GeneralInformation

Country	China
City	Shanghai
Organization	CHINANET jiangxi province network
ISP	Jiangxi Jiujiang IDC
ASN	AS139201
Operating System	Windows

OpenPorts

21 22 80 873 1433 3389 7001

1742284216 | 2024-12-29T02:56:05.805698

21 / tcp

220 Serv-U FTP Server v15.1 ready...
530 Sorry, no ANONYMOUS access allowed.
214-The following commands are recognized (* => unimplemented).
    OPTS    CLNT    CSID    NOOP    HELP    FEAT    HOST    USER    PASS
    REIN    QUIT    ACCT*   SMNT*   SITE    ABOR    SYST    STAT    AUTH
    PBSZ    PROT    CCC     SSCN    CWD     XCWD    CDUP    XCUP    PWD
    XPWD    MKD     XMKD    RMD     XRMD    RMDA    DSIZ    AVBL    PORT
    EPRT    PASV    EPSV    TYPE    STRU    MODE    RETR    STOR    APPE
    STOU    THMB    ALLO    REST    SIZE    RNFR    RNTO    DELE    XDEL
    MDTM    MFMT    MFCT    MFF     XCRC    XMD5    XSHA1   XSHA256 XSHA512
    COMB    LIST    NLST    MLST    MLSD
214 End
211-Extensions supported
 OPTS MODE;MLST
 CLNT
 CSID Name; Version;
 HOST domain
 SITE PSWD;SET;ZONE;CHMOD;MSG;EXEC;HELP
 AUTH TLS;SSL;TLS-C;TLS-P;
 PBSZ
 PROT
 CCC
 SSCN
 RMDA directoryname
 DSIZ
 AVBL
 EPRT
 EPSV
 MODE Z
 THMB BMP|JPEG|GIF|TIFF|PNG max_width max_height pathname
 REST STREAM
 SIZE
 MDTM
 MDTM YYYYMMDDHHMMSS[+-TZ];filename
 MFMT
 MFCT
 MFF Create;Modify;
 XCRC filename;start;end
 XMD5 filename;start;end
 XSHA1 filename;start;end
 XSHA256 filename;start;end
 XSHA512 filename;start;end
 COMB target;source_list
 MLST Type*;Size*;Create;Modify*;Perm;Win32.ea;Win32.dt;Win32.dl
211 End (for details use "HELP commmand" where command is the command of interest)

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 0 (0x0)
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
        Validity
            Not Before: Apr 29 15:53:05 2009 GMT
            Not After : Apr 27 15:53:05 2019 GMT
        Subject: C=US, ST=WI, L=Helenville, O=Rhino Software, Inc., OU=Software Development, CN=ftp.Serv-U.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (1024 bit)
                Modulus:
                    00:c2:87:da:9d:72:fd:62:f5:8e:a7:0f:0a:6c:a4:
                    b6:96:d4:ea:2c:76:ba:ed:3a:5d:2d:ee:e8:a8:7f:
                    6f:d0:62:cd:11:4e:64:f5:0d:54:73:d0:3d:12:37:
                    07:8d:8e:d0:7f:e7:4e:bd:a4:56:8d:32:d8:44:87:
                    9f:75:80:da:e7:8a:9c:72:d8:50:36:67:3e:f1:e5:
                    fb:f4:bf:f0:1b:4e:39:93:ba:32:b5:e0:66:03:06:
                    f3:10:4c:0e:7c:8c:67:f5:35:64:67:d3:e0:a4:26:
                    f8:42:a9:8e:1e:ca:59:18:81:77:67:e1:8e:50:80:
                    64:18:a0:4b:cd:f4:fe:b3:75
                Exponent: 65537 (0x10001)
    Signature Algorithm: sha1WithRSAEncryption
    Signature Value:
        2a:1d:4e:32:3d:96:9a:dd:3d:59:81:24:5e:4e:64:cb:2f:c5:
        70:e2:4a:ef:8c:97:a8:76:60:94:7d:0c:09:39:a0:9d:19:da:
        60:ee:6e:71:27:a5:46:df:16:94:36:a2:a1:dd:34:39:3f:65:
        69:0b:a2:59:74:9a:77:64:e7:bd:27:04:3d:8e:6e:59:29:be:
        51:73:d9:36:13:e3:fa:e2:44:27:8d:a0:0d:20:5c:25:7d:b8:
        a5:f3:95:de:da:45:83:83:80:af:bf:06:7e:9e:83:82:dc:44:
        e5:7e:c0:d7:ed:0f:54:24:7d:e1:ed:0c:30:58:1d:36:2f:91:
        67:98

-1910120767 | 2024-12-20T17:41:13.353338

22 / tcp

SSH-2.0-Serv-U_15.1.5.10
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAAAgQDCh9qdcv1i9Y6nDwpspLaW1OosdrrtOl0t7uiof2/QYs0R
TmT1DVRz0D0SNweNjtB/5069pFaNMthEh591gNrnipxy2FA2Zz7x5fv0v/AbTjmTujK14GYDBvMQ
TA58jGf1NWRn0+CkJvhCqY4eylkYgXdn4Y5QgGQYoEvN9P6zdQ==
Fingerprint: e4:dd:11:2e:82:34:ab:62:59:1c:c8:62:1d:4b:48:99

Kex Algorithms:
	diffie-hellman-group1-sha1
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa

Encryption Algorithms:
	aes128-cbc
	rijndael128-cbc
	3des-cbc
	blowfish-cbc
	aes192-cbc
	rijndael192-cbc
	aes256-cbc
	rijndael256-cbc
	rijndael-cbc@lysator.liu.se
	cast128-cbc
	rijndael-cbc@lysator.liu.se
	aes128-ctr
	aes192-ctr
	aes256-ctr

MAC Algorithms:
	hmac-md5
	hmac-sha1
	hmac-sha1-96
	hmac-sha2-256
	hmac-sha2-256-96
	hmac-sha2-512
	hmac-sha2-512-96

Compression Algorithms:
	zlib
	none

801817760 | 2025-01-10T01:01:55.783114

80 / tcp

500 - 内部服务器错误。

HTTP/1.1 500 Internal Server Error
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Fri, 10 Jan 2025 01:01:55 GMT
Content-Length: 1141

-2140630187 | 2025-01-08T05:42:26.397758

873 / tcp

@RSYNCD: 30.0\n

-1511461753 | 2025-01-06T13:03:57.958140

1433 / tcp

MS-SQL NTLM Info:
  OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
  OS Build: 10.0.14393
  Target Name: WIN-QQQL3S673DE
  NetBIOS Domain Name: WIN-QQQL3S673DE
  NetBIOS Computer Name: WIN-QQQL3S673DE
  DNS Domain Name: WIN-QQQL3S673DE
  FQDN: WIN-QQQL3S673DE

-112066352 | 2024-12-27T06:10:35.099658

3389 / tcp

Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
  OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
  OS Build: 10.0.14393
  Target Name: WIN-QQQL3S673DE
  NetBIOS Domain Name: WIN-QQQL3S673DE
  NetBIOS Computer Name: WIN-QQQL3S673DE
  DNS Domain Name: WIN-QQQL3S673DE
  FQDN: WIN-QQQL3S673DE

Administrator

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            33:58:3a:4c:37:c8:10:b6:43:02:27:d6:61:c5:ed:f2
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=WIN-QQQL3S673DE
        Validity
            Not Before: Dec 17 11:10:21 2024 GMT
            Not After : Jun 18 11:10:21 2025 GMT
        Subject: CN=WIN-QQQL3S673DE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d6:b1:f9:b8:86:5e:96:05:c9:5b:f0:5b:9d:c9:
                    60:6a:1a:52:e2:07:8f:19:95:18:2c:2d:4d:9b:86:
                    69:b8:06:57:ab:08:f2:41:c0:7a:66:82:7b:dd:64:
                    c8:46:c5:35:29:43:a5:aa:9e:ee:7e:0f:d6:a4:24:
                    2a:09:9c:54:7b:a3:86:db:ff:8a:3a:78:cf:32:65:
                    14:22:35:95:e9:ce:c6:6a:66:3e:44:13:2f:72:91:
                    4f:dc:98:7d:a1:c1:92:d9:8b:2a:7b:63:22:80:9e:
                    e7:f2:c0:c4:02:4d:7f:ae:30:26:5f:c4:05:54:28:
                    71:5d:16:9d:ea:9a:39:62:bb:d4:5e:aa:59:eb:64:
                    bc:11:53:48:dc:ff:fa:e0:0c:68:f3:12:23:f3:d9:
                    f3:ee:db:5b:67:b6:65:18:55:22:fd:36:a7:10:97:
                    83:b4:36:9f:f0:96:7c:a1:10:5c:f8:2c:c2:36:79:
                    0a:4b:29:a3:1d:23:9d:07:9a:ab:a4:47:49:40:b7:
                    3a:4b:a1:5c:c4:cb:13:51:6c:f0:5d:99:eb:98:a5:
                    26:32:6f:b5:11:5f:2d:33:f7:33:ce:fe:67:7c:c7:
                    59:42:b5:85:6b:3c:c9:9f:3b:5e:93:5f:a2:ad:34:
                    e9:6a:d1:60:8d:33:36:d0:4e:dd:9c:c1:09:7b:ef:
                    0f:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication
            X509v3 Key Usage: 
                Key Encipherment, Data Encipherment
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        47:5c:1f:3e:ec:e6:da:ef:e8:ca:0f:16:20:51:a1:a2:53:47:
        62:f8:09:c3:4a:a4:5d:ed:40:be:6a:f6:6b:f1:dd:aa:20:0c:
        0e:1c:7c:08:0d:12:08:70:65:d7:67:be:ff:c6:52:37:50:2c:
        39:2f:f7:b7:6e:cf:93:75:5d:ea:a8:2c:e0:59:b3:ff:62:be:
        28:d8:92:9d:ea:ed:1a:05:3d:37:9a:ed:86:05:e2:c9:80:fb:
        aa:de:d9:bf:85:ad:94:6f:e1:05:4a:7a:2a:65:78:ab:81:0c:
        88:82:88:bb:f7:44:16:ba:a2:8f:25:a7:57:5c:36:5e:11:c9:
        f1:d5:d1:7c:1a:a6:d3:ec:ef:a0:b6:67:a2:87:8a:ea:f3:6a:
        6b:2c:b6:d0:f4:dd:ba:db:b7:16:a4:10:be:9f:ea:6a:47:84:
        67:10:37:58:cc:9f:20:62:28:c9:ca:34:98:6c:6a:f4:f3:81:
        ff:95:ce:1c:99:79:c1:a9:80:f8:5c:ec:30:eb:39:cc:e8:7b:
        65:54:4f:67:a7:80:21:c0:64:ed:c8:fe:d2:82:13:ff:ca:9e:
        56:17:b2:a9:ed:d2:d1:a4:37:bc:65:ee:38:65:91:54:59:5a:
        f7:7a:56:03:67:59:2c:4e:cb:6f:43:7d:42:4f:57:10:d5:12:
        dd:34:b3:34

-1675418583 | 2025-01-09T15:04:05.233337

7001 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request

218.95.37.206

Last Seen: 2025-01-10

Tags:

GeneralInformation

OpenPorts

1742284216 | 2024-12-29T02:56:05.805698
21 / tcp

Serv-U ftpd15.1

-1910120767 | 2024-12-20T17:41:13.353338
22 / tcp

801817760 | 2025-01-10T01:01:55.783114
80 / tcp

Microsoft IIS httpd10.0

-2140630187 | 2025-01-08T05:42:26.397758
873 / tcp

-1511461753 | 2025-01-06T13:03:57.958140
1433 / tcp

MS-SQL Server 2017 RTM14.0.1000.0

-112066352 | 2024-12-27T06:10:35.099658
3389 / tcp

Remote Desktop Protocol

-1675418583 | 2025-01-09T15:04:05.233337
7001 / tcp

Products

Pricing

Contact Us

218.95.37.206

Last Seen: 2025-01-10

Tags:

GeneralInformation

OpenPorts

1742284216 | 2024-12-29T02:56:05.805698 21 / tcp

Serv-U ftpd15.1

-1910120767 | 2024-12-20T17:41:13.353338 22 / tcp

801817760 | 2025-01-10T01:01:55.783114 80 / tcp

Microsoft IIS httpd10.0

-2140630187 | 2025-01-08T05:42:26.397758 873 / tcp

-1511461753 | 2025-01-06T13:03:57.958140 1433 / tcp

MS-SQL Server 2017 RTM14.0.1000.0

-112066352 | 2024-12-27T06:10:35.099658 3389 / tcp

Remote Desktop Protocol

-1675418583 | 2025-01-09T15:04:05.233337 7001 / tcp

Products

Pricing

Contact Us

1742284216 | 2024-12-29T02:56:05.805698
21 / tcp

-1910120767 | 2024-12-20T17:41:13.353338
22 / tcp

801817760 | 2025-01-10T01:01:55.783114
80 / tcp

-2140630187 | 2025-01-08T05:42:26.397758
873 / tcp

-1511461753 | 2025-01-06T13:03:57.958140
1433 / tcp

-112066352 | 2024-12-27T06:10:35.099658
3389 / tcp

-1675418583 | 2025-01-09T15:04:05.233337
7001 / tcp