928609965 | 2024-09-16T18:10:21.873036
21 /
tcp
220 Serv-U FTP Server v15.1 ready...
530 Sorry, no ANONYMOUS access allowed.
214-The following commands are recognized (* => unimplemented).
OPTS CLNT CSID NOOP HELP FEAT HOST USER PASS
REIN QUIT ACCT* SMNT* SITE ABOR SYST STAT AUTH
PBSZ PROT CCC SSCN CWD XCWD CDUP XCUP PWD
XPWD MKD XMKD RMD XRMD RMDA DSIZ AVBL PORT
EPRT PASV EPSV TYPE STRU MODE RETR STOR APPE
STOU THMB ALLO REST SIZE RNFR RNTO DELE XDEL
MDTM MFMT MFCT MFF XCRC XMD5 XSHA1 XSHA256 XSHA512
COMB LIST NLST MLST MLSD
214 End
211-Extensions supported
UTF8
OPTS MODE;MLST;UTF8
CLNT
CSID Name; Version;
HOST domain
SITE PSWD;SET;ZONE;CHMOD;MSG;EXEC;HELP
AUTH TLS;SSL;TLS-C;TLS-P;
PBSZ
PROT
CCC
SSCN
RMDA directoryname
DSIZ
AVBL
EPRT
EPSV
MODE Z
THMB BMP|JPEG|GIF|TIFF|PNG max_width max_height pathname
REST STREAM
SIZE
MDTM
MDTM YYYYMMDDHHMMSS[+-TZ];filename
MFMT
MFCT
MFF Create;Modify;
XCRC filename;start;end
XMD5 filename;start;end
XSHA1 filename;start;end
XSHA256 filename;start;end
XSHA512 filename;start;end
COMB target;source_list
MLST Type*;Size*;Create;Modify*;Perm;Win32.ea;Win32.dt;Win32.dl
211 End (for details use "HELP commmand" where command is the command of interest)
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 0 (0x0)
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
Validity
Not Before: Apr 29 15:53:05 2009 GMT
Not After : Apr 27 15:53:05 2019 GMT
Subject: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:c2:87:da:9d:72:fd:62:f5:8e:a7:0f:0a:6c:a4:
b6:96:d4:ea:2c:76:ba:ed:3a:5d:2d:ee:e8:a8:7f:
6f:d0:62:cd:11:4e:64:f5:0d:54:73:d0:3d:12:37:
07:8d:8e:d0:7f:e7:4e:bd:a4:56:8d:32:d8:44:87:
9f:75:80:da:e7:8a:9c:72:d8:50:36:67:3e:f1:e5:
fb:f4:bf:f0:1b:4e:39:93:ba:32:b5:e0:66:03:06:
f3:10:4c:0e:7c:8c:67:f5:35:64:67:d3:e0:a4:26:
f8:42:a9:8e:1e:ca:59:18:81:77:67:e1:8e:50:80:
64:18:a0:4b:cd:f4:fe:b3:75
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
2a:1d:4e:32:3d:96:9a:dd:3d:59:81:24:5e:4e:64:cb:2f:c5:
70:e2:4a:ef:8c:97:a8:76:60:94:7d:0c:09:39:a0:9d:19:da:
60:ee:6e:71:27:a5:46:df:16:94:36:a2:a1:dd:34:39:3f:65:
69:0b:a2:59:74:9a:77:64:e7:bd:27:04:3d:8e:6e:59:29:be:
51:73:d9:36:13:e3:fa:e2:44:27:8d:a0:0d:20:5c:25:7d:b8:
a5:f3:95:de:da:45:83:83:80:af:bf:06:7e:9e:83:82:dc:44:
e5:7e:c0:d7:ed:0f:54:24:7d:e1:ed:0c:30:58:1d:36:2f:91:
67:98
1489525118 | 2024-09-16T10:39:54.131973
80 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 16 Sep 2024 10:39:53 GMT
Connection: close
Content-Length: 315
1664570631 | 2024-09-17T02:16:22.930771
1801 /
tcp
\x10Z\x0b\x00LIOR<\x02\x00\x00\xff\xff\xff\xff\x00\x00\x12\x00\x06U=Q6\xdf\xc7@\x96C\x17\\<\xe7l\xaa\xa8-\x06\x12\xa4\xdf^G\x8b\x91j\xb8\xae\xcd\x8a\x87\x00\x00\x00\x00\x10\x02\x00\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ
1320295030 | 2024-09-02T16:50:55.866522
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x0f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 8/Windows Server 2012
OS Build: 6.2.9200
Target Name: iZuf6ggcturp3vZ
NetBIOS Domain Name: iZuf6ggcturp3vZ
NetBIOS Computer Name: iZuf6ggcturp3vZ
DNS Domain Name: iZuf6ggcturp3vZ
FQDN: iZuf6ggcturp3vZ
Administrator
gt Windows Server 2012
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:4c:47:2b:16:52:39:80:41:c2:40:6d:f7:c5:76:7a
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=iZuf6ggcturp3vZ
Validity
Not Before: Apr 4 16:00:03 2024 GMT
Not After : Oct 4 16:00:03 2024 GMT
Subject: CN=iZuf6ggcturp3vZ
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b2:88:07:17:13:b9:08:8e:14:29:41:24:7b:3d:
e4:85:93:e2:2d:16:09:bb:89:c2:c3:17:64:aa:75:
65:26:ef:e5:ea:16:bf:cb:9e:24:2a:0b:69:21:1d:
47:3f:f8:35:6c:d2:b1:ac:e4:bb:5b:5a:98:25:9d:
2e:6f:0a:4d:aa:85:1d:b4:76:38:6e:09:08:39:7a:
6b:66:b8:62:25:2d:ab:8c:b5:83:5a:7c:53:33:ca:
45:73:80:87:be:03:03:25:f1:40:6c:33:65:18:d3:
a9:ac:e9:d5:c8:60:21:c1:ae:61:16:18:61:b7:d7:
dc:41:63:fe:fc:82:40:31:04:c4:8d:cc:dd:01:2e:
98:3a:4b:ef:fc:34:e1:e6:ea:1e:88:ca:1b:a6:42:
df:98:6b:6b:7e:a2:23:b7:45:ad:98:34:65:56:97:
1e:df:9f:57:8f:cf:29:a6:31:30:fc:1b:56:0b:f3:
09:e6:bd:21:cc:e2:58:43:c1:a9:6f:20:5d:2e:53:
c7:c2:74:0c:ba:de:ce:04:73:3f:3e:f2:da:b4:af:
a3:76:e6:10:ea:a7:67:96:93:e7:8d:53:2a:16:9c:
ae:d2:4e:af:49:3d:6e:9e:90:ea:9d:bf:8c:cf:da:
d7:f1:ac:8f:89:71:33:2c:b4:37:64:b9:0f:71:03:
bf:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha1WithRSAEncryption
Signature Value:
78:4c:df:b5:bc:d9:d8:27:6e:d1:08:f0:cf:07:fa:4b:ec:80:
f3:8f:17:4a:64:dd:1f:8f:43:1d:56:2b:00:df:dc:a2:7c:29:
92:b6:1a:d6:bf:60:e6:c2:65:a8:ad:92:cb:1a:7e:1c:16:ea:
03:16:01:d2:21:e7:4a:31:ac:70:2b:d5:27:9a:04:11:ec:4c:
37:9d:a9:8e:a5:c5:33:76:41:14:07:9d:50:e3:7a:5b:95:df:
bb:51:f4:c7:e0:65:71:b1:9a:b4:61:6a:01:09:e5:8b:99:1d:
48:3e:29:d4:04:8f:b8:66:4a:6f:57:42:2c:00:b0:e5:22:97:
e2:ee:4e:e2:75:fb:2a:1d:4f:43:69:eb:f8:dd:cc:60:0b:2a:
c6:04:1d:59:32:af:94:88:b7:d7:cc:ae:86:06:9c:9e:fb:fd:
80:98:81:71:3b:90:66:57:38:ae:d1:9d:40:f4:4c:81:8e:b4:
cd:1f:dc:8e:ab:e5:a7:83:88:01:e8:40:93:50:4d:1b:b1:9a:
17:da:5b:22:24:73:47:8d:9a:a9:9b:c5:66:48:02:64:1a:fa:
5d:d8:24:58:fa:dd:f7:d1:72:17:01:e1:29:c5:bf:52:f5:64:
d8:13:65:c9:0a:d6:16:c6:19:68:21:bd:c6:b7:48:55:b0:d9:
7e:31:d8:2b
1489525118 | 2024-08-19T20:15:16.977281
5985 /
tcp
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 19 Aug 2024 20:15:16 GMT
Connection: close
Content-Length: 315
WinRM NTLM Info:
OS: Windows Server 2012
OS Build: 6.2.9200
Target Name: iZuf6ggcturp3vZ
NetBIOS Domain Name: iZuf6ggcturp3vZ
NetBIOS Computer Name: iZuf6ggcturp3vZ
DNS Domain Name: iZuf6ggcturp3vZ
FQDN: iZuf6ggcturp3vZ