Hostnames |
default-ssl.default-host.net web799.default-host.net |
Domains | default-host.net |
Country | Ukraine |
City | Kyiv |
Organization | DELTA-X LTD |
ISP | Hosting Ukraine LTD |
ASN | AS200000 |
86000076 | 2024-10-18T06:04:06.24728621 / tcp
220 ::ffff:91.206.200.86 FTP server ready 530 Login incorrect. 214-The following commands are recognized (* =>'s unimplemented): CWD XCWD CDUP XCUP SMNT* QUIT PORT PASV EPRT EPSV ALLO RNFR RNTO DELE MDTM RMD XRMD MKD XMKD PWD XPWD SIZE SYST HELP NOOP FEAT OPTS HOST CLNT AUTH CCC* CONF* ENC* MIC* PBSZ PROT TYPE STRU MODE RETR STOR STOU APPE REST ABOR RANG USER PASS ACCT* REIN* LIST NLST STAT SITE MLSD MLST 214 Direct comments to abuse@adm.tools 211-Features: AUTH TLS CCC CLNT CSID EPRT EPSV HOST MDTM MFF modify;UNIX.group;UNIX.mode; MFMT MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.groupname*;UNIX.mode*;UNIX.owner*;UNIX.ownername*; PBSZ PROT RANG STREAM REST STREAM SIZE SSCN TVFS 211 End
Certificate: Data: Version: 3 (0x2) Serial Number: 04:b4:30:cb:19:d4:a2:57:1d:5a:d7:11:23:07:b2:55:3c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R11 Validity Not Before: Sep 19 16:18:49 2024 GMT Not After : Dec 18 16:18:48 2024 GMT Subject: CN=*.ftp.tools Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b5:4b:0a:bf:98:8e:a2:fd:43:50:d1:52:b2:24: 22:a0:97:d6:58:8f:bd:64:27:8c:7c:97:b3:7b:7a: 46:9b:30:a1:6e:1c:21:a9:21:76:bd:80:3f:9c:ed: 51:7b:d8:16:8d:48:6d:17:1c:a0:ea:c2:9b:72:b8: 57:1c:72:1b:ad:13:33:82:f6:70:01:75:54:55:c9: 42:c9:a0:31:c5:c8:b0:65:e3:58:3c:74:15:6f:30: d1:38:91:36:f1:1d:e6:37:9c:01:db:7b:2b:c9:81: 9c:ba:5e:a3:15:12:f9:6e:a2:51:da:27:e5:7a:60: 55:25:ba:4a:00:f9:92:56:6f:bd:cc:c7:7a:ea:7a: 3f:b6:62:9e:68:9d:52:6d:40:d2:9f:ee:fb:94:af: 92:f0:c2:69:4d:ff:3a:28:db:c9:b3:14:5a:41:c3: d6:c7:fb:47:20:9c:6d:56:23:e6:4e:8f:e9:bd:85: 12:69:5e:c6:5b:81:ca:96:e6:23:d8:f8:89:6e:b0: 72:a9:da:76:e5:aa:14:87:9f:1d:a8:38:47:b8:af: 4d:70:75:3f:27:87:76:9f:ea:8a:b1:a0:f2:40:f8: b1:43:07:b1:6d:2c:e4:ee:1e:ce:c3:62:00:66:b0: 7e:07:25:ea:6d:e0:4f:55:b3:39:ae:8b:e1:d6:c3: f9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 93:68:D0:AE:7B:7F:5E:52:80:88:52:0A:F2:07:94:C5:E4:4D:0E:44 X509v3 Authority Key Identifier: C5:CF:46:A4:EA:F4:C3:C0:7A:6C:95:C4:2D:B0:5E:92:2F:26:E3:B9 Authority Information Access: OCSP - URI:http://r11.o.lencr.org CA Issuers - URI:http://r11.i.lencr.org/ X509v3 Subject Alternative Name: DNS:*.ftp.tools X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Sep 19 17:17:20.139 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:21:00:FF:13:DC:AD:E4:ED:8C:F7:FE:AB:30: EB:A5:CE:1A:A6:E6:5A:8D:C0:EE:C3:AE:EF:18:B2:6C: 76:EA:14:F6:6C:02:20:4A:82:BD:AE:7C:80:10:35:D6: 72:3F:0D:22:D4:51:14:61:03:B9:CC:ED:AD:2A:BB:1E: AC:E7:A5:CA:25:E4:8D Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 76:FF:88:3F:0A:B6:FB:95:51:C2:61:CC:F5:87:BA:34: B4:A4:CD:BB:29:DC:68:42:0A:9F:E6:67:4C:5A:3A:74 Timestamp : Sep 19 17:17:20.183 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:49:C1:33:CD:5E:08:0D:D1:97:50:BC:46: 48:39:99:23:3E:EB:09:10:46:45:E4:9A:45:8C:CE:30: 7A:E3:27:BC:02:21:00:8A:03:16:AF:27:D3:AC:5D:BE: 24:11:92:31:EE:E1:C9:75:56:37:86:79:57:57:5B:66: 6C:2B:39:4E:E8:27:EF Signature Algorithm: sha256WithRSAEncryption Signature Value: 09:5c:99:22:3a:67:cd:76:6d:c2:1f:54:6e:4f:6a:23:d4:f6: 0c:67:09:e8:e2:5b:d8:01:cb:44:6d:6d:f2:ec:d7:ec:ed:3c: c7:5d:4d:ef:bf:c6:52:9e:dd:53:b9:0d:69:c6:dd:6f:b9:1d: 79:a0:68:a6:91:d6:d6:25:4a:1f:3a:96:d2:95:4c:5c:52:a0: 7f:6c:79:7a:1d:ed:ee:c8:78:b6:5c:36:e9:a6:17:db:45:95: 98:fe:56:3c:ac:6a:55:57:12:01:0f:52:2f:11:13:d9:e3:4a: 44:29:f6:73:b1:30:46:62:67:ba:41:a9:77:a9:7a:f7:31:c9: e4:55:17:78:48:a4:f5:be:1b:e4:bb:52:09:db:99:48:a3:87: 68:06:68:99:a5:79:47:aa:5f:a7:c6:df:71:ce:b1:0e:7c:c7: 69:99:6e:a1:be:3d:36:0e:58:da:a8:c1:bc:17:b6:d7:18:4d: a1:92:94:94:84:d1:ce:2c:bb:4c:87:7e:f9:16:6e:bb:fe:f2: 52:10:98:8f:9e:4d:47:b9:7f:ee:43:4d:17:13:ed:e0:3b:69: a5:a0:87:1d:6c:34:50:f0:4d:d4:5e:88:8b:83:d0:ca:8b:ab: 38:77:da:7e:5e:6d:aa:18:41:25:19:36:14:d7:7b:96:e2:30: f6:b0:2b:25
623946472 | 2024-10-10T05:13:34.66978022 / tcp
SSH-2.0-OpenSSH_8.0 Key type: ssh-rsa Key: AAAAB3NzaC1yc2EAAAADAQABAAABgQCnaKaRwc63p5lFRVQH1WbNjjBLLpcHJJWJE/dk4alUJcRP vW1gghzlPlzpoZwOmt+X6PjAyWXLAocFYG/6B0zvNLyPHhUKsUC/gWQymaydIop/7bhKhnPgkc9w j7SJDhc2/inubBblmMIo6LBlQhnd9KmYYavsU39KZJC6mN1npWP9NhpLAm3CNbHZpHRaobdBALd0 Whxkc4w1ENt1sJ8YWmSsRDEutAbCt1K7naFXCNIifY6eJ15SZmEroJVIXJa9V6ISD1rHLyCweyf9 o29tAhbcOjvjUAtenpvIKK3pseg3GNPljE6D9nZSs8DyjRwpNM7GNv2mNSE1xy6Xa9cQIPUQmDbH Kkw5cS6STpCwY9AsFGJufcxzI7ZzsvnREJ2nDH7BnXxSayvS3ym37xpU2IKx4XgdKIZ5GhGC7qme ck4dnX1Ln9qevyyZTitmNaJ4kpLKFILmSht0No685bnacfshncvvqpFhJUt9bSq+ieyWRZN0X1W1 alNbi00lv8k= Fingerprint: b8:b5:65:41:c5:d2:5e:c5:d2:84:0e:1f:74:e4:5b:bc Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 diffie-hellman-group-exchange-sha256 diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group-exchange-sha1 diffie-hellman-group14-sha1 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ssh-rsa Encryption Algorithms: aes256-gcm@openssh.com chacha20-poly1305@openssh.com aes256-ctr aes256-cbc aes128-gcm@openssh.com aes128-ctr aes128-cbc MAC Algorithms: hmac-sha2-256-etm@openssh.com hmac-sha1-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha2-256 hmac-sha1 umac-128@openssh.com hmac-sha2-512 Compression Algorithms: none zlib@openssh.com
-1048601965 | 2024-10-22T18:19:53.11125480 / tcp
HTTP/1.1 403 Forbidden Server: nginx Date: Tue, 22 Oct 2024 18:19:53 GMT Content-Type: text/html Content-Length: 3348 Connection: keep-alive ETag: "66c3689b-d14" x-ray: wn32777:0.000/
-1048601965 | 2024-10-24T15:03:25.228701443 / tcp
HTTP/1.1 403 Forbidden Server: nginx Date: Thu, 24 Oct 2024 15:03:25 GMT Content-Type: text/html Content-Length: 3348 Connection: keep-alive ETag: "66c3689b-d14" x-ray: wn32777:0.000/
Certificate: Data: Version: 3 (0x2) Serial Number: 03:2e:3b:cc:28:15:b3:45:f1:a7:21:e4:f0:09:47:32:fa:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R10 Validity Not Before: Oct 12 16:15:09 2024 GMT Not After : Jan 10 16:15:08 2025 GMT Subject: CN=default-ssl.default-host.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ad:de:8c:81:2f:46:15:ee:15:ea:72:39:d3:fc: 63:d7:da:14:4a:52:d9:c3:e3:53:8f:62:9d:b0:f5: 66:72:e8:87:46:7e:0d:58:a0:a8:20:df:03:10:d9: 20:0c:7c:08:8a:98:1a:f7:10:b1:1d:1b:59:84:2a: ef:36:59:06:47:2a:32:d7:70:36:86:0d:ed:99:b5: 7e:20:c3:a2:12:b5:fd:36:f6:46:29:da:6e:27:c3: 36:72:8f:33:f4:bf:5d:8b:f9:db:c3:85:c7:e4:da: ce:98:aa:54:15:8c:5b:5b:80:4d:2e:b8:41:50:51: 6e:7a:96:b5:61:34:61:4c:40:52:80:e1:ea:a2:75: 96:1e:f5:66:07:75:e0:e8:3d:11:5b:53:24:3d:cd: 39:0f:20:dd:c8:3a:70:57:60:30:35:d4:08:2f:bb: aa:56:ef:26:69:9e:0c:ef:eb:f3:ee:44:42:2c:db: 51:0b:88:88:26:49:27:36:a7:86:9f:40:c0:02:ce: b4:ac:ef:3b:64:97:1b:20:59:67:83:59:f1:ce:4a: 91:15:0d:c1:67:a0:c8:3f:6c:49:80:e4:29:ae:8f: b8:b9:91:a3:dd:54:cc:26:c3:e4:fe:00:0b:96:df: 6d:4b:d9:ac:de:ec:e3:a9:60:27:48:dd:d2:87:fc: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 49:D5:4C:CA:F9:8E:6E:79:EE:25:D4:0D:83:CE:0D:17:D7:FF:56:01 X509v3 Authority Key Identifier: BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8 Authority Information Access: OCSP - URI:http://r10.o.lencr.org CA Issuers - URI:http://r10.i.lencr.org/ X509v3 Subject Alternative Name: DNS:default-ssl.default-host.net X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 3F:17:4B:4F:D7:22:47:58:94:1D:65:1C:84:BE:0D:12: ED:90:37:7F:1F:85:6A:EB:C1:BF:28:85:EC:F8:64:6E Timestamp : Oct 12 17:13:39.669 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:45:02:20:50:07:4D:FC:8D:6D:A1:C5:74:E8:36:D7: 0E:6B:97:D3:FE:24:D9:61:38:08:17:2C:B9:9C:73:69: 9D:9F:71:F8:02:21:00:FB:CC:C1:52:C1:F3:AA:D2:D7: 1A:E7:80:43:F3:59:98:BE:5C:BE:47:72:32:76:9A:3B: DE:EC:3C:B9:1D:6F:14 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 13:4A:DF:1A:B5:98:42:09:78:0C:6F:EF:4C:7A:91:A4: 16:B7:23:49:CE:58:57:6A:DF:AE:DA:A7:C2:AB:E0:22 Timestamp : Oct 12 17:13:39.859 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:ED:59:3A:BA:98:D1:B1:08:9E:63:5D: 41:DC:BF:E7:DA:DE:E3:69:5B:BE:AE:32:BE:6E:B4:EF: 71:A3:DB:07:5B:02:21:00:E4:06:A3:99:21:43:C0:42: D2:EC:8E:87:21:5F:10:EA:B3:6B:1F:2C:AA:50:05:62: 82:73:84:6A:08:86:89:01 Signature Algorithm: sha256WithRSAEncryption Signature Value: 21:88:b9:58:a1:24:bb:bd:fc:2d:06:82:83:6a:a5:d1:d3:0f: c6:3b:4e:a9:7a:b0:5c:63:29:b2:87:56:3b:06:3b:94:8a:d2: e5:45:76:60:89:aa:22:bc:c3:48:59:dd:68:79:f8:f0:5d:84: d8:41:c2:f5:fa:27:a3:86:81:33:26:1b:79:13:8a:f3:d3:0d: d3:07:af:3d:60:43:6e:ac:03:60:94:73:64:5b:2b:89:6e:5f: 07:8b:6c:0b:c7:c3:c6:f0:b3:c3:b4:c1:ad:8b:a9:3e:3d:99: 39:1f:02:81:e3:26:e1:bf:9a:f6:93:c2:83:e8:11:af:cf:23: f9:fd:55:a4:80:f9:12:c1:71:21:47:90:f8:43:a7:ea:64:49: 97:cf:b1:6b:d2:ff:67:cd:d6:f8:31:2a:1e:f5:13:47:da:5b: 8c:b0:65:51:b5:26:7a:61:30:09:3b:af:5a:0c:3e:76:fe:7a: d4:c3:b5:38:8e:92:7a:84:11:c2:4e:30:07:c4:1e:c3:15:11: 56:e4:0b:4c:01:17:9a:0e:a9:33:97:39:20:72:59:ce:c0:48: f9:cb:eb:66:f0:07:1d:00:e1:ed:7c:79:2f:c8:3a:ca:18:35: d5:a9:4e:4b:02:15:53:ce:40:c6:90:01:e9:ac:fc:00:92:2a: 0a:be:aa:f0
542428698 | 2024-10-22T04:56:04.5192353306 / tcp
MySQL: Protocol Version: 10 Version: 5.7.44-50-log Capabilities: 65535 Server Language: 45 Server Status: 2 Extended Server Capabilities: 49663 Authentication Plugin: mysql_native_password