618432203 | 2024-09-01T18:50:25.741357
21 /
tcp
220 ProFTPD Server (Debian) [172.16.32.99]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV
214-EPRT EPSV ALLO* RNFR RNTO DELE MDTM RMD
214-XRMD MKD XMKD PWD XPWD SIZE SYST HELP
214-NOOP FEAT OPTS HOST CLNT AUTH* CCC* CONF*
214-ENC* MIC* PBSZ* PROT* TYPE STRU MODE RETR
214-STOR STOU APPE REST ABOR USER PASS ACCT*
214-REIN* LIST NLST STAT SITE MLSD MLST
214 Direct comments to root@rootbl
211-Features:
211-CLNT
211-EPRT
211-EPSV
211-HOST
211-LANG en-US.UTF-8*;en-US
211-MDTM
211-REST STREAM
211-SITE COPY
211-SITE MKDIR
211-SITE RMDIR
211-SITE SYMLINK
211-SITE UTIME
211-SIZE
211-UTF8
211 End
-1169079884 | 2024-09-16T09:04:46.500021
80 /
tcp
HTTP/1.1 200 OK
Date: Mon, 16 Sep 2024 09:04:46 GMT
Server: Apache/2.4.52 (Unix) OpenSSL/1.1.1m PHP/8.1.2 mod_perl/2.0.11 Perl/v5.32.1
Content-Length: 1589
Content-Type: text/html;charset=ISO-8859-1
-955536588 | 2024-09-18T00:48:56.538065
161 /
udp
SNMP:
Uptime: 3183501200
Description: RouterOS CCR1009-7G-1C-1S+
Service: 78
Versions:
1
3
Name: RT:SERVER-OPTIMUS-CPA
Engineid Format: text
Engine Boots: 0
Engineid Data: 80003a8c04
Enterprise: 14988
Objectid: 1.3.6.1.4.1.14988.1
Engine Time: 0:00:00
-1403452203 | 2024-09-19T12:38:52.098377
1701 /
udp
\xc8\x02\x00q\x00\x00\x00\x00\x00\x00\x00\x01\x80\x08\x00\x00\x00\x00\x00\x02\x80\x08\x00\x00\x00\x02\x01\x00\x80\n\x00\x00\x00\x03\x00\x00\x00\x01\x80\n\x00\x00\x00\x04\x00\x00\x00\x00\x00\x08\x00\x00\x00\x06\x00\x01\x80\x1b\x00\x00\x00\x07RT:SERVER-OPTIMUS-CPA\x00\x0e\x00\x00\x00\x08MikroTik\x80\x08\x00\x00\x00\t7\xed\x80\x08\x00\x00\x00\n\x00\x04
-1538260461 | 2024-09-21T12:06:19.130106
2000 /
tcp
618432203 | 2024-09-10T07:41:32.339184
2121 /
tcp
220 ProFTPD Server (Debian) [172.16.32.99]
530 Login incorrect.
214-The following commands are recognized (* =>'s unimplemented):
214-CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV
214-EPRT EPSV ALLO* RNFR RNTO DELE MDTM RMD
214-XRMD MKD XMKD PWD XPWD SIZE SYST HELP
214-NOOP FEAT OPTS HOST CLNT AUTH* CCC* CONF*
214-ENC* MIC* PBSZ* PROT* TYPE STRU MODE RETR
214-STOR STOU APPE REST ABOR USER PASS ACCT*
214-REIN* LIST NLST STAT SITE MLSD MLST
214 Direct comments to root@rootbl
211-Features:
211-CLNT
211-EPRT
211-EPSV
211-HOST
211-LANG en-US.UTF-8*;en-US
211-MDTM
211-REST STREAM
211-SITE COPY
211-SITE MKDIR
211-SITE RMDIR
211-SITE SYMLINK
211-SITE UTIME
211-SIZE
211-UTF8
211 End
-669377073 | 2024-09-21T09:35:19.922106
3000 /
tcp
-1642955201 | 2024-09-18T14:12:48.515596
3306 /
tcp
MySQL:
Protocol Version: 10
Version: 8.0.39-0ubuntu0.20.04.1
Capabilities: 65535
Server Language: 255
Server Status: 2
Extended Server Capabilities: 57343
Authentication Plugin: caching_sha2_password
1500426333 | 2024-09-17T21:28:57.830538
3388 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows Server 2022
OS Build: 10.0.20348
Target Name: WIN_SERVER_FULL
NetBIOS Domain Name: WIN_SERVER_FULL
NetBIOS Computer Name: WIN_SERVER_FULL
DNS Domain Name: WIN_SERVER_FULL_BL
FQDN: WIN_SERVER_FULL_BL
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:5d:d1:4c:3c:de:f8:94:4d:78:c7:68:46:e3:57:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=\x00W\x00I\x00N\x00_\x00S\x00E\x00R\x00V\x00E\x00R\x00_\x00F\x00U\x00L\x00L\x00_\x00B\x00L
Validity
Not Before: Aug 19 15:00:02 2024 GMT
Not After : Feb 18 15:00:02 2025 GMT
Subject: CN=\x00W\x00I\x00N\x00_\x00S\x00E\x00R\x00V\x00E\x00R\x00_\x00F\x00U\x00L\x00L\x00_\x00B\x00L
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b7:59:b2:6d:98:92:c6:71:ac:82:82:72:01:20:
c8:3b:31:50:67:aa:d2:01:a0:1a:93:7b:68:b7:92:
bd:09:7e:e9:d6:71:2d:2b:d0:d8:58:cf:d5:24:28:
0a:82:bc:6a:c9:bc:34:4d:ee:fd:46:8f:01:f8:f8:
e8:f5:c2:ce:1f:0b:31:ff:1f:63:d4:ea:12:52:86:
e9:7b:37:c9:a0:8f:98:a7:a1:d7:1a:80:9c:2f:da:
34:a4:7d:15:84:8e:d9:98:44:f5:01:6b:1d:ec:66:
63:ad:19:e5:a4:0d:79:cb:bd:0f:b6:21:4e:11:91:
40:74:0d:55:56:ff:b4:2a:43:4e:6d:3b:77:68:99:
35:c4:6e:2d:0d:c9:d0:bb:a5:8a:1d:91:74:b2:12:
bf:ba:50:6f:fb:1c:e1:c8:f0:85:c8:00:23:be:74:
9e:7c:cd:ff:f7:d1:4b:c1:57:e0:4c:47:94:a5:1b:
48:c9:4e:7e:c6:4a:83:da:8e:92:35:84:da:f6:c4:
92:fe:92:36:ed:7d:2d:e0:d3:0d:82:20:ef:ca:f2:
7f:09:9c:4c:38:65:c2:9e:e7:a8:7d:10:16:7d:95:
05:d4:f7:cf:54:28:89:12:8f:e0:84:c9:a4:43:3d:
07:fb:56:f4:94:58:17:97:90:e5:55:84:39:46:45:
4a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
9d:42:4d:8c:52:53:0c:2f:66:60:e7:37:b6:4d:3a:5e:d5:6c:
fc:e4:de:82:ce:dd:0e:ba:4e:69:91:0f:a8:e6:ff:80:ad:d4:
e2:28:30:c7:d3:95:5a:56:d4:32:db:40:2c:47:cf:4d:89:38:
58:27:a3:ff:b3:7d:4e:78:c6:32:c8:30:b2:e2:97:5a:c1:13:
e5:c7:00:29:94:08:9f:07:53:4b:c8:75:88:6f:1e:cb:dc:1e:
65:96:e8:99:8d:b5:14:26:98:fe:58:73:e6:3b:5c:93:25:19:
dc:36:fd:fa:1e:5d:69:c1:8b:cd:99:5f:f7:77:92:59:7e:ef:
ab:e5:1d:b2:ed:0b:59:21:0b:f5:50:ab:c0:a1:6e:24:74:a2:
ec:f4:32:04:14:98:2e:3a:73:4c:c3:9c:57:5a:39:d5:14:20:
5c:b8:3e:5e:b6:dd:ac:38:27:41:3a:84:16:81:b3:e3:01:87:
12:06:b1:83:58:26:8f:e2:20:3d:32:9d:a8:c9:41:d2:e5:33:
06:cf:41:1f:9f:1f:2e:e8:17:27:1a:e7:6a:67:ef:0c:48:1a:
d0:aa:79:f3:c1:8b:fe:1c:4c:2c:c4:a7:ca:ef:5d:a5:68:47:
b1:a9:d3:d3:4f:42:d4:37:d3:e1:ef:8b:fd:02:8a:43:67:13:
2d:73:d9:7c
-1482179613 | 2024-09-01T13:33:25.678237
8006 /
tcp
HTTP/1.1 301 Moved Permanently
Cache-Control: max-age=0
Connection: Keep-Alive
Date: Sun, 01 Sep 2024 13:33:25 GMT
Pragma: no-cache
Location: https://200.71.72.26/
Server: pve-api-daemon/3.0
Expires: Sun, 01 Sep 2024 13:33:25 GMT
199333125 | 2024-09-06T04:32:27.070038
8040 /
tcp
HTTP/1.1 400 Bad Request
Server: nginx
Date: Fri, 06 Sep 2024 04:32:26 GMT
Content-Type: text/html
Content-Length: 650
Connection: close
199333125 | 2024-09-19T21:23:33.219659
8050 /
tcp
HTTP/1.1 400 Bad Request
Server: nginx
Date: Thu, 19 Sep 2024 21:23:33 GMT
Content-Type: text/html
Content-Length: 650
Connection: close
199333125 | 2024-09-17T11:59:57.841148
8060 /
tcp
HTTP/1.1 400 Bad Request
Server: nginx
Date: Tue, 17 Sep 2024 11:59:57 GMT
Content-Type: text/html
Content-Length: 650
Connection: close
1393880461 | 2024-09-01T07:45:20.442789
8080 /
tcp
HTTP/1.1 200 OK
Date: Sun, 01 Sep 2024 07:45:20 GMT
Connection: Keep-Alive
Cache-Control: no-store
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; script-src 'none'; object-src 'none'; connect-src *.ookla.com *.speedtest.net *.brasillike.com.br *.speedtestcustom.com
Content-Type: text/html
Content-Length: 109
-502100064 | 2024-09-17T07:39:53.591860
8086 /
tcp
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: public, max-age=3600
Content-Length: 534
Content-Type: text/html; charset=utf-8
Etag: "5342613538"
Last-Modified: Wed, 26 Apr 2023 13:05:38 GMT
X-Influxdb-Build: OSS
X-Influxdb-Version: v2.7.4
Date: Tue, 17 Sep 2024 07:39:53 GMT
InfluxDB:
Version: 2.7.4
Build: OSS
-1524105160 | 2024-09-03T10:31:50.716549
8887 /
tcp
HTTP/1.1 200 OK
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-UA-Compatible: IE=edge
Referrer-Policy: same-origin
Content-Language: pt-br
Content-Type: text/html; charset=utf-8
Content-Length: 8103
ETag: W/"1fa7-Hk6jlmfccP6uePISyKs/6nNh8pc"
Vary: Accept-Encoding
Date: Tue, 03 Sep 2024 10:31:50 GMT
Connection: keep-alive
Keep-Alive: timeout=5
1410093119 | 2024-08-28T10:44:23.859505
8888 /
tcp
HTTP/1.1 200 OK
Date: Wed, 28 Aug 2024 10:44:23 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Thu, 25 Apr 2024 01:21:26 GMT
ETag: "29af-616e19b264238"
Accept-Ranges: bytes
Content-Length: 10671
Vary: Accept-Encoding
Content-Type: text/html