112179608 | 2025-01-13T07:31:24.406570
21 /
tcp
220 ProFTPD Server (ProFTPD) [186.227.203.146]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV
EPRT EPSV ALLO RNFR RNTO DELE MDTM RMD
XRMD MKD XMKD PWD XPWD SIZE SYST HELP
NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF*
ENC* MIC* PBSZ PROT TYPE STRU MODE RETR
STOR STOU APPE REST ABOR RANG USER PASS
ACCT* REIN* LIST NLST STAT SITE MLSD MLST
214 Direct comments to root@0.0.0.0
211-Features:
AUTH TLS
CCC
CLNT
CSID
EPRT
EPSV
HOST
LANG pt-BR.UTF-8*
MDTM
MFF modify;UNIX.group;UNIX.mode;
MFMT
MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*;
PBSZ
PROT
RANG STREAM
REST STREAM
SIZE
SSCN
TVFS
UTF8
211 End
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:f6:a0:ee:9e:9b:c3:cc:dd:92:8a:ba:d8:96:d3:8c:22:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Jan 7 17:54:14 2025 GMT
Not After : Apr 7 17:54:13 2025 GMT
Subject: CN=athus14.datafull.com.br
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:a3:58:10:d6:ff:4c:27:f7:12:17:06:2c:22:bd:
04:5e:d0:18:4f:52:bf:38:cd:ba:26:5c:f1:5b:62:
8b:8c:a5:e5:12:e9:cb:67:5f:3e:51:3d:50:c9:f8:
bc:31:55:e7:43:93:94:c0:10:a0:0f:ed:5d:d6:c4:
fe:76:cb:79:92:34:2f:6f:fb:65:9c:a3:90:70:b0:
53:a7:6b:a9:52:88:23:07:62:e8:8b:fb:5d:0b:26:
df:1f:05:3b:ed:74:a9:7d:d8:9d:f1:bc:65:88:3a:
76:7f:59:f3:94:9d:3b:e4:7c:60:0c:d1:74:95:ea:
da:bc:61:c0:cb:44:09:5f:58:17:de:99:51:f8:9e:
51:a6:7f:dd:2c:5b:5b:98:0b:ba:b5:5a:1a:e3:8d:
ab:86:b9:b2:3a:73:bc:f4:45:81:9f:fd:ef:42:bf:
05:df:bb:a5:94:37:11:db:96:44:ce:88:d1:fd:21:
35:0b:27:a1:ce:b0:47:c9:d2:56:db:72:e9:19:fa:
60:b2:9f:74:ef:50:a7:d5:6f:8a:2c:1f:9b:e8:d0:
9e:5a:09:2a:3b:28:d6:05:5d:30:ed:f3:45:70:3d:
3a:7b:ff:33:5e:db:ea:2f:c8:ef:b3:9d:25:8a:87:
e0:be:04:ca:ed:b7:19:ee:53:79:8a:b7:48:96:93:
eb:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
07:CD:0D:59:F0:95:AD:19:09:5D:AF:A8:1E:F1:4B:93:2A:9F:AB:0E
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:athus14.datafull.com.br
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : A2:E3:0A:E4:45:EF:BD:AD:9B:7E:38:ED:47:67:77:53:
D7:82:5B:84:94:D7:2B:5E:1B:2C:C4:B9:50:A4:47:E7
Timestamp : Jan 7 18:52:45.247 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:73:FD:D7:CA:CB:17:39:DB:47:F0:0C:F8:
58:60:61:C6:20:94:C3:22:A4:19:56:98:34:12:76:C9:
61:B8:4C:E5:02:20:2D:A9:F5:A5:31:1C:67:1A:1A:D7:
B6:2A:C2:17:61:55:42:A5:6D:C0:52:60:D1:A3:B5:53:
DB:D9:CF:0D:A9:15
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Jan 7 18:52:45.305 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:B5:AA:DB:C4:1E:05:C8:67:91:D8:42:
2C:17:49:80:A5:ED:C3:10:60:48:75:B3:60:32:CC:AA:
14:7D:12:30:C3:02:20:2D:24:F6:49:1A:45:CC:96:0F:
90:F7:1D:88:B0:CE:E5:C7:1F:C0:89:79:E8:C0:E0:22:
74:A9:69:2E:87:40:6C
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
18:08:a8:de:56:ef:d6:ce:20:b4:27:a3:a8:ef:a6:36:ce:77:
85:17:ce:9d:55:1f:a7:0e:a7:90:20:54:8b:a7:1a:16:21:4e:
8b:3d:04:88:c5:6f:ab:f4:00:ea:5f:df:f7:83:68:fd:76:73:
79:49:59:c3:2f:69:88:3f:75:04:76:e9:f1:b2:1c:b1:98:4a:
67:1b:bd:0c:91:ed:57:3b:dc:e0:eb:0d:b1:ea:8f:28:a2:15:
2e:98:44:7e:9b:f1:a3:f9:80:5e:67:65:aa:41:39:61:23:0a:
e6:9e:9a:9b:99:bf:e4:31:39:80:73:d7:d5:e6:55:e1:22:f2:
7f:30:65:e3:70:3f:fc:12:14:18:8d:60:24:77:7d:36:ad:52:
87:37:6a:36:a5:3c:5a:9a:6a:7e:10:2e:dc:cf:3c:53:04:30:
aa:d1:9b:ec:98:46:9e:0b:ed:77:72:05:7b:66:a4:65:33:76:
fa:c1:50:6b:01:83:b4:50:87:45:df:16:ef:63:c8:c9:f1:3f:
fd:ea:0a:b2:f2:5b:47:3f:c8:92:f0:3b:2b:8e:65:e1:22:70:
ab:af:c1:5c:c9:71:f4:e5:5a:18:60:ff:20:9e:30:92:a7:74:
db:b8:71:3d:33:c7:97:5f:4c:d8:20:e5:cc:9e:7e:27:18:75:
23:da:43:fd
-1631559764 | 2025-01-17T21:09:24.394742
53 /
tcp
none
Resolver name: athus14.plataformaathus.com.br
-1631559764 | 2025-01-04T14:11:59.767524
53 /
udp
none
Resolver name: athus14.plataformaathus.com.br
701630435 | 2025-01-17T21:56:46.501598
80 /
tcp
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 17 Jan 2025 21:56:41 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 223
Connection: keep-alive
Location: http://203.146/
2101851528 | 2025-01-20T22:59:06.796930
443 /
tcp
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 20 Jan 2025 22:53:58 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 240
Connection: keep-alive
Location: https://teixeiropolis.ro.gov.br/
X-Powered-By: PleskLin
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1665582183 (0x6346c467)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Validity
Not Before: Oct 12 13:43:03 2022 GMT
Not After : Oct 12 13:43:03 2023 GMT
Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c6:d7:06:79:2b:58:9f:b5:01:35:48:5e:aa:3b:
90:59:2c:d3:2c:da:e5:7f:c3:fc:ae:99:02:a5:aa:
23:9e:b9:7d:c9:ec:a6:11:7e:83:96:22:83:ce:18:
a1:44:2f:25:e9:34:25:cd:26:a3:2d:da:08:8f:0e:
9c:68:c2:85:08:65:92:78:ee:4c:d1:01:61:2a:15:
10:e0:15:47:47:af:dd:af:8f:a6:e7:55:74:64:f8:
d4:c6:ce:93:14:2d:87:6a:f1:3d:8b:62:8c:43:9a:
b7:2e:0b:7e:83:fc:a9:e1:79:ca:4b:be:70:71:2b:
38:ae:d5:8b:86:ef:69:62:64:d4:90:a9:fc:81:11:
71:90:2c:ec:af:b6:29:9c:3b:df:d4:dc:75:f8:39:
c3:a3:e0:b6:95:21:4f:70:0a:cc:77:b1:4e:3b:e2:
2d:e1:bf:3f:aa:41:66:4e:6c:4e:5a:d4:42:1b:76:
09:60:b7:ae:9f:8b:24:33:51:38:73:5e:60:25:66:
45:c9:02:2c:3b:da:c3:11:eb:4b:48:40:50:e4:b4:
b1:89:84:4e:bd:4a:e3:f3:f3:9f:01:e6:8f:d5:a3:
31:ce:1b:95:ef:dd:0f:88:34:2b:5a:02:4d:3e:d0:
b1:20:ec:d8:f5:1f:20:0a:89:6e:f9:0f:6d:bf:da:
bf:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
0c:28:0a:94:71:a3:db:6a:db:21:b6:35:bd:9b:9f:ea:53:5a:
c5:53:f0:a2:4c:d0:d6:fb:6d:cd:89:d5:d5:97:e5:63:fa:34:
17:4d:b0:13:7c:54:46:41:be:c9:09:dc:75:43:97:e8:bc:1a:
ce:db:5f:7f:e2:1e:d5:fc:df:ff:c7:3b:59:4c:40:7f:02:03:
f4:72:f4:63:08:be:c8:4b:0d:b7:09:95:d5:fd:2d:c7:c4:5f:
de:82:d4:56:ad:d6:ae:ed:29:cb:d1:17:31:64:14:3d:12:7d:
79:20:be:3d:cd:e6:c0:ed:24:2c:78:b9:be:e4:a7:ea:af:99:
fb:a4:18:3f:7d:a8:9d:2e:0c:21:c3:2d:54:25:54:f2:53:65:
9b:f4:de:ca:63:d3:2f:c3:a6:3f:b8:e5:a2:23:ae:8e:39:9d:
d0:ea:3a:2e:28:6a:28:6f:b4:71:24:7e:12:a0:4e:c3:54:db:
a9:2a:a9:22:6a:59:d0:56:25:82:19:91:3b:50:82:c6:b2:e5:
d3:a4:42:e7:a7:ea:00:0a:25:08:f6:68:52:55:22:30:41:35:
02:85:0d:d3:89:dc:53:4a:b9:74:8e:3a:1f:62:9b:b7:e8:5e:
bb:74:f0:f9:a9:7b:ec:cb:a9:f9:1e:ab:34:38:44:fb:0b:ec:
ea:86:5e:33
-740155298 | 2025-01-10T15:38:10.764902
3306 /
tcp
MySQL:
Protocol Version: 10
Version: 8.0.32
Capabilities: 65535
Server Language: 255
Server Status: 2
Extended Server Capabilities: 57343
Authentication Plugin: mysql_native_password
1121494344 | 2025-01-06T19:46:04.856558
8443 /
tcp
HTTP/1.1 200 OK
Server: sw-cp-server
Date: Mon, 06 Jan 2025 19:46:04 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Mon, 06 Jan 2025 19:46:04 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:68:e7:dc:57:26:31:53:fb:5d:32:35:cb:82:70:61:26:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R10
Validity
Not Before: Nov 8 17:54:10 2024 GMT
Not After : Feb 6 17:54:09 2025 GMT
Subject: CN=athus14.datafull.com.br
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ae:a0:4f:84:fc:c9:65:75:98:12:b8:95:07:54:
e9:b0:f9:d5:78:12:d9:3c:06:1e:37:ba:78:6c:e4:
d3:61:9f:ad:4d:8f:29:e2:26:a0:dd:ef:f5:8e:04:
94:4f:09:83:7d:12:a8:c6:02:71:9a:51:e5:43:81:
a4:a6:29:27:22:7f:e0:a1:17:a0:5e:81:e4:ac:51:
9a:62:61:28:bc:fc:01:03:d2:90:91:f3:df:1d:11:
56:0c:99:2c:76:0a:f0:28:b1:b7:e2:67:30:52:b9:
5f:eb:fc:5d:61:86:7d:8a:e0:9b:c6:cf:fc:fe:c5:
e7:59:39:ab:72:f0:f4:b3:49:ad:02:90:61:78:f9:
9b:db:45:e0:4f:e6:9e:52:8a:89:de:48:28:f8:48:
93:93:05:e1:e9:c3:b3:f0:28:b9:5d:91:68:f7:df:
2b:49:9d:a5:1b:9c:db:51:27:5e:55:37:3c:02:90:
cb:06:57:42:85:c4:f9:50:8c:0f:32:70:ac:ad:b8:
87:25:95:7b:99:42:28:a1:8a:fc:f9:b0:28:f6:02:
23:fa:45:41:7b:9a:0d:e9:8f:87:2d:6f:5e:24:db:
d4:4a:c8:84:ce:87:37:83:c0:52:83:29:97:09:a8:
9f:fb:78:09:b2:2a:ab:95:6b:30:8d:fd:cf:40:36:
89:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
89:DE:43:08:ED:C6:0B:1B:1F:BE:3C:F3:69:BF:DB:F5:41:49:0A:00
X509v3 Authority Key Identifier:
BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
Authority Information Access:
OCSP - URI:http://r10.o.lencr.org
CA Issuers - URI:http://r10.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:athus14.datafull.com.br
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : CF:11:56:EE:D5:2E:7C:AF:F3:87:5B:D9:69:2E:9B:E9:
1A:71:67:4A:B0:17:EC:AC:01:D2:5B:77:CE:CC:3B:08
Timestamp : Nov 8 18:52:40.474 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:92:23:71:1A:E3:77:1E:C2:86:8C:2F:
AF:05:A3:C9:E3:FE:70:D0:49:30:30:EF:E6:63:8B:13:
FB:49:C0:05:E6:02:21:00:E3:E8:C9:CF:55:B4:A5:ED:
C6:90:5F:7C:CE:09:39:97:15:3E:CF:49:F2:A2:1B:DB:
C6:7B:7A:50:12:B0:06:7B
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 7D:59:1E:12:E1:78:2A:7B:1C:61:67:7C:5E:FD:F8:D0:
87:5C:14:A0:4E:95:9E:B9:03:2F:D9:0E:8C:2E:79:B8
Timestamp : Nov 8 18:52:40.706 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:60:09:22:05:E0:8F:17:8F:DA:F4:3C:68:
53:A5:4B:BA:6A:D8:FC:93:05:E1:3E:49:89:21:69:58:
D9:2E:84:8B:02:21:00:E9:90:DF:55:5E:A5:DF:D3:EE:
2F:5A:9B:A0:A5:AC:E9:AE:3A:01:9B:49:F7:A5:2C:8E:
86:4F:01:38:4B:AC:F6
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
38:af:50:0a:d0:6f:25:27:cc:be:e0:b3:3a:ef:86:42:2b:03:
d6:79:2d:97:d9:ab:39:1c:e9:91:33:90:ee:97:83:ad:55:e3:
b7:b2:84:7b:ed:08:55:bf:c3:f6:b4:18:33:e2:4c:57:8f:16:
16:67:ad:ff:89:a0:ed:04:05:1e:86:ae:37:eb:9e:9a:cc:90:
5e:c6:5e:51:eb:a1:94:4b:9d:15:39:d3:71:db:f7:dc:c8:72:
ba:5e:51:e6:3f:76:59:94:d6:70:b0:22:15:96:49:0c:64:64:
bb:40:1b:3b:76:63:b8:91:3f:56:36:54:f6:89:9e:d1:ea:5f:
bf:cd:f1:b6:87:9d:08:73:69:25:12:46:a4:06:68:91:cc:3a:
15:a8:8f:e5:ce:48:6b:43:dc:b5:00:25:30:a5:3f:67:49:6e:
6a:26:13:0d:69:e4:e2:78:b4:3c:c3:9b:ce:a4:8d:25:26:6b:
ea:a7:21:41:f6:f6:ab:16:96:c1:36:a0:d3:31:3d:85:87:48:
62:2f:54:22:00:e8:e1:10:7c:1f:b4:d7:ff:76:80:95:02:2b:
f0:54:42:f6:bb:47:2a:62:29:b7:b2:f4:f6:1e:35:90:37:a4:
6b:64:3a:cc:5f:c4:cb:ef:b9:f3:45:19:b3:35:df:46:22:da:
02:fd:24:f1
-2115931663 | 2025-01-09T11:16:41.776079
8880 /
tcp
HTTP/1.1 303 See Other
Server: sw-cp-server
Date: Thu, 09 Jan 2025 11:16:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Thu, 09 Jan 2025 11:16:41 GMT
Cache-Control: no-store, no-cache, must-revalidate
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Location: http://186.227.203.146/login.php
X-Content-Type-Options: nosniff
0
