GeneralInformation

Country	China
City	Shenzhen
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26465

6.8A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.

2024(1)

CVE-2024-6387

8.1A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

2023(4)

CVE-2023-51767

7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

CVE-2023-51385

6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

CVE-2023-48795

5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

CVE-2023-38408

9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.

2021(2)

CVE-2021-41617

7.0sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

CVE-2021-36368

3.7An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.

2020(2)

CVE-2020-15778

7.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVE-2020-14145

5.9The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.

2019(4)

CVE-2019-16905

7.8OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.

CVE-2019-6111

5.9An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).

CVE-2019-6110

6.8In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

CVE-2019-6109

6.8An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.

2018(3)

CVE-2018-20685

5.3In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

CVE-2018-15919

5.3Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'

CVE-2018-15473

5.3OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

2017(1)

CVE-2017-15906

5.3The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.

2016(9)

CVE-2016-20012

5.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product

CVE-2016-10708

7.5sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.

CVE-2016-10012

7.8The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.

CVE-2016-10011

5.5authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

CVE-2016-10010

7.0sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.

CVE-2016-10009

7.3Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.

CVE-2016-3115

6.4Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.

CVE-2016-1908

9.8The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

CVE-2016-0777

6.5The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.

2015(4)

CVE-2015-6564

6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.

CVE-2015-6563

1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.

CVE-2015-5600

8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.

CVE-2015-5352

4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.

2014(3)

CVE-2014-2653

5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.

CVE-2014-2532

4.9sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

CVE-2014-1692

7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.

2012(1)

CVE-2012-0814

3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

2011(2)

CVE-2011-5000

3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.

CVE-2011-4327

2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

2010(3)

CVE-2010-5107

5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

CVE-2010-4755

4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.

CVE-2010-4478

7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.

2008(1)

CVE-2008-3844

9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.

2007(1)

CVE-2007-2768

4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

2 13 15 21 23 26 37 38 43 49 51 53 79 85 89 100 102 104 110 111 113 122 123 135 143 175 179 189 221 222 243 311 389 427 443 444 446 452 465 502 513 515 548 555 556 587 593 666 685 771 785 789 800 811 873 888 902 992 995 1012 1023 1025 1026 1099 1110 1153 1177 1180 1181 1200 1234 1283 1337 1364 1366 1414 1433 1455 1458 1521 1604 1660 1800 1801 1883 1911 1926 1950 1959 1960 1962 1965 1969 1976 1980 1983 1984 2002 2003 2008 2010 2030 2049 2050 2051 2057 2059 2063 2066 2067 2081 2087 2121 2154 2181 2200 2211 2222 2323 2332 2363 2382 2404 2435 2455 2506 2555 2556 2557 2558 2559 2626 2761 3001 3006 3007 3013 3047 3050 3058 3068 3082 3084 3139 3146 3147 3148 3164 3165 3168 3190 3191 3256 3260 3268 3299 3301 3306 3310 3345 3388 3389 3403 3405 3406 3541 3551 3558 3561 3562 3780 3790 3838 3951 4042 4064 4104 4150 4155 4157 4242 4282 4369 4400 4401 4432 4433 4434 4455 4477 4500 4502 4505 4510 4700 4786 4899 4911 4949 4999 5001 5002 5007 5009 5010 5025 5051 5090 5093 5130 5172 5201 5222 5229 5238 5239 5240 5245 5251 5255 5257 5269 5277 5351 5432 5435 5446 5494 5556 5557 5567 5591 5599 5600 5613 5640 5650 5660 5672 5680 5905 5907 5919 5938 5984 5986 5988 5992 5999 6000 6001 6002 6003 6050 6331 6379 6433 6482 6512 6601 6603 6622 6633 6653 6666 6667 6668 6697 6748 6775 7000 7001 7003 7014 7016 7025 7050 7057 7071 7085 7090 7102 7171 7218 7325 7401 7415 7434 7443 7444 7480 7548 7777 7790 7799 7900 7980 8009 8020 8025 8028 8036 8038 8063 8065 8071 8081 8083 8084 8087 8089 8095 8097 8099 8104 8105 8108 8110 8118 8121 8126 8134 8139 8140 8173 8178 8181 8200 8203 8243 8285 8291 8300 8317 8333 8350 8393 8402 8404 8413 8415 8421 8430 8444 8448 8459 8460 8461 8480 8481 8485 8488 8494 8500 8510 8528 8531 8533 8536 8545 8554 8557 8558 8567 8575 8576 8577 8601 8622 8630 8640 8703 8723 8728 8764 8787 8789 8791 8801 8812 8833 8834 8838 8841 8843 8846 8848 8850 8851 8856 8861 8871 8883 8886 8889 8905 8916 8988 8999 9000 9001 9007 9021 9026 9030 9031 9042 9046 9051 9055 9058 9059 9060 9068 9070 9072 9083 9091 9092 9095 9100 9105 9107 9114 9121 9122 9125 9126 9129 9130 9137 9142 9146 9147 9148 9151 9152 9154 9157 9158 9159 9182 9200 9207 9208 9209 9212 9213 9221 9222 9226 9243 9248 9249 9251 9256 9283 9303 9306 9309 9313 9333 9398 9418 9445 9447 9456 9530 9600 9633 9743 9754 9758 9761 9861 9876 9885 9898 9918 9943 9944 9955 9966 9990 9998 9999 10001 10002 10003 10008 10010 10013 10019 10020 10029 10032 10039 10051 10052 10071 10075 10082 10083 10089 10134 10200 10250 10254 10283 10390 10443 10444 10480 10554 10909 10911 10935 11000 11002 11075 11101 11112 11210 11288 11601 11681 11920 12000 12056 12101 12116 12125 12129 12133 12139 12144 12147 12160 12163 12167 12172 12177 12181 12184 12186 12192 12196 12202 12206 12217 12219 12220 12225 12229 12232 12235 12237 12238 12241 12253 12257 12258 12260 12263 12266 12278 12283 12292 12294 12295 12298 12309 12312 12314 12330 12341 12343 12345 12352 12353 12367 12373 12377 12378 12379 12380 12383 12384 12389 12390 12397 12405 12407 12416 12422 12425 12430 12431 12432 12449 12452 12462 12464 12468 12471 12472 12473 12478 12487 12489 12493 12499 12502 12504 12509 12510 12512 12518 12519 12523 12527 12529 12532 12547 12548 12567 12571 12574 12584 12585 13128 13380 14147 14344 14403 14406 14880 15123 15443 15502 16002 16011 16012 16015 16018 16024 16029 16031 16037 16038 16041 16053 16058 16062 16063 16081 16086 16095 16103 16104 16311 16403 16443 16831 16888 16993 17084 17100 17443 17770 17780 18002 18003 18012 18014 18019 18022 18032 18039 18046 18050 18061 18063 18065 18066 18068 18072 18080 18081 18092 18097 18098 18104 18110 18182 18245 18443 18553 18765 19000 19015 19016 19090 19222 19233 19930 20000 20100 20106 20150 20151 20202 20256 20443 20500 20547 20600 20880 20900 21025 21231 21242 21257 21266 21268 21269 21281 21284 21287 21311 21313 21318 21319 21321 21323 21325 21379 21500 21935 22022 22069 22103 22206 22345 22556 22705 23184 24245 25008 25084 25105 25565 25782 25952 26656 26657 27015 27017 28001 28015 28017 28443 29842 30017 30022 30023 30025 30029 30104 30122 30222 30303 30322 30422 30473 30522 30622 30700 30718 30722 30822 30922 31022 31122 31210 31222 31322 31337 31422 31443 31522 31622 31722 31822 31922 32022 32122 32202 32222 32322 32400 32422 32522 32622 32722 32764 32822 32922 33022 33060 33122 33222 33322 33389 33422 33522 33622 33722 33822 33922 34022 34122 34222 34225 34322 34422 34822 34922 35022 35122 35250 35322 35422 35522 35524 35622 35722 35922 36022 36322 36422 36522 36722 36822 36922 36982 37022 37080 37122 37222 37322 37522 37722 37777 37822 38022 38122 38222 38322 38522 38622 38722 38822 38922 39022 39222 39322 39422 39522 39722 39922 40070 40222 40322 40522 40622 40722 41122 41443 41522 41794 41800 41822 41922 42122 42208 42422 42443 42901 43322 43522 43622 43722 43922 44022 44322 44337 44341 44350 44422 44520 44522 44818 44922 45006 45039 45122 45222 45622 45666 45821 45822 45922 46022 46122 46222 46422 46922 47001 47122 47222 47322 47422 47522 47534 47722 47808 47822 47922 48000 48001 48002 48012 48018 48022 48222 48322 48622 48722 48822 48888 48899 48922 49080 49152 49153 49688 49690 49694 50000 50011 50014 50070 50100 50105 51003 51004 51007 51106 51235 51434 51443 52010 52022 52230 52340 52881 52931 54022 54138 54327 54545 54857 54984 55000 55081 55222 55422 55443 55490 55553 55554 57522 57622 57722 57780 57786 57787 57822 57922 58122 58222 58322 58378 58422 58522 58722 58822 58922 59012 59022 59122 59222 59322 60129 61613 61616 61617 62078 62080 63256 63260 63676 64295 64738

2 / tcp

1911457608 | 2025-03-16T06:00:57.598364

\x00[\x00\x00\x00\x00\x00\x00

13 / tcp

-341265581 | 2025-03-21T10:29:02.838575

HTTP/1.1 404

15 / tcp

1545917845 | 2025-03-22T19:13:25.604671

[gN

21 / tcp

-1776144952 | 2025-03-16T20:37:53.115414

220 Ftp firmware update utility\r\n

23 / tcp

-994973958 | 2025-03-20T12:13:01.063917

\xff\xfd\x01\xff\xfd!\xff\xfb\x01\xff\xfb\x03ZyXEL VDSL Router\r\n

26 / tcp

819727972 | 2025-03-18T23:35:17.504119

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

37 / tcp

387930190 | 2025-03-21T06:54:18.273475

\xc3\xbf\xc3\xbb\\x01\n\rn

38 / tcp

-1399940268 | 2025-03-21T21:31:46.255061

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

43 / tcp

2087396567 | 2025-03-06T00:10:53.397563

kjnkjabhbanc283ubcsbhdc72

49 / tcp

-359657882 | 2025-03-21T16:06:09.225404

GBPK\xc3\xbb\xc3\xb7n\\xc2\\x93W\xc2\xaf\\xc2\\x86\\xc2\\x93x@\xc2\xa9\\x0e\xc3\x8a*\\xc2\\x9bS

51 / tcp

819727972 | 2025-03-14T06:32:54.043872

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

53 / tcp

1369632081 | 2025-03-20T00:58:06.315002

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x01\x03\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x01\x14\x00\x04\xac٠N
\x00\x06\x85\x80\x00\x01\x00\x01\x00\x00\x00

79 / tcp

-2029556872 | 2025-03-19T18:51:53.245953

HTTP/1.1 200 OK
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Type: text/html
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Connection: Keep-Alive
Accept-Ranges: bytes

85 / tcp

-1013082686 | 2025-03-14T17:46:38.157426

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

89 / tcp

-1399940268 | 2025-03-12T15:43:43.905136

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

100 / tcp

1574088840 | 2025-03-19T00:54:40.002281

">Application and Content Networking Software 3.9</a>)\n</BODY><

102 / tcp

-1399940268 | 2025-03-11T21:15:43.663656

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

104 / tcp

-2089734047 | 2025-03-20T23:32:49.493139

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

110 / tcp

1911457608 | 2025-03-19T14:49:42.409307

\x00[\x00\x00\x00\x00\x00\x00

111 / tcp

2087396567 | 2025-03-21T04:49:10.640200

kjnkjabhbanc283ubcsbhdc72

113 / tcp

-414819019 | 2025-03-23T12:47:10.335791

HTTP/1.1 200 OK
Content-type: text/html
Connection: close

122 / tcp

-1899074860 | 2025-03-23T00:04:59.200396

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

123 / udp

116063318 | 2025-03-11T05:21:24.947258

NTP
protocolversion: 3
stratum: 2
leap: 0
precision: -25
rootdelay: 0.00111389160156
rootdisp: 0.0103912353516
refid: 176764249
reftime: 3950659253.16
poll: 0

135 / tcp

1141948216 | 2025-03-07T16:38:10.808961

\\x05\\x00\r\\x03\\x10\\x00\\x00\\x00\\x18\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x04\\x00\\x01\\x05\\x00\\x00\\x00\\x00\n\nServerAlive2: \n IP1: DESKTOP-HL59G5J\n IP2: 169.254.93.199\n IP3: 175.180.100.187\n\nNTLMSSP:\nTarget_Name: DESKTOP-HL59G5J\nProduct_Version: 10.0.19041 Ntlm 15\nOS: Windows 10, Version 2004/Windows Server, Version 2004\nNetBIOS_Domain_Name: DESKTOP-HL59G5J\nNetBIOS_Computer_Name: DESKTOP-HL59G5J\nDNS_Domain_Name: DESKTOP-HL59G5J\nDNS_Computer_Name: DESKTOP-HL59G5J\nSystem_Time: 2024-01-22 06:04:34 +0000 UTC\n\nDCERPC Dump:\n954

143 / tcp

639175818 | 2025-02-24T06:20:36.997027

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

175 / tcp

1282941221 | 2025-03-06T10:21:34.521000

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

179 / tcp

-399606100 | 2025-03-25T01:15:50.540622

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

189 / tcp

-1399940268 | 2025-03-14T22:48:57.480433

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

221 / tcp

165188539 | 2025-03-12T06:02:14.470973

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

222 / tcp

-142852466 | 2025-03-17T00:35:14.325829

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.11\r\n

243 / tcp

-1399940268 | 2025-03-19T08:13:40.842048

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

311 / tcp

749429829 | 2025-03-19T05:58:34.070389

\xc3\xa3\r\n\r\n\\x01KvInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

389 / tcp

-1743283776 | 2025-03-18T13:49:37.267928

0\x0c\\x02\\x01\\x01a\\x07\n\\x01\\x04\\x04

427 / tcp

-525136240 | 2025-03-18T04:15:43.948342

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://bogon.xylink\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:VMwareInfrastructure\nservice:wbem:https\n\nResponse of service:VMwareInfrastructure SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:VMwareInfrastructure://bogon.xylink\n\n\nResponse of service:VMwareInfrastructure AttrRqst:\nVersion: 2\nFunction: Attribute Reply (7)\nErrorCode: SUCCESS (

443 / tcp

187705409 | 2025-03-16T13:34:04.152925

Versions\xef\xbc\x9a39,43,46,50\nQUIC Protocol\t\\x89\\xc1\\x9c\\x1c*\\xff\\xfc\\xf1Q039Q043Q046Q050\\xff\\x00\\x00\\x1b\\xff\\x00\\x00\\x1d\\x00\\x00\\x00\\x01\\xfa\\xfa\\xfa\\xfa

444 / tcp

-971970408 | 2025-02-25T08:26:50.415966

446 / tcp

740837454 | 2025-03-11T04:44:07.956014

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

452 / tcp

722711397 | 2025-03-19T20:40:00.284149

\x00[M\xc3\xba\xc3\x9a\x7f\x00\x00

465 / tcp

897328069 | 2025-03-14T10:02:05.916962

220 mail.scott000.com ESMTP

502 / tcp

-784071826 | 2025-03-19T08:06:03.287446

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 6 1

513 / tcp

-1261090339 | 2025-03-17T22:49:08.830270

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

515 / tcp

-1392039491 | 2025-03-24T07:42:02.165068

"Broadband Router"

<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

548 / tcp

862587784 | 2025-03-22T09:13:34.976157

Fast Copy: Yes\nExtended Sleep: Yes\nUUIDs: Yes\nUTF8 Server Name: Yes\nDirectory Services: Yes\nReconnect: No\nServer Notifications: Yes\nTCP/IP: Yes\nServer Signature: Yes\nServer Message: No\nPassword Saving Prohibited: No\nPassword Changing: No\nCopy File: Yes\nServer Name: pangzinas\nMachine Type: \\x0eNetatalk3.1.12\nAFP Versions: AFP2.2, AFPX03, AFP3.1, AFP3.2, AFP3.3, AFP3.4\nUAMs: Cleartxt Passwrd\\x0f,No User Authent\\x04,DHX2\t,DHCAST128\\x00\nServer Signature: 00000000008002000180030002800280

555 / tcp

1332894250 | 2025-03-17T07:02:31.899463

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

556 / tcp

1363464823 | 2025-03-21T15:45:00.949869

\x00[|ox\x7f\x00\x00

587 / tcp

-721592220 | 2025-03-25T06:28:39.790568

220 mail.xiayi.store ESMTP Postfix\r\n250-mail.xiayi.store\r\n250-PIPELINING\r\n250-SIZE 125829120\r\n250-ETRN\r\n250-STARTTLS\r\n250-ENHANCEDSTATUSCODES\r\n250-8BITMIME\r\n250 DSN\r\n502 5.5.2 Error: command not recognized\r\n

593 / tcp

1308377066 | 2025-03-17T02:26:16.001734

ncacn_http/1.0

666 / tcp

2098053533 | 2025-03-06T03:59:01.452797

HTTP/1.1 401 Unauthorized
Server: nginx/1.17.7
Content-Type: text/html
Connection: keep-alive

685 / tcp

-1737707071 | 2025-03-12T09:10:31.734377

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

771 / tcp

1282941221 | 2025-03-16T00:25:14.690984

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

785 / tcp

-1148066627 | 2025-03-06T02:53:24.965411

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

789 / tcp

-1399940268 | 2025-03-06T08:44:01.547935

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

800 / tcp

222016983 | 2025-03-07T17:08:45.975096

HTTP/1.0 400 Bad Request
Server: nginx
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1
Connection: close
Content-Type: text/html; charset=ISO-8859-1

811 / tcp

1911457608 | 2025-03-24T09:41:59.569969

\x00[\x00\x00\x00\x00\x00\x00

873 / tcp

-976882525 | 2025-03-14T14:10:21.355709

HTTP/1.1 400 Bad Request
Server: nginx/1.23.1
Content-Type: text/html
Connection: close

888 / tcp

-262532376 | 2025-03-08T21:09:58.410677

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: keep-alive

902 / tcp

693973426 | 2025-03-13T04:40:13.191804

220 VMware Authentication Daemon Version 1.10: SSL Required, Se\nrverDaemonProtocol:SOAP, MKSDisplayProtocol:VNC , , NFCSSL supported/t

992 / tcp

-936692830 | 2025-03-19T07:51:01.720649

HTTP/1.1 202 OK
Connection: Keep-Alive
Content-Type: text/html
Keep-Alive: timeout=15; max=19

995 / tcp

-1489591880 | 2025-03-23T16:57:27.661708

+OK MS OK\r\n

1012 / tcp

-358801646 | 2025-03-11T18:18:06.199322

SSH-2.0-OpenSSH_6.6.1

1023 / tcp

-1986594217 | 2025-03-24T03:33:34.943923

"AP0F1D85"\r\nConnection: close\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR

1025 / tcp

-1399940268 | 2025-03-15T19:01:43.938851

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1026 / tcp

-2096652808 | 2025-03-20T13:58:59.072223

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1099 / tcp

-1399940268 | 2025-03-07T14:29:44.626391

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1110 / tcp

456721301 | 2025-02-24T07:42:32.519839

HTTP/1.1 200 OK
Server: Citrix-3.2.5.9 'Marshal West'
Content-Type: text/html; charset=UTF-8

1153 / tcp

-1399940268 | 2025-03-20T15:14:48.469119

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1177 / tcp

-971970408 | 2025-03-17T18:52:35.027359

1180 / tcp

-2089734047 | 2025-03-08T17:16:04.552490

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1181 / tcp

-2089734047 | 2025-03-15T12:27:48.932643

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

1200 / tcp

-1099385124 | 2025-02-28T02:54:28.047361

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

1234 / tcp

-1399940268 | 2025-03-19T18:45:48.136917

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1283 / tcp

921225407 | 2025-03-06T23:12:06.252041

\x00\x00\x00\x04\x00\x00\x00\x00\x00

1337 / tcp

1842524259 | 2025-03-25T05:06:20.899745

1364 / tcp

165188539 | 2025-03-08T17:44:37.724966

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

1366 / tcp

-1399940268 | 2025-03-20T09:28:38.916378

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1414 / tcp

819727972 | 2025-03-19T23:03:05.801990

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

1433 / tcp

49107754 | 2025-03-12T09:58:21.788601

MSSQL Server\nVersion: 134219767 (0x80007f7)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nProduct_Version: 5.2.3790 Ntlm 15\nOS: Windows Server 2003/Windows Server 2003 R2/Windows Server 2003, Service Pack 2\n

1455 / tcp

-42767839 | 2025-02-24T03:58:19.130028

RFB 005.000

VNC:
  Protocol Version: 5.0

1458 / tcp

-441419608 | 2025-02-28T17:52:07.039873

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

1521 / tcp

-1337747449 | 2025-03-25T02:17:14.030742

Version:12.2.0.1.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=203424000)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

1604 / tcp

-358801646 | 2025-02-23T11:34:26.772623

SSH-2.0-OpenSSH_6.6.1

1660 / tcp

-1032713145 | 2025-03-10T05:06:08.566102

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

1800 / tcp

-1737707071 | 2025-03-06T12:18:05.916108

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

1801 / tcp

-1139999322 | 2025-03-16T16:52:53.254629

\\x10Z\x0b\\x00LIOR<\\x02\\x00\\x00\\xff\\xff\\xff\\xff\\x00\\x00\\x12\\x00a36a0e421af47074\\xf2\\xdby\\x96\\xbb\\xb1LE\\xa1\\x1f.%\xd2\xbft\\xb692d3\\x10\\x03\\x00\\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

1883 / tcp

1690634669 | 2025-02-26T00:38:02.016101

1911 / tcp

398077695 | 2025-02-28T16:12:06.067304

1926 / tcp

-358801646 | 2025-03-05T16:33:28.547636

SSH-2.0-OpenSSH_6.6.1

1950 / tcp

401555314 | 2025-03-15T07:15:05.909544

NB[GFXjA^R

1959 / tcp

1126993057 | 2025-03-25T00:09:26.384090

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

1960 / tcp

-1947777893 | 2025-03-22T19:57:08.707943

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

1962 / tcp

-303199180 | 2025-03-17T00:58:42.049131

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

1965 / tcp

2103111368 | 2025-03-12T05:12:28.202590

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

1969 / tcp

-1032713145 | 2025-03-10T10:03:57.279837

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

1976 / tcp

2103111368 | 2025-03-25T06:56:40.259168

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

1980 / tcp

-1297953727 | 2025-02-26T03:30:45.900225

\x02\x00\x00\x00\x00\x00\x06\x04\x00\x00\x00\x00\x00\x0c\x00\x00\n0\x00\x1c

1983 / tcp

165188539 | 2025-03-04T22:46:35.747343

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

1984 / tcp

-42767839 | 2025-03-12T13:24:33.519977

RFB 005.000

VNC:
  Protocol Version: 5.0

2002 / tcp

-1399940268 | 2025-03-24T07:25:39.307961

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2003 / tcp

410249975 | 2025-03-11T21:50:15.648982

LNS READY<>

2008 / tcp

2087396567 | 2025-03-19T01:03:43.995099

kjnkjabhbanc283ubcsbhdc72

2010 / tcp

-1399940268 | 2025-03-04T13:05:13.756221

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2030 / tcp

372433470 | 2025-03-23T13:14:23.713882

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

2049 / tcp

1911457608 | 2025-03-05T15:03:02.743479

\x00[\x00\x00\x00\x00\x00\x00

2050 / tcp

-1399940268 | 2025-03-05T13:21:41.521790

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2051 / tcp

1426971893 | 2025-03-12T18:17:04.165219

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

2057 / tcp

-1399940268 | 2025-03-17T00:52:01.362721

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2059 / tcp

-1399940268 | 2025-03-13T20:19:26.473988

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2063 / tcp

-1375131644 | 2025-03-09T16:13:19.899548

\x00[v\xc3\xbdC\x7f\x00\x00

2066 / tcp

103159425 | 2025-03-04T04:04:05.715354

SSH-1.99-RGOS_SSH

2067 / tcp

-984990168 | 2025-03-11T16:12:44.123285


0ÿñ

2081 / tcp

165188539 | 2025-03-22T23:22:41.657777

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

2087 / tcp

539065883 | 2025-02-25T06:17:01.544762

2121 / tcp

141730637 | 2025-03-22T14:42:18.895876

HTTP/1.0 200 OK
Server: Proxy

2154 / tcp

380146262 | 2025-03-17T22:05:55.304576

@RSYNCD: 30.0

2181 / tcp

-122096153 | 2025-03-19T16:56:59.607534

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

2200 / tcp

1023953321 | 2025-03-17T20:56:04.335906

HTTP/1.0 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

2211 / tcp

321971019 | 2025-03-10T20:46:18.241895

-ERR client ip is not in whitelist\r

2222 / tcp

-1659353189 | 2025-03-23T20:45:17.676196

SSH-2.0-ssh-server\r\n\\x00\\x00\\x02\\x14\x0b\\x14\x0b\\xed\\x16\\xae\\x96\t\\xc5En\\xbd\\x1cgn\\xff\\xad\\xd7\\x00\\x00\\x00\\xbbcurve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2-nistp384,ecdh-sha2-nistp256,diffie-hellman-group14-sha256,diffie-hellman-gr

2323 / tcp

1568233308 | 2025-02-27T10:02:38.203210

\r\nThere are too many users,please wait a moment to log in!\r\n\n\nTELNET Negotiation:\nwill: Echo, Suppress Go Ahead\ndo: Echo, Negotiate About Window Size, Remote Flow Control\n

2332 / tcp

1623746877 | 2025-03-15T03:26:56.422839

500 Permission denied - closing connection.\r\n

2363 / tcp

-1327660293 | 2025-02-27T22:09:29.326458

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

2382 / tcp

-1399940268 | 2025-03-07T18:09:21.996946

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2404 / tcp

-2096652808 | 2025-03-23T16:42:29.648421

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

2435 / tcp

410249975 | 2025-03-09T23:20:28.299490

LNS READY<>

2455 / tcp

-2031152423 | 2025-03-08T22:46:05.398218

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

2506 / tcp

1911457608 | 2025-03-21T09:02:37.205124

\x00[\x00\x00\x00\x00\x00\x00

2555 / tcp

1975288991 | 2025-03-14T06:22:19.849440

OPTI

2556 / tcp

165188539 | 2025-03-13T02:19:53.285211

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

2557 / tcp

-686574797 | 2025-02-28T19:08:27.511457

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 13-123953206-0 0NNN RT(1700602574720 0) q(0 -1 -1 -1) r(0 -1)

2558 / tcp

-1036370807 | 2025-02-26T21:27:15.378956

JDWP-Handshake

2559 / tcp

1911457608 | 2025-03-22T09:50:02.258171

\x00[\x00\x00\x00\x00\x00\x00

2626 / tcp

45131230 | 2025-03-24T18:06:35.034493

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

2761 / tcp

-2089734047 | 2025-03-20T06:06:15.003173

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3001 / tcp

1911457608 | 2025-03-21T17:39:04.608942

\x00[\x00\x00\x00\x00\x00\x00

3006 / tcp

-1327660293 | 2025-03-18T11:17:14.017222

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

3007 / tcp

-1399940268 | 2025-03-11T03:21:05.476793

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3013 / tcp

-1568680103 | 2025-03-07T13:22:54.449108

HTTP/1.1 301 Moved Permanently
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3047 / tcp

1911457608 | 2025-03-23T06:17:11.930710

\x00[\x00\x00\x00\x00\x00\x00

3050 / tcp

-1399940268 | 2025-03-23T01:46:19.533203

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3058 / tcp

-441419608 | 2025-03-20T17:57:26.820392

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

3068 / tcp

580340387 | 2025-03-14T02:53:25.792475

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

3082 / tcp

-2096652808 | 2025-03-09T09:45:19.835496

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

3084 / tcp

-1399940268 | 2025-03-22T14:42:56.170800

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3139 / tcp

-1746074029 | 2025-03-09T12:13:36.286883

101 imqbroker =unV\r\n

3146 / tcp

-2089734047 | 2025-03-14T13:20:47.223758

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3147 / tcp

1911457608 | 2025-03-12T19:21:28.243752

\x00[\x00\x00\x00\x00\x00\x00

3148 / tcp

-1399940268 | 2025-03-11T07:05:42.457729

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3164 / tcp

-358801646 | 2025-03-22T18:48:43.719406

SSH-2.0-OpenSSH_6.6.1

3165 / tcp

1632932802 | 2025-02-27T21:43:28.911421

3168 / tcp

-1227409554 | 2025-03-03T19:58:10.310631

HTTP/1.1 500 Internal Server Error
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

3190 / tcp

-1733106930 | 2025-02-26T19:40:56.062763

Mysql Version: 5.6.50-log\nN\n5.6.50-log\x14(\nG5se"tGE\xc3\xbf\xc3\xb7-\x02\x7f\xc2\x80\x15cB^3$Zwh$wM[mysql_native_password

3191 / tcp

820958131 | 2025-03-15T11:25:35.450846

kjnkjabhbanc283ubcsbhdc72\x02

3256 / tcp

233634112 | 2025-03-14T18:14:52.830000

SSH-98.60-SysaxSSH_81885..42

3260 / tcp

-271466677 | 2025-03-15T06:38:39.220638

RIFA\\x00\\x00\\x00\\x00\\x10\\x88\\x81\\x00\\x00\\x00\\x00\\x00\\x00\x0b\\x00\\x05\\x00\\x00\\x00:\\x00HD316\\x00\\x01\\x00

3268 / tcp

-879070264 | 2025-03-24T06:10:33.122784

\\xab\xca\xa5]\\x00\\x00\\x00\\x18\\xc0\\x00\\x00\\x01\\xff\\xff\\xff\\xff\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00

3299 / tcp

-407828767 | 2025-03-09T08:18:39.555867

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

3301 / tcp

819727972 | 2025-03-12T08:26:47.676592

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3306 / tcp

1673132866 | 2025-03-11T15:20:35.182477

I\\x00\\x00\\x01\\xffj\\x04Host \'*.*.*.*\' is not allowed to connect to this MariaDB server

3310 / tcp

-1399940268 | 2025-03-24T16:03:57.016791

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3345 / tcp

-1810987450 | 2025-03-13T06:47:46.203019

\xc3\xbf

3388 / tcp

-653033013 | 2025-03-20T07:00:30.655137

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

3389 / tcp

419073695 | 2025-03-10T22:29:09.345298

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x02\\x1f\\x08\\x00\\x08\\x00\\x00\\x00\n\nFlag: PROTOCOL_HYBRID_EX\nTarget_Name: 172_19_32_23\nProduct_Version: 10.0.20348 Ntlm 15\nOS: Windows Server 2022\nNetBIOS_Domain_Name: 172_19_32_23\nNetBIOS_Computer_Name: 172_19_32_23\nDNS_Domain_Name: 172_19_32_23\nDNS_Computer_Name: 172_19_32_23\nSystem_Time: 2024-01-22 08:40:52 +0000 UTC\n\n

3403 / tcp

1353260875 | 2025-03-18T06:44:30.966683

\x00[g\xc2\x95N\x7f\x00\x00

3405 / tcp

-441419608 | 2025-03-07T09:23:49.556148

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

3406 / tcp

-2107996212 | 2025-02-28T12:44:13.931505

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

3541 / tcp

0 | 2025-02-26T00:06:31.961906

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

3551 / tcp

198844676 | 2025-03-23T09:41:46.088824

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3558 / tcp

-1399940268 | 2025-03-15T19:37:43.127405

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3561 / tcp

693973426 | 2025-03-14T02:34:22.857430

220 VMware Authentication Daemon Version 1.10: SSL Required, Se\nrverDaemonProtocol:SOAP, MKSDisplayProtocol:VNC , , NFCSSL supported/t

3562 / tcp

1492413928 | 2025-03-20T00:53:38.790468

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 13 1

3780 / tcp

-805362002 | 2025-03-12T09:26:29.588335

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

3790 / tcp

2087396567 | 2025-03-17T08:01:56.819842

kjnkjabhbanc283ubcsbhdc72

3838 / tcp

575925250 | 2025-03-07T15:56:58.607781

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

3951 / tcp

1632932802 | 2025-02-26T02:38:19.096037

4042 / tcp

819727972 | 2025-03-16T16:04:37.839413

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

4064 / tcp

-1399940268 | 2025-03-14T17:21:55.572616

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4104 / tcp

-1399940268 | 2025-02-28T21:13:55.565171

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4150 / tcp

1911457608 | 2025-02-27T11:13:03.043122

\x00[\x00\x00\x00\x00\x00\x00

4155 / tcp

-1329831334 | 2025-03-15T08:19:56.282928

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

4157 / tcp

1636811864 | 2025-03-22T04:43:59.167735

4242 / tcp

-1914158197 | 2025-03-08T21:08:32.774187

HTTP/1.1 500 Internal Server Error
Server: nginx/1.18.11011 (Ubuntu)
Content-Type: text/plain; charset=utf-8
Connection: close

4282 / tcp

2087396567 | 2025-03-19T21:41:38.191049

kjnkjabhbanc283ubcsbhdc72

4369 / tcp

1210754493 | 2025-03-15T19:50:16.211002

0\x0c\x02\x01\x01a\x07\n\x01\x00\x04\x00\x04\x00

4400 / tcp

819727972 | 2025-03-04T18:52:52.220760

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

4401 / tcp

1911457608 | 2025-02-28T09:22:21.417882

\x00[\x00\x00\x00\x00\x00\x00

4432 / tcp

-1399940268 | 2025-03-19T18:35:40.633973

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4433 / tcp

2087396567 | 2025-03-22T09:03:45.631628

kjnkjabhbanc283ubcsbhdc72

4434 / tcp

-1730858130 | 2025-02-27T22:29:46.311594

RFB 003.008
VNC:
  Protocol Version: 3.8

4455 / tcp

-345718689 | 2025-03-23T13:08:43.951426

Vty password is not set.

4477 / tcp

1911457608 | 2025-02-27T15:19:51.614427

\x00[\x00\x00\x00\x00\x00\x00

4500 / tcp

366084633 | 2025-03-22T01:24:50.904432

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

4502 / tcp

740837454 | 2025-03-15T20:19:21.499320

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

4505 / tcp

-1399940268 | 2025-03-22T01:33:05.348339

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4510 / tcp

639175818 | 2025-03-10T14:06:58.293588

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

4700 / tcp

819727972 | 2025-03-05T20:22:10.123453

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

4786 / tcp

-1265999252 | 2025-03-21T14:50:34.908190

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto\ncol:SOAP, MKSDisplayProtocol:VNC , ,

4899 / tcp

-971970408 | 2025-03-15T19:51:15.825697

4911 / tcp

401555314 | 2025-03-13T15:47:31.904366

NB[GFXjA^R

4949 / tcp

1741579575 | 2025-02-27T04:08:07.630448

4999 / tcp

1975288991 | 2025-03-16T06:30:53.024771

OPTI

5001 / tcp

178736976 | 2025-03-22T04:01:19.380924

SSH-58-Ingrian_SSH

5002 / tcp

-1713437100 | 2025-03-17T08:55:29.401487

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

5007 / tcp

-1399940268 | 2025-03-04T04:25:32.970836

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5009 / tcp

-1122307493 | 2025-02-25T13:46:50.513061

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1ed0_xz202_38367-12424

5010 / tcp

15018106 | 2025-03-15T18:37:41.333265

\x00\x19\x02\x00\x02\x00\x07\x00Protocol version mismatch\x00

5025 / tcp

2087396567 | 2025-03-19T01:38:49.737699

kjnkjabhbanc283ubcsbhdc72

5051 / tcp

1911457608 | 2025-03-17T04:47:02.609662

\x00[\x00\x00\x00\x00\x00\x00

5090 / tcp

1632932802 | 2025-03-19T04:24:45.420162

5093 / tcp

632542934 | 2025-03-22T16:50:04.834089

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

5130 / tcp

-1019343788 | 2025-03-15T12:59:21.621829

W!\x00\x00\x00\x00

5172 / tcp

1741579575 | 2025-03-17T15:41:28.219749

5201 / tcp

398077695 | 2025-03-04T01:17:49.418747

5222 / tcp

1545917845 | 2025-03-12T22:33:51.227725

[gN

5229 / tcp

-1189269828 | 2025-03-20T18:04:19.891466

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

5238 / tcp

819727972 | 2025-03-24T19:14:48.334968

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

5239 / tcp

504717326 | 2025-03-06T10:04:47.747953

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 5 1

5240 / tcp

597764502 | 2025-03-06T18:35:43.417391

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

5245 / tcp

-1399940268 | 2025-03-10T10:03:01.569670

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5251 / tcp

1911457608 | 2025-02-28T07:31:18.634428

\x00[\x00\x00\x00\x00\x00\x00

5255 / tcp

-2089734047 | 2025-02-26T12:23:36.468057

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5257 / tcp

-2107996212 | 2025-03-22T00:46:14.055433

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

5269 / tcp

-898901461 | 2025-03-14T00:44:48.428287

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705941047.522-w-waf01tjgt

5277 / tcp

103159425 | 2025-02-23T09:50:38.321598

SSH-1.99-RGOS_SSH

5351 / tcp

-1399940268 | 2025-03-12T15:59:09.451726

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5432 / tcp

-1013082686 | 2025-02-25T02:18:15.402879

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

5435 / tcp

-274082663 | 2025-03-21T11:48:33.859946

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

5446 / tcp

321971019 | 2025-02-25T18:07:38.436934

-ERR client ip is not in whitelist\r

5494 / tcp

380146262 | 2025-03-21T22:49:59.660731

@RSYNCD: 30.0

5556 / tcp

-1746074029 | 2025-03-11T18:23:40.618150

101 imqbroker =unV\r\n

5557 / tcp

1911457608 | 2025-02-26T01:15:45.201889

\x00[\x00\x00\x00\x00\x00\x00

5567 / tcp

-1329831334 | 2025-03-04T11:42:57.923020

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

5591 / tcp

819727972 | 2025-03-22T05:49:01.810595

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

5599 / tcp

1370263973 | 2025-03-25T04:32:55.164736

dubbo>

5600 / tcp

-1373613804 | 2025-03-10T11:44:12.999744

00970795:d7:smethod,6:shello,8:soptions,80:d10:shttp_port,368696:i1082,5:sname,5:sL_x,10:ssync_port,5:i00469,10:stimestamp,3190459:f920.7251553166,8:sversion,6262522:sl4X,

5613 / tcp

1911457608 | 2025-03-11T04:16:23.540189

\x00[\x00\x00\x00\x00\x00\x00

5640 / tcp

819727972 | 2025-02-26T20:21:51.061817

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5650 / tcp

1189133115 | 2025-03-13T05:18:49.592432

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

5660 / tcp

-1399940268 | 2025-02-28T08:17:31.866152

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5672 / tcp

575925250 | 2025-03-10T07:10:35.266247

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

5680 / tcp

-1986594217 | 2025-03-22T10:45:08.020607

"AP0F1D85"\r\nConnection: close\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR

5905 / tcp

-1399940268 | 2025-03-15T00:10:43.330544

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5907 / tcp

-2089734047 | 2025-03-10T01:33:29.876675

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5919 / tcp

-122096153 | 2025-03-12T20:57:33.043309

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

5938 / tcp

1911457608 | 2025-03-20T00:15:34.504283

\x00[\x00\x00\x00\x00\x00\x00

5984 / tcp

1999272906 | 2025-03-15T18:44:13.652900

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

5986 / tcp

-801484042 | 2025-03-22T01:35:39.035713

ERR 27

5988 / tcp

971933601 | 2025-03-13T13:51:45.993378

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

5992 / tcp

1911457608 | 2025-02-26T04:11:36.476590

\x00[\x00\x00\x00\x00\x00\x00

5999 / tcp

117101543 | 2025-03-20T09:34:53.851358

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

6000 / tcp

1726594447 | 2025-03-23T02:38:46.129183

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

6001 / tcp

819727972 | 2025-02-23T17:41:04.614379

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

6002 / tcp

-180163620 | 2025-03-09T11:32:19.969005

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

6003 / tcp

-784071826 | 2025-02-28T21:02:00.723017

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

6050 / tcp

819727972 | 2025-03-14T20:20:38.580821

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

6331 / tcp

-1487943323 | 2025-02-25T16:35:19.150706

431 Unable to negotiate secure command connection.\r\n

6379 / tcp

321971019 | 2025-02-25T21:54:15.368226

-ERR client ip is not in whitelist\r

6433 / tcp

-2096652808 | 2025-03-06T02:08:00.100933

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

6482 / tcp

-1399940268 | 2025-03-05T07:35:25.529045

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6512 / tcp

-2089734047 | 2025-03-04T07:29:20.531423

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

6601 / tcp

-1399940268 | 2025-03-17T19:29:08.292973

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6603 / tcp

819727972 | 2025-03-25T02:30:38.901013

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

6622 / tcp

1911457608 | 2025-03-19T17:34:09.443478

\x00[\x00\x00\x00\x00\x00\x00

6633 / tcp

819727972 | 2025-03-13T20:24:18.039450

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

6653 / tcp

-2096652808 | 2025-03-18T21:52:32.720963

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

6666 / tcp

4935895 | 2025-03-11T06:54:36.990224

HTTP/1.1 400 Bad Request
Server: CloudWAF

6667 / tcp

2032042134 | 2025-03-17T21:52:31.422845

[¥	¾

6668 / tcp

937756010 | 2025-03-13T20:22:50.744931

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

6697 / tcp

819727972 | 2025-03-16T15:58:19.869719

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

6748 / tcp

-2017887953 | 2025-03-14T02:14:20.917407

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

6775 / tcp

-1099385124 | 2025-03-15T21:15:04.332683

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

7000 / tcp

321971019 | 2025-02-25T00:33:26.902714

-ERR client ip is not in whitelist\r

7001 / tcp

1749359477 | 2025-03-20T05:19:36.901206

HTTP/1.1 403 Forbidden
Content-Type: text/html
Connection: keep-alive
NO_SERVICE: 1

7003 / tcp

819727972 | 2025-02-25T18:01:18.218845

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

7014 / tcp

1911457608 | 2025-03-22T09:11:29.874090

\x00[\x00\x00\x00\x00\x00\x00

7016 / tcp

-375604792 | 2025-03-22T14:29:06.414309

220 Microsoft FTP Service

7025 / tcp

-1399940268 | 2025-02-26T15:14:30.993999

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7050 / tcp

1948301213 | 2025-03-17T17:53:09.596398

RFB 003.003
VNC:
  Protocol Version: 3.3

7057 / tcp

819727972 | 2025-02-23T11:58:36.221903

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

7071 / tcp

2087396567 | 2025-03-17T19:33:29.420617

kjnkjabhbanc283ubcsbhdc72

7085 / tcp

-1399940268 | 2025-02-25T00:22:41.305522

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7090 / tcp

1911457608 | 2025-03-21T08:52:49.131495

\x00[\x00\x00\x00\x00\x00\x00

7102 / tcp

-2031152423 | 2025-02-26T08:58:36.657100

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

7171 / tcp

-653033013 | 2025-03-08T18:11:28.654057

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

7218 / tcp

-1681927087 | 2025-03-12T12:20:17.362645

kjnkjabhbanc283ubcsbhdc72

7325 / tcp

819727972 | 2025-02-28T20:52:57.805328

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

7401 / tcp

-1737707071 | 2025-03-25T00:31:17.034880

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

7415 / tcp

921225407 | 2025-03-06T21:17:00.061562

\x00\x00\x00\x04\x00\x00\x00\x00\x00

7434 / tcp

-2081419599 | 2025-03-04T00:34:48.824270

@
03d

7443 / tcp

-512831750 | 2025-03-23T22:54:41.423176

HTTP/1.1 403 Forbidden
Server: openresty
Content-Type: text/html
Connection: keep-alive
via: CHN-GDdongguan-GLOBAL1-CACHE105[2]
X-CCDN-ERRCODE-SRC: 01
X-CCDN-FORBID-CODE: 040001

7444 / tcp

2143387245 | 2025-03-20T18:30:41.589158

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

7480 / tcp

-1947777893 | 2025-03-10T04:10:52.030011

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

7548 / tcp

546151771 | 2025-03-04T08:01:42.493778

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

7777 / tcp

1391945995 | 2025-03-15T09:51:30.378006

HTTP/1.1 403 Forbidden 
Content-Type: text/plain; charset=utf-8
Proxy-Authenticate: Basic realm=""

7790 / tcp

1911457608 | 2025-02-27T09:52:42.007038

\x00[\x00\x00\x00\x00\x00\x00

7799 / tcp

1623746877 | 2025-03-18T14:33:27.248574

500 Permission denied - closing connection.\r\n

7900 / tcp

-1059554316 | 2025-03-13T10:56:07.768602

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

7980 / tcp

820958131 | 2025-03-05T00:22:33.910022

kjnkjabhbanc283ubcsbhdc72\x02

8009 / tcp

2087396567 | 2025-02-26T23:32:04.809621

kjnkjabhbanc283ubcsbhdc72

8020 / tcp

-616720387 | 2025-03-24T04:53:22.443236

SSH-2.0-SSHD_0.7.6

8025 / tcp

820958131 | 2025-03-16T21:10:15.724074

kjnkjabhbanc283ubcsbhdc72\x02

8028 / tcp

-585940771 | 2025-02-24T12:07:28.481145

Unknown command\r\n

8036 / tcp

-801484042 | 2025-03-04T19:44:45.628679

ERR 27

8038 / tcp

1830187220 | 2025-03-01T00:24:23.245060

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

8063 / tcp

1911457608 | 2025-03-22T18:03:59.363727

\x00[\x00\x00\x00\x00\x00\x00

8065 / tcp

819727972 | 2025-03-19T20:32:18.320251

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8071 / tcp

1363464823 | 2025-02-23T15:19:37.418946

\x00[|ox\x7f\x00\x00

8081 / tcp

819727972 | 2025-03-06T18:15:48.188538

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8083 / tcp

1519486042 | 2025-03-18T09:04:07.022590

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

8084 / tcp

-2046514463 | 2025-03-05T05:06:08.152011

AB\x01\t

8087 / tcp

-1399940268 | 2025-03-18T19:51:35.927471

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8089 / tcp

539065883 | 2025-03-19T16:29:39.410901

8095 / tcp

165188539 | 2025-03-24T18:58:43.468483

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8097 / tcp

1353260875 | 2025-03-04T01:36:36.837281

\x00[g\xc2\x95N\x7f\x00\x00

8099 / tcp

-766671046 | 2025-03-09T13:39:57.268590

HTTP/1.1 403 Forbidden
Server: kngx/1.10.2
Content-Type: text/html
Connection: close
KS-Deny-Reason: 302rechange-get_uri_and_host-error
x-link-via: lesct31:8099;

8104 / tcp

-1399940268 | 2025-03-15T22:05:35.580111

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8105 / tcp

-1013082686 | 2025-03-19T05:58:15.193438

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8108 / tcp

-653033013 | 2025-03-05T13:27:27.389569

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

8110 / tcp

-653033013 | 2025-03-22T19:05:03.600714

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

8118 / tcp

-1399940268 | 2025-02-25T04:08:14.158246

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8121 / tcp

-2096652808 | 2025-03-23T05:53:06.096049

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8126 / tcp

-2107996212 | 2025-03-12T20:32:02.873949

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8134 / tcp

-1888448627 | 2025-02-24T15:48:14.743426

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8139 / tcp

819727972 | 2025-03-13T12:37:52.256968

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8140 / tcp

819727972 | 2025-03-18T08:00:13.249748

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8173 / tcp

1991883981 | 2025-03-04T14:24:07.357599

B\x00\x00\x00\xc3\xbfn\x04Too many connections

8178 / tcp

-1399940268 | 2025-03-07T14:26:21.078816

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8181 / tcp

2087396567 | 2025-03-17T03:25:13.981126

kjnkjabhbanc283ubcsbhdc72

8200 / tcp

1320285193 | 2025-03-16T19:13:18.622211

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

8203 / tcp

-1888448627 | 2025-03-14T18:14:51.327303

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8243 / tcp

-1888448627 | 2025-02-25T21:22:21.879757

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8285 / tcp

-904840257 | 2025-03-13T04:08:39.499895

572 Relay not authorized\r\n

8291 / tcp

580340387 | 2025-03-19T22:43:02.149320

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

8300 / tcp

-734440417 | 2025-03-09T12:58:34.998802

HTTP/1.1 400 Bad Request
Content-Type: text/html
Connection: close
Server: nginx/1.17.3

8317 / tcp

-1013082686 | 2025-03-19T15:37:21.948152

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8333 / tcp

134472555 | 2025-03-19T13:45:35.090851

K\x02%~)J/\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

8350 / tcp

-1795027372 | 2025-03-04T04:08:23.166666

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

8393 / tcp

-345718689 | 2025-03-11T18:51:08.657290

Vty password is not set.

8402 / tcp

-271515508 | 2025-03-17T17:18:44.495146

HTTP/1.1 302 Moved Temporarily
Server: DrcomServer1.0
Location: http://192.168.254.3
Cache-Control: no-cache
Connection: close

8404 / tcp

1543809371 | 2025-02-24T01:29:32.804207

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

8413 / tcp

740837454 | 2025-03-14T19:25:36.782618

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

8415 / tcp

-136006866 | 2025-02-25T20:00:38.981105

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

8421 / tcp

-2096652808 | 2025-03-04T09:05:32.084395

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8430 / tcp

-358801646 | 2025-03-18T06:44:55.703100

SSH-2.0-OpenSSH_6.6.1

8444 / tcp

-1839934832 | 2025-03-06T20:08:22.172736

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8448 / tcp

1911457608 | 2025-02-27T08:34:34.750666

\x00[\x00\x00\x00\x00\x00\x00

8459 / tcp

165188539 | 2025-03-15T00:14:17.347105

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8460 / tcp

-1399940268 | 2025-03-20T00:18:00.494170

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8461 / tcp

1911457608 | 2025-03-07T17:35:11.105903

\x00[\x00\x00\x00\x00\x00\x00

8480 / tcp

-358801646 | 2025-03-19T17:05:40.244182

SSH-2.0-OpenSSH_6.6.1

8481 / tcp

-2046514463 | 2025-03-24T14:07:23.264532

AB\x01\t

8485 / tcp

-1399940268 | 2025-03-23T09:53:36.445175

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8488 / tcp

1623746877 | 2025-03-14T19:10:08.453945

500 Permission denied - closing connection.\r\n

8494 / tcp

50497985 | 2025-03-21T07:10:48.211438

\x00[\xc3\x88\xc3\x9dS\x7f\x00\x00

8500 / tcp

410249975 | 2025-03-23T08:57:00.730296

LNS READY<>

8510 / tcp

-1327660293 | 2025-03-03T21:02:32.659548

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

8528 / tcp

740837454 | 2025-02-24T21:48:09.379985

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

8531 / tcp

1911457608 | 2025-03-17T12:47:18.600277

\x00[\x00\x00\x00\x00\x00\x00

8533 / tcp

1911457608 | 2025-03-19T22:43:38.639604

\x00[\x00\x00\x00\x00\x00\x00

8536 / tcp

671605376 | 2025-03-13T13:11:29.723643

SSH-2.0-OpenSSH_X.X

8545 / tcp

-454087041 | 2025-03-24T16:41:49.889274

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

8554 / tcp

-1969169410 | 2025-03-25T06:47:21.567297

ÿû
-> GET / HTTP/1.0
GET / HTTP/1.0
undefined symbol: GET
-> 
->

8557 / tcp

-616720387 | 2025-03-18T22:48:25.480153

SSH-2.0-SSHD_0.7.6

8558 / tcp

-616720387 | 2025-03-06T17:01:39.002630

SSH-2.0-SSHD_0.7.6

8567 / tcp

-2107996212 | 2025-03-06T09:40:51.717375

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8575 / tcp

-1148066627 | 2025-02-24T11:48:50.826724

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

8576 / tcp

321971019 | 2025-03-08T15:55:28.709225

-ERR client ip is not in whitelist\r

8577 / tcp

-1487943323 | 2025-03-11T19:52:51.715449

431 Unable to negotiate secure command connection.\r\n

8601 / tcp

-1059554316 | 2025-03-13T03:32:08.331305

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

8622 / tcp

971933601 | 2025-03-15T10:55:23.034520

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

8630 / tcp

819727972 | 2025-03-21T17:28:25.179105

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8640 / tcp

-1105333987 | 2025-03-21T01:58:16.807506

\x00[KpU\x7f\x00\x00

8703 / tcp

921225407 | 2025-03-24T12:47:05.403171

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8723 / tcp

-802143704 | 2025-03-13T22:50:40.756804

HTTP/1.0 500 Internal Server Error
D
Connection: close

Command server error

8728 / tcp

117101543 | 2025-03-20T04:16:05.281199

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

8764 / tcp

-1399940268 | 2025-02-28T00:12:07.864694

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8787 / tcp

-1399940268 | 2025-02-25T20:07:12.601349

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8789 / tcp

1911457608 | 2025-03-14T07:19:23.669778

\x00[\x00\x00\x00\x00\x00\x00

8791 / tcp

1308377066 | 2025-03-21T21:49:17.753647

ncacn_http/1.0

8801 / tcp

-1810987450 | 2025-03-23T05:13:41.737650

\xc3\xbf

8812 / tcp

1911457608 | 2025-03-12T08:21:28.969089

\x00[\x00\x00\x00\x00\x00\x00

8833 / tcp

-1888448627 | 2025-03-04T09:26:38.382771

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8834 / tcp

366084633 | 2025-03-15T22:38:52.160473

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

8838 / tcp

-1399940268 | 2025-03-18T01:38:01.531687

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8841 / tcp

819727972 | 2025-03-18T19:13:59.680921

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8843 / tcp

819727972 | 2025-03-19T08:15:02.054659

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8846 / tcp

-2089734047 | 2025-02-28T19:24:26.271408

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8848 / tcp

921225407 | 2025-03-17T04:11:59.120215

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8850 / tcp

2063598737 | 2025-03-07T15:18:55.928420

/0 0 L\r\n/0 0 HUH\r\n

8851 / tcp

-1399940268 | 2025-03-10T06:36:03.495648

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8856 / tcp

-288825733 | 2025-03-05T02:04:34.095223

HTTP/1.1 200 OK
Connection: close
Content-Length: 2619
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: authorization,Content-Type
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, HEAD, DELETE
Content-Type: text/html
Server: Jetty(9.4.14.v20181114)
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1

8861 / tcp

307999478 | 2025-03-24T04:47:32.861382

unknown command \r\nunknown command \r\n

8871 / tcp

819727972 | 2025-03-06T12:50:33.828910

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8883 / tcp

1911457608 | 2025-03-14T18:51:32.394302

\x00[\x00\x00\x00\x00\x00\x00

8886 / tcp

1991883981 | 2025-03-05T21:28:21.797554

B\x00\x00\x00\xc3\xbfn\x04Too many connections

8889 / tcp

-441419608 | 2025-03-10T17:56:05.347398

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

8905 / tcp

1830187220 | 2025-03-13T13:00:10.610174

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

8916 / tcp

-1399940268 | 2025-03-19T22:09:07.116416

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8988 / tcp

-1279886438 | 2025-03-10T15:12:00.981252

GET / HTTP/1.0 : USERID : UNIX : TKUXZmP\r\n : USERID : UNIX : Cr8\r\n

8999 / tcp

-1399940268 | 2025-03-14T10:05:34.794845

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9000 / tcp

1966849516 | 2025-03-21T02:09:36.865981

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65adecfe_CS-000-01NFs233_3728-19750

9001 / tcp

-1026951088 | 2025-03-13T10:15:39.545942

erro ip

9007 / tcp

401555314 | 2025-03-15T12:46:16.711911

NB[GFXjA^R

9021 / tcp

-1139539254 | 2025-03-12T17:43:21.198875

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

9026 / tcp

-2089734047 | 2025-02-23T14:54:43.827777

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9030 / tcp

-1730858130 | 2025-02-24T02:55:50.818796

RFB 003.008
VNC:
  Protocol Version: 3.8

9031 / tcp

-1795027372 | 2025-03-16T10:29:17.008359

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

9042 / tcp

1492413928 | 2025-03-21T19:10:30.403049

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 13 1

9046 / tcp

-1399940268 | 2025-02-25T03:20:08.360347

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9051 / tcp

-641479109 | 2025-03-11T05:20:52.675924

[xU-

9055 / tcp

1282941221 | 2025-02-27T22:27:45.026748

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

9058 / tcp

-1399940268 | 2025-03-18T19:27:38.330203

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9059 / tcp

-1399940268 | 2025-02-25T01:26:03.208894

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9060 / tcp

1911457608 | 2025-03-06T17:18:01.842914

\x00[\x00\x00\x00\x00\x00\x00

9068 / tcp

1911457608 | 2025-03-05T05:17:56.599698

\x00[\x00\x00\x00\x00\x00\x00

9070 / tcp

165188539 | 2025-03-08T18:29:29.600484

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9072 / tcp

707919486 | 2025-02-25T17:29:43.632079

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

9083 / tcp

-2031152423 | 2025-03-17T21:11:08.042093

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

9091 / tcp

1082732927 | 2025-03-23T04:08:08.034736

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

9092 / tcp

-904840257 | 2025-03-03T19:27:26.797923

572 Relay not authorized\r\n

9095 / tcp

819727972 | 2025-03-23T22:07:07.583751

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9100 / tcp

-1059554316 | 2025-03-04T19:28:51.878246

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

9105 / tcp

-136006866 | 2025-03-11T18:14:25.091125

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

9107 / tcp

-136006866 | 2025-03-24T20:07:47.543913

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

9114 / tcp

1911457608 | 2025-03-13T02:10:22.894141

\x00[\x00\x00\x00\x00\x00\x00

9121 / tcp

165188539 | 2025-03-06T20:04:53.932209

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9122 / tcp

-1888448627 | 2025-03-20T10:16:33.675651

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9125 / tcp

1911457608 | 2025-02-26T20:08:32.386218

\x00[\x00\x00\x00\x00\x00\x00

9126 / tcp

-1399940268 | 2025-03-19T23:30:14.245244

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9129 / tcp

1989907056 | 2025-03-21T17:29:40.783942

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

9130 / tcp

1948301213 | 2025-03-07T05:10:26.055475

RFB 003.003
VNC:
  Protocol Version: 3.3

9137 / tcp

1282941221 | 2025-03-05T12:55:57.580083

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

9142 / tcp

632542934 | 2025-02-28T06:49:54.554357

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

9146 / tcp

165188539 | 2025-03-20T21:31:08.163993

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9147 / tcp

632542934 | 2025-03-17T14:03:19.962232

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

9148 / tcp

165188539 | 2025-03-19T00:36:28.718238

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9151 / tcp

1690634669 | 2025-03-12T17:57:34.396530

9152 / tcp

-1730858130 | 2025-03-09T11:41:08.963313

RFB 003.008
VNC:
  Protocol Version: 3.8

9154 / tcp

-1399940268 | 2025-03-23T13:19:16.788679

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9157 / tcp

819727972 | 2025-03-10T04:01:06.804875

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9158 / tcp

-1036370807 | 2025-03-15T17:11:27.954904

JDWP-Handshake

9159 / tcp

1208318993 | 2025-03-07T02:29:04.403029

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

9182 / tcp

-2089734047 | 2025-03-04T19:33:13.962915

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9200 / tcp

-1163346640 | 2025-03-21T07:23:47.036710

Hashes

hash

-997913363

http.dom_hash

-2006505642

http.html_hash

-1163346640

HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
content-length: 215

9207 / tcp

-2096652808 | 2025-03-10T19:03:29.513971

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9208 / tcp

820958131 | 2025-02-28T01:49:18.243810

kjnkjabhbanc283ubcsbhdc72\x02

9209 / tcp

-1996280214 | 2025-03-03T19:09:45.997476

\x06\x04\x05@

9212 / tcp

-1996280214 | 2025-03-20T15:34:25.285226

\x06\x04\x05@

9213 / tcp

-1839934832 | 2025-03-16T20:47:20.144033

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

9221 / tcp

897328069 | 2025-03-24T18:58:54.150862

220 mail.scott000.com ESMTP

9222 / tcp

-2046514463 | 2025-03-10T02:09:29.843973

AB\x01\t

9226 / tcp

-1329831334 | 2025-03-15T10:07:34.225353

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

9243 / tcp

-1399940268 | 2025-02-28T16:52:52.183903

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9248 / tcp

-1399940268 | 2025-03-05T16:57:50.521644

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9249 / tcp

-1626979812 | 2025-02-24T14:14:11.196495

220 Service ready for new user.

9251 / tcp

-1730858130 | 2025-03-18T00:23:00.168856

RFB 003.008
VNC:
  Protocol Version: 3.8

9256 / tcp

-1399940268 | 2025-02-27T01:56:16.112747

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9283 / tcp

1624217396 | 2025-02-25T22:36:38.938716

HELO:10.3.6.0.false\nAS:2048\nHL:19

9303 / tcp

937756010 | 2025-03-25T00:58:58.721527

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9306 / tcp

-1598265216 | 2025-03-04T10:17:07.974117

@RSYNCD: 31.0

9309 / tcp

1519486042 | 2025-03-19T21:32:25.367334

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

9313 / tcp

1212285915 | 2025-03-07T01:07:57.302045

\x00K\x00\x00\x02\x00\x00\x00%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

9333 / tcp

-1559123399 | 2025-03-15T23:10:51.945245

500 Permission denied - closing connection.

9398 / tcp

401555314 | 2025-03-23T01:05:31.904975

NB[GFXjA^R

9418 / tcp

1909672637 | 2025-03-10T23:42:45.164795

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Sec-Websocket-Version: 13
X-Content-Type-Options: nosniff

9445 / tcp

-1327660293 | 2025-03-11T08:46:43.908935

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

9447 / tcp

1911457608 | 2025-03-16T10:00:11.594351

\x00[\x00\x00\x00\x00\x00\x00

9456 / tcp

398077695 | 2025-03-05T03:24:50.562254

9530 / tcp

-1375131644 | 2025-03-22T09:05:00.990559

\x00[v\xc3\xbdC\x7f\x00\x00

9600 / tcp

1975288991 | 2025-03-24T19:38:22.891783

OPTI

9633 / tcp

-319440554 | 2025-03-17T19:31:58.965748

9743 / tcp

-1399940268 | 2025-03-16T13:38:02.438051

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9754 / tcp

1308377066 | 2025-02-23T15:44:02.134227

ncacn_http/1.0

9758 / tcp

-1399940268 | 2025-03-10T22:22:31.839728

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9761 / tcp

-1746074029 | 2025-03-14T05:44:15.292577

101 imqbroker =unV\r\n

9861 / tcp

1911457608 | 2025-02-28T21:35:55.885686

\x00[\x00\x00\x00\x00\x00\x00

9876 / tcp

2070013657 | 2025-03-09T12:49:05.828597

\\x00\\x00\\x01+\\x00\\x00\\x00_{"code":0,"flag":1,"language":"JAVA","opaque":0,"serializeTypeCurrentRPC":"JSON","version":433}{"brokerAddrTable":{"broker-a":{"brokerAddrs":{0:"127.63.135.245:10911"},"brokerName":"broker-a","cluster":"DefaultCluster","enableActingMaster":false}},"clusterAddrTable":{"DefaultCluster":["broker-a"]}}

9885 / tcp

-1399940268 | 2025-03-19T05:12:57.094616

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9898 / tcp

1304012963 | 2025-03-20T08:25:20.820557

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: close

9918 / tcp

-1036370807 | 2025-03-17T15:28:31.641110

JDWP-Handshake

9943 / tcp

751610770 | 2025-03-21T22:41:00.293287

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2938_PS-000-01Mba83_19552-63826

9944 / tcp

-1139539254 | 2025-03-18T06:44:27.117206

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

9955 / tcp

1763259671 | 2025-03-07T01:14:41.926094

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

9966 / tcp

-146605374 | 2025-02-24T05:53:07.932164

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

9990 / tcp

-1730858130 | 2025-03-22T04:50:30.871121

RFB 003.008
VNC:
  Protocol Version: 3.8

9998 / tcp

-696402907 | 2025-03-05T15:07:52.271615

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae298c_PS-HIA-01Q7y203_55153-4321

9999 / tcp

1161309183 | 2025-03-22T23:25:57.314843

ProxyServer is ready

10001 / tcp

1492413928 | 2025-03-07T11:57:14.129376

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

10002 / tcp

165188539 | 2025-03-17T18:17:55.383220

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

10003 / tcp

1282941221 | 2025-03-21T22:55:35.743936

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

10008 / tcp

-407828767 | 2025-02-27T00:30:38.474575

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

10010 / tcp

1615193817 | 2025-03-08T16:55:19.306446

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

10013 / tcp

1911457608 | 2025-03-14T18:47:08.099138

\x00[\x00\x00\x00\x00\x00\x00

10019 / tcp

-146605374 | 2025-03-11T20:33:50.555319

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

10020 / tcp

1911457608 | 2025-02-25T22:46:01.813848

\x00[\x00\x00\x00\x00\x00\x00

10029 / tcp

819727972 | 2025-03-20T04:15:52.859355

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

10032 / tcp

165188539 | 2025-03-04T18:45:21.871595

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

10039 / tcp

-2017887953 | 2025-03-24T06:36:17.522706

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

10051 / tcp

104385780 | 2025-03-14T16:37:09.170292

ceph v2

10052 / tcp

1126993057 | 2025-02-25T20:44:18.284165

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

10071 / tcp

-345718689 | 2025-03-09T11:19:06.466801

Vty password is not set.

10075 / tcp

401555314 | 2025-03-23T14:03:57.133735

NB[GFXjA^R

10082 / tcp

1683672699 | 2025-03-24T19:55:53.088494

\\x00[\'b\\xc0\\xa8X\\xfd

10083 / tcp

-1032713145 | 2025-03-09T17:30:12.200662

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

10089 / tcp

-1453516345 | 2025-03-13T09:26:28.718547

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

10134 / tcp

455076604 | 2025-03-05T18:20:02.335060

!\x07version\x04bind7 t{RPowerDNS Recursor 410

10200 / tcp

-1013082686 | 2025-03-12T01:16:02.778378

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

10250 / tcp

-1999117212 | 2025-03-23T14:00:09.046974

10254 / tcp

1504401647 | 2025-03-16T13:40:45.968894

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

10283 / tcp

-1888448627 | 2025-03-17T02:52:17.977595

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

10390 / tcp

-375604792 | 2025-03-13T18:26:30.484207

220 Microsoft FTP Service

10443 / tcp

-358801646 | 2025-03-18T23:28:12.662328

SSH-2.0-OpenSSH_6.6.1

10444 / tcp

15018106 | 2025-03-20T23:19:56.810584

\x00\x19\x02\x00\x02\x00\x07\x00Protocol version mismatch\x00

10480 / tcp

921225407 | 2025-03-19T00:12:22.747715

\x00\x00\x00\x04\x00\x00\x00\x00\x00

10554 / tcp

-1900404274 | 2025-03-22T20:20:17.811050

Unknown command

10909 / tcp

1574088840 | 2025-03-11T05:52:47.996285

">Application and Content Networking Software 3.9</a>)\n</BODY><

10911 / tcp

1134517380 | 2025-03-15T04:23:33.769883

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

10935 / tcp

1911457608 | 2025-03-13T10:20:34.510805

\x00[\x00\x00\x00\x00\x00\x00

11000 / tcp

1830187220 | 2025-03-22T11:55:21.326741

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

11002 / tcp

669849225 | 2025-03-18T06:21:42.634481

SSH-98.60-SysaxSSH_81885..42\r\n

11075 / tcp

-339084706 | 2025-03-08T12:20:24.148885

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

11101 / tcp

-142686627 | 2025-03-18T16:52:25.775513

\x00[\xc2\xba\x7fs\x7f\x00\x00

11112 / tcp

1911457608 | 2025-03-24T10:58:17.777755

\x00[\x00\x00\x00\x00\x00\x00

11210 / tcp

1911457608 | 2025-03-23T10:19:26.611428

\x00[\x00\x00\x00\x00\x00\x00

11288 / tcp

-1729629024 | 2025-03-14T07:29:51.993436

101 imqbroker =unV

11601 / tcp

-1329831334 | 2025-03-07T09:16:50.142469

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

11681 / tcp

-2089734047 | 2025-03-21T01:57:39.782291

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

11920 / tcp

-1477838366 | 2025-03-18T16:23:14.393909

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

12000 / tcp

-1368104760 | 2025-02-28T11:58:01.811522

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1d31_PS-TNA-01mQW36_7416-41955

12056 / tcp

-1453516345 | 2025-03-23T14:27:49.238966

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

12101 / tcp

1632932802 | 2025-03-14T14:55:02.186057

12116 / tcp

819727972 | 2025-02-23T15:40:07.815985

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12125 / tcp

-2080784861 | 2025-03-17T17:22:09.087569

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

12129 / tcp

165188539 | 2025-03-23T20:03:34.933303

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12133 / tcp

1519486042 | 2025-03-19T15:21:30.802628

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

12139 / tcp

-1888448627 | 2025-03-11T11:59:37.012383

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12144 / tcp

1975288991 | 2025-03-23T01:26:10.920691

OPTI

12147 / tcp

1911457608 | 2025-03-24T11:27:44.482012

\x00[\x00\x00\x00\x00\x00\x00

12160 / tcp

1282941221 | 2025-03-13T23:15:46.751373

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12163 / tcp

165188539 | 2025-03-20T18:28:54.677345

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12167 / tcp

-1399940268 | 2025-03-07T18:01:04.522130

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12172 / tcp

321971019 | 2025-03-23T14:24:14.122810

-ERR client ip is not in whitelist\r

12177 / tcp

632542934 | 2025-03-09T19:10:24.480725

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12181 / tcp

-1327660293 | 2025-03-15T21:38:59.530308

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

12184 / tcp

-2096652808 | 2025-02-23T17:57:14.514859

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12186 / tcp

632542934 | 2025-03-04T06:18:16.415227

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12192 / tcp

-358801646 | 2025-03-17T10:56:47.008369

SSH-2.0-OpenSSH_6.6.1

12196 / tcp

1308377066 | 2025-02-27T18:46:50.076846

ncacn_http/1.0

12202 / tcp

1911457608 | 2025-02-23T17:16:38.453004

\x00[\x00\x00\x00\x00\x00\x00

12206 / tcp

1911457608 | 2025-03-15T12:08:57.602485

\x00[\x00\x00\x00\x00\x00\x00

12217 / tcp

819727972 | 2025-03-17T16:29:29.228511

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12219 / tcp

1308377066 | 2025-03-14T11:12:10.309240

ncacn_http/1.0

12220 / tcp

-585940771 | 2025-03-15T20:31:15.377242

Unknown command\r\n

12225 / tcp

819727972 | 2025-03-16T20:43:22.741397

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12229 / tcp

819727972 | 2025-03-13T01:51:22.146390

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12232 / tcp

-1399940268 | 2025-02-24T05:27:41.402971

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12235 / tcp

165188539 | 2025-03-05T17:15:03.470753

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12237 / tcp

-1733645023 | 2025-03-10T21:37:01.031767

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

12238 / tcp

307999478 | 2025-03-08T19:42:33.664083

unknown command \r\nunknown command \r\n

12241 / tcp

307999478 | 2025-03-19T02:54:29.015818

unknown command \r\nunknown command \r\n

12253 / tcp

1911457608 | 2025-03-24T06:48:34.431926

\x00[\x00\x00\x00\x00\x00\x00

12257 / tcp

1623746877 | 2025-03-12T22:14:33.179714

500 Permission denied - closing connection.\r\n

12258 / tcp

1911457608 | 2025-03-10T12:27:36.842420

\x00[\x00\x00\x00\x00\x00\x00

12260 / tcp

1282941221 | 2025-03-20T22:00:01.950139

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12263 / tcp

-2089734047 | 2025-03-12T10:36:51.616066

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12266 / tcp

-1737707071 | 2025-03-07T14:17:12.897988

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

12278 / tcp

1615193817 | 2025-03-08T16:14:34.510068

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

12283 / tcp

1282941221 | 2025-03-16T08:32:51.328745

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12292 / tcp

-1730858130 | 2025-03-22T10:48:29.383076

RFB 003.008
VNC:
  Protocol Version: 3.8

12294 / tcp

1723769361 | 2025-03-15T19:49:10.490635

ELM Enterprise Manager _l\r\nCopyright \xc2\xa9 18668511-928641920 TNT Software, Inc.\r\n

12295 / tcp

1911457608 | 2025-03-10T21:48:46.235441

\x00[\x00\x00\x00\x00\x00\x00

12298 / tcp

-1327660293 | 2025-03-23T06:41:38.008444

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

12309 / tcp

1911457608 | 2025-03-05T08:48:23.806932

\x00[\x00\x00\x00\x00\x00\x00

12312 / tcp

-122096153 | 2025-03-24T11:55:34.602864

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

12314 / tcp

-122096153 | 2025-03-05T13:55:38.843312

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

12330 / tcp

-1399940268 | 2025-03-20T06:19:17.135437

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12341 / tcp

-1059554316 | 2025-02-25T04:15:24.929482

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

12343 / tcp

-1399940268 | 2025-03-13T20:59:06.122217

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12345 / tcp

296364507 | 2025-03-24T09:54:47.205273

HTTP/1.1 500 Internal Server Error
SERVER: Trend Chip UPnP/1.0 DMS
CONNECTION: close
CONTENT-LENGTH: 60
CONTENT-TYPE: text/html

12352 / tcp

-1730858130 | 2025-03-15T20:42:38.899157

RFB 003.008
VNC:
  Protocol Version: 3.8

12353 / tcp

-1399940268 | 2025-03-21T03:36:21.542026

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12367 / tcp

671605376 | 2025-03-20T16:16:18.917327

SSH-2.0-OpenSSH_X.X

12373 / tcp

-904840257 | 2025-03-12T14:28:40.301377

572 Relay not authorized\r\n

12377 / tcp

1396488228 | 2025-03-23T11:33:10.977006

HTTP/1.1 200 OK
Content-Length: 2037
Cache-Control: private, max-age=300
Content-Type: text/html

12378 / tcp

-1140468363 | 2025-03-20T05:17:20.409416

\x02\t\x01

12379 / tcp

1363464823 | 2025-03-18T17:36:32.805618

\x00[|ox\x7f\x00\x00

12380 / tcp

819727972 | 2025-02-27T00:05:13.870877

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12383 / tcp

-653033013 | 2025-03-19T22:59:46.807631

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

12384 / tcp

-1611764932 | 2025-03-05T07:15:12.404238

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

12389 / tcp

321971019 | 2025-03-06T22:19:54.086676

-ERR client ip is not in whitelist\r

12390 / tcp

-358801646 | 2025-03-09T14:25:06.062511

SSH-2.0-OpenSSH_6.6.1

12397 / tcp

819727972 | 2025-03-17T02:23:56.147744

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12405 / tcp

2098371729 | 2025-02-27T15:21:01.742286

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

12407 / tcp

408230060 | 2025-03-15T20:33:17.884381

\r\nSorry, that nickname format is invalid.\r\n

12416 / tcp

-980525298 | 2025-03-16T21:03:22.389409

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12422 / tcp

-1045760528 | 2025-03-16T20:04:01.732147

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

12425 / tcp

-891714208 | 2025-03-24T05:41:28.959228

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

12430 / tcp

-1327660293 | 2025-03-22T14:15:09.059909

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

12431 / tcp

1911457608 | 2025-03-04T00:10:16.790284

\x00[\x00\x00\x00\x00\x00\x00

12432 / tcp

740837454 | 2025-03-23T11:06:15.740919

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

12449 / tcp

1726594447 | 2025-03-20T04:59:03.806139

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

12452 / tcp

632542934 | 2025-03-06T23:32:33.313984

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12462 / tcp

-1839934832 | 2025-03-24T05:36:10.109621

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12464 / tcp

-1399940268 | 2025-03-20T00:43:44.883707

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12468 / tcp

1911457608 | 2025-02-24T17:00:55.451735

\x00[\x00\x00\x00\x00\x00\x00

12471 / tcp

1911457608 | 2025-02-28T00:01:22.510119

\x00[\x00\x00\x00\x00\x00\x00

12472 / tcp

632542934 | 2025-03-18T06:55:36.784403

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12473 / tcp

632542934 | 2025-03-18T01:54:47.796609

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12478 / tcp

819727972 | 2025-03-22T07:04:33.375980

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12487 / tcp

897328069 | 2025-03-23T15:59:59.162275

220 mail.scott000.com ESMTP

12489 / tcp

-1399940268 | 2025-02-25T07:42:45.858487

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12493 / tcp

165188539 | 2025-03-21T02:20:02.559448

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12499 / tcp

-358801646 | 2025-03-15T18:36:05.726461

SSH-2.0-OpenSSH_6.6.1

12502 / tcp

-1399940268 | 2025-03-25T02:54:31.562323

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12504 / tcp

-1399940268 | 2025-03-19T22:25:49.360178

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12509 / tcp

-1399940268 | 2025-03-06T01:16:06.130711

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12510 / tcp

-1746074029 | 2025-02-27T03:33:59.741717

101 imqbroker =unV\r\n

12512 / tcp

1620329124 | 2025-03-17T22:11:56.513440

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\x01\xc3\xbf\xc3\xbb\x03\xc3\xbf\xc3\xbd\x01\xc3\xbf\xc3\xbe\x01Username:

12518 / tcp

410249975 | 2025-03-19T11:08:37.561432

LNS READY<>

12519 / tcp

-2089734047 | 2025-03-13T16:54:34.929224

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12523 / tcp

-1036370807 | 2025-03-24T05:39:14.571466

JDWP-Handshake

12527 / tcp

707919486 | 2025-03-04T19:05:04.866855

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

12529 / tcp

-1598265216 | 2025-03-23T04:37:24.874539

@RSYNCD: 31.0

12532 / tcp

-1036370807 | 2025-02-28T05:01:33.431783

JDWP-Handshake

12547 / tcp

-2089734047 | 2025-03-16T10:56:39.935722

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12548 / tcp

-1399940268 | 2025-03-23T19:37:15.588990

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12567 / tcp

-1399940268 | 2025-03-20T23:17:21.541968

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12571 / tcp

-1248408558 | 2025-03-17T16:19:07.001145

220 MikroTik FTP server (MikroTik 6.44.3) ready

12574 / tcp

-303199180 | 2025-03-12T15:11:35.324645

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

12584 / tcp

-1399940268 | 2025-03-14T23:01:21.338947

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12585 / tcp

1911457608 | 2025-02-23T11:31:31.329232

\x00[\x00\x00\x00\x00\x00\x00

13128 / tcp

165188539 | 2025-03-05T11:08:43.745075

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

13380 / tcp

1208318993 | 2025-03-17T03:04:24.496589

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

14147 / tcp

669849225 | 2025-03-18T05:05:51.364206

SSH-98.60-SysaxSSH_81885..42\r\n

14344 / tcp

-1327660293 | 2025-03-22T14:39:09.235279

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

14403 / tcp

-1746074029 | 2025-03-16T22:35:22.394615

101 imqbroker =unV\r\n

14406 / tcp

1911457608 | 2025-03-10T21:17:19.421769

\x00[\x00\x00\x00\x00\x00\x00

14880 / tcp

-441419608 | 2025-03-06T02:48:42.765384

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

15123 / tcp

-1399940268 | 2025-03-11T12:07:03.494170

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

15443 / tcp

233634112 | 2025-03-14T05:44:28.007278

SSH-98.60-SysaxSSH_81885..42

15502 / tcp

-1026951088 | 2025-03-05T11:35:34.953982

erro ip

16002 / tcp

165188539 | 2025-03-22T14:33:38.234547

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

16011 / tcp

-832380282 | 2025-03-15T15:23:51.923785

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).\n

16012 / tcp

-147424911 | 2025-03-17T18:34:36.794244

HTTP/1.1 404 Not Found
Content Length: 0

16015 / tcp

165188539 | 2025-03-07T13:14:01.184498

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

16018 / tcp

847046034 | 2025-02-27T14:50:57.568953

HTTP/1.1 401 Unauthorized
Server: Apache
Connection: close
Content-Type: text/html; charset=iso-8859-1

16024 / tcp

1911457608 | 2025-02-25T15:43:30.898691

\x00[\x00\x00\x00\x00\x00\x00

16029 / tcp

937756010 | 2025-03-11T18:52:13.497211

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

16031 / tcp

632542934 | 2025-03-17T23:51:52.713843

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

16037 / tcp

-980525298 | 2025-03-07T01:11:40.993606

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

16038 / tcp

707919486 | 2025-03-23T21:13:24.067571

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

16041 / tcp

-1399940268 | 2025-03-04T14:24:23.004011

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16053 / tcp

321971019 | 2025-02-26T00:12:04.941292

-ERR client ip is not in whitelist\r

16058 / tcp

321971019 | 2025-02-23T12:31:52.956103

-ERR client ip is not in whitelist\r

16062 / tcp

504717326 | 2025-03-19T21:45:27.425470

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 6 1

16063 / tcp

1911457608 | 2025-03-15T05:47:28.471557

\x00[\x00\x00\x00\x00\x00\x00

16081 / tcp

-1839934832 | 2025-03-12T08:01:22.314785

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

16086 / tcp

103159425 | 2025-02-26T22:28:18.487248

SSH-1.99-RGOS_SSH

16095 / tcp

117101543 | 2025-03-14T00:04:37.978140

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

16103 / tcp

-1476017887 | 2025-03-24T05:52:19.863546

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

16104 / tcp

-1839934832 | 2025-03-22T04:19:23.804234

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

16311 / tcp

-2089734047 | 2025-02-26T07:05:30.865902

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

16403 / tcp

165188539 | 2025-03-23T23:50:31.049189

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

16443 / tcp

-1327660293 | 2025-03-20T09:34:52.417035

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

16831 / tcp

-2017887953 | 2025-03-12T13:32:49.265155

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 9 1

16888 / tcp

819727972 | 2025-03-22T16:16:15.051840

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

16993 / tcp

819727972 | 2025-03-03T20:14:01.745106

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

17084 / tcp

-1399940268 | 2025-03-22T11:58:02.569201

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

17100 / tcp

-1399940268 | 2025-03-17T19:03:44.057234

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

17443 / tcp

-1399940268 | 2025-02-25T08:55:45.891119

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

17770 / tcp

-1737707071 | 2025-03-15T13:25:42.287930

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

17780 / tcp

-2089734047 | 2025-02-28T23:31:50.674243

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

18002 / tcp

1989907056 | 2025-02-24T20:04:13.406068

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

18003 / tcp

1989907056 | 2025-03-19T19:47:25.179038

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

18012 / tcp

-1399940268 | 2025-03-17T09:46:54.843810

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18014 / tcp

-2033111675 | 2025-03-12T22:36:22.329375

~djb

18019 / tcp

-1399940268 | 2025-03-22T14:00:18.226892

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18022 / tcp

165188539 | 2025-02-25T23:04:11.003020

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

18032 / tcp

-1730858130 | 2025-03-16T20:33:42.310751

RFB 003.008
VNC:
  Protocol Version: 3.8

18039 / tcp

-1746074029 | 2025-02-26T23:17:28.425806

101 imqbroker =unV\r\n

18046 / tcp

1911457608 | 2025-03-17T21:51:01.497010

\x00[\x00\x00\x00\x00\x00\x00

18050 / tcp

-2096652808 | 2025-03-24T19:57:36.717009

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

18061 / tcp

-2096652808 | 2025-02-27T05:21:45.051834

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

18063 / tcp

410249975 | 2025-03-22T21:20:46.023102

LNS READY<>

18065 / tcp

165188539 | 2025-03-14T23:24:58.463860

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

18066 / tcp

-1996280214 | 2025-03-19T14:34:29.980213

\x06\x04\x05@

18068 / tcp

165188539 | 2025-03-16T00:53:55.163599

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

18072 / tcp

1911457608 | 2025-02-26T07:09:17.250973

\x00[\x00\x00\x00\x00\x00\x00

18080 / tcp

897328069 | 2025-03-17T16:47:32.174121

220 mail.scott000.com ESMTP

18081 / tcp

401555314 | 2025-03-17T07:24:13.399204

NB[GFXjA^R

18092 / tcp

1665283070 | 2025-03-18T11:02:31.868117

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x01\x00\x00\x10\x00\x00\n0\x03\x00\x00\x00\x01\x00\x05\x00\x00@\x00\x00\x06\x00\x00\x1f@

18097 / tcp

320677201 | 2025-03-12T17:12:33.447913

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

18098 / tcp

1541211644 | 2025-02-23T19:06:27.922657

[\xc2\xba\x7fs\x7f

18104 / tcp

-585940771 | 2025-03-22T16:45:29.836016

Unknown command\r\n

18110 / tcp

-1626979812 | 2025-03-10T22:28:08.189794

220 Service ready for new user.

18182 / tcp

504717326 | 2025-03-21T09:17:09.942941

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 6 1

18245 / tcp

1690634669 | 2025-03-21T19:37:49.539251

18443 / tcp

-1399940268 | 2025-03-17T03:24:34.721070

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18553 / tcp

745343730 | 2025-03-14T12:55:37.884146

220 smtp.qq.com Esmtp QQ Mail Server

18765 / tcp

-980525298 | 2025-02-26T07:52:50.310211

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

19000 / tcp

1911457608 | 2025-03-04T06:34:19.232322

\x00[\x00\x00\x00\x00\x00\x00

19015 / tcp

1911457608 | 2025-03-22T04:11:42.343927

\x00[\x00\x00\x00\x00\x00\x00

19016 / tcp

-1888448627 | 2025-03-04T09:36:01.275661

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

19090 / tcp

-1810987450 | 2025-02-28T04:27:46.037713

\xc3\xbf

19222 / tcp

1830187220 | 2025-03-05T00:23:50.009381

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

19233 / tcp

819727972 | 2025-03-16T14:44:49.110672

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

19930 / tcp

89282912 | 2025-03-14T10:53:53.380688

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto
col:SOAP, MKSDisplayProtocol:VNC , ,

20000 / tcp

1900503736 | 2025-03-18T23:18:47.243906

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

20100 / tcp

-1189269828 | 2025-03-14T19:49:06.950539

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

20106 / tcp

1911457608 | 2025-02-25T06:26:05.741237

\x00[\x00\x00\x00\x00\x00\x00

20150 / tcp

1911457608 | 2025-03-13T07:27:56.549885

\x00[\x00\x00\x00\x00\x00\x00

20151 / tcp

-2031152423 | 2025-03-07T15:55:50.498429

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

20202 / tcp

677934968 | 2025-02-27T10:00:35.787106

lm^)Q

20256 / tcp

-1441741890 | 2025-03-24T23:52:03.533260

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2
0181212])

20443 / tcp

1911457608 | 2025-03-08T19:13:13.546485

\x00[\x00\x00\x00\x00\x00\x00

20500 / tcp

819727972 | 2025-03-12T16:49:00.644670

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

20547 / tcp

401555314 | 2025-03-24T01:13:28.923139

NB[GFXjA^R

20600 / tcp

-1399940268 | 2025-03-22T19:50:19.043914

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

20880 / tcp

1370263973 | 2025-03-16T05:16:22.880775

dubbo>

20900 / tcp

599074451 | 2025-03-10T18:27:55.993160

msg

21025 / tcp

1741579575 | 2025-03-25T07:32:23.751477

21231 / tcp

-457235091 | 2025-02-25T07:26:46.343057

audio 0 RTP/AVP 18 4 3 8 0 101\r\na

21242 / tcp

-2089734047 | 2025-03-11T07:16:43.744080

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

21257 / tcp

1308377066 | 2025-03-16T21:50:17.017386

ncacn_http/1.0

21266 / tcp

1911457608 | 2025-03-11T00:24:32.831442

\x00[\x00\x00\x00\x00\x00\x00

21268 / tcp

-1986594217 | 2025-02-24T10:33:18.704813

"AP0F1D85"\r\nConnection: close\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR

21269 / tcp

580340387 | 2025-02-24T16:51:51.510951

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

21281 / tcp

1492413928 | 2025-03-05T06:56:14.123398

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

21284 / tcp

1504401647 | 2025-02-26T06:51:10.033890

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

21287 / tcp

-358801646 | 2025-03-21T17:11:34.847267

SSH-2.0-OpenSSH_6.6.1

21311 / tcp

-1032713145 | 2025-03-14T21:12:14.679262

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

21313 / tcp

1761482307 | 2025-03-21T08:09:44.819663

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

21318 / tcp

-2096652808 | 2025-03-05T21:26:51.059387

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

21319 / tcp

819727972 | 2025-03-14T16:04:55.380058

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

21321 / tcp

-1399940268 | 2025-03-21T10:57:07.437397

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21323 / tcp

-1032713145 | 2025-03-20T17:29:31.564855

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

21325 / tcp

-146605374 | 2025-02-24T03:39:36.358516

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

21379 / tcp

632542934 | 2025-03-21T12:29:35.002083

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

21500 / tcp

-1626979812 | 2025-03-10T10:30:25.532637

220 Service ready for new user.

21935 / tcp

-1019343788 | 2025-02-28T19:03:50.156603

W!\x00\x00\x00\x00

22022 / tcp

-1327660293 | 2025-03-05T21:58:36.418840

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

22069 / tcp

104385780 | 2025-03-25T02:17:27.350757

ceph v2

22103 / tcp

-2089734047 | 2025-02-27T22:35:51.688257

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

22206 / tcp

1763259671 | 2025-03-22T10:49:36.720328

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

22345 / tcp

408230060 | 2025-03-14T09:52:40.105571

\r\nSorry, that nickname format is invalid.\r\n

22556 / tcp

-1598265216 | 2025-03-18T04:33:56.066101

@RSYNCD: 31.0

22705 / tcp

165188539 | 2025-02-26T17:38:07.549818

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

23184 / tcp

321971019 | 2025-03-12T20:21:34.733705

-ERR client ip is not in whitelist\r

24245 / tcp

291723434 | 2025-03-14T15:06:18.154069

Lantronix MSS100 Version V118/523(045538937)

Type HELP at the 'Local_61349> ' prompt for assistance.



Username>

25008 / tcp

-1230049476 | 2025-03-19T10:46:38.254862

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

25084 / tcp

-1399940268 | 2025-03-16T23:41:40.537088

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

25105 / tcp

-2081419599 | 2025-03-22T21:04:22.703178

@
03d

25565 / tcp

-1888448627 | 2025-03-12T03:53:35.319214

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

25782 / tcp

-1730858130 | 2025-03-09T11:14:41.371455

RFB 003.008
VNC:
  Protocol Version: 3.8

25952 / tcp

-339084706 | 2025-03-12T07:29:23.993848

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

26656 / tcp

2087396567 | 2025-03-13T07:02:16.736412

kjnkjabhbanc283ubcsbhdc72

26657 / tcp

2087396567 | 2025-03-12T04:08:09.812756

kjnkjabhbanc283ubcsbhdc72

27015 / tcp

-1516219311 | 2025-03-18T22:01:15.222728

Command: None
Size: 67502080
ID: 0
Type: 327680

27017 / tcp

1763259671 | 2025-03-23T02:29:25.738890

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

28001 / tcp

1911457608 | 2025-03-19T03:22:09.510081

\x00[\x00\x00\x00\x00\x00\x00

28015 / tcp

1989907056 | 2025-03-05T08:46:00.451053

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

28017 / tcp

-319440554 | 2025-03-24T16:04:23.803745

28443 / tcp

1911457608 | 2025-03-11T07:54:23.123844

\x00[\x00\x00\x00\x00\x00\x00

29842 / tcp

-1399940268 | 2025-03-17T07:06:17.499968

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30017 / tcp

-1013082686 | 2025-03-12T17:42:52.243630

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

30022 / tcp

-1248408558 | 2025-03-18T22:02:36.445159

220 MikroTik FTP server (MikroTik 6.44.3) ready

30023 / tcp

1830187220 | 2025-03-22T12:14:54.630638

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

30025 / tcp

-1327660293 | 2025-03-11T07:52:28.698452

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

30029 / tcp

-1230049476 | 2025-02-25T23:16:07.917064

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

30104 / tcp

819727972 | 2025-03-20T23:00:56.861523

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

30122 / tcp

-1375131644 | 2025-03-19T20:50:44.236740

\x00[v\xc3\xbdC\x7f\x00\x00

30222 / tcp

1308377066 | 2025-03-09T07:57:39.116660

ncacn_http/1.0

30303 / tcp

472902042 | 2025-03-19T22:31:20.373614

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

30322 / tcp

539065883 | 2025-03-24T14:25:09.789277

30422 / tcp

1208318993 | 2025-03-13T12:19:27.508037

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

30473 / tcp

-1399940268 | 2025-03-07T09:24:30.692368

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30522 / tcp

1426971893 | 2025-03-12T14:55:13.290762

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

30622 / tcp

104385780 | 2025-03-12T11:29:22.980505

ceph v2

30700 / tcp

-2096652808 | 2025-02-28T23:18:28.776171

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

30718 / tcp

1589691163 | 2025-03-22T12:26:03.403697

LH\xdb\xc6\xdd\xf6g\x10\x19\x00\x00\x00\x18\x00\x01\x02\x00\x10\x00\x04\x00\x00\x00\x01\x8d\x96\x82(\x02\x12j\xee\xa1\xcd&e\xb7M\xd0q

30722 / tcp

1767345577 | 2025-03-25T00:28:59.118333

Hello, this is Quagga (version 0T).
Copyright 1996-200

30822 / tcp

819727972 | 2025-03-12T20:11:25.986479

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

30922 / tcp

819727972 | 2025-03-20T22:50:16.410071

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

31022 / tcp

819727972 | 2025-03-13T08:44:16.263153

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

31122 / tcp

104385780 | 2025-03-09T13:01:36.279351

ceph v2

31210 / tcp

-136006866 | 2025-03-24T18:08:12.502264

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

31222 / tcp

740837454 | 2025-03-24T02:52:59.820251

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

31322 / tcp

842535728 | 2025-03-25T05:48:18.369013

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

31337 / tcp

-147424911 | 2025-03-21T06:39:34.892194

HTTP/1.1 404 Not Found
Content Length: 0

31422 / tcp

-319440554 | 2025-03-25T04:13:05.697123

31443 / tcp

-971970408 | 2025-03-12T18:24:55.487820

31522 / tcp

1723769361 | 2025-03-23T15:16:14.924373

ELM Enterprise Manager _l\r\nCopyright \xc2\xa9 18668511-928641920 TNT Software, Inc.\r\n

31622 / tcp

-1730858130 | 2025-03-23T10:24:11.907810

RFB 003.008
VNC:
  Protocol Version: 3.8

31722 / tcp

2033888749 | 2025-03-21T16:11:19.984807

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

31822 / tcp

-1641514916 | 2025-03-20T20:27:50.418121

* OK Merak 1dFUa2 IMAP4rev1

31922 / tcp

422524323 | 2025-03-24T06:16:20.264815

{
"Version": "3.4.18",
"VersionArray": [
3,
4,
18,
0
],
"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",
"OpenSSLVersion": "",
"SysInfo": "",
"Bits": 64,
"Debug": false,
"MaxObjectSize": 16777216
}

32022 / tcp

819727972 | 2025-03-23T19:38:32.910010

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

32122 / tcp

366084633 | 2025-03-20T03:41:35.125247

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

32202 / tcp

-903067560 | 2025-03-13T09:49:30.250915

\x00[\x13)\xc2\x81\x7f\x00\x00

32222 / tcp

-68075478 | 2025-03-23T17:54:33.838268

32322 / tcp

-971970408 | 2025-03-09T18:07:20.628506

32400 / tcp

1308377066 | 2025-03-23T16:08:17.283958

ncacn_http/1.0

32422 / tcp

-971970408 | 2025-03-23T13:56:01.172351

32522 / tcp

539065883 | 2025-03-22T04:23:15.353520

32622 / tcp

2087396567 | 2025-03-21T04:06:14.532440

kjnkjabhbanc283ubcsbhdc72

32722 / tcp

1286504516 | 2025-03-23T07:08:39.304341

CP2E Control Console
Connected to Host: gZI

32764 / tcp

971933601 | 2025-03-24T11:08:08.603079

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

32822 / tcp

2087396567 | 2025-03-23T04:21:33.165549

kjnkjabhbanc283ubcsbhdc72

32922 / tcp

819727972 | 2025-03-11T02:47:01.871940

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

33022 / tcp

1690634669 | 2025-03-23T01:58:44.658327

33060 / tcp

546151771 | 2025-03-22T19:13:53.193101

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

33122 / tcp

-445721795 | 2025-03-22T22:50:50.761356

\x00[\xc3\xaed\x1a\x7f\x00\x00

33222 / tcp

-2096652808 | 2025-03-20T00:14:28.923840

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

33322 / tcp

-1477838366 | 2025-03-22T07:56:11.788350

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

33389 / tcp

-1399940268 | 2025-02-26T00:03:54.355457

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

33422 / tcp

1082732927 | 2025-03-19T17:16:00.843391

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

33522 / tcp

-358801646 | 2025-02-26T16:03:08.648546

SSH-2.0-OpenSSH_6.6.1

33622 / tcp

1741579575 | 2025-03-21T05:47:22.200619

33722 / tcp

819727972 | 2025-03-18T04:45:46.673055

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

33822 / tcp

401555314 | 2025-03-08T13:12:53.825824

NB[GFXjA^R

33922 / tcp

290819026 | 2025-03-18T02:57:34.643120

welcome to Pandora console!
----------------------------
-------------------------
|     Login Time     |     2021-12-08 1...

34022 / tcp

819727972 | 2025-03-20T17:42:46.786280

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

34122 / tcp

2087396567 | 2025-03-20T16:37:45.617390

kjnkjabhbanc283ubcsbhdc72

34222 / tcp

171352214 | 2025-03-20T03:28:43.959114

-ERR client ip is not in whitelist

34225 / tcp

-1611764932 | 2025-03-17T21:03:22.241128

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

34322 / tcp

-971970408 | 2025-03-19T19:58:31.289993

34422 / tcp

1767345577 | 2025-03-15T01:53:14.594341

Hello, this is Quagga (version 0T).
Copyright 1996-200

34822 / tcp

-905685638 | 2025-03-19T06:48:14.959797

bxz437

34922 / tcp

1741579575 | 2025-03-18T20:17:26.626829

35022 / tcp

-1036370807 | 2025-03-19T03:20:00.686855

JDWP-Handshake

35122 / tcp

539065883 | 2025-03-19T01:32:41.892544

35250 / tcp

-1399940268 | 2025-03-06T20:57:17.870528

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

35322 / tcp

1850902677 | 2025-03-17T09:07:19.688735

W!

35422 / tcp

1690634669 | 2025-03-18T23:46:17.690918

35522 / tcp

1690634669 | 2025-03-17T01:33:20.967434

35524 / tcp

-2017887953 | 2025-03-05T22:02:58.308331

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 9 1

35622 / tcp

841014058 | 2025-03-18T08:28:17.683295

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

35722 / tcp

-1375131644 | 2025-03-17T10:50:17.635840

\x00[v\xc3\xbdC\x7f\x00\x00

35922 / tcp

-971970408 | 2025-03-16T21:55:08.145439

36022 / tcp

1948301213 | 2025-03-17T21:39:32.032754

RFB 003.003
VNC:
  Protocol Version: 3.3

36322 / tcp

-971970408 | 2025-03-17T12:33:53.692422

36422 / tcp

-358801646 | 2025-03-15T09:45:49.456119

SSH-2.0-OpenSSH_6.6.1

36522 / tcp

-1428621233 | 2025-02-28T22:30:54.419236

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

36722 / tcp

2087396567 | 2025-03-17T05:27:30.443106

kjnkjabhbanc283ubcsbhdc72

36822 / tcp

-1032713145 | 2025-03-18T15:08:15.455666

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

36922 / tcp

-1760806421 | 2025-03-18T13:24:17.744787

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected

36982 / tcp

-1399940268 | 2025-02-24T22:49:35.110345

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

37022 / tcp

2087396567 | 2025-03-16T20:02:03.924309

kjnkjabhbanc283ubcsbhdc72

37080 / tcp

-1399940268 | 2025-03-20T08:36:46.407155

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

37122 / tcp

-971970408 | 2025-03-16T23:40:11.698122

37222 / tcp

1690634669 | 2025-03-14T20:05:07.013867

37322 / tcp

2087396567 | 2025-03-16T11:57:29.292092

kjnkjabhbanc283ubcsbhdc72

37522 / tcp

-971970408 | 2025-03-16T09:58:50.967692

37722 / tcp

-971970408 | 2025-03-16T00:48:09.818346

37777 / tcp

2143387245 | 2025-03-17T06:24:40.687750

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

37822 / tcp

2087396567 | 2025-03-14T02:19:40.058370

kjnkjabhbanc283ubcsbhdc72

38022 / tcp

-1648456501 | 2025-03-18T00:02:42.609332

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

38122 / tcp

1842524259 | 2025-03-15T17:54:20.839331

38222 / tcp

819727972 | 2025-03-11T18:28:32.221060

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

38322 / tcp

1620329124 | 2025-03-15T14:11:58.254566

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\x01\xc3\xbf\xc3\xbb\x03\xc3\xbf\xc3\xbd\x01\xc3\xbf\xc3\xbe\x01Username:

38522 / tcp

539065883 | 2025-03-14T00:46:34.032689

38622 / tcp

-1428621233 | 2025-03-14T10:41:07.286264

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

38722 / tcp

1741579575 | 2025-03-13T22:37:54.534792

38822 / tcp

2087396567 | 2025-03-03T21:10:11.511807

kjnkjabhbanc283ubcsbhdc72

38922 / tcp

1642597142 | 2025-03-13T15:38:22.347236

\x00y\xc3\x90\x02\xc3\xbf\xc3\xbf\x00s\x12L\x00\x06\x11I\x00\x08\x00N\x11S\x00\xc3\x93

39022 / tcp

819727972 | 2025-03-13T22:23:22.124861

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

39222 / tcp

-2096652808 | 2025-03-13T17:33:56.205642

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

39322 / tcp

819727972 | 2025-03-11T11:36:04.921414

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

39422 / tcp

-1230049476 | 2025-03-11T13:19:42.841371

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

39522 / tcp

2087396567 | 2025-03-11T09:47:39.070822

kjnkjabhbanc283ubcsbhdc72

39722 / tcp

-1810987450 | 2025-03-05T04:48:26.770694

\xc3\xbf

39922 / tcp

-1114821551 | 2025-02-26T17:48:46.376535

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

40070 / tcp

-1399940268 | 2025-02-26T02:00:25.715405

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

40222 / tcp

-445721795 | 2025-03-04T11:15:19.076135

\x00[\xc3\xaed\x1a\x7f\x00\x00

40322 / tcp

-1032713145 | 2025-03-08T21:45:39.236973

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

40522 / tcp

-1461540015 | 2025-03-04T08:09:39.022276

audio 0 RTP/AVP 18 4 3 8 0 101
a

40622 / tcp

2087396567 | 2025-02-26T12:37:30.350892

kjnkjabhbanc283ubcsbhdc72

40722 / tcp

842535728 | 2025-03-08T14:55:05.199215

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

41122 / tcp

-1045760528 | 2025-02-27T15:34:00.510687

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

41443 / tcp

1975288991 | 2025-03-14T03:51:59.709076

OPTI

41522 / tcp

1278527606 | 2025-03-04T21:53:24.563621

SSH-2.0-Teleport

41794 / tcp

-971970408 | 2025-03-23T21:24:15.964827

41800 / tcp

819727972 | 2025-03-16T20:54:10.979468

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

41822 / tcp

1492413928 | 2025-03-07T18:28:05.915616

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

41922 / tcp

-1529979118 | 2025-03-07T18:09:49.805559

inv2W

42122 / tcp

2087396567 | 2025-03-05T03:04:59.046697

kjnkjabhbanc283ubcsbhdc72

42208 / tcp

1911457608 | 2025-03-15T17:10:30.553675

\x00[\x00\x00\x00\x00\x00\x00

42422 / tcp

-1032713145 | 2025-03-04T20:02:27.043950

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

42443 / tcp

819727972 | 2025-03-04T20:57:02.659377

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

42901 / tcp

-1888448627 | 2025-03-15T22:30:58.699738

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

43322 / tcp

863754335 | 2025-02-27T22:24:07.328521

0a

43522 / tcp

1690634669 | 2025-02-27T20:13:20.994360

43622 / tcp

-1114821551 | 2025-02-27T00:37:23.171966

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

43722 / tcp

539065883 | 2025-02-27T04:04:28.203897

43922 / tcp

-2096652808 | 2025-02-26T19:29:25.872448

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

44022 / tcp

-2081419599 | 2025-02-26T21:13:36.363872

@
03d

44322 / tcp

-971970408 | 2025-02-26T11:04:08.167429

44337 / tcp

819727972 | 2025-03-20T07:36:38.632785

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

44341 / tcp

1919228981 | 2025-03-14T17:06:02.606647

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

44350 / tcp

-1730858130 | 2025-03-22T01:13:32.959976

RFB 003.008
VNC:
  Protocol Version: 3.8

44422 / tcp

1690634669 | 2025-02-26T10:04:55.497344

44520 / tcp

-747911285 | 2025-03-08T19:30:27.493713

\xc2\xaa

44522 / tcp

819727972 | 2025-02-26T08:29:32.343291

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

44818 / tcp

2087396567 | 2025-03-24T20:56:17.678501

kjnkjabhbanc283ubcsbhdc72

44922 / tcp

2087396567 | 2025-02-26T04:05:40.723731

kjnkjabhbanc283ubcsbhdc72

45006 / tcp

-1097188123 | 2025-03-12T05:45:56.096871

[g\xc2\x95N\x7f

45039 / tcp

1996932384 | 2025-03-18T22:40:50.560663

"raop" nonce

45122 / tcp

2087396567 | 2025-02-25T13:17:41.093715

kjnkjabhbanc283ubcsbhdc72

45222 / tcp

-1839934832 | 2025-02-25T19:47:12.257794

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

45622 / tcp

-971970408 | 2025-02-25T15:33:10.785060

45666 / tcp

921225407 | 2025-03-08T11:18:49.198161

\x00\x00\x00\x04\x00\x00\x00\x00\x00

45821 / tcp

2063598737 | 2025-03-14T01:34:35.575836

/0 0 L\r\n/0 0 HUH\r\n

45822 / tcp

2087396567 | 2025-03-10T14:53:31.498900

kjnkjabhbanc283ubcsbhdc72

45922 / tcp

2087396567 | 2025-03-10T14:45:39.349367

kjnkjabhbanc283ubcsbhdc72

46022 / tcp

-1428621233 | 2025-02-25T08:06:59.982973

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

46122 / tcp

-1810987450 | 2025-02-24T13:01:41.696612

\xc3\xbf

46222 / tcp

-971970408 | 2025-02-24T23:27:32.301536

46422 / tcp

-971970408 | 2025-02-24T09:35:28.358361

46922 / tcp

819727972 | 2025-02-24T00:55:27.900457

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

47001 / tcp

-1399940268 | 2025-02-23T19:30:32.821099

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

47122 / tcp

1842524259 | 2025-02-23T23:15:20.529518

47222 / tcp

-746114901 | 2025-02-23T21:26:11.545405

[KpU

47322 / tcp

1542849631 | 2025-02-25T06:15:48.471518

* OK [CAPABILITY a2,M\] nBwXk2pPP IMAP4rev1 20qx at

47422 / tcp

-1013082686 | 2025-02-25T01:10:45.152852

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

47522 / tcp

-321444299 | 2025-02-25T10:19:21.067934

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

47534 / tcp

1911457608 | 2025-03-09T17:27:51.201638

\x00[\x00\x00\x00\x00\x00\x00

47722 / tcp

1778988322 | 2025-03-10T11:18:12.554369

* OK GroupWise IMAP4rev1 Server Ready

47808 / tcp

2087396567 | 2025-03-24T04:31:08.719200

kjnkjabhbanc283ubcsbhdc72

47822 / tcp

-358801646 | 2025-03-10T10:21:07.382812

SSH-2.0-OpenSSH_6.6.1

47922 / tcp

1690634669 | 2025-03-10T07:50:30.154570

48000 / tcp

-2089734047 | 2025-03-10T21:01:06.433314

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

48001 / tcp

819727972 | 2025-03-15T11:17:08.488310

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

48002 / tcp

1911457608 | 2025-03-04T11:00:29.302710

\x00[\x00\x00\x00\x00\x00\x00

48012 / tcp

819727972 | 2025-02-28T07:37:03.777828

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

48018 / tcp

819727972 | 2025-03-07T15:53:00.087013

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

48022 / tcp

2087396567 | 2025-03-07T11:50:50.802485

kjnkjabhbanc283ubcsbhdc72

48222 / tcp

104385780 | 2025-03-10T04:49:38.530658

ceph v2

48322 / tcp

-2081419599 | 2025-03-10T03:29:05.927343

@
03d

48622 / tcp

-321444299 | 2025-02-24T19:53:17.445861

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

48722 / tcp

-1839934832 | 2025-02-23T11:01:44.122548

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

48822 / tcp

1842524259 | 2025-02-24T18:32:07.865224

48888 / tcp

-2089734047 | 2025-03-18T13:21:39.133835

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

48899 / tcp

1741579575 | 2025-03-22T06:08:51.817623

48922 / tcp

819727972 | 2025-02-24T14:41:30.379485

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

49080 / tcp

819727972 | 2025-03-17T22:18:41.378117

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

49152 / tcp

-726970723 | 2025-03-20T07:46:11.107292

HTTP/1.1 500 Internal Server Error
CONTENT-LENGTH: 411
CONTENT-TYPE: text/xml; charset="utf-8"
DATE: Mon, 22 Jan 2024 16:46:55 GMT
EXT:
SERVER: Linux/3.18.20, UPnP/1.0, Portable SDK for UPnP devices/1.6.18
X-User-Agent: redsonic

<s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/">
<s:Body>
<s:Fault>
<faultcode>s:Client</faultcode>
<faultstring>UPnPError</faultstring>
<detail>
<UPnPError xmlns="urn:schemas-upnp-org:control-1-0">

49153 / tcp

2087396567 | 2025-03-22T14:06:32.403034

kjnkjabhbanc283ubcsbhdc72

49688 / tcp

-1399940268 | 2025-03-21T02:31:29.260993

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

49690 / tcp

-1399940268 | 2025-03-24T16:41:24.681466

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

49694 / tcp

-1399940268 | 2025-03-04T15:58:54.263188

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

50000 / tcp

2087396567 | 2025-03-18T07:20:51.327930

kjnkjabhbanc283ubcsbhdc72

50011 / tcp

1308377066 | 2025-02-24T22:11:13.931503

ncacn_http/1.0

50014 / tcp

-1399940268 | 2025-03-19T05:53:46.972395

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

50070 / tcp

-2080784861 | 2025-03-22T00:55:54.302365

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

50100 / tcp

1919228981 | 2025-03-20T06:29:53.787133

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

50105 / tcp

-2089734047 | 2025-03-07T16:41:42.710636

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

51003 / tcp

-2033111675 | 2025-02-25T22:18:47.881629

~djb

51004 / tcp

1911457608 | 2025-03-07T12:37:19.490294

\x00[\x00\x00\x00\x00\x00\x00

51007 / tcp

1189133115 | 2025-02-25T18:13:49.325541

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

51106 / tcp

422524323 | 2025-03-20T10:52:58.495765

{
"Version": "3.4.18",
"VersionArray": [
3,
4,
18,
0
],
"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",
"OpenSSLVersion": "",
"SysInfo": "",
"Bits": 64,
"Debug": false,
"MaxObjectSize": 16777216
}

51235 / tcp

-2080784861 | 2025-03-22T12:57:13.380207

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

51434 / tcp

-1230049476 | 2025-03-14T23:39:19.473455

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

51443 / tcp

-616720387 | 2025-03-12T01:09:58.627607

SSH-2.0-SSHD_0.7.6

52010 / tcp

819727972 | 2025-03-22T19:15:51.170036

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

52022 / tcp

-971970408 | 2025-03-07T01:27:06.467639

52230 / tcp

-303199180 | 2025-03-23T19:06:50.511095

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

52340 / tcp

-2089734047 | 2025-03-06T10:45:18.542330

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

52881 / tcp

-1329831334 | 2025-03-17T09:53:06.424522

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

52931 / tcp

-1453516345 | 2025-03-06T18:44:07.967947

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

54022 / tcp

1011407350 | 2025-03-20T14:07:24.069492

* OK GroupWise IMAP4rev1 Server Ready\r\n

54138 / tcp

2087396567 | 2025-03-21T09:28:33.441768

kjnkjabhbanc283ubcsbhdc72

54327 / tcp

-1399940268 | 2025-03-13T20:03:51.264976

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

54545 / tcp

-345718689 | 2025-02-23T22:12:05.295527

Vty password is not set.

54857 / tcp

-1399940268 | 2025-03-06T03:15:31.070404

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

54984 / tcp

2087396567 | 2025-03-21T07:36:40.119552

kjnkjabhbanc283ubcsbhdc72

55000 / tcp

1989907056 | 2025-03-17T23:28:53.082066

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

55081 / tcp

-2089734047 | 2025-03-13T20:46:35.731206

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

55222 / tcp

897328069 | 2025-03-07T02:49:15.389724

220 mail.scott000.com ESMTP

55422 / tcp

-142686627 | 2025-03-06T18:29:32.943773

\x00[\xc2\xba\x7fs\x7f\x00\x00

55443 / tcp

819727972 | 2025-03-23T01:14:09.024653

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

55490 / tcp

921225407 | 2025-03-14T00:46:21.128797

\x00\x00\x00\x04\x00\x00\x00\x00\x00

55553 / tcp

2087396567 | 2025-03-13T08:19:03.802216

kjnkjabhbanc283ubcsbhdc72

55554 / tcp

819727972 | 2025-03-14T15:32:59.872856

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

57522 / tcp

-971970408 | 2025-03-06T13:33:52.325347

57622 / tcp

740837454 | 2025-03-06T11:42:35.996103

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

57722 / tcp

1919228981 | 2025-03-06T09:31:06.292154

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

57780 / tcp

632542934 | 2025-03-22T22:20:36.124500

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

57786 / tcp

-122096153 | 2025-03-24T03:43:12.471304

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

57787 / tcp

321971019 | 2025-03-07T00:29:53.456639

-ERR client ip is not in whitelist\r

57822 / tcp

-1626979812 | 2025-03-06T06:44:29.927179

220 Service ready for new user.

57922 / tcp

539065883 | 2025-03-06T05:02:41.523254

58122 / tcp

1690634669 | 2025-03-06T03:44:30.993299

58222 / tcp

2087396567 | 2025-03-06T01:34:33.659817

kjnkjabhbanc283ubcsbhdc72

58322 / tcp

1282941221 | 2025-03-05T23:46:53.295781

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

58378 / tcp

1370263973 | 2025-03-24T12:50:09.019239

dubbo>

58422 / tcp

819727972 | 2025-03-05T22:31:11.785988

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

58522 / tcp

-2096652808 | 2025-03-05T20:21:52.938358

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

58722 / tcp

-971970408 | 2025-03-05T18:55:51.177017

58822 / tcp

1690634669 | 2025-03-05T17:18:52.613584

58922 / tcp

-971970408 | 2025-03-05T15:11:08.672195

59012 / tcp

-1399940268 | 2025-03-09T17:23:00.351149

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

59022 / tcp

-407828767 | 2025-03-05T13:29:15.136178

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

59122 / tcp

-1810987450 | 2025-03-05T11:49:04.380412

\xc3\xbf

59222 / tcp

-154107716 | 2025-03-05T10:02:15.050214

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST ...

59322 / tcp

1919228981 | 2025-03-05T08:16:48.829424

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

60129 / tcp

-321444299 | 2025-03-20T05:28:16.102383

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

61613 / tcp

921225407 | 2025-03-06T09:25:13.377022

\x00\x00\x00\x04\x00\x00\x00\x00\x00

61616 / tcp

-68075478 | 2025-03-19T21:39:08.320882

61617 / tcp

117101543 | 2025-03-12T14:04:47.202112

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

62078 / tcp

-575085326 | 2025-03-20T12:34:52.226904

\x00\x00\x01)

62080 / tcp

1911457608 | 2025-03-17T12:51:19.922404

\x00[\x00\x00\x00\x00\x00\x00

63256 / tcp

-1327660293 | 2025-03-09T12:25:19.134500

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

63260 / tcp

321971019 | 2025-03-13T16:21:39.480970

-ERR client ip is not in whitelist\r

63676 / tcp

819727972 | 2025-03-21T09:14:26.480478

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

64295 / tcp

-358801646 | 2025-03-23T19:13:35.379825

SSH-2.0-OpenSSH_6.6.1

64738 / tcp

-893477759 | 2025-03-15T05:34:40.986331

!versionbind7 t{RPowerDNS Recursor 410

120.25.115.20

Last Seen: 2025-03-25

Tags:

GeneralInformation

OpenPorts

2 / tcp 1911457608 | 2025-03-16T06:00:57.598364

13 / tcp -341265581 | 2025-03-21T10:29:02.838575

15 / tcp 1545917845 | 2025-03-22T19:13:25.604671

21 / tcp -1776144952 | 2025-03-16T20:37:53.115414

23 / tcp -994973958 | 2025-03-20T12:13:01.063917

26 / tcp 819727972 | 2025-03-18T23:35:17.504119

37 / tcp 387930190 | 2025-03-21T06:54:18.273475

38 / tcp -1399940268 | 2025-03-21T21:31:46.255061

43 / tcp 2087396567 | 2025-03-06T00:10:53.397563

49 / tcp -359657882 | 2025-03-21T16:06:09.225404

51 / tcp 819727972 | 2025-03-14T06:32:54.043872

53 / tcp 1369632081 | 2025-03-20T00:58:06.315002

79 / tcp -2029556872 | 2025-03-19T18:51:53.245953

85 / tcp -1013082686 | 2025-03-14T17:46:38.157426

89 / tcp -1399940268 | 2025-03-12T15:43:43.905136

100 / tcp 1574088840 | 2025-03-19T00:54:40.002281

102 / tcp -1399940268 | 2025-03-11T21:15:43.663656

104 / tcp -2089734047 | 2025-03-20T23:32:49.493139

110 / tcp 1911457608 | 2025-03-19T14:49:42.409307

111 / tcp 2087396567 | 2025-03-21T04:49:10.640200

113 / tcp -414819019 | 2025-03-23T12:47:10.335791

122 / tcp -1899074860 | 2025-03-23T00:04:59.200396

123 / udp 116063318 | 2025-03-11T05:21:24.947258

135 / tcp 1141948216 | 2025-03-07T16:38:10.808961

143 / tcp 639175818 | 2025-02-24T06:20:36.997027

175 / tcp 1282941221 | 2025-03-06T10:21:34.521000

179 / tcp -399606100 | 2025-03-25T01:15:50.540622

189 / tcp -1399940268 | 2025-03-14T22:48:57.480433

221 / tcp 165188539 | 2025-03-12T06:02:14.470973

222 / tcp -142852466 | 2025-03-17T00:35:14.325829

243 / tcp -1399940268 | 2025-03-19T08:13:40.842048

311 / tcp 749429829 | 2025-03-19T05:58:34.070389

389 / tcp -1743283776 | 2025-03-18T13:49:37.267928

427 / tcp -525136240 | 2025-03-18T04:15:43.948342

443 / tcp 187705409 | 2025-03-16T13:34:04.152925

444 / tcp -971970408 | 2025-02-25T08:26:50.415966

446 / tcp 740837454 | 2025-03-11T04:44:07.956014

452 / tcp 722711397 | 2025-03-19T20:40:00.284149

465 / tcp 897328069 | 2025-03-14T10:02:05.916962

502 / tcp -784071826 | 2025-03-19T08:06:03.287446

513 / tcp -1261090339 | 2025-03-17T22:49:08.830270

515 / tcp -1392039491 | 2025-03-24T07:42:02.165068

548 / tcp 862587784 | 2025-03-22T09:13:34.976157

555 / tcp 1332894250 | 2025-03-17T07:02:31.899463

556 / tcp 1363464823 | 2025-03-21T15:45:00.949869

587 / tcp -721592220 | 2025-03-25T06:28:39.790568

593 / tcp 1308377066 | 2025-03-17T02:26:16.001734

666 / tcp 2098053533 | 2025-03-06T03:59:01.452797

685 / tcp -1737707071 | 2025-03-12T09:10:31.734377

771 / tcp 1282941221 | 2025-03-16T00:25:14.690984

785 / tcp -1148066627 | 2025-03-06T02:53:24.965411

789 / tcp -1399940268 | 2025-03-06T08:44:01.547935

800 / tcp 222016983 | 2025-03-07T17:08:45.975096

811 / tcp 1911457608 | 2025-03-24T09:41:59.569969

873 / tcp -976882525 | 2025-03-14T14:10:21.355709

888 / tcp -262532376 | 2025-03-08T21:09:58.410677

902 / tcp 693973426 | 2025-03-13T04:40:13.191804

992 / tcp -936692830 | 2025-03-19T07:51:01.720649

995 / tcp -1489591880 | 2025-03-23T16:57:27.661708

1012 / tcp -358801646 | 2025-03-11T18:18:06.199322

1023 / tcp -1986594217 | 2025-03-24T03:33:34.943923

1025 / tcp -1399940268 | 2025-03-15T19:01:43.938851

1026 / tcp -2096652808 | 2025-03-20T13:58:59.072223

1099 / tcp -1399940268 | 2025-03-07T14:29:44.626391

1110 / tcp 456721301 | 2025-02-24T07:42:32.519839

1153 / tcp -1399940268 | 2025-03-20T15:14:48.469119

1177 / tcp -971970408 | 2025-03-17T18:52:35.027359

1180 / tcp -2089734047 | 2025-03-08T17:16:04.552490

1181 / tcp -2089734047 | 2025-03-15T12:27:48.932643

1200 / tcp -1099385124 | 2025-02-28T02:54:28.047361

1234 / tcp -1399940268 | 2025-03-19T18:45:48.136917

1283 / tcp 921225407 | 2025-03-06T23:12:06.252041

1337 / tcp 1842524259 | 2025-03-25T05:06:20.899745

1364 / tcp 165188539 | 2025-03-08T17:44:37.724966

1366 / tcp -1399940268 | 2025-03-20T09:28:38.916378

2 / tcp

1911457608 | 2025-03-16T06:00:57.598364

13 / tcp

-341265581 | 2025-03-21T10:29:02.838575

15 / tcp

1545917845 | 2025-03-22T19:13:25.604671

21 / tcp

-1776144952 | 2025-03-16T20:37:53.115414

23 / tcp

-994973958 | 2025-03-20T12:13:01.063917

26 / tcp

819727972 | 2025-03-18T23:35:17.504119

37 / tcp

387930190 | 2025-03-21T06:54:18.273475

38 / tcp

-1399940268 | 2025-03-21T21:31:46.255061

43 / tcp

2087396567 | 2025-03-06T00:10:53.397563

49 / tcp

-359657882 | 2025-03-21T16:06:09.225404

51 / tcp

819727972 | 2025-03-14T06:32:54.043872

53 / tcp

1369632081 | 2025-03-20T00:58:06.315002

79 / tcp

-2029556872 | 2025-03-19T18:51:53.245953

85 / tcp

-1013082686 | 2025-03-14T17:46:38.157426

89 / tcp

-1399940268 | 2025-03-12T15:43:43.905136

100 / tcp

1574088840 | 2025-03-19T00:54:40.002281

102 / tcp

-1399940268 | 2025-03-11T21:15:43.663656

104 / tcp

-2089734047 | 2025-03-20T23:32:49.493139

110 / tcp

1911457608 | 2025-03-19T14:49:42.409307

111 / tcp

2087396567 | 2025-03-21T04:49:10.640200

113 / tcp

-414819019 | 2025-03-23T12:47:10.335791

122 / tcp

-1899074860 | 2025-03-23T00:04:59.200396

123 / udp

116063318 | 2025-03-11T05:21:24.947258

135 / tcp

1141948216 | 2025-03-07T16:38:10.808961

143 / tcp

639175818 | 2025-02-24T06:20:36.997027

175 / tcp

1282941221 | 2025-03-06T10:21:34.521000

179 / tcp

-399606100 | 2025-03-25T01:15:50.540622

189 / tcp

-1399940268 | 2025-03-14T22:48:57.480433

221 / tcp

165188539 | 2025-03-12T06:02:14.470973

222 / tcp

-142852466 | 2025-03-17T00:35:14.325829

243 / tcp

-1399940268 | 2025-03-19T08:13:40.842048

311 / tcp

749429829 | 2025-03-19T05:58:34.070389

389 / tcp

-1743283776 | 2025-03-18T13:49:37.267928

427 / tcp

-525136240 | 2025-03-18T04:15:43.948342

443 / tcp

187705409 | 2025-03-16T13:34:04.152925

444 / tcp

-971970408 | 2025-02-25T08:26:50.415966

446 / tcp

740837454 | 2025-03-11T04:44:07.956014

452 / tcp

722711397 | 2025-03-19T20:40:00.284149

465 / tcp

897328069 | 2025-03-14T10:02:05.916962

502 / tcp

-784071826 | 2025-03-19T08:06:03.287446

513 / tcp

-1261090339 | 2025-03-17T22:49:08.830270

515 / tcp

-1392039491 | 2025-03-24T07:42:02.165068

548 / tcp

862587784 | 2025-03-22T09:13:34.976157

555 / tcp

1332894250 | 2025-03-17T07:02:31.899463

556 / tcp

1363464823 | 2025-03-21T15:45:00.949869

587 / tcp

-721592220 | 2025-03-25T06:28:39.790568

593 / tcp

1308377066 | 2025-03-17T02:26:16.001734

666 / tcp

2098053533 | 2025-03-06T03:59:01.452797

685 / tcp

-1737707071 | 2025-03-12T09:10:31.734377

771 / tcp

1282941221 | 2025-03-16T00:25:14.690984

785 / tcp

-1148066627 | 2025-03-06T02:53:24.965411

789 / tcp

-1399940268 | 2025-03-06T08:44:01.547935

800 / tcp

222016983 | 2025-03-07T17:08:45.975096

811 / tcp

1911457608 | 2025-03-24T09:41:59.569969

873 / tcp

-976882525 | 2025-03-14T14:10:21.355709

888 / tcp

-262532376 | 2025-03-08T21:09:58.410677

902 / tcp

693973426 | 2025-03-13T04:40:13.191804

992 / tcp

-936692830 | 2025-03-19T07:51:01.720649

995 / tcp

-1489591880 | 2025-03-23T16:57:27.661708

1012 / tcp

-358801646 | 2025-03-11T18:18:06.199322

1023 / tcp

-1986594217 | 2025-03-24T03:33:34.943923

1025 / tcp

-1399940268 | 2025-03-15T19:01:43.938851

1026 / tcp

-2096652808 | 2025-03-20T13:58:59.072223

1099 / tcp

-1399940268 | 2025-03-07T14:29:44.626391

1110 / tcp

456721301 | 2025-02-24T07:42:32.519839

1153 / tcp

-1399940268 | 2025-03-20T15:14:48.469119

1177 / tcp

-971970408 | 2025-03-17T18:52:35.027359

1180 / tcp

-2089734047 | 2025-03-08T17:16:04.552490

1181 / tcp

-2089734047 | 2025-03-15T12:27:48.932643

1200 / tcp

-1099385124 | 2025-02-28T02:54:28.047361

1234 / tcp

-1399940268 | 2025-03-19T18:45:48.136917

1283 / tcp

921225407 | 2025-03-06T23:12:06.252041

1337 / tcp

1842524259 | 2025-03-25T05:06:20.899745

1364 / tcp

165188539 | 2025-03-08T17:44:37.724966

1366 / tcp

-1399940268 | 2025-03-20T09:28:38.916378

1414 / tcp

819727972 | 2025-03-19T23:03:05.801990

1433 / tcp

49107754 | 2025-03-12T09:58:21.788601

1455 / tcp

-42767839 | 2025-02-24T03:58:19.130028

1458 / tcp

-441419608 | 2025-02-28T17:52:07.039873

1521 / tcp

-1337747449 | 2025-03-25T02:17:14.030742