21 /
tcp
-1982360094 | 2025-04-09T15:50:19.892917
220-FileZilla Server 1.4.1
220-Please visit https://filezilla-project.org/
220 Hello; you are on FTP ITKrebs
530 Login incorrect.
214-The following commands are recognized.
NOP USER TYPE SYST SIZE RNTO RNFR RMD REST QUIT
HELP XMKD MLST MKD EPSV XCWD NOOP AUTH OPTS DELE
CWD CDUP APPE STOR ALLO RETR PWD FEAT CLNT MFMT
MODE XRMD PROT ADAT ABOR XPWD MDTM LIST MLSD PBSZ
NLST EPRT PASS STRU PASV STAT PORT
214 Help ok.
211-Features:
MDTM
REST STREAM
SIZE
MLST type*;size*;modify*;perm*;
MLSD
AUTH SSL
AUTH TLS
PROT
PBSZ
UTF8
TVFS
EPSV
EPRT
MFMT
211 End
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:a7:3b:15:a6:0e:26:da:f7:90:69:63:1a:04:77:38:0d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Feb 6 07:40:43 2025 GMT
Not After : May 7 07:40:42 2025 GMT
Subject: CN=*.eautoseller.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:93:06:da:90:fa:a6:49:e3:e8:6a:d8:6e:ca:69:
4e:58:51:08:00:9e:55:c4:45:60:f0:b0:ac:6f:dd:
70:a0:be:8c:bb:ec:38:e9:02:27:28:59:90:ce:72:
82:35:fc:89:f3:3e:b5:f0:47:51:8a:c2:38:e0:0b:
f3:61:ad:69:8f:2b:dd:3c:a6:29:20:03:35:e8:79:
57:a6:30:b2:c1:3f:7e:17:2a:60:76:ca:81:14:87:
02:49:d3:5d:e4:6e:10:a9:ca:7e:39:7a:1a:31:bf:
65:e2:8d:16:a8:3b:06:40:16:19:c4:4d:5b:ff:a0:
f0:ea:7b:4b:72:5b:c9:80:c4:11:fc:c2:ad:ab:ff:
26:8a:df:aa:bd:df:be:93:8e:11:0f:7c:3f:d7:ee:
1b:03:c9:b1:80:6c:7f:2c:7f:a3:eb:1f:30:90:7e:
a1:76:b5:96:a6:d2:5f:af:b8:19:3f:a9:c8:8f:20:
18:8e:aa:80:54:6a:b6:df:1b:21:cb:b2:f1:dd:89:
26:78:b6:e4:5a:13:9b:f2:ff:04:de:7e:88:f1:62:
ca:1f:e6:ca:4f:a3:ca:9f:bd:bf:52:36:40:a3:4f:
d3:45:7f:c4:d6:d4:f7:23:a1:8d:41:2b:82:3e:cc:
86:eb:44:04:8d:62:1d:f9:55:b9:30:52:78:9f:70:
4b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
6E:A7:06:1B:38:74:3C:86:81:82:5A:97:44:46:CC:34:CB:81:EA:39
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:*.eautoseller.de
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Feb 6 08:39:13.313 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:4D:7F:F1:82:EF:40:D5:63:23:13:8C:87:
0F:FE:5F:D4:D2:FE:C9:90:93:33:6D:F1:95:A8:E6:95:
9E:AF:D9:E6:02:20:77:17:5F:23:0D:DB:63:6F:E2:21:
C5:0E:45:69:0A:5D:C4:5D:52:D1:0A:04:3A:5B:65:21:
E9:C9:62:01:CC:F2
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4:
16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22
Timestamp : Feb 6 08:39:13.499 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:3F:BF:D1:A6:05:28:61:52:3B:C5:A2:21:
CF:86:41:BB:FF:33:74:A9:78:AF:41:AA:55:8F:90:DE:
DB:D1:66:29:02:20:6A:22:71:4A:1E:07:49:56:23:BD:
57:B1:AA:2A:79:4A:6B:2E:EB:8D:1A:E4:11:A4:DD:96:
70:40:F5:26:D8:1F
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
5d:cb:be:68:68:ee:0a:20:f5:78:5f:1b:50:e0:07:0c:de:2f:
d1:59:0c:cb:04:8a:e5:02:dd:7a:31:b8:c0:57:c5:1c:9e:ee:
b3:33:96:c0:11:db:85:c2:b0:32:e1:67:0e:d4:39:45:59:4e:
bc:e6:51:cc:47:e2:28:d7:a3:65:96:6c:9a:2a:73:b5:5c:43:
96:25:77:cb:35:91:0a:53:98:59:2c:11:bf:68:44:36:f1:8f:
98:d9:7b:21:3d:69:eb:ec:ac:81:66:c6:68:63:eb:50:45:fd:
a5:37:43:78:54:6f:42:d6:07:1d:5b:05:95:3e:e2:a4:02:87:
f8:f6:6d:e9:d9:33:ad:a4:70:7c:18:fb:c9:3c:a8:95:c6:75:
8d:42:9e:ea:8b:8e:05:22:c8:54:ea:2d:22:b9:ce:0e:d2:2b:
2d:ea:27:83:4e:63:45:e5:28:b5:6a:81:f7:2b:3b:3e:4b:1a:
fe:bd:50:dd:86:9b:06:a2:94:9c:f2:05:46:c5:4a:3e:8b:73:
0b:6a:17:18:27:8c:d1:5b:de:fb:61:80:44:ba:32:3d:0e:bc:
9b:23:03:b7:eb:f0:e0:1f:e7:4c:c5:2b:e7:a9:13:9d:c3:25:
bd:d9:21:e3:f6:12:d0:6a:f6:03:cf:65:fb:59:d8:bc:88:b4:
51:db:e3:cf
703707298 | 2025-04-11T04:39:58.301012
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 27 May 2022 08:11:28 GMT
Accept-Ranges: bytes
ETag: "e098d95da171d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 11 Apr 2025 04:39:57 GMT
Content-Length: 703
1388607372 | 2025-04-12T21:40:30.820275
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Fri, 27 May 2022 04:25:43 GMT
Accept-Ranges: bytes
ETag: "b34f2bd48171d81:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Sat, 12 Apr 2025 21:40:30 GMT
Content-Length: 519
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:03:47:b4:17:d9:e4:9d:1c:96:2d:0f:26:cc:96:27:89:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Apr 1 14:55:54 2025 GMT
Not After : Jun 30 14:55:53 2025 GMT
Subject: CN=*.eautoseller.de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a0:e2:4c:e0:45:95:fe:5d:8c:a6:0c:4a:ae:d6:
49:ea:4b:b2:ab:fd:46:46:55:0c:bc:04:76:68:69:
f2:5c:bc:e6:b2:07:52:7c:24:1f:f6:56:61:f2:86:
1e:39:26:64:3a:59:71:3a:82:96:99:2d:85:9f:d9:
46:90:0c:c1:2e:48:e2:62:d9:31:5d:de:97:a9:4c:
da:20:dd:91:75:cc:6c:7d:08:0a:44:d9:7c:08:20:
57:67:56:7f:b1:9c:80:be:ed:bc:ce:1c:20:83:0f:
96:ba:6d:43:d9:fe:37:e4:af:74:64:4b:b9:52:da:
3a:b3:41:04:34:9c:2f:71:f1:53:bf:4d:21:3a:65:
51:76:35:fc:86:57:8e:2b:d8:1e:b9:17:f6:e8:5f:
88:b5:3c:37:de:c6:d3:83:a1:69:e2:03:df:02:b5:
79:96:30:19:24:95:7b:4c:bf:c9:ff:e2:67:59:9d:
a7:a8:51:18:bd:47:92:06:8f:36:42:01:44:90:87:
81:91:a4:63:0e:ff:c8:9d:ae:29:28:2c:19:58:ef:
41:fe:8a:53:60:08:07:9d:b2:58:92:a1:5c:ad:1c:
c8:3f:09:93:c7:de:50:42:e8:61:9d:5c:3b:16:6f:
d0:ac:55:06:08:1c:49:1d:e6:f5:93:e5:85:e6:96:
1c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
22:86:C8:5B:30:EE:34:64:6A:54:68:5A:EA:EB:D8:B7:08:1B:F5:2A
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:*.eautoseller.de
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
X509v3 CRL Distribution Points:
Full Name:
URI:http://r10.c.lencr.org/112.crl
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Apr 1 15:54:24.693 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:FF:F9:3A:17:41:AC:22:F1:25:54:C3:
9A:FA:CE:1C:DF:53:46:5B:A4:37:12:AE:50:C1:6D:75:
2B:BF:D9:6A:60:02:21:00:C3:17:1C:8F:FD:AD:8A:CE:
63:44:C5:93:0D:F6:DE:BD:28:07:9B:EE:0F:B5:5F:FC:
B9:59:4D:A0:3D:B1:70:D8
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:
22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0
Timestamp : Apr 1 15:54:26.698 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:DD:71:1A:46:33:AE:90:EA:88:69:CB:
70:04:B1:3C:AF:5F:2E:D8:3F:18:58:A8:84:0D:D7:D5:
D4:AF:C8:74:EE:02:21:00:9E:B8:71:4E:66:6E:40:22:
9A:74:E7:A2:0C:04:FE:35:ED:3B:36:DC:12:B7:07:42:
96:E2:D6:24:B1:C3:60:C8
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
98:00:b2:81:82:2d:20:ff:3d:4f:93:36:17:d3:9d:26:e2:32:
df:60:04:d4:5b:6b:f9:0d:cb:71:cb:41:a5:49:b2:bd:b9:b7:
bc:e7:a7:73:b0:5f:38:08:e3:f1:cd:9b:0f:6c:2d:96:94:0c:
df:1f:b2:4f:d7:ba:ce:37:b5:72:19:59:90:96:28:e3:6b:88:
5e:be:ce:31:08:9e:3f:f4:41:2e:6f:5f:d5:f3:09:40:c4:fc:
55:d9:87:56:14:45:fa:6c:fe:08:7a:dd:3d:ab:f1:4b:74:ca:
bc:b5:8e:8b:0d:c7:7c:03:03:06:22:75:e7:ac:20:42:af:85:
c4:6c:14:c1:ab:11:38:38:1c:ef:f6:7a:b3:5f:ff:a3:7f:7e:
e7:5a:a3:11:03:93:0c:c3:fc:25:bb:2e:21:48:e3:be:84:7d:
63:c8:fa:b8:f9:2c:72:89:05:12:8a:d3:55:1d:3d:54:ee:44:
d0:c4:41:72:0a:90:23:98:b1:20:a4:bc:ee:2e:48:c8:1d:e0:
b7:85:02:33:52:3f:cb:28:ff:f1:b4:ed:f1:9c:d8:2f:d1:34:
1f:47:4f:59:59:a0:33:b7:e2:88:0e:55:2d:41:06:54:ba:17:
a4:34:cb:ff:10:12:15:92:5e:9a:a6:16:36:de:c2:f7:d9:c9:
07:39:13:46
3307 /
tcp
1099703505 | 2025-04-12T03:37:50.252254
J\x00\x00\x00\n8.0.29\x00\x9e\x05\x00\x009v8\x1fN>]\x1f\x00\xff\xff\x08\x02\x00\xff\xdf\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00zIG4\t5z\tl`\x11q\x00caching_sha2_password\x00
3389 /
tcp
-934246735 | 2025-04-05T12:40:25.513080
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: WIN-U5I3QFI1QLS
NetBIOS Domain Name: WIN-U5I3QFI1QLS
NetBIOS Computer Name: WIN-U5I3QFI1QLS
DNS Domain Name: WIN-U5I3QFI1QLS
FQDN: WIN-U5I3QFI1QLS
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:68:54:ed:13:fc:77:9b:4e:d4:21:a1:13:6a:48:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=WIN-U5I3QFI1QLS
Validity
Not Before: Nov 16 07:36:04 2024 GMT
Not After : May 18 07:36:04 2025 GMT
Subject: CN=WIN-U5I3QFI1QLS
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:db:00:2a:41:d4:c8:04:db:51:ca:b1:26:f2:d9:
96:29:de:ef:40:e5:ee:03:41:cb:65:bc:ff:86:79:
df:19:63:8d:ea:be:9a:fa:50:38:fd:0d:0a:cc:e2:
a9:79:a5:46:c5:c3:0e:02:27:31:8f:48:6b:90:f3:
67:f1:28:24:42:e2:82:a3:41:1a:c0:6c:eb:46:b3:
b9:b2:2a:1b:52:65:29:fe:d7:73:3b:80:7c:32:7e:
2a:40:2d:a5:ca:51:5b:60:72:ff:5e:48:ba:77:ec:
4d:68:e0:99:03:25:12:27:9e:19:f7:4a:0d:08:9c:
16:4c:10:8a:ae:c0:0c:e5:6d:c0:d7:66:1a:1e:26:
9f:10:69:5a:af:11:0d:11:66:3c:7f:3e:e1:8c:04:
8f:4c:b8:d7:c9:70:d3:61:9c:59:db:eb:26:e5:c1:
2b:c6:94:9b:86:33:96:36:f5:8e:71:10:7b:46:4b:
2b:26:03:38:94:85:6a:a7:00:ea:e8:92:37:ba:85:
35:ed:b2:03:7d:98:75:c8:b3:9e:30:4c:6f:84:f8:
8a:8d:2e:63:0f:ac:de:ef:60:a8:40:a9:cd:35:62:
9c:69:79:6c:7b:fb:9e:3c:71:06:ee:4b:c5:97:16:
60:e5:d3:05:96:8f:e6:a7:7f:50:f3:d1:d4:19:08:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
a9:8e:8e:45:2d:00:80:63:f1:32:a3:df:4b:e4:7b:7d:80:d0:
a8:98:e4:12:57:e2:1b:bb:d8:f3:59:51:4c:06:31:c5:56:ca:
1f:8d:58:ec:d1:8e:75:e4:08:d7:25:1c:1a:4e:0c:23:13:72:
99:d9:91:57:71:6e:e3:8c:ff:8e:77:81:4d:9f:a2:69:73:d0:
98:d9:81:90:37:9a:d7:16:58:fd:e6:ed:fa:dc:14:d8:6c:66:
ee:41:af:64:9a:28:14:f7:eb:57:ce:94:f8:4b:93:26:36:7c:
32:ff:c1:00:53:94:7b:e6:5c:2b:26:26:71:52:80:57:f4:42:
76:1a:f7:f3:69:a3:8b:60:4b:b1:e5:e0:5d:aa:7c:b5:a2:3b:
54:f3:25:88:03:e3:fc:63:3d:5a:22:47:0e:31:80:a9:ce:30:
4f:00:a2:73:4d:41:76:51:c5:10:67:2e:6d:7f:24:64:5b:f5:
3d:02:89:cb:0f:72:c4:bc:48:e9:f9:e4:25:68:f9:30:49:d3:
59:c6:ae:2d:21:e9:4c:c5:b4:8d:e3:dc:17:56:e7:fa:6a:cc:
e6:0c:f8:46:75:d4:58:77:a9:7c:9b:5e:5c:97:ac:13:ad:d2:
1d:8e:6c:c4:d0:d8:3f:b9:ce:11:91:90:d2:72:25:12:ca:e8:
48:c8:eb:68
