GeneralInformation

Country	China
City	Beijing
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26465

6.8A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.

2024(1)

CVE-2024-6387

8.1A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

2023(4)

CVE-2023-51767

7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

CVE-2023-51385

6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

CVE-2023-48795

5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

CVE-2023-38408

9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.

2021(2)

CVE-2021-41617

7.0sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

CVE-2021-36368

3.7An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.

2020(2)

CVE-2020-15778

7.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVE-2020-14145

5.9The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.

2019(4)

CVE-2019-16905

7.8OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.

CVE-2019-6111

5.9An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).

CVE-2019-6110

6.8In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

CVE-2019-6109

6.8An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.

2018(3)

CVE-2018-20685

5.3In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

CVE-2018-15919

5.3Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'

CVE-2018-15473

5.3OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

2017(1)

CVE-2017-15906

5.3The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.

2016(9)

CVE-2016-20012

5.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product

CVE-2016-10708

7.5sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.

CVE-2016-10012

7.8The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.

CVE-2016-10011

5.5authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

CVE-2016-10010

7.0sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.

CVE-2016-10009

7.3Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.

CVE-2016-3115

6.4Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.

CVE-2016-1908

9.8The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

CVE-2016-0777

6.5The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.

2015(4)

CVE-2015-6564

6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.

CVE-2015-6563

1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.

CVE-2015-5600

8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.

CVE-2015-5352

4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.

2014(3)

CVE-2014-2653

5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.

CVE-2014-2532

4.9sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

CVE-2014-1692

7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.

2012(1)

CVE-2012-0814

3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

2011(2)

CVE-2011-5000

3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.

CVE-2011-4327

2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

2010(3)

CVE-2010-5107

5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

CVE-2010-4755

4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.

CVE-2010-4478

7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.

2008(1)

CVE-2008-3844

9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.

2007(1)

CVE-2007-2768

4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

11 13 17 19 20 21 22 23 43 49 53 70 79 80 85 93 97 101 102 104 110 111 119 122 143 175 179 180 189 190 243 264 311 347 389 427 443 451 480 502 515 556 602 636 666 771 789 801 830 992 993 1000 1023 1080 1119 1153 1177 1193 1200 1433 1443 1447 1459 1521 1599 1723 1800 1801 1830 1883 1911 1926 1952 1958 1962 1966 2000 2002 2003 2030 2057 2063 2064 2067 2081 2083 2087 2091 2121 2200 2201 2222 2323 2332 2345 2376 2404 2435 2443 2455 2480 2557 2559 2560 2562 2762 2850 2995 3001 3050 3066 3073 3075 3083 3097 3101 3103 3108 3112 3116 3124 3131 3138 3147 3167 3179 3187 3190 3196 3198 3200 3256 3268 3299 3306 3388 3389 3503 3549 3780 3790 3950 4000 4002 4085 4150 4157 4242 4282 4321 4401 4436 4443 4444 4499 4500 4506 4524 4530 4572 4700 4786 4840 4899 4911 4949 5001 5007 5009 5010 5025 5053 5089 5122 5140 5172 5223 5224 5227 5240 5250 5251 5253 5259 5263 5269 5271 5273 5275 5280 5432 5443 5446 5523 5558 5605 5672 5721 5858 5906 5938 5986 6000 6002 6010 6308 6505 6544 6556 6633 6653 6666 6668 6755 6789 7001 7012 7015 7018 7020 7071 7170 7171 7172 7173 7218 7434 7474 7480 7548 7634 7773 7777 7788 7887 8000 8001 8004 8009 8017 8022 8031 8061 8064 8073 8079 8083 8085 8087 8089 8090 8099 8126 8127 8128 8135 8140 8145 8157 8166 8171 8181 8186 8199 8200 8230 8237 8283 8284 8291 8300 8318 8333 8343 8384 8385 8409 8432 8443 8465 8480 8504 8513 8521 8545 8548 8554 8556 8560 8566 8574 8581 8583 8590 8643 8649 8728 8732 8771 8810 8812 8813 8817 8831 8834 8841 8847 8857 8864 8868 8870 8872 8875 8878 8880 8886 8906 8999 9010 9014 9017 9018 9041 9042 9046 9048 9051 9064 9066 9076 9091 9092 9095 9103 9131 9137 9138 9151 9159 9161 9164 9167 9177 9187 9218 9236 9241 9257 9291 9306 9307 9310 9333 9398 9418 9443 9480 9505 9515 9527 9600 9633 9690 9734 9901 9926 9943 9966 9981 9988 9997 9998 9999 10003 10006 10011 10015 10023 10026 10028 10030 10033 10051 10134 10250 10302 10443 10444 10554 10892 10894 10909 10935 11000 11002 11210 11211 11288 11434 11480 11601 12000 12056 12082 12088 12106 12118 12124 12135 12152 12153 12159 12175 12200 12207 12210 12211 12223 12229 12235 12263 12273 12274 12289 12292 12301 12302 12310 12312 12321 12322 12345 12358 12371 12400 12411 12421 12440 12463 12468 12470 12471 12474 12486 12488 12493 12497 12498 12541 12546 12550 12556 12560 12561 12566 12569 12570 12579 12582 12588 12590 13047 14147 14184 14344 14406 14900 15002 15040 15044 15123 15443 15673 16010 16012 16020 16026 16041 16056 16074 16076 16084 16086 16097 16098 16311 16800 16992 16993 17777 18001 18003 18004 18043 18055 18057 18081 18094 18245 18443 18553 19000 19200 19233 20000 20030 20106 20208 20256 20547 20800 20880 21025 21232 21255 21260 21271 21277 21281 21284 21288 21294 21298 21302 21303 21323 21379 21400 21443 22000 22001 22022 22067 22069 22107 22206 22222 22403 22556 23023 23182 23424 24472 25001 25082 25105 25565 26656 26657 27015 27016 27017 27036 28015 28017 28080 30003 30011 30019 30021 30022 30023 30222 30303 30422 30444 30522 30718 30722 30822 30922 31022 31222 31322 31337 31422 31443 31522 31622 31822 31922 32022 32202 32222 32322 32400 32422 32522 32722 32764 32922 33060 33222 33322 33422 33622 33722 34022 34122 34322 34622 34722 34922 35000 35100 35222 35522 35524 35722 35822 35922 36022 36122 36222 36622 36722 36982 37422 37522 37722 37822 38122 38322 38333 38822 38922 39322 39522 40722 41922 42420 44158 44303 44306 44307 44320 44818 45002 45022 45444 45822 45886 46001 47001 47808 47822 47990 48022 48899 49152 49153 50000 50003 50006 50012 50070 50100 50107 50202 51106 51235 51443 53480 54138 54984 55000 55443 55553 55554 55555 57780 57782 60001 60021 60129 60443 61613 61616 62016 62078 63256 63260 65432

11 / tcp

539065883 | 2025-03-27T16:16:26.179560

13 / tcp

285774454 | 2025-04-05T00:53:37.218591

14:02:51 2024/1/22\n

17 / tcp

-1559123399 | 2025-03-31T09:35:47.879568

500 Permission denied - closing connection.

19 / tcp

829384519 | 2025-03-13T07:55:20.558794

 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUV

20 / tcp

819727972 | 2025-04-03T18:18:27.276648

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

21 / tcp

1564456597 | 2025-03-20T21:32:07.343540

220 Firewall Authentication required before proceeding with service

22 / tcp

-649223323 | 2025-03-21T07:24:56.591913

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3\r\n

23 / tcp

676675086 | 2025-04-02T14:53:48.490238


Password:

43 / tcp

-784071826 | 2025-04-03T16:17:10.485483

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 6 1

49 / tcp

-1909001798 | 2025-03-14T16:07:01.084825

HTTP/1.1 200 OK
Server:  
X-Frame-Options: SAMEORIGIN
Content-type: text/html; charset=UTF-8
Last-modified: Tue, 21 Dec 2021 03:13:39 GMT
Accept-Ranges: bytes
Content-length: 580
Vary: Accept-Encoding
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=0
X-Content-Type-Options: nosniff

53 / tcp

1024248778 | 2025-03-29T07:12:45.313244

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x00\xbd\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x00\xa2\x00\x04\xac٣.
\x00\x06\x85\x80\x00\x01\x00\x01\x00\x00\x00

70 / tcp

-833941849 | 2025-03-17T20:50:44.928110

\x1e\x06\xc2\x81\x01\x07version\x04bind\x10\x03

79 / tcp

-746345752 | 2025-03-21T16:29:58.710742

¥A\x01,\x02L\x08Connectx\x0857222

80 / tcp

-1663316578 | 2025-03-22T21:16:01.138790

Hashes

hash

-1705929090

http.dom_hash

1799269922

http.html_hash

-1663316578

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Sat, 22 Mar 2025 21:15:59 GMT
Content-Type: application/xml
Content-Length: 345
Connection: keep-alive
x-oss-request-id: 67DF288F34D7B33338DDBCF7
x-oss-server-time: 0
x-oss-ec: 0003-00001201

85 / tcp

165188539 | 2025-03-29T00:20:50.410695

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

93 / tcp

-1399940268 | 2025-04-02T13:58:16.740471

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

97 / tcp

-1730858130 | 2025-04-06T02:16:23.156908

RFB 003.008
VNC:
  Protocol Version: 3.8

101 / tcp

819727972 | 2025-03-10T16:08:25.305867

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

102 / tcp

599074451 | 2025-03-26T15:42:52.342535

msg

104 / tcp

-1399940268 | 2025-03-14T18:06:58.479596

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

110 / tcp

-1839934832 | 2025-03-27T21:27:55.939276

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

111 / tcp

-1497296514 | 2025-03-27T11:30:14.810713

Portmap
Program	Version	Protocol	Port
1836413812	762471798	1634494820	1635017997
1952804468	759981422	1735682106	540161075
1853121902	1949127801	1885682208	1634758764
1768910383	1785950062	218780517	1920361842
1969449028	1110389550	841887776	675639916
1330925615	842017037	173550915	1819243876
1097036905	1869494816	1668050805	1684106868
1818518062	1633903471	1970172973	1835365473
1865314917	1633946890	1479361391	1969449005
1702065197	1229208096	1630692449	926508389
1479361391	1853121902	1949127801	1885678927
1853045280	1852797806	1768318477	173550915
1634628653	1382379893	1702065197	1131176307
1852598637	1769235812	218781741	1131179893
759325027	1801809508	975200877	761488173
822938198	1767979552	825110560	1818374446
1663923563	758133024	675769461	1831809326

119 / tcp

141730637 | 2025-03-22T04:58:26.564187

HTTP/1.0 200 OK
Server: Proxy

122 / tcp

597764502 | 2025-04-02T19:13:49.449480

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

143 / tcp

-398621179 | 2025-03-31T10:50:42.699325

* OK everfull.com.cn IMAP4rev1 MDaemon 12.5.6 ready\r\n

175 / tcp

1134517380 | 2025-03-25T02:28:58.220689

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

179 / tcp

-399606100 | 2025-03-12T17:47:49.124960

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

180 / tcp

-358801646 | 2025-03-13T11:05:56.707272

SSH-2.0-OpenSSH_6.6.1

189 / tcp

1282941221 | 2025-03-31T14:09:12.610989

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

190 / tcp

1363464823 | 2025-03-27T01:52:26.618607

\x00[|ox\x7f\x00\x00

243 / tcp

-1399940268 | 2025-03-11T04:56:17.523415

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

264 / tcp

-1932800090 | 2025-04-04T04:32:05.629956

HTTP

311 / tcp

67948279 | 2025-03-15T02:58:50.075495

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET

347 / tcp

-1730858130 | 2025-03-23T16:40:59.584385

RFB 003.008
VNC:
  Protocol Version: 3.8

389 / tcp

-1907080992 | 2025-03-31T07:05:07.054795

0\x0c\\x02\\x01\\x01a\\x07\n\\x01\\x00\\x04\\x00\\x04\\x00

427 / tcp

1388449297 | 2025-03-19T00:11:02.374864

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://*.*.*.*\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:ipmi\nservice:uartmirrorlog\nservice:lighttpd\nservice:redfish\nservice:management-hardware.ThinkBMC\nservice:cdserver\nservice:hdserver\nservice:adviser\nservice:MCTPMain\nB://l:87/x\n\nResponse of service:ipmi SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:ipmi://LNV-7D53-J6001R60:623\n\n\nRespo

443 / tcp

1638645179 | 2025-03-16T04:50:16.270057

Hashes

hash

2018673315

http.dom_hash

196608935

http.html_hash

1638645179

http.server_hash

-498774968

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: AliyunOSS
Date: Sun, 16 Mar 2025 04:50:16 GMT
Content-Type: text/html
Content-Length: 327
Connection: close

451 / tcp

-1399940268 | 2025-03-16T21:34:17.973210

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

480 / tcp

819727972 | 2025-03-23T20:24:10.962923

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

502 / tcp

1911457608 | 2025-03-22T10:28:36.939318

\x00[\x00\x00\x00\x00\x00\x00

515 / tcp

2087396567 | 2025-04-04T20:21:31.348990

kjnkjabhbanc283ubcsbhdc72

556 / tcp

-1399940268 | 2025-03-11T01:40:58.310280

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

602 / tcp

-2089734047 | 2025-03-14T10:14:12.925611

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

636 / tcp

826560219 | 2025-03-29T10:52:44.473392

HTTP/1.1 400 Bad Request
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 59-8951886-0 0NNN RT(1705909763732 169) q(-1 -1 -1 -1) r(0 -1) b1

666 / tcp

-1420968138 | 2025-03-23T12:19:25.503677

HTTP/1.0 200 OK
Server: SonicWALL
Expires: -1
Cache-Control: no-cache
Content-type: text/html; charset=UTF-8;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains

771 / tcp

-358801646 | 2025-03-25T07:29:14.818800

SSH-2.0-OpenSSH_6.6.1

789 / tcp

165188539 | 2025-03-19T23:48:49.043405

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

801 / tcp

-1399940268 | 2025-03-13T03:23:48.842471

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

830 / tcp

103159425 | 2025-03-20T01:41:01.139156

SSH-1.99-RGOS_SSH

992 / tcp

-936692830 | 2025-03-10T06:51:51.458372

HTTP/1.1 202 OK
Connection: Keep-Alive
Content-Type: text/html
Keep-Alive: timeout=15; max=19

993 / tcp

-1733645023 | 2025-03-28T09:31:37.876268

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

1000 / tcp

677934968 | 2025-04-04T16:56:07.245263

lm^)Q

1023 / tcp

1830697416 | 2025-03-28T18:53:48.646195

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

1080 / tcp

1362344524 | 2025-03-21T03:30:01.443289

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.7

1119 / tcp

470305186 | 2025-04-02T18:28:57.296554

HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
Server: Microsoft-IIS/7.5
X-Powered-By: ASP.NET

1153 / tcp

493955023 | 2025-04-04T17:13:43.491129

\x00\x00\x0c\x04\x00\x00\x00\x00\x00\x00\x04\x00\x10\x00\x00\x00\n0\x05\x00\x00@\x00

1177 / tcp

599074451 | 2025-04-05T11:46:55.734061

msg

1193 / tcp

921225407 | 2025-03-08T20:03:43.353303

\x00\x00\x00\x04\x00\x00\x00\x00\x00

1200 / tcp

-2107996212 | 2025-04-04T07:27:11.617343

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

1433 / tcp

555056254 | 2025-03-15T02:01:39.587082

MSSQL Server\nVersion: 171050560 (0xa320640)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nTarget_Name: 3NXCU7QCCJGSTII\nProduct_Version: 6.1.7601 Ntlm 15\nOS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1\nNetBIOS_Domain_Name: 3NXCU7QCCJGSTII\nNetBIOS_Computer_Name: 3NXCU7QCCJGSTII\nDNS_Domain_Name: 3NXCU7QCCJGSTII\nDNS_Computer_Name: 3NXCU7QCCJGSTII\nMsvAvFlags: 01000000\nSystem_Time: 2024-01-22 01:19:47 +0000 UTC\n\n

1443 / tcp

-1715152554 | 2025-03-16T04:50:14.416361

Hashes

hash

531573676

http.dom_hash

1239617585

http.html_hash

-1715152554

http.server_hash

1727046647

http.title_hash

-1828380909

302 Found

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Sun, 16 Mar 2025 04:50:14 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://39.103.20.14:443/

1447 / tcp

-1399940268 | 2025-03-24T09:39:15.181290

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1459 / tcp

-1399940268 | 2025-03-22T11:38:45.258188

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1521 / tcp

-1184558916 | 2025-03-25T01:02:24.909679

Version:11.2.0.4.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=186647552)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

1599 / tcp

2087396567 | 2025-03-08T19:52:21.270420

kjnkjabhbanc283ubcsbhdc72

1723 / tcp

-1608241410 | 2025-03-19T00:17:18.270864

Firmware: 1\nHostname: local\nVendor: linux\n

1800 / tcp

-1189269828 | 2025-04-03T18:36:11.622938

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1801 / tcp

-1299899661 | 2025-03-23T06:13:56.663413

\\x10Z\x0b\\x00LIOR<\\x02\\x00\\x00\\xff\\xff\\xff\\xff\\x00\\x00\\x12\\x00a36a0e421af47074\\x97W\\xcd[\\x98\\xc4\\x1aJ\\xa5\xd1\xbf\\xf9\\xbd\\xc7\\xce\\xfd92d3\\x10\\x01\\x00\\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

1830 / tcp

-1399940268 | 2025-03-14T04:28:53.732601

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1883 / tcp

819727972 | 2025-03-27T09:12:03.580713

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

1911 / tcp

819727972 | 2025-03-09T13:38:48.706599

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

1926 / tcp

819727972 | 2025-04-02T07:21:59.565931

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

1952 / tcp

1332894250 | 2025-03-29T13:23:18.539926

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

1958 / tcp

-1611764932 | 2025-03-16T06:58:18.506989

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

1962 / tcp

-1230049476 | 2025-03-27T01:59:13.373840

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

1966 / tcp

-1839934832 | 2025-03-26T18:20:07.311382

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

2000 / tcp

-2017887953 | 2025-04-05T10:00:14.334935

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

2002 / tcp

-1626979812 | 2025-03-18T15:17:09.631150

220 Service ready for new user.

2003 / tcp

819727972 | 2025-03-25T16:28:07.554122

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

2030 / tcp

-877598700 | 2025-04-02T16:43:12.086116

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\\x01\xc3\xbf\xc3\xbb\\x03\xc3\xbf\xc3\xbd\\x01\xc3\xbf\xc3\xbe\\x01Username:

2057 / tcp

1308377066 | 2025-03-25T04:01:40.702807

ncacn_http/1.0

2063 / tcp

165188539 | 2025-03-15T17:14:27.439201

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

2064 / tcp

-1399940268 | 2025-03-31T09:53:44.004124

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2067 / tcp

2033888749 | 2025-03-22T05:07:56.374736

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

2081 / tcp

103159425 | 2025-03-31T08:25:34.783699

SSH-1.99-RGOS_SSH

2083 / tcp

1741579575 | 2025-04-02T09:23:54.239560

2087 / tcp

104385780 | 2025-03-24T19:16:51.166296

ceph v2

2091 / tcp

-2089734047 | 2025-04-03T11:53:19.007294

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2121 / tcp

141730637 | 2025-03-14T12:04:12.852192

HTTP/1.0 200 OK
Server: Proxy

2200 / tcp

1023953321 | 2025-03-26T21:38:41.072945

HTTP/1.0 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

2201 / tcp

-358801646 | 2025-04-03T22:05:23.494671

SSH-2.0-OpenSSH_6.6.1

2222 / tcp

2036221768 | 2025-04-05T17:45:25.339123

SSH-2.0-paramiko_2.4.2\r\n\n

2323 / tcp

1662205251 | 2025-03-19T18:42:31.342697

HTTP/1.0 404 FAIL
Content-length:5
Connection:Close

2332 / tcp

1960438949 | 2025-03-22T23:41:42.194216

Siemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready
ÿûÿûÿýÿþUsername:

2345 / tcp

-1399940268 | 2025-03-29T01:41:25.313973

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2376 / tcp

671605376 | 2025-03-31T15:33:50.914013

SSH-2.0-OpenSSH_X.X

2404 / tcp

819727972 | 2025-03-07T18:11:30.271940

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

2435 / tcp

-1261090339 | 2025-03-29T02:15:04.744624

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

2443 / tcp

-1795027372 | 2025-03-15T12:58:48.012027

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

2455 / tcp

740837454 | 2025-04-04T21:12:52.422165

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

2480 / tcp

-2118655245 | 2025-03-23T11:08:04.035174

Hashes

hash

1015654041

http.dom_hash

-2006505642

http.html_hash

-2118655245

HTTP/1.0 500 Internal Server Error
Content-Length: 20

2557 / tcp

-1804465946 | 2025-03-13T16:11:15.831635

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Server: Kestrel
Transfer-Encoding: chunked
Strict-Transport-Security: max-age=2592000

2559 / tcp

-1899074860 | 2025-04-01T02:14:56.475429

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

2560 / tcp

819727972 | 2025-03-29T18:29:11.232438

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

2562 / tcp

1911457608 | 2025-03-18T12:36:12.507848

\x00[\x00\x00\x00\x00\x00\x00

2762 / tcp

50497985 | 2025-04-05T19:01:43.430540

\x00[\xc3\x88\xc3\x9dS\x7f\x00\x00

2850 / tcp

1911457608 | 2025-03-31T11:35:14.076808

\x00[\x00\x00\x00\x00\x00\x00

2995 / tcp

117101543 | 2025-03-25T22:44:19.197700

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

3001 / tcp

921225407 | 2025-03-12T21:13:24.120937

\x00\x00\x00\x04\x00\x00\x00\x00\x00

3050 / tcp

-2089734047 | 2025-03-13T23:23:31.549662

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3066 / tcp

819727972 | 2025-03-31T22:30:01.402635

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

3073 / tcp

819727972 | 2025-03-31T16:25:41.989429

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

3075 / tcp

1208318993 | 2025-04-06T07:43:02.232854

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

3083 / tcp

1911457608 | 2025-03-13T00:07:55.190062

\x00[\x00\x00\x00\x00\x00\x00

3097 / tcp

-1399940268 | 2025-03-25T08:08:29.469563

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3101 / tcp

-1399940268 | 2025-03-18T03:06:19.592297

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3103 / tcp

-303199180 | 2025-03-24T21:10:06.333161

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

3108 / tcp

1919228981 | 2025-03-11T06:43:04.263730

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

3112 / tcp

2098371729 | 2025-03-14T01:27:43.114144

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

3116 / tcp

-1399940268 | 2025-04-05T21:25:54.315871

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3124 / tcp

921225407 | 2025-03-15T21:22:24.426875

\x00\x00\x00\x04\x00\x00\x00\x00\x00

3131 / tcp

1919228981 | 2025-03-15T19:49:56.684550

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

3138 / tcp

1282941221 | 2025-03-09T19:15:08.220810

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

3147 / tcp

-441419608 | 2025-03-11T04:12:15.759984

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

3167 / tcp

-1399940268 | 2025-03-15T22:28:54.685540

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3179 / tcp

819727972 | 2025-03-31T08:58:16.512035

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

3187 / tcp

1208318993 | 2025-03-21T20:04:13.028146

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

3190 / tcp

-2089734047 | 2025-03-20T18:31:02.208227

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3196 / tcp

1911457608 | 2025-03-25T01:32:03.819958

\x00[\x00\x00\x00\x00\x00\x00

3198 / tcp

-2089734047 | 2025-04-04T19:09:58.695552

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3200 / tcp

1761482307 | 2025-03-19T21:21:03.690279

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

3256 / tcp

-1261090339 | 2025-03-14T19:05:29.766524

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

3268 / tcp

1727372229 | 2025-04-04T13:31:15.058987

HTTP/1.1 302 
Location: http://116.6.76.114:3268/index.html

3299 / tcp

1208318993 | 2025-03-19T22:26:32.129723

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

3306 / tcp

292351399 | 2025-03-29T04:54:20.480049

Mysql Version: 5.5.24-log \r\nN\\x00\\x00\\x00\n5.5.24-log\\x00\\x87\\x00\\x00\\x00uF>E}hpx\\x00\\xff\\xf7!\\x02\\x00\\x0f\\x80\\x15\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00-rx$GyO\\aT]Z\\x00mysql_native_password\\x00

3388 / tcp

1911457608 | 2025-03-23T22:07:17.574968

\x00[\x00\x00\x00\x00\x00\x00

3389 / tcp

848680996 | 2025-04-05T01:46:00.107729

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x02\t\\x08\\x00\\x02\\x00\\x00\\x00\n\nFlag: PROTOCOL_HYBRID\nTarget_Name: WINCTYU-KTI28LG\nProduct_Version: 6.1.7601 Ntlm 15\nOS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1\nNetBIOS_Domain_Name: WINCTYU-KTI28LG\nNetBIOS_Computer_Name: WINCTYU-KTI28LG\nDNS_Domain_Name: WINCTYU-KTI28LG\nDNS_Computer_Name: WINCTYU-KTI28LG\nSystem_Time: 2024-01-22 08:43:05 +0000 UTC\n\n

3503 / tcp

-1399940268 | 2025-03-20T12:56:24.658868

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3549 / tcp

1134517380 | 2025-04-05T23:01:05.489946

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

3780 / tcp

819727972 | 2025-03-27T08:33:32.167286

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

3790 / tcp

1308377066 | 2025-04-05T21:24:36.293508

ncacn_http/1.0

3950 / tcp

-1626979812 | 2025-03-26T00:04:42.098185

220 Service ready for new user.

4000 / tcp

-1960639992 | 2025-04-05T08:05:32.380733

HTTP/1.1 401 Unauthorized

4002 / tcp

-339084706 | 2025-03-16T19:44:49.527865

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

4085 / tcp

-1399940268 | 2025-03-11T15:19:56.583903

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4150 / tcp

1189133115 | 2025-03-19T12:09:33.635585

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

4157 / tcp

-546659243 | 2025-04-01T17:56:33.560730

ôInternal Server ErrorAB

4242 / tcp

-1879056922 | 2025-03-24T18:43:02.399274

HTTP/1.1 403 Forbidden
Server: Apache/2.4.41 (Unix) OpenSSL/1.1.1d TST PHP/7.3.11
Content-Type: text/plain; charset=utf-8
Connection: close

4282 / tcp

1220320909 | 2025-04-01T03:55:21.589772

[îd

4321 / tcp

-1250504565 | 2025-03-25T02:48:22.093520

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x80\x00\x04\x00\x01\x00\x00\x00\x05\x00\xff\xff\xff\x00\x00\x04\x08\x00\x00\x00\x00\x00\x7f\xff\x00\x00\x00\x00\x08\x07\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01

4401 / tcp

707919486 | 2025-03-31T12:03:42.637804

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

4436 / tcp

1665283070 | 2025-03-22T22:01:18.352504

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x01\x00\x00\x10\x00\x00\n0\x03\x00\x00\x00\x01\x00\x05\x00\x00@\x00\x00\x06\x00\x00\x1f@

4443 / tcp

-1060562267 | 2025-04-04T13:29:51.356531

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae29b6_PS-NKG-01Aqo82_2892-58968

4444 / tcp

-1329831334 | 2025-03-21T15:55:56.504623

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

4499 / tcp

1911457608 | 2025-03-07T18:36:24.085636

\x00[\x00\x00\x00\x00\x00\x00

4500 / tcp

1911457608 | 2025-03-14T04:38:10.070460

\x00[\x00\x00\x00\x00\x00\x00

4506 / tcp

1996932384 | 2025-04-06T02:54:00.965118

"raop" nonce

4524 / tcp

-1399940268 | 2025-03-15T02:38:01.130626

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4530 / tcp

-1399940268 | 2025-03-26T15:38:28.923242

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4572 / tcp

1504401647 | 2025-03-31T15:36:04.359849

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

4700 / tcp

-1399940268 | 2025-03-19T19:33:23.641359

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4786 / tcp

1830697416 | 2025-03-12T17:16:13.567070

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

4840 / tcp

-1399940268 | 2025-04-05T19:11:13.111137

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4899 / tcp

1842524259 | 2025-03-13T05:44:29.795421

4911 / tcp

-1399940268 | 2025-03-23T22:33:52.667856

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4949 / tcp

2087396567 | 2025-03-19T05:56:49.613333

kjnkjabhbanc283ubcsbhdc72

5001 / tcp

-1839934832 | 2025-04-02T21:20:22.628782

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

5007 / tcp

-1327660293 | 2025-04-04T03:56:36.178166

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

5009 / tcp

-1413918021 | 2025-04-06T02:41:20.863814

acpp\\x00\\x03\\x00\\x01E\\xe2\\x05\\x98\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\xff\\xff\\xff\\xf0\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00

5010 / tcp

165188539 | 2025-04-04T07:38:43.277308

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

5025 / tcp

-1399940268 | 2025-03-13T00:45:18.839566

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5053 / tcp

-2089734047 | 2025-03-11T14:19:18.825922

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5089 / tcp

1911457608 | 2025-03-31T08:56:31.192465

\x00[\x00\x00\x00\x00\x00\x00

5122 / tcp

-904840257 | 2025-03-22T09:44:13.111765

572 Relay not authorized\r\n

5140 / tcp

-1399940268 | 2025-03-26T11:04:57.080250

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5172 / tcp

1887224352 | 2025-04-02T08:34:11.020703

5223 / tcp

-1399940268 | 2025-03-13T12:30:47.899959

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5224 / tcp

632542934 | 2025-03-11T20:27:40.746847

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

5227 / tcp

1189133115 | 2025-03-26T18:51:57.966795

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

5240 / tcp

-1399940268 | 2025-03-29T20:08:32.803077

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5250 / tcp

-454087041 | 2025-03-09T10:04:01.853229

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

5251 / tcp

-2080784861 | 2025-03-24T09:18:20.195907

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

5253 / tcp

-585940771 | 2025-03-24T07:32:09.376393

Unknown command\r\n

5259 / tcp

320677201 | 2025-03-22T20:02:25.506159

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

5263 / tcp

-2089734047 | 2025-03-29T02:08:49.359167

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5269 / tcp

-1165098486 | 2025-03-15T06:30:46.355477

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705938487.609-w-waf02tjgt

5271 / tcp

671605376 | 2025-03-09T10:54:24.667851

SSH-2.0-OpenSSH_X.X

5273 / tcp

819727972 | 2025-03-15T16:08:56.739817

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

5275 / tcp

-801484042 | 2025-03-20T13:05:06.577778

ERR 27

5280 / tcp

-2084705145 | 2025-03-09T10:26:53.032403

HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET

5432 / tcp

669849225 | 2025-04-03T06:28:05.012517

SSH-98.60-SysaxSSH_81885..42\r\n

5443 / tcp

-1737707071 | 2025-03-17T14:56:37.043329

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

5446 / tcp

-1538260461 | 2025-03-08T14:58:39.206286

\x01\x00\x00\x00

5523 / tcp

1911457608 | 2025-03-19T02:39:48.765548

\x00[\x00\x00\x00\x00\x00\x00

5558 / tcp

-2031152423 | 2025-03-23T15:59:25.601076

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

5605 / tcp

-1428621233 | 2025-04-05T09:14:12.556120

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

5672 / tcp

575925250 | 2025-04-01T10:28:16.909534

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

5721 / tcp

165188539 | 2025-03-20T22:08:34.546477

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

5858 / tcp

-1399940268 | 2025-03-25T01:09:44.791373

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5906 / tcp

-840053751 | 2025-04-05T15:34:08.693246

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET,PUT,DELETE OPTIONS
Access-Control-Allow-Headers: Origin, Authorization, Accept,Content-Type
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET,PUT,DELETE OPTIONS
Access-Control-Allow-Headers: Origin, Authorization, Accept,Content-Type
Access-Control-Allow-Credentials: tru

5938 / tcp

1919228981 | 2025-04-03T12:01:06.155459

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

5986 / tcp

2087396567 | 2025-03-23T09:26:35.830630

kjnkjabhbanc283ubcsbhdc72

6000 / tcp

1504401647 | 2025-04-02T23:56:34.056595

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

6002 / tcp

1231376952 | 2025-04-05T12:14:58.761307

6010 / tcp

-1947777893 | 2025-03-09T19:34:54.887100

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

6308 / tcp

1308377066 | 2025-04-02T01:32:15.547383

ncacn_http/1.0

6505 / tcp

-1105333987 | 2025-03-23T09:47:43.045311

\x00[KpU\x7f\x00\x00

6544 / tcp

-1888448627 | 2025-03-21T22:30:00.002642

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

6556 / tcp

1615193817 | 2025-03-10T13:41:35.337540

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

6633 / tcp

-1045760528 | 2025-03-26T22:09:55.553952

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

6653 / tcp

165188539 | 2025-03-13T00:16:19.097106

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

6666 / tcp

4935895 | 2025-03-14T23:04:08.353853

HTTP/1.1 400 Bad Request
Server: CloudWAF

6668 / tcp

1363464823 | 2025-03-20T05:44:31.185745

\x00[|ox\x7f\x00\x00

6755 / tcp

1492413928 | 2025-03-10T21:23:38.513367

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

6789 / tcp

-2089734047 | 2025-03-11T21:36:03.675120

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

7001 / tcp

-829704895 | 2025-04-03T13:33:05.556433

+OK-1035|

7012 / tcp

165188539 | 2025-03-23T04:42:57.547672

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

7015 / tcp

819727972 | 2025-03-20T17:14:41.609620

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

7018 / tcp

-1399940268 | 2025-03-19T21:22:18.774531

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7020 / tcp

-1733645023 | 2025-03-23T10:16:09.545008

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

7071 / tcp

-441419608 | 2025-03-16T17:17:48.701467

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

7170 / tcp

897328069 | 2025-03-28T17:24:08.862246

220 mail.scott000.com ESMTP

7171 / tcp

1282941221 | 2025-04-02T05:35:52.383401

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

7172 / tcp

-1888448627 | 2025-03-25T23:47:24.638347

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

7173 / tcp

-1399940268 | 2025-04-06T03:19:23.871238

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7218 / tcp

1492413928 | 2025-03-11T01:33:52.544289

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

7434 / tcp

1996932384 | 2025-04-01T18:12:30.559946

"raop" nonce

7474 / tcp

-2118655245 | 2025-03-27T11:43:49.339042

Hashes

hash

1015654041

http.dom_hash

-2006505642

http.html_hash

-2118655245

HTTP/1.0 500 Internal Server Error
Content-Length: 20

7480 / tcp

165188539 | 2025-03-23T12:59:50.031065

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

7548 / tcp

660175493 | 2025-04-01T11:29:51.358365

7634 / tcp

1741579575 | 2025-04-01T15:29:46.810143

7773 / tcp

-2046514463 | 2025-03-14T18:12:34.055732

AB\x01\t

7777 / tcp

1391945995 | 2025-03-27T14:32:06.533605

HTTP/1.1 403 Forbidden 
Content-Type: text/plain; charset=utf-8
Proxy-Authenticate: Basic realm=""

7788 / tcp

-441419608 | 2025-03-28T17:28:55.074458

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

7887 / tcp

-1746074029 | 2025-04-06T00:15:40.178592

101 imqbroker =unV\r\n

8000 / tcp

-1204391172 | 2025-03-16T06:19:58.169502

JDWP-Handshake

8001 / tcp

2103111368 | 2025-03-10T20:06:08.586965

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

8004 / tcp

921225407 | 2025-03-28T15:06:42.215214

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8009 / tcp

539065883 | 2025-03-18T10:20:16.084307

8017 / tcp

1911457608 | 2025-03-19T02:36:41.281419

\x00[\x00\x00\x00\x00\x00\x00

8022 / tcp

819727972 | 2025-03-11T02:40:25.047208

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8031 / tcp

-18839499 | 2025-03-18T02:54:24.569081

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 657cf309_gangwangtong32_18208-2853

8061 / tcp

-303199180 | 2025-03-31T07:02:49.997937

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

8064 / tcp

937756010 | 2025-04-04T01:29:53.327280

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8073 / tcp

819727972 | 2025-03-17T02:55:53.369048

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8079 / tcp

-2089734047 | 2025-04-01T00:23:18.419035

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8083 / tcp

-2017887953 | 2025-04-01T08:30:56.636142

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

8085 / tcp

-345718689 | 2025-04-01T16:35:42.234321

Vty password is not set.

8087 / tcp

165188539 | 2025-04-04T04:54:30.305076

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8089 / tcp

-2096652808 | 2025-03-26T10:04:59.464003

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8090 / tcp

0 | 2025-03-12T16:50:13.903723

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

8099 / tcp

623236583 | 2025-04-03T18:15:06.193517

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae293a_dedxin34_19677-349

8126 / tcp

-971970408 | 2025-03-21T13:39:28.623591

8127 / tcp

117101543 | 2025-03-31T05:47:45.194812

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

8128 / tcp

-1476017887 | 2025-04-01T02:35:31.134427

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

8135 / tcp

-1453516345 | 2025-03-24T02:56:11.049006

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

8140 / tcp

2087396567 | 2025-04-01T21:31:49.000969

kjnkjabhbanc283ubcsbhdc72

8145 / tcp

51259122 | 2025-03-08T18:43:18.537769

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

8157 / tcp

117101543 | 2025-03-20T23:19:18.519382

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

8166 / tcp

-1399940268 | 2025-03-21T16:15:14.922105

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8171 / tcp

1381121983 | 2025-04-06T00:17:46.823550

Notify\r\n

8181 / tcp

2087396567 | 2025-03-26T21:00:24.592584

kjnkjabhbanc283ubcsbhdc72

8186 / tcp

1615193817 | 2025-03-12T23:38:44.522046

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

8199 / tcp

-1598265216 | 2025-03-11T08:01:38.440535

@RSYNCD: 31.0

8200 / tcp

1320285193 | 2025-03-28T12:34:53.185006

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

8230 / tcp

-1013082686 | 2025-04-01T01:05:30.589411

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8237 / tcp

165188539 | 2025-03-13T22:59:37.806365

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8283 / tcp

-2140303521 | 2025-03-13T16:04:29.222363

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

8284 / tcp

-1032713145 | 2025-03-21T20:35:24.629124

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

8291 / tcp

-2089734047 | 2025-03-24T00:13:05.591093

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8300 / tcp

-734440417 | 2025-03-16T11:45:40.124374

HTTP/1.1 400 Bad Request
Content-Type: text/html
Connection: close
Server: nginx/1.17.3

8318 / tcp

-122096153 | 2025-04-03T22:27:53.098382

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

8333 / tcp

-1729028106 | 2025-04-06T00:16:40.882381

HTTP/1.1 401 Unauthorized
Content-Type: text/html
Server: Microsoft-IIS/10.0

8343 / tcp

1911457608 | 2025-04-02T00:57:31.241000

\x00[\x00\x00\x00\x00\x00\x00

8384 / tcp

2087396567 | 2025-04-04T07:02:56.246191

kjnkjabhbanc283ubcsbhdc72

8385 / tcp

1911457608 | 2025-04-05T20:48:38.055015

\x00[\x00\x00\x00\x00\x00\x00

8409 / tcp

-980525298 | 2025-04-05T00:32:37.152718

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8432 / tcp

165188539 | 2025-03-20T06:10:18.505200

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8443 / tcp

-1959042930 | 2025-03-07T12:32:28.325585

HTTP/1.1 403 Forbidden
Content-Length:0

8465 / tcp

-136006866 | 2025-03-23T04:08:11.137130

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

8480 / tcp

1543809371 | 2025-03-25T19:00:14.936130

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

8504 / tcp

-1399940268 | 2025-03-29T11:56:31.857290

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8513 / tcp

-1453516345 | 2025-03-26T15:02:56.769385

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

8521 / tcp

-1713437100 | 2025-04-04T14:47:33.666882

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

8545 / tcp

819727972 | 2025-03-19T05:07:28.461652

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8548 / tcp

1911457608 | 2025-03-14T19:55:46.221010

\x00[\x00\x00\x00\x00\x00\x00

8554 / tcp

-971970408 | 2025-03-31T14:22:32.688918

8556 / tcp

819727972 | 2025-03-17T21:41:34.489819

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8560 / tcp

-980525298 | 2025-03-24T05:26:28.669006

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8566 / tcp

-1996280214 | 2025-04-02T00:20:42.125141

\x06\x04\x05@

8574 / tcp

-1598265216 | 2025-03-26T00:48:52.511329

@RSYNCD: 31.0

8581 / tcp

1632932802 | 2025-03-27T17:54:46.660829

8583 / tcp

1632932802 | 2025-04-03T01:04:19.492589

8590 / tcp

819727972 | 2025-03-19T23:24:31.148685

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8643 / tcp

1911457608 | 2025-03-20T07:35:54.989041

\x00[\x00\x00\x00\x00\x00\x00

8649 / tcp

1489954473 | 2025-04-05T05:05:43.147363

HTTP/1.1 410 Gone
Server: openresty
Transfer-Encoding: chunked
Connection: keep-alive
Via: 1.1 google

8728 / tcp

-2107996212 | 2025-04-01T01:39:53.972319

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8732 / tcp

819727972 | 2025-03-26T05:12:42.301204

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8771 / tcp

1911457608 | 2025-04-02T16:54:59.001871

\x00[\x00\x00\x00\x00\x00\x00

8810 / tcp

2098371729 | 2025-03-29T20:26:01.808743

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

8812 / tcp

504717326 | 2025-03-17T13:03:05.406666

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 6 1

8813 / tcp

366084633 | 2025-04-05T00:02:04.997320

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

8817 / tcp

-2089734047 | 2025-03-22T00:42:27.451657

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8831 / tcp

455076604 | 2025-03-31T19:44:26.459128

!\x07version\x04bind7 t{RPowerDNS Recursor 410

8834 / tcp

104385780 | 2025-04-03T22:56:31.798667

ceph v2

8841 / tcp

-1013082686 | 2025-03-12T09:48:26.560415

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8847 / tcp

1911457608 | 2025-04-03T22:38:29.410654

\x00[\x00\x00\x00\x00\x00\x00

8857 / tcp

575925250 | 2025-03-26T03:07:56.238264

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

8864 / tcp

819727972 | 2025-03-14T10:21:13.753642

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

8868 / tcp

-1399940268 | 2025-03-16T20:05:39.540771

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8870 / tcp

-1399940268 | 2025-03-24T05:23:57.185031

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8872 / tcp

-1399940268 | 2025-04-03T15:02:00.707958

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8875 / tcp

897328069 | 2025-03-13T23:35:46.794574

220 mail.scott000.com ESMTP

8878 / tcp

-1399940268 | 2025-03-12T20:59:35.772640

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8880 / tcp

897328069 | 2025-04-05T09:29:12.404497

220 mail.scott000.com ESMTP

8886 / tcp

1208318993 | 2025-03-08T21:23:13.526024

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

8906 / tcp

-1399940268 | 2025-03-22T08:15:20.432673

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8999 / tcp

971933601 | 2025-03-07T17:19:23.377180

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

9010 / tcp

971933601 | 2025-03-13T20:20:57.869138

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

9014 / tcp

1574088840 | 2025-03-18T11:54:14.231628

">Application and Content Networking Software 3.9</a>)\n</BODY><

9017 / tcp

1761482307 | 2025-03-28T17:32:53.792297

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

9018 / tcp

1911457608 | 2025-03-27T18:38:08.435813

\x00[\x00\x00\x00\x00\x00\x00

9041 / tcp

-1839934832 | 2025-03-19T19:46:14.462118

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

9042 / tcp

-154107716 | 2025-03-20T10:20:50.457129

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST ...

9046 / tcp

1332894250 | 2025-03-24T19:15:49.456944

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

9048 / tcp

-1399940268 | 2025-03-19T16:19:33.960218

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9051 / tcp

-971970408 | 2025-03-13T18:59:48.120374

9064 / tcp

1208318993 | 2025-03-13T20:23:28.851586

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

9066 / tcp

321971019 | 2025-03-21T03:15:51.915524

-ERR client ip is not in whitelist\r

9076 / tcp

-1399940268 | 2025-03-29T20:10:00.315118

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9091 / tcp

-971970408 | 2025-03-27T18:39:21.431288

9092 / tcp

2098371729 | 2025-03-27T02:05:40.074701

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

9095 / tcp

1948301213 | 2025-04-04T13:56:05.284890

RFB 003.003
VNC:
  Protocol Version: 3.3

9103 / tcp

819727972 | 2025-04-03T01:26:31.857217

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9131 / tcp

-1435414831 | 2025-03-15T10:34:43.576474

roku: ready\r\n

9137 / tcp

165188539 | 2025-03-24T21:54:30.846624

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9138 / tcp

1911457608 | 2025-04-02T15:02:30.829931

\x00[\x00\x00\x00\x00\x00\x00

9151 / tcp

-138733098 | 2025-03-22T16:17:30.348899

roku: ready

9159 / tcp

-1114821551 | 2025-04-02T16:26:32.127389

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

9161 / tcp

-1399940268 | 2025-04-04T21:23:46.595631

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9164 / tcp

1911457608 | 2025-03-23T14:38:26.918731

\x00[\x00\x00\x00\x00\x00\x00

9167 / tcp

-1399940268 | 2025-04-03T11:56:05.834505

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9177 / tcp

165188539 | 2025-03-25T11:39:21.346136

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9187 / tcp

-2031152423 | 2025-03-10T21:59:52.018735

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

9218 / tcp

-1399940268 | 2025-03-11T20:21:17.018541

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9236 / tcp

-1611764932 | 2025-04-05T20:21:37.237883

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

9241 / tcp

-2031152423 | 2025-03-26T00:19:28.842503

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

9257 / tcp

-1888448627 | 2025-03-20T17:43:05.388604

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9291 / tcp

-136006866 | 2025-03-11T21:01:43.784997

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

9306 / tcp

819727972 | 2025-04-02T19:57:46.814135

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9307 / tcp

-1399940268 | 2025-03-13T20:45:27.197838

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9310 / tcp

-2089734047 | 2025-03-16T12:59:34.602202

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9333 / tcp

-345718689 | 2025-03-29T13:43:39.597503

Vty password is not set.

9398 / tcp

-1872120160 | 2025-04-02T09:49:47.425019

">Application and Content Networking Software 3.9</a>)
</BODY><

9418 / tcp

694512854 | 2025-04-02T15:51:08.811054

220-FileZilla Server 中文版 0.9.60 beta
220-written by Tim Kosse (tim.kosse@filezilla-project.org)
220 Please visit https://filezilla-project.org/

9443 / tcp

1314075639 | 2025-03-12T10:03:25.765455

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Wed, 12 Mar 2025 10:03:25 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://39.103.20.14:443/

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

9480 / tcp

-2096652808 | 2025-03-31T16:33:17.642483

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9505 / tcp

165188539 | 2025-03-15T20:24:33.523109

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9515 / tcp

-358801646 | 2025-03-12T04:31:40.787152

SSH-2.0-OpenSSH_6.6.1

9527 / tcp

-1737707071 | 2025-04-02T06:03:42.980474

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

9600 / tcp

-1899074860 | 2025-03-21T08:57:43.749729

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

9633 / tcp

2087396567 | 2025-04-05T11:15:35.557874

kjnkjabhbanc283ubcsbhdc72

9690 / tcp

-1327660293 | 2025-03-21T22:47:06.788797

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

9734 / tcp

-407828767 | 2025-04-04T21:28:28.423014

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

9901 / tcp

-1399940268 | 2025-04-03T18:12:23.369759

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9926 / tcp

-1428621233 | 2025-03-16T12:24:00.640195

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

9943 / tcp

751610770 | 2025-03-24T17:12:13.633089

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2938_PS-000-01Mba83_19552-63826

9966 / tcp

-1399940268 | 2025-03-29T07:57:49.800326

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9981 / tcp

0 | 2025-03-20T08:51:09.849171

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

9988 / tcp

-445721795 | 2025-03-23T18:42:07.790254

\x00[\xc3\xaed\x1a\x7f\x00\x00

9997 / tcp

-1399940268 | 2025-04-02T18:35:52.420998

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9998 / tcp

-1901729922 | 2025-03-31T16:13:25.800096

HTTP/1.1 404 
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Type: application/json
Transfer-Encoding: chunked

9999 / tcp

1161309183 | 2025-04-03T17:12:30.885069

ProxyServer is ready

10003 / tcp

-904840257 | 2025-03-20T20:45:06.430342

572 Relay not authorized\r\n

10006 / tcp

-1399940268 | 2025-03-28T16:47:46.976161

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10011 / tcp

165188539 | 2025-03-10T23:14:24.549376

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

10015 / tcp

-1428621233 | 2025-03-09T04:28:36.861385

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

10023 / tcp

1623746877 | 2025-03-22T09:42:19.838253

500 Permission denied - closing connection.\r\n

10026 / tcp

-1399940268 | 2025-03-14T03:04:11.624135

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10028 / tcp

321971019 | 2025-03-13T05:12:52.809218

-ERR client ip is not in whitelist\r

10030 / tcp

819727972 | 2025-03-27T20:26:51.283212

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

10033 / tcp

819727972 | 2025-03-27T14:19:30.258785

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

10051 / tcp

1189133115 | 2025-03-14T16:31:24.455527

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

10134 / tcp

-616720387 | 2025-03-22T20:34:03.988923

SSH-2.0-SSHD_0.7.6

10250 / tcp

-407828767 | 2025-03-22T18:49:04.278878

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

10302 / tcp

1911457608 | 2025-03-14T20:47:02.649269

\x00[\x00\x00\x00\x00\x00\x00

10443 / tcp

819727972 | 2025-03-13T14:06:30.611233

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

10444 / tcp

819727972 | 2025-03-24T06:47:02.650915

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

10554 / tcp

1082732927 | 2025-03-27T18:31:44.994212

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

10892 / tcp

-1327660293 | 2025-03-09T07:46:51.082688

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

10894 / tcp

1911457608 | 2025-04-04T18:05:02.926409

\x00[\x00\x00\x00\x00\x00\x00

10909 / tcp

2063598737 | 2025-04-02T18:14:56.800565

/0 0 L\r\n/0 0 HUH\r\n

10935 / tcp

1543809371 | 2025-03-13T13:13:22.783782

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

11000 / tcp

-1399940268 | 2025-03-23T06:44:02.201160

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

11002 / tcp

-1036370807 | 2025-03-11T17:15:25.829231

JDWP-Handshake

11210 / tcp

-1399940268 | 2025-03-15T14:31:49.279096

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

11211 / tcp

-136006866 | 2025-04-04T04:43:50.698002

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

11288 / tcp

-1399940268 | 2025-04-02T18:36:59.918393

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

11434 / tcp

0 | 2025-03-25T14:48:49.906757

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

11480 / tcp

117101543 | 2025-03-12T20:44:38.692765

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

11601 / tcp

1975288991 | 2025-03-12T21:31:01.101888

OPTI

12000 / tcp

-1368104760 | 2025-04-01T16:35:29.238650

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1d31_PS-TNA-01mQW36_7416-41955

12056 / tcp

-1839934832 | 2025-04-04T19:42:35.087486

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12082 / tcp

-1230049476 | 2025-03-11T22:07:07.185376

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

12088 / tcp

819727972 | 2025-03-12T20:34:11.098168

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12106 / tcp

-358801646 | 2025-03-18T17:55:28.912187

SSH-2.0-OpenSSH_6.6.1

12118 / tcp

819727972 | 2025-03-12T05:53:53.747974

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12124 / tcp

-1373613804 | 2025-04-01T13:38:18.041705

00970795:d7:smethod,6:shello,8:soptions,80:d10:shttp_port,368696:i1082,5:sname,5:sL_x,10:ssync_port,5:i00469,10:stimestamp,3190459:f920.7251553166,8:sversion,6262522:sl4X,

12135 / tcp

1208318993 | 2025-04-03T20:19:20.947291

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

12152 / tcp

-1399940268 | 2025-03-31T19:12:35.457291

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12153 / tcp

-1839934832 | 2025-03-31T10:01:52.655066

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12159 / tcp

-1099385124 | 2025-03-25T03:21:36.249875

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

12175 / tcp

-345718689 | 2025-03-25T00:24:18.827028

Vty password is not set.

12200 / tcp

1282941221 | 2025-04-05T16:11:18.515155

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12207 / tcp

-441419608 | 2025-03-19T02:37:23.900802

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

12210 / tcp

-1399940268 | 2025-03-19T15:14:10.684924

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12211 / tcp

1911457608 | 2025-03-14T16:33:46.097217

\x00[\x00\x00\x00\x00\x00\x00

12223 / tcp

740837454 | 2025-03-26T23:26:26.994472

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

12229 / tcp

-1059554316 | 2025-03-19T16:44:22.929198

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

12235 / tcp

321971019 | 2025-03-16T07:28:25.289675

-ERR client ip is not in whitelist\r

12263 / tcp

-2107996212 | 2025-04-04T11:57:36.755943

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

12273 / tcp

-1810987450 | 2025-03-10T23:11:15.356849

\xc3\xbf

12274 / tcp

-2031152423 | 2025-03-14T10:25:37.526571

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

12289 / tcp

-1598265216 | 2025-03-18T19:23:52.419967

@RSYNCD: 31.0

12292 / tcp

1332894250 | 2025-03-25T07:03:41.658340

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

12301 / tcp

401555314 | 2025-03-13T09:28:46.802690

NB[GFXjA^R

12302 / tcp

-2033111675 | 2025-03-24T20:12:09.236519

~djb

12310 / tcp

819727972 | 2025-03-20T19:48:28.962249

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12312 / tcp

-1105333987 | 2025-04-01T18:23:19.839252

\x00[KpU\x7f\x00\x00

12321 / tcp

2103111368 | 2025-03-29T01:53:06.885788

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

12322 / tcp

709622286 | 2025-03-11T05:08:18.161378

OK Welcome <299685> on DirectUpdate server 7286\r\n

12345 / tcp

488204803 | 2025-03-27T18:15:32.200004

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae263c_CS-000-01Avv40_829-3172

12358 / tcp

1332894250 | 2025-04-05T15:46:34.858804

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

12371 / tcp

-2096652808 | 2025-03-12T16:37:25.409210

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12400 / tcp

-1888448627 | 2025-03-16T09:19:18.660561

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12411 / tcp

-1327660293 | 2025-03-29T08:34:27.318303

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

12421 / tcp

1911457608 | 2025-04-03T18:44:19.368327

\x00[\x00\x00\x00\x00\x00\x00

12440 / tcp

-1399940268 | 2025-03-12T22:34:54.273881

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12463 / tcp

1911457608 | 2025-04-02T00:29:11.755250

\x00[\x00\x00\x00\x00\x00\x00

12468 / tcp

-1538260461 | 2025-03-16T15:43:45.910165

\x01\x00\x00\x00

12470 / tcp

-1399940268 | 2025-03-12T11:07:04.315106

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12471 / tcp

1911457608 | 2025-03-22T20:28:36.058096

\x00[\x00\x00\x00\x00\x00\x00

12474 / tcp

921225407 | 2025-03-22T23:48:18.692399

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12486 / tcp

165188539 | 2025-03-11T15:29:44.597638

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12488 / tcp

819727972 | 2025-03-22T21:55:22.025506

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12493 / tcp

-1611764932 | 2025-03-11T11:18:32.459955

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

12497 / tcp

165188539 | 2025-03-21T18:22:00.169618

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12498 / tcp

1911457608 | 2025-03-22T01:07:21.078889

\x00[\x00\x00\x00\x00\x00\x00

12541 / tcp

1989907056 | 2025-03-15T08:38:14.453261

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

12546 / tcp

504717326 | 2025-03-08T18:48:55.132663

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 5 1

12550 / tcp

-136006866 | 2025-03-25T08:10:40.851331

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

12556 / tcp

-146605374 | 2025-03-17T00:00:15.071165

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

12560 / tcp

-1399940268 | 2025-03-15T00:55:19.925065

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12561 / tcp

-1399940268 | 2025-03-25T18:04:01.827372

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12566 / tcp

-1730858130 | 2025-03-10T14:22:46.728543

RFB 003.008
VNC:
  Protocol Version: 3.8

12569 / tcp

1911457608 | 2025-03-25T04:02:18.895994

\x00[\x00\x00\x00\x00\x00\x00

12570 / tcp

-2096652808 | 2025-03-15T11:32:28.004469

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12579 / tcp

-904840257 | 2025-04-04T22:17:22.350257

572 Relay not authorized\r\n

12582 / tcp

165188539 | 2025-04-05T15:29:48.330033

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12588 / tcp

1210754493 | 2025-03-29T07:34:20.617954

0\x0c\x02\x01\x01a\x07\n\x01\x00\x04\x00\x04\x00

12590 / tcp

-1399940268 | 2025-03-13T05:17:27.746414

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

13047 / tcp

-1036370807 | 2025-03-11T23:44:31.670483

JDWP-Handshake

14147 / tcp

-345718689 | 2025-03-25T05:31:15.453429

Vty password is not set.

14184 / tcp

-1399940268 | 2025-03-24T10:59:29.795764

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

14344 / tcp

1504401647 | 2025-03-29T17:58:34.550840

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

14406 / tcp

1504401647 | 2025-03-10T05:08:17.151583

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

14900 / tcp

-1399940268 | 2025-03-20T21:07:13.235413

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

15002 / tcp

-147424911 | 2025-04-01T20:29:29.782113

HTTP/1.1 404 Not Found
Content Length: 0

15040 / tcp

1620329124 | 2025-03-25T00:37:34.460548

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\x01\xc3\xbf\xc3\xbb\x03\xc3\xbf\xc3\xbd\x01\xc3\xbf\xc3\xbe\x01Username:

15044 / tcp

-1810987450 | 2025-03-25T20:05:31.042379

\xc3\xbf

15123 / tcp

671605376 | 2025-03-20T20:00:26.333059

SSH-2.0-OpenSSH_X.X

15443 / tcp

2087396567 | 2025-03-14T06:24:29.792907

kjnkjabhbanc283ubcsbhdc72

15673 / tcp

-1888448627 | 2025-03-26T21:44:10.454475

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

16010 / tcp

-971970408 | 2025-04-01T02:28:30.942120

16012 / tcp

-829363896 | 2025-03-07T15:48:13.704453

HTTP/1.1 200 OK
Server: Linux/2.x UPnP/1.0 Avtech/1.0
Connection: close
Content-Type: text/html

16020 / tcp

1308377066 | 2025-03-29T10:48:57.974218

ncacn_http/1.0

16026 / tcp

2098371729 | 2025-03-18T11:04:49.680425

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

16041 / tcp

1991883981 | 2025-03-17T04:23:31.431126

B\x00\x00\x00\xc3\xbfn\x04Too many connections

16056 / tcp

-2089734047 | 2025-03-31T17:59:46.444337

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

16074 / tcp

2063598737 | 2025-04-04T19:48:15.634754

/0 0 L\r\n/0 0 HUH\r\n

16076 / tcp

819727972 | 2025-03-28T09:04:28.709641

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

16084 / tcp

398077695 | 2025-03-09T04:33:36.269359

16086 / tcp

-1779118422 | 2025-03-19T08:44:03.493202

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

16097 / tcp

-1399940268 | 2025-03-13T20:41:43.416115

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16098 / tcp

-1839934832 | 2025-03-18T06:56:07.396269

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

16311 / tcp

165188539 | 2025-04-03T06:44:17.981381

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

16800 / tcp

820958131 | 2025-03-10T12:11:20.761736

kjnkjabhbanc283ubcsbhdc72\x02

16992 / tcp

-1840324437 | 2025-03-31T07:56:15.808650

16993 / tcp

660175493 | 2025-03-22T16:00:31.399847

17777 / tcp

-653033013 | 2025-03-29T06:10:36.647847

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

18001 / tcp

-2107996212 | 2025-04-02T15:33:01.304438

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

18003 / tcp

-2089734047 | 2025-04-01T03:03:51.661810

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

18004 / tcp

-784071826 | 2025-03-13T02:28:07.213830

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 6 1

18043 / tcp

1911457608 | 2025-03-20T04:01:32.401750

\x00[\x00\x00\x00\x00\x00\x00

18055 / tcp

1726594447 | 2025-04-06T00:35:31.790445

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

18057 / tcp

321971019 | 2025-03-24T23:23:15.563808

-ERR client ip is not in whitelist\r

18081 / tcp

-1399940268 | 2025-03-31T16:38:28.040745

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18094 / tcp

-2033111675 | 2025-04-05T22:39:38.207333

~djb

18245 / tcp

-1461540015 | 2025-04-03T23:55:42.829682

audio 0 RTP/AVP 18 4 3 8 0 101
a

18443 / tcp

171352214 | 2025-03-15T11:11:30.986404

-ERR client ip is not in whitelist

18553 / tcp

-971970408 | 2025-03-26T21:56:12.615984

19000 / tcp

-1013082686 | 2025-03-18T19:34:52.209017

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

19200 / tcp

2087396567 | 2025-03-27T19:54:33.484837

kjnkjabhbanc283ubcsbhdc72

19233 / tcp

632542934 | 2025-03-26T17:55:58.316886

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

20000 / tcp

1900503736 | 2025-03-27T02:35:52.318143

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

20030 / tcp

-1730858130 | 2025-03-27T07:29:51.217137

RFB 003.008
VNC:
  Protocol Version: 3.8

20106 / tcp

1763259671 | 2025-04-03T06:07:12.405680

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

20208 / tcp

-1737707071 | 2025-03-12T08:52:24.045267

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

20256 / tcp

1308377066 | 2025-04-03T04:40:31.941770

ncacn_http/1.0

20547 / tcp

-1839934832 | 2025-03-24T01:02:27.803742

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

20800 / tcp

-1399940268 | 2025-03-26T16:58:50.361905

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

20880 / tcp

1370263973 | 2025-03-16T01:24:36.053475

dubbo>

21025 / tcp

819727972 | 2025-03-29T14:09:02.388333

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

21232 / tcp

-1428621233 | 2025-03-15T14:53:18.857844

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

21255 / tcp

-1399940268 | 2025-03-18T12:29:57.977157

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21260 / tcp

-832380282 | 2025-03-11T11:56:11.302922

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).\n

21271 / tcp

-2089734047 | 2025-03-23T19:38:06.918841

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

21277 / tcp

1911457608 | 2025-03-25T21:39:49.765312

\x00[\x00\x00\x00\x00\x00\x00

21281 / tcp

1208318993 | 2025-03-19T20:34:12.356348

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

21284 / tcp

1911457608 | 2025-03-11T19:58:55.923043

\x00[\x00\x00\x00\x00\x00\x00

21288 / tcp

1911457608 | 2025-04-04T17:55:43.399780

\x00[\x00\x00\x00\x00\x00\x00

21294 / tcp

597764502 | 2025-03-31T12:10:56.307440

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

21298 / tcp

-1399940268 | 2025-03-20T20:17:39.660040

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21302 / tcp

1911457608 | 2025-04-04T01:10:39.438547

\x00[\x00\x00\x00\x00\x00\x00

21303 / tcp

-1399940268 | 2025-03-10T17:01:00.764083

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21323 / tcp

-1839934832 | 2025-03-18T02:53:06.952285

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

21379 / tcp

-1045760528 | 2025-04-03T11:21:34.419294

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

21400 / tcp

-1888448627 | 2025-03-19T22:41:45.477952

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

21443 / tcp

321971019 | 2025-03-26T23:57:20.109820

-ERR client ip is not in whitelist\r

22000 / tcp

-971970408 | 2025-04-01T18:13:20.638803

22001 / tcp

-653033013 | 2025-04-04T05:12:45.013533

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

22022 / tcp

1911457608 | 2025-03-23T23:04:45.025821

\x00[\x00\x00\x00\x00\x00\x00

22067 / tcp

-2096652808 | 2025-04-02T04:01:09.490234

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

22069 / tcp

-971970408 | 2025-03-25T02:19:50.330369

22107 / tcp

-1189269828 | 2025-03-24T15:09:22.668013

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

22206 / tcp

1911457608 | 2025-03-16T22:38:14.592326

\x00[\x00\x00\x00\x00\x00\x00

22222 / tcp

-358801646 | 2025-03-18T14:08:16.515086

SSH-2.0-OpenSSH_6.6.1

22403 / tcp

-1327660293 | 2025-03-17T13:00:31.821406

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

22556 / tcp

-345718689 | 2025-03-11T21:08:00.020855

Vty password is not set.

23023 / tcp

819727972 | 2025-03-23T23:22:53.271392

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

23182 / tcp

-2089734047 | 2025-04-01T20:42:30.710180

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

23424 / tcp

2087396567 | 2025-04-03T08:05:38.403868

kjnkjabhbanc283ubcsbhdc72

24472 / tcp

-1399940268 | 2025-04-05T04:46:24.991041

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

25001 / tcp

-1435414831 | 2025-03-26T19:05:49.176728

roku: ready\r\n

25082 / tcp

-904840257 | 2025-03-09T07:18:45.951861

572 Relay not authorized\r\n

25105 / tcp

-1453516345 | 2025-04-03T06:10:54.711952

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

25565 / tcp

1911457608 | 2025-03-24T21:20:13.555271

\x00[\x00\x00\x00\x00\x00\x00

26656 / tcp

2087396567 | 2025-03-13T06:49:37.902715

kjnkjabhbanc283ubcsbhdc72

26657 / tcp

1492413928 | 2025-03-28T03:12:07.377431

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 13 1

27015 / tcp

-80321085 | 2025-04-01T02:14:28.487828

Command: None
Size: 1802398315
ID: 1751277930
Type: 1668178274

27016 / tcp

2087396567 | 2025-03-29T09:54:19.188030

kjnkjabhbanc283ubcsbhdc72

27017 / tcp

422524323 | 2025-03-25T11:58:26.919989

{
"Version": "3.4.18",
"VersionArray": [
3,
4,
18,
0
],
"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",
"OpenSSLVersion": "",
"SysInfo": "",
"Bits": 64,
"Debug": false,
"MaxObjectSize": 16777216
}

27036 / tcp

-971970408 | 2025-03-25T10:30:08.461873

28015 / tcp

1911457608 | 2025-03-28T02:02:14.995750

\x00[\x00\x00\x00\x00\x00\x00

28017 / tcp

1082732927 | 2025-04-02T11:40:21.882860

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

28080 / tcp

819727972 | 2025-03-28T05:07:25.318173

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

30003 / tcp

-1448296133 | 2025-03-24T01:11:56.315979

[ç

30011 / tcp

1975288991 | 2025-04-03T19:03:17.662835

OPTI

30019 / tcp

165188539 | 2025-03-21T14:29:18.668609

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

30021 / tcp

1911457608 | 2025-03-28T23:02:46.645819

\x00[\x00\x00\x00\x00\x00\x00

30022 / tcp

-2081419599 | 2025-04-06T00:47:11.723480

@
03d

30023 / tcp

1911457608 | 2025-04-01T13:47:30.398655

\x00[\x00\x00\x00\x00\x00\x00

30222 / tcp

1282941221 | 2025-03-25T16:50:28.726778

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

30303 / tcp

-1713437100 | 2025-03-19T22:33:36.979096

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

30422 / tcp

2087396567 | 2025-03-26T08:15:51.294063

kjnkjabhbanc283ubcsbhdc72

30444 / tcp

897328069 | 2025-03-08T18:45:24.671624

220 mail.scott000.com ESMTP

30522 / tcp

660175493 | 2025-04-06T06:05:15.222943

30718 / tcp

-305970756 | 2025-04-02T23:01:38.497941

MAC Addr:00:80:a3:fd:5f:0d

30722 / tcp

-971970408 | 2025-04-05T06:12:39.731207

30822 / tcp

401555314 | 2025-03-12T20:14:49.928338

NB[GFXjA^R

30922 / tcp

819727972 | 2025-04-05T23:01:24.618161

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

31022 / tcp

1690634669 | 2025-04-05T21:30:43.171934

31222 / tcp

819727972 | 2025-04-05T09:13:49.111028

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

31322 / tcp

-971970408 | 2025-03-25T07:49:13.959493

31337 / tcp

-1835577706 | 2025-03-25T00:03:27.666844

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Vary: Accept-Encoding
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"

31422 / tcp

842535728 | 2025-03-25T04:06:29.309575

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

31443 / tcp

2087396567 | 2025-03-12T18:26:56.168839

kjnkjabhbanc283ubcsbhdc72

31522 / tcp

-971970408 | 2025-04-04T22:40:10.910009

31622 / tcp

-971970408 | 2025-03-23T10:40:37.264467

31822 / tcp

-321444299 | 2025-04-04T14:12:06.224884

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

31922 / tcp

-321444299 | 2025-04-05T02:54:38.935567

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

32022 / tcp

1842524259 | 2025-04-05T04:01:47.633066

32202 / tcp

-2089734047 | 2025-03-10T13:33:24.452704

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

32222 / tcp

1278527606 | 2025-03-23T17:57:10.346656

SSH-2.0-Teleport

32322 / tcp

380146262 | 2025-04-04T20:55:11.850530

@RSYNCD: 30.0

32400 / tcp

2087396567 | 2025-03-31T16:28:10.732031

kjnkjabhbanc283ubcsbhdc72

32422 / tcp

2087396567 | 2025-03-23T13:58:52.013545

kjnkjabhbanc283ubcsbhdc72

32522 / tcp

897328069 | 2025-03-08T16:39:59.095951

220 mail.scott000.com ESMTP

32722 / tcp

-2017887953 | 2025-03-23T06:40:01.683865

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

32764 / tcp

1830697416 | 2025-04-02T21:16:39.854501

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

32922 / tcp

819727972 | 2025-03-23T02:22:19.876717

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

33060 / tcp

-971970408 | 2025-04-01T18:57:34.089250

33222 / tcp

1741579575 | 2025-03-20T00:17:24.278776

33322 / tcp

-1477838366 | 2025-03-22T07:59:10.307256

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

33422 / tcp

171352214 | 2025-03-19T17:20:15.624984

-ERR client ip is not in whitelist

33622 / tcp

-527005584 | 2025-03-21T06:07:53.347535

/0 0 L
/0 0 HUH

33722 / tcp

-1059554316 | 2025-03-08T18:23:01.875975

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

34022 / tcp

1830187220 | 2025-03-20T17:45:39.492399

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

34122 / tcp

2087396567 | 2025-03-20T16:02:15.053008

kjnkjabhbanc283ubcsbhdc72

34322 / tcp

2087396567 | 2025-03-19T19:16:41.662538

kjnkjabhbanc283ubcsbhdc72

34622 / tcp

-1114821551 | 2025-03-19T10:18:03.525921

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

34722 / tcp

2087396567 | 2025-03-19T08:33:42.030824

kjnkjabhbanc283ubcsbhdc72

34922 / tcp

1690634669 | 2025-03-18T20:19:38.649483

35000 / tcp

-1947777893 | 2025-03-16T23:38:33.469377

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

35100 / tcp

-1779118422 | 2025-03-27T02:32:04.432987

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

35222 / tcp

819727972 | 2025-03-18T10:22:34.472575

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

35522 / tcp

339872247 | 2025-03-17T02:01:34.603216


0 ...

35524 / tcp

-1399940268 | 2025-03-15T18:26:10.960407

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

35722 / tcp

1212921144 | 2025-03-17T10:52:52.641405

0@

35822 / tcp

1282941221 | 2025-03-17T18:16:02.211073

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

35922 / tcp

1723769361 | 2025-03-16T21:57:00.749030

ELM Enterprise Manager _l\r\nCopyright \xc2\xa9 18668511-928641920 TNT Software, Inc.\r\n

36022 / tcp

-653033013 | 2025-03-17T21:43:49.580213

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

36122 / tcp

171352214 | 2025-03-13T10:31:32.193086

-ERR client ip is not in whitelist

36222 / tcp

-971970408 | 2025-03-17T20:04:51.209241

36622 / tcp

422524323 | 2025-03-16T08:13:13.382031

{
"Version": "3.4.18",
"VersionArray": [
3,
4,
18,
0
],
"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",
"OpenSSLVersion": "",
"SysInfo": "",
"Bits": 64,
"Debug": false,
"MaxObjectSize": 16777216
}

36722 / tcp

2087396567 | 2025-03-17T05:46:04.657002

kjnkjabhbanc283ubcsbhdc72

36982 / tcp

401555314 | 2025-03-10T01:42:12.121895

NB[GFXjA^R

37422 / tcp

819727972 | 2025-03-15T12:32:57.576232

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

37522 / tcp

320677201 | 2025-03-16T10:06:53.457169

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

37722 / tcp

-319440554 | 2025-03-16T00:50:36.777791

37822 / tcp

-971970408 | 2025-03-14T02:10:17.591222

38122 / tcp

-1036370807 | 2025-03-15T17:57:14.275879

JDWP-Handshake

38322 / tcp

660175493 | 2025-03-15T14:14:45.430393

38333 / tcp

1282941221 | 2025-03-15T21:46:06.224916

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

38822 / tcp

2087396567 | 2025-03-12T16:38:13.201978

kjnkjabhbanc283ubcsbhdc72

38922 / tcp

819727972 | 2025-03-13T15:58:11.647534

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

39322 / tcp

-952165951 | 2025-03-11T12:18:49.006215

AB

39522 / tcp

1308377066 | 2025-03-11T09:50:12.485346

ncacn_http/1.0

40722 / tcp

819727972 | 2025-03-08T15:16:26.085750

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

41922 / tcp

-746114901 | 2025-03-07T16:35:50.592750

[KpU

42420 / tcp

1426971893 | 2025-03-23T18:44:42.766109

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

44158 / tcp

-433302150 | 2025-03-17T13:33:31.822261

/multistream/1.0.0

44303 / tcp

-891714208 | 2025-03-19T04:49:19.108348

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

44306 / tcp

-1399940268 | 2025-03-27T10:44:57.386728

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

44307 / tcp

-904840257 | 2025-03-20T20:24:16.034170

572 Relay not authorized\r\n

44320 / tcp

-1399940268 | 2025-03-28T02:56:38.261668

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

44818 / tcp

819727972 | 2025-03-23T10:15:53.467475

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

45002 / tcp

-136006866 | 2025-03-29T09:35:51.673733

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

45022 / tcp

1690634669 | 2025-03-10T16:31:30.086709

45444 / tcp

-616720387 | 2025-04-02T16:54:19.723227

SSH-2.0-SSHD_0.7.6

45822 / tcp

-2033111675 | 2025-03-10T13:04:36.789981

~djb

45886 / tcp

1996932384 | 2025-03-08T20:55:55.837719

"raop" nonce

46001 / tcp

1212285915 | 2025-03-27T20:06:28.300978

\x00K\x00\x00\x02\x00\x00\x00%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

47001 / tcp

1911457608 | 2025-03-16T16:07:34.737142

\x00[\x00\x00\x00\x00\x00\x00

47808 / tcp

1426971893 | 2025-03-24T04:33:58.186656

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

47822 / tcp

-2017887953 | 2025-03-10T09:35:31.093623

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 9 1

47990 / tcp

-2096652808 | 2025-03-09T09:52:19.929648

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

48022 / tcp

-2096652808 | 2025-03-07T11:36:46.531951

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

48899 / tcp

660175493 | 2025-03-31T09:39:48.921282

49152 / tcp

1686199642 | 2025-03-31T21:25:25.045911

HTTP/1.1 404 
SERVER: Linux/4.9.44, UPnP/1.0, Portable SDK for UPnP devices/1.6.20
CONNECTION: close
CONTENT-LENGTH: 48
Accept-Ranges: bytes
CONTENT-TYPE: text/html

49153 / tcp

-1375131644 | 2025-04-02T08:33:48.561385

\x00[v\xc3\xbdC\x7f\x00\x00

50000 / tcp

2087396567 | 2025-04-05T08:40:04.827231

kjnkjabhbanc283ubcsbhdc72

50003 / tcp

597764502 | 2025-03-29T17:48:20.368340

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

50006 / tcp

-147424911 | 2025-03-08T18:35:53.006127

HTTP/1.1 404 Not Found
Content Length: 0

50012 / tcp

-1399940268 | 2025-03-24T23:51:43.254826

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

50070 / tcp

-792826324 | 2025-03-22T00:58:23.881799

220 FTP server ready - login please

50100 / tcp

1919228981 | 2025-04-02T03:34:15.619714

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

50107 / tcp

1911457608 | 2025-03-24T21:39:51.624397

\x00[\x00\x00\x00\x00\x00\x00

50202 / tcp

1332894250 | 2025-03-18T16:08:20.179663

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

51106 / tcp

-358801646 | 2025-03-29T20:56:16.618752

SSH-2.0-OpenSSH_6.6.1

51235 / tcp

-1461540015 | 2025-04-01T20:29:30.276776

audio 0 RTP/AVP 18 4 3 8 0 101
a

51443 / tcp

-971970408 | 2025-03-12T01:17:15.621354

53480 / tcp

-297128567 | 2025-03-28T14:57:50.838552

\x04\x01\xc3\xb4\x00\x15Internal Server Error\x00\x00\x00AB\x00\x02\x05\x00

54138 / tcp

-154107716 | 2025-04-01T16:35:56.152894

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST ...

54984 / tcp

-971970408 | 2025-03-28T22:59:05.038889

55000 / tcp

117101543 | 2025-03-17T20:29:56.215010

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

55443 / tcp

-1230049476 | 2025-03-18T03:07:44.696228

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

55553 / tcp

104385780 | 2025-04-03T01:32:42.095587

ceph v2

55554 / tcp

233634112 | 2025-04-04T20:25:53.323725

SSH-98.60-SysaxSSH_81885..42

55555 / tcp

-147424911 | 2025-03-07T10:24:49.748873

HTTP/1.1 404 Not Found
Content Length: 0

57780 / tcp

-1327660293 | 2025-03-21T08:07:20.284740

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

57782 / tcp

-1399940268 | 2025-03-20T00:30:15.142769

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

60001 / tcp

1852418385 | 2025-03-29T06:24:26.548751

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

60021 / tcp

-792826324 | 2025-03-25T19:26:47.419889

220 FTP server ready - login please

60129 / tcp

2087396567 | 2025-04-03T12:38:48.014973

kjnkjabhbanc283ubcsbhdc72

60443 / tcp

115332119 | 2025-03-16T20:06:36.068775

HTTP/1.1 403 Forbidden
Transfer-Encoding: chunked
Connection: keep-alive
Content-Type: application/json
Access-Control-Allow-Origin: *

61613 / tcp

1911457608 | 2025-03-17T15:07:40.206011

\x00[\x00\x00\x00\x00\x00\x00

61616 / tcp

585675468 | 2025-03-29T03:56:33.092171

@
05@ þ...

62016 / tcp

-1036370807 | 2025-03-28T08:23:36.833751

JDWP-Handshake

62078 / tcp

-860824904 | 2025-03-25T10:39:53.923918

\x00\x01)

63256 / tcp

1189133115 | 2025-03-31T15:55:28.029652

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

63260 / tcp

-1148066627 | 2025-03-28T08:37:42.718572

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

65432 / tcp

632542934 | 2025-03-14T22:25:10.009796

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

39.103.20.14

Last Seen: 2025-04-06

Tags:

GeneralInformation

WebTechnologies

OpenPorts

11 / tcp 539065883 | 2025-03-27T16:16:26.179560

13 / tcp 285774454 | 2025-04-05T00:53:37.218591

17 / tcp -1559123399 | 2025-03-31T09:35:47.879568

19 / tcp 829384519 | 2025-03-13T07:55:20.558794

20 / tcp 819727972 | 2025-04-03T18:18:27.276648

21 / tcp 1564456597 | 2025-03-20T21:32:07.343540

22 / tcp -649223323 | 2025-03-21T07:24:56.591913

23 / tcp 676675086 | 2025-04-02T14:53:48.490238

43 / tcp -784071826 | 2025-04-03T16:17:10.485483

49 / tcp -1909001798 | 2025-03-14T16:07:01.084825

53 / tcp 1024248778 | 2025-03-29T07:12:45.313244

70 / tcp -833941849 | 2025-03-17T20:50:44.928110

79 / tcp -746345752 | 2025-03-21T16:29:58.710742

80 / tcp -1663316578 | 2025-03-22T21:16:01.138790

Hashes

85 / tcp 165188539 | 2025-03-29T00:20:50.410695

93 / tcp -1399940268 | 2025-04-02T13:58:16.740471

97 / tcp -1730858130 | 2025-04-06T02:16:23.156908

101 / tcp 819727972 | 2025-03-10T16:08:25.305867

102 / tcp 599074451 | 2025-03-26T15:42:52.342535

104 / tcp -1399940268 | 2025-03-14T18:06:58.479596

110 / tcp -1839934832 | 2025-03-27T21:27:55.939276

111 / tcp -1497296514 | 2025-03-27T11:30:14.810713

119 / tcp 141730637 | 2025-03-22T04:58:26.564187

122 / tcp 597764502 | 2025-04-02T19:13:49.449480

143 / tcp -398621179 | 2025-03-31T10:50:42.699325

175 / tcp 1134517380 | 2025-03-25T02:28:58.220689

179 / tcp -399606100 | 2025-03-12T17:47:49.124960

180 / tcp -358801646 | 2025-03-13T11:05:56.707272

189 / tcp 1282941221 | 2025-03-31T14:09:12.610989

190 / tcp 1363464823 | 2025-03-27T01:52:26.618607

243 / tcp -1399940268 | 2025-03-11T04:56:17.523415

264 / tcp -1932800090 | 2025-04-04T04:32:05.629956

311 / tcp 67948279 | 2025-03-15T02:58:50.075495

347 / tcp -1730858130 | 2025-03-23T16:40:59.584385

389 / tcp -1907080992 | 2025-03-31T07:05:07.054795

427 / tcp 1388449297 | 2025-03-19T00:11:02.374864

443 / tcp 1638645179 | 2025-03-16T04:50:16.270057

Hashes

451 / tcp -1399940268 | 2025-03-16T21:34:17.973210

480 / tcp 819727972 | 2025-03-23T20:24:10.962923

502 / tcp 1911457608 | 2025-03-22T10:28:36.939318

515 / tcp 2087396567 | 2025-04-04T20:21:31.348990

556 / tcp -1399940268 | 2025-03-11T01:40:58.310280

602 / tcp -2089734047 | 2025-03-14T10:14:12.925611

636 / tcp 826560219 | 2025-03-29T10:52:44.473392

666 / tcp -1420968138 | 2025-03-23T12:19:25.503677

771 / tcp -358801646 | 2025-03-25T07:29:14.818800

789 / tcp 165188539 | 2025-03-19T23:48:49.043405

801 / tcp -1399940268 | 2025-03-13T03:23:48.842471

830 / tcp 103159425 | 2025-03-20T01:41:01.139156

992 / tcp -936692830 | 2025-03-10T06:51:51.458372

993 / tcp -1733645023 | 2025-03-28T09:31:37.876268

1000 / tcp 677934968 | 2025-04-04T16:56:07.245263

1023 / tcp 1830697416 | 2025-03-28T18:53:48.646195

1080 / tcp 1362344524 | 2025-03-21T03:30:01.443289

1119 / tcp 470305186 | 2025-04-02T18:28:57.296554

1153 / tcp 493955023 | 2025-04-04T17:13:43.491129

1177 / tcp 599074451 | 2025-04-05T11:46:55.734061

1193 / tcp 921225407 | 2025-03-08T20:03:43.353303

1200 / tcp -2107996212 | 2025-04-04T07:27:11.617343

1433 / tcp 555056254 | 2025-03-15T02:01:39.587082

1443 / tcp -1715152554 | 2025-03-16T04:50:14.416361

Hashes

1447 / tcp -1399940268 | 2025-03-24T09:39:15.181290

1459 / tcp -1399940268 | 2025-03-22T11:38:45.258188

1521 / tcp -1184558916 | 2025-03-25T01:02:24.909679

1599 / tcp 2087396567 | 2025-03-08T19:52:21.270420

1723 / tcp -1608241410 | 2025-03-19T00:17:18.270864

1800 / tcp -1189269828 | 2025-04-03T18:36:11.622938

1801 / tcp -1299899661 | 2025-03-23T06:13:56.663413

1830 / tcp -1399940268 | 2025-03-14T04:28:53.732601

1883 / tcp 819727972 | 2025-03-27T09:12:03.580713

1911 / tcp 819727972 | 2025-03-09T13:38:48.706599

11 / tcp

539065883 | 2025-03-27T16:16:26.179560

13 / tcp

285774454 | 2025-04-05T00:53:37.218591

17 / tcp

-1559123399 | 2025-03-31T09:35:47.879568

19 / tcp

829384519 | 2025-03-13T07:55:20.558794

20 / tcp

819727972 | 2025-04-03T18:18:27.276648

21 / tcp

1564456597 | 2025-03-20T21:32:07.343540

22 / tcp

-649223323 | 2025-03-21T07:24:56.591913

23 / tcp

676675086 | 2025-04-02T14:53:48.490238

43 / tcp

-784071826 | 2025-04-03T16:17:10.485483

49 / tcp

-1909001798 | 2025-03-14T16:07:01.084825

53 / tcp

1024248778 | 2025-03-29T07:12:45.313244

70 / tcp

-833941849 | 2025-03-17T20:50:44.928110

79 / tcp

-746345752 | 2025-03-21T16:29:58.710742

80 / tcp

-1663316578 | 2025-03-22T21:16:01.138790

85 / tcp

165188539 | 2025-03-29T00:20:50.410695

93 / tcp

-1399940268 | 2025-04-02T13:58:16.740471

97 / tcp

-1730858130 | 2025-04-06T02:16:23.156908

101 / tcp

819727972 | 2025-03-10T16:08:25.305867

102 / tcp

599074451 | 2025-03-26T15:42:52.342535

104 / tcp

-1399940268 | 2025-03-14T18:06:58.479596

110 / tcp

-1839934832 | 2025-03-27T21:27:55.939276

111 / tcp

-1497296514 | 2025-03-27T11:30:14.810713

119 / tcp

141730637 | 2025-03-22T04:58:26.564187

122 / tcp

597764502 | 2025-04-02T19:13:49.449480

143 / tcp

-398621179 | 2025-03-31T10:50:42.699325

175 / tcp

1134517380 | 2025-03-25T02:28:58.220689

179 / tcp

-399606100 | 2025-03-12T17:47:49.124960

180 / tcp

-358801646 | 2025-03-13T11:05:56.707272

189 / tcp

1282941221 | 2025-03-31T14:09:12.610989

190 / tcp

1363464823 | 2025-03-27T01:52:26.618607

243 / tcp

-1399940268 | 2025-03-11T04:56:17.523415

264 / tcp

-1932800090 | 2025-04-04T04:32:05.629956

311 / tcp

67948279 | 2025-03-15T02:58:50.075495

347 / tcp

-1730858130 | 2025-03-23T16:40:59.584385

389 / tcp

-1907080992 | 2025-03-31T07:05:07.054795

427 / tcp

1388449297 | 2025-03-19T00:11:02.374864

443 / tcp

1638645179 | 2025-03-16T04:50:16.270057

451 / tcp

-1399940268 | 2025-03-16T21:34:17.973210

480 / tcp

819727972 | 2025-03-23T20:24:10.962923

502 / tcp

1911457608 | 2025-03-22T10:28:36.939318

515 / tcp

2087396567 | 2025-04-04T20:21:31.348990

556 / tcp

-1399940268 | 2025-03-11T01:40:58.310280

602 / tcp

-2089734047 | 2025-03-14T10:14:12.925611

636 / tcp

826560219 | 2025-03-29T10:52:44.473392

666 / tcp

-1420968138 | 2025-03-23T12:19:25.503677

771 / tcp

-358801646 | 2025-03-25T07:29:14.818800

789 / tcp

165188539 | 2025-03-19T23:48:49.043405

801 / tcp

-1399940268 | 2025-03-13T03:23:48.842471

830 / tcp

103159425 | 2025-03-20T01:41:01.139156

992 / tcp

-936692830 | 2025-03-10T06:51:51.458372

993 / tcp

-1733645023 | 2025-03-28T09:31:37.876268

1000 / tcp

677934968 | 2025-04-04T16:56:07.245263

1023 / tcp

1830697416 | 2025-03-28T18:53:48.646195

1080 / tcp

1362344524 | 2025-03-21T03:30:01.443289

1119 / tcp

470305186 | 2025-04-02T18:28:57.296554

1153 / tcp

493955023 | 2025-04-04T17:13:43.491129

1177 / tcp

599074451 | 2025-04-05T11:46:55.734061

1193 / tcp

921225407 | 2025-03-08T20:03:43.353303

1200 / tcp

-2107996212 | 2025-04-04T07:27:11.617343

1433 / tcp

555056254 | 2025-03-15T02:01:39.587082

1443 / tcp

-1715152554 | 2025-03-16T04:50:14.416361

1447 / tcp

-1399940268 | 2025-03-24T09:39:15.181290

1459 / tcp

-1399940268 | 2025-03-22T11:38:45.258188

1521 / tcp

-1184558916 | 2025-03-25T01:02:24.909679

1599 / tcp

2087396567 | 2025-03-08T19:52:21.270420

1723 / tcp

-1608241410 | 2025-03-19T00:17:18.270864

1800 / tcp

-1189269828 | 2025-04-03T18:36:11.622938

1801 / tcp

-1299899661 | 2025-03-23T06:13:56.663413

1830 / tcp

-1399940268 | 2025-03-14T04:28:53.732601

1883 / tcp

819727972 | 2025-03-27T09:12:03.580713

1911 / tcp

819727972 | 2025-03-09T13:38:48.706599

1926 / tcp

819727972 | 2025-04-02T07:21:59.565931

1952 / tcp

1332894250 | 2025-03-29T13:23:18.539926

1958 / tcp

-1611764932 | 2025-03-16T06:58:18.506989

1962 / tcp

-1230049476 | 2025-03-27T01:59:13.373840

1966 / tcp

-1839934832 | 2025-03-26T18:20:07.311382

2000 / tcp

-2017887953 | 2025-04-05T10:00:14.334935

2002 / tcp

-1626979812 | 2025-03-18T15:17:09.631150

2003 / tcp

819727972 | 2025-03-25T16:28:07.554122

2030 / tcp

-877598700 | 2025-04-02T16:43:12.086116