GeneralInformation

Hostnames	oss-cn-chengdu.aliyuncs.com
Domains	aliyuncs.com
Country	China
City	Chengdu
Organization	Aliyun Computing Co., LTD
ISP	Hangzhou Alibaba Advertising Co.,Ltd.
ASN	AS37963

WebTechnologies

IaaS

Alibaba Cloud Object Storage Service

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

2025(1)

CVE-2025-26465

6.8A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high.

2024(1)

CVE-2024-6387

8.1A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

2023(4)

CVE-2023-51767

7.0OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

CVE-2023-51385

6.5In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

CVE-2023-48795

5.9The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

CVE-2023-38408

9.8The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.

2021(2)

CVE-2021-41617

7.0sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.

CVE-2021-36368

3.7An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.

2020(2)

CVE-2020-15778

7.8scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVE-2020-14145

5.9The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.

2019(4)

CVE-2019-16905

7.8OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.

CVE-2019-6111

5.9An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).

CVE-2019-6110

6.8In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

CVE-2019-6109

6.8An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.

2018(3)

CVE-2018-20685

5.3In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

CVE-2018-15919

5.3Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'

CVE-2018-15473

5.3OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

2017(1)

CVE-2017-15906

5.3The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.

2016(9)

CVE-2016-20012

5.3OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product

CVE-2016-10708

7.5sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an out-of-sequence NEWKEYS message, as demonstrated by Honggfuzz, related to kex.c and packet.c.

CVE-2016-10012

7.8The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures.

CVE-2016-10011

5.5authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process.

CVE-2016-10010

7.0sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c.

CVE-2016-10009

7.3Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket.

CVE-2016-3115

6.4Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the (1) do_authenticated1 and (2) session_x11_req functions.

CVE-2016-1908

9.8The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues on this X11 server, as demonstrated by lack of the SECURITY extension on this X11 server.

CVE-2016-0777

6.5The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading a private key.

2015(4)

CVE-2015-6564

6.9Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.

CVE-2015-6563

1.9The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR_REQ_PWNAM request, related to monitor.c and monitor_wrap.c.

CVE-2015-5600

8.5The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service (CPU consumption) via a long and duplicative list in the ssh -oKbdInteractiveDevices option, as demonstrated by a modified client that provides a different password for each pam element on this list.

CVE-2015-5352

4.3The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.

2014(3)

CVE-2014-2653

5.8The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.

CVE-2014-2532

4.9sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

CVE-2014-1692

7.5The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service (memory corruption) or have unspecified other impact via vectors that trigger an error condition.

2012(1)

CVE-2012-0814

3.5The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privilege boundaries because a user account may intentionally have no shell or filesystem access, and therefore may have no supported way to read an authorized_keys file in its own home directory.

2011(2)

CVE-2011-5000

3.5The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may be limited scenarios in which this issue is relevant.

CVE-2011-4327

2.1ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.

2010(3)

CVE-2010-5107

5.0The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

CVE-2010-4755

4.0The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memory consumption) via crafted glob expressions that do not match any pathnames, as demonstrated by glob expressions in SSH_FXP_STAT requests to an sftp daemon, a different vulnerability than CVE-2010-2632.

CVE-2010-4478

7.5OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252.

2008(1)

CVE-2008-3844

9.3Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.

2007(1)

CVE-2007-2768

4.3OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.

OpenPorts

11 13 17 19 23 25 26 37 43 49 53 70 79 80 81 82 90 91 102 104 106 110 111 113 119 122 135 143 175 179 190 195 221 264 311 314 389 400 427 443 444 451 452 465 480 485 491 502 503 513 515 522 541 554 593 602 636 666 771 777 782 789 873 887 990 992 993 995 998 1000 1023 1025 1080 1099 1119 1177 1181 1200 1234 1250 1291 1337 1355 1370 1414 1443 1446 1459 1515 1521 1557 1599 1604 1605 1660 1723 1800 1801 1883 1911 1926 1955 1958 1968 1972 1978 1981 1985 1989 1990 2000 2002 2003 2008 2048 2049 2050 2056 2057 2058 2061 2065 2066 2070 2077 2083 2087 2100 2103 2121 2122 2154 2156 2181 2195 2222 2224 2225 2320 2323 2332 2345 2363 2376 2404 2443 2455 2525 2560 2561 2566 2567 2568 2599 2628 2701 2761 2762 2806 2850 3001 3007 3013 3014 3015 3016 3042 3050 3051 3052 3057 3060 3061 3070 3073 3080 3081 3083 3087 3093 3095 3096 3098 3101 3106 3108 3110 3115 3129 3131 3133 3143 3154 3159 3165 3178 3182 3199 3221 3256 3260 3268 3269 3299 3301 3306 3310 3341 3388 3400 3409 3498 3510 3523 3531 3540 3548 3551 3554 3555 3567 3580 4000 4022 4023 4042 4043 4063 4064 4118 4150 4157 4242 4243 4244 4250 4282 4321 4369 4402 4431 4433 4434 4439 4443 4444 4455 4457 4482 4499 4500 4502 4524 4531 4786 4821 4840 4899 4911 4949 4993 5001 5006 5007 5009 5010 5025 5053 5070 5089 5130 5180 5201 5222 5232 5234 5235 5236 5238 5243 5247 5249 5251 5256 5260 5261 5269 5274 5321 5433 5435 5443 5454 5591 5594 5596 5607 5650 5672 5804 5822 5853 5909 5914 5916 5984 5986 5995 5999 6000 6001 6002 6060 6102 6262 6308 6379 6464 6511 6514 6543 6600 6633 6650 6653 6667 6668 6686 6748 6955 7001 7006 7010 7013 7015 7050 7071 7080 7086 7102 7170 7171 7218 7283 7415 7433 7434 7443 7444 7510 7537 7548 7634 7654 7771 7776 7777 7887 7900 7999 8000 8001 8002 8009 8011 8015 8017 8025 8032 8034 8037 8038 8040 8042 8043 8057 8058 8061 8079 8081 8083 8087 8089 8099 8100 8106 8107 8115 8116 8118 8126 8140 8145 8151 8153 8157 8159 8162 8167 8171 8193 8195 8197 8200 8236 8237 8249 8291 8318 8333 8393 8401 8417 8421 8430 8443 8447 8451 8461 8482 8485 8493 8494 8500 8503 8514 8515 8524 8526 8530 8545 8567 8574 8587 8602 8606 8621 8649 8680 8686 8702 8704 8705 8707 8709 8728 8764 8767 8787 8805 8806 8815 8818 8820 8828 8834 8842 8852 8862 8874 8875 8886 8887 8889 8890 8891 8899 8906 8991 8993 9000 9001 9002 9013 9019 9024 9035 9036 9042 9045 9046 9049 9053 9059 9063 9064 9078 9082 9085 9091 9095 9104 9109 9140 9151 9153 9160 9161 9165 9170 9181 9185 9188 9198 9201 9207 9208 9209 9211 9219 9249 9256 9257 9289 9301 9305 9306 9311 9333 9350 9387 9443 9527 9600 9633 9682 9711 9773 9811 9876 9898 9919 9923 9955 9998 9999 10000 10022 10024 10035 10043 10045 10049 10050 10051 10068 10106 10134 10180 10181 10250 10251 10256 10380 10443 10554 10894 10909 10911 11000 11101 11210 11288 11300 11680 11688 12000 12107 12110 12111 12114 12119 12120 12124 12125 12127 12129 12134 12138 12147 12149 12151 12152 12155 12156 12158 12159 12165 12168 12186 12195 12197 12200 12201 12210 12217 12219 12223 12224 12234 12235 12236 12237 12267 12274 12280 12282 12285 12289 12292 12293 12298 12303 12311 12326 12335 12337 12339 12341 12343 12345 12347 12350 12352 12356 12359 12367 12375 12379 12380 12390 12392 12401 12402 12406 12414 12416 12422 12426 12431 12439 12441 12443 12447 12459 12464 12465 12467 12483 12486 12491 12492 12493 12496 12499 12506 12508 12519 12531 12532 12534 12535 12543 12546 12556 12558 12560 12566 12567 12573 12581 12586 12587 12601 12980 13001 13082 14130 14265 14407 14901 15018 15038 15443 15503 16001 16002 16013 16026 16031 16037 16039 16042 16050 16051 16052 16061 16065 16068 16072 16080 16403 16404 16666 16667 16993 17082 17102 18003 18013 18020 18021 18023 18027 18031 18033 18049 18051 18054 18065 18067 18070 18076 18079 18080 18081 18082 18083 18093 18094 18095 18182 18200 18245 18443 18553 18888 19000 19090 19930 20000 20040 20151 20182 20184 20256 20547 20880 20892 20900 21001 21025 21081 21082 21231 21233 21236 21242 21248 21281 21285 21287 21288 21330 21379 21381 22345 22403 22609 23023 24181 24245 24510 25007 25565 26656 26657 27015 27017 28015 28080 30001 30002 30003 30006 30009 30019 30021 30022 30029 30111 30122 30301 30322 30422 30522 30700 30722 30822 31022 31122 31210 31337 31380 31422 31443 31522 31622 31722 31822 31922 32022 32222 32322 32422 32522 32622 32722 32764 32922 33222 33322 33389 33422 33622 33722 34422 34500 34522 34622 34822 35000 35002 35100 35101 35122 35240 35322 35422 35522 35554 35559 35622 35722 35922 36022 36122 36222 36522 36622 36722 37022 37122 37222 37322 37422 37522 37622 37777 37822 37922 38022 38122 38322 38333 38522 38622 38722 38822 38922 39022 39122 39222 39422 39522 39822 39922 40001 40022 40070 40122 40222 40322 40522 40622 40722 41022 41443 41522 41800 41822 42222 42235 42422 42901 42922 43200 43221 43222 43322 43422 43522 43722 43822 43922 44022 44100 44122 44158 44222 44307 44309 44340 44400 44422 44500 44522 44622 44722 44818 44922 45122 45222 45322 45444 45622 45788 45822 45888 45922 46001 46022 46122 46222 46322 46422 46622 47122 47222 47422 47522 47622 47722 47822 47922 47990 48000 48022 48100 48122 48422 48522 48622 48722 48822 48922 49022 49200 49422 49682 49688 49722 49922 50000 50022 50085 50105 50107 50122 50222 50443 50996 51235 51443 52022 52536 53022 53490 54138 54545 54922 55000 55222 55422 55443 55522 55553 55554 55555 55722 57522 57722 57787 57822 58000 58122 58322 58422 58522 58585 58722 58822 58922 59022 59122 59222 59322 59522 60001 60129 61234 61613 61616 61617 62016 62078 62080 62865 63210 63256 63257 63260 64295 64683 65000

11 / tcp

677934968 | 2025-03-14T22:08:23.331831

lm^)Q

13 / tcp

-2127598635 | 2025-03-18T01:31:11.745231

14:02:51 2024/1/22

17 / tcp

-82008689 | 2025-03-13T19:33:37.517087

"Here's the rule for bargains: "Do other men, for they would do you."
 That's the true business precept." Charles Dickens (1812-70)
\x00

19 / tcp

829384519 | 2025-02-24T21:14:29.549987

 !"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`abcdefg
!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUV

23 / tcp

-2107996212 | 2025-02-27T17:04:16.259449

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

25 / tcp

819727972 | 2025-02-28T07:19:05.939842

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

26 / tcp

-1899074860 | 2025-03-05T05:56:25.170505

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

37 / tcp

82767464 | 2025-03-13T17:42:02.737533

LNS READ

43 / tcp

-971970408 | 2025-03-12T19:05:20.410473

49 / tcp

-1620040646 | 2025-03-10T22:02:20.543120

\xc3\xbf\xc3\xbb\\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

53 / tcp

1369632081 | 2025-03-05T23:10:13.181703

9
\x81\x80\x00\x01\x00\x02\x00\x00\x00\x00\x08clients1\x06google\x03com\x00\x00\x01\x00\x01\xc0\x00\x05\x00\x01\x00\x00\x01\x03\x00\x07clients\x01l\xc0\x15\xc01\x00\x01\x00\x01\x00\x00\x01\x14\x00\x04\xac٠N
\x00\x06\x85\x80\x00\x01\x00\x01\x00\x00\x00

70 / tcp

-833941849 | 2025-03-17T13:15:38.094601

\x1e\x06\xc2\x81\x01\x07version\x04bind\x10\x03

79 / tcp

268196945 | 2025-03-05T18:55:01.673119

AB\x01

80 / tcp

-1680149580 | 2025-03-15T19:02:06.102437

Hashes

hash

-1596211148

http.dom_hash

1799269922

http.html_hash

-1680149580

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Sat, 15 Mar 2025 19:02:05 GMT
Content-Type: application/xml
Content-Length: 344
Connection: keep-alive
x-oss-request-id: 67D5CEADE8B115C7BD7FB177
x-oss-server-time: 0
x-oss-ec: 0003-00001201

81 / tcp

-2118655245 | 2025-03-04T14:32:37.693577

Hashes

hash

1015654041

http.dom_hash

-2006505642

http.html_hash

-2118655245

HTTP/1.0 500 Internal Server Error
Content-Length: 20

82 / tcp

-2118655245 | 2025-03-06T22:17:00.833198

Hashes

hash

1015654041

http.dom_hash

-2006505642

http.html_hash

-2118655245

HTTP/1.0 500 Internal Server Error
Content-Length: 20

90 / tcp

819727972 | 2025-03-16T15:06:16.154782

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

91 / tcp

321971019 | 2025-03-16T09:11:04.240740

-ERR client ip is not in whitelist\r

102 / tcp

2143387245 | 2025-03-11T01:23:45.222669

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

104 / tcp

-1888448627 | 2025-03-15T07:09:33.815757

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

106 / tcp

-1373613804 | 2025-03-12T17:34:35.369240

00970795:d7:smethod,6:shello,8:soptions,80:d10:shttp_port,368696:i1082,5:sname,5:sL_x,10:ssync_port,5:i00469,10:stimestamp,3190459:f920.7251553166,8:sversion,6262522:sl4X,

110 / tcp

1911457608 | 2025-02-24T19:33:25.738750

\x00[\x00\x00\x00\x00\x00\x00

111 / tcp

-616720387 | 2025-03-10T02:29:52.869811

SSH-2.0-SSHD_0.7.6

113 / tcp

60948681 | 2025-03-06T04:09:00.657103

lpd [@Boyk]: Print-services are not available to your host (aF2qXkQ2m).

119 / tcp

-2107996212 | 2025-03-14T10:05:40.117522

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

122 / tcp

1623746877 | 2025-03-09T05:18:58.012331

500 Permission denied - closing connection.\r\n

135 / tcp

1302177452 | 2025-03-06T07:10:18.165911

\\x05\\x00\r\\x03\\x10\\x00\\x00\\x00\\x18\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x04\\x00\\x01\\x05\\x00\\x00\\x00\\x00\n\nServerAlive2: \n IP1: Lou\n IP2: 192.168.5.66\n IP3: 240e:381:1b0a:900:40eb:cce6:2dc1:4045\n IP4: 240e:381:1b0a:900:504f:3a1f:a682:9ab5\n IP5: 240e:381:1b0a:900::2e6\n\nNTLMSSP:\nTarget_Name: LOU\nProduct_Version: 10.0.22621 Ntlm 15\nOS: Windows 11, Version 22H2\nNetBIOS_Domain_Name: LOU\nNetBIOS_Computer_Name: LOU\nDNS_Domain_Name: Lou\nDNS_Computer_Name: Lou\nMsvAvFlags: 01000000\nSystem_Time: 2024-01-22 04:06:53 +0000 UTC\n\nDCE

143 / tcp

376198496 | 2025-03-11T09:19:42.892112

* OK Coremail System IMap Server Ready(mispb-151a50c7-932b-471d-b699-900151c4d82d-foreseahealth.com[c1988e81907d5583d41947167f416ce9])\r\n

175 / tcp

-1399940268 | 2025-03-11T00:33:20.511603

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

179 / tcp

-399606100 | 2025-03-16T18:17:00.931143

BGP Message\nType: 3\nMajor error Code: 6\nMinor error Code: 5\n

190 / tcp

1911457608 | 2025-02-25T05:38:19.871234

\x00[\x00\x00\x00\x00\x00\x00

195 / tcp

1492413928 | 2025-03-10T08:36:20.565328

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

221 / tcp

380146262 | 2025-02-25T21:57:05.105603

@RSYNCD: 30.0

264 / tcp

-1707068558 | 2025-03-14T00:00:50.854775

311 / tcp

749429829 | 2025-03-13T03:04:29.341104

\xc3\xa3\r\n\r\n\\x01KvInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

314 / tcp

-1032713145 | 2025-02-28T08:19:52.251404

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

389 / tcp

-1639129386 | 2025-03-11T21:36:25.789342

0%\\x02\\x01\\x01a \n\\x010\\x04\\x00\\x04\\x19anonymous bind disallowed

400 / tcp

1308377066 | 2025-03-10T17:13:33.022730

ncacn_http/1.0

427 / tcp

-525136240 | 2025-03-12T21:32:01.903269

SAAdvert Response:\nVersion: 2\nFunction: SA Advertisement (11)\nURL: service:service-agent://bogon.xylink\nScopeList: default\nAttrributeList: \n\n\nserviceTypes:\nservice:VMwareInfrastructure\nservice:wbem:https\n\nResponse of service:VMwareInfrastructure SrvReq:\nVersion: 2\nFunction: Service Reply (2)\nErrorCode: SUCCESS (0)\nURL Entries:\n  Lifetime: 65535\n  URL: service:VMwareInfrastructure://bogon.xylink\n\n\nResponse of service:VMwareInfrastructure AttrRqst:\nVersion: 2\nFunction: Attribute Reply (7)\nErrorCode: SUCCESS (

443 / tcp

-1131622615 | 2025-03-10T12:10:21.340379

Hashes

hash

-1456358977

http.dom_hash

1799269922

http.html_hash

-1131622615

http.server_hash

-498774968

HTTP/1.1 403 Forbidden
Server: AliyunOSS
Date: Mon, 10 Mar 2025 12:10:21 GMT
Content-Type: application/xml
Content-Length: 344
Connection: keep-alive
x-oss-request-id: 67CED6ADE8B115C7BD61C9E9
x-oss-server-time: 0
x-oss-ec: 0003-00001201

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            48:89:3b:34:19:ce:b5:fe:e8:1a:65:2f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=BE, O=GlobalSign nv-sa, CN=GlobalSign GCC R3 OV TLS CA 2024
        Validity
            Not Before: Jan  2 06:31:04 2025 GMT
            Not After : Feb  3 06:31:03 2026 GMT
        Subject: C=CN, ST=ZheJiang, L=HangZhou, O=Alibaba (China) Technology Co., Ltd., CN=*.oss-cn-chengdu.aliyuncs.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:d0:93:28:c7:24:08:80:82:8f:2f:7a:f9:18:c2:
                    12:82:77:d0:e0:e2:03:f4:f5:b4:19:d3:44:27:8c:
                    7a:6f:2d:e9:ed:8d:a4:c2:c3:a7:98:dd:ae:b1:23:
                    14:19:34:64:9d:ce:3f:b2:41:c7:ef:2b:7e:47:e9:
                    0a:97:ca:b8:57:af:8b:41:ca:f7:88:a4:bf:ae:97:
                    66:65:e9:c6:1c:69:16:8d:b6:b7:a0:38:f0:e1:7b:
                    d8:29:bf:9e:c9:94:bf:fb:5b:bc:0f:e1:a1:a0:3c:
                    45:28:2d:42:bc:34:70:ab:8a:57:0d:4e:f7:af:1c:
                    6d:c6:94:40:4c:bc:c1:76:65:f0:d8:6f:69:1b:19:
                    98:18:de:a6:5c:cf:93:6d:84:0f:2b:cf:76:ff:72:
                    4d:a7:57:d1:2f:50:ed:ef:9f:80:c5:a6:01:72:b4:
                    3b:9e:e0:bf:5d:ac:22:72:49:bf:69:ac:d5:1a:dc:
                    96:87:d7:9e:a5:0e:7f:f0:13:35:80:6a:7f:c5:7d:
                    b9:16:2c:1f:25:24:a2:cb:69:c3:5e:8d:26:25:da:
                    f8:f7:23:9b:6d:76:56:34:40:d4:63:8e:9f:bf:d1:
                    93:30:52:52:cb:3a:9d:c1:86:84:6a:a7:26:e6:72:
                    e1:d4:08:84:7c:a0:21:13:9f:4c:69:52:a0:ee:fb:
                    83:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Basic Constraints: critical
                CA:FALSE
            Authority Information Access: 
                CA Issuers - URI:http://secure.globalsign.com/cacert/gsgccr3ovtlsca2024.crt
                OCSP - URI:http://ocsp.globalsign.com/gsgccr3ovtlsca2024
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.2
                Policy: 1.3.6.1.4.1.4146.10.1.2
                  CPS: https://www.globalsign.com/repository/
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl.globalsign.com/gsgccr3ovtlsca2024.crl
            X509v3 Subject Alternative Name: 
                DNS:*.oss-cn-chengdu.aliyuncs.com, DNS:*.oss-internal.aliyuncs.com, DNS:*.oss-accelerate.aliyuncs.com, DNS:*.cn-chengdu.oss.aliyuncs.com, DNS:*.oss-accelerate-overseas.aliyuncs.com, DNS:*.oss-cn-chengdu-internal.aliyuncs.com, DNS:*.oss-cn-chengdu-cross.aliyuncs.com, DNS:*.aliyuncs.com, DNS:*.oss-enet.aliyuncs.com, DNS:*.oss.aliyuncs.com, DNS:*.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-chengdu.oss-accesspoint.aliyuncs.com, DNS:*.oss-cn-chengdu-internal.oss-accesspoint.aliyuncs.com, DNS:*.cn-chengdu.oss-console.aliyuncs.com, DNS:*.oss-console.aliyuncs.com, DNS:*.s3.oss-cn-chengdu.aliyuncs.com, DNS:*.s3.oss-cn-chengdu-internal.aliyuncs.com, DNS:*.cn-chengdu.mgw.aliyuncs.com, DNS:*.oss.cn-chengdu.privatelink.aliyuncs.com, DNS:*.oss-cn-chengdu.oss-object-process.aliyuncs.com, DNS:*.oss-cn-chengdu-internal.oss-object-process.aliyuncs.com, DNS:*.s3.oss-accelerate.aliyuncs.com, DNS:*.s3.oss-accelerate-overseas.aliyuncs.com, DNS:*.cn-chengdu-cross.mgw.aliyuncs.com, DNS:oss-cn-chengdu.aliyuncs.com
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                DA:D3:A8:08:48:0C:34:37:58:EE:E5:A7:75:2E:59:FC:D6:DC:3C:38
            X509v3 Subject Key Identifier: 
                D8:5F:6D:CA:AC:2F:CA:2A:24:13:47:0A:23:89:F4:76:F3:06:BB:A2
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 64:11:C4:6C:A4:12:EC:A7:89:1C:A2:02:2E:00:BC:AB:
                                4F:28:07:D4:1E:35:27:AB:EA:FE:D5:03:C9:7D:CD:F0
                    Timestamp : Jan  2 06:31:07.059 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:5C:C5:51:1A:8D:52:57:E1:48:7C:B8:E6:
                                CE:EE:5A:FB:2A:E6:FE:2F:6B:99:12:A4:3F:9E:2F:52:
                                1F:CE:92:F6:02:20:4C:73:A0:C4:6E:92:A4:44:80:99:
                                C4:FE:92:F7:46:21:5A:68:9F:20:F9:46:74:1E:BB:AA:
                                72:00:8D:1A:E0:61
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 0E:57:94:BC:F3:AE:A9:3E:33:1B:2C:99:07:B3:F7:90:
                                DF:9B:C2:3D:71:32:25:DD:21:A9:25:AC:61:C5:4E:21
                    Timestamp : Jan  2 06:31:07.395 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:68:57:10:6E:D7:28:38:91:88:6D:EC:27:
                                FC:33:CC:ED:00:D7:42:8C:3B:0D:2B:D4:33:B6:1E:4E:
                                5B:65:74:B3:02:20:43:8A:35:AC:8F:17:57:07:AB:A3:
                                07:8F:CE:A7:B0:D4:22:63:A8:40:31:A1:5F:FA:DC:B0:
                                F9:CB:4D:89:62:D1
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 25:2F:94:C2:2B:29:E9:6E:9F:41:1A:72:07:2B:69:5C:
                                5B:52:FF:97:A9:0D:25:40:BB:FC:DC:51:EC:4D:EE:0B
                    Timestamp : Jan  2 06:31:07.137 2025 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:FE:FF:4B:CF:BC:14:EC:E5:DE:A5:B0:
                                9E:2E:5D:1A:59:D3:59:A8:33:32:E4:69:29:D7:D2:93:
                                EB:A9:47:8F:4D:02:21:00:EE:6B:D8:D0:B9:B4:DF:F8:
                                29:BA:BC:7F:B7:A7:18:45:F7:55:77:81:A8:AF:E1:F4:
                                D1:EA:7A:C5:C8:68:D5:E8
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        73:f5:92:45:f8:75:c6:9d:b5:db:c9:f5:79:35:61:75:ae:55:
        30:5c:14:e5:9d:1e:a4:75:bb:96:e0:9c:26:22:0d:e5:41:93:
        78:b2:d1:05:76:95:7c:90:7d:94:97:c1:72:7c:fb:f3:f7:d3:
        67:40:ba:40:65:33:c5:4a:b0:35:db:de:21:7a:00:57:6d:ec:
        86:70:e4:2c:ec:5c:af:7b:ba:9b:5d:15:e6:ac:e0:8c:2c:eb:
        16:09:a9:19:5f:c2:a2:04:f1:01:9b:f0:22:b3:a6:01:e3:65:
        fc:24:61:27:d4:33:0f:e1:07:12:1b:e6:03:5a:49:82:fd:71:
        2f:8e:cb:14:47:dd:a2:91:cf:36:aa:00:59:c3:42:86:c4:6e:
        19:bc:e7:05:97:fd:e1:2a:6e:c0:93:31:78:5c:f5:e9:78:5b:
        15:e9:5a:3c:a8:57:36:e4:df:81:6e:e5:b5:14:06:c0:6c:56:
        20:69:93:e8:ca:49:1a:cf:30:94:58:4c:dc:11:b1:c3:de:4c:
        12:76:68:c7:e5:5f:fe:0b:5b:9b:99:d4:01:0d:39:98:d6:a0:
        fa:68:67:1b:28:f6:69:91:f3:63:6b:be:45:b9:10:a5:ae:5a:
        b7:77:a5:94:4e:fc:77:37:dc:2a:af:5a:b3:30:28:36:b1:7d:
        c6:e3:75:0c

444 / tcp

-420380999 | 2025-02-26T21:41:26.927854

HTTP/1.1 400 Bad Request
Server: nginx/1.22.1
Date: Wed, 26 Feb 2025 21:41:26 GMT
Content-Type: text/html
Content-Length: 157
Connection: close

<html>
<head><title>400 Bad Request</title></head>
<body>
<center><h1>400 Bad Request</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

451 / tcp

-2089734047 | 2025-03-17T09:20:54.480377

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

452 / tcp

-2096652808 | 2025-03-14T03:52:56.245667

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

465 / tcp

897328069 | 2025-03-03T19:59:06.043358

220 mail.scott000.com ESMTP

480 / tcp

1381121983 | 2025-03-06T10:57:11.398891

Notify\r\n

485 / tcp

408230060 | 2025-02-25T01:32:40.978025

\r\nSorry, that nickname format is invalid.\r\n

491 / tcp

1911457608 | 2025-02-28T09:36:51.919181

\x00[\x00\x00\x00\x00\x00\x00

502 / tcp

320677201 | 2025-03-17T02:15:58.851622

H\x00\x00\x00\xc3\xbfj\x04Host \'101.133.140.114\' is not allowed to \nconnect to this MySQL server

503 / tcp

-1139539254 | 2025-03-09T14:11:40.400860

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

513 / tcp

819727972 | 2025-03-15T04:32:58.775409

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

515 / tcp

863754335 | 2025-03-13T09:53:45.738637

0a

522 / tcp

-1730858130 | 2025-03-17T08:49:00.679921

RFB 003.008
VNC:
  Protocol Version: 3.8

541 / tcp

-269727450 | 2025-03-12T04:08:48.708857

\\x16\\x03\\x01\\x01K\\x01\\x00\\x01G\\x03\\x03\\xa1\\xb0\\xcf\\xc9\\xc2X\\x037P\\xe0\\x8d\\xd7\\x1d_N\\x87&\\xa7U.^\\x19_K\\x13\\xed\\xe9L|\n\\xec\\x9e -\\xc23\\x1e\\x94\\xb3\\xe6|\x0c\\xaco|\\xe1\xc6\xa5V\\xd0\\x1d\\xf7Uf<\\xabgV=)\\xf2\\x86\\xc4\\x18\x0c\\x00"\\x13\\x02\\x13\\x03\\x13\\x01\\x00k\\x00=\\xc00\\xc0,\\xc

554 / tcp

735639583 | 2025-03-09T05:07:25.462235

RTSP/1.0 200 OK
Server: H264DVR 1.0
Cseq: 1
Public: OPTIONS, DESCRIBE, SETUP, TEARDOWN, GET_PARAMETER, SET_PARAMETER, PLAY, PAUSE

593 / tcp

-1112304903 | 2025-02-28T12:17:28.311477

HTTP/1.1 403 Forbidden
Server: Apache/2.4.23 (Win64) OpenSSL/1.0.2h PHP/7.4.13
Content-Type: text/html; charset=iso-8859-1

602 / tcp

-1810987450 | 2025-02-28T22:47:20.525044

\xc3\xbf

636 / tcp

-1036370807 | 2025-03-11T14:14:43.815386

JDWP-Handshake

666 / tcp

1300162323 | 2025-03-10T07:03:52.423463

HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff

771 / tcp

-445721795 | 2025-03-06T02:03:49.527914

\x00[\xc3\xaed\x1a\x7f\x00\x00

777 / tcp

-1116122862 | 2025-03-16T00:04:25.803814

HTTP/1.1 503 Service Unavailable
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
X-Iinfo: 3-20939586-0 0NNN RT(1705893689271 0) q(0 -1 -1 -1) r(0 -1)

782 / tcp

-1399940268 | 2025-03-16T12:39:25.202466

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

789 / tcp

1911457608 | 2025-03-17T21:31:52.387381

\x00[\x00\x00\x00\x00\x00\x00

873 / tcp

-1970692834 | 2025-03-16T15:31:13.720122

@RSYNCD: 31.0\n@RSYNCD: EXIT\n

887 / tcp

1911457608 | 2025-02-28T10:50:38.417844

\x00[\x00\x00\x00\x00\x00\x00

990 / tcp

408230060 | 2025-02-26T10:41:37.487650

\r\nSorry, that nickname format is invalid.\r\n

992 / tcp

-1718295362 | 2025-03-16T03:42:58.590818

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8

993 / tcp

-1476017887 | 2025-02-27T07:13:01.912939

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

995 / tcp

-1489591880 | 2025-03-10T00:00:38.087417

+OK MS OK\r\n

998 / tcp

1426971893 | 2025-03-09T12:49:26.890121

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

1000 / tcp

-1399940268 | 2025-02-27T20:05:45.424237

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1023 / tcp

-2107996212 | 2025-03-15T04:49:30.598485

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

1025 / tcp

1948301213 | 2025-03-09T16:23:42.533960

RFB 003.003
VNC:
  Protocol Version: 3.3

1080 / tcp

1362344524 | 2025-03-10T21:46:43.004947

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.7

1099 / tcp

-1399940268 | 2025-03-14T21:04:33.313639

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1119 / tcp

-1547976805 | 2025-02-23T08:55:46.899980

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

1177 / tcp

2087396567 | 2025-03-17T18:36:55.259628

kjnkjabhbanc283ubcsbhdc72

1181 / tcp

-2031152423 | 2025-02-27T05:36:21.288220

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

1200 / tcp

2087396567 | 2025-03-10T12:59:30.031688

kjnkjabhbanc283ubcsbhdc72

1234 / tcp

-1399940268 | 2025-03-05T04:20:15.553915

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1250 / tcp

819727972 | 2025-03-13T13:13:01.618818

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

1291 / tcp

-445721795 | 2025-03-06T03:59:42.958963

\x00[\xc3\xaed\x1a\x7f\x00\x00

1337 / tcp

-2080784861 | 2025-02-25T16:18:07.661544

GBPK\xc3\xbb\xc3\xb7n\xc2\x93W\xc2\xaf\xc2\x86\xc2\x93x@\xc2\xa9\x0e\xc3\x8a*\xc2\x9bS\x00

1355 / tcp

1615193817 | 2025-02-23T14:56:39.264539

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

1370 / tcp

1911457608 | 2025-03-03T18:27:21.621034

\x00[\x00\x00\x00\x00\x00\x00

1414 / tcp

-1538260461 | 2025-03-10T14:22:36.834420

\x01\x00\x00\x00

1443 / tcp

-1715152554 | 2025-03-05T18:06:43.247749

Hashes

hash

1312597638

http.dom_hash

1239617585

http.html_hash

-1715152554

http.server_hash

1727046647

http.title_hash

-1828380909

302 Found

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Wed, 05 Mar 2025 18:06:42 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://47.108.5.94:443/

1446 / tcp

-1399940268 | 2025-03-13T20:45:43.470651

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1459 / tcp

-1746074029 | 2025-03-05T07:32:55.186517

101 imqbroker =unV\r\n

1515 / tcp

539065883 | 2025-03-05T07:50:16.047090

1521 / tcp

-805164506 | 2025-03-17T10:51:07.707353

\xc3\xbf\xc3\xbd"\r\nL

1557 / tcp

2103111368 | 2025-03-10T00:08:59.635448

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

1599 / tcp

474736340 | 2025-03-14T17:23:45.759725

431 Unable to negotiate secure command connection.

1604 / tcp

-971970408 | 2025-03-16T16:13:38.025389

1605 / tcp

819727972 | 2025-03-12T11:57:21.963319

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

1660 / tcp

89142341 | 2025-03-14T22:45:56.774929

\x05\x00\x00\x00\x0b\x08\x05\x1a\x00

1723 / tcp

1103582599 | 2025-03-09T16:31:40.325711

Firmware: 1\nHostname: Vigor\nVendor: DrayTek\n

1800 / tcp

-1261090339 | 2025-03-04T18:27:45.005984

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

1801 / tcp

-1139999322 | 2025-03-11T07:39:14.854698

\\x10Z\x0b\\x00LIOR<\\x02\\x00\\x00\\xff\\xff\\xff\\xff\\x00\\x00\\x12\\x00a36a0e421af47074\\xf2\\xdby\\x96\\xbb\\xb1LE\\xa1\\x1f.%\xd2\xbft\\xb692d3\\x10\\x03\\x00\\x00ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ

1883 / tcp

104385780 | 2025-03-07T04:47:49.610884

ceph v2

1911 / tcp

820958131 | 2025-03-17T21:52:43.324505

kjnkjabhbanc283ubcsbhdc72\x02

1926 / tcp

171352214 | 2025-02-28T18:02:08.387258

-ERR client ip is not in whitelist

1955 / tcp

-1399940268 | 2025-03-13T16:20:00.878239

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

1958 / tcp

-441419608 | 2025-02-26T10:28:57.302633

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

1968 / tcp

1011407350 | 2025-03-04T22:27:02.107190

* OK GroupWise IMAP4rev1 Server Ready\r\n

1972 / tcp

-1839934832 | 2025-02-27T17:56:33.150508

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

1978 / tcp

-2096652808 | 2025-03-14T00:22:25.018233

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

1981 / tcp

2143387245 | 2025-02-27T20:22:37.787782

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

1985 / tcp

321971019 | 2025-02-27T08:09:48.485759

-ERR client ip is not in whitelist\r

1989 / tcp

-2107996212 | 2025-02-23T22:49:19.513940

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

1990 / tcp

580340387 | 2025-03-05T22:38:11.223511

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

2000 / tcp

-407828767 | 2025-03-17T17:38:39.894390

\x00[\xc2\xbc/\xc2\x9f\x7f\x00\x00

2002 / tcp

-1681927087 | 2025-03-09T10:14:07.774772

kjnkjabhbanc283ubcsbhdc72

2003 / tcp

632542934 | 2025-03-11T17:48:20.359137

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

2008 / tcp

1286504516 | 2025-03-12T21:03:56.361348

CP2E Control Console
Connected to Host: gZI

2048 / tcp

1996932384 | 2025-03-13T20:06:43.466408

"raop" nonce

2049 / tcp

-2089734047 | 2025-03-17T18:18:20.925335

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2050 / tcp

-136006866 | 2025-02-28T01:07:51.243885

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

2056 / tcp

-1648456501 | 2025-02-23T18:32:18.592584

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

2057 / tcp

-1399940268 | 2025-02-22T14:25:40.208990

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

2058 / tcp

-1487943323 | 2025-03-05T02:11:51.927014

431 Unable to negotiate secure command connection.\r\n

2061 / tcp

-1297953727 | 2025-03-15T06:33:38.089097

\x02\x00\x00\x00\x00\x00\x06\x04\x00\x00\x00\x00\x00\x0c\x00\x00\n0\x00\x1c

2065 / tcp

-42767839 | 2025-02-26T22:19:24.067878

RFB 005.000

VNC:
  Protocol Version: 5.0

2066 / tcp

-358801646 | 2025-03-12T22:06:17.235448

SSH-2.0-OpenSSH_6.6.1

2070 / tcp

819727972 | 2025-02-24T19:09:13.195371

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

2077 / tcp

-2089734047 | 2025-02-25T12:16:58.238942

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2083 / tcp

539065883 | 2025-03-13T14:58:22.826274

2087 / tcp

2087396567 | 2025-03-14T06:43:28.837589

kjnkjabhbanc283ubcsbhdc72

2100 / tcp

-1327660293 | 2025-03-03T19:56:13.289262

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

2103 / tcp

826567260 | 2025-02-28T10:18:16.725509

\\x05\\x00\r\\x03\\x10\\x00\\x00\\x00\\x18\\x00\\x00\\x00\\x01\\x00\\x00\\x00\\x04\\x00\\x01\\x05\\x00\\x00\\x00\\x00

2121 / tcp

141730637 | 2025-02-27T16:46:19.053184

HTTP/1.0 200 OK
Server: Proxy

2122 / tcp

-1626979812 | 2025-03-04T07:50:20.259902

220 Service ready for new user.

2154 / tcp

-893477759 | 2025-03-03T22:28:40.150841

!versionbind7 t{RPowerDNS Recursor 410

2156 / tcp

-2033111675 | 2025-03-16T21:15:09.114751

~djb

2181 / tcp

546151771 | 2025-03-12T23:23:03.278815

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

2195 / tcp

639175818 | 2025-02-27T14:37:33.400837

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

2222 / tcp

372433470 | 2025-03-08T11:28:20.994193

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

2224 / tcp

819727972 | 2025-03-04T04:08:02.948216

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

2225 / tcp

575925250 | 2025-03-10T22:03:03.366197

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

2320 / tcp

819727972 | 2025-02-24T01:05:25.600083

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

2323 / tcp

1051421500 | 2025-03-16T07:27:15.732005

H3C login: 

TELNET Negotiation:
will: Echo, Suppress Go Ahead
do: Echo, Negotiate About Window Size, Remote Flow Control

2332 / tcp

-154107716 | 2025-02-27T20:13:58.376600

220 Microsoft FTP Service
530 User cannot log in.
214-The following commands are recognized (* ==>'s unimplemented).
    ABOR 
    ACCT 
    ADAT *
    ALLO 
    APPE 
    AUTH 
    CCC 
    CDUP 
    CWD 
    DELE 
    ENC *
    EPRT 
    EPSV 
    FEAT 
    HELP 
    HOST 
    LANG 
    LIST ...

2345 / tcp

493955023 | 2025-03-15T01:47:30.654068

\x00\x00\x0c\x04\x00\x00\x00\x00\x00\x00\x04\x00\x10\x00\x00\x00\n0\x05\x00\x00@\x00

2363 / tcp

819727972 | 2025-03-15T18:07:31.299484

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

2376 / tcp

707919486 | 2025-03-16T14:10:33.505419

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

2404 / tcp

745343730 | 2025-03-11T03:49:14.820776

220 smtp.qq.com Esmtp QQ Mail Server

2443 / tcp

-2046514463 | 2025-03-09T19:56:58.867691

AB\x01\t

2455 / tcp

-971970408 | 2025-03-08T16:32:49.552553

2525 / tcp

-498480441 | 2025-03-13T06:59:58.253849

220 mail.airplay.hk ESMTP\r\n250-mail.airplay.hk\r\n250-SIZE 20480000\r\n250-AUTH LOGIN\r\n250 HELP\r\n211 DATA HELO EHLO MAIL NOOP QUIT RCPT RSET SAML TURN VRFY\r\n

2560 / tcp

632542934 | 2025-03-10T00:51:08.461543

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

2561 / tcp

-1947777893 | 2025-02-25T02:09:24.581363

"Broadband Router"\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY onLoad

2566 / tcp

-2089734047 | 2025-03-10T13:26:33.579137

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2567 / tcp

-2089734047 | 2025-03-15T04:45:50.780613

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

2568 / tcp

-1140468363 | 2025-03-12T10:30:16.872473

\x02\t\x01

2599 / tcp

-1733106930 | 2025-02-25T17:32:16.089744

Mysql Version: 5.6.50-log\nN\n5.6.50-log\x14(\nG5se"tGE\xc3\xbf\xc3\xb7-\x02\x7f\xc2\x80\x15cB^3$Zwh$wM[mysql_native_password

2628 / tcp

-1729629024 | 2025-03-05T04:56:46.912274

101 imqbroker =unV

2701 / tcp

1869192275 | 2025-03-09T22:44:54.529768

\n

2761 / tcp

1911457608 | 2025-03-04T13:38:55.123949

\x00[\x00\x00\x00\x00\x00\x00

2762 / tcp

2098371729 | 2025-03-12T22:46:00.606693

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

2806 / tcp

-805362002 | 2025-02-25T15:17:40.410023

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

2850 / tcp

-1399940268 | 2025-02-28T07:42:34.702208

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3001 / tcp

-1681927087 | 2025-03-17T03:23:00.718101

kjnkjabhbanc283ubcsbhdc72

3007 / tcp

1308377066 | 2025-03-17T09:52:23.114881

ncacn_http/1.0

3013 / tcp

-1568680103 | 2025-03-09T16:09:51.486929

HTTP/1.1 301 Moved Permanently
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3014 / tcp

-274082663 | 2025-03-14T01:26:52.096606

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

3015 / tcp

-274082663 | 2025-03-17T14:31:19.700316

\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01

3016 / tcp

-1036370807 | 2025-03-10T17:39:55.761576

JDWP-Handshake

3042 / tcp

1189133115 | 2025-03-11T05:59:27.903362

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

3050 / tcp

1911457608 | 2025-03-04T20:33:13.404474

\x00[\x00\x00\x00\x00\x00\x00

3051 / tcp

-1399940268 | 2025-02-24T06:39:54.302859

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3052 / tcp

1126993057 | 2025-03-12T14:36:57.845482

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

3057 / tcp

-1399940268 | 2025-02-25T20:28:16.557579

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3060 / tcp

165188539 | 2025-03-10T14:53:03.243020

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3061 / tcp

-1399940268 | 2025-03-17T07:01:27.518187

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3070 / tcp

1189133115 | 2025-03-08T22:46:23.642740

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

3073 / tcp

-2089734047 | 2025-03-13T02:49:48.953127

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3080 / tcp

819727972 | 2025-02-26T07:24:03.924696

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3081 / tcp

51259122 | 2025-02-24T03:55:59.759539

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

3083 / tcp

1332894250 | 2025-03-17T00:29:33.471619

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

3087 / tcp

-784071826 | 2025-03-10T02:15:23.997285

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

3093 / tcp

51259122 | 2025-03-04T05:37:22.276671

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

3095 / tcp

-2096652808 | 2025-03-15T11:23:54.835115

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

3096 / tcp

-784071826 | 2025-02-26T10:14:25.848108

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

3098 / tcp

-2089734047 | 2025-03-17T03:19:14.069123

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3101 / tcp

-1013082686 | 2025-03-05T09:33:21.532170

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

3106 / tcp

-1399940268 | 2025-02-27T20:14:53.706523

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3108 / tcp

1381121983 | 2025-03-16T21:47:56.632474

Notify\r\n

3110 / tcp

-1399940268 | 2025-03-07T06:03:19.577258

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3115 / tcp

1615193817 | 2025-02-22T01:50:46.082363

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

3129 / tcp

2103111368 | 2025-03-06T01:11:51.551252

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

3131 / tcp

921225407 | 2025-02-27T02:08:11.764759

\x00\x00\x00\x04\x00\x00\x00\x00\x00

3133 / tcp

-1399940268 | 2025-02-28T21:34:23.529494

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3143 / tcp

1911457608 | 2025-03-04T10:30:18.238949

\x00[\x00\x00\x00\x00\x00\x00

3154 / tcp

165188539 | 2025-02-27T01:01:51.667605

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

3159 / tcp

321971019 | 2025-03-03T20:12:07.456975

-ERR client ip is not in whitelist\r

3165 / tcp

575925250 | 2025-03-05T15:31:41.132517

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

3178 / tcp

103159425 | 2025-03-11T23:17:42.884669

SSH-1.99-RGOS_SSH

3182 / tcp

-1810987450 | 2025-03-13T05:19:48.826840

\xc3\xbf

3199 / tcp

-1839934832 | 2025-03-06T15:30:29.041286

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

3221 / tcp

-2019309480 | 2025-03-06T09:21:10.995751

<?xml version="1.0" encoding="us-ascii"?>\n

3256 / tcp

1991883981 | 2025-03-14T17:40:02.482706

B\x00\x00\x00\xc3\xbfn\x04Too many connections

3260 / tcp

1655023012 | 2025-03-13T18:24:46.492280

athinfod: invalid query.\n

3268 / tcp

-1547976805 | 2025-03-09T22:53:22.568993

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

3269 / tcp

632542934 | 2025-03-08T21:59:13.050416

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

3299 / tcp

-1261090339 | 2025-03-12T18:57:12.784916

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

3301 / tcp

897328069 | 2025-03-17T09:24:20.679710

220 mail.scott000.com ESMTP

3306 / tcp

1801207137 | 2025-03-17T04:30:06.078560

F\\x00\\x00\\x00\\xffj\\x04Host \'106.75.96.125\' is not allowed to connect to this MySQL server

3310 / tcp

-457235091 | 2025-03-17T19:27:57.768998

audio 0 RTP/AVP 18 4 3 8 0 101\r\na

3341 / tcp

-438503381 | 2025-02-24T18:02:14.166338

WORLD OF WARCRAFT CONNECTION - SERVER TO CLIENT - V2

3388 / tcp

819727972 | 2025-03-14T03:52:22.015373

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

3400 / tcp

-1399940268 | 2025-02-24T13:14:30.316880

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

3409 / tcp

1911457608 | 2025-03-01T01:57:03.578686

\x00[\x00\x00\x00\x00\x00\x00

3498 / tcp

1911457608 | 2025-03-15T12:42:40.953645

\x00[\x00\x00\x00\x00\x00\x00

3510 / tcp

1282941221 | 2025-03-15T07:16:23.845235

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

3523 / tcp

819727972 | 2025-03-06T09:36:09.037527

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

3531 / tcp

-1297953727 | 2025-02-26T12:39:16.326567

\x02\x00\x00\x00\x00\x00\x06\x04\x00\x00\x00\x00\x00\x0c\x00\x00\n0\x00\x1c

3540 / tcp

-1297953727 | 2025-02-25T22:12:49.035182

\x02\x00\x00\x00\x00\x00\x06\x04\x00\x00\x00\x00\x00\x0c\x00\x00\n0\x00\x1c

3548 / tcp

-1248408558 | 2025-02-27T18:00:01.611059

220 MikroTik FTP server (MikroTik 6.44.3) ready

3551 / tcp

198844676 | 2025-03-12T12:01:46.034950

HTTP/1.1 404 Not Found
Server: Jetty/9.4.31.v20200723
Content-Type: text/plain; charset=utf-8
Connection: close

3554 / tcp

-1019343788 | 2025-02-24T18:26:43.073031

W!\x00\x00\x00\x00

3555 / tcp

-2089734047 | 2025-02-27T14:23:24.554552

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

3567 / tcp

1911457608 | 2025-02-22T06:01:19.014861

\x00[\x00\x00\x00\x00\x00\x00

3580 / tcp

-1227409554 | 2025-03-13T12:59:50.785365

HTTP/1.1 500 Internal Server Error
Server: Zope/(2.13.23, python 1.7.18, linux2) ZServer/1.1
Content-Type: text/plain; charset=utf-8
Connection: close

4000 / tcp

-1101712668 | 2025-03-15T21:11:43.382335

\\x1e\xc3\x80\\x010\\x02\xc2\xa8\xc3\xa3

4022 / tcp

-1899074860 | 2025-03-13T23:03:39.317396

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

4023 / tcp

1519486042 | 2025-03-04T14:13:16.848532

<KU_goodbye>Protocol Error: XML data is not well-formed.</KU_goodbye>

4042 / tcp

-1733106930 | 2025-03-13T11:35:03.890202

Mysql Version: 5.6.50-log\nN\n5.6.50-log\x14(\nG5se"tGE\xc3\xbf\xc3\xb7-\x02\x7f\xc2\x80\x15cB^3$Zwh$wM[mysql_native_password

4043 / tcp

-980525298 | 2025-02-23T17:16:50.021130

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

4063 / tcp

-21576419 | 2025-03-11T23:18:02.408727

ÿûUDo you want ANSI color? (Y/n)

4064 / tcp

-303199180 | 2025-03-14T04:13:47.026986

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

4118 / tcp

1911457608 | 2025-03-13T03:05:46.259672

\x00[\x00\x00\x00\x00\x00\x00

4150 / tcp

165188539 | 2025-03-16T06:27:24.681164

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

4157 / tcp

819727972 | 2025-03-15T18:15:25.104076

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

4242 / tcp

-1879056922 | 2025-03-15T13:51:17.382594

HTTP/1.1 403 Forbidden
Server: Apache/2.4.41 (Unix) OpenSSL/1.1.1d TST PHP/7.3.11
Content-Type: text/plain; charset=utf-8
Connection: close

4243 / tcp

580340387 | 2025-02-25T12:49:09.918048

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

4244 / tcp

819727972 | 2025-03-15T22:35:25.773654

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

4250 / tcp

-1399940268 | 2025-02-22T06:52:50.216509

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

4282 / tcp

1375509841 | 2025-03-11T03:51:52.631622

ÿû

no data rcvd for version string

recv version id unsuccessful

SSH Session task 0xY: Version Exchange Failed

4321 / tcp

-1250504565 | 2025-03-13T21:45:47.310979

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x80\x00\x04\x00\x01\x00\x00\x00\x05\x00\xff\xff\xff\x00\x00\x04\x08\x00\x00\x00\x00\x00\x7f\xff\x00\x00\x00\x00\x08\x07\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01

4369 / tcp

1762042191 | 2025-03-10T20:39:28.443826

\x7f\x7fICA\x00

4402 / tcp

1726594447 | 2025-03-06T18:31:40.306798

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

4431 / tcp

165188539 | 2025-03-13T18:43:30.698905

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

4433 / tcp

-971970408 | 2025-03-13T03:57:41.573212

4434 / tcp

1852418385 | 2025-03-13T05:59:21.429075

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

4439 / tcp

819727972 | 2025-03-14T01:23:08.636233

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

4443 / tcp

285437346 | 2025-03-14T00:54:08.047007

HTTP/1.1 200 OK
Content-Type: text/xml
X-Transcend-Version: 1
Strict-Transport-Security: max-age=31536000 ; includeSubDomains
X-Frame-Options: deny
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
Clear-Site-Data: "cache","cookies","storage"
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
X-XSS-Protection: 0

4444 / tcp

-653033013 | 2025-03-10T12:11:19.182382

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

4455 / tcp

-653033013 | 2025-02-22T06:37:06.521855

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

4457 / tcp

740837454 | 2025-02-28T12:10:27.754336

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

4482 / tcp

1126993057 | 2025-03-05T04:12:10.903752

* OK [CAPABILITY a2,M\\] nBwXk2pPP IMAP4rev1 20qx at

4499 / tcp

-2107996212 | 2025-03-09T05:16:31.785650

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

4500 / tcp

-1140468363 | 2025-03-13T15:48:51.234268

\x02\t\x01

4502 / tcp

-441419608 | 2025-02-22T09:12:29.024901

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

4524 / tcp

307999478 | 2025-02-22T21:11:39.684117

unknown command \r\nunknown command \r\n

4531 / tcp

-249504111 | 2025-03-14T16:24:29.342353

\x00[xU-\x7f\x00\x00

4786 / tcp

307999478 | 2025-03-06T07:30:40.077149

unknown command \r\nunknown command \r\n

4821 / tcp

-1189269828 | 2025-03-13T22:05:53.418158

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

4840 / tcp

971933601 | 2025-03-16T22:15:46.362474

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

4899 / tcp

842535728 | 2025-03-04T05:54:17.472355

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

4911 / tcp

-1059554316 | 2025-02-25T03:09:12.012401

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

4949 / tcp

819727972 | 2025-02-23T02:57:45.150972

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

4993 / tcp

-1746074029 | 2025-02-24T13:53:53.443415

101 imqbroker =unV\r\n

5001 / tcp

-1999117212 | 2025-03-05T21:37:50.037042

5006 / tcp

-971970408 | 2025-03-09T06:57:10.114291

5007 / tcp

1492413928 | 2025-03-06T02:10:56.609314

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

5009 / tcp

1017429513 | 2025-02-22T02:25:38.192594

HTTP/1.1 403 Forbidden
Content-Type: text/html
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET

5010 / tcp

-1399940268 | 2025-03-15T14:02:07.345043

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5025 / tcp

2087396567 | 2025-02-25T20:14:28.079513

kjnkjabhbanc283ubcsbhdc72

5053 / tcp

639175818 | 2025-02-26T09:27:06.318230

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

5070 / tcp

-1399940268 | 2025-03-07T14:23:49.738297

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5089 / tcp

819727972 | 2025-03-15T19:00:16.548290

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

5130 / tcp

921225407 | 2025-02-24T17:18:51.304057

\x00\x00\x00\x04\x00\x00\x00\x00\x00

5180 / tcp

921225407 | 2025-03-10T06:38:47.760788

\x00\x00\x00\x04\x00\x00\x00\x00\x00

5201 / tcp

-1032713145 | 2025-03-12T11:03:43.829634

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

5222 / tcp

1308377066 | 2025-03-10T19:56:11.675904

ncacn_http/1.0

5232 / tcp

-339084706 | 2025-03-12T07:37:54.199557

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

5234 / tcp

-1626979812 | 2025-03-01T01:58:32.303567

220 Service ready for new user.

5235 / tcp

-1399940268 | 2025-03-08T22:37:30.581007

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5236 / tcp

-1611764932 | 2025-03-08T12:21:46.543634

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

5238 / tcp

398077695 | 2025-03-11T09:36:13.482001

5243 / tcp

-1045760528 | 2025-03-11T23:20:10.551542

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

5247 / tcp

-1261090339 | 2025-03-09T04:39:52.502733

\x00[l\xc2\xb6\xc3\x90\x7f\x00\x00

5249 / tcp

-1888448627 | 2025-03-10T03:29:53.583631

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

5251 / tcp

-1399940268 | 2025-03-09T05:29:57.428760

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5256 / tcp

819727972 | 2025-03-10T16:29:47.322629

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5260 / tcp

307999478 | 2025-03-10T17:02:53.685134

unknown command \r\nunknown command \r\n

5261 / tcp

-585940771 | 2025-03-16T21:08:32.872621

Unknown command\r\n

5269 / tcp

-241300778 | 2025-02-25T01:23:11.202045

HTTP/1.1 400 Bad Request
Server: CWAP-waf
Content-Type: text/html
Connection: close
WZWS-RAY: 1249-1705938365.72-w-waf02tjgt

5274 / tcp

1911457608 | 2025-02-25T22:21:15.341985

\x00[\x00\x00\x00\x00\x00\x00

5321 / tcp

-1327660293 | 2025-03-14T08:07:56.153061

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

5433 / tcp

1911457608 | 2025-03-08T15:19:56.183485

\x00[\x00\x00\x00\x00\x00\x00

5435 / tcp

-1399940268 | 2025-03-16T21:47:08.963388

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5443 / tcp

819727972 | 2025-03-04T08:46:03.224448

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5454 / tcp

-1399940268 | 2025-03-17T02:10:54.781122

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5591 / tcp

-1399940268 | 2025-02-22T23:23:47.102345

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5594 / tcp

-358801646 | 2025-02-24T07:34:26.706915

SSH-2.0-OpenSSH_6.6.1

5596 / tcp

-1611764932 | 2025-03-13T23:59:17.279273

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

5607 / tcp

740837454 | 2025-03-08T14:55:49.712001

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

5650 / tcp

-1399940268 | 2025-03-11T15:00:40.365377

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5672 / tcp

575925250 | 2025-03-13T01:31:04.968809

AMQP:\ncluster_name:rabbit@rabbitmq-0.rabbitmq-headless.rabbitmq.svc.cluster.local\ncopyright:Copyright (c) 2007-2021 VMware, Inc. or its affiliates.\ninformation:Licensed under the MPL 2.0. Website: https://rabbitmq.com\nplatform:Erlang/OTP 24.1\nproduct:RabbitMQ\nversion:3.9.7\nCapabilities:\npublisher_confirms:true\nexchange_exchange_bindings:true\nbasic.nack:true\nconsumer_cancel_notify:true\nconnection.blocked:true\nconsumer_priorities:true\nauthentication_failure_close:true\nper_consumer_qos:true\ndirect_reply_to:tru

5804 / tcp

-2096652808 | 2025-03-13T08:07:59.235646

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

5822 / tcp

-1547976805 | 2025-03-14T13:15:11.169269

HTTP/1.1 403 Forbidden
Server: nginx
Content-Type: text/html
Connection: close

5853 / tcp

-303199180 | 2025-03-14T21:15:20.807062

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

5909 / tcp

-1399940268 | 2025-03-04T13:55:40.539066

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

5914 / tcp

819727972 | 2025-02-27T03:44:06.159207

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

5916 / tcp

-2089734047 | 2025-03-13T17:31:03.395024

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

5984 / tcp

1999272906 | 2025-03-09T18:22:26.887792

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

5986 / tcp

1761482307 | 2025-03-13T15:21:08.924001

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

5995 / tcp

-1230049476 | 2025-03-10T17:46:34.853080

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

5999 / tcp

1911457608 | 2025-03-16T19:22:46.130537

\x00[\x00\x00\x00\x00\x00\x00

6000 / tcp

1189133115 | 2025-03-17T14:26:00.185656

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

6001 / tcp

-1399940268 | 2025-03-09T09:38:45.043732

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

6002 / tcp

-1681927087 | 2025-03-04T10:11:48.982768

kjnkjabhbanc283ubcsbhdc72

6060 / tcp

-1105333987 | 2025-03-05T18:55:34.803193

\x00[KpU\x7f\x00\x00

6102 / tcp

-2096652808 | 2025-02-23T17:38:31.520163

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

6262 / tcp

921225407 | 2025-03-11T01:26:20.584545

\x00\x00\x00\x04\x00\x00\x00\x00\x00

6308 / tcp

-1059554316 | 2025-03-14T03:44:03.026880

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

6379 / tcp

321971019 | 2025-03-12T01:01:37.222101

-ERR client ip is not in whitelist\r

6464 / tcp

632542934 | 2025-03-07T00:29:22.243351

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

6511 / tcp

-904840257 | 2025-03-11T05:50:34.069525

572 Relay not authorized\r\n

6514 / tcp

-904840257 | 2025-03-15T00:10:14.360891

572 Relay not authorized\r\n

6543 / tcp

37602462 | 2025-02-24T22:20:21.796732

\\xba\\xdc\xcd\xab\\x01#\\x00\\x00C\\x00,x\\x94\\xb0\\xf9\\x00\\x94\\x88;@\\x94M#\\xec\\x94M[156]\\xd2\xd1\xbe\\xad\\xd3\\xd0\\xc6\\xe4\\xcb\\xfb\\xb5\\xc4DBWIN\\xc1\\xac\\xbd\\xd3! IP Address: 0x6a4b505a\\x00

6600 / tcp

921225407 | 2025-03-12T04:02:35.654268

\x00\x00\x00\x04\x00\x00\x00\x00\x00

6633 / tcp

1911457608 | 2025-03-15T04:49:03.364239

\x00[\x00\x00\x00\x00\x00\x00

6650 / tcp

1911457608 | 2025-02-25T02:41:28.664424

\x00[\x00\x00\x00\x00\x00\x00

6653 / tcp

1911457608 | 2025-03-14T01:06:40.887704

\x00[\x00\x00\x00\x00\x00\x00

6667 / tcp

-1729629024 | 2025-03-16T13:30:38.204313

101 imqbroker =unV

6668 / tcp

165188539 | 2025-03-09T08:43:29.287418

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

6686 / tcp

-1888448627 | 2025-03-15T02:09:15.401201

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

6748 / tcp

-1713437100 | 2025-03-04T01:12:29.914609

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

6955 / tcp

-1733645023 | 2025-02-28T14:26:51.811136

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

7001 / tcp

1634746382 | 2025-03-14T16:11:30.410194

HTTP/1.1 200 OK
X-Current-Requests: 1
Vary: Origin
Content-Type: application/json; charset=utf-8
X-ReadTime: 51
Connection: keep-alive
Keep-Alive: timeout=5

7006 / tcp

1282941221 | 2025-02-24T10:12:03.699750

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

7010 / tcp

-1476017887 | 2025-03-11T14:26:34.369542

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

7013 / tcp

669849225 | 2025-03-12T14:49:31.042569

SSH-98.60-SysaxSSH_81885..42\r\n

7015 / tcp

632542934 | 2025-02-22T21:41:13.706464

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

7050 / tcp

-1399940268 | 2025-02-24T22:41:01.152407

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7071 / tcp

1278527606 | 2025-03-13T17:11:07.276144

SSH-2.0-Teleport

7080 / tcp

165188539 | 2025-02-26T14:03:56.755411

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

7086 / tcp

321971019 | 2025-03-03T23:20:49.498799

-ERR client ip is not in whitelist\r

7102 / tcp

-1139539254 | 2025-02-28T01:25:23.415513

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

7170 / tcp

321971019 | 2025-02-24T23:56:56.535395

-ERR client ip is not in whitelist\r

7171 / tcp

-1399940268 | 2025-03-07T13:37:52.715515

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

7218 / tcp

-1681927087 | 2025-03-15T06:49:56.070318

kjnkjabhbanc283ubcsbhdc72

7283 / tcp

504717326 | 2025-02-22T13:05:37.912843

SSH-2.0-OpenSSH_8.6

Vulnerabilities

2 3 5 1

7415 / tcp

819727972 | 2025-03-17T10:02:36.164419

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

7433 / tcp

709622286 | 2025-03-16T20:10:42.401709

OK Welcome <299685> on DirectUpdate server 7286\r\n

7434 / tcp

660175493 | 2025-03-11T17:34:44.054589

7443 / tcp

1612309769 | 2025-03-09T20:59:15.111602

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae28e1_CS-000-01SZh112_7344-42222

7444 / tcp

819727972 | 2025-03-01T01:59:12.366402

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

7510 / tcp

-2089734047 | 2025-02-23T20:42:42.984375

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

7537 / tcp

-1105333987 | 2025-03-05T02:17:31.008438

\x00[KpU\x7f\x00\x00

7548 / tcp

-1026951088 | 2025-03-14T20:31:09.380330

erro ip

7634 / tcp

2087396567 | 2025-03-16T05:15:01.509868

kjnkjabhbanc283ubcsbhdc72

7654 / tcp

819727972 | 2025-03-05T17:46:04.230992

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

7771 / tcp

-1032713145 | 2025-03-16T19:33:07.462908

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

7776 / tcp

165188539 | 2025-03-11T13:39:20.111598

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

7777 / tcp

1391945995 | 2025-03-15T08:56:31.847339

HTTP/1.1 403 Forbidden 
Content-Type: text/plain; charset=utf-8
Proxy-Authenticate: Basic realm=""

7887 / tcp

165188539 | 2025-02-26T20:43:21.598705

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

7900 / tcp

117101543 | 2025-03-12T23:29:03.835884

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

7999 / tcp

-1259524839 | 2025-03-07T08:32:58.904520

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

8000 / tcp

-1036370807 | 2025-03-16T05:35:05.969396

JDWP-Handshake

8001 / tcp

2103111368 | 2025-03-16T17:10:56.067195

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

8002 / tcp

-2031152423 | 2025-03-05T09:34:18.687521

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

8009 / tcp

165188539 | 2025-03-17T09:05:49.611158

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8011 / tcp

-1139539254 | 2025-02-25T21:58:43.398098

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

8015 / tcp

-784071826 | 2025-02-24T08:26:08.861752

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

8017 / tcp

-1538260461 | 2025-03-04T07:06:28.048188

\x01\x00\x00\x00

8025 / tcp

-375604792 | 2025-02-24T22:36:25.995345

220 Microsoft FTP Service

8032 / tcp

-1839934832 | 2025-03-03T22:30:46.923487

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8034 / tcp

819727972 | 2025-03-05T18:15:36.415181

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8037 / tcp

-2031152423 | 2025-03-16T13:14:33.398438

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

8038 / tcp

1492413928 | 2025-02-27T04:47:18.702843

SSH-2.0-OpenSSH_7.5

Vulnerabilities

2 3 12 1

8040 / tcp

1223115691 | 2025-03-17T07:48:33.719481

connect

8042 / tcp

-289739783 | 2025-03-17T08:56:16.426431

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 657ca3aa_PS-CTU-0151D49_22664-21642

8043 / tcp

-1399940268 | 2025-03-17T11:22:40.254431

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8057 / tcp

1308377066 | 2025-03-06T21:14:19.525005

ncacn_http/1.0

8058 / tcp

1011407350 | 2025-03-12T12:47:03.940683

* OK GroupWise IMAP4rev1 Server Ready\r\n

8061 / tcp

-1399940268 | 2025-03-04T23:23:46.230039

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8079 / tcp

-585940771 | 2025-02-26T03:27:32.588249

Unknown command\r\n

8081 / tcp

819727972 | 2025-03-12T15:54:11.148062

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8083 / tcp

-358801646 | 2025-03-13T03:42:38.083200

SSH-2.0-OpenSSH_6.6.1

8087 / tcp

1282941221 | 2025-03-17T07:48:36.358553

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

8089 / tcp

2087396567 | 2025-03-17T06:30:21.051621

kjnkjabhbanc283ubcsbhdc72

8099 / tcp

-1639624373 | 2025-03-13T23:06:46.998387

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae28c9_CS-000-01kgX25_35624-12255

8100 / tcp

-1036370807 | 2025-03-03T18:47:03.676002

JDWP-Handshake

8106 / tcp

1996932384 | 2025-03-11T19:39:29.354931

"raop" nonce

8107 / tcp

1830697416 | 2025-02-25T02:57:06.706416

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

8115 / tcp

-805362002 | 2025-02-27T06:38:15.233611

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

8116 / tcp

1911457608 | 2025-02-27T02:51:30.358415

\x00[\x00\x00\x00\x00\x00\x00

8118 / tcp

819727972 | 2025-03-10T06:23:53.967106

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8126 / tcp

119860953 | 2025-03-10T21:59:11.065029

* OK ArGoSoft Mail Server IMAP Module v.YW at

8140 / tcp

819727972 | 2025-03-10T10:01:35.612280

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8145 / tcp

-903067560 | 2025-02-23T19:59:00.528881

\x00[\x13)\xc2\x81\x7f\x00\x00

8151 / tcp

-1099385124 | 2025-03-04T23:46:16.782318

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

8153 / tcp

-1730858130 | 2025-03-06T04:11:27.351131

RFB 003.008
VNC:
  Protocol Version: 3.8

8157 / tcp

-441419608 | 2025-03-12T01:48:50.656542

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

8159 / tcp

-1399940268 | 2025-03-11T09:46:15.787029

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8162 / tcp

-980525298 | 2025-03-10T18:06:15.368040

\x01\x00\x00\x00\n\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8167 / tcp

-1996280214 | 2025-03-07T13:16:55.756849

\x06\x04\x05@

8171 / tcp

819727972 | 2025-03-10T01:07:46.380271

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8193 / tcp

1504401647 | 2025-03-06T23:05:01.274111

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

8195 / tcp

-1538260461 | 2025-02-26T00:13:30.732826

\x01\x00\x00\x00

8197 / tcp

-1888448627 | 2025-03-13T00:41:33.295393

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

8200 / tcp

618338916 | 2025-02-23T07:35:11.206506

HTTP/1.1 302 Found
Connection: Keep-Alive
Transfer-Encoding: chunked
Keep-Alive: timeout=20
Location: /cgi-bin/luci/

8236 / tcp

-1399940268 | 2025-03-12T14:52:40.314437

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8237 / tcp

1911457608 | 2025-03-14T17:50:36.748095

\x00[\x00\x00\x00\x00\x00\x00

8249 / tcp

1911457608 | 2025-02-22T18:30:16.356703

\x00[\x00\x00\x00\x00\x00\x00

8291 / tcp

-1399940268 | 2025-03-17T22:50:19.917959

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8318 / tcp

1723769361 | 2025-02-23T20:18:01.055435

ELM Enterprise Manager _l\r\nCopyright \xc2\xa9 18668511-928641920 TNT Software, Inc.\r\n

8333 / tcp

-1261053701 | 2025-03-15T00:20:31.099208

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset="UTF-8"
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Cache-control: no-store
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"

8393 / tcp

-2089734047 | 2025-02-24T09:53:56.418053

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8401 / tcp

-1399940268 | 2025-03-13T13:50:29.946552

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8417 / tcp

-1399940268 | 2025-03-14T16:37:14.207893

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8421 / tcp

-1399940268 | 2025-03-07T03:19:26.164167

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8430 / tcp

1911457608 | 2025-03-17T07:28:39.861212

\x00[\x00\x00\x00\x00\x00\x00

8443 / tcp

1525655816 | 2025-03-06T14:38:58.235416

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Thu, 06 Mar 2025 14:38:58 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://47.108.5.94:443/

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

8447 / tcp

-1399940268 | 2025-03-17T09:45:21.123229

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8451 / tcp

366084633 | 2025-03-05T15:07:34.361920

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

8461 / tcp

321971019 | 2025-03-09T11:58:08.288836

-ERR client ip is not in whitelist\r

8482 / tcp

-1059554316 | 2025-03-16T23:25:11.130939

\xc2\xa5A\x00\x01\x00\x00\x00,\x00\x00\x00\x02\x00\x00\x00L\x00\x00\x00\x08Connect\x00\x00\x00\x00x\x00\x00\x00\x0857222\x00\x00\x00

8485 / tcp

-2089734047 | 2025-03-14T00:42:06.699833

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8493 / tcp

1615193817 | 2025-03-07T01:06:39.426192

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

8494 / tcp

-2107996212 | 2025-02-26T01:22:17.586777

HTTP/1.0 200 OK
Server: Proxy

Unauthorized ...

IP Address:

8500 / tcp

-1455149952 | 2025-03-10T00:45:00.661559

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae1e27_PS-000-01sNY99_31294-28028

8503 / tcp

-1265999252 | 2025-03-09T13:04:41.710934

220 VMware Authentication Daemon Version 1.0, ServerDaemonProto\ncol:SOAP, MKSDisplayProtocol:VNC , ,

8514 / tcp

-1099385124 | 2025-03-15T21:46:37.466862

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

8515 / tcp

-457235091 | 2025-03-12T13:48:16.200512

audio 0 RTP/AVP 18 4 3 8 0 101\r\na

8524 / tcp

819727972 | 2025-02-22T11:38:36.883774

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8526 / tcp

-1019343788 | 2025-02-28T22:30:55.613490

W!\x00\x00\x00\x00

8530 / tcp

-1399940268 | 2025-02-24T04:35:28.874279

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8545 / tcp

-1230049476 | 2025-03-08T11:48:57.765608

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

8567 / tcp

1911457608 | 2025-03-11T17:56:15.227350

\x00[\x00\x00\x00\x00\x00\x00

8574 / tcp

15018106 | 2025-03-13T13:40:34.951273

\x00\x19\x02\x00\x02\x00\x07\x00Protocol version mismatch\x00

8587 / tcp

677934968 | 2025-02-22T20:15:07.904544

lm^)Q

8602 / tcp

-891714208 | 2025-03-14T06:06:24.969697

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com\nmit-revprops depth log-revprops partial-replay ) ) )

8606 / tcp

-1399940268 | 2025-02-23T20:55:01.494280

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8621 / tcp

-1399940268 | 2025-02-23T23:09:44.326468

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8649 / tcp

842535728 | 2025-03-11T12:03:28.212521

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>
A<!DOCTYPE GANGLIA_XML [
   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...

8680 / tcp

117101543 | 2025-02-28T08:31:06.758118

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

8686 / tcp

2143387245 | 2025-02-25T03:48:57.809611

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

8702 / tcp

1332894250 | 2025-03-04T12:15:23.528030

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

8704 / tcp

-2089734047 | 2025-03-12T17:01:02.696621

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8705 / tcp

-1399940268 | 2025-03-15T21:07:22.785108

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8707 / tcp

165188539 | 2025-03-16T01:49:41.468399

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

8709 / tcp

-2089734047 | 2025-03-15T12:02:39.269359

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8728 / tcp

819727972 | 2025-02-25T22:51:02.394944

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8764 / tcp

-2089734047 | 2025-03-14T19:43:38.872304

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8767 / tcp

740837454 | 2025-02-23T09:40:46.247043

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

8787 / tcp

-2089734047 | 2025-03-10T07:06:54.176098

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

8805 / tcp

-1399940268 | 2025-03-17T03:12:27.154026

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8806 / tcp

-1428621233 | 2025-03-11T23:31:13.652310

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

8815 / tcp

1948301213 | 2025-03-04T19:09:27.978112

RFB 003.003
VNC:
  Protocol Version: 3.3

8818 / tcp

-1099385124 | 2025-03-07T13:17:35.543139

"Magic:ActiveMQ\nVersion:12\n\x00\x00\x01<\x01ActiveMQ\x00\x00\x00\x0c\x01\x00\x00\x01*\x00\x00\x00\x0c\x00\x11TcpNoDelayEnabled\x01\x01\x00\x12SizePrefixDisabled\x01\x00\x00 CacheSize\x05\x00\x00\x04\x00\x00\x0cProviderName \x00\x08ActiveMQ\x00\x11StackTraceEnabled\x01\x01\x00\x0fPlatformDetails \x00\x04Java\x00\x0cCacheEnabled\x01\x01\x00\x14TightEncodingEnabled\x01\x01\x00\x0cMaxFrameSize\x06\x00\x00\x00\x00\x06@\x00\x00\x00\x15MaxInac

8820 / tcp

921225407 | 2025-03-11T14:52:29.003663

\x00\x00\x00\x04\x00\x00\x00\x00\x00

8828 / tcp

971933601 | 2025-03-11T17:35:59.027624

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

8834 / tcp

2087396567 | 2025-03-17T23:32:52.191229

kjnkjabhbanc283ubcsbhdc72

8842 / tcp

-445721795 | 2025-03-17T18:26:47.014251

\x00[\xc3\xaed\x1a\x7f\x00\x00

8852 / tcp

-1114821551 | 2025-03-04T15:37:23.342216

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

8862 / tcp

-1399940268 | 2025-03-13T06:51:28.086345

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

8874 / tcp

51259122 | 2025-03-15T22:42:33.426878

\r\nCP2E Control Console\r\nConnected to Host: gZI\r\n

8875 / tcp

1011407350 | 2025-03-13T20:25:50.338877

* OK GroupWise IMAP4rev1 Server Ready\r\n

8886 / tcp

-1476017887 | 2025-03-13T05:39:57.408672

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

8887 / tcp

1208318993 | 2025-02-26T06:30:35.378703

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

8889 / tcp

1353260875 | 2025-03-07T09:01:33.327746

\x00[g\xc2\x95N\x7f\x00\x00

8890 / tcp

-1839934832 | 2025-03-01T01:05:43.046061

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8891 / tcp

-1013082686 | 2025-03-08T13:29:10.464574

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

8899 / tcp

372433470 | 2025-03-15T15:36:28.439883

HTTP/1.1 407 Proxy Authentication Required
Proxy-Authenticate: Basic realm=""

8906 / tcp

-1839934832 | 2025-03-17T23:46:34.436997

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

8991 / tcp

819727972 | 2025-03-07T11:37:24.506752

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

8993 / tcp

1911457608 | 2025-02-24T21:12:03.163105

\x00[\x00\x00\x00\x00\x00\x00

9000 / tcp

1966849516 | 2025-03-09T13:14:21.396391

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65adecfe_CS-000-01NFs233_3728-19750

9001 / tcp

-1026951088 | 2025-03-10T01:25:35.226359

erro ip

9002 / tcp

-1114821551 | 2025-03-14T10:37:21.846401

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

9013 / tcp

-1428621233 | 2025-03-14T23:20:32.864895

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

9019 / tcp

-1399940268 | 2025-03-17T23:29:41.470886

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9024 / tcp

-2096652808 | 2025-03-17T03:03:25.476163

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9035 / tcp

-339084706 | 2025-03-14T09:44:38.310932

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

9036 / tcp

-1045760528 | 2025-03-09T09:57:14.682850

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

9042 / tcp

2087396567 | 2025-03-17T19:05:57.711513

kjnkjabhbanc283ubcsbhdc72

9045 / tcp

707919486 | 2025-03-13T12:10:40.399282

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

9046 / tcp

1911457608 | 2025-03-15T02:35:25.221495

\x00[\x00\x00\x00\x00\x00\x00

9049 / tcp

1911457608 | 2025-03-17T05:51:20.436728

\x00[\x00\x00\x00\x00\x00\x00

9053 / tcp

-2096652808 | 2025-02-27T07:24:30.626162

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9059 / tcp

1541211644 | 2025-02-22T05:21:21.444921

[\xc2\xba\x7fs\x7f

9063 / tcp

-1996280214 | 2025-03-13T22:37:12.542809

\x06\x04\x05@

9064 / tcp

-358801646 | 2025-02-26T03:26:46.184649

SSH-2.0-OpenSSH_6.6.1

9078 / tcp

1541211644 | 2025-02-25T18:27:42.135887

[\xc2\xba\x7fs\x7f

9082 / tcp

-585940771 | 2025-03-15T13:20:59.833472

Unknown command\r\n

9085 / tcp

1911457608 | 2025-03-08T17:57:58.117398

\x00[\x00\x00\x00\x00\x00\x00

9091 / tcp

233634112 | 2025-03-06T17:24:07.189703

SSH-98.60-SysaxSSH_81885..42

9095 / tcp

740837454 | 2025-03-16T09:40:17.893448

SSH-2.0-OpenSSH_5.3

Vulnerabilities

3 9 19 5

9104 / tcp

1911457608 | 2025-03-15T08:01:55.225298

\x00[\x00\x00\x00\x00\x00\x00

9109 / tcp

1911457608 | 2025-02-25T16:39:14.631977

\x00[\x00\x00\x00\x00\x00\x00

9140 / tcp

-1538260461 | 2025-02-26T14:54:50.015030

\x01\x00\x00\x00

9151 / tcp

-21576419 | 2025-03-17T00:42:23.600331

ÿûUDo you want ANSI color? (Y/n)

9153 / tcp

-1327660293 | 2025-03-10T16:08:00.554036

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

9160 / tcp

-1399940268 | 2025-03-11T17:08:03.741631

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9161 / tcp

-2096652808 | 2025-03-08T20:36:46.430682

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

9165 / tcp

1911457608 | 2025-02-23T22:46:16.090118

\x00[\x00\x00\x00\x00\x00\x00

9170 / tcp

1911457608 | 2025-03-03T19:03:31.479762

\x00[\x00\x00\x00\x00\x00\x00

9181 / tcp

1308377066 | 2025-02-24T20:11:47.643901

ncacn_http/1.0

9185 / tcp

580340387 | 2025-02-28T01:27:26.746194

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

9188 / tcp

-585940771 | 2025-03-17T10:19:56.918412

Unknown command\r\n

9198 / tcp

819727972 | 2025-03-11T17:46:33.808059

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9201 / tcp

380146262 | 2025-02-22T20:26:30.766396

@RSYNCD: 30.0

9207 / tcp

165188539 | 2025-03-17T17:56:01.071815

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

9208 / tcp

-2089734047 | 2025-02-24T23:19:00.205040

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9209 / tcp

819727972 | 2025-03-14T08:04:05.530611

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

9211 / tcp

-1399940268 | 2025-03-07T13:01:39.943158

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9219 / tcp

632542934 | 2025-03-11T11:14:57.675241

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

9249 / tcp

921225407 | 2025-02-28T10:21:53.029687

\x00\x00\x00\x04\x00\x00\x00\x00\x00

9256 / tcp

-1399940268 | 2025-02-24T20:28:09.220360

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9257 / tcp

-1399940268 | 2025-02-26T17:23:43.567606

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9289 / tcp

-1888448627 | 2025-03-14T23:05:40.297846

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

9301 / tcp

-441419608 | 2025-03-07T16:51:37.317520

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

9305 / tcp

-1139539254 | 2025-03-14T02:10:33.177422

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

9306 / tcp

-1045760528 | 2025-02-28T15:56:36.343139

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

9311 / tcp

-1746074029 | 2025-03-10T21:34:16.724221

101 imqbroker =unV\r\n

9333 / tcp

-1737707071 | 2025-03-05T16:57:32.215422

\x00b\x00\x01\x00\x00\x00\x00x\x0b\x00\x00\x00\x00z\x00437

9350 / tcp

-2089734047 | 2025-03-13T04:08:08.770254

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

9387 / tcp

632542934 | 2025-02-28T23:46:17.394661

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

9443 / tcp

1690634669 | 2025-03-17T12:10:23.477842

9527 / tcp

-1399940268 | 2025-03-05T20:22:37.669438

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9600 / tcp

-1032713145 | 2025-03-11T04:55:21.745557

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

9633 / tcp

171352214 | 2025-03-13T13:26:04.416345

-ERR client ip is not in whitelist

9682 / tcp

819727972 | 2025-03-10T22:21:31.279396

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

9711 / tcp

-1045760528 | 2025-03-14T11:19:41.298263

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

9773 / tcp

-1399940268 | 2025-02-26T12:43:44.578536

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

9811 / tcp

401555314 | 2025-03-15T03:47:29.144152

NB[GFXjA^R

9876 / tcp

-1451615933 | 2025-02-28T00:30:54.111667

HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
WZWS-RAY: 1249-1705941912.469-s5jhg

9898 / tcp

1320285193 | 2025-03-12T21:44:57.694069

HTTP/1.1 404 Not Found
Server: CloudWAF
Content-Type: text/html
Connection: keep-alive

9919 / tcp

1989907056 | 2025-03-04T12:11:26.645970

RTSP/1.0 453 Not Enough Bandwidth\r\nServer: AirTunes/7l_wZ\r\n\r\n

9923 / tcp

-2140303521 | 2025-03-12T23:35:11.107399

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected\n

9955 / tcp

2143387245 | 2025-02-24T05:57:21.742200

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

9998 / tcp

-1340128872 | 2025-03-05T11:12:04.712516

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 65ae25d2_PS-PEK-010xV14_15533-12109

9999 / tcp

1161309183 | 2025-03-10T03:36:57.985951

ProxyServer is ready

10000 / tcp

-375604792 | 2025-03-08T16:56:49.977725

220 Microsoft FTP Service

10022 / tcp

819727972 | 2025-03-05T08:50:34.048609

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

10024 / tcp

-1473669891 | 2025-03-17T07:38:31.212736

\\x00[\'(\\xc0\\xa8X\\xfd

10035 / tcp

1623746877 | 2025-02-27T09:53:27.208144

500 Permission denied - closing connection.\r\n

10043 / tcp

-1327660293 | 2025-03-15T14:14:06.699929

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

10045 / tcp

-1399940268 | 2025-03-14T19:07:09.542089

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10049 / tcp

-303199180 | 2025-03-12T10:57:17.549947

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

10050 / tcp

819727972 | 2025-03-12T12:41:04.688909

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

10051 / tcp

-801484042 | 2025-03-14T15:39:29.310983

ERR 27

10068 / tcp

-1888448627 | 2025-02-26T23:57:58.594861

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

10106 / tcp

-2089734047 | 2025-02-26T14:48:11.015512

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

10134 / tcp

-1399940268 | 2025-03-16T16:16:31.935760

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10180 / tcp

698877129 | 2025-03-15T21:52:14.947779

\\x00[\'\\xc4\\xc0\\xa8X\\xfd

10181 / tcp

-358801646 | 2025-02-27T03:02:40.819720

SSH-2.0-OpenSSH_6.6.1

10250 / tcp

-345718689 | 2025-03-14T02:51:43.827010

Vty password is not set.

10251 / tcp

-1399940268 | 2025-02-24T23:46:41.791988

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10256 / tcp

-1648456501 | 2025-02-23T08:43:43.584789

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

10380 / tcp

-1399940268 | 2025-02-24T03:15:12.930966

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

10443 / tcp

2076832796 | 2025-03-16T20:39:23.530081

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Sun, 16 Mar 2025 20:39:23 GMT
Content-Type: text/html
Content-Length: 145
Connection: close
Location: https://47.108.5.94:443/

<html>
<head><title>302 Found</title></head>
<body>
<center><h1>302 Found</h1></center>
<hr><center>nginx/1.22.1</center>
</body>
</html>

10554 / tcp

-2017887953 | 2025-03-14T22:13:34.220286

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 10 1

10894 / tcp

819727972 | 2025-02-25T06:35:37.273889

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

10909 / tcp

1011407350 | 2025-02-25T04:44:17.786107

* OK GroupWise IMAP4rev1 Server Ready\r\n

10911 / tcp

165188539 | 2025-03-09T08:54:16.667536

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

11000 / tcp

-2089734047 | 2025-03-15T14:18:00.325439

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

11101 / tcp

-2017887953 | 2025-02-26T05:08:08.449525

SSH-2.0-OpenSSH_7.9

Vulnerabilities

2 4 9 1

11210 / tcp

-585940771 | 2025-03-17T18:01:35.513660

Unknown command\r\n

11288 / tcp

-1990350878 | 2025-03-14T08:28:32.088022

 
04 \...

11300 / tcp

-1105333987 | 2025-03-10T02:52:36.270387

\x00[KpU\x7f\x00\x00

11680 / tcp

2098371729 | 2025-03-13T23:05:22.103329

<?xml version="1.0" encoding="ISO-8859-1" standalone="yes"?>\nA<!DOCTYPE GANGLIA_XML [\n   <!ELEMENT GANGLIA_XML (GRID|CLUSTER|H...\n

11688 / tcp

1077013874 | 2025-03-07T17:56:02.614231

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

12000 / tcp

227700176 | 2025-03-07T14:15:32.268627

HTTP/1.1 200 OK
Server: nginx
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-transform
Set-Cookie: _csrf=kW6lEf7WlBTiDChV5oht1zfpUBE6MTcwNTkxMjc1NjU1NzkzNjYwNQ; Path=/; Expires=Tue, 23 Jan 2024 08:39:16 GMT; HttpOnly; SameSite=Lax
Set-Cookie: macaron_flash=; Path=/; Max-Age=0; HttpOnly; SameSite=Lax
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache

12107 / tcp

401555314 | 2025-03-16T19:58:09.763780

NB[GFXjA^R

12110 / tcp

-1730858130 | 2025-02-25T10:31:45.897942

RFB 003.008
VNC:
  Protocol Version: 3.8

12111 / tcp

-792826324 | 2025-03-06T07:55:51.379059

220 FTP server ready - login please

12114 / tcp

-303199180 | 2025-03-05T19:02:31.493505

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

12119 / tcp

1911457608 | 2025-03-11T23:49:41.216002

\x00[\x00\x00\x00\x00\x00\x00

12120 / tcp

-1327660293 | 2025-03-05T20:34:12.518611

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

12124 / tcp

-1399940268 | 2025-03-13T14:07:19.289109

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12125 / tcp

-249504111 | 2025-03-17T08:01:51.777769

\x00[xU-\x7f\x00\x00

12127 / tcp

-445721795 | 2025-02-24T06:55:17.989849

\x00[\xc3\xaed\x1a\x7f\x00\x00

12129 / tcp

1911457608 | 2025-03-18T01:14:11.583194

\x00[\x00\x00\x00\x00\x00\x00

12134 / tcp

165188539 | 2025-03-16T07:16:53.354511

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12138 / tcp

321971019 | 2025-02-28T23:29:50.030596

-ERR client ip is not in whitelist\r

12147 / tcp

1282941221 | 2025-03-07T14:36:54.621517

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

12149 / tcp

677934968 | 2025-03-13T23:29:14.131275

lm^)Q

12151 / tcp

-2046514463 | 2025-03-16T05:05:01.388704

AB\x01\t

12152 / tcp

-1399940268 | 2025-03-12T14:54:34.748942

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12155 / tcp

-358801646 | 2025-03-09T20:15:30.520772

SSH-2.0-OpenSSH_6.6.1

12156 / tcp

-1611764932 | 2025-03-13T10:46:27.500376

\x03\x00\x00\x10\x08\x02\xc2\x80\x00}\x08\x02\xc2\x80\xc3\xa2\x14\x01\x00

12158 / tcp

1911457608 | 2025-02-22T18:27:05.627785

\x00[\x00\x00\x00\x00\x00\x00

12159 / tcp

1623746877 | 2025-02-22T06:27:00.530928

500 Permission denied - closing connection.\r\n

12165 / tcp

-2096652808 | 2025-03-06T19:38:02.930708

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12168 / tcp

820958131 | 2025-03-16T08:12:38.791551

kjnkjabhbanc283ubcsbhdc72\x02

12186 / tcp

-2096652808 | 2025-03-07T12:45:16.711479

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12195 / tcp

165188539 | 2025-03-15T08:29:59.219516

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12197 / tcp

1541211644 | 2025-02-24T03:37:30.151539

[\xc2\xba\x7fs\x7f

12200 / tcp

1830187220 | 2025-03-05T11:01:47.024271

\xc3\xbf\xc3\xbb\x01\r\n-> GET / HTTP/1.0\r\nGET / HTTP/1.0\r\nundefined symbol: GET\r\n-> \r\n->

12201 / tcp

1134517380 | 2025-03-11T12:59:25.512785

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

12210 / tcp

1911457608 | 2025-03-14T23:38:20.219731

\x00[\x00\x00\x00\x00\x00\x00

12217 / tcp

-2089734047 | 2025-02-24T05:34:14.821913

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12219 / tcp

-2089734047 | 2025-02-26T09:24:26.143536

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12223 / tcp

1996932384 | 2025-03-17T19:24:17.620339

"raop" nonce

12224 / tcp

1948301213 | 2025-03-16T20:28:57.179999

RFB 003.003
VNC:
  Protocol Version: 3.3

12234 / tcp

-1399940268 | 2025-03-07T04:56:10.442693

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12235 / tcp

1911457608 | 2025-02-28T07:43:14.717627

\x00[\x00\x00\x00\x00\x00\x00

12236 / tcp

1210754493 | 2025-03-08T20:10:16.067884

0\x0c\x02\x01\x01a\x07\n\x01\x00\x04\x00\x04\x00

12237 / tcp

-1139539254 | 2025-03-17T06:27:05.147472

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

12267 / tcp

1208318993 | 2025-03-15T21:11:31.339886

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

12274 / tcp

-1399940268 | 2025-03-12T14:11:44.456376

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12280 / tcp

-2089734047 | 2025-02-26T22:29:10.418356

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12282 / tcp

-1399940268 | 2025-03-09T16:44:40.755067

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12285 / tcp

-1140468363 | 2025-03-10T05:28:33.217983

\x02\t\x01

12289 / tcp

-1375131644 | 2025-03-14T17:02:28.784457

\x00[v\xc3\xbdC\x7f\x00\x00

12292 / tcp

-2089734047 | 2025-03-16T11:19:09.795126

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

12293 / tcp

671605376 | 2025-03-13T01:55:03.973058

SSH-2.0-OpenSSH_X.X

12298 / tcp

1574088840 | 2025-03-03T23:10:53.739428

">Application and Content Networking Software 3.9</a>)\n</BODY><

12303 / tcp

819727972 | 2025-03-07T17:09:01.186151

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12311 / tcp

165188539 | 2025-03-18T01:40:13.750843

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

12326 / tcp

1396488228 | 2025-03-13T08:59:35.249935

HTTP/1.1 200 OK
Content-Length: 2037
Cache-Control: private, max-age=300
Content-Type: text/html

12335 / tcp

321971019 | 2025-02-25T23:38:00.688504

-ERR client ip is not in whitelist\r

12337 / tcp

819727972 | 2025-03-12T01:23:23.326030

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12339 / tcp

671605376 | 2025-03-09T21:09:11.416222

SSH-2.0-OpenSSH_X.X

12341 / tcp

1189133115 | 2025-02-22T10:24:42.056753

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

12343 / tcp

-1399940268 | 2025-02-24T08:09:55.095979

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12345 / tcp

265065882 | 2025-03-07T17:54:36.016812

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked

12347 / tcp

1396488228 | 2025-02-28T13:35:43.722912

HTTP/1.1 200 OK
Content-Length: 2037
Cache-Control: private, max-age=300
Content-Type: text/html

12350 / tcp

1830697416 | 2025-02-25T15:57:29.499313

HTTP/1.0 200 OK
Cache-Control: must-revalidate
Content-Length: 243
Content-Type: application/json
Server: CouchDB/3.2.0 (Erlang OTP/20)
X-Cloudant-Action: cloudantnosqldb.account-meta-info.read
X-Couch-Request-ID: a2da79eef6
X-Content-Type-Options: nosniff
X-Cloudant-Request-Class: unlimited
X-Cloudant-Backend: bm-cc-uk-01
Via: 1.0 lb1.bm-cc-uk-01 (Glum/1.101.1)

12352 / tcp

-1230049476 | 2025-02-25T15:35:58.880783

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

12356 / tcp

1911457608 | 2025-02-27T08:33:29.429479

\x00[\x00\x00\x00\x00\x00\x00

12359 / tcp

307999478 | 2025-03-06T00:56:39.901456

unknown command \r\nunknown command \r\n

12367 / tcp

1911457608 | 2025-02-22T17:35:16.514111

\x00[\x00\x00\x00\x00\x00\x00

12375 / tcp

-1140468363 | 2025-03-15T22:10:59.692757

\x02\t\x01

12379 / tcp

-1598265216 | 2025-03-03T20:26:26.178234

@RSYNCD: 31.0

12380 / tcp

-1026951088 | 2025-02-28T10:50:38.269957

erro ip

12390 / tcp

-1435414831 | 2025-03-06T23:38:59.535321

roku: ready\r\n

12392 / tcp

-457235091 | 2025-03-10T10:46:17.277384

audio 0 RTP/AVP 18 4 3 8 0 101\r\na

12401 / tcp

-1428621233 | 2025-03-11T00:23:02.953666

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

12402 / tcp

-445721795 | 2025-03-14T12:28:02.691569

\x00[\xc3\xaed\x1a\x7f\x00\x00

12406 / tcp

1911457608 | 2025-02-27T04:37:47.755128

\x00[\x00\x00\x00\x00\x00\x00

12414 / tcp

-1810987450 | 2025-03-15T04:21:54.435119

\xc3\xbf

12416 / tcp

-146605374 | 2025-03-13T16:37:56.405050

\x00[\xc2\x81\xc2\x8b\xc3\xa7\x7f\x00\x00

12422 / tcp

1911457608 | 2025-03-07T09:38:37.559849

\x00[\x00\x00\x00\x00\x00\x00

12426 / tcp

1762042191 | 2025-03-16T07:14:06.754680

\x7f\x7fICA\x00

12431 / tcp

-1399940268 | 2025-02-28T22:18:42.936118

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12439 / tcp

677934968 | 2025-02-28T01:18:19.198320

lm^)Q

12441 / tcp

-2096652808 | 2025-03-14T10:48:23.366708

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12443 / tcp

-136006866 | 2025-02-27T21:57:35.031519

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

12447 / tcp

-1487943323 | 2025-03-04T09:33:58.291925

431 Unable to negotiate secure command connection.\r\n

12459 / tcp

1134517380 | 2025-03-13T10:05:22.326014

welcome to Pandora console!\r\n----------------------------\n-------------------------\n|     Login Time     |     2021-12-08 1...\n

12464 / tcp

819727972 | 2025-03-11T06:43:11.339441

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12465 / tcp

-1399940268 | 2025-03-12T13:54:35.714869

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12467 / tcp

-1399940268 | 2025-03-05T03:35:53.964304

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12483 / tcp

-1899074860 | 2025-03-15T04:45:54.347119

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

12486 / tcp

-1139539254 | 2025-02-28T16:56:31.563244

\xc3\xbf\xc3\xbb\x01\n\rno data rcvd for version string\n\rrecv version id unsuccessful\n\rSSH Session task 0xY: Version Exchange Failed\n\r

12491 / tcp

-1399940268 | 2025-03-12T17:17:45.057174

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12492 / tcp

1308377066 | 2025-02-25T22:47:45.830707

ncacn_http/1.0

12493 / tcp

-1399940268 | 2025-03-14T00:36:02.517261

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12496 / tcp

1623746877 | 2025-03-14T09:24:01.277136

500 Permission denied - closing connection.\r\n

12499 / tcp

1911457608 | 2025-02-27T02:56:57.900052

\x00[\x00\x00\x00\x00\x00\x00

12506 / tcp

1623746877 | 2025-03-16T07:41:16.870892

500 Permission denied - closing connection.\r\n

12508 / tcp

-1399940268 | 2025-03-14T23:53:24.711514

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12519 / tcp

819727972 | 2025-03-15T12:53:45.840897

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12531 / tcp

819727972 | 2025-03-17T17:13:15.809836

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

12532 / tcp

1308377066 | 2025-03-06T08:20:24.562818

ncacn_http/1.0

12534 / tcp

632542934 | 2025-03-16T17:55:57.564651

\x0f\x00\x02\x00\x05\x00\r\x00\x00\x00\x00\x00\x01\x00\x00\x00\n0\x00

12535 / tcp

-1713437100 | 2025-02-28T18:21:16.742069

\xc3\xbf\xc3\xbb\x01\r\nWelcome to NetLinx v94 Copyright AMX Corp. 34395-49007\r\n>

12543 / tcp

1911457608 | 2025-02-23T23:51:05.956431

\x00[\x00\x00\x00\x00\x00\x00

12546 / tcp

-1888448627 | 2025-02-26T20:50:51.069436

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

12556 / tcp

1077013874 | 2025-03-05T13:46:34.652554

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

12558 / tcp

819727972 | 2025-02-23T14:20:59.323339

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

12560 / tcp

-1399940268 | 2025-03-06T19:44:05.279132

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

12566 / tcp

-1428621233 | 2025-03-15T14:35:18.960740

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

12567 / tcp

-1428621233 | 2025-03-06T10:48:58.373024

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

12573 / tcp

-2096652808 | 2025-02-22T23:49:06.861796

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

12581 / tcp

1911457608 | 2025-03-13T17:47:42.748421

\x00[\x00\x00\x00\x00\x00\x00

12586 / tcp

1624217396 | 2025-03-16T18:43:55.851594

HELO:10.3.6.0.false\nAS:2048\nHL:19

12587 / tcp

1624217396 | 2025-03-15T13:57:03.178561

HELO:10.3.6.0.false\nAS:2048\nHL:19

12601 / tcp

-1730858130 | 2025-03-13T22:03:41.407682

RFB 003.008
VNC:
  Protocol Version: 3.8

12980 / tcp

-441419608 | 2025-03-17T05:44:51.914759

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

13001 / tcp

-1399940268 | 2025-02-25T12:38:48.115130

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

13082 / tcp

-1428621233 | 2025-03-16T06:48:58.463050

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

14130 / tcp

-303199180 | 2025-03-14T11:26:28.836836

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

14265 / tcp

819727972 | 2025-03-04T22:55:27.149365

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

14407 / tcp

819727972 | 2025-03-08T21:00:54.397141

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

14901 / tcp

1282941221 | 2025-03-12T20:40:40.959156

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

15018 / tcp

819727972 | 2025-02-28T21:14:55.665523

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

15038 / tcp

-1036370807 | 2025-03-12T09:11:36.665110

JDWP-Handshake

15443 / tcp

1975288991 | 2025-03-14T05:10:26.500366

OPTI

15503 / tcp

1363464823 | 2025-03-17T14:43:40.922981

\x00[|ox\x7f\x00\x00

16001 / tcp

1911457608 | 2025-03-06T22:56:43.698727

\x00[\x00\x00\x00\x00\x00\x00

16002 / tcp

819727972 | 2025-02-22T04:15:19.204246

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

16013 / tcp

-2089734047 | 2025-03-17T02:44:11.308304

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

16026 / tcp

-2089734047 | 2025-03-09T08:26:01.575283

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

16031 / tcp

455076604 | 2025-03-09T11:12:06.535436

!\x07version\x04bind7 t{RPowerDNS Recursor 410

16037 / tcp

819727972 | 2025-02-26T01:47:30.499232

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

16039 / tcp

971933601 | 2025-03-04T14:36:10.041250

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

16042 / tcp

-1399940268 | 2025-03-17T04:23:22.351147

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16050 / tcp

-1399940268 | 2025-02-22T18:33:36.124708

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16051 / tcp

-1399940268 | 2025-03-07T00:53:28.472107

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16052 / tcp

-358801646 | 2025-03-10T09:38:23.420227

SSH-2.0-OpenSSH_6.6.1

16061 / tcp

-1399940268 | 2025-03-16T21:11:45.722846

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16065 / tcp

-1779118422 | 2025-02-26T12:41:55.512033

\x00[\xc2\xae\xc2\x8d{\x7f\x00\x00

16068 / tcp

-1888448627 | 2025-03-12T12:02:07.404095

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

16072 / tcp

2103111368 | 2025-03-14T20:50:35.532093

HTTP/1.0 403 Access denied
Server: tinyproxy/1.8.3
0AContent-Type: text/html
Connection: close

<?...

16080 / tcp

-147424911 | 2025-02-23T10:55:30.690419

HTTP/1.1 404 Not Found
Content Length: 0

16403 / tcp

-1899074860 | 2025-03-04T07:07:02.590092

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00\x00\x00\n03\x00\x00\x00d\x00\x04\x00\x01\x00\x00\x00\x00\x04\x08\x00\x00\x00\n

16404 / tcp

1632932802 | 2025-02-28T09:03:23.181500

16666 / tcp

1077013874 | 2025-03-15T10:45:43.952363

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

16667 / tcp

-1399940268 | 2025-03-14T15:27:15.256605

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

16993 / tcp

1542849631 | 2025-03-13T03:19:18.331462

* OK [CAPABILITY a2,M\] nBwXk2pPP IMAP4rev1 20qx at

17082 / tcp

-1730858130 | 2025-03-04T14:20:38.528476

RFB 003.008
VNC:
  Protocol Version: 3.8

17102 / tcp

1208318993 | 2025-03-04T19:44:28.608702

\x01\x00\x0b\x00\x00\x00=\x00\x01\x00\x00\x00\x00\x00\xc3\x80\x06\xc3\xbf\xc3\xbf?"<Z\x00DECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x00\x00\x01\x01

18003 / tcp

819727972 | 2025-03-12T04:34:46.921063

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

18013 / tcp

-2096652808 | 2025-03-17T20:48:31.462411

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

18020 / tcp

1726594447 | 2025-02-22T13:48:39.807740

\r\n\nLantronix MSS100 Version V118/523(045538937)\n\r\nType HELP at the \'Local_61349> \' prompt for assistance.\n\r\n\r\n\nUsername>

18021 / tcp

117101543 | 2025-03-04T15:05:20.241872

\x18\x01\x00\x00\x14\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\n0\x0c\x00\x04\x00\x00\x00\x08\x00\n\x00\x00\x00d\x04\x00\x00\xc3\xb8\x00...\n

18023 / tcp

45131230 | 2025-03-04T00:16:58.015379

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

18027 / tcp

-1399940268 | 2025-02-28T06:59:47.323153

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18031 / tcp

-445721795 | 2025-03-16T02:33:03.134254

\x00[\xc3\xaed\x1a\x7f\x00\x00

18033 / tcp

-1105333987 | 2025-03-17T12:46:38.370907

\x00[KpU\x7f\x00\x00

18049 / tcp

-1114821551 | 2025-03-16T04:35:07.927541

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

18051 / tcp

-1114821551 | 2025-03-15T00:27:32.393502

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

18054 / tcp

165188539 | 2025-03-09T08:54:57.361849

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

18065 / tcp

-1399940268 | 2025-02-26T23:39:36.218355

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18067 / tcp

-1399940268 | 2025-03-06T18:25:07.575966

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18070 / tcp

1911457608 | 2025-03-16T03:22:12.576554

\x00[\x00\x00\x00\x00\x00\x00

18076 / tcp

1911457608 | 2025-02-24T01:21:55.478533

\x00[\x00\x00\x00\x00\x00\x00

18079 / tcp

-1114821551 | 2025-03-13T05:27:07.984015

\xc3\xa3\r\n\r\n\x00\x01\x00K\x00vInvalid protocol verification, illegal ORMI request or request performed with an incompatible version of this protocol

18080 / tcp

-971970408 | 2025-03-17T15:55:09.540364

18081 / tcp

1308377066 | 2025-03-17T06:49:47.964389

ncacn_http/1.0

18082 / tcp

1282941221 | 2025-03-14T09:47:04.878056

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

18083 / tcp

-2031152423 | 2025-03-13T12:02:01.295067

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

18093 / tcp

819727972 | 2025-03-14T13:08:10.449028

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

18094 / tcp

-1538260461 | 2025-03-10T21:01:11.389363

\x01\x00\x00\x00

18095 / tcp

2143387245 | 2025-03-14T19:23:24.119401

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

18182 / tcp

1911457608 | 2025-03-14T23:21:28.677518

\x00[\x00\x00\x00\x00\x00\x00

18200 / tcp

-1399940268 | 2025-03-13T11:28:15.857686

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

18245 / tcp

307999478 | 2025-03-15T13:55:48.065542

unknown command \r\nunknown command \r\n

18443 / tcp

2087396567 | 2025-03-15T10:14:15.510349

kjnkjabhbanc283ubcsbhdc72

18553 / tcp

1887224352 | 2025-03-14T12:08:58.940324

18888 / tcp

-345718689 | 2025-03-13T20:59:42.173005

Vty password is not set.

19000 / tcp

165188539 | 2025-03-17T21:03:27.928750

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

19090 / tcp

-1839934832 | 2025-03-10T16:42:55.418656

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

19930 / tcp

-1476017887 | 2025-03-14T10:26:42.777240

N\x00\x00\x00\n5.6.40-log\x00\xc3\x85\x00\x00\x00TUNEgVX2\x00\x0c\n\xc2\xa2!\x02\x00\x08\x00\x15\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xlB...\n

20000 / tcp

1900503736 | 2025-03-16T02:21:59.921104

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: Microsoft-HTTPAPI/2.0

20040 / tcp

1504401647 | 2025-02-22T08:43:22.683866

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

20151 / tcp

-1230049476 | 2025-03-17T05:58:04.418217

HTTP/1.0 200 OK
Connection: close
X-Powered-By: Undertow/1
Server: JBoss-EAP/7
Content-Type: text/html
Content-Length: 98
Accept-Ranges: bytes

20182 / tcp

1911457608 | 2025-03-06T10:56:53.635299

\x00[\x00\x00\x00\x00\x00\x00

20184 / tcp

321971019 | 2025-03-07T06:52:47.596781

-ERR client ip is not in whitelist\r

20256 / tcp

-375604792 | 2025-02-22T00:53:32.348208

220 Microsoft FTP Service

20547 / tcp

-1399940268 | 2025-03-11T10:10:00.522353

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

20880 / tcp

1370263973 | 2025-03-14T09:52:24.054144

dubbo>

20892 / tcp

321971019 | 2025-03-08T18:15:27.005479

-ERR client ip is not in whitelist\r

20900 / tcp

-653033013 | 2025-03-13T17:07:21.241898

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

21001 / tcp

-339084706 | 2025-03-12T22:23:04.107893

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready\r\n

21025 / tcp

2087396567 | 2025-03-15T20:53:36.411623

kjnkjabhbanc283ubcsbhdc72

21081 / tcp

-1189269828 | 2025-03-06T02:08:44.450620

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

21082 / tcp

819727972 | 2025-02-24T19:42:59.642777

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

21231 / tcp

-1399940268 | 2025-03-04T01:08:13.476986

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21233 / tcp

-303199180 | 2025-03-17T03:40:04.753643

Content-Type: text/rude-rejection\nContent-Length: 24\n\n\nAccess Denied, go away.\nContent-Type: text/disconnect-notice\nC...\n

21236 / tcp

-180163620 | 2025-02-27T03:08:38.679232

NPC Telnet permit one connection.\r\n But One connection() already keep alive.\r\nGood Bye !! \r\n

21242 / tcp

1911457608 | 2025-03-14T14:30:09.551208

\x00[\x00\x00\x00\x00\x00\x00

21248 / tcp

-2031152423 | 2025-02-25T16:32:11.784876

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

21281 / tcp

-1888448627 | 2025-02-26T19:23:03.495834

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

21285 / tcp

-904840257 | 2025-03-04T13:03:07.987261

572 Relay not authorized\r\n

21287 / tcp

921225407 | 2025-02-27T19:41:26.186773

\x00\x00\x00\x04\x00\x00\x00\x00\x00

21288 / tcp

-1399940268 | 2025-03-15T07:20:13.692533

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

21330 / tcp

819727972 | 2025-03-15T08:14:57.230506

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

21379 / tcp

-1189269828 | 2025-03-06T06:23:52.108269

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

21381 / tcp

-1032713145 | 2025-02-28T21:28:47.307189

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

22345 / tcp

-2089734047 | 2025-03-10T06:44:33.226366

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

22403 / tcp

-345718689 | 2025-03-04T23:38:17.716545

Vty password is not set.

22609 / tcp

-1888448627 | 2025-02-28T11:05:44.522119

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

23023 / tcp

-1681927087 | 2025-02-28T16:50:10.939669

kjnkjabhbanc283ubcsbhdc72

24181 / tcp

45131230 | 2025-03-15T09:33:58.867523

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

24245 / tcp

599074451 | 2025-03-14T13:50:40.729172

msg

24510 / tcp

-1036370807 | 2025-03-12T08:56:08.582374

JDWP-Handshake

25007 / tcp

-1730858130 | 2025-03-16T19:45:42.877778

RFB 003.008
VNC:
  Protocol Version: 3.8

25565 / tcp

321971019 | 2025-03-17T02:07:18.743482

-ERR client ip is not in whitelist\r

26656 / tcp

290819026 | 2025-03-13T06:14:06.501959

welcome to Pandora console!
----------------------------
-------------------------
|     Login Time     |     2021-12-08 1...

26657 / tcp

1741579575 | 2025-03-12T02:41:40.324940

27015 / tcp

-80321085 | 2025-02-24T04:40:28.563157

Command: None
Size: 1802398315
ID: 1751277930
Type: 1668178274

27017 / tcp

1763259671 | 2025-03-06T01:11:47.233193

{\n"Version": "3.4.18",\n"VersionArray": [\n3,\n4,\n18,\n0\n],\n"GitVersion": "4410706bef6463369ea2f42399e9843903b31923",\n"OpenSSLVersion": "",\n"SysInfo": "",\n"Bits": 64,\n"Debug": false,\n"MaxObjectSize": 16777216\n}\n\n

28015 / tcp

639175818 | 2025-03-17T22:33:01.652920

\r\nSurnom.\r\nSorry, that nickname format is invalid.\r\n

28080 / tcp

1741579575 | 2025-03-11T00:30:17.429298

30001 / tcp

1011407350 | 2025-03-16T19:04:43.968072

* OK GroupWise IMAP4rev1 Server Ready\r\n

30002 / tcp

-79865617 | 2025-03-10T04:02:04.889303

( success ( 2 2 ( ) ( edit-pipeline svndiff1 absent-entries com
mit-revprops depth log-revprops partial-replay ) ) )

30003 / tcp

-1681927087 | 2025-03-17T22:04:23.964469

kjnkjabhbanc283ubcsbhdc72

30006 / tcp

-441419608 | 2025-03-05T16:09:07.127929

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4ubuntu0.3

30009 / tcp

2063598737 | 2025-03-05T07:38:42.566741

/0 0 L\r\n/0 0 HUH\r\n

30019 / tcp

1911457608 | 2025-03-13T19:43:48.166082

\x00[\x00\x00\x00\x00\x00\x00

30021 / tcp

580340387 | 2025-03-15T09:13:37.033922

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

30022 / tcp

-971970408 | 2025-03-14T23:04:23.784275

30029 / tcp

-2089734047 | 2025-03-12T17:39:58.852794

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

30111 / tcp

1975288991 | 2025-02-28T10:28:20.789492

OPTI

30122 / tcp

1396488228 | 2025-03-16T22:06:00.847138

HTTP/1.1 200 OK
Content-Length: 2037
Cache-Control: private, max-age=300
Content-Type: text/html

30301 / tcp

-2096652808 | 2025-03-15T19:09:01.500205

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

30322 / tcp

-1729629024 | 2025-03-09T04:39:38.389172

101 imqbroker =unV

30422 / tcp

2087396567 | 2025-03-13T11:59:28.396121

kjnkjabhbanc283ubcsbhdc72

30522 / tcp

1189133115 | 2025-03-12T14:36:35.190340

SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.8

30700 / tcp

921225407 | 2025-03-14T16:42:43.005068

\x00\x00\x00\x04\x00\x00\x00\x00\x00

30722 / tcp

1842524259 | 2025-03-13T13:28:04.714250

30822 / tcp

2087396567 | 2025-03-12T19:43:11.151978

kjnkjabhbanc283ubcsbhdc72

31022 / tcp

2087396567 | 2025-03-13T08:52:09.165990

kjnkjabhbanc283ubcsbhdc72

31122 / tcp

1620329124 | 2025-03-09T13:48:11.904790

\r\nSiemens 2766190798 T1E1 [COMBO] Router (7-382-) v13708 Ready\r\n\xc3\xbf\xc3\xbb\x01\xc3\xbf\xc3\xbb\x03\xc3\xbf\xc3\xbd\x01\xc3\xbf\xc3\xbe\x01Username:

31210 / tcp

819727972 | 2025-02-23T01:27:56.020296

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

31337 / tcp

-147424911 | 2025-02-23T21:28:33.583948

HTTP/1.1 404 Not Found
Content Length: 0

31380 / tcp

-1399940268 | 2025-03-05T06:50:56.768211

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

31422 / tcp

996960436 | 2025-03-13T02:50:43.326746

572 Relay not authorized

31443 / tcp

1077013874 | 2025-03-12T17:52:34.830622

HTTP/1.1 400 Bad Request
Server: squid/3.5.8
Mime-Version: 1.0
Content-Length: 3510
X-Squid-Error: ERR_INVALID_URL 0
Vary: Accept-Language
Content-Language: en
X-Cache: MISS from p1
Via: 1.1 p1 (squid/3.5.8)
Connection: close

31522 / tcp

171352214 | 2025-03-13T01:07:01.997565

-ERR client ip is not in whitelist

31622 / tcp

539065883 | 2025-03-12T23:07:21.825264

31722 / tcp

819727972 | 2025-03-12T21:25:00.483703

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

31822 / tcp

1761482307 | 2025-03-12T07:31:52.778565

\x00[\xc2\xa5\t\xc2\xbe\x7f\x00\x00

31922 / tcp

-971970408 | 2025-03-11T06:47:35.358148

32022 / tcp

2087396567 | 2025-03-12T04:05:56.131924

kjnkjabhbanc283ubcsbhdc72

32222 / tcp

-2081419599 | 2025-03-09T08:18:14.437784

@
03d

32322 / tcp

1842524259 | 2025-03-16T15:16:52.217337

32422 / tcp

1332894250 | 2025-03-09T14:14:52.765034

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

32522 / tcp

1741579575 | 2025-03-08T16:19:19.460945

32622 / tcp

2087396567 | 2025-03-11T19:27:48.716646

kjnkjabhbanc283ubcsbhdc72

32722 / tcp

2087396567 | 2025-03-11T16:17:58.872040

kjnkjabhbanc283ubcsbhdc72

32764 / tcp

546151771 | 2025-03-06T09:14:32.502945

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

32922 / tcp

-321444299 | 2025-03-11T04:41:45.556696

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

33222 / tcp

2143387245 | 2025-03-09T19:20:45.642590

HTTP/1.1 408 Request Timeout
content-length: 0
co
nnection: close
date: Fri, 26 Nov 2021 07:46:40 GMT

33322 / tcp

-1477838366 | 2025-02-23T17:26:34.537106

SSH-2.0-OpenSSH_8.2p1 Ubuntu-4

33389 / tcp

1278527606 | 2025-03-10T10:40:10.581915

SSH-2.0-Teleport

33422 / tcp

171352214 | 2025-03-09T10:10:42.967959

-ERR client ip is not in whitelist

33622 / tcp

2087396567 | 2025-03-08T19:33:41.990627

kjnkjabhbanc283ubcsbhdc72

33722 / tcp

1919228981 | 2025-03-08T17:50:01.866417

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

34422 / tcp

-1681927087 | 2025-03-15T00:48:12.535615

kjnkjabhbanc283ubcsbhdc72

34500 / tcp

45131230 | 2025-03-11T23:57:01.165586

inv2W\x04\x0f\x00\x00\x00\x01\x00\t\x00\x00\x00

34522 / tcp

1632932802 | 2025-03-05T06:03:52.273984

34622 / tcp

1991883981 | 2025-03-04T17:46:54.710413

B\x00\x00\x00\xc3\xbfn\x04Too many connections

34822 / tcp

2087396567 | 2025-03-03T22:29:11.514025

kjnkjabhbanc283ubcsbhdc72

35000 / tcp

-1399940268 | 2025-03-16T19:54:56.318512

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

35002 / tcp

-375604792 | 2025-02-23T04:39:07.484813

220 Microsoft FTP Service

35100 / tcp

-1986594217 | 2025-02-26T21:52:04.717975

"AP0F1D85"\r\nConnection: close\r\n\r\n<HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD>\n<BODY BGCOLOR

35101 / tcp

-2031152423 | 2025-03-09T04:37:57.053324

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

35122 / tcp

-952165951 | 2025-03-04T08:55:36.891292

AB

35240 / tcp

-1045760528 | 2025-02-26T14:13:24.855079

HTTP/1.1 302 Found
Connection: close
Location: http://*.*.*.*/solr/

35322 / tcp

1741579575 | 2025-03-17T08:36:31.773805

35422 / tcp

2087396567 | 2025-02-28T08:14:03.605603

kjnkjabhbanc283ubcsbhdc72

35522 / tcp

819727972 | 2025-03-17T01:07:04.260721

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

35554 / tcp

2121220663 | 2025-03-17T02:15:52.214080

SSH-58-Ingrian_SSH\r\n

35559 / tcp

819727972 | 2025-02-28T15:10:31.159992

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

35622 / tcp

1541211644 | 2025-03-04T12:24:47.024049

[\xc2\xba\x7fs\x7f

35722 / tcp

-358801646 | 2025-02-28T06:49:25.009463

SSH-2.0-OpenSSH_6.6.1

35922 / tcp

-1148066627 | 2025-03-16T21:22:32.679576

\x00[\xc2\x84\xc2\x86\xc3\xb2\x7f\x00\x00

36022 / tcp

819727972 | 2025-03-17T21:10:50.320441

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

36122 / tcp

-1626979812 | 2025-03-13T09:55:45.078571

220 Service ready for new user.

36222 / tcp

819727972 | 2025-03-17T19:56:06.651094

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

36522 / tcp

-1189269828 | 2025-02-28T20:36:34.057855

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\xc2\x80\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

36622 / tcp

841014058 | 2025-03-16T08:31:37.118784

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

36722 / tcp

104385780 | 2025-03-17T04:55:50.777939

ceph v2

37022 / tcp

1741579575 | 2025-03-16T19:30:22.699580

37122 / tcp

339872247 | 2025-03-17T01:18:27.895854


0 ...

37222 / tcp

1261582754 | 2025-03-14T20:02:24.717148

unknown command 
unknown command

37322 / tcp

1690634669 | 2025-02-28T22:21:51.670673

37422 / tcp

-971970408 | 2025-03-15T12:00:15.916395

37522 / tcp

1690634669 | 2025-03-16T09:24:53.388444

37622 / tcp

-805362002 | 2025-03-16T02:01:28.855888

ICAP/1.0 501 Other
Server: Traffic Spicer 7788179225

37777 / tcp

-1399940268 | 2025-03-15T14:36:04.548320

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

37822 / tcp

171352214 | 2025-03-14T01:37:59.033654

-ERR client ip is not in whitelist

37922 / tcp

2087396567 | 2025-03-18T00:37:09.780074

kjnkjabhbanc283ubcsbhdc72

38022 / tcp

291723434 | 2025-03-17T22:57:51.797274

Lantronix MSS100 Version V118/523(045538937)

Type HELP at the 'Local_61349> ' prompt for assistance.



Username>

38122 / tcp

-971970408 | 2025-03-15T17:47:48.798442

38322 / tcp

2087396567 | 2025-03-15T13:42:30.209622

kjnkjabhbanc283ubcsbhdc72

38333 / tcp

2087396567 | 2025-03-15T20:51:26.595211

kjnkjabhbanc283ubcsbhdc72

38522 / tcp

2087396567 | 2025-03-14T00:05:56.674351

kjnkjabhbanc283ubcsbhdc72

38622 / tcp

1690634669 | 2025-03-14T08:44:00.174711

38722 / tcp

-1730858130 | 2025-03-13T22:07:20.097399

RFB 003.008
VNC:
  Protocol Version: 3.8

38822 / tcp

2087396567 | 2025-03-12T16:05:18.831316

kjnkjabhbanc283ubcsbhdc72

38922 / tcp

671605376 | 2025-03-13T17:59:47.159296

SSH-2.0-OpenSSH_X.X

39022 / tcp

-971970408 | 2025-03-13T20:22:55.290442

39122 / tcp

-358801646 | 2025-03-13T18:38:14.033838

SSH-2.0-OpenSSH_6.6.1

39222 / tcp

-971970408 | 2025-03-13T16:54:01.443448

39422 / tcp

819727972 | 2025-03-11T12:49:13.952489

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

39522 / tcp

1690634669 | 2025-03-11T09:57:35.853858

39822 / tcp

2087396567 | 2025-03-12T05:46:47.718955

kjnkjabhbanc283ubcsbhdc72

39922 / tcp

2087396567 | 2025-02-26T17:50:38.188155

kjnkjabhbanc283ubcsbhdc72

40001 / tcp

921225407 | 2025-03-07T04:57:28.292609

\x00\x00\x00\x04\x00\x00\x00\x00\x00

40022 / tcp

2087396567 | 2025-03-09T10:48:32.550629

kjnkjabhbanc283ubcsbhdc72

40070 / tcp

-1730858130 | 2025-03-13T02:37:49.979245

RFB 003.008
VNC:
  Protocol Version: 3.8

40122 / tcp

2087396567 | 2025-02-26T14:11:03.265530

kjnkjabhbanc283ubcsbhdc72

40222 / tcp

-801484042 | 2025-03-04T11:18:00.770855

ERR 27

40322 / tcp

-527005584 | 2025-03-08T21:15:28.140478

/0 0 L
/0 0 HUH

40522 / tcp

1282941221 | 2025-03-04T07:09:28.352101

HTTP/1.0 500 Internal Server Error
Content-Length: 20
D
Connection: close

Command server error

40622 / tcp

1842524259 | 2025-02-26T12:07:17.941009

40722 / tcp

2087396567 | 2025-03-08T14:40:48.873507

kjnkjabhbanc283ubcsbhdc72

41022 / tcp

171352214 | 2025-03-08T22:58:18.995840

-ERR client ip is not in whitelist

41443 / tcp

-1013082686 | 2025-03-14T03:29:19.048263

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

41522 / tcp

-1730858130 | 2025-03-04T21:17:20.990000

RFB 003.008
VNC:
  Protocol Version: 3.8

41800 / tcp

1975288991 | 2025-03-12T20:03:59.667630

OPTI

41822 / tcp

-1428621233 | 2025-03-07T17:46:10.372527

\x00\x00\x18\x04\x00\x00\x00\x00\x00\x00\x04\x00@\x00\x00\x00\x00\n05\x00@\x00\x00\x00\x06\x00\x00 \x00\xc3\xbe\x03\x00\x00\x00\x01\x00\x00...\n

42222 / tcp

1690634669 | 2025-03-04T23:01:38.051538

42235 / tcp

819727972 | 2025-03-12T07:43:24.826963

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

42422 / tcp

-1990350878 | 2025-03-04T19:32:21.712947

 
04 \...

42901 / tcp

1911457608 | 2025-02-27T06:48:39.025694

\x00[\x00\x00\x00\x00\x00\x00

42922 / tcp

819727972 | 2025-02-28T15:20:17.798483

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

43200 / tcp

-1399940268 | 2025-02-27T17:25:52.909976

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

43221 / tcp

1278527606 | 2025-03-04T11:28:42.216346

SSH-2.0-Teleport

43222 / tcp

1286504516 | 2025-03-01T00:11:49.052165

CP2E Control Console
Connected to Host: gZI

43322 / tcp

2087396567 | 2025-02-27T22:05:30.577925

kjnkjabhbanc283ubcsbhdc72

43422 / tcp

1741579575 | 2025-02-27T20:46:16.222851

43522 / tcp

1842524259 | 2025-02-27T18:18:46.845348

43722 / tcp

1778988322 | 2025-02-27T03:34:18.435566

* OK GroupWise IMAP4rev1 Server Ready

43822 / tcp

-319440554 | 2025-02-27T03:47:47.127869

43922 / tcp

-971970408 | 2025-02-27T09:58:15.254138

44022 / tcp

2087396567 | 2025-02-27T08:56:26.089073

kjnkjabhbanc283ubcsbhdc72

44100 / tcp

1911457608 | 2025-03-05T22:07:14.098396

\x00[\x00\x00\x00\x00\x00\x00

44122 / tcp

472902042 | 2025-02-26T22:38:35.372846

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

44158 / tcp

-433302150 | 2025-03-10T23:13:43.747595

/multistream/1.0.0

44222 / tcp

-1032713145 | 2025-03-10T22:54:47.606895

\x00\x00\x00\x04\x00\x00\x00\x00\x00\x00\x00\x04\x08\x00\x00\x00\n0\x00\x00\x00\x0e\xc3\xbf\xc3\xb1

44307 / tcp

819727972 | 2025-03-12T07:32:24.986622

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

44309 / tcp

-1399940268 | 2025-02-28T16:44:59.585031

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

44340 / tcp

1504401647 | 2025-03-01T01:54:23.373808

:dircproxy NOTICE AUTH :Looking up your hostname...\r\n:dircproxy NOTICE AUTH :Got your hostname.\r\n

44400 / tcp

-1399940268 | 2025-02-25T19:09:44.161426

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

44422 / tcp

-1441741890 | 2025-02-26T08:40:57.907724

220 corpease.net Anti-spam GT for Coremail System (icmhosting[2
0181212])

44500 / tcp

580340387 | 2025-03-12T14:51:44.323369

220 Microsoft FTP Service\n530 User cannot log in.\n214-The following commands are recognized (* ==>\'s unimplemented).\n    ABOR \n    ACCT \n    ADAT *\n    ALLO \n    APPE \n    AUTH \n    CCC \n    CDUP \n    CWD \n    DELE \n    ENC *\n    EPRT \n    EPSV \n    FEAT \n    HELP \n    HOST \n    LANG \n    LIST ...

44522 / tcp

-1681927087 | 2025-02-26T06:59:13.027389

kjnkjabhbanc283ubcsbhdc72

44622 / tcp

-653033013 | 2025-02-23T03:34:17.158679

\xc3\xbf\x00\x00\x00\x00\x00\x00\x00\x01\x7f

44722 / tcp

546151771 | 2025-02-26T05:17:33.263980

Zookeeper version: 3.7.0-e3704b390a6697bfdf4b0bef79e3da7a4f6bac4b, built on 2021-09-17 18:36 UTC
Clients:
/*.*.*.*:11264[0](queued=0,recved=1,sent=0)

Latency min/avg/max: 0/0.0/0
Received: 8557
Sent: 11410
Connections: 1
Outstanding: 0
Zxid: 0x332907ad3391
Mode: follower
Node count: 104618

44818 / tcp

-136006866 | 2025-03-07T09:25:29.399471

STAT pid 1660\nSTAT uptime 28884\nSTAT time 1641290377\nSTAT version 1.2.1\nSTAT pointer_size 32\nSTAT curr_items 14\nSTAT total_items 3533\nSTAT bytes 30524\nSTAT curr_connections 1\nSTAT total_connections 3542\nSTAT connection_structures 3\nSTAT cmd_get 3533\nSTAT cmd_set 3533\nSTAT get_hits 3519\nSTAT get_misses 14\nSTAT bytes_read 7927780\nSTAT bytes_written 7848552\nSTAT limit_maxbytes 67108864\nEND

44922 / tcp

971933601 | 2025-02-26T03:46:13.995798

HTTP/1.0 404 Not Found
Content-Length: 0
Server: HTTPD
Connection: close
Content-Type: text/html

45122 / tcp

-1839934832 | 2025-02-25T12:46:29.317828

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

45222 / tcp

-971970408 | 2025-02-25T19:15:12.068174

45322 / tcp

-1013082686 | 2025-02-25T17:38:22.691159

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

45444 / tcp

707919486 | 2025-03-06T07:03:38.734500

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

45622 / tcp

-1839934832 | 2025-02-25T14:28:31.406838

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

45788 / tcp

-2089734047 | 2025-03-13T04:05:34.345159

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

45822 / tcp

2087396567 | 2025-03-10T12:32:59.702532

kjnkjabhbanc283ubcsbhdc72

45888 / tcp

819727972 | 2025-02-27T09:36:05.560200

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

45922 / tcp

2087396567 | 2025-03-10T14:15:44.326150

kjnkjabhbanc283ubcsbhdc72

46001 / tcp

1996932384 | 2025-03-10T04:29:44.897804

"raop" nonce

46022 / tcp

-321444299 | 2025-02-25T07:42:47.422380

:dircproxy NOTICE AUTH :Looking up your hostname...
:dircproxy NOTICE AUTH :Got your hostname.

46122 / tcp

472902042 | 2025-02-24T12:34:01.483417

"Magic:ActiveMQ
Version:12
<ActiveMQ*TcpNoDelayEnabledSizePrefixDisabled CacheSizeProviderName ActiveMQStackTraceEnabledPlatformDetails JavaCacheEnabledTightEncodingEnabledMaxFrameSize@MaxInac

46222 / tcp

-1648456501 | 2025-02-25T00:02:49.260953

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

46322 / tcp

2087396567 | 2025-02-24T21:08:59.355590

kjnkjabhbanc283ubcsbhdc72

46422 / tcp

2087396567 | 2025-02-24T09:05:15.739927

kjnkjabhbanc283ubcsbhdc72

46622 / tcp

119860953 | 2025-02-24T03:54:46.663687

* OK ArGoSoft Mail Server IMAP Module v.YW at

47122 / tcp

1741579575 | 2025-02-23T22:41:03.278366

47222 / tcp

-1036370807 | 2025-02-23T20:54:43.837488

JDWP-Handshake

47422 / tcp

539065883 | 2025-02-25T00:40:36.391715

47522 / tcp

-1839934832 | 2025-02-25T09:21:59.092134

HTTP/1.0 408 Request Time-out
Cache-Control: no-cache
D
Connection: close
Content-Type: text/html

...

47622 / tcp

178736976 | 2025-02-25T03:05:29.172769

SSH-58-Ingrian_SSH

47722 / tcp

2087396567 | 2025-03-10T10:48:27.366884

kjnkjabhbanc283ubcsbhdc72

47822 / tcp

597764502 | 2025-03-10T09:02:49.893899

\x00[\xc2\x86\xc2\x9f\xc3\x9d\x7f\x00\x00

47922 / tcp

-1810987450 | 2025-03-10T09:10:01.132746

\xc3\xbf

47990 / tcp

599074451 | 2025-03-12T16:48:59.337260

msg

48000 / tcp

-1399940268 | 2025-02-23T11:00:06.807285

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

48022 / tcp

1852418385 | 2025-03-07T10:57:50.043176

RTSP/1.0 453 Not Enough Bandwidth
Server: AirTunes/7l_wZ

48100 / tcp

-2089734047 | 2025-03-07T13:47:09.483718

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

48122 / tcp

-1136600457 | 2025-03-10T06:21:45.526192

HELO:10.3.6.0.false
AS:2048
HL:19

48422 / tcp

-971970408 | 2025-03-10T00:25:10.595425

48522 / tcp

-971970408 | 2025-03-09T22:42:22.514773

48622 / tcp

707919486 | 2025-02-24T19:22:55.859149

\x00\x06\xc2\x81\xc2\x81\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

48722 / tcp

1690634669 | 2025-02-24T15:55:39.743665

48822 / tcp

2033888749 | 2025-02-24T17:39:15.815999

Content-Type: text/rude-rejection
Content-Length: 24


Access Denied, go away.
Content-Type: text/disconnect-notice
C...

48922 / tcp

1919228981 | 2025-02-24T14:58:07.862927

\x00\x1e\x00\x06\xc2\x81\xc2\x85\x00\x01\x00\x00\x00\x00\x00\x00\x07version\x04bind\x00\x00\x10\x00\x03

49022 / tcp

2087396567 | 2025-03-07T14:20:36.289327

kjnkjabhbanc283ubcsbhdc72

49200 / tcp

-1327660293 | 2025-03-17T23:05:11.598384

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

49422 / tcp

-1013082686 | 2025-02-23T01:50:52.740719

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

49682 / tcp

1911457608 | 2025-03-11T14:22:50.775011

\x00[\x00\x00\x00\x00\x00\x00

49688 / tcp

165188539 | 2025-03-06T02:34:33.463779

\x00\x00\x06\x04\x00\x00\x00\x00\x00\x00\x05\x00\x00@\x00

49722 / tcp

2087396567 | 2025-02-22T22:17:51.846245

kjnkjabhbanc283ubcsbhdc72

49922 / tcp

819727972 | 2025-02-22T18:54:17.148671

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

50000 / tcp

1824169301 | 2025-03-17T06:09:12.684697

HÿjHost '101.133.140.114' is not allowed to 
connect to this MySQL server

50022 / tcp

819727972 | 2025-03-04T06:41:17.725731

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

50085 / tcp

1332894250 | 2025-03-16T00:12:37.996923

\xc3\xbf\xc3\xbb\x01SOYO_SIP VBNQyQSKc settings\r\nPassword:

50105 / tcp

-1626979812 | 2025-02-28T15:01:16.523783

220 Service ready for new user.

50107 / tcp

1911457608 | 2025-03-03T22:08:06.684773

\x00[\x00\x00\x00\x00\x00\x00

50122 / tcp

1741579575 | 2025-02-22T09:12:38.895967

50222 / tcp

-1760806421 | 2025-02-22T09:21:41.548877

protocolErrorInf error=Missing hw string from : null. Check hardware state=disconnected

50443 / tcp

-784071826 | 2025-03-12T19:50:35.002026

SSH-2.0-OpenSSH_8.0

Vulnerabilities

2 4 5 1

50996 / tcp

1426971893 | 2025-03-05T16:37:15.514666

\x00[s\xc3\x85\xc3\x93\x7f\x00\x00

51235 / tcp

-1399940268 | 2025-02-24T18:52:20.101819

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

51443 / tcp

599074451 | 2025-03-12T01:24:49.753868

msg

52022 / tcp

-1733645023 | 2025-03-07T00:42:27.376166

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

52536 / tcp

-1399940268 | 2025-02-25T10:01:38.507301

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

53022 / tcp

-971970408 | 2025-03-07T08:21:52.526640

53490 / tcp

-1013082686 | 2025-03-16T04:40:58.954644

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

54138 / tcp

1911457608 | 2025-03-14T09:54:33.593812

\x00[\x00\x00\x00\x00\x00\x00

54545 / tcp

-1399940268 | 2025-02-28T10:08:26.467420

kjnkjabhbanc283ubcsbhdc72\x00\x00\x00\x02

54922 / tcp

1690634669 | 2025-03-07T09:12:51.714155

55000 / tcp

-2089734047 | 2025-03-06T17:38:49.000321

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

55222 / tcp

2087396567 | 2025-03-07T02:57:39.310883

kjnkjabhbanc283ubcsbhdc72

55422 / tcp

-1648456501 | 2025-03-06T18:09:53.504939

\n\r\xc3\xbf\xc3\xbbUDo you want ANSI color? (Y/n)

55443 / tcp

2087396567 | 2025-03-17T10:05:05.504050

kjnkjabhbanc283ubcsbhdc72

55522 / tcp

-952165951 | 2025-03-06T22:58:06.843083

AB

55553 / tcp

-971970408 | 2025-03-03T18:14:46.405330

55554 / tcp

819727972 | 2025-03-15T14:59:10.251066

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 13 1

55555 / tcp

-1406255272 | 2025-02-26T15:24:48.620818

SSH-2.0-dropbear_0.52\r\n

55722 / tcp

819727972 | 2025-03-06T19:31:00.097535

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

57522 / tcp

366084633 | 2025-03-06T12:46:16.837878

<HTML><HEAD><TITLE>Error</TITLE></HEAD><BODY><H1>Error</H1>Bad request or resource not found.</BODY></HTML>

57722 / tcp

1690634669 | 2025-03-06T07:56:00.210137

57787 / tcp

1615193817 | 2025-03-13T22:11:20.959014

Hello, this is FRRouting (version 4.0).\r\r\nCopyright 19\n96-2005 Kunihiro Ishiguro, et al.\r\r\n\r\r\n\r\nUse...\n

57822 / tcp

1308377066 | 2025-03-06T06:14:27.228603

ncacn_http/1.0

58000 / tcp

819727972 | 2025-03-04T19:25:32.107722

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

58122 / tcp

-1626979812 | 2025-03-06T04:08:04.413537

220 Service ready for new user.

58322 / tcp

-375604792 | 2025-03-06T00:12:00.514699

220 Microsoft FTP Service

58422 / tcp

841014058 | 2025-03-05T22:40:13.888356

Hello, this is FRRouting (version 4.0).

Copyright 19
96-2005 Kunihiro Ishiguro, et al.




Use...

58522 / tcp

-1316491703 | 2025-03-05T20:02:25.057707

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

58585 / tcp

-445721795 | 2025-02-25T15:48:14.744695

\x00[\xc3\xaed\x1a\x7f\x00\x00

58722 / tcp

-1013082686 | 2025-03-05T18:07:47.897741

HTTP/1.1 408 Request Timeout
Content-Length: 0
Co
ntent-Type: text/plain

58822 / tcp

-2096652808 | 2025-03-05T16:25:07.473020

\x00\x00\x12\x04\x00\x00\x00\x00\x00\x00\x03\x7f\xc3\xbf\xc3\xbf\xc3\xbf\x00\n0\x04\x00\x10\x00\x00\x00\x06\x00\x00 \x00\x00\x00\x04\x08\x00\x00\x00...\n

58922 / tcp

171352214 | 2025-03-05T15:41:12.505761

-ERR client ip is not in whitelist

59022 / tcp

1690634669 | 2025-03-05T12:58:45.483272

59122 / tcp

1353260875 | 2025-03-05T12:06:32.992746

\x00[g\xc2\x95N\x7f\x00\x00

59222 / tcp

819727972 | 2025-03-05T09:31:39.150851

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

59322 / tcp

2087396567 | 2025-03-05T10:43:59.561274

kjnkjabhbanc283ubcsbhdc72

59522 / tcp

-2031152423 | 2025-03-03T19:46:41.987982

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3

60001 / tcp

-971970408 | 2025-03-15T02:40:53.901620

60129 / tcp

-1999117212 | 2025-03-13T05:50:51.478407

61234 / tcp

103159425 | 2025-03-15T09:43:14.450508

SSH-1.99-RGOS_SSH

61613 / tcp

15018106 | 2025-03-16T06:37:58.414433

\x00\x19\x02\x00\x02\x00\x07\x00Protocol version mismatch\x00

61616 / tcp

-1316491703 | 2025-03-04T22:34:07.438338

200 ArGoSoft News Server for WinNT/2000/XP v 59869648 ready

61617 / tcp

-1733645023 | 2025-03-12T22:00:00.395132

SSH-2.0-OpenSSH_7.2p2 Ubuntu-4ubuntu2.10

62016 / tcp

307999478 | 2025-02-22T21:31:01.702737

unknown command \r\nunknown command \r\n

62078 / tcp

-154616015 | 2025-03-13T07:39:01.688060

=\x01À\x06ÿÿ?"<ZDECWINDOWS Digital Equipment Corporation Digital UNIX V2eT03T7w_Q6\x01\x01

62080 / tcp

-1888448627 | 2025-03-17T06:37:44.234545

\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00

62865 / tcp

1911457608 | 2025-03-05T00:32:05.532806

\x00[\x00\x00\x00\x00\x00\x00

63210 / tcp

-2081419599 | 2025-03-14T23:03:13.541165

@
03d

63256 / tcp

-1681927087 | 2025-03-17T10:15:33.185671

kjnkjabhbanc283ubcsbhdc72

63257 / tcp

2087396567 | 2025-03-11T14:34:37.282669

kjnkjabhbanc283ubcsbhdc72

63260 / tcp

819727972 | 2025-03-11T21:09:05.176972

SSH-2.0-OpenSSH_7.4

Vulnerabilities

2 3 12 1

64295 / tcp

-1327660293 | 2025-03-14T21:01:56.083208

ceph v2\n\x10\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\x00\x00\x00\x00\x00

64683 / tcp

-2089734047 | 2025-02-28T18:45:02.193848

\x02\t\x00\x01\x00\x00\x00\x00\x00\x00

65000 / tcp

1121806355 | 2025-03-13T17:39:43.610520

HTTP/1.1 400 Bad Request
Server: nginx
Content-Type: text/html
Connection: close
x-ws-request-id: 657d0752_gwt27_33224-20260

47.108.5.94

Last Seen: 2025-03-18

Tags:

GeneralInformation

WebTechnologies

OpenPorts

11 / tcp 677934968 | 2025-03-14T22:08:23.331831

13 / tcp -2127598635 | 2025-03-18T01:31:11.745231

17 / tcp -82008689 | 2025-03-13T19:33:37.517087

19 / tcp 829384519 | 2025-02-24T21:14:29.549987

23 / tcp -2107996212 | 2025-02-27T17:04:16.259449

25 / tcp 819727972 | 2025-02-28T07:19:05.939842

26 / tcp -1899074860 | 2025-03-05T05:56:25.170505

37 / tcp 82767464 | 2025-03-13T17:42:02.737533

43 / tcp -971970408 | 2025-03-12T19:05:20.410473

49 / tcp -1620040646 | 2025-03-10T22:02:20.543120

53 / tcp 1369632081 | 2025-03-05T23:10:13.181703

70 / tcp -833941849 | 2025-03-17T13:15:38.094601

79 / tcp 268196945 | 2025-03-05T18:55:01.673119

80 / tcp -1680149580 | 2025-03-15T19:02:06.102437

Hashes

81 / tcp -2118655245 | 2025-03-04T14:32:37.693577

Hashes

82 / tcp -2118655245 | 2025-03-06T22:17:00.833198

Hashes

90 / tcp 819727972 | 2025-03-16T15:06:16.154782

91 / tcp 321971019 | 2025-03-16T09:11:04.240740

102 / tcp 2143387245 | 2025-03-11T01:23:45.222669

104 / tcp -1888448627 | 2025-03-15T07:09:33.815757

106 / tcp -1373613804 | 2025-03-12T17:34:35.369240

110 / tcp 1911457608 | 2025-02-24T19:33:25.738750

111 / tcp -616720387 | 2025-03-10T02:29:52.869811

113 / tcp 60948681 | 2025-03-06T04:09:00.657103

119 / tcp -2107996212 | 2025-03-14T10:05:40.117522

122 / tcp 1623746877 | 2025-03-09T05:18:58.012331

135 / tcp 1302177452 | 2025-03-06T07:10:18.165911

143 / tcp 376198496 | 2025-03-11T09:19:42.892112

175 / tcp -1399940268 | 2025-03-11T00:33:20.511603

179 / tcp -399606100 | 2025-03-16T18:17:00.931143

190 / tcp 1911457608 | 2025-02-25T05:38:19.871234

195 / tcp 1492413928 | 2025-03-10T08:36:20.565328

221 / tcp 380146262 | 2025-02-25T21:57:05.105603

264 / tcp -1707068558 | 2025-03-14T00:00:50.854775

311 / tcp 749429829 | 2025-03-13T03:04:29.341104

314 / tcp -1032713145 | 2025-02-28T08:19:52.251404

389 / tcp -1639129386 | 2025-03-11T21:36:25.789342

400 / tcp 1308377066 | 2025-03-10T17:13:33.022730

427 / tcp -525136240 | 2025-03-12T21:32:01.903269

443 / tcp -1131622615 | 2025-03-10T12:10:21.340379

Hashes

444 / tcp -420380999 | 2025-02-26T21:41:26.927854

451 / tcp -2089734047 | 2025-03-17T09:20:54.480377

452 / tcp -2096652808 | 2025-03-14T03:52:56.245667

465 / tcp 897328069 | 2025-03-03T19:59:06.043358

480 / tcp 1381121983 | 2025-03-06T10:57:11.398891

485 / tcp 408230060 | 2025-02-25T01:32:40.978025

491 / tcp 1911457608 | 2025-02-28T09:36:51.919181

502 / tcp 320677201 | 2025-03-17T02:15:58.851622

503 / tcp -1139539254 | 2025-03-09T14:11:40.400860

513 / tcp 819727972 | 2025-03-15T04:32:58.775409

515 / tcp 863754335 | 2025-03-13T09:53:45.738637

522 / tcp -1730858130 | 2025-03-17T08:49:00.679921

541 / tcp -269727450 | 2025-03-12T04:08:48.708857

554 / tcp 735639583 | 2025-03-09T05:07:25.462235

593 / tcp -1112304903 | 2025-02-28T12:17:28.311477

602 / tcp -1810987450 | 2025-02-28T22:47:20.525044

636 / tcp -1036370807 | 2025-03-11T14:14:43.815386

666 / tcp 1300162323 | 2025-03-10T07:03:52.423463

771 / tcp -445721795 | 2025-03-06T02:03:49.527914

777 / tcp -1116122862 | 2025-03-16T00:04:25.803814

782 / tcp -1399940268 | 2025-03-16T12:39:25.202466

789 / tcp 1911457608 | 2025-03-17T21:31:52.387381

873 / tcp -1970692834 | 2025-03-16T15:31:13.720122

887 / tcp 1911457608 | 2025-02-28T10:50:38.417844

990 / tcp 408230060 | 2025-02-26T10:41:37.487650

992 / tcp -1718295362 | 2025-03-16T03:42:58.590818

993 / tcp -1476017887 | 2025-02-27T07:13:01.912939

995 / tcp -1489591880 | 2025-03-10T00:00:38.087417

998 / tcp 1426971893 | 2025-03-09T12:49:26.890121

1000 / tcp -1399940268 | 2025-02-27T20:05:45.424237

11 / tcp

677934968 | 2025-03-14T22:08:23.331831

13 / tcp

-2127598635 | 2025-03-18T01:31:11.745231

17 / tcp

-82008689 | 2025-03-13T19:33:37.517087

19 / tcp

829384519 | 2025-02-24T21:14:29.549987

23 / tcp

-2107996212 | 2025-02-27T17:04:16.259449

25 / tcp

819727972 | 2025-02-28T07:19:05.939842

26 / tcp

-1899074860 | 2025-03-05T05:56:25.170505

37 / tcp

82767464 | 2025-03-13T17:42:02.737533

43 / tcp

-971970408 | 2025-03-12T19:05:20.410473

49 / tcp

-1620040646 | 2025-03-10T22:02:20.543120

53 / tcp

1369632081 | 2025-03-05T23:10:13.181703

70 / tcp

-833941849 | 2025-03-17T13:15:38.094601

79 / tcp

268196945 | 2025-03-05T18:55:01.673119

80 / tcp

-1680149580 | 2025-03-15T19:02:06.102437

81 / tcp

-2118655245 | 2025-03-04T14:32:37.693577

82 / tcp

-2118655245 | 2025-03-06T22:17:00.833198

90 / tcp

819727972 | 2025-03-16T15:06:16.154782

91 / tcp

321971019 | 2025-03-16T09:11:04.240740

102 / tcp

2143387245 | 2025-03-11T01:23:45.222669

104 / tcp

-1888448627 | 2025-03-15T07:09:33.815757

106 / tcp

-1373613804 | 2025-03-12T17:34:35.369240

110 / tcp

1911457608 | 2025-02-24T19:33:25.738750

111 / tcp

-616720387 | 2025-03-10T02:29:52.869811

113 / tcp

60948681 | 2025-03-06T04:09:00.657103

119 / tcp

-2107996212 | 2025-03-14T10:05:40.117522

122 / tcp

1623746877 | 2025-03-09T05:18:58.012331

135 / tcp

1302177452 | 2025-03-06T07:10:18.165911

143 / tcp

376198496 | 2025-03-11T09:19:42.892112

175 / tcp

-1399940268 | 2025-03-11T00:33:20.511603

179 / tcp

-399606100 | 2025-03-16T18:17:00.931143

190 / tcp

1911457608 | 2025-02-25T05:38:19.871234

195 / tcp

1492413928 | 2025-03-10T08:36:20.565328

221 / tcp

380146262 | 2025-02-25T21:57:05.105603

264 / tcp

-1707068558 | 2025-03-14T00:00:50.854775

311 / tcp

749429829 | 2025-03-13T03:04:29.341104

314 / tcp

-1032713145 | 2025-02-28T08:19:52.251404

389 / tcp

-1639129386 | 2025-03-11T21:36:25.789342

400 / tcp

1308377066 | 2025-03-10T17:13:33.022730

427 / tcp

-525136240 | 2025-03-12T21:32:01.903269

443 / tcp

-1131622615 | 2025-03-10T12:10:21.340379

444 / tcp

-420380999 | 2025-02-26T21:41:26.927854

451 / tcp

-2089734047 | 2025-03-17T09:20:54.480377

452 / tcp

-2096652808 | 2025-03-14T03:52:56.245667

465 / tcp

897328069 | 2025-03-03T19:59:06.043358

480 / tcp

1381121983 | 2025-03-06T10:57:11.398891

485 / tcp

408230060 | 2025-02-25T01:32:40.978025

491 / tcp

1911457608 | 2025-02-28T09:36:51.919181

502 / tcp

320677201 | 2025-03-17T02:15:58.851622

503 / tcp

-1139539254 | 2025-03-09T14:11:40.400860

513 / tcp

819727972 | 2025-03-15T04:32:58.775409

515 / tcp

863754335 | 2025-03-13T09:53:45.738637

522 / tcp

-1730858130 | 2025-03-17T08:49:00.679921

541 / tcp

-269727450 | 2025-03-12T04:08:48.708857

554 / tcp

735639583 | 2025-03-09T05:07:25.462235

593 / tcp

-1112304903 | 2025-02-28T12:17:28.311477

602 / tcp

-1810987450 | 2025-02-28T22:47:20.525044

636 / tcp

-1036370807 | 2025-03-11T14:14:43.815386

666 / tcp

1300162323 | 2025-03-10T07:03:52.423463

771 / tcp

-445721795 | 2025-03-06T02:03:49.527914

777 / tcp

-1116122862 | 2025-03-16T00:04:25.803814

782 / tcp

-1399940268 | 2025-03-16T12:39:25.202466

789 / tcp

1911457608 | 2025-03-17T21:31:52.387381

873 / tcp

-1970692834 | 2025-03-16T15:31:13.720122

887 / tcp

1911457608 | 2025-02-28T10:50:38.417844

990 / tcp

408230060 | 2025-02-26T10:41:37.487650

992 / tcp

-1718295362 | 2025-03-16T03:42:58.590818

993 / tcp

-1476017887 | 2025-02-27T07:13:01.912939

995 / tcp

-1489591880 | 2025-03-10T00:00:38.087417

998 / tcp

1426971893 | 2025-03-09T12:49:26.890121

1000 / tcp

-1399940268 | 2025-02-27T20:05:45.424237

1023 / tcp

-2107996212 | 2025-03-15T04:49:30.598485

1025 / tcp

1948301213 | 2025-03-09T16:23:42.533960

1080 / tcp

1362344524 | 2025-03-10T21:46:43.004947

1099 / tcp

-1399940268 | 2025-03-14T21:04:33.313639

1119 / tcp

-1547976805 | 2025-02-23T08:55:46.899980

1177 / tcp

2087396567 | 2025-03-17T18:36:55.259628

1181 / tcp

-2031152423 | 2025-02-27T05:36:21.288220

1200 / tcp

2087396567 | 2025-03-10T12:59:30.031688

1234 / tcp

-1399940268 | 2025-03-05T04:20:15.553915

1250 / tcp

819727972 | 2025-03-13T13:13:01.618818