Cloud API. Please get an API key for your key a href\https:\/\/upgrade.yubico.com\/getapikey\/\ target\_blank\>here\/a>,confirm:Confirm,confirm_totp_token:Please confirm your changes by entering the generated token,delete_tfa:Disable TFA,disable_tfa:Disable TFA until next successful login,enter_qr_code:Your TOTP code if your device cannot scan QR codes,error_code:Error code,init_webauthn:Initializing, please wait...,key_id:An identifier for your Device,key_id_totp:An identifier for your key,none:Deactivate,reload_retry:- (reload browser if the error persists),scan_qr_code:Please scan the following code with your authenticator app or enter the code manually.,select:Please select,set_tfa:Set two-factor authentication method,start_webauthn_validation:Start validation,tfa:Two-factor authentication,tfa_token_invalid:TFA token invalid,totp:Time-based OTP (Google Authenticator, Authy, etc.),u2f_deprecated:It seems that your Key was registered using the deprecated U2F method. We will deactivate Two-Factor-Authenticaiton for you and delete your Key.,u2f_deprecated_important:Please register your Key in the admin panel with the new WebAuthn method.,webauthn:WebAuthn authentication,waiting_usb_auth:i>Waiting for USB device...\/i>br>br>Please tap the button on your USB device now.,waiting_usb_register:i>Waiting for USB device...\/i>br>br>Please enter your password above and confirm your registration by tapping the button on your USB device.,yubi_otp:Yubico OTP authentication}; var lang_fido2 {confirm:Confirm,fido2_auth:Login with FIDO2,fido2_success:Device successfully registered,fido2_validation_failed:Validation failed,fn:Friendly name,known_ids:Known IDs,none:Disabled,register_status:Registration status,rename:Rename,set_fido2:Register FIDO2 device,set_fido2_touchid:Register Touch ID on Apple M1,set_fn:Set friendly name,start_fido2_validation:Start FIDO2 validation}; var docker_timeout 60 * 1000; var mailcow_cc_role ; var last_login ; var mailcow_info { version_tag: 2023-08, last_version_tag: , updatedAt: 1694620235, project_url: https://github.com/mailcow/mailcow-dockerized, project_owner: mailcow, project_repo: mailcow-dockerized, branch: master };$(window).scroll(function() { sessionStorage.scrollTop $(this).scrollTop();});// Select language and reopen active URL without POSTfunction setLang(sel) { $.post( /, {lang: sel} ); window.location.href window.location.pathname + window.location.search;}// FIDO2 functionsfunction arrayBufferToBase64(buffer) { let binary ; let bytes new Uint8Array(buffer); let len bytes.byteLength; for (let i 0; i len; i++) { binary + String.fromCharCode( bytes i ); } return window.btoa(binary);}function recursiveBase64StrToArrayBuffer(obj) { let prefix ?BINARY?B?; let suffix ?; if (typeof obj object) { for (let key in obj) { if (typeof objkey string) { let str objkey; if (str.substring(0, prefix.length) prefix && str.substring(str.length - suffix.length) suffix) { str str.substring(prefix.length, str.length - suffix.length); let binary_string window.atob(str); let len binary_string.length; let bytes new Uint8Array(len); for (let i 0; i len; i++) { bytesi binary_string.charCodeAt(i); } objkey bytes.buffer; } } else { recursiveBase64StrToArrayBuffer(objkey); } } }} $(window).on(load, function() { $(.overlay).hide(); }); $(document).ready(function() { $(document).on(shown.bs.modal, function(e) { modal_id $(e.relatedTarget).data(target); $(modal_id).attr(aria-hidden,false); }); // TFA, CSRF, Alerts in footer.inc.php // Other general functions in mailcow.js // Confirm TFA modal // Validate FIDO2 $(#fido2-login).click(function(){ $(#fido2-alerts).html(); if (!window.fetch || !navigator.credentials || !navigator.credentials.create) { window.alert(Browser not supported.); return; } window.fetch(/api/v1/get/fido2-get-args, {method:GET,cache:no-cache}).then(function(response) { return response.json(); }).then(function(json) { if (json.success false) { throw new Error(); } recursiveBase64StrToArrayBuffer(json); return json; }).then(function(getCredentialArgs) { return navigator.credentials.get(getCredentialArgs); }).then(function(cred) { return { id: cred.rawId ? arrayBufferToBase64(cred.rawId) : null, clientDataJSON: cred.response.clientDataJSON ? arrayBufferToBase64(cred.response.clientDataJSON) : null, authenticatorData: cred.response.authenticatorData ? arrayBufferToBase64(cred.response.authenticatorData) : null, signature : cred.response.signature ? arrayBufferToBase64(cred.response.signature) : null }; }).then(JSON.stringify).then(function(AuthenticatorAttestationResponse) { return window.fetch(/api/v1/process/fido2-args, {method:POST, body: AuthenticatorAttestationResponse, cache:no-cache}); }).then(function(response) { return response.json(); }).then(function(json) { if (json.success) { window.location window.location.href.split(#)0; } else { throw new Error(); } }).catch(function(err) { if (typeof err.message undefined) { mailcow_alert_box(lang_fido2.fido2_validation_failed, danger); } else { mailcow_alert_box(lang_fido2.fido2_validation_failed + :br>i> + err.message + /i>, danger); } }); }); // Set TFA/FIDO2 $(#register-fido2, #register-fido2-touchid).click(function(){ let t $(this); $(option:selected).prop(selected, false); if (!window.fetch || !navigator.credentials || !navigator.credentials.create) { window.alert(Browser not supported.); return; } window.fetch(/api/v1/get/fido2-registration/null, {method:GET,cache:no-cache}).then(function(response) { return response.json(); }).then(function(json) { if (json.success false) { throw new Error(json.msg); } recursiveBase64StrToArrayBuffer(json); // set attestation to node if we are registering apple touch id if(t.attr(id) register-fido2-touchid) { json.publicKey.attestation none; json.publicKey.authenticatorSelection.authenticatorAttachment platform; } return json; }).then(function(createCredentialArgs) { console.log(createCredentialArgs); return navigator.credentials.create(createCredentialArgs); }).then(function(cred) { return { clientDataJSON: cred.response.clientDataJSON ? arrayBufferToBase64(cred.response.clientDataJSON) : null, attestationObject: cred.response.attestationObject ? arrayBufferToBase64(cred.response.attestationObject) : null }; }).then(JSON.stringify).then(function(AuthenticatorAttestationResponse) { return window.fetch(/api/v1/add/fido2-registration, {method:POST, body: AuthenticatorAttestationResponse, cache:no-cache}); }).then(function(response) { return response.json(); }).then(function(json) { if (json.success) { window.location window.location.href.split(#)0; } else { throw new Error(json.msg); } }).catch(function(err) { $(#fido2-alerts).html(span classtext-danger>b> + err.message + /b>/span>); }); }); $(#selectTFA).change(function () { if ($(this).val() yubi_otp) { $(#YubiOTPModal).modal(show); $(option:selected).prop(selected, false); } if ($(this).val() totp) { $(#TOTPModal).modal(show); request_token $(#tfa-qr-img).data(totp-secret); $.ajax({ url: /inc/ajax/qr_gen.php, data: { token: request_token, }, }).done(function (result) { $(#tfa-qr-img).attr(src, result); }); $(option:selected).prop(selected, false); } if ($(this).val() webauthn) { // check if Browser is supported if (!window.fetch || !navigator.credentials || !navigator.credentials.create) { window.alert(Browser not supported.); return; } // show modal $(#WebAuthnModal).modal(show); $(option:selected).prop(selected, false); $(#start_webauthn_register).click(() > { var key_id document.getElementsByName(key_id)1.value; var confirm_password document.getElementsByName(confirm_password)1.value; // fetch WebAuthn create args window.fetch(/api/v1/get/webauthn-tfa-registration/null, {method:GET,cache:no-cache}).then(response > { return response.json(); }).then(json > { console.log(json); if (json.success false) throw new Error(json.msg); recursiveBase64StrToArrayBuffer(json); return json; }).then(createCredentialArgs > { // create credentials return navigator.credentials.create(createCredentialArgs); }).then(cred > { return { clientDataJSON: cred.response.clientDataJSON ? arrayBufferToBase64(cred.response.clientDataJSON) : null, attestationObject: cred.response.attestationObject ? arrayBufferToBase64(cred.response.attestationObject) : null, key_id: key_id, tfa_method: webauthn, confirm_password: confirm_password }; }).then(JSON.stringify).then(AuthenticatorAttestationResponse > { // send request return window.fetch(/api/v1/add/webauthn-tfa-registration, {method:POST, body: AuthenticatorAttestationResponse, cache:no-cache}); }).then(response > { return response.json(); }).then(json > { if (json.success) { // reload on success window.location window.location.href.split(#)0; } else { throw new Error(json.msg); } }).catch(function(err) { console.log(err); var webauthn_return_code document.getElementById(webauthn_return_code); webauthn_return_code.style.display webauthn_return_code.style.display none ? : null; webauthn_return_code.innerHTML lang_tfa.error_code + : + err + + lang_tfa.reload_retry; }); }); } if ($(this).val() none) { $(#DisableTFAModal).modal(show); $(option:selected).prop(selected, false); } }); // CSRF $(input typehidden value225c5ee98f763e8d9d2a8a142ddc376e8ffda80ba3610b98ee59b37922119a2a>).attr(name, csrf_token).appendTo(form); if (sessionStorage.scrollTop ! undefined) { $(window).scrollTop(sessionStorage.scrollTop); } });/script>div classcontainer footer> /div>/body>/html>
Subdomains
Date
Domain
IP
filpanru.72.com1.ru
2024-11-11
89.108.64.96
View on OTX
|
View on ThreatMiner
Please enable JavaScript to view the
comments powered by Disqus.
Data with thanks to
AlienVault OTX
,
VirusTotal
,
Malwr
and
others
. [
Sitemap
]