| Hostnames |
h77.default-host.net original.eu.com www.original.eu.com |
| Domains | default-host.net eu.com |
| Country | Germany |
| City | Falkenstein |
| Organization | Hetzner Online GmbH |
| ISP | Hetzner Online GmbH |
| ASN | AS24940 |
-2040683333 | 2024-10-26T00:20:13.82296121 / tcp
220 ::ffff:46.4.161.230 FTP server ready 530 Login incorrect. 214-The following commands are recognized (* =>'s unimplemented): CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV EPRT EPSV ALLO RNFR RNTO DELE MDTM RMD XRMD MKD XMKD PWD XPWD SIZE SYST HELP NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF* ENC* MIC* PBSZ PROT TYPE STRU MODE RETR STOR STOU APPE REST ABOR RANG USER PASS ACCT* REIN* LIST NLST STAT SITE MLSD MLST 214 Direct comments to abuse@adm.tools 211-Features: AUTH TLS CCC CLNT CSID EPRT EPSV HOST MDTM MFF modify;UNIX.group;UNIX.mode; MFMT MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*; PBSZ PROT RANG STREAM REST STREAM SIZE SSCN TVFS 211 End
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:b4:30:cb:19:d4:a2:57:1d:5a:d7:11:23:07:b2:55:3c:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Sep 19 16:18:49 2024 GMT
Not After : Dec 18 16:18:48 2024 GMT
Subject: CN=*.ftp.tools
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b5:4b:0a:bf:98:8e:a2:fd:43:50:d1:52:b2:24:
22:a0:97:d6:58:8f:bd:64:27:8c:7c:97:b3:7b:7a:
46:9b:30:a1:6e:1c:21:a9:21:76:bd:80:3f:9c:ed:
51:7b:d8:16:8d:48:6d:17:1c:a0:ea:c2:9b:72:b8:
57:1c:72:1b:ad:13:33:82:f6:70:01:75:54:55:c9:
42:c9:a0:31:c5:c8:b0:65:e3:58:3c:74:15:6f:30:
d1:38:91:36:f1:1d:e6:37:9c:01:db:7b:2b:c9:81:
9c:ba:5e:a3:15:12:f9:6e:a2:51:da:27:e5:7a:60:
55:25:ba:4a:00:f9:92:56:6f:bd:cc:c7:7a:ea:7a:
3f:b6:62:9e:68:9d:52:6d:40:d2:9f:ee:fb:94:af:
92:f0:c2:69:4d:ff:3a:28:db:c9:b3:14:5a:41:c3:
d6:c7:fb:47:20:9c:6d:56:23:e6:4e:8f:e9:bd:85:
12:69:5e:c6:5b:81:ca:96:e6:23:d8:f8:89:6e:b0:
72:a9:da:76:e5:aa:14:87:9f:1d:a8:38:47:b8:af:
4d:70:75:3f:27:87:76:9f:ea:8a:b1:a0:f2:40:f8:
b1:43:07:b1:6d:2c:e4:ee:1e:ce:c3:62:00:66:b0:
7e:07:25:ea:6d:e0:4f:55:b3:39:ae:8b:e1:d6:c3:
f9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
93:68:D0:AE:7B:7F:5E:52:80:88:52:0A:F2:07:94:C5:E4:4D:0E:44
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:*.ftp.tools
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
Timestamp : Sep 19 17:17:20.139 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:21:00:FF:13:DC:AD:E4:ED:8C:F7:FE:AB:30:
EB:A5:CE:1A:A6:E6:5A:8D:C0:EE:C3:AE:EF:18:B2:6C:
76:EA:14:F6:6C:02:20:4A:82:BD:AE:7C:80:10:35:D6:
72:3F:0D:22:D4:51:14:61:03:B9:CC:ED:AD:2A:BB:1E:
AC:E7:A5:CA:25:E4:8D
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34:
B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74
Timestamp : Sep 19 17:17:20.183 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:49:C1:33:CD:5E:08:0D:D1:97:50:BC:46:
48:39:99:23:3E:EB:09:10:46:45:E4:9A:45:8C:CE:30:
7A:E3:27:BC:02:21:00:8A:03:16:AF:27:D3:AC:5D:BE:
24:11:92:31:EE:E1:C9:75:56:37:86:79:57:57:5B:66:
6C:2B:39:4E:E8:27:EF
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
09:5c:99:22:3a:67:cd:76:6d:c2:1f:54:6e:4f:6a:23:d4:f6:
0c:67:09:e8:e2:5b:d8:01:cb:44:6d:6d:f2:ec:d7:ec:ed:3c:
c7:5d:4d:ef:bf:c6:52:9e:dd:53:b9:0d:69:c6:dd:6f:b9:1d:
79:a0:68:a6:91:d6:d6:25:4a:1f:3a:96:d2:95:4c:5c:52:a0:
7f:6c:79:7a:1d:ed:ee:c8:78:b6:5c:36:e9:a6:17:db:45:95:
98:fe:56:3c:ac:6a:55:57:12:01:0f:52:2f:11:13:d9:e3:4a:
44:29:f6:73:b1:30:46:62:67:ba:41:a9:77:a9:7a:f7:31:c9:
e4:55:17:78:48:a4:f5:be:1b:e4:bb:52:09:db:99:48:a3:87:
68:06:68:99:a5:79:47:aa:5f:a7:c6:df:71:ce:b1:0e:7c:c7:
69:99:6e:a1:be:3d:36:0e:58:da:a8:c1:bc:17:b6:d7:18:4d:
a1:92:94:94:84:d1:ce:2c:bb:4c:87:7e:f9:16:6e:bb:fe:f2:
52:10:98:8f:9e:4d:47:b9:7f:ee:43:4d:17:13:ed:e0:3b:69:
a5:a0:87:1d:6c:34:50:f0:4d:d4:5e:88:8b:83:d0:ca:8b:ab:
38:77:da:7e:5e:6d:aa:18:41:25:19:36:14:d7:7b:96:e2:30:
f6:b0:2b:25
-1419767466 | 2024-10-21T07:36:21.21221222 / tcp
SSH-2.0-OpenSSH_8.0 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQC52yYmwZ/C89Lfe8/LQR3MN4un272Y7WBv7LaigFIl9Fzs yB7wktiPtuZUILyz9lHKGZvNuKZHdu2ICMDm6MxH7d9nCbDUx5nhTLWUpaVng5eD7QAXn73wlFIF gRpVpWatfPp4kiIxb6gUSix/Z6NsIcmu8fKDn1bwUaKbyUXZWhSYl/2KPgEWK72FlAgL4hAJo82N si5zP5tTsbtWhm7ymB20dwtJaS/eKpRNrB1yrnlGoU5N75QZtASlgMrB5mhjo0cjV8kup1nJMu2p j1iMTeoqxzYQZTiWvgTl/b/a4XOM6GwlqD/H+ohsR+hkzOTwjtUa4qKuYkKp0TONtk/La4T+iycI WOo8VWifO+fS1lgf9a+moYMSND3HeyEInrbPtIY3ELtR2X4AtfDcmWYuEeadt4FWhsmTK6pTgcND l7ZjcsnSbA7ItQmWgwVwVuFwZNAYSrNQ1aBh6KIobjYtzQ+E6e3nNLtS7OLmlLhs7251aVbukQaJ ydbsMUuHj2M= Fingerprint: b2:85:62:45:59:03:86:6b:8f:0d:7a:e4:f2:bb:8b:9f Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group-exchange-sha1 diffie-hellman-group14-sha1 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa Encryption Algorithms: aes256-gcm@openssh.com chacha20-poly1305@openssh.com aes256-ctr aes256-cbc aes128-gcm@openssh.com aes128-ctr aes128-cbc MAC Algorithms: hmac-sha2-256-etm@openssh.com hmac-sha1-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha2-256 hmac-sha1 umac-128@openssh.com hmac-sha2-512 Compression Algorithms: none zlib@openssh.com
-2094226127 | 2024-10-31T15:11:29.20549580 / tcp
HTTP/1.1 200 OK Server: nginx Date: Thu, 31 Oct 2024 15:11:29 GMT Content-Type: text/html Content-Length: 1338 Connection: keep-alive x-ray: wn50165:0.000/wa50165:D=149 Last-Modified: Wed, 24 May 2017 11:08:18 GMT ETag: "53a-550431f142c80" Accept-Ranges: bytes
-2100514759 | 2024-10-31T15:11:27.053340443 / tcp
HTTP/1.1 301 Moved Permanently Server: nginx Date: Thu, 31 Oct 2024 15:11:26 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: http://www.original.eu.com/ x-ray: wn50165:0.000/
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:70:fa:15:ec:5d:01:4c:0b:93:90:45:de:ee:be:ca:65:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R11
Validity
Not Before: Sep 17 11:46:38 2024 GMT
Not After : Dec 16 11:46:37 2024 GMT
Subject: CN=www.original.eu.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:de:8f:7c:e4:f4:fe:28:da:cf:7f:8a:6d:0c:66:
e7:51:a9:35:eb:d0:8c:4f:bc:3f:39:85:e9:8b:d9:
c3:bc:d8:05:38:ae:b8:24:59:df:da:e0:7d:f1:6d:
66:36:79:c5:d8:dc:4f:86:79:ab:26:83:70:e3:98:
18:2c:05:1c:a0:5d:19:6e:1c:bd:de:6b:50:49:56:
17:b3:b3:1f:08:52:09:3d:63:cd:e0:e0:e7:88:05:
85:00:15:08:6d:dc:9c:fb:fd:0b:7f:dc:a0:55:a0:
7a:52:33:f2:c1:f8:f8:c6:9d:d3:a4:ad:61:33:57:
5e:57:39:ff:1a:31:08:d2:7a:32:f7:87:66:44:c3:
35:a6:86:f6:79:76:e8:95:89:39:78:99:02:68:6f:
bd:48:61:1d:87:11:44:98:d8:ba:51:67:24:cf:a2:
63:ec:e3:00:1c:67:a5:e5:ca:bf:ce:42:83:90:c1:
82:29:2f:42:b2:99:7c:98:c5:a9:99:a1:91:fc:3e:
7b:cc:1e:91:bb:78:55:70:ec:f6:de:a6:64:00:ea:
dc:c4:ae:38:f0:77:68:3e:9a:3f:3e:ca:78:48:e7:
0d:6d:56:f4:f8:83:d9:cc:2a:db:f5:3a:f6:22:13:
d4:d0:37:dc:6d:7d:29:31:ca:8d:5a:d9:61:b2:13:
01:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
DF:03:44:D2:4A:48:BA:4C:61:9C:70:69:66:1A:92:B4:33:7A:A9:0B
X509v3 Authority Key Identifier:
C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9
Authority Information Access:
OCSP - URI:http://r11.o.lencr.org
CA Issuers - URI:http://r11.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:original.eu.com, DNS:www.original.eu.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12:
ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E
Timestamp : Sep 17 12:45:08.658 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:45:02:20:1F:D6:3B:B1:90:F6:40:D9:91:0F:FF:0A:
04:FA:33:DC:C1:2D:85:A8:37:37:2F:5F:07:27:86:58:
08:08:5B:EB:02:21:00:98:A2:81:0E:90:57:67:C4:B7:
94:74:5E:32:5A:CB:EE:64:6B:09:06:A0:01:B6:99:84:
AD:3D:FD:54:6B:D6:CF
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 19:98:10:71:09:F0:D6:52:2E:30:80:D2:9E:3F:64:BB:
83:6E:28:CC:F9:0F:52:8E:EE:DF:CE:4A:3F:16:B4:CA
Timestamp : Sep 17 12:45:08.685 2024 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:D4:CA:73:38:D6:B9:B0:D6:70:EF:87:
8E:B6:5A:6D:1B:59:19:A3:A4:EF:40:4A:54:AC:95:24:
F8:D7:E5:E4:82:02:21:00:88:49:F4:69:31:AD:58:1B:
36:70:7D:B5:79:97:7E:89:63:39:18:12:06:59:C9:F6:
77:64:B5:E1:44:83:7C:E0
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
6e:b7:3d:9a:85:b5:b6:81:0b:da:45:45:17:84:87:ea:5d:9b:
90:64:c4:06:dd:36:d1:63:c4:7c:ab:99:32:1b:15:6b:87:88:
32:3f:1b:f2:ac:77:c8:3d:6e:fe:2c:01:3d:11:e4:5e:53:2a:
15:1b:96:8a:16:83:0c:a8:fd:66:3b:4b:78:3a:2f:be:96:fa:
48:b9:8d:5b:e4:81:1e:39:2f:a7:6e:81:c1:84:fa:a9:8a:5e:
84:18:f7:9e:5e:30:83:63:ac:20:d1:71:1a:ff:16:97:71:8a:
ed:68:cc:f8:de:3c:15:5c:77:7b:b6:1b:41:c0:1a:ab:04:8a:
bc:f3:d9:67:14:d7:32:71:f3:a7:f7:93:e9:52:1a:eb:5a:64:
0c:d7:75:e7:91:d4:9a:6a:25:e3:68:1d:fc:c0:e2:e0:0a:b9:
bf:5d:b4:51:37:21:87:bf:00:4a:33:4d:b8:51:c7:31:e2:33:
f7:30:07:52:79:72:65:15:96:5a:76:9b:bd:bb:0a:fc:bb:2e:
4b:61:46:3e:1a:99:dd:5a:67:cd:09:ed:ad:f1:4e:ff:c1:cb:
0e:72:c6:c4:cc:43:ab:18:d3:ac:8e:11:be:c5:74:4f:3e:54:
9d:75:c4:a2:d2:ed:d9:34:e3:c3:2e:c7:8f:b9:f6:d7:6c:f6:
7f:fd:4f:c6
-316113298 | 2024-10-11T09:12:57.5361413306 / tcp
MySQL: Protocol Version: 10 Version: 5.7.33 Capabilities: 61999 Server Language: 33 Server Status: 2 Extended Server Capabilities: 33167 Authentication Plugin: mysql_native_password