GeneralInformation

Country	China
City	Shanghai
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26465

6.8A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.

2024(1)

CVE-2024-6387

8.1A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

2023(4)

CVE-2023-51767

7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

CVE-2023-51385

6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

CVE-2023-48795

5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

CVE-2023-38408

9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.

2021(2)

CVE-2021-41617

7.0sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

CVE-2021-36368

3.7An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.

2020(2)

CVE-2020-15778

7.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVE-2020-14145

5.9The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.

2019(4)

CVE-2019-16905

7.8OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.

CVE-2019-6111

5.9An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).

CVE-2019-6110

6.8In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

CVE-2019-6109

6.8An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.

2018(3)

CVE-2018-20685

5.3In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

CVE-2018-15919

5.3Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'

CVE-2018-15473

5.3OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

2017(1)

CVE-2017-15906

5.3The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.

2016(9)

CVE-2016-20012

5.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product

CVE-2016-10708

7.5sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.

CVE-2016-10012

7.8The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.

CVE-2016-10011

5.5authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

CVE-2016-10010

7.0sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.

CVE-2016-10009

7.3Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.

CVE-2016-3115

6.4Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.

CVE-2016-1908

9.8The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

CVE-2016-0777

6.5The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.

2015(4)

CVE-2015-6564

6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.

CVE-2015-6563

1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.

CVE-2015-5600

8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.

CVE-2015-5352

4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.

2014(3)

CVE-2014-2653

5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.

CVE-2014-2532

4.9sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

CVE-2014-1692

7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.

2012(1)

CVE-2012-0814

3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

2011(2)

CVE-2011-5000

3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.

CVE-2011-4327

2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

2010(3)

CVE-2010-5107

5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

CVE-2010-4755

4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.

CVE-2010-4478

7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.

2008(1)

CVE-2008-3844

9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.

2007(1)

CVE-2007-2768

4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

11 13 15 17 19 21 23 25 37 43 49 53 65 79 80 93 97 102 106 110 111 119 131 143 175 177 179 189 192 195 221 222 243 264 311 385 389 443 444 448 450 465 502 513 515 541 548 593 700 771 785 789 873 887 992 993 995 1080 1099 1119 1153 1177 1181 1188 1200 1234 1292 1337 1414 1433 1500 1521 1554 1599 1604 1660 1723 1800 1801 1883 1911 1926 1950 1956 1958 1962 1964 1973 1974 1976 1985 2000 2002 2003 2006 2008 2031 2049 2064 2066 2067 2078 2081 2087 2121 2122 2133 2154 2181 2196 2220 2222 2271 2323 2332 2345 2353 2362 2404 2433 2453 2455 2551 2563 2626 2761 2762 3001 3007 3014 3018 3022 3050 3096 3102 3103 3111 3112 3132 3145 3150 3154 3155 3179 3185 3221 3256 3260 3268 3269 3301 3306 3310 3388 3389 3390 3404 3530 3548 3551 3562 3566 3567 3572 3780 3792 3952 4000 4022 4042 4063 4100 4103 4150 4157 4159 4172 4242 4282 4300 4436 4444 4455 4499 4500 4505 4506 4734 4899 4949 4993 5001 5003 5006 5009 5010 5025 5051 5089 5119 5160 5172 5201 5222 5224 5226 5229 5234 5247 5269 5276 5321 5432 5435 5440 5454 5500 5542 5557 5558 5590 5593 5594 5600 5601 5604 5613 5671 5672 5858 5917 5938 5984 5986 6000 6001 6002 6011 6036 6464 6512 6544 6601 6602 6653 6666 6667 6668 6755 6799 7001 7007 7022 7025 7078 7084 7085 7171 7218 7434 7443 7465 7537 7548 7634 7771 7774 7790 7878 7979 7998 8001 8009 8023 8029 8038 8048 8052 8061 8078 8083 8087 8099 8111 8115 8119 8121 8122 8126 8127 8139 8140 8144 8147 8166 8174 8176 8184 8191 8200 8238 8241 8291 8318 8319 8333 8384 8412 8419 8432 8446 8500 8520 8528 8531 8533 8543 8545 8554 8575 8579 8581 8591 8594 8602 8666 8709 8728 8771 8788 8790 8801 8814 8816 8829 8830 8834 8843 8850 8851 8857 8858 8880 8882 8889 8890 8899 8905 8943 8991 9000 9001 9023 9034 9039 9042 9050 9051 9069 9071 9078 9079 9086 9091 9092 9095 9102 9108 9109 9117 9130 9134 9136 9137 9145 9147 9151 9160 9188 9205 9219 9249 9256 9280 9292 9306 9333 9353 9398 9446 9456 9505 9507 9513 9529 9530 9600 9633 9674 9710 9711 9761 9804 9908 9926 9944 9977 9998 9999 10010 10020 10030 10041 10050 10082 10086 10134 10201 10250 10324 10909 10911 11000 11007 11101 11210 11211 11288 11300 11480 12000 12088 12117 12120 12126 12133 12134 12135 12136 12148 12171 12173 12179 12181 12194 12197 12206 12223 12224 12229 12257 12269 12270 12271 12272 12281 12295 12296 12322 12345 12352 12356 12373 12378 12389 12391 12400 12416 12441 12443 12445 12446 12449 12458 12461 12468 12471 12477 12480 12482 12484 12486 12495 12496 12497 12498 12505 12522 12524 12527 12529 12530 12540 12543 12548 12563 12566 13047 13780 14265 14330 14344 14400 14403 14894 14900 14909 15006 15040 15443 16001 16005 16010 16020 16022 16032 16033 16034 16042 16044 16046 16051 16062 16065 16070 16084 16103 16400 16443 16464 16992 18002 18005 18020 18024 18041 18053 18061 18081 18109 18110 18111 18182 18245 18443 19000 19014 19016 19082 19902 20000 20150 20200 20201 20256 20325 20500 20547 20880 21025 21232 21243 21249 21264 21270 21272 21275 21288 21290 21302 21304 21305 21311 21313 21319 21321 21323 21357 21379 22082 22084 22206 22556 23023 24084 25004 25565 26656 26657 28015 28080 28818 29799 30001 30002 30003 30007 30010 30017 30022 30025 30029 30111 30122 30301 30303 30422 30443 30452 30473 30700 30894 30922 31022 31122 31222 31443 31522 31622 31722 31922 32102 32322 32444 32522 32622 32764 33022 33060 33222 33322 33389 33422 33522 33622 33922 34222 34322 34422 34522 34622 34722 34822 35000 35422 35522 35622 35722 35822 36122 36222 36322 36422 36522 36622 36822 37222 37322 37422 37522 37622 37722 37777 38222 38322 38333 38722 39222 39522 39722 39822 39922 40070 40099 40322 40522 40622 41022 41122 41222 41443 41800 42022 42422 42424 42443 42901 43222 43322 43522 43622 43822 44022 44310 44322 44334 44340 44422 44522 44622 44722 44818 45006 45022 45322 45622 45667 45668 45922 46022 46222 46322 46522 47000 47222 47422 47522 47622 47922 47990 48019 48322 48622 48722 48822 48899 49080 49122 49152 49153 49222 49422 49686 49822 49922 50000 50003 50004 50007 50009 50050 50070 50080 50100 50107 50222 50622 50722 50922 51106 51222 51235 51434 51443 52881 53200 53413 54138 54545 54857 55000 55022 55200 55222 55422 55442 55443 55553 55554 57782 57922 58122 58222 58322 58378 58522 58822 58922 59222 60000 60099 61613 62078 63210 63256 63260 64295 64477 64738 65004

11 / tcp

2087396567 | 2025-02-27T08:26:48.154594

kjnkjabhbanc283ubcsbhdc72

13 / tcp

1215890103 | 2025-03-22T18:53:18.304346

12:58:25 2024-1-22

15 / tcp

1544300041 | 2025-03-22T17:34:08.827720

SSH-25453-Cisco-3524665.35

17 / tcp

-82008689 | 2025-03-19T20:03:55.724856

"Here's the rule for bargains: "Do other men, for they would do you."
 That's the true business precept." Charles Dickens (1812-70)
\x00

19 / tcp

620044682 | 2025-03-15T04:07:16.259361

 !"#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefg\r\n!"#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefgh\r\n"#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghi\r\n#$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghij\r\n$%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijk\r\n%&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijkl\r\n&\'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghi

21 / tcp

2116898107 | 2025-03-17T10:53:35.590222

220 (vsFTPd 3.0.2)

23 / tcp

-1816600103 | 2025-03-22T13:05:43.303199

tc login:

25 / tcp

-358801646 | 2025-03-20T13:56:46.126810

SSH-2.0-OpenSSH_6.6.1

37 / tcp

-886440009 | 2025-03-06T16:11:22.088203

\\xeb\\xd1~B

43 / tcp

1741579575 | 2025-03-11T17:14:03.818471

49 / tcp

-359657882 | 2025-03-13T07:27:36.007694

GBPK\xc3\xbb\xc3\xb7n\\xc2\\x93W\xc2\xaf\\xc2\\x86\\xc2\\x93x@\xc2\xa9\\x0e\xc3\x8a*\\xc2\\x9bS

53 / tcp

-1511422614 | 2025-03-05T13:50:41.349089

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x00U\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x00\x9d\x00\x04\x8e\xfb*\xee
\x00\x06\x85\x00\x00\x01\x00\x01\x00\x00\

65 / tcp

-1045760528 | 2025-02-25T12:10:32.542719

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

79 / tcp

-2101653054 | 2025-03-21T19:11:50.799136

"Magic:ActiveMQ
Version:12
\x01<\x01ActiveMQ\x01\x01*\x11TcpNoDelayEnabled\x01\x01\x12SizePrefixDisabled\x01 CacheSize\x05\x04ProviderName \x08ActiveMQ\x11StackTraceEnabled\x01\x01\x0fPlatformDetails \x04JavaCacheEnabled\x01\x01\x14TightEncodingEnabl

80 / tcp

-1113393794 | 2025-03-05T23:16:07.242179

Hashes

hash

-1512538713

http.dom_hash

1799269922

http.html_hash

-1113393794

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Wed, 05 Mar 2025 23:16:06 GMT
Content-Type: application/xml
Content-Length: 348
Connection: keep-alive
x-oss-request-id: 67C8DB362E2F783031BBA221
x-oss-server-time: 0
x-oss-ec: 0003-00001201

93 / tcp

1911457608 | 2025-03-13T14:43:39.757113

\x00[\x00\x00\x00\x00\x00\x00

97 / tcp

1911457608 | 2025-02-25T18:15:34.101965

\x00[\x00\x00\x00\x00\x00\x00

102 / tcp

-1399940268 | 2025-03-18T10:53:03.716690

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

106 / tcp

1107492609 | 2025-03-07T02:33:47.345363

HTTP/1.1 200 OK
Server: App-webs/
Content-Type: text/html
Connection: close

110 / tcp

-1097188123 | 2025-03-17T17:56:23.700147

[g\xc2\x95N\x7f

111 / tcp

1187188851 | 2025-02-21T05:12:45.714673

Portmap
Program	Version	Protocol	Port

119 / tcp

141730637 | 2025-03-22T18:40:44.114967

HTTP/1.0 200 OK
Server: Proxy

131 / tcp

-1399940268 | 2025-03-16T11:53:28.804638

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

143 / tcp

-829824006 | 2025-03-19T21:11:48.886126

* OK Coremail System IMap Server Ready(mispb-5f781434-d784-4cb6-b7ab-91be09a0f2d6-peony.cn[ccf14d07de0680199ac3995dd82c09e7])\r\n

175 / tcp

-1327660293 | 2025-03-21T10:03:10.434837

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

177 / tcp

1975288991 | 2025-02-27T10:12:26.081831

OPTI

179 / tcp

-399606100 | 2025-03-20T20:53:30.898191

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

189 / tcp

-1399940268 | 2025-03-12T12:56:41.661231

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

192 / tcp

1911457608 | 2025-03-04T05:15:29.784392

\x00[\x00\x00\x00\x00\x00\x00

195 / tcp

-971970408 | 2025-03-17T03:54:51.276667

221 / tcp

677934968 | 2025-03-17T06:43:50.891086

lm^)Q

222 / tcp

49012578 | 2025-03-17T02:12:20.874713

HTTP/1.1 401 Unauthorized
Server: hmhttpd/1.24-20160808
Cache-Control: no-cache,no-store
Content-Type: text/html; charset=%s
Connection: close

243 / tcp

-1230049476 | 2025-03-17T17:23:19.928515

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

264 / tcp

-1932800090 | 2025-03-06T14:00:27.685245

HTTP

311 / tcp

-1547976805 | 2025-03-17T03:31:21.547535

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

385 / tcp

-616720387 | 2025-03-05T17:05:39.500998

SSH-2.0-SSHD_0.7.6

389 / tcp

-1639129386 | 2025-03-08T16:59:10.468572

0%\\x02\\x01\\x01a \n\\x010\\x04\\x00\\x04\\x19anonymous bind disallowed

443 / tcp

1638645179 | 2025-03-19T19:27:53.266669

Hashes

hash

559399484

http.dom_hash

196608935

http.html_hash

1638645179

http.server_hash

-498774968

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: AliyunOSS
Date: Wed, 19 Mar 2025 19:27:53 GMT
Content-Type: text/html
Content-Length: 327
Connection: close

444 / tcp

1282941221 | 2025-03-22T01:56:52.510928

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

448 / tcp

-1019343788 | 2025-03-13T10:21:08.225426

W!\x00\x00\x00\x00

450 / tcp

-1099385124 | 2025-03-12T23:01:52.647816

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

465 / tcp

897328069 | 2025-03-14T00:05:18.148477

220 mail.scott000.com ESMTP

502 / tcp

-1888448627 | 2025-03-19T15:37:35.784945

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

513 / tcp

1504401647 | 2025-02-28T09:08:21.052525

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

515 / tcp

2087396567 | 2025-02-23T10:23:54.054767

kjnkjabhbanc283ubcsbhdc72

541 / tcp

-1299118573 | 2025-03-09T13:54:20.091976

\\x16\\x03\\x01\\x01[\\x01\\x00\\x01W\\x03\\x03\\x89\\xb7a\\xcdh\\xff\\xe7x~\\xc0Z\\x92\\x1f\\xf0\\xd8\xe3\x9f\xb2;\\x92\\x06\\xf9\\xef\\xc7L\\xfa\\x16&#{)` \\xf6k\\x80\\xe6Ylt\\xe8\x0bF\\xa9&?\\xb9!\\xe7\\x93^l\\xb3\\xbe\\x15\\xb1\\xa3n\\x00\\xce\\xde\xcf\x822h\\x002\\x13\\x02\\x13\\x03\\x13\\x01\\x009\\x005\\x00k\\x00=\\xc

548 / tcp

-1128967010 | 2025-03-04T23:27:18.650048

HTTP/1.1 200 OK
Server: Server
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet, nosnippet, notranslate, noimageindex
Content-Type: text/html; charset=utf-8

593 / tcp

1308377066 | 2025-03-08T11:40:37.255523

ncacn_http/1.0

700 / tcp

-1871658906 | 2025-03-17T17:55:03.104140

HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Connection: close
Server: Nginx
Expires: 0
Pragma: no-cache
Cache-Control: no-cache
Location: https://portal.ikuai8-wifi.com/templates/default/index.html?timestamp=1705534773&router_ver=3.2.4&firmware=IK-RouterOS&template=default&gwid=a7dea2d1ff2b46d582c814cbae2fb058&user_ip=*.*.*.*

771 / tcp

819727972 | 2025-03-20T10:54:11.928004

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

785 / tcp

-1810987450 | 2025-03-20T23:33:52.712263

\xc3\xbf

789 / tcp

1911457608 | 2025-03-18T20:54:55.709619

\x00[\x00\x00\x00\x00\x00\x00

873 / tcp

2128189041 | 2025-03-20T02:20:42.594618

@RSYNCD: 31.0\n\n@RSYNCD: EXIT\n

887 / tcp

819727972 | 2025-03-20T13:22:01.796485

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

992 / tcp

-1242315829 | 2025-03-17T17:57:24.611524

HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: /app/
Permissions-Policy: autoplay=(), camera=(), microphone=(), usb=()
Referrer-Policy: same-origin
Vary: Origin
X-Content-Type-Options: nosniff
X-Frame-Options: DENY

993 / tcp

819727972 | 2025-03-14T14:40:29.713398

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

995 / tcp

689999346 | 2025-03-13T04:15:21.220752

+OK The Microsoft Exchange POP3 service is ready. [SgBIADAAUABSADAAMQBDAEEAMAAwADUAMgAuAGEAcABjAHAAcgBkADAAMQAuAHAAcgBvAGQALgBlAHgAYwBoAGEAbgBnAGUAbABhAGIAcwAuAGMAbwBtAA==]\r\n

1080 / tcp

1362344524 | 2025-03-12T14:15:19.063427

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.7

1099 / tcp

1213931722 | 2025-03-07T09:26:52.737735

ICAP/1.0 501 Other\r\nServer: Traffic Spicer 7788179225\r\n

1119 / tcp

-1713467553 | 2025-02-24T02:54:25.419119

HTTP/1.1 400 Bad Request
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Connection: close

1153 / tcp

-1399940268 | 2025-03-03T19:30:35.358899

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1177 / tcp

-1730858130 | 2025-03-14T19:36:27.117876

RFB 003.008
VNC:
  Protocol Version: 3.8

1181 / tcp

-1839934832 | 2025-03-05T09:19:50.352691

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

1188 / tcp

165188539 | 2025-03-13T21:03:55.554889

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

1200 / tcp

-2033111675 | 2025-03-14T17:18:46.063371

~djb

1234 / tcp

-1453516345 | 2025-02-24T21:56:57.782392

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

1292 / tcp

-345718689 | 2025-03-19T11:20:03.004636

Vty password is not set.

1337 / tcp

-2031152423 | 2025-03-15T00:01:18.287962

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

1414 / tcp

632542934 | 2025-03-21T22:44:53.246435

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

1433 / tcp

-651181868 | 2025-02-25T02:26:11.654565

MSSQL Server\nVersion: 134219767 (0x80007f7)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nProduct_Version: 5.1.2600 Ntlm 15\nOS: Windows XP/Windows XP, Service Pack 3\n

1500 / tcp

1347778116 | 2025-03-16T01:06:05.676571

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 10-11789684-0 0NNN RT(1705176432634 11) q(0 -1 -1 -1) r(0 -1)

1521 / tcp

-1184558916 | 2025-03-08T22:16:48.892368

Version:11.2.0.4.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=186647552)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

1554 / tcp

1911457608 | 2025-02-23T23:19:32.626510

\x00[\x00\x00\x00\x00\x00\x00

1599 / tcp

1544300041 | 2025-03-07T01:33:10.215748

SSH-25453-Cisco-3524665.35

1604 / tcp

2087396567 | 2025-03-21T18:34:44.262664

kjnkjabhbanc283ubcsbhdc72

1660 / tcp

709622286 | 2025-03-20T17:34:44.614187

OK Welcome <299685> on DirectUpdate server 7286\r\n

1723 / tcp

1103582599 | 2025-03-21T06:07:36.460255

Firmware: 1\nHostname: Vigor\nVendor: DrayTek\n

1800 / tcp

-1399940268 | 2025-03-14T01:25:04.758728

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1801 / tcp

1535389866 | 2025-03-16T13:05:59.090343

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2157_PS-LHW-01jjk135_25164-48622

1883 / tcp

-1795027372 | 2025-03-12T09:53:14.371179

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

1911 / tcp

-339084706 | 2025-03-20T01:34:47.722814

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

1926 / tcp

1261582754 | 2025-03-22T15:35:11.288653

unknown command 
unknown command

1950 / tcp

1763259671 | 2025-03-18T16:29:47.901515

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

1956 / tcp

1332894250 | 2025-03-13T13:45:46.536733

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

1958 / tcp

-1399940268 | 2025-02-26T08:38:56.663592

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1962 / tcp

-1399940268 | 2025-03-17T13:36:20.005841

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1964 / tcp

-1996280214 | 2025-02-25T09:48:32.686743

\x06\x04\x05@

1973 / tcp

1541211644 | 2025-03-11T14:31:37.348292

[\xc2\xba\x7fs\x7f

1974 / tcp

1078773424 | 2025-03-14T08:05:50.723286

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private

1976 / tcp

-1399940268 | 2025-03-06T16:34:25.672053

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1985 / tcp

-2096652808 | 2025-03-11T20:32:37.902179

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

2000 / tcp

165188539 | 2025-03-21T22:26:04.702600

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

2002 / tcp

-1681927087 | 2025-03-22T03:29:01.389491

kjnkjabhbanc283ubcsbhdc72

2003 / tcp

-1019343788 | 2025-03-19T21:43:33.492446

W!\x00\x00\x00\x00

2006 / tcp

-1399940268 | 2025-03-04T09:56:55.896926

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2008 / tcp

-2107996212 | 2025-03-12T11:20:32.916822

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

2031 / tcp

-1140468363 | 2025-03-05T20:38:42.180139

\x02\t\x01

2049 / tcp

1911457608 | 2025-03-18T23:34:39.408847

\x00[\x00\x00\x00\x00\x00\x00

2064 / tcp

-585940771 | 2025-03-14T02:32:06.657098

Unknown command\r\n

2066 / tcp

-122096153 | 2025-02-21T11:15:43.209338

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

2067 / tcp

1911457608 | 2025-02-27T08:57:56.181330

\x00[\x00\x00\x00\x00\x00\x00

2078 / tcp

-345718689 | 2025-03-22T01:12:56.056688

Vty password is not set.

2081 / tcp

1492413928 | 2025-03-19T10:03:37.564524

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 13 1

2087 / tcp

-10442315 | 2025-03-16T23:12:51.440175

ª

2121 / tcp

141730637 | 2025-03-18T09:47:11.120352

HTTP/1.0 200 OK
Server: Proxy

2122 / tcp

-1626979812 | 2025-03-11T13:07:44.308508

220 Service ready for new user.

2133 / tcp

-2096652808 | 2025-03-18T12:01:44.686166

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

2154 / tcp

-971970408 | 2025-03-20T06:20:40.632193

2181 / tcp

546151771 | 2025-03-13T04:35:44.083771

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

2196 / tcp

-1329831334 | 2025-03-11T13:56:39.065806

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

2220 / tcp

-1399940268 | 2025-02-24T16:01:24.962215

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2222 / tcp

58083962 | 2025-03-20T02:29:55.943760

HTTP/1.1 400 Bad Request
Server: nginx/1.18.0
Content-Type: text/html
Connection: close

2271 / tcp

-2089734047 | 2025-03-22T07:23:05.093824

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2323 / tcp

1662205251 | 2025-03-16T16:37:13.020633

HTTP/1.0 404 FAIL
Content-length:5
Connection:Close

2332 / tcp

-1311598826 | 2025-03-08T21:19:45.914243

AMQP:
cluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local
copyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.
information:Licensed under the MPL 2.0. Website: https://rabbitmq.com
platform:Erlang/OTP 24.1
product:RabbitMQ
version:3.9.7
Capabilities:
publisher_confirms:true
exchange_exchange_bindings:true
basic.nack:true
consumer_cancel_notify:true
connection.blocked:true
consumer_priorities:true
authentication_failure_close:true
per_consumer_qos:true
direct_reply_to:tru

2345 / tcp

-1996280214 | 2025-03-13T05:56:22.993201

\x06\x04\x05@

2353 / tcp

921225407 | 2025-03-21T14:04:33.464358

\x00\x00\x00\x04\x00\x00\x00\x00\x00

2362 / tcp

51259122 | 2025-03-21T01:52:05.196291

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

2404 / tcp

1911457608 | 2025-03-21T10:11:11.422042

\x00[\x00\x00\x00\x00\x00\x00

2433 / tcp

-1105333987 | 2025-03-15T16:26:37.431914

\x00[KpU\x7f\x00\x00

2453 / tcp

-2096652808 | 2025-03-10T05:23:51.762297

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

2455 / tcp

1842524259 | 2025-03-13T09:54:02.477925

2551 / tcp

165188539 | 2025-03-21T13:39:50.743547

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

2563 / tcp

-2031152423 | 2025-02-25T23:27:33.174724

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

2626 / tcp

1574088840 | 2025-03-15T10:22:12.572189

">Application and Content Networking Software 3.9</a>)\n</BODY><

2761 / tcp

819727972 | 2025-03-14T00:54:33.337594

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

2762 / tcp

1011407350 | 2025-02-27T04:51:27.699880

* OK GroupWise IMAP4rev1 Server Ready\r\n

3001 / tcp

-1399940268 | 2025-03-20T03:31:43.791645

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3007 / tcp

-1399940268 | 2025-03-17T19:25:36.419623

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3014 / tcp

114471724 | 2025-03-11T19:34:11.695733

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

3018 / tcp

-1746074029 | 2025-03-15T21:08:05.655739

101 imqbroker =unV\r\n

3022 / tcp

1278527606 | 2025-02-24T22:28:25.502852

SSH-2.0-Teleport

3050 / tcp

-2096652808 | 2025-03-04T19:05:49.553498

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

3096 / tcp

1308377066 | 2025-03-11T17:21:25.922110

ncacn_http/1.0

3102 / tcp

-1888448627 | 2025-03-15T15:13:48.482456

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

3103 / tcp

1308377066 | 2025-03-17T12:30:13.581246

ncacn_http/1.0

3111 / tcp

408230060 | 2025-02-28T21:51:38.864811

\r\nSorry, that nickname format is invalid.\r\n

3112 / tcp

-1148066627 | 2025-02-23T15:57:28.864770

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

3132 / tcp

-249504111 | 2025-03-11T09:05:58.087703

\x00[xU-\x7f\x00\x00

3145 / tcp

1381121983 | 2025-02-21T03:19:16.274901

Notify\r\n

3150 / tcp

-146605374 | 2025-02-25T04:20:04.726644

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

3154 / tcp

1911457608 | 2025-03-03T17:38:05.010028

\x00[\x00\x00\x00\x00\x00\x00

3155 / tcp

2063598737 | 2025-02-22T08:56:05.744479

/0 0 L\r\n/0 0 HUH\r\n

3179 / tcp

-441419608 | 2025-02-28T03:15:59.954120

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

3185 / tcp

45131230 | 2025-03-08T13:51:31.890423

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

3221 / tcp

-2019309480 | 2025-03-15T11:27:51.790209

<?xml version="1.0" encoding="us-ascii"?>\n

3256 / tcp

-971970408 | 2025-03-14T16:36:01.202767

3260 / tcp

-862070606 | 2025-02-27T14:40:03.286651

Login Response Success(0x0000)\nKey/Value Pairs\nAuthMethod=None\nTargetAlias=LIO Target\nTargetPortalGroupTag=1\n\n

3268 / tcp

921482974 | 2025-03-16T23:52:46.190776

HTTP/1.1 301 Moved Permanently
Location: /web/index.html
Server: HTTPD
Connection: close
Content-Type: text/html

3269 / tcp

45131230 | 2025-03-20T15:48:13.926908

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

3301 / tcp

165188539 | 2025-03-18T17:51:14.296573

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3306 / tcp

1673132866 | 2025-03-13T20:57:33.704828

I\\x00\\x00\\x01\\xffj\\x04Host \'*.*.*.*\' is not allowed to connect to this MariaDB server

3310 / tcp

321971019 | 2025-03-15T18:25:42.040840

-ERR client ip is not in whitelist\r

3388 / tcp

-1730858130 | 2025-03-13T00:04:16.884540

RFB 003.008
VNC:
  Protocol Version: 3.8

3389 / tcp

521595461 | 2025-03-19T06:11:34.819636

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x03\\x00\\x08\\x00\\x02\\x00\\x00\\x00\n\nGuess_OS:Windows Server 2003 or 2008\nFlag: PROTOCOL_HYBRID\n

3390 / tcp

-2089734047 | 2025-03-22T05:06:10.622957

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3404 / tcp

-1227409554 | 2025-02-22T05:22:43.206136

HTTP/1.1 500 Internal Server Error
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

3530 / tcp

165188539 | 2025-03-06T12:46:53.846911

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3548 / tcp

2098371729 | 2025-03-22T14:56:47.723869

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

3551 / tcp

198844676 | 2025-03-19T20:37:08.777419

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3562 / tcp

1519486042 | 2025-02-27T09:52:10.268438

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

3566 / tcp

-1737707071 | 2025-02-22T17:59:58.018082

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

3567 / tcp

103159425 | 2025-03-10T21:12:34.505005

SSH-1.99-RGOS_SSH

3572 / tcp

1975288991 | 2025-02-25T22:45:40.726211

OPTI

3780 / tcp

-971970408 | 2025-03-19T15:27:39.001488

3792 / tcp

1911457608 | 2025-03-16T22:59:26.503459

\x00[\x00\x00\x00\x00\x00\x00

3952 / tcp

632542934 | 2025-03-19T19:09:49.004450

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

4000 / tcp

1170207731 | 2025-03-18T21:33:18.618834

HTTP/1.1 200 OK
cache-control: max-age=0, private, must-revalidate
content-length: 9446
content-type: text/html; charset=utf-8
cross-origin-window-policy: deny
date: Mon, 22 Jan 2024 08:34:42 GMT
server: Cowboy
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-request-id: F6yeXaHCjyC4elgAAoAh
x-xss-protection: 1; mode=block
set-cookie: _teslamate_key=SFMyNTY.g3QAAAAEbQAAAAtfY3NyZl90b2tlbm0AAAAYaUxzWXpoMm5SdWh1V2piMFd

4022 / tcp

-1399940268 | 2025-03-19T01:50:06.485709

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4042 / tcp

321971019 | 2025-03-18T15:14:14.786640

-ERR client ip is not in whitelist\r

4063 / tcp

-754988795 | 2025-03-19T08:38:24.513156

[výC

4100 / tcp

165188539 | 2025-02-23T17:21:58.640983

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

4103 / tcp

-904840257 | 2025-02-22T04:59:46.936553

572 Relay not authorized\r\n

4150 / tcp

819727972 | 2025-03-17T20:00:36.530379

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

4157 / tcp

2087396567 | 2025-03-17T01:51:44.169658

kjnkjabhbanc283ubcsbhdc72

4159 / tcp

-1399940268 | 2025-02-27T20:03:16.467433

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4172 / tcp

1726594447 | 2025-03-16T22:16:31.777027

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

4242 / tcp

-1341662640 | 2025-03-11T07:48:40.992724

HTTP/1.1 301 Moved Permanently
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

4282 / tcp

-1969169410 | 2025-03-18T15:40:07.242965

ÿû
-> GET / HTTP/1.0
GET / HTTP/1.0
undefined symbol: GET
-> 
->

4300 / tcp

1911457608 | 2025-03-17T14:17:29.696514

\x00[\x00\x00\x00\x00\x00\x00

4436 / tcp

945910976 | 2025-03-16T01:44:20.915200

* OK TeamXchange IMAP4rev1 server (otyUg) ready.\r\n

4444 / tcp

709622286 | 2025-03-15T13:21:30.173186

OK Welcome <299685> on DirectUpdate server 7286\r\n

4455 / tcp

-1839934832 | 2025-03-11T19:03:29.568484

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

4499 / tcp

639175818 | 2025-02-23T03:31:13.948708

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

4500 / tcp

-784071826 | 2025-03-09T21:16:06.132295

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

4505 / tcp

-1399940268 | 2025-02-27T17:18:31.293291

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4506 / tcp

550048729 | 2025-03-09T22:33:20.937767

ÿÿÿ
0 ...

4734 / tcp

-1248408558 | 2025-03-19T14:43:29.222315

220 MikroTik FTP server (MikroTik 6.44.3) ready

4899 / tcp

1690634669 | 2025-03-14T18:29:22.580636

4949 / tcp

842535728 | 2025-03-22T02:17:15.041340

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

4993 / tcp

-980525298 | 2025-03-15T19:23:39.163039

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

5001 / tcp

-1045760528 | 2025-03-20T18:59:20.170413

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

5003 / tcp

-1713437100 | 2025-02-28T15:14:23.271107

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

5006 / tcp

-1713437100 | 2025-03-11T09:52:30.662853

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

5009 / tcp

567505242 | 2025-03-15T13:54:07.374073

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1a3c_wdx20_40557-6922

5010 / tcp

-1399940268 | 2025-03-19T13:23:04.509219

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5025 / tcp

842535728 | 2025-02-23T20:50:15.713384

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

5051 / tcp

-2089734047 | 2025-02-20T22:41:29.768830

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5089 / tcp

-1399940268 | 2025-03-19T15:34:53.091655

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5119 / tcp

1761482307 | 2025-02-26T08:38:03.739635

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

5160 / tcp

-358801646 | 2025-02-28T17:25:45.431416

SSH-2.0-OpenSSH_6.6.1

5172 / tcp

2087396567 | 2025-03-10T13:36:44.429023

kjnkjabhbanc283ubcsbhdc72

5201 / tcp

1615193817 | 2025-03-19T15:23:22.737900

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

5222 / tcp

550048729 | 2025-03-12T02:07:29.389053

ÿÿÿ
0 ...

5224 / tcp

-1036370807 | 2025-02-23T21:07:11.750297

JDWP-Handshake

5226 / tcp

-1626979812 | 2025-03-04T07:38:29.889644

220 Service ready for new user.

5229 / tcp

632542934 | 2025-03-20T18:06:27.045192

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

5234 / tcp

819727972 | 2025-02-27T21:12:27.633171

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5247 / tcp

1911457608 | 2025-03-19T02:34:54.475140

\x00[\x00\x00\x00\x00\x00\x00

5269 / tcp

564972781 | 2025-03-09T08:56:09.981354

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705937967.102-w-waf03tjgt

5276 / tcp

-1105333987 | 2025-03-06T14:33:59.855252

\x00[KpU\x7f\x00\x00

5321 / tcp

-1399940268 | 2025-03-10T11:29:47.165032

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5432 / tcp

-2096652808 | 2025-03-22T03:26:16.016863

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

5435 / tcp

-1399940268 | 2025-03-14T07:43:07.679563

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5440 / tcp

1472866667 | 2025-02-21T05:45:44.829687

AB\\x01\t

5454 / tcp

677934968 | 2025-03-05T08:55:20.523515

lm^)Q

5500 / tcp

1023953321 | 2025-03-08T20:42:23.151816

HTTP/1.0 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

5542 / tcp

-1327660293 | 2025-03-12T23:19:55.231369

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

5557 / tcp

-1888448627 | 2025-03-21T06:12:34.284791

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

5558 / tcp

-784071826 | 2025-03-18T02:59:24.139753

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 6 1

5590 / tcp

-1399940268 | 2025-03-09T19:46:25.487128

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5593 / tcp

-1399940268 | 2025-03-08T18:59:12.607582

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5594 / tcp

1308377066 | 2025-03-12T22:24:20.624226

ncacn_http/1.0

5600 / tcp

321971019 | 2025-02-25T16:30:00.686770

-ERR client ip is not in whitelist\r

5601 / tcp

0 | 2025-03-10T22:25:51.636217

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

5604 / tcp

-1013082686 | 2025-03-09T17:14:17.545697

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

5613 / tcp

51259122 | 2025-03-21T05:05:12.905968

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

5671 / tcp

1911457608 | 2025-03-04T03:56:23.229784

\x00[\x00\x00\x00\x00\x00\x00

5672 / tcp

575925250 | 2025-03-21T12:14:58.110900

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

5858 / tcp

-1729629024 | 2025-03-10T19:59:14.667993

101 imqbroker =unV

5917 / tcp

-2089734047 | 2025-03-05T10:11:06.254122

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5938 / tcp

-585940771 | 2025-03-06T04:10:59.441514

Unknown command\r\n

5984 / tcp

1999272906 | 2025-03-17T15:09:59.086200

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

5986 / tcp

1353260875 | 2025-03-19T01:29:28.707591

\x00[g\xc2\x95N\x7f\x00\x00

6000 / tcp

-971970408 | 2025-03-17T13:00:56.331204

6001 / tcp

971933601 | 2025-03-21T17:44:27.140926

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

6002 / tcp

1308377066 | 2025-03-14T14:08:35.545633

ncacn_http/1.0

6011 / tcp

-1399940268 | 2025-03-07T18:37:59.503465

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6036 / tcp

1975288991 | 2025-03-16T18:16:47.237726

OPTI

6464 / tcp

-1399940268 | 2025-03-13T00:19:31.227175

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6512 / tcp

1332894250 | 2025-03-04T02:19:14.151489

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

6544 / tcp

-1399940268 | 2025-02-24T09:48:08.578420

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6601 / tcp

1492413928 | 2025-03-05T23:50:22.879546

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

6602 / tcp

-1399940268 | 2025-03-11T11:42:42.300693

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6653 / tcp

819727972 | 2025-02-23T05:13:20.789144

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

6666 / tcp

4935895 | 2025-03-18T04:32:20.157131

HTTP/1.1 400 Bad Request
Server: CloudWAF

6667 / tcp

2087396567 | 2025-03-20T19:22:42.832557

kjnkjabhbanc283ubcsbhdc72

6668 / tcp

-1399940268 | 2025-03-19T19:27:56.883796

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6755 / tcp

1767345577 | 2025-02-23T09:44:35.606280

Hello, this is Quagga (version 0T).
Copyright 1996-200

6799 / tcp

-1327660293 | 2025-03-10T01:12:42.415893

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

7001 / tcp

1749359477 | 2025-03-18T01:16:17.031474

HTTP/1.1 403 Forbidden
Content-Type: text/html
Connection: keep-alive
NO_SERVICE: 1

7007 / tcp

1909672637 | 2025-03-16T09:07:34.785198

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Sec-Websocket-Version: 13
X-Content-Type-Options: nosniff

7022 / tcp

1077013874 | 2025-02-23T11:00:30.294424

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

7025 / tcp

-1399940268 | 2025-02-22T07:23:03.470970

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7078 / tcp

-1013082686 | 2025-02-26T05:05:04.308444

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

7084 / tcp

819727972 | 2025-03-22T05:09:12.461446

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

7085 / tcp

2063598737 | 2025-03-04T03:17:46.561835

/0 0 L\r\n/0 0 HUH\r\n

7171 / tcp

-1399940268 | 2025-03-22T18:16:04.392579

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7218 / tcp

1921398876 | 2025-03-05T12:52:57.035761

ÿý"
LinuxNode v06953 (ggfks)

login:

7434 / tcp

-616720387 | 2025-03-19T13:52:46.141554

SSH-2.0-SSHD_0.7.6

7443 / tcp

-584993230 | 2025-03-10T14:40:30.496383

HTTP/1.1 400 Bad Request
Server:  
Content-Type: text/html
Connection: close

7465 / tcp

-1428621233 | 2025-03-22T00:35:57.929715

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

7537 / tcp

1911457608 | 2025-02-25T22:55:30.277040

\x00[\x00\x00\x00\x00\x00\x00

7548 / tcp

-971970408 | 2025-03-16T19:51:15.614161

7634 / tcp

1690634669 | 2025-02-28T08:20:32.025973

7771 / tcp

819727972 | 2025-02-20T23:53:07.377879

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

7774 / tcp

1665283070 | 2025-02-22T00:39:53.650810

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x01\x00\x00\x10\x00\x00\n0\x03\x00\x00\x00\x01\x00\x05\x00\x00@\x00\x00\x06\x00\x00\x1f@

7790 / tcp

-904840257 | 2025-03-06T07:13:30.046301

572 Relay not authorized\r\n

7878 / tcp

-891714208 | 2025-03-11T19:47:14.861491

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

7979 / tcp

-1399940268 | 2025-02-21T05:10:20.551451

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7998 / tcp

-1327660293 | 2025-03-10T00:07:47.689991

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

8001 / tcp

2103111368 | 2025-03-16T15:39:46.758811

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

8009 / tcp

-1888448627 | 2025-03-21T03:18:55.013613

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8023 / tcp

-1888448627 | 2025-03-09T18:54:57.535655

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8029 / tcp

-1114821551 | 2025-03-09T16:41:33.881489

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

8038 / tcp

-2107996212 | 2025-03-12T05:32:03.675339

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8048 / tcp

307999478 | 2025-02-24T19:16:12.936989

unknown command \r\nunknown command \r\n

8052 / tcp

-1148066627 | 2025-03-09T22:15:55.050668

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

8061 / tcp

-303199180 | 2025-03-17T17:33:05.397940

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

8078 / tcp

-1947777893 | 2025-03-13T00:58:34.735710

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

8083 / tcp

-786044033 | 2025-03-06T02:46:18.029059

OK Welcome <299685> on DirectUpdate server 7286

8087 / tcp

-358801646 | 2025-03-20T21:59:41.521535

SSH-2.0-OpenSSH_6.6.1

8099 / tcp

-1249500036 | 2025-03-18T22:20:24.949434

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Connection: keep-alive
Accept-Ranges: bytes

8111 / tcp

165188539 | 2025-02-20T21:48:31.380011

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8115 / tcp

1332894250 | 2025-03-18T02:45:52.992153

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

8119 / tcp

-1399940268 | 2025-02-26T03:53:52.653768

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8121 / tcp

-1399940268 | 2025-03-19T12:38:00.153048

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8122 / tcp

-1839934832 | 2025-03-18T14:22:12.622822

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8126 / tcp

1093576587 | 2025-02-28T05:01:59.358196

¥A,LConnectx57222

8127 / tcp

669849225 | 2025-03-19T19:21:34.231773

SSH-98.60-SysaxSSH_81885..42\r\n

8139 / tcp

-2017887953 | 2025-03-08T20:18:52.422917

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 9 1

8140 / tcp

-441419608 | 2025-03-12T05:40:14.084558

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

8144 / tcp

321971019 | 2025-02-23T05:26:57.576297

-ERR client ip is not in whitelist\r

8147 / tcp

321971019 | 2025-03-14T19:16:57.470449

-ERR client ip is not in whitelist\r

8166 / tcp

-358801646 | 2025-03-04T02:18:32.699325

SSH-2.0-OpenSSH_6.6.1

8174 / tcp

-1428621233 | 2025-03-05T09:53:42.904677

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

8176 / tcp

1911457608 | 2025-03-18T23:35:40.466943

\x00[\x00\x00\x00\x00\x00\x00

8184 / tcp

-1810987450 | 2025-03-22T14:58:53.686764

\xc3\xbf

8191 / tcp

1212285915 | 2025-02-24T00:10:49.754515

\x00K\x00\x00\x02\x00\x00\x00%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

8200 / tcp

-877598700 | 2025-03-20T15:58:32.885280

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\\x01\xc3\xbf\xc3\xbb\\x03\xc3\xbf\xc3\xbd\\x01\xc3\xbf\xc3\xbe\\x01Username:

8238 / tcp

1282941221 | 2025-03-08T15:30:00.128610

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8241 / tcp

-1399940268 | 2025-03-14T03:31:00.322594

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8291 / tcp

-375604792 | 2025-03-17T04:15:20.725090

220 Microsoft FTP Service

8318 / tcp

632542934 | 2025-02-22T22:34:42.157696

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8319 / tcp

1911457608 | 2025-03-20T15:21:52.525149

\x00[\x00\x00\x00\x00\x00\x00

8333 / tcp

1944032451 | 2025-03-22T01:47:55.164835

K\\x02%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

8384 / tcp

-1327660293 | 2025-03-20T00:28:01.310672

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

8412 / tcp

165188539 | 2025-03-15T16:53:42.411415

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8419 / tcp

2103111368 | 2025-03-17T02:25:07.169149

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

8432 / tcp

-1013082686 | 2025-03-14T21:51:09.476455

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8446 / tcp

-1399940268 | 2025-02-27T21:16:13.892801

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8500 / tcp

1662811133 | 2025-02-21T18:04:43.328663

MudNames 77 - (C) 1997-2001 Ragnar Hojland Espinosa <ragnar@ragnar-hojland.com>

8520 / tcp

-1598265216 | 2025-03-20T03:28:27.444684

@RSYNCD: 31.0

8528 / tcp

-2096652808 | 2025-02-22T20:46:23.153125

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8531 / tcp

-441419608 | 2025-03-13T01:35:23.433489

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

8533 / tcp

-1476017887 | 2025-03-18T22:15:08.103860

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

8543 / tcp

632542934 | 2025-03-22T02:43:52.977938

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8545 / tcp

1332894250 | 2025-03-05T09:33:33.120269

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

8554 / tcp

-971970408 | 2025-02-23T01:32:51.792715

8575 / tcp

1911457608 | 2025-03-13T16:09:08.965199

\x00[\x00\x00\x00\x00\x00\x00

8579 / tcp

1911457608 | 2025-02-22T10:31:35.520510

\x00[\x00\x00\x00\x00\x00\x00

8581 / tcp

165188539 | 2025-03-14T07:35:26.936299

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8591 / tcp

740837454 | 2025-03-20T19:46:37.079460

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

8594 / tcp

-1399940268 | 2025-03-13T05:35:41.855945

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8602 / tcp

-2017887953 | 2025-03-17T01:37:30.107787

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

8666 / tcp

819727972 | 2025-02-26T02:38:43.969068

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8709 / tcp

1504401647 | 2025-02-26T05:45:44.860695

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

8728 / tcp

-2089734047 | 2025-03-22T02:25:00.801015

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8771 / tcp

632542934 | 2025-03-14T09:57:31.831069

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8788 / tcp

-1399940268 | 2025-03-13T15:29:31.412891

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8790 / tcp

-1399940268 | 2025-03-18T23:54:39.962080

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8801 / tcp

-1189269828 | 2025-02-28T02:56:04.917599

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8814 / tcp

1282941221 | 2025-03-18T22:56:24.494719

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8816 / tcp

1282941221 | 2025-03-18T06:19:53.678359

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8829 / tcp

1911457608 | 2025-03-08T13:31:35.586030

\x00[\x00\x00\x00\x00\x00\x00

8830 / tcp

114471724 | 2025-03-04T15:37:10.689795

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

8834 / tcp

-1230049476 | 2025-02-24T01:21:09.067092

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

8843 / tcp

380146262 | 2025-03-09T08:41:24.768227

@RSYNCD: 30.0

8850 / tcp

819727972 | 2025-03-21T00:45:18.012850

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8851 / tcp

-1888448627 | 2025-03-09T09:31:08.418009

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8857 / tcp

321971019 | 2025-03-19T16:55:23.288542

-ERR client ip is not in whitelist\r

8858 / tcp

493955023 | 2025-02-28T00:15:34.465501

\x00\x00\x0c\x04\x00\x00\x00\x00\x00\x00\x04\x00\x10\x00\x00\x00\n0\x05\x00\x00@\x00

8880 / tcp

1308377066 | 2025-03-18T05:40:54.074672

ncacn_http/1.0

8882 / tcp

-1399940268 | 2025-03-16T16:10:08.742692

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8889 / tcp

2087396567 | 2025-03-16T10:44:12.245097

kjnkjabhbanc283ubcsbhdc72

8890 / tcp

-2089734047 | 2025-03-07T16:51:51.238805

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8899 / tcp

372433470 | 2025-03-15T14:57:32.787826

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

8905 / tcp

1426971893 | 2025-03-05T18:58:37.289134

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

8943 / tcp

-2107996212 | 2025-02-27T14:56:18.067040

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8991 / tcp

632542934 | 2025-03-10T12:42:17.131405

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

9000 / tcp

-2067028711 | 2025-03-17T05:56:51.963079

\x15\x03\x01\x00\x02\x02F

9001 / tcp

-1026951088 | 2025-03-21T16:25:27.853485

erro ip

9023 / tcp

-1996280214 | 2025-03-04T14:49:22.283722

\x06\x04\x05@

9034 / tcp

-441419608 | 2025-03-06T02:27:13.817207

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

9039 / tcp

-358801646 | 2025-03-08T20:59:28.830156

SSH-2.0-OpenSSH_6.6.1

9042 / tcp

-297128567 | 2025-03-22T01:21:16.067908

\x04\x01\xc3\xb4\x00\x15Internal Server Error\x00\x00\x00AB\x00\x02\x05\x00

9050 / tcp

1620047053 | 2025-03-11T04:38:28.224710

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae16f5_PS-000-011nh7_28449-26544

9051 / tcp

819727972 | 2025-02-28T18:54:59.626669

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9069 / tcp

-146605374 | 2025-02-25T03:01:54.144401

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

9071 / tcp

-1056270173 | 2025-02-28T14:34:43.823927

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close

9078 / tcp

740837454 | 2025-03-19T23:44:15.504363

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

9079 / tcp

-653033013 | 2025-03-20T13:51:47.872568

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

9086 / tcp

-2089734047 | 2025-03-20T08:30:33.668174

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9091 / tcp

504717326 | 2025-03-12T00:00:41.341838

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 5 1

9092 / tcp

-1399940268 | 2025-03-22T03:44:43.487191

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9095 / tcp

819727972 | 2025-03-14T20:05:01.775556

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9102 / tcp

1767345577 | 2025-03-20T21:56:52.115792

Hello, this is Quagga (version 0T).
Copyright 1996-200

9108 / tcp

1726594447 | 2025-03-11T08:32:12.441104

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

9109 / tcp

-2089734047 | 2025-02-22T08:36:12.934664

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9117 / tcp

-980525298 | 2025-02-23T20:49:35.944066

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9130 / tcp

-358801646 | 2025-03-04T21:43:34.654618

SSH-2.0-OpenSSH_6.6.1

9134 / tcp

-2031152423 | 2025-03-15T13:53:48.476253

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

9136 / tcp

2063598737 | 2025-03-20T09:52:45.187878

/0 0 L\r\n/0 0 HUH\r\n

9137 / tcp

-1399940268 | 2025-03-09T19:06:21.250252

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9145 / tcp

-146605374 | 2025-03-04T21:27:44.139683

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

9147 / tcp

1911457608 | 2025-03-18T20:45:19.628995

\x00[\x00\x00\x00\x00\x00\x00

9151 / tcp

2087396567 | 2025-03-17T05:18:11.184718

kjnkjabhbanc283ubcsbhdc72

9160 / tcp

1911457608 | 2025-03-20T06:00:27.705357

\x00[\x00\x00\x00\x00\x00\x00

9188 / tcp

1911457608 | 2025-03-16T07:59:46.015841

\x00[\x00\x00\x00\x00\x00\x00

9205 / tcp

819727972 | 2025-03-18T20:21:14.200419

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9219 / tcp

1911457608 | 2025-03-14T03:51:32.083091

\x00[\x00\x00\x00\x00\x00\x00

9249 / tcp

819727972 | 2025-03-13T19:43:49.861465

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9256 / tcp

321971019 | 2025-02-24T09:57:38.633462

-ERR client ip is not in whitelist\r

9280 / tcp

165188539 | 2025-03-10T07:11:09.908877

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9292 / tcp

1308377066 | 2025-03-16T15:16:02.832924

ncacn_http/1.0

9306 / tcp

-1013082686 | 2025-03-13T05:30:44.260031

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

9333 / tcp

1911457608 | 2025-03-14T13:44:39.004709

\x00[\x00\x00\x00\x00\x00\x00

9353 / tcp

1615193817 | 2025-03-18T21:51:06.890017

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

9398 / tcp

-971970408 | 2025-03-21T21:52:51.134142

9446 / tcp

819727972 | 2025-02-27T16:50:28.315320

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9456 / tcp

-1453516345 | 2025-02-26T03:31:32.450715

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

9505 / tcp

1761482307 | 2025-02-22T14:22:22.286399

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

9507 / tcp

1761482307 | 2025-03-22T01:21:31.347599

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

9513 / tcp

-1399940268 | 2025-02-21T09:47:50.002660

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9529 / tcp

1911457608 | 2025-03-13T02:08:21.043259

\x00[\x00\x00\x00\x00\x00\x00

9530 / tcp

-1626979812 | 2025-03-06T01:27:49.116923

220 Service ready for new user.

9600 / tcp

165188539 | 2025-03-13T19:28:34.496515

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9633 / tcp

2087396567 | 2025-03-16T16:53:47.185645

kjnkjabhbanc283ubcsbhdc72

9674 / tcp

1911457608 | 2025-03-17T03:43:41.515927

\x00[\x00\x00\x00\x00\x00\x00

9710 / tcp

408230060 | 2025-03-21T22:39:28.060526

\r\nSorry, that nickname format is invalid.\r\n

9711 / tcp

-1399940268 | 2025-03-17T22:52:20.614561

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9761 / tcp

599074451 | 2025-02-22T12:04:29.297512

msg

9804 / tcp

819727972 | 2025-02-25T02:05:10.703330

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9908 / tcp

921225407 | 2025-03-17T23:52:39.137521

\x00\x00\x00\x04\x00\x00\x00\x00\x00

9926 / tcp

-1019343788 | 2025-03-19T17:39:39.169738

W!\x00\x00\x00\x00

9944 / tcp

-1189269828 | 2025-03-18T05:03:06.070717

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9977 / tcp

-1730858130 | 2025-02-25T16:13:30.237400

RFB 003.008
VNC:
  Protocol Version: 3.8

9998 / tcp

372433470 | 2025-03-10T14:55:40.045468

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

9999 / tcp

1161309183 | 2025-03-21T19:47:13.818974

ProxyServer is ready

10010 / tcp

-1399940268 | 2025-03-15T05:13:20.135286

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10020 / tcp

114471724 | 2025-02-23T14:03:47.697502

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

10030 / tcp

-1648456501 | 2025-03-19T17:08:27.019108

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

10041 / tcp

1911457608 | 2025-02-24T01:44:54.265319

\x00[\x00\x00\x00\x00\x00\x00

10050 / tcp

398077695 | 2025-03-12T12:21:55.731259

10082 / tcp

-1768049635 | 2025-02-24T11:11:46.862288

\\x00[\'b\\xc0\\xa8Y\\xfd

10086 / tcp

-2089734047 | 2025-03-16T20:11:26.876375

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

10134 / tcp

819727972 | 2025-03-20T10:40:13.445859

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

10201 / tcp

-2080784861 | 2025-03-06T20:09:37.372686

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

10250 / tcp

-1779118422 | 2025-03-13T15:05:14.276992

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

10324 / tcp

15018106 | 2025-02-24T15:20:22.647421

\x00\x19\x02\x00\x02\x00\x07\x00Protocol version mismatch\x00

10909 / tcp

1767345577 | 2025-02-23T10:53:55.097247

Hello, this is Quagga (version 0T).
Copyright 1996-200

10911 / tcp

-585940771 | 2025-03-20T11:48:03.323370

Unknown command\r\n

11000 / tcp

-1810987450 | 2025-03-15T21:41:14.782320

\xc3\xbf

11007 / tcp

-1105333987 | 2025-02-27T09:32:17.804069

\x00[KpU\x7f\x00\x00

11101 / tcp

-441419608 | 2025-03-18T07:55:27.543107

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

11210 / tcp

819727972 | 2025-03-16T09:16:57.563356

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

11211 / tcp

-136006866 | 2025-03-09T14:57:58.595603

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

11288 / tcp

819727972 | 2025-03-17T19:32:07.972559

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

11300 / tcp

-2089734047 | 2025-03-13T23:09:45.039649

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

11480 / tcp

-1810987450 | 2025-03-13T08:07:46.505869

\xc3\xbf

12000 / tcp

1734465113 | 2025-03-07T17:23:15.573689

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705938548.385-w-waf05cqt

12088 / tcp

819727972 | 2025-03-21T20:12:03.017154

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12117 / tcp

205347087 | 2025-02-28T02:41:57.029922

SSH-25453-Cisco-3524665.35\n

12120 / tcp

1574088840 | 2025-03-06T05:36:31.155736

">Application and Content Networking Software 3.9</a>)\n</BODY><

12126 / tcp

-1399940268 | 2025-03-05T03:57:57.070439

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12133 / tcp

-1399940268 | 2025-02-24T13:27:56.317926

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12134 / tcp

-1888448627 | 2025-03-15T03:04:26.233544

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12135 / tcp

1134517380 | 2025-03-10T13:51:03.675930

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

12136 / tcp

-1329831334 | 2025-03-16T01:15:47.343763

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

12148 / tcp

-274082663 | 2025-03-17T05:18:55.139469

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

12171 / tcp

1126993057 | 2025-03-19T19:13:39.597417

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

12173 / tcp

-1399940268 | 2025-03-11T16:37:48.776587

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12179 / tcp

-2107996212 | 2025-03-10T17:09:49.385185

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

12181 / tcp

709622286 | 2025-03-17T15:00:18.447805

OK Welcome <299685> on DirectUpdate server 7286\r\n

12194 / tcp

1011407350 | 2025-03-20T23:02:22.526171

* OK GroupWise IMAP4rev1 Server Ready\r\n

12197 / tcp

632542934 | 2025-02-25T17:37:12.393815

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12206 / tcp

51259122 | 2025-03-12T10:13:35.378976

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

12223 / tcp

-1839934832 | 2025-03-11T11:09:08.490050

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12224 / tcp

-1476017887 | 2025-03-10T14:42:38.617882

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

12229 / tcp

-2089734047 | 2025-03-22T04:22:12.566402

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12257 / tcp

-1810987450 | 2025-02-23T16:41:09.719895

\xc3\xbf

12269 / tcp

921225407 | 2025-03-13T02:34:25.077106

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12270 / tcp

-1487943323 | 2025-02-25T09:10:00.687487

431 Unable to negotiate secure command connection.\r\n

12271 / tcp

-1399940268 | 2025-03-19T07:17:16.477961

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12272 / tcp

-1399940268 | 2025-03-19T10:20:13.653675

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12281 / tcp

819727972 | 2025-03-13T16:15:39.800719

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12295 / tcp

165188539 | 2025-03-06T21:07:35.289867

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12296 / tcp

-1097188123 | 2025-02-22T06:52:12.904889

[g\xc2\x95N\x7f

12322 / tcp

-1399940268 | 2025-03-09T05:31:57.442409

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12345 / tcp

265065882 | 2025-02-26T09:54:43.454835

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked

12352 / tcp

-358801646 | 2025-03-14T08:02:23.733276

SSH-2.0-OpenSSH_6.6.1

12356 / tcp

-1399940268 | 2025-03-22T10:13:17.572550

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12373 / tcp

1948301213 | 2025-03-05T22:33:04.278890

RFB 003.003
VNC:
  Protocol Version: 3.3

12378 / tcp

1282941221 | 2025-03-04T17:38:44.967303

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12389 / tcp

819727972 | 2025-02-23T21:35:42.091216

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12391 / tcp

2121220663 | 2025-03-14T06:03:12.368814

SSH-58-Ingrian_SSH\r\n

12400 / tcp

1726594447 | 2025-03-08T17:57:15.899922

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

12416 / tcp

1989907056 | 2025-03-14T19:29:25.604829

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

12441 / tcp

1911457608 | 2025-02-25T09:27:00.578650

\x00[\x00\x00\x00\x00\x00\x00

12443 / tcp

1282941221 | 2025-03-14T14:58:15.833448

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12445 / tcp

-1399940268 | 2025-03-19T04:54:16.146202

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12446 / tcp

119860953 | 2025-02-23T19:51:02.614881

* OK ArGoSoft Mail Server IMAP Module v.YW at

12449 / tcp

165188539 | 2025-03-04T05:53:24.922665

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12458 / tcp

1308377066 | 2025-03-13T13:25:32.286121

ncacn_http/1.0

12461 / tcp

-1611764932 | 2025-03-04T03:26:51.835475

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

12468 / tcp

-1399940268 | 2025-03-13T14:10:00.791121

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12471 / tcp

1911457608 | 2025-03-18T16:04:04.682965

\x00[\x00\x00\x00\x00\x00\x00

12477 / tcp

-1399940268 | 2025-03-05T13:36:43.773369

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12480 / tcp

-1114821551 | 2025-02-25T05:00:33.365632

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

12482 / tcp

-1538260461 | 2025-02-21T18:50:03.852481

\x01\x00\x00\x00

12484 / tcp

401555314 | 2025-03-11T08:20:45.231811

NB[GFXjA^R

12486 / tcp

-1399940268 | 2025-02-23T22:48:41.385200

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12495 / tcp

-249504111 | 2025-03-10T17:25:28.388752

\x00[xU-\x7f\x00\x00

12496 / tcp

-445721795 | 2025-03-17T14:05:48.486673

\x00[\xc3\xaed\x1a\x7f\x00\x00

12497 / tcp

-1730858130 | 2025-03-20T17:07:15.369069

RFB 003.008
VNC:
  Protocol Version: 3.8

12498 / tcp

-1399940268 | 2025-03-06T06:47:52.606665

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12505 / tcp

-1399940268 | 2025-02-25T09:19:59.260531

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12522 / tcp

632542934 | 2025-03-21T01:51:53.092622

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12524 / tcp

-1059554316 | 2025-02-26T07:25:39.252679

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

12527 / tcp

-1279886438 | 2025-03-08T18:36:04.175090

GET / HTTP/1.0 : USERID : UNIX : TKUXZmP\r\n : USERID : UNIX : Cr8\r\n

12529 / tcp

-1399940268 | 2025-02-21T13:49:45.230513

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12530 / tcp

-1399940268 | 2025-03-16T00:17:14.611321

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12540 / tcp

-1399940268 | 2025-03-17T07:37:54.682156

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12543 / tcp

-1399940268 | 2025-03-18T05:27:19.753112

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12548 / tcp

-653033013 | 2025-03-07T07:56:40.479672

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

12563 / tcp

-1013082686 | 2025-03-21T05:29:32.662923

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

12566 / tcp

-445721795 | 2025-02-23T03:49:14.634463

\x00[\xc3\xaed\x1a\x7f\x00\x00

13047 / tcp

2087396567 | 2025-03-11T22:40:26.427380

kjnkjabhbanc283ubcsbhdc72

13780 / tcp

-457235091 | 2025-02-27T08:55:31.083568

audio 0 RTP/AVP 18 4 3 8 0 101\r\na

14265 / tcp

-348540412 | 2025-03-18T01:58:07.260003

:dircproxy NOTICE AUTH :Looking up your hostname...

14330 / tcp

1665283070 | 2025-03-20T13:07:40.104805

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x01\x00\x00\x10\x00\x00\n0\x03\x00\x00\x00\x01\x00\x05\x00\x00@\x00\x00\x06\x00\x00\x1f@

14344 / tcp

-1399940268 | 2025-03-19T09:10:14.479296

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

14400 / tcp

-303199180 | 2025-03-20T01:31:03.361446

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

14403 / tcp

-303199180 | 2025-03-14T12:19:58.899838

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

14894 / tcp

-375604792 | 2025-03-07T05:11:35.359215

220 Microsoft FTP Service

14900 / tcp

707919486 | 2025-03-21T21:43:38.016968

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

14909 / tcp

165188539 | 2025-02-28T09:13:15.331146

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

15006 / tcp

-274082663 | 2025-02-27T16:46:41.753086

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

15040 / tcp

-1026951088 | 2025-02-22T06:30:09.180381

erro ip

15443 / tcp

1996932384 | 2025-03-14T04:09:17.331152

"raop" nonce

16001 / tcp

-616720387 | 2025-03-14T18:18:05.740290

SSH-2.0-SSHD_0.7.6

16005 / tcp

117101543 | 2025-02-22T07:52:45.009972

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

16010 / tcp

-1839934832 | 2025-03-21T00:50:17.979622

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

16020 / tcp

410249975 | 2025-02-23T22:56:11.724138

LNS READY<>

16022 / tcp

-358801646 | 2025-03-11T17:26:19.971279

SSH-2.0-OpenSSH_6.6.1

16032 / tcp

-1399940268 | 2025-03-04T20:21:17.686577

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16033 / tcp

819727972 | 2025-03-08T22:19:58.763993

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

16034 / tcp

632542934 | 2025-03-15T11:10:25.972797

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

16042 / tcp

897328069 | 2025-02-28T17:20:18.545021

220 mail.scott000.com ESMTP

16044 / tcp

-1399940268 | 2025-03-05T22:01:52.018875

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16046 / tcp

-2096652808 | 2025-02-22T06:53:02.601745

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

16051 / tcp

-358801646 | 2025-02-24T03:39:34.755209

SSH-2.0-OpenSSH_6.6.1

16062 / tcp

-1139539254 | 2025-03-07T04:46:26.717626

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

16065 / tcp

-1399940268 | 2025-03-15T14:17:37.486091

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16070 / tcp

1911457608 | 2025-02-23T11:39:03.559954

\x00[\x00\x00\x00\x00\x00\x00

16084 / tcp

1762042191 | 2025-03-10T03:45:50.064556

\x7f\x7fICA\x00

16103 / tcp

1911457608 | 2025-03-07T16:40:44.508496

\x00[\x00\x00\x00\x00\x00\x00

16400 / tcp

45131230 | 2025-02-24T20:17:04.597731

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

16443 / tcp

-903067560 | 2025-03-06T04:46:42.337277

\x00[\x13)\xc2\x81\x7f\x00\x00

16464 / tcp

2087396567 | 2025-03-20T23:27:13.224606

kjnkjabhbanc283ubcsbhdc72

16992 / tcp

-1840324437 | 2025-03-22T15:57:40.412469

18002 / tcp

-1399940268 | 2025-03-15T20:00:01.580089

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18005 / tcp

1332894250 | 2025-03-22T07:11:36.136682

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

18020 / tcp

597764502 | 2025-03-05T07:23:55.526573

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

18024 / tcp

921225407 | 2025-02-24T08:43:48.252579

\x00\x00\x00\x04\x00\x00\x00\x00\x00

18041 / tcp

597764502 | 2025-02-23T01:09:28.547895

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

18053 / tcp

1911457608 | 2025-03-22T21:01:21.304419

\x00[\x00\x00\x00\x00\x00\x00

18061 / tcp

-297128567 | 2025-02-23T08:28:24.071199

\x04\x01\xc3\xb4\x00\x15Internal Server Error\x00\x00\x00AB\x00\x02\x05\x00

18081 / tcp

1212921144 | 2025-03-17T05:43:54.888774

0@

18109 / tcp

-784071826 | 2025-03-20T13:40:38.628352

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 6 1

18110 / tcp

632542934 | 2025-03-03T17:47:33.497399

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

18111 / tcp

-1399940268 | 2025-03-15T15:42:45.933358

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18182 / tcp

-375604792 | 2025-03-08T14:37:18.724397

220 Microsoft FTP Service

18245 / tcp

1852418385 | 2025-03-21T18:19:03.290422

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

18443 / tcp

-971970408 | 2025-03-15T09:34:56.109659

19000 / tcp

-2089734047 | 2025-03-06T09:10:39.055220

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

19014 / tcp

-1399940268 | 2025-03-22T08:41:17.085669

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

19016 / tcp

-1045760528 | 2025-03-10T04:28:45.541103

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

19082 / tcp

671605376 | 2025-03-14T05:27:04.987085

SSH-2.0-OpenSSH_X.X

19902 / tcp

-1888448627 | 2025-02-25T03:48:21.044082

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

20000 / tcp

1900503736 | 2025-02-22T23:16:24.617576

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

20150 / tcp

-1810987450 | 2025-03-19T21:07:42.389387

\xc3\xbf

20200 / tcp

-1032713145 | 2025-02-28T02:38:30.137557

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

20201 / tcp

-146605374 | 2025-03-15T16:03:27.018488

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

20256 / tcp

1887224352 | 2025-02-24T13:59:16.228819

20325 / tcp

677934968 | 2025-03-12T16:01:06.746569

lm^)Q

20500 / tcp

-358801646 | 2025-03-18T09:00:18.723485

SSH-2.0-OpenSSH_6.6.1

20547 / tcp

819727972 | 2025-03-12T00:43:47.785412

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

20880 / tcp

1370263973 | 2025-03-17T10:47:59.404937

dubbo>

21025 / tcp

-746114901 | 2025-03-22T10:47:12.250475

[KpU

21232 / tcp

165188539 | 2025-03-08T21:34:48.015746

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

21243 / tcp

-1399940268 | 2025-03-21T01:33:58.596455

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21249 / tcp

1911457608 | 2025-03-16T01:07:35.744174

\x00[\x00\x00\x00\x00\x00\x00

21264 / tcp

1911457608 | 2025-03-09T15:27:54.839041

\x00[\x00\x00\x00\x00\x00\x00

21270 / tcp

1519486042 | 2025-02-25T06:17:50.156086

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

21272 / tcp

1911457608 | 2025-02-25T00:32:18.214279

\x00[\x00\x00\x00\x00\x00\x00

21275 / tcp

165188539 | 2025-03-13T23:28:10.134198

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

21288 / tcp

921225407 | 2025-03-11T04:58:26.876176

\x00\x00\x00\x04\x00\x00\x00\x00\x00

21290 / tcp

921225407 | 2025-03-22T00:08:45.942485

\x00\x00\x00\x04\x00\x00\x00\x00\x00

21302 / tcp

819727972 | 2025-03-18T03:54:14.980756

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

21304 / tcp

205347087 | 2025-03-04T07:03:25.759411

SSH-25453-Cisco-3524665.35\n

21305 / tcp

1830187220 | 2025-02-22T17:53:44.941572

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

21311 / tcp

-1399940268 | 2025-03-04T09:56:49.423596

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21313 / tcp

-1399940268 | 2025-03-18T22:35:52.988677

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21319 / tcp

-358801646 | 2025-03-07T17:26:19.408292

SSH-2.0-OpenSSH_6.6.1

21321 / tcp

398077695 | 2025-03-14T19:58:14.482025

21323 / tcp

-1699556818 | 2025-03-17T08:08:34.455230

\x01remshd: Kerberos Authentication not enabled.\n

21357 / tcp

-1996280214 | 2025-03-22T15:32:44.616347

\x06\x04\x05@

21379 / tcp

-1399940268 | 2025-03-14T11:55:36.753267

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

22082 / tcp

-1947777893 | 2025-03-13T00:25:35.427871

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

22084 / tcp

-2033111675 | 2025-03-05T17:15:24.869219

~djb

22206 / tcp

-1399940268 | 2025-02-24T03:20:55.143071

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

22556 / tcp

1426971893 | 2025-03-21T11:27:06.913198

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

23023 / tcp

-2017887953 | 2025-03-18T03:38:22.895050

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

24084 / tcp

-2089734047 | 2025-02-27T20:12:20.543005

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

25004 / tcp

945910976 | 2025-02-27T22:23:13.084616

* OK TeamXchange IMAP4rev1 server (otyUg) ready.\r\n

25565 / tcp

-1036370807 | 2025-03-19T15:53:34.853965

JDWP-Handshake

26656 / tcp

-801484042 | 2025-03-13T05:14:15.987312

ERR 27

26657 / tcp

1842524259 | 2025-03-12T01:29:29.339834

28015 / tcp

2087396567 | 2025-03-21T11:17:55.836833

kjnkjabhbanc283ubcsbhdc72

28080 / tcp

-971970408 | 2025-03-11T00:26:43.831407

28818 / tcp

-1399940268 | 2025-03-15T16:37:49.853115

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

29799 / tcp

-1399940268 | 2025-03-10T18:02:40.382680

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30001 / tcp

820958131 | 2025-02-24T23:16:43.412395

kjnkjabhbanc283ubcsbhdc72\x02

30002 / tcp

-1839934832 | 2025-03-20T18:42:13.729444

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

30003 / tcp

-79865617 | 2025-03-14T09:53:53.377782

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com
mit-revprops depth log-revprops partial-replay ) ) )

30007 / tcp

-1261090339 | 2025-03-14T20:08:29.384212

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

30010 / tcp

-1399940268 | 2025-03-05T15:09:46.461828

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30017 / tcp

165188539 | 2025-03-04T18:19:53.492406

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

30022 / tcp

-971970408 | 2025-03-18T20:57:39.137244

30025 / tcp

1208318993 | 2025-02-23T23:19:54.002611

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

30029 / tcp

-345718689 | 2025-03-13T03:25:38.391811

Vty password is not set.

30111 / tcp

-1399940268 | 2025-03-12T13:44:41.770850

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30122 / tcp

-1139539254 | 2025-03-19T19:20:50.405254

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

30301 / tcp

104385780 | 2025-03-15T18:12:55.574676

ceph v2

30303 / tcp

-1476017887 | 2025-03-19T21:16:03.905552

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

30422 / tcp

1690634669 | 2025-03-13T11:35:06.395967

30443 / tcp

165188539 | 2025-02-21T05:21:55.133343

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

30452 / tcp

165188539 | 2025-03-19T04:39:26.940455

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

30473 / tcp

-1399940268 | 2025-02-27T06:31:49.369747

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30700 / tcp

-2089734047 | 2025-03-19T02:46:14.313679

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

30894 / tcp

819727972 | 2025-03-21T02:40:26.414176

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

30922 / tcp

-971970408 | 2025-03-20T21:25:19.201254

31022 / tcp

2087396567 | 2025-03-13T07:47:38.151105

kjnkjabhbanc283ubcsbhdc72

31122 / tcp

2103111368 | 2025-03-09T11:34:55.040024

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

31222 / tcp

819727972 | 2025-03-13T03:25:30.258093

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

31443 / tcp

-2096652808 | 2025-03-12T17:44:26.046849

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

31522 / tcp

2087396567 | 2025-03-12T23:54:44.660621

kjnkjabhbanc283ubcsbhdc72

31622 / tcp

1632932802 | 2025-03-12T22:09:29.685462

31722 / tcp

-1733106930 | 2025-03-21T14:44:46.448479

Mysql Version: 5.6.50-log\nN\n5.6.50-log\x14(\nG5se"tGE\xc3\xbf\xc3\xb7-\x02\x7f\xc2\x80\x15cB^3$Zwh$wM[mysql_native_password

31922 / tcp

-2096652808 | 2025-03-11T04:55:15.335957

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

32102 / tcp

165188539 | 2025-02-26T09:16:10.836626

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

32322 / tcp

539065883 | 2025-03-16T13:53:37.194299

32444 / tcp

-1105333987 | 2025-03-11T20:29:39.625538

\x00[KpU\x7f\x00\x00

32522 / tcp

290819026 | 2025-03-22T03:02:00.216418

welcome to Pandora console!
----------------------------
-------------------------
|     Login Time     |     2021-12-08 1...

32622 / tcp

-1729629024 | 2025-03-21T02:39:37.835740

101 imqbroker =unV

32764 / tcp

-154107716 | 2025-03-05T12:45:06.186248

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST ...

33022 / tcp

2087396567 | 2025-02-27T15:36:37.332986

kjnkjabhbanc283ubcsbhdc72

33060 / tcp

-2017887953 | 2025-03-22T17:42:21.692135

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

33222 / tcp

-1559123399 | 2025-03-19T22:48:46.402386

500 Permission denied - closing connection.

33322 / tcp

-1477838366 | 2025-03-22T07:07:12.087312

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

33389 / tcp

-441419608 | 2025-02-24T23:51:31.749479

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

33422 / tcp

233634112 | 2025-03-19T16:12:05.913261

SSH-98.60-SysaxSSH_81885..42

33522 / tcp

401555314 | 2025-03-20T13:23:00.857513

NB[GFXjA^R

33622 / tcp

-1045760528 | 2025-03-21T04:19:25.090520

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

33922 / tcp

-2096652808 | 2025-03-18T02:37:13.024614

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

34222 / tcp

-1261090339 | 2025-03-20T00:31:54.468889

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

34322 / tcp

1208318993 | 2025-03-19T17:33:39.498045

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

34422 / tcp

740837454 | 2025-02-28T03:47:04.642884

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

34522 / tcp

819727972 | 2025-03-19T10:29:20.443345

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

34622 / tcp

1741579575 | 2025-03-04T16:49:50.793375

34722 / tcp

-971970408 | 2025-03-03T23:04:53.211782

34822 / tcp

597764502 | 2025-03-19T05:21:53.252936

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

35000 / tcp

-1888448627 | 2025-03-19T05:19:32.705889

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

35422 / tcp

-784071826 | 2025-03-18T22:18:52.764556

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 6 1

35522 / tcp

-971970408 | 2025-03-17T00:01:56.417639

35622 / tcp

-2096652808 | 2025-03-04T11:27:50.836381

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

35722 / tcp

2087396567 | 2025-03-17T09:23:41.664560

kjnkjabhbanc283ubcsbhdc72

35822 / tcp

104385780 | 2025-03-17T17:45:20.283006

ceph v2

36122 / tcp

2087396567 | 2025-03-13T08:55:48.392335

kjnkjabhbanc283ubcsbhdc72

36222 / tcp

-407828767 | 2025-03-17T18:31:51.362650

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

36322 / tcp

-1248408558 | 2025-03-17T11:19:13.760919

220 MikroTik FTP server (MikroTik 6.44.3) ready

36422 / tcp

1767345577 | 2025-03-15T07:32:04.228583

Hello, this is Quagga (version 0T).
Copyright 1996-200

36522 / tcp

2087396567 | 2025-03-18T15:33:01.014077

kjnkjabhbanc283ubcsbhdc72

36622 / tcp

-445721795 | 2025-03-16T06:43:47.920303

\x00[\xc3\xaed\x1a\x7f\x00\x00

36822 / tcp

1541211644 | 2025-03-18T13:41:29.680342

[\xc2\xba\x7fs\x7f

37222 / tcp

1991883981 | 2025-03-14T18:34:00.495715

B\x00\x00\x00\xc3\xbfn\x04Too many connections

37322 / tcp

-641479109 | 2025-03-16T11:59:30.736837

[xU-

37422 / tcp

819727972 | 2025-02-28T17:54:41.266095

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

37522 / tcp

-2096652808 | 2025-03-16T09:01:14.827611

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

37622 / tcp

539065883 | 2025-03-16T01:04:06.434967

37722 / tcp

-971970408 | 2025-03-15T23:22:37.592071

37777 / tcp

639175818 | 2025-03-05T03:54:13.209521

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

38222 / tcp

1741579575 | 2025-03-11T18:03:19.115567

38322 / tcp

-527005584 | 2025-03-15T14:09:30.127200

/0 0 L
/0 0 HUH

38333 / tcp

-971970408 | 2025-03-15T21:42:49.186356

38722 / tcp

819727972 | 2025-03-07T04:56:57.773180

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

39222 / tcp

1741579575 | 2025-03-13T15:57:22.561556

39522 / tcp

2087396567 | 2025-03-11T08:35:22.614556

kjnkjabhbanc283ubcsbhdc72

39722 / tcp

2087396567 | 2025-03-05T03:21:47.708873

kjnkjabhbanc283ubcsbhdc72

39822 / tcp

-971970408 | 2025-03-12T04:57:26.463157

39922 / tcp

2087396567 | 2025-02-26T17:14:33.250457

kjnkjabhbanc283ubcsbhdc72

40070 / tcp

-1099385124 | 2025-02-28T19:14:35.484451

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

40099 / tcp

-1045760528 | 2025-03-21T18:43:47.712313

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

40322 / tcp

1642597142 | 2025-03-08T21:46:24.757770

\x00y\xc3\x90\x02\xc3\xbf\xc3\xbf\x00s\x12L\x00\x06\x11I\x00\x08\x00N\x11S\x00\xc3\x93

40522 / tcp

171352214 | 2025-03-04T06:11:15.873586

-ERR client ip is not in whitelist

40622 / tcp

2087396567 | 2025-02-26T12:14:49.152558

kjnkjabhbanc283ubcsbhdc72

41022 / tcp

2087396567 | 2025-03-08T22:02:11.947745

kjnkjabhbanc283ubcsbhdc72

41122 / tcp

398077695 | 2025-02-27T15:07:29.176378

41222 / tcp

819727972 | 2025-03-04T23:50:19.914910

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

41443 / tcp

1286504516 | 2025-03-14T02:23:49.738670

CP2E Control Console
Connected to Host: gZI

41800 / tcp

-1888448627 | 2025-03-16T00:04:37.169889

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

42022 / tcp

-288825733 | 2025-03-04T15:06:05.353275

HTTP/1.1 200 OK
Connection: close
Content-Length: 2619
Accept-Ranges: bytes
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: authorization,Content-Type
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, HEAD, DELETE
Content-Type: text/html
Server: Jetty(9.4.14.v20181114)
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1

42422 / tcp

-805362002 | 2025-03-04T18:35:30.815728

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

42424 / tcp

819727972 | 2025-03-11T10:06:02.715024

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

42443 / tcp

1911457608 | 2025-03-11T18:48:07.243778

\x00[\x00\x00\x00\x00\x00\x00

42901 / tcp

1911457608 | 2025-03-22T13:21:22.078449

\x00[\x00\x00\x00\x00\x00\x00

43222 / tcp

1636811864 | 2025-02-28T23:09:52.869069

43322 / tcp

-1316491703 | 2025-02-27T21:01:45.172758

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

43522 / tcp

1690634669 | 2025-02-25T21:15:40.270074

43622 / tcp

539065883 | 2025-02-26T23:13:42.471901

43822 / tcp

1690634669 | 2025-02-27T00:54:20.434071

44022 / tcp

2087396567 | 2025-02-26T19:47:48.572392

kjnkjabhbanc283ubcsbhdc72

44310 / tcp

-1888448627 | 2025-03-07T15:45:17.299095

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

44322 / tcp

1842524259 | 2025-02-26T09:27:04.488864

44334 / tcp

380146262 | 2025-03-05T12:29:47.165896

@RSYNCD: 30.0

44340 / tcp

-585940771 | 2025-03-12T12:45:27.146348

Unknown command\r\n

44422 / tcp

171352214 | 2025-02-26T00:47:31.350445

-ERR client ip is not in whitelist

44522 / tcp

-146605374 | 2025-02-26T06:43:38.539832

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

44622 / tcp

401555314 | 2025-02-23T02:37:33.215911

NB[GFXjA^R

44722 / tcp

1741579575 | 2025-02-26T05:24:54.176699

44818 / tcp

1208318993 | 2025-03-06T20:15:51.073407

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

45006 / tcp

-1399940268 | 2025-02-24T05:11:31.978693

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

45022 / tcp

89282912 | 2025-03-10T15:02:43.684120

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto
col:SOAP, MKSDisplayProtocol:VNC , ,

45322 / tcp

1996932384 | 2025-02-25T17:23:18.405910

"raop" nonce

45622 / tcp

-905685638 | 2025-02-25T13:33:02.775392

bxz437

45667 / tcp

-1399940268 | 2025-03-19T16:24:52.167190

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

45668 / tcp

-454087041 | 2025-03-12T21:22:13.402931

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

45922 / tcp

1690634669 | 2025-03-10T14:53:50.160829

46022 / tcp

-1032713145 | 2025-02-25T06:39:32.958678

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

46222 / tcp

996960436 | 2025-02-24T09:53:28.760135

572 Relay not authorized

46322 / tcp

1741579575 | 2025-02-24T20:11:04.479966

46522 / tcp

-971970408 | 2025-02-24T04:41:15.192928

47000 / tcp

-358801646 | 2025-02-21T00:11:52.888364

SSH-2.0-OpenSSH_6.6.1

47222 / tcp

-1111515360 | 2025-02-23T20:07:46.681286

remshd: Kerberos Authentication not enabled.

47422 / tcp

1278527606 | 2025-02-25T01:35:22.139034

SSH-2.0-Teleport

47522 / tcp

-1999117212 | 2025-02-23T16:01:19.621053

47622 / tcp

1984588611 | 2025-02-23T13:28:26.664607

47922 / tcp

2087396567 | 2025-03-10T06:23:25.310072

kjnkjabhbanc283ubcsbhdc72

47990 / tcp

-1189269828 | 2025-03-11T03:20:22.438744

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

48019 / tcp

-1399940268 | 2025-03-17T11:05:31.027899

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

48322 / tcp

1396488228 | 2025-03-10T01:33:58.471212

HTTP/1.1 200 OK
Content-Length: 2037
Cache-Control: private, max-age=300
Content-Type: text/html

48622 / tcp

-358801646 | 2025-02-23T12:16:39.529454

SSH-2.0-OpenSSH_6.6.1

48722 / tcp

-1810987450 | 2025-02-23T10:06:39.170444

\xc3\xbf

48822 / tcp

819727972 | 2025-02-23T07:51:16.068647

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

48899 / tcp

819727972 | 2025-03-22T07:00:17.739208

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

49080 / tcp

-180163620 | 2025-03-05T23:03:19.374816

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

49122 / tcp

-146605374 | 2025-02-21T05:23:25.060234

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

49152 / tcp

1449779382 | 2025-03-20T05:41:38.817836

HTTP/1.1 500 Internal Server Error
CONTENT-LENGTH: 411
CONTENT-TYPE: text/xml; charset="utf-8"
DATE: Mon, 22 Jan 2024 08:04:18 GMT
EXT:
SERVER: Linux/3.3.0, UPnP/1.0, Portable SDK for UPnP devices/1.6.18
X-User-Agent: redsonic

<s:Envelope xmlns:s="http://schemas.xmlsoap.org/soap/envelope/" s:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/">
<s:Body>
<s:Fault>
<faultcode>s:Client</faultcode>
<faultstring>UPnPError</faultstring>
<detail>
<UPnPError xmlns="urn:schemas-upnp-org:control-1-0">
<

49153 / tcp

-893477759 | 2025-03-22T13:30:34.950163

!versionbind7 t{RPowerDNS Recursor 410

49222 / tcp

1412519768 | 2025-02-22T23:39:55.618259

"AP0F1D85"
Connection: close

<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>
<BODY BGCOLOR

49422 / tcp

-441419608 | 2025-02-23T00:53:04.739477

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

49686 / tcp

-992671574 | 2025-03-07T12:29:45.585555

@RSYNCD: 26

49822 / tcp

-971970408 | 2025-02-22T20:03:34.768855

49922 / tcp

-971970408 | 2025-02-22T19:54:32.749330

50000 / tcp

-971970408 | 2025-03-12T21:17:15.119409

50003 / tcp

321971019 | 2025-03-12T04:13:01.710621

-ERR client ip is not in whitelist\r

50004 / tcp

165188539 | 2025-02-23T09:36:08.057573

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

50007 / tcp

-1986594217 | 2025-03-10T09:27:35.646696

"AP0F1D85"\r\nConnection: close\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR

50009 / tcp

-1899074860 | 2025-02-22T07:38:23.966342

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

50050 / tcp

-746114901 | 2025-03-16T12:03:46.722392

[KpU

50070 / tcp

-971970408 | 2025-03-21T23:31:10.980435

50080 / tcp

1911457608 | 2025-03-18T13:02:49.479982

\x00[\x00\x00\x00\x00\x00\x00

50100 / tcp

-146605374 | 2025-03-21T21:38:11.540683

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

50107 / tcp

-1026951088 | 2025-02-21T16:10:10.247994

erro ip

50222 / tcp

-1032713145 | 2025-02-22T06:55:13.284972

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

50622 / tcp

1948301213 | 2025-02-21T18:45:03.937797

RFB 003.003
VNC:
  Protocol Version: 3.3

50722 / tcp

-1611764932 | 2025-02-20T22:26:47.523193

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

50922 / tcp

-616720387 | 2025-02-21T15:20:11.521261

SSH-2.0-SSHD_0.7.6

51106 / tcp

2087396567 | 2025-03-20T09:28:53.052232

kjnkjabhbanc283ubcsbhdc72

51222 / tcp

2087396567 | 2025-02-21T12:16:41.602519

kjnkjabhbanc283ubcsbhdc72

51235 / tcp

-2031152423 | 2025-03-21T16:27:15.306553

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

51434 / tcp

-1189269828 | 2025-03-07T07:38:30.810693

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

51443 / tcp

-971970408 | 2025-03-11T23:40:18.860829

52881 / tcp

-1399940268 | 2025-03-20T05:07:45.522895

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

53200 / tcp

921225407 | 2025-02-27T20:19:47.494822

\x00\x00\x00\x04\x00\x00\x00\x00\x00

53413 / tcp

2087396567 | 2025-03-22T01:16:19.624005

kjnkjabhbanc283ubcsbhdc72

54138 / tcp

1363464823 | 2025-03-08T19:05:10.239947

\x00[|ox\x7f\x00\x00

54545 / tcp

-2031152423 | 2025-03-19T15:18:19.863456

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

54857 / tcp

165188539 | 2025-03-22T11:54:13.140229

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

55000 / tcp

1911457608 | 2025-03-10T00:58:18.781640

\x00[\x00\x00\x00\x00\x00\x00

55022 / tcp

1286504516 | 2025-03-07T03:05:13.136895

CP2E Control Console
Connected to Host: gZI

55200 / tcp

819727972 | 2025-03-22T19:56:07.964960

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

55222 / tcp

2087396567 | 2025-03-07T01:29:59.718039

kjnkjabhbanc283ubcsbhdc72

55422 / tcp

819727972 | 2025-03-06T16:54:20.827888

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

55442 / tcp

-438503381 | 2025-03-20T19:40:45.630558

WORLD OF WARCRAFT CONNECTION - SERVER TO CLIENT - V2

55443 / tcp

-971970408 | 2025-03-21T18:47:17.129375

55553 / tcp

740837454 | 2025-03-18T17:50:44.270281

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

55554 / tcp

-805362002 | 2025-03-20T08:18:44.889430

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

57782 / tcp

-1428621233 | 2025-03-08T21:42:52.449485

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

57922 / tcp

819727972 | 2025-03-06T03:35:33.659777

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

58122 / tcp

-407828767 | 2025-03-06T01:51:08.156629

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

58222 / tcp

2087396567 | 2025-03-06T01:13:53.651630

kjnkjabhbanc283ubcsbhdc72

58322 / tcp

971933601 | 2025-03-05T22:53:42.222889

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

58378 / tcp

321971019 | 2025-03-12T14:23:49.851352

-ERR client ip is not in whitelist\r

58522 / tcp

-1013082686 | 2025-03-05T18:55:10.779094

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

58822 / tcp

-375604792 | 2025-03-05T15:40:02.369893

220 Microsoft FTP Service

58922 / tcp

104385780 | 2025-03-05T17:35:18.739396

ceph v2

59222 / tcp

-971970408 | 2025-03-05T08:33:47.063087

60000 / tcp

1911457608 | 2025-03-14T14:19:34.594479

\x00[\x00\x00\x00\x00\x00\x00

60099 / tcp

1761482307 | 2025-03-21T23:30:34.568502

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

61613 / tcp

1426971893 | 2025-03-11T22:38:57.874118

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

62078 / tcp

980478633 | 2025-03-01T01:13:41.013497

rry, that nickname format is invalid.

63210 / tcp

660175493 | 2025-03-14T22:37:18.683253

63256 / tcp

1632932802 | 2025-03-22T02:37:22.122334

63260 / tcp

-136006866 | 2025-03-12T15:00:23.436383

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

64295 / tcp

-2089734047 | 2025-03-18T03:31:31.303666

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

64477 / tcp

-146605374 | 2025-03-09T12:05:45.245484

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

64738 / tcp

504717326 | 2025-03-15T03:34:45.226967

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 6 1

65004 / tcp

1996932384 | 2025-02-28T09:58:32.585491

"raop" nonce

139.196.119.234

Last Seen: 2025-03-22

Tags:

GeneralInformation

WebTechnologies

OpenPorts

11 / tcp 2087396567 | 2025-02-27T08:26:48.154594

13 / tcp 1215890103 | 2025-03-22T18:53:18.304346

15 / tcp 1544300041 | 2025-03-22T17:34:08.827720

17 / tcp -82008689 | 2025-03-19T20:03:55.724856

19 / tcp 620044682 | 2025-03-15T04:07:16.259361

21 / tcp 2116898107 | 2025-03-17T10:53:35.590222

23 / tcp -1816600103 | 2025-03-22T13:05:43.303199

25 / tcp -358801646 | 2025-03-20T13:56:46.126810

37 / tcp -886440009 | 2025-03-06T16:11:22.088203

43 / tcp 1741579575 | 2025-03-11T17:14:03.818471

49 / tcp -359657882 | 2025-03-13T07:27:36.007694

53 / tcp -1511422614 | 2025-03-05T13:50:41.349089

65 / tcp -1045760528 | 2025-02-25T12:10:32.542719

79 / tcp -2101653054 | 2025-03-21T19:11:50.799136

80 / tcp -1113393794 | 2025-03-05T23:16:07.242179

Hashes

93 / tcp 1911457608 | 2025-03-13T14:43:39.757113

97 / tcp 1911457608 | 2025-02-25T18:15:34.101965

102 / tcp -1399940268 | 2025-03-18T10:53:03.716690

106 / tcp 1107492609 | 2025-03-07T02:33:47.345363

110 / tcp -1097188123 | 2025-03-17T17:56:23.700147

111 / tcp 1187188851 | 2025-02-21T05:12:45.714673

119 / tcp 141730637 | 2025-03-22T18:40:44.114967

131 / tcp -1399940268 | 2025-03-16T11:53:28.804638

143 / tcp -829824006 | 2025-03-19T21:11:48.886126

175 / tcp -1327660293 | 2025-03-21T10:03:10.434837

177 / tcp 1975288991 | 2025-02-27T10:12:26.081831

179 / tcp -399606100 | 2025-03-20T20:53:30.898191

189 / tcp -1399940268 | 2025-03-12T12:56:41.661231

192 / tcp 1911457608 | 2025-03-04T05:15:29.784392

195 / tcp -971970408 | 2025-03-17T03:54:51.276667

221 / tcp 677934968 | 2025-03-17T06:43:50.891086

222 / tcp 49012578 | 2025-03-17T02:12:20.874713

243 / tcp -1230049476 | 2025-03-17T17:23:19.928515

264 / tcp -1932800090 | 2025-03-06T14:00:27.685245

311 / tcp -1547976805 | 2025-03-17T03:31:21.547535

385 / tcp -616720387 | 2025-03-05T17:05:39.500998

389 / tcp -1639129386 | 2025-03-08T16:59:10.468572

443 / tcp 1638645179 | 2025-03-19T19:27:53.266669

Hashes

444 / tcp 1282941221 | 2025-03-22T01:56:52.510928

448 / tcp -1019343788 | 2025-03-13T10:21:08.225426

450 / tcp -1099385124 | 2025-03-12T23:01:52.647816

465 / tcp 897328069 | 2025-03-14T00:05:18.148477

502 / tcp -1888448627 | 2025-03-19T15:37:35.784945

513 / tcp 1504401647 | 2025-02-28T09:08:21.052525

515 / tcp 2087396567 | 2025-02-23T10:23:54.054767

541 / tcp -1299118573 | 2025-03-09T13:54:20.091976

548 / tcp -1128967010 | 2025-03-04T23:27:18.650048

593 / tcp 1308377066 | 2025-03-08T11:40:37.255523

700 / tcp -1871658906 | 2025-03-17T17:55:03.104140

771 / tcp 819727972 | 2025-03-20T10:54:11.928004

785 / tcp -1810987450 | 2025-03-20T23:33:52.712263

789 / tcp 1911457608 | 2025-03-18T20:54:55.709619

873 / tcp 2128189041 | 2025-03-20T02:20:42.594618

887 / tcp 819727972 | 2025-03-20T13:22:01.796485

992 / tcp -1242315829 | 2025-03-17T17:57:24.611524

993 / tcp 819727972 | 2025-03-14T14:40:29.713398

995 / tcp 689999346 | 2025-03-13T04:15:21.220752

1080 / tcp 1362344524 | 2025-03-12T14:15:19.063427

1099 / tcp 1213931722 | 2025-03-07T09:26:52.737735

1119 / tcp -1713467553 | 2025-02-24T02:54:25.419119

1153 / tcp -1399940268 | 2025-03-03T19:30:35.358899

1177 / tcp -1730858130 | 2025-03-14T19:36:27.117876

1181 / tcp -1839934832 | 2025-03-05T09:19:50.352691

1188 / tcp 165188539 | 2025-03-13T21:03:55.554889

1200 / tcp -2033111675 | 2025-03-14T17:18:46.063371

1234 / tcp -1453516345 | 2025-02-24T21:56:57.782392

1292 / tcp -345718689 | 2025-03-19T11:20:03.004636

1337 / tcp -2031152423 | 2025-03-15T00:01:18.287962

1414 / tcp 632542934 | 2025-03-21T22:44:53.246435

1433 / tcp -651181868 | 2025-02-25T02:26:11.654565

1500 / tcp 1347778116 | 2025-03-16T01:06:05.676571

1521 / tcp -1184558916 | 2025-03-08T22:16:48.892368

11 / tcp

2087396567 | 2025-02-27T08:26:48.154594

13 / tcp

1215890103 | 2025-03-22T18:53:18.304346

15 / tcp

1544300041 | 2025-03-22T17:34:08.827720

17 / tcp

-82008689 | 2025-03-19T20:03:55.724856

19 / tcp

620044682 | 2025-03-15T04:07:16.259361

21 / tcp

2116898107 | 2025-03-17T10:53:35.590222

23 / tcp

-1816600103 | 2025-03-22T13:05:43.303199

25 / tcp

-358801646 | 2025-03-20T13:56:46.126810

37 / tcp

-886440009 | 2025-03-06T16:11:22.088203

43 / tcp

1741579575 | 2025-03-11T17:14:03.818471

49 / tcp

-359657882 | 2025-03-13T07:27:36.007694

53 / tcp

-1511422614 | 2025-03-05T13:50:41.349089

65 / tcp

-1045760528 | 2025-02-25T12:10:32.542719

79 / tcp

-2101653054 | 2025-03-21T19:11:50.799136

80 / tcp

-1113393794 | 2025-03-05T23:16:07.242179

93 / tcp

1911457608 | 2025-03-13T14:43:39.757113

97 / tcp

1911457608 | 2025-02-25T18:15:34.101965

102 / tcp

-1399940268 | 2025-03-18T10:53:03.716690

106 / tcp

1107492609 | 2025-03-07T02:33:47.345363

110 / tcp

-1097188123 | 2025-03-17T17:56:23.700147

111 / tcp

1187188851 | 2025-02-21T05:12:45.714673

119 / tcp

141730637 | 2025-03-22T18:40:44.114967

131 / tcp

-1399940268 | 2025-03-16T11:53:28.804638

143 / tcp

-829824006 | 2025-03-19T21:11:48.886126

175 / tcp

-1327660293 | 2025-03-21T10:03:10.434837

177 / tcp

1975288991 | 2025-02-27T10:12:26.081831

179 / tcp

-399606100 | 2025-03-20T20:53:30.898191

189 / tcp

-1399940268 | 2025-03-12T12:56:41.661231

192 / tcp

1911457608 | 2025-03-04T05:15:29.784392

195 / tcp

-971970408 | 2025-03-17T03:54:51.276667

221 / tcp

677934968 | 2025-03-17T06:43:50.891086

222 / tcp

49012578 | 2025-03-17T02:12:20.874713

243 / tcp

-1230049476 | 2025-03-17T17:23:19.928515

264 / tcp

-1932800090 | 2025-03-06T14:00:27.685245

311 / tcp

-1547976805 | 2025-03-17T03:31:21.547535

385 / tcp

-616720387 | 2025-03-05T17:05:39.500998

389 / tcp

-1639129386 | 2025-03-08T16:59:10.468572

443 / tcp

1638645179 | 2025-03-19T19:27:53.266669

444 / tcp

1282941221 | 2025-03-22T01:56:52.510928

448 / tcp

-1019343788 | 2025-03-13T10:21:08.225426

450 / tcp

-1099385124 | 2025-03-12T23:01:52.647816

465 / tcp

897328069 | 2025-03-14T00:05:18.148477

502 / tcp

-1888448627 | 2025-03-19T15:37:35.784945

513 / tcp

1504401647 | 2025-02-28T09:08:21.052525

515 / tcp

2087396567 | 2025-02-23T10:23:54.054767

541 / tcp

-1299118573 | 2025-03-09T13:54:20.091976

548 / tcp

-1128967010 | 2025-03-04T23:27:18.650048

593 / tcp

1308377066 | 2025-03-08T11:40:37.255523

700 / tcp

-1871658906 | 2025-03-17T17:55:03.104140

771 / tcp

819727972 | 2025-03-20T10:54:11.928004

785 / tcp

-1810987450 | 2025-03-20T23:33:52.712263

789 / tcp

1911457608 | 2025-03-18T20:54:55.709619

873 / tcp

2128189041 | 2025-03-20T02:20:42.594618

887 / tcp

819727972 | 2025-03-20T13:22:01.796485

992 / tcp

-1242315829 | 2025-03-17T17:57:24.611524

993 / tcp

819727972 | 2025-03-14T14:40:29.713398

995 / tcp

689999346 | 2025-03-13T04:15:21.220752

1080 / tcp

1362344524 | 2025-03-12T14:15:19.063427

1099 / tcp

1213931722 | 2025-03-07T09:26:52.737735

1119 / tcp

-1713467553 | 2025-02-24T02:54:25.419119

1153 / tcp

-1399940268 | 2025-03-03T19:30:35.358899

1177 / tcp

-1730858130 | 2025-03-14T19:36:27.117876

1181 / tcp

-1839934832 | 2025-03-05T09:19:50.352691

1188 / tcp

165188539 | 2025-03-13T21:03:55.554889

1200 / tcp

-2033111675 | 2025-03-14T17:18:46.063371

1234 / tcp

-1453516345 | 2025-02-24T21:56:57.782392

1292 / tcp

-345718689 | 2025-03-19T11:20:03.004636

1337 / tcp

-2031152423 | 2025-03-15T00:01:18.287962

1414 / tcp

632542934 | 2025-03-21T22:44:53.246435

1433 / tcp

-651181868 | 2025-02-25T02:26:11.654565

1500 / tcp

1347778116 | 2025-03-16T01:06:05.676571

1521 / tcp

-1184558916 | 2025-03-08T22:16:48.892368

1554 / tcp

1911457608 | 2025-02-23T23:19:32.626510

1599 / tcp

1544300041 | 2025-03-07T01:33:10.215748

1604 / tcp

2087396567 | 2025-03-21T18:34:44.262664

1660 / tcp

709622286 | 2025-03-20T17:34:44.614187

1723 / tcp

1103582599 | 2025-03-21T06:07:36.460255

1800 / tcp

-1399940268 | 2025-03-14T01:25:04.758728

1801 / tcp

1535389866 | 2025-03-16T13:05:59.090343

1883 / tcp

-1795027372 | 2025-03-12T09:53:14.371179