21 /
tcp
-1759571941 | 2025-01-14T22:51:07.943944
220 ProFTPD Server (Debian) [::ffff:148.251.183.71]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV
214-EPRT EPSV ALLO* RNFR RNTO DELE MDTM RMD
214-XRMD MKD XMKD PWD XPWD SIZE SYST HELP
214-NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF*
214-ENC* MIC* PBSZ PROT TYPE STRU MODE RETR
214-STOR STOU APPE REST ABOR USER PASS ACCT*
214-REIN* LIST NLST STAT SITE MLSD MLST
214 Direct comments to root@server0.changeme.com
211-Features:
211-AUTH TLS
211-CCC
211-CLNT
211-EPRT
211-EPSV
211-HOST
211-LANG en-US.UTF-8*;en-US;ru-RU.UTF-8;ru-RU;fr-FR.UTF-8;fr-FR
211-MDTM
211-MFF modify;UNIX.group;UNIX.mode;
211-MFMT
211-MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
211-PBSZ
211-PROT
211-REST STREAM
211-SITE COPY
211-SITE MKDIR
211-SITE RMDIR
211-SITE SYMLINK
211-SITE UTIME
211-SIZE
211-SSCN
211-TVFS
211-UTF8
211 End
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:ad:a4:fb:97:b6:e9:4f:07:93:b8:63:f9:05:08:3d:b0:18:fa:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=example.com/emailAddress=root@f144b1e04424
Validity
Not Before: Feb 12 05:09:29 2021 GMT
Not After : Feb 10 05:09:29 2031 GMT
Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=example.com/emailAddress=root@f144b1e04424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:cb:dc:27:4d:0b:39:a4:be:1e:88:4a:9b:3b:4c:
99:c7:5a:c0:64:88:c5:52:f1:52:ae:03:e4:0f:03:
cc:ee:25:27:16:9d:9c:f4:2a:85:87:d9:eb:9b:e5:
df:b4:d3:a2:fe:58:21:61:97:c9:8f:8c:bd:d8:f0:
49:db:64:4f:26:b7:ad:92:44:87:2a:b3:bb:e7:8b:
58:4e:e7:eb:81:5f:0d:39:15:b9:4b:67:fe:66:fe:
4d:4e:4e:37:6e:fb:bf:21:f5:37:14:69:0c:ad:95:
7c:9e:10:bc:d7:ed:ea:b4:a7:8e:77:02:33:eb:b3:
18:ab:a0:cd:c3:5d:ea:e5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:22:E6:B8:2E:1C:95:52:09:FB:8D:40:34:B5:84:C4:6A:7D:D2:FC
X509v3 Authority Key Identifier:
49:22:E6:B8:2E:1C:95:52:09:FB:8D:40:34:B5:84:C4:6A:7D:D2:FC
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
57:ba:11:7e:ac:b4:65:04:20:73:c7:76:43:90:68:54:aa:1d:
85:01:c9:b4:1b:f1:7f:54:80:58:07:aa:6c:bc:c9:76:f1:f1:
8d:4f:de:ba:01:52:96:89:b0:73:8d:35:fa:55:0e:0c:88:9c:
26:33:70:7d:a0:ab:76:23:74:d3:73:dc:0a:f3:6e:d7:83:52:
2e:46:27:12:33:1d:3e:b2:82:13:48:d9:5f:f2:c9:9f:d1:c5:
3c:4f:72:50:bb:fe:17:3f:14:3b:d9:98:31:4a:55:db:0d:2f:
9d:e7:ce:9f:94:5b:7e:fe:61:9e:1c:86:04:4b:3d:9d:a1:da:
a1:58
22 /
tcp
402991185 | 2025-01-06T19:55:25.790388
SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDXhmOO+lrrTPlB0ZVDXo/8hlsBKMbR2khwONl8Le+U7e5J
RhbKVvQG4bnvDvHgfbMsNp1uHq/yvKZAEva/wsm4VFBhqbpx3kZMidzRSaS6q0R2sP/wtCRj0bLV
zmO+QvxpBd5Z/hB7PLLyZNWUnyKMLyPqra/RUoEh3lDmZ8MNRSHMJzRHBeHWntgRgB1x5C9kNAFw
+geqLOrK2Di4vlFNZCHU2dn9iq0+kHGkbP4gg0pO7zoZF5h1odf6WksAHUmKgyRzn++u35A/G4sx
WeSHJxpT4yHrwi5B05M7aJm+CtD7/oA8Y1iq3Kj3ejm+5xVNhypXlu7GS7ihjwVw+GLR
Fingerprint: 3f:10:21:07:cc:58:bc:cf:e1:f4:83:44:92:40:35:7c
Kex Algorithms:
curve25519-sha256
curve25519-sha256@libssh.org
ecdh-sha2-nistp256
ecdh-sha2-nistp384
ecdh-sha2-nistp521
diffie-hellman-group-exchange-sha256
diffie-hellman-group16-sha512
diffie-hellman-group18-sha512
diffie-hellman-group14-sha256
diffie-hellman-group14-sha1
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ssh-rsa
ecdsa-sha2-nistp256
Encryption Algorithms:
chacha20-poly1305@openssh.com
aes128-ctr
aes192-ctr
aes256-ctr
aes128-gcm@openssh.com
aes256-gcm@openssh.com
MAC Algorithms:
umac-64-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-256-etm@openssh.com
hmac-sha2-512-etm@openssh.com
hmac-sha1-etm@openssh.com
umac-64@openssh.com
umac-128@openssh.com
hmac-sha2-256
hmac-sha2-512
hmac-sha1
Compression Algorithms:
none
zlib@openssh.com
53 /
tcp
-1743526923 | 2025-01-12T03:24:29.377237
9.11.5-P4-5.1+deb10u2-Debian
Resolver name: server0
53 /
udp
-1743526923 | 2025-01-23T22:02:51.480451
9.11.5-P4-5.1+deb10u2-Debian
Resolver name: server0
977371578 | 2025-01-21T14:14:12.898596
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 21 Jan 2025 14:14:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
110 /
tcp
-541256428 | 2024-12-27T12:58:53.122208
+OK Dovecot (Debian) ready.
+OK
CAPA
TOP
UIDL
RESP-CODES
PIPELINING
AUTH-RESP-CODE
STLS
USER
SASL PLAIN LOGIN DIGEST-MD5 CRAM-MD5
.
123 /
udp
-645594704 | 2025-01-19T06:31:20.449053
NTP
protocolversion: 3
stratum: 2
leap: 0
precision: -24
rootdelay: 0.0108642578125
rootdisp: 0.0206146240234
refid: 533812723
reftime: 3946256729.34
poll: 3
143 /
tcp
1572172384 | 2025-01-20T03:07:09.350355
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot (Debian) ready.
* CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5
A001 OK Pre-login capabilities listed, post-login capabilities have more.
* ID ("name" "Dovecot")
A002 OK ID completed.
A003 BAD Error in IMAP command received by server.
* BYE Logging out
A004 OK Logout completed.
465 /
tcp
-974326426 | 2025-01-23T02:49:45.826253
220 server0.changeme.com ESMTP Exim 4.92 Thu, 23 Jan 2025 03:49:36 +0100
250-server0.changeme.com Hello 224.110.133.116 [224.110.133.116]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250 HELP
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ac:b2:1c:98:5d:33:d9:e7:ec:34:4f:d3:fe:05:31:fa:a7:85:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=f144b1e04424/emailAddress=root@f144b1e04424
Validity
Not Before: Feb 12 05:07:49 2021 GMT
Not After : Feb 10 05:07:49 2031 GMT
Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=f144b1e04424/emailAddress=root@f144b1e04424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:c1:92:a8:96:b7:cc:90:0e:af:14:b5:f1:d7:d6:
26:6f:22:5e:73:b5:fd:4c:40:9f:3d:a6:f1:ed:cb:
af:5f:05:bd:65:6a:81:da:f8:2a:5c:93:8d:30:cb:
77:83:fd:a9:63:91:d8:06:5d:f6:14:7c:4f:8b:c3:
cc:ac:33:a1:ee:50:b9:4b:53:dc:d0:f3:c2:2d:db:
63:5f:4d:4e:4b:d8:f0:8d:df:d1:5f:43:cc:7b:cc:
a2:05:fb:be:89:03:04:21:76:2a:a3:0d:a4:7c:c9:
a9:23:25:5c:ca:9f:86:66:ec:6f:c7:95:81:15:2f:
a5:5f:6f:02:76:72:52:80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4C:60:5C:6A:25:FB:52:22:23:F6:90:B9:C1:02:8F:90:96:3F:BA
X509v3 Authority Key Identifier:
23:4C:60:5C:6A:25:FB:52:22:23:F6:90:B9:C1:02:8F:90:96:3F:BA
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
7f:c1:06:0d:9b:c0:c0:dd:e7:8d:bb:95:c6:da:3f:1d:37:6c:
38:49:db:a7:b1:5e:f8:26:8c:c0:37:7d:4d:3c:c6:5c:c4:45:
ca:54:e7:64:e7:38:ca:40:0e:7d:96:2a:ef:26:da:22:0c:5c:
3c:64:df:c6:09:4e:f8:1b:7d:92:d4:ee:b2:eb:ea:43:77:9f:
c9:c7:b7:7e:f6:53:25:12:31:27:87:1e:b9:86:18:82:34:72:
ef:f4:e9:0b:dc:84:3e:f1:c8:8c:f5:67:f1:b8:3c:d2:23:0e:
26:c2:63:70:05:1d:39:cd:48:71:f9:f0:3e:a4:75:fe:3d:69:
f2:65
MAC Addresses
F1:44:B1:E0:44:24
Unknown
587 /
tcp
-491235820 | 2025-01-14T00:03:16.792303
220 server0.changeme.com ESMTP Exim 4.92 Tue, 14 Jan 2025 01:03:01 +0100
250-server0.changeme.com Hello 224.142.19.19 [224.142.19.19]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN CRAM-MD5
250-CHUNKING
250-STARTTLS
250 HELP
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:ac:b2:1c:98:5d:33:d9:e7:ec:34:4f:d3:fe:05:31:fa:a7:85:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=f144b1e04424/emailAddress=root@f144b1e04424
Validity
Not Before: Feb 12 05:07:49 2021 GMT
Not After : Feb 10 05:07:49 2031 GMT
Subject: C=XX, ST=XX, L=XX, O=XX, OU=XX, CN=f144b1e04424/emailAddress=root@f144b1e04424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:c1:92:a8:96:b7:cc:90:0e:af:14:b5:f1:d7:d6:
26:6f:22:5e:73:b5:fd:4c:40:9f:3d:a6:f1:ed:cb:
af:5f:05:bd:65:6a:81:da:f8:2a:5c:93:8d:30:cb:
77:83:fd:a9:63:91:d8:06:5d:f6:14:7c:4f:8b:c3:
cc:ac:33:a1:ee:50:b9:4b:53:dc:d0:f3:c2:2d:db:
63:5f:4d:4e:4b:d8:f0:8d:df:d1:5f:43:cc:7b:cc:
a2:05:fb:be:89:03:04:21:76:2a:a3:0d:a4:7c:c9:
a9:23:25:5c:ca:9f:86:66:ec:6f:c7:95:81:15:2f:
a5:5f:6f:02:76:72:52:80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4C:60:5C:6A:25:FB:52:22:23:F6:90:B9:C1:02:8F:90:96:3F:BA
X509v3 Authority Key Identifier:
23:4C:60:5C:6A:25:FB:52:22:23:F6:90:B9:C1:02:8F:90:96:3F:BA
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
7f:c1:06:0d:9b:c0:c0:dd:e7:8d:bb:95:c6:da:3f:1d:37:6c:
38:49:db:a7:b1:5e:f8:26:8c:c0:37:7d:4d:3c:c6:5c:c4:45:
ca:54:e7:64:e7:38:ca:40:0e:7d:96:2a:ef:26:da:22:0c:5c:
3c:64:df:c6:09:4e:f8:1b:7d:92:d4:ee:b2:eb:ea:43:77:9f:
c9:c7:b7:7e:f6:53:25:12:31:27:87:1e:b9:86:18:82:34:72:
ef:f4:e9:0b:dc:84:3e:f1:c8:8c:f5:67:f1:b8:3c:d2:23:0e:
26:c2:63:70:05:1d:39:cd:48:71:f9:f0:3e:a4:75:fe:3d:69:
f2:65
MAC Addresses
F1:44:B1:E0:44:24
Unknown
3306 /
tcp
-989871853 | 2025-01-22T18:10:06.069550
MySQL:
Error Message: Host '224.149.4.68' is not allowed to connect to this MySQL server
Error Code: 1130
