-370734890 | 2024-05-13T22:06:24.819180
21 /
tcp
220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
ABOR
ACCT
ADAT *
ALLO
APPE
AUTH
CCC
CDUP
CWD
DELE
ENC *
EPRT
EPSV
FEAT
HELP
HOST
LANG
LIST
MDTM
MIC *
MKD
MODE
NLST
NOOP
OPTS
PASS
PASV
PBSZ
PORT
PROT
PWD
QUIT
REIN
REST
RETR
RMD
RNFR
RNTO
SITE
SIZE
SMNT
STAT
STOR
STOU
STRU
SYST
TYPE
USER
XCUP
XCWD
XMKD
XPWD
XRMD
214 HELP command successful.
211-Extended features supported:
LANG EN*
UTF8
AUTH TLS;TLS-C;SSL;TLS-P;
PBSZ
PROT C;P;
CCC
HOST
SIZE
MDTM
REST STREAM
211 END
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37284390 (0x238ea26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Validity
Not Before: Jun 28 10:30:48 2019 GMT
Not After : Jun 27 10:30:48 2020 GMT
Subject: C=CH, L=Schaffhausen, O=Plesk, CN=Plesk/emailAddress=info@plesk.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:ad:f2:56:0c:86:d8:ea:d4:cc:a3:4e:9e:c8:91:
ed:42:88:d0:04:63:a9:1a:91:9c:47:36:5c:0f:51:
b5:ea:96:14:b4:38:c3:fd:aa:b0:85:54:46:d0:a2:
b6:20:68:05:ef:bc:21:94:64:7d:76:1f:63:5c:eb:
f4:28:b1:8a:4e:ba:90:f2:2f:f6:cc:10:24:df:f6:
76:79:3b:f0:e2:0b:68:95:46:92:ed:b9:01:79:f6:
55:12:5b:83:a3:6a:12:3b:05:20:63:3c:58:55:7e:
26:ba:99:36:23:6f:86:16:e2:5a:cb:fe:b7:6c:df:
56:27:c5:d6:7f:b8:27:c1:9b:92:48:5d:6a:1d:33:
3c:39:67:86:06:3a:2f:f6:57:6a:de:fe:1f:f1:ed:
8d:46:8c:02:35:e5:98:5e:28:64:b9:df:2d:41:92:
fd:a2:6e:c2:51:ae:b3:62:18:66:62:2a:3b:b4:3e:
39:54:f8:a0:d5:1d:c6:d3:1b:17:fe:60:54:69:dd:
4a:6e:89:a6:04:56:e3:e8:d8:aa:ec:d2:40:b3:11:
fa:87:ea:56:8f:17:0c:b3:c9:89:17:53:29:b4:07:
e8:f4:3f:c4:b2:2e:9f:29:2e:c0:14:ba:41:b4:44:
e3:62:dc:9a:3f:39:df:5f:71:dd:27:2c:58:c5:99:
79:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Subject Key Identifier:
85:61:50:2C:89:D7:FB:67:86:11:EA:03:F0:94:F1:5D:6D:7B:66:B7
X509v3 Authority Key Identifier:
keyid:85:61:50:2C:89:D7:FB:67:86:11:EA:03:F0:94:F1:5D:6D:7B:66:B7
DirName:/C=CH/L=Schaffhausen/O=Plesk/CN=Plesk/emailAddress=info@plesk.com
serial:02:38:EA:26
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
90:73:9b:23:05:2d:37:5d:64:44:e3:b5:f0:2f:f4:1e:62:32:
f3:a1:9f:b6:1b:33:b8:db:ad:8f:51:9d:71:a9:20:77:82:75:
be:3d:ad:27:be:bb:dc:f4:7c:0a:9e:f5:5f:b1:10:b7:ab:2e:
cb:64:07:de:ab:18:7d:7e:92:f1:d3:b4:ac:a2:0d:3f:cd:a9:
ee:10:91:fe:7e:47:16:cd:cd:73:e2:01:3e:5a:9b:6e:ac:0b:
94:9b:32:88:5c:21:eb:f0:55:e2:1a:35:d4:1a:41:6a:95:b8:
75:c2:4d:ee:a2:f1:2f:6b:43:71:55:14:91:cf:6e:8d:79:7d:
44:51:b0:9f:db:d1:4e:1d:fc:92:d3:3f:05:30:31:c5:2c:61:
c3:53:52:4a:b5:d7:a3:bf:47:f3:01:ba:7f:39:96:69:ce:98:
0e:7b:46:b7:7c:ef:15:c5:fe:30:e4:71:85:7d:75:4d:3c:8f:
db:07:3d:ab:a4:90:35:74:3d:7b:f8:c6:32:e5:d1:d7:79:84:
f6:dc:b2:d8:9c:84:c6:16:7e:15:d4:e4:af:24:ff:5e:90:88:
d2:28:9f:68:10:40:ca:bc:c3:c5:4d:70:70:80:69:d2:c9:44:
9b:d2:be:1c:14:eb:55:c6:d7:d9:a0:e1:ad:ac:b0:1d:51:77:
be:c3:00:9b
1012402281 | 2024-05-21T04:41:34.807678
53 /
tcp
1012402281 | 2024-05-05T10:52:59.666948
53 /
udp
1047377138 | 2024-05-20T18:14:51.802456
80 /
tcp
HTTP/1.1 200 OK
Content-Type: text/html
Last-Modified: Thu, 18 Feb 2021 04:55:02 GMT
Accept-Ranges: bytes
ETag: "9db06c37b25d71:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
Date: Mon, 20 May 2024 18:14:51 GMT
Content-Length: 3867
448974417 | 2024-04-27T11:42:47.069657
143 /
tcp
* OK IMAP4rev1 server ready at 04/27/24 07:42:46
* CAPABILITY IMAP4rev1 IMAP4 AUTH=LOGIN AUTH=CRAM-MD5 IDLE CHILDREN UIDPLUS
A001 OK CAPABILITY completed
A002 BAD UNKNOWN Command
A003 BAD UNKNOWN Command
* BYE IMAP4rev1 server terminating connection
A004 OK LOGOUT Initiated
-1166656618 | 2024-04-27T11:39:29.389288
445 /
tcp
SMB Status:
Authentication: enabled
SMB Version: 2
Capabilities: raw-mode
1998522044 | 2024-05-20T03:23:10.456315
587 /
tcp
220 host1.tourconnection.com ESMTP MailEnable Service, Version: 10.46-- ready at 05/19/24 23:23:07
250-host1.tourconnection.com [224.129.195.216], this server offers 4 extensions
250-AUTH LOGIN
250-SIZE 5120000
250-HELP
250 AUTH=LOGIN
-905825853 | 2024-05-15T19:37:29.947924
3389 /
tcp
Remote Desktop Protocol
\x03\x00\x00\x13\x0e\xd0\x00\x00\x124\x00\x02\x1f\x08\x00\x02\x00\x00\x00
Remote Desktop Protocol NTLM Info:
OS: Windows 10 (version 1607)/Windows Server 2016 (version 1607)
OS Build: 10.0.14393
Target Name: CUS
NetBIOS Domain Name: CUS
NetBIOS Computer Name: QCYM9U
DNS Domain Name: cus.win.liquidweb.com
DNS Tree Name: win.liquidweb.com
FQDN: qcym9u.cus.win.liquidweb.com
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:ca:c1:ae:13:3b:21:97:44:09:f0:34:db:fc:82:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=qcym9u.cus.win.liquidweb.com
Validity
Not Before: Jan 15 20:35:45 2024 GMT
Not After : Jul 16 20:35:45 2024 GMT
Subject: CN=qcym9u.cus.win.liquidweb.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e0:81:33:08:c8:ad:86:75:6d:5e:6c:81:c5:c6:
9a:f2:52:4e:82:0e:2b:e4:25:7e:d8:6d:53:a4:80:
1c:bd:2a:c6:a5:bf:e6:23:a5:c5:d4:1a:42:d6:67:
b4:40:8b:54:a9:be:f0:3f:3a:8e:d7:3c:05:a6:4a:
1d:9c:04:2e:b5:28:b3:97:43:df:af:36:e2:5b:ac:
6d:4f:ee:32:96:f2:61:6a:dd:a8:c1:6a:3e:92:56:
5d:4f:ab:df:75:37:4b:7b:bd:3d:86:f3:6f:57:c5:
ad:a7:71:eb:ff:56:74:5b:af:26:37:fa:5f:43:95:
04:e3:6b:b7:3b:72:e8:44:6b:49:53:48:69:3f:7b:
47:8f:ff:a3:bb:89:5f:a4:b0:05:90:fc:8c:7d:fe:
17:c9:cd:aa:e0:ca:55:3a:72:4f:8d:53:af:be:1f:
2a:65:40:c7:a5:ca:42:c9:0b:97:28:0c:47:6c:1d:
ec:c4:b3:27:ad:94:3f:7d:c8:66:3a:ee:9f:a6:38:
6b:ba:43:d8:1d:20:c9:d2:4d:60:85:8e:0b:2f:85:
31:5f:f1:54:5f:f5:54:3b:ae:16:09:7d:15:a2:7f:
95:3b:85:62:b7:46:d7:57:08:8d:5e:56:54:45:6e:
5a:6f:0f:8f:91:5f:f0:f7:a3:36:53:74:75:05:b8:
68:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
X509v3 Key Usage:
Key Encipherment, Data Encipherment
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
67:cc:85:06:07:a7:7b:a5:13:58:1e:66:91:cf:5a:1f:fb:82:
01:51:58:41:c6:f2:6a:64:7e:46:c9:bb:6c:77:ff:09:ac:d3:
15:e3:68:96:e2:96:5b:6a:11:d1:27:d7:a6:8b:8f:3f:69:05:
ef:a6:78:f4:e4:5a:dc:36:9d:4f:37:b9:b1:08:8f:ef:b9:6f:
a9:08:bd:8d:c4:ab:ab:37:0c:73:d3:69:de:16:49:4c:ce:b3:
1e:bf:d9:ba:53:b7:15:9a:ab:5a:77:bd:a2:a9:04:42:3e:42:
11:34:38:ac:1f:cb:06:57:84:cf:7b:cf:4a:82:05:28:ea:1f:
ba:7b:4d:80:fb:cf:ba:b5:c3:39:5f:24:53:de:21:84:45:5b:
5c:e4:39:08:6e:db:01:fb:63:95:70:c9:a5:85:f3:c3:ba:f3:
a7:33:9e:bc:63:37:c9:25:5f:a8:f0:21:3f:ef:31:1e:b3:0b:
c1:ac:47:b4:4f:fe:de:31:ae:1c:be:a7:d2:09:31:c0:c1:31:
13:6f:0e:7e:2f:9c:18:77:71:d9:f7:2c:4e:a0:be:6c:48:1a:
c5:cc:d6:d8:40:c4:61:b7:e4:80:6b:20:68:42:7c:69:47:3b:
c3:fd:6b:7d:86:16:ae:44:67:39:73:90:15:5a:1f:c3:c8:2d:
9a:ab:37:bf
-1183702696 | 2024-04-26T14:32:18.596197
8443 /
tcp
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, must-revalidate,post-check=0, pre-check=0
Pragma: no-cache
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Expires: Fri, 28 May 1999 00:00:00 GMT
Last-Modified: Fri, 26 Apr 2024 14:32:18 GMT
Server: Microsoft-IIS/10.0
P3P: CP="NON COR CURa ADMa OUR NOR UNI COM NAV STA"
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Powered-By: ASP.NET
X-Content-Type-Options: nosniff
Date: Fri, 26 Apr 2024 14:32:18 GMT
SSL Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:fd:e9:f5:9d:36:9f:a1:30:f3:cb:78:d5:a9:63:1a:5f:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=US, O=Let's Encrypt, CN=R3
Validity
Not Before: Sep 13 17:39:18 2022 GMT
Not After : Dec 12 17:39:17 2022 GMT
Subject: CN=host1.tourconnection.com
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:e9:d1:8e:a4:10:8b:7c:f0:09:cd:99:fd:a6:23:
a6:2a:1c:38:f6:e5:7f:1a:9c:c9:28:da:b7:ae:22:
f5:55:9a:a1:ee:cf:f0:e7:7b:07:7f:d7:a9:56:a3:
43:4d:82:80:45:3b:d4:c5:6c:4d:13:86:bd:24:9d:
55:27:09:01:c8:bf:ff:a7:83:34:79:6b:eb:c9:74:
8c:67:61:b0:9e:96:1f:aa:97:8b:c7:b2:3f:a5:31:
40:ad:fd:5c:83:2d:5d:76:f0:b9:82:82:3b:8b:2c:
a2:01:8b:4b:dd:2b:86:35:01:13:dd:84:3f:fe:8f:
11:c8:04:a0:c2:5d:c2:6b:20:2c:a6:96:c4:aa:7f:
fe:1c:5f:68:a1:41:e4:67:b3:a9:6f:31:25:cb:bd:
0e:45:14:9e:ac:80:3d:b7:0b:8a:d6:3f:80:3e:e9:
9a:07:9d:a7:40:6c:1c:04:8c:02:f8:b2:a9:1a:2b:
07:72:8f:ea:fc:5d:cf:99:e3:df:51:41:05:28:23:
02:54:9b:8f:73:b5:2c:16:ab:d7:91:60:8a:c9:dc:
c6:77:8d:23:83:43:ea:38:46:9e:49:66:e6:9a:eb:
80:4d:24:f7:41:8b:98:48:70:06:ef:31:90:aa:d0:
7d:f5:66:a5:64:5a:28:19:79:9f:9e:3b:07:9d:fc:
52:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
X509v3 Subject Key Identifier:
00:5D:6C:8C:60:07:FE:E2:45:3E:C8:C2:25:B7:1A:1B:C0:2E:E1:F5
X509v3 Authority Key Identifier:
14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
Authority Information Access:
OCSP - URI:http://r3.o.lencr.org
CA Issuers - URI:http://r3.i.lencr.org/
X509v3 Subject Alternative Name:
DNS:host1.tourconnection.com
X509v3 Certificate Policies:
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org
CT Precertificate SCTs:
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : DF:A5:5E:AB:68:82:4F:1F:6C:AD:EE:B8:5F:4E:3E:5A:
EA:CD:A2:12:A4:6A:5E:8E:3B:12:C0:20:44:5C:2A:73
Timestamp : Sep 13 18:39:18.221 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:46:02:21:00:9E:E4:6F:21:D5:6B:E0:57:51:76:55:
D9:59:0F:3B:2D:7C:2D:EF:F5:C5:85:07:15:F6:C6:72:
72:70:55:DF:D6:02:21:00:A2:68:4C:41:94:C9:3D:8F:
C9:FD:F1:10:D1:3D:66:AB:66:63:F0:C0:7A:D0:C1:53:
63:D9:F3:DB:6E:20:18:BE
Signed Certificate Timestamp:
Version : v1 (0x0)
Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
Timestamp : Sep 13 18:39:18.170 2022 GMT
Extensions: none
Signature : ecdsa-with-SHA256
30:44:02:20:72:0A:2F:EA:F6:33:81:F6:93:06:E9:51:
42:02:E8:33:58:8E:C0:C6:1B:CB:0C:B0:88:25:33:73:
DF:82:13:BC:02:20:4B:E2:93:02:07:33:31:FE:51:B2:
DB:2C:84:96:A7:08:C1:24:F7:77:CB:3C:9A:09:84:ED:
20:9D:DA:6B:CB:E8
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
27:69:37:d4:1f:72:49:5c:fc:de:a6:27:17:7b:38:63:25:7b:
30:d1:ca:8c:64:49:76:ce:b8:07:d7:3a:78:34:83:92:9e:d3:
98:e5:11:5c:25:f6:c9:85:85:62:e9:93:82:30:83:35:2f:7b:
70:1c:cf:79:c7:43:c3:cb:4c:49:da:97:0f:ff:8e:7a:8e:7b:
eb:f2:5a:17:3f:be:04:52:88:0a:c2:07:86:f5:d1:a4:9e:7f:
73:ce:f6:7c:5d:66:23:72:7e:8b:93:d0:b6:93:f9:94:40:58:
d6:88:57:61:4b:52:9b:8b:51:eb:be:91:c9:45:65:65:f4:a4:
42:56:33:ce:f5:88:54:4f:25:e3:2b:3d:ec:2a:a3:9b:e3:b4:
ff:eb:9c:32:2e:e2:5d:e4:39:af:7f:6f:85:0d:9b:6a:8d:a4:
31:e8:11:61:72:49:11:b9:f5:3d:d7:e6:e5:dc:78:f0:4c:b5:
34:4d:c3:a3:a8:4b:0d:42:a7:ea:62:0f:f3:f5:db:a2:3f:4e:
dd:32:7a:14:0e:1b:5a:9e:1f:e7:2d:dd:61:1c:f5:ea:0b:9d:
67:ae:d4:72:b4:b6:1b:b2:d3:50:a0:25:e9:96:43:c3:51:9c:
2d:2d:cf:c6:1c:29:d4:c3:02:86:97:3b:93:8d:c7:1c:01:14:
02:8e:25:40