純国産ソフトの開発、販売なら。 純国産ソフトの開発、販売なら。 K-TEC / Z-PROXY Server V2 / FTPプロキシ用ログ

製品紹介会社概要お問合せニュースサポートその他


FTPプロキシ用ログ

FTPプロキシ用ログフォルダです。
セッション毎のデータ受信毎に以下のような、記録が行われます。 

[フォルダ]
環境変数"ALLUSERSPROFILE"
 └ Z-PROXY
   └ ftplog   FTPプロキシ用ログフォルダ[ログ]
[06:35:36:218]  (1.17) Copyright 2008-2009 K-TEC Inc. All rights reserved.

[06:35:36:281] Connection = 0
[06:35:36:296] IP version = IPv4,IPv6 ← 接続可能なIPバージョン
[06:35:36:312] Timeout Client(Plain) = 30000 ← 接続クライアントとの無通信タイムアウト時間
                                                 (プレーン時)単位ミリ秒
[06:35:36:343] Timeout Client(SSL)   = 30000 ← 接続クライアントとの無通信タイムアウト時間
                                                 (暗号化時)単位ミリ秒
[06:35:36:359] Timeout Server(Plain) = 30000 ← 接続サーバとの無通信タイムアウト時間
                                                 (プレーン時)単位ミリ秒
[06:35:36:375] Timeout Server(SSL)   = 30000 ← 接続サーバとの無通信タイムアウト時間
                                                 (暗号化時)単位ミリ秒
[06:35:36:390] FTP PortRange = 00000 - 00000 ← FTP-Dataセッションの利用可能ポート範囲
[06:35:36:406] FTP Cache time = 0 min. ← キャッシュ有効期間
[06:35:36:437] Log Folder = C:\Documents and Settings\All Users\
                            Z-PROXY\ftplog ← ログの保管フォルダ
[06:35:36:531] [AcceptClients] table=192.168.1.15 8321
[06:35:36:546] [AcceptClients] table=192.168.1.15 8221
[06:35:36:562] [AcceptClients] table=192.168.1.15 8121
[06:35:36:578] [AcceptClients] table=192.168.1.15 8021
[06:35:36:703] [AcceptClients] listen=192.168.1.15 8321 ← リッスンIP(1)
[06:35:36:718] [AcceptClients] listen=192.168.1.15 8221 ← リッスンIP(2)
[06:35:36:734] [AcceptClients] listen=192.168.1.15 8121 ← リッスンIP(3)
[06:35:36:750] [AcceptClients] listen=192.168.1.15 8021 ← リッスンIP(4)
[06:35:36:843] [AcceptClients] host.domain=[sv1.xxxxxx.jp]
  :
  :[正常時の記録]
[11:16:47:750] [AcceptClients] wait accept()
[11:16:47:750] [AcceptClients] start accept()
[11:16:47:750] [AcceptClients] Accept Client sokect.(00000724)(00000740) ← セッションの発生
[11:16:47:750] [AcceptClients] [0015e008] memory alloc()
[11:16:47:750] [AcceptClients] Connect from [192.168.1.15] ← 接続元
[11:16:47:750] [AcceptClients] wait select()
[11:16:47:750] [AcceptClients] [0015e008] START[00000724]
[11:16:47:781] [Query_SURBLists] [Hit] local
[11:16:47:796] [ConnectHost] Winsock connect success. Server=192.168.1.15
[11:16:47:796] [TelnetDispatch] [1804] sender connect success.
[11:16:47:796] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:796] [ServerToClientSession] S:recv(1804):27 bytes.
[11:16:47:796] 220 Microsoft FTP Service

[11:16:47:796] [ServerToClientSession] C:send(1828):27 bytes.
[11:16:47:796] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:47:812] [ClientToServerSession] C:recv(1828):20 bytes.
[11:16:47:812] [ClientToServerSession] C:send(1804):20 bytes.
[11:16:47:812] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:812] [ServerToClientSession] S:recv(1804):42 bytes.
[11:16:47:812] 331 Password required for administrator.

[11:16:47:812] [ServerToClientSession] C:send(1828):42 bytes.
[11:16:47:812] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:47:828] [ClientToServerSession] C:recv(1828):15 bytes.
[11:16:47:828] [ClientToServerSession] C:send(1804):15 bytes.
[11:16:47:828] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:828] [ServerToClientSession] S:recv(1804):35 bytes.
[11:16:47:828] 230 User administrator logged in.

[11:16:47:828] [ServerToClientSession] C:send(1828):35 bytes.
[11:16:47:828] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:47:859] [ClientToServerSession] C:recv(1828):16 bytes.
[11:16:47:859] [ClientToServerSession] C:send(1804):16 bytes.
[11:16:47:859] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:859] [ServerToClientSession] S:recv(1804):29 bytes.
[11:16:47:859] 250 CWD command successful.

[11:16:47:859] [ServerToClientSession] C:send(1828):29 bytes.
[11:16:47:859] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:47:890] [ClientToServerSession] C:recv(1828):6 bytes.
[11:16:47:890] [ClientToServerSession] C:send(1804):6 bytes.
[11:16:47:890] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:890] [ServerToClientSession] S:recv(1804):39 bytes.
[11:16:47:890] 257 "/xxxx/xxx" is current directory.

[11:16:47:890] [ServerToClientSession] C:send(1828):39 bytes.
[11:16:47:890] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:47:921] [ClientToServerSession] C:recv(1828):8 bytes.
[11:16:47:921] [ClientToServerSession] C:send(1804):8 bytes.
[11:16:47:921] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:921] [ServerToClientSession] S:recv(1804):20 bytes.
[11:16:47:921] 200 Type set to A.

[11:16:47:921] [ServerToClientSession] C:send(1828):20 bytes.
[11:16:47:921] [TelnetDispatch] hit
[11:16:47:921] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:47:953] [ClientToServerSession] C:recv(1828):6 bytes.
[11:16:47:953] [ClientToServerSession] C:send(1804):6 bytes.
[11:16:47:953] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:47:953] [ServerToClientSession] S:recv(1804):50 bytes.
[11:16:47:953] 227 Entering Passive Mode (192,168,1,15,11,200).

[11:16:47:953] [ServerToClientSession] [1804] from Server[1804]=227 Entering Passive Mode
                                       (192,168,1,15,11,200).

[11:16:47:984] [Query_SURBLists] [Hit] local
[11:16:47:984] [ServerToClientSession] [1804] 192.168.1.15 = Global:[192.168.1.15]
[11:16:47:984] [ServerToClientSession] [1804] to Client[1828]=227 Entering Passive Mode
                                       (192,168,1,15,201,11)

[11:16:47:984] [ServerToClientSession] _beginthread(FTPDataMain) start.
[11:16:47:984] [FTPDataMain] [1828] ls.mIP = 192.168.1.15 51467 / ls.mSvIP = 192.168.1.15
[11:16:47:984] [FTPDataMain] [1828] memory alloc()=0016b110
[11:16:48:000] [FTPDataMain] [1828] IP=192.168.1.15 51467
[11:16:48:000] [FTPDataMain] [1828] wait select()
[11:16:48:000] [FTPDataStartupFlag] success.
[11:16:48:000] [ServerToClientSession] C:send(1828):49 bytes.
[11:16:48:000] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:48:031] [FTPDataMain] [1828] wait accept()
[11:16:48:031] [FTPDataMain] start accept(1828)
[11:16:48:031] [FTPDataMain] Accept Client sokect.(000006dc)(000006ec)
[11:16:48:031] [FTPDataDispatch] [1756] start. 192.168.1.15 3016
[11:16:48:031] [ConnectHost] Winsock connect success. Server=192.168.1.15
[11:16:48:046] [FTPDataDispatch] [1756] sender connect success. [1744]
[11:16:48:062] [ClientToServerSession] C:recv(1828):6 bytes.
[11:16:48:062] [ClientToServerSession] C:send(1804):6 bytes.
[11:16:48:062] [ClientToServerDataSession] sockSv=[1756], sockCl=[1744] start.
[11:16:48:062] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:16:48:062] [ClientToServerDataSession] C:recv(1744):2277 bytes.
[11:16:48:062] [ServerToClientSession] S:recv(1804):78 bytes.
[11:16:48:062] 125 Data connection already open; Transfer starting.

226 Transfer complete.

[11:16:48:062] [ServerToClientSession] C:send(1828):54 bytes.
[11:16:48:078] [ServerToClientSession] C:send(1828):24 bytes.
[11:16:48:078] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:16:48:234] [ScanFile] [1744] C:\Documents and Settings\All Users\Z-PROXY\
               cache\req-4-1756.dat --- CLEAN
         ↑ウイルスチェックの結果(正常)
[11:16:48:234] [ClientToServerDataSession] [1744] [C:\Documents and Settings\All Users\
               Z-PROXY\cache\req-4-1756.dat] VIRUS result [CLEAN]
[11:16:48:250] [ClientToServerDataSession] S:send(1756):2277 bytes.
[11:16:48:250] [FTPDataDispatch] [1744] sender close socket.
  :
  :[ウイルス発見時の記録]
[11:17:14:093] [ClientToServerSession] C:recv(1828):8 bytes.
[11:17:14:093] [ClientToServerSession] C:send(1804):8 bytes.
[11:17:14:093] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:17:14:093] [ServerToClientSession] S:recv(1804):20 bytes.
[11:17:14:093] 200 Type set to I.

[11:17:14:093] [ServerToClientSession] C:send(1828):20 bytes.
[11:17:14:093] [TelnetDispatch] hit
[11:17:14:093] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:17:14:125] [ClientToServerSession] C:recv(1828):6 bytes.
[11:17:14:140] [ClientToServerSession] C:send(1804):6 bytes.
[11:17:14:140] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:17:14:140] [ServerToClientSession] S:recv(1804):50 bytes.
[11:17:14:140] 227 Entering Passive Mode (192,168,1,15,11,208).

[11:17:14:140] [ServerToClientSession] [1804] from Server[1804]=227 Entering Passive Mode 
                                       (192,168,1,15,11,208).

[11:17:14:140] [Query_SURBLists] [Hit] local
[11:17:14:140] [ServerToClientSession] [1804] 192.168.1.15 = Global:[192.168.1.15]
[11:17:14:140] [ServerToClientSession] [1804] to Client[1828]=227 Entering Passive Mode 
                                       (192,168,1,15,209,11)

[11:17:14:140] [ServerToClientSession] _beginthread(FTPDataMain) start.
[11:17:14:140] [FTPDataMain] [1828] ls.mIP = 192.168.1.15 53515 / ls.mSvIP = 192.168.1.15
[11:17:14:140] [FTPDataMain] [1828] memory alloc()=0016b110
[11:17:14:140] [FTPDataMain] [1828] IP=192.168.1.15 53515
[11:17:14:140] [FTPDataMain] [1828] wait select()
[11:17:14:140] [FTPDataStartupFlag] success.
[11:17:14:140] [ServerToClientSession] C:send(1828):49 bytes.
[11:17:14:140] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:17:14:171] [FTPDataMain] [1828] wait accept()
[11:17:14:187] [FTPDataMain] start accept(1828)
[11:17:14:187] [FTPDataMain] Accept Client sokect.(000006d8)(000006f4)
[11:17:14:187] [FTPDataDispatch] [1752] start. 192.168.1.15 3024
[11:17:14:187] [ConnectHost] Winsock connect success. Server=192.168.1.15
[11:17:14:187] [FTPDataDispatch] [1752] sender connect success. [1744]
[11:17:14:234] [ClientToServerSession] C:recv(1828):36 bytes.
[11:17:14:234] [ClientToServerSession] C:send(1804):36 bytes.
[11:17:14:234] [ClientToServerDataSession] sockSv=[1752], sockCl=[1744] start.
[11:17:14:234] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:17:14:250] [ServerToClientSession] S:recv(1804):54 bytes.
[11:17:14:250] 125 Data connection already open; Transfer starting.

[11:17:14:250] [ClientToServerDataSession] C:recv(1744):3721 bytes.
[11:17:14:250] [ServerToClientSession] C:send(1828):54 bytes.
[11:17:14:250] [ServerToClientSession] Start. sockSv=1804, sockCl=1828
[11:17:14:250] [ServerToClientSession] S:recv(1804):24 bytes.
[11:17:14:250] 226 Transfer complete.

[11:17:14:250] [ServerToClientSession] C:send(1828):24 bytes.
[11:17:14:250] [ClientToServerSession] Start. sockCl=1828, sockSv=1804
[11:17:14:421] [ScanFile] [1744] C:\Documents and Settings\All Users\Z-PROXY\cache\req-4-1752.dat 
               --- Trojan-Spy.HTML.Fraud.gen
         ↑ウイルスチェックの結果(ウイルス発見)
[11:17:14:421] [ClientToServerDataSession] [1744] [C:\Documents and Settings\All Users\Z-PROXY\cache\
               req-4-1752.dat] VIRUS result
        [Trojan-Spy.HTML.Fraud.gen]
[11:17:14:421] [ClientToServerDataSession] S:send(1752):33 bytes.
[11:17:14:421] [FTPDataDispatch] [1744] sender close socket.
[11:17:17:265] [TelnetDispatch] [1804] sender close socket.


Z-PROXY Server V2

  • プロキシサーバについて
  • 主な機能
  • 動作環境
  • ユーザーズガイド
  • FAQ
  • カタログ
  • 価格表
  • お問合せについて
  • ご購入をされる前に
  • サポートについて
  • ライセンス・サポートご購入方法
  • プロキシサーバ構築・設定例
  • 更新履歴
  • ダウンロード
  • ユーザー登録
  • サポート問合せ


  • 検 索



    ktinc.jp内
    Web全体



    製品紹介会社概要お問合せニュースサポートその他