GeneralInformation

Country	China
City	Qingdao
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963
Operating System	Windows

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2024

CVE-2024-6387

8.1A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

2023

CVE-2023-51767

7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

CVE-2023-51385

6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

CVE-2023-48795

5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

CVE-2023-38408

9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.

2021

CVE-2021-41617

7.0sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

CVE-2021-36368

3.7An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.

2020

CVE-2020-15778

7.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVE-2020-14145

5.9The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.

2019

CVE-2019-16905

7.8OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.

CVE-2019-6111

5.9An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).

CVE-2019-6110

6.8In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

CVE-2019-6109

6.8An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.

2018

CVE-2018-20685

5.3In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

CVE-2018-15919

5.3Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'

CVE-2018-15473

5.3OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

CVE-2018-10088

9.8Buffer overflow in XiongMai uc-httpd 1.0.0 has unspecified impact and attack vectors, a different vulnerability than CVE-2017-16725.

2017

CVE-2017-15906

5.3The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.

2016

CVE-2016-20012

5.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product

CVE-2016-10708

7.5sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.

CVE-2016-10012

7.8The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.

CVE-2016-10011

5.5authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

CVE-2016-10010

7.0sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.

CVE-2016-10009

7.3Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.

CVE-2016-3115

6.4Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.

CVE-2016-1908

9.8The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

CVE-2016-0777

6.5The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.

2015

CVE-2015-6564

6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.

CVE-2015-6563

1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.

CVE-2015-5600

8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.

CVE-2015-5352

4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.

2014

CVE-2014-2653

5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.

CVE-2014-2532

4.9sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

CVE-2014-1692

7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.

2012

CVE-2012-0814

3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

2011

CVE-2011-5000

3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.

CVE-2011-4327

2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

2010

CVE-2010-5107

5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

CVE-2010-4755

4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.

CVE-2010-4478

7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.

2008

CVE-2008-3844

9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.

2007

CVE-2007-2768

4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

13 17 19 21 25 37 53 65 70 79 80 96 100 101 102 104 110 111 113 122 143 175 179 221 225 311 343 389 442 443 444 448 450 462 465 502 503 513 548 554 555 556 587 602 636 666 743 771 782 789 800 801 809 947 992 993 995 1000 1002 1023 1025 1080 1099 1110 1153 1177 1193 1234 1235 1291 1293 1344 1364 1366 1377 1414 1433 1451 1457 1515 1521 1599 1605 1650 1723 1800 1801 1830 1911 1925 1926 1957 1962 1967 1971 1975 1978 2000 2002 2008 2010 2018 2050 2060 2065 2068 2070 2072 2081 2085 2087 2090 2121 2133 2154 2181 2200 2222 2232 2323 2332 2353 2376 2404 2423 2435 2443 2455 2550 2554 2559 2562 2568 2569 2599 2626 2628 2761 3001 3002 3005 3009 3017 3018 3069 3076 3077 3087 3103 3109 3114 3129 3137 3146 3148 3157 3162 3163 3164 3167 3169 3173 3180 3193 3194 3211 3221 3260 3268 3269 3299 3301 3306 3310 3342 3345 3388 3389 3402 3409 3479 3541 3551 3572 3780 3790 3841 3950 4002 4022 4042 4063 4064 4100 4147 4148 4157 4242 4250 4321 4400 4430 4431 4433 4440 4443 4451 4499 4506 4545 4572 4602 4747 4840 4899 4911 4933 5001 5006 5007 5009 5010 5053 5090 5119 5123 5150 5172 5190 5227 5231 5248 5249 5255 5260 5261 5267 5268 5273 5280 5431 5432 5435 5456 5556 5595 5599 5606 5613 5614 5660 5672 5678 5858 5903 5905 5914 5917 5938 5984 5986 5993 6000 6001 6008 6081 6102 6308 6331 6352 6363 6379 6443 6482 6514 6550 6581 6633 6653 6666 6667 6668 6697 6699 6955 7001 7004 7010 7071 7084 7171 7172 7325 7415 7434 7548 7634 7700 7771 7790 7980 7999 8004 8014 8018 8019 8021 8024 8028 8035 8042 8049 8050 8052 8054 8067 8072 8075 8083 8085 8087 8089 8092 8099 8101 8107 8114 8115 8119 8120 8122 8126 8140 8142 8143 8156 8162 8179 8180 8184 8200 8291 8333 8350 8393 8411 8413 8419 8429 8431 8432 8443 8444 8449 8451 8455 8458 8462 8470 8500 8510 8513 8526 8531 8532 8545 8554 8557 8561 8569 8579 8581 8584 8597 8599 8606 8649 8666 8705 8706 8707 8708 8709 8731 8787 8789 8806 8807 8808 8816 8828 8832 8836 8840 8853 8855 8857 8863 8874 8876 8880 8881 8883 8889 8902 8989 8993 9001 9002 9004 9007 9017 9019 9022 9029 9042 9051 9052 9061 9065 9072 9074 9076 9079 9091 9092 9093 9095 9097 9098 9099 9100 9102 9107 9123 9124 9143 9156 9157 9160 9169 9172 9180 9193 9198 9200 9202 9203 9208 9211 9212 9213 9214 9223 9256 9257 9291 9301 9306 9310 9387 9398 9399 9418 9445 9507 9515 9530 9532 9600 9633 9710 9743 9761 9797 9876 9898 9899 9902 9923 9926 9929 9943 9997 9998 9999 10003 10012 10015 10025 10027 10030 10031 10032 10081 10084 10086 10134 10205 10210 10250 10324 10390 10398 10443 10894 10909 10911 11000 11027 11075 11082 11112 11210 11211 11288 11300 11443 11596 12000 12110 12111 12114 12120 12122 12124 12126 12133 12149 12152 12154 12155 12160 12165 12169 12174 12179 12181 12200 12208 12210 12214 12215 12220 12224 12225 12226 12233 12239 12249 12261 12262 12271 12284 12289 12291 12325 12330 12332 12343 12345 12357 12359 12360 12365 12373 12380 12384 12387 12390 12392 12394 12398 12402 12409 12413 12415 12425 12426 12459 12462 12466 12468 12469 12471 12478 12482 12506 12508 12514 12532 12544 12545 12554 12557 12560 12561 12577 12579 12581 12588 13082 13128 14265 14344 14404 14895 15123 15151 15443 15503 15504 16013 16025 16026 16032 16051 16059 16069 16072 16073 16077 16083 16087 16096 16097 16102 16104 16888 16993 17010 17184 17443 17773 17775 17779 18003 18005 18009 18010 18017 18019 18027 18035 18038 18050 18063 18067 18068 18081 18082 18085 18086 18098 18102 18111 18181 18182 18200 18765 19000 19014 19233 19443 19999 20000 20060 20080 20106 20201 20256 20500 20547 20880 20892 20894 21001 21236 21259 21266 21275 21277 21293 21294 21308 21311 21312 21379 22000 22556 25001 25004 25006 25010 25565 27015 27017 27571 28818 30004 30007 30011 30013 30104 30106 30112 31210 31337 32222 32443 32522 32764 32822 32922 33022 33060 33122 33222 33322 33522 33622 33722 33822 34022 34122 34322 34522 34722 34822 34922 35000 35022 35101 35122 35153 35322 35422 35522 35560 35622 35722 36022 36122 36222 36322 36422 36522 36622 36722 36822 36922 37022 37122 37222 37322 37422 37522 37622 37722 37777 37822 37922 38022 38080 38122 38222 38322 38422 38522 38622 38722 38822 38922 39022 39122 39222 39422 39522 39622 39722 39822 40005 40022 40029 40122 40222 40322 40422 40522 40622 40722 40892 40922 41122 41800 42122 42420 42622 42901 43200 43222 43322 43422 43522 43622 43722 43822 43922 44022 44122 44158 44308 44322 44350 44500 44510 44722 44818 45001 45002 45122 45222 45322 45333 45422 45522 45622 45786 46022 46122 46222 46422 46522 46822 46922 47080 47122 47322 47422 47522 47622 47984 47990 48000 48013 48622 48722 48822 48888 48922 49222 49322 49422 49622 49722 49767 49822 49922 50000 50001 50009 50042 50080 50100 50106 50112 50122 50222 50522 50622 50722 50822 50922 51022 51122 51222 51235 51322 51522 51722 51822 52122 52322 52422 52522 52622 52822 52922 53122 53322 53480 53522 53622 53922 54022 54322 54422 54822 55000 55200 55443 55553 56522 57780 57784 58000 60129 61613 61616 62078 62080 63210 63256 64295 64477 65000

13 / tcp

1725312227 | 2025-02-23T16:34:35.977379

12:06:55 2024/1/22

17 / tcp

-297057753 | 2025-02-05T16:21:10.903502

HTTP/1.1 401 Unauthorized
X-Plex-Protocol: 1.0
Content-Type: text/html
Connection: close
Cache-Control: no-cache

19 / tcp

1978059005 | 2025-02-23T21:14:25.801107

Sorry, that nickname format is invalid.

21 / tcp

-1248408558 | 2025-02-25T23:18:57.630176

220 MikroTik FTP server (MikroTik 6.44.3) ready

25 / tcp

-1316491703 | 2025-02-08T02:02:13.204527

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

37 / tcp

1958349741 | 2025-02-24T07:36:06.589710

\xc3\xbf\xc3\xbb\\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

53 / tcp

1024248778 | 2025-02-22T05:46:25.174777

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x00\xbd\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x00\xa2\x00\x04\xac٣.
\x00\x06\x85\x80\x00\x01\x00\x01\x00\x00\x00

65 / tcp

-1327660293 | 2025-02-24T17:01:41.776950

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

70 / tcp

-972699072 | 2025-02-26T10:13:24.947282

HTTP/1.0 200 OK
Content-type: text/html
Server: uc-httpd 1.0.0
Expires: 0

CVE-2018-10088

79 / tcp

-1770051369 | 2025-02-18T12:54:00.731820

421 too many connections

80 / tcp

-214112539 | 2025-02-25T19:15:47.975038

Hashes

hash

-1094508876

http.dom_hash

1799269922

http.html_hash

-214112539

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Tue, 25 Feb 2025 19:15:40 GMT
Content-Type: application/xml
Content-Length: 345
Connection: keep-alive
x-oss-request-id: 67BE16DCF0F7C4343415D215
x-oss-server-time: 0
x-oss-ec: 0003-00001201

96 / tcp

-1265999252 | 2025-02-01T14:47:56.585459

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto\ncol:SOAP, MKSDisplayProtocol:VNC , ,

100 / tcp

-2089734047 | 2025-02-24T18:17:35.394586

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

101 / tcp

-1428621233 | 2025-02-03T19:50:02.279720

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

102 / tcp

575925250 | 2025-02-19T11:56:46.999861

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

104 / tcp

639175818 | 2025-02-01T12:24:22.311946

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

110 / tcp

-2089734047 | 2025-02-20T11:04:31.326764

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

111 / tcp

539065883 | 2025-02-26T05:47:07.566354

113 / tcp

60948681 | 2025-02-21T07:35:17.594493

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).

122 / tcp

-891714208 | 2025-02-23T10:53:33.320898

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

143 / tcp

-829824006 | 2025-02-20T19:31:38.176262

* OK Coremail System IMap Server Ready(mispb-5f781434-d784-4cb6-b7ab-91be09a0f2d6-peony.cn[ccf14d07de0680199ac3995dd82c09e7])\r\n

175 / tcp

-1399940268 | 2025-02-25T16:23:35.022433

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

179 / tcp

-399606100 | 2025-02-01T23:33:51.039210

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

221 / tcp

819727972 | 2025-02-20T17:37:47.281561

SSH-2.0-OpenSSH_7.4

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 13 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2019-6111 CVE-2019-6110 CVE-2019-6109 CVE-2018-20685 CVE-2018-15919 CVE-2018-15473 CVE-2017-15906 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

225 / tcp

-1399940268 | 2025-02-21T09:11:39.616938

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

311 / tcp

1975288991 | 2025-02-28T16:34:40.560614

OPTI

343 / tcp

-2089734047 | 2025-02-23T21:28:19.381917

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

389 / tcp

811247330 | 2025-02-26T06:55:07.100668

HTTP/1.1 200 OK
Server: Apache
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet, nosnippet, notranslate, noimageindex
Content-Type: text/html; charset=utf-8

442 / tcp

1011407350 | 2025-02-05T16:44:48.479328

* OK GroupWise IMAP4rev1 Server Ready\r\n

443 / tcp

1638645179 | 2025-02-22T02:35:28.439282

Hashes

hash

1372520693

http.dom_hash

196608935

http.html_hash

1638645179

http.server_hash

-498774968

http.title_hash

-1391280995

400 The plain HTTP request was sent to HTTPS port

HTTP/1.1 400 Bad Request
Server: AliyunOSS
Date: Sat, 22 Feb 2025 02:35:28 GMT
Content-Type: text/html
Content-Length: 327
Connection: close

444 / tcp

-1549808090 | 2025-02-25T23:55:18.825678

HTTP/1.1 400 Bad Request
Server: nginx/1.22.1
Date: Tue, 25 Feb 2025 23:55:18 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

448 / tcp

-1230049476 | 2025-02-18T11:48:53.010917

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

450 / tcp

366084633 | 2025-02-27T22:28:15.553993

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

462 / tcp

-1399940268 | 2025-02-06T03:40:26.432509

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

465 / tcp

897328069 | 2025-02-26T02:01:07.637047

220 mail.scott000.com ESMTP

502 / tcp

1911457608 | 2025-02-19T07:22:08.062419

\x00[\x00\x00\x00\x00\x00\x00

503 / tcp

-1399940268 | 2025-02-05T11:59:59.101894

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

513 / tcp

722711397 | 2025-02-23T08:53:22.058927

\x00[M\xc3\xba\xc3\x9a\x7f\x00\x00

548 / tcp

-773160241 | 2025-02-03T11:05:25.635532

Fast Copy: Yes\nExtended Sleep: Yes\nUUIDs: Yes\nUTF8 Server Name: Yes\nDirectory Services: Yes\nReconnect: Yes\nServer Notifications: Yes\nTCP/IP: Yes\nServer Signature: Yes\nServer Message: No\nPassword Saving Prohibited: No\nPassword Changing: Yes\nCopy File: Yes\nServer Name: murphys-airport-time-capsule\nMachine Type: \\x10TimeCapsule8,119\nAFP Versions: AFP3.3, AFP3.2, AFP3.1\nUAMs: DHCAST128\\x04,DHX2\\x03,SRP\\x06,Recon1C\nServer Signature: 4338365332344c58463948350069672d

554 / tcp

285770450 | 2025-02-27T10:35:20.318353

RTSP/1.0 401 Unauthorized
CSeq: 1

555 / tcp

1504401647 | 2025-02-22T04:16:33.433137

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

556 / tcp

707919486 | 2025-02-20T09:41:33.953593

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

587 / tcp

745343730 | 2025-02-03T15:02:22.391707

220 smtp.qq.com Esmtp QQ Mail Server

602 / tcp

-454087041 | 2025-02-20T18:07:46.041413

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

636 / tcp

-1036370807 | 2025-02-25T01:18:00.476097

JDWP-Handshake

666 / tcp

-1420968138 | 2025-02-27T19:00:56.550617

HTTP/1.0 200 OK
Server: SonicWALL
Expires: -1
Cache-Control: no-cache
Content-type: text/html; charset=UTF-8;
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=31536000; includeSubDomains

743 / tcp

165188539 | 2025-02-26T23:22:20.427299

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

771 / tcp

-303199180 | 2025-02-23T22:49:21.637917

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

782 / tcp

-1399940268 | 2025-02-05T17:53:31.874811

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

789 / tcp

1208318993 | 2025-02-28T16:55:41.711622

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

800 / tcp

-537228938 | 2025-02-27T18:08:46.469941

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2721_PS-TNH-01DBv156_26858-11263

801 / tcp

-303199180 | 2025-02-19T11:11:28.974637

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

809 / tcp

-1399940268 | 2025-02-19T06:27:13.295927

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

947 / tcp

-358801646 | 2025-02-20T21:51:01.143356

SSH-2.0-OpenSSH_6.6.1

992 / tcp

-936692830 | 2025-02-25T01:05:09.230656

HTTP/1.1 202 OK
Connection: Keep-Alive
Content-Type: text/html
Keep-Alive: timeout=15; max=19

993 / tcp

-1779118422 | 2025-02-21T22:06:36.601287

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

995 / tcp

-2113068813 | 2025-02-03T23:53:20.078880

+OK POP3 server ready\n

1000 / tcp

-2096652808 | 2025-02-06T09:06:38.222374

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1002 / tcp

-1839934832 | 2025-02-23T15:33:55.143565

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

1023 / tcp

962700458 | 2025-02-03T18:06:34.281447

1025 / tcp

-1399940268 | 2025-02-20T02:13:24.240429

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1080 / tcp

1362344524 | 2025-02-08T18:40:19.107776

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.7

1099 / tcp

321971019 | 2025-02-24T16:02:24.910443

-ERR client ip is not in whitelist\r

1110 / tcp

-740312032 | 2025-02-26T15:30:42.817751

+OK Dovecot (Ubuntu) ready.\r\n

1153 / tcp

-1839934832 | 2025-02-09T03:48:58.051855

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

1177 / tcp

1308377066 | 2025-02-26T23:25:34.352229

ncacn_http/1.0

1193 / tcp

1282941221 | 2025-02-21T11:58:31.327725

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

1234 / tcp

1911457608 | 2025-02-25T19:52:55.729489

\x00[\x00\x00\x00\x00\x00\x00

1235 / tcp

1282941221 | 2025-02-04T13:58:33.975062

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

1291 / tcp

-358801646 | 2025-02-21T18:43:29.107545

SSH-2.0-OpenSSH_6.6.1

1293 / tcp

-441419608 | 2025-02-08T21:52:28.673681

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

1344 / tcp

-1399940268 | 2025-02-01T13:18:27.917704

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1364 / tcp

-2096652808 | 2025-02-26T00:04:03.279241

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1366 / tcp

-2096652808 | 2025-02-22T16:16:03.483569

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1377 / tcp

-1036370807 | 2025-02-23T05:14:16.036469

JDWP-Handshake

1414 / tcp

-1019343788 | 2025-02-24T09:52:50.237911

W!\x00\x00\x00\x00

1433 / tcp

-1781810481 | 2025-02-19T21:41:34.848950

MSSQL Server\nVersion: 150998979 (0x9000fc3)\nSub-Build: 0\nEncryption:Not available\n\nMSSQL NTLM Info:\nTarget_Name: PULI\nProduct_Version: 6.1.7601 Ntlm 15\nOS: Windows 7, Service Pack 1/Windows Server 2008 R2, Service Pack 1\nNetBIOS_Domain_Name: PULI\nNetBIOS_Computer_Name: CIXIAO\nDNS_Domain_Name: puli.gov.tw\nDNS_Computer_Name: cixiao.puli.gov.tw\nMsvAvDnsTreeName: puli.gov.tw\nSystem_Time: 2024-01-22 05:04:23 +0000 UTC\n\n

1451 / tcp

366084633 | 2025-02-19T05:28:50.071722

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

1457 / tcp

-1327660293 | 2025-02-25T06:18:02.119999

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

1515 / tcp

-1760806421 | 2025-02-25T16:55:37.058650

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected

1521 / tcp

-1337747449 | 2025-02-28T22:43:11.645438

Version:12.2.0.1.0\n"\\x00\\x00Y(DESCRIPTION=(TMP=)(VSNNUM=203424000)(ERR=1189)(ERROR_STACK=(ERROR=(CODE=1189)(EMFI=4))))

1599 / tcp

-79865617 | 2025-02-21T16:19:18.126994

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com
mit-revprops depth log-revprops partial-replay ) ) )

1605 / tcp

-1399940268 | 2025-02-08T12:05:12.643921

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1650 / tcp

-1099385124 | 2025-02-24T12:24:23.558434

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

1723 / tcp

1103582599 | 2025-02-04T08:34:40.557516

Firmware: 1\nHostname: Vigor\nVendor: DrayTek\n

1800 / tcp

-345718689 | 2025-02-08T16:29:41.632428

Vty password is not set.

1801 / tcp

1266492139 | 2025-02-01T18:51:21.077769

\\x10Z\x0b\\x00LIOR<\\x02\\x00\\x00\\xff\\xff\\xff\\xff\\x00\\x00\\x12\\x00a36a0e421af47074q\\xc0\\x86\xd9\xb0\\xc1hG\\xbf\\xbd\\x9f\\x89tx%\\x8892d3\\x10\\x03\\x00\\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

1830 / tcp

669849225 | 2025-02-03T13:41:32.089336

SSH-98.60-SysaxSSH_81885..42\r\n

1911 / tcp

-1399940268 | 2025-02-24T17:51:44.266698

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1925 / tcp

-2118655245 | 2025-02-06T10:43:03.354507

Hashes

hash

1015654041

http.dom_hash

-2006505642

http.html_hash

-2118655245

HTTP/1.0 500 Internal Server Error
Content-Length: 20

1926 / tcp

2087396567 | 2025-02-21T02:08:24.045785

kjnkjabhbanc283ubcsbhdc72

1957 / tcp

321971019 | 2025-02-05T18:26:12.209333

-ERR client ip is not in whitelist\r

1962 / tcp

-441419608 | 2025-02-07T04:28:16.904402

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

1967 / tcp

819727972 | 2025-02-21T03:11:15.534617

SSH-2.0-OpenSSH_7.4

1971 / tcp

-42767839 | 2025-02-21T21:36:49.317557

RFB 005.000

VNC:
  Protocol Version: 5.0

1975 / tcp

-454087041 | 2025-02-27T09:21:00.486996

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

1978 / tcp

-2096652808 | 2025-02-07T04:49:53.648835

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

2000 / tcp

410249975 | 2025-02-26T13:03:03.283730

LNS READY<>

2002 / tcp

1632932802 | 2025-02-23T14:28:16.400806

2008 / tcp

632542934 | 2025-02-04T22:50:04.750153

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

2010 / tcp

1911457608 | 2025-02-06T19:32:28.236437

\x00[\x00\x00\x00\x00\x00\x00

2018 / tcp

669849225 | 2025-02-05T16:44:06.986058

SSH-98.60-SysaxSSH_81885..42\r\n

2050 / tcp

-1746074029 | 2025-02-24T17:26:39.479232

101 imqbroker =unV\r\n

2060 / tcp

-1399940268 | 2025-02-19T23:28:07.117572

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2065 / tcp

-42767839 | 2025-02-06T10:24:34.207662

RFB 005.000

VNC:
  Protocol Version: 5.0

2068 / tcp

-42767839 | 2025-02-22T17:34:06.365762

RFB 005.000

VNC:
  Protocol Version: 5.0

2070 / tcp

1830187220 | 2025-02-26T04:03:37.317788

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

2072 / tcp

-1399940268 | 2025-02-23T21:10:38.954473

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2081 / tcp

-1036370807 | 2025-02-19T18:48:58.779358

JDWP-Handshake

2085 / tcp

-2096652808 | 2025-02-05T17:32:12.081663

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

2087 / tcp

-1261090339 | 2025-02-23T13:46:07.483844

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

2090 / tcp

1543809371 | 2025-02-02T02:44:12.721981

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

2121 / tcp

2047379038 | 2025-02-06T01:20:11.540839

220 RS820Plus FTP server ready.

2133 / tcp

819727972 | 2025-02-28T05:22:46.336794

SSH-2.0-OpenSSH_7.4

2154 / tcp

-1681927087 | 2025-02-02T17:54:07.712256

kjnkjabhbanc283ubcsbhdc72

2181 / tcp

546151771 | 2025-02-25T00:43:31.363102

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

2200 / tcp

1023953321 | 2025-02-04T00:13:12.864196

HTTP/1.0 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm="proxy"
Connection: close
Content-type: text/html; charset=utf-8

2222 / tcp

-1659353189 | 2025-02-20T05:20:13.995399

SSH-2.0-ssh-server\r\n\\x00\\x00\\x02\\x14\x0b\\x14\x0b\\xed\\x16\\xae\\x96\t\\xc5En\\xbd\\x1cgn\\xff\\xad\\xd7\\x00\\x00\\x00\\xbbcurve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp521,ecdh-sha2-nistp384,ecdh-sha2-nistp256,diffie-hellman-group14-sha256,diffie-hellman-gr

2232 / tcp

165188539 | 2025-02-06T20:11:23.663340

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

2323 / tcp

1662205251 | 2025-02-25T13:57:49.441894

HTTP/1.0 404 FAIL
Content-length:5
Connection:Close

2332 / tcp

1231376952 | 2025-02-21T05:53:19.270562

2353 / tcp

117101543 | 2025-02-22T16:57:26.963457

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

2376 / tcp

1426971893 | 2025-02-27T15:52:44.374426

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

2404 / tcp

-1899074860 | 2025-02-27T20:50:53.597565

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

2423 / tcp

1308377066 | 2025-02-25T13:25:17.362730

ncacn_http/1.0

2435 / tcp

1574088840 | 2025-02-21T17:18:10.693565

">Application and Content Networking Software 3.9</a>)\n</BODY><

2443 / tcp

897328069 | 2025-02-27T13:35:04.217658

220 mail.scott000.com ESMTP

2455 / tcp

474736340 | 2025-03-01T01:57:59.631414

431 Unable to negotiate secure command connection.

2550 / tcp

-1399940268 | 2025-02-02T20:15:00.535585

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2554 / tcp

-653033013 | 2025-02-03T01:05:10.056522

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

2559 / tcp

-1399940268 | 2025-02-20T19:23:44.044762

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2562 / tcp

-1399940268 | 2025-02-24T11:37:05.082276

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2568 / tcp

1911457608 | 2025-02-21T19:44:22.886868

\x00[\x00\x00\x00\x00\x00\x00

2569 / tcp

740837454 | 2025-02-08T12:58:29.283868

SSH-2.0-OpenSSH_5.3

2599 / tcp

119860953 | 2025-02-19T05:58:18.969959

* OK ArGoSoft Mail Server IMAP Module v.YW at

2626 / tcp

-1888448627 | 2025-02-02T13:40:36.332881

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

2628 / tcp

2087396567 | 2025-02-04T21:57:06.058274

kjnkjabhbanc283ubcsbhdc72

2761 / tcp

-122096153 | 2025-02-25T08:41:57.163681

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

3001 / tcp

165188539 | 2025-02-27T11:07:27.629336

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3002 / tcp

-1399940268 | 2025-03-01T00:23:13.540876

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3005 / tcp

231461308 | 2025-02-06T10:03:59.416440

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 42-4717774-0 0NNN RT(1705901600426 0) q(0 -1 -1 -1) r(0 -1)

3009 / tcp

1991883981 | 2025-02-27T13:11:29.087405

B\x00\x00\x00\xc3\xbfn\x04Too many connections

3017 / tcp

587250289 | 2025-02-02T18:23:03.645814

HTTP/1.1 400 Bad Request
Server: nginx/1.18.11011 (Ubuntu)
Content-Type: text/plain; charset=utf-8
Connection: close

3018 / tcp

819727972 | 2025-02-26T21:01:04.283494

SSH-2.0-OpenSSH_7.4

3069 / tcp

-1399940268 | 2025-02-08T21:47:03.423519

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3076 / tcp

1911457608 | 2025-02-03T04:41:23.023612

\x00[\x00\x00\x00\x00\x00\x00

3077 / tcp

198844676 | 2025-02-22T00:53:55.422465

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3087 / tcp

1011407350 | 2025-02-04T11:25:34.700015

* OK GroupWise IMAP4rev1 Server Ready\r\n

3103 / tcp

165188539 | 2025-02-03T19:59:29.083149

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3109 / tcp

-2046514463 | 2025-02-04T23:46:38.723945

AB\x01\t

3114 / tcp

1911457608 | 2025-02-23T06:15:30.403661

\x00[\x00\x00\x00\x00\x00\x00

3129 / tcp

165188539 | 2025-02-20T06:35:24.202576

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3137 / tcp

599074451 | 2025-02-24T23:43:03.590765

msg

3146 / tcp

2063598737 | 2025-02-08T11:26:12.337103

/0 0 L\r\n/0 0 HUH\r\n

3148 / tcp

-1399940268 | 2025-02-23T08:42:01.388775

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3157 / tcp

-1839934832 | 2025-02-25T01:24:49.873023

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

3162 / tcp

921225407 | 2025-02-23T07:23:22.500797

\x00\x00\x00\x04\x00\x00\x00\x00\x00

3163 / tcp

1011407350 | 2025-02-26T20:07:54.829308

* OK GroupWise IMAP4rev1 Server Ready\r\n

3164 / tcp

-1795027372 | 2025-02-19T01:42:22.185035

\xc3\xbf\xc3\xbd"\r\nLinuxNode v06953 (ggfks)\r\n\r\nlogin:

3167 / tcp

-1399940268 | 2025-02-07T09:53:59.335779

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3169 / tcp

1911457608 | 2025-02-25T19:42:17.440528

\x00[\x00\x00\x00\x00\x00\x00

3173 / tcp

-1428621233 | 2025-02-03T03:16:48.620290

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

3180 / tcp

632542934 | 2025-02-03T05:31:51.472584

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

3193 / tcp

-1476017887 | 2025-02-07T17:27:10.988691

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

3194 / tcp

-1399940268 | 2025-02-20T20:44:19.146487

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3211 / tcp

-343643151 | 2025-02-25T00:42:40.090331

220-FileZilla Server 0.9.60 beta\r\n220-written by Tim Kosse (tim.kosse@filezilla-project.org)\r\n220 Please visit https://filezilla-project.org/\r\n

3221 / tcp

-2019309480 | 2025-02-08T20:08:19.971807

<?xml version="1.0" encoding="us-ascii"?>\n

3260 / tcp

-1341662640 | 2025-02-04T05:22:30.855879

HTTP/1.1 301 Moved Permanently
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

3268 / tcp

1727372229 | 2025-02-06T05:41:49.213002

HTTP/1.1 302 
Location: http://116.6.76.114:3268/index.html

3269 / tcp

165188539 | 2025-02-27T20:21:35.086135

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3299 / tcp

819727972 | 2025-02-25T18:36:49.108895

SSH-2.0-OpenSSH_7.4

3301 / tcp

1077013874 | 2025-02-21T11:03:44.262431

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

3306 / tcp

1673132866 | 2025-02-23T14:11:28.775611

I\\x00\\x00\\x01\\xffj\\x04Host \'*.*.*.*\' is not allowed to connect to this MariaDB server

3310 / tcp

-1839934832 | 2025-02-24T20:08:11.307958

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

3342 / tcp

-832380282 | 2025-02-02T11:15:51.410646

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).\n

3345 / tcp

1624217396 | 2025-02-05T05:37:25.756263

HELO:10.3.6.0.false\nAS:2048\nHL:19

3388 / tcp

410249975 | 2025-02-26T07:12:07.701396

LNS READY<>

3389 / tcp

1908555143 | 2025-02-03T10:19:43.571633

Remote Desktop Protocol\n\\x03\\x00\\x00\\x13\\x0e\\xd0\\x00\\x00\\x124\\x00\\x02\\x1f\\x08\\x00\\x08\\x00\\x00\\x00\n\nFlag: PROTOCOL_HYBRID_EX\nTarget_Name: 7BKOHJ0F5NJTKEI\nProduct_Version: 10.0.14393 Ntlm 15\nOS: Windows 10, Version 1607/Windows Server 2016, Version 1607\nNetBIOS_Domain_Name: 7BKOHJ0F5NJTKEI\nNetBIOS_Computer_Name: 7BKOHJ0F5NJTKEI\nDNS_Domain_Name: 7bkohj0f5njtkeim\nDNS_Computer_Name: 7bkohj0f5njtkeim\nSystem_Time: 2024-01-22 08:43:54 +0000 UTC\n\n

3402 / tcp

-1114821551 | 2025-02-04T21:17:26.785597

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

3409 / tcp

-1399940268 | 2025-02-18T00:00:28.323236

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3479 / tcp

-1399940268 | 2025-02-24T10:06:05.694551

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3541 / tcp

0 | 2025-02-02T05:03:12.271515

Hashes

hash

-119996482

http.dom_hash

http.html_hash

HTTP/1.1 408 Request Timeout
Content-Length: 0

3551 / tcp

198844676 | 2025-02-07T22:23:26.456251

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3572 / tcp

-1399940268 | 2025-02-25T14:28:01.070212

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3780 / tcp

1077013874 | 2025-02-25T19:47:20.437791

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

3790 / tcp

819727972 | 2025-02-20T13:40:01.382762

SSH-2.0-OpenSSH_7.4

3841 / tcp

-1730858130 | 2025-02-05T18:27:39.557116

RFB 003.008
VNC:
  Protocol Version: 3.8

3950 / tcp

1353260875 | 2025-02-06T03:20:07.899637

\x00[g\xc2\x95N\x7f\x00\x00

4002 / tcp

-1399940268 | 2025-02-03T23:50:21.850186

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4022 / tcp

-2089734047 | 2025-02-09T00:02:06.130320

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

4042 / tcp

-1399940268 | 2025-02-04T14:56:45.193151

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4063 / tcp

2087396567 | 2025-02-26T09:06:47.577422

kjnkjabhbanc283ubcsbhdc72

4064 / tcp

51259122 | 2025-02-23T09:11:04.139325

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

4100 / tcp

-1899074860 | 2025-02-06T08:57:49.299881

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

4147 / tcp

-274082663 | 2025-02-25T16:28:30.573307

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

4148 / tcp

-445721795 | 2025-02-23T13:55:18.438566

\x00[\xc3\xaed\x1a\x7f\x00\x00

4157 / tcp

2087396567 | 2025-02-20T22:12:27.963218

kjnkjabhbanc283ubcsbhdc72

4242 / tcp

-1341662640 | 2025-02-28T16:48:21.911470

HTTP/1.1 301 Moved Permanently
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

4250 / tcp

1726594447 | 2025-02-22T18:04:59.498856

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

4321 / tcp

740837454 | 2025-02-21T03:07:34.891042

SSH-2.0-OpenSSH_5.3

4400 / tcp

-1399940268 | 2025-02-08T20:07:03.698450

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4430 / tcp

2087396567 | 2025-02-04T01:50:27.399460

kjnkjabhbanc283ubcsbhdc72

4431 / tcp

632542934 | 2025-02-08T20:50:42.486618

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

4433 / tcp

-1248408558 | 2025-02-04T13:42:32.878037

220 MikroTik FTP server (MikroTik 6.44.3) ready

4440 / tcp

-1399940268 | 2025-02-04T17:17:45.595488

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4443 / tcp

1089570394 | 2025-02-18T12:25:07.791781

HTTP/1.1 403 Forbidden
Server: openresty
Content-Type: text/html
Connection: keep-alive
Deny-Reason: hotload rechange server uri format error!!
Request-Id: 65ae29d9288d03df989018e5e7290002

4451 / tcp

-805362002 | 2025-02-22T11:03:33.017136

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

4499 / tcp

819727972 | 2025-02-26T21:46:16.534365

SSH-2.0-OpenSSH_7.4

4506 / tcp

1261582754 | 2025-02-04T22:56:25.334735

unknown command 
unknown command

4545 / tcp

-1538260461 | 2025-02-20T20:58:42.770684

\x01\x00\x00\x00

4572 / tcp

921225407 | 2025-02-21T18:03:07.374222

\x00\x00\x00\x04\x00\x00\x00\x00\x00

4602 / tcp

-2089734047 | 2025-02-19T11:42:21.607059

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

4747 / tcp

819727972 | 2025-02-26T16:35:14.173337

SSH-2.0-OpenSSH_7.4

4840 / tcp

921225407 | 2025-02-07T13:25:49.815183

\x00\x00\x00\x04\x00\x00\x00\x00\x00

4899 / tcp

819727972 | 2025-02-07T17:58:57.003153

SSH-2.0-OpenSSH_7.4

4911 / tcp

-1019343788 | 2025-02-28T00:11:02.599393

W!\x00\x00\x00\x00

4933 / tcp

-1114821551 | 2025-02-25T09:30:50.900001

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

5001 / tcp

1690634669 | 2025-02-28T10:31:12.734177

5006 / tcp

-1559123399 | 2025-02-27T03:38:49.877940

500 Permission denied - closing connection.

5007 / tcp

1911457608 | 2025-02-24T21:51:05.868230

\x00[\x00\x00\x00\x00\x00\x00

5009 / tcp

-1413918021 | 2025-02-20T01:12:41.391312

acpp\\x00\\x03\\x00\\x01E\\xe2\\x05\\x98\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\xff\\xff\\xff\\xf0\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00\\x00

5010 / tcp

1308377066 | 2025-02-07T19:31:06.077236

ncacn_http/1.0

5053 / tcp

-375604792 | 2025-02-08T11:20:12.376653

220 Microsoft FTP Service

5090 / tcp

819727972 | 2025-02-01T12:41:24.694391

SSH-2.0-OpenSSH_7.4

5119 / tcp

819727972 | 2025-02-19T10:19:56.040280

SSH-2.0-OpenSSH_7.4

5123 / tcp

-1399940268 | 2025-02-06T11:56:19.079239

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5150 / tcp

820958131 | 2025-02-23T08:26:30.435079

kjnkjabhbanc283ubcsbhdc72\x02

5172 / tcp

1741579575 | 2025-02-07T02:20:13.994989

5190 / tcp

-1056270173 | 2025-02-08T23:35:21.954597

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close

5227 / tcp

-2140303521 | 2025-02-04T20:14:30.863895

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

5231 / tcp

-1019343788 | 2025-02-18T21:41:17.057433

W!\x00\x00\x00\x00

5248 / tcp

-1399940268 | 2025-02-26T20:13:48.424433

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5249 / tcp

-1399940268 | 2025-02-22T22:02:03.917841

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5255 / tcp

-1399940268 | 2025-02-23T15:25:47.418183

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5260 / tcp

-358801646 | 2025-02-19T15:06:33.128586

SSH-2.0-OpenSSH_6.6.1

5261 / tcp

632542934 | 2025-02-08T18:40:08.349561

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

5267 / tcp

-2096652808 | 2025-03-01T01:18:33.189157

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

5268 / tcp

1282941221 | 2025-02-24T08:27:02.778308

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

5273 / tcp

-1399940268 | 2025-02-03T02:33:18.327089

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5280 / tcp

-1678345660 | 2025-02-05T00:28:20.369188

!\\x07version\\x04bind7 t{RPowerDNS Recursor 410

5431 / tcp

-981921233 | 2025-02-20T22:31:38.723428

HTTP/1.1 404 Not Found
DATE: Fri, 19 Jan 2024 11:56:43 GMT
Connection: Keep-Alive
Server: LINUX/2.4 UPnP/1.0 BRCM400/1.0
Content-Type: text/xml; charset="utf-8"
EXT:

5432 / tcp

-1888448627 | 2025-02-03T10:53:41.163460

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

5435 / tcp

-1399940268 | 2025-02-24T15:05:19.171798

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5456 / tcp

1911457608 | 2025-02-22T19:50:31.025587

\x00[\x00\x00\x00\x00\x00\x00

5556 / tcp

-805362002 | 2025-02-04T23:34:01.745738

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

5595 / tcp

2063598737 | 2025-02-05T14:19:37.024874

/0 0 L\r\n/0 0 HUH\r\n

5599 / tcp

307999478 | 2025-02-04T19:04:39.300896

unknown command \r\nunknown command \r\n

5606 / tcp

745343730 | 2025-02-07T18:23:17.255737

220 smtp.qq.com Esmtp QQ Mail Server

5613 / tcp

165188539 | 2025-02-20T05:01:46.799064

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

5614 / tcp

-1399940268 | 2025-02-23T14:37:50.468414

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5660 / tcp

2063598737 | 2025-02-06T08:12:16.154123

/0 0 L\r\n/0 0 HUH\r\n

5672 / tcp

575925250 | 2025-02-27T13:49:43.139656

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

5678 / tcp

372433470 | 2025-02-07T06:11:13.606113

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

5858 / tcp

-971970408 | 2025-02-26T15:46:32.016770

5903 / tcp

-1839934832 | 2025-02-04T19:57:26.218022

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

5905 / tcp

-1399940268 | 2025-02-07T14:48:17.718633

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5914 / tcp

1911457608 | 2025-02-25T03:09:43.042782

\x00[\x00\x00\x00\x00\x00\x00

5917 / tcp

1948301213 | 2025-02-06T12:44:03.553196

RFB 003.003
VNC:
  Protocol Version: 3.3

5938 / tcp

-1399940268 | 2025-02-21T17:20:20.045096

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5984 / tcp

1999272906 | 2025-02-04T13:57:16.227157

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

5986 / tcp

2087396567 | 2025-02-23T03:04:41.383547

kjnkjabhbanc283ubcsbhdc72

5993 / tcp

580340387 | 2025-02-06T16:34:04.655042

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

6000 / tcp

1632932802 | 2025-02-27T21:49:19.595122

6001 / tcp

671605376 | 2025-02-23T14:20:51.613003

SSH-2.0-OpenSSH_X.X

6008 / tcp

-1996280214 | 2025-02-20T19:43:13.296255

\x06\x04\x05@

6081 / tcp

1278527606 | 2025-02-07T10:00:02.057530

SSH-2.0-Teleport

6102 / tcp

-1399940268 | 2025-02-23T18:11:47.144405

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6308 / tcp

-1399940268 | 2025-02-19T04:01:29.082528

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6331 / tcp

1911457608 | 2025-02-06T09:29:02.414820

\x00[\x00\x00\x00\x00\x00\x00

6352 / tcp

819727972 | 2025-02-07T21:34:31.918370

SSH-2.0-OpenSSH_7.4

6363 / tcp

937756010 | 2025-02-26T12:35:23.204164

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x01\x00\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

6379 / tcp

321971019 | 2025-02-27T11:16:14.936301

-ERR client ip is not in whitelist\r

6443 / tcp

2087396567 | 2025-02-25T05:34:02.961798

kjnkjabhbanc283ubcsbhdc72

6482 / tcp

-1888448627 | 2025-02-06T13:56:33.856691

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

6514 / tcp

-1839934832 | 2025-02-07T09:27:09.769102

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

6550 / tcp

1911457608 | 2025-02-07T06:30:52.232060

\x00[\x00\x00\x00\x00\x00\x00

6581 / tcp

-1428621233 | 2025-02-20T00:46:41.601860

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

6633 / tcp

-249504111 | 2025-02-23T07:02:37.665279

\x00[xU-\x7f\x00\x00

6653 / tcp

1574088840 | 2025-02-06T19:42:00.819743

">Application and Content Networking Software 3.9</a>)\n</BODY><

6666 / tcp

4935895 | 2025-02-26T07:12:00.377052

HTTP/1.1 400 Bad Request
Server: CloudWAF

6667 / tcp

2087396567 | 2025-02-19T19:33:49.736424

kjnkjabhbanc283ubcsbhdc72

6668 / tcp

-1399940268 | 2025-02-23T12:16:50.494052

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6697 / tcp

-1059554316 | 2025-02-27T22:51:04.062214

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

6699 / tcp

-1039137921 | 2025-02-05T11:47:21.009514

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705940526.987-w-waf01tjgt

6955 / tcp

1911457608 | 2025-02-01T20:38:26.072751

\x00[\x00\x00\x00\x00\x00\x00

7001 / tcp

1827807483 | 2025-02-28T15:58:31.785846

HTTP/1.1 401 Unauthorized
Server: 
Cache-Control: no-cache,no-store
Content-Type: text/html; charset=%s
Connection: close

7004 / tcp

-80416702 | 2025-02-28T00:02:09.853138

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae25e0_CS-NKG-015sn19_26533-338

7010 / tcp

1492413928 | 2025-02-04T22:49:34.574648

SSH-2.0-OpenSSH_7.5

7071 / tcp

-1230049476 | 2025-02-26T11:29:27.603267

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

7084 / tcp

455076604 | 2025-02-07T01:25:26.365629

!\x07version\x04bind7 t{RPowerDNS Recursor 410

7171 / tcp

1911457608 | 2025-02-27T19:46:37.298817

\x00[\x00\x00\x00\x00\x00\x00

7172 / tcp

819727972 | 2025-02-26T23:33:29.133133

SSH-2.0-OpenSSH_7.4

7325 / tcp

-1487943323 | 2025-02-04T16:19:26.584245

431 Unable to negotiate secure command connection.\r\n

7415 / tcp

921225407 | 2025-02-26T23:13:22.668178

\x00\x00\x00\x04\x00\x00\x00\x00\x00

7434 / tcp

1082732927 | 2025-02-08T19:54:51.560880

STAT pid 1660
STAT uptime 28884
STAT time 1641290377
STAT version 1.2.1
STAT pointer_size 32
STAT curr_items 14
STAT total_items 3533
STAT bytes 30524
STAT curr_connections 1
STAT total_connections 3542
STAT connection_structures 3
STAT cmd_get 3533
STAT cmd_set 3533
STAT get_hits 3519
STAT get_misses 14
STAT bytes_read 7927780
STAT bytes_written 7848552
STAT limit_maxbytes 67108864
END

7548 / tcp

2087396567 | 2025-02-25T21:26:40.155853

kjnkjabhbanc283ubcsbhdc72

7634 / tcp

-971970408 | 2025-02-03T11:08:35.755277

7700 / tcp

-2089734047 | 2025-02-26T01:42:34.008679

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

7771 / tcp

819727972 | 2025-02-18T20:27:34.039598

SSH-2.0-OpenSSH_7.4

7790 / tcp

-1399940268 | 2025-02-25T14:55:34.603868

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7980 / tcp

1623746877 | 2025-02-18T23:37:59.173801

500 Permission denied - closing connection.\r\n

7999 / tcp

-1259524839 | 2025-02-24T13:12:23.638652

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

8004 / tcp

597764502 | 2025-02-27T05:40:13.327039

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

8014 / tcp

971933601 | 2025-02-24T03:56:08.975245

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

8018 / tcp

1911457608 | 2025-02-06T05:35:18.619927

\x00[\x00\x00\x00\x00\x00\x00

8019 / tcp

971933601 | 2025-02-22T09:19:08.843998

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

8021 / tcp

-1570360064 | 2025-02-02T22:31:52.966058

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae2286_PS-CAN-010tS26_41601-21853

8024 / tcp

819727972 | 2025-02-02T01:13:34.372826

SSH-2.0-OpenSSH_7.4

8028 / tcp

1911457608 | 2025-02-07T09:53:33.603904

\x00[\x00\x00\x00\x00\x00\x00

8035 / tcp

-653033013 | 2025-02-27T13:30:07.086431

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

8042 / tcp

-734844577 | 2025-02-21T09:31:54.576512

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 657d1c3a_PSfjfzdx2nh100_10014-18094

8049 / tcp

-441419608 | 2025-02-08T03:53:41.322281

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

8050 / tcp

639175818 | 2025-02-19T19:22:40.766860

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

8052 / tcp

-1399940268 | 2025-02-26T19:57:17.271708

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8054 / tcp

1282941221 | 2025-02-07T05:51:33.121234

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8067 / tcp

-1399940268 | 2025-02-01T21:23:29.442472

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8072 / tcp

599074451 | 2025-02-08T13:17:32.879441

msg

8075 / tcp

-1648456501 | 2025-02-04T23:57:41.391515

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

8083 / tcp

2087396567 | 2025-02-26T23:42:22.340020

kjnkjabhbanc283ubcsbhdc72

8085 / tcp

-1559123399 | 2025-02-25T10:55:35.406576

500 Permission denied - closing connection.

8087 / tcp

51259122 | 2025-02-22T05:50:54.493142

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

8089 / tcp

-2033111675 | 2025-02-02T19:32:40.382580

~djb

8092 / tcp

2103111368 | 2025-02-26T22:37:15.296901

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

8099 / tcp

1825545421 | 2025-02-22T14:30:48.272904

HTTP/1.1 403 Forbidden
Server: openresty
Content-Type: text/html
Connection: keep-alive
via: CHN-GDdongguan-AREACMCC2-CACHE38[0]
X-CCDN-FORBID-CODE: 040001

8101 / tcp

-1105333987 | 2025-02-27T19:39:48.690232

\x00[KpU\x7f\x00\x00

8107 / tcp

-1261090339 | 2025-02-25T12:28:03.242543

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

8114 / tcp

-1453516345 | 2025-02-24T16:13:34.580220

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

8115 / tcp

-2089734047 | 2025-02-06T16:52:28.096349

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8119 / tcp

1574088840 | 2025-02-05T07:29:15.167361

">Application and Content Networking Software 3.9</a>)\n</BODY><

8120 / tcp

-1839934832 | 2025-02-25T19:48:51.128749

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8122 / tcp

-1839934832 | 2025-02-20T04:08:21.247592

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8126 / tcp

-1729629024 | 2025-02-20T06:26:02.005253

101 imqbroker =unV

8140 / tcp

504717326 | 2025-02-27T21:09:51.148806

SSH-2.0-OpenSSH_8.6

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2021-41617 6 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

8142 / tcp

707919486 | 2025-02-03T10:32:04.991970

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

8143 / tcp

1134517380 | 2025-02-23T15:00:37.110379

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

8156 / tcp

-1327660293 | 2025-02-08T02:16:38.872874

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

8162 / tcp

709622286 | 2025-02-08T13:20:53.689894

OK Welcome <299685> on DirectUpdate server 7286\r\n

8179 / tcp

-1399940268 | 2025-02-24T07:25:03.935013

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8180 / tcp

-1470373019 | 2025-02-23T20:09:47.837904

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae281e_PS-XMN-011WF49_10586-24989

8184 / tcp

-2107996212 | 2025-02-26T15:43:36.132148

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8200 / tcp

1320285193 | 2025-02-28T22:25:12.396976

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

8291 / tcp

-784071826 | 2025-02-28T23:07:40.545215

SSH-2.0-OpenSSH_8.0

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 7 moreCVE-2019-16905 CVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

8333 / tcp

1335782347 | 2025-02-20T19:47:33.661303

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705940700.09-waf02bjtp3

8350 / tcp

-1598265216 | 2025-02-21T07:26:59.032660

@RSYNCD: 31.0

8393 / tcp

1541211644 | 2025-02-21T03:49:54.285975

[\xc2\xba\x7fs\x7f

8411 / tcp

921225407 | 2025-02-27T13:10:10.950426

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8413 / tcp

1615193817 | 2025-02-22T00:03:18.990121

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

8419 / tcp

820958131 | 2025-02-21T17:30:29.090221

kjnkjabhbanc283ubcsbhdc72\x02

8429 / tcp

820958131 | 2025-02-08T09:38:15.615806

kjnkjabhbanc283ubcsbhdc72\x02

8431 / tcp

-1032713145 | 2025-02-04T12:02:15.800358

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

8432 / tcp

-1888448627 | 2025-02-27T21:04:48.202190

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8443 / tcp

1096654864 | 2025-02-25T16:21:56.144209

HTTP/1.0 200 OK
Server: httpd/2.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
Content-Type: text/html
Connection: close

8444 / tcp

-1399940268 | 2025-02-02T11:28:12.485591

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8449 / tcp

1282941221 | 2025-02-25T10:11:31.241311

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8451 / tcp

-1399940268 | 2025-02-24T13:41:18.723651

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8455 / tcp

-2089734047 | 2025-02-26T02:41:35.178352

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8458 / tcp

165188539 | 2025-02-06T21:03:21.706872

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8462 / tcp

-1327660293 | 2025-02-27T13:48:28.779607

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

8470 / tcp

921225407 | 2025-02-05T01:54:42.609786

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8500 / tcp

410249975 | 2025-02-20T19:45:11.095959

LNS READY<>

8510 / tcp

-1626979812 | 2025-02-23T11:42:14.199229

220 Service ready for new user.

8513 / tcp

-2031152423 | 2025-02-01T23:39:38.855687

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

8526 / tcp

819727972 | 2025-02-26T12:39:52.761987

SSH-2.0-OpenSSH_7.4

8531 / tcp

-1899074860 | 2025-02-21T00:11:54.932548

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

8532 / tcp

-1399940268 | 2025-02-07T10:49:07.878757

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8545 / tcp

-1399940268 | 2025-02-21T21:19:37.158312

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8554 / tcp

1887224352 | 2025-02-05T13:52:44.254413

8557 / tcp

1278527606 | 2025-02-28T19:21:50.518675

SSH-2.0-Teleport

8561 / tcp

-1399940268 | 2025-02-09T03:07:33.732219

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8569 / tcp

1212285915 | 2025-02-24T23:26:20.939310

\x00K\x00\x00\x02\x00\x00\x00%~)J/\\tHjU(IAGENT = (AGENT_VERSION = 2388790170)(RPC_VERSION = 5..722))

8579 / tcp

-1329831334 | 2025-02-25T16:25:40.626936

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00 \x00\x00\n04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00\\...\n

8581 / tcp

819727972 | 2025-02-01T12:52:10.475339

SSH-2.0-OpenSSH_7.4

8584 / tcp

-1399940268 | 2025-02-28T08:40:36.638772

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8597 / tcp

-1230049476 | 2025-02-24T08:14:03.937473

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

8599 / tcp

1911457608 | 2025-02-20T00:42:26.382282

\x00[\x00\x00\x00\x00\x00\x00

8606 / tcp

-136006866 | 2025-02-24T11:18:47.085087

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

8649 / tcp

1489954473 | 2025-02-08T23:18:52.829830

HTTP/1.1 410 Gone
Server: openresty
Transfer-Encoding: chunked
Connection: keep-alive
Via: 1.1 google

8666 / tcp

1620329124 | 2025-02-04T08:49:56.991632

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\x01\xc3\xbf\xc3\xbb\x03\xc3\xbf\xc3\xbd\x01\xc3\xbf\xc3\xbe\x01Username:

8705 / tcp

-454087041 | 2025-02-06T01:17:13.295743

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

8706 / tcp

819727972 | 2025-02-06T14:25:51.197547

SSH-2.0-OpenSSH_7.4

8707 / tcp

819727972 | 2025-02-03T00:00:20.069344

SSH-2.0-OpenSSH_7.4

8708 / tcp

1911457608 | 2025-02-08T11:17:39.429440

\x00[\x00\x00\x00\x00\x00\x00

8709 / tcp

-2096652808 | 2025-02-24T15:16:41.495431

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

8731 / tcp

1996932384 | 2025-02-05T18:39:41.810804

"raop" nonce

8787 / tcp

-445721795 | 2025-02-08T06:25:18.645968

\x00[\xc3\xaed\x1a\x7f\x00\x00

8789 / tcp

321971019 | 2025-02-01T14:47:41.038832

-ERR client ip is not in whitelist\r

8806 / tcp

1208318993 | 2025-02-20T22:41:47.619287

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

8807 / tcp

-1399940268 | 2025-02-22T05:27:20.142704

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8808 / tcp

632542934 | 2025-02-07T06:56:07.048027

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

8816 / tcp

-358801646 | 2025-02-08T19:20:57.347045

SSH-2.0-OpenSSH_6.6.1

8828 / tcp

-1265999252 | 2025-02-23T12:03:41.359302

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto\ncol:SOAP, MKSDisplayProtocol:VNC , ,

8832 / tcp

-1013082686 | 2025-02-27T12:00:54.415894

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8836 / tcp

-2017887953 | 2025-02-27T00:25:15.082838

SSH-2.0-OpenSSH_7.9

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 11 moreCVE-2019-16905 CVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2019-6111 CVE-2019-6110 CVE-2019-6109 CVE-2018-20685 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

8840 / tcp

-1399940268 | 2025-02-08T05:20:00.477302

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8853 / tcp

-297128567 | 2025-02-08T20:11:04.838828

\x04\x01\xc3\xb4\x00\x15Internal Server Error\x00\x00\x00AB\x00\x02\x05\x00

8855 / tcp

-1839934832 | 2025-02-26T02:56:32.857087

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8857 / tcp

-2017887953 | 2025-02-24T07:20:44.480405

SSH-2.0-OpenSSH_7.9

8863 / tcp

1011407350 | 2025-02-18T20:32:50.730801

* OK GroupWise IMAP4rev1 Server Ready\r\n

8874 / tcp

-1327660293 | 2025-02-06T07:13:06.794712

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

8876 / tcp

-1099385124 | 2025-02-21T13:28:53.466973

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

8880 / tcp

117101543 | 2025-02-20T19:01:28.256576

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

8881 / tcp

819727972 | 2025-02-19T00:55:41.022745

SSH-2.0-OpenSSH_7.4

8883 / tcp

1911457608 | 2025-02-03T20:25:38.450847

\x00[\x00\x00\x00\x00\x00\x00

8889 / tcp

1282941221 | 2025-02-08T22:50:14.321544

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8902 / tcp

-1399940268 | 2025-03-01T00:17:08.389108

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8989 / tcp

-1399940268 | 2025-02-06T16:42:40.471135

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8993 / tcp

-1730858130 | 2025-02-22T00:14:52.393992

RFB 003.008
VNC:
  Protocol Version: 3.8

9001 / tcp

-1026951088 | 2025-02-25T13:26:54.844015

erro ip

9002 / tcp

-1428621233 | 2025-02-26T19:47:07.282710

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

9004 / tcp

-1888448627 | 2025-02-28T00:30:52.361287

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9007 / tcp

1911457608 | 2025-02-19T14:58:53.376910

\x00[\x00\x00\x00\x00\x00\x00

9017 / tcp

165188539 | 2025-02-01T23:39:56.351566

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9019 / tcp

-2140303521 | 2025-02-25T22:48:28.772062

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

9022 / tcp

-2106107121 | 2025-02-05T00:06:09.754813

HTTP/1.1 404 Not Found
Connection: close
Content-Type: text/html
Server: CloudWAF

9029 / tcp

-1399940268 | 2025-03-01T01:09:38.372968

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9042 / tcp

-154107716 | 2025-02-05T22:36:39.984089

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST ...

9051 / tcp

2087396567 | 2025-02-08T23:24:08.597543

kjnkjabhbanc283ubcsbhdc72

9052 / tcp

-784071826 | 2025-02-01T22:26:41.592976

SSH-2.0-OpenSSH_8.0

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 7 moreCVE-2019-16905 CVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

9061 / tcp

1308377066 | 2025-02-26T04:59:40.916961

ncacn_http/1.0

9065 / tcp

1077013874 | 2025-02-05T06:11:14.902669

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

9072 / tcp

-784071826 | 2025-02-21T19:19:06.347361

SSH-2.0-OpenSSH_8.0

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 7 moreCVE-2019-16905 CVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

9074 / tcp

1911457608 | 2025-02-23T00:54:31.062150

\x00[\x00\x00\x00\x00\x00\x00

9076 / tcp

819727972 | 2025-02-05T06:45:50.288195

SSH-2.0-OpenSSH_7.4

9079 / tcp

-180163620 | 2025-02-05T15:41:47.333532

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

9091 / tcp

-407828767 | 2025-02-24T04:10:29.760934

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

9092 / tcp

307999478 | 2025-02-28T19:53:32.497763

unknown command \r\nunknown command \r\n

9093 / tcp

1989907056 | 2025-02-25T18:06:41.228545

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

9095 / tcp

1741579575 | 2025-02-21T17:54:12.056994

9097 / tcp

-2089734047 | 2025-02-24T23:41:49.436556

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9098 / tcp

-1810987450 | 2025-02-04T09:25:44.267405

\xc3\xbf

9099 / tcp

-1914711518 | 2025-02-01T16:07:25.695814

HTTP/1.1 400 Bad Request
Connection: close
Server: Lego Server

9100 / tcp

-1730858130 | 2025-02-28T10:03:50.895147

RFB 003.008
VNC:
  Protocol Version: 3.8

9102 / tcp

1767345577 | 2025-02-03T18:06:05.973400

Hello, this is Quagga (version 0T).
Copyright 1996-200

9107 / tcp

1543809371 | 2025-02-08T23:16:14.453779

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

9123 / tcp

819727972 | 2025-02-23T17:25:19.450383

SSH-2.0-OpenSSH_7.4

9124 / tcp

-2096652808 | 2025-02-18T21:37:51.333329

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9143 / tcp

-1399940268 | 2025-02-06T16:22:26.518355

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9156 / tcp

2063598737 | 2025-02-04T19:30:18.720461

/0 0 L\r\n/0 0 HUH\r\n

9157 / tcp

410249975 | 2025-02-18T12:18:22.755246

LNS READY<>

9160 / tcp

819727972 | 2025-02-19T03:38:53.248937

SSH-2.0-OpenSSH_7.4

9169 / tcp

1282941221 | 2025-02-01T20:56:19.649863

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

9172 / tcp

707919486 | 2025-02-27T06:58:27.990819

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

9180 / tcp

819727972 | 2025-02-03T20:58:15.963465

SSH-2.0-OpenSSH_7.4

9193 / tcp

819727972 | 2025-02-25T21:13:27.987483

SSH-2.0-OpenSSH_7.4

9198 / tcp

410249975 | 2025-02-02T17:04:54.871799

LNS READY<>

9200 / tcp

-1163346640 | 2025-02-26T10:25:47.601764

Hashes

hash

-997913363

http.dom_hash

-2006505642

http.html_hash

-1163346640

HTTP/1.1 200 OK
content-type: application/json; charset=UTF-8
content-length: 215

9202 / tcp

2098371729 | 2025-02-05T12:17:00.905866

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

9203 / tcp

-358801646 | 2025-02-08T18:42:38.098958

SSH-2.0-OpenSSH_6.6.1

9208 / tcp

897328069 | 2025-02-08T21:37:35.784578

220 mail.scott000.com ESMTP

9211 / tcp

580340387 | 2025-02-05T13:46:41.888970

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

9212 / tcp

-1327660293 | 2025-02-05T18:21:59.713334

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

9213 / tcp

1126993057 | 2025-02-25T07:38:34.454719

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

9214 / tcp

819727972 | 2025-02-25T23:20:14.370468

SSH-2.0-OpenSSH_7.4

9223 / tcp

51259122 | 2025-02-18T12:19:31.716630

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

9256 / tcp

1632932802 | 2025-02-22T06:38:20.504820

9257 / tcp

819727972 | 2025-02-21T02:43:02.334412

SSH-2.0-OpenSSH_7.4

9291 / tcp

-653033013 | 2025-02-24T07:04:46.504963

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

9301 / tcp

-2089734047 | 2025-02-23T15:07:53.226184

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9306 / tcp

1911457608 | 2025-02-28T14:11:52.681442

\x00[\x00\x00\x00\x00\x00\x00

9310 / tcp

-1399940268 | 2025-02-09T03:47:37.618468

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9387 / tcp

493955023 | 2025-02-24T20:32:03.870410

\x00\x00\x0c\x04\x00\x00\x00\x00\x00\x00\x04\x00\x10\x00\x00\x00\n0\x05\x00\x00@\x00

9398 / tcp

-971970408 | 2025-02-06T10:10:17.636820

9399 / tcp

-1888448627 | 2025-02-24T09:21:38.121796

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9418 / tcp

694512854 | 2025-02-25T09:22:40.720409

220-FileZilla Server 中文版 0.9.60 beta
220-written by Tim Kosse (tim.kosse@filezilla-project.org)
220 Please visit https://filezilla-project.org/

9445 / tcp

632542934 | 2025-02-08T22:21:48.291561

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

9507 / tcp

-1888448627 | 2025-02-21T19:10:46.850606

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9515 / tcp

1543809371 | 2025-02-18T11:58:20.676498

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

9530 / tcp

819727972 | 2025-02-23T19:21:37.362570

SSH-2.0-OpenSSH_7.4

9532 / tcp

921225407 | 2025-02-21T11:03:03.971895

\x00\x00\x00\x04\x00\x00\x00\x00\x00

9600 / tcp

1363464823 | 2025-02-23T17:16:35.923898

\x00[|ox\x7f\x00\x00

9633 / tcp

504717326 | 2025-02-20T16:14:50.622946

SSH-2.0-OpenSSH_8.6

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2021-41617 6 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

9710 / tcp

-2033111675 | 2025-02-19T22:40:52.768204

~djb

9743 / tcp

-2089734047 | 2025-02-01T17:16:16.333836

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9761 / tcp

-1730858130 | 2025-02-22T22:11:12.333314

RFB 003.008
VNC:
  Protocol Version: 3.8

9797 / tcp

-2031152423 | 2025-02-20T06:02:26.232427

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

9876 / tcp

1721921834 | 2025-02-03T22:03:59.248929

\\x00\\x00\\x01+\\x00\\x00\\x00_{"code":0,"flag":1,"language":"JAVA","opaque":0,"serializeTypeCurrentRPC":"JSON","version":433}{"brokerAddrTable":{"broker-a":{"brokerAddrs":{0:"180.116.172.66:10911"},"brokerName":"broker-a","cluster":"DefaultCluster","enableActingMaster":false}},"clusterAddrTable":{"DefaultCluster":["broker-a"]}}

9898 / tcp

1304012963 | 2025-02-25T23:35:14.874540

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: close

9899 / tcp

-345718689 | 2025-02-05T02:05:23.948448

Vty password is not set.

9902 / tcp

1308377066 | 2025-02-23T21:00:29.052178

ncacn_http/1.0

9923 / tcp

921225407 | 2025-02-25T00:57:29.496931

\x00\x00\x00\x04\x00\x00\x00\x00\x00

9926 / tcp

-1399940268 | 2025-02-27T03:36:03.152711

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9929 / tcp

-1099385124 | 2025-02-02T15:12:41.864417

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

9943 / tcp

491999737 | 2025-02-21T14:58:43.140235

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705935095.837-s5jhg

9997 / tcp

-1947777893 | 2025-02-03T14:05:32.381093

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

9998 / tcp

-1901729922 | 2025-02-03T21:54:19.696193

HTTP/1.1 404 
Vary: Origin
Vary: Access-Control-Request-Method
Vary: Access-Control-Request-Headers
Content-Type: application/json
Transfer-Encoding: chunked

9999 / tcp

1161309183 | 2025-02-24T10:36:18.283083

ProxyServer is ready

10003 / tcp

-1399940268 | 2025-02-04T21:35:00.460865

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10012 / tcp

-1380608668 | 2025-02-06T03:22:25.426996

\\x00[\'\\x1c\\xc0\\xa8X\\xfd

10015 / tcp

-1019343788 | 2025-02-24T17:59:24.770029

W!\x00\x00\x00\x00

10025 / tcp

-1730858130 | 2025-02-22T13:55:00.786470

RFB 003.008
VNC:
  Protocol Version: 3.8

10027 / tcp

-1810987450 | 2025-02-22T00:44:01.986301

\xc3\xbf

10030 / tcp

-441419608 | 2025-02-24T13:29:02.281635

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

10031 / tcp

-1399940268 | 2025-02-18T20:55:24.908205

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10032 / tcp

-904840257 | 2025-02-22T23:26:26.979060

572 Relay not authorized\r\n

10081 / tcp

-1399940268 | 2025-02-04T17:36:45.115439

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10084 / tcp

-454087041 | 2025-02-25T15:28:51.792649

\x1e\xc3\x80\x010\x02\x00\xc2\xa8\xc3\xa3\x00\x00\x00\x00

10086 / tcp

-747911285 | 2025-02-05T18:02:38.973752

\xc2\xaa

10134 / tcp

1763259671 | 2025-02-24T01:47:59.553798

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

10205 / tcp

1623746877 | 2025-02-26T16:28:24.309370

500 Permission denied - closing connection.\r\n

10210 / tcp

819727972 | 2025-02-23T14:54:00.772670

SSH-2.0-OpenSSH_7.4

10250 / tcp

2087396567 | 2025-02-23T11:26:38.980529

kjnkjabhbanc283ubcsbhdc72

10324 / tcp

921225407 | 2025-02-18T12:33:11.657393

\x00\x00\x00\x04\x00\x00\x00\x00\x00

10390 / tcp

-2107996212 | 2025-02-19T11:09:47.952535

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

10398 / tcp

-1839934832 | 2025-02-23T02:13:39.747702

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

10443 / tcp

-1316491703 | 2025-02-26T05:29:05.811342

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

10894 / tcp

-1399940268 | 2025-02-03T21:17:40.562692

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10909 / tcp

-1626979812 | 2025-02-03T04:16:42.164942

220 Service ready for new user.

10911 / tcp

-1839934832 | 2025-02-22T06:42:18.847699

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

11000 / tcp

165188539 | 2025-02-24T14:09:59.721533

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

11027 / tcp

1426971893 | 2025-02-27T14:04:51.861571

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

11075 / tcp

-1888448627 | 2025-02-25T13:19:57.694750

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

11082 / tcp

1543809371 | 2025-02-27T12:25:24.093888

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2\n0181212])

11112 / tcp

-1399940268 | 2025-02-19T05:45:07.229333

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

11210 / tcp

-1399940268 | 2025-02-07T09:35:18.564610

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

11211 / tcp

-136006866 | 2025-02-22T19:32:21.203558

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

11288 / tcp

1911457608 | 2025-02-25T15:46:20.927277

\x00[\x00\x00\x00\x00\x00\x00

11300 / tcp

-1399940268 | 2025-02-27T03:50:42.187308

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

11443 / tcp

599074451 | 2025-02-02T14:38:15.796615

msg

11596 / tcp

-1399940268 | 2025-02-28T03:46:53.069804

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12000 / tcp

227700176 | 2025-02-20T05:25:36.808351

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-transform
Set-Cookie: _csrf=kW6lEf7WlBTiDChV5oht1zfpUBE6MTcwNTkxMjc1NjU1NzkzNjYwNQ; Path=/; Expires=Tue, 23 Jan 2024 08:39:16 GMT; HttpOnly; SameSite=Lax
Set-Cookie: macaron_flash=; Path=/; Max-Age=0; HttpOnly; SameSite=Lax
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache

12110 / tcp

401555314 | 2025-02-23T19:42:48.185252

NB[GFXjA^R

12111 / tcp

-1399940268 | 2025-02-02T19:05:56.224047

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12114 / tcp

1381121983 | 2025-02-07T20:51:36.280772

Notify\r\n

12120 / tcp

-1888448627 | 2025-02-26T20:59:51.090160

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12122 / tcp

1975288991 | 2025-02-19T06:25:11.999355

OPTI

12124 / tcp

-1013082686 | 2025-02-28T15:45:43.785783

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

12126 / tcp

-1779118422 | 2025-02-01T20:34:03.195206

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

12133 / tcp

103159425 | 2025-02-28T19:57:19.778980

SSH-1.99-RGOS_SSH

12149 / tcp

-653033013 | 2025-02-26T00:33:50.884437

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

12152 / tcp

1332894250 | 2025-02-07T06:29:40.555285

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

12154 / tcp

103159425 | 2025-02-18T20:14:31.960235

SSH-1.99-RGOS_SSH

12155 / tcp

-1399940268 | 2025-02-08T00:18:06.743873

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12160 / tcp

-747911285 | 2025-02-26T16:42:03.440332

\xc2\xaa

12165 / tcp

-1279886438 | 2025-02-18T12:14:21.460783

GET / HTTP/1.0 : USERID : UNIX : TKUXZmP\r\n : USERID : UNIX : Cr8\r\n

12169 / tcp

-122096153 | 2025-02-20T02:08:14.586927

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC\nClients:\n/*.*.*.*:11264[0](queued=0,recved=1,sent=0)\n\nLatency min/avg/max: 0/0.0/0\nReceived: 8557\nSent: 11410\nConnections: 1\nOutstanding: 0\nZxid: 0x332907ad3391\nMode: follower\nNode count: 104618

12174 / tcp

-1756833567 | 2025-02-05T20:23:55.367873

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 4-78727240-0 0NNN RT(1700954838304 4) q(0 -1 -1 -1) r(0 -1)

12179 / tcp

-2096652808 | 2025-02-06T19:12:03.929917

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12181 / tcp

-1399940268 | 2025-02-06T09:06:50.621413

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12200 / tcp

1911457608 | 2025-02-20T01:47:00.854195

\x00[\x00\x00\x00\x00\x00\x00

12208 / tcp

-1888448627 | 2025-02-26T07:25:32.482857

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12210 / tcp

921225407 | 2025-02-24T11:06:41.510656

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12214 / tcp

-249504111 | 2025-02-24T06:41:11.886732

\x00[xU-\x7f\x00\x00

12215 / tcp

-249504111 | 2025-02-06T09:45:26.761674

\x00[xU-\x7f\x00\x00

12220 / tcp

639175818 | 2025-02-27T04:46:18.683511

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

12224 / tcp

819727972 | 2025-02-02T10:08:24.075449

SSH-2.0-OpenSSH_7.4

12225 / tcp

-2089734047 | 2025-02-26T12:00:01.932059

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12226 / tcp

-1399940268 | 2025-02-06T02:29:54.128330

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12233 / tcp

-1810987450 | 2025-02-02T19:24:25.572109

\xc3\xbf

12239 / tcp

819727972 | 2025-02-03T19:00:24.369281

SSH-2.0-OpenSSH_7.4

12249 / tcp

1911457608 | 2025-02-02T10:15:54.855180

\x00[\x00\x00\x00\x00\x00\x00

12261 / tcp

-1399940268 | 2025-02-05T20:59:23.736755

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12262 / tcp

1996932384 | 2025-02-02T09:39:40.549707

"raop" nonce

12271 / tcp

-1888448627 | 2025-02-23T18:01:29.161296

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12284 / tcp

-1487943323 | 2025-02-01T23:17:02.026543

431 Unable to negotiate secure command connection.\r\n

12289 / tcp

-1730858130 | 2025-02-22T20:15:08.932462

RFB 003.008
VNC:
  Protocol Version: 3.8

12291 / tcp

1396488228 | 2025-02-07T08:52:34.561371

HTTP/1.1 200 OK
Content-Length: 2037
Cache-Control: private, max-age=300
Content-Type: text/html

12325 / tcp

921225407 | 2025-02-19T05:15:20.492228

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12330 / tcp

671605376 | 2025-02-07T09:15:58.905771

SSH-2.0-OpenSSH_X.X

12332 / tcp

819727972 | 2025-02-06T03:12:28.692554

SSH-2.0-OpenSSH_7.4

12343 / tcp

-2089734047 | 2025-02-06T04:51:43.741162

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12345 / tcp

878900329 | 2025-02-20T19:32:13.358915

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae24ba_PStjkgwtss75_22411-43255

12357 / tcp

1911457608 | 2025-02-19T01:18:16.037857

\x00[\x00\x00\x00\x00\x00\x00

12359 / tcp

-1399940268 | 2025-02-08T01:41:19.180313

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12360 / tcp

-375604792 | 2025-02-05T10:14:25.374502

220 Microsoft FTP Service

12365 / tcp

-445721795 | 2025-02-08T15:44:26.242482

\x00[\xc3\xaed\x1a\x7f\x00\x00

12373 / tcp

1911457608 | 2025-02-05T10:06:18.751067

\x00[\x00\x00\x00\x00\x00\x00

12380 / tcp

1911457608 | 2025-02-03T14:15:02.976230

\x00[\x00\x00\x00\x00\x00\x00

12384 / tcp

-2089734047 | 2025-02-08T20:12:31.503028

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12387 / tcp

-2089734047 | 2025-02-24T06:58:04.185921

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12390 / tcp

-616720387 | 2025-02-03T05:11:38.928200

SSH-2.0-SSHD_0.7.6

12392 / tcp

-1899074860 | 2025-02-20T18:47:29.611258

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

12394 / tcp

1911457608 | 2025-02-23T06:24:15.729995

\x00[\x00\x00\x00\x00\x00\x00

12398 / tcp

1282941221 | 2025-02-21T19:54:18.356478

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12402 / tcp

1492413928 | 2025-02-24T21:59:22.275223

SSH-2.0-OpenSSH_7.5

12409 / tcp

-1399940268 | 2025-02-21T10:07:55.759011

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12413 / tcp

-1399940268 | 2025-02-25T15:12:27.948506

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12415 / tcp

-1399940268 | 2025-02-20T04:00:23.726897

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12425 / tcp

-1476017887 | 2025-02-05T21:34:55.876539

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

12426 / tcp

-1476017887 | 2025-02-05T13:06:07.338036

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

12459 / tcp

-1248408558 | 2025-02-05T00:37:51.195899

220 MikroTik FTP server (MikroTik 6.44.3) ready

12462 / tcp

669849225 | 2025-02-03T21:39:15.245162

SSH-98.60-SysaxSSH_81885..42\r\n

12466 / tcp

1911457608 | 2025-02-25T18:03:45.353999

\x00[\x00\x00\x00\x00\x00\x00

12468 / tcp

1761482307 | 2025-02-23T13:57:48.573590

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

12469 / tcp

45131230 | 2025-02-01T16:47:58.911084

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

12471 / tcp

1761482307 | 2025-02-24T07:12:44.069044

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

12478 / tcp

-1839934832 | 2025-02-27T23:19:42.872467

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12482 / tcp

-1611764932 | 2025-02-24T18:31:44.416756

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

12506 / tcp

-1045760528 | 2025-02-26T09:23:12.875987

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

12508 / tcp

-1839934832 | 2025-02-07T17:27:57.629945

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

12514 / tcp

-1399940268 | 2025-02-04T01:38:23.117538

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12532 / tcp

-1399940268 | 2025-02-05T14:12:40.310089

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12544 / tcp

-1888448627 | 2025-02-08T14:54:38.638285

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12545 / tcp

-1399940268 | 2025-02-05T20:54:50.719750

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12554 / tcp

-1626979812 | 2025-02-05T05:31:28.720246

220 Service ready for new user.

12557 / tcp

-1730858130 | 2025-02-18T22:17:58.309981

RFB 003.008
VNC:
  Protocol Version: 3.8

12560 / tcp

921225407 | 2025-02-06T00:05:46.362312

\x00\x00\x00\x04\x00\x00\x00\x00\x00

12561 / tcp

-1399940268 | 2025-02-21T00:00:58.132571

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12577 / tcp

1723769361 | 2025-02-05T18:24:15.881879

ELM Enterprise Manager _l\r\nCopyright \xc2\xa9 18668511-928641920 TNT Software, Inc.\r\n

12579 / tcp

-1730858130 | 2025-02-04T01:45:17.542152

RFB 003.008
VNC:
  Protocol Version: 3.8

12581 / tcp

-1888448627 | 2025-02-04T05:49:12.632555

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12588 / tcp

1504401647 | 2025-02-23T16:52:34.971120

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

13082 / tcp

-358801646 | 2025-02-01T16:59:50.849914

SSH-2.0-OpenSSH_6.6.1

13128 / tcp

819727972 | 2025-02-03T04:31:19.817392

SSH-2.0-OpenSSH_7.4

14265 / tcp

-1399940268 | 2025-02-21T20:01:56.778552

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

14344 / tcp

2121220663 | 2025-02-24T00:04:55.398031

SSH-58-Ingrian_SSH\r\n

14404 / tcp

-1099385124 | 2025-02-06T22:27:59.591762

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

14895 / tcp

-1327660293 | 2025-02-24T16:45:48.470073

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

15123 / tcp

1189133115 | 2025-02-04T19:24:32.748445

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

15151 / tcp

1911457608 | 2025-02-23T19:13:30.720638

\x00[\x00\x00\x00\x00\x00\x00

15443 / tcp

-1399940268 | 2025-02-26T21:15:32.238562

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

15503 / tcp

1911457608 | 2025-02-25T06:27:59.612268

\x00[\x00\x00\x00\x00\x00\x00

15504 / tcp

-303199180 | 2025-02-06T00:51:35.453069

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

16013 / tcp

971933601 | 2025-02-08T13:19:38.117813

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

16025 / tcp

-1399940268 | 2025-02-25T08:30:08.519396

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16026 / tcp

1911457608 | 2025-02-27T09:15:23.388181

\x00[\x00\x00\x00\x00\x00\x00

16032 / tcp

-1399940268 | 2025-02-26T16:18:58.005586

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16051 / tcp

-2089734047 | 2025-02-02T17:23:41.883614

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

16059 / tcp

-1746074029 | 2025-02-03T05:18:08.413414

101 imqbroker =unV\r\n

16069 / tcp

1282941221 | 2025-02-07T11:53:49.885893

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

16072 / tcp

-2089734047 | 2025-02-05T23:14:51.359379

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

16073 / tcp

-180163620 | 2025-02-27T19:21:04.981066

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

16077 / tcp

-904840257 | 2025-02-05T14:03:09.922796

572 Relay not authorized\r\n

16083 / tcp

-1626979812 | 2025-02-26T04:52:22.704200

220 Service ready for new user.

16087 / tcp

-1105333987 | 2025-02-22T22:27:12.783048

\x00[KpU\x7f\x00\x00

16096 / tcp

819727972 | 2025-02-26T00:22:02.494030

SSH-2.0-OpenSSH_7.4

16097 / tcp

1189133115 | 2025-02-04T23:26:19.334953

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

16102 / tcp

820958131 | 2025-02-01T20:12:29.689668

kjnkjabhbanc283ubcsbhdc72\x02

16104 / tcp

-2096652808 | 2025-02-03T07:05:36.177065

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

16888 / tcp

819727972 | 2025-02-18T11:32:57.189379

SSH-2.0-OpenSSH_7.4

16993 / tcp

-805362002 | 2025-02-08T13:04:00.077601

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

17010 / tcp

-1399940268 | 2025-02-05T00:01:55.391347

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

17184 / tcp

103159425 | 2025-02-19T16:58:37.624207

SSH-1.99-RGOS_SSH

17443 / tcp

-2089734047 | 2025-02-18T22:33:30.706920

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

17773 / tcp

408230060 | 2025-02-28T02:03:16.950236

\r\nSorry, that nickname format is invalid.\r\n

17775 / tcp

669849225 | 2025-02-21T18:26:10.538105

SSH-98.60-SysaxSSH_81885..42\r\n

17779 / tcp

-1538260461 | 2025-02-08T03:14:01.986096

\x01\x00\x00\x00

18003 / tcp

1308377066 | 2025-02-23T13:47:02.927927

ncacn_http/1.0

18005 / tcp

599074451 | 2025-02-22T04:24:02.019836

msg

18009 / tcp

-441419608 | 2025-02-26T20:28:22.163582

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

18010 / tcp

1911457608 | 2025-02-02T01:19:39.979448

\x00[\x00\x00\x00\x00\x00\x00

18017 / tcp

632542934 | 2025-02-07T18:54:15.804655

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

18019 / tcp

321971019 | 2025-02-04T23:32:53.935325

-ERR client ip is not in whitelist\r

18027 / tcp

669849225 | 2025-02-18T00:13:00.329125

SSH-98.60-SysaxSSH_81885..42\r\n

18035 / tcp

-1487943323 | 2025-02-05T23:35:51.449996

431 Unable to negotiate secure command connection.\r\n

18038 / tcp

-1839934832 | 2025-02-07T03:34:48.175956

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

18050 / tcp

-1888448627 | 2025-02-23T01:38:19.636949

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

18063 / tcp

-747911285 | 2025-02-26T15:43:22.639097

\xc2\xaa

18067 / tcp

-1810987450 | 2025-02-27T06:20:52.692975

\xc3\xbf

18068 / tcp

-1730858130 | 2025-02-24T18:22:50.783007

RFB 003.008
VNC:
  Protocol Version: 3.8

18081 / tcp

1332894250 | 2025-02-27T01:57:17.176425

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

18082 / tcp

820958131 | 2025-02-07T01:38:01.559950

kjnkjabhbanc283ubcsbhdc72\x02

18085 / tcp

1077013874 | 2025-02-05T13:08:35.534104

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

18086 / tcp

-249504111 | 2025-02-06T08:47:04.616628

\x00[xU-\x7f\x00\x00

18098 / tcp

-2089734047 | 2025-02-06T00:07:05.081573

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

18102 / tcp

1011407350 | 2025-02-05T05:56:48.925605

* OK GroupWise IMAP4rev1 Server Ready\r\n

18111 / tcp

-1399940268 | 2025-02-02T20:01:16.683791

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18181 / tcp

165188539 | 2025-02-23T03:20:28.043310

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

18182 / tcp

-891714208 | 2025-02-07T20:29:30.840735

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

18200 / tcp

-2096652808 | 2025-02-06T18:08:23.140457

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

18765 / tcp

819727972 | 2025-02-26T09:28:19.542996

SSH-2.0-OpenSSH_7.4

19000 / tcp

-1327660293 | 2025-02-06T07:53:35.516369

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

19014 / tcp

-1399940268 | 2025-02-04T23:28:36.082845

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

19233 / tcp

921225407 | 2025-02-27T06:54:58.866597

\x00\x00\x00\x04\x00\x00\x00\x00\x00

19443 / tcp

-136006866 | 2025-02-07T17:48:01.596906

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

19999 / tcp

1504401647 | 2025-02-28T11:45:58.925067

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

20000 / tcp

1900503736 | 2025-02-27T03:03:02.482407

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

20060 / tcp

321971019 | 2025-02-24T05:42:54.098289

-ERR client ip is not in whitelist\r

20080 / tcp

-805362002 | 2025-02-20T06:01:35.599788

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

20106 / tcp

819727972 | 2025-02-07T02:33:34.590357

SSH-2.0-OpenSSH_7.4

20201 / tcp

1426971893 | 2025-02-08T18:02:13.197089

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

20256 / tcp

-358801646 | 2025-02-22T11:44:56.537850

SSH-2.0-OpenSSH_6.6.1

20500 / tcp

-1733645023 | 2025-02-27T05:31:34.357130

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

20547 / tcp

1975288991 | 2025-02-28T19:45:24.973537

OPTI

20880 / tcp

1370263973 | 2025-02-19T12:03:53.388072

dubbo>

20892 / tcp

-1399940268 | 2025-02-23T23:46:45.115112

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

20894 / tcp

-1399940268 | 2025-02-27T08:38:33.858212

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21001 / tcp

1665283070 | 2025-02-01T13:17:26.266512

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x01\x00\x00\x10\x00\x00\n0\x03\x00\x00\x00\x01\x00\x05\x00\x00@\x00\x00\x06\x00\x00\x1f@

21236 / tcp

-2140303521 | 2025-02-06T03:06:19.807400

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

21259 / tcp

-1327660293 | 2025-02-24T00:58:58.237401

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

21266 / tcp

-784071826 | 2025-02-24T21:16:05.063594

SSH-2.0-OpenSSH_8.0

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 7 moreCVE-2019-16905 CVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

21275 / tcp

-1453516345 | 2025-02-28T00:18:23.550772

HTTP/1.1 200 OK
Connection: close
Transfer-Encoding: chunked
Pragma: no-cache
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN

21277 / tcp

-375604792 | 2025-02-05T17:02:07.417040

220 Microsoft FTP Service

21293 / tcp

-1399940268 | 2025-02-02T11:31:33.471033

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21294 / tcp

-1399940268 | 2025-02-25T11:06:04.547570

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21308 / tcp

-1487943323 | 2025-02-20T04:54:22.980821

431 Unable to negotiate secure command connection.\r\n

21311 / tcp

-345718689 | 2025-02-26T23:40:55.004080

Vty password is not set.

21312 / tcp

-1148066627 | 2025-02-28T12:00:06.623388

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

21379 / tcp

504717326 | 2025-02-02T15:01:22.592651

SSH-2.0-OpenSSH_8.6

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2021-41617 6 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

22000 / tcp

-2089734047 | 2025-02-24T17:44:32.200821

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

22556 / tcp

-339084706 | 2025-02-04T08:39:41.641621

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

25001 / tcp

-1399940268 | 2025-02-19T16:29:36.891507

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

25004 / tcp

-1399940268 | 2025-02-24T23:49:39.024728

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

25006 / tcp

165188539 | 2025-02-27T01:13:45.980246

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

25010 / tcp

-2096652808 | 2025-02-24T23:11:53.841808

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

25565 / tcp

114471724 | 2025-02-27T21:22:12.620877

HTTP/1.1 302
X-Frame-Options: SAMEORIGIN
Server: NSX

27015 / tcp

1911457608 | 2025-02-07T20:22:47.124720

\x00[\x00\x00\x00\x00\x00\x00

27017 / tcp

1763259671 | 2025-02-01T11:14:00.674618

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

27571 / tcp

165188539 | 2025-02-05T19:13:33.663886

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

28818 / tcp

-1399940268 | 2025-02-25T10:24:29.382719

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30004 / tcp

-1399940268 | 2025-02-27T12:28:03.716922

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

30007 / tcp

2103111368 | 2025-02-27T05:24:31.678034

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

30011 / tcp

-1733645023 | 2025-02-25T05:56:16.136904

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

30013 / tcp

-1888448627 | 2025-02-01T23:39:50.454504

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

30104 / tcp

1077013874 | 2025-02-22T21:31:04.120909

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

30106 / tcp

819727972 | 2025-02-06T14:09:19.931146

SSH-2.0-OpenSSH_7.4

30112 / tcp

-805362002 | 2025-02-05T12:18:26.298648

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

31210 / tcp

-1399940268 | 2025-02-27T09:10:54.650274

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

31337 / tcp

756886313 | 2025-02-19T06:21:44.705904

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html

32222 / tcp

-358801646 | 2025-02-07T14:05:24.469931

SSH-2.0-OpenSSH_6.6.1

32443 / tcp

-407828767 | 2025-02-25T13:41:58.699380

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

32522 / tcp

-358801646 | 2025-02-07T03:28:20.131362

SSH-2.0-OpenSSH_6.6.1

32764 / tcp

539065883 | 2025-02-08T15:27:06.150456

32822 / tcp

819727972 | 2025-02-07T17:32:51.994253

SSH-2.0-OpenSSH_7.4

32922 / tcp

819727972 | 2025-02-07T10:44:30.856549

SSH-2.0-OpenSSH_7.4

33022 / tcp

819727972 | 2025-02-07T16:44:18.506246

SSH-2.0-OpenSSH_7.4

33060 / tcp

2087396567 | 2025-02-20T04:17:35.354492

kjnkjabhbanc283ubcsbhdc72

33122 / tcp

873425297 | 2025-02-07T09:00:45.986015

200 NOD32SS 99 (3318497116)

33222 / tcp

1332894250 | 2025-02-07T05:14:10.952879

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

33322 / tcp

-1477838366 | 2025-02-23T17:40:07.218526

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

33522 / tcp

1996932384 | 2025-02-26T15:47:20.098979

"raop" nonce

33622 / tcp

1741579575 | 2025-02-07T01:43:42.811756

33722 / tcp

2087396567 | 2025-02-06T22:11:00.661987

kjnkjabhbanc283ubcsbhdc72

33822 / tcp

1830187220 | 2025-02-06T20:25:16.590588

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

34022 / tcp

-1810987450 | 2025-02-06T11:48:01.263112

\xc3\xbf

34122 / tcp

1852418385 | 2025-02-06T15:13:27.210764

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

34322 / tcp

1690634669 | 2025-02-06T13:30:40.539271

34522 / tcp

-445721795 | 2025-02-05T23:46:38.007840

\x00[\xc3\xaed\x1a\x7f\x00\x00

34722 / tcp

819727972 | 2025-02-05T11:08:52.986814

SSH-2.0-OpenSSH_7.4

34822 / tcp

-971970408 | 2025-02-05T23:34:45.315206

34922 / tcp

-345718689 | 2025-02-06T01:25:55.178325

Vty password is not set.

35000 / tcp

-2089734047 | 2025-02-27T14:30:36.805477

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

35022 / tcp

504717326 | 2025-02-06T03:14:19.661497

SSH-2.0-OpenSSH_8.6

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2021-41617 6 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

35101 / tcp

-1019343788 | 2025-02-07T02:06:24.899125

W!\x00\x00\x00\x00

35122 / tcp

-971970408 | 2025-02-06T04:51:11.783514

35153 / tcp

1911457608 | 2025-02-26T22:42:56.177978

\x00[\x00\x00\x00\x00\x00\x00

35322 / tcp

-1316491703 | 2025-02-05T14:36:15.533438

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

35422 / tcp

996960436 | 2025-02-28T08:44:09.394339

572 Relay not authorized

35522 / tcp

119860953 | 2025-02-05T18:13:21.571814

* OK ArGoSoft Mail Server IMAP Module v.YW at

35560 / tcp

1911457608 | 2025-02-04T03:45:18.239250

\x00[\x00\x00\x00\x00\x00\x00

35622 / tcp

-952165951 | 2025-02-05T16:27:36.428849

AB

35722 / tcp

-445721795 | 2025-02-28T06:40:32.090140

\x00[\xc3\xaed\x1a\x7f\x00\x00

36022 / tcp

-1013082686 | 2025-02-05T04:14:25.793781

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

36122 / tcp

-1036370807 | 2025-02-04T18:10:25.581848

JDWP-Handshake

36222 / tcp

-1730858130 | 2025-02-05T02:29:21.922981

RFB 003.008
VNC:
  Protocol Version: 3.8

36322 / tcp

996960436 | 2025-02-04T21:08:39.380451

572 Relay not authorized

36422 / tcp

1741579575 | 2025-02-05T00:33:55.385893

36522 / tcp

117101543 | 2025-02-28T20:54:28.015595

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

36622 / tcp

320677201 | 2025-02-27T11:39:27.577044

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

36722 / tcp

677934968 | 2025-02-04T14:52:50.860667

lm^)Q

36822 / tcp

819727972 | 2025-02-04T15:42:37.341376

SSH-2.0-OpenSSH_7.4

36922 / tcp

539065883 | 2025-02-04T02:59:28.388533

37022 / tcp

819727972 | 2025-02-04T10:24:28.254698

SSH-2.0-OpenSSH_7.4

37122 / tcp

-653033013 | 2025-02-04T12:09:26.554936

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

37222 / tcp

2087396567 | 2025-02-04T07:27:04.711656

kjnkjabhbanc283ubcsbhdc72

37322 / tcp

-1729629024 | 2025-02-28T22:43:02.294355

101 imqbroker =unV

37422 / tcp

-1013082686 | 2025-02-28T19:33:31.086832

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

37522 / tcp

-1097188123 | 2025-02-28T17:20:03.027608

[g\xc2\x95N\x7f

37622 / tcp

2087396567 | 2025-02-28T11:23:18.348302

kjnkjabhbanc283ubcsbhdc72

37722 / tcp

2087396567 | 2025-02-04T01:39:59.648291

kjnkjabhbanc283ubcsbhdc72

37777 / tcp

2098371729 | 2025-02-20T07:03:43.774445

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

37822 / tcp

2033888749 | 2025-02-03T09:44:24.672738

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

37922 / tcp

2087396567 | 2025-02-28T01:27:31.872173

kjnkjabhbanc283ubcsbhdc72

38022 / tcp

-1230049476 | 2025-02-27T13:45:10.787730

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

38080 / tcp

-904840257 | 2025-02-24T16:36:03.496320

572 Relay not authorized\r\n

38122 / tcp

2087396567 | 2025-02-19T23:05:53.774971

kjnkjabhbanc283ubcsbhdc72

38222 / tcp

819727972 | 2025-02-03T11:28:38.787510

SSH-2.0-OpenSSH_7.4

38322 / tcp

819727972 | 2025-02-03T00:53:23.451947

SSH-2.0-OpenSSH_7.4

38422 / tcp

2087396567 | 2025-02-18T20:26:00.055015

kjnkjabhbanc283ubcsbhdc72

38522 / tcp

-68075478 | 2025-02-21T14:47:15.068392

38622 / tcp

819727972 | 2025-02-03T06:13:00.652485

SSH-2.0-OpenSSH_7.4

38722 / tcp

-1598265216 | 2025-02-03T04:26:18.616713

@RSYNCD: 31.0

38822 / tcp

996960436 | 2025-02-02T14:12:24.260352

572 Relay not authorized

38922 / tcp

819727972 | 2025-02-22T17:26:46.714889

SSH-2.0-OpenSSH_7.4

39022 / tcp

-1611764932 | 2025-02-22T05:52:44.431268

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

39122 / tcp

-1441741890 | 2025-02-22T02:27:52.870563

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2
0181212])

39222 / tcp

1261582754 | 2025-02-02T19:33:07.542220

unknown command 
unknown command

39422 / tcp

-893477759 | 2025-02-20T18:22:42.834960

!versionbind7 t{RPowerDNS Recursor 410

39522 / tcp

-1428621233 | 2025-02-02T17:45:58.035667

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

39622 / tcp

1690634669 | 2025-02-01T22:05:26.567154

39722 / tcp

-319440554 | 2025-02-02T12:26:19.687620

39822 / tcp

1741579575 | 2025-02-02T07:07:57.379275

40005 / tcp

-2031152423 | 2025-02-21T10:49:09.234725

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

40022 / tcp

2087396567 | 2025-02-02T00:21:59.163350

kjnkjabhbanc283ubcsbhdc72

40029 / tcp

-375604792 | 2025-02-24T03:33:43.754389

220 Microsoft FTP Service

40122 / tcp

819727972 | 2025-02-26T14:08:40.657706

SSH-2.0-OpenSSH_7.4

40222 / tcp

2087396567 | 2025-02-02T05:39:55.545009

kjnkjabhbanc283ubcsbhdc72

40322 / tcp

1948301213 | 2025-02-02T01:40:34.176645

RFB 003.003
VNC:
  Protocol Version: 3.3

40422 / tcp

671605376 | 2025-02-01T20:19:08.095250

SSH-2.0-OpenSSH_X.X

40522 / tcp

171352214 | 2025-02-01T18:44:20.153576

-ERR client ip is not in whitelist

40622 / tcp

671605376 | 2025-02-01T15:06:59.176237

SSH-2.0-OpenSSH_X.X

40722 / tcp

474736340 | 2025-02-01T17:13:06.342353

431 Unable to negotiate secure command connection.

40892 / tcp

-1810987450 | 2025-02-19T11:38:21.072493

\xc3\xbf

40922 / tcp

459162008 | 2025-02-01T13:20:58.364505

Notify

41122 / tcp

1919228981 | 2025-02-27T15:04:21.137215

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

41800 / tcp

-1399940268 | 2025-02-05T13:03:58.156625

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

42122 / tcp

819727972 | 2025-02-08T22:18:02.914098

SSH-2.0-OpenSSH_7.4

42420 / tcp

1996932384 | 2025-02-01T17:37:04.548614

"raop" nonce

42622 / tcp

-1013082686 | 2025-02-08T02:54:23.913656

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

42901 / tcp

1574088840 | 2025-02-02T12:38:16.780871

">Application and Content Networking Software 3.9</a>)\n</BODY><

43200 / tcp

-1399940268 | 2025-02-26T22:54:03.245655

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

43222 / tcp

1741579575 | 2025-03-01T00:21:11.329469

43322 / tcp

996960436 | 2025-02-27T21:59:39.118498

572 Relay not authorized

43422 / tcp

-321444299 | 2025-02-27T20:16:34.809768

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

43522 / tcp

819727972 | 2025-02-27T18:31:17.467735

SSH-2.0-OpenSSH_7.4

43622 / tcp

-2096652808 | 2025-02-27T04:01:44.452512

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

43722 / tcp

-971970408 | 2025-02-27T03:47:22.672337

43822 / tcp

819727972 | 2025-02-27T02:01:58.809322

SSH-2.0-OpenSSH_7.4

43922 / tcp

171352214 | 2025-02-27T09:57:58.351706

-ERR client ip is not in whitelist

44022 / tcp

2087396567 | 2025-02-27T08:25:00.945866

kjnkjabhbanc283ubcsbhdc72

44122 / tcp

2087396567 | 2025-02-26T22:39:12.166743

kjnkjabhbanc283ubcsbhdc72

44158 / tcp

-433302150 | 2025-02-07T03:53:51.807014

/multistream/1.0.0

44308 / tcp

-784071826 | 2025-02-04T19:36:24.348718

SSH-2.0-OpenSSH_8.0

CVE-2023-38408 CVE-2008-3844 CVE-2023-51767 CVE-2021-41617 CVE-2020-15778 7 moreCVE-2019-16905 CVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

44322 / tcp

1761482307 | 2025-02-26T10:36:33.468041

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

44350 / tcp

-1148066627 | 2025-02-07T11:47:48.992474

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

44500 / tcp

1911457608 | 2025-02-05T18:39:35.888454

\x00[\x00\x00\x00\x00\x00\x00

44510 / tcp

-2033111675 | 2025-02-27T02:56:09.091899

~djb

44722 / tcp

-68075478 | 2025-02-26T05:30:48.751300

44818 / tcp

-2089734047 | 2025-02-20T12:08:29.423085

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

45001 / tcp

401555314 | 2025-02-19T19:39:59.767886

NB[GFXjA^R

45002 / tcp

971933601 | 2025-02-27T15:08:39.611381

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

45122 / tcp

-971970408 | 2025-02-25T12:59:35.616030

45222 / tcp

2087396567 | 2025-02-25T19:41:20.688599

kjnkjabhbanc283ubcsbhdc72

45322 / tcp

103159425 | 2025-02-25T18:47:10.094785

SSH-1.99-RGOS_SSH

45333 / tcp

677934968 | 2025-02-24T19:57:17.293084

lm^)Q

45422 / tcp

2087396567 | 2025-02-19T10:43:51.264276

kjnkjabhbanc283ubcsbhdc72

45522 / tcp

-616720387 | 2025-02-25T16:24:51.860850

SSH-2.0-SSHD_0.7.6

45622 / tcp

-971970408 | 2025-02-25T14:42:25.451544

45786 / tcp

-1189269828 | 2025-02-05T08:00:55.219935

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

46022 / tcp

539065883 | 2025-02-25T07:58:21.783258

46122 / tcp

819727972 | 2025-02-25T06:05:04.140929

SSH-2.0-OpenSSH_7.4

46222 / tcp

1850902677 | 2025-02-24T23:31:12.534289

W!

46422 / tcp

2087396567 | 2025-02-24T09:17:54.280594

kjnkjabhbanc283ubcsbhdc72

46522 / tcp

2087396567 | 2025-02-24T05:50:54.542964

kjnkjabhbanc283ubcsbhdc72

46822 / tcp

819727972 | 2025-02-24T02:23:01.799828

SSH-2.0-OpenSSH_7.4

46922 / tcp

2087396567 | 2025-02-24T01:31:46.748789

kjnkjabhbanc283ubcsbhdc72

47080 / tcp

-339084706 | 2025-02-26T02:23:02.921666

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

47122 / tcp

2087396567 | 2025-02-23T23:28:27.846876

kjnkjabhbanc283ubcsbhdc72

47322 / tcp

171352214 | 2025-02-25T04:30:41.655957

-ERR client ip is not in whitelist

47422 / tcp

841014058 | 2025-02-25T00:54:06.018272

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

47522 / tcp

-971970408 | 2025-02-25T09:34:42.880079

47622 / tcp

-1375131644 | 2025-02-23T14:11:41.052663

\x00[v\xc3\xbdC\x7f\x00\x00

47984 / tcp

-1746074029 | 2025-02-01T23:10:27.675619

101 imqbroker =unV\r\n

47990 / tcp

-358801646 | 2025-02-21T20:38:10.306633

SSH-2.0-OpenSSH_6.6.1

48000 / tcp

819727972 | 2025-02-20T01:13:53.740745

SSH-2.0-OpenSSH_7.4

48013 / tcp

398077695 | 2025-02-23T00:24:09.789958

48622 / tcp

-2017887953 | 2025-02-24T19:36:08.832146

SSH-2.0-OpenSSH_7.9

48722 / tcp

1332894250 | 2025-02-24T16:36:18.486898

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

48822 / tcp

2087396567 | 2025-02-24T17:52:49.551615

kjnkjabhbanc283ubcsbhdc72

48888 / tcp

632542934 | 2025-02-04T01:15:51.928449

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

48922 / tcp

1842524259 | 2025-02-24T14:24:49.930811

49222 / tcp

1278527606 | 2025-02-19T03:34:15.243221

SSH-2.0-Teleport

49322 / tcp

1741579575 | 2025-02-20T21:49:22.018860

49422 / tcp

971933601 | 2025-02-23T02:03:20.048710

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

49622 / tcp

-1428621233 | 2025-02-22T13:11:30.877798

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

49722 / tcp

1286504516 | 2025-02-22T22:43:50.654982

CP2E Control Console
Connected to Host: gZI

49767 / tcp

820958131 | 2025-02-03T19:40:31.248531

kjnkjabhbanc283ubcsbhdc72\x02

49822 / tcp

-2017887953 | 2025-02-22T20:44:41.790881

SSH-2.0-OpenSSH_7.9

49922 / tcp

-527005584 | 2025-02-22T19:10:35.924651

/0 0 L
/0 0 HUH

50000 / tcp

539065883 | 2025-02-28T19:48:25.308733

50001 / tcp

-1715152554 | 2025-02-22T02:35:26.852224

Hashes

hash

-175337698

http.dom_hash

1239617585

http.html_hash

-1715152554

http.server_hash

1727046647

http.title_hash

-1828380909

302 Found

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Sat, 22 Feb 2025 02:35:26 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://47.104.36.62:443/

50009 / tcp

-1248408558 | 2025-02-04T07:46:09.400011

220 MikroTik FTP server (MikroTik 6.44.3) ready

50042 / tcp

632542934 | 2025-02-19T12:36:19.192361

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

50080 / tcp

-2017887953 | 2025-02-21T06:37:17.930828

SSH-2.0-OpenSSH_7.9

50100 / tcp

422524323 | 2025-02-27T19:18:47.930424

{
"Version": "3.4.18",
"VersionArray": [
3,
4,
18,
0
],
"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",
"OpenSSLVersion": "",
"SysInfo": "",
"Bits": 64,
"Debug": false,
"MaxObjectSize": 16777216
}

50106 / tcp

-1487943323 | 2025-02-19T20:01:00.879024

431 Unable to negotiate secure command connection.\r\n

50112 / tcp

-2140303521 | 2025-02-28T22:40:02.391959

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

50122 / tcp

2087396567 | 2025-02-22T09:26:21.699460

kjnkjabhbanc283ubcsbhdc72

50222 / tcp

-1598265216 | 2025-02-22T07:54:14.932052

@RSYNCD: 31.0

50522 / tcp

1741579575 | 2025-02-22T01:00:35.518581

50622 / tcp

-358801646 | 2025-02-21T19:54:49.370980

SSH-2.0-OpenSSH_6.6.1

50722 / tcp

-1681927087 | 2025-02-20T23:35:04.540816

kjnkjabhbanc283ubcsbhdc72

50822 / tcp

-971970408 | 2025-02-20T20:05:31.172592

50922 / tcp

-1733106930 | 2025-02-21T16:44:03.287049

Mysql Version: 5.6.50-log\nN\n5.6.50-log\x14(\nG5se"tGE\xc3\xbf\xc3\xb7-\x02\x7f\xc2\x80\x15cB^3$Zwh$wM[mysql_native_password

51022 / tcp

2087396567 | 2025-02-08T05:00:45.524099

kjnkjabhbanc283ubcsbhdc72

51122 / tcp

474736340 | 2025-02-08T08:27:16.427126

431 Unable to negotiate secure command connection.

51222 / tcp

819727972 | 2025-02-21T13:47:05.489485

SSH-2.0-OpenSSH_7.4

51235 / tcp

-2096652808 | 2025-02-27T08:39:55.132885

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

51322 / tcp

-1641514916 | 2025-02-21T12:30:21.899071

* OK Merak 1dFUa2 IMAP4rev1

51522 / tcp

2087396567 | 2025-02-08T15:36:24.548044

kjnkjabhbanc283ubcsbhdc72

51722 / tcp

-1611764932 | 2025-02-21T01:19:41.884764

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

51822 / tcp

504717326 | 2025-02-20T17:08:20.088284

SSH-2.0-OpenSSH_8.6

CVE-2023-38408 CVE-2008-3844 CVE-2024-6387 CVE-2023-51767 CVE-2021-41617 6 moreCVE-2023-51385 CVE-2023-48795 CVE-2020-14145 CVE-2016-20012 CVE-2007-2768 CVE-2021-36368

52122 / tcp

-952165951 | 2025-02-20T08:31:54.905895

AB

52322 / tcp

819727972 | 2025-02-20T06:11:17.124150

SSH-2.0-OpenSSH_7.4

52422 / tcp

-971970408 | 2025-02-20T02:57:43.448045

52522 / tcp

-527005584 | 2025-02-19T09:13:35.601559

/0 0 L
/0 0 HUH

52622 / tcp

-971970408 | 2025-02-20T00:52:48.019908

52822 / tcp

-147424911 | 2025-02-19T21:29:01.971722

HTTP/1.1 404 Not Found
Content Length: 0

52922 / tcp

819727972 | 2025-02-08T08:17:55.108070

SSH-2.0-OpenSSH_7.4

53122 / tcp

1830697416 | 2025-02-19T17:55:49.539592

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

53322 / tcp

819727972 | 2025-02-19T16:48:05.421791

SSH-2.0-OpenSSH_7.4

53480 / tcp

819727972 | 2025-02-20T00:51:33.624125

SSH-2.0-OpenSSH_7.4

53522 / tcp

671605376 | 2025-02-19T14:36:02.481814

SSH-2.0-OpenSSH_X.X

53622 / tcp

819727972 | 2025-02-19T12:29:36.271982

SSH-2.0-OpenSSH_7.4

53922 / tcp

1996932384 | 2025-02-19T07:34:51.601970

"raop" nonce

54022 / tcp

1632932802 | 2025-02-19T05:26:02.722173

54322 / tcp

-1139539254 | 2025-02-19T00:03:37.342218

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

54422 / tcp

171352214 | 2025-02-18T22:15:14.950481

-ERR client ip is not in whitelist

54822 / tcp

1282941221 | 2025-02-18T11:46:04.661861

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

55000 / tcp

-180163620 | 2025-02-03T21:33:43.370648

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

55200 / tcp

401555314 | 2025-02-22T01:06:56.665315

NB[GFXjA^R

55443 / tcp

-1139539254 | 2025-02-27T17:24:38.407223

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

55553 / tcp

2087396567 | 2025-02-02T09:00:41.087732

kjnkjabhbanc283ubcsbhdc72

56522 / tcp

819727972 | 2025-02-08T04:26:31.701692

SSH-2.0-OpenSSH_7.4

57780 / tcp

321971019 | 2025-02-02T17:33:09.985388

-ERR client ip is not in whitelist\r

57784 / tcp

-1399940268 | 2025-02-25T17:01:43.606618

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

58000 / tcp

-2089734047 | 2025-02-02T05:40:31.878388

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

60129 / tcp

2087396567 | 2025-02-17T23:54:41.648538

kjnkjabhbanc283ubcsbhdc72

61613 / tcp

-1399940268 | 2025-02-04T22:57:35.123713

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

61616 / tcp

-2017887953 | 2025-02-08T05:03:32.963557

SSH-2.0-OpenSSH_7.9

62078 / tcp

-860824904 | 2025-02-28T20:59:29.820647

\x00\x01)

62080 / tcp

-2033111675 | 2025-02-26T21:44:24.404921

~djb

63210 / tcp

-2030182557 | 2025-02-20T15:16:44.847063



0
dø...

63256 / tcp

1632932802 | 2025-02-28T22:14:21.232049

64295 / tcp

-1327660293 | 2025-02-05T16:54:06.902727

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

64477 / tcp

1911457608 | 2025-02-05T04:59:46.152616

\x00[\x00\x00\x00\x00\x00\x00

65000 / tcp

1906191280 | 2025-02-25T02:56:52.355322

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 657d0443_jdx210_8928-57530

47.104.36.62

Last Seen: 2025-03-01

Tags:

GeneralInformation

WebTechnologies

OpenPorts

13 / tcp 1725312227 | 2025-02-23T16:34:35.977379

17 / tcp -297057753 | 2025-02-05T16:21:10.903502

19 / tcp 1978059005 | 2025-02-23T21:14:25.801107

21 / tcp -1248408558 | 2025-02-25T23:18:57.630176

25 / tcp -1316491703 | 2025-02-08T02:02:13.204527

37 / tcp 1958349741 | 2025-02-24T07:36:06.589710

53 / tcp 1024248778 | 2025-02-22T05:46:25.174777

65 / tcp -1327660293 | 2025-02-24T17:01:41.776950

70 / tcp -972699072 | 2025-02-26T10:13:24.947282

79 / tcp -1770051369 | 2025-02-18T12:54:00.731820

80 / tcp -214112539 | 2025-02-25T19:15:47.975038

Hashes

96 / tcp -1265999252 | 2025-02-01T14:47:56.585459

100 / tcp -2089734047 | 2025-02-24T18:17:35.394586

101 / tcp -1428621233 | 2025-02-03T19:50:02.279720

102 / tcp 575925250 | 2025-02-19T11:56:46.999861

104 / tcp 639175818 | 2025-02-01T12:24:22.311946

110 / tcp -2089734047 | 2025-02-20T11:04:31.326764

111 / tcp 539065883 | 2025-02-26T05:47:07.566354

113 / tcp 60948681 | 2025-02-21T07:35:17.594493

122 / tcp -891714208 | 2025-02-23T10:53:33.320898

143 / tcp -829824006 | 2025-02-20T19:31:38.176262

175 / tcp -1399940268 | 2025-02-25T16:23:35.022433

179 / tcp -399606100 | 2025-02-01T23:33:51.039210

221 / tcp 819727972 | 2025-02-20T17:37:47.281561

225 / tcp -1399940268 | 2025-02-21T09:11:39.616938

311 / tcp 1975288991 | 2025-02-28T16:34:40.560614

343 / tcp -2089734047 | 2025-02-23T21:28:19.381917

389 / tcp 811247330 | 2025-02-26T06:55:07.100668

442 / tcp 1011407350 | 2025-02-05T16:44:48.479328

443 / tcp 1638645179 | 2025-02-22T02:35:28.439282

Hashes

444 / tcp -1549808090 | 2025-02-25T23:55:18.825678

448 / tcp -1230049476 | 2025-02-18T11:48:53.010917

450 / tcp 366084633 | 2025-02-27T22:28:15.553993

462 / tcp -1399940268 | 2025-02-06T03:40:26.432509

465 / tcp 897328069 | 2025-02-26T02:01:07.637047

502 / tcp 1911457608 | 2025-02-19T07:22:08.062419

503 / tcp -1399940268 | 2025-02-05T11:59:59.101894

513 / tcp 722711397 | 2025-02-23T08:53:22.058927

548 / tcp -773160241 | 2025-02-03T11:05:25.635532

554 / tcp 285770450 | 2025-02-27T10:35:20.318353

555 / tcp 1504401647 | 2025-02-22T04:16:33.433137

556 / tcp 707919486 | 2025-02-20T09:41:33.953593

587 / tcp 745343730 | 2025-02-03T15:02:22.391707

602 / tcp -454087041 | 2025-02-20T18:07:46.041413

636 / tcp -1036370807 | 2025-02-25T01:18:00.476097

666 / tcp -1420968138 | 2025-02-27T19:00:56.550617

743 / tcp 165188539 | 2025-02-26T23:22:20.427299

771 / tcp -303199180 | 2025-02-23T22:49:21.637917

782 / tcp -1399940268 | 2025-02-05T17:53:31.874811

789 / tcp 1208318993 | 2025-02-28T16:55:41.711622

800 / tcp -537228938 | 2025-02-27T18:08:46.469941

801 / tcp -303199180 | 2025-02-19T11:11:28.974637

809 / tcp -1399940268 | 2025-02-19T06:27:13.295927

947 / tcp -358801646 | 2025-02-20T21:51:01.143356

992 / tcp -936692830 | 2025-02-25T01:05:09.230656

993 / tcp -1779118422 | 2025-02-21T22:06:36.601287

995 / tcp -2113068813 | 2025-02-03T23:53:20.078880

1000 / tcp -2096652808 | 2025-02-06T09:06:38.222374

1002 / tcp -1839934832 | 2025-02-23T15:33:55.143565

1023 / tcp 962700458 | 2025-02-03T18:06:34.281447

1025 / tcp -1399940268 | 2025-02-20T02:13:24.240429

1080 / tcp 1362344524 | 2025-02-08T18:40:19.107776

1099 / tcp 321971019 | 2025-02-24T16:02:24.910443

1110 / tcp -740312032 | 2025-02-26T15:30:42.817751

1153 / tcp -1839934832 | 2025-02-09T03:48:58.051855

1177 / tcp 1308377066 | 2025-02-26T23:25:34.352229

1193 / tcp 1282941221 | 2025-02-21T11:58:31.327725

1234 / tcp 1911457608 | 2025-02-25T19:52:55.729489

1235 / tcp 1282941221 | 2025-02-04T13:58:33.975062

1291 / tcp -358801646 | 2025-02-21T18:43:29.107545

1293 / tcp -441419608 | 2025-02-08T21:52:28.673681

1344 / tcp -1399940268 | 2025-02-01T13:18:27.917704

13 / tcp

1725312227 | 2025-02-23T16:34:35.977379

17 / tcp

-297057753 | 2025-02-05T16:21:10.903502

19 / tcp

1978059005 | 2025-02-23T21:14:25.801107

21 / tcp

-1248408558 | 2025-02-25T23:18:57.630176

25 / tcp

-1316491703 | 2025-02-08T02:02:13.204527

37 / tcp

1958349741 | 2025-02-24T07:36:06.589710

53 / tcp

1024248778 | 2025-02-22T05:46:25.174777

65 / tcp

-1327660293 | 2025-02-24T17:01:41.776950

70 / tcp

-972699072 | 2025-02-26T10:13:24.947282

79 / tcp

-1770051369 | 2025-02-18T12:54:00.731820

80 / tcp

-214112539 | 2025-02-25T19:15:47.975038

96 / tcp

-1265999252 | 2025-02-01T14:47:56.585459

100 / tcp

-2089734047 | 2025-02-24T18:17:35.394586

101 / tcp

-1428621233 | 2025-02-03T19:50:02.279720

102 / tcp

575925250 | 2025-02-19T11:56:46.999861

104 / tcp

639175818 | 2025-02-01T12:24:22.311946

110 / tcp

-2089734047 | 2025-02-20T11:04:31.326764

111 / tcp

539065883 | 2025-02-26T05:47:07.566354

113 / tcp

60948681 | 2025-02-21T07:35:17.594493

122 / tcp

-891714208 | 2025-02-23T10:53:33.320898

143 / tcp

-829824006 | 2025-02-20T19:31:38.176262

175 / tcp

-1399940268 | 2025-02-25T16:23:35.022433

179 / tcp

-399606100 | 2025-02-01T23:33:51.039210

221 / tcp

819727972 | 2025-02-20T17:37:47.281561

225 / tcp

-1399940268 | 2025-02-21T09:11:39.616938

311 / tcp

1975288991 | 2025-02-28T16:34:40.560614

343 / tcp

-2089734047 | 2025-02-23T21:28:19.381917

389 / tcp

811247330 | 2025-02-26T06:55:07.100668

442 / tcp

1011407350 | 2025-02-05T16:44:48.479328

443 / tcp

1638645179 | 2025-02-22T02:35:28.439282

444 / tcp

-1549808090 | 2025-02-25T23:55:18.825678

448 / tcp

-1230049476 | 2025-02-18T11:48:53.010917

450 / tcp

366084633 | 2025-02-27T22:28:15.553993

462 / tcp

-1399940268 | 2025-02-06T03:40:26.432509

465 / tcp

897328069 | 2025-02-26T02:01:07.637047

502 / tcp

1911457608 | 2025-02-19T07:22:08.062419

503 / tcp

-1399940268 | 2025-02-05T11:59:59.101894

513 / tcp

722711397 | 2025-02-23T08:53:22.058927

548 / tcp

-773160241 | 2025-02-03T11:05:25.635532

554 / tcp

285770450 | 2025-02-27T10:35:20.318353

555 / tcp

1504401647 | 2025-02-22T04:16:33.433137

556 / tcp

707919486 | 2025-02-20T09:41:33.953593

587 / tcp

745343730 | 2025-02-03T15:02:22.391707

602 / tcp

-454087041 | 2025-02-20T18:07:46.041413

636 / tcp

-1036370807 | 2025-02-25T01:18:00.476097

666 / tcp

-1420968138 | 2025-02-27T19:00:56.550617

743 / tcp

165188539 | 2025-02-26T23:22:20.427299

771 / tcp

-303199180 | 2025-02-23T22:49:21.637917

782 / tcp

-1399940268 | 2025-02-05T17:53:31.874811

789 / tcp

1208318993 | 2025-02-28T16:55:41.711622

800 / tcp

-537228938 | 2025-02-27T18:08:46.469941

801 / tcp

-303199180 | 2025-02-19T11:11:28.974637

809 / tcp

-1399940268 | 2025-02-19T06:27:13.295927

947 / tcp

-358801646 | 2025-02-20T21:51:01.143356

992 / tcp

-936692830 | 2025-02-25T01:05:09.230656

993 / tcp

-1779118422 | 2025-02-21T22:06:36.601287

995 / tcp

-2113068813 | 2025-02-03T23:53:20.078880

1000 / tcp

-2096652808 | 2025-02-06T09:06:38.222374

1002 / tcp

-1839934832 | 2025-02-23T15:33:55.143565

1023 / tcp

962700458 | 2025-02-03T18:06:34.281447

1025 / tcp

-1399940268 | 2025-02-20T02:13:24.240429

1080 / tcp

1362344524 | 2025-02-08T18:40:19.107776

1099 / tcp

321971019 | 2025-02-24T16:02:24.910443

1110 / tcp

-740312032 | 2025-02-26T15:30:42.817751

1153 / tcp

-1839934832 | 2025-02-09T03:48:58.051855

1177 / tcp

1308377066 | 2025-02-26T23:25:34.352229

1193 / tcp

1282941221 | 2025-02-21T11:58:31.327725

1234 / tcp

1911457608 | 2025-02-25T19:52:55.729489

1235 / tcp

1282941221 | 2025-02-04T13:58:33.975062

1291 / tcp

-358801646 | 2025-02-21T18:43:29.107545

1293 / tcp

-441419608 | 2025-02-08T21:52:28.673681

1344 / tcp

-1399940268 | 2025-02-01T13:18:27.917704

1364 / tcp

-2096652808 | 2025-02-26T00:04:03.279241

1366 / tcp

-2096652808 | 2025-02-22T16:16:03.483569

1377 / tcp

-1036370807 | 2025-02-23T05:14:16.036469

1414 / tcp

-1019343788 | 2025-02-24T09:52:50.237911

1433 / tcp

-1781810481 | 2025-02-19T21:41:34.848950

1451 / tcp

366084633 | 2025-02-19T05:28:50.071722

1457 / tcp

-1327660293 | 2025-02-25T06:18:02.119999

1515 / tcp

-1760806421 | 2025-02-25T16:55:37.058650