21 /
tcp
1057531874 | 2025-01-12T07:52:16.600999
220 Microsoft FTP Service
530 Valid hostname is expected.
214-The following commands are recognized (* ==>'s unimplemented).
ABOR
ACCT
ADAT *
ALLO
APPE
AUTH
CCC
CDUP
CWD
DELE
ENC *
EPRT
EPSV
FEAT
HELP
HOST
LANG
LIST
MDTM
MIC *
MKD
MODE
NLST
NOOP
OPTS
PASS
PASV
PBSZ
PORT
PROT
PWD
QUIT
REIN
REST
RETR
RMD
RNFR
RNTO
SITE
SIZE
SMNT
STAT
STOR
STOU
STRU
SYST
TYPE
USER
XCUP
XCWD
XMKD
XPWD
XRMD
214 HELP command successful.
211-Extended features supported:
LANG EN*
UTF8
AUTH TLS;TLS-C;SSL;TLS-P;
PBSZ
PROT C;P;
CCC
HOST
SIZE
MDTM
REST STREAM
211 END
-641105119 | 2025-01-04T20:54:20.291625
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://edv.dorn.cc
Content-Security-Policy: default-src 'none';
Date: Sat, 04 Jan 2025 20:54:19 GMT
Content-Length: 136
-641105119 | 2025-01-21T20:22:25.788427
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://edv.dorn.cc
Content-Security-Policy: default-src 'none';
Date: Tue, 21 Jan 2025 20:22:25 GMT
Content-Length: 136
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:8c:78:c8:76:2c:af:cc:bf:b1:89:81:7d:9d:54:f3:43:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Jan 18 07:59:41 2025 GMT
Not After : Apr 18 07:59:40 2025 GMT
Subject: CN=hdw01.dorn.cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (3072 bit)
Modulus:
00:85:52:48:0b:78:99:14:be:19:a6:29:21:46:a4:
f4:e7:a0:d0:ce:69:96:09:02:4c:31:ad:27:e9:39:
54:d3:07:18:00:06:b0:e6:a5:96:11:ab:a8:74:88:
db:2a:63:a7:11:2c:47:a8:b2:c3:f7:18:b7:4c:d3:
48:7d:73:76:22:86:6d:00:94:9a:67:ed:f2:b5:5f:
03:93:a8:c2:fe:49:5d:43:b7:d9:e6:87:db:e1:d9:
20:6e:c2:25:00:3f:12:1b:39:7d:cc:50:f3:c0:a0:
aa:0e:5a:5b:9a:16:2c:37:fe:22:a8:e3:3b:f0:1d:
43:b0:20:6e:12:82:47:18:21:f1:39:36:af:14:fc:
4a:c3:84:10:b4:1e:a2:01:8a:9d:18:31:68:58:9e:
bd:30:3e:5b:cd:39:4c:99:60:f4:cb:91:e6:ff:35:
4b:e3:7d:c0:c7:ed:63:8f:21:a0:d5:dd:21:95:46:
8f:9e:71:eb:bb:4c:41:b8:d3:58:f7:22:d3:f9:ef:
3c:89:7f:f2:2c:0b:be:88:10:8e:c7:0c:6b:2d:a2:
57:c2:31:f9:3f:66:30:3c:cb:8f:fd:40:bb:b4:04:
02:0f:1a:a1:07:d3:4a:c4:3a:a2:65:27:0f:bd:eb:
b4:ed:92:ba:28:85:05:01:72:42:6f:41:34:d4:78:
f0:0a:1e:ef:3a:74:a5:00:fb:0d:74:66:34:dc:e2:
e6:a5:e4:f1:2e:50:6b:0c:0b:6b:28:a8:99:f9:86:
47:55:97:6b:74:e2:16:33:10:e8:97:89:3c:3d:fd:
62:67:00:39:9a:dc:68:f9:bd:60:3e:5e:83:ff:3e:
c8:5c:46:06:fb:e0:39:a8:46:ea:9e:fa:5b:9a:20:
81:b3:4d:4f:08:2e:c3:c9:0b:f7:1d:15:00:d0:3c:
1e:81:7c:8b:b2:9d:e7:08:f8:50:d0:c5:fe:25:a3:
60:5b:aa:82:d9:48:ac:23:fc:1f:69:5d:64:52:55:
73:a1:8f:67:9a:ef:aa:81:54:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
ED:50:57:AB:F7:F9:C9:12:96:F6:0E:8F:70:19:BA:58:35:F0:11:57
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:hdw01.dorn.cc
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 73:20:22:0F:08:16:8A:F9:F3:C4:A6:8B:0A:B2:6A:9A:
4A:00:EE:F5:77:85:8A:08:4D:05:00:D4:A5:42:44:59
Timestamp : Jan 18 08:58:11.926 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:3B:B3:E2:7B:FF:77:EA:D7:B6:A2:25:F7:
6F:4A:8F:50:69:1F:2D:FE:92:01:CB:78:5F:9E:4F:D0:
1F:79:2F:38:02:21:00:82:01:0D:30:36:F3:6B:9E:25:
85:52:69:63:8B:7B:D0:B3:D6:90:D4:D6:77:54:28:B9:
DD:3A:7A:05:54:5E:E7
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 4E:75:A3:27:5C:9A:10:C3:38:5B:6C:D4:DF:3F:52:EB:
1D:F0:E0:8E:1B:8D:69:C0:B1:FA:64:B1:62:9A:39:DF
Timestamp : Jan 18 08:58:11.917 2025 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:1B:49:A9:DE:3B:9C:3E:21:B2:F0:92:1D:
CD:7B:67:81:CD:72:92:54:DE:BA:B5:E8:A0:EB:EA:F6:
36:3C:21:A3:02:21:00:D9:FC:15:ED:F8:13:AF:FA:22:
1A:06:60:CB:B9:00:C9:82:A4:6A:9C:B5:4D:1E:3C:BA:
1A:4A:82:0F:A7:67:0F
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
a8:d8:b0:54:81:32:d2:d4:98:01:10:6b:79:5e:a5:1b:93:1d:
82:a9:5e:e3:0d:5a:d6:79:22:cf:39:0d:b9:39:8d:01:4c:28:
20:ae:60:fa:04:de:9c:fe:2c:b4:d0:9d:95:0c:53:a3:c8:8b:
ba:53:b0:44:6e:39:1f:af:2e:9a:46:d9:e7:c0:5d:6b:f6:79:
95:7e:8e:cb:17:ca:76:1d:d4:08:ba:8d:ad:11:1a:ab:fc:0a:
22:13:1e:1f:0a:73:21:a6:51:a0:8a:b0:41:58:9e:8b:7c:f9:
9d:df:5d:6a:92:19:26:03:4e:a5:a8:84:1e:14:6c:fd:09:3e:
06:b0:07:bc:11:68:5c:e9:53:2e:30:57:8f:51:47:8f:1e:dd:
60:96:d4:43:2a:12:6a:32:50:58:0c:1a:b6:4d:ee:d3:dc:8f:
22:c0:73:08:86:e2:4a:78:68:7c:f4:50:d0:db:49:e4:d1:13:
06:1c:f0:ef:1a:81:3e:df:76:cc:99:15:f9:b8:59:ba:e6:fd:
55:a2:15:dd:00:7f:c9:d7:4b:a6:ec:73:8d:bc:a7:3a:70:0f:
5a:36:54:4a:47:94:b4:bc:dd:09:76:aa:6b:e8:54:73:e2:f4:
02:78:a2:af:ec:7b:5a:8d:ad:8a:f5:d6:d8:8c:04:85:60:e9:
e9:dc:89:5d
3389 /
tcp
1514418007 | 2025-01-22T20:28:23.008599
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1809)/Windows Server 2019 (version 1809)
OS Build: 10.0.17763
Target Name: K004291VSB
NetBIOS Domain Name: K004291VSB
NetBIOS Computer Name: K004291VSB
DNS Domain Name: k004291vsb
FQDN: k004291vsb
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:1f:d1:c4:f9:c2:e6:89:49:3c:fc:5b:3e:ba:10:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=k004291vsb
Validity
Not Before: Sep 17 19:56:58 2024 GMT
Not After : Mar 19 19:56:58 2025 GMT
Subject: CN=k004291vsb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ae:bc:a5:d4:44:a9:19:b1:9a:fc:5a:79:f4:28:
4a:e5:43:dc:d7:f1:38:61:62:74:b3:3d:27:7d:09:
37:17:a6:73:d1:a1:0b:63:ab:3b:5e:3a:84:c8:e5:
be:d7:a8:14:cc:67:d6:d5:0f:19:96:81:7b:e7:04:
f5:14:8c:a1:6d:7f:6b:14:10:70:8f:2e:99:a1:db:
51:28:a8:d8:67:07:70:41:3c:27:7c:d1:c6:dd:37:
08:f8:b8:74:98:58:a9:20:8f:aa:2d:a2:91:8c:05:
7a:6d:09:ee:e5:37:77:9b:ba:3d:18:2d:4e:74:91:
b6:3c:28:fc:29:c2:c0:87:f3:10:21:de:49:87:9c:
e3:31:d4:d5:d9:9b:60:ea:db:6a:5b:b7:2b:ad:4e:
6c:97:7b:61:eb:f6:20:49:5f:f8:27:cb:91:bf:7c:
d1:43:a4:d9:eb:4f:bc:79:33:ec:53:35:cb:74:b4:
1b:27:bb:8f:05:60:e1:2b:5f:d1:ee:b4:60:95:13:
31:1e:df:1f:0b:81:41:3d:41:a6:d9:05:48:c5:b9:
04:43:6d:0c:c4:cd:81:a6:5f:ed:55:4b:fd:4d:2e:
03:2c:49:55:a9:65:07:7f:e1:41:2c:ac:2f:5e:5c:
a5:14:d8:e9:a1:ce:83:a6:77:43:93:12:31:a1:8d:
84:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
a5:ba:61:48:e9:aa:54:dd:20:43:d5:aa:26:c5:4e:92:ef:2c:
fd:05:d2:07:4f:d7:22:3c:0a:4d:05:fa:56:4d:fc:4e:97:8f:
e9:80:0e:e4:c6:3b:80:53:ed:a4:d4:54:f7:bc:7b:29:3b:45:
2d:4d:9d:8d:0c:1f:ee:13:4e:9f:ed:53:c4:45:51:47:35:4e:
4c:bc:1a:b6:88:51:0d:df:4f:b8:9e:11:eb:ea:d5:fd:e6:8d:
8f:b8:d7:c5:cc:4e:3d:15:a0:b1:60:6c:ba:3d:aa:59:c6:0a:
0e:ff:02:a1:09:f2:1f:55:91:a3:2b:12:c6:67:50:ae:0f:28:
5a:1a:0a:bf:c8:c8:9d:e7:71:99:83:d9:47:40:10:61:59:7a:
f2:9f:3f:7b:69:44:2d:5a:65:6d:54:d6:92:76:ca:d0:31:55:
5f:cd:4f:56:c2:25:57:bc:48:71:18:f9:b9:60:58:96:b3:0f:
23:f0:7d:09:ed:c1:d7:40:a9:ab:65:56:31:d0:6a:f4:da:4b:
40:7f:f4:fb:98:64:b4:9c:0b:b6:7d:bd:83:ba:20:d2:05:9c:
0d:89:10:01:36:79:a9:7f:e1:e4:27:42:2a:0d:8a:d5:f5:fc:
e4:0a:6a:c6:b6:13:c4:c7:e4:2e:83:67:03:a5:9b:bc:56:e2:
b7:05:d8:51
50022 /
tcp
-1585473346 | 2025-01-24T03:11:15.804662
SSH-2.0-OpenSSH_for_Windows_9.5
Key type: ecdsa-sha2-nistp256
Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBAQtVdXuHIZ9dZiDxblpJ9MX
z98h1uIEjKdKNEh0HUoTphXxmsvEkr5E9u+oq1KiKXRqyyTYf+DCDCpiszg0XEI=
Fingerprint: 7f:df:2a:80:3d:89:b6:45:72:23:52:8d:91:f4:da:74
Kex Algorithms:
curve25519-sha256@libssh.org
ecdh-sha2-nistp521
ecdh-sha2-nistp384
ecdh-sha2-nistp256
diffie-hellman-group-exchange-sha256
kex-strict-s-v00@openssh.com
Server Host Key Algorithms:
rsa-sha2-512
rsa-sha2-256
ecdsa-sha2-nistp256
ssh-ed25519
Encryption Algorithms:
chacha20-poly1305@openssh.com
aes256-gcm@openssh.com
aes128-gcm@openssh.com
aes256-ctr
aes192-ctr
aes128-ctr
MAC Algorithms:
hmac-sha2-512-etm@openssh.com
hmac-sha2-256-etm@openssh.com
umac-128-etm@openssh.com
hmac-sha2-512
hmac-sha2-256
umac-128@openssh.com
Compression Algorithms:
none
zlib@openssh.com
