Hostnames |
fuyunju.net www.fuyunju.net |
Domains | fuyunju.net |
Country | Hong Kong |
City | Sham Shui Po |
Organization | Asia Pacific Network Information Centre |
ISP | Tencent Building, Kejizhongyi Avenue |
ASN | AS132203 |
-41207790 | 2024-06-15T11:23:31.89319521 / tcp
220---------- Welcome to Pure-FTPd [privsep] [TLS] ---------- 220-You are user number 1 of 50 allowed. 220-Local time is now 19:23. Server port: 21. 220-This is a private system - No anonymous login 220-IPv6 connections are also welcome on this server. 220 You will be disconnected after 15 minutes of inactivity. 421 Unable to read the indexed puredb file (or old format detected) - Try pure-pw mkdb 211-Extensions supported: UTF8 EPRT IDLE MDTM SIZE MFMT REST STREAM MLST type*;size*;sizd*;modify*;UNIX.mode*;UNIX.uid*;UNIX.gid*;unique*; MLSD PRET AUTH TLS PBSZ PROT TVFS ESTA PASV EPSV SPSV ESTP 211 End.
Certificate: Data: Version: 3 (0x2) Serial Number: 53:75:28:1a:81:f4:4d:48:97:61:18:2b:d8:8c:65:01:13:90:a6:2d Signature Algorithm: sha256WithRSAEncryption Issuer: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=124.156.166.78/emailAddress=admin@bt.cn Validity Not Before: Mar 20 01:28:52 2024 GMT Not After : Dec 18 01:28:52 2033 GMT Subject: C=CN, ST=Guangdong, L=Dongguan, O=BT-PANEL, OU=BT, CN=124.156.166.78/emailAddress=admin@bt.cn Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:dd:40:59:25:52:4b:73:89:ed:f8:b8:b7:2e:23: 5d:4b:84:e6:0e:fc:6e:7e:e0:16:ad:eb:56:65:3d: 06:3e:ca:eb:24:da:38:15:50:c7:b5:f8:12:42:d4: d0:fc:5a:94:dc:7b:45:f8:ee:44:2f:c5:d0:e1:98: 8f:6e:4c:ae:a9:87:80:82:c9:59:f8:f7:fa:7d:79: 48:38:54:bb:2f:fb:43:93:af:7e:5d:ec:64:8d:40: df:2d:1c:82:53:7f:31:94:bd:0d:28:f9:35:06:2c: 3f:61:19:2a:15:a3:a8:d8:a5:62:ef:9f:91:c2:d6: 3e:b2:a2:a5:e4:77:b3:13:73:4e:01:0a:37:1f:20: 8c:ab:47:0c:38:af:a8:e2:81:90:36:ef:a7:35:15: 0c:ec:70:20:97:2e:3a:90:ea:08:b8:2a:33:67:bd: 6f:57:50:73:e7:36:4e:48:5d:06:1b:81:77:33:a2: 2c:19:71:71:0b:d6:e7:69:f6:85:09:2c:7a:05:e4: 07:fa:66:ae:fa:ef:cb:1a:b4:fc:3f:02:ea:74:79: 6e:32:80:12:d4:ff:15:37:14:38:92:fa:85:b3:0a: 30:07:fa:2e:dd:6b:cf:14:e0:ac:4b:7d:38:81:3f: f2:1a:ce:99:2a:d2:ff:a7:f2:ae:28:6f:d7:67:7a: f5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:08:32:8D:C3:CE:6E:D7:08:B8:EC:F0:31:C0:44:B9:46:FD:FA:C3 X509v3 Authority Key Identifier: 16:08:32:8D:C3:CE:6E:D7:08:B8:EC:F0:31:C0:44:B9:46:FD:FA:C3 X509v3 Basic Constraints: critical CA:TRUE Signature Algorithm: sha256WithRSAEncryption Signature Value: 7a:d3:16:11:56:07:33:6c:a0:95:f5:e1:4f:f3:5d:f6:59:69: 3d:08:ad:2c:85:71:5e:33:5c:3a:61:c0:2e:66:88:31:6d:bc: 30:3a:4a:d0:4d:c8:6c:9a:d3:81:29:00:53:8d:f1:ba:9a:63: 34:7a:37:d5:f9:df:85:0d:4b:75:e1:36:2c:5b:40:9b:09:d2: 2a:25:e6:2c:d3:70:5b:3b:75:41:ac:83:45:d1:52:ca:6c:0b: 11:ab:ac:20:72:f5:73:95:3c:76:b9:16:da:0f:fe:3a:c5:d5: a0:84:38:a2:90:4a:99:cb:51:e8:15:27:68:1c:ce:e8:15:bc: 7d:e6:94:3c:cc:e7:66:52:54:89:a1:8f:84:0a:a1:e0:30:4f: 61:90:49:1b:3c:2a:5d:fb:37:91:24:4e:9e:ad:29:40:02:e1: 2b:52:44:29:5d:29:4c:26:f6:65:f3:b8:0e:ad:c6:75:69:1e: e4:af:e0:e7:ec:fc:62:e5:c1:78:7a:58:88:8f:45:0e:15:ec: 0f:e6:93:a5:d5:06:39:c0:a9:2b:2a:8d:d8:c0:76:50:ae:54: 83:a2:ca:28:f0:a6:ef:90:01:34:2c:d7:e4:e9:16:21:04:6f: 8d:f7:30:c2:db:78:b8:18:72:64:da:42:9c:59:56:7c:0a:5b: 6f:a9:74:d6
925290561 | 2024-06-15T12:08:17.17100522 / tcp
SSH-2.0-OpenSSH_8.9p1 Ubuntu-3ubuntu0.6 Key type: ecdsa-sha2-nistp256 Key: AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLIe34qFH5FzQRlbbksrJVA1 OR3GRbaQezmpjSf1oIGPsJNFFcPZL2qUmTpcLnUaBcs61BGMkucFVmU6txk+6z8= Fingerprint: a4:d9:88:28:a1:1c:e2:9f:b4:4a:bf:3e:63:3d:30:13 Kex Algorithms: curve25519-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 sntrup761x25519-sha512@openssh.com diffie-hellman-group-exchange-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group14-sha256 kex-strict-s-v00@openssh.com Server Host Key Algorithms: rsa-sha2-512 rsa-sha2-256 ecdsa-sha2-nistp256 ssh-ed25519 Encryption Algorithms: chacha20-poly1305@openssh.com aes128-ctr aes192-ctr aes256-ctr aes128-gcm@openssh.com aes256-gcm@openssh.com MAC Algorithms: umac-64-etm@openssh.com umac-128-etm@openssh.com hmac-sha2-256-etm@openssh.com hmac-sha2-512-etm@openssh.com hmac-sha1-etm@openssh.com umac-64@openssh.com umac-128@openssh.com hmac-sha2-256 hmac-sha2-512 hmac-sha1 Compression Algorithms: none zlib@openssh.com
-85749389 | 2024-06-15T06:41:28.31331580 / tcp
HTTP/1.1 200 OK Server: nginx Date: Sat, 15 Jun 2024 06:41:28 GMT Content-Type: text/html Content-Length: 138 Last-Modified: Wed, 20 Mar 2024 01:27:18 GMT Connection: keep-alive ETag: "65fa3b76-8a" Accept-Ranges: bytes
-1751123876 | 2024-06-15T00:13:10.164665443 / tcp
HTTP/1.1 200 OK Server: nginx Date: Sat, 15 Jun 2024 00:13:09 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Link: <https://fuyunju.net/wp-json/>; rel="https://api.w.org/" Strict-Transport-Security: max-age=31536000
Certificate: Data: Version: 3 (0x2) Serial Number: 04:ff:9c:23:c3:0a:e3:e5:66:56:2b:67:25:b9:8b:15:72:2d Signature Algorithm: sha256WithRSAEncryption Issuer: C=US, O=Let's Encrypt, CN=R3 Validity Not Before: Jun 3 15:10:36 2024 GMT Not After : Sep 1 15:10:35 2024 GMT Subject: CN=www.fuyunju.net Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:d0:ad:97:f2:f4:8a:60:e1:a9:b6:31:b7:93:34: 93:60:47:8a:fc:38:42:aa:83:e4:33:45:19:a6:0e: 46:6c:5c:66:ab:d2:2f:e4:02:04:65:8a:c3:f1:15: b4:4d:86:fd:44:70:4e:10:66:a7:3b:9b:bb:a3:21: 29:0c:7c:89:f5:07:c6:34:2c:ec:94:53:1c:80:80: 4a:fd:27:a0:ad:7b:6e:c1:98:80:7a:bc:dd:6d:2e: eb:ed:60:fd:0c:d2:99:75:9f:a2:51:14:c1:cb:73: a6:e4:1c:d9:d8:80:9c:4f:82:16:98:b8:89:8f:21: 1a:e4:a5:6c:74:4a:07:b1:77:34:b5:c4:30:5d:4b: f6:d5:b1:30:05:f8:81:ef:98:be:91:4f:d8:8c:5d: ce:4f:a3:7d:8a:27:f0:69:b6:e5:6c:49:01:6d:af: 25:5f:3b:30:a1:4d:72:cc:6d:b0:5d:fb:e8:4f:43: a7:88:77:71:bb:ea:77:f9:b6:16:bf:69:29:0a:83: 53:52:d3:b3:5e:54:50:27:0d:c9:82:47:c5:46:89: bb:24:28:c0:18:9b:d8:81:9f:d6:95:71:dc:60:3d: 5d:53:98:55:36:f5:96:ea:20:ef:b8:8b:f4:e7:f6: 24:f8:39:de:52:40:fa:8c:e6:51:7e:06:e6:3a:af: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Key Usage: critical Digital Signature, Key Encipherment X509v3 Extended Key Usage: TLS Web Server Authentication, TLS Web Client Authentication X509v3 Basic Constraints: critical CA:FALSE X509v3 Subject Key Identifier: 61:59:93:30:DC:64:0A:C1:64:0C:A1:42:49:D7:AD:DD:6A:9C:E2:C2 X509v3 Authority Key Identifier: 14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6 Authority Information Access: OCSP - URI:http://r3.o.lencr.org CA Issuers - URI:http://r3.i.lencr.org/ X509v3 Subject Alternative Name: DNS:fuyunju.net, DNS:www.fuyunju.net X509v3 Certificate Policies: Policy: 2.23.140.1.2.1 CT Precertificate SCTs: Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB: 1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73 Timestamp : Jun 3 16:10:36.287 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:3C:31:75:EA:E7:10:93:C2:C8:94:C2:81: 02:A8:C2:EB:00:B8:D5:03:9B:9F:B5:36:62:50:77:4A: 1E:AD:87:FC:02:20:7A:F1:CD:CF:FB:C6:B0:62:1E:6F: 75:3F:98:3A:EF:D5:9D:7A:EE:1B:16:B5:80:CD:9C:F2: CE:22:3A:7D:5F:F5 Signed Certificate Timestamp: Version : v1 (0x0) Log ID : DF:E1:56:EB:AA:05:AF:B5:9C:0F:86:71:8D:A8:C0:32: 4E:AE:56:D9:6E:A7:F5:A5:6A:01:D1:C1:3B:BE:52:5C Timestamp : Jun 3 16:10:36.475 2024 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:0F:07:C4:97:FB:AE:BB:D6:4D:DD:C7:47: DC:BB:F7:B2:D2:AB:E8:B1:9B:79:B1:F6:71:64:2D:50: 03:D5:9F:CA:02:20:0E:51:CC:90:A3:99:A1:13:88:8A: 78:46:6E:13:35:7A:DD:31:6C:04:03:E4:24:29:B9:AE: 5E:B9:40:7C:8C:76 Signature Algorithm: sha256WithRSAEncryption Signature Value: a5:16:29:b6:8f:28:2d:8d:b9:c3:69:66:a1:2f:ab:81:1f:8a: da:42:02:e9:de:72:7c:f5:32:8d:e6:2b:68:b6:f0:35:63:e7: d7:af:c0:b3:37:5e:82:87:48:80:fb:5a:ea:01:59:d8:6d:86: dd:1c:89:65:bd:0b:b0:18:b2:ff:b7:5d:df:83:06:97:42:35: c4:ea:8c:2e:96:94:2f:43:16:8a:90:ce:b8:6c:b4:1b:2f:bb: a8:9c:97:b7:27:ff:02:f8:30:e8:8b:f2:67:19:53:08:08:40: 5e:80:e4:8a:9b:d2:bd:45:16:cd:f0:19:80:60:a5:da:e4:79: ed:eb:9e:a4:25:23:6c:fd:79:86:6f:92:a1:81:fa:11:10:9e: db:e8:f8:1b:0c:0e:f1:94:97:e3:90:58:29:38:4c:d1:c6:59: 83:59:a6:d8:df:16:f9:4f:2d:40:44:29:a8:c8:cb:6d:12:77: 7f:f8:98:e5:af:17:3a:52:4a:09:cc:70:ac:74:26:d1:98:ef: e5:50:e9:57:e5:1b:f7:68:1f:b1:93:bb:14:d0:fa:d9:64:8b: af:63:1a:56:d7:98:15:6c:bc:ab:3c:29:41:16:56:93:2e:b5: 83:6c:5f:4e:53:8e:14:77:9f:4b:06:60:f5:81:db:fd:c0:53: 19:90:ca:95
285440556 | 2024-05-30T04:48:00.0522457654 / tcp
HTTP/1.1 404 Not Found Date: Thu, 30 May 2024 04:47:59 GMT Content-Type: text/plain Content-Length: 0 Cobalt Strike Beacon: x86: beacon_type: HTTP dns-beacon.maxdns: 255 http-get.client: Cookie http-get.uri: 124.156.166.78,/ptj http-get.verb: GET http-post.client: Content-Type: application/octet-stream id http-post.uri: /submit.php http-post.verb: POST maxgetsize: 1048576 port: 7654 post-ex.spawnto_x64: %windir%\sysnative\rundll32.exe post-ex.spawnto_x86: %windir%\syswow64\rundll32.exe process-inject.execute: CreateThread SetThreadContext CreateRemoteThread RtlCreateUserThread process-inject.startrwx: 64 process-inject.stub: d10ba2f46586cefb16817150c6c1168e process-inject.userwx: 64 proxy.behavior: 2 (Use IE settings) server.publickey_md5: 2f38225b0cf1f48d09101c1e1f394a79 sleeptime: 60000 useragent_header: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0) uses_cookies: 1 watermark: 305419896 x64: beacon_type: HTTP dns-beacon.maxdns: 255 http-get.client: Cookie http-get.uri: 124.156.166.78,/load http-get.verb: GET http-post.client: Content-Type: application/octet-stream id http-post.uri: /submit.php http-post.verb: POST maxgetsize: 1048576 port: 7654 post-ex.spawnto_x64: %windir%\sysnative\rundll32.exe post-ex.spawnto_x86: %windir%\syswow64\rundll32.exe process-inject.execute: CreateThread SetThreadContext CreateRemoteThread RtlCreateUserThread process-inject.startrwx: 64 process-inject.stub: d10ba2f46586cefb16817150c6c1168e process-inject.userwx: 64 proxy.behavior: 2 (Use IE settings) server.publickey_md5: 2f38225b0cf1f48d09101c1e1f394a79 sleeptime: 60000 useragent_header: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Win64; x64; Trident/5.0; MAM2) uses_cookies: 1 watermark: 305419896